| HeavyMetal1 | 11.11.2012 17:53 |
Hallo Ryder, ich habe den OTL scan gmacht aber bekomme nur den OTL
txt aber nicht den extra.txt.
Reicht das trotzdem?? ansonsten musst du mir sagen wie ich diesen extra.txt bekomme. Beim scannen geht ein punkt(extra registrierung) nämlich immer automatisch auf aus.
Gruß Thomas Code:
OTL logfile created on: 11.11.2012 17:33:46 - Run 3
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Dokumente und Einstellungen\Thomas Gierich\Desktop
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy
1,50 Gb Total Physical Memory | 0,97 Gb Available Physical Memory | 64,71% Memory free
2,85 Gb Paging File | 2,36 Gb Available in Paging File | 82,82% Paging File free
Paging file location(s): C:\pagefile.sys 1535 1535 [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Programme
Drive C: | 114,66 Gb Total Space | 43,21 Gb Free Space | 37,68% Space Free | Partition Type: NTFS
Drive D: | 29,83 Gb Total Space | 29,74 Gb Free Space | 99,71% Space Free | Partition Type: NTFS
Drive E: | 4,55 Gb Total Space | 1,67 Gb Free Space | 36,79% Space Free | Partition Type: FAT32
Computer Name: TOMPC | User Name: Thomas Gierich | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Quick Scan
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days
========== Processes (SafeList) ==========
PRC - [2012.11.11 10:18:53 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Dokumente und Einstellungen\Thomas Gierich\Desktop\OTL.exe
PRC - [2012.09.17 11:41:54 | 000,254,896 | ---- | M] (Sun Microsystems, Inc.) -- C:\Programme\Gemeinsame Dateien\Java\Java Update\jusched.exe
PRC - [2012.09.07 01:57:36 | 000,587,472 | ---- | M] (Crawler.com) -- C:\Programme\Spyware Terminator\st_rsser.exe
PRC - [2012.09.07 01:57:30 | 003,673,808 | ---- | M] (Crawler.com) -- C:\Programme\Spyware Terminator\SpywareTerminatorUpdate.exe
PRC - [2012.09.07 01:57:20 | 002,777,296 | ---- | M] (Crawler.com) -- C:\Programme\Spyware Terminator\SpywareTerminatorShield.exe
PRC - [2012.08.08 17:24:43 | 000,348,664 | ---- | M] (Avira Operations GmbH & Co. KG) -- C:\Programme\Avira\AntiVir Desktop\avgnt.exe
PRC - [2012.05.08 16:42:08 | 000,086,224 | ---- | M] (Avira Operations GmbH & Co. KG) -- C:\Programme\Avira\AntiVir Desktop\sched.exe
PRC - [2012.05.08 16:42:07 | 000,110,032 | ---- | M] (Avira Operations GmbH & Co. KG) -- C:\Programme\Avira\AntiVir Desktop\avguard.exe
PRC - [2012.05.08 16:42:07 | 000,080,336 | ---- | M] (Avira Operations GmbH & Co. KG) -- C:\Programme\Avira\AntiVir Desktop\avshadow.exe
PRC - [2008.12.12 15:29:42 | 001,687,552 | ---- | M] () -- C:\Programme\LG Soft India\forteManager\bin\Monitor.exe
PRC - [2008.04.14 07:52:46 | 001,036,800 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2007.10.30 21:37:22 | 001,654,784 | ---- | M] (Belkin) -- C:\Programme\Belkin\F5D7050v3\Belkinwcui.exe
PRC - [2004.04.13 06:07:18 | 000,069,632 | ---- | M] (InstallShield Software Corporation) -- C:\Programme\Gemeinsame Dateien\InstallShield\UpdateService\issch.exe
PRC - [2004.02.03 17:15:54 | 005,794,816 | ---- | M] (Chicony) -- C:\WINDOWS\CNYHKey.exe
PRC - [2002.09.20 15:29:30 | 000,053,248 | ---- | M] (Computer Associates) -- C:\Programme\CA\SharedComponents\CA_LIC\LogWatNT.exe
========== Modules (No Company Name) ==========
MOD - [2012.05.08 16:42:08 | 000,398,288 | ---- | M] () -- C:\Programme\Avira\AntiVir Desktop\sqlite3.dll
MOD - [2008.12.12 15:29:42 | 001,687,552 | ---- | M] () -- C:\Programme\LG Soft India\forteManager\bin\Monitor.exe
MOD - [2008.12.12 15:29:00 | 000,073,728 | ---- | M] () -- C:\Programme\LG Soft India\forteManager\bin\MonitorGerRes.dll
MOD - [2008.12.12 15:28:14 | 000,126,976 | ---- | M] () -- C:\Programme\LG Soft India\forteManager\bin\ApplicationManager.dll
MOD - [2008.12.12 15:27:56 | 000,077,824 | ---- | M] () -- C:\Programme\LG Soft India\forteManager\bin\ACRHook.dll
MOD - [2008.12.12 15:27:56 | 000,073,728 | ---- | M] () -- C:\Programme\LG Soft India\forteManager\bin\ProtocolEngine.dll
MOD - [2008.12.12 15:27:50 | 000,143,360 | ---- | M] () -- C:\Programme\LG Soft India\forteManager\bin\DeviceManager.dll
MOD - [2008.12.12 15:27:44 | 000,036,864 | ---- | M] () -- C:\Programme\LG Soft India\forteManager\bin\ErrorHandler.dll
MOD - [2007.11.26 10:45:34 | 000,188,416 | ---- | M] () -- C:\Programme\Belkin\F5D7050v3\BelkinwcuiDLL.dll
MOD - [2007.10.30 21:29:24 | 000,151,617 | ---- | M] () -- C:\Programme\Belkin\F5D7050v3\blkwcapi.dll
MOD - [2006.02.24 09:40:56 | 000,061,440 | ---- | M] () -- C:\Programme\Belkin\F5D7050v3\BelkinHWStatus.dll
MOD - [2005.08.10 14:36:52 | 000,045,056 | ---- | M] () -- C:\Programme\Belkin\F5D7050v3\Security.dll
MOD - [2004.09.08 13:45:58 | 000,368,128 | ---- | M] () -- C:\Programme\Filzip\fzshext.dll
MOD - [2003.10.13 14:30:58 | 000,094,208 | ---- | M] () -- C:\Programme\Belkin\F5D7050v3\GTW32N50.dll
MOD - [2003.06.16 17:42:20 | 000,049,152 | ---- | M] () -- C:\WINDOWS\CNYUSB.dll
MOD - [2003.05.27 17:13:02 | 000,024,576 | ---- | M] () -- C:\WINDOWS\HKCYDLL.dll
========== Services (SafeList) ==========
SRV - File not found [On_Demand | Stopped] -- %SystemRoot%\System32\appmgmts.dll -- (AppMgmt)
SRV - [2012.10.31 18:01:34 | 000,115,168 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Programme\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2012.10.09 18:09:58 | 000,250,808 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2012.09.07 01:57:36 | 000,587,472 | ---- | M] (Crawler.com) [Auto | Running] -- C:\Programme\Spyware Terminator\st_rsser.exe -- (ST2012_Svc)
SRV - [2012.05.08 16:42:08 | 000,086,224 | ---- | M] (Avira Operations GmbH & Co. KG) [Auto | Running] -- C:\Programme\Avira\AntiVir Desktop\sched.exe -- (AntiVirSchedulerService)
SRV - [2012.05.08 16:42:07 | 000,110,032 | ---- | M] (Avira Operations GmbH & Co. KG) [Auto | Running] -- C:\Programme\Avira\AntiVir Desktop\avguard.exe -- (AntiVirService)
SRV - [2002.09.20 15:41:02 | 000,077,824 | ---- | M] (Computer Associates) [On_Demand | Stopped] -- C:\Programme\CA\SharedComponents\CA_LIC\lic98rmtd.exe -- (CA_LIC_SRVR)
SRV - [2002.09.20 15:29:30 | 000,053,248 | ---- | M] (Computer Associates) [Auto | Running] -- C:\Programme\CA\SharedComponents\CA_LIC\LogWatNT.exe -- (LogWatch)
SRV - [2002.09.20 15:27:06 | 000,077,824 | ---- | M] (Computer Associates) [On_Demand | Stopped] -- C:\Programme\CA\SharedComponents\CA_LIC\lic98rmt.exe -- (CA_LIC_CLNT)
SRV - [2001.11.12 13:31:48 | 000,020,480 | ---- | M] (X10) [On_Demand | Stopped] -- C:\Programme\Common Files\X10\Common\X10nets.exe -- (x10nets)
========== Driver Services (SafeList) ==========
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (WDICA)
DRV - File not found [Kernel | On_Demand | Stopped] -- System32\DRIVERS\wanatw4.sys -- (wanatw)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\PRISMA02.sys -- (PRISM_A02)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRFRAME)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRELI)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDFRAME)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDCOMP)
DRV - File not found [Kernel | System | Stopped] -- -- (PCIDump)
DRV - File not found [Kernel | System | Stopped] -- -- (lbrtfdc)
DRV - File not found [Kernel | On_Demand | Stopped] -- System32\Drivers\iiusbisp.sys -- (IIUSBISP)
DRV - File not found [Kernel | System | Stopped] -- -- (i2omgmt)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\DOKUME~1\THOMAS~1\LOKALE~1\Temp\cpuz132\cpuz132_x32.sys -- (cpuz132)
DRV - File not found [Kernel | System | Stopped] -- -- (Changer)
DRV - [2012.05.08 16:42:08 | 000,137,928 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\avipbb.sys -- (avipbb)
DRV - [2012.05.08 16:42:08 | 000,083,392 | ---- | M] (Avira GmbH) [File_System | Auto | Running] -- C:\WINDOWS\system32\drivers\avgntflt.sys -- (avgntflt)
DRV - [2011.10.11 14:00:01 | 000,036,000 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\avkmgr.sys -- (avkmgr)
DRV - [2011.06.21 11:24:06 | 000,032,768 | ---- | M] () [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\sp_rsdrv2.sys -- (sp_rsdrv2)
DRV - [2011.05.11 08:55:57 | 000,015,781 | ---- | M] (Meetinghouse Data Communications) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\mdc8021x.sys -- (MDC8021X)
DRV - [2010.06.17 14:14:27 | 000,028,520 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\ssmdrv.sys -- (ssmdrv)
DRV - [2010.01.03 17:54:04 | 004,477,440 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ati2mtag.sys -- (ati2mtag)
DRV - [2008.12.12 15:27:46 | 000,018,432 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Programme\LG Soft India\forteManager\bin\PII2CDriver.sys -- (LGII2CDevice)
DRV - [2008.12.12 15:27:46 | 000,014,336 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Programme\LG Soft India\forteManager\bin\I2CDriver.sys -- (LGDDCDevice)
DRV - [2008.04.14 00:16:24 | 000,015,232 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\mpe.sys -- (MPE)
DRV - [2007.10.11 11:24:00 | 000,079,104 | ---- | M] (Softwareentwicklung Remus - ArchiCrypt ) [Driver] [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\sleen16.sys -- (SLEE_16_DRIVER)
DRV - [2007.10.02 03:06:40 | 000,451,968 | ---- | M] (Ralink Technology, Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\rt73.sys -- (RT73)
DRV - [2004.10.08 10:51:08 | 001,270,540 | ---- | M] (Agere Systems) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\AGRSM.sys -- (AgereSoftModem)
DRV - [2004.10.06 14:10:46 | 000,945,152 | ---- | M] (Philips Semiconductors GmbH) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\3xHybrid.sys -- (3xHybrid)
DRV - [2004.10.01 13:58:10 | 001,272,000 | ---- | M] (C-Media Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\cmudax.sys -- (cmudax)
DRV - [2004.03.17 13:10:40 | 000,113,664 | ---- | M] (Windows (R) Server 2003 DDK provider) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\HdAudio.sys -- (HdAudAddService)
DRV - [2003.12.19 17:13:30 | 000,011,672 | ---- | M] (Chicony) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\UKBFLT.sys -- (UKBFLT)
DRV - [2003.12.05 17:46:36 | 000,010,368 | ---- | M] (Padus, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\pfc.sys -- (pfc)
DRV - [2003.09.25 21:15:32 | 000,015,872 | ---- | M] (Printing Communications Assoc., Inc. (PCAUSA)) [Kernel | On_Demand | Running] -- C:\Programme\Belkin\F5D7050v3\GTNDIS5.sys -- (GTNDIS5)
DRV - [2002.05.02 05:52:22 | 000,017,134 | ---- | M] (Printing Communications Assoc., Inc. (PCAUSA)) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\PCANDIS5.SYS -- (PCANDIS5)
DRV - [1996.04.03 20:33:26 | 000,005,248 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\system32\giveio.sys -- (giveio)
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE - HKLM\..\SearchScopes,DefaultScope =
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = hxxp://search.live.com/results.aspx?q={searchTerms}&src={referrer:source?}
IE - HKLM\..\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2A69}: "URL" = hxxp://search.bearshare.com/web?src=ieb&q={searchTerms}
IE - HKU\.DEFAULT\..\SearchScopes,DefaultScope =
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-18\..\SearchScopes,DefaultScope =
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-19\..\SearchScopes,DefaultScope =
IE - HKU\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-20\..\SearchScopes,DefaultScope =
IE - HKU\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-1108263980-3873771481-1112400847-1007\SOFTWARE\Microsoft\Internet Explorer\Main,bProtector Start Page = about:blank
IE - HKU\S-1-5-21-1108263980-3873771481-1112400847-1007\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.de/
IE - HKU\S-1-5-21-1108263980-3873771481-1112400847-1007\..\SearchScopes,DefaultScope =
IE - HKU\S-1-5-21-1108263980-3873771481-1112400847-1007\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = hxxp://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKU\S-1-5-21-1108263980-3873771481-1112400847-1007\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
========== FireFox ==========
FF - prefs.js..browser.search.defaultenginename: "foxsearch"
FF - prefs.js..browser.search.order.1: "foxsearch"
FF - prefs.js..browser.search.selectedEngine: "foxsearch"
FF - prefs.js..browser.search.suggest.enabled: false
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: "^hxxp://www\\.claro-search\\.com/\\?affID=114508.*"
FF - prefs.js..extensions.enabledAddons: {CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA}:6.0.33
FF - prefs.js..extensions.enabledAddons: {CAFEEFAC-0016-0000-0035-ABCDEFFEDCBA}:6.0.35
FF - prefs.js..extensions.enabledAddons: {ACAA314B-EEBA-48e4-AD47-84E31C44796C}:1.0.10
FF - prefs.js..extensions.enabledItems: {E84D42CA-64EB-11DE-A65F-8C3656D89593}:3.1
FF - prefs.js..extensions.enabledItems: gutscheinmieze@synatix-gmbh.de:1.03
FF - prefs.js..extensions.enabledItems: {46551EC9-40F0-4e47-8E18-8E5CF550CFB8}:1.1.1
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}:6.0.22
FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}:6.0.23
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}:6.0.24
FF - prefs.js..keyword.URL: "hxxp://www.finduny.com?client=mozilla-firefox&cd=UTF-8&search=1&q="
FF - user.js..browser.search.selectedEngine: "foxsearch"
FF - user.js..browser.search.order.1: "foxsearch"
FF - user.js..browser.search.defaultenginename: "foxsearch"
FF - user.js..keyword.URL: "hxxp://www.finduny.com?client=mozilla-firefox&cd=UTF-8&search=1&q="
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_4_402_287.dll ()
FF - HKLM\Software\MozillaPlugins\@google.com/npPicasa3,version=3.0.0: C:\Programme\Google\Picasa3\npPicasa3.dll (Google, Inc.)
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=1.6.0_37: C:\WINDOWS\system32\npdeployJava1.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Programme\Java\jre6\bin\plugin2\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Programme\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Programme\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Programme\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\smartwebprinting@hp.com: C:\Programme\HP\Digital Imaging\Smart Web Printing\MozillaAddOn2 [2011.05.08 11:44:52 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 16.0.2\extensions\\Components: C:\Programme\Mozilla Firefox\components [2012.10.31 18:01:36 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 16.0.2\extensions\\Plugins: C:\Programme\Mozilla Firefox\plugins [2012.10.17 16:21:26 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\Firefox\Extensions\\smartwebprinting@hp.com: C:\Programme\HP\Digital Imaging\Smart Web Printing\MozillaAddOn2 [2011.05.08 11:44:52 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\Firefox\Extensions\\{dfefbe51-ca52-484b-adf0-6b158b05262d}: C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Browser Manager\2.4.897.175\{61d8b74e-8d89-46ff-afa6-33382c54ac73}\FirefoxExtension
[2010.01.03 17:39:33 | 000,000,000 | ---D | M] (No name found) -- C:\Dokumente und Einstellungen\Thomas Gierich\Anwendungsdaten\Mozilla\Extensions
[2012.11.08 09:03:56 | 000,000,000 | ---D | M] (No name found) -- C:\Dokumente und Einstellungen\Thomas Gierich\Anwendungsdaten\Mozilla\Firefox\Profiles\g3abp18f.default\extensions
[2010.06.26 13:33:46 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Dokumente und Einstellungen\Thomas Gierich\Anwendungsdaten\Mozilla\Firefox\Profiles\g3abp18f.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2011.11.01 17:33:24 | 000,000,000 | ---D | M] ("Free YouTube Download (Free Studio) Menu") -- C:\Dokumente und Einstellungen\Thomas Gierich\Anwendungsdaten\Mozilla\Firefox\Profiles\g3abp18f.default\extensions\{ACAA314B-EEBA-48e4-AD47-84E31C44796C}
[2012.10.17 15:55:28 | 000,000,000 | ---D | M] ("Savings Sidekick") -- C:\Dokumente und Einstellungen\Thomas Gierich\Anwendungsdaten\Mozilla\Firefox\Profiles\g3abp18f.default\extensions\crossriderapp5060@crossrider.com
[2012.10.17 15:55:28 | 000,000,000 | ---D | M] (No name found) -- C:\Dokumente und Einstellungen\Thomas Gierich\Anwendungsdaten\Mozilla\Firefox\Profiles\g3abp18f.default\extensions\crossriderapp5060@crossrider.com\chrome\content\extensionCode
[2012.08.05 11:01:08 | 000,741,958 | ---- | M] () (No name found) -- C:\Dokumente und Einstellungen\Thomas Gierich\Anwendungsdaten\Mozilla\Firefox\Profiles\g3abp18f.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
[2012.10.20 09:38:14 | 000,000,000 | ---D | M] (No name found) -- C:\Programme\Mozilla Firefox\extensions
[2012.10.11 19:40:25 | 000,000,000 | ---D | M] (Java Console) -- C:\Programme\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA}
[2012.10.11 19:40:25 | 000,000,000 | ---D | M] (Java Console) -- C:\Programme\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0035-ABCDEFFEDCBA}
[2012.10.20 09:38:15 | 000,000,000 | ---D | M] (Java Console) -- C:\Programme\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0037-ABCDEFFEDCBA}
[2012.10.31 18:01:35 | 000,261,600 | ---- | M] (Mozilla Foundation) -- C:\Programme\mozilla firefox\components\browsercomps.dll
[2012.06.21 17:23:16 | 000,001,392 | ---- | M] () -- C:\Programme\mozilla firefox\searchplugins\amazondotcom-de.xml
[2010.04.12 13:01:54 | 000,002,476 | ---- | M] () -- C:\Programme\mozilla firefox\searchplugins\BearShareWebSearch.xml
[2012.09.13 16:39:26 | 000,002,465 | ---- | M] () -- C:\Programme\mozilla firefox\searchplugins\bing.xml
[2012.06.21 17:23:16 | 000,001,153 | ---- | M] () -- C:\Programme\mozilla firefox\searchplugins\eBay-de.xml
[2010.09.27 18:11:57 | 000,000,143 | ---- | M] () -- C:\Programme\mozilla firefox\searchplugins\foxsearch.src
[2012.06.21 17:23:16 | 000,006,805 | ---- | M] () -- C:\Programme\mozilla firefox\searchplugins\leo_ende_de.xml
[2012.06.21 17:23:16 | 000,001,178 | ---- | M] () -- C:\Programme\mozilla firefox\searchplugins\wikipedia-de.xml
[2012.06.21 17:23:16 | 000,001,105 | ---- | M] () -- C:\Programme\mozilla firefox\searchplugins\yahoo-de.xml
O1 HOSTS File: ([2002.08.29 13:00:00 | 000,000,820 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (Adobe PDF Link Helper) - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Programme\Gemeinsame Dateien\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Programme\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.)
O3 - HKLM\..\Toolbar: (no name) - {9E131A93-EED7-4BEB-B015-A0ADB30B5646} - No CLSID value found.
O4 - HKLM..\Run: [Adobe ARM] C:\Programme\Gemeinsame Dateien\Adobe\ARM\1.0\AdobeARM.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [avgnt] C:\Programme\Avira\AntiVir Desktop\avgnt.exe (Avira Operations GmbH & Co. KG)
O4 - HKLM..\Run: [CHotkey] C:\WINDOWS\mHotkey.exe (Chicony)
O4 - HKLM..\Run: [Cmaudio] RunDll32 cmicnfg.cpl,CMICtrlWnd File not found
O4 - HKLM..\Run: [F5D7050v3] C:\Programme\Belkin\F5D7050v3\Belkinwcui.exe (Belkin)
O4 - HKLM..\Run: [ISUSPM Startup] C:\Programme\Gemeinsame Dateien\InstallShield\UpdateService\ISUSPM.exe (InstallShield Software Corporation)
O4 - HKLM..\Run: [ISUSScheduler] C:\Programme\Gemeinsame Dateien\InstallShield\UpdateService\issch.exe (InstallShield Software Corporation)
O4 - HKLM..\Run: [ledpointer] C:\WINDOWS\CNYHKey.exe (Chicony)
O4 - HKLM..\Run: [SpywareTerminatorShield] C:\Programme\Spyware Terminator\SpywareTerminatorShield.exe (Crawler.com)
O4 - HKLM..\Run: [SpywareTerminatorUpdater] C:\Programme\Spyware Terminator\SpywareTerminatorUpdate.exe (Crawler.com)
O4 - HKLM..\Run: [SunJavaUpdateSched] C:\Programme\Gemeinsame Dateien\Java\Java Update\jusched.exe (Sun Microsystems, Inc.)
O4 - Startup: C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Autostart\forteManager.lnk = C:\Programme\LG Soft India\forteManager\bin\Monitor.exe ()
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-1108263980-3873771481-1112400847-1007\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O8 - Extra context menu item: Add to Google Photos Screensa&ver - C:\WINDOWS\System32\GPhotos.scr (Google Inc.)
O8 - Extra context menu item: Free YouTube to MP3 Converter - C:\Dokumente und Einstellungen\Thomas Gierich\Anwendungsdaten\DVDVideoSoftIEHelpers\freeyoutubetomp3converter.htm ()
O9 - Extra Button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - Reg Error: Value error. File not found
O9 - Extra 'Tools' menuitem : Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - Reg Error: Value error. File not found
O16 - DPF: {166B1BCA-3F9C-11CF-8075-444553540000} hxxp://fpdownload.macromedia.com/get/shockwave/cabs/director/sw.cab (Shockwave ActiveX Control)
O16 - DPF: {3E68E405-C6DE-49FF-83AE-41EE9F4C36CE} hxxp://office.microsoft.com/officeupdate/content/opuc.cab (Office Update Installation Engine)
O16 - DPF: {56336BCB-3D8A-11D6-A00B-0050DA18DE71} hxxp://software-dl.real.com/23ea10ffae3267990f05/netzip/RdxIE601_de.cab (Reg Error: Key error.)
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} hxxp://www.update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1343228750046 (WUWebControl Class)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_37-windows-i586.cab (Java Plug-in 1.6.0_37)
O16 - DPF: {CAFEEFAC-0014-0002-0005-ABCDEFFEDCBA} hxxp://java.sun.com/products/plugin/autodl/jinstall-142-windows-i586.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0014-0002-0006-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.4.2/jinstall-1_4_2_06-windows-i586.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0037-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_37-windows-i586.cab (Java Plug-in 1.6.0_37)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_37-windows-i586.cab (Java Plug-in 1.6.0_37)
O16 - DPF: DirectAnimation Java Classes file://C:\WINDOWS\Java\classes\dajava.cab (Reg Error: Key error.)
O16 - DPF: Microsoft XML Parser for Java file://C:\WINDOWS\Java\classes\xmldso.cab (Reg Error: Key error.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{5BA5D85B-072D-4981-8F10-59DAA6338185}: DhcpNameServer = 192.168.1.1
O18 - Protocol\Handler\ipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\msdaipp.dll (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\msdaipp.dll (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\msdaipp.dll (Microsoft Corporation)
O18 - Protocol\Handler\ms-itss {0A9007C0-4076-11D3-8789-0000F8105754} - C:\Programme\Gemeinsame Dateien\Microsoft Shared\Information Retrieval\msitss.dll (Microsoft Corporation)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Programme\Gemeinsame Dateien\Skype\Skype4COM.dll (Skype Technologies)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) - C:\WINDOWS\system32\userinit.exe (Microsoft Corporation)
O20 - Winlogon\Notify\AtiExtEvent: DllName - (Ati2evxx.dll) - C:\WINDOWS\System32\ati2evxx.dll (ATI Technologies Inc.)
O24 - Desktop Components:0 (Die derzeitige Homepage) - About:Home
O24 - Desktop WallPaper: C:\Dokumente und Einstellungen\Thomas Gierich\Lokale Einstellungen\Anwendungsdaten\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Dokumente und Einstellungen\Thomas Gierich\Lokale Einstellungen\Anwendungsdaten\Microsoft\Wallpaper1.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2004.06.22 16:43:45 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O32 - AutoRun File - [2011.05.12 15:34:42 | 000,000,000 | ---- | M] () - E:\autorun.inf -- [ FAT32 ]
O33 - MountPoints2\{de79ffbb-49f0-11d9-af23-000c76adb999}\Shell\AutoRun\command - "" = C:\WINDOWS\explorer.exe -- [2008.04.14 07:52:46 | 001,036,800 | ---- | M] (Microsoft Corporation)
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
ActiveX: {08B0E5C0-4FCB-11CF-AAA5-00401C608500} - Microsoft VM
ActiveX: {08B0E5C0-4FCB-11CF-AAA5-00401C608555} - Internet Explorer Classes for Java
ActiveX: {10072CEC-8CC1-11D1-986E-00A0C955B42F} - Vektorgrafik-Rendering (VML)
ActiveX: {166B1BCA-3F9C-11CF-8075-444553540000} - Macromedia Shockwave Director 10.1
ActiveX: {2179C5D3-EBFF-11CF-B6FD-00AA00B4E220} - NetShow
ActiveX: {2298d453-bcae-4519-bf33-1cbf3faf1524} - Q867801
ActiveX: {22d6f312-b0f6-11d0-94ab-0080c74c7e95} - Microsoft Windows Media Player 6.4
ActiveX: {283807B5-2C60-11D0-A31D-00AA00B92C03} - DirectAnimation
ActiveX: {2A202491-F00D-11cf-87CC-0020AFEECF20} - Macromedia Shockwave Director 10.1
ActiveX: {2A3320D6-C805-4280-B423-B665BDE33D8F} - Microsoft .NET Framework 1.1 Security Update (KB979906)
ActiveX: {2C7339CF-2B09-4501-B3F3-F3508C9228ED} - %SystemRoot%\system32\regsvr32.exe /s /n /i:/UserInstall %SystemRoot%\system32\themeui.dll
ActiveX: {2cc9d512-6db6-4f1c-8979-9a41fae88de0} - Q837009
ActiveX: {36f8ec70-c29a-11d1-b5c7-0000f8051515} - Dynamic HTML-Datenbindung für Java
ActiveX: {3af36230-a269-11d1-b5bf-0000f8051515} - Offline Browsing Pack
ActiveX: {3bf42070-b3b1-11d1-b5c5-0000f8051515} - Uniscribe
ActiveX: {411EDCF7-755D-414E-A74B-3DCD6583F589} - Microsoft .NET Framework 1.1 Service Pack 1 (KB867460)
ActiveX: {4278c270-a269-11d1-b5bf-0000f8051515} - Erweitertes Authoring
ActiveX: {44BBA840-CC51-11CF-AAFA-00AA00B6015C} - "%ProgramFiles%\Outlook Express\setup50.exe" /APP:OE /CALLER:WINNT /user /install
ActiveX: {44BBA842-CC51-11CF-AAFA-00AA00B6015B} - rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\msnetmtg.inf,NetMtg.Install.PerUser.NT
ActiveX: {44BBA848-CC51-11CF-AAFA-00AA00B6015C} - DirectShow
ActiveX: {44BBA855-CC51-11CF-AAFA-00AA00B6015C} - Microsoft DirectX
ActiveX: {44BBA855-CC51-11CF-AAFA-00AA00B6015F} - DirectDrawEx
ActiveX: {45ea75a0-a269-11d1-b5bf-0000f8051515} - Internet Explorer Help
ActiveX: {4f216970-c90c-11d1-b5c7-0000f8051515} - DirectAnimation Java Classes
ActiveX: {4f645220-306d-11d2-995d-00c04f98bbc9} - Microsoft Windows Script 5.8
ActiveX: {5945c046-1e7d-11d1-bc44-00c04fd912be} - rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\msmsgs.inf,BLC.QuietInstall.PerUser
ActiveX: {5A8D6EE0-3E18-11D0-821E-444553540000} - ICW
ActiveX: {5f3c70b3-ac2f-432c-8f9c-1624df61f54f} - Microsoft Data Access Components KB870669
ActiveX: {5fd399c0-a70a-11d1-9948-00c04f98bbc9} - Internet Explorer Setup Tools
ActiveX: {630b1da0-b465-11d1-9948-00c04f98bbc9} - Browsing Enhancements
ActiveX: {6BF52A52-394A-11d3-B153-00C04F79FAA6} - Microsoft Windows Media Player
ActiveX: {6fab99d0-bab8-11d1-994a-00c04f98bbc9} - MSN Site Access
ActiveX: {7131646D-CD3C-40F4-97B9-CD9E4E6262EF} - .NET Framework
ActiveX: {7790769C-0471-11d2-AF11-00C04FA35D02} - "%ProgramFiles%\Outlook Express\setup50.exe" /APP:WAB /CALLER:WINNT /user /install
ActiveX: {795d0712-722c-43ec-906a-fc5e678eada9} - Q831167
ActiveX: {89820200-ECBD-11cf-8B85-00AA005B4340} - regsvr32.exe /s /n /i:U shell32.dll
ActiveX: {89820200-ECBD-11cf-8B85-00AA005B4383} - C:\WINDOWS\system32\ie4uinit.exe -BaseSettings
ActiveX: {89B4C1CD-B018-4511-B0A1-5476DBF70820} - c:\WINDOWS\system32\Rundll32.exe c:\WINDOWS\system32\mscories.dll,Install
ActiveX: {8b15971b-5355-4c82-8c07-7e181ea07608} - rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\fxsocm.inf,Fax.Install.PerUser
ActiveX: {9381D8F2-0288-11D0-9501-00AA00B911A5} - Dynamic HTML Data Binding
ActiveX: {94de52c8-2d59-4f1b-883e-79663d2d9a8c} - Fax Provider
ActiveX: {abcdf74f-9a64-4e6e-b8eb-6e5a41de6550} -
ActiveX: {C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F} - .NET Framework
ActiveX: {C3C986D6-06B1-43BF-90DD-BE30756C00DE} - RevokedRootsUpdate
ActiveX: {C9E9A340-D1F1-11D0-821E-444553540600} - Internet Explorer Core Fonts
ActiveX: {CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1} - .NET Framework
ActiveX: {CC2A9BA0-3BDD-11D0-821E-444553540000} - Taskplaner
ActiveX: {CDD7975E-60F8-41d5-8149-19E51D6F71D0} - Windows Movie Maker v2.1
ActiveX: {D27CDB6E-AE6D-11CF-96B8-444553540000} - Adobe Flash Player
ActiveX: {de5aed00-a4bf-11d1-9948-00c04f98bbc9} - HTML Help
ActiveX: {E78BFA60-5393-4C38-82AB-E8019E464EB4} - .NET Framework
ActiveX: {E92B03AB-B707-11d2-9CBD-0000F87A369E} - Active Directory Service Interface
ActiveX: {eddbec60-89cb-44ef-8291-0850fd28ff6a} - Q832894
ActiveX: {EFCE7BE0-510E-4932-9475-F44CD90DE16A} - Microsoft .NET Framework 1.1 Security Update (KB2572067)
ActiveX: {f5173cf0-1dfb-4978-8e50-a90169ee7ca9} - Q823353
ActiveX: <{12d0ed0d-0ee0-4f90-8827-78cefb8f4988} - C:\WINDOWS\system32\ieudinit.exe
ActiveX: >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} - C:\WINDOWS\inf\unregmp2.exe /ShowWMP
ActiveX: >{26923b43-4d38-484f-9b9e-de460746276c} - C:\WINDOWS\system32\ie4uinit.exe -UserIconConfig
ActiveX: >{60B49E34-C7CC-11D0-8953-00A0C90347FF} - "C:\WINDOWS\system32\rundll32.exe" "C:\WINDOWS\system32\iedkcs32.dll",BrandIEActiveSetup SIGNUP
ActiveX: >{881dd1c5-3dcf-431b-b061-f3f88e8be88a} - %systemroot%\system32\shmgrate.exe OCInstallUserConfigOE
NetSvcs: 6to4 - File not found
NetSvcs: AppMgmt - %SystemRoot%\System32\appmgmts.dll File not found
NetSvcs: Ias - File not found
NetSvcs: Iprip - File not found
NetSvcs: Irmon - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: WmdmPmSp - File not found
Drivers32: msacm.iac2 - C:\WINDOWS\System32\iac25_32.ax (Intel Corporation)
Drivers32: msacm.l3acm - C:\WINDOWS\system32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.sl_anet - C:\WINDOWS\System32\sl_anet.acm (Sipro Lab Telecom Inc.)
Drivers32: msacm.trspch - C:\WINDOWS\System32\tssoft32.acm (DSP GROUP, INC.)
Drivers32: MSVideo8 - C:\WINDOWS\System32\vfwwdm32.dll (Microsoft Corporation)
Drivers32: vidc.cvid - C:\WINDOWS\System32\iccvid.dll (Radius Inc.)
Drivers32: vidc.iv31 - C:\WINDOWS\System32\ir32_32.dll ()
Drivers32: vidc.iv32 - C:\WINDOWS\System32\ir32_32.dll ()
Drivers32: vidc.iv41 - C:\WINDOWS\System32\ir41_32.ax (Intel Corporation)
Drivers32: vidc.iv50 - C:\WINDOWS\System32\ir50_32.dll (Intel Corporation)
Drivers32: wave1 - C:\WINDOWS\System32\serwvdrv.dll (Microsoft Corporation)
SafeBootMin: AppMgmt - %SystemRoot%\System32\appmgmts.dll File not found
SafeBootMin: Base - Driver Group
SafeBootMin: Boot Bus Extender - Driver Group
SafeBootMin: Boot file system - Driver Group
SafeBootMin: File system - Driver Group
SafeBootMin: Filter - Driver Group
SafeBootMin: PCI Configuration - Driver Group
SafeBootMin: PNP Filter - Driver Group
SafeBootMin: Primary disk - Driver Group
SafeBootMin: SCSI Class - Driver Group
SafeBootMin: sermouse.sys - Driver
SafeBootMin: System Bus Extender - Driver Group
SafeBootMin: vds - Service
SafeBootMin: vga.sys - Driver
SafeBootMin: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
SafeBootMin: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
SafeBootMin: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
SafeBootMin: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
SafeBootMin: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
SafeBootMin: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
SafeBootMin: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
SafeBootMin: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
SafeBootMin: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
SafeBootMin: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
SafeBootMin: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
SafeBootMin: {533C5B84-EC70-11D2-9505-00C04F79DEAF} - Volume shadow copy
SafeBootMin: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
SafeBootMin: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices
SafeBootNet: AppMgmt - %SystemRoot%\System32\appmgmts.dll File not found
SafeBootNet: Base - Driver Group
SafeBootNet: Boot Bus Extender - Driver Group
SafeBootNet: Boot file system - Driver Group
SafeBootNet: File system - Driver Group
SafeBootNet: Filter - Driver Group
SafeBootNet: NDIS Wrapper - Driver Group
SafeBootNet: NetBIOSGroup - Driver Group
SafeBootNet: NetDDEGroup - Driver Group
SafeBootNet: Network - Driver Group
SafeBootNet: NetworkProvider - Driver Group
SafeBootNet: PCI Configuration - Driver Group
SafeBootNet: PNP Filter - Driver Group
SafeBootNet: PNP_TDI - Driver Group
SafeBootNet: Primary disk - Driver Group
SafeBootNet: SCSI Class - Driver Group
SafeBootNet: sermouse.sys - Driver
SafeBootNet: Streams Drivers - Driver Group
SafeBootNet: System Bus Extender - Driver Group
SafeBootNet: TDI - Driver Group
SafeBootNet: UploadMgr - Service
SafeBootNet: vga.sys - Driver
SafeBootNet: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
SafeBootNet: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
SafeBootNet: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
SafeBootNet: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
SafeBootNet: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
SafeBootNet: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
SafeBootNet: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
SafeBootNet: {4D36E972-E325-11CE-BFC1-08002BE10318} - Net
SafeBootNet: {4D36E973-E325-11CE-BFC1-08002BE10318} - NetClient
SafeBootNet: {4D36E974-E325-11CE-BFC1-08002BE10318} - NetService
SafeBootNet: {4D36E975-E325-11CE-BFC1-08002BE10318} - NetTrans
SafeBootNet: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
SafeBootNet: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
SafeBootNet: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
SafeBootNet: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
SafeBootNet: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
SafeBootNet: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices
CREATERESTOREPOINT
Restore point Set: OTL Restore Point
========== Files/Folders - Created Within 30 Days ==========
[2012.11.11 14:10:58 | 000,000,000 | RH-D | C] -- C:\Dokumente und Einstellungen\Thomas Gierich\Recent
[2012.11.10 12:09:45 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Dokumente und Einstellungen\Thomas Gierich\Desktop\OTL.exe
[2012.11.09 17:05:01 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\Thomas Gierich\Application Data
[2012.11.08 14:22:58 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\Thomas Gierich\Anwendungsdaten\Uniblue
[2012.11.08 08:18:29 | 000,000,000 | ---D | C] -- C:\Programme\Spybot - Search & Destroy
[2012.11.08 08:18:29 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Spybot - Search & Destroy
[2012.10.28 16:19:17 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Tinypic
[2012.10.28 16:19:16 | 000,000,000 | ---D | C] -- C:\Programme\Tinypic
[2012.10.28 16:17:02 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\Thomas Gierich\Anwendungsdaten\PersBackup5
[2012.10.28 09:58:05 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\Thomas Gierich\Anwendungsdaten\Spyware Terminator
[2012.10.28 09:58:04 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Spyware Terminator
[2012.10.28 09:57:51 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Spyware Terminator 2012
[2012.10.28 09:56:29 | 000,000,000 | ---D | C] -- C:\Programme\Spyware Terminator
[2012.10.17 16:30:58 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\Thomas Gierich\Lokale Einstellungen\Anwendungsdaten\Passbild_Generator
[2012.10.17 16:30:36 | 000,000,000 | ---D | C] -- C:\Programme\Passbild-Generator
[2012.10.17 16:30:36 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Passbild-Generator
[2012.10.17 15:55:21 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Browser Manager
[2009.09.04 18:01:10 | 000,525,656 | ---- | C] (Microsoft Corporation) -- C:\Programme\DXSETUP.exe
[2009.09.04 18:01:08 | 001,691,464 | ---- | C] (Microsoft Corporation) -- C:\Programme\dsetup32.dll
[2009.09.04 18:01:08 | 000,094,024 | ---- | C] (Microsoft Corporation) -- C:\Programme\DSETUP.dll
[2 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[2 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[1 C:\WINDOWS\System\*.tmp files -> C:\WINDOWS\System\*.tmp -> ]
========== Files - Modified Within 30 Days ==========
[2012.11.11 17:09:15 | 000,000,884 | ---- | M] () -- C:\WINDOWS\tasks\Adobe Flash Player Updater.job
[2012.11.11 17:09:11 | 000,000,041 | ---- | M] () -- C:\WINDOWS\Filzip.ini
[2012.11.11 17:06:00 | 000,001,106 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2012.11.11 16:58:46 | 000,001,102 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2012.11.11 16:58:25 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2012.11.11 16:58:21 | 1610,141,696 | -HS- | M] () -- C:\hiberfil.sys
[2012.11.11 12:16:31 | 000,000,202 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini
[2012.11.11 10:18:53 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Dokumente und Einstellungen\Thomas Gierich\Desktop\OTL.exe
[2012.11.10 12:09:36 | 000,541,569 | ---- | M] () -- C:\Dokumente und Einstellungen\Thomas Gierich\Desktop\adwcleaner.exe
[2012.11.09 15:50:38 | 000,001,158 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2012.11.08 17:58:32 | 000,002,477 | ---- | M] () -- C:\Dokumente und Einstellungen\Thomas Gierich\Desktop\Microsoft Word.lnk
[2012.10.28 09:55:04 | 000,454,588 | ---- | M] () -- C:\WINDOWS\System32\perfh007.dat
[2012.10.28 09:55:04 | 000,437,218 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2012.10.28 09:55:04 | 000,083,752 | ---- | M] () -- C:\WINDOWS\System32\perfc007.dat
[2012.10.28 09:55:04 | 000,070,538 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2012.10.23 16:20:19 | 000,001,027 | ---- | M] () -- C:\Dokumente und Einstellungen\Thomas Gierich\Desktop\Free YouTube to MP3 Converter.lnk
[2 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[2 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[1 C:\WINDOWS\System\*.tmp files -> C:\WINDOWS\System\*.tmp -> ]
========== Files Created - No Company Name ==========
[2012.11.10 12:09:32 | 000,541,569 | ---- | C] () -- C:\Dokumente und Einstellungen\Thomas Gierich\Desktop\adwcleaner.exe
[2012.10.28 09:58:10 | 000,032,768 | ---- | C] () -- C:\WINDOWS\System32\drivers\sp_rsdrv2.sys
[2012.02.16 10:25:45 | 000,003,072 | ---- | C] () -- C:\WINDOWS\System32\iacenc.dll
[2011.05.12 19:27:09 | 000,200,704 | ---- | C] () -- C:\WINDOWS\System32\UpdateDriver.exe
[2011.05.12 19:27:09 | 000,005,224 | ---- | C] () -- C:\WINDOWS\System32\ucuiinfo.ini
[2011.05.08 11:37:23 | 000,188,590 | ---- | C] () -- C:\WINDOWS\hpoins28.dat
[2011.05.08 11:37:23 | 000,000,796 | ---- | C] () -- C:\WINDOWS\hpomdl28.dat
[2011.04.04 16:44:19 | 000,000,112 | ---- | C] () -- C:\WINDOWS\ActiveSkin.INI
[2011.02.26 13:48:09 | 000,004,096 | ---- | C] () -- C:\WINDOWS\d3dx.dat
[2010.01.08 17:58:08 | 000,005,116 | ---- | C] () -- C:\Dokumente und Einstellungen\Thomas Gierich\Anwendungsdaten\wklnhst.dat
[2010.01.03 17:21:07 | 000,008,704 | ---- | C] () -- C:\Dokumente und Einstellungen\Thomas Gierich\Lokale Einstellungen\Anwendungsdaten\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010.01.03 17:21:07 | 000,000,147 | ---- | C] () -- C:\Dokumente und Einstellungen\Thomas Gierich\Lokale Einstellungen\Anwendungsdaten\fusioncache.dat
[2009.09.04 18:01:20 | 001,550,796 | ---- | C] () -- C:\Programme\Nov2008_d3dx9_40_x86.cab
[2009.09.04 18:01:20 | 001,412,894 | ---- | C] () -- C:\Programme\OCT2006_d3dx9_31_x64.cab
[2009.09.04 18:01:20 | 001,127,209 | ---- | C] () -- C:\Programme\OCT2006_d3dx9_31_x86.cab
[2009.09.04 18:01:20 | 000,994,154 | ---- | C] () -- C:\Programme\Nov2008_d3dx10_40_x64.cab
[2009.09.04 18:01:20 | 000,273,960 | ---- | C] () -- C:\Programme\Nov2008_XAudio_x64.cab
[2009.09.04 18:01:20 | 000,272,603 | ---- | C] () -- C:\Programme\Nov2008_XAudio_x86.cab
[2009.09.04 18:01:20 | 000,182,361 | ---- | C] () -- C:\Programme\OCT2006_XACT_x64.cab
[2009.09.04 18:01:20 | 000,138,009 | ---- | C] () -- C:\Programme\OCT2006_XACT_x86.cab
[2009.09.04 18:01:20 | 000,121,786 | ---- | C] () -- C:\Programme\Nov2008_XACT_x64.cab
[2009.09.04 18:01:20 | 000,092,676 | ---- | C] () -- C:\Programme\Nov2008_XACT_x86.cab
[2009.09.04 18:01:20 | 000,086,029 | ---- | C] () -- C:\Programme\Oct2005_xinput_x64.cab
[2009.09.04 18:01:20 | 000,054,522 | ---- | C] () -- C:\Programme\Nov2008_X3DAudio_x64.cab
[2009.09.04 18:01:20 | 000,045,351 | ---- | C] () -- C:\Programme\Oct2005_xinput_x86.cab
[2009.09.04 18:01:20 | 000,021,843 | ---- | C] () -- C:\Programme\Nov2008_X3DAudio_x86.cab
[2009.09.04 18:01:18 | 001,906,870 | ---- | C] () -- C:\Programme\Nov2008_d3dx9_40_x64.cab
[2009.09.04 18:01:18 | 001,802,058 | ---- | C] () -- C:\Programme\Nov2007_d3dx9_36_x64.cab
[2009.09.04 18:01:18 | 001,709,360 | ---- | C] () -- C:\Programme\Nov2007_d3dx9_36_x86.cab
[2009.09.04 18:01:18 | 000,965,421 | ---- | C] () -- C:\Programme\Nov2008_d3dx10_40_x86.cab
[2009.09.04 18:01:18 | 000,803,876 | ---- | C] () -- C:\Programme\Nov2007_d3dx10_36_x86.cab
[2009.09.04 18:01:18 | 000,196,754 | ---- | C] () -- C:\Programme\NOV2007_XACT_x64.cab
[2009.09.04 18:01:18 | 000,148,264 | ---- | C] () -- C:\Programme\NOV2007_XACT_x86.cab
[2009.09.04 18:01:18 | 000,046,144 | ---- | C] () -- C:\Programme\NOV2007_X3DAudio_x64.cab
[2009.09.04 18:01:18 | 000,018,496 | ---- | C] () -- C:\Programme\NOV2007_X3DAudio_x86.cab
[2009.09.04 18:01:14 | 001,973,702 | ---- | C] () -- C:\Programme\Mar2009_d3dx9_41_x64.cab
[2009.09.04 18:01:14 | 001,612,446 | ---- | C] () -- C:\Programme\Mar2009_d3dx9_41_x86.cab
[2009.09.04 18:01:14 | 001,067,160 | ---- | C] () -- C:\Programme\Mar2009_d3dx10_41_x64.cab
[2009.09.04 18:01:14 | 001,040,737 | ---- | C] () -- C:\Programme\Mar2009_d3dx10_41_x86.cab
[2009.09.04 18:01:14 | 000,864,600 | ---- | C] () -- C:\Programme\Nov2007_d3dx10_36_x64.cab
[2009.09.04 18:01:14 | 000,275,036 | ---- | C] () -- C:\Programme\Mar2009_XAudio_x64.cab
[2009.09.04 18:01:14 | 000,273,010 | ---- | C] () -- C:\Programme\Mar2009_XAudio_x86.cab
[2009.09.04 18:01:14 | 000,251,186 | ---- | C] () -- C:\Programme\Mar2008_XAudio_x64.cab
[2009.09.04 18:01:14 | 000,226,242 | ---- | C] () -- C:\Programme\Mar2008_XAudio_x86.cab
[2009.09.04 18:01:14 | 000,122,336 | ---- | C] () -- C:\Programme\Mar2008_XACT_x64.cab
[2009.09.04 18:01:14 | 000,121,506 | ---- | C] () -- C:\Programme\Mar2009_XACT_x64.cab
[2009.09.04 18:01:14 | 000,093,726 | ---- | C] () -- C:\Programme\Mar2008_XACT_x86.cab
[2009.09.04 18:01:14 | 000,092,732 | ---- | C] () -- C:\Programme\Mar2009_XACT_x86.cab
[2009.09.04 18:01:14 | 000,054,600 | ---- | C] () -- C:\Programme\Mar2009_X3DAudio_x64.cab
[2009.09.04 18:01:14 | 000,021,867 | ---- | C] () -- C:\Programme\Mar2008_X3DAudio_x86.cab
[2009.09.04 18:01:14 | 000,021,298 | ---- | C] () -- C:\Programme\Mar2009_X3DAudio_x86.cab
[2009.09.04 18:01:12 | 001,769,862 | ---- | C] () -- C:\Programme\Mar2008_d3dx9_37_x64.cab
[2009.09.04 18:01:12 | 001,443,274 | ---- | C] () -- C:\Programme\Mar2008_d3dx9_37_x86.cab
[2009.09.04 18:01:12 | 000,844,884 | ---- | C] () -- C:\Programme\Mar2008_d3dx10_37_x64.cab
[2009.09.04 18:01:12 | 000,818,260 | ---- | C] () -- C:\Programme\Mar2008_d3dx10_37_x86.cab
[2009.09.04 18:01:12 | 000,269,620 | ---- | C] () -- C:\Programme\JUN2008_XAudio_x64.cab
[2009.09.04 18:01:12 | 000,269,016 | ---- | C] () -- C:\Programme\JUN2008_XAudio_x86.cab
[2009.09.04 18:01:12 | 000,121,054 | ---- | C] () -- C:\Programme\JUN2008_XACT_x64.cab
[2009.09.04 18:01:12 | 000,093,128 | ---- | C] () -- C:\Programme\JUN2008_XACT_x86.cab
[2009.09.04 18:01:12 | 000,055,050 | ---- | C] () -- C:\Programme\Mar2008_X3DAudio_x64.cab
[2009.09.04 18:01:12 | 000,021,905 | ---- | C] () -- C:\Programme\JUN2008_X3DAudio_x86.cab
[2009.09.04 18:01:10 | 001,792,600 | ---- | C] () -- C:\Programme\JUN2008_d3dx9_38_x64.cab
[2009.09.04 18:01:10 | 001,607,766 | ---- | C] () -- C:\Programme\JUN2007_d3dx9_34_x64.cab
[2009.09.04 18:01:10 | 001,607,278 | ---- | C] () -- C:\Programme\JUN2007_d3dx9_34_x86.cab
[2009.09.04 18:01:10 | 001,463,878 | ---- | C] () -- C:\Programme\JUN2008_d3dx9_38_x86.cab
[2009.09.04 18:01:10 | 001,362,796 | ---- | C] () -- C:\Programme\Feb2006_d3dx9_29_x64.cab
[2009.09.04 18:01:10 | 001,336,002 | ---- | C] () -- C:\Programme\Jun2005_d3dx9_26_x64.cab
[2009.09.04 18:01:10 | 001,064,925 | ---- | C] () -- C:\Programme\Jun2005_d3dx9_26_x86.cab
[2009.09.04 18:01:10 | 000,867,828 | ---- | C] () -- C:\Programme\JUN2008_d3dx10_38_x64.cab
[2009.09.04 18:01:10 | 000,849,919 | ---- | C] () -- C:\Programme\JUN2008_d3dx10_38_x86.cab
[2009.09.04 18:01:10 | 000,699,044 | ---- | C] () -- C:\Programme\JUN2007_d3dx10_34_x64.cab
[2009.09.04 18:01:10 | 000,698,464 | ---- | C] () -- C:\Programme\JUN2007_d3dx10_34_x86.cab
[2009.09.04 18:01:10 | 000,197,114 | ---- | C] () -- C:\Programme\JUN2007_XACT_x64.cab
[2009.09.04 18:01:10 | 000,178,359 | ---- | C] () -- C:\Programme\Feb2006_XACT_x64.cab
[2009.09.04 18:01:10 | 000,152,901 | ---- | C] () -- C:\Programme\JUN2007_XACT_x86.cab
[2009.09.04 18:01:10 | 000,055,154 | ---- | C] () -- C:\Programme\JUN2008_X3DAudio_x64.cab
[2009.09.04 18:01:08 | 013,264,168 | ---- | C] () -- C:\Programme\dxnt.cab
[2009.09.04 18:01:08 | 001,247,499 | ---- | C] () -- C:\Programme\Feb2005_d3dx9_24_x64.cab
[2009.09.04 18:01:08 | 001,084,712 | ---- | C] () -- C:\Programme\Feb2006_d3dx9_29_x86.cab
[2009.09.04 18:01:08 | 001,013,225 | ---- | C] () -- C:\Programme\Feb2005_d3dx9_24_x86.cab
[2009.09.04 18:01:08 | 000,194,667 | ---- | C] () -- C:\Programme\FEB2007_XACT_x64.cab
[2009.09.04 18:01:08 | 000,180,777 | ---- | C] () -- C:\Programme\JUN2006_XACT_x64.cab
[2009.09.04 18:01:08 | 000,147,983 | ---- | C] () -- C:\Programme\FEB2007_XACT_x86.cab
[2009.09.04 18:01:08 | 000,133,663 | ---- | C] () -- C:\Programme\JUN2006_XACT_x86.cab
[2009.09.04 18:01:08 | 000,132,409 | ---- | C] () -- C:\Programme\Feb2006_XACT_x86.cab
[2009.09.04 18:01:08 | 000,095,637 | ---- | C] () -- C:\Programme\dxupdate.cab
[2009.09.04 18:01:08 | 000,044,440 | ---- | C] () -- C:\Programme\dxdllreg_x86.cab
[2009.09.04 18:01:06 | 000,145,591 | ---- | C] () -- C:\Programme\DEC2006_XACT_x86.cab
[2009.09.04 18:01:04 | 003,319,732 | ---- | C] () -- C:\Programme\Aug2009_d3dcsx_42_x86.cab
[2009.09.04 18:01:04 | 003,112,103 | ---- | C] () -- C:\Programme\Aug2009_d3dcsx_42_x64.cab
[2009.09.04 18:01:04 | 001,574,376 | ---- | C] () -- C:\Programme\DEC2006_d3dx9_32_x86.cab
[2009.09.04 18:01:04 | 001,571,154 | ---- | C] () -- C:\Programme\DEC2006_d3dx9_32_x64.cab
[2009.09.04 18:01:04 | 001,357,968 | ---- | C] () -- C:\Programme\Dec2005_d3dx9_28_x64.cab
[2009.09.04 18:01:04 | 001,155,483 | ---- | C] () -- C:\Programme\BDANT.cab
[2009.09.04 18:01:04 | 001,079,448 | ---- | C] () -- C:\Programme\Dec2005_d3dx9_28_x86.cab
[2009.09.04 18:01:04 | 000,975,148 | ---- | C] () -- C:\Programme\BDAXP.cab
[2009.09.04 18:01:04 | 000,930,108 | ---- | C] () -- C:\Programme\Aug2009_d3dx9_42_x64.cab
[2009.09.04 18:01:04 | 000,919,036 | ---- | C] () -- C:\Programme\Aug2009_D3DCompiler_42_x64.cab
[2009.09.04 18:01:04 | 000,900,598 | ---- | C] () -- C:\Programme\Aug2009_D3DCompiler_42_x86.cab
[2009.09.04 18:01:04 | 000,728,456 | ---- | C] () -- C:\Programme\Aug2009_d3dx9_42_x86.cab
[2009.09.04 18:01:04 | 000,273,264 | ---- | C] () -- C:\Programme\Aug2009_XAudio_x64.cab
[2009.09.04 18:01:04 | 000,272,634 | ---- | C] () -- C:\Programme\Aug2009_XAudio_x86.cab
[2009.09.04 18:01:04 | 000,271,404 | ---- | C] () -- C:\Programme\Aug2008_XAudio_x64.cab
[2009.09.04 18:01:04 | 000,271,038 | ---- | C] () -- C:\Programme\Aug2008_XAudio_x86.cab
[2009.09.04 18:01:04 | 000,232,635 | ---- | C] () -- C:\Programme\Aug2009_d3dx10_42_x64.cab
[2009.09.04 18:01:04 | 000,212,799 | ---- | C] () -- C:\Programme\DEC2006_d3dx10_00_x64.cab
[2009.09.04 18:01:04 | 000,192,467 | ---- | C] () -- C:\Programme\DEC2006_XACT_x64.cab
[2009.09.04 18:01:04 | 000,192,131 | ---- | C] () -- C:\Programme\Aug2009_d3dx10_42_x86.cab
[2009.09.04 18:01:04 | 000,191,712 | ---- | C] () -- C:\Programme\DEC2006_d3dx10_00_x86.cab
[2009.09.04 18:01:04 | 000,136,301 | ---- | C] () -- C:\Programme\Aug2009_d3dx11_42_x64.cab
[2009.09.04 18:01:04 | 000,122,408 | ---- | C] () -- C:\Programme\Aug2009_XACT_x64.cab
[2009.09.04 18:01:04 | 000,121,764 | ---- | C] () -- C:\Programme\Aug2008_XACT_x64.cab
[2009.09.04 18:01:04 | 000,105,036 | ---- | C] () -- C:\Programme\Aug2009_d3dx11_42_x86.cab
[2009.09.04 18:01:04 | 000,093,098 | ---- | C] () -- C:\Programme\Aug2009_XACT_x86.cab
[2009.09.04 18:01:04 | 000,092,996 | ---- | C] () -- C:\Programme\Aug2008_XACT_x86.cab
[2009.09.04 18:01:02 | 001,464,664 | ---- | C] () -- C:\Programme\Aug2008_d3dx9_39_x86.cab
[2009.09.04 18:01:00 | 001,800,152 | ---- | C] () -- C:\Programme\AUG2007_d3dx9_35_x64.cab
[2009.09.04 18:01:00 | 001,794,076 | ---- | C] () -- C:\Programme\Aug2008_d3dx9_39_x64.cab
[2009.09.04 18:01:00 | 001,708,144 | ---- | C] () -- C:\Programme\AUG2007_d3dx9_35_x86.cab
[2009.09.04 18:01:00 | 001,350,534 | ---- | C] () -- C:\Programme\Aug2005_d3dx9_27_x64.cab
[2009.09.04 18:01:00 | 001,077,644 | ---- | C] () -- C:\Programme\Aug2005_d3dx9_27_x86.cab
[2009.09.04 18:01:00 | 000,867,604 | ---- | C] () -- C:\Programme\Aug2008_d3dx10_39_x64.cab
[2009.09.04 18:01:00 | 000,852,286 | ---- | C] () -- C:\Programme\AUG2007_d3dx10_35_x64.cab
[2009.09.04 18:01:00 | 000,849,167 | ---- | C] () -- C:\Programme\Aug2008_d3dx10_39_x86.cab
[2009.09.04 18:01:00 | 000,796,859 | ---- | C] () -- C:\Programme\AUG2007_d3dx10_35_x86.cab
[2009.09.04 18:01:00 | 000,198,088 | ---- | C] () -- C:\Programme\AUG2007_XACT_x64.cab
[2009.09.04 18:01:00 | 000,182,903 | ---- | C] () -- C:\Programme\AUG2006_XACT_x64.cab
[2009.09.04 18:01:00 | 000,153,004 | ---- | C] () -- C:\Programme\AUG2007_XACT_x86.cab
[2009.09.04 18:01:00 | 000,137,235 | ---- | C] () -- C:\Programme\AUG2006_XACT_x86.cab
[2009.09.04 18:01:00 | 000,096,817 | ---- | C] () -- C:\Programme\APR2007_xinput_x64.cab
[2009.09.04 18:01:00 | 000,087,142 | ---- | C] () -- C:\Programme\AUG2006_xinput_x64.cab
[2009.09.04 18:01:00 | 000,053,294 | ---- | C] () -- C:\Programme\APR2007_xinput_x86.cab
[2009.09.04 18:01:00 | 000,046,058 | ---- | C] () -- C:\Programme\AUG2006_xinput_x86.cab
[2009.09.04 18:00:58 | 004,162,630 | ---- | C] () -- C:\Programme\Apr2006_MDX1_x86_Archive.cab
[2009.09.04 18:00:58 | 001,607,358 | ---- | C] () -- C:\Programme\APR2007_d3dx9_33_x64.cab
[2009.09.04 18:00:58 | 001,606,031 | ---- | C] () -- C:\Programme\APR2007_d3dx9_33_x86.cab
[2009.09.04 18:00:58 | 000,916,430 | ---- | C] () -- C:\Programme\Apr2006_MDX1_x86.cab
[2009.09.04 18:00:58 | 000,698,612 | ---- | C] () -- C:\Programme\APR2007_d3dx10_33_x64.cab
[2009.09.04 18:00:58 | 000,695,857 | ---- | C] () -- C:\Programme\APR2007_d3dx10_33_x86.cab
[2009.09.04 18:00:58 | 000,195,758 | ---- | C] () -- C:\Programme\APR2007_XACT_x64.cab
[2009.09.04 18:00:58 | 000,179,125 | ---- | C] () -- C:\Programme\Apr2006_XACT_x64.cab
[2009.09.04 18:00:58 | 000,151,225 | ---- | C] () -- C:\Programme\APR2007_XACT_x86.cab
[2009.09.04 18:00:58 | 000,133,095 | ---- | C] () -- C:\Programme\Apr2006_XACT_x86.cab
[2009.09.04 18:00:58 | 000,087,101 | ---- | C] () -- C:\Programme\Apr2006_xinput_x64.cab
[2009.09.04 18:00:58 | 000,046,002 | ---- | C] () -- C:\Programme\Apr2006_xinput_x86.cab
[2009.09.04 18:00:56 | 001,397,822 | ---- | C] () -- C:\Programme\Apr2006_d3dx9_30_x64.cab
[2009.09.04 18:00:56 | 001,347,354 | ---- | C] () -- C:\Programme\Apr2005_d3dx9_25_x64.cab
[2009.09.04 18:00:56 | 001,115,221 | ---- | C] () -- C:\Programme\Apr2006_d3dx9_30_x86.cab
[2009.09.04 18:00:56 | 001,078,954 | ---- | C] () -- C:\Programme\Apr2005_d3dx9_25_x86.cab
========== ZeroAccess Check ==========
[2004.06.22 16:50:54 | 000,000,227 | RHS- | M] () -- C:\WINDOWS\assembly\Desktop.ini
[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shdocvw.dll -- [2008.04.14 07:52:26 | 001,499,136 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = C:\WINDOWS\System32\wbem\fastprox.dll -- [2009.02.09 11:51:44 | 000,473,600 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
"" = C:\WINDOWS\System32\wbem\wbemess.dll -- [2008.04.14 07:52:34 | 000,273,920 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both
========== LOP Check ==========
[2012.09.13 16:18:39 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\AllDup
[2003.01.01 01:13:58 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\BitDefender
[2012.11.10 12:01:24 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Browser Manager
[2012.07.01 09:52:16 | 000,000,000 | -H-D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Common Files
[2012.03.24 12:36:01 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Fighters
[2012.03.24 13:28:22 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\MAGIX
[2012.11.09 15:53:30 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Spyware Terminator
[2012.03.24 13:20:35 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\TuneUp Software
[2012.03.24 12:54:23 | 000,000,000 | -HSD | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\{32364CEA-7855-4A3C-B674-53D8E9B97936}
[2011.09.22 16:40:48 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\{3C0AACBF-B491-4BE5-BAF9-AA46E0629E42}
[2010.01.03 18:32:40 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\LocalService\Anwendungsdaten\X10 Commander
[2012.09.13 16:24:57 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Thomas Gierich\Anwendungsdaten\AllDup
[2012.03.24 13:36:17 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Thomas Gierich\Anwendungsdaten\Auslogics
[2011.02.26 13:48:48 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Thomas Gierich\Anwendungsdaten\Daedalic Entertainment
[2012.10.23 16:20:32 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Thomas Gierich\Anwendungsdaten\DVDVideoSoft
[2011.11.01 17:33:22 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Thomas Gierich\Anwendungsdaten\DVDVideoSoftIEHelpers
[2012.07.25 16:08:20 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Thomas Gierich\Anwendungsdaten\ElevatedDiagnostics
[2012.03.24 12:36:27 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Thomas Gierich\Anwendungsdaten\Fighters
[2011.12.24 13:55:13 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Thomas Gierich\Anwendungsdaten\Gutscheinmieze
[2012.03.24 12:46:17 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Thomas Gierich\Anwendungsdaten\MAGIX
[2012.10.28 16:18:00 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Thomas Gierich\Anwendungsdaten\PersBackup5
[2011.05.21 16:19:48 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Thomas Gierich\Anwendungsdaten\PhotoScape
[2012.08.05 11:49:46 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Thomas Gierich\Anwendungsdaten\QuickScan
[2012.10.28 09:58:05 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Thomas Gierich\Anwendungsdaten\Spyware Terminator
[2010.01.04 19:09:01 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Thomas Gierich\Anwendungsdaten\Steganos
[2010.01.08 17:58:10 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Thomas Gierich\Anwendungsdaten\Template
[2012.03.24 13:20:12 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Thomas Gierich\Anwendungsdaten\TuneUp Software
[2012.11.08 14:22:58 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Thomas Gierich\Anwendungsdaten\Uniblue
========== Purity Check ==========
========== Custom Scans ==========
< %SYSTEMDRIVE%\*. >
[2012.10.20 09:38:27 | 000,000,000 | -H-D | M] -- C:\Config.Msi
[2010.01.03 17:21:05 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen
[2004.06.23 08:20:58 | 000,000,000 | ---D | M] -- C:\My Music
[2012.06.20 15:10:57 | 000,000,000 | ---D | M] -- C:\OCT2006_XACT_x86
[2010.01.03 19:31:45 | 000,000,000 | ---D | M] -- C:\Program Files
[2012.11.08 08:18:29 | 000,000,000 | R--D | M] -- C:\Programme
[2010.01.03 17:34:18 | 000,000,000 | -HSD | M] -- C:\RECYCLER
[2012.09.11 16:11:42 | 000,000,000 | ---D | M] -- C:\Sun
[2012.11.11 09:21:18 | 000,000,000 | -HSD | M] -- C:\System Volume Information
[2012.11.11 17:00:16 | 000,000,000 | ---D | M] -- C:\WINDOWS
< %SYSTEMDRIVE%\*.* >
[2012.11.11 10:12:04 | 000,008,171 | ---- | M] () -- C:\AdwCleaner[S1].txt
[2009.09.04 18:00:56 | 001,347,354 | ---- | M] () -- C:\Apr2005_d3dx9_25_x64.cab
[2009.09.04 18:00:56 | 001,078,954 | ---- | M] () -- C:\Apr2005_d3dx9_25_x86.cab
[2009.09.04 18:00:56 | 001,397,822 | ---- | M] () -- C:\Apr2006_d3dx9_30_x64.cab
[2009.09.04 18:00:56 | 001,115,221 | ---- | M] () -- C:\Apr2006_d3dx9_30_x86.cab
[2009.09.04 18:00:58 | 000,916,430 | ---- | M] () -- C:\Apr2006_MDX1_x86.cab
[2009.09.04 18:00:58 | 004,162,630 | ---- | M] () -- C:\Apr2006_MDX1_x86_Archive.cab
[2009.09.04 18:00:58 | 000,179,125 | ---- | M] () -- C:\Apr2006_XACT_x64.cab
[2009.09.04 18:00:58 | 000,133,095 | ---- | M] () -- C:\Apr2006_XACT_x86.cab
[2009.09.04 18:00:58 | 000,087,101 | ---- | M] () -- C:\Apr2006_xinput_x64.cab
[2009.09.04 18:00:58 | 000,046,002 | ---- | M] () -- C:\Apr2006_xinput_x86.cab
[2009.09.04 18:00:58 | 000,698,612 | ---- | M] () -- C:\APR2007_d3dx10_33_x64.cab
[2009.09.04 18:00:58 | 000,695,857 | ---- | M] () -- C:\APR2007_d3dx10_33_x86.cab
[2009.09.04 18:00:58 | 001,607,358 | ---- | M] () -- C:\APR2007_d3dx9_33_x64.cab
[2009.09.04 18:00:58 | 001,606,031 | ---- | M] () -- C:\APR2007_d3dx9_33_x86.cab
[2009.09.04 18:00:58 | 000,195,758 | ---- | M] () -- C:\APR2007_XACT_x64.cab
[2009.09.04 18:00:58 | 000,151,225 | ---- | M] () -- C:\APR2007_XACT_x86.cab
[2009.09.04 18:01:00 | 000,096,817 | ---- | M] () -- C:\APR2007_xinput_x64.cab
[2009.09.04 18:01:00 | 000,053,294 | ---- | M] () -- C:\APR2007_xinput_x86.cab
[2009.09.04 18:01:00 | 001,350,534 | ---- | M] () -- C:\Aug2005_d3dx9_27_x64.cab
[2009.09.04 18:01:00 | 001,077,644 | ---- | M] () -- C:\Aug2005_d3dx9_27_x86.cab
[2009.09.04 18:01:00 | 000,182,903 | ---- | M] () -- C:\AUG2006_XACT_x64.cab
[2009.09.04 18:01:00 | 000,137,235 | ---- | M] () -- C:\AUG2006_XACT_x86.cab
[2009.09.04 18:01:00 | 000,087,142 | ---- | M] () -- C:\AUG2006_xinput_x64.cab
[2009.09.04 18:01:00 | 000,046,058 | ---- | M] () -- C:\AUG2006_xinput_x86.cab
[2009.09.04 18:01:00 | 000,852,286 | ---- | M] () -- C:\AUG2007_d3dx10_35_x64.cab
[2009.09.04 18:01:00 | 000,796,859 | ---- | M] () -- C:\AUG2007_d3dx10_35_x86.cab
[2009.09.04 18:01:00 | 001,800,152 | ---- | M] () -- C:\AUG2007_d3dx9_35_x64.cab
[2009.09.04 18:01:00 | 001,708,144 | ---- | M] () -- C:\AUG2007_d3dx9_35_x86.cab
[2009.09.04 18:01:00 | 000,198,088 | ---- | M] () -- C:\AUG2007_XACT_x64.cab
[2009.09.04 18:01:00 | 000,153,004 | ---- | M] () -- C:\AUG2007_XACT_x86.cab
[2009.09.04 18:01:00 | 000,867,604 | ---- | M] () -- C:\Aug2008_d3dx10_39_x64.cab
[2009.09.04 18:01:00 | 000,849,167 | ---- | M] () -- C:\Aug2008_d3dx10_39_x86.cab
[2009.09.04 18:01:00 | 001,794,076 | ---- | M] () -- C:\Aug2008_d3dx9_39_x64.cab
[2009.09.04 18:01:02 | 001,464,664 | ---- | M] () -- C:\Aug2008_d3dx9_39_x86.cab
[2009.09.04 18:01:04 | 000,121,764 | ---- | M] () -- C:\Aug2008_XACT_x64.cab
[2009.09.04 18:01:04 | 000,092,996 | ---- | M] () -- C:\Aug2008_XACT_x86.cab
[2009.09.04 18:01:04 | 000,271,404 | ---- | M] () -- C:\Aug2008_XAudio_x64.cab
[2009.09.04 18:01:04 | 000,271,038 | ---- | M] () -- C:\Aug2008_XAudio_x86.cab
[2009.09.04 18:01:04 | 000,919,036 | ---- | M] () -- C:\Aug2009_D3DCompiler_42_x64.cab
[2009.09.04 18:01:04 | 000,900,598 | ---- | M] () -- C:\Aug2009_D3DCompiler_42_x86.cab
[2009.09.04 18:01:04 | 003,112,103 | ---- | M] () -- C:\Aug2009_d3dcsx_42_x64.cab
[2009.09.04 18:01:04 | 003,319,732 | ---- | M] () -- C:\Aug2009_d3dcsx_42_x86.cab
[2009.09.04 18:01:04 | 000,232,635 | ---- | M] () -- C:\Aug2009_d3dx10_42_x64.cab
[2009.09.04 18:01:04 | 000,192,131 | ---- | M] () -- C:\Aug2009_d3dx10_42_x86.cab
[2009.09.04 18:01:04 | 000,136,301 | ---- | M] () -- C:\Aug2009_d3dx11_42_x64.cab
[2009.09.04 18:01:04 | 000,105,036 | ---- | M] () -- C:\Aug2009_d3dx11_42_x86.cab
[2009.09.04 18:01:04 | 000,930,108 | ---- | M] () -- C:\Aug2009_d3dx9_42_x64.cab
[2009.09.04 18:01:04 | 000,728,456 | ---- | M] () -- C:\Aug2009_d3dx9_42_x86.cab
[2009.09.04 18:01:04 | 000,122,408 | ---- | M] () -- C:\Aug2009_XACT_x64.cab
[2009.09.04 18:01:04 | 000,093,098 | ---- | M] () -- C:\Aug2009_XACT_x86.cab
[2009.09.04 18:01:04 | 000,273,264 | ---- | M] () -- C:\Aug2009_XAudio_x64.cab
[2009.09.04 18:01:04 | 000,272,634 | ---- | M] () -- C:\Aug2009_XAudio_x86.cab
[2004.06.22 16:43:45 | 000,000,000 | ---- | M] () -- C:\AUTOEXEC.BAT
[2009.09.04 18:01:04 | 001,155,483 | ---- | M] () -- C:\BDANT.cab
[2009.09.04 18:01:04 | 000,975,148 | ---- | M] () -- C:\BDAXP.cab
[2010.01.03 17:20:09 | 000,000,211 | RHS- | M] () -- C:\boot.ini
[2002.08.29 13:00:00 | 000,004,952 | RHS- | M] () -- C:\bootfont.bin
[2004.06.22 16:43:45 | 000,000,000 | ---- | M] () -- C:\CONFIG.SYS
[2008.01.02 10:42:36 | 000,001,274 | ---- | M] () -- C:\COPYRIGHT.txt
[2009.09.04 18:01:04 | 001,357,968 | ---- | M] () -- C:\Dec2005_d3dx9_28_x64.cab
[2009.09.04 18:01:04 | 001,079,448 | ---- | M] () -- C:\Dec2005_d3dx9_28_x86.cab
[2009.09.04 18:01:04 | 000,212,799 | ---- | M] () -- C:\DEC2006_d3dx10_00_x64.cab
[2009.09.04 18:01:04 | 000,191,712 | ---- | M] () -- C:\DEC2006_d3dx10_00_x86.cab
[2009.09.04 18:01:04 | 001,571,154 | ---- | M] () -- C:\DEC2006_d3dx9_32_x64.cab
[2009.09.04 18:01:04 | 001,574,376 | ---- | M] () -- C:\DEC2006_d3dx9_32_x86.cab
[2009.09.04 18:01:04 | 000,192,467 | ---- | M] () -- C:\DEC2006_XACT_x64.cab
[2009.09.04 18:01:06 | 000,145,591 | ---- | M] () -- C:\DEC2006_XACT_x86.cab
[2009.09.04 18:01:08 | 000,094,024 | ---- | M] (Microsoft Corporation) -- C:\DSETUP.dll
[2009.09.04 18:01:08 | 001,691,464 | ---- | M] (Microsoft Corporation) -- C:\dsetup32.dll
[2009.09.04 18:01:08 | 000,044,440 | ---- | M] () -- C:\dxdllreg_x86.cab
[2009.09.04 18:01:08 | 013,264,168 | ---- | M] () -- C:\dxnt.cab
[2009.09.04 18:01:10 | 000,525,656 | ---- | M] (Microsoft Corporation) -- C:\DXSETUP.exe
[2009.09.04 18:01:08 | 000,095,637 | ---- | M] () -- C:\dxupdate.cab
[2009.09.04 18:01:08 | 001,247,499 | ---- | M] () -- C:\Feb2005_d3dx9_24_x64.cab
[2009.09.04 18:01:08 | 001,013,225 | ---- | M] () -- C:\Feb2005_d3dx9_24_x86.cab
[2009.09.04 18:01:10 | 001,362,796 | ---- | M] () -- C:\Feb2006_d3dx9_29_x64.cab
[2009.09.04 18:01:08 | 001,084,712 | ---- | M] () -- C:\Feb2006_d3dx9_29_x86.cab
[2009.09.04 18:01:10 | 000,178,359 | ---- | M] () -- C:\Feb2006_XACT_x64.cab
[2009.09.04 18:01:08 | 000,132,409 | ---- | M] () -- C:\Feb2006_XACT_x86.cab
[2009.09.04 18:01:08 | 000,194,667 | ---- | M] () -- C:\FEB2007_XACT_x64.cab
[2009.09.04 18:01:08 | 000,147,983 | ---- | M] () -- C:\FEB2007_XACT_x86.cab
[2012.11.11 16:58:21 | 1610,141,696 | -HS- | M] () -- C:\hiberfil.sys
[2012.01.16 10:26:16 | 000,056,320 | ---- | M] () -- C:\i7TurboGT.exe
[2012.01.16 10:24:04 | 000,000,037 | ---- | M] () -- C:\i7TurboGT.ini
[2011.04.04 16:44:22 | 000,001,120 | ---- | M] () -- C:\INSTALL.LOG
[2004.06.22 16:43:45 | 000,000,000 | RHS- | M] () -- C:\IO.SYS
[2004.06.23 08:21:23 | 000,000,860 | -H-- | M] () -- C:\IPH.PH
[2009.09.04 18:01:10 | 001,336,002 | ---- | M] () -- C:\Jun2005_d3dx9_26_x64.cab
[2009.09.04 18:01:10 | 001,064,925 | ---- | M] () -- C:\Jun2005_d3dx9_26_x86.cab
[2009.09.04 18:01:08 | 000,180,777 | ---- | M] () -- C:\JUN2006_XACT_x64.cab
[2009.09.04 18:01:08 | 000,133,663 | ---- | M] () -- C:\JUN2006_XACT_x86.cab
[2009.09.04 18:01:10 | 000,699,044 | ---- | M] () -- C:\JUN2007_d3dx10_34_x64.cab
[2009.09.04 18:01:10 | 000,698,464 | ---- | M] () -- C:\JUN2007_d3dx10_34_x86.cab
[2009.09.04 18:01:10 | 001,607,766 | ---- | M] () -- C:\JUN2007_d3dx9_34_x64.cab
[2009.09.04 18:01:10 | 001,607,278 | ---- | M] () -- C:\JUN2007_d3dx9_34_x86.cab
[2009.09.04 18:01:10 | 000,197,114 | ---- | M] () -- C:\JUN2007_XACT_x64.cab
[2009.09.04 18:01:10 | 000,152,901 | ---- | M] () -- C:\JUN2007_XACT_x86.cab
[2009.09.04 18:01:10 | 000,867,828 | ---- | M] () -- C:\JUN2008_d3dx10_38_x64.cab
[2009.09.04 18:01:10 | 000,849,919 | ---- | M] () -- C:\JUN2008_d3dx10_38_x86.cab
[2009.09.04 18:01:10 | 001,792,600 | ---- | M] () -- C:\JUN2008_d3dx9_38_x64.cab
[2009.09.04 18:01:10 | 001,463,878 | ---- | M] () -- C:\JUN2008_d3dx9_38_x86.cab
[2009.09.04 18:01:10 | 000,055,154 | ---- | M] () -- C:\JUN2008_X3DAudio_x64.cab
[2009.09.04 18:01:12 | 000,021,905 | ---- | M] () -- C:\JUN2008_X3DAudio_x86.cab
[2009.09.04 18:01:12 | 000,121,054 | ---- | M] () -- C:\JUN2008_XACT_x64.cab
[2009.09.04 18:01:12 | 000,093,128 | ---- | M] () -- C:\JUN2008_XACT_x86.cab
[2009.09.04 18:01:12 | 000,269,620 | ---- | M] () -- C:\JUN2008_XAudio_x64.cab
[2009.09.04 18:01:12 | 000,269,016 | ---- | M] () -- C:\JUN2008_XAudio_x86.cab
[2012.01.16 10:26:12 | 000,031,744 | ---- | M] () -- C:\LoadTester.exe
[2009.09.04 18:01:12 | 000,844,884 | ---- | M] () -- C:\Mar2008_d3dx10_37_x64.cab
[2009.09.04 18:01:12 | 000,818,260 | ---- | M] () -- C:\Mar2008_d3dx10_37_x86.cab
[2009.09.04 18:01:12 | 001,769,862 | ---- | M] () -- C:\Mar2008_d3dx9_37_x64.cab
[2009.09.04 18:01:12 | 001,443,274 | ---- | M] () -- C:\Mar2008_d3dx9_37_x86.cab
[2009.09.04 18:01:12 | 000,055,050 | ---- | M] () -- C:\Mar2008_X3DAudio_x64.cab
[2009.09.04 18:01:14 | 000,021,867 | ---- | M] () -- C:\Mar2008_X3DAudio_x86.cab
[2009.09.04 18:01:14 | 000,122,336 | ---- | M] () -- C:\Mar2008_XACT_x64.cab
[2009.09.04 18:01:14 | 000,093,726 | ---- | M] () -- C:\Mar2008_XACT_x86.cab
[2009.09.04 18:01:14 | 000,251,186 | ---- | M] () -- C:\Mar2008_XAudio_x64.cab
[2009.09.04 18:01:14 | 000,226,242 | ---- | M] () -- C:\Mar2008_XAudio_x86.cab
[2009.09.04 18:01:14 | 001,067,160 | ---- | M] () -- C:\Mar2009_d3dx10_41_x64.cab
[2009.09.04 18:01:14 | 001,040,737 | ---- | M] () -- C:\Mar2009_d3dx10_41_x86.cab
[2009.09.04 18:01:14 | 001,973,702 | ---- | M] () -- C:\Mar2009_d3dx9_41_x64.cab
[2009.09.04 18:01:14 | 001,612,446 | ---- | M] () -- C:\Mar2009_d3dx9_41_x86.cab
[2009.09.04 18:01:14 | 000,054,600 | ---- | M] () -- C:\Mar2009_X3DAudio_x64.cab
[2009.09.04 18:01:14 | 000,021,298 | ---- | M] () -- C:\Mar2009_X3DAudio_x86.cab
[2009.09.04 18:01:14 | 000,121,506 | ---- | M] () -- C:\Mar2009_XACT_x64.cab
[2009.09.04 18:01:14 | 000,092,732 | ---- | M] () -- C:\Mar2009_XACT_x86.cab
[2009.09.04 18:01:14 | 000,275,036 | ---- | M] () -- C:\Mar2009_XAudio_x64.cab
[2009.09.04 18:01:14 | 000,273,010 | ---- | M] () -- C:\Mar2009_XAudio_x86.cab
[2004.06.22 16:43:45 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS
[2009.09.04 18:01:14 | 000,864,600 | ---- | M] () -- C:\Nov2007_d3dx10_36_x64.cab
[2009.09.04 18:01:18 | 000,803,876 | ---- | M] () -- C:\Nov2007_d3dx10_36_x86.cab
[2009.09.04 18:01:18 | 001,802,058 | ---- | M] () -- C:\Nov2007_d3dx9_36_x64.cab
[2009.09.04 18:01:18 | 001,709,360 | ---- | M] () -- C:\Nov2007_d3dx9_36_x86.cab
[2009.09.04 18:01:18 | 000,046,144 | ---- | M] () -- C:\NOV2007_X3DAudio_x64.cab
[2009.09.04 18:01:18 | 000,018,496 | ---- | M] () -- C:\NOV2007_X3DAudio_x86.cab
[2009.09.04 18:01:18 | 000,196,754 | ---- | M] () -- C:\NOV2007_XACT_x64.cab
[2009.09.04 18:01:18 | 000,148,264 | ---- | M] () -- C:\NOV2007_XACT_x86.cab
[2009.09.04 18:01:20 | 000,994,154 | ---- | M] () -- C:\Nov2008_d3dx10_40_x64.cab
[2009.09.04 18:01:18 | 000,965,421 | ---- | M] () -- C:\Nov2008_d3dx10_40_x86.cab
[2009.09.04 18:01:18 | 001,906,870 | ---- | M] () -- C:\Nov2008_d3dx9_40_x64.cab
[2009.09.04 18:01:20 | 001,550,796 | ---- | M] () -- C:\Nov2008_d3dx9_40_x86.cab
[2009.09.04 18:01:20 | 000,054,522 | ---- | M] () -- C:\Nov2008_X3DAudio_x64.cab
[2009.09.04 18:01:20 | 000,021,843 | ---- | M] () -- C:\Nov2008_X3DAudio_x86.cab
[2009.09.04 18:01:20 | 000,121,786 | ---- | M] () -- C:\Nov2008_XACT_x64.cab
[2009.09.04 18:01:20 | 000,092,676 | ---- | M] () -- C:\Nov2008_XACT_x86.cab
[2009.09.04 18:01:20 | 000,273,960 | ---- | M] () -- C:\Nov2008_XAudio_x64.cab
[2009.09.04 18:01:20 | 000,272,603 | ---- | M] () -- C:\Nov2008_XAudio_x86.cab
[2004.10.11 13:29:14 | 000,047,564 | RHS- | M] () -- C:\NTDETECT.COM
[2010.01.03 18:56:25 | 000,251,712 | RHS- | M] () -- C:\ntldr
[2009.09.04 18:01:20 | 000,086,029 | ---- | M] () -- C:\Oct2005_xinput_x64.cab
[2009.09.04 18:01:20 | 000,045,351 | ---- | M] () -- C:\Oct2005_xinput_x86.cab
[2009.09.04 18:01:20 | 001,412,894 | ---- | M] () -- C:\OCT2006_d3dx9_31_x64.cab
[2009.09.04 18:01:20 | 001,127,209 | ---- | M] () -- C:\OCT2006_d3dx9_31_x86.cab
[2009.09.04 18:01:20 | 000,182,361 | ---- | M] () -- C:\OCT2006_XACT_x64.cab
[2009.09.04 18:01:20 | 000,138,009 | ---- | M] () -- C:\OCT2006_XACT_x86.cab
[2012.11.11 16:58:20 | 1609,564,160 | -HS- | M] () -- C:\pagefile.sys
[2012.01.04 15:12:54 | 000,003,351 | ---- | M] () -- C:\ReadMe.txt
[2012.01.16 10:26:26 | 000,216,064 | ---- | M] (uWebb Software) -- C:\RealTemp.exe
[2012.01.16 10:24:24 | 000,002,740 | ---- | M] () -- C:\RealTemp.ini
[2012.01.16 10:26:32 | 000,220,160 | ---- | M] (uWebb Software) -- C:\RealTempGT.exe
[2012.01.16 10:24:26 | 000,002,004 | ---- | M] () -- C:\RealTempGT.ini
[2009.01.17 12:29:22 | 000,000,098 | ---- | M] () -- C:\RTCore.cfg
[2012.01.16 10:26:40 | 000,039,936 | ---- | M] () -- C:\RTCore.dll
[2009.01.21 09:55:04 | 000,000,325 | ---- | M] () -- C:\RTCore.rth
[2008.05.25 22:44:40 | 000,001,072 | ---- | M] () -- C:\RTFont.fon
[2008.11.29 12:05:58 | 000,000,053 | ---- | M] () -- C:\RTShutDown.bat
[2008.07.21 22:14:08 | 000,010,764 | ---- | M] () -- C:\RTWarning.wav
[2012.02.16 16:37:48 | 000,000,510 | ---- | M] () -- C:\settings.ini
[2001.05.24 11:59:30 | 000,162,304 | ---- | M] () -- C:\UNWISE.EXE
[2009.05.24 10:34:00 | 000,065,536 | ---- | M] (OpenLibSys.org) -- C:\WinRing0.dll
[2008.07.26 21:30:30 | 000,014,416 | ---- | M] (OpenLibSys.org) -- C:\WinRing0.sys
[2009.05.27 20:59:38 | 000,057,856 | ---- | M] (OpenLibSys.org) -- C:\WinRing0x64.dll
[2008.07.26 21:30:36 | 000,014,544 | ---- | M] (OpenLibSys.org) -- C:\WinRing0x64.sys
< %PROGRAMFILES%\*.exe >
[2009.09.04 18:01:10 | 000,525,656 | ---- | M] (Microsoft Corporation) -- C:\Programme\DXSETUP.exe
Invalid Environment Variable: PROGRAMFILES(X86)
< %systemroot%\*. /mp /s >
< %windir%\installer\*. /10 >
< %appdata%\*. >
[2012.05.09 16:02:54 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Thomas Gierich\Anwendungsdaten\Adobe
[2004.06.25 12:32:31 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Thomas Gierich\Anwendungsdaten\AdobeUM
[2004.10.11 13:48:42 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Thomas Gierich\Anwendungsdaten\Ahead
[2012.09.13 16:24:57 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Thomas Gierich\Anwendungsdaten\AllDup
[2012.06.16 11:29:07 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Thomas Gierich\Anwendungsdaten\Apple Computer
[2012.03.24 13:36:17 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Thomas Gierich\Anwendungsdaten\Auslogics
[2011.10.14 16:34:59 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Thomas Gierich\Anwendungsdaten\Avira
[2010.08.02 20:13:46 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Thomas Gierich\Anwendungsdaten\AVS4YOU
[2004.06.23 09:43:07 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Thomas Gierich\Anwendungsdaten\CyberLink
[2011.02.26 13:48:48 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Thomas Gierich\Anwendungsdaten\Daedalic Entertainment
[2012.10.23 16:20:32 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Thomas Gierich\Anwendungsdaten\DVDVideoSoft
[2011.11.01 17:33:22 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Thomas Gierich\Anwendungsdaten\DVDVideoSoftIEHelpers
[2012.07.25 16:08:20 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Thomas Gierich\Anwendungsdaten\ElevatedDiagnostics
[2012.03.24 12:36:27 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Thomas Gierich\Anwendungsdaten\Fighters
[2011.12.24 13:55:13 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Thomas Gierich\Anwendungsdaten\Gutscheinmieze
[2004.06.25 13:55:09 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Thomas Gierich\Anwendungsdaten\Help
[2011.05.08 11:48:27 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Thomas Gierich\Anwendungsdaten\HP
[2012.09.09 09:10:20 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Thomas Gierich\Anwendungsdaten\HpUpdate
[2004.06.22 16:43:47 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Thomas Gierich\Anwendungsdaten\Identities
[2011.05.12 19:26:54 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Thomas Gierich\Anwendungsdaten\InstallShield
[2004.06.23 10:12:00 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Thomas Gierich\Anwendungsdaten\Macromedia
[2012.03.24 12:46:17 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Thomas Gierich\Anwendungsdaten\MAGIX
[2011.11.13 11:39:06 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Thomas Gierich\Anwendungsdaten\Malwarebytes
[2012.05.09 16:02:54 | 000,000,000 | --SD | M] -- C:\Dokumente und Einstellungen\Thomas Gierich\Anwendungsdaten\Microsoft
[2010.01.03 20:16:55 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Thomas Gierich\Anwendungsdaten\Microsoft Web Folders
[2010.09.17 18:42:35 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Thomas Gierich\Anwendungsdaten\Mozilla
[2012.10.28 16:18:00 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Thomas Gierich\Anwendungsdaten\PersBackup5
[2011.05.21 16:19:48 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Thomas Gierich\Anwendungsdaten\PhotoScape
[2012.08.05 11:49:46 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Thomas Gierich\Anwendungsdaten\QuickScan
[2010.01.03 18:35:10 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Thomas Gierich\Anwendungsdaten\Real
[2012.11.08 19:25:10 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Thomas Gierich\Anwendungsdaten\Skype
[2011.03.17 16:38:13 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Thomas Gierich\Anwendungsdaten\skypePM
[2012.10.28 09:58:05 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Thomas Gierich\Anwendungsdaten\Spyware Terminator
[2010.01.04 19:09:01 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Thomas Gierich\Anwendungsdaten\Steganos
[2004.12.09 15:27:28 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Thomas Gierich\Anwendungsdaten\Sun
[2010.01.08 17:58:10 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Thomas Gierich\Anwendungsdaten\Template
[2012.03.24 13:20:12 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Thomas Gierich\Anwendungsdaten\TuneUp Software
[2012.11.08 14:22:58 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Thomas Gierich\Anwendungsdaten\Uniblue
[2011.07.27 17:18:43 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Thomas Gierich\Anwendungsdaten\vlc
< %appdata%\*.* >
[2004.06.22 17:40:23 | 000,000,062 | -HS- | M] () -- C:\Dokumente und Einstellungen\Thomas Gierich\Anwendungsdaten\desktop.ini
[2012.07.14 10:35:03 | 000,005,116 | ---- | M] () -- C:\Dokumente und Einstellungen\Thomas Gierich\Anwendungsdaten\wklnhst.dat
< %appdata%\*.exe /s >
[2010.06.10 13:19:22 | 000,825,856 | ---- | M] (Synatix GmbH) -- C:\Dokumente und Einstellungen\Thomas Gierich\Anwendungsdaten\Gutscheinmieze\uninstall.exe
[2011.12.21 17:11:29 | 000,010,134 | R--- | M] () -- C:\Dokumente und Einstellungen\Thomas Gierich\Anwendungsdaten\Microsoft\Installer\{846B5DED-DC8C-4E1A-B5B4-9F5B39A0CACE}\ARPPRODUCTICON.exe
[2010.01.03 17:55:23 | 000,010,134 | R--- | M] () -- C:\Dokumente und Einstellungen\Thomas Gierich\Anwendungsdaten\Microsoft\Installer\{BB937F88-FA65-EDB6-A043-EA973D595FEB}\ARPPRODUCTICON.exe
[2011.10.19 05:21:31 | 000,909,088 | ---- | M] (Sun Microsystems, Inc.) -- C:\Dokumente und Einstellungen\Thomas Gierich\Anwendungsdaten\Sun\Java\JRERunOnce.exe
Invalid Environment Variable: localappdata
Invalid Environment Variable: localappdata
Invalid Environment Variable: localappdata
< %allusersprofile%\*. >
[2012.11.11 10:11:59 | 000,000,000 | RH-D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten
[2003.01.01 01:17:08 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Application Data
[2012.11.07 22:24:27 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Desktop
[2004.06.25 10:37:48 | 000,000,000 | R--D | M] -- C:\Dokumente und Einstellungen\All Users\Dokumente
[2010.01.03 19:22:33 | 000,000,000 | -HSD | M] -- C:\Dokumente und Einstellungen\All Users\DRM
[2004.06.22 17:40:23 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Favoriten
[2011.05.08 11:43:06 | 000,000,000 | R--D | M] -- C:\Dokumente und Einstellungen\All Users\Startmenü
[2004.06.22 17:40:23 | 000,000,000 | -H-D | M] -- C:\Dokumente und Einstellungen\All Users\Vorlagen
< %allusersprofile%\*.* >
[2010.01.03 17:20:11 | 000,262,144 | ---- | M] () -- C:\Dokumente und Einstellungen\All Users\NTUSER.DAT
[2012.11.08 15:18:00 | 000,001,024 | -H-- | M] () -- C:\Dokumente und Einstellungen\All Users\NTUSER.DAT.LOG
< %allusersprofile%\*.exe /s >
[2012.01.03 18:46:15 | 000,345,520 | ---- | M] (Adobe Systems Incorporated) -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Adobe\Setup\{AC76BA86-7AD7-1031-7B44-A95000000001}\Setup.exe
[2012.04.04 12:17:36 | 000,342,984 | ---- | M] (Adobe Systems Incorporated) -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Adobe\Setup\{AC76BA86-7AD7-1031-7B44-AA1000000001}\setup.exe
[2012.08.08 17:24:39 | 000,613,880 | ---- | M] (Avira Operations GmbH & Co. KG) -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Avira\AntiVir Desktop\TEMP\SELFUPDATE\update.exe
[2012.05.08 16:42:07 | 000,047,824 | ---- | M] (Avira Operations GmbH & Co. KG) -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Avira\AntiVir Desktop\TEMP\SELFUPDATE\updrgui.exe
[2012.11.07 22:15:56 | 010,669,952 | ---- | M] (Malwarebytes Corporation ) -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Malwarebytes\Malwarebytes' Anti-Malware\mbam-setup.exe
< >
[2004.06.22 16:36:43 | 000,000,065 | RH-- | C] () -- C:\WINDOWS\Tasks\desktop.ini
[2004.06.22 16:43:38 | 000,000,006 | -H-- | C] () -- C:\WINDOWS\Tasks\SA.DAT
[2011.05.21 16:19:14 | 000,001,102 | ---- | C] () -- C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
[2011.05.21 16:19:14 | 000,001,106 | ---- | C] () -- C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
[2012.05.02 15:13:19 | 000,000,884 | ---- | C] () -- C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
< End of report >
|
