| echeos_9 | 03.04.2013 17:06 |
Hallo,
Defogger ( Unable to open the file).
Läuft nicht.:daumenrunter:
das Meintest Du doch, mit dem genau durchlesen, oder?
Gruß
Hallo,
das sind die beiden Text dateien von OTL:OTL Logfile: Code:
OTL logfile created on: 03.04.2013 19:04:23 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Dokumente und Einstellungen\Holger\Eigene Dateien\Downloads
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy
3,50 Gb Total Physical Memory | 2,50 Gb Available Physical Memory | 71,31% Memory free
5,34 Gb Paging File | 4,48 Gb Available in Paging File | 83,88% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Programme
Drive C: | 465,75 Gb Total Space | 81,31 Gb Free Space | 17,46% Space Free | Partition Type: NTFS
Computer Name: HOLGER-2DF0AC58 | User Name: Holger | NOT logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Processes (SafeList) ==========
PRC - [2013.04.03 19:03:42 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Dokumente und Einstellungen\Holger\Eigene Dateien\Downloads\OTL(2).exe
PRC - [2013.04.03 19:00:32 | 000,377,856 | ---- | M] () -- C:\Dokumente und Einstellungen\Holger\Eigene Dateien\Downloads\gmer_2.1.19155(1).exe
PRC - [2013.04.03 18:07:33 | 000,920,472 | ---- | M] (Mozilla Corporation) -- C:\Programme\Mozilla Firefox\firefox.exe
PRC - [2013.02.13 20:38:24 | 000,844,144 | ---- | M] (Samsung) -- C:\Programme\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe
PRC - [2012.12.24 05:33:29 | 000,144,520 | R--- | M] (Symantec Corporation) -- C:\Programme\Norton Internet Security CBE\Engine\20.3.0.36\ccsvchst.exe
PRC - [2012.06.20 18:14:18 | 002,206,888 | ---- | M] (Nullsoft, Inc.) -- C:\Programme\Winamp\winamp.exe
PRC - [2012.05.29 14:09:52 | 001,220,960 | ---- | M] (TuneUp Software) -- C:\Programme\TuneUp Utilities 2012\TuneUpUtilitiesApp32.exe
PRC - [2008.04.14 08:52:46 | 001,562,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2006.12.14 15:00:40 | 000,712,704 | ---- | M] (LevelOne) -- C:\Programme\LevelOne\11g Wireless LAN\WLanUtility.exe
PRC - [2005.04.06 17:53:04 | 000,856,064 | ---- | M] (Adobe Sytems Incorporated) -- C:\Programme\Adobe\Adobe Version Cue CS2\ControlPanel\VersionCueCS2Tray.exe
========== Modules (No Company Name) ==========
MOD - [2013.04.03 19:00:32 | 000,377,856 | ---- | M] () -- C:\Dokumente und Einstellungen\Holger\Eigene Dateien\Downloads\gmer_2.1.19155(1).exe
MOD - [2013.04.03 18:07:32 | 003,143,576 | ---- | M] () -- C:\Programme\Mozilla Firefox\mozjs.dll
MOD - [2012.12.19 11:00:21 | 000,091,136 | ---- | M] () -- C:\Programme\Winamp\System\xml.w5s
MOD - [2012.12.19 11:00:21 | 000,087,552 | ---- | M] () -- C:\Programme\Winamp\System\png.w5s
MOD - [2012.12.19 11:00:21 | 000,084,480 | ---- | M] () -- C:\Programme\Winamp\System\playlist.w5s
MOD - [2012.12.19 11:00:21 | 000,083,968 | ---- | M] () -- C:\Programme\Winamp\tataki.dll
MOD - [2012.12.19 11:00:21 | 000,064,512 | ---- | M] () -- C:\Programme\Winamp\zlib.dll
MOD - [2012.12.19 11:00:21 | 000,035,328 | ---- | M] () -- C:\Programme\Winamp\System\timer.w5s
MOD - [2012.12.19 11:00:21 | 000,021,504 | ---- | M] () -- C:\Programme\Winamp\System\tagz.w5s
MOD - [2012.12.19 11:00:21 | 000,013,824 | ---- | M] () -- C:\Programme\Winamp\System\primo.w5s
MOD - [2012.12.19 11:00:20 | 000,623,616 | ---- | M] () -- C:\Programme\Winamp\System\jnetlib.w5s
MOD - [2012.12.19 11:00:20 | 000,313,344 | ---- | M] () -- C:\Programme\Winamp\Plugins\in_wm.dll
MOD - [2012.12.19 11:00:20 | 000,294,912 | ---- | M] () -- C:\Programme\Winamp\Plugins\ml_local.dll
MOD - [2012.12.19 11:00:20 | 000,253,440 | ---- | M] () -- C:\Programme\Winamp\Plugins\in_vorbis.dll
MOD - [2012.12.19 11:00:20 | 000,249,856 | ---- | M] () -- C:\Programme\Winamp\Plugins\ml_devices.dll
MOD - [2012.12.19 11:00:20 | 000,240,640 | ---- | M] () -- C:\Programme\Winamp\Plugins\ml_pmp.dll
MOD - [2012.12.19 11:00:20 | 000,201,728 | ---- | M] () -- C:\Programme\Winamp\Plugins\ml_disc.dll
MOD - [2012.12.19 11:00:20 | 000,174,080 | ---- | M] () -- C:\Programme\Winamp\System\auth.w5s
MOD - [2012.12.19 11:00:20 | 000,170,496 | ---- | M] () -- C:\Programme\Winamp\Plugins\pmp_ipod.dll
MOD - [2012.12.19 11:00:20 | 000,154,624 | ---- | M] () -- C:\Programme\Winamp\System\jpeg.w5s
MOD - [2012.12.19 11:00:20 | 000,124,928 | ---- | M] () -- C:\Programme\Winamp\Plugins\ml_online.dll
MOD - [2012.12.19 11:00:20 | 000,118,272 | ---- | M] () -- C:\Programme\Winamp\Plugins\pmp_p4s.dll
MOD - [2012.12.19 11:00:20 | 000,113,664 | ---- | M] () -- C:\Programme\Winamp\Plugins\pmp_wifi.dll
MOD - [2012.12.19 11:00:20 | 000,084,480 | ---- | M] () -- C:\Programme\Winamp\Plugins\ml_playlists.dll
MOD - [2012.12.19 11:00:20 | 000,083,456 | ---- | M] () -- C:\Programme\Winamp\Plugins\ml_plg.dll
MOD - [2012.12.19 11:00:20 | 000,075,264 | ---- | M] () -- C:\Programme\Winamp\Plugins\in_nsv.dll
MOD - [2012.12.19 11:00:20 | 000,060,928 | ---- | M] () -- C:\Programme\Winamp\Plugins\pmp_android.dll
MOD - [2012.12.19 11:00:20 | 000,057,344 | ---- | M] () -- C:\Programme\Winamp\Plugins\ml_impex.dll
MOD - [2012.12.19 11:00:20 | 000,053,760 | ---- | M] () -- C:\Programme\Winamp\Plugins\pmp_usb.dll
MOD - [2012.12.19 11:00:20 | 000,052,224 | ---- | M] () -- C:\Programme\Winamp\Plugins\out_ds.dll
MOD - [2012.12.19 11:00:20 | 000,052,224 | ---- | M] () -- C:\Programme\Winamp\Plugins\ml_history.dll
MOD - [2012.12.19 11:00:20 | 000,044,544 | ---- | M] () -- C:\Programme\Winamp\System\devices.w5s
MOD - [2012.12.19 11:00:20 | 000,033,792 | ---- | M] () -- C:\Programme\Winamp\Plugins\ml_rg.dll
MOD - [2012.12.19 11:00:20 | 000,032,256 | ---- | M] () -- C:\Programme\Winamp\Plugins\ml_transcode.dll
MOD - [2012.12.19 11:00:20 | 000,029,184 | ---- | M] () -- C:\Programme\Winamp\Plugins\pmp_activesync.dll
MOD - [2012.12.19 11:00:20 | 000,028,672 | ---- | M] () -- C:\Programme\Winamp\Plugins\ml_bookmarks.dll
MOD - [2012.12.19 11:00:20 | 000,028,672 | ---- | M] () -- C:\Programme\Winamp\Plugins\ml_autotag.dll
MOD - [2012.12.19 11:00:20 | 000,023,552 | ---- | M] () -- C:\Programme\Winamp\Plugins\in_swf.dll
MOD - [2012.12.19 11:00:20 | 000,023,552 | ---- | M] () -- C:\Programme\Winamp\System\albumart.w5s
MOD - [2012.12.19 11:00:20 | 000,022,528 | ---- | M] () -- C:\Programme\Winamp\Plugins\out_disk.dll
MOD - [2012.12.19 11:00:20 | 000,020,480 | ---- | M] () -- C:\Programme\Winamp\Plugins\pmp_njb.dll
MOD - [2012.12.19 11:00:20 | 000,019,456 | ---- | M] () -- C:\Programme\Winamp\System\gif.w5s
MOD - [2012.12.19 11:00:20 | 000,019,456 | ---- | M] () -- C:\Programme\Winamp\System\bmp.w5s
MOD - [2012.12.19 11:00:20 | 000,018,432 | ---- | M] () -- C:\Programme\Winamp\Plugins\out_wave.dll
MOD - [2012.12.19 11:00:20 | 000,016,896 | ---- | M] () -- C:\Programme\Winamp\Plugins\in_wave.dll
MOD - [2012.12.19 11:00:20 | 000,016,896 | ---- | M] () -- C:\Programme\Winamp\System\dlmgr.w5s
MOD - [2012.12.19 11:00:20 | 000,016,384 | ---- | M] () -- C:\Programme\Winamp\System\gracenote.w5s
MOD - [2012.12.19 11:00:20 | 000,014,336 | ---- | M] () -- C:\Programme\Winamp\System\filereader.w5s
MOD - [2012.12.19 11:00:19 | 001,737,728 | ---- | M] () -- C:\Programme\Winamp\Plugins\gen_ff.dll
MOD - [2012.12.19 11:00:19 | 000,417,280 | ---- | M] () -- C:\Programme\Winamp\nsutil.dll
MOD - [2012.12.19 11:00:19 | 000,340,992 | ---- | M] () -- C:\Programme\Winamp\Plugins\freeform\wacs\freetype\freetype.wac
MOD - [2012.12.19 11:00:19 | 000,318,976 | ---- | M] () -- C:\Programme\Winamp\Plugins\gen_ml.dll
MOD - [2012.12.19 11:00:19 | 000,290,816 | ---- | M] () -- C:\Programme\Winamp\Plugins\in_mp3.dll
MOD - [2012.12.19 11:00:19 | 000,253,440 | ---- | M] () -- C:\Programme\Winamp\libsndfile.dll
MOD - [2012.12.19 11:00:19 | 000,185,344 | ---- | M] () -- C:\Programme\Winamp\Plugins\gen_jumpex.dll
MOD - [2012.12.19 11:00:19 | 000,164,864 | ---- | M] () -- C:\Programme\Winamp\Plugins\in_mod.dll
MOD - [2012.12.19 11:00:19 | 000,109,568 | ---- | M] () -- C:\Programme\Winamp\Plugins\in_midi.dll
MOD - [2012.12.19 11:00:19 | 000,102,400 | ---- | M] () -- C:\Programme\Winamp\Plugins\in_cdda.dll
MOD - [2012.12.19 11:00:19 | 000,078,848 | ---- | M] () -- C:\Programme\Winamp\nde.dll
MOD - [2012.12.19 11:00:19 | 000,072,192 | ---- | M] () -- C:\Programme\Winamp\Plugins\in_dshow.dll
MOD - [2012.12.19 11:00:19 | 000,068,608 | ---- | M] () -- C:\Programme\Winamp\Plugins\in_avi.dll
MOD - [2012.12.19 11:00:19 | 000,061,440 | ---- | M] () -- C:\Programme\Winamp\Plugins\in_flac.dll
MOD - [2012.12.19 11:00:19 | 000,057,344 | ---- | M] () -- C:\Programme\Winamp\Plugins\gen_orgler.dll
MOD - [2012.12.19 11:00:19 | 000,052,736 | ---- | M] () -- C:\Programme\Winamp\Plugins\in_mp4.dll
MOD - [2012.12.19 11:00:19 | 000,049,152 | ---- | M] () -- C:\Programme\Winamp\Plugins\in_mkv.dll
MOD - [2012.12.19 11:00:19 | 000,043,008 | ---- | M] () -- C:\Programme\Winamp\Plugins\in_flv.dll
MOD - [2012.12.19 11:00:19 | 000,028,160 | ---- | M] () -- C:\Programme\Winamp\Plugins\gen_hotkeys.dll
MOD - [2012.12.19 11:00:19 | 000,025,600 | ---- | M] () -- C:\Programme\Winamp\Plugins\gen_tray.dll
MOD - [2012.12.19 11:00:19 | 000,007,168 | ---- | M] () -- C:\Programme\Winamp\Plugins\in_linein.dll
MOD - [2012.12.18 16:28:26 | 000,301,056 | ---- | M] () -- C:\Programme\Gemeinsame Dateien\Adobe\Acrobat\ActiveX\PDFShell.DEU
MOD - [2012.05.30 08:51:08 | 000,699,280 | R--- | M] () -- C:\Programme\Norton Internet Security CBE\Engine\20.3.0.36\wincfi39.dll
MOD - [2008.04.14 08:52:18 | 000,014,336 | ---- | M] () -- C:\WINDOWS\system32\msdmo.dll
MOD - [2006.12.14 15:00:04 | 000,339,968 | ---- | M] () -- C:\Programme\LevelOne\11g Wireless LAN\SerCommLib.dll
MOD - [2006.09.14 00:20:24 | 000,126,464 | ---- | M] () -- C:\Programme\WinRAR\RarExt.dll
MOD - [2005.07.19 13:53:04 | 000,966,765 | ---- | M] () -- C:\Programme\LevelOne\11g Wireless LAN\acAuth.dll
========== Services (SafeList) ==========
SRV - File not found [Disabled | Unknown] -- %SystemRoot%\System32\hidserv.dll -- (HidServ)
SRV - File not found [On_Demand | Unknown] -- %SystemRoot%\System32\appmgmts.dll -- (AppMgmt)
SRV - [2013.04.03 18:07:32 | 000,115,608 | ---- | M] (Mozilla Foundation) [On_Demand | Unknown] -- C:\Programme\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2013.03.13 13:50:37 | 000,253,656 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Unknown] -- C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2013.03.11 11:44:45 | 000,170,912 | ---- | M] (Oracle Corporation) [Auto | Unknown] -- C:\Programme\Java\jre7\bin\jqs.exe -- (JavaQuickStarterService)
SRV - [2013.02.07 14:04:30 | 000,161,384 | R--- | M] (Skype Technologies) [Auto | Unknown] -- C:\Programme\Skype\Updater\Updater.exe -- (SkypeUpdate)
SRV - [2013.01.31 14:54:39 | 000,072,704 | ---- | M] (Adobe Systems) [On_Demand | Unknown] -- C:\Programme\Gemeinsame Dateien\Adobe Systems Shared\Service\Adobelmsvc.exe -- (Adobe LM Service)
SRV - [2013.01.09 18:36:06 | 000,795,208 | ---- | M] (pdfforge GbR) [Auto | Unknown] -- C:\Programme\PDF Architect\ConversionService.exe -- (PDF Architect Service)
SRV - [2013.01.09 18:34:26 | 001,324,104 | ---- | M] (pdfforge GbR) [Auto | Unknown] -- C:\Programme\PDF Architect\HelperService.exe -- (PDF Architect Helper Service)
SRV - [2012.12.24 05:33:29 | 000,144,520 | R--- | M] (Symantec Corporation) [Auto | Unknown] -- C:\Programme\Norton Internet Security CBE\Engine\20.3.0.36\ccSvcHst.exe -- (NIS)
SRV - [2012.12.21 15:48:08 | 000,699,680 | ---- | M] (Star Finanz - Software Entwicklung und Vertriebs GmbH) [Disabled | Unknown] -- C:\Programme\StarMoney 8.0\ouservice\StarMoneyOnlineUpdate.exe -- (StarMoney 8.0 OnlineUpdate)
SRV - [2012.08.11 17:43:06 | 000,055,184 | ---- | M] (Apple Inc.) [Disabled | Unknown] -- C:\Programme\Gemeinsame Dateien\Apple\Mobile Device Support\AppleMobileDeviceService.exe -- (Apple Mobile Device)
SRV - [2012.06.13 18:02:22 | 000,019,400 | ---- | M] () [Auto | Unknown] -- c:\Programme\Ocster Backup\bin\backupService-ox.exe -- (ocster_backup)
SRV - [2012.05.29 14:09:52 | 001,528,672 | ---- | M] (TuneUp Software) [Auto | Unknown] -- C:\Programme\TuneUp Utilities 2012\TuneUpUtilitiesService32.exe -- (TuneUp.UtilitiesSvc)
SRV - [2012.02.15 17:05:28 | 000,025,088 | ---- | M] () [Disabled | Unknown] -- C:\Programme\COMPUTERBILD-Cloud\Data\Tools\mounter.exe -- (DokanMounter)
SRV - [2010.10.14 18:45:05 | 000,589,824 | ---- | M] ( ) [Auto | Unknown] -- C:\WINDOWS\system32\lxducoms.exe -- (lxdu_device)
SRV - [2010.05.06 14:40:38 | 000,071,096 | ---- | M] () [Disabled | Unknown] -- C:\Programme\StudioLine Photo Classic SE\NMSAccess32.exe -- (NMSAccess)
SRV - [2010.04.29 06:04:12 | 000,069,632 | ---- | M] (ActMask Co.,Ltd - HTTP://WWW.ALL2PDF.COM) [Auto | Unknown] -- C:\WINDOWS\system32\PrintCtrl.exe -- (Printer Control)
SRV - [2010.02.19 13:37:14 | 000,517,096 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Unknown] -- C:\Programme\Gemeinsame Dateien\Adobe\SwitchBoard\SwitchBoard.exe -- (SwitchBoard)
SRV - [2009.12.23 23:34:20 | 000,370,688 | ---- | M] (StarWind Software) [Auto | Unknown] -- C:\Programme\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe -- (StarWindServiceAE)
SRV - [2009.05.13 00:35:56 | 000,095,896 | ---- | M] (SiSoftware) [Disabled | Unknown] -- C:\Programme\SiSoftware\SiSoftware Sandra Lite 2012.SP4a\RpcAgentSrv.exe -- (SandraAgentSrv)
SRV - [2009.02.10 17:01:49 | 000,116,104 | ---- | M] () [Disabled | Unknown] -- C:\Programme\Canon\IJPLM\ijplmsvc.exe -- (IJPLMSVC)
SRV - [2008.05.23 14:58:22 | 000,098,984 | ---- | M] () [Auto | Unknown] -- C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\\lxduserv.exe -- (lxduCATSCustConnectService)
SRV - [2008.04.14 08:52:34 | 000,088,576 | ---- | M] (Microsoft Corporation) [Unknown (-1) | Unknown] -- C:\WINDOWS\system32\wbem\wmiaprpl.dll -- (WmiApRpl)
SRV - [2005.04.06 17:53:02 | 000,163,840 | ---- | M] (Adobe Systems Incorporated) [Auto | Unknown] -- c:\Programme\Adobe\Adobe Version Cue CS2\bin\VersionCueCS2.exe -- (Adobe Version Cue CS2)
========== Driver Services (SafeList) ==========
DRV - File not found [Kernel | On_Demand | Unknown] -- -- (WDICA)
DRV - File not found [Kernel | On_Demand | Unknown] -- system32\DRIVERS\ssudmdm.sys -- (ssudmdm)
DRV - File not found [Kernel | On_Demand | Unknown] -- C:\WINDOWS\System32\Drivers\SjyPkt.sys -- (SjyPkt)
DRV - File not found [Kernel | On_Demand | Unknown] -- -- (PDRFRAME)
DRV - File not found [Kernel | On_Demand | Unknown] -- -- (PDRELI)
DRV - File not found [Kernel | On_Demand | Unknown] -- -- (PDFRAME)
DRV - File not found [Kernel | On_Demand | Unknown] -- -- (PDCOMP)
DRV - File not found [Kernel | System | Unknown] -- -- (PCIDump)
DRV - File not found [Kernel | On_Demand | Unknown] -- system32\DRIVERS\pccsmcfd.sys -- (pccsmcfd)
DRV - File not found [Kernel | System | Unknown] -- -- (lbrtfdc)
DRV - File not found [Kernel | System | Unknown] -- -- (i2omgmt)
DRV - File not found [Kernel | System | Unknown] -- -- (Changer)
DRV - File not found [Kernel | On_Demand | Unknown] -- -- (av9kve15)
DRV - File not found [Kernel | On_Demand | Unknown] -- system32\drivers\AtiHdmi.sys -- (AtiHdmiService)
DRV - File not found [Kernel | On_Demand | Unknown] -- system32\DRIVERS\athuw.sys -- (AR9271)
DRV - [2013.03.22 03:52:23 | 000,997,464 | ---- | M] (Symantec Corporation) [Kernel | System | Unknown] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.1.1.2\Definitions\BASHDefs\20130322.001\BHDrvx86.sys -- (BHDrvx86)
DRV - [2013.03.07 11:49:16 | 001,603,824 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Unknown] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.1.1.2\Definitions\VirusDefs\20130402.025\NAVEX15.SYS -- (NAVEX15)
DRV - [2013.03.07 11:49:16 | 000,093,296 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Unknown] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.1.1.2\Definitions\VirusDefs\20130402.025\NAVENG.SYS -- (NAVENG)
DRV - [2013.03.07 11:46:08 | 000,142,496 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Unknown] -- C:\WINDOWS\system32\drivers\SYMEVENT.SYS -- (SymEvent)
DRV - [2013.03.06 17:29:22 | 000,373,728 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Unknown] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.1.1.2\Definitions\IPSDefs\20130402.001\IDSXpx86.sys -- (IDSxpx86)
DRV - [2013.02.05 18:52:46 | 000,020,032 | ---- | M] (Devguru Co., Ltd) [Kernel | On_Demand | Unknown] -- C:\WINDOWS\system32\drivers\dgderdrv.sys -- (dgderdrv)
DRV - [2013.01.31 10:19:50 | 000,083,168 | ---- | M] (DEVGURU Co., LTD.(www.devguru.co.kr)) [Kernel | On_Demand | Unknown] -- C:\WINDOWS\system32\drivers\ssudbus.sys -- (dg_ssudbus)
DRV - [2013.01.31 05:18:18 | 000,394,656 | ---- | M] (Symantec Corporation) [Kernel | System | Unknown] -- C:\WINDOWS\system32\drivers\NIS\1403000.024\symtdi.sys -- (SYMTDI)
DRV - [2013.01.31 05:18:06 | 000,934,488 | ---- | M] (Symantec Corporation) [File_System | Boot | Unknown] -- C:\WINDOWS\system32\drivers\NIS\1403000.024\symefa.sys -- (SymEFA)
DRV - [2013.01.29 03:45:18 | 000,602,712 | ---- | M] (Symantec Corporation) [File_System | On_Demand | Unknown] -- C:\WINDOWS\system32\drivers\NIS\1403000.024\srtsp.sys -- (SRTSP)
DRV - [2013.01.29 03:45:18 | 000,032,344 | ---- | M] (Symantec Corporation) [Kernel | System | Unknown] -- C:\WINDOWS\system32\drivers\NIS\1403000.024\srtspx.sys -- (SRTSPX)
DRV - [2013.01.22 04:15:32 | 000,367,704 | ---- | M] (Symantec Corporation) [Kernel | Boot | Unknown] -- C:\WINDOWS\system32\drivers\NIS\1403000.024\symds.sys -- (SymDS)
DRV - [2012.11.16 04:22:01 | 000,175,264 | ---- | M] (Symantec Corporation) [Kernel | System | Unknown] -- C:\WINDOWS\system32\drivers\NIS\1403000.024\ironx86.sys -- (SymIRON)
DRV - [2012.11.16 04:18:04 | 000,134,304 | ---- | M] (Symantec Corporation) [Kernel | System | Unknown] -- C:\WINDOWS\system32\drivers\NIS\1403000.024\ccsetx86.sys -- (ccSet_NIS)
DRV - [2012.08.18 03:00:00 | 000,376,480 | ---- | M] (Symantec Corporation) [Kernel | System | Unknown] -- C:\Programme\Gemeinsame Dateien\Symantec Shared\EENGINE\eeCtrl.sys -- (eeCtrl)
DRV - [2012.08.18 03:00:00 | 000,106,656 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Unknown] -- C:\Programme\Gemeinsame Dateien\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys -- (EraserUtilRebootDrv)
DRV - [2012.06.09 16:38:52 | 000,452,432 | ---- | M] (Paragon) [Kernel | System | Unknown] -- C:\WINDOWS\system32\drivers\Uim_IM.sys -- (Uim_IM)
DRV - [2012.06.09 16:38:52 | 000,283,344 | ---- | M] (Paragon) [Kernel | System | Unknown] -- C:\WINDOWS\system32\drivers\Uim_Vim.sys -- (Uim_Vim)
DRV - [2012.06.09 16:38:50 | 000,081,232 | ---- | M] (Windows (R) 2000 DDK provider) [Kernel | System | Unknown] -- C:\WINDOWS\system32\drivers\UimBus.sys -- (UimBus)
DRV - [2012.05.08 16:21:42 | 000,010,064 | ---- | M] (TuneUp Software) [Kernel | On_Demand | Unknown] -- C:\Programme\TuneUp Utilities 2012\TuneUpUtilitiesDriver32.sys -- (TuneUpUtilitiesDrv)
DRV - [2012.03.21 11:41:07 | 000,436,792 | ---- | M] () [Kernel | Boot | Unknown] -- C:\WINDOWS\system32\drivers\sptd.sys -- (sptd)
DRV - [2012.03.09 08:22:00 | 007,586,304 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Unknown] -- C:\WINDOWS\system32\drivers\ati2mtag.sys -- (ati2mtag)
DRV - [2012.03.05 17:08:14 | 000,133,208 | ---- | M] (Kaspersky Lab ZAO) [Kernel | System | Unknown] -- C:\WINDOWS\system32\drivers\39344210.sys -- (39344210)
DRV - [2012.02.15 17:05:30 | 000,091,904 | ---- | M] (Windows (R) Win 7 DDK provider) [File_System | Auto | Unknown] -- C:\WINDOWS\system32\drivers\dokan.sys -- (Dokan)
DRV - [2011.12.20 09:39:28 | 000,100,368 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Unknown] -- C:\WINDOWS\system32\drivers\AtihdXP3.sys -- (AtiHDAudioService)
DRV - [2011.12.15 20:29:42 | 000,026,624 | ---- | M] (The OpenVPN Project) [Kernel | On_Demand | Unknown] -- C:\WINDOWS\system32\drivers\tap0901.sys -- (tap0901)
DRV - [2010.12.01 21:06:29 | 000,108,104 | ---- | M] (SlySoft, Inc.) [Kernel | On_Demand | Unknown] -- C:\WINDOWS\system32\drivers\AnyDVD.sys -- (AnyDVD)
DRV - [2010.11.23 19:33:00 | 004,090,920 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Unknown] -- C:\WINDOWS\system32\drivers\RtKHDMI.sys -- (RTHDMIAzAudService)
DRV - [2010.08.04 22:16:54 | 002,127,728 | R--- | M] (VIA Technologies, Inc.) [Kernel | On_Demand | Unknown] -- C:\WINDOWS\system32\drivers\viahduaa.sys -- (VIAHdAudAddService)
DRV - [2010.06.14 02:32:54 | 000,036,608 | ---- | M] () [Kernel | On_Demand | Unknown] -- C:\WINDOWS\system32\FsUsbExDisk.Sys -- (FsUsbExDisk)
DRV - [2010.05.20 12:30:20 | 000,025,680 | ---- | M] (O&O Software GmbH) [File_System | Boot | Unknown] -- C:\WINDOWS\system32\drivers\OODrvled.sys -- (oodrvled)
DRV - [2009.08.07 23:46:56 | 000,023,112 | ---- | M] (SiSoftware) [Kernel | On_Demand | Unknown] -- C:\Programme\SiSoftware\SiSoftware Sandra Lite 2012.SP4a\WNt500x86\sandra.sys -- (SANDRA)
DRV - [2009.06.26 16:29:34 | 001,656,960 | R--- | M] (Creative) [Kernel | On_Demand | Unknown] -- C:\WINDOWS\system32\drivers\Ambfilt.sys -- (AMBFilt)
DRV - [2008.12.02 15:56:00 | 001,389,056 | R--- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Unknown] -- C:\WINDOWS\system32\drivers\Monfilt.sys -- (MonFilt)
DRV - [2008.08.18 12:54:24 | 000,145,952 | R--- | M] (NVIDIA Corporation) [Kernel | Boot | Unknown] -- C:\WINDOWS\system32\drivers\nvgts.sys -- (nvgts)
DRV - [2008.04.14 08:52:34 | 000,088,576 | ---- | M] (Microsoft Corporation) [Unknown (-1) | Unknown (-1) | Unknown] -- C:\WINDOWS\system32\wbem\wmiaprpl.dll -- (WmiApRpl)
DRV - [2008.03.25 05:48:08 | 000,022,016 | R--- | M] (NVIDIA Corporation) [Kernel | On_Demand | Unknown] -- C:\WINDOWS\system32\drivers\nvnetbus.sys -- (nvnetbus)
DRV - [2008.03.25 05:48:06 | 000,054,400 | R--- | M] (NVIDIA Corporation) [Kernel | On_Demand | Unknown] -- C:\WINDOWS\system32\drivers\NVENETFD.sys -- (NVENETFD)
DRV - [2007.04.16 17:46:34 | 000,033,792 | ---- | M] (Advanced Micro Devices) [Kernel | System | Unknown] -- C:\WINDOWS\system32\drivers\AmdPPM.sys -- (AmdPPM)
DRV - [2007.03.27 07:27:02 | 000,543,712 | R--- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Unknown] -- C:\WINDOWS\system32\drivers\ar5211.sys -- (AR5211)
DRV - [2006.11.02 07:00:08 | 000,039,368 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Unknown] -- C:\WINDOWS\system32\drivers\winusb.sys -- (WinUSB)
DRV - [2006.07.04 03:10:28 | 000,178,048 | ---- | M] (Realtek Semiconductor Corporation ) [Kernel | On_Demand | Unknown] -- C:\WINDOWS\system32\drivers\RTL8187.sys -- (RTLWUSB)
DRV - [2005.12.01 10:49:22 | 000,023,600 | ---- | M] (Licensed for Gebhard Software) [Kernel | Auto | Unknown] -- C:\WINDOWS\System32\drivers\drhard.sys -- (drhard)
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant =
IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = hxxp://search.live.com/results.aspx?q={searchTerms}&src={referrer:source?}
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar =
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page =
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = hxxp://de.ask.com/?l=dis&o=102875&gct=hp
IE - HKCU\..\URLSearchHook: {5786d022-540e-4699-b350-b4be0ae94b79} - C:\Programme\Ashampoo_DE\prxtbAsha.dll (Conduit Ltd.)
IE - HKCU\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = hxxp://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC
IE - HKCU\..\SearchScopes\{0D7562AE-8EF6-416d-A838-AB665251703A}: "URL" = hxxp://start.facemoods.com/?a=ddr&s={searchTerms}&f=4
IE - HKCU\..\SearchScopes\{1CB20BF0-BBAE-40A7-93F4-6435FF3D0411}: "URL" = hxxp://www.crawler.com/search/dispatcher.aspx?tp=bs&qkw={searchTerms}&tbid=60446
IE - HKCU\..\SearchScopes\{5B075A76-8D11-4857-9118-344335CCBC9D}: "URL" = hxxp://websearch.ask.com/redirect?client=ie&tb=HIP&o=102875&src=crm&q={searchTerms}&locale=de_DE&apn_ptnrs=^6F&apn_dtid=^YYYYYY^YY^DE&apn_uid=3c2ca7cc-2147-477c-8846-cadf209bca12&apn_sauid=8E771D16-B5A9-4D2F-82AF-2E6E3F12D84D
IE - HKCU\..\SearchScopes\{8EEAC88A-079B-4b2c-80C1-7836F79EB40A}: "URL" = hxxp://de.search.yahoo.com/search?p={searchTerms}&fr=chr-comodo
IE - HKCU\..\SearchScopes\{AFBCB7E0-F91A-4951-9F31-58FEE57A25C4}: "URL" = hxxp://nortonsafe.search.ask.com/web?q={SEARCHTERMS}&o=APN10506&l=dis&prt=NIS&chn=retail&geo=DE&ver=20&locale=de_DE&gct=sb&qsrc=2869
IE - HKCU\..\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}: "URL" = hxxp://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT2481020
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = local
========== FireFox ==========
FF - prefs.js..browser.search.defaultengine: "Google"
FF - prefs.js..browser.search.defaultenginename: "Google"
FF - prefs.js..browser.search.order.1: "Ask.com"
FF - prefs.js..browser.search.selectedEngine: "LEO Eng-Deu"
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: "hxxp://www.web.de/"
FF - prefs.js..extensions.enabledAddons: toolbar%40web.de:2.4
FF - prefs.js..extensions.enabledAddons: %7B0b457cAA-602d-484a-8fe7-c1d894a011ba%7D:0.98.31
FF - prefs.js..extensions.enabledAddons: %7Be0204bd5-9d31-402b-a99d-a6aa8ffebdca%7D:1.4.5
FF - prefs.js..extensions.enabledAddons: %7B5B52016C-D097-4aec-BE61-9F129D8FDDBA%7D:3.0
FF - prefs.js..extensions.enabledAddons: FFPDFArchitectConverter%40pdfarchitect.com:1.0
FF - prefs.js..extensions.enabledAddons: crossriderapp18220%40crossrider.com:0.91.35
FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:20.0
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_6_602_180.dll ()
FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\WINDOWS\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Programme\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\@canon.com/EPPEX: C:\Programme\Canon\Easy-PhotoPrint EX\NPEZFFPI.DLL (CANON INC.)
FF - HKLM\Software\MozillaPlugins\@checkpoint.com/FFApi: C:\Programme\CheckPoint\ZAForceField\TrustChecker\bin\npFFApi.dll File not found
FF - HKLM\Software\MozillaPlugins\@Google.com/GoogleEarthPlugin: C:\Programme\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.17.2: C:\WINDOWS\system32\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.17.2: C:\Programme\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@messenger.yahoo.com/YahooMessengerStatePlugin;version=1.0.0.6: C:\Programme\Yahoo!\Shared\npYState.dll (Yahoo! Inc.)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Programme\Microsoft Silverlight\5.1.20125.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Programme\Google\Update\1.3.21.135\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Programme\Google\Update\1.3.21.135\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@veetle.com/veetleCorePlugin,version=0.9.18: C:\Programme\Veetle\plugins\npVeetle.dll (Veetle Inc)
FF - HKLM\Software\MozillaPlugins\@veetle.com/veetlePlayerPlugin,version=0.9.18: C:\Programme\Veetle\Player\npvlc.dll (Veetle Inc)
FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.0.5: C:\Programme\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Programme\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Dokumente und Einstellungen\Holger\Lokale Einstellungen\Anwendungsdaten\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Dokumente und Einstellungen\Holger\Lokale Einstellungen\Anwendungsdaten\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.)
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\extensions\\{ABDE892B-13A8-4d1b-88E6-365A6E755758}: C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext [2012.09.11 08:15:18 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\extensions\\passworddepot@acebit.com: C:\Programme\AceBIT\Password Depot 6\Firefox\ [2012.08.30 02:27:35 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\extensions\\{BBDA0591-3099-440a-AA10-41764D9DB4DB}: C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.1.1.2\IPSFFPlgn\ [2013.03.07 11:46:41 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\extensions\\{2D3F3651-74B9-4795-BDEC-6DA2F431CB62}: C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.1.1.2\coFFPlgn\ [2013.04.03 11:35:31 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\extensions\\FFPDFArchitectConverter@pdfarchitect.com: C:\Programme\PDF Architect\FFPDFArchitectExt [2013.03.12 10:47:05 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 20.0\extensions\\Components: C:\Programme\Mozilla Firefox\components [2013.04.03 18:07:33 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 20.0\extensions\\Plugins: C:\Programme\Mozilla Firefox\plugins [2013.04.03 18:07:26 | 000,000,000 | ---D | M]
[2012.09.25 12:18:18 | 000,000,000 | ---D | M] (No name found) -- C:\Dokumente und Einstellungen\Holger\Anwendungsdaten\Mozilla\Extensions
[2012.09.11 08:00:00 | 000,000,000 | ---D | M] (No name found) -- C:\Dokumente und Einstellungen\Holger\Anwendungsdaten\Mozilla\Firefox\Profiles\4q0lfntj.tarnfox\extensions
[2012.09.11 08:00:00 | 000,000,000 | ---D | M] ("Free YouTube Download (Free Studio) Menu") -- C:\Dokumente und Einstellungen\Holger\Anwendungsdaten\Mozilla\Firefox\Profiles\4q0lfntj.tarnfox\extensions\{ACAA314B-EEBA-48e4-AD47-84E31C44796C}
[2012.07.17 17:45:22 | 000,000,000 | ---D | M] (COMPUTERBILD-Abzockschutz) -- C:\Dokumente und Einstellungen\Holger\Anwendungsdaten\Mozilla\Firefox\Profiles\4q0lfntj.tarnfox\extensions\{d49175b3-3fd8-43b8-b28e-da5d47f3c398}
[2012.04.02 11:06:18 | 000,000,000 | ---D | M] (Click&Clean) -- C:\Dokumente und Einstellungen\Holger\Anwendungsdaten\Mozilla\Firefox\Profiles\4q0lfntj.tarnfox\extensions\clickclean@hotcleaner.com
[2012.04.21 12:08:00 | 000,000,000 | ---D | M] (GMX Toolbar) -- C:\Dokumente und Einstellungen\Holger\Anwendungsdaten\Mozilla\Firefox\Profiles\4q0lfntj.tarnfox\extensions\toolbar@gmx.net
[2012.09.11 08:00:00 | 000,000,000 | ---D | M] (No name found) -- C:\Dokumente und Einstellungen\Holger\Anwendungsdaten\Mozilla\Firefox\Profiles\9vk9is2u.prom_unprotect1\extensions
[2012.09.11 08:00:00 | 000,000,000 | ---D | M] ("Free YouTube Download (Free Studio) Menu") -- C:\Dokumente und Einstellungen\Holger\Anwendungsdaten\Mozilla\Firefox\Profiles\9vk9is2u.prom_unprotect1\extensions\{ACAA314B-EEBA-48e4-AD47-84E31C44796C}
[2012.09.11 08:00:00 | 000,000,000 | ---D | M] (No name found) -- C:\Dokumente und Einstellungen\Holger\Anwendungsdaten\Mozilla\Firefox\Profiles\bvfimgy5.promon\extensions
[2012.09.11 08:00:00 | 000,000,000 | ---D | M] ("Free YouTube Download (Free Studio) Menu") -- C:\Dokumente und Einstellungen\Holger\Anwendungsdaten\Mozilla\Firefox\Profiles\bvfimgy5.promon\extensions\{ACAA314B-EEBA-48e4-AD47-84E31C44796C}
[2012.09.11 08:00:00 | 000,000,000 | ---D | M] (No name found) -- C:\Dokumente und Einstellungen\Holger\Anwendungsdaten\Mozilla\Firefox\Profiles\ckcdc207.promon0\extensions
[2012.09.11 08:00:00 | 000,000,000 | ---D | M] ("Free YouTube Download (Free Studio) Menu") -- C:\Dokumente und Einstellungen\Holger\Anwendungsdaten\Mozilla\Firefox\Profiles\ckcdc207.promon0\extensions\{ACAA314B-EEBA-48e4-AD47-84E31C44796C}
[2012.12.21 17:28:21 | 000,000,000 | ---D | M] (No name found) -- C:\Dokumente und Einstellungen\Holger\Anwendungsdaten\Mozilla\Firefox\Profiles\dbhia59o.promon\extensions
[2012.09.11 08:00:00 | 000,000,000 | ---D | M] (No name found) -- C:\Dokumente und Einstellungen\Holger\Anwendungsdaten\Mozilla\Firefox\Profiles\g33nspag.promon1\extensions
[2012.09.11 08:00:00 | 000,000,000 | ---D | M] ("Free YouTube Download (Free Studio) Menu") -- C:\Dokumente und Einstellungen\Holger\Anwendungsdaten\Mozilla\Firefox\Profiles\g33nspag.promon1\extensions\{ACAA314B-EEBA-48e4-AD47-84E31C44796C}
[2013.04.02 15:00:00 | 000,000,000 | ---D | M] (No name found) -- C:\Dokumente und Einstellungen\Holger\Anwendungsdaten\Mozilla\Firefox\Profiles\lvea0bb1.default\extensions
[2013.02.23 14:10:21 | 000,000,000 | ---D | M] (FireShot) -- C:\Dokumente und Einstellungen\Holger\Anwendungsdaten\Mozilla\Firefox\Profiles\lvea0bb1.default\extensions\{0b457cAA-602d-484a-8fe7-c1d894a011ba}
[2013.04.02 15:00:00 | 000,000,000 | ---D | M] ("Wisedock Europe") -- C:\Dokumente und Einstellungen\Holger\Anwendungsdaten\Mozilla\Firefox\Profiles\lvea0bb1.default\extensions\crossriderapp18220@crossrider.com
[2013.04.02 15:00:00 | 000,000,000 | ---D | M] (No name found) -- C:\Dokumente und Einstellungen\Holger\Anwendungsdaten\Mozilla\Firefox\Profiles\lvea0bb1.default\extensions\crossriderapp18220@crossrider.com\chrome\content\extensionCode
[2013.03.18 04:48:43 | 000,000,000 | ---D | M] (No name found) -- C:\Dokumente und Einstellungen\Holger\Anwendungsdaten\Mozilla\Firefox\Profiles\ml5bo3vh.promon0\extensions
[2012.12.11 19:43:25 | 000,000,000 | ---D | M] (No name found) -- C:\Dokumente und Einstellungen\Holger\Anwendungsdaten\Mozilla\Firefox\Profiles\mosqv3ax.prom_unprotect\extensions
[2012.12.12 00:52:51 | 000,000,000 | ---D | M] (No name found) -- C:\Dokumente und Einstellungen\Holger\Anwendungsdaten\Mozilla\Firefox\Profiles\mosqv3ax.prom_unprotect\extensions\staged
[2012.09.25 12:09:01 | 000,000,000 | ---D | M] (No name found) -- C:\Dokumente und Einstellungen\Holger\Anwendungsdaten\Mozilla\Firefox\Profiles\mrqzztqi.default\extensions
[2012.09.25 12:09:01 | 000,000,000 | ---D | M] (No name found) -- C:\Dokumente und Einstellungen\Holger\Anwendungsdaten\Mozilla\Firefox\Profiles\mrqzztqi.default\extensions\{f999a48b-1950-4d81-9971-79018f807b4b}
[2012.12.11 19:43:28 | 000,000,000 | ---D | M] (No name found) -- C:\Dokumente und Einstellungen\Holger\Anwendungsdaten\Mozilla\Firefox\Profiles\p6hiihlb.prom_unprotect0\extensions
[2012.12.12 00:52:52 | 000,000,000 | ---D | M] (No name found) -- C:\Dokumente und Einstellungen\Holger\Anwendungsdaten\Mozilla\Firefox\Profiles\p6hiihlb.prom_unprotect0\extensions\staged
[2012.09.11 08:00:00 | 000,000,000 | ---D | M] (No name found) -- C:\Dokumente und Einstellungen\Holger\Anwendungsdaten\Mozilla\Firefox\Profiles\pltf7c46.prom_unprotect0\extensions
[2012.09.11 08:00:00 | 000,000,000 | ---D | M] ("Free YouTube Download (Free Studio) Menu") -- C:\Dokumente und Einstellungen\Holger\Anwendungsdaten\Mozilla\Firefox\Profiles\pltf7c46.prom_unprotect0\extensions\{ACAA314B-EEBA-48e4-AD47-84E31C44796C}
[2012.09.11 08:00:00 | 000,000,000 | ---D | M] (No name found) -- C:\Dokumente und Einstellungen\Holger\Anwendungsdaten\Mozilla\Firefox\Profiles\vlp9807z.prom_unprotect\extensions
[2012.09.11 08:00:00 | 000,000,000 | ---D | M] ("Free YouTube Download (Free Studio) Menu") -- C:\Dokumente und Einstellungen\Holger\Anwendungsdaten\Mozilla\Firefox\Profiles\vlp9807z.prom_unprotect\extensions\{ACAA314B-EEBA-48e4-AD47-84E31C44796C}
[2012.09.11 08:00:00 | 000,000,000 | ---D | M] (No name found) -- C:\Dokumente und Einstellungen\Holger\Anwendungsdaten\Mozilla\Firefox\Profiles\x99wym5w.prom_unprotect2\extensions
[2012.09.11 08:00:00 | 000,000,000 | ---D | M] ("Free YouTube Download (Free Studio) Menu") -- C:\Dokumente und Einstellungen\Holger\Anwendungsdaten\Mozilla\Firefox\Profiles\x99wym5w.prom_unprotect2\extensions\{ACAA314B-EEBA-48e4-AD47-84E31C44796C}
[2012.03.30 13:05:12 | 000,035,695 | ---- | M] () (No name found) -- C:\Dokumente und Einstellungen\Holger\Anwendungsdaten\Mozilla\Firefox\Profiles\4q0lfntj.tarnfox\extensions\facebook@disconnect.me.xpi
[2012.04.02 11:04:40 | 000,255,045 | ---- | M] () (No name found) -- C:\Dokumente und Einstellungen\Holger\Anwendungsdaten\Mozilla\Firefox\Profiles\4q0lfntj.tarnfox\extensions\jid1-F9UJ2thwoAm5gQ@jetpack.xpi
[2012.03.30 13:05:12 | 000,008,503 | ---- | M] () (No name found) -- C:\Dokumente und Einstellungen\Holger\Anwendungsdaten\Mozilla\Firefox\Profiles\4q0lfntj.tarnfox\extensions\longurlplease@darragh.curran.xpi
[2012.03.30 13:05:12 | 000,048,898 | ---- | M] () (No name found) -- C:\Dokumente und Einstellungen\Holger\Anwendungsdaten\Mozilla\Firefox\Profiles\4q0lfntj.tarnfox\extensions\stealthyextension@gmail.com.xpi
[2012.03.30 13:05:12 | 000,049,540 | ---- | M] () (No name found) -- C:\Dokumente und Einstellungen\Holger\Anwendungsdaten\Mozilla\Firefox\Profiles\4q0lfntj.tarnfox\extensions\trackerblock@privacychoice.org.xpi
[2012.03.30 13:05:12 | 000,521,058 | ---- | M] () (No name found) -- C:\Dokumente und Einstellungen\Holger\Anwendungsdaten\Mozilla\Firefox\Profiles\4q0lfntj.tarnfox\extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}.xpi
[2012.03.30 13:05:12 | 000,634,964 | ---- | M] () (No name found) -- C:\Dokumente und Einstellungen\Holger\Anwendungsdaten\Mozilla\Firefox\Profiles\4q0lfntj.tarnfox\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
[2013.01.14 18:02:11 | 000,243,287 | ---- | M] () (No name found) -- C:\Dokumente und Einstellungen\Holger\Anwendungsdaten\Mozilla\Firefox\Profiles\lvea0bb1.default\extensions\amznUWL2@amazon.com.xpi
[2013.01.20 11:14:05 | 000,538,938 | ---- | M] () (No name found) -- C:\Dokumente und Einstellungen\Holger\Anwendungsdaten\Mozilla\Firefox\Profiles\lvea0bb1.default\extensions\toolbar@web.de.xpi
[2013.02.28 19:10:03 | 000,023,087 | ---- | M] () (No name found) -- C:\Dokumente und Einstellungen\Holger\Anwendungsdaten\Mozilla\Firefox\Profiles\lvea0bb1.default\extensions\{5B52016C-D097-4aec-BE61-9F129D8FDDBA}.xpi
[2012.09.28 18:34:43 | 000,741,958 | ---- | M] () (No name found) -- C:\Dokumente und Einstellungen\Holger\Anwendungsdaten\Mozilla\Firefox\Profiles\lvea0bb1.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
[2013.02.25 21:23:24 | 000,773,913 | ---- | M] () (No name found) -- C:\Dokumente und Einstellungen\Holger\Anwendungsdaten\Mozilla\Firefox\Profiles\lvea0bb1.default\extensions\{e0204bd5-9d31-402b-a99d-a6aa8ffebdca}.xpi
[2012.09.19 13:28:48 | 000,243,287 | ---- | M] () (No name found) -- C:\Dokumente und Einstellungen\Holger\Anwendungsdaten\Mozilla\Firefox\Profiles\mrqzztqi.default\extensions\amznUWL2@amazon.com.xpi
[2012.07.14 19:50:11 | 000,140,964 | ---- | M] () (No name found) -- C:\Dokumente und Einstellungen\Holger\Anwendungsdaten\Mozilla\Firefox\Profiles\mrqzztqi.default\extensions\firegestures@xuldev.org.xpi
[2012.04.27 15:21:10 | 000,272,844 | ---- | M] () (No name found) -- C:\Dokumente und Einstellungen\Holger\Anwendungsdaten\Mozilla\Firefox\Profiles\mrqzztqi.default\extensions\jid1-F9UJ2thwoAm5gQ@jetpack.xpi
[2011.07.30 18:01:00 | 000,061,647 | ---- | M] () (No name found) -- C:\Dokumente und Einstellungen\Holger\Anwendungsdaten\Mozilla\Firefox\Profiles\mrqzztqi.default\extensions\sparweltgutscheine@sparwelt.de.xpi
[2012.09.11 09:22:29 | 000,010,285 | ---- | M] () (No name found) -- C:\Dokumente und Einstellungen\Holger\Anwendungsdaten\Mozilla\Firefox\Profiles\mrqzztqi.default\extensions\{20cc25e2-48c9-45e1-9a1f-1ccc1882b81b}.xpi
[2012.08.12 17:18:01 | 000,041,278 | ---- | M] () (No name found) -- C:\Dokumente und Einstellungen\Holger\Anwendungsdaten\Mozilla\Firefox\Profiles\mrqzztqi.default\extensions\{2e61e246-e640-4c56-b1ed-f146dbed48cd}.xpi
[2012.07.24 15:47:48 | 000,276,167 | ---- | M] () (No name found) -- C:\Dokumente und Einstellungen\Holger\Anwendungsdaten\Mozilla\Firefox\Profiles\mrqzztqi.default\extensions\{64161300-e22b-11db-8314-0800200c9a66}.xpi
[2012.09.11 17:19:01 | 000,095,628 | ---- | M] () (No name found) -- C:\Dokumente und Einstellungen\Holger\Anwendungsdaten\Mozilla\Firefox\Profiles\mrqzztqi.default\extensions\{7a88e876-d715-4503-a7bf-a8eba13ca3f9}.xpi
[2012.08.13 19:58:52 | 000,061,403 | ---- | M] () (No name found) -- C:\Dokumente und Einstellungen\Holger\Anwendungsdaten\Mozilla\Firefox\Profiles\mrqzztqi.default\extensions\{9AA46F4F-4DC7-4c06-97AF-5035170634FE}.xpi
[2012.07.25 13:02:59 | 000,741,958 | ---- | M] () (No name found) -- C:\Dokumente und Einstellungen\Holger\Anwendungsdaten\Mozilla\Firefox\Profiles\mrqzztqi.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
[2012.07.06 01:45:58 | 000,395,892 | ---- | M] () (No name found) -- C:\Dokumente und Einstellungen\Holger\Anwendungsdaten\Mozilla\Firefox\Profiles\mrqzztqi.default\extensions\{d49175b3-3fd8-43b8-b28e-da5d47f3c398}.xpi
[2012.03.29 15:06:36 | 000,685,019 | ---- | M] () (No name found) -- C:\Dokumente und Einstellungen\Holger\Anwendungsdaten\Mozilla\Firefox\Profiles\mrqzztqi.default\extensions\{ef4e370e-d9f0-4e00-b93e-a4f274cfdd5a}.xpi
[2012.11.08 09:04:04 | 000,000,911 | ---- | M] () -- C:\Dokumente und Einstellungen\Holger\Anwendungsdaten\Mozilla\Firefox\Profiles\lvea0bb1.default\searchplugins\11-suche.xml
[2013.03.11 11:50:23 | 000,002,337 | ---- | M] () -- C:\Dokumente und Einstellungen\Holger\Anwendungsdaten\Mozilla\Firefox\Profiles\lvea0bb1.default\searchplugins\askcom.xml
[2012.11.08 09:04:04 | 000,002,273 | ---- | M] () -- C:\Dokumente und Einstellungen\Holger\Anwendungsdaten\Mozilla\Firefox\Profiles\lvea0bb1.default\searchplugins\englische-ergebnisse.xml
[2012.11.08 09:04:04 | 000,010,563 | ---- | M] () -- C:\Dokumente und Einstellungen\Holger\Anwendungsdaten\Mozilla\Firefox\Profiles\lvea0bb1.default\searchplugins\gmx-suche.xml
[2012.11.08 09:04:04 | 000,002,432 | ---- | M] () -- C:\Dokumente und Einstellungen\Holger\Anwendungsdaten\Mozilla\Firefox\Profiles\lvea0bb1.default\searchplugins\lastminute.xml
[2012.11.08 09:04:04 | 000,005,545 | ---- | M] () -- C:\Dokumente und Einstellungen\Holger\Anwendungsdaten\Mozilla\Firefox\Profiles\lvea0bb1.default\searchplugins\webde-suche.xml
[2013.04.03 18:07:20 | 000,000,000 | ---D | M] (No name found) -- C:\Programme\Mozilla Firefox\extensions
[2013.04.03 18:07:20 | 000,000,000 | ---D | M] (Java Console) -- C:\Programme\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA}
[2013.04.03 18:07:20 | 000,000,000 | ---D | M] (Anti-Banner) -- C:\Programme\Mozilla Firefox\extensions\KavAntiBanner@kaspersky.ru_bak2
[2013.04.03 18:07:20 | 000,000,000 | ---D | M] (Modul zur Link-Untersuchung) -- C:\Programme\Mozilla Firefox\extensions\linkfilter@kaspersky.ru_bak2
[2013.04.03 18:07:21 | 000,000,000 | ---D | M] (No name found) -- C:\Programme\Mozilla Firefox\Mozilla Firefox\extensions
[2013.04.03 18:07:21 | 000,000,000 | ---D | M] (Java Console) -- C:\Programme\Mozilla Firefox\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA}
[2013.04.03 18:07:21 | 000,000,000 | ---D | M] (Anti-Banner) -- C:\Programme\Mozilla Firefox\Mozilla Firefox\extensions\KavAntiBanner@kaspersky.ru_bak2
[2013.04.03 18:07:21 | 000,000,000 | ---D | M] (Modul zur Link-Untersuchung) -- C:\Programme\Mozilla Firefox\Mozilla Firefox\extensions\linkfilter@kaspersky.ru_bak2
[2013.03.12 10:47:05 | 000,000,000 | ---D | M] (PDF Architect Converter For Firefox) -- C:\PROGRAMME\PDF ARCHITECT\FFPDFARCHITECTEXT
[2013.04.03 18:07:33 | 000,263,064 | ---- | M] (Mozilla Foundation) -- C:\Programme\mozilla firefox\components\browsercomps.dll
[2012.06.20 18:14:20 | 000,012,800 | ---- | M] (Nullsoft, Inc.) -- C:\Programme\mozilla firefox\plugins\npwachk.dll
[2013.02.23 14:09:09 | 000,001,392 | ---- | M] () -- C:\Programme\mozilla firefox\searchplugins\amazondotcom-de.xml
[2013.02.23 14:09:09 | 000,002,465 | ---- | M] () -- C:\Programme\mozilla firefox\searchplugins\bing.xml
[2009.09.21 12:24:16 | 000,001,329 | ---- | M] () -- C:\Programme\mozilla firefox\searchplugins\crawlersrch.xml
[2013.02.23 14:09:09 | 000,001,153 | ---- | M] () -- C:\Programme\mozilla firefox\searchplugins\eBay-de.xml
[2010.12.13 14:36:54 | 000,002,035 | ---- | M] () -- C:\Programme\mozilla firefox\searchplugins\fcmdSrchddr.xml
[2013.02.23 14:09:09 | 000,006,805 | ---- | M] () -- C:\Programme\mozilla firefox\searchplugins\leo_ende_de.xml
[2013.02.23 14:09:09 | 000,001,178 | ---- | M] () -- C:\Programme\mozilla firefox\searchplugins\wikipedia-de.xml
[2013.02.23 14:09:09 | 000,001,105 | ---- | M] () -- C:\Programme\mozilla firefox\searchplugins\yahoo-de.xml
========== Chrome ==========
CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}ie={inputEncoding}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&q={searchTerms}&{google:cursorPosition}sugkey={google:suggestAPIKeyParameter},
CHR - homepage: hxxp://www.web.de/
CHR - plugin: Remoting Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Dokumente und Einstellungen\Holger\Lokale Einstellungen\Anwendungsdaten\Google\Chrome\Application\25.0.1364.172\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Dokumente und Einstellungen\Holger\Lokale Einstellungen\Anwendungsdaten\Google\Chrome\Application\25.0.1364.172\pdf.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Dokumente und Einstellungen\Holger\Lokale Einstellungen\Anwendungsdaten\Google\Chrome\Application\25.0.1364.172\gcswf32.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_2_202_235.dll
CHR - plugin: Bitdefender QuickScan (Enabled) = C:\Dokumente und Einstellungen\Holger\Lokale Einstellungen\Anwendungsdaten\Google\Chrome\User Data\Default\Extensions\pdnkcidphdcakpkheohlhocaicfamjie\0.9.9.114_0\npqscan.dll
CHR - plugin: Adobe Acrobat (Disabled) = C:\Programme\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll
CHR - plugin: RealPlayer(tm) G2 LiveConnect-Enabled Plug-In (32-bit) (Enabled) = C:\Programme\Mozilla Firefox 4.0 Beta 11\plugins\nppl3260.dll
CHR - plugin: RealPlayer Version Plugin (Enabled) = C:\Programme\Mozilla Firefox 4.0 Beta 11\plugins\nprpjplug.dll
CHR - plugin: RealNetworks(tm) RealPlayer Chrome Background Extension Plug-In (32-bit) (Enabled) = C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprpchromebrowserrecordext.dll
CHR - plugin: RealPlayer(tm) HTML5VideoShim Plug-In (32-bit) (Enabled) = C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll
CHR - plugin: RealJukebox NS Plugin (Enabled) = C:\Programme\Mozilla Firefox 4.0 Beta 11\plugins\nprjplug.dll
CHR - plugin: Winamp Application Detector (Enabled) = C:\Programme\Mozilla Firefox\plugins\npwachk.dll
CHR - plugin: Java Deployment Toolkit 6.0.310.5 (Enabled) = C:\Programme\Mozilla Firefox\plugins\npdeployJava1.dll
CHR - plugin: Java(TM) Platform SE 6 U31 (Enabled) = C:\Programme\Java\jre6\bin\plugin2\npjp2.dll
CHR - plugin: QuickTime Plug-in 7.7.1 (Enabled) = C:\Programme\Mozilla Firefox\plugins\npqtplugin.dll
CHR - plugin: QuickTime Plug-in 7.7.1 (Enabled) = C:\Programme\Mozilla Firefox\plugins\npqtplugin2.dll
CHR - plugin: QuickTime Plug-in 7.7.1 (Enabled) = C:\Programme\Mozilla Firefox\plugins\npqtplugin3.dll
CHR - plugin: QuickTime Plug-in 7.7.1 (Enabled) = C:\Programme\Mozilla Firefox\plugins\npqtplugin4.dll
CHR - plugin: QuickTime Plug-in 7.7.1 (Enabled) = C:\Programme\Mozilla Firefox\plugins\npqtplugin5.dll
CHR - plugin: QuickTime Plug-in 7.7.1 (Enabled) = C:\Programme\Mozilla Firefox\plugins\npqtplugin6.dll
CHR - plugin: QuickTime Plug-in 7.7.1 (Enabled) = C:\Programme\Mozilla Firefox\plugins\npqtplugin7.dll
CHR - plugin: Microsoft DRM (Enabled) = C:\Programme\Windows Media Player\npdrmv2.dll
CHR - plugin: Microsoft DRM (Enabled) = C:\Programme\Windows Media Player\npwmsdrm.dll
CHR - plugin: Windows Media Player Plug-in Dynamic Link Library (Enabled) = C:\Programme\Windows Media Player\npdsplay.dll
CHR - plugin: Google Update (Enabled) = C:\Dokumente und Einstellungen\Holger\Lokale Einstellungen\Anwendungsdaten\Google\Update\1.3.21.111\npGoogleUpdate3.dll
CHR - plugin: CANON iMAGE GATEWAY Album Plugin Utility (Enabled) = C:\Programme\Canon\Easy-PhotoPrint EX\NPEZFFPI.DLL
CHR - plugin: DivX VOD Helper Plug-in (Enabled) = C:\Programme\DivX\DivX OVS Helper\npovshelper.dll
CHR - plugin: DivX Plus Web Player (Enabled) = C:\Programme\DivX\DivX Plus Web Player\npdivx32.dll
CHR - plugin: AVG SiteSafety plugin (Enabled) = C:\Programme\Gemeinsame Dateien\AVG Secure Search\SiteSafetyInstaller\11.0.2\\npsitesafety.dll
CHR - plugin: Google Earth Plugin (Enabled) = C:\Programme\Google\Google Earth\plugin\npgeplugin.dll
CHR - plugin: Veetle TV Player (Enabled) = C:\Programme\Veetle\Player\npvlc.dll
CHR - plugin: Veetle TV Core (Enabled) = C:\Programme\Veetle\plugins\npVeetle.dll
CHR - plugin: VLC Web Plugin (Enabled) = C:\Programme\VideoLAN\VLC\npvlc.dll
CHR - plugin: iTunes Application Detector (Enabled) = C:\Programme\iTunes\Mozilla Plugins\npitunes.dll
CHR - plugin: Shockwave for Director (Enabled) = C:\WINDOWS\system32\Adobe\Director\np32dsw.dll
CHR - plugin: Silverlight Plug-In (Enabled) = c:\Programme\Microsoft Silverlight\5.1.10411.0\npctrl.dll
CHR - plugin: Windows Presentation Foundation (Enabled) = c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
CHR - Extension: YouTube = C:\Dokumente und Einstellungen\Holger\Lokale Einstellungen\Anwendungsdaten\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_2\
CHR - Extension: Webseiten-Screenshot - Webpage Screenshot = C:\Dokumente und Einstellungen\Holger\Lokale Einstellungen\Anwendungsdaten\Google\Chrome\User Data\Default\Extensions\ckibcdccnfeookdmbahgiakhnjcddpki\7.3_0\
CHR - Extension: Google-Suche = C:\Dokumente und Einstellungen\Holger\Lokale Einstellungen\Anwendungsdaten\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_2\
CHR - Extension: AdBlock = C:\Dokumente und Einstellungen\Holger\Lokale Einstellungen\Anwendungsdaten\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.5.61_0\
CHR - Extension: Norton Identity Protection = C:\Dokumente und Einstellungen\Holger\Lokale Einstellungen\Anwendungsdaten\Google\Chrome\User Data\Default\Extensions\mkfokfffehpeedafpekjeddnmnjhmcmk\2013.3.2.10_0\
CHR - Extension: DvdVideoSoft Free Youtube Download = C:\Dokumente und Einstellungen\Holger\Lokale Einstellungen\Anwendungsdaten\Google\Chrome\User Data\Default\Extensions\nikpibnbobmbdbheedjfogjlikpgpnhp\1.0.0.0_0\
CHR - Extension: Google Mail = C:\Dokumente und Einstellungen\Holger\Lokale Einstellungen\Anwendungsdaten\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_2\
O1 HOSTS File: ([2013.02.13 14:53:48 | 000,000,863 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: 127.0.0.1 www.google-analytics.com
O1 - Hosts: 127.0.0.1 google-analytics.com
O2 - BHO: (Adobe PDF Reader) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Programme\Gemeinsame Dateien\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
O2 - BHO: (Adobe PDF Link Helper) - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Programme\Gemeinsame Dateien\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
O2 - BHO: (Canon Easy-WebPrint EX BHO) - {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} - C:\Programme\Canon\Easy-WebPrint EX\ewpexbho.dll (CANON INC.)
O2 - BHO: (PDF Architect Helper) - {3A2D5EBA-F86D-4BD3-A177-019765996711} - C:\Programme\PDF Architect\PDFIEHelper.dll (pdfforge GbR)
O2 - BHO: (Ashampoo DE Toolbar) - {5786d022-540e-4699-b350-b4be0ae94b79} - C:\Programme\Ashampoo_DE\prxtbAsha.dll (Conduit Ltd.)
O2 - BHO: (Norton Identity Protection) - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Programme\Norton Internet Security CBE\Engine\20.3.0.36\coieplg.dll (Symantec Corporation)
O2 - BHO: (CescrtHlpr Object) - {64182481-4F71-486b-A045-B233BD0DA8FC} - C:\Programme\facemoods.com\facemoods\1.4.17.3\bh\facemoods.dll (facemoods.com BHO)
O2 - BHO: (Norton Vulnerability Protection) - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Programme\Norton Internet Security CBE\Engine\20.3.0.36\ips\ipsbho.dll (Symantec Corporation)
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Programme\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (Password Depot 6) - {9F79B165-70F7-4C46-B1A5-8828E2FF21F9} - C:\Programme\AceBIT\Password Depot 6\pdIEAddOn32.dll ()
O2 - BHO: (Adobe PDF Conversion Toolbar Helper) - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Programme\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Programme\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O3 - HKLM\..\Toolbar: (PDF Architect Toolbar) - {25A3A431-30BB-47C8-AD6A-E1063801134F} - C:\Programme\PDF Architect\PDFIEPlugin.dll (pdfforge GbR)
O3 - HKLM\..\Toolbar: (Adobe PDF) - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Programme\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O3 - HKLM\..\Toolbar: (Ashampoo DE Toolbar) - {5786d022-540e-4699-b350-b4be0ae94b79} - C:\Programme\Ashampoo_DE\prxtbAsha.dll (Conduit Ltd.)
O3 - HKLM\..\Toolbar: (FireShot) - {6E6E744E-4D20-4ce3-9A7A-26DFFFE22F68} - C:\Dokumente und Einstellungen\Holger\Anwendungsdaten\Mozilla\Firefox\Profiles\lvea0bb1.default\extensions\{0b457cAA-602d-484a-8fe7-c1d894a011ba}\library\fsaddin-0.98.20.dll File not found
O3 - HKLM\..\Toolbar: (Canon Easy-WebPrint EX) - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Programme\Canon\Easy-WebPrint EX\ewpexhlp.dll (CANON INC.)
O3 - HKLM\..\Toolbar: (Norton Toolbar) - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Programme\Norton Internet Security CBE\Engine\20.3.0.36\coieplg.dll (Symantec Corporation)
O3 - HKLM\..\Toolbar: (facemoods Toolbar) - {DB4E9724-F518-4dfd-9C7C-78B52103CAB9} - C:\Programme\facemoods.com\facemoods\1.4.17.3\facemoodsTlbr.dll (facemoods.com)
O3 - HKCU\..\Toolbar\WebBrowser: (Adobe PDF) - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Programme\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O3 - HKCU\..\Toolbar\WebBrowser: (Ashampoo DE Toolbar) - {5786D022-540E-4699-B350-B4BE0AE94B79} - C:\Programme\Ashampoo_DE\prxtbAsha.dll (Conduit Ltd.)
O3 - HKCU\..\Toolbar\WebBrowser: (Canon Easy-WebPrint EX) - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Programme\Canon\Easy-WebPrint EX\ewpexhlp.dll (CANON INC.)
O3 - HKCU\..\Toolbar\WebBrowser: (Norton Toolbar) - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Programme\Norton Internet Security CBE\Engine\20.3.0.36\coieplg.dll (Symantec Corporation)
O4 - HKLM..\Run: [Adobe ARM] C:\Programme\Gemeinsame Dateien\Adobe\ARM\1.0\AdobeARM.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [Adobe Version Cue CS2] c:\Programme\Adobe\Adobe Version Cue CS2\ControlPanel\VersionCueCS2Tray.exe (Adobe Sytems Incorporated)
O4 - HKLM..\Run: [SunJavaUpdateSched] C:\Programme\Gemeinsame Dateien\Java\Java Update\jusched.exe (Sun Microsystems, Inc.)
O4 - HKCU..\Run: [] C:\Programme\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe (Samsung)
O4 - HKCU..\Run: [Free Hide IP] C:\Programme\FreeHideIP\FreeHideIP.exe File not found
O4 - Startup: C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Autostart\11g Wireless LAN Utility.lnk = C:\Programme\LevelOne\11g Wireless LAN\WLanUtility.exe (LevelOne)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O8 - Extra context menu item: Ausgewählte Verknüpfungen in Adobe PDF konvertieren - C:\Programme\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Ausgewählte Verknüpfungen in vorhandene PDF-Datei konvertieren - C:\Programme\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Auswahl in Adobe PDF konvertieren - C:\Programme\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Auswahl in vorhandene PDF-Datei konvertieren - C:\Programme\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Free YouTube Download - C:\Dokumente und Einstellungen\Holger\Anwendungsdaten\DVDVideoSoftIEHelpers\freeytvdownloader.htm ()
O8 - Extra context menu item: Free YouTube to MP3 Converter - C:\Dokumente und Einstellungen\Holger\Anwendungsdaten\DVDVideoSoftIEHelpers\freeyoutubetomp3converter.htm ()
O8 - Extra context menu item: In Adobe PDF konvertieren - C:\Programme\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: In vorhandene PDF-Datei konvertieren - C:\Programme\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Verknüpfungsziel in Adobe PDF konvertieren - C:\Programme\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Verknüpfungsziel in vorhandene PDF-Datei konvertieren - C:\Programme\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O9 - Extra Button: Password Depot 6 - {9F79B165-70F7-4C46-B1A5-8828E2FF21F9} - C:\Programme\AceBIT\Password Depot 6\PasswordDepot.exe (AceBIT GmbH)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_33-windows-i586.cab (Reg Error: Value error.)
O16 - DPF: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab (Java Plug-in 1.6.0_22)
O16 - DPF: {CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_33-windows-i586.cab (Java Plug-in 1.6.0_33)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_33-windows-i586.cab (Java Plug-in 1.6.0_33)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{55D00EF2-F7A9-4732-8313-BEE9EFA1CB57}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{77DB54F0-AA93-4DD9-A8F4-291777B14354}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{77DB54F0-AA93-4DD9-A8F4-291777B14354}: NameServer = 8.26.56.26,156.154.70.22
O18 - Protocol\Handler\ipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Programme\Gemeinsame Dateien\Skype\Skype4COM.dll (Skype Technologies)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) - C:\WINDOWS\system32\userinit.exe (Microsoft Corporation)
O20 - Winlogon\Notify\AtiExtEvent: DllName - (Ati2evxx.dll) - C:\WINDOWS\System32\ati2evxx.dll (ATI Technologies Inc.)
O24 - Desktop Components:0 (Die derzeitige Homepage) - About:Home
O24 - Desktop WallPaper: C:\Dokumente und Einstellungen\Holger\Anwendungsdaten\Ashampoo Photo Commander 8\Ashampoo Photo Commander Wallpaper.bmp
O24 - Desktop BackupWallPaper: C:\Dokumente und Einstellungen\Holger\Anwendungsdaten\Ashampoo Photo Commander 8\Ashampoo Photo Commander Wallpaper.bmp
O27 - HKLM IFEO\acrobat.exe: Debugger - C:\Programme\TuneUp Utilities 2012\TUAutoReactivator32.exe (TuneUp Software)
O27 - HKLM IFEO\acrobat_sl.exe: Debugger - C:\Programme\TuneUp Utilities 2012\TUAutoReactivator32.exe (TuneUp Software)
O27 - HKLM IFEO\acrodist.exe: Debugger - C:\Programme\TuneUp Utilities 2012\TUAutoReactivator32.exe (TuneUp Software)
O27 - HKLM IFEO\cgcclient.exe: Debugger - C:\Programme\TuneUp Utilities 2012\TUAutoReactivator32.exe (TuneUp Software)
O27 - HKLM IFEO\formdesigner.exe: Debugger - C:\Programme\TuneUp Utilities 2012\TUAutoReactivator32.exe (TuneUp Software)
O27 - HKLM IFEO\googledrivesync.exe: Debugger - C:\Programme\TuneUp Utilities 2012\TUAutoReactivator32.exe (TuneUp Software)
O27 - HKLM IFEO\itunes.exe: Debugger - C:\Programme\TuneUp Utilities 2012\TUAutoReactivator32.exe (TuneUp Software)
O27 - HKLM IFEO\netviewer.exe: Debugger - C:\Programme\TuneUp Utilities 2012\TUAutoReactivator32.exe (TuneUp Software)
O27 - HKLM IFEO\sandra.exe: Debugger - C:\Programme\TuneUp Utilities 2012\TUAutoReactivator32.exe (TuneUp Software)
O27 - HKLM IFEO\scrconfig.exe: Debugger - C:\Programme\TuneUp Utilities 2012\TUAutoReactivator32.exe (TuneUp Software)
O27 - HKLM IFEO\slphoto.exe: Debugger - C:\Programme\TuneUp Utilities 2012\TUAutoReactivator32.exe (TuneUp Software)
O27 - HKLM IFEO\smkonv.exe: Debugger - C:\Programme\TuneUp Utilities 2012\TUAutoReactivator32.exe (TuneUp Software)
O27 - HKLM IFEO\softwareupdate.exe: Debugger - C:\Programme\TuneUp Utilities 2012\TUAutoReactivator32.exe (TuneUp Software)
O27 - HKLM IFEO\startstarmoney.exe: Debugger - C:\Programme\TuneUp Utilities 2012\TUAutoReactivator32.exe (TuneUp Software)
O27 - HKLM IFEO\support.exe: Debugger - C:\Programme\TuneUp Utilities 2012\TUAutoReactivator32.exe (TuneUp Software)
O27 - HKLM IFEO\unins000.exe: Debugger - C:\Programme\TuneUp Utilities 2012\TUAutoReactivator32.exe (TuneUp Software)
O27 - HKLM IFEO\wyupdate.exe: Debugger - C:\Programme\TuneUp Utilities 2012\TUAutoReactivator32.exe (TuneUp Software)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2011.02.01 02:51:37 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O32 - AutoRun File - [2009.08.01 11:49:04 | 000,000,025 | -HS- | M] () - C:\autorun.inf -- [ NTFS ]
O33 - MountPoints2\{8b338741-2d92-11e0-967b-806d6172696f}\Shell - "" = AutoRun
O33 - MountPoints2\{8b338741-2d92-11e0-967b-806d6172696f}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{8b338741-2d92-11e0-967b-806d6172696f}\Shell\AutoRun\command - "" = D:\ASRSetup.exe
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
========== Files/Folders - Created Within 30 Days ==========
[2013.12.05 12:36:10 | 000,000,000 | ---D | C] -- C:\Programme\Sunbelt Software
[2013.12.04 19:12:08 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\CPA_VA
[2013.12.04 19:00:57 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Comodo
[2013.12.04 19:00:53 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\Holger\Lokale Einstellungen\Anwendungsdaten\COMODO
[2013.04.03 18:07:19 | 000,000,000 | ---D | C] -- C:\Programme\Mozilla Firefox
[2013.04.02 19:06:10 | 000,000,000 | RH-D | C] -- C:\Dokumente und Einstellungen\Holger\Recent
[2013.04.02 01:17:15 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\Holger\Eigene Dateien\My Videos
[2013.03.29 02:11:04 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\All Users\Dokumente\CrashDump
[2013.03.27 13:03:05 | 000,388,608 | ---- | C] (Trend Micro Inc.) -- C:\Dokumente und Einstellungen\Holger\Desktop\HiJackThis204.exe
[2013.03.24 19:44:59 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\Holger\Anwendungsdaten\PDF Architect
[2013.03.12 10:47:50 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\Holger\Eigene Dateien\PDF Architect Files
[2013.03.12 10:47:14 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\PDF Architect
[2013.03.12 10:46:54 | 000,000,000 | ---D | C] -- C:\Programme\PDF Architect
[2013.03.12 10:46:06 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\PDFCreator
[2013.03.12 10:46:04 | 000,137,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\MSMAPI32.OCX
[2013.03.12 10:46:03 | 000,088,576 | ---- | C] (pdfforge GbR) -- C:\WINDOWS\System32\pdfcmon.dll
[2013.03.12 10:46:02 | 000,158,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\MSCMCDE.DLL
[2013.03.12 10:46:02 | 000,125,712 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\VB6DE.DLL
[2013.03.12 10:46:01 | 000,064,512 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\MSCC2DE.DLL
[2013.03.12 10:46:01 | 000,023,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\MSMPIDE.DLL
[2013.03.11 11:45:36 | 000,262,560 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\System32\javaws.exe
[2013.03.11 11:45:15 | 000,174,496 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\System32\javaw.exe
[2013.03.11 11:45:15 | 000,174,496 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\System32\java.exe
[2013.03.11 11:45:15 | 000,094,112 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\System32\WindowsAccessBridge.dll
[2013.03.08 12:18:15 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\Holger\Desktop\Odin3-v1.85
[2013.03.07 17:38:12 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Rockstar Games
[2013.03.07 17:37:58 | 000,000,000 | ---D | C] -- C:\Programme\Rockstar Games
[2013.03.07 17:37:36 | 000,303,616 | ---- | C] (InstallShield Software Corporation) -- C:\WINDOWS\IsUninst.exe
[2013.03.07 17:37:33 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\Holger\WINDOWS
[2013.03.07 14:38:58 | 000,083,168 | ---- | C] (DEVGURU Co., LTD.(www.devguru.co.kr)) -- C:\WINDOWS\System32\drivers\ssudbus.sys
[2013.03.07 14:38:57 | 001,112,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\WdfCoInstaller01007.dll
[2013.03.07 14:38:57 | 000,581,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\WinUSBCoInstaller.dll
[2013.03.07 11:46:08 | 000,142,496 | ---- | C] (Symantec Corporation) -- C:\WINDOWS\System32\drivers\SYMEVENT.SYS
[2013.03.07 11:46:08 | 000,000,000 | ---D | C] -- C:\Programme\Gemeinsame Dateien\Symantec Shared
[2013.03.07 11:46:08 | 000,000,000 | ---D | C] -- C:\Programme\Symantec
[2013.03.07 11:45:37 | 000,000,000 | ---D | C] -- C:\Programme\Norton Internet Security CBE
[2013.03.07 11:44:22 | 000,000,000 | ---D | C] -- C:\Programme\NortonInstaller
[2013.03.06 02:02:30 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\Holger\Eigene Dateien\Herbal Shop Bestellnummer 20246-Dateien
[2012.04.18 16:47:07 | 010,134,560 | ---- | C] (LastPass) -- C:\Programme\Gemeinsame Dateien\lpuninstall.exe
[2011.04.18 22:51:20 | 000,653,136 | ---- | C] (Microsoft Corporation) -- C:\Programme\Gemeinsame Dateien\MSVCR90.dll
[2011.04.18 22:51:20 | 000,569,680 | ---- | C] (Microsoft Corporation) -- C:\Programme\Gemeinsame Dateien\MSVCP90.dll
[2010.12.16 21:39:36 | 000,302,592 | ---- | C] (Google) -- C:\Programme\Gemeinsame Dateien\webmmux.dll
[2010.12.16 21:39:16 | 000,701,440 | ---- | C] (Google) -- C:\Programme\Gemeinsame Dateien\vp8encoder.dll
[2010.12.16 21:39:16 | 000,412,672 | ---- | C] (Google) -- C:\Programme\Gemeinsame Dateien\vp8decoder.dll
[2010.12.16 21:39:14 | 000,292,352 | ---- | C] (Google) -- C:\Programme\Gemeinsame Dateien\webmsplit.dll
[7 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[1 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[1 C:\Dokumente und Einstellungen\Holger\Lokale Einstellungen\Anwendungsdaten\*.tmp files -> C:\Dokumente und Einstellungen\Holger\Lokale Einstellungen\Anwendungsdaten\*.tmp -> ]
========== Files - Modified Within 30 Days ==========
[2013.04.17 10:44:03 | 000,041,984 | ---- | M] () -- C:\Dokumente und Einstellungen\Holger\Lokale Einstellungen\Anwendungsdaten\WebpageIcons.db
[2013.04.14 12:59:45 | 000,000,673 | ---- | M] () -- C:\Dokumente und Einstellungen\All Users\Desktop\CCleaner.lnk
[2013.04.03 18:50:00 | 000,000,884 | ---- | M] () -- C:\WINDOWS\tasks\Adobe Flash Player Updater.job
[2013.04.03 18:13:00 | 000,001,090 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2013.04.03 16:03:25 | 000,000,116 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini
[2013.04.03 14:22:00 | 000,000,256 | ---- | M] () -- C:\WINDOWS\tasks\pcupdater_UPDATES.job
[2013.04.03 12:56:36 | 000,052,535 | ---- | M] () -- C:\Dokumente und Einstellungen\Holger\Desktop\Blaue Berge.jpg
[2013.04.03 11:33:47 | 000,001,086 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2013.04.03 11:33:42 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2013.04.02 01:18:25 | 000,002,765 | ---- | M] () -- C:\Dokumente und Einstellungen\All Users\Desktop\ACDSee Pro 3.lnk
[2013.03.31 22:58:49 | 000,013,646 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2013.03.29 03:34:15 | 000,001,945 | ---- | M] () -- C:\Dokumente und Einstellungen\Holger\Desktop\Kies Air Discovery Service.lnk
[2013.03.29 02:29:08 | 000,000,104 | ---- | M] () -- C:\Dokumente und Einstellungen\Holger\Desktop\Computer.lnk
[2013.03.27 13:03:05 | 000,388,608 | ---- | M] (Trend Micro Inc.) -- C:\Dokumente und Einstellungen\Holger\Desktop\HiJackThis204.exe
[2013.03.24 04:40:42 | 000,001,214 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-515967899-2052111302-682003330-1004UA.job
[2013.03.24 04:40:42 | 000,001,162 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-515967899-2052111302-682003330-1004Core.job
[2013.03.24 02:23:38 | 000,517,548 | ---- | M] () -- C:\WINDOWS\System32\perfh007.dat
[2013.03.24 02:23:38 | 000,494,148 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2013.03.24 02:23:38 | 000,101,452 | ---- | M] () -- C:\WINDOWS\System32\perfc007.dat
[2013.03.24 02:23:38 | 000,084,692 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2013.03.21 15:59:13 | 000,631,761 | ---- | M] () -- C:\WINDOWS\System32\drivers\NIS\1403000.024\Cat.DB
[2013.03.20 10:23:43 | 000,002,000 | ---- | M] () -- C:\Dokumente und Einstellungen\All Users\Desktop\Norton Internet Security CBE.LNK
[2013.03.20 10:22:51 | 000,014,818 | ---- | M] () -- C:\WINDOWS\System32\drivers\NIS\1403000.024\VT20130115.021
[2013.03.16 07:10:14 | 000,000,223 | RHS- | M] () -- C:\boot.ini
[2013.03.15 21:34:51 | 000,000,449 | ---- | M] () -- C:\Dokumente und Einstellungen\Holger\Eigene Dateien\Verknüpfung mit My NPS Files.lnk
[2013.03.13 13:50:31 | 000,693,976 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerApp.exe
[2013.03.13 13:50:31 | 000,073,432 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerCPLApp.cpl
[2013.03.12 10:48:47 | 000,000,679 | ---- | M] () -- C:\Dokumente und Einstellungen\Holger\Desktop\PDF Architect.lnk
[2013.03.12 10:46:07 | 000,000,697 | ---- | M] () -- C:\Dokumente und Einstellungen\All Users\Desktop\PDFCreator.lnk
[2013.03.11 11:44:46 | 000,094,112 | ---- | M] (Oracle Corporation) -- C:\WINDOWS\System32\WindowsAccessBridge.dll
[2013.03.11 11:44:44 | 000,861,088 | ---- | M] (Oracle Corporation) -- C:\WINDOWS\System32\npdeployJava1.dll
[2013.03.11 11:44:44 | 000,782,240 | ---- | M] (Oracle Corporation) -- C:\WINDOWS\System32\deployJava1.dll
[2013.03.11 11:44:44 | 000,262,560 | ---- | M] (Oracle Corporation) -- C:\WINDOWS\System32\javaws.exe
[2013.03.11 11:44:44 | 000,174,496 | ---- | M] (Oracle Corporation) -- C:\WINDOWS\System32\javaw.exe
[2013.03.11 11:44:44 | 000,174,496 | ---- | M] (Oracle Corporation) -- C:\WINDOWS\System32\java.exe
[2013.03.11 11:44:44 | 000,143,872 | ---- | M] (Oracle Corporation) -- C:\WINDOWS\System32\javacpl.cpl
[2013.03.08 12:16:11 | 000,198,809 | R--- | M] () -- C:\Dokumente und Einstellungen\Holger\Desktop\Odin3-v1.85.zip
[2013.03.07 11:46:08 | 000,142,496 | ---- | M] (Symantec Corporation) -- C:\WINDOWS\System32\drivers\SYMEVENT.SYS
[2013.03.07 11:46:08 | 000,007,446 | ---- | M] () -- C:\WINDOWS\System32\drivers\SYMEVENT.CAT
[2013.03.07 11:46:08 | 000,000,806 | ---- | M] () -- C:\WINDOWS\System32\drivers\SYMEVENT.INF
[2013.03.07 11:22:11 | 000,867,880 | ---- | M] () -- C:\Dokumente und Einstellungen\Holger\Desktop\Norton_Removal_Tool.exe
[2013.03.06 02:02:30 | 000,002,699 | ---- | M] () -- C:\Dokumente und Einstellungen\Holger\Eigene Dateien\Herbal Shop Bestellnummer 20246.htm
[2013.03.06 02:01:37 | 000,000,333 | ---- | M] () -- C:\Dokumente und Einstellungen\Holger\Eigene Dateien\Herbal Shop 1.rtf
[2013.03.06 01:53:33 | 000,000,328 | ---- | M] () -- C:\Dokumente und Einstellungen\Holger\Eigene Dateien\Herbal Shop.rtf
[7 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[1 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[1 C:\Dokumente und Einstellungen\Holger\Lokale Einstellungen\Anwendungsdaten\*.tmp files -> C:\Dokumente und Einstellungen\Holger\Lokale Einstellungen\Anwendungsdaten\*.tmp -> ]
========== Files Created - No Company Name ==========
[2013.04.03 12:56:36 | 000,052,535 | ---- | C] () -- C:\Dokumente und Einstellungen\Holger\Desktop\Blaue Berge.jpg
[2013.03.29 03:32:10 | 000,001,945 | ---- | C] () -- C:\Dokumente und Einstellungen\Holger\Desktop\Kies Air Discovery Service.lnk
[2013.03.29 02:29:08 | 000,000,104 | ---- | C] () -- C:\Dokumente und Einstellungen\Holger\Desktop\Computer.lnk
[2013.03.15 21:34:51 | 000,000,449 | ---- | C] () -- C:\Dokumente und Einstellungen\Holger\Eigene Dateien\Verknüpfung mit My NPS Files.lnk
[2013.03.12 10:48:47 | 000,000,679 | ---- | C] () -- C:\Dokumente und Einstellungen\Holger\Desktop\PDF Architect.lnk
[2013.03.12 10:46:07 | 000,000,697 | ---- | C] () -- C:\Dokumente und Einstellungen\All Users\Desktop\PDFCreator.lnk
[2013.03.08 12:16:13 | 000,198,809 | R--- | C] () -- C:\Dokumente und Einstellungen\Holger\Desktop\Odin3-v1.85.zip
[2013.03.07 11:46:08 | 000,007,446 | ---- | C] () -- C:\WINDOWS\System32\drivers\SYMEVENT.CAT
[2013.03.07 11:46:08 | 000,000,806 | ---- | C] () -- C:\WINDOWS\System32\drivers\SYMEVENT.INF
[2013.03.07 11:22:11 | 000,867,880 | ---- | C] () -- C:\Dokumente und Einstellungen\Holger\Desktop\Norton_Removal_Tool.exe
[2013.03.06 02:02:30 | 000,002,699 | ---- | C] () -- C:\Dokumente und Einstellungen\Holger\Eigene Dateien\Herbal Shop Bestellnummer 20246.htm
[2013.03.06 02:01:37 | 000,000,333 | ---- | C] () -- C:\Dokumente und Einstellungen\Holger\Eigene Dateien\Herbal Shop 1.rtf
[2013.03.06 01:53:33 | 000,000,328 | ---- | C] () -- C:\Dokumente und Einstellungen\Holger\Eigene Dateien\Herbal Shop.rtf
[2013.02.13 12:42:39 | 000,000,040 | -HS- | C] () -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\.zreglib
[2013.02.05 18:52:54 | 000,030,568 | ---- | C] () -- C:\WINDOWS\MusiccityDownload.exe
[2013.01.31 15:14:19 | 000,016,384 | ---- | C] () -- C:\WINDOWS\System32\FileOps.exe
[2012.10.12 14:31:25 | 000,164,352 | ---- | C] () -- C:\WINDOWS\System32\UNRAR.DLL
[2012.10.12 14:31:25 | 000,075,264 | ---- | C] () -- C:\WINDOWS\System32\UNACEV2.DLL
[2012.10.01 14:10:17 | 000,000,600 | ---- | C] () -- C:\Dokumente und Einstellungen\Holger\PUTTY.RND
[2012.09.26 20:57:14 | 000,974,848 | ---- | C] () -- C:\WINDOWS\System32\cis-2.4.dll
[2012.09.26 20:57:14 | 000,081,920 | ---- | C] () -- C:\WINDOWS\System32\issacapi_bs-2.3.dll
[2012.09.26 20:57:14 | 000,065,536 | ---- | C] () -- C:\WINDOWS\System32\issacapi_pe-2.3.dll
[2012.09.26 20:57:14 | 000,057,344 | ---- | C] () -- C:\WINDOWS\System32\issacapi_se-2.3.dll
[2012.09.25 11:23:09 | 000,046,080 | ---- | C] () -- C:\WINDOWS\System32\dokan.dll
[2012.06.29 20:56:08 | 003,433,792 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2012.06.26 17:15:01 | 000,000,748 | ---- | C] () -- C:\Dokumente und Einstellungen\Holger\log.xml
[2012.06.26 17:15:01 | 000,000,008 | ---- | C] () -- C:\Dokumente und Einstellungen\Holger\log-suffix.xml
[2012.06.26 17:15:01 | 000,000,000 | ---- | C] () -- C:\Dokumente und Einstellungen\Holger\log.xml.lock
[2012.06.11 16:29:47 | 011,567,104 | ---- | C] () -- C:\Dokumente und Einstellungen\Holger\Anwendungsdaten\Sandra.mdb
[2012.05.11 14:16:16 | 000,171,520 | ---- | C] () -- C:\Programme\Gemeinsame Dateien\dsfOggDemux2.dll
[2012.05.05 14:46:42 | 000,304,470 | ---- | C] () -- C:\Dokumente und Einstellungen\Holger\Lokale Einstellungen\Anwendungsdaten\census.cache
[2012.05.05 14:46:34 | 000,244,004 | ---- | C] () -- C:\Dokumente und Einstellungen\Holger\Lokale Einstellungen\Anwendungsdaten\ars.cache
[2012.05.05 14:38:21 | 000,000,036 | ---- | C] () -- C:\Dokumente und Einstellungen\Holger\Lokale Einstellungen\Anwendungsdaten\housecall.guid.cache
[2012.05.04 17:04:26 | 000,000,218 | ---- | C] () -- C:\Dokumente und Einstellungen\Holger\Lokale Einstellungen\Anwendungsdaten\recently-used.xbel
[2012.04.03 17:13:05 | 000,887,724 | ---- | C] () -- C:\WINDOWS\System32\ativva6x.dat
[2012.04.03 17:13:05 | 000,000,003 | ---- | C] () -- C:\WINDOWS\System32\ativva5x.dat
[2012.03.17 08:59:26 | 001,391,616 | ---- | C] () -- C:\WINDOWS\System32\ActPDF.dll
[2012.03.17 08:59:19 | 000,691,200 | ---- | C] () -- C:\WINDOWS\System32\PrintLog.exe
[2012.02.15 07:21:45 | 000,003,072 | ---- | C] () -- C:\WINDOWS\System32\iacenc.dll
[2012.01.20 15:10:52 | 000,311,296 | ---- | C] () -- C:\WINDOWS\System32\EMRegSys.dll
[2011.11.17 05:39:01 | 000,001,625 | ---- | C] () -- C:\WINDOWS\System32\.ini
[2011.11.09 23:39:44 | 000,059,904 | ---- | C] () -- C:\WINDOWS\System32\OpenVideo.dll
[2011.11.09 23:39:32 | 000,054,784 | ---- | C] () -- C:\WINDOWS\System32\OVDecode.dll
[2011.09.29 13:56:19 | 000,008,682 | ---- | C] () -- C:\Dokumente und Einstellungen\Holger\overlay.ini
[2011.09.29 13:56:19 | 000,000,000 | ---- | C] () -- C:\Dokumente und Einstellungen\Holger\vorlagen.ini
[2011.09.29 13:56:18 | 000,000,244 | ---- | C] () -- C:\Dokumente und Einstellungen\Holger\medcd.ini
[2011.06.18 10:03:11 | 000,021,992 | -H-- | C] () -- C:\WINDOWS\System32\mlfcache.dat
[2011.05.13 15:57:41 | 006,110,364 | ---- | C] () -- C:\Dokumente und Einstellungen\Holger\Rezezept Gimp bearbeitet.xcf
[2011.05.06 16:34:30 | 000,000,048 | -H-- | C] () -- C:\WINDOWS\System32\ezsidmv.dat
[2011.04.13 11:31:20 | 000,015,873 | ---- | C] () -- C:\WINDOWS\System32\Inetde.dll
[2011.04.06 21:25:58 | 000,000,116 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini
[2011.03.15 17:40:55 | 000,002,528 | ---- | C] () -- C:\Dokumente und Einstellungen\Holger\Anwendungsdaten\$_hpcst$.hpc
[2011.02.21 12:28:14 | 000,000,010 | ---- | C] () -- C:\Dokumente und Einstellungen\Holger\Lokale Einstellungen\Anwendungsdaten\{90035EFA-375F-40d5-A092-1B85C86F6C88}.ini
[2011.02.08 12:11:03 | 000,041,984 | ---- | C] () -- C:\Dokumente und Einstellungen\Holger\Lokale Einstellungen\Anwendungsdaten\WebpageIcons.db
[2011.02.06 09:10:51 | 000,124,416 | ---- | C] () -- C:\Dokumente und Einstellungen\Holger\Lokale Einstellungen\Anwendungsdaten\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011.01.12 02:00:44 | 000,030,208 | ---- | C] () -- C:\Programme\Gemeinsame Dateien\wmpinfo.dll
[2011.01.12 02:00:42 | 000,240,128 | ---- | C] () -- C:\Programme\Gemeinsame Dateien\dsfVorbisDecoder.dll
[2011.01.12 02:00:42 | 000,146,944 | ---- | C] () -- C:\Programme\Gemeinsame Dateien\dsfFLACDecoder.dll
[2011.01.12 02:00:40 | 000,221,184 | ---- | C] () -- C:\Programme\Gemeinsame Dateien\dsfFLACEncoder.dll
[2011.01.12 02:00:40 | 000,204,800 | ---- | C] () -- C:\Programme\Gemeinsame Dateien\dsfNativeFLACSource.dll
========== ZeroAccess Check ==========
[2011.02.01 12:03:33 | 000,000,227 | RHS- | M] () -- C:\WINDOWS\assembly\Desktop.ini
[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shdocvw.dll -- [2011.04.25 16:47:19 | 001,510,400 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = C:\WINDOWS\system32\wbem\fastprox.dll -- [2009.02.09 12:51:44 | 000,473,600 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
"" = C:\WINDOWS\system32\wbem\wbemess.dll -- [2008.04.14 08:52:34 | 000,273,920 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both
========== Alternate Data Streams ==========
@Alternate Data Stream - 140 bytes -> C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Temp:07BF512B
@Alternate Data Stream - 104 bytes -> C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Temp:D1B5B4F1
< End of report >
--- --- ---
Part IIOTL Logfile: Code:
OTL Extras logfile created on: 03.04.2013 19:04:23 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Dokumente und Einstellungen\Holger\Eigene Dateien\Downloads
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy
3,50 Gb Total Physical Memory | 2,50 Gb Available Physical Memory | 71,31% Memory free
5,34 Gb Paging File | 4,48 Gb Available in Paging File | 83,88% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Programme
Drive C: | 465,75 Gb Total Space | 81,31 Gb Free Space | 17,46% Space Free | Partition Type: NTFS
Computer Name: HOLGER-2DF0AC58 | User Name: Holger | NOT logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Extra Registry (SafeList) ==========
========== File Associations ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
.html [@ = Opera.HTML] -- "C:\Programme\Opera\Opera.exe" "%1"
[HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Programme\Mozilla Firefox\firefox.exe (Mozilla Corporation)
========== Shell Spawning ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
exefile [open] -- "%1" %*
htmlfile [edit] -- Reg Error: Key error.
http [open] -- "C:\Programme\Opera\Opera.exe" "%1"
https [open] -- "C:\Programme\Opera\Opera.exe" "%1"
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [ACDSee Pro 3.Manage] -- "C:\Programme\ACD Systems\ACDSee Pro\3.0\ACDSeeQVPro3.exe" "%1" (ACD Systems International Inc.)
Directory [AddToPlaylistVLC] -- "C:\Programme\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" (VideoLAN)
Directory [Bridge] -- C:\Programme\Adobe\Adobe Bridge CS5\Bridge.exe "%L" (Adobe Systems, Inc.)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Programme\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" (VideoLAN)
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
========== Security Center Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"FirstRunDisabled" = 1
"AntiVirusDisableNotify" = 0
"FirewallDisableNotify" = 0
"UpdatesDisableNotify" = 0
"AntiVirusOverride" = 1
"FirewallOverride" = 0
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]
========== System Restore Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr]
"Start" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService]
"Start" = 2
========== Firewall Settings ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
"26675:TCP" = 26675:TCP:169.254.2.0/255.255.255.0:Enabled:ActiveSync Service
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 0
"DoNotAllowExceptions" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"26675:TCP" = 26675:TCP:169.254.2.0/255.255.255.0:Enabled:ActiveSync Service
========== Authorized Applications List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
"%windir%\Network Diagnostic\xpnetdiag.exe" = %windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000 -- (Microsoft Corporation)
"%windir%\system32\sessmgr.exe" = %windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019 -- (Microsoft Corporation)
"C:\Programme\Microsoft ActiveSync\rapimgr.exe" = C:\Programme\Microsoft ActiveSync\rapimgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync RAPI Manager -- (Microsoft Corporation)
"C:\Programme\Microsoft ActiveSync\wcescomm.exe" = C:\Programme\Microsoft ActiveSync\wcescomm.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Connection Manager -- (Microsoft Corporation)
"C:\Programme\Microsoft ActiveSync\WCESMgr.exe" = C:\Programme\Microsoft ActiveSync\WCESMgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Application -- (Microsoft Corporation)
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"%windir%\Network Diagnostic\xpnetdiag.exe" = %windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000 -- (Microsoft Corporation)
"%windir%\system32\sessmgr.exe" = %windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019 -- (Microsoft Corporation)
"C:\Programme\Java\jre6\bin\java.exe" = C:\Programme\Java\jre6\bin\java.exe:*:Enabled:Java(TM) Platform SE binary -- (Sun Microsystems, Inc.)
"C:\Programme\Java\jre6\bin\javaw.exe" = C:\Programme\Java\jre6\bin\javaw.exe:*:Enabled:Java(TM) Platform SE binary -- (Sun Microsystems, Inc.)
"C:\WINDOWS\system32\lxducoms.exe" = C:\WINDOWS\system32\lxducoms.exe:*:Enabled:5600-6600 Series Server -- ( )
"C:\Programme\Winamp\winamp.exe" = C:\Programme\Winamp\winamp.exe:*:Enabled:Winamp -- (Nullsoft, Inc.)
"C:\Programme\Yahoo!\Messenger\YahooMessenger.exe" = C:\Programme\Yahoo!\Messenger\YahooMessenger.exe:*:Enabled:Yahoo! Messenger -- (Yahoo! Inc.)
"C:\Programme\SopCast\adv\SopAdver.exe" = C:\Programme\SopCast\adv\SopAdver.exe:*:Enabled:SopCast Adver -- (www.sopcast.com)
"C:\Programme\SopCast\SopCast.exe" = C:\Programme\SopCast\SopCast.exe:*:Enabled:SopCast Main Application -- (www.sopcast.com)
"C:\Programme\SiSoftware\SiSoftware Sandra Lite 2012.SP4a\RpcAgentSrv.exe" = C:\Programme\SiSoftware\SiSoftware Sandra Lite 2012.SP4a\RpcAgentSrv.exe:*:Enabled:SiSoftware Deployment Agent Service -- (SiSoftware)
"C:\Programme\COMPUTERBILD-Cloud\CGCClient.exe" = C:\Programme\COMPUTERBILD-Cloud\CGCClient.exe:*:Enabled:CGCClient -- ()
"C:\Programme\Opera\opera.exe" = C:\Programme\Opera\opera.exe:*:Enabled:Opera Internet Browser
"C:\Dokumente und Einstellungen\Holger\Anwendungsdaten\Dropbox\bin\Dropbox.exe" = C:\Dokumente und Einstellungen\Holger\Anwendungsdaten\Dropbox\bin\Dropbox.exe:*:Enabled:Dropbox -- (Dropbox, Inc.)
"C:\WINDOWS\system32\muzapp.exe" = C:\WINDOWS\system32\muzapp.exe:*:Enabled:MUZ AOD APP player -- (Musiccity Co.Ltd.)
"C:\Programme\Gemeinsame Dateien\Apple\Apple Application Support\WebKit2WebProcess.exe" = C:\Programme\Gemeinsame Dateien\Apple\Apple Application Support\WebKit2WebProcess.exe:*:Enabled:WebKit -- (Apple Inc.)
"C:\Programme\iTunes\iTunes.exe" = C:\Programme\iTunes\iTunes.exe:*:Enabled:iTunes -- (Apple Inc.)
"C:\Programme\SiSoftware\SiSoftware Sandra Lite 2012.SP4a\WNt500x86\RpcSandraSrv.exe" = C:\Programme\SiSoftware\SiSoftware Sandra Lite 2012.SP4a\WNt500x86\RpcSandraSrv.exe:*:Enabled:SiSoftware Sandra Agent Service -- (SiSoftware)
"C:\Programme\Adobe\Adobe Version Cue CS2\bin\VersionCueCS2.exe" = C:\Programme\Adobe\Adobe Version Cue CS2\bin\VersionCueCS2.exe:*:Enabled:Adobe Version Cue CS2 -- (Adobe Systems Incorporated)
"C:\Programme\StarMoney 8.0\ouservice\StarMoneyOnlineUpdate.exe" = C:\Programme\StarMoney 8.0\ouservice\StarMoneyOnlineUpdate.exe:*:Enabled:StarMoney 8.0 OnlineUpdate -- (Star Finanz - Software Entwicklung und Vertriebs GmbH)
"C:\Programme\StarMoney 8.0\app\StarMoney.exe" = C:\Programme\StarMoney 8.0\app\StarMoney.exe:*:Enabled:StarMoney 8.0 -- (Star Finanz - Software Entwicklung und Vertriebs GmbH)
"C:\Programme\Skype\Phone\Skype.exe" = C:\Programme\Skype\Phone\Skype.exe:*:Enabled:Skype -- (Skype Technologies S.A.)
"C:\Programme\Microsoft ActiveSync\rapimgr.exe" = C:\Programme\Microsoft ActiveSync\rapimgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync RAPI Manager -- (Microsoft Corporation)
"C:\Programme\Microsoft ActiveSync\wcescomm.exe" = C:\Programme\Microsoft ActiveSync\wcescomm.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Connection Manager -- (Microsoft Corporation)
"C:\Programme\Microsoft ActiveSync\WCESMgr.exe" = C:\Programme\Microsoft ActiveSync\WCESMgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Application -- (Microsoft Corporation)
========== HKEY_LOCAL_MACHINE Uninstall List ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}" = PDFCreator
"{0134A1A1-C283-4A47-91A1-92F19F960372}" = Adobe Creative Suite 2
"{02E89EFC-7B07-4D5A-AA03-9EC0902914EE}" = VC 9.0 Runtime
"{02F0B8AE-7501-4333-AFBE-6BAABFEC7637}" = WISO Steuer-Sparbuch 2011
"{033E378E-6AD3-4AD5-BDEB-CBD69B31046C}" = Microsoft_VC90_ATL_x86
"{036138A4-CE69-54B3-EC3A-22EC160303E0}" = CCC Help Czech
"{08D2E121-7F6A-43EB-97FD-629B44903403}" = Microsoft_VC90_CRT_x86
"{0A0CADCF-78DA-33C4-A350-CD51849B9702}" = Microsoft .NET Framework 4 Extended
"{0A68C819-3333-E57F-5881-D3FE31C1F2D5}" = CCC Help Turkish
"{0ABBF310-94E4-4AE8-A6BD-10345A3F6439}" = Google Drive
"{0F3647F8-E51D-4FCC-8862-9A8D0C5ACF25}" = Microsoft_VC80_ATL_x86
"{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MP250_series" = Canon MP250 series MP Drivers
"{13D793E6-928B-4984-A0AB-5B6C08759096}" = WISO Mein Geld 2013 Standard
"{14DC0059-00F1-4F62-BD1A-AB23CD51A95E}" = Adobe AIR
"{15FEDA5F-141C-4127-8D7E-B962D1742728}" = Adobe Photoshop CS5
"{1B280FAF-AE10-4E31-A41A-DB3917D651DC}" = ACDSee Pro 3
"{1D8635E1-46A9-1B10-6151-ED7169AB8C9A}" = GMX SMS-Manager
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{1FCBD504-AB7D-4757-9A14-850348384B08}" = StarMoney
"{20D4A895-748C-4D88-871C-FDB1695B0169}" = Platform
"{23481C75-AA13-858C-C707-51D7744F2309}" = CCC Help English
"{236BB7C4-4419-42FD-0407-1E257A25E34D}" = Adobe Photoshop CS2
"{26A24AE4-039D-4CA4-87B4-2F83216022F0}" = Java(TM) 6 Update 22
"{26A24AE4-039D-4CA4-87B4-2F83216033FF}" = Java(TM) 6 Update 33
"{26A24AE4-039D-4CA4-87B4-2F83217017FF}" = Java 7 Update 17
"{29258311-EA49-11DE-967C-005056C00008}" = Paragon Festplatten Manager™ 2012 Kompakt
"{3179E96B-2CCF-A00A-5738-4C14DBA0DACA}" = CCC Help Chinese Traditional
"{32364CEA-7855-4A3C-B674-53D8E9B97936}" = TuneUp Utilities 2012
"{350C97B3-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{3BDCECE1-F7F8-81E3-EE26-AF8FD5172A56}" = CCC Help German
"{3C3901C5-3455-3E0A-A214-0B093A5070A6}" = Microsoft .NET Framework 4 Client Profile
"{3C3D696B-0DB7-3C6D-A356-3DB8CE541918}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729
"{41B4F085-82E5-C9C2-9AB3-65D67EF60883}" = CCC Help Italian
"{459699C3-9430-4381-964B-4248D87B49F9}" = Apple Mobile Device Support
"{4862344A-A39C-4897-ACD4-A1BED5163C5A}" = CyberLink PhotoDirector 2011
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4C552FD3-2CCD-4E00-AC64-0681DBB3F8B5}" = OpenOffice.org 3.4
"{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}" = Skype™ 6.2
"{529125EF-E3AC-4B74-97E6-F688A7C0F1BF}" = Paint.NET v3.5.10
"{5449FB4F-1802-4D5B-A6D8-087DB1142147}" = Realtek HDMI Audio Driver for ATI
"{59A86970-E9AB-0D1D-A269-2381A89F0CF2}" = Catalyst Control Center InstallProxy
"{5A9AA2C0-972F-4239-AA41-E409434194D5}" = MobileMe Control Panel
"{5D4C60AA-84E6-4E1A-8A68-69970D387BE1}" = TuneUp Utilities Language Pack (de-DE)
"{5D5509EA-B85A-411E-AB75-59069A411876}" = COMPUTERBILD App-Center
"{5DA8F6CD-C70E-39D8-8430-3D9808D6BD17}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30411
"{5DCB68D8-686F-0550-6DD3-957A366F8F99}" = CCC Help Norwegian
"{5F624839-947D-46EA-BD63-FD847C1AC6F1}" = BearShare
"{612C34C7-5E90-47D8-9B5C-0F717DD82726}" = swMSM
"{635FED5B-2C6D-49BE-87E6-7A6FCD22BC5A}" = Microsoft_VC90_MFC_x86
"{653B7F6E-F594-4B55-61BA-78F8FE6E500A}" = CCC Help Finnish
"{69101ED4-FAEB-44EE-1A0E-0602CD6458F3}" = Catalyst Control Center
"{6ECB39BD-73C2-44DD-B1A0-898207C58D8B}" = HP Foto- und Bildbearbeitung 2.0 All-in-One Treiber
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{7216871F-869E-437C-B9BF-2A13F2DCE63F}_is1" = Auslogics BoostSpeed
"{72C21374-4656-4913-98FC-46707B06EF57}" = Admin Utilities
"{738BB92A-0AE6-4E7C-A9F7-126A625573F0}" = Eagle Eye
"{758C8301-2696-4855-AF45-534B1200980A}" = Samsung Kies
"{763DEB88-48E6-4648-9CE6-A0FFC6900BEB}" = COMPUTERBILD Problemlöser 2011
"{76B0FAA5-C23B-58E8-EB51-1195A4D6BEB7}" = Catalyst Control Center Localization All
"{786C5747-0C40-4930-9AFE-113BCE553101}" = Adobe Stock Photos 1.0
"{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}" = Apple Software Update
"{7ACB3CAB-68EC-4DCE-8597-50B4DC558F94}" = COMPUTERBILD-Abzockschutz
"{7F4C8163-F259-49A0-A018-2857A90578BC}" = Adobe InDesign CS2
"{80A07844-CA64-4DE4-AB61-D37DDBE8074F}" = PDF Architect
"{81A6F461-0DBA-4F12-B56F-0E977EC10576}_is1" = PDF24 Creator 4.6.0
"{821CF756-EDC0-5A8C-6ECA-3F4682DEAFD1}" = CCC Help French
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}" = Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570
"{8927E07C-97F7-4A54-88FB-D976F50DD46E}" = Turbo Lister 2
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8AC04B19-F01D-49E2-B5E3-4025B7A4B07A}" = StarMoney
"{8EDBA74D-0686-4C99-BFDD-F894678E5101}" = Adobe Common File Installer
"{8FB7E2C1-13A7-F9A0-277F-8CFB5B198E7E}" = CCC Help Polish
"{92D58719-BBC1-4CC3-A08B-56C9E884CC2C}" = Microsoft_VC80_CRT_x86
"{933B4015-4618-4716-A828-5289FC03165F}" = VC80CRTRedist - 8.0.50727.6195
"{950A97A5-F8AF-26C7-8F8B-47F7C1F03363}" = CCC Help Portuguese
"{96A092BE-173D-6824-14FD-1C8C0477C1D1}" = CCC Help Greek
"{9867A917-5D17-40DE-83BA-BEA5293194B1}" = HP Foto- und Bildbearbeitung 2.0 - All-in-One
"{98C7891F-4BA8-48D3-0001-D4DD055B2886}" = Formatwandler 2013
"{99052DB7-9592-4522-A558-5417BBAD48EE}" = Microsoft ActiveSync
"{993B26A3-3BA8-4EA5-9099-E96C1BF236AF}" = StarMoney
"{9BA4C082-183A-4869-06DB-4F563355D33F}" = CCC Help Spanish
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2
"{A78FE97A-C0C8-49CE-89D0-EDD524A17392}" = PDF Settings CS5
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{A997829F-090A-06FC-ADDA-B907E0D2562E}" = AMD Catalyst Install Manager
"{AAE587E4-E661-4DB5-96DF-6E31C548F186}_is1" = Password Depot 6
"{AB4FE709-7AC5-A7FF-A947-A110CEFCB074}" = CCC Help Hungarian
"{AC76BA86-1033-F400-7760-100000000002}" = Adobe Acrobat 7.0 Professional - English, Français, Deutsch
"{AC76BA86-7AD7-1031-7B44-AA1000000001}" = Adobe Reader X (10.1.6) - Deutsch
"{ADBE46EE-54E0-4610-B436-D7E93D829100}" = Adobe Version Cue CS2
"{AF61E4AF-94EF-48B2-BEE3-7D2F1D32E06B}" = O&O DriveLED Professional
"{B0261E53-B6F1-474A-864B-E7C3CBF468E0}" = iTunes
"{B2F5D08C-7E79-4FCD-AAF4-57AD35FF0601}" = Adobe Illustrator CS2
"{B376402D-58EA-45EA-BD50-DD924EB67A70}" = HP Speicher-Disc
"{B74D4E10-6884-0000-0000-000000000101}" = Adobe Bridge 1.0
"{B802B2D2-C777-1876-8204-C0F360CBF955}" = CCC Help Dutch
"{BBC2068D-CE9C-48F5-A6EA-4B44B9DB14A5}" = Catalyst Control Center - Branding
"{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2
"{C0DB2307-0373-4CEF-B841-5C2431897336}" = O&O SafeErase
"{C151CE54-E7EA-4804-854B-F515368B0798}" = AMD Processor Driver
"{C1940CF0-E2DD-11E0-BB25-B8AC6F97B88E}" = Google Earth
"{C3113E55-7BCB-4de3-8EBF-60E6CE6B2396}_is1" = SiSoftware Sandra Lite 2012.SP4a
"{C49DAA9C-5BA8-459A-8244-E57B69DF0F04}" = Suite Specific
"{C6BD88D1-A8D3-B46F-781E-80A6A6927E09}" = CCC Help Chinese Standard
"{C911A0C2-2236-3164-AA47-F2566C01AE5E}" = Microsoft .NET Framework 4 Extended DEU Language Pack
"{CAE757C0-6775-4631-B1D7-5B14AEAAF861}" = StudioLine Photo Classic 3 SE
"{CB4CC208-A2D9-4AF5-89BD-1AB42120115C}" = StarMoney 8.0
"{CCE825DB-347A-4004-A186-5F4A6FDD8547}" = Apple Application Support
"{CE026CFE-73FE-4FED-9D5F-2C8D4DB512B0}" = TuneUp Utilities Language Pack (de-DE)
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{CFC3C2E5-82ED-4823-9433-328045AE2F4B}" = 11g Wireless LAN
"{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}" = SAMSUNG USB Driver for Mobile Phones
"{D1A19B02-817E-4296-A45B-07853FD74D57}" = Microsoft_VC80_MFC_x86
"{D3CD290C-C254-F440-962D-F9D0E60DD3F4}" = CCC Help Danish
"{D92BBB52-82FF-42ED-8A3C-4E062F944AB7}" = Microsoft_VC80_MFCLOC_x86
"{DA3DB4D7-429D-4292-F855-C47C6EA1AFF8}" = CCC Help Thai
"{DE464235-13EC-F0E2-2608-9A8103F52DF8}" = CCC Help Japanese
"{DF6A13C0-77DF-41FE-BD05-6D5201EB0CE7}_is1" = Auslogics Disk Defrag
"{E2F2B987-F2BC-4969-95F2-92099486B811}" = StarMoney
"{E8D9FAA2-D3DB-7FA3-3FFE-0AC935251F99}" = CCC Help Swedish
"{E9787678-119F-4D52-B551-6739B2B22101}" = Adobe Help Center 1.0
"{EBB5A00B-17CE-492C-A3A6-CEB3E9D8C9C5}" = COMPUTERBILD Security Inspector
"{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
"{F748B53A-A58F-17B4-F380-08EF92B6A6F4}" = CCC Help Korean
"{F750C986-5310-3A5A-95F8-4EC71C8AC01C}" = Microsoft .NET Framework 4 Client Profile DEU Language Pack
"{F78B5B4F-075A-4C81-AA27-E707861EB5B7}_is1" = AntiBrowserSpy
"{FA584B62-7ECF-A981-0D1E-A8BE67C604DB}" = Catalyst Control Center Graphics Previews Common
"{FBFC6AFA-082C-CBEC-3D28-1EE9CA16D029}" = ccc-utility
"{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
"{FF9B0E3E-9D2E-2560-EEA2-BB35A369C491}" = CCC Help Russian
"1-abc.net File Encrypter" = 1-abc.net File Encrypter (Remove only)
"7-Zip" = 7-Zip 9.20
"Adobe Acrobat 7.0 Professional - English, Français, Deutsch - V" = Adobe Acrobat 7.1.0 Professional - English, Français, Deutsch
"Adobe AIR" = Adobe AIR
"Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin
"Adobe Shockwave Player" = Adobe Shockwave Player 11.6
"Adobe SVG Viewer" = Adobe SVG Viewer 3.0
"Any Video Converter_is1" = Any Video Converter 3.3.0
"AnyDVD" = AnyDVD
"Ashampoo Burning Studio 2010 Advanced_is1" = Ashampoo Burning Studio 2010 Advanced 9.25
"Ashampoo Photo Optimizer 4_is1" = Ashampoo Photo Optimizer 4 v.4.0.3
"Ashampoo_DE Toolbar" = Ashampoo DE Toolbar
"AVS Image Converter_is1" = AVS Image Converter 2.0.2.160
"AVS Update Manager_is1" = AVS Update Manager 1.0
"Burn To The Brim" = Burn To The Brim 2.9.0
"Canon MP250 series Benutzerregistrierung" = Canon MP250 series Benutzerregistrierung
"CANONIJPLM100" = Canon Inkjet Printer/Scanner/Fax Extended Survey Program
"CanonMyPrinter" = Canon Utilities My Printer
"CanonSolutionMenu" = Canon Utilities Solution Menu
"CCEnhancer" = CCEnhancer 3.2
"CCleaner" = CCleaner
"com.unitedinternet.ums.sms-mms-manager" = GMX SMS-Manager
"COMPUTERBILD-Cloud_is1" = COMPUTERBILD-Cloud
"Dr. Hardware 2010_is1" = Dr. Hardware 2010 10.5d
"DVD Flick_is1" = DVD Flick 1.3.0.7
"DVD Shrink DE_is1" = DVD Shrink 3.2 deutsch (DeCSS-frei)
"DVDFab 8 Qt_is1" = DVDFab 8.2.0.0 (07/08/2012) Qt
"Easy Video Splitter_is1" = Easy Video Splitter 1.28
"Easy-PhotoPrint EX" = Canon Utilities Easy-PhotoPrint EX
"Easy-WebPrint EX" = Canon Easy-WebPrint EX
"facemoods" = facemoods
"Fotosizer" = Fotosizer 1.31
"Free Audio Editor" = Free Audio Editor
"Free Uploader for Facebook_is1" = Free Uploader for Facebook version 1.0.10.221
"Free Video Dub_is1" = Free Video Dub version 2.0.15.1031
"Grand Theft Auto" = Grand Theft Auto
"ie8" = Windows Internet Explorer 8
"InstallShield_{20D4A895-748C-4D88-871C-FDB1695B0169}" = VIA Plattform-Geräte-Manager
"InstallShield_{4862344A-A39C-4897-ACD4-A1BED5163C5A}" = CyberLink PhotoDirector 2011
"InstallShield_{758C8301-2696-4855-AF45-534B1200980A}" = Samsung Kies
"JDownloader" = JDownloader
"Lexmark 5600-6600 Series" = Lexmark 5600-6600 Series
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Microsoft .NET Framework 4 Client Profile DEU Language Pack" = Microsoft .NET Framework 4 Client Profile DEU Language Pack
"Microsoft .NET Framework 4 Extended" = Microsoft .NET Framework 4 Extended
"Microsoft .NET Framework 4 Extended DEU Language Pack" = Microsoft .NET Framework 4 Extended DEU Language Pack
"Mozilla Firefox 20.0 (x86 de)" = Mozilla Firefox 20.0 (x86 de)
"MozillaMaintenanceService" = Mozilla Maintenance Service
"MP Navigator EX 3.0" = Canon MP Navigator EX 3.0
"Mp3tag" = Mp3tag v2.49a
"MSCompPackV1" = Microsoft Compression Client Pack 1.0 for Windows XP
"Nero - Burning Rom!UninstallKey" = Nero 6 Ultra Edition
"NIS" = Norton Internet Security CBE
"NVIDIA Drivers" = NVIDIA Drivers
"Ocster Backup" = Ocster Backup Pro
"Recuva" = Recuva
"Revo Uninstaller" = Revo Uninstaller 1.92
"SevenMizer" = SevenMizer 2.0.0.0
"Software Informer_is1" = Software Informer 1.2 RC
"SopCast" = SopCast 3.3.2
"Speccy" = Speccy
"TuneUp Utilities 2012" = TuneUp Utilities 2012
"Veetle TV" = Veetle TV 0.9.18
"VLC media player" = VLC media player 2.0.5
"Wdf01007" = Microsoft Kernel-Mode Driver Framework Feature Pack 1.7
"Winamp" = Winamp
"Windows Media Format Runtime" = Windows Media Format 11 runtime
"Windows Media Player" = Windows Media Player 11
"WinRAR archiver" = WinRAR archiver
"winusb0100" = Microsoft WinUsb 1.0
"WISO Mein Geld 2013 Standard" = WISO Mein Geld 2013 Standard
"WMFDist11" = Windows Media Format 11 runtime
"wmp11" = Windows Media Player 11
"Wudf01000" = Microsoft User-Mode Driver Framework Feature Pack 1.0
"xp-AntiSpy" = xp-AntiSpy 3.98-2
"xplorer2l" = xplorer² lite 32 bit
"XviD" = XviD MPEG-4 Codec
"Yahoo! Messenger" = Yahoo! Messenger
"Zattoo4" = Zattoo4 4.0.5
========== HKEY_CURRENT_USER Uninstall List ==========
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Dropbox" = Dropbox
"Google Chrome" = Google Chrome
"LastPass" = LastPass (nur deinstallieren)
"MyFreeCodec" = MyFreeCodec
"Winamp Detect" = Winamp Erkennungs-Plug-in
========== Last 20 Event Log Errors ==========
Error: Unable to start EventLog service!
< End of report >
--- --- ---
Bei Gmer kommt C/Windoes/System32/Zugriff verweigert
Nochmal Hallo,
Norton kann ich nicht deaktivieren, wegen den administratorrechten.
Deinstallieren geht auch net.
Gruß
Nochmal Hallo,
Norton kann ich nicht deaktivieren, wegen den administratorrechten.
Deinstallieren geht auch net.
Gruß
hallo,
ich wollte Euch nur mitteilen, dass ich morgen 5 Tage in Urlaub fahre und dann nicht mehr antworten kann.
Heute abend bin ich noch etwas online.
Gruß. |
Lesestoff: