| bugbugbug | 04.11.2010 22:09 |
Hier die 2 OTL-Logs:
OTL.txtOTL Logfile: Code:
OTL logfile created on: 04.11.2010 21:51:15 - Run 1
OTL by OldTimer - Version 3.2.17.2 Folder = C:\Users\admin\Desktop
64bit-Windows Vista Ultimate Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18975)
Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy
4,00 Gb Total Physical Memory | 2,00 Gb Available Physical Memory | 55,00% Memory free
8,00 Gb Paging File | 6,00 Gb Available in Paging File | 74,00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 78,12 Gb Total Space | 8,71 Gb Free Space | 11,15% Space Free | Partition Type: NTFS
Drive D: | 154,76 Gb Total Space | 109,14 Gb Free Space | 70,53% Space Free | Partition Type: NTFS
Computer Name: NOTEBOOK | User Name: admin | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Processes (SafeList) ==========
PRC - C:\Users\admin\Desktop\OTL.exe (OldTimer Tools)
PRC - C:\Program Files (x86)\Emsisoft Anti-Malware\a2service.exe (Emsi Software GmbH)
PRC - C:\Program Files (x86)\Lavasoft\Ad-Aware\AAWService.exe (Lavasoft)
PRC - C:\Program Files (x86)\Lavasoft\Ad-Aware\AAWTray.exe (Lavasoft)
PRC - C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe (Avira GmbH)
PRC - C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe (Avira GmbH)
PRC - C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe (Avira GmbH)
PRC - C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation)
PRC - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe (Malwarebytes Corporation)
PRC - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation)
PRC - C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe (MAGIX AG)
PRC - C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe (Safer Networking Ltd.)
PRC - C:\Program Files (x86)\Hotkey_Driver\HotKeyDriver.exe ()
========== Modules (SafeList) ==========
MOD - C:\Users\admin\Desktop\OTL.exe (OldTimer Tools)
MOD - C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6002.18305_none_5cb72f2a088b0ed3\comctl32.dll (Microsoft Corporation)
MOD - C:\Program Files (x86)\Emsisoft Anti-Malware\a2hooks32.dll (Emsi Software GmbH)
========== Win32 Services (SafeList) ==========
SRV:64bit: - (KMService) -- C:\Windows\SysNative\srvany.exe File not found
SRV:64bit: - (UxTuneUp) -- C:\Windows\SysNative\uxtuneup.dll (TuneUp Software)
SRV:64bit: - (FLEXnet Licensing Service 64) -- C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe (Macrovision Europe Ltd.)
SRV:64bit: - (AppMgmt) -- C:\Windows\SysNative\appmgmts.dll (Microsoft Corporation)
SRV:64bit: - (StkSSrv) -- C:\Windows\SysNative\StkCSrv.exe (Syntek America Inc.)
SRV - (a2AntiMalware) -- C:\Program Files (x86)\Emsisoft Anti-Malware\a2service.exe (Emsi Software GmbH)
SRV - (Lavasoft Ad-Aware Service) -- C:\Program Files (x86)\Lavasoft\Ad-Aware\AAWService.exe (Lavasoft)
SRV - (AntiVirService) -- C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe (Avira GmbH)
SRV - (AntiVirSchedulerService) -- C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe (Avira GmbH)
SRV - (TuneUp.UtilitiesSvc) -- C:\Program Files (x86)\TuneUp Utilities 2011\TuneUpUtilitiesService64.exe (TuneUp Software)
SRV - (UxTuneUp) -- C:\Windows\SysWOW64\uxtuneup.dll (TuneUp Software)
SRV - (KMService) -- C:\Windows\SysWOW64\srvany.exe ()
SRV - (CoDeSys ServiceControl) -- C:\Program Files (x86)\3S CoDeSys\GatewayPLC\ServiceControl.exe (3S-Smart Software Solutions GmbH)
SRV - (CoDeSys Gateway V3) -- C:\Program Files (x86)\3S CoDeSys\GatewayPLC\GatewayService.exe (3S-Smart Software Solutions GmbH)
SRV - (CoDeSys SP Win V3) -- C:\Program Files (x86)\3S CoDeSys\GatewayPLC\CoDeSysSPService.exe (3S-Smart Software Solutions GmbH)
SRV - (MBAMService) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe (Malwarebytes Corporation)
SRV - (clr_optimization_v4.0.30319_32) -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe (Microsoft Corporation)
SRV - (RTService) -- C:\Program Files (x86)\CoDeSys SP RTE\RTService.exe (3S-Smart Software Solutions GmbH)
SRV - (Paragon System Backup Dienst) -- C:\Program Files (x86)\Paragon Software\Paragon Backup and Recovery 10 Suite\program\dbhservice.exe (Paragon Software Group)
SRV - (clr_optimization_v2.0.50727_32) -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe (Microsoft Corporation)
SRV - (Fabs) -- C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe (MAGIX AG)
SRV - (SBSDWSCService) -- C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe (Safer Networking Ltd.)
SRV - (UPnPService) -- C:\Program Files (x86)\Common Files\MAGIX Shared\UPnPService\UPnPService.exe (Magix AG)
SRV - (FirebirdServerMAGIXInstance) -- C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\fbserver.exe (MAGIX®)
SRV - (LkCitadelServer) -- C:\Windows\SysWOW64\lkcitdl.exe (National Instruments, Inc.)
SRV - (NIDomainService) -- C:\Program Files (x86)\National Instruments\Shared\Security\nidmsrv.exe (National Instruments Corporation)
SRV - (lkTimeSync) -- C:\Windows\SysWOW64\lktsrv.exe (National Instruments Corporation)
SRV - (lkClassAds) -- C:\Windows\SysWOW64\lkads.exe (National Instruments Corporation)
SRV - (niSvcLoc) -- C:\Windows\SysWOW64\nisvcloc.exe (National Instruments Corp.)
SRV - (NILM License Manager) -- C:\Program Files (x86)\National Instruments\Shared\License Manager\Bin\lmgrd.exe (Macrovision Corporation)
========== Driver Services (SafeList) ==========
DRV:64bit: - (VcommMgr) -- C:\Windows\SysNative\Drivers\VcommMgr.sys File not found
DRV:64bit: - (VComm) -- C:\Windows\SysNative\DRIVERS\VComm.sys File not found
DRV:64bit: - (NwlnkFwd) -- C:\Windows\SysNative\DRIVERS\nwlnkfwd.sys File not found
DRV:64bit: - (NwlnkFlt) -- C:\Windows\SysNative\DRIVERS\nwlnkflt.sys File not found
DRV:64bit: - (LVPr2M64) -- C:\Windows\SysNative\DRIVERS\LVPr2M64.sys File not found
DRV:64bit: - (IpInIp) -- C:\Windows\SysNative\DRIVERS\ipinip.sys File not found
DRV:64bit: - (Hardlock) -- C:\Windows\SysNative\drivers\hardlock.sys File not found
DRV:64bit: - (GenericMount) -- C:\Windows\SysNative\DRIVERS\GenericMount.sys File not found
DRV:64bit: - (BTHidMgr) -- C:\Windows\SysNative\Drivers\BTHidMgr.sys File not found
DRV:64bit: - (BTHidEnum) -- C:\Windows\SysNative\Drivers\vbtenum.sys File not found
DRV:64bit: - (BT) -- C:\Windows\SysNative\DRIVERS\btnetdrv.sys File not found
DRV:64bit: - (avgntflt) -- C:\Windows\SysNative\DRIVERS\avgntflt.sys (Avira GmbH)
DRV:64bit: - (Lbd) -- C:\Windows\SysNative\DRIVERS\Lbd.sys (Lavasoft AB)
DRV:64bit: - (LVUVC64) Logitech Webcam 200(UVC) -- C:\Windows\SysNative\DRIVERS\lvuvc64.sys (Logitech Inc.)
DRV:64bit: - (LVRS64) -- C:\Windows\SysNative\DRIVERS\lvrs64.sys (Logitech Inc.)
DRV:64bit: - (lvpopf64) -- C:\Windows\SysNative\DRIVERS\lvpopf64.sys (Logitech Inc.)
DRV:64bit: - (MBAMProtector) -- C:\Windows\SysNative\drivers\mbam.sys (Malwarebytes Corporation)
DRV:64bit: - (avipbb) -- C:\Windows\SysNative\DRIVERS\avipbb.sys (Avira GmbH)
DRV:64bit: - (hotcore3) -- C:\Windows\SysNative\DRIVERS\hotcore3.sys (Paragon Software Group)
DRV:64bit: - (smserial) -- C:\Windows\SysNative\DRIVERS\smserial.sys (Motorola Inc.)
DRV:64bit: - (WpdUsb) -- C:\Windows\SysNative\DRIVERS\wpdusb.sys (Microsoft Corporation)
DRV:64bit: - (ggsemc) -- C:\Windows\SysNative\DRIVERS\ggsemc.sys (Sony Ericsson Mobile Communications)
DRV:64bit: - (ggflt) -- C:\Windows\SysNative\DRIVERS\ggflt.sys (Sony Ericsson Mobile Communications)
DRV:64bit: - (atksgt) -- C:\Windows\SysNative\DRIVERS\atksgt.sys ()
DRV:64bit: - (lirsgt) -- C:\Windows\SysNative\DRIVERS\lirsgt.sys ()
DRV:64bit: - (GEARAspiWDM) -- C:\Windows\SysNative\DRIVERS\GEARAspiWDM.sys (GEAR Software Inc.)
DRV:64bit: - (sdbus) -- C:\Windows\SysNative\DRIVERS\sdbus.sys (Microsoft Corporation)
DRV:64bit: - (sptd) -- C:\Windows\SysNative\Drivers\sptd.sys ()
DRV:64bit: - (vaxscsi) -- C:\Windows\SysNative\Drivers\vaxscsi.sys (Alcohol Soft Co., Ltd.)
DRV:64bit: - (tbhsd) -- C:\Windows\SysNative\drivers\tbhsd.sys (RapidSolution Software AG)
DRV:64bit: - (ManyCam) -- C:\Windows\SysNative\DRIVERS\ManyCam_x64.sys (ManyCam LLC.)
DRV:64bit: - (MODEMCSA) -- C:\Windows\SysNative\drivers\MODEMCSA.sys (Microsoft Corporation)
DRV:64bit: - (s3017unic) Sony Ericsson Device 3017 USB Ethernet Emulation SEMC3017 (WDM) -- C:\Windows\SysNative\DRIVERS\s3017unic.sys (MCCI Corporation)
DRV:64bit: - (s3017obex) -- C:\Windows\SysNative\DRIVERS\s3017obex.sys (MCCI Corporation)
DRV:64bit: - (s3017nd5) Sony Ericsson Device 3017 USB Ethernet Emulation SEMC3017 (NDIS) -- C:\Windows\SysNative\DRIVERS\s3017nd5.sys (MCCI Corporation)
DRV:64bit: - (s3017mgmt) Sony Ericsson Device 3017 USB WMC Device Management Drivers (WDM) -- C:\Windows\SysNative\DRIVERS\s3017mgmt.sys (MCCI Corporation)
DRV:64bit: - (s3017mdm) -- C:\Windows\SysNative\DRIVERS\s3017mdm.sys (MCCI Corporation)
DRV:64bit: - (s3017mdfl) -- C:\Windows\SysNative\DRIVERS\s3017mdfl.sys (MCCI Corporation)
DRV:64bit: - (s3017bus) Sony Ericsson Device 3017 driver (WDM) -- C:\Windows\SysNative\DRIVERS\s3017bus.sys (MCCI Corporation)
DRV:64bit: - (mod7700) -- C:\Windows\SysNative\Drivers\dvb7700all.sys (DiBcom)
DRV:64bit: - (EMSCR) -- C:\Windows\SysNative\DRIVERS\EMS7SK.sys (ENE Technology Inc.)
DRV:64bit: - (ESDCR) -- C:\Windows\SysNative\DRIVERS\ESD7SK.sys (ENE Technology Inc.)
DRV:64bit: - (StkCMini) -- C:\Windows\SysNative\Drivers\StkCMini.sys (Syntek)
DRV:64bit: - (itecir) -- C:\Windows\SysNative\DRIVERS\itecir.sys (Windows (R) Codename Longhorn DDK provider)
DRV:64bit: - (RTL8169) -- C:\Windows\SysNative\DRIVERS\Rtlh64.sys (Realtek Corporation )
DRV:64bit: - (NETw4v64) Intel(R) -- C:\Windows\SysNative\DRIVERS\NETw4v64.sys (Intel Corporation)
DRV:64bit: - (SynTP) -- C:\Windows\SysNative\DRIVERS\SynTP.sys (Synaptics, Inc.)
DRV:64bit: - (Ntfs) -- C:\Windows\SysNative\Wbem\ntfs.mof ()
DRV - (Lavasoft Kernexplorer) -- C:\Program Files (x86)\Lavasoft\Ad-Aware\kernexplorer64.sys ()
DRV - (TuneUpUtilitiesDrv) -- C:\Program Files (x86)\TuneUp Utilities 2011\TuneUpUtilitiesDriver64.sys (TuneUp Software)
DRV - (a2acc) -- C:\Program Files (x86)\Emsisoft Anti-Malware\a2accx64.sys (Emsi Software GmbH)
DRV - (a2injectiondriver) -- C:\Program Files (x86)\Emsisoft Anti-Malware\a2dix64.sys (Emsi Software GmbH)
DRV - (WinRing0_1_2_0) -- C:\Users\admin\AppData\Local\Microsoft\Windows Sidebar\Gadgets\IntelCoreSeries21.gadget\WinRing0x64.sys (OpenLibSys.org)
DRV - (a2util) -- C:\Program Files (x86)\Emsisoft Anti-Malware\a2util64.sys (Emsi Software GmbH)
DRV - (3SRTE) -- C:\Windows\SysWow64\drivers\3SRTE.sys (3S - Smart Software Solutions GmbH)
DRV - (RTIOdrvKuhnkePBM) -- C:\Windows\SysWow64\drivers\RTIOdrvKuhnkePBM.sys (3s)
DRV - (RTIOdrvSJA) -- C:\Windows\SysWow64\drivers\RTIOdrvSJA.sys (3s)
DRV - (ibpcimpm) -- C:\Windows\SysWow64\drivers\ibpcimpm.sys (3s)
DRV - (RTIOdrvHMS) -- C:\Windows\SysWow64\drivers\RTIOdrvHMS.sys (3s)
DRV - (RTIOdrvHilscherDPM) -- C:\Windows\SysWow64\drivers\RTIOdrvHilscherDPM.sys (3s)
DRV - (RTIOdrvFC310x) -- C:\Windows\SysWow64\drivers\RTIOdrvFC310x.sys (3s)
DRV - (RTIOdrvDAMP) -- C:\Windows\SysWow64\drivers\RTIOdrvDAMP.sys (3s)
DRV - (RTIOdrvCP5613) -- C:\Windows\SysWow64\drivers\RTIOdrvCP5613.sys (3s)
DRV - (RTIOdrvAutomata) -- C:\Windows\SysWow64\drivers\RTIOdrvAutomata.sys (3s)
DRV - (RTIOdrvApplicom) -- C:\Windows\SysWow64\drivers\RTIOdrvApplicom.sys (3s)
DRV - (nnrnstdi) -- C:\Windows\SysWow64\drivers\nnrnstdi.sys (The Nielsen Company)
DRV - (speedfan) -- C:\Windows\SysWOW64\speedfan.sys (Windows (R) Server 2003 DDK provider)
DRV - (Hardlock) -- C:\Windows\SysWOW64\drivers\hardlock.sys (Aladdin Knowledge Systems)
DRV - (MarxDev2) -- C:\Windows\SysWow64\drivers\marxdev2.sys ()
DRV - (MarxDev1) -- C:\Windows\SysWow64\drivers\marxdev1.sys ()
DRV - (MarxDev3) -- C:\Windows\SysWow64\drivers\marxdev3.sys ()
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.msn.com/
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://de.msn.com/?ocid=iehp
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 46 FE 40 F9 6E FB CA 01 [binary data]
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,StartPageCache = 2
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
========== FireFox ==========
FF - prefs.js..browser.search.defaultengine: "Ask.com"
FF - prefs.js..browser.search.defaultenginename: "ICQ Search"
FF - prefs.js..browser.search.defaulturl: "hxxp://www.google.com/search?lr=&ie=UTF-8&oe=UTF-8&q="
FF - prefs.js..browser.search.order.1: "Ask.com"
FF - prefs.js..browser.search.selectedEngine: "Wikipedia (de)"
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: "www.web.de"
FF - prefs.js..extensions.enabledItems: {71328583-3CA7-4809-B4BA-570A85818FBB}:0.6.3
FF - prefs.js..extensions.enabledItems: {DDC359D1-844A-42a7-9AA1-88A850A938A8}:1.1.10
FF - prefs.js..extensions.enabledItems: {df4e4df5-5cb7-46b0-9aef-6c784c3249f8}:1.0.8
FF - prefs.js..extensions.enabledItems: {e4a8a97b-f2ed-450b-b12d-ee082ba24781}:0.8.20100408.6
FF - prefs.js..extensions.enabledItems: personas@christopher.beard:1.6.1
FF - prefs.js..extensions.enabledItems: {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}:1.3.1
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}:6.0.20
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}:6.0.21
FF - prefs.js..extensions.enabledItems: {7694c49c-9fbd-11dc-8314-0800200c9a66}:3.6.6
FF - prefs.js..keyword.URL: "hxxp://search.icq.com/search/afe_results.php?ch_id=afex&tb_ver=1.1.7&q="
FF - prefs.js..network.proxy.http: "localhost "
FF - prefs.js..network.proxy.http_port: 8800
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.12\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2010.10.28 19:33:14 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.12\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins [2010.10.28 19:33:14 | 000,000,000 | ---D | M]
[2008.10.19 16:00:52 | 000,000,000 | ---D | M] -- C:\Users\admin\AppData\Roaming\mozilla\Extensions
[2010.11.04 10:58:57 | 000,000,000 | ---D | M] -- C:\Users\admin\AppData\Roaming\mozilla\Firefox\Profiles\rxnl1cf4.default\extensions
[2010.04.28 17:02:43 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Users\admin\AppData\Roaming\mozilla\Firefox\Profiles\rxnl1cf4.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2010.09.09 20:20:34 | 000,000,000 | ---D | M] (Google Toolbar for Firefox) -- C:\Users\admin\AppData\Roaming\mozilla\Firefox\Profiles\rxnl1cf4.default\extensions\{3112ca9c-de6d-4884-a869-9855de68056c}
[2010.01.22 20:57:46 | 000,000,000 | ---D | M] (CacheViewer) -- C:\Users\admin\AppData\Roaming\mozilla\Firefox\Profiles\rxnl1cf4.default\extensions\{71328583-3CA7-4809-B4BA-570A85818FBB}
[2010.08.12 21:56:37 | 000,000,000 | ---D | M] (Aquatint Black) -- C:\Users\admin\AppData\Roaming\mozilla\Firefox\Profiles\rxnl1cf4.default\extensions\{7694c49c-9fbd-11dc-8314-0800200c9a66}
[2010.11.04 10:58:47 | 000,000,000 | ---D | M] (Adblock Plus) -- C:\Users\admin\AppData\Roaming\mozilla\Firefox\Profiles\rxnl1cf4.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}
[2010.05.31 21:45:32 | 000,000,000 | ---D | M] (DownThemAll!) -- C:\Users\admin\AppData\Roaming\mozilla\Firefox\Profiles\rxnl1cf4.default\extensions\{DDC359D1-844A-42a7-9AA1-88A850A938A8}
[2010.02.01 20:23:54 | 000,000,000 | ---D | M] (Fox!Box [de]) -- C:\Users\admin\AppData\Roaming\mozilla\Firefox\Profiles\rxnl1cf4.default\extensions\{df4e4df5-5cb7-46b0-9aef-6c784c3249f8}
[2010.04.10 07:14:39 | 000,000,000 | ---D | M] (Greasemonkey) -- C:\Users\admin\AppData\Roaming\mozilla\Firefox\Profiles\rxnl1cf4.default\extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781}
[2010.09.14 19:08:36 | 000,000,000 | ---D | M] -- C:\Users\admin\AppData\Roaming\mozilla\Firefox\Profiles\rxnl1cf4.default\extensions\personas@christopher.beard
[2010.08.12 21:56:37 | 000,000,000 | ---D | M] (No name found) -- C:\Users\admin\AppData\Roaming\mozilla\Firefox\Profiles\rxnl1cf4.default\extensions\{7694c49c-9fbd-11dc-8314-0800200c9a66}\chrome\mac\mozapps\extensions
[2010.08.12 21:56:37 | 000,000,000 | ---D | M] (No name found) -- C:\Users\admin\AppData\Roaming\mozilla\Firefox\Profiles\rxnl1cf4.default\extensions\{7694c49c-9fbd-11dc-8314-0800200c9a66}\chrome\win\mozapps\extensions
[2010.10.30 21:27:30 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Mozilla Firefox\extensions
[2010.05.14 23:12:55 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}
[2010.08.06 16:53:34 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}
[2008.08.22 13:37:38 | 000,163,840 | ---- | M] (The Nielsen Company) -- C:\Program Files (x86)\Mozilla Firefox\components\nsgkff30_meter3.dll
[2010.07.17 04:00:04 | 000,423,656 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files (x86)\Mozilla Firefox\plugins\npdeployJava1.dll
[2007.02.08 09:48:16 | 000,028,448 | ---- | M] (National Instruments) -- C:\Program Files (x86)\Mozilla Firefox\plugins\NPLV82Win32.dll
[2007.07.24 17:03:42 | 000,023,040 | ---- | M] (National Instruments) -- C:\Program Files (x86)\Mozilla Firefox\plugins\nplv85win32.dll
[2010.07.23 01:48:56 | 000,001,392 | ---- | M] () -- C:\Program Files (x86)\Mozilla Firefox\searchplugins\amazondotcom-de.xml
[2010.07.23 01:48:56 | 000,002,344 | ---- | M] () -- C:\Program Files (x86)\Mozilla Firefox\searchplugins\eBay-de.xml
[2010.07.23 01:48:56 | 000,006,805 | ---- | M] () -- C:\Program Files (x86)\Mozilla Firefox\searchplugins\leo_ende_de.xml
[2010.07.23 01:48:56 | 000,001,178 | ---- | M] () -- C:\Program Files (x86)\Mozilla Firefox\searchplugins\wikipedia-de.xml
[2010.07.23 01:48:56 | 000,001,105 | ---- | M] () -- C:\Program Files (x86)\Mozilla Firefox\searchplugins\yahoo-de.xml
O1 HOSTS File: ([2009.07.18 16:30:31 | 000,317,718 | R--- | M]) - C:\Windows\SysNative\drivers\etc\Hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O1 - Hosts: 127.0.0.1 www.007guard.com
O1 - Hosts: 127.0.0.1 007guard.com
O1 - Hosts: 127.0.0.1 008i.com
O1 - Hosts: 127.0.0.1 www.008k.com
O1 - Hosts: 127.0.0.1 008k.com
O1 - Hosts: 127.0.0.1 www.00hq.com
O1 - Hosts: 127.0.0.1 00hq.com
O1 - Hosts: 10899 more lines...
O2:64bit: - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Programme\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
O2:64bit: - BHO: (Office Document Cache Handler) - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Programme\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
O2 - BHO: (FGCatchUrl) - {2F364306-AA45-47B5-9F9D-39A8B94E7EF7} - C:\Program Files (x86)\FlashGet\jccatch.dll (www.flashget.com)
O2 - BHO: (Spybot-S&D IE Protection) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files (x86)\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
O2 - BHO: (FlashGet GetFlash Class) - {F156768E-81EF-470C-9057-481BA8380DBA} - C:\Program Files (x86)\FlashGet\getflash.dll (www.flashget.com)
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {D4027C7F-154A-4066-A1AD-4243D8127440} - No CLSID value found.
O4:64bit: - HKLM..\Run: [RtHDVCpl] C:\Windows\RAVCpl64.exe (Realtek Semiconductor)
O4:64bit: - HKLM..\Run: [Skytel] C:\Windows\SkyTel.exe (Realtek Semiconductor Corp.)
O4 - HKLM..\Run: [] File not found
O4 - HKLM..\Run: [avgnt] C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe (Avira GmbH)
O4 - HKLM..\Run: [Malwarebytes' Anti-Malware] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation)
O4 - HKCU..\Run: [ALBATTTOOL] C:\Program Files (x86)\AkkuLine.de\AkkuLine Batterie-Tool\AL-Batterie-Tool.exe (AkkuLine.de)
O4 - HKCU..\Run: [WMPNSCFG] C:\Program Files (x86)\Windows Media Player\WMPNSCFG.exe File not found
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutorun = 0
O8:64bit: - Extra context menu item: &Alles mit FlashGet laden - C:\Program Files (x86)\FlashGet\JC_ALL.HTM ()
O8:64bit: - Extra context menu item: &Mit FlashGet laden - C:\Program Files (x86)\FlashGet\JC_LINK.HTM ()
O8:64bit: - Extra context menu item: An OneNote s&enden - C:\Programme\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation)
O8 - Extra context menu item: &Alles mit FlashGet laden - C:\Program Files (x86)\FlashGet\JC_ALL.HTM ()
O8 - Extra context menu item: &Mit FlashGet laden - C:\Program Files (x86)\FlashGet\JC_LINK.HTM ()
O8 - Extra context menu item: An OneNote s&enden - C:\Programme\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation)
O9:64bit: - Extra Button: An OneNote senden - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Programme\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation)
O9:64bit: - Extra 'Tools' menuitem : An OneNote s&enden - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Programme\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation)
O9:64bit: - Extra Button: Verknüpfte &OneNote-Notizen - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Programme\Microsoft Office\Office14\ONBttnIELinkedNotes.dll (Microsoft Corporation)
O9:64bit: - Extra 'Tools' menuitem : Verknüpfte &OneNote-Notizen - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Programme\Microsoft Office\Office14\ONBttnIELinkedNotes.dll (Microsoft Corporation)
O9 - Extra Button: ICQ7.2 - {72EFBFE4-C74F-4187-AEFD-73EA3BE968D6} - C:\Program Files (x86)\ICQ7.2\ICQ.exe (ICQ, LLC.)
O9 - Extra 'Tools' menuitem : ICQ7.2 - {72EFBFE4-C74F-4187-AEFD-73EA3BE968D6} - C:\Program Files (x86)\ICQ7.2\ICQ.exe (ICQ, LLC.)
O9 - Extra Button: FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\Program Files (x86)\FlashGet\flashget.exe (FlashGet.com)
O9 - Extra 'Tools' menuitem : FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\Program Files (x86)\FlashGet\flashget.exe (FlashGet.com)
O9 - Extra 'Tools' menuitem : Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files (x86)\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
O13 - gopher Prefix: missing
O13 - gopher Prefix: missing
O16 - DPF: {162247AF-26A7-44FC-A93A-69506EA244F3} https://maxdomeaccount.1und1.de/presentation/script/HWTest.CAB (HWTest.HWTestControl)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_21-windows-i586.cab (Java Plug-in 1.6.0_21)
O16 - DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} hxxp://fpdownload.macromedia.com/get/flashplayer/current/polarbear/ultrashim.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_21-windows-i586.cab (Java Plug-in 1.6.0_21)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_21-windows-i586.cab (Java Plug-in 1.6.0_21)
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (Reg Error: Key error.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.2.1
O18:64bit: - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Programme\Common Files\Microsoft Shared\Help\hxds.dll (Microsoft Corporation)
O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Filter\text/xml {807573E5-5146-11D5-A672-00B0D022E945} - C:\Programme\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O22:64bit: - SharedTaskScheduler: {E31004D1-A431-41B8-826F-E902F9D95C81} - Windows DreamScene - C:\Windows\SysNative\DreamScene.dll (Microsoft Corporation)
O24 - Desktop WallPaper: C:\Users\admin\AppData\Roaming\Microsoft\Windows Photo Gallery\Hintergrundbild der Windows-Fotogalerie.jpg
O24 - Desktop BackupWallPaper: C:\Users\admin\AppData\Roaming\Microsoft\Windows Photo Gallery\Hintergrundbild der Windows-Fotogalerie.jpg
O28:64bit: - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Programme\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
O32 - HKLM CDRom: AutoRun - 1
O33 - MountPoints2\{664831fe-9baf-11dd-bbc1-0090f5687c0e}\Shell - "" = AutoRun
O33 - MountPoints2\{664831fe-9baf-11dd-bbc1-0090f5687c0e}\Shell\AutoRun\command - "" = G:\LaunchU3.exe -- File not found
O33 - MountPoints2\{fc48d39e-6b0a-11df-8202-842bac919bba}\Shell - "" = AutoRun
O33 - MountPoints2\{fc48d39e-6b0a-11df-8202-842bac919bba}\Shell\AutoRun\command - "" = G:\.\Autorun.exe -- File not found
O33 - MountPoints2\F\Shell - "" = AutoRun
O33 - MountPoints2\F\Shell\AutoRun\command - "" = F:\LaunchU3.exe -- File not found
O34 - HKLM BootExecute: (lsdelete) - File not found
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
========== Files/Folders - Created Within 30 Days ==========
[2010.11.04 21:49:52 | 000,576,000 | ---- | C] (OldTimer Tools) -- C:\Users\admin\Desktop\OTL.exe
[2010.11.04 19:02:24 | 000,034,624 | ---- | C] (TuneUp Software) -- C:\Windows\SysNative\TURegOpt.exe
[2010.11.04 19:02:22 | 000,036,160 | ---- | C] (TuneUp Software) -- C:\Windows\SysNative\uxtuneup.dll
[2010.11.04 19:02:22 | 000,029,504 | ---- | C] (TuneUp Software) -- C:\Windows\SysWow64\uxtuneup.dll
[2010.11.04 19:02:22 | 000,025,920 | ---- | C] (TuneUp Software) -- C:\Windows\SysNative\authuitu.dll
[2010.11.04 19:02:22 | 000,021,312 | ---- | C] (TuneUp Software) -- C:\Windows\SysWow64\authuitu.dll
[2010.11.04 19:02:06 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\TuneUp Utilities 2011
[2010.11.04 19:01:39 | 000,000,000 | -HSD | C] -- C:\ProgramData\{24036256-BFDB-4CD3-BE8A-A3D6160F2E16}
[2010.11.04 17:18:30 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\SimFiles
[2010.11.04 16:44:44 | 000,000,000 | ---D | C] -- C:\Users\admin\AppData\Roaming\Malwarebytes
[2010.11.04 16:44:30 | 000,038,224 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\SysWow64\drivers\mbamswissarmy.sys
[2010.11.04 16:44:29 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2010.11.04 16:44:26 | 000,024,664 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\SysNative\drivers\mbam.sys
[2010.11.04 16:44:26 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware
[2010.11.04 14:15:53 | 000,000,000 | ---D | C] -- C:\Users\admin\Desktop\Flip Capella & Tim Anderson present Club! Vol. 1 - Small Room Side
[2010.11.04 13:57:35 | 000,000,000 | ---D | C] -- C:\Users\admin\AppData\Roaming\EurekaLog
[2010.11.04 13:54:24 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Emsisoft Anti-Malware
[2010.11.04 13:54:24 | 000,000,000 | ---D | C] -- C:\Users\admin\Downloads\Documents\Anti-Malware
[2010.11.04 12:41:24 | 000,000,000 | ---D | C] -- C:\Users\admin\Desktop\Neuer Ordner (2)
[2010.11.04 12:18:02 | 000,069,152 | ---- | C] (Lavasoft AB) -- C:\Windows\SysNative\drivers\Lbd.sys
[2010.11.04 12:12:42 | 000,000,000 | -H-D | C] -- C:\ProgramData\{E961CE1B-C3EA-4882-9F67-F859B555D097}
[2010.11.04 12:12:20 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Lavasoft
[2010.11.04 11:46:41 | 000,000,000 | ---D | C] -- C:\Ecad70D
[2010.11.04 11:46:40 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Borland
[2010.11.03 22:02:14 | 000,000,000 | ---D | C] -- C:\ProgramData\dbg
[2010.11.03 21:56:17 | 000,000,000 | ---D | C] -- C:\Users\admin\Desktop\backups
[2010.11.03 21:52:37 | 000,000,000 | ---D | C] -- C:\Programme\Microsoft Windows Performance Toolkit
[2010.11.03 21:48:41 | 000,000,000 | ---D | C] -- C:\Programme\Debugging Tools for Windows (x64)
[2010.11.03 21:48:30 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Application Verifier
[2010.11.03 21:48:29 | 000,000,000 | ---D | C] -- C:\Programme\Application Verifier (x64)
[2010.11.03 21:43:34 | 000,000,000 | ---D | C] -- C:\Programme\Microsoft SDKs
[2010.11.03 21:39:46 | 000,509,264 | ---- | C] (Microsoft Corporation) -- C:\Users\admin\Desktop\winsdk_web.exe
[2010.11.03 15:24:01 | 000,388,608 | ---- | C] (Trend Micro Inc.) -- C:\Users\admin\Desktop\HijackThis.exe
[2010.11.03 08:13:55 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\AkkuLine.de
[2010.11.02 20:30:11 | 000,000,000 | ---D | C] -- C:\Users\admin\Desktop\Inception.DVDRiP.LD.German.iNTERNAL.XViD-Pleaders
[2010.11.02 20:18:12 | 000,000,000 | ---D | C] -- C:\Users\admin\Desktop\Sorority.Row.Schoen.bis.in.den.Tod.German.AC3.BDRip.XviD-EXQUiSiTE
[2010.11.02 20:15:09 | 000,000,000 | ---D | C] -- C:\Users\admin\Desktop\Risiko - Der schnellste Weg zum Reichtum
[2010.11.02 09:50:06 | 000,000,000 | ---D | C] -- C:\Users\admin\AppData\Roaming\NVIDIA
[2010.11.02 09:31:59 | 000,000,000 | ---D | C] -- C:\ProgramData\Futuremark
[2010.11.02 09:28:34 | 000,000,000 | ---D | C] -- C:\Windows\45235788142C44BE8A4DDDE9A84492E5.TMP
[2010.11.01 23:04:06 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\NVIDIA Corporation
[2010.11.01 23:02:55 | 000,000,000 | ---D | C] -- C:\ProgramData\NVIDIA Corporation
[2010.11.01 23:01:47 | 020,284,008 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvoglv64.dll
[2010.11.01 23:01:47 | 018,597,480 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcompiler.dll
[2010.11.01 23:01:47 | 014,899,816 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvoglv32.dll
[2010.11.01 23:01:47 | 013,019,752 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcompiler.dll
[2010.11.01 23:01:47 | 012,788,840 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvd3dumx.dll
[2010.11.01 23:01:47 | 010,023,528 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvd3dum.dll
[2010.11.01 23:01:47 | 007,491,688 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvwgf2umx.dll
[2010.11.01 23:01:47 | 006,471,784 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcuda.dll
[2010.11.01 23:01:47 | 005,473,896 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvwgf2um.dll
[2010.11.01 23:01:47 | 004,837,480 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcuda.dll
[2010.11.01 23:01:47 | 003,112,552 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcuvid.dll
[2010.11.01 23:01:47 | 002,934,888 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcuvenc.dll
[2010.11.01 23:01:47 | 002,912,360 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcuvid.dll
[2010.11.01 23:01:47 | 002,666,600 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcuvenc.dll
[2010.11.01 23:01:47 | 002,161,256 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvapi64.dll
[2010.11.01 23:01:47 | 001,719,912 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvapi.dll
[2010.11.01 23:01:47 | 001,500,264 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvdispco642050.dll
[2010.11.01 23:01:47 | 001,308,776 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvgenco642030.dll
[2010.11.01 23:01:47 | 000,067,176 | ---- | C] (Khronos Group) -- C:\Windows\SysNative\OpenCL.dll
[2010.11.01 23:01:47 | 000,057,960 | ---- | C] (Khronos Group) -- C:\Windows\SysWow64\OpenCL.dll
[2010.11.01 23:01:47 | 000,011,240 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\drivers\nvBridge.kmd
[2010.11.01 23:01:06 | 000,000,000 | ---D | C] -- C:\Programme\NVIDIA Corporation
[2010.11.01 22:59:46 | 000,000,000 | ---D | C] -- C:\NVIDIA
[2010.11.01 22:49:18 | 167,878,832 | ---- | C] (NVIDIA Corporation) -- C:\Users\admin\Desktop\260.99_notebook_winvista_win7_64bit_international_whql.exe
[2010.11.01 22:47:33 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\SystemRequirementsLab
[2010.11.01 22:47:29 | 000,000,000 | ---D | C] -- C:\Users\admin\SystemRequirementsLab
[2010.11.01 21:35:15 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\NirSoft
[2010.11.01 21:29:45 | 000,000,000 | ---D | C] -- C:\ProgramData\UAB
[2010.11.01 21:29:38 | 000,000,000 | ---D | C] -- C:\Users\admin\AppData\Local\PC_Drivers_Headquarters
[2010.11.01 21:29:24 | 000,000,000 | ---D | C] -- C:\ProgramData\PC Drivers HeadQuarters
[2010.11.01 21:28:16 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\PC Drivers HeadQuarters
[2010.11.01 21:20:04 | 000,466,456 | ---- | C] (Creative Labs) -- C:\Windows\SysNative\wrap_oal.dll
[2010.11.01 21:20:04 | 000,122,904 | ---- | C] (Portions (C) Creative Labs Inc. and NVIDIA Corp.) -- C:\Windows\SysNative\OpenAL32.dll
[2010.11.01 21:20:04 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\OpenAL
[2010.11.01 21:19:04 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Futuremark Shared
[2010.11.01 21:17:44 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Futuremark
[2010.11.01 20:27:54 | 000,000,000 | ---D | C] -- C:\Programme\HashTab Shell Extension
[2010.11.01 18:03:02 | 000,000,000 | ---D | C] -- C:\ProgramData\disk_C
[2010.11.01 18:00:54 | 000,000,000 | ---D | C] -- C:\ProgramData\disk_D
[2010.11.01 16:27:50 | 000,000,000 | ---D | C] -- C:\archdb
[2010.11.01 15:12:34 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\ICQ Password Changer
[2010.11.01 15:10:11 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\ICQ Password Hasher
[2010.11.01 15:05:53 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\PantsOff
[2010.11.01 14:20:22 | 000,000,000 | ---D | C] -- C:\ProgramData\expLauncher
[2010.11.01 12:40:02 | 000,000,000 | ---D | C] -- C:\Users\admin\AppData\Roaming\HD Tune Pro
[2010.11.01 12:39:40 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\HD Tune Pro
[2010.11.01 12:21:48 | 000,000,000 | ---D | C] -- C:\Users\admin\AppData\Local\Abelssoft
[2010.11.01 12:21:45 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\CheckDrive
[2010.11.01 12:15:16 | 000,000,000 | ---D | C] -- C:\archive_db
[2010.11.01 11:59:43 | 000,000,000 | ---D | C] -- C:\ProgramData\Paragon
[2010.11.01 11:59:13 | 000,037,392 | ---- | C] (Paragon Software Group) -- C:\Windows\SysNative\drivers\hotcore3.sys
[2010.11.01 11:59:02 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Paragon Software
[2010.11.01 11:51:25 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Wise Installation Wizard
[2010.11.01 07:42:49 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Windows 7 Upgrade Advisor
[2010.10.31 20:28:06 | 000,000,000 | ---D | C] -- C:\Users\admin\AppData\Local\Symantec_Corporation
[2010.10.31 20:28:06 | 000,000,000 | ---D | C] -- C:\Users\admin\AppData\Roaming\Symantec
[2010.10.31 20:15:57 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Symantec
[2010.10.31 20:12:40 | 000,042,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\WdfLdr.sys
[2010.10.31 20:11:44 | 000,126,312 | ---- | C] (GEAR Software Inc.) -- C:\Windows\SysNative\GEARAspi64.dll
[2010.10.31 20:11:44 | 000,107,368 | ---- | C] (GEAR Software Inc.) -- C:\Windows\SysWow64\GEARAspi.dll
[2010.10.31 20:11:44 | 000,034,152 | ---- | C] (GEAR Software Inc.) -- C:\Windows\SysNative\drivers\GEARAspiWDM.sys
[2010.10.31 20:11:24 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Symantec Shared
[2010.10.31 20:10:58 | 000,000,000 | ---D | C] -- C:\ProgramData\Symantec
[2010.10.31 20:10:58 | 000,000,000 | ---D | C] -- C:\ProgramData\{1C6FDDD8-FC9E-4C12-9FA5-1AAD377097B3}
[2010.10.30 21:27:03 | 000,000,000 | ---D | C] -- C:\ProgramData\ICQ
[2010.10.30 21:26:39 | 000,000,000 | ---D | C] -- C:\Users\admin\AppData\Local\AOL
[2010.10.30 21:26:22 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\ICQ7.2
[2010.10.30 20:07:15 | 000,000,000 | ---D | C] -- C:\Users\admin\Desktop\Gundlagen der Automatisierungs -technik
[2010.10.30 12:42:32 | 000,000,000 | ---D | C] -- C:\Users\admin\AppData\Roaming\Ahead
[2010.10.30 12:39:21 | 000,000,000 | ---D | C] -- C:\Users\admin\AppData\Local\Ahead
[2010.10.30 12:37:43 | 000,000,000 | ---D | C] -- C:\ProgramData\Ahead
[2010.10.30 12:35:57 | 000,000,000 | ---D | C] -- C:\ProgramData\Nero
[2010.10.30 12:35:57 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Nero
[2010.10.30 12:35:57 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Ahead
[2010.10.29 18:11:06 | 000,000,000 | ---D | C] -- C:\Users\admin\Desktop\SPS
[2010.10.27 16:00:24 | 001,927,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\gameux.dll
[2010.10.27 16:00:24 | 001,696,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\gameux.dll
[2010.10.27 16:00:23 | 004,240,384 | ---- | C] (Microsoft) -- C:\Windows\SysWow64\GameUXLegacyGDFs.dll
[2010.10.27 16:00:23 | 000,032,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Apphlpdm.dll
[2010.10.27 16:00:23 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Apphlpdm.dll
[2010.10.27 16:00:22 | 004,240,384 | ---- | C] (Microsoft) -- C:\Windows\SysNative\GameUXLegacyGDFs.dll
[2010.10.23 18:31:42 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Brain Workshop
[2010.10.23 15:06:39 | 000,000,000 | ---D | C] -- C:\Users\admin\AppData\Roaming\Avira
[2010.10.23 15:05:32 | 000,116,568 | ---- | C] (Avira GmbH) -- C:\Windows\SysNative\drivers\avipbb.sys
[2010.10.23 15:05:31 | 000,081,584 | ---- | C] (Avira GmbH) -- C:\Windows\SysNative\drivers\avgntflt.sys
[2010.10.23 15:05:31 | 000,051,992 | ---- | C] (AVIRA GmbH) -- C:\Windows\SysWow64\drivers\avgntdd.sys
[2010.10.23 15:05:31 | 000,017,016 | ---- | C] (AVIRA GmbH) -- C:\Windows\SysWow64\drivers\avgntmgr.sys
[2010.10.22 15:08:42 | 000,000,000 | ---D | C] -- C:\ProgramData\Avira
[2010.10.20 17:57:26 | 000,000,000 | ---D | C] -- C:\Users\admin\Desktop\LF 4.3
[2010.10.16 13:13:46 | 005,901,416 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcpl.dll
[2010.10.16 13:13:26 | 002,590,824 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvsvc64.dll
[2010.10.16 13:13:26 | 000,116,328 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvmctray.dll
[2010.10.16 13:13:24 | 001,881,704 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvsvcr.dll
[2010.10.16 13:13:24 | 000,302,184 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvhotkey.dll
[2010.10.16 13:13:24 | 000,061,032 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvshext.dll
[2010.10.14 13:26:33 | 001,915,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ole32.dll
[2010.10.14 13:26:30 | 000,954,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfc40.dll
[2010.10.14 13:26:29 | 000,954,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfc40u.dll
[2010.10.14 13:26:28 | 000,189,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\t2embed.dll
[2010.10.14 13:26:28 | 000,157,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\t2embed.dll
[2010.10.14 13:26:24 | 000,633,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\comctl32.dll
[2010.10.14 13:26:20 | 000,316,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msshsq.dll
[2010.10.14 13:26:20 | 000,231,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msshsq.dll
[2010.10.14 13:26:06 | 013,426,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wmp.dll
[2010.10.14 13:26:02 | 010,627,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wmp.dll
[2010.10.14 13:25:57 | 008,147,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wmploc.DLL
[2010.10.14 13:25:56 | 008,147,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wmploc.DLL
[2010.10.14 13:25:32 | 000,385,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\html.iec
[2010.10.14 13:25:31 | 000,710,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msfeeds.dll
[2010.10.14 13:25:31 | 000,602,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msfeeds.dll
[2010.10.14 13:25:31 | 000,479,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\html.iec
[2010.10.14 13:25:31 | 000,056,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\licmgr10.dll
[2010.10.14 13:25:31 | 000,043,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\licmgr10.dll
[2010.10.14 13:25:30 | 000,252,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iepeers.dll
[2010.10.14 13:25:30 | 000,096,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mshtmled.dll
[2010.10.14 13:25:30 | 000,066,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmled.dll
[2010.10.14 13:25:29 | 001,538,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\inetcpl.cpl
[2010.10.14 13:25:29 | 000,243,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\occache.dll
[2010.10.14 13:25:29 | 000,219,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieui.dll
[2010.10.14 13:25:29 | 000,077,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iesetup.dll
[2010.10.14 13:25:29 | 000,072,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iernonce.dll
[2010.10.14 13:25:28 | 001,469,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\inetcpl.cpl
[2010.10.14 13:25:28 | 000,206,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\occache.dll
[2010.10.14 13:25:28 | 000,184,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iepeers.dll
[2010.10.14 13:25:28 | 000,164,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieui.dll
[2010.10.14 13:25:28 | 000,162,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieUnatt.exe
[2010.10.14 13:25:28 | 000,133,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieUnatt.exe
[2010.10.14 13:25:28 | 000,132,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iesysprep.dll
[2010.10.14 13:25:28 | 000,109,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iesysprep.dll
[2010.10.14 13:25:27 | 000,173,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ie4uinit.exe
[2010.10.14 13:25:27 | 000,071,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iesetup.dll
[2010.10.14 13:25:27 | 000,070,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ie4uinit.exe
[2010.10.14 13:25:27 | 000,055,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iernonce.dll
[2010.10.14 13:25:27 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msfeedssync.exe
[2010.10.14 13:25:27 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msfeedssync.exe
[2010.10.14 13:25:19 | 000,017,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\netevent.dll
[2010.10.14 13:25:19 | 000,017,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\netevent.dll
[2010.10.14 13:25:19 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sscore.dll
[2010.10.14 13:25:19 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\sscore.dll
[2010.10.14 13:25:06 | 001,090,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wmpmde.dll
[2010.10.14 13:25:06 | 000,867,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wmpmde.dll
[2010.10.13 19:52:56 | 000,527,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_7.dll
[2010.10.13 19:52:56 | 000,518,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_7.dll
[2010.10.13 19:52:56 | 000,077,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAPOFX1_5.dll
[2010.10.13 19:52:56 | 000,074,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAPOFX1_5.dll
[2010.10.13 19:52:53 | 000,239,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_7.dll
[2010.10.13 19:52:53 | 000,176,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_7.dll
[2010.10.13 19:52:50 | 002,526,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_43.dll
[2010.10.13 19:52:50 | 002,106,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_43.dll
[2010.10.13 19:52:49 | 001,907,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dcsx_43.dll
[2010.10.13 19:52:49 | 001,868,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dcsx_43.dll
[2010.10.13 19:52:47 | 000,276,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx11_43.dll
[2010.10.13 19:52:47 | 000,248,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx11_43.dll
[2010.10.13 19:52:46 | 000,511,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_43.dll
[2010.10.13 19:52:46 | 000,470,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_43.dll
[2010.10.13 19:52:45 | 002,401,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DX9_43.dll
[2010.10.13 19:52:45 | 001,998,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_43.dll
[2010.10.13 19:52:44 | 000,530,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_6.dll
[2010.10.13 19:52:44 | 000,528,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_6.dll
[2010.10.13 19:52:44 | 000,078,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAPOFX1_4.dll
[2010.10.13 19:52:44 | 000,074,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAPOFX1_4.dll
[2010.10.13 19:52:42 | 000,238,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_6.dll
[2010.10.13 19:52:42 | 000,176,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_6.dll
[2010.10.13 19:52:41 | 000,024,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\X3DAudio1_7.dll
[2010.10.13 19:52:41 | 000,022,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\X3DAudio1_7.dll
[2010.10.13 18:06:11 | 000,000,000 | ---D | C] -- C:\Users\admin\AppData\Roaming\ScreeNet iSaver
[2010.10.13 18:06:11 | 000,000,000 | ---D | C] -- C:\Users\admin\AppData\Local\ScreeNet iSaver
[2010.10.13 08:27:23 | 000,517,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_5.dll
[2010.10.13 08:27:23 | 000,515,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_5.dll
[2010.10.13 08:27:21 | 000,238,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_5.dll
[2010.10.13 08:27:21 | 000,176,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_5.dll
[2010.10.13 08:27:19 | 002,582,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_42.dll
[2010.10.13 08:27:19 | 001,974,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_42.dll
[2010.10.13 08:27:18 | 005,554,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dcsx_42.dll
[2010.10.13 08:27:18 | 005,501,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dcsx_42.dll
[2010.10.13 08:27:17 | 000,285,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx11_42.dll
[2010.10.13 08:27:17 | 000,235,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx11_42.dll
[2010.10.13 08:27:15 | 000,523,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_42.dll
[2010.10.13 08:27:14 | 002,475,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DX9_42.dll
[2010.10.13 08:27:06 | 000,073,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAPOFX1_3.dll
[2010.10.13 08:27:06 | 000,069,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAPOFX1_3.dll
[2010.10.13 08:26:55 | 000,518,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_3.dll
[2010.10.13 08:26:55 | 000,514,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_3.dll
[2010.10.13 08:26:55 | 000,074,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAPOFX1_2.dll
[2010.10.13 08:26:55 | 000,070,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAPOFX1_2.dll
[2010.10.13 08:26:53 | 000,235,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_3.dll
[2010.10.13 08:26:53 | 000,175,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_3.dll
[2010.10.13 08:26:52 | 000,025,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\X3DAudio1_5.dll
[2010.10.13 08:26:52 | 000,023,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\X3DAudio1_5.dll
[2010.10.13 08:26:48 | 000,513,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_2.dll
[2010.10.13 08:26:48 | 000,509,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_2.dll
[2010.10.13 08:26:48 | 000,072,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAPOFX1_1.dll
[2010.10.13 08:26:48 | 000,068,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAPOFX1_1.dll
[2010.10.13 08:26:45 | 000,238,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_2.dll
[2010.10.13 08:26:45 | 000,177,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_2.dll
[2010.10.11 20:41:14 | 000,000,000 | ---D | C] -- C:\Users\admin\Desktop\Neuer Ordner
[2010.10.09 14:48:58 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Adobe
[2010.10.09 14:48:58 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Adobe
[2010.10.09 14:48:30 | 000,000,000 | R--D | C] -- C:\Users\admin\Documents
[3 C:\Windows\SysWow64\*.tmp files -> C:\Windows\SysWow64\*.tmp -> ]
[2 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
[1 C:\Windows\SysNative\*.tmp files -> C:\Windows\SysNative\*.tmp -> ]
========== Files - Modified Within 30 Days ==========
[2010.11.04 21:56:01 | 000,001,106 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2010.11.04 21:49:57 | 000,576,000 | ---- | M] (OldTimer Tools) -- C:\Users\admin\Desktop\OTL.exe
[2010.11.04 21:49:40 | 002,738,574 | ---- | M] () -- C:\Windows\SysNative\perfh007.dat
[2010.11.04 21:49:40 | 001,256,198 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2010.11.04 21:49:40 | 000,828,562 | ---- | M] () -- C:\Windows\SysNative\perfc007.dat
[2010.11.04 21:49:40 | 000,739,504 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2010.11.04 21:49:40 | 000,005,576 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2010.11.04 21:43:39 | 000,001,102 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2010.11.04 21:43:37 | 000,003,664 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
[2010.11.04 21:43:37 | 000,003,664 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
[2010.11.04 21:43:20 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2010.11.04 21:43:19 | 4293,320,704 | -HS- | M] () -- C:\hiberfil.sys
[2010.11.04 19:02:20 | 000,001,879 | ---- | M] () -- C:\Users\Public\Desktop\TuneUp Utilities 2011.lnk
[2010.11.04 16:44:33 | 000,000,808 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
[2010.11.04 15:20:51 | 000,000,396 | -H-- | M] () -- C:\Windows\tasks\User_Feed_Synchronization-{F9C1AA55-6844-49C9-8B33-2CE30573B9FF}.job
[2010.11.04 13:54:43 | 000,000,800 | ---- | M] () -- C:\Users\Public\Desktop\Emsisoft Anti-Malware.lnk
[2010.11.04 12:17:59 | 000,049,752 | ---- | M] (Sunbelt Software) -- C:\Windows\SysNative\drivers\SBREDrv.sys
[2010.11.04 12:12:41 | 000,001,017 | ---- | M] () -- C:\Users\Public\Desktop\Ad-Aware.lnk
[2010.11.04 11:56:55 | 000,013,030 | ---- | M] () -- C:\PDOXUSRS.NET
[2010.11.04 11:46:48 | 000,000,578 | ---- | M] () -- C:\Users\admin\Desktop\elektroCAD.LNK
[2010.11.04 11:41:18 | 000,029,436 | ---- | M] () -- C:\Users\admin\Desktop\beispiel.pdf
[2010.11.04 09:44:09 | 000,002,617 | ---- | M] () -- C:\Users\admin\Desktop\Microsoft Word 2010.lnk
[2010.11.04 01:54:41 | 000,059,904 | ---- | M] () -- C:\Users\admin\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010.11.03 21:39:46 | 000,509,264 | ---- | M] (Microsoft Corporation) -- C:\Users\admin\Desktop\winsdk_web.exe
[2010.11.03 21:33:14 | 607,382,039 | ---- | M] () -- C:\Windows\MEMORY.DMP
[2010.11.03 20:36:20 | 000,002,577 | ---- | M] () -- C:\Users\admin\Desktop\Microsoft Office Picture Manager.lnk
[2010.11.03 15:24:04 | 000,388,608 | ---- | M] (Trend Micro Inc.) -- C:\Users\admin\Desktop\HijackThis.exe
[2010.11.03 08:56:27 | 000,081,584 | ---- | M] (Avira GmbH) -- C:\Windows\SysNative\drivers\avgntflt.sys
[2010.11.03 08:12:26 | 001,242,927 | ---- | M] () -- C:\Users\admin\Desktop\AL_Notebook-Akku-Tool.zip
[2010.11.02 19:48:34 | 000,023,040 | ---- | M] () -- C:\Users\admin\Desktop\Hi.doc
[2010.11.01 23:00:54 | 000,001,460 | ---- | M] () -- C:\Users\admin\AppData\Local\d3d9caps64.dat
[2010.11.01 22:53:29 | 167,878,832 | ---- | M] (NVIDIA Corporation) -- C:\Users\admin\Desktop\260.99_notebook_winvista_win7_64bit_international_whql.exe
[2010.11.01 22:49:28 | 000,154,003 | ---- | M] () -- C:\Users\admin\AppData\Roaming\nvModes.001
[2010.11.01 22:45:46 | 000,154,003 | ---- | M] () -- C:\Users\admin\AppData\Roaming\nvModes.dat
[2010.11.01 21:20:04 | 000,466,456 | ---- | M] (Creative Labs) -- C:\Windows\SysNative\wrap_oal.dll
[2010.11.01 21:20:04 | 000,444,952 | ---- | M] (Creative Labs) -- C:\Windows\SysWow64\wrap_oal.dll
[2010.11.01 21:20:04 | 000,122,904 | ---- | M] (Portions (C) Creative Labs Inc. and NVIDIA Corp.) -- C:\Windows\SysNative\OpenAL32.dll
[2010.11.01 21:20:04 | 000,109,080 | ---- | M] (Portions (C) Creative Labs Inc. and NVIDIA Corp.) -- C:\Windows\SysWow64\OpenAL32.dll
[2010.11.01 20:05:05 | 000,040,951 | ---- | M] () -- C:\Users\admin\Desktop\bookmarks-2010-11-01.json
[2010.11.01 14:24:43 | 000,002,152 | ---- | M] () -- C:\Users\Public\Desktop\Paragon Backup & Recovery™ 10 Suite.lnk
[2010.11.01 12:39:40 | 000,000,762 | ---- | M] () -- C:\Users\admin\Desktop\HD Tune Pro.lnk
[2010.10.31 20:13:20 | 000,000,000 | -H-- | M] () -- C:\Windows\SysNative\drivers\Msft_Kernel_GenericMount_01009.Wdf
[2010.10.31 20:13:18 | 000,000,000 | -H-- | M] () -- C:\Windows\SysNative\drivers\MsftWdf_Kernel_01009_Coinstaller_Critical.Wdf
[2010.10.31 20:02:49 | 000,034,559 | ---- | M] () -- C:\Users\admin\Desktop\bookmarks-2010-10-31.json
[2010.10.28 17:33:35 | 000,002,619 | ---- | M] () -- C:\Users\admin\Desktop\Microsoft Excel 2010.lnk
[2010.10.27 05:26:38 | 001,874,425 | ---- | M] () -- C:\Users\admin\Desktop\Pressverbindungen.pdf
[2010.10.26 17:42:54 | 001,548,288 | ---- | M] () -- C:\Users\admin\Desktop\Technologieschema Dreibandanlag.cpj
[2010.10.26 14:48:48 | 000,034,624 | ---- | M] (TuneUp Software) -- C:\Windows\SysNative\TURegOpt.exe
[2010.10.26 14:44:06 | 000,025,920 | ---- | M] (TuneUp Software) -- C:\Windows\SysNative\authuitu.dll
[2010.10.26 14:44:04 | 000,021,312 | ---- | M] (TuneUp Software) -- C:\Windows\SysWow64\authuitu.dll
[2010.10.26 14:44:00 | 000,036,160 | ---- | M] (TuneUp Software) -- C:\Windows\SysNative\uxtuneup.dll
[2010.10.26 14:43:56 | 000,029,504 | ---- | M] (TuneUp Software) -- C:\Windows\SysWow64\uxtuneup.dll
[2010.10.24 09:58:49 | 010,611,430 | ---- | M] () -- C:\Users\admin\Desktop\DerAktionaer_2o1o-43.pdf
[2010.10.23 10:37:10 | 000,913,199 | ---- | M] () -- C:\Users\admin\Desktop\CBL_Daten_Schredder-DOS-CDR-IMAGE-de.zip
[2010.10.16 19:55:00 | 020,284,008 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvoglv64.dll
[2010.10.16 19:55:00 | 018,597,480 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcompiler.dll
[2010.10.16 19:55:00 | 014,899,816 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvoglv32.dll
[2010.10.16 19:55:00 | 013,019,752 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcompiler.dll
[2010.10.16 19:55:00 | 012,788,840 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvd3dumx.dll
[2010.10.16 19:55:00 | 010,023,528 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvd3dum.dll
[2010.10.16 19:55:00 | 007,491,688 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvwgf2umx.dll
[2010.10.16 19:55:00 | 006,471,784 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcuda.dll
[2010.10.16 19:55:00 | 005,473,896 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvwgf2um.dll
[2010.10.16 19:55:00 | 004,837,480 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcuda.dll
[2010.10.16 19:55:00 | 003,112,552 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcuvid.dll
[2010.10.16 19:55:00 | 002,934,888 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcuvenc.dll
[2010.10.16 19:55:00 | 002,912,360 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcuvid.dll
[2010.10.16 19:55:00 | 002,666,600 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcuvenc.dll
[2010.10.16 19:55:00 | 002,161,256 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvapi64.dll
[2010.10.16 19:55:00 | 001,719,912 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvapi.dll
[2010.10.16 19:55:00 | 001,500,264 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvdispco642050.dll
[2010.10.16 19:55:00 | 001,308,776 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvgenco642030.dll
[2010.10.16 19:55:00 | 000,067,176 | ---- | M] (Khronos Group) -- C:\Windows\SysNative\OpenCL.dll
[2010.10.16 19:55:00 | 000,057,960 | ---- | M] (Khronos Group) -- C:\Windows\SysWow64\OpenCL.dll
[2010.10.16 19:55:00 | 000,011,240 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\drivers\nvBridge.kmd
[2010.10.16 19:55:00 | 000,007,877 | ---- | M] () -- C:\Windows\SysNative\nvinfo.pb
[2010.10.16 17:29:51 | 000,424,912 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
[2010.10.16 13:49:39 | 000,000,031 | ---- | M] () -- C:\Windows\iltwain.ini
[2010.10.16 13:13:46 | 005,901,416 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcpl.dll
[2010.10.16 13:13:26 | 002,590,824 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvsvc64.dll
[2010.10.16 13:13:26 | 000,116,328 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvmctray.dll
[2010.10.16 13:13:24 | 001,881,704 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvsvcr.dll
[2010.10.16 13:13:24 | 000,302,184 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvhotkey.dll
[2010.10.16 13:13:24 | 000,061,032 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvshext.dll
[2010.10.12 15:31:49 | 000,000,230 | ---- | M] () -- C:\Users\admin\rsapi.cgi.html
[2010.10.12 07:39:42 | 013,304,127 | ---- | M] () -- C:\Users\admin\Desktop\DerAktionär42.pdf
[2010.10.06 15:50:54 | 000,007,592 | ---- | M] () -- C:\Users\admin\AppData\Local\d3d9caps.dat
[3 C:\Windows\SysWow64\*.tmp files -> C:\Windows\SysWow64\*.tmp -> ]
[2 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
[1 C:\Windows\SysNative\*.tmp files -> C:\Windows\SysNative\*.tmp -> ]
========== Files Created - No Company Name ==========
[2010.11.04 19:02:20 | 000,001,879 | ---- | C] () -- C:\Users\Public\Desktop\TuneUp Utilities 2011.lnk
[2010.11.04 16:44:33 | 000,000,808 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
[2010.11.04 15:33:05 | 000,015,880 | ---- | C] () -- C:\Windows\SysNative\lsdelete.exe
[2010.11.04 13:54:43 | 000,000,800 | ---- | C] () -- C:\Users\Public\Desktop\Emsisoft Anti-Malware.lnk
[2010.11.04 12:12:41 | 000,001,017 | ---- | C] () -- C:\Users\Public\Desktop\Ad-Aware.lnk
[2010.11.04 11:49:08 | 000,013,030 | ---- | C] () -- C:\PDOXUSRS.NET
[2010.11.04 11:46:48 | 000,000,578 | ---- | C] () -- C:\Users\admin\Desktop\elektroCAD.LNK
[2010.11.04 11:46:40 | 000,184,832 | ---- | C] () -- C:\Windows\SysWow64\BDEADMIN.CPL
[2010.11.04 11:41:17 | 000,029,436 | ---- | C] () -- C:\Users\admin\Desktop\beispiel.pdf
[2010.11.04 10:48:51 | 000,010,894 | ---- | C] () -- C:\Users\admin\hijackthis.log
[2010.11.03 08:12:25 | 001,242,927 | ---- | C] () -- C:\Users\admin\Desktop\AL_Notebook-Akku-Tool.zip
[2010.11.02 19:48:32 | 000,023,040 | ---- | C] () -- C:\Users\admin\Desktop\Hi.doc
[2010.11.01 23:06:20 | 4293,320,704 | -HS- | C] () -- C:\hiberfil.sys
[2010.11.01 23:01:47 | 000,007,877 | ---- | C] () -- C:\Windows\SysNative\nvinfo.pb
[2010.11.01 20:05:05 | 000,040,951 | ---- | C] () -- C:\Users\admin\Desktop\bookmarks-2010-11-01.json
[2010.11.01 15:12:34 | 000,676,864 | ---- | C] () -- C:\Windows\SysWow64\mxMonecSocket.dll
[2010.11.01 14:24:43 | 000,002,152 | ---- | C] () -- C:\Users\Public\Desktop\Paragon Backup & Recovery™ 10 Suite.lnk
[2010.11.01 12:39:40 | 000,000,762 | ---- | C] () -- C:\Users\admin\Desktop\HD Tune Pro.lnk
[2010.10.31 20:30:10 | 000,215,144 | R--- | C] () -- C:\Windows\patchw32.dll
[2010.10.31 20:13:20 | 000,000,000 | -H-- | C] () -- C:\Windows\SysNative\drivers\Msft_Kernel_GenericMount_01009.Wdf
[2010.10.31 20:13:18 | 000,000,000 | -H-- | C] () -- C:\Windows\SysNative\drivers\MsftWdf_Kernel_01009_Coinstaller_Critical.Wdf
[2010.10.31 20:12:43 | 000,000,003 | ---- | C] () -- C:\Windows\SysNative\drivers\MsftWdf_Kernel_01009_Inbox_Critical.Wdf
[2010.10.31 20:02:48 | 000,034,559 | ---- | C] () -- C:\Users\admin\Desktop\bookmarks-2010-10-31.json
[2010.10.30 21:20:05 | 607,382,039 | ---- | C] () -- C:\Windows\MEMORY.DMP
[2010.10.27 05:26:37 | 001,874,425 | ---- | C] () -- C:\Users\admin\Desktop\Pressverbindungen.pdf
[2010.10.24 10:58:53 | 013,304,127 | ---- | C] () -- C:\Users\admin\Desktop\DerAktionär42.pdf
[2010.10.24 09:58:49 | 010,611,430 | ---- | C] () -- C:\Users\admin\Desktop\DerAktionaer_2o1o-43.pdf
[2010.10.23 10:37:10 | 000,913,199 | ---- | C] () -- C:\Users\admin\Desktop\CBL_Daten_Schredder-DOS-CDR-IMAGE-de.zip
[2010.10.12 15:31:50 | 000,000,230 | ---- | C] () -- C:\Users\admin\rsapi.cgi.html
[2010.09.30 21:18:31 | 000,075,264 | ---- | C] () -- C:\Windows\SysWow64\callrproxy.dll
[2010.09.14 18:35:13 | 000,002,464 | ---- | C] () -- C:\Windows\netdet.ini
[2010.07.27 07:03:20 | 010,829,656 | ---- | C] () -- C:\Windows\SysWow64\LogiDPP.dll
[2010.07.27 07:03:18 | 000,290,648 | ---- | C] () -- C:\Windows\SysWow64\DevManagerCore.dll
[2010.07.25 14:01:19 | 000,000,038 | ---- | C] () -- C:\Windows\AviSplitter.INI
[2010.05.23 18:01:25 | 001,053,056 | ---- | C] () -- C:\Windows\SysWow64\drivers\V2WCDRV.sys
[2010.05.17 18:02:03 | 000,180,224 | ---- | C] () -- C:\Windows\SysWow64\xvidvfw.dll
[2010.04.02 16:17:34 | 000,179,091 | ---- | C] () -- C:\Windows\SysWow64\xlive.dll.cat
[2010.03.25 21:24:31 | 000,439,972 | ---- | C] () -- C:\Users\admin\AppData\Local\dd_vcredistMSI115A.txt
[2010.03.25 21:24:31 | 000,011,614 | ---- | C] () -- C:\Users\admin\AppData\Local\dd_vcredistUI115A.txt
[2010.03.03 18:48:14 | 000,215,144 | R--- | C] () -- C:\Windows\pw32a.dll
[2010.02.08 07:33:04 | 000,359,320 | ---- | C] () -- C:\Windows\SysWow64\vfprintpthelper.dll
[2010.01.24 11:53:46 | 000,011,296 | ---- | C] () -- C:\Windows\SysWow64\drivers\marxdev3.sys
[2010.01.24 11:53:46 | 000,011,296 | ---- | C] () -- C:\Windows\SysWow64\drivers\marxdev2.sys
[2010.01.24 11:53:46 | 000,011,296 | ---- | C] () -- C:\Windows\SysWow64\drivers\marxdev1.sys
[2010.01.24 11:53:46 | 000,010,240 | ---- | C] () -- C:\Windows\SysWow64\Cbnvdd.dll
[2009.11.07 22:16:11 | 000,000,000 | ---- | C] () -- C:\Windows\musiceditor.INI
[2009.08.24 22:14:46 | 000,729,088 | ---- | C] () -- C:\Windows\SysWow64\WS7_S7AG.dll
[2009.07.16 04:29:32 | 000,028,158 | ---- | C] () -- C:\Users\admin\AppData\Local\dd_depcheckdotnetfx30.txt
[2009.07.16 04:29:28 | 000,032,028 | ---- | C] () -- C:\Users\admin\AppData\Local\dd_dotnetfx3install.txt
[2009.07.16 04:29:28 | 000,000,718 | ---- | C] () -- C:\Users\admin\AppData\Local\dd_dotnetfx3error.txt
[2009.06.18 19:07:26 | 000,117,248 | ---- | C] () -- C:\Windows\SysWow64\EhStorAuthn.dll
[2009.06.18 19:05:49 | 000,368,640 | ---- | C] () -- C:\Windows\SysWow64\msjetoledb40.dll
[2009.06.06 19:51:05 | 000,000,839 | ---- | C] () -- C:\ProgramData\hpzinstall.log
[2009.05.28 13:26:07 | 000,056,832 | ---- | C] () -- C:\Windows\SysWow64\Iyvu9_32.dll
[2009.04.26 13:26:43 | 000,120,200 | ---- | C] () -- C:\Windows\SysWow64\DLLDEV32i.dll
[2009.04.26 13:04:59 | 000,010,240 | ---- | C] () -- C:\Windows\SysWow64\vidx16.dll
[2009.04.26 13:03:13 | 000,007,119 | ---- | C] () -- C:\Windows\mgxoschk.ini
[2009.03.21 12:59:30 | 000,350,120 | ---- | C] () -- C:\Users\admin\AppData\Local\dd_vcredistMSI6FBD.txt
[2009.03.21 12:59:29 | 000,013,870 | ---- | C] () -- C:\Users\admin\AppData\Local\dd_vcredistUI6FBD.txt
[2009.03.20 20:45:20 | 000,438,272 | ---- | C] () -- C:\Windows\SysWow64\PaintX.dll
[2009.03.05 21:52:32 | 000,810,756 | ---- | C] () -- C:\Users\admin\AppData\Local\dd_NET_Framework35_LangPack_MSI2598.txt
[2009.03.05 21:52:24 | 000,036,144 | ---- | C] () -- C:\Users\admin\AppData\Local\dd_depcheck_NETFX_EXP_35.txt
[2009.03.05 21:52:18 | 000,000,002 | ---- | C] () -- C:\Users\admin\AppData\Local\dd_dotnetfx35error_lp.txt
[2009.03.05 21:52:17 | 000,004,110 | ---- | C] () -- C:\Users\admin\AppData\Local\uxeventlog.txt
[2009.03.05 21:52:15 | 000,077,744 | ---- | C] () -- C:\Users\admin\AppData\Local\dd_dotnetfx35install_lp.txt
[2009.02.25 00:46:20 | 000,408,576 | ---- | C] () -- C:\Windows\SysWow64\Smab.dll
[2009.02.25 00:46:20 | 000,027,648 | ---- | C] () -- C:\Windows\SysWow64\AVSredirect.dll
[2009.01.14 20:18:24 | 000,012,288 | ---- | C] () -- C:\Windows\impborl.dll
[2008.12.19 05:43:31 | 000,060,124 | ---- | C] () -- C:\Windows\SysWow64\tcpmon.ini
[2008.12.15 17:25:16 | 000,053,248 | ---- | C] () -- C:\Windows\SysWow64\unrar.dll
[2008.12.14 20:09:58 | 000,000,154 | ---- | C] () -- C:\Windows\ODBC.INI
[2008.12.14 20:09:50 | 000,004,755 | ---- | C] () -- C:\Windows\schematicx_test.INI
[2008.12.14 20:09:50 | 000,000,055 | ---- | C] () -- C:\Windows\B2Spice4.ini
[2008.12.14 20:09:42 | 000,618,496 | ---- | C] () -- C:\Windows\stlpmt45.dll
[2008.12.14 20:09:42 | 000,479,232 | ---- | C] () -- C:\Windows\bdsp.dll
[2008.12.09 18:30:57 | 000,069,632 | ---- | C] () -- C:\Windows\SysWow64\xmltok.dll
[2008.12.09 18:30:57 | 000,036,864 | ---- | C] () -- C:\Windows\SysWow64\xmlparse.dll
[2008.12.04 19:04:02 | 000,000,043 | ---- | C] () -- C:\Windows\festo.ini
[2008.12.02 18:13:15 | 000,100,352 | ---- | C] () -- C:\Windows\SysWow64\pg32conv.dll
[2008.12.02 18:13:15 | 000,030,793 | ---- | C] () -- C:\Windows\SysWow64\crtslv.dll
[2008.12.02 18:13:15 | 000,017,920 | ---- | C] () -- C:\Windows\SysWow64\implode.dll
[2008.11.16 12:26:13 | 000,001,771 | ---- | C] () -- C:\Windows\hpdj5700.ini
[2008.11.15 19:28:07 | 000,000,025 | ---- | C] () -- C:\Windows\CDE DX4800EFGIPSD.ini
[2008.10.31 13:07:52 | 000,000,031 | ---- | C] () -- C:\Windows\iltwain.ini
[2008.10.25 06:51:09 | 000,026,311 | ---- | C] () -- C:\Users\admin\AppData\Roaming\UserTile.png
[2008.10.20 20:15:57 | 000,003,972 | ---- | C] () -- C:\Windows\SysWow64\drivers\PciBus.sys
[2008.10.18 18:27:43 | 000,154,003 | ---- | C] () -- C:\Users\admin\AppData\Roaming\nvModes.001
[2008.10.18 18:24:08 | 000,154,003 | ---- | C] () -- C:\Users\admin\AppData\Roaming\nvModes.dat
[2008.10.18 13:45:39 | 000,000,093 | R--- | C] () -- C:\Windows\OEM.ini
[2008.10.18 01:02:54 | 000,059,904 | ---- | C] () -- C:\Users\admin\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2008.10.17 13:26:42 | 000,007,592 | ---- | C] () -- C:\Users\admin\AppData\Local\d3d9caps.dat
[2008.10.12 14:28:12 | 000,356,352 | R--- | C] () -- C:\Windows\EMCRI.dll
[2008.10.12 14:09:08 | 000,001,460 | ---- | C] () -- C:\Users\admin\AppData\Local\d3d9caps64.dat
[2007.06.12 05:29:04 | 000,024,576 | ---- | C] () -- C:\Program Files (x86)\Common Files\MCESeviceDLL.dll
[2005.06.10 07:46:52 | 000,049,152 | R--- | C] () -- C:\Windows\SysWow64\FDT100.dll
[2005.02.25 06:15:00 | 000,159,744 | ---- | C] () -- C:\Windows\SysWow64\EPSPTDV.DLL
========== Alternate Data Streams ==========
@Alternate Data Stream - 489 bytes -> C:\ProgramData\TEMP:05EE1EEF
@Alternate Data Stream - 130 bytes -> C:\ProgramData\TEMP:8B4F37E5
@Alternate Data Stream - 110 bytes -> C:\ProgramData\TEMP:5F91AB27
< End of report >
--- --- ---
Extra.txtOTL Logfile: Code:
OTL Extras logfile created on: 04.11.2010 21:51:15 - Run 1
OTL by OldTimer - Version 3.2.17.2 Folder = C:\Users\admin\Desktop
64bit-Windows Vista Ultimate Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18975)
Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy
4,00 Gb Total Physical Memory | 2,00 Gb Available Physical Memory | 55,00% Memory free
8,00 Gb Paging File | 6,00 Gb Available in Paging File | 74,00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 78,12 Gb Total Space | 8,71 Gb Free Space | 11,15% Space Free | Partition Type: NTFS
Drive D: | 154,76 Gb Total Space | 109,14 Gb Free Space | 70,53% Space Free | Partition Type: NTFS
Computer Name: NOTEBOOK | User Name: admin | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Extra Registry (SafeList) ==========
========== File Associations ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.url[@ = InternetShortcut] -- C:\Windows\System32\ieframe.DLL (Microsoft Corporation)
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation)
[HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation)
========== Shell Spawning ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %* File not found
cmdfile [open] -- "%1" %* File not found
comfile [open] -- "%1" %* File not found
exefile [open] -- "%1" %* File not found
helpfile [open] -- Reg Error: Key error.
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [open] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %* File not found
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1" File not found
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation)
scrfile [open] -- "%1" /S File not found
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1 File not found
Directory [AddToPlaylistVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
Folder [open] -- %SystemRoot%\Explorer.exe /separate,/idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /separate,/e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation)
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
Folder [open] -- %SystemRoot%\Explorer.exe /separate,/idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /separate,/e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
========== Security Center Settings ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
"VistaSp1" = E0 59 7E 0B 02 AB C9 01 [binary data]
"VistaSp2" = 11 78 63 FA 48 F0 C9 01 [binary data]
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"oobe_av" = 1
========== Firewall Settings ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
========== Authorized Applications List ==========
========== Vista Active Open Ports Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{14CB3F90-C533-42DA-947B-7EFEDF4CBEC2}" = lport=0 | protocol=6 | dir=in | name=magix upnp media server |
"{3B46F34D-8643-485D-A69C-B73A2AA84C45}" = lport=4410 | protocol=6 | dir=in | name=automation license management |
"{63832EED-2C10-4CEB-BEAD-05FDF43DD9C6}" = lport=4410 | protocol=6 | dir=in | name=automation license management |
"{8F88E87E-7A5E-4307-9174-CDE8F868BCB7}" = lport=1900 | protocol=17 | dir=in | name=microsoft upnp-port (udp) |
"{B793841E-AD22-4B6F-BF74-F090DBAD8389}" = lport=0 | protocol=6 | dir=in | name=magix upnp media server |
"{D4919A0F-B6BC-4033-A860-713CB8AA968B}" = lport=1900 | protocol=17 | dir=in | name=microsoft upnp-port (udp) |
"{D729C7BB-12DC-4B0B-9FCD-EBEEFFEC2D87}" = lport=2869 | protocol=6 | dir=in | name=microsoft upnp-port (tcp) |
"{E66667BB-083B-414D-9F37-2137454666E2}" = lport=6004 | protocol=17 | dir=in | app=c:\program files\microsoft office\office14\outlook.exe |
"{E95301B9-5DB2-4D2F-979B-D8DE90862B66}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=c:\windows\system32\svchost.exe |
"{F301CE54-49E3-40F8-99DD-3E8FF32C3D7D}" = lport=2869 | protocol=6 | dir=in | name=microsoft upnp-port (tcp) |
========== Vista Active Application Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{01520273-E4DC-4C52-8D23-4147754A3B09}" = protocol=6 | dir=in | app=c:\program files (x86)\3s codesys\gatewayplc\codesysspservice.exe |
"{22370BD3-3FD0-4AED-AD8B-81736CF1A2C4}" = protocol=17 | dir=in | app=c:\windows\syswow64\gateway.exe |
"{288A74DD-4BAC-4AC1-B278-871DE2C2C6DC}" = protocol=17 | dir=in | app=c:\windows\syswow64\gatewaydde.exe |
"{33E69A71-CCD3-4E38-9E98-228EC96968D1}" = protocol=6 | dir=in | app=c:\program files (x86)\icq7.2\icq.exe |
"{406F41E0-5732-46E4-B3DB-81AFF0B506E4}" = protocol=17 | dir=in | app=c:\program files (x86)\icq7.2\icq.exe |
"{461EA16A-ECBE-4175-A76A-5FD3D246F8B7}" = protocol=6 | dir=in | app=c:\program files (x86)\3s codesys\gatewayplc\codesyssphmi.exe |
"{4921397F-3DDD-45AC-A950-6AC982421257}" = protocol=6 | dir=in | app=c:\program files (x86)\common files\magix shared\upnpservice\upnpservice.exe |
"{49377946-A792-45F3-B4B1-64E3DD8EE1EB}" = protocol=6 | dir=in | app=c:\program files (x86)\icq7.2\aolload.exe |
"{4BA6A26D-F471-41A7-92ED-13080209CB34}" = protocol=17 | dir=in | app=c:\program files (x86)\3s codesys\codesys\common\reptool.exe |
"{50820CA9-0F2C-46F8-B4FB-5D29BC2640DD}" = protocol=6 | dir=in | app=c:\program files (x86)\icq7.2\aolload.exe |
"{522CD222-088E-45FB-9B6B-5CB9457A5D15}" = protocol=17 | dir=in | app=c:\program files (x86)\3s codesys\codesys\common\codesys.exe |
"{599DF01F-01C7-4572-B3B2-2C2E5B89C650}" = protocol=6 | dir=in | app=c:\program files\microsoft office\office14\onenote.exe |
"{6092B3A0-77A5-4A14-ABAC-C4136ECFBD41}" = protocol=6 | dir=in | app=c:\program files (x86)\common files\magix shared\upnpservice\upnpservice.exe |
"{710BAADF-84D7-40CB-8A75-F6C7E18F2228}" = protocol=6 | dir=in | app=c:\program files (x86)\3s codesys\codesys\common\reptool.exe |
"{81636058-7A98-400B-A798-F3C863EB604B}" = protocol=6 | dir=in | app=c:\program files (x86)\3s codesys\codesys\common\codesys.exe |
"{8D6E4A30-B9F0-4583-8660-D9B518A6145D}" = protocol=17 | dir=in | app=c:\program files\microsoft office\office14\groove.exe |
"{8FC158F9-DCA3-4F54-BD7A-3FBD2B6067EF}" = protocol=17 | dir=in | app=c:\program files (x86)\3s codesys\codesys\common\ipmcli.exe |
"{A57F8CB1-F21B-4C18-8794-7FB1EC976A48}" = protocol=17 | dir=in | app=c:\program files\microsoft office\office14\onenote.exe |
"{A84E4E84-1671-49E1-B9E5-8C4B2D201122}" = protocol=17 | dir=in | app=c:\program files (x86)\3s codesys\gatewayplc\codesysspservice.exe |
"{A8FAEB61-2E91-4875-9E28-194A89A43C18}" = protocol=17 | dir=in | app=c:\program files (x86)\3s codesys\gatewayplc\codesyssphmi.exe |
"{B1A638B1-6976-4AE6-8D8A-056091EE1786}" = protocol=17 | dir=in | app=c:\program files (x86)\common files\magix shared\upnpservice\upnpservice.exe |
"{B5B91BF7-9532-4E7E-9463-BD9E5C0537FE}" = protocol=17 | dir=in | app=c:\program files (x86)\common files\magix shared\upnpservice\upnpservice.exe |
"{BFB19B14-DA9C-4ADC-A050-6BAFF24B6798}" = protocol=17 | dir=in | app=c:\program files (x86)\3s codesys\gatewayplc\gatewayservice.exe |
"{C1A8019F-EF38-4732-A29F-4EE8C02AC432}" = protocol=17 | dir=in | app=c:\program files (x86)\icq7.2\icq.exe |
"{C5BF640D-FA7A-4DD6-B1D7-222A891D74AE}" = protocol=17 | dir=in | app=c:\program files (x86)\icq7.2\aolload.exe |
"{C769C053-3CD4-43D0-AB37-0E2F59C8C8C7}" = protocol=6 | dir=in | app=c:\windows\syswow64\gatewaydde.exe |
"{CC7A1F27-D8FC-4946-A6B6-95A26737C78F}" = protocol=17 | dir=in | app=c:\program files (x86)\icq7.2\aolload.exe |
"{D599C219-C1AC-420F-916D-2AA2E271B8AF}" = protocol=6 | dir=in | app=c:\program files (x86)\3s codesys\codesys\common\ipmcli.exe |
"{E6207DA0-8C36-4628-90C1-B2E33E47C217}" = protocol=6 | dir=in | app=c:\program files (x86)\icq7.2\icq.exe |
"{E64671C8-D5B8-428C-B5BC-0710A87EB3CB}" = protocol=6 | dir=in | app=c:\program files\microsoft office\office14\groove.exe |
"{FA4EEEA1-B029-4916-B3D8-6AA879A0B611}" = protocol=6 | dir=in | app=c:\windows\syswow64\gateway.exe |
"{FBDDCA47-8A4B-434E-ABD8-FB321FC5DAF1}" = protocol=6 | dir=in | app=c:\program files (x86)\3s codesys\gatewayplc\gatewayservice.exe |
"TCP Query User{13C7D4EA-ABA8-4E8B-B04C-25CC62179CB5}C:\program files (x86)\google\google earth\client\googleearth.exe" = protocol=6 | dir=in | app=c:\program files (x86)\google\google earth\client\googleearth.exe |
"TCP Query User{153C80B8-37E1-4BF7-A7F2-BC0054902E42}D:\call od duty\iw4mp.exe" = protocol=6 | dir=in | app=d:\call od duty\iw4mp.exe |
"TCP Query User{1A9AA92C-C3A7-4819-8425-75F7B2062880}C:\program files (x86)\flashget\flashget.exe" = protocol=6 | dir=in | app=c:\program files (x86)\flashget\flashget.exe |
"TCP Query User{3D834281-932D-4142-B6EB-4A785AF25139}C:\program files (x86)\java\jre6\bin\javaw.exe" = protocol=6 | dir=in | app=c:\program files (x86)\java\jre6\bin\javaw.exe |
"TCP Query User{7E979033-DDB9-438F-B69D-A92E76A4F44E}C:\program files (x86)\icq6.5\icq.exe" = protocol=6 | dir=in | app=c:\program files (x86)\icq6.5\icq.exe |
"TCP Query User{900D11B8-EEA3-413A-B520-7E6F65D6915F}C:\program files (x86)\internet explorer\iexplore.exe" = protocol=6 | dir=in | app=c:\program files (x86)\internet explorer\iexplore.exe |
"TCP Query User{96DAB6BC-0072-4153-A2FC-FA2EC85760F5}C:\program files (x86)\java\jre6\bin\javaw.exe" = protocol=6 | dir=in | app=c:\program files (x86)\java\jre6\bin\javaw.exe |
"TCP Query User{96FF1CE1-EBB7-4C96-A897-45D057588515}C:\users\admin\appdata\local\virtualstore\program files (x86)\ea games\die schlacht um mittelerde(tm)\patchget.dat" = protocol=6 | dir=in | app=c:\users\admin\appdata\local\virtualstore\program files (x86)\ea games\die schlacht um mittelerde(tm)\patchget.dat |
"TCP Query User{A0A7A2F4-A017-4123-8057-5ABE3ECF4EE8}C:\program files (x86)\google\google earth\client\googleearth.exe" = protocol=6 | dir=in | app=c:\program files (x86)\google\google earth\client\googleearth.exe |
"TCP Query User{C1313CA0-9123-4629-BA52-38E36F633278}C:\program files\windows sidebar\sidebar.exe" = protocol=6 | dir=in | app=c:\program files\windows sidebar\sidebar.exe |
"TCP Query User{F817E38D-B6F6-4B04-A2B3-D10BD6E0444F}C:\program files (x86)\mozilla firefox\firefox.exe" = protocol=6 | dir=in | app=c:\program files (x86)\mozilla firefox\firefox.exe |
"UDP Query User{0732F76B-9825-42FF-8B4E-62DDDC9254F9}C:\program files (x86)\google\google earth\client\googleearth.exe" = protocol=17 | dir=in | app=c:\program files (x86)\google\google earth\client\googleearth.exe |
"UDP Query User{07EF683D-4FF6-4A11-B163-2E74D4A302E4}C:\program files (x86)\java\jre6\bin\javaw.exe" = protocol=17 | dir=in | app=c:\program files (x86)\java\jre6\bin\javaw.exe |
"UDP Query User{0A256DE7-E83A-4119-9E94-F6AC73ED32FD}C:\program files (x86)\icq6.5\icq.exe" = protocol=17 | dir=in | app=c:\program files (x86)\icq6.5\icq.exe |
"UDP Query User{1D24B612-A34D-4972-A9C6-3B740B2E643B}C:\program files (x86)\mozilla firefox\firefox.exe" = protocol=17 | dir=in | app=c:\program files (x86)\mozilla firefox\firefox.exe |
"UDP Query User{662CFB3A-92ED-4229-BB47-A10E71DFF78E}C:\program files (x86)\internet explorer\iexplore.exe" = protocol=17 | dir=in | app=c:\program files (x86)\internet explorer\iexplore.exe |
"UDP Query User{7E0D9518-E609-489D-A555-3AD81DD8637E}D:\call od duty\iw4mp.exe" = protocol=17 | dir=in | app=d:\call od duty\iw4mp.exe |
"UDP Query User{8538EC3E-9887-467D-907A-3D0FC456975B}C:\program files (x86)\google\google earth\client\googleearth.exe" = protocol=17 | dir=in | app=c:\program files (x86)\google\google earth\client\googleearth.exe |
"UDP Query User{8A05E382-408D-4F70-863E-7D158F3DEC62}C:\program files (x86)\flashget\flashget.exe" = protocol=17 | dir=in | app=c:\program files (x86)\flashget\flashget.exe |
"UDP Query User{B5002F0A-A786-4154-9F3B-BC8D62B31FBC}C:\users\admin\appdata\local\virtualstore\program files (x86)\ea games\die schlacht um mittelerde(tm)\patchget.dat" = protocol=17 | dir=in | app=c:\users\admin\appdata\local\virtualstore\program files (x86)\ea games\die schlacht um mittelerde(tm)\patchget.dat |
"UDP Query User{C2598AB0-7380-40A0-9DBF-1854C359A259}C:\program files\windows sidebar\sidebar.exe" = protocol=17 | dir=in | app=c:\program files\windows sidebar\sidebar.exe |
"UDP Query User{E1C6E09E-94FF-4CF4-A57A-4BDD3D43D454}C:\program files (x86)\java\jre6\bin\javaw.exe" = protocol=17 | dir=in | app=c:\program files (x86)\java\jre6\bin\javaw.exe |
========== HKEY_LOCAL_MACHINE Uninstall List ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{052FDD78-A6EA-3187-8386-C82F4CA3A929}" = Microsoft .NET Framework 3.5 Language Pack SP1 - deu
"{0E3DAF3D-FF69-345A-A99E-1FED304CA083}" = Microsoft .NET Framework 4 Client Profile DEU Language Pack
"{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MP640_series" = Canon MP640 series MP Drivers
"{1E1DFF42-2EE8-4852-A7AB-C5174321D68F}" = Paragon Backup & Recovery™ 10 Suite
"{21903252-3854-48D6-8F0C-F648CFA818C9}" = NI Help Assistant (64bit)
"{2844A4FA-B106-49E0-BD30-15FA4A40C13F}" = NI VC2005MSMs x64
"{2D290715-B0FC-3898-9247-62F803A585DF}" = Microsoft Windows SDK for Windows 7 Redistributable Components for Common Tools (30514)
"{3156336D-8E44-3671-A6FE-AE51D3D6564E}" = Microsoft Windows SDK for Windows 7 (7.1)
"{485DF5E7-8379-4BFA-BAE1-9B8DBFE0D6B4}" = Paragon Backup & Recovery™ 10 Home
"{48A7B11D-C3E1-3BEE-AF6C-8976F6E705A6}" = Microsoft Windows SDK for Windows 7 Redistributable Components for Application Verifier (30514)
"{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148
"{53480120-0D50-4084-A168-E87F11EB3BF6}" = O&O DiskRecovery
"{5783F2D7-8005-0407-1102-0060B0CE6BBA}" = AutoCAD Mechanical 2010 Language Pack - Deutsch
"{6C8D7973-31F9-32E1-A820-8DD857910323}" = Microsoft Windows SDK for Windows 7 Utilities for Win32 Development (30514)
"{8220EEFE-38CD-377E-8595-13398D740ACE}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17
"{84452C2C-BDCC-36F3-A189-CE15F02A47FB}" = Microsoft Windows SDK for Windows 7 Headers and Libraries (30514)
"{89026002-A893-42D9-9E20-6829B844735E}" = Application Verifier (x64)
"{90140000-0011-0000-1000-0000000FF1CE}" = Microsoft Office Professional Plus 2010
"{90140000-0015-0407-1000-0000000FF1CE}" = Microsoft Office Access MUI (German) 2010
"{90140000-0016-0407-1000-0000000FF1CE}" = Microsoft Office Excel MUI (German) 2010
"{90140000-0018-0407-1000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (German) 2010
"{90140000-0019-0407-1000-0000000FF1CE}" = Microsoft Office Publisher MUI (German) 2010
"{90140000-001A-0407-1000-0000000FF1CE}" = Microsoft Office Outlook MUI (German) 2010
"{90140000-001B-0407-1000-0000000FF1CE}" = Microsoft Office Word MUI (German) 2010
"{90140000-001F-0407-1000-0000000FF1CE}" = Microsoft Office Proof (German) 2010
"{90140000-001F-0409-1000-0000000FF1CE}" = Microsoft Office Proof (English) 2010
"{90140000-001F-040C-1000-0000000FF1CE}" = Microsoft Office Proof (French) 2010
"{90140000-001F-0410-1000-0000000FF1CE}" = Microsoft Office Proof (Italian) 2010
"{90140000-002C-0407-1000-0000000FF1CE}" = Microsoft Office Proofing (German) 2010
"{90140000-0043-0000-1000-0000000FF1CE}" = Microsoft Office Office 32-bit Components 2010
"{90140000-0043-0407-1000-0000000FF1CE}" = Microsoft Office Shared 32-bit MUI (German) 2010
"{90140000-0044-0407-1000-0000000FF1CE}" = Microsoft Office InfoPath MUI (German) 2010
"{90140000-006E-0407-1000-0000000FF1CE}" = Microsoft Office Shared MUI (German) 2010
"{90140000-00A1-0407-1000-0000000FF1CE}" = Microsoft Office OneNote MUI (German) 2010
"{90140000-00BA-0407-1000-0000000FF1CE}" = Microsoft Office Groove MUI (German) 2010
"{951E6223-AC28-345E-BCF4-B55C1267E321}" = Microsoft Windows SDK for Windows 7 Samples (30514)
"{9F560BEB-021F-43AC-825F-AA60442D8DE4}" = 64 Bit HP CIO Components Installer
"{A0B0F02C-410B-3DE3-9740-EC4C3D902532}" = Microsoft Windows SDK for Windows 7 Common Utilities (30514)
"{B2FE1952-0186-46c3-BAEC-A80AA35AC5B8}_Display.ControlPanel" = NVIDIA Systemsteuerung 260.99
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver" = NVIDIA Grafiktreiber 260.99
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX" = NVIDIA PhysX-Systemsoftware 260.99
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_installer" = NVIDIA Install Application
"{B7D0C3BC-CB39-3CA1-9295-A23A93994893}" = Microsoft Windows SDK for Windows 7 Redistributable Components for Windows Debugging Tools (30514)
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{DA5E371C-6333-3D8A-93A4-6FD5B20BCC6E}" = Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319
"{DBFC6AAE-DCCB-4C23-B01C-3EDDDC03298B}" = Debugging Tools for Windows (x64)
"{E7F9E526-2324-437B-A609-E8C5309465CB}" = Microsoft Windows Performance Toolkit
"{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}" = Microsoft .NET Framework 4 Client Profile
"2EFF310ED3BF3BFB24E6CC25AEB5491813E56803" = Windows-Treiberpaket - ITE Tech.Inc. (itecir) HIDClass (06/20/2007 5.0.0004.2)
"HashTab" = HashTab 3.0.0
"Microsoft .NET Framework 3.5 Language Pack SP1 - deu" = Microsoft .NET Framework 3.5 Language Pack SP1 - DEU
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Microsoft .NET Framework 4 Client Profile DEU Language Pack" = Microsoft .NET Framework 4 Client Profile DEU Language Pack
"Office14.PROPLUS" = Microsoft Office Professional Plus 2010
"SDKSetup_7.1.7600.0.30514" = Microsoft Windows SDK for Windows 7 (7.1)
"SMSERIAL" = Motorola SM56 Speakerphone Modem
"SynTPDeinstKey" = Synaptics Pointing Device Driver
"UltSounds" = Windows-Soundschemas
"UltSounds2" = Ultimate Extras sounds from Microsoft® Tinker™
"x64 Components_is1" = x64 Components v2.6.0
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}" = Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148
"{065F29A4-D4D9-4BB9-85AF-8A878907BBD6}" = NI LabVIEW Run-Time Engine 8.5.1
"{0699C67B-F5B5-4CA3-A3A9-B976406FA4DA}" = NI Service Locator
"{07976ABB-1EBD-4A65-A7C7-155A0DC17173}" = CoDeSys for Automation Alliance
"{0DD140D3-9563-481E-AA75-BA457CBDAEF2}" = PC Inspector File Recovery
"{0F7EA864-A3D2-46EF-A2ED-1B74725889A3}" = NI Circuit Design Suite 10.1.1 Pro Licenses
"{17F4ADCB-387E-43A5-8292-A4A37704D670}" = NI MDF Support
"{18455581-E099-4BA8-BC6B-F34B2F06600C}" = Google Toolbar for Internet Explorer
"{196BB40D-1578-3D01-B289-BEFC77A11A1E}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319
"{24036256-BFDB-4CD3-BE8A-A3D6160F2E16}" = TuneUp Utilities 2011
"{26A24AE4-039D-4CA4-87B4-2F83216011FF}" = Java(TM) 6 Update 21
"{297BDF30-471F-4E8C-9C05-09C3882300CD}" = NI LabWindows/CVI 8.1.1 Run-Time Engine
"{3116A1B1-4E07-46ED-89F9-57409D88588A}" = NI MetaSuite Installer
"{38A4AD83-3492-4A4E-A502-48106D88DD3E}" = NI USI 1.5.0
"{3E6F0CAD-EE38-42A5-9EEA-AE17A55BF2D4}" = Firebird SQL Server - MAGIX Edition
"{4286E640-B5FB-11DF-AC4B-005056C00008}" = Google Earth
"{45FA54F6-8574-49D2-9E2D-0BDDE6237822}" = NI LabVIEW Run-Time Engine 8.2.1
"{4640FDE1-B83A-4376-84ED-86F86BEE2D41}" = Driver Detective
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4E0DE929-EB66-4A28-A351-645B22369078}" = NI Update Service 1.0
"{5474BF08-A9D0-49A2-9FCA-4D081B3797B5}" = NI Logos XT Support
"{5545EEE1-FA36-4F76-B6BE-5696E7F4E2D6}" = VBA (2627.01)
"{5545EEE9-FA36-4F76-B6BE-5696E7F4E2D6}" = VBA (2627.4)
"{56C049BE-79E9-4502-BEA7-9754A3E60F9B}" = neroxml
"{57700DD3-0C10-4CE6-95BA-630284EE2CB1}" = NI License Manager
"{5C104E56-A441-429D-A609-D8A46EB92EA1}" = PCMark05
"{5D4C60AA-84E6-4E1A-8A68-69970D387BE1}" = TuneUp Utilities Language Pack (de-DE)
"{5FF02438-DDE5-4D8E-8291-577CC1A2C014}" = AkkuLine Batterie-Tool
"{671A5B67-1A00-424A-A902-49BC020FB3D1}" = NI VC2005MSMs x86
"{69F9B60B-DD42-43F6-8B74-3E2C85DB3347}" = NI Circuit Design Suite 10.1.1 Education
"{6A92D7DC-DC2A-42B0-8FC0-F162B1CFDFD3}" = STK1135 PC Camera
"{6E605604-E2CE-4331-AA19-5FEF273F3CFD}" = NI LabVIEW Real-Time FIFO for Runtime
"{6F7D11DC-DE87-45C8-A37E-A35B724FC771}" = NI Help Assistant
"{72EFBFE4-C74F-4187-AEFD-73EA3BE968D6}" = ICQ7.2
"{7469D3E1-2470-4539-81CB-A95036683D9B}" = NI Update Service Extras 1.0
"{74712ACB-DD68-4A05-8D2B-8ABD5B29087C}" = NI Circuit Design Suite 10.1.1 Core
"{767CC44C-9BBC-438D-BAD3-FD4595DD148B}" = VC80CRTRedist - 8.0.50727.762
"{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
"{77F73F6E-139D-4B38-AB0D-6D2F0E860478}" = NI Logos 4.9.1
"{7C0B9FD1-5181-4446-AD62-299873B5508B}" = NI Uninstaller
"{7E3668CB-1228-416E-B721-C2FA3247B985}" = NI LabVIEW Real-Time FIFO for Runtime
"{7F3AD00A-1819-4B15-BB7D-08B3586336D7}" = 3DMark06
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{8833FFB6-5B0C-4764-81AA-06DFEED9A476}" = Realtek 8169 PCI, 8168 and 8101E PCIe Ethernet Network Card Driver for Windows Vista
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8FB1B528-E260-451E-9B55-E9152F94B80B}" = Microsoft Games for Windows - LIVE Redistributable
"{9A4D182C-35C7-4791-8484-4304EBC9101A}" = Windows 7 Upgrade Advisor
"{9E5C4739-D269-4ACC-BB46-4383920151E8}" = NI Circuit Design Suite 10.1.1 Edu Licenses
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{AC76BA86-7AD7-1031-7B44-A94000000001}" = Adobe Reader 9.4.0 - Deutsch
"{B1EE19E5-30DC-4912-85E9-B656867F27B6}_is1" = ICQ Password Changer 1.1
"{B4092C6D-E886-4CB2-BA68-FE5A88D31DE6}_is1" = Spybot - Search & Destroy
"{B7050CBDB2504B34BC2A9CA0A692CC29}" = DivX Web Player
"{B729B3C1-55A9-45FB-B7AD-D6A42DA8C883}" = Hotkey_Driver
"{B83513EC-2E4D-4621-816D-4CCF397BE702}_is1" = CheckDrive
"{B9DB4C76-01A4-46D5-8910-F7AA6376DBAF}" = NVIDIA PhysX
"{BA3602F6-F307-43B8-9879-F8F354C3382F}" = NI Circuit Design Suite 10.1.1 Pro
"{BEE64C14-BEF1-4610-8A68-A16EAA47B882}" = Futuremark SystemInfo
"{C0CBC26C-9A9E-11D4-9304-0000E886B4FC}" = CoDeSys SP RTE
"{C40C3C3D-97CF-44B5-836C-766E374464B3}" = 3DMark Vantage
"{C4BE99A4-D1C7-46CC-9E06-B901A4BC7854}_is1" = ICQ Password Hasher 1.2
"{C5098CA3-ED54-40E7-964A-B73E11AADB2A}" = Langenscheidt Vokabeltrainer 5.0 Englisch
"{C626BDCB-6DCB-4DE4-BD38-D3530C30B9DE}" = CoDeSys V3.4 SP1
"{C7340571-7773-4A8C-9EBC-4E4243B38C76}" = Microsoft XML Parser
"{CC8BC1D1-8357-4D17-81D7-904545E770F3}" = Vokabeltrainer-Update 5.0.13
"{CF097717-F174-4144-954A-FBC4BF301031}" = Nero 7 Premium
"{D105D090-E9E5-4572-A61C-01EDE7568A17}" = NI TDMS
"{DB2C5648-700D-4AEF-83E1-70C72F0C34FA}" = NI Math Kernel Libraries
"{DED53B0B-B67C-4244-AE6A-D6FD3C28D1EF}" = Ad-Aware
"{E040012F-A895-482E-87EF-D747ABB0F1D6}" = CADdy++ - SEE Electrical
"{E38C00D0-A68B-4318-A8A6-F7D4B5B1DF0E}" = Windows Media Encoder 9 Series
"{E3E71D07-CD27-46CB-8448-16D4FB29AA13}" = Microsoft WSE 3.0 Runtime
"{EC1F15E1-F3CC-46EE-B7A5-849A08ED60DC}}_is1" = PantsOff 2.0
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F1A02F9C-B331-47B6-8EDB-29CDB443EB37}" = PKZIP Server for Windows 12.00.0014
"{F333A33D-125C-32A2-8DCE-5C5D14231E27}" = Visual C++ 2008 x86 Runtime - (v9.0.30729)
"{F333A33D-125C-32A2-8DCE-5C5D14231E27}.vc_x86runtime_30729_01" = Visual C++ 2008 x86 Runtime - v9.0.30729.01
"{F7D0E9F5-6025-49FA-B13C-CFA27E062062}" = NI EULA Depot
"{F97E3841-CA9D-4964-9D64-26066241D26F}" = Microsoft Games for Windows - LIVE
"{FCED9B62-34FF-4C15-8A23-F65221F7874D}" = ITECIR Driver
"Ad-Aware" = Ad-Aware
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"AktienProfi_is1" = AktienProfi 3.19.1
"Avira AntiVir Desktop" = Avira AntiVir Personal - Free Antivirus
"Brain Workshop_is1" = Brain Workshop 4.8.1
"BrainTwister 1.0.2" = BrainTwister 1.0.2
"CanonMyPrinter" = Canon Utilities My Printer
"CodInstl" = Intel A/V Codecs V2.0
"EAGLE 5.6.0" = EAGLE 5.6.0
"Easy-PhotoPrint EX" = Canon Utilities Easy-PhotoPrint EX
"elektroCAD-Demo" = elektroCAD-Demo
"Emsisoft Anti-Malware_is1" = Emsisoft Anti-Malware 5.0
"EVEREST Ultimate + Corporate Edition_is1" = EVEREST Ultimate v4.20.1257 + Corporate Edition Beta Registered
"Festo Fluidsim_is1" = Festo FluidSim 3.6
"FlashGet" = FlashGet 1.9.6.1073
"foobar2000" = foobar2000 v0.9.6.9
"HD Tune Pro_is1" = HD Tune Pro 4.01
"InstallShield_{C626BDCB-6DCB-4DE4-BD38-D3530C30B9DE}" = CoDeSys V3.4 SP1
"LOGO!Soft Comfort V5.0" = LOGO!Soft Comfort V5.0
"MAGIX MP3 Maker 16 Download-Version D" = MAGIX MP3 Maker 16 Download-Version 11.0.1.38 (D)
"MAGIX Screenshare D" = MAGIX Screenshare
"MAGIX Speed burnR D" = MAGIX Speed burnR
"Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware
"ManyCam" = ManyCam 2.4 (remove only)
"Mozilla Firefox (3.6.12)" = Mozilla Firefox (3.6.12)
"MP Navigator EX 3.0" = Canon MP Navigator EX 3.0
"NAVIGON Fresh" = NAVIGON Fresh 2.0.2
"NAVIGON Sync" = NAVIGON Sync 2.0.0
"NI Uninstaller" = National Instruments-Software
"NirSoft BlueScreenView" = NirSoft BlueScreenView
"OpenAL" = OpenAL
"SpeedFan" = SpeedFan (remove only)
"SystemRequirementsLab" = System Requirements Lab
"TuneUp Utilities 2011" = TuneUp Utilities 2011
"Unlocker" = Unlocker 1.8.7
"VLC media player" = VLC media player 1.1.4
"Windows Media Encoder 9" = Windows Media Encoder 9 Series
"WinRAR archiver" = WinRAR
"xp-AntiSpy" = xp-AntiSpy 3.96-8
"Yenka" = Yenka
========== HKEY_CURRENT_USER Uninstall List ==========
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
========== Last 10 Event Log Errors ==========
Error reading Event Logs: The Event Service is not operating properly or the Event Logs are corrupt!
< End of report >
--- --- --- |
