| julemary | 10.05.2011 20:12 |
OTL Logfile: Code:
OTL logfile created on: 10.05.2011 20:07:30 - Run 1
OTL by OldTimer - Version 3.2.22.3 Folder = C:\Users\Julia Marie Hofmann\Downloads
Windows Vista Home Premium Edition Service Pack 1 (Version = 6.0.6001) - Type = NTWorkstation
Internet Explorer (Version = 7.0.6001.18000)
Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy
3,00 Gb Total Physical Memory | 2,00 Gb Available Physical Memory | 64,00% Memory free
6,00 Gb Paging File | 5,00 Gb Available in Paging File | 76,00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 142,54 Gb Total Space | 62,06 Gb Free Space | 43,54% Space Free | Partition Type: NTFS
Drive D: | 142,54 Gb Total Space | 142,45 Gb Free Space | 99,94% Space Free | Partition Type: NTFS
Computer Name: JULIAMARIEHO-PC | User Name: Julia Marie Hofmann | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Processes (SafeList) ==========
PRC - C:\Users\Julia Marie Hofmann\Downloads\OTL.exe (OldTimer Tools)
PRC - C:\Windows\Kdytua.exe (videosoft)
PRC - C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
PRC - C:\Program Files\Avira\AntiVir Desktop\sched.exe (Avira GmbH)
PRC - C:\Program Files\Avira\AntiVir Desktop\avguard.exe (Avira GmbH)
PRC - C:\Users\Julia Marie Hofmann\AppData\Roaming\OCS\SM\SearchAnonymizerHelper.exe ()
PRC - C:\Program Files\ICQ6Toolbar\ICQ Service.exe ()
PRC - C:\Program Files\Avira\AntiVir Desktop\avcenter.exe (Avira GmbH)
PRC - C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe (McAfee, Inc.)
PRC - C:\Windows\System32\mfevtps.exe (McAfee, Inc.)
PRC - C:\Program Files\McAfee.com\Agent\mcagent.exe (McAfee, Inc.)
PRC - C:\Program Files\DivX\DivX Update\DivXUpdate.exe ()
PRC - C:\Program Files\Common Files\McAfee\SystemCore\mcshield.exe (McAfee, Inc.)
PRC - C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe (McAfee, Inc.)
PRC - C:\Program Files\Avira\AntiVir Desktop\avshadow.exe (Avira GmbH)
PRC - C:\Program Files\Samsung\EasySpeedUpManager\EasySpeedUpManager.exe (Samsung Electronics Co., Ltd.)
PRC - C:\Windows\System32\Rezip.exe ()
PRC - C:\Program Files\Samsung\Easy Display Manager\dmhkcore.exe (Samsung Electronics Co., Ltd.)
PRC - C:\Program Files\Samsung\EBM\EasyBatteryMgr3.exe (SAMSUNG Electronics co., LTD.)
PRC - C:\Program Files\Samsung\Samsung Update Plus\SUPNotifier.exe ()
PRC - C:\Windows\explorer.exe (Microsoft Corporation)
PRC - C:\Program Files\McAfee\SiteAdvisor\McSACore.exe ()
PRC - C:\Program Files\Samsung\Samsung Magic Doctor\MagicDoctorKbdHk.exe (Samsung Electronics Co., Ltd.)
PRC - C:\Program Files\Vodafone\Vodafone Mobile Connect\Bin\VMCService.exe (Vodafone)
PRC - C:\Windows\System32\conime.exe (Microsoft Corporation)
PRC - C:\Program Files\Microsoft Small Business\Business Contact Manager\BcmSqlStartupSvc.exe (Microsoft Corporation)
========== Modules (SafeList) ==========
MOD - C:\Users\Julia Marie Hofmann\Downloads\OTL.exe (OldTimer Tools)
MOD - C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6001.18523_none_5cdd65e20837faf2\comctl32.dll (Microsoft Corporation)
MOD - C:\Program Files\McAfee\SiteAdvisor\sahook.dll ()
========== Win32 Services (SafeList) ==========
SRV - (Pml Driver HPZ12) -- File not found
SRV - (Net Driver HPZ12) -- File not found
SRV - (hpqddsvc) -- File not found
SRV - (hpqcxs08) -- File not found
SRV - (AntiVirSchedulerService) -- C:\Program Files\Avira\AntiVir Desktop\sched.exe (Avira GmbH)
SRV - (AntiVirService) -- C:\Program Files\Avira\AntiVir Desktop\avguard.exe (Avira GmbH)
SRV - (SearchAnonymizer) -- C:\Users\Julia Marie Hofmann\AppData\Roaming\OCS\SM\SearchAnonymizerHelper.exe ()
SRV - (ICQ Service) -- C:\Program Files\ICQ6Toolbar\ICQ Service.exe ()
SRV - (mfefire) -- C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe (McAfee, Inc.)
SRV - (mfevtp) -- C:\Windows\System32\mfevtps.exe (McAfee, Inc.)
SRV - (McODS) -- C:\Program Files\McAfee\VirusScan\mcods.exe (McAfee, Inc.)
SRV - (McShield) -- C:\Program Files\Common Files\McAfee\SystemCore\\mcshield.exe ()
SRV - (MSK80Service) -- C:\Program Files\Common Files\Mcafee\McSvcHost\McSvHost.exe (McAfee, Inc.)
SRV - (McProxy) -- C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe (McAfee, Inc.)
SRV - (McNASvc) -- C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe (McAfee, Inc.)
SRV - (McNaiAnn) -- C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe (McAfee, Inc.)
SRV - (mcmscsvc) -- C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe (McAfee, Inc.)
SRV - (McMPFSvc) -- C:\Program Files\Common Files\Mcafee\McSvcHost\McSvHost.exe (McAfee, Inc.)
SRV - (McComponentHostService) -- C:\Program Files\McAfee Security Scan\2.0.181\McCHSvc.exe (McAfee, Inc.)
SRV - (Rezip) -- C:\Windows\System32\Rezip.exe ()
SRV - (yksvc) -- C:\Windows\System32\ykx32mpcoinst.dll (Marvell)
SRV - (McAfee SiteAdvisor Service) -- C:\Program Files\McAfee\SiteAdvisor\McSACore.exe ()
SRV - (VMCService) -- C:\Program Files\Vodafone\Vodafone Mobile Connect\Bin\VMCService.exe (Vodafone)
SRV - (WinDefend) -- C:\Program Files\Windows Defender\MpSvc.dll (Microsoft Corporation)
SRV - (BcmSqlStartupSvc) -- C:\Program Files\Microsoft Small Business\Business Contact Manager\BcmSqlStartupSvc.exe (Microsoft Corporation)
========== Driver Services (SafeList) ==========
DRV - (avipbb) -- C:\Windows\System32\drivers\avipbb.sys (Avira GmbH)
DRV - (avgntflt) -- C:\Windows\System32\drivers\avgntflt.sys (Avira GmbH)
DRV - (mfehidk) -- C:\Windows\system32\drivers\mfehidk.sys (McAfee, Inc.)
DRV - (mfefirek) -- C:\Windows\System32\drivers\mfefirek.sys (McAfee, Inc.)
DRV - (mfewfpk) -- C:\Windows\System32\drivers\mfewfpk.sys (McAfee, Inc.)
DRV - (mfeavfk) -- C:\Windows\System32\drivers\mfeavfk.sys (McAfee, Inc.)
DRV - (mfeapfk) -- C:\Windows\System32\drivers\mfeapfk.sys (McAfee, Inc.)
DRV - (mferkdet) -- C:\Windows\System32\drivers\mferkdet.sys (McAfee, Inc.)
DRV - (mfenlfk) -- C:\Windows\System32\drivers\mfenlfk.sys (McAfee, Inc.)
DRV - (cfwids) -- C:\Windows\System32\drivers\cfwids.sys (McAfee, Inc.)
DRV - (mfebopk) -- C:\Windows\System32\drivers\mfebopk.sys (McAfee, Inc.)
DRV - (ssmdrv) -- C:\Windows\System32\drivers\ssmdrv.sys (Avira GmbH)
DRV - (atikmdag) -- C:\Windows\System32\drivers\atikmdag.sys (ATI Technologies Inc.)
DRV - (VMC326) -- C:\Windows\System32\drivers\VMC326.sys (Vimicro Corporation)
DRV - (athr) -- C:\Windows\System32\drivers\athr.sys (Atheros Communications, Inc.)
DRV - (KMDFMEMIO) -- C:\Windows\System32\drivers\KMDFMEMIO.sys (SAMSUNG ELECTRONICS CO., LTD.)
DRV - (AgereSoftModem) -- C:\Windows\System32\drivers\AGRSM.sys (Agere Systems)
DRV - (hwdatacard) -- C:\Windows\System32\drivers\ewusbmdm.sys (Huawei Technologies Co., Ltd.)
DRV - (NETw3v32) Intel(R) -- C:\Windows\System32\drivers\NETw3v32.sys (Intel Corporation)
DRV - (bcm4sbxp) -- C:\Windows\System32\drivers\bcm4sbxp.sys (Broadcom Corporation)
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = iGoogle
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = iGoogle
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-941840049-3476719048-1091377070-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = iGoogle
IE - HKU\S-1-5-21-941840049-3476719048-1091377070-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = ICQ.com Suche
IE - HKU\S-1-5-21-941840049-3476719048-1091377070-1003\SOFTWARE\Microsoft\Internet Explorer\Main,StartPageCache = 1
IE - HKU\S-1-5-21-941840049-3476719048-1091377070-1003\..\URLSearchHook: - Reg Error: Key error. File not found
IE - HKU\S-1-5-21-941840049-3476719048-1091377070-1003\..\URLSearchHook: {00000000-6E41-4FD3-8538-502F5495E5FC} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask)
IE - HKU\S-1-5-21-941840049-3476719048-1091377070-1003\..\URLSearchHook: {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll (ICQ)
IE - HKU\S-1-5-21-941840049-3476719048-1091377070-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-941840049-3476719048-1091377070-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local
========== FireFox ==========
FF - prefs.js..browser.search.defaultengine: "Ask.com"
FF - prefs.js..browser.search.defaultenginename: "Ask.com"
FF - prefs.js..browser.search.defaultthis.engineName: "SearchElf 1.2 Customized Web Search"
FF - prefs.js..browser.search.defaulturl: "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2769726&SearchSource=3&q={searchTerms}"
FF - prefs.js..browser.search.order.1: "Ask.com"
FF - prefs.js..browser.search.selectedEngine: "Ask.com"
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: "hxxp://start.icq.com/"
FF - prefs.js..extensions.enabledItems: {B7082FAA-CB62-4872-9106-E42DD88EDE45}:2.8
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}:6.0.22
FF - prefs.js..extensions.enabledItems: toolbar@ask.com:3.11.3.15590
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}:6.0.20
FF - prefs.js..extensions.enabledItems: engine@conduit.com:3.3.3.2
FF - prefs.js..extensions.enabledItems: {f4e6547e-325b-403c-a3bb-ad29ed37a92f}:3.3.3.2
FF - prefs.js..extensions.enabledItems: {AB2CE124-6272-4b12-94A9-7303C7397BD1}:5.0.0.6906
FF - prefs.js..extensions.enabledItems: {E2883E8F-472F-4fb0-9522-AC9BF37916A7}:1.6.2.97
FF - prefs.js..extensions.enabledItems: {E898C368-C70D-47C9-BE13-7312EB432457}:1.9.1
FF - prefs.js..keyword.URL: "hxxp://websearch.ask.com/redirect?client=ff&src=kw&tb=ATU3&o=15380&locale=de_DE&apn_uid=3CF53894-04DC-436B-880C-448575882256&apn_ptnrs=UJ&apn_sauid=8ABDB395-C7D3-4D30-9EE9-DAD8C6C7E58C&apn_dtid=YYYYYYYYDE&q="
FF - HKLM\software\mozilla\Firefox\Extensions\\{B7082FAA-CB62-4872-9106-E42DD88EDE45}: C:\Program Files\McAfee\SiteAdvisor [2011.05.10 18:41:09 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.17\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2011.05.01 19:32:15 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.17\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2011.05.01 19:32:16 | 000,000,000 | ---D | M]
[2010.10.27 21:06:40 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Julia Marie Hofmann\AppData\Roaming\mozilla\Extensions
[2011.05.09 22:13:09 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Julia Marie Hofmann\AppData\Roaming\mozilla\Firefox\Profiles\8f91m1y7.default\extensions
[2010.11.02 20:50:14 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Users\Julia Marie Hofmann\AppData\Roaming\mozilla\Firefox\Profiles\8f91m1y7.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2011.04.24 19:20:22 | 000,000,000 | ---D | M] ("ICQ Toolbar") -- C:\Users\Julia Marie Hofmann\AppData\Roaming\mozilla\Firefox\Profiles\8f91m1y7.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}
[2011.01.10 17:57:24 | 000,000,000 | ---D | M] (Adobe DLM (powered by getPlus(R))) -- C:\Users\Julia Marie Hofmann\AppData\Roaming\mozilla\Firefox\Profiles\8f91m1y7.default\extensions\{E2883E8F-472F-4fb0-9522-AC9BF37916A7}
[2011.03.25 18:48:18 | 000,000,000 | ---D | M] (SearchElf 1.2 Community Toolbar) -- C:\Users\Julia Marie Hofmann\AppData\Roaming\mozilla\Firefox\Profiles\8f91m1y7.default\extensions\{f4e6547e-325b-403c-a3bb-ad29ed37a92f}
[2011.03.25 18:48:20 | 000,000,000 | ---D | M] (Conduit Engine) -- C:\Users\Julia Marie Hofmann\AppData\Roaming\mozilla\Firefox\Profiles\8f91m1y7.default\extensions\engine@conduit.com
[2011.04.09 22:05:19 | 000,000,000 | ---D | M] (aTube Toolbar) -- C:\Users\Julia Marie Hofmann\AppData\Roaming\mozilla\Firefox\Profiles\8f91m1y7.default\extensions\toolbar@ask.com
[2011.05.09 20:31:26 | 000,002,396 | ---- | M] () -- C:\Users\Julia Marie Hofmann\AppData\Roaming\Mozilla\Firefox\Profiles\8f91m1y7.default\searchplugins\askcom.xml
[2010.12.29 23:13:44 | 000,001,129 | ---- | M] () -- C:\Users\Julia Marie Hofmann\AppData\Roaming\Mozilla\Firefox\Profiles\8f91m1y7.default\searchplugins\conduit.xml
[2010.12.29 23:13:44 | 000,001,097 | ---- | M] () -- C:\Users\Julia Marie Hofmann\AppData\Roaming\Mozilla\Firefox\Profiles\8f91m1y7.default\searchplugins\icqplugin-1.xml
[2010.12.29 23:13:44 | 000,001,097 | ---- | M] () -- C:\Users\Julia Marie Hofmann\AppData\Roaming\Mozilla\Firefox\Profiles\8f91m1y7.default\searchplugins\icqplugin-2.xml
[2011.03.10 22:03:03 | 000,000,950 | ---- | M] () -- C:\Users\Julia Marie Hofmann\AppData\Roaming\Mozilla\Firefox\Profiles\8f91m1y7.default\searchplugins\icqplugin-3.xml
[2011.03.12 12:52:43 | 000,000,950 | ---- | M] () -- C:\Users\Julia Marie Hofmann\AppData\Roaming\Mozilla\Firefox\Profiles\8f91m1y7.default\searchplugins\icqplugin-4.xml
[2011.03.14 21:14:16 | 000,000,950 | ---- | M] () -- C:\Users\Julia Marie Hofmann\AppData\Roaming\Mozilla\Firefox\Profiles\8f91m1y7.default\searchplugins\icqplugin-5.xml
[2011.03.26 19:42:14 | 000,000,950 | ---- | M] () -- C:\Users\Julia Marie Hofmann\AppData\Roaming\Mozilla\Firefox\Profiles\8f91m1y7.default\searchplugins\icqplugin-6.xml
[2011.04.22 23:17:48 | 000,000,950 | ---- | M] () -- C:\Users\Julia Marie Hofmann\AppData\Roaming\Mozilla\Firefox\Profiles\8f91m1y7.default\searchplugins\icqplugin-7.xml
[2011.05.01 23:23:37 | 000,000,950 | ---- | M] () -- C:\Users\Julia Marie Hofmann\AppData\Roaming\Mozilla\Firefox\Profiles\8f91m1y7.default\searchplugins\icqplugin-8.xml
[2011.03.30 15:14:34 | 000,001,042 | ---- | M] () -- C:\Users\Julia Marie Hofmann\AppData\Roaming\Mozilla\Firefox\Profiles\8f91m1y7.default\searchplugins\icqplugin.xml
[2010.12.29 23:13:44 | 000,002,182 | ---- | M] () -- C:\Users\Julia Marie Hofmann\AppData\Roaming\Mozilla\Firefox\Profiles\8f91m1y7.default\searchplugins\{4A462B99-C07A-4D6F-BFE8-FC7B5D6A5934}.xml
[2010.12.29 23:13:44 | 000,002,071 | ---- | M] () -- C:\Users\Julia Marie Hofmann\AppData\Roaming\Mozilla\Firefox\Profiles\8f91m1y7.default\searchplugins\{95A068F0-3A94-4DCD-9A59-FC823549B8AE}.xml
[2010.12.29 23:13:44 | 000,001,864 | ---- | M] () -- C:\Users\Julia Marie Hofmann\AppData\Roaming\Mozilla\Firefox\Profiles\8f91m1y7.default\searchplugins\{C2E33AA7-C239-44DF-9E10-7FE14C7B4E0A}.xml
[2011.04.24 20:44:32 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2011.01.08 23:34:08 | 000,000,000 | ---D | M] (Skype extension) -- C:\Program Files\Mozilla Firefox\extensions\{AB2CE124-6272-4b12-94A9-7303C7397BD1}
[2010.11.28 21:39:51 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}
[2010.10.27 21:27:01 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}
[2011.05.10 18:41:09 | 000,000,000 | ---D | M] (McAfee SiteAdvisor) -- C:\PROGRAM FILES\MCAFEE\SITEADVISOR
[2011.05.09 21:54:32 | 000,000,000 | ---D | M] (XULRunner) -- C:\USERS\JULIA MARIE HOFMANN\APPDATA\LOCAL\{E898C368-C70D-47C9-BE13-7312EB432457}
[2010.10.13 23:28:54 | 000,024,376 | ---- | M] (McAfee, Inc.) -- C:\Program Files\Mozilla Firefox\components\Scriptff.dll
[2010.10.27 21:26:36 | 000,472,808 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npdeployJava1.dll
[2010.12.29 23:13:44 | 000,001,678 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\amazondotcom-de.xml
[2010.12.29 23:13:44 | 000,002,647 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\eBay-de.xml
[2010.12.29 23:13:44 | 000,007,045 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\leo_ende_de.xml
[2010.12.29 23:13:44 | 000,001,272 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wikipedia-de.xml
[2010.12.29 23:13:44 | 000,001,164 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\yahoo-de.xml
Hosts file not found
O2 - BHO: (McAfee Phishing Filter) - {27B4851A-3207-45A2-B947-BE8AFE6163AB} - c:\Program Files\McAfee\MSK\mskapbho.dll ()
O2 - BHO: (scriptproxy) - {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - C:\Program Files\Common Files\McAfee\SystemCore\ScriptSn.20101105223242.dll (McAfee, Inc.)
O2 - BHO: (Skype Plug-In) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.6.6209.1142\swg.dll (Google Inc.)
O2 - BHO: (McAfee SiteAdvisor BHO) - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - c:\Program Files\McAfee\SiteAdvisor\McIEPlg.dll ()
O2 - BHO: (aTube Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask)
O3 - HKLM\..\Toolbar: (McAfee SiteAdvisor Toolbar) - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\Program Files\McAfee\SiteAdvisor\McIEPlg.dll ()
O3 - HKLM\..\Toolbar: (ICQToolBar) - {855F3B16-6D32-4FE6-8A56-BBB695989046} - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll (ICQ)
O3 - HKLM\..\Toolbar: (aTube Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask)
O3 - HKU\S-1-5-21-941840049-3476719048-1091377070-1003\..\Toolbar\WebBrowser: (aTube Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask)
O4 - HKLM..\Run: [avgnt] C:\Program Files\Avira\AntiVir Desktop\avgnt.exe (Avira GmbH)
O4 - HKLM..\Run: [DivXUpdate] C:\Program Files\DivX\DivX Update\DivXUpdate.exe ()
O4 - HKLM..\Run: [mcui_exe] C:\Program Files\McAfee.com\Agent\mcagent.exe (McAfee, Inc.)
O4 - HKLM..\Run: [MobileConnect] C:\Program Files\Vodafone\Vodafone Mobile Connect\Bin\MobileConnect.exe (Vodafone)
O4 - HKLM..\Run: [Ocs_SM] C:\Users\Julia Marie Hofmann\AppData\Roaming\OCS\SM\SearchAnonymizer.exe (OCS)
O4 - HKLM..\Run: [StartCCC] C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.)
O4 - HKLM..\Run: [Windows Defender] C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation)
O4 - HKU\S-1-5-19..\Run: [WindowsWelcomeCenter] C:\Windows\System32\oobefldr.dll (Microsoft Corporation)
O4 - HKU\S-1-5-20..\Run: [WindowsWelcomeCenter] C:\Windows\System32\oobefldr.dll (Microsoft Corporation)
O4 - HKU\S-1-5-21-941840049-3476719048-1091377070-1003..\Run: [4E3E0230AEBB4E96] C:\Recycle.Bin\Recycle.Bin.exe (Microsoft Corporation)
O4 - HKU\S-1-5-21-941840049-3476719048-1091377070-1003..\Run: [5GUTNY6MFK] C:\Windows\Kdytua.exe (videosoft)
O4 - HKU\S-1-5-21-941840049-3476719048-1091377070-1003..\Run: [Cqolahubimudutib] C:\Users\Julia Marie Hofmann\AppData\Local\papasp16.dll (madshi.net)
O4 - HKU\S-1-5-21-941840049-3476719048-1091377070-1003..\Run: [ICQ] C:\Program Files\ICQ7.5\ICQ.exe (ICQ, LLC.)
O4 - HKU\S-1-5-21-941840049-3476719048-1091377070-1003..\Run: [ManyCam] C:\Program Files\ManyCam\Bin\ManyCam.exe (ManyCam LLC)
O4 - HKU\S-1-5-21-941840049-3476719048-1091377070-1003..\Run: [R8388QA8U8] File not found
O4 - HKU\S-1-5-21-941840049-3476719048-1091377070-1003..\Run: [WindowsWelcomeCenter] C:\Windows\System32\oobefldr.dll (Microsoft Corporation)
O4 - HKU\S-1-5-21-941840049-3476719048-1091377070-1003..\Run: [Wpegohavonaxeh] C:\Users\Julia Marie Hofmann\AppData\Local\ezezuluf.dll (Alps Electric Co., Ltd.)
O4 - HKU\S-1-5-21-941840049-3476719048-1091377070-1003..\RunOnce: [6D91827DA7454F3D02CE3766B8A642F36F7CB4BBE79C4A3AFCB5EF273AC84ED4] c:\users\***\appdata\roaming\microsoft\internet explorer\report.exe (punyikajkvqpamyx)
O8 - Extra context menu item: Google Sidewiki... - C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_D183CA64F05FDD98.dll (Google Inc.)
O9 - Extra Button: ICQ7.5 - {7578ADEA-D65F-4C89-A249-B1C88B6FFC20} - C:\Program Files\ICQ7.5\ICQ.exe (ICQ, LLC.)
O9 - Extra 'Tools' menuitem : ICQ7.5 - {7578ADEA-D65F-4C89-A249-B1C88B6FFC20} - C:\Program Files\ICQ7.5\ICQ.exe (ICQ, LLC.)
O9 - Extra Button: Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O9 - Extra 'Tools' menuitem : Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000008 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O13 - gopher Prefix: missing
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab (Java Plug-in 1.6.0_22)
O16 - DPF: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab (Java Plug-in 1.6.0_20)
O16 - DPF: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab (Java Plug-in 1.6.0_22)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab (Java Plug-in 1.6.0_22)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.2.1
O18 - Protocol\Handler\sacore {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files\McAfee\SiteAdvisor\McIEPlg.dll ()
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O24 - Desktop WallPaper: C:\Users\Julia Marie Hofmann\AppData\Roaming\Microsoft\Windows Photo Gallery\Hintergrundbild der Windows-Fotogalerie.jpg
O24 - Desktop BackupWallPaper: C:\Users\Julia Marie Hofmann\AppData\Roaming\Microsoft\Windows Photo Gallery\Hintergrundbild der Windows-Fotogalerie.jpg
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2006.09.18 23:43:36 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O33 - MountPoints2\{3f27b85c-1ebb-11e0-99e8-0024546357fb}\Shell - "" = AutoRun
O33 - MountPoints2\{3f27b85c-1ebb-11e0-99e8-0024546357fb}\Shell\AutoRun\command - "" = F:\setup.exe
O33 - MountPoints2\{3f27b868-1ebb-11e0-99e8-0024546357fb}\Shell - "" = AutoRun
O33 - MountPoints2\{3f27b868-1ebb-11e0-99e8-0024546357fb}\Shell\AutoRun\command - "" = F:\setup.exe
O33 - MountPoints2\{d4fa2893-6144-11de-8216-806e6f6e6963}\Shell - "" = AutoRun
O33 - MountPoints2\{d4fa2893-6144-11de-8216-806e6f6e6963}\Shell\AutoRun\command - "" = E:\Autorun.exe
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
NetSvcs: FastUserSwitchingCompatibility - File not found
NetSvcs: Ias - File not found
NetSvcs: Nla - File not found
NetSvcs: Ntmssvc - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: SRService - File not found
NetSvcs: WmdmPmSp - File not found
NetSvcs: LogonHours - File not found
NetSvcs: PCAudit - File not found
NetSvcs: helpsvc - File not found
NetSvcs: uploadmgr - File not found
SafeBootMin: AppMgmt - Service
SafeBootMin: Base - Driver Group
SafeBootMin: Boot Bus Extender - Driver Group
SafeBootMin: Boot file system - Driver Group
SafeBootMin: File system - Driver Group
SafeBootMin: Filter - Driver Group
SafeBootMin: HelpSvc - Service
SafeBootMin: mcmscsvc - C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe (McAfee, Inc.)
SafeBootMin: MCODS - C:\Program Files\McAfee\VirusScan\mcods.exe (McAfee, Inc.)
SafeBootMin: NTDS - File not found
SafeBootMin: PCI Configuration - Driver Group
SafeBootMin: PNP Filter - Driver Group
SafeBootMin: Primary disk - Driver Group
SafeBootMin: sacsvr - Service
SafeBootMin: SCSI Class - Driver Group
SafeBootMin: System Bus Extender - Driver Group
SafeBootMin: WinDefend - C:\Program Files\Windows Defender\MpSvc.dll (Microsoft Corporation)
SafeBootMin: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
SafeBootMin: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
SafeBootMin: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
SafeBootMin: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
SafeBootMin: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
SafeBootMin: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
SafeBootMin: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
SafeBootMin: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
SafeBootMin: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
SafeBootMin: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
SafeBootMin: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
SafeBootMin: {533C5B84-EC70-11D2-9505-00C04F79DEAF} - Volume shadow copy
SafeBootMin: {6BDD1FC1-810F-11D0-BEC7-08002BE2092F} - IEEE 1394 Bus host controllers
SafeBootMin: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
SafeBootMin: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices
SafeBootMin: {D48179BE-EC20-11D1-B6B8-00C04FA372A7} - SBP2 IEEE 1394 Devices
SafeBootMin: {D94EE5D8-D189-4994-83D2-F68D7D41B0E6} - SecurityDevices
SafeBootNet: AppMgmt - Service
SafeBootNet: Base - Driver Group
SafeBootNet: Boot Bus Extender - Driver Group
SafeBootNet: Boot file system - Driver Group
SafeBootNet: File system - Driver Group
SafeBootNet: Filter - Driver Group
SafeBootNet: HelpSvc - Service
SafeBootNet: McMPFSvc - C:\Program Files\Common Files\Mcafee\McSvcHost\McSvHost.exe (McAfee, Inc.)
SafeBootNet: mcmscsvc - C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe (McAfee, Inc.)
SafeBootNet: MCODS - C:\Program Files\McAfee\VirusScan\mcods.exe (McAfee, Inc.)
SafeBootNet: Messenger - Service
SafeBootNet: mfefire - C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe (McAfee, Inc.)
SafeBootNet: mfefirek - C:\Windows\System32\drivers\mfefirek.sys (McAfee, Inc.)
SafeBootNet: mfefirek.sys - C:\Windows\System32\drivers\mfefirek.sys (McAfee, Inc.)
SafeBootNet: mfehidk - C:\Windows\system32\drivers\mfehidk.sys (McAfee, Inc.)
SafeBootNet: mfehidk.sys - C:\Windows\system32\drivers\mfehidk.sys (McAfee, Inc.)
SafeBootNet: mfevtp - C:\Windows\System32\mfevtps.exe (McAfee, Inc.)
SafeBootNet: NDIS Wrapper - Driver Group
SafeBootNet: NetBIOSGroup - Driver Group
SafeBootNet: NetDDEGroup - Driver Group
SafeBootNet: Network - Driver Group
SafeBootNet: NetworkProvider - Driver Group
SafeBootNet: NTDS - File not found
SafeBootNet: PCI Configuration - Driver Group
SafeBootNet: PNP Filter - Driver Group
SafeBootNet: PNP_TDI - Driver Group
SafeBootNet: Primary disk - Driver Group
SafeBootNet: rdsessmgr - Service
SafeBootNet: sacsvr - Service
SafeBootNet: SCSI Class - Driver Group
SafeBootNet: Streams Drivers - Driver Group
SafeBootNet: System Bus Extender - Driver Group
SafeBootNet: TDI - Driver Group
SafeBootNet: WinDefend - C:\Program Files\Windows Defender\MpSvc.dll (Microsoft Corporation)
SafeBootNet: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
SafeBootNet: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
SafeBootNet: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
SafeBootNet: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
SafeBootNet: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
SafeBootNet: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
SafeBootNet: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
SafeBootNet: {4D36E972-E325-11CE-BFC1-08002BE10318} - Net
SafeBootNet: {4D36E973-E325-11CE-BFC1-08002BE10318} - NetClient
SafeBootNet: {4D36E974-E325-11CE-BFC1-08002BE10318} - NetService
SafeBootNet: {4D36E975-E325-11CE-BFC1-08002BE10318} - NetTrans
SafeBootNet: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
SafeBootNet: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
SafeBootNet: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
SafeBootNet: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
SafeBootNet: {50DD5230-BA8A-11D1-BF5D-0000F805F530} - Smart card readers
SafeBootNet: {533C5B84-EC70-11D2-9505-00C04F79DEAF} - Volume shadow copy
SafeBootNet: {6BDD1FC1-810F-11D0-BEC7-08002BE2092F} - IEEE 1394 Bus host controllers
SafeBootNet: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
SafeBootNet: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices
SafeBootNet: {D48179BE-EC20-11D1-B6B8-00C04FA372A7} - SBP2 IEEE 1394 Devices
SafeBootNet: {D94EE5D8-D189-4994-83D2-F68D7D41B0E6} - SecurityDevices
ActiveX: {08B0E5C0-4FCB-11CF-AAA5-00401C608500} - Java (Sun)
ActiveX: {2179C5D3-EBFF-11CF-B6FD-00AA00B4E220} -
ActiveX: {22d6f312-b0f6-11d0-94ab-0080c74c7e95} - Microsoft Windows Media Player 11.0
ActiveX: {25FFAAD0-F4A3-4164-95FF-4461E9F35D51} - .NET Framework
ActiveX: {2C7339CF-2B09-4501-B3F3-F3508C9228ED} - %SystemRoot%\system32\regsvr32.exe /s /n /i:/UserInstall %SystemRoot%\system32\themeui.dll
ActiveX: {3af36230-a269-11d1-b5bf-0000f8051515} - Offline Browsing Pack
ActiveX: {3C3901C5-3455-3E0A-A214-0B093A5070A6} - .NET Framework
ActiveX: {44BBA840-CC51-11CF-AAFA-00AA00B6015C} - "%ProgramFiles%\Windows Mail\WinMail.exe" OCInstallUserConfigOE
ActiveX: {44BBA848-CC51-11CF-AAFA-00AA00B6015C} -
ActiveX: {44BBA855-CC51-11CF-AAFA-00AA00B6015F} - DirectDrawEx
ActiveX: {45ea75a0-a269-11d1-b5bf-0000f8051515} - Internet Explorer Help
ActiveX: {4f645220-306d-11d2-995d-00c04f98bbc9} - Microsoft Windows Script 5.6
ActiveX: {5fd399c0-a70a-11d1-9948-00c04f98bbc9} - Internet Explorer Setup Tools
ActiveX: {630b1da0-b465-11d1-9948-00c04f98bbc9} - Browsing Enhancements
ActiveX: {6BF52A52-394A-11d3-B153-00C04F79FAA6} - Microsoft Windows Media Player
ActiveX: {6fab99d0-bab8-11d1-994a-00c04f98bbc9} - MSN Site Access
ActiveX: {7790769C-0471-11d2-AF11-00C04FA35D02} - Address Book 7
ActiveX: {7C028AF8-F614-47B3-82DA-BA94E41B1089} - .NET Framework
ActiveX: {89820200-ECBD-11cf-8B85-00AA005B4340} - regsvr32.exe /s /n /i:U shell32.dll
ActiveX: {89820200-ECBD-11cf-8B85-00AA005B4383} - C:\Windows\system32\ie4uinit.exe -BaseSettings
ActiveX: {89B4C1CD-B018-4511-B0A1-5476DBF70820} - C:\Windows\system32\Rundll32.exe C:\Windows\system32\mscories.dll,Install
ActiveX: {9381D8F2-0288-11D0-9501-00AA00B911A5} - Dynamic HTML Data Binding
ActiveX: {C9E9A340-D1F1-11D0-821E-444553540600} - Internet Explorer Core Fonts
ActiveX: {CDD7975E-60F8-41d5-8149-19E51D6F71D0} - Windows Movie Maker v2.1
ActiveX: {D27CDB6E-AE6D-11CF-96B8-444553540000} - Adobe Flash Player
ActiveX: {de5aed00-a4bf-11d1-9948-00c04f98bbc9} - HTML Help
ActiveX: {E92B03AB-B707-11d2-9CBD-0000F87A369E} - Active Directory Service Interface
ActiveX: >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} - C:\Windows\system32\unregmp2.exe /ShowWMP
ActiveX: >{26923b43-4d38-484f-9b9e-de460746276c} - C:\Windows\system32\ie4uinit.exe -UserIconConfig
ActiveX: >{60B49E34-C7CC-11D0-8953-00A0C90347FF} - RunDLL32 IEDKCS32.DLL,BrandIE4 SIGNUP
Drivers32: msacm.l3acm - C:\Windows\System32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: MSVideo8 - C:\Windows\System32\vfwwdm32.dll (Microsoft Corporation)
Drivers32: vidc.cvid - C:\Windows\System32\iccvid.dll (Radius Inc.)
Drivers32: vidc.DIVX - C:\Windows\System32\DivX.dll (DivX, Inc.)
Drivers32: VIDC.FMVC - C:\Windows\System32\fmcodec.DLL (Fox Magic Software)
Drivers32: vidc.iv50 - C:\Windows\System32\ir50_32.dll (Intel Corporation)
Drivers32: vidc.VP60 - C:\Windows\System32\vp6vfw.dll (On2.com)
Drivers32: vidc.VP61 - C:\Windows\System32\vp6vfw.dll (On2.com)
Drivers32: vidc.yv12 - C:\Windows\System32\DivX.dll (DivX, Inc.)
CREATERESTOREPOINT
Restore point Set: OTL Restore Point
========== Files/Folders - Created Within 30 Days ==========
[2011.05.10 19:36:47 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee
[2011.05.10 19:30:25 | 000,791,393 | ---- | C] (Lars Hederer ) -- C:\Users\Julia Marie Hofmann\Desktop\Erunt-setup.exe
[2011.05.10 19:30:25 | 000,580,608 | ---- | C] (OldTimer Tools) -- C:\Users\Julia Marie Hofmann\Desktop\OTL.exe
[2011.05.10 19:30:25 | 000,446,464 | ---- | C] (OldTimer Tools) -- C:\Users\Julia Marie Hofmann\Desktop\TFC.exe
[2011.05.10 19:27:25 | 000,000,000 | ---D | C] -- C:\Program Files\Trend Micro
[2011.05.10 19:27:25 | 000,000,000 | ---D | C] -- C:\Users\Julia Marie Hofmann\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\HiJackThis
[2011.05.10 15:05:32 | 000,000,000 | ---D | C] -- C:\Users\Julia Marie Hofmann\AppData\Roaming\Help
[2011.05.10 14:45:38 | 000,000,000 | ---D | C] -- C:\Windows\Sun
[2011.05.09 22:11:21 | 000,136,704 | ---- | C] (videosoft) -- C:\Windows\Kdytua.exe
[2011.05.09 21:54:32 | 000,000,000 | ---D | C] -- C:\Users\Julia Marie Hofmann\AppData\Local\{E898C368-C70D-47C9-BE13-7312EB432457}
[2011.04.27 11:53:49 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\Apphlpdm.dll
[2011.04.27 11:53:48 | 004,240,384 | ---- | C] (Microsoft) -- C:\Windows\System32\GameUXLegacyGDFs.dll
[2011.04.25 14:08:26 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
[2011.04.24 19:20:40 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ICQ7.5
[2011.04.24 19:17:49 | 000,000,000 | ---D | C] -- C:\Program Files\ICQ7.5
[2011.04.14 20:58:51 | 000,292,864 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\System32\atmfd.dll
[2011.04.14 20:58:50 | 000,034,304 | ---- | C] (Adobe Systems) -- C:\Windows\System32\atmlib.dll
[2011.04.14 20:58:37 | 001,136,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mfc42.dll
[2011.04.14 20:58:36 | 001,161,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mfc42u.dll
[2011.04.14 20:58:22 | 000,025,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dnscacheugc.exe
[2011.04.14 20:58:05 | 000,380,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieapfltr.dll
[2011.04.14 20:57:57 | 000,671,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mstime.dll
[2011.04.14 20:57:57 | 000,389,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\html.iec
[2011.04.14 20:57:57 | 000,389,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iedkcs32.dll
[2011.04.14 20:57:57 | 000,230,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieaksie.dll
[2011.04.14 20:57:57 | 000,193,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iepeers.dll
[2011.04.14 20:57:56 | 001,383,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mshtml.tlb
[2011.04.14 20:57:56 | 000,467,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeeds.dll
[2011.04.14 20:57:56 | 000,078,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieencode.dll
[2011.04.14 20:57:56 | 000,028,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jsproxy.dll
[2011.04.14 20:57:50 | 002,040,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\win32k.sys
[2011.04.14 20:57:46 | 000,512,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jscript.dll
[2011.04.14 20:57:46 | 000,430,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\vbscript.dll
[2008.01.21 04:24:21 | 000,270,336 | ---- | C] (Alps Electric Co., Ltd.) -- C:\Users\Julia Marie Hofmann\AppData\Local\ezezuluf.dll
[2008.01.21 04:24:21 | 000,118,784 | ---- | C] (madshi.net) -- C:\Users\Julia Marie Hofmann\AppData\Local\papasp16.dll
[1 C:\Users\Julia Marie Hofmann\Desktop\*.tmp files -> C:\Users\Julia Marie Hofmann\Desktop\*.tmp -> ]
========== Files - Modified Within 30 Days ==========
[2011.05.10 20:11:04 | 000,000,320 | -H-- | M] () -- C:\Windows\tasks\{22116563-108C-42c0-A7CE-60161B75E508}.job
[2011.05.10 19:56:09 | 000,000,274 | -H-- | M] () -- C:\Windows\tasks\{810401E2-DDE0-454e-B0E2-AA89C9E5967C}.job
[2011.05.10 19:54:43 | 000,002,511 | ---- | M] () -- C:\Users\Julia Marie Hofmann\Desktop\HiJackThis.lnk
[2011.05.10 19:42:54 | 000,004,784 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
[2011.05.10 19:42:54 | 000,004,784 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
[2011.05.10 19:36:47 | 000,001,695 | ---- | M] () -- C:\Users\Public\Desktop\McAfee Security Center.lnk
[2011.05.10 19:36:33 | 000,001,094 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2011.05.10 19:36:30 | 000,000,320 | -H-- | M] () -- C:\Windows\tasks\{BBAEAEAF-1275-40e2-BD6C-BC8F88BD114A}.job
[2011.05.10 19:35:31 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2011.05.10 19:35:23 | 3184,119,808 | -HS- | M] () -- C:\hiberfil.sys
[2011.05.10 19:34:29 | 000,000,012 | ---- | M] () -- C:\Windows\bthservsdp.dat
[2011.05.10 19:31:04 | 000,302,080 | ---- | M] () -- C:\Users\Julia Marie Hofmann\Desktop\g2m3e4r.exe
[2011.05.10 19:30:35 | 000,791,393 | ---- | M] (Lars Hederer ) -- C:\Users\Julia Marie Hofmann\Desktop\Erunt-setup.exe
[2011.05.10 19:30:31 | 000,446,464 | ---- | M] (OldTimer Tools) -- C:\Users\Julia Marie Hofmann\Desktop\TFC.exe
[2011.05.10 19:30:28 | 000,580,608 | ---- | M] (OldTimer Tools) -- C:\Users\Julia Marie Hofmann\Desktop\OTL.exe
[2011.05.10 19:28:05 | 000,001,098 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2011.05.10 18:42:17 | 000,000,120 | ---- | M] () -- C:\Users\Julia Marie Hofmann\AppData\Local\Kdekezibeceris.dat
[2011.05.10 14:44:59 | 000,000,000 | ---- | M] () -- C:\Users\Julia Marie Hofmann\AppData\Local\Qyinadisuvubov.bin
[2011.05.09 22:10:56 | 000,136,704 | ---- | M] (videosoft) -- C:\Windows\Kdytua.exe
[2011.05.09 20:25:41 | 000,035,328 | ---- | M] () -- C:\Users\Julia Marie Hofmann\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011.05.09 20:07:08 | 000,021,139 | ---- | M] () -- C:\Users\Julia Marie Hofmann\Documents\4.klasse.odt
[2011.05.09 19:31:44 | 000,685,712 | ---- | M] () -- C:\Windows\System32\perfh007.dat
[2011.05.09 19:31:44 | 000,642,704 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2011.05.09 19:31:44 | 000,149,980 | ---- | M] () -- C:\Windows\System32\perfc007.dat
[2011.05.09 19:31:44 | 000,121,592 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2011.05.09 19:14:09 | 000,000,446 | -H-- | M] () -- C:\Windows\tasks\User_Feed_Synchronization-{3CBA2450-46AB-4A43-805B-A6A5BDFEE5D1}.job
[2011.05.08 01:17:42 | 000,387,858 | ---- | M] () -- C:\Users\Julia Marie Hofmann\Documents\muttertag.odt
[2011.05.03 17:41:06 | 000,011,600 | ---- | M] () -- C:\Users\Julia Marie Hofmann\Documents\meldeplan.odt
[2011.04.30 23:25:24 | 000,011,264 | -H-- | M] () -- C:\Users\Julia Marie Hofmann\Documents\photothumb.db
[2011.04.30 23:21:33 | 000,152,458 | ---- | M] () -- C:\Users\Julia Marie Hofmann\Documents\die coolen.JPG
[2011.04.26 16:55:01 | 000,000,502 | -H-- | M] () -- C:\Windows\tasks\Norton Security Scan for Julia Marie Hofmann.job
[2011.04.25 14:08:26 | 000,000,859 | ---- | M] () -- C:\Users\Public\Desktop\VLC media player.lnk
[2011.04.25 14:06:50 | 020,533,281 | ---- | M] () -- C:\Users\Julia Marie Hofmann\Documents\vlc-1.1.9-win32.exe
[2011.04.24 19:20:40 | 000,001,609 | ---- | M] () -- C:\Users\Public\Desktop\ICQ7.5.lnk
[2011.04.15 11:53:24 | 000,002,545 | ---- | M] () -- C:\Users\Julia Marie Hofmann\Desktop\TubeBox! starten.lnk
[2011.04.15 11:16:09 | 000,395,056 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT
[1 C:\Users\Julia Marie Hofmann\Desktop\*.tmp files -> C:\Users\Julia Marie Hofmann\Desktop\*.tmp -> ]
========== Files Created - No Company Name ==========
[2011.05.10 19:30:25 | 000,302,080 | ---- | C] () -- C:\Users\Julia Marie Hofmann\Desktop\g2m3e4r.exe
[2011.05.10 19:27:26 | 000,002,511 | ---- | C] () -- C:\Users\Julia Marie Hofmann\Desktop\HiJackThis.lnk
[2011.05.10 15:37:59 | 000,000,274 | -H-- | C] () -- C:\Windows\tasks\{810401E2-DDE0-454e-B0E2-AA89C9E5967C}.job
[2011.05.09 22:11:19 | 000,000,320 | -H-- | C] () -- C:\Windows\tasks\{BBAEAEAF-1275-40e2-BD6C-BC8F88BD114A}.job
[2011.05.09 22:11:07 | 000,000,320 | -H-- | C] () -- C:\Windows\tasks\{22116563-108C-42c0-A7CE-60161B75E508}.job
[2011.05.09 21:54:33 | 000,000,120 | ---- | C] () -- C:\Users\Julia Marie Hofmann\AppData\Local\Kdekezibeceris.dat
[2011.05.09 21:54:33 | 000,000,000 | ---- | C] () -- C:\Users\Julia Marie Hofmann\AppData\Local\Qyinadisuvubov.bin
[2011.05.09 20:07:06 | 000,021,139 | ---- | C] () -- C:\Users\Julia Marie Hofmann\Documents\4.klasse.odt
[2011.05.08 01:17:41 | 000,387,858 | ---- | C] () -- C:\Users\Julia Marie Hofmann\Documents\muttertag.odt
[2011.05.03 17:41:04 | 000,011,600 | ---- | C] () -- C:\Users\Julia Marie Hofmann\Documents\meldeplan.odt
[2011.04.30 23:21:33 | 000,152,458 | ---- | C] () -- C:\Users\Julia Marie Hofmann\Documents\die coolen.JPG
[2011.04.25 14:08:26 | 000,000,859 | ---- | C] () -- C:\Users\Public\Desktop\VLC media player.lnk
[2011.04.25 14:06:15 | 020,533,281 | ---- | C] () -- C:\Users\Julia Marie Hofmann\Documents\vlc-1.1.9-win32.exe
[2011.04.24 19:20:40 | 000,001,609 | ---- | C] () -- C:\Users\Public\Desktop\ICQ7.5.lnk
[2011.01.08 23:35:29 | 000,000,056 | -H-- | C] () -- C:\ProgramData\ezsidmv.dat
[2010.12.20 23:40:41 | 000,021,840 | ---- | C] () -- C:\Windows\System32\SIntfNT.dll
[2010.12.20 23:40:41 | 000,017,212 | ---- | C] () -- C:\Windows\System32\SIntf32.dll
[2010.12.20 23:40:41 | 000,012,067 | ---- | C] () -- C:\Windows\System32\SIntf16.dll
[2010.12.18 22:02:47 | 000,000,528 | ---- | C] () -- C:\Windows\eReg.dat
[2010.10.30 01:17:36 | 000,035,328 | ---- | C] () -- C:\Users\Julia Marie Hofmann\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2009.06.07 13:27:20 | 000,073,728 | ---- | C] () -- C:\Windows\System32\vbzlib1.dll
[2009.04.29 02:08:54 | 000,000,012 | ---- | C] () -- C:\Windows\bthservsdp.dat
[2009.04.28 11:33:51 | 000,000,000 | ---- | C] () -- C:\Windows\ativpsrm.bin
[2009.04.28 11:30:06 | 000,307,200 | ---- | C] () -- C:\Windows\SetDisplayResolution.exe
[2009.04.28 10:55:19 | 000,106,605 | ---- | C] () -- C:\Windows\System32\StructuredQuerySchema.bin
[2009.04.28 10:55:19 | 000,018,904 | ---- | C] () -- C:\Windows\System32\StructuredQuerySchemaTrivial.bin
[2009.04.28 10:25:05 | 000,000,135 | R--- | C] () -- C:\Windows\System32\lngEng.ini
[2009.04.28 10:25:05 | 000,000,117 | ---- | C] () -- C:\Windows\System32\lngKor.ini
[2009.04.28 10:20:21 | 000,311,296 | ---- | C] () -- C:\Windows\System32\Rezip.exe
[2009.04.28 10:19:18 | 000,040,960 | ---- | C] () -- C:\Windows\System32\IhDEV.exe
[2009.04.28 10:19:18 | 000,024,576 | ---- | C] () -- C:\Windows\System32\IhINF.exe
[2009.04.28 10:19:04 | 000,003,874 | ---- | C] () -- C:\Windows\HotFixList.ini
[2009.04.28 09:01:38 | 000,685,712 | ---- | C] () -- C:\Windows\System32\perfh007.dat
[2009.04.28 09:01:38 | 000,290,748 | ---- | C] () -- C:\Windows\System32\perfi007.dat
[2009.04.28 09:01:38 | 000,149,980 | ---- | C] () -- C:\Windows\System32\perfc007.dat
[2009.04.28 09:01:38 | 000,036,916 | ---- | C] () -- C:\Windows\System32\perfd007.dat
[2009.04.28 08:53:23 | 001,060,424 | ---- | C] () -- C:\Windows\System32\WdfCoInstaller01000.dll
[2009.04.28 08:53:09 | 000,159,744 | ---- | C] () -- C:\Windows\System32\atitmmxx.dll
[2009.04.28 08:53:09 | 000,081,920 | ---- | C] () -- C:\Windows\System32\ATIODE.exe
[2009.04.28 08:53:08 | 000,181,944 | ---- | C] () -- C:\Windows\System32\atiicdxx.dat
[2009.04.28 08:53:08 | 000,045,056 | ---- | C] () -- C:\Windows\System32\ATIODCLI.exe
[2008.03.07 17:43:56 | 000,084,734 | R--- | C] () -- C:\ProgramData\DeviceManager.xml.rc4
[2008.03.07 14:47:30 | 000,020,270 | ---- | C] () -- C:\ProgramData\DeviceInstaller.xml
[2008.02.09 18:03:07 | 000,024,576 | ---- | C] () -- C:\Windows\System32\drivers\Marker.exe
[2007.02.26 09:49:12 | 006,139,774 | ---- | C] () -- C:\Windows\imagine digital freedom.dat
[2006.11.02 14:57:28 | 000,067,584 | --S- | C] () -- C:\Windows\bootstat.dat
[2006.11.02 14:47:37 | 000,395,056 | ---- | C] () -- C:\Windows\System32\FNTCACHE.DAT
[2006.11.02 14:35:32 | 000,005,632 | ---- | C] () -- C:\Windows\System32\sysprepMCE.dll
[2006.11.02 12:33:01 | 000,642,704 | ---- | C] () -- C:\Windows\System32\perfh009.dat
[2006.11.02 12:33:01 | 000,287,440 | ---- | C] () -- C:\Windows\System32\perfi009.dat
[2006.11.02 12:33:01 | 000,121,592 | ---- | C] () -- C:\Windows\System32\perfc009.dat
[2006.11.02 12:33:01 | 000,030,674 | ---- | C] () -- C:\Windows\System32\perfd009.dat
[2006.11.02 12:25:21 | 000,061,440 | ---- | C] () -- C:\Windows\System32\igfxTMM.dll
[2006.11.02 12:23:21 | 000,215,943 | ---- | C] () -- C:\Windows\System32\dssec.dat
[2006.11.02 10:58:30 | 000,043,131 | ---- | C] () -- C:\Windows\mib.bin
[2006.11.02 10:19:00 | 000,000,741 | ---- | C] () -- C:\Windows\System32\NOISE.DAT
[2006.11.02 09:40:29 | 000,013,750 | ---- | C] () -- C:\Windows\System32\pacerprf.ini
[2006.11.02 09:25:31 | 000,673,088 | ---- | C] () -- C:\Windows\System32\mlang.dat
[2001.05.24 12:20:38 | 000,544,256 | ---- | C] () -- C:\Windows\System32\janGraphics.dll
========== LOP Check ==========
[2010.12.18 18:34:36 | 000,000,000 | ---D | M] -- C:\Users\Julia Marie Hofmann\AppData\Roaming\GetRightToGo
[2011.05.10 20:09:37 | 000,000,000 | ---D | M] -- C:\Users\Julia Marie Hofmann\AppData\Roaming\ICQ
[2010.12.29 23:13:39 | 000,000,000 | ---D | M] -- C:\Users\Julia Marie Hofmann\AppData\Roaming\ICQ-Tools.de
[2010.12.20 02:08:53 | 000,000,000 | ---D | M] -- C:\Users\Julia Marie Hofmann\AppData\Roaming\ManyCam
[2010.12.29 23:13:40 | 000,000,000 | ---D | M] -- C:\Users\Julia Marie Hofmann\AppData\Roaming\OCS
[2010.10.27 21:57:10 | 000,000,000 | ---D | M] -- C:\Users\Julia Marie Hofmann\AppData\Roaming\OpenCandy
[2010.11.28 21:45:46 | 000,000,000 | ---D | M] -- C:\Users\Julia Marie Hofmann\AppData\Roaming\OpenOffice.org
[2010.12.29 23:13:45 | 000,000,000 | ---D | M] -- C:\Users\Julia Marie Hofmann\AppData\Roaming\Opera
[2011.01.28 01:35:28 | 000,000,000 | ---D | M] -- C:\Users\Julia Marie Hofmann\AppData\Roaming\PhotoScape
[2011.02.24 20:30:30 | 000,000,000 | ---D | M] -- C:\Users\Julia Marie Hofmann\AppData\Roaming\TeamViewer
[2011.02.27 17:54:22 | 000,000,000 | ---D | M] -- C:\Users\Julia Marie Hofmann\AppData\Roaming\TubeBox
[2011.01.14 17:55:32 | 000,000,000 | ---D | M] -- C:\Users\Julia Marie Hofmann\AppData\Roaming\Vodafone
[2011.05.10 19:34:28 | 000,032,560 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT
[2011.05.09 19:14:09 | 000,000,446 | -H-- | M] () -- C:\Windows\Tasks\User_Feed_Synchronization-{3CBA2450-46AB-4A43-805B-A6A5BDFEE5D1}.job
[2011.05.10 20:11:04 | 000,000,320 | -H-- | M] () -- C:\Windows\Tasks\{22116563-108C-42c0-A7CE-60161B75E508}.job
[2011.05.10 19:56:09 | 000,000,274 | -H-- | M] () -- C:\Windows\Tasks\{810401E2-DDE0-454e-B0E2-AA89C9E5967C}.job
[2011.05.10 19:36:30 | 000,000,320 | -H-- | M] () -- C:\Windows\Tasks\{BBAEAEAF-1275-40e2-BD6C-BC8F88BD114A}.job
========== Purity Check ==========
========== Custom Scans ==========
< %ALLUSERSPROFILE%\Application Data\*. >
< %ALLUSERSPROFILE%\Application Data\*.exe /s >
< %APPDATA%\*. >
[2010.10.27 23:53:34 | 000,000,000 | ---D | M] -- C:\Users\Julia Marie Hofmann\AppData\Roaming\Adobe
[2011.02.26 01:54:17 | 000,000,000 | ---D | M] -- C:\Users\Julia Marie Hofmann\AppData\Roaming\Apple Computer
[2010.10.27 07:17:23 | 000,000,000 | ---D | M] -- C:\Users\Julia Marie Hofmann\AppData\Roaming\ATI
[2010.12.18 11:36:18 | 000,000,000 | ---D | M] -- C:\Users\Julia Marie Hofmann\AppData\Roaming\Avira
[2010.10.30 01:17:37 | 000,000,000 | ---D | M] -- C:\Users\Julia Marie Hofmann\AppData\Roaming\DivX
[2010.12.18 18:34:36 | 000,000,000 | ---D | M] -- C:\Users\Julia Marie Hofmann\AppData\Roaming\GetRightToGo
[2010.10.27 21:04:43 | 000,000,000 | ---D | M] -- C:\Users\Julia Marie Hofmann\AppData\Roaming\Google
[2011.05.10 19:37:49 | 000,000,000 | ---D | M] -- C:\Users\Julia Marie Hofmann\AppData\Roaming\Help
[2011.05.10 20:09:37 | 000,000,000 | ---D | M] -- C:\Users\Julia Marie Hofmann\AppData\Roaming\ICQ
[2010.12.29 23:13:39 | 000,000,000 | ---D | M] -- C:\Users\Julia Marie Hofmann\AppData\Roaming\ICQ-Tools.de
[2010.10.27 07:14:48 | 000,000,000 | ---D | M] -- C:\Users\Julia Marie Hofmann\AppData\Roaming\Identities
[2010.10.30 12:41:05 | 000,000,000 | ---D | M] -- C:\Users\Julia Marie Hofmann\AppData\Roaming\InstallShield
[2010.10.27 21:03:56 | 000,000,000 | ---D | M] -- C:\Users\Julia Marie Hofmann\AppData\Roaming\Macromedia
[2010.12.20 02:08:53 | 000,000,000 | ---D | M] -- C:\Users\Julia Marie Hofmann\AppData\Roaming\ManyCam
[2006.11.02 14:37:34 | 000,000,000 | ---D | M] -- C:\Users\Julia Marie Hofmann\AppData\Roaming\Media Center Programs
[2011.03.04 18:06:18 | 000,000,000 | --SD | M] -- C:\Users\Julia Marie Hofmann\AppData\Roaming\Microsoft
[2010.10.27 21:06:40 | 000,000,000 | ---D | M] -- C:\Users\Julia Marie Hofmann\AppData\Roaming\Mozilla
[2010.12.29 23:13:40 | 000,000,000 | ---D | M] -- C:\Users\Julia Marie Hofmann\AppData\Roaming\OCS
[2010.10.27 21:57:10 | 000,000,000 | ---D | M] -- C:\Users\Julia Marie Hofmann\AppData\Roaming\OpenCandy
[2010.11.28 21:45:46 | 000,000,000 | ---D | M] -- C:\Users\Julia Marie Hofmann\AppData\Roaming\OpenOffice.org
[2010.12.29 23:13:45 | 000,000,000 | ---D | M] -- C:\Users\Julia Marie Hofmann\AppData\Roaming\Opera
[2011.01.28 01:35:28 | 000,000,000 | ---D | M] -- C:\Users\Julia Marie Hofmann\AppData\Roaming\PhotoScape
[2011.03.07 22:34:23 | 000,000,000 | ---D | M] -- C:\Users\Julia Marie Hofmann\AppData\Roaming\Skype
[2011.03.07 22:33:38 | 000,000,000 | ---D | M] -- C:\Users\Julia Marie Hofmann\AppData\Roaming\skypePM
[2011.02.24 20:30:30 | 000,000,000 | ---D | M] -- C:\Users\Julia Marie Hofmann\AppData\Roaming\TeamViewer
[2011.02.27 17:54:22 | 000,000,000 | ---D | M] -- C:\Users\Julia Marie Hofmann\AppData\Roaming\TubeBox
[2011.04.25 14:06:02 | 000,000,000 | ---D | M] -- C:\Users\Julia Marie Hofmann\AppData\Roaming\vlc
[2011.01.14 17:55:32 | 000,000,000 | ---D | M] -- C:\Users\Julia Marie Hofmann\AppData\Roaming\Vodafone
< %APPDATA%\*.exe /s >
[2011.05.10 19:27:27 | 000,388,096 | R--- | M] (Trend Micro Inc.) -- C:\Users\Julia Marie Hofmann\AppData\Roaming\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe
[2011.02.27 17:53:31 | 000,034,494 | R--- | M] () -- C:\Users\Julia Marie Hofmann\AppData\Roaming\Microsoft\Installer\{62733593-6322-4C89-8B50-F714305A4DC6}\_6FEFF9B68218417F98F549.exe
[2010.10.30 22:56:19 | 000,010,134 | R--- | M] () -- C:\Users\Julia Marie Hofmann\AppData\Roaming\Microsoft\Installer\{E3E71D07-CD27-46CB-8448-16D4FB29AA13}\ARPPRODUCTICON.exe
[2011.03.08 14:02:21 | 000,010,134 | R--- | M] () -- C:\Users\Julia Marie Hofmann\AppData\Roaming\Microsoft\Installer\{EAE8F6AB-68E8-4AA9-9518-F677090690B2}\_6514C169A30B32C1D9071C.exe
[2011.03.08 14:02:21 | 000,034,494 | R--- | M] () -- C:\Users\Julia Marie Hofmann\AppData\Roaming\Microsoft\Installer\{EAE8F6AB-68E8-4AA9-9518-F677090690B2}\_6FEFF9B68218417F98F549.exe
[2011.03.08 14:02:21 | 000,355,574 | R--- | M] () -- C:\Users\Julia Marie Hofmann\AppData\Roaming\Microsoft\Installer\{EAE8F6AB-68E8-4AA9-9518-F677090690B2}\_A284EAE41E055547217DE7.exe
[2011.03.08 14:02:21 | 000,080,992 | R--- | M] () -- C:\Users\Julia Marie Hofmann\AppData\Roaming\Microsoft\Installer\{EAE8F6AB-68E8-4AA9-9518-F677090690B2}\_BEA59818F40318269C802B.exe
[2011.03.08 14:02:21 | 000,355,574 | R--- | M] () -- C:\Users\Julia Marie Hofmann\AppData\Roaming\Microsoft\Installer\{EAE8F6AB-68E8-4AA9-9518-F677090690B2}\_E3DBAAA0CAF950FA4295EE.exe
[2011.05.10 15:05:32 | 000,303,104 | ---- | M] (punyikajkvqpamyx) -- C:\Users\Julia Marie Hofmann\AppData\Roaming\Microsoft\Internet Explorer\report.exe
[2010.11.29 11:42:56 | 000,339,344 | ---- | M] (NOS Microsystems Ltd.) -- C:\Users\Julia Marie Hofmann\AppData\Roaming\Mozilla\Firefox\Profiles\8f91m1y7.default\extensions\{E2883E8F-472F-4fb0-9522-AC9BF37916A7}\chrome\content\getPlusPlus_Adobe.exe
[2010.11.29 11:42:56 | 000,039,200 | ---- | M] (NOS Microsystems Ltd.) -- C:\Users\Julia Marie Hofmann\AppData\Roaming\Mozilla\Firefox\Profiles\8f91m1y7.default\extensions\{E2883E8F-472F-4fb0-9522-AC9BF37916A7}\chrome\content\getPlus_registrar.exe
[2011.02.01 19:04:18 | 000,052,616 | ---- | M] () -- C:\Users\Julia Marie Hofmann\AppData\Roaming\Mozilla\Firefox\Profiles\8f91m1y7.default\extensions\toolbar@ask.com\chrome\content\issigned.exe
[2011.03.23 23:58:49 | 003,325,832 | ---- | M] (Ask) -- C:\Users\Julia Marie Hofmann\AppData\Roaming\Mozilla\Firefox\Profiles\8f91m1y7.default\extensions\toolbar@ask.com\chrome\temp\askToolbar.exe
[2010.12.29 23:13:40 | 000,106,496 | ---- | M] (OCS) -- C:\Users\Julia Marie Hofmann\AppData\Roaming\OCS\SM\SearchAnonymizer.exe
[2010.12.29 23:13:40 | 000,040,960 | ---- | M] () -- C:\Users\Julia Marie Hofmann\AppData\Roaming\OCS\SM\SearchAnonymizerHelper.exe
[2010.10.27 21:57:15 | 000,659,048 | ---- | M] () -- C:\Users\Julia Marie Hofmann\AppData\Roaming\OpenCandy\OpenCandy_C2E0875BAA45421A85750EA7593A234A\Chrome_p2v1wr.exe
[2010.10.27 21:57:11 | 000,349,296 | ---- | M] () -- C:\Users\Julia Marie Hofmann\AppData\Roaming\OpenCandy\OpenCandy_C2E0875BAA45421A85750EA7593A234A\DLMgr_3_1.6.87.exe
[2010.08.25 04:58:52 | 000,579,824 | ---- | M] () -- C:\Users\Julia Marie Hofmann\AppData\Roaming\OpenCandy\OpenCandy_C2E0875BAA45421A85750EA7593A234A\opencandy_08232010_SIGNED.exe
< %SYSTEMDRIVE%\*.exe >
< MD5 for: AGP440.SYS >
[2008.01.21 04:23:01 | 000,056,376 | ---- | M] (Microsoft Corporation) MD5=13F9E33747E6B41A3FF305C37DB0D360 -- C:\Windows\System32\drivers\AGP440.sys
[2008.01.21 04:23:01 | 000,056,376 | ---- | M] (Microsoft Corporation) MD5=13F9E33747E6B41A3FF305C37DB0D360 -- C:\Windows\System32\DriverStore\FileRepository\machine.inf_f750e484\AGP440.sys
[2008.01.21 04:23:01 | 000,056,376 | ---- | M] (Microsoft Corporation) MD5=13F9E33747E6B41A3FF305C37DB0D360 -- C:\Windows\winsxs\x86_machine.inf_31bf3856ad364e35_6.0.6001.18000_none_ba12ed3bbeb0d97a\AGP440.sys
[2008.01.21 04:23:01 | 000,056,376 | ---- | M] (Microsoft Corporation) MD5=13F9E33747E6B41A3FF305C37DB0D360 -- C:\Windows\winsxs\x86_machine.inf_31bf3856ad364e35_6.0.6002.18005_none_bbfe6647bbd2a4c6\AGP440.sys
[2006.11.02 11:49:52 | 000,053,864 | ---- | M] (Microsoft Corporation) MD5=EF23439CDD587F64C2C1B8825CEAD7D8 -- C:\Windows\System32\DriverStore\FileRepository\machine.inf_920a2c1f\AGP440.sys
< MD5 for: ATAPI.SYS >
[2008.03.12 08:38:18 | 000,021,560 | ---- | M] (Microsoft Corporation) MD5=0D83C87A801A3DFCD1BF73893FE7518C -- C:\Windows\System32\drivers\atapi.sys
[2008.03.12 08:38:18 | 000,021,560 | ---- | M] (Microsoft Corporation) MD5=0D83C87A801A3DFCD1BF73893FE7518C -- C:\Windows\System32\DriverStore\FileRepository\mshdc.inf_4c9c5a00\atapi.sys
[2008.03.12 08:38:18 | 000,021,560 | ---- | M] (Microsoft Corporation) MD5=0D83C87A801A3DFCD1BF73893FE7518C -- C:\Windows\winsxs\x86_mshdc.inf_31bf3856ad364e35_6.0.6001.18034_none_dd1bb97e219e87cb\atapi.sys
[2009.04.11 08:32:26 | 000,019,944 | ---- | M] (Microsoft Corporation) MD5=1F05B78AB91C9075565A9D8A4B880BC4 -- C:\Windows\SoftwareDistribution\Download\bcfed137e95e2bc1b83ef80262a82b16\x86_mshdc.inf_31bf3856ad364e35_6.0.6002.18005_none_df23a1261eab99e8\atapi.sys
[2008.01.21 04:23:00 | 000,021,560 | ---- | M] (Microsoft Corporation) MD5=2D9C903DC76A66813D350A562DE40ED9 -- C:\Windows\System32\DriverStore\FileRepository\mshdc.inf_cc18792d\atapi.sys
[2008.01.21 04:23:00 | 000,021,560 | ---- | M] (Microsoft Corporation) MD5=2D9C903DC76A66813D350A562DE40ED9 -- C:\Windows\winsxs\x86_mshdc.inf_31bf3856ad364e35_6.0.6001.18000_none_dd38281a2189ce9c\atapi.sys
[2006.11.02 11:49:36 | 000,019,048 | ---- | M] (Microsoft Corporation) MD5=4F4FCB8B6EA06784FB6D475B7EC7300F -- C:\Windows\System32\DriverStore\FileRepository\mshdc.inf_c6c2e699\atapi.sys
[2008.03.12 08:24:20 | 000,021,560 | ---- | M] (Microsoft Corporation) MD5=96DC4E1A9F90CCD489950A8935425C59 -- C:\Windows\winsxs\x86_mshdc.inf_31bf3856ad364e35_6.0.6001.22134_none_dda556493abc2795\atapi.sys
< MD5 for: CNGAUDIT.DLL >
[2006.11.02 11:46:03 | 000,011,776 | ---- | M] (Microsoft Corporation) MD5=7F15B4953378C8B5161D65C26D5FED4D -- C:\Windows\System32\cngaudit.dll
[2006.11.02 11:46:03 | 000,011,776 | ---- | M] (Microsoft Corporation) MD5=7F15B4953378C8B5161D65C26D5FED4D -- C:\Windows\winsxs\x86_microsoft-windows-cngaudit-dll_31bf3856ad364e35_6.0.6000.16386_none_e62d292932a96ce6\cngaudit.dll
< MD5 for: EXPLORER.EXE >
[2008.10.29 08:20:29 | 002,923,520 | ---- | M] (Microsoft Corporation) MD5=37440D09DEAE0B672A04DCCF7ABF06BE -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6000.16771_none_4f83bb287ccdb7e3\explorer.exe
[2008.10.29 08:29:41 | 002,927,104 | ---- | M] (Microsoft Corporation) MD5=4F554999D7D5F05DAAEBBA7B5BA1089D -- C:\Windows\explorer.exe
[2008.10.29 08:29:41 | 002,927,104 | ---- | M] (Microsoft Corporation) MD5=4F554999D7D5F05DAAEBBA7B5BA1089D -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6001.18164_none_5177ca9879e978e8\explorer.exe
[2008.10.30 05:59:17 | 002,927,616 | ---- | M] (Microsoft Corporation) MD5=50BA5850147410CDE89C523AD3BC606E -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6001.22298_none_51e4f8c7931bd1e1\explorer.exe
[2009.04.11 08:27:36 | 002,926,592 | ---- | M] (Microsoft Corporation) MD5=D07D4C3038F3578FFCE1C0237F2A1253 -- C:\Windows\SoftwareDistribution\Download\bcfed137e95e2bc1b83ef80262a82b16\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6002.18005_none_53a0201e76de3a0b\explorer.exe
[2008.10.28 04:15:02 | 002,923,520 | ---- | M] (Microsoft Corporation) MD5=E7156B0B74762D9DE0E66BDCDE06E5FB -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6000.20947_none_5033cb5995cd990b\explorer.exe
[2008.01.21 04:24:24 | 002,927,104 | ---- | M] (Microsoft Corporation) MD5=FFA764631CB70A30065C12EF8E174F9F -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6001.18000_none_51b4a71279bc6ebf\explorer.exe
< MD5 for: IASTOR.SYS >
[2009.02.11 10:26:18 | 000,407,576 | ---- | M] (Intel Corporation) MD5=1ADAA4F16073FD0C7270F451FD024E97 -- C:\Program Files\Intel\Intel Matrix Storage Manager\driver64\IaStor.sys
[2009.02.11 10:11:50 | 000,329,752 | ---- | M] (Intel Corporation) MD5=71ECC07BC7C5E24C3DD01D8A29A24054 -- C:\Program Files\Intel\Intel Matrix Storage Manager\driver\IaStor.sys
[2009.02.11 10:11:50 | 000,329,752 | ---- | M] (Intel Corporation) MD5=71ECC07BC7C5E24C3DD01D8A29A24054 -- C:\Windows\System32\drivers\iaStor.sys
[2009.02.11 10:11:50 | 000,329,752 | ---- | M] (Intel Corporation) MD5=71ECC07BC7C5E24C3DD01D8A29A24054 -- C:\Windows\System32\DriverStore\FileRepository\iaahci.inf_ea118ff5\iaStor.sys
< MD5 for: IASTORV.SYS >
[2008.01.21 04:23:23 | 000,235,064 | ---- | M] (Intel Corporation) MD5=54155EA1B0DF185878E0FC9EC3AC3A14 -- C:\Windows\System32\drivers\iaStorV.sys
[2008.01.21 04:23:23 | 000,235,064 | ---- | M] (Intel Corporation) MD5=54155EA1B0DF185878E0FC9EC3AC3A14 -- C:\Windows\System32\DriverStore\FileRepository\iastorv.inf_c9df7691\iaStorV.sys
[2008.01.21 04:23:23 | 000,235,064 | ---- | M] (Intel Corporation) MD5=54155EA1B0DF185878E0FC9EC3AC3A14 -- C:\Windows\winsxs\x86_iastorv.inf_31bf3856ad364e35_6.0.6001.18000_none_af11527887c7fa8f\iaStorV.sys
[2006.11.02 11:51:25 | 000,232,040 | ---- | M] (Intel Corporation) MD5=C957BF4B5D80B46C5017BF0101E6C906 -- C:\Windows\System32\DriverStore\FileRepository\iastorv.inf_37cdafa4\iaStorV.sys
< MD5 for: NETLOGON.DLL >
[2009.04.11 08:28:23 | 000,592,896 | ---- | M] (Microsoft Corporation) MD5=95DAECF0FB120A7B5DA679CC54E37DDE -- C:\Windows\SoftwareDistribution\Download\bcfed137e95e2bc1b83ef80262a82b16\x86_microsoft-windows-security-netlogon_31bf3856ad364e35_6.0.6002.18005_none_ffa3304f351bb3a3\netlogon.dll
[2008.01.21 04:24:05 | 000,592,384 | ---- | M] (Microsoft Corporation) MD5=A8EFC0B6E75B789F7FD3BA5025D4E37F -- C:\Windows\System32\netlogon.dll
[2008.01.21 04:24:05 | 000,592,384 | ---- | M] (Microsoft Corporation) MD5=A8EFC0B6E75B789F7FD3BA5025D4E37F -- C:\Windows\winsxs\x86_microsoft-windows-security-netlogon_31bf3856ad364e35_6.0.6001.18000_none_fdb7b74337f9e857\netlogon.dll
< MD5 for: NVSTOR.SYS >
[2006.11.02 11:50:13 | 000,040,040 | ---- | M] (NVIDIA Corporation) MD5=9E0BA19A28C498A6D323D065DB76DFFC -- C:\Windows\System32\DriverStore\FileRepository\nvraid.inf_733654ff\nvstor.sys
[2008.01.21 04:23:21 | 000,045,112 | ---- | M] (NVIDIA Corporation) MD5=ABED0C09758D1D97DB0042DBB2688177 -- C:\Windows\System32\drivers\nvstor.sys
[2008.01.21 04:23:21 | 000,045,112 | ---- | M] (NVIDIA Corporation) MD5=ABED0C09758D1D97DB0042DBB2688177 -- C:\Windows\System32\DriverStore\FileRepository\nvraid.inf_31c3d71d\nvstor.sys
[2008.01.21 04:23:21 | 000,045,112 | ---- | M] (NVIDIA Corporation) MD5=ABED0C09758D1D97DB0042DBB2688177 -- C:\Windows\winsxs\x86_nvraid.inf_31bf3856ad364e35_6.0.6001.18000_none_39dac327befea467\nvstor.sys
< MD5 for: SCECLI.DLL >
[2008.01.21 04:24:50 | 000,177,152 | ---- | M] (Microsoft Corporation) MD5=28B84EB538F7E8A0FE8B9299D591E0B9 -- C:\Windows\System32\scecli.dll
[2008.01.21 04:24:50 | 000,177,152 | ---- | M] (Microsoft Corporation) MD5=28B84EB538F7E8A0FE8B9299D591E0B9 -- C:\Windows\winsxs\x86_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.0.6001.18000_none_380de25bd91b6f12\scecli.dll
[2009.04.11 08:28:24 | 000,177,152 | ---- | M] (Microsoft Corporation) MD5=8FC182167381E9915651267044105EE1 -- C:\Windows\SoftwareDistribution\Download\bcfed137e95e2bc1b83ef80262a82b16\x86_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.0.6002.18005_none_39f95b67d63d3a5e\scecli.dll
< MD5 for: USER32.DLL >
[2009.04.11 08:28:25 | 000,627,712 | ---- | M] (Microsoft Corporation) MD5=75510147B94598407666F4802797C75A -- C:\Windows\SoftwareDistribution\Download\bcfed137e95e2bc1b83ef80262a82b16\x86_microsoft-windows-user32_31bf3856ad364e35_6.0.6002.18005_none_cf23e54d6a7e4a7e\user32.dll
[2008.01.21 04:24:21 | 000,627,200 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\System32\user32.dll
[2008.01.21 04:24:21 | 000,627,200 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\winsxs\x86_microsoft-windows-user32_31bf3856ad364e35_6.0.6001.18000_none_cd386c416d5c7f32\user32.dll
< MD5 for: USERINIT.EXE >
[2008.01.21 04:24:49 | 000,025,088 | ---- | M] (Microsoft Corporation) MD5=0E135526E9785D085BCD9AEDE6FBCBF9 -- C:\Windows\System32\userinit.exe
[2008.01.21 04:24:49 | 000,025,088 | ---- | M] (Microsoft Corporation) MD5=0E135526E9785D085BCD9AEDE6FBCBF9 -- C:\Windows\winsxs\x86_microsoft-windows-userinit_31bf3856ad364e35_6.0.6001.18000_none_dc28ba15d1aff80b\userinit.exe
< MD5 for: WINLOGON.EXE >
[2009.04.11 08:28:13 | 000,314,368 | ---- | M] (Microsoft Corporation) MD5=898E7C06A350D4A1A64A9EA264D55452 -- C:\Windows\SoftwareDistribution\Download\bcfed137e95e2bc1b83ef80262a82b16\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.0.6002.18005_none_71ae7a22d2134741\winlogon.exe
[2008.01.21 04:24:49 | 000,314,880 | ---- | M] (Microsoft Corporation) MD5=C2610B6BDBEFC053BBDAB4F1B965CB24 -- C:\Windows\System32\winlogon.exe
[2008.01.21 04:24:49 | 000,314,880 | ---- | M] (Microsoft Corporation) MD5=C2610B6BDBEFC053BBDAB4F1B965CB24 -- C:\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.0.6001.18000_none_6fc30116d4f17bf5\winlogon.exe
< MD5 for: WS2IFSL.SYS >
[2008.01.21 04:24:47 | 000,015,872 | ---- | M] (Microsoft Corporation) MD5=E3A3CB253C0EC2494D4A61F5E43A389C -- C:\Windows\System32\drivers\ws2ifsl.sys
[2008.01.21 04:24:47 | 000,015,872 | ---- | M] (Microsoft Corporation) MD5=E3A3CB253C0EC2494D4A61F5E43A389C -- C:\Windows\winsxs\x86_microsoft-windows-w..rastructure-ws2ifsl_31bf3856ad364e35_6.0.6001.18000_none_4f86a0d4c7cda641\ws2ifsl.sys
< %systemroot%\system32\drivers\*.sys /lockedfiles >
< %systemroot%\System32\config\*.sav >
[2008.01.21 05:14:18 | 016,846,848 | ---- | M] () -- C:\Windows\System32\config\COMPONENTS.SAV
[2008.01.21 05:14:08 | 000,106,496 | ---- | M] () -- C:\Windows\System32\config\DEFAULT.SAV
[2008.01.21 05:14:18 | 000,020,480 | ---- | M] () -- C:\Windows\System32\config\SECURITY.SAV
[2006.11.02 12:34:08 | 010,133,504 | ---- | M] () -- C:\Windows\System32\config\SOFTWARE.SAV
[2006.11.02 12:34:08 | 001,826,816 | ---- | M] () -- C:\Windows\System32\config\SYSTEM.SAV
< %systemroot%\*. /mp /s >
< %systemroot%\system32\*.dll /lockedfiles >
[2009.03.12 16:27:16 | 000,442,368 | ---- | M] (Advanced Micro Devices, Inc.) Unable to obtain MD5 -- C:\Windows\System32\ATIDEMGX.dll
[2008.01.21 04:24:26 | 000,347,136 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\System32\dxtmsft.dll
[2008.01.21 04:24:26 | 000,214,528 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\System32\dxtrans.dll
[2011.02.16 17:35:41 | 000,430,080 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\System32\vbscript.dll
< End of report >
--- --- ---
OTL Logfile: Code:
OTL Extras logfile created on: 10.05.2011 20:07:30 - Run 1
OTL by OldTimer - Version 3.2.22.3 Folder = C:\Users\Julia Marie Hofmann\Downloads
Windows Vista Home Premium Edition Service Pack 1 (Version = 6.0.6001) - Type = NTWorkstation
Internet Explorer (Version = 7.0.6001.18000)
Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy
3,00 Gb Total Physical Memory | 2,00 Gb Available Physical Memory | 64,00% Memory free
6,00 Gb Paging File | 5,00 Gb Available in Paging File | 76,00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 142,54 Gb Total Space | 62,06 Gb Free Space | 43,54% Space Free | Partition Type: NTFS
Drive D: | 142,54 Gb Total Space | 142,45 Gb Free Space | 99,94% Space Free | Partition Type: NTFS
Computer Name: JULIAMARIEHO-PC | User Name: Julia Marie Hofmann | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Extra Registry (SafeList) ==========
========== File Associations ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\System32\control.exe (Microsoft Corporation)
.hlp [@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation)
.url [@ = InternetShortcut] -- rundll32.exe ieframe.dll,OpenURL %l
[HKEY_USERS\S-1-5-21-941840049-3476719048-1091377070-1003\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
========== Shell Spawning ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [open] -- rundll32.exe ieframe.dll,OpenURL %l
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
Folder [open] -- %SystemRoot%\Explorer.exe /separate,/idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /separate,/e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
========== Security Center Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
"VistaSp1" = Reg Error: Unknown registry data type -- File not found
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]
========== Firewall Settings ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 0
"DisableNotifications" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 0
"DisableNotifications" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0
========== Authorized Applications List ==========
========== Vista Active Open Ports Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{1163C2FF-A6FD-43DF-B2E7-72F81FD1E811}" = lport=10243 | protocol=6 | dir=in | app=system |
"{3010CCE7-2F31-4862-9D55-04F85362CFAC}" = lport=2177 | protocol=17 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{707D6248-96CA-4B3A-825A-B1DF9C991A2C}" = lport=6004 | protocol=17 | dir=in | app=c:\program files\microsoft office\office12\outlook.exe |
"{82DE7F12-4D32-4A16-8760-B693E1438088}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{86A617CC-2202-4CB8-A98E-2C52857F1AFF}" = rport=2177 | protocol=17 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{87F78125-68A8-4401-9123-AF532C8C2BBD}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{88E4DC03-7455-4875-97CE-65F0EDD5E04D}" = rport=10243 | protocol=6 | dir=out | app=system |
"{B1F4B393-4E23-42CD-9E75-246A318BB69D}" = lport=2177 | protocol=6 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{D31A0443-CFDB-44E6-924D-5A51785B7C65}" = rport=2177 | protocol=6 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{E2D9712B-3E48-4EE0-9DFD-DC6F4857BB20}" = lport=2869 | protocol=6 | dir=in | app=system |
========== Vista Active Application Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{0C74A09D-90BE-4FC0-8CA9-A10E909104C6}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{0EEC2E88-3C34-444E-8C63-739964E0A9D2}" = protocol=17 | dir=in | app=c:\program files\icq7.5\icq.exe |
"{0F641C0F-33FC-4207-A6A5-5D992464BFB8}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{29A7602B-5C2E-4512-9C21-C7828C065E65}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{2AD80A13-8F1C-4992-A629-8075738DE4C7}" = dir=in | app=c:\program files\common files\mcafee\mcsvchost\mcsvhost.exe |
"{31D57AB4-E7E8-4374-9C5E-B7BECB67A9AD}" = protocol=6 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{338DA2EF-6D6A-4D3B-B4BF-59051017469D}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{37E02CBB-F00D-4514-9081-6C3F402587FD}" = protocol=6 | dir=in | app=c:\program files\icq7.5\icq.exe |
"{435EE297-CEE0-407F-9DB9-78758101A01F}" = protocol=6 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{44E13294-F45E-44EB-B619-CE4C28F00B1E}" = dir=in | app=c:\program files\itunes\itunes.exe |
"{49851880-915C-4A4C-A536-E8AEC50755B2}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{4992CBDC-389A-43EE-A972-C4049AD4A26A}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{4C5A604D-C3E8-413F-B6D6-3139696AA57D}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{4EA72770-F5C1-41B2-8B94-D174350FBF1C}" = dir=in | app=c:\program files\common files\mcafee\mna\mcnasvc.exe |
"{528C1928-17F5-493B-B2CD-0D13A9870B29}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{5A96A50A-A6C0-4F99-8BE8-7E8054F7922C}" = protocol=17 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{6B649D84-9198-4717-A5FE-A3EAAB0AEDEE}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{71CF71DB-C9A0-4907-966C-7420081D7494}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{74108377-5861-4DCB-B5CA-6B676B47D067}" = protocol=6 | dir=in | app=c:\program files\icq7.5\icq.exe |
"{85CFE55C-A957-436A-994C-B05B319DE7F8}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{986033C5-5DEB-4545-9522-AB18A8FDBB20}" = protocol=6 | dir=out | app=system |
"{B788BD16-41D5-44D0-B6C1-611BF337F0B8}" = protocol=17 | dir=in | app=c:\program files\icq7.5\icq.exe |
"{D261CB23-95B6-4CC0-AF3E-0A7907123C12}" = protocol=6 | dir=in | app=c:\program files\icq7.5\icq.exe |
"{EBB1A87F-CF3E-4504-B256-9DCAC314F55C}" = protocol=17 | dir=in | app=c:\program files\icq7.5\icq.exe |
"TCP Query User{341FEC99-FE15-4A15-9E7C-06D543305A26}C:\windows\explorer.exe" = protocol=6 | dir=in | app=c:\windows\explorer.exe |
"TCP Query User{6AD4D85E-8FE2-46A7-803F-332C4A57A32B}C:\program files\videolan\vlc\vlc.exe" = protocol=6 | dir=in | app=c:\program files\videolan\vlc\vlc.exe |
"UDP Query User{0F8EBD26-472B-4E11-9F34-4A7885C7EB84}C:\program files\videolan\vlc\vlc.exe" = protocol=17 | dir=in | app=c:\program files\videolan\vlc\vlc.exe |
"UDP Query User{C6E2BBA5-CEE5-4E11-88BD-703DA6570635}C:\windows\explorer.exe" = protocol=17 | dir=in | app=c:\windows\explorer.exe |
========== HKEY_LOCAL_MACHINE Uninstall List ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{027CC103-7CBD-3091-BD05-61C3B39C5F41}" = CCC Help French
"{028ED9C4-25EE-4DEE-9CF4-91034BC89B18}" = Microsoft SQL Server 2005 Express Edition (MSSMLBIZ)
"{04983D37-2202-4295-94A2-8B547C66133F}" = Atheros WLAN Client
"{052FDD78-A6EA-3187-8386-C82F4CA3A929}" = Microsoft .NET Framework 3.5 Language Pack SP1 - deu
"{05C866EC-C6E6-B63B-5E93-310048EA28F4}" = ccc-utility
"{07629207-FAA0-4F1A-8092-BF5085BE511F}" = Unterstützungsdateien für das Microsoft SQL Server-Setup (Englisch)
"{09C8B025-F0C5-4EF2-BC4F-399269BDE0C8}" = Asterix - Maximum Gaudium
"{13C3016D-EDE0-A37F-1F01-DAFB618DA715}" = CCC Help Greek
"{145DE957-0679-4A2A-BB5C-1D3E9808FAB2}" = Samsung Recovery Solution III
"{16119AAC-9FE5-8BDC-6DEF-F52576AF1649}" = CCC Help Czech
"{17283B95-21A8-4996-97DA-547A48DB266F}" = Easy Display Manager
"{18455581-E099-4BA8-BC6B-F34B2F06600C}" = Google Toolbar for Internet Explorer
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{20226F96-074F-CA03-3FDB-48EA38F99A34}" = CCC Help English
"{2318C2B1-4965-11d4-9B18-009027A5CD4F}" = Google Toolbar for Internet Explorer
"{26A24AE4-039D-4CA4-87B4-2F83216020F0}" = Java(TM) 6 Update 20
"{26A24AE4-039D-4CA4-87B4-2F83216022FF}" = Java(TM) 6 Update 22
"{2A697B53-0DE3-42DA-B41D-C3F804B1C538}" = iTunes
"{2A981294-F14C-4F0F-9627-D793270922F8}" = Bonjour
"{2DC94AFD-A6E2-4AB4-9132-4A3F8E07B386}" = Apple Application Support
"{2DFB5485-A3EF-4298-9280-4AF80C9F4BE9}" = Microsoft SQL Server VSS Writer
"{2F0B0B99-2AF4-0A85-4E37-F45C48CC0B21}" = CCC Help Swedish
"{312E49B1-3621-C991-7A6F-E3B30CCA9E6B}" = CCC Help Turkish
"{31B1789F-00B9-D898-1578-CE4CD0EF205B}" = CCC Help Chinese Standard
"{32D6A58F-9659-446C-BBFC-E6F2B41F24DC}" = Samsung Magic Doctor
"{3B240B92-3596-9F6F-2D1D-2E031D50F5DC}" = CCC Help Danish
"{3C3901C5-3455-3E0A-A214-0B093A5070A6}" = Microsoft .NET Framework 4 Client Profile
"{3F50AF3B-8997-4916-0095-99D63DDB785A}" = Harry Potter TM
"{45A66726-69BC-466B-A7A4-12FCBA4883D7}" = HiJackThis
"{4640FDE1-B83A-4376-84ED-86F86BEE2D41}" = Driver Detective
"{46710AEB-ACE9-4386-9DFB-8B65153BFA74}" = REALTEK Wireless LAN Driver
"{47F081A8-64F6-C280-A694-5637817B8904}" = Catalyst Control Center Graphics Light
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4cb9f93c-9edc-4be9-ae61-af128ddbecfa}" = Business Contact Manager für Outlook 2007 SP1
"{50120000-1105-0000-0000-0000000FF1CE}" = Microsoft Office 2007 Primary Interop Assemblies
"{506CEF40-A02C-D047-3F75-0FB34AFCCEE7}" = CCC Help Hungarian
"{52797A98-AB5F-2715-BAB9-256085988154}" = Catalyst Control Center Graphics Previews Vista
"{547DCEC7-DD2A-47E9-82C7-5CF1EAB526DA}" = Microsoft SQL Server Native Client
"{57752979-A1C9-4C02-856B-FBB27AC4E02C}" = QuickTime
"{581FE9BC-4A4F-85D9-7308-09DCD7817C29}" = ccc-core-static
"{5EE7D259-D137-4438-9A5F-42F432EC0421}" = VC80CRTRedist - 8.0.50727.4053
"{65A5CA1A-16CF-0FE2-2452-ED6D625AD58F}" = Skins
"{68CAE442-579C-4D84-AA5F-253852522ED5}" = PCTroubleshooting
"{6F730513-8688-4C3C-90A3-6B9792CE2EF3}" = Easy Battery Manager
"{70E893FF-56BB-8AF3-64E4-54A49F9F896E}" = Catalyst Control Center Graphics Full Existing
"{71A51B59-E7D3-11DB-A386-005056C00008}" = Namuga 1.3M Webcam
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{7578ADEA-D65F-4C89-A249-B1C88B6FFC20}" = ICQ7.5
"{7FE0877D-B669-F5E1-1842-0E9676F03A7A}" = Catalyst Control Center Core Implementation
"{836A12E6-3418-593C-DC70-B7E7048C44F2}" = CCC Help Dutch
"{86D4B82A-ABED-442A-BE86-96357B70F4FE}" = Ask Toolbar
"{8E106A57-A17E-431D-B48F-175E42EB9F74}" = imagine digital freedom - Samsung
"{90120000-0015-0407-0000-0000000FF1CE}" = Microsoft Office Access MUI (German) 2007
"{90120000-0016-0407-0000-0000000FF1CE}" = Microsoft Office Excel MUI (German) 2007
"{90120000-0018-0407-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (German) 2007
"{90120000-0019-0407-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (German) 2007
"{90120000-001A-0407-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (German) 2007
"{90120000-001B-0407-0000-0000000FF1CE}" = Microsoft Office Word MUI (German) 2007
"{90120000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2007
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-040C-0000-0000000FF1CE}" = Microsoft Office Proof (French) 2007
"{90120000-001F-0410-0000-0000000FF1CE}" = Microsoft Office Proof (Italian) 2007
"{90120000-002C-0407-0000-0000000FF1CE}" = Microsoft Office Proofing (German) 2007
"{90120000-006E-0407-0000-0000000FF1CE}" = Microsoft Office Shared MUI (German) 2007
"{9068B2BE-D93A-4C0A-861C-5E35E2C0E09E}" = Intel® Matrix Storage Manager
"{90A40407-6000-11D3-8CFE-0150048383C9}" = Microsoft Office 2003 Web Components
"{91120000-0031-0000-0000-0000000FF1CE}" = Microsoft Office Professional Hybrid 2007
"{94815A13-F1B8-1384-0F0A-A8E4CE6EA62B}" = CCC Help Thai
"{981DE354-9301-440f-AAFC-025AA2354A93}" = HP Deskjet & Photosmart Printer Driver Software 8.0.A
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{A230C543-7D98-D7CF-91EF-280081A0DDD2}" = CCC Help Japanese
"{A5F483F0-2D79-4FCA-AE09-D0D96E23EBF7}" = Samsung Update Plus
"{A6BEDC5B-ABF7-FADF-8D0F-0FF1FEF34C87}" = CCC Help Chinese Traditional
"{A7581D39-EA20-4883-A480-80C21047052B}" = Easy Network Manager
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{A939D341-5A04-4E0A-BB55-3E65B386432D}" = Microsoft Office Small Business Connectivity Components
"{AA16A9E5-40E9-44F5-801E-6B3D3CFE79E5}" = BatteryLifeExtender
"{AC76BA86-7AD7-1031-7B44-A90000000001}" = Adobe Reader 9 - Deutsch
"{AFB6EECF-0CA4-9C01-C48A-6F0E5BB0FE74}" = Catalyst Control Center Localization All
"{B00EE7D4-8D4C-CE86-D1DF-5B9D026C13F5}" = CCC Help Russian
"{B6D8DC8C-F077-4631-A221-4D5E1D8E87E7}" = Catalyst Control Center - Branding
"{BAE68339-B0F6-4D33-9554-5A3DB2DFF5DA}" = User Guide
"{BD9F153A-E812-B910-EA23-1BFEF07D3352}" = CCC Help Korean
"{BE12D93E-0C6E-7DDD-0838-667326C287A1}" = CCC Help German
"{C05D8CDB-417D-4335-A38C-A0659EDFD6B8}" = Die*Sims™*3
"{C0E2DFB6-3D76-8BAD-62DF-47871AF6A5A4}" = CCC Help Polish
"{C343B6AD-A23C-8138-35CE-883DE2DEAFE7}" = CCC Help Finnish
"{C41300B9-185D-475E-BFEC-39EF732F19B1}" = Apple Software Update
"{CACAEB5F-174D-4C7C-AC56-A33289A807CA}" = Apple Mobile Device Support
"{CD95D125-2992-4858-B3EF-5F6FB52FBAD6}" = Skype Toolbars
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{D2777D85-7E63-402F-A5E7-2AF436C1C9D4}" = Intel(R) PROSet/Wireless WiFi-Software
"{DDF998C0-099C-5D46-9985-5730306330A9}" = CCC Help Spanish
"{DEB8C753-9CB6-1BD1-34BA-4ED9382755E9}" = ATI Catalyst Install Manager
"{DFFC0648-BC4B-47D1-93D2-6CA6B9457641}" = OpenOffice.org 3.2
"{E3E71D07-CD27-46CB-8448-16D4FB29AA13}" = Microsoft WSE 3.0 Runtime
"{E50AE784-FABE-46DA-A1F8-7B6B56DCB22E}" = Microsoft Office Suite Activation Assistant
"{E633D396-5188-4E9D-8F6B-BFB8BF3467E8}" = Skype™ 5.1
"{EAE8F6AB-68E8-4AA9-9518-F677090690B2}" = TubeBox!
"{ED97F2D3-7BCF-E0B4-E8C6-0F6BA058CA95}" = CCC Help Portuguese
"{EEFB5B34-DEF9-0BF4-89A9-AB62320AA44E}" = Catalyst Control Center Graphics Full New
"{EF367AA4-070B-493C-9575-85BE59D789C9}" = Easy SpeedUp Manager
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F5115AA1-78F1-EBBC-4888-A10310FD4A6A}" = CCC Help Italian
"{F750C986-5310-3A5A-95F8-4EC71C8AC01C}" = Microsoft .NET Framework 4 Client Profile DEU Language Pack
"{F7C0163D-9CD8-4F5F-BAC8-3E45A0000AFF}" = Vodafone Mobile Connect Lite Huawei
"{FD458F33-C5A9-3E69-425C-129F21B3ADF9}" = CCC Help Norwegian
"{FEC19789-7756-17C3-765B-C532E09322D7}" = Catalyst Control Center InstallProxy
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"Adobe Shockwave Player" = Adobe Shockwave Player 11.5
"Agere Systems Soft Modem" = Agere Systems HDA Modem
"aTube Catcher" = aTube Catcher
"Avira AntiVir Desktop" = Avira AntiVir Personal - Free Antivirus
"Business Contact Manager" = Business Contact Manager für Outlook 2007 SP1
"DivX Setup.divx.com" = DivX-Setup
"FMCODEC" = FM Screen Capture Codec (Remove Only)
"Google Chrome" = Google Chrome
"ICQToolbar" = ICQ Toolbar
"InstallShield_{A5F483F0-2D79-4FCA-AE09-D0D96E23EBF7}" = Samsung Update Plus
"ManyCam" = ManyCam 2.6.25 (remove only)
"Marvell Miniport Driver" = Marvell Miniport Driver
"McAfee Security Scan" = McAfee Security Scan Plus
"Microsoft .NET Framework 3.5 Language Pack SP1 - deu" = Microsoft .NET Framework 3.5 Language Pack SP1 - DEU
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Microsoft .NET Framework 4 Client Profile DEU Language Pack" = Microsoft .NET Framework 4 Client Profile DEU Language Pack
"Microsoft SQL Server 2005" = Microsoft SQL Server 2005
"Mozilla Firefox (3.6.17)" = Mozilla Firefox (3.6.17)
"MSC" = McAfee SecurityCenter
"NSS" = Norton Security Scan
"PhotoScape" = PhotoScape
"PROHYBRIDR" = 2007 Microsoft Office system
"ProInst" = Intel PROSet Wireless
"SearchAnonymizer" = SearchAnonymizer
"SynTPDeinstKey" = Synaptics Pointing Device Driver
"VLC media player" = VLC media player 1.1.9
"WebCam-SnapShot_is1" = WebCam-SnapShot 1.3
========== Last 10 Event Log Errors ==========
[ Application Events ]
Error - 27.04.2011 21:15:37 | Computer Name = JuliaMarieHo-PC | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: m->NextScheduledEvent 4048195
Error - 27.04.2011 21:15:37 | Computer Name = JuliaMarieHo-PC | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: m->NextScheduledSPRetry 4048195
Error - 27.04.2011 21:15:38 | Computer Name = JuliaMarieHo-PC | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: Continuously busy for more than a second
Error - 27.04.2011 21:15:38 | Computer Name = JuliaMarieHo-PC | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: m->NextScheduledEvent 4049209
Error - 27.04.2011 21:15:38 | Computer Name = JuliaMarieHo-PC | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: m->NextScheduledSPRetry 4049209
Error - 27.04.2011 21:15:39 | Computer Name = JuliaMarieHo-PC | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: Continuously busy for more than a second
Error - 27.04.2011 21:15:39 | Computer Name = JuliaMarieHo-PC | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: m->NextScheduledEvent 4050207
Error - 27.04.2011 21:15:39 | Computer Name = JuliaMarieHo-PC | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: m->NextScheduledSPRetry 4050207
Error - 27.04.2011 21:15:40 | Computer Name = JuliaMarieHo-PC | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: Continuously busy for more than a second
Error - 27.04.2011 21:15:40 | Computer Name = JuliaMarieHo-PC | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: m->NextScheduledEvent 4051221
[ System Events ]
Error - 15.12.2010 17:15:14 | Computer Name = JuliaMarieHo-PC | Source = DCOM | ID = 10016
Description =
Error - 15.12.2010 17:19:59 | Computer Name = JuliaMarieHo-PC | Source = HTTP | ID = 15016
Description =
Error - 15.12.2010 17:21:15 | Computer Name = JuliaMarieHo-PC | Source = Service Control Manager | ID = 7000
Description =
Error - 15.12.2010 17:21:15 | Computer Name = JuliaMarieHo-PC | Source = Service Control Manager | ID = 7011
Description =
Error - 15.12.2010 17:22:41 | Computer Name = JuliaMarieHo-PC | Source = Microsoft-Windows-LanguagePackSetup | ID = 1001
Description =
Error - 15.12.2010 18:23:28 | Computer Name = JuliaMarieHo-PC | Source = iaStor | ID = 262153
Description = Das Gerät \Device\Ide\iaStor0 hat innerhalb der Fehlerwartezeit nicht
geantwortet.
Error - 16.12.2010 17:55:07 | Computer Name = JuliaMarieHo-PC | Source = EventLog | ID = 6008
Description = Das System wurde zuvor am 16.12.2010 um 22:52:50 unerwartet heruntergefahren.
Error - 16.12.2010 17:55:09 | Computer Name = JuliaMarieHo-PC | Source = HTTP | ID = 15016
Description =
Error - 16.12.2010 17:56:12 | Computer Name = JuliaMarieHo-PC | Source = Microsoft-Windows-LanguagePackSetup | ID = 1001
Description =
Error - 16.12.2010 17:56:46 | Computer Name = JuliaMarieHo-PC | Source = Service Control Manager | ID = 7000
Description =
< End of report >
--- --- ---
so, das sind dann die anderen. :) |
