AV Security Suite - Bitte um Auswertung des RSIT Logfiles

kuecho · 13.07.2010, 21:52

Danke für deine Geduld!
Hier das Logfile, jetzt wie es sein soll^^!

Combofix Logfile:

Code:

ATTFilter

ComboFix 10-07-12.06 - kuecho 13.07.2010  22:41:38.2.2 - x86
Microsoft Windows 7 Home Premium   6.1.7600.0.1252.49.1031.18.3583.2655 [GMT 2:00]
ausgeführt von:: c:\users\kuecho\Desktop\smss.exe.exe
.

(((((((((((((((((((((((   Dateien erstellt von 2010-06-13 bis 2010-07-13  ))))))))))))))))))))))))))))))
.

2010-07-13 20:45 . 2010-07-13 20:45	--------	d-----w-	c:\users\Public\AppData\Local\temp
2010-07-13 20:45 . 2010-07-13 20:45	--------	d-----w-	c:\users\Default\AppData\Local\temp
2010-07-13 13:06 . 2010-07-13 13:06	--------	d-----w-	C:\_OTL
2010-07-12 07:40 . 2010-07-12 07:40	--------	d-----w-	c:\windows\Sun
2010-07-12 06:36 . 2010-07-12 06:36	--------	d--h--w-	c:\windows\PIF
2010-07-12 06:20 . 2010-07-12 07:05	--------	d-----w-	c:\users\kuecho\AppData\Local\poeviddsl
2010-07-12 05:57 . 2010-07-12 07:06	--------	d-----w-	c:\program files\trend micro
2010-07-12 05:57 . 2010-07-12 05:57	--------	d-----w-	C:\rsit
2010-07-11 18:32 . 2010-07-11 18:32	--------	d-----w-	c:\users\kuecho\AppData\Roaming\Malwarebytes
2010-07-11 18:32 . 2010-07-11 18:32	--------	d-----w-	c:\program files\Malwarebytes' Anti-Malware
2010-07-11 18:32 . 2010-07-11 18:32	--------	d-----w-	c:\programdata\Malwarebytes
2010-07-11 18:32 . 2010-04-29 10:19	38224	------w-	c:\windows\system32\drivers\mbamswissarmy.sys
2010-07-11 18:32 . 2010-04-29 10:19	20952	------w-	c:\windows\system32\drivers\mbam.sys
2010-07-03 04:46 . 2010-07-03 04:46	1201	----a-w-	c:\programdata\Akademische Arbeitsgemeinschaft\Geldtipps HomeBanking\2\1und1\UpdateFiles\1und1_2.11.bat
2010-06-24 07:55 . 2010-06-24 07:55	--------	d-----w-	c:\program files\FileZilla FTP Client
2010-06-23 20:37 . 2009-11-25 10:47	99176	----a-w-	c:\windows\system32\PresentationHostProxy.dll
2010-06-23 20:37 . 2009-11-25 10:47	49472	----a-w-	c:\windows\system32\netfxperf.dll
2010-06-23 20:37 . 2009-11-25 10:47	297808	----a-w-	c:\windows\system32\mscoree.dll
2010-06-23 20:37 . 2009-11-25 10:47	295264	----a-w-	c:\windows\system32\PresentationHost.exe
2010-06-23 20:37 . 2009-11-25 10:47	1130824	----a-w-	c:\windows\system32\dfshim.dll
2010-06-23 04:24 . 2010-05-09 09:14	641536	----a-w-	c:\windows\system32\CPFilters.dll
2010-06-23 04:24 . 2010-03-24 06:37	1286456	----a-w-	c:\windows\system32\ntdll.dll
2010-06-23 04:24 . 2010-05-09 09:14	417792	----a-w-	c:\windows\system32\msdri.dll
2010-06-16 08:38 . 2010-06-16 08:38	1201	----a-w-	c:\programdata\Akademische Arbeitsgemeinschaft\Geldtipps HomeBanking\2\1und1\UpdateFiles\1und1_2.10.bat
2010-06-16 05:19 . 2010-06-16 05:19	--------	d-----w-	C:\Geldtipps HomeBanking
2010-06-16 05:16 . 2010-06-16 09:15	--------	d-----w-	c:\users\kuecho\AppData\Roaming\Akademische Arbeitsgemeinschaft
2010-06-16 05:13 . 2010-06-16 05:13	6650	----a-w-	c:\programdata\AAV\SSE\15\UpdateFiles\SSEStandard_Patch_15.11.bat
2010-06-16 05:13 . 2010-06-16 05:13	20776	----a-w-	c:\programdata\AAV\SSE\15\UpdateFiles\ApplyMsp.exe
2010-06-16 05:13 . 2010-06-16 05:13	18728	----a-w-	c:\programdata\AAV\SSE\15\UpdateFiles\RepairVLH2010.exe
2010-06-16 05:12 . 2010-06-16 05:12	53248	----a-r-	c:\users\kuecho\AppData\Roaming\Microsoft\Installer\{DF6FE172-006A-4324-AF7F-ACFE4BA290FE}\ARPPRODUCTICON.exe
2010-06-16 05:12 . 2010-06-16 05:12	--------	d-----w-	c:\program files\Akademische Arbeitsgemeinschaft
2010-06-16 04:59 . 2010-06-16 05:13	--------	d-----w-	c:\programdata\AAV
2010-06-16 04:59 . 2010-06-16 04:59	--------	d-----w-	c:\programdata\Akademische Arbeitsgemeinschaft
2010-06-15 10:42 . 2010-06-15 10:42	--------	d-----w-	c:\program files\QS
2010-06-15 10:42 . 2010-06-15 10:42	--------	d-----w-	c:\users\kuecho\temp

.
((((((((((((((((((((((((((((((((((((   Find3M Bericht   ))))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-07-13 17:56 . 2010-07-12 14:34	--------	d-----w-	c:\program files\Spyware Doctor
2010-07-12 15:10 . 2010-03-10 16:31	--------	d-----w-	c:\program files\Pinnacle
2010-07-12 15:08 . 2010-03-10 16:23	--------	d-----w-	c:\programdata\Pinnacle
2010-07-12 14:35 . 2010-07-12 14:34	--------	d-----w-	c:\program files\Common Files\PC Tools
2010-07-12 14:34 . 2010-07-12 14:34	--------	d-----w-	c:\users\kuecho\AppData\Roaming\PC Tools
2010-07-12 14:34 . 2010-07-12 14:34	--------	d-----w-	c:\programdata\PC Tools
2010-07-12 09:16 . 2010-03-06 07:16	--------	d-----w-	c:\program files\Mozilla Thunderbird
2010-07-12 08:36 . 2010-03-06 12:35	--------	d-----w-	c:\users\kuecho\AppData\Roaming\vlc
2010-07-12 06:41 . 2010-03-06 07:16	--------	d-----w-	c:\program files\CCleaner
2010-07-12 06:01 . 2010-05-05 11:50	--------	d-----w-	c:\programdata\Spybot - Search & Destroy
2010-07-12 05:07 . 2009-07-14 08:47	653928	------w-	c:\windows\system32\perfh007.dat
2010-07-12 05:07 . 2009-07-14 08:47	129800	------w-	c:\windows\system32\perfc007.dat
2010-07-06 08:13 . 2010-03-06 12:39	--------	d-----w-	c:\programdata\Blizzard Entertainment
2010-07-01 06:12 . 2010-03-06 18:53	--------	d-----w-	c:\users\kuecho\AppData\Roaming\Winamp
2010-06-30 05:13 . 2010-03-06 18:53	--------	d-----w-	c:\program files\Winamp
2010-06-30 05:13 . 2010-03-06 18:53	--------	d-----w-	c:\program files\Winamp Detect
2010-06-26 03:52 . 2010-03-06 07:29	--------	d-----w-	c:\program files\Microsoft.NET
2010-06-24 12:21 . 2010-05-05 17:40	--------	d-----w-	c:\users\kuecho\AppData\Roaming\FileZilla
2010-06-15 18:45 . 2010-05-12 17:51	--------	d-----w-	c:\program files\MyDefrag v4.2.9
2010-06-12 05:16 . 2010-03-06 07:28	--------	d-----w-	c:\programdata\Microsoft Help
2010-06-06 04:18 . 2010-03-09 13:35	--------	d-----w-	c:\program files\Microsoft Silverlight
2010-05-27 07:24 . 2010-06-11 12:41	34304	----a-w-	c:\windows\system32\atmlib.dll
2010-05-27 03:49 . 2010-06-11 12:41	293888	----a-w-	c:\windows\system32\atmfd.dll
2010-05-21 12:14 . 2010-03-06 07:26	221568	------w-	c:\windows\system32\MpSigStub.exe
2010-05-21 05:18 . 2010-06-11 12:41	977920	----a-w-	c:\windows\system32\wininet.dll
2010-05-19 14:15 . 2010-05-19 14:15	--------	d-----w-	c:\users\kuecho\AppData\Roaming\PC Suite
2010-05-19 14:15 . 2010-05-19 14:15	--------	d-----w-	c:\programdata\PC Suite
2010-05-19 13:32 . 2010-03-06 14:36	--------	d--h--w-	c:\program files\InstallShield Installation Information
2010-05-19 13:32 . 2010-05-19 13:32	--------	d-----w-	c:\program files\MarkAnyContentSAFER
2010-05-19 13:32 . 2007-10-25 15:26	5632	------w-	c:\windows\system32\drivers\StarOpen.sys
2010-05-19 13:31 . 2010-05-19 12:24	89280248	----a-w-	c:\users\kuecho\AppData\Roaming\Samsung\New PC Studio\LiveUpdate\Setup_For_Full_Update_IH2_7.exe
2010-05-19 12:23 . 2010-05-19 12:20	--------	d-----w-	c:\program files\Samsung
2010-05-19 12:23 . 2010-05-19 12:23	--------	d-----w-	c:\program files\DIFX
2010-05-19 12:23 . 2010-05-19 12:21	--------	d-----w-	c:\program files\PC Connectivity Solution
2010-05-19 12:21 . 2010-05-19 12:21	--------	d-----w-	c:\users\kuecho\AppData\Roaming\Samsung
2010-05-19 12:21 . 2010-05-19 12:21	--------	d-----w-	c:\program files\MarkAny
2010-05-19 12:14 . 2010-03-06 07:18	--------	d-----w-	c:\program files\Common Files\Adobe
2010-05-18 09:57 . 2010-04-28 05:48	--------	d-----w-	c:\users\kuecho\AppData\Roaming\TeamViewer
2010-05-18 09:04 . 2010-04-28 05:47	--------	d-----w-	c:\program files\TeamViewer
2010-05-06 15:33 . 2010-03-06 12:17	101504	----a-w-	c:\users\kuecho\AppData\Local\GDIPFONTCACHEV1.DAT
2010-05-06 13:01 . 2010-05-06 13:01	129784	------w-	c:\windows\system32\pxafs.dll
2010-05-06 13:01 . 2010-05-06 13:01	43528	------w-	c:\windows\system32\drivers\PxHelp20.sys
2010-05-06 13:01 . 2010-05-06 13:01	118520	------w-	c:\windows\system32\pxinsi64.exe
2010-05-06 13:01 . 2010-05-06 13:01	116472	------w-	c:\windows\system32\pxcpyi64.exe
2010-05-02 12:43 . 2010-05-02 12:37	30210700	----a-w-	c:\programdata\Creative\Software Update\cache\Creative Sound Blaster X-Fi Smart Recorder (Windows Vista) 2.40.20__\SMARTREC_PCAPP_LB_2_40_20.exe
2010-05-02 12:37 . 2010-05-02 12:35	12907880	----a-w-	c:\programdata\Creative\Software Update\cache\Creative WaveStudio 7.12.00__\WAVESTD_PCAPP_LB_7_12_00.exe
2010-05-02 12:35 . 2010-05-02 12:27	37634288	----a-w-	c:\programdata\Creative\Software Update\cache\Creative MediaSource 5 Player_Organizer 5.26.02__\CMS5_PCAPP_LB_5_26_02.exe
2010-05-02 12:27 . 2010-05-02 12:24	18323888	----a-w-	c:\programdata\Creative\Software Update\cache\Creative ALchemy 1.41.02__\ALMY_PCVTAPP_LB_1_41_02.exe
2010-05-02 12:24 . 2010-05-02 12:23	8512328	----a-w-	c:\programdata\Creative\Software Update\cache\Creative ALchemy 1.25.10__\ALMY_PCVTAPP_LB_1_25_10.exe
2010-05-02 12:23 . 2010-05-02 12:11	62234496	----a-w-	c:\programdata\Creative\Software Update\cache\Creative Console Launcher 2.61.09__\CSL_PCAPP_LB_2_61_09.exe
2010-05-01 14:49 . 2010-06-11 12:41	2326528	----a-w-	c:\windows\system32\win32k.sys
2010-04-23 07:13 . 2010-05-26 05:49	2048	----a-w-	c:\windows\system32\tzres.dll
2009-06-10 21:26 . 2009-07-14 02:04	9633792	--sha-r-	c:\windows\Fonts\StaticCache.dat
2009-07-14 01:14 . 2009-07-13 23:42	396800	--sha-w-	c:\windows\winsxs\x86_microsoft-windows-mail-app_31bf3856ad364e35_6.1.7600.16385_none_f12e83abb108c86c\WinMail.exe
.

((((((((((((((((((((((((((((   Autostartpunkte der Registrierung   ))))))))))))))))))))))))))))))))))))))))
.
.
*Hinweis* leere Einträge & legitime Standardeinträge werden nicht angezeigt. 
REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2009-07-14 1173504]
"AutoStartNPSAgent"="c:\program files\Samsung\Samsung New PC Studio\NPSAgent.exe" [2010-05-19 102400]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"avgnt"="c:\program files\Avira\AntiVir Desktop\avgnt.exe" [2009-03-02 209153]
"FreePDF Assistant"="c:\program files\FreePDF_XP\fpassist.exe" [2009-09-05 385024]
" Malwarebytes Anti-Malware  (reboot)"="c:\program files\Malwarebytes' Anti-Malware\mbam.exe" [2010-04-29 1090952]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"mixer2"=wdmaud.drv

[HKLM\~\startupfolder\C:^Users^kuecho^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^OneNote 2007 Bildschirmausschnitt- und Startprogramm.lnk]
path=c:\users\kuecho\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OneNote 2007 Bildschirmausschnitt- und Startprogramm.lnk
backup=c:\windows\pss\OneNote 2007 Bildschirmausschnitt- und Startprogramm.lnk.Startup
backupExtension=.Startup

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Device Detector]
DevDetect.exe -autorun [X]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}]
2008-12-12 07:30	132392	----a-w-	c:\program files\Common Files\Nero\Lib\NMBgMonitor.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CTxfiHlp]
2009-06-03 23:55	25600	------w-	c:\windows\System32\Ctxfihlp.exe

R2 Browser Defender Update Service;Browser Defender Update Service;c:\program files\Spyware Doctor\BDT\BDTUpdateService.exe [2010-01-22 112592]
R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
R2 gupdate;Google Update Service (gupdate);c:\program files\Google\Update\GoogleUpdate.exe [2010-03-15 135664]
R3 Creative ALchemy AL6 Licensing Service;Creative ALchemy AL6 Licensing Service;c:\program files\Common Files\Creative Labs Shared\Service\AL6Licensing.exe [2010-05-02 79360]
R3 Creative Audio Engine Licensing Service;Creative Audio Engine Licensing Service;c:\program files\Common Files\Creative Labs Shared\Service\CTAELicensing.exe [2010-03-06 79360]
R3 CT20XUT;CT20XUT;c:\windows\system32\drivers\CT20XUT.SYS [2009-06-04 171032]
R3 CTEXFIFX;CTEXFIFX;c:\windows\system32\drivers\CTEXFIFX.SYS [2009-06-04 1324056]
R3 CTHWIUT;CTHWIUT;c:\windows\system32\drivers\CTHWIUT.SYS [2009-06-04 72728]
R3 sdAuxService;PC Tools Auxiliary Service;c:\program files\Spyware Doctor\pctsAuxs.exe [2010-03-11 366840]
R3 ss_bbus;SAMSUNG USB Mobile Device (WDM);c:\windows\system32\DRIVERS\ss_bbus.sys [2009-03-20 90112]
R3 ss_bmdfl;SAMSUNG USB Mobile Modem (Filter);c:\windows\system32\DRIVERS\ss_bmdfl.sys [2009-03-20 14976]
R3 ss_bmdm;SAMSUNG USB Mobile Modem;c:\windows\system32\DRIVERS\ss_bmdm.sys [2009-03-20 121856]
S0 hotcore3;hc3ServiceName;c:\windows\system32\DRIVERS\hotcore3.sys [2010-01-26 40560]
S0 PCTCore;PCTools KDS;c:\windows\system32\drivers\PCTCore.sys [2010-03-29 218592]
S2 AAV UpdateService;AAV UpdateService;c:\program files\Akademische Arbeitsgemeinschaft\AAVUpdateManager\aavus.exe [2008-10-24 128296]
S2 AdobeActiveFileMonitor7.0;Adobe Active File Monitor V7;c:\program files\Adobe\Photoshop Elements 7.0\PhotoshopElementsFileAgent.exe [2008-09-16 169312]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [2010-02-03 172032]
S2 AntiVirSchedulerService;Avira AntiVir Planer;c:\program files\Avira\AntiVir Desktop\sched.exe [2009-05-13 108289]
S2 FsUsbExService;FsUsbExService;c:\windows\system32\FsUsbExService.Exe [2009-03-31 233472]
S2 TeamViewer5;TeamViewer 5;c:\program files\TeamViewer\Version5\TeamViewer_Service.exe [2010-04-16 173352]
S3 amdkmdag;amdkmdag;c:\windows\system32\DRIVERS\atipmdag.sys [2010-02-03 5313536]
S3 amdkmdap;amdkmdap;c:\windows\system32\DRIVERS\atikmpag.sys [2010-02-03 150016]
S3 CT20XUT.SYS;CT20XUT.SYS;c:\windows\System32\drivers\CT20XUT.SYS [2009-06-04 171032]
S3 CTEXFIFX.SYS;CTEXFIFX.SYS;c:\windows\System32\drivers\CTEXFIFX.SYS [2009-06-04 1324056]
S3 CTHWIUT.SYS;CTHWIUT.SYS;c:\windows\System32\drivers\CTHWIUT.SYS [2009-06-04 72728]
S3 FsUsbExDisk;FsUsbExDisk;c:\windows\system32\FsUsbExDisk.SYS [2009-03-31 36608]
S3 teamviewervpn;TeamViewer VPN Adapter;c:\windows\system32\DRIVERS\teamviewervpn.sys [2010-03-11 25088]


--- Andere Dienste/Treiber im Speicher ---

*NewlyCreated* - FSUSBEXDISK
.
Inhalt des "geplante Tasks" Ordners

2010-07-13 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2010-03-15 06:07]

2010-07-13 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2010-03-15 06:07]
.
.
------- Zusätzlicher Suchlauf -------
.
IE: Nach Microsoft E&xel exportieren - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000
LSP: c:\program files\Common Files\PC Tools\Lsp\PCTLsp.dll
FF - ProfilePath - c:\users\kuecho\AppData\Roaming\Mozilla\Firefox\Profiles\oxva2ztn.default\
FF - prefs.js: browser.startup.homepage - hxxp://news.google.de/nwshp?client=firefox-a&rls=org.mozilla:de:official&hl=de&tab=wn
FF - prefs.js: network.proxy.type - 0
FF - component: c:\users\kuecho\AppData\Roaming\Mozilla\Firefox\Profiles\oxva2ztn.default\extensions\fb_add_on@avm.de\components\FB_AddOn.dll
FF - plugin: c:\program files\Canon\Easy-PhotoPrint EX\NPEZFFPI.DLL
FF - plugin: c:\program files\Google\Google Earth\plugin\npgeplugin.dll
FF - plugin: c:\program files\Google\Update\1.2.183.29\npGoogleOneClick8.dll
FF - plugin: c:\program files\Mozilla Firefox\plugins\npwachk.dll

---- FIREFOX Richtlinien ----
c:\program files\Mozilla Firefox\greprefs\all.js - pref("ui.use_native_colors", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.lu", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.nu", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.nz", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgberp4a5d4ar", true); 
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--p1ai", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgbayh7gpa", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.tel", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.auth.force-generic-ntlm", false);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.proxy.type",                  5);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("dom.ipc.plugins.timeoutSecs", 45);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("svg.smil.enabled", false);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("accelerometer.enabled", true);
c:\program files\Mozilla Firefox\greprefs\security-prefs.js - pref("security.ssl.allow_unrestricted_renego_everywhere__temporarily_available_pref", true);
c:\program files\Mozilla Firefox\greprefs\security-prefs.js - pref("security.ssl.renego_unrestricted_hosts", "");
c:\program files\Mozilla Firefox\greprefs\security-prefs.js - pref("security.ssl.treat_unsafe_negotiation_as_broken", false);
c:\program files\Mozilla Firefox\greprefs\security-prefs.js - pref("security.ssl.require_safe_negotiation",  false);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("extensions.{972ce4c6-7e08-4474-a285-3208198ce6fd}.name", "chrome://browser/locale/browser.properties");
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("extensions.{972ce4c6-7e08-4474-a285-3208198ce6fd}.description", "chrome://browser/locale/browser.properties");
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("plugins.update.notifyUser", false);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("dom.ipc.plugins.enabled.nptest.dll", true);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("dom.ipc.plugins.enabled.npswf32.dll", true);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("dom.ipc.plugins.enabled.npctrl.dll", true);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("dom.ipc.plugins.enabled.npqtplugin.dll", true);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("dom.ipc.plugins.enabled", false);
.
.
--------------------- Gesperrte Registrierungsschluessel ---------------------

[HKEY_USERS\S-1-5-21-211803134-2689144973-1752860366-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.032\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Foto-Manager 2009.032"

[HKEY_USERS\S-1-5-21-211803134-2689144973-1752860366-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.abr\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Foto-Manager 2009.abr"

[HKEY_USERS\S-1-5-21-211803134-2689144973-1752860366-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.ani\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Foto-Manager 2009.ani"

[HKEY_USERS\S-1-5-21-211803134-2689144973-1752860366-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.apd\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Foto-Manager 2009.apd"

[HKEY_USERS\S-1-5-21-211803134-2689144973-1752860366-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.arw\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Foto-Manager 2009.arw"

[HKEY_USERS\S-1-5-21-211803134-2689144973-1752860366-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.bay\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Foto-Manager 2009.bay"

[HKEY_USERS\S-1-5-21-211803134-2689144973-1752860366-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.bmp\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Foto-Manager 2009.bmp"

[HKEY_USERS\S-1-5-21-211803134-2689144973-1752860366-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.bw\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Foto-Manager 2009.bw"

[HKEY_USERS\S-1-5-21-211803134-2689144973-1752860366-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.cr2\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Foto-Manager 2009.cr2"

[HKEY_USERS\S-1-5-21-211803134-2689144973-1752860366-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.crw\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Foto-Manager 2009.crw"

[HKEY_USERS\S-1-5-21-211803134-2689144973-1752860366-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.cs1\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Foto-Manager 2009.cs1"

[HKEY_USERS\S-1-5-21-211803134-2689144973-1752860366-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.cur\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Foto-Manager 2009.cur"

[HKEY_USERS\S-1-5-21-211803134-2689144973-1752860366-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.dcr\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Foto-Manager 2009.dcr"

[HKEY_USERS\S-1-5-21-211803134-2689144973-1752860366-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.dcx\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Foto-Manager 2009.dcx"

[HKEY_USERS\S-1-5-21-211803134-2689144973-1752860366-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.dib\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Foto-Manager 2009.dib"

[HKEY_USERS\S-1-5-21-211803134-2689144973-1752860366-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.djv\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Foto-Manager 2009.djv"

[HKEY_USERS\S-1-5-21-211803134-2689144973-1752860366-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.djvu\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Foto-Manager 2009.djvu"

[HKEY_USERS\S-1-5-21-211803134-2689144973-1752860366-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.dng\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Foto-Manager 2009.dng"

[HKEY_USERS\S-1-5-21-211803134-2689144973-1752860366-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.emf\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Foto-Manager 2009.emf"

[HKEY_USERS\S-1-5-21-211803134-2689144973-1752860366-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.eps\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Foto-Manager 2009.eps"

[HKEY_USERS\S-1-5-21-211803134-2689144973-1752860366-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.erf\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Foto-Manager 2009.erf"

[HKEY_USERS\S-1-5-21-211803134-2689144973-1752860366-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.fff\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Foto-Manager 2009.fff"

[HKEY_USERS\S-1-5-21-211803134-2689144973-1752860366-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.fpx\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Foto-Manager 2009.fpx"

[HKEY_USERS\S-1-5-21-211803134-2689144973-1752860366-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.gif\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Foto-Manager 2009.gif"

[HKEY_USERS\S-1-5-21-211803134-2689144973-1752860366-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.hdr\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Foto-Manager 2009.hdr"

[HKEY_USERS\S-1-5-21-211803134-2689144973-1752860366-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.icl\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Foto-Manager 2009.icl"

[HKEY_USERS\S-1-5-21-211803134-2689144973-1752860366-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.icn\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Foto-Manager 2009.icn"

[HKEY_USERS\S-1-5-21-211803134-2689144973-1752860366-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.ico\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Foto-Manager 2009.ico"

[HKEY_USERS\S-1-5-21-211803134-2689144973-1752860366-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.iff\UserChoice]
@Denied: (2) (S-1-5-21-211803134-2689144973-1752860366-1001)
@Denied: (2) (LocalSystem)
"Progid"="Winamp.File.iff"

[HKEY_USERS\S-1-5-21-211803134-2689144973-1752860366-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.ilbm\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Foto-Manager 2009.ilbm"

[HKEY_USERS\S-1-5-21-211803134-2689144973-1752860366-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.int\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Foto-Manager 2009.int"

[HKEY_USERS\S-1-5-21-211803134-2689144973-1752860366-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.inta\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Foto-Manager 2009.inta"

[HKEY_USERS\S-1-5-21-211803134-2689144973-1752860366-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.iw4\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Foto-Manager 2009.iw4"

[HKEY_USERS\S-1-5-21-211803134-2689144973-1752860366-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.j2c\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Foto-Manager 2009.j2c"

[HKEY_USERS\S-1-5-21-211803134-2689144973-1752860366-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.j2k\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Foto-Manager 2009.j2k"

[HKEY_USERS\S-1-5-21-211803134-2689144973-1752860366-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.jbr\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Foto-Manager 2009.jbr"

[HKEY_USERS\S-1-5-21-211803134-2689144973-1752860366-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.jfif\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Foto-Manager 2009.jfif"

[HKEY_USERS\S-1-5-21-211803134-2689144973-1752860366-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.jif\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Foto-Manager 2009.jif"

[HKEY_USERS\S-1-5-21-211803134-2689144973-1752860366-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.jp2\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Foto-Manager 2009.jp2"

[HKEY_USERS\S-1-5-21-211803134-2689144973-1752860366-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.jpc\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Foto-Manager 2009.jpc"

[HKEY_USERS\S-1-5-21-211803134-2689144973-1752860366-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.jpe\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Foto-Manager 2009.jpe"

[HKEY_USERS\S-1-5-21-211803134-2689144973-1752860366-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.jpeg\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Foto-Manager 2009.jpeg"

[HKEY_USERS\S-1-5-21-211803134-2689144973-1752860366-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.jpg\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Foto-Manager 2009.jpg"

[HKEY_USERS\S-1-5-21-211803134-2689144973-1752860366-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.jpk\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Foto-Manager 2009.jpk"

[HKEY_USERS\S-1-5-21-211803134-2689144973-1752860366-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.jpx\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Foto-Manager 2009.jpx"

[HKEY_USERS\S-1-5-21-211803134-2689144973-1752860366-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.kdc\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Foto-Manager 2009.kdc"

[HKEY_USERS\S-1-5-21-211803134-2689144973-1752860366-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.lbm\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Foto-Manager 2009.lbm"

[HKEY_USERS\S-1-5-21-211803134-2689144973-1752860366-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.mef\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Foto-Manager 2009.mef"

[HKEY_USERS\S-1-5-21-211803134-2689144973-1752860366-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.mos\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Foto-Manager 2009.mos"

[HKEY_USERS\S-1-5-21-211803134-2689144973-1752860366-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.mrw\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Foto-Manager 2009.mrw"

[HKEY_USERS\S-1-5-21-211803134-2689144973-1752860366-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.nef\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Foto-Manager 2009.nef"

[HKEY_USERS\S-1-5-21-211803134-2689144973-1752860366-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.orf\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Foto-Manager 2009.orf"

[HKEY_USERS\S-1-5-21-211803134-2689144973-1752860366-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.pbm\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Foto-Manager 2009.pbm"

[HKEY_USERS\S-1-5-21-211803134-2689144973-1752860366-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.pbr\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Foto-Manager 2009.pbr"

[HKEY_USERS\S-1-5-21-211803134-2689144973-1752860366-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.pcd\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Foto-Manager 2009.pcd"

[HKEY_USERS\S-1-5-21-211803134-2689144973-1752860366-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.pct\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Foto-Manager 2009.pct"

[HKEY_USERS\S-1-5-21-211803134-2689144973-1752860366-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.pcx\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Foto-Manager 2009.pcx"

[HKEY_USERS\S-1-5-21-211803134-2689144973-1752860366-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.pef\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Foto-Manager 2009.pef"

[HKEY_USERS\S-1-5-21-211803134-2689144973-1752860366-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.pgm\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Foto-Manager 2009.pgm"

[HKEY_USERS\S-1-5-21-211803134-2689144973-1752860366-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.pic\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Foto-Manager 2009.pic"

[HKEY_USERS\S-1-5-21-211803134-2689144973-1752860366-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.pict\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Foto-Manager 2009.pict"

[HKEY_USERS\S-1-5-21-211803134-2689144973-1752860366-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.pix\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Foto-Manager 2009.pix"

[HKEY_USERS\S-1-5-21-211803134-2689144973-1752860366-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.png\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Foto-Manager 2009.png"

[HKEY_USERS\S-1-5-21-211803134-2689144973-1752860366-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.ppm\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Foto-Manager 2009.ppm"

[HKEY_USERS\S-1-5-21-211803134-2689144973-1752860366-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.psd\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Foto-Manager 2009.psd"

[HKEY_USERS\S-1-5-21-211803134-2689144973-1752860366-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.psp\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Foto-Manager 2009.psp"

[HKEY_USERS\S-1-5-21-211803134-2689144973-1752860366-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.pspbrush\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Foto-Manager 2009.pspbrush"

[HKEY_USERS\S-1-5-21-211803134-2689144973-1752860366-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.pspimage\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Foto-Manager 2009.pspimage"

[HKEY_USERS\S-1-5-21-211803134-2689144973-1752860366-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.raf\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Foto-Manager 2009.raf"

[HKEY_USERS\S-1-5-21-211803134-2689144973-1752860366-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.ras\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Foto-Manager 2009.ras"

[HKEY_USERS\S-1-5-21-211803134-2689144973-1752860366-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.raw\UserChoice]
@Denied: (2) (S-1-5-21-211803134-2689144973-1752860366-1001)
@Denied: (2) (LocalSystem)
"Progid"="Winamp.File.raw"

[HKEY_USERS\S-1-5-21-211803134-2689144973-1752860366-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.rgb\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Foto-Manager 2009.rgb"

[HKEY_USERS\S-1-5-21-211803134-2689144973-1752860366-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.rgba\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Foto-Manager 2009.rgba"

[HKEY_USERS\S-1-5-21-211803134-2689144973-1752860366-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.rle\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Foto-Manager 2009.rle"

[HKEY_USERS\S-1-5-21-211803134-2689144973-1752860366-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.rsb\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Foto-Manager 2009.rsb"

[HKEY_USERS\S-1-5-21-211803134-2689144973-1752860366-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.rw2\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Foto-Manager 2009.rw2"

[HKEY_USERS\S-1-5-21-211803134-2689144973-1752860366-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.rwl\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Foto-Manager 2009.rwl"

[HKEY_USERS\S-1-5-21-211803134-2689144973-1752860366-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.sgi\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Foto-Manager 2009.sgi"

[HKEY_USERS\S-1-5-21-211803134-2689144973-1752860366-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.sr2\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Foto-Manager 2009.sr2"

[HKEY_USERS\S-1-5-21-211803134-2689144973-1752860366-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.srf\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Foto-Manager 2009.srf"

[HKEY_USERS\S-1-5-21-211803134-2689144973-1752860366-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.tga\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Foto-Manager 2009.tga"

[HKEY_USERS\S-1-5-21-211803134-2689144973-1752860366-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.thm\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Foto-Manager 2009.thm"

[HKEY_USERS\S-1-5-21-211803134-2689144973-1752860366-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.tif\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Foto-Manager 2009.tif"

[HKEY_USERS\S-1-5-21-211803134-2689144973-1752860366-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.tiff\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Foto-Manager 2009.tiff"

[HKEY_USERS\S-1-5-21-211803134-2689144973-1752860366-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.ttc\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Foto-Manager 2009.ttc"

[HKEY_USERS\S-1-5-21-211803134-2689144973-1752860366-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.ttf\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Foto-Manager 2009.ttf"

[HKEY_USERS\S-1-5-21-211803134-2689144973-1752860366-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.v11o\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Foto-Manager 2009.v11o"

[HKEY_USERS\S-1-5-21-211803134-2689144973-1752860366-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.v11p\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Foto-Manager 2009.v11p"

[HKEY_USERS\S-1-5-21-211803134-2689144973-1752860366-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.v11pf\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Foto-Manager 2009.v11pf"

[HKEY_USERS\S-1-5-21-211803134-2689144973-1752860366-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.wbm\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Foto-Manager 2009.wbm"

[HKEY_USERS\S-1-5-21-211803134-2689144973-1752860366-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.wbmp\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Foto-Manager 2009.wbmp"

[HKEY_USERS\S-1-5-21-211803134-2689144973-1752860366-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.wmf\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Foto-Manager 2009.wmf"

[HKEY_USERS\S-1-5-21-211803134-2689144973-1752860366-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.xbm\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Foto-Manager 2009.xbm"

[HKEY_USERS\S-1-5-21-211803134-2689144973-1752860366-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.xif\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Foto-Manager 2009.xif"

[HKEY_USERS\S-1-5-21-211803134-2689144973-1752860366-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.xmp\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Foto-Manager 2009.xmp"

[HKEY_USERS\S-1-5-21-211803134-2689144973-1752860366-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.xpm\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Foto-Manager 2009.xpm"

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0002\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Zeit der Fertigstellung: 2010-07-13  22:47:25
ComboFix-quarantined-files.txt  2010-07-13 20:47
ComboFix2.txt  2010-07-13 18:04

Vor Suchlauf: 16 Verzeichnis(se), 57.108.393.984 Bytes frei
Nach Suchlauf: 17 Verzeichnis(se), 57.056.931.840 Bytes frei

- - End Of File - - E2698DC43A2A070B2E9CA9CCD5FADE2A[/INDENT]

--- --- ---

AV Security Suite - Bitte um Auswertung des RSIT Logfiles

Log-Analyse und Auswertung: AV Security Suite - Bitte um Auswertung des RSIT Logfiles

AV Security Suite - Bitte um Auswertung des RSIT Logfiles

Ähnliche Themen: AV Security Suite - Bitte um Auswertung des RSIT Logfiles