| AnalAcrobats | 17.02.2010 23:26 |
wieso fat32 in ntfs umwandeln? dadurch würden dateien verloren gehen und was würde es bringen? Code:
Malwarebytes' Anti-Malware 1.44
Datenbank Version: 3751
Windows 5.1.2600 Service Pack 2
Internet Explorer 8.0.6001.18702
17.02.2010 22:49:03
mbam-log-2010-02-17 (22-49-03).txt
Scan-Methode: Vollständiger Scan (C:\|D:\|E:\|F:\|H:\|)
Durchsuchte Objekte: 474902
Laufzeit: 4 hour(s), 19 minute(s), 49 second(s)
Infizierte Speicherprozesse: 0
Infizierte Speichermodule: 0
Infizierte Registrierungsschlüssel: 0
Infizierte Registrierungswerte: 0
Infizierte Dateiobjekte der Registrierung: 0
Infizierte Verzeichnisse: 0
Infizierte Dateien: 0
Infizierte Speicherprozesse:
(Keine bösartigen Objekte gefunden)
Infizierte Speichermodule:
(Keine bösartigen Objekte gefunden)
Infizierte Registrierungsschlüssel:
(Keine bösartigen Objekte gefunden)
Infizierte Registrierungswerte:
(Keine bösartigen Objekte gefunden)
Infizierte Dateiobjekte der Registrierung:
(Keine bösartigen Objekte gefunden)
Infizierte Verzeichnisse:
(Keine bösartigen Objekte gefunden)
Infizierte Dateien:
(Keine bösartigen Objekte gefunden)
Code:
Logfile of random's system information tool 1.06 (written by random/random)
Run by evgenij at 2010-02-17 18:14:42
Microsoft Windows XP Professional Service Pack 2
System drive C: has 788 MB (5%) free of 16 GB
Total RAM: 1535 MB (57% free)
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 18:14:47, on 17.02.2010
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
e:\Programme\Alwil Software\Avast4\aswUpdSv.exe
C:\WINDOWS\Explorer.EXE
e:\Programme\Alwil Software\Avast4\ashServ.exe
E:\Programme\Logitech\G-series Software\LGDCore.exe
E:\Programme\Logitech\G-series Software\LCDMon.exe
E:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Programme\Gemeinsame Dateien\Ulead Systems\AutoDetector\monitor.exe
C:\Programme\Java\jre1.6.0_03\bin\jusched.exe
C:\Programme\FreePDF_XP\fpassist.exe
E:\Programme\Logitech\G-series Software\Applets\LCDPop3\LCDPOP3.exe
E:\Programme\Logitech\G-series Software\Applets\LCDCountdown\LCDCountdown.exe
E:\Programme\Logitech\G-series Software\Applets\LCDClock.exe
E:\Programme\Logitech\G-series Software\Applets\LCDMedia.exe
H:\PROGRA~1\MICROS~3\GAMECO~1\common\swtrayv4.exe
C:\Programme\Gemeinsame Dateien\Real\Update_OB\realsched.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Programme\VIA\RAID\raid_tool.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Programme\Google\Update\1.2.183.13\GoogleCrashHandler.exe
h:\Programme\Acunetix\Web Vulnerability Scanner 5\WVSScheduler.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\System32\svchost.exe
e:\Programme\Alwil Software\Avast4\ashMaiSv.exe
e:\Programme\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Programme\Internet Explorer\iexplore.exe
C:\Programme\Internet Explorer\iexplore.exe
C:\Programme\Internet Explorer\iexplore.exe
H:\RSIT.exe
C:\Programme\Trend Micro\HijackThis\evgenij.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://yahoo.de/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = 218.182.134.23:8080
R3 - URLSearchHook: ICQ Toolbar - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\PROGRA~1\ICQTOO~2\toolbaru.dll (file missing)
O2 - BHO: Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Programme\Gemeinsame Dateien\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: AskBar BHO - {201f27d4-3704-41d6-89c1-aa35e39143ed} - C:\Programme\AskBarDis\bar\bin\askBar.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Programme\Java\jre1.6.0_03\bin\ssv.dll
O2 - BHO: TBSB00982 - {DA3D342F-FF20-4E31-9E82-22334155730C} - h:\Programme\Antbar\Ant.com Toolbar\tbcore3.dll
O2 - BHO: Google Gears Helper - {E0FEFE40-FBF9-42AE-BA58-794CA7E3FB53} - C:\Programme\Google\Google Gears\Internet Explorer\0.5.33.0\gears.dll
O2 - BHO: EpsonToolBandKicker Class - {E99421FB-68DD-40F0-B4AC-B7027CAE2F1A} - C:\Programme\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll
O3 - Toolbar: EPSON Web-To-Page - {EE5D279F-081B-4404-994D-C6B60AAEBA6D} - C:\Programme\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll
O3 - Toolbar: ICQ Toolbar - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\PROGRA~1\ICQTOO~2\toolbaru.dll (file missing)
O3 - Toolbar: Ask Toolbar - {3041d03e-fd4b-44e0-b742-2d9b88305f98} - C:\Programme\AskBarDis\bar\bin\askBar.dll
O3 - Toolbar: Ant.com Toolbar - {6CD56C02-CB4D-41B5-A0FE-B479061CCB41} - h:\Programme\Antbar\Ant.com Toolbar\tbcore3.dll
O4 - HKLM\..\Run: [Launch LGDCore] "E:\Programme\Logitech\G-series Software\LGDCore.exe" /SHOWHIDE
O4 - HKLM\..\Run: [Launch LCDMon] "E:\Programme\Logitech\G-series Software\LCDMon.exe"
O4 - HKLM\..\Run: [avast!] e:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "H:\Programme\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Ulead AutoDetector v2] C:\Programme\Gemeinsame Dateien\Ulead Systems\AutoDetector\monitor.exe
O4 - HKLM\..\Run: [QuickTime Task] "H:\Programme\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Programme\Java\jre1.6.0_03\bin\jusched.exe"
O4 - HKLM\..\Run: [FreePDF Assistant] C:\Programme\FreePDF_XP\fpassist.exe
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [SideWinderTrayV4] h:\PROGRA~1\MICROS~3\GAMECO~1\common\swtrayv4.exe
O4 - HKLM\..\Run: [TkBellExe] "C:\Programme\Gemeinsame Dateien\Real\Update_OB\realsched.exe" -osboot
O4 - HKCU\..\Run: [Update Service] C:\PROGRA~1\GEMEIN~1\TEKNUM~1\update.exe /startup
O4 - HKCU\..\Run: [Rainlendar2] D:\Programme\Rainlendar2\Rainlendar2.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: VIA RAID TOOL.lnk = C:\Programme\VIA\RAID\raid_tool.exe
O8 - Extra context menu item: &ICQ Toolbar Search - res://C:\Programme\ICQToolbar\toolbaru.dll/SEARCH.HTML
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Programme\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Konsole - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Programme\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra button: (no name) - {09C04DA7-5B76-4EBC-BBEE-B25EAC5965F5} - C:\Programme\Google\Google Gears\Internet Explorer\0.5.33.0\gears.dll
O9 - Extra 'Tools' menuitem: &Gears-Einstellungen - {09C04DA7-5B76-4EBC-BBEE-B25EAC5965F5} - C:\Programme\Google\Google Gears\Internet Explorer\0.5.33.0\gears.dll
O9 - Extra button: PokerStars - {3AD14F0C-ED16-4e43-B6D8-661B03F6A1EF} - h:\Programme\PokerStars\PokerStarsUpdate.exe
O9 - Extra button: PartyPoker.com - {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - h:\Programme\PartyGaming\PartyPoker\RunApp.exe
O9 - Extra 'Tools' menuitem: PartyPoker.com - {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - h:\Programme\PartyGaming\PartyPoker\RunApp.exe
O9 - Extra button: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - i:\Programme\ICQLite\ICQLite.exe (file missing)
O9 - Extra 'Tools' menuitem: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - i:\Programme\ICQLite\ICQLite.exe (file missing)
O9 - Extra button: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - i:\Programme\ICQ6.5\ICQ.exe (file missing)
O9 - Extra 'Tools' menuitem: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - i:\Programme\ICQ6.5\ICQ.exe (file missing)
O16 - DPF: {D0C0F75C-683A-4390-A791-1ACFD5599AB8} (Oberon Flash Game Host) - http://icq.oberon-media.com/Gameshell/GameHost/1.0/OberonGameHost.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - https://fpdownload.macromedia.com/pub/shockwave/cabs/flash/swflash.cab
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O23 - Service: Acunetix WVS Scheduler v5 (AcuWVSSchedulerv5) - Acunetix Ltd. - h:\Programme\Acunetix\Web Vulnerability Scanner 5\WVSScheduler.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - e:\Programme\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - e:\Programme\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - e:\Programme\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - e:\Programme\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: Firebird Server - MAGIX Instance (FirebirdServerMAGIXInstance) - MAGIX® - H:\Programme\MAGIX\Common\Database\bin\fbserver.exe
O23 - Service: Google Update Service (gupdate1c9ae4f972fb88a) (gupdate1c9ae4f972fb88a) - Google Inc. - C:\Programme\Google\Update\GoogleUpdate.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Programme\Gemeinsame Dateien\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - CACE Technologies - C:\Programme\WinPcap\rpcapd.exe
--
End of file - 8707 bytes
======Scheduled tasks folder======
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
C:\WINDOWS\tasks\AppleSoftwareUpdate.job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
Adobe PDF Reader - C:\Programme\Gemeinsame Dateien\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2006-10-22 62080]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{201f27d4-3704-41d6-89c1-aa35e39143ed}]
AskBar BHO - C:\Programme\AskBarDis\bar\bin\askBar.dll [2008-08-26 279944]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
SSVHelper Class - C:\Programme\Java\jre1.6.0_03\bin\ssv.dll [2007-09-25 501136]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DA3D342F-FF20-4E31-9E82-22334155730C}]
TBSB00982 Class - h:\Programme\Antbar\Ant.com Toolbar\tbcore3.dll [2009-06-02 2695168]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E0FEFE40-FBF9-42AE-BA58-794CA7E3FB53}]
Google Gears Helper - C:\Programme\Google\Google Gears\Internet Explorer\0.5.33.0\gears.dll [2009-10-16 2101248]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E99421FB-68DD-40F0-B4AC-B7027CAE2F1A}]
EpsonToolBandKicker Class - C:\Programme\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll [2005-02-21 368640]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{EE5D279F-081B-4404-994D-C6B60AAEBA6D} - EPSON Web-To-Page - C:\Programme\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll [2005-02-21 368640]
{855F3B16-6D32-4fe6-8A56-BBB695989046} - ICQ Toolbar - C:\PROGRA~1\ICQTOO~2\toolbaru.dll []
{3041d03e-fd4b-44e0-b742-2d9b88305f98} - Ask Toolbar - C:\Programme\AskBarDis\bar\bin\askBar.dll [2008-08-26 279944]
{6CD56C02-CB4D-41B5-A0FE-B479061CCB41} - Ant.com Toolbar - h:\Programme\Antbar\Ant.com Toolbar\tbcore3.dll [2009-06-02 2695168]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Launch LGDCore"=E:\Programme\Logitech\G-series Software\LGDCore.exe [2006-03-06 1122304]
"Launch LCDMon"=E:\Programme\Logitech\G-series Software\LCDMon.exe [2006-03-06 497152]
"avast!"=e:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe [2009-11-25 81000]
"Adobe Reader Speed Launcher"=H:\Programme\Adobe\Reader 8.0\Reader\Reader_sl.exe [2007-10-10 39792]
"Ulead AutoDetector v2"=C:\Programme\Gemeinsame Dateien\Ulead Systems\AutoDetector\monitor.exe [2005-05-23 90112]
"QuickTime Task"=H:\Programme\QuickTime\qttask.exe [2007-12-11 286720]
"SunJavaUpdateSched"=C:\Programme\Java\jre1.6.0_03\bin\jusched.exe [2007-09-25 132496]
"FreePDF Assistant"=C:\Programme\FreePDF_XP\fpassist.exe [2007-06-26 312320]
"NvCplDaemon"=C:\WINDOWS\system32\NvCpl.dll [2008-09-17 13574144]
"nwiz"=nwiz.exe /install []
"NvMediaCenter"=C:\WINDOWS\system32\NvMcTray.dll [2008-09-17 86016]
"SideWinderTrayV4"=h:\PROGRA~1\MICROS~3\GAMECO~1\common\swtrayv4.exe [1999-07-03 24650]
"TkBellExe"=C:\Programme\Gemeinsame Dateien\Real\Update_OB\realsched.exe [2009-09-22 198160]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Update Service"=C:\PROGRA~1\GEMEIN~1\TEKNUM~1\update.exe [2008-01-14 19456]
"Rainlendar2"=D:\Programme\Rainlendar2\Rainlendar2.exe [2007-04-15 1291264]
"ctfmon.exe"=C:\WINDOWS\system32\ctfmon.exe [2004-08-04 15360]
C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Autostart
VIA RAID TOOL.lnk - C:\Programme\VIA\RAID\raid_tool.exe
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=323
"NoDriveAutorun"=67108863
"NoDrives"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=
"NoDriveAutoRun"=
"NoDriveTypeAutoRun"=
"NoDrives"=
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"E:\Programme\Sierra\swat4\Content\System\Swat4.exe"="E:\Programme\Sierra\swat4\Content\System\Swat4.exe:*:Disabled:SWAT 4"
"E:\Programme\Sierra\swat4\Content\System\Swat4DedicatedServer.exe"="E:\Programme\Sierra\swat4\Content\System\Swat4DedicatedServer.exe:*:Disabled:SWAT 4"
"E:\Program Files\Microsoft Games\AOE\EMPIRESX.EXE"="E:\Program Files\Microsoft Games\AOE\EMPIRESX.EXE:*:Enabled:Age of Empires, the Rise of Rome"
"E:\Program Files\Microsoft Games\AOE\Empires.exe"="E:\Program Files\Microsoft Games\AOE\Empires.exe:*:Enabled:Age of Empires"
"H:\Programme\EA Games\Nightfire\Bond.exe"="H:\Programme\EA Games\Nightfire\Bond.exe:*:Enabled:Bond"
"H:\Programme\GameSpy Arcade\Aphex.exe"="H:\Programme\GameSpy Arcade\Aphex.exe:*:Enabled:GameSpy Arcade"
"H:\Programme\Paradox Entertainment\Airfix Dogfighter DEMO\Dogfighter.exe"="H:\Programme\Paradox Entertainment\Airfix Dogfighter DEMO\Dogfighter.exe:*:Disabled:Dogfighter"
"C:\WINDOWS\System32\java.exe"="C:\WINDOWS\System32\java.exe:*:Enabled:Java(TM) Platform SE binary"
"D:\Programme\Microsoft Games\Age of Empires Trial\empires.exe"="D:\Programme\Microsoft Games\Age of Empires Trial\empires.exe:*:Enabled:Age of Empires Trial"
"E:\Empires\age2_x1\age2_x1.exe"="E:\Empires\age2_x1\age2_x1.exe:*:Enabled:Age of Empires II Expansion"
"F:\Programme\EA GAMES\MOHAA\MOHAA.exe"="F:\Programme\EA GAMES\MOHAA\MOHAA.exe:*:Enabled:Medal of Honor Allied Assault"
"E:\Programme\Mozilla Firefox\firefox.exe"="E:\Programme\Mozilla Firefox\firefox.exe:*:Enabled:Firefox"
"H:\Programme\SmartFTP Client\SmartFTP.exe"="H:\Programme\SmartFTP Client\SmartFTP.exe:*:Enabled:SmartFTP Client 3.0"
"H:\Programme\AeriaGames\Project Torque\ProjectTorque.bin"="H:\Programme\AeriaGames\Project Torque\ProjectTorque.bin:*:Disabled:Game"
"H:\alibaba\SWAT4 ALIBABA\Content\System\Swat4.exe"="H:\alibaba\SWAT4 ALIBABA\Content\System\Swat4.exe:*:Enabled:SWAT 4"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
======List of files/folders created in the last 1 months======
2010-02-17 18:14:42 ----D---- C:\rsit
2010-02-10 19:10:24 ----SHD---- C:\Recycled
2010-02-10 19:05:32 ----A---- C:\ComboFix.txt
2010-02-10 18:53:32 ----A---- C:\Boot.bak
2010-02-10 18:53:29 ----RASHD---- C:\cmdcons
2010-02-10 18:50:24 ----A---- C:\WINDOWS\zip.exe
2010-02-10 18:50:24 ----A---- C:\WINDOWS\SWXCACLS.exe
2010-02-10 18:50:24 ----A---- C:\WINDOWS\SWSC.exe
2010-02-10 18:50:24 ----A---- C:\WINDOWS\SWREG.exe
2010-02-10 18:50:24 ----A---- C:\WINDOWS\sed.exe
2010-02-10 18:50:24 ----A---- C:\WINDOWS\PEV.exe
2010-02-10 18:50:24 ----A---- C:\WINDOWS\NIRCMD.exe
2010-02-10 18:50:24 ----A---- C:\WINDOWS\MBR.exe
2010-02-10 18:50:24 ----A---- C:\WINDOWS\grep.exe
2010-02-10 18:40:49 ----D---- C:\WINDOWS\ERDNT
2010-02-10 18:40:10 ----D---- C:\Qoobox
2010-02-10 18:40:09 ----A---- C:\WINDOWS\LCDMedia.INI
2010-01-26 18:12:30 ----D---- C:\Poker
2010-01-26 17:49:54 ----D---- C:\Programme\Everest Poker
2010-01-26 17:44:38 ----D---- C:\Dokumente und Einstellungen\evgenij\Anwendungsdaten\PacificPoker
2010-01-21 22:35:06 ----D---- C:\WINDOWS\RegisteredPackages
2010-01-21 22:30:33 ----D---- C:\Programme\Gemeinsame Dateien\Windows Live
======List of files/folders modified in the last 1 months======
2010-02-16 23:16:16 ----A---- C:\WINDOWS\SchedLgU.Txt
2010-02-16 22:56:38 ----A---- C:\WINDOWS\videodeLuxe.INI
2010-02-10 19:03:50 ----A---- C:\WINDOWS\system.ini
2010-02-10 18:53:34 ----RASH---- C:\boot.ini
2010-01-26 17:50:10 ----A---- C:\WINDOWS\win.ini
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R1 Aavmker4;avast! Asynchronous Virus Monitor; C:\WINDOWS\system32\drivers\Aavmker4.sys [2009-11-25 27408]
R1 aswSP;avast! Self Protection; C:\WINDOWS\system32\drivers\aswSP.sys [2009-11-25 114768]
R1 aswTdi;avast! Network Shield Support; C:\WINDOWS\system32\drivers\aswTdi.sys [2009-11-25 48560]
R1 intelppm;Intel-Prozessortreiber; C:\WINDOWS\System32\DRIVERS\intelppm.sys [2004-08-04 40192]
R1 kbdhid;Tastatur-HID-Treiber; C:\WINDOWS\System32\DRIVERS\kbdhid.sys [2004-08-04 14848]
R2 aswFsBlk;aswFsBlk; C:\WINDOWS\system32\DRIVERS\aswFsBlk.sys [2009-11-25 20560]
R2 aswMon2;avast! Standard Shield Support; C:\WINDOWS\system32\drivers\aswMon2.sys [2009-11-25 94160]
R3 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [2009-11-25 23120]
R3 cmuda;C-Media WDM Audio Interface; C:\WINDOWS\system32\drivers\cmuda.sys [2003-10-17 754560]
R3 FETNDISB;VIA Rhine Family Fast Ethernet Adapter Driver Service; C:\WINDOWS\system32\DRIVERS\fetnd5b.sys [2003-11-11 41984]
R3 GcKernel;Microsoft SideWinder Value Add - Filtertreiber; C:\WINDOWS\System32\DRIVERS\GcKernel.sys [2004-08-03 59136]
R3 HIDSwvd;Microsoft SideWinder-Minitreiber für virtuelles HID-Gerät; C:\WINDOWS\System32\DRIVERS\HIDSwvd.sys [2001-08-17 2688]
R3 hidusb;Microsoft HID Class-Treiber; C:\WINDOWS\System32\DRIVERS\hidusb.sys [2001-08-18 9600]
R3 mouhid;Maus-HID-Treiber; C:\WINDOWS\System32\DRIVERS\mouhid.sys [2001-08-18 12288]
R3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2008-09-17 6132576]
R3 usbccgp;Microsoft Standard-USB-Haupttreiber; C:\WINDOWS\System32\DRIVERS\usbccgp.sys [2004-08-03 31616]
R3 usbhub;Microsoft USB-Standardhubtreiber; C:\WINDOWS\System32\DRIVERS\usbhub.sys [2004-08-03 57600]
R3 usbuhci;Miniporttreiber für universellen Microsoft USB-Hostcontroller; C:\WINDOWS\System32\DRIVERS\usbuhci.sys [2004-08-03 20480]
S1 ATITool;ATITool Overclocking Utility; C:\WINDOWS\system32\DRIVERS\ATITool.sys [2006-11-10 24064]
S3 catchme;catchme; \??\C:\DOKUME~1\evgenij\LOKALE~1\Temp\catchme.sys []
S3 CCDECODE;Untertiteldecoder; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2004-08-03 17024]
S3 DCamUSBPremier;V3780s Digital Camera; C:\WINDOWS\System32\Drivers\mpixvid.sys [2004-07-01 81921]
S3 FETNDIS;VIA PCI 10/100-MBit/s-Fast Ethernetadapter-NT-Treiber; C:\WINDOWS\System32\DRIVERS\fetnd5.sys [2001-08-17 27165]
S3 msgame;Sidewinder HID-zu-Joystickanschlussaktivierung; C:\WINDOWS\system32\DRIVERS\msgame.sys [2001-08-17 35200]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink-Konvertierung; C:\WINDOWS\system32\drivers\MSTEE.sys [2004-08-03 5504]
S3 NABTSFEC;NABTS/FEC VBI-Codec; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2004-08-03 85376]
S3 NdisIP;Microsoft TV-/Videoverbindung; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2004-08-03 10880]
S3 nm;Netzwerkmonitortreiber; C:\WINDOWS\system32\DRIVERS\NMnt.sys [2004-08-03 40320]
S3 NPF;NetGroup Packet Filter Driver; C:\WINDOWS\system32\drivers\npf.sys [2007-11-06 34064]
S3 NTSIM;NTSIM; \??\C:\WINDOWS\system32\ntsim.sys []
S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2004-08-03 11136]
S3 streamip;BDA-IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2004-08-03 15360]
S3 usbprint;Microsoft USB-Druckerklasse; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2004-08-03 25856]
S3 usbscan;USB-Scannertreiber; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2004-08-03 15104]
S3 USBSTOR;USB-Massenspeichertreiber; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2004-08-03 26496]
S3 vsdatant;vsdatant; \??\C:\WINDOWS\system32\vsdatant.sys []
S3 WSTCODEC;World Standard Teletext-Codec; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2004-08-03 19328]
S4 IntelIde;IntelIde; C:\WINDOWS\system32\drivers\IntelIde.sys []
S4 WS2IFSL;Windows Socket 2.0 Non-IFS-Dienstanbieter-Unterstützungsumgebung; C:\WINDOWS\System32\drivers\ws2ifsl.sys [2001-08-18 12032]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AcuWVSSchedulerv5;Acunetix WVS Scheduler v5; h:\Programme\Acunetix\Web Vulnerability Scanner 5\WVSScheduler.exe [2008-03-13 655872]
R2 aswUpdSv;avast! iAVS4 Control Service; e:\Programme\Alwil Software\Avast4\aswUpdSv.exe [2009-11-25 18752]
R2 avast! Antivirus;avast! Antivirus; e:\Programme\Alwil Software\Avast4\ashServ.exe [2009-11-25 138680]
R2 NVSvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvsvc32.exe [2008-09-17 163908]
R3 avast! Mail Scanner;avast! Mail Scanner; e:\Programme\Alwil Software\Avast4\ashMaiSv.exe [2009-11-25 254040]
R3 avast! Web Scanner;avast! Web Scanner; e:\Programme\Alwil Software\Avast4\ashWebSv.exe [2009-11-25 352920]
S2 gupdate1c9ae4f972fb88a;Google Update Service (gupdate1c9ae4f972fb88a); C:\Programme\Google\Update\GoogleUpdate.exe [2009-03-26 133104]
S3 aspnet_state;ASP.NET-Zustandsdienst; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 FirebirdServerMAGIXInstance;Firebird Server - MAGIX Instance; H:\Programme\MAGIX\Common\Database\bin\fbserver.exe [2005-11-17 1527900]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 IDriverT;InstallDriver Table Manager; C:\Programme\Gemeinsame Dateien\InstallShield\Driver\1050\Intel 32\IDriverT.exe [2004-10-22 73728]
S3 idsvc;Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 rpcapd;Remote Packet Capture Protocol v.0 (experimental); C:\Programme\WinPcap\rpcapd.exe [2007-11-06 92792]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]
-----------------EOF-----------------
Code:
info.txt logfile of random's system information tool 1.06 2010-02-17 18:14:50
======Uninstall list======
-->H:\Programme\MAGIX\Speed2_burnR_mxcdr\unwise.exe
-->rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WINDOWS\INF\PCHealth.inf
7-Zip 4.57-->"h:\Programme\7-Zip\Uninstall.exe"
ABBYY FineReader 6.0 Sprint-->MsiExec.exe /I{ACF60000-22B9-4CE9-98D6-2CCF359BAC07}
AccessDiver v4.402-->"h:\Programme\Accessdiver\unins000.exe"
AceHTML 5 Freeware-->C:\WINDOWS\iun6002.exe "h:\Programme\Visicom Media\AceHTML 5 Freeware\irunin.ini"
Active GIF Creator 3.3-->"h:\Programme\Active GIF Creator 3.3\uninstall.exe"
Acunetix Web Vulnerability Scanner 5.1-->"h:\Programme\Acunetix\Web Vulnerability Scanner 5\unins000.exe"
Adobe Flash Player 10 ActiveX-->C:\WINDOWS\system32\Macromed\Flash\uninstall_activeX.exe
Adobe Flash Player Plugin-->C:\WINDOWS\system32\Macromed\Flash\uninstall_plugin.exe
Adobe Reader 8.1.1 - Deutsch-->MsiExec.exe /I{AC76BA86-7AD7-1031-7B44-A81000000003}
Adobe Shockwave Player-->C:\WINDOWS\system32\ADOBE\SHOCKW~1\UNWISE.EXE C:\WINDOWS\system32\ADOBE\SHOCKW~1\INSTALL.LOG
Advanced IP Scanner v1.4-->h:\Programme\Advanced IP Scanner\uninstal.exe
AFPL Ghostscript 8.54-->C:\Programme\gs\uninstgs.exe "C:\Programme\gs\gs8.54\uninstal.txt"
AFPL Ghostscript Fonts-->C:\Programme\gs\uninstgs.exe "C:\Programme\gs\fonts\uninstal.txt"
Airfix Dogfighter DEMO-->RunDll32 C:\PROGRA~1\GEMEIN~1\INSTAL~1\engine\6\INTEL3~1\ctor.dll,LaunchSetup "C:\Programme\InstallShield Installation Information\{D9C70541-ADA5-40A4-B176-6AAFCBA05C8F}\setup.exe"
Ant.com Toolbar-->regsvr32 /u /s "h:\Programme\Antbar\Ant.com Toolbar\tbcore3.dll"
Apple Software Update-->MsiExec.exe /I{6956856F-B6B3-4BE0-BA0B-8F495BE32033}
Artful GIF Animator 1.2-->"h:\Programme\Artful GIF Animator\unins000.exe"
Ask Guru Joe v1.4a-->"C:\Programme\NCBuy\Ask Guru Joe\unins000.exe"
Ask Toolbar-->"C:\Programme\AskBarDis\unins000.exe"
avast! Antivirus-->e:\Programme\Alwil Software\Avast4\aswRunDll.exe "e:\Programme\Alwil Software\Avast4\Setup\setiface.dll",RunSetup
AVIVO-->MsiExec.exe /X{5399ACAF-7B15-43D5-9233-4E797B184FD2}
Benutzerhandbuch ESDX5000_CX4900-->C:\Programme\EPSON\TPMANUAL\ESDX5000_CX4900\USE_G\DOCUNINS.EXE
Cain & Abel v4.9.10-->H:\PROGRA~1\Cain\UNINSTAL.EXE H:\PROGRA~1\Cain\Install.log
CamStudio-->h:\Programme\CamStudio\uninstall.exe
C-Media 3D Audio-->C:\WINDOWS\CMIUnInstall.exe
Corel Applications-->C:\WINDOWS\Corel\Uninstal.exe
CrazyTalk v5.0 PRO Trial-->C:\Programme\InstallShield Installation Information\{2EB3B0AB-4FEB-4548-B7E7-7A0E73F69125}\setup.exe -runfromtemp -l0x0007 -removeonly /remove
Cryptext (Remove Only)-->rundll32 setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WINDOWS\system32\ShellExt\Cryptext.inf
Debut Video Capture Software-->C:\Programme\NCH Software\Debut\uninst.exe
DH Driver Cleaner Professional Edition-->h:\Programme\Driver Cleaner Pro\Uninstall.exe
DivX Content Uploader-->C:\Programme\DivX\DivXContentUploaderUninstall.exe /CUPLOADER
DivX Web Player-->C:\Programme\DivX\DivXWebPlayerUninstall.exe /PLUGIN
Easy GIF Animator 4.9-->"h:\Programme\Easy GIF Animator\unins000.exe"
EPSON Attach To Email-->C:\Programme\Gemeinsame Dateien\InstallShield\Driver\8\Intel 32\IDriver.exe /M{20C45B32-5AB6-46A4-94EF-58950CAF05E5} /l1033 ADDREMOVEDLG
EPSON Copy Utility 3-->RunDll32 C:\PROGRA~1\GEMEIN~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Programme\InstallShield Installation Information\{67EDD823-135A-4D59-87BD-950616D6E857}\SETUP.EXE" -l0x7 -UnInstall
EPSON Easy Photo Print-->RunDll32 C:\PROGRA~1\GEMEIN~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Programme\InstallShield Installation Information\{BC69DDB8-4840-4D9B-BB31-0D4DB2BA1312}\SETUP.EXE" -l0x7 UNINST
EPSON File Manager-->RunDll32 C:\PROGRA~1\GEMEIN~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Programme\InstallShield Installation Information\{E86BC406-944E-41F6-ADE6-2C136734C96B}\Setup.exe" -l0x7 UNINST
EPSON Scan Assistant-->RunDll32 C:\PROGRA~1\GEMEIN~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Programme\InstallShield Installation Information\{2A88F1BF-7041-4E42-84B1-6B4ACB83AC64}\Setup.exe" -l0x7 -u
EPSON Scan-->C:\Programme\epson\escndv\setup\setup.exe /r
EPSON Web-To-Page-->RunDll32 C:\PROGRA~1\GEMEIN~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Programme\InstallShield Installation Information\{7F14F68C-17FA-4F88-B3FD-7F449C1EBF32}\SETUP.EXE" -l0x7 -anything
EPSON-Drucker-Software-->C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\EPUPDATE.EXE /r
EVEREST Home Edition v2.20-->"h:\Programme\Lavalys\EVEREST Home Edition\unins000.exe"
EximiousSoft GIF Creator V5.72-->"h:\Programme\GifCreator\unins000.exe"
Firebird SQL Server - MAGIX Edition-->H:\Programme\MAGIX\Common\Database\unwise.exe
Fraps (remove only)-->"C:\Fraps28\uninstall.exe"
Free Studio version 4.3-->"h:\Programme\DVDVideoSoft\Free Studio\unins000.exe"
Free YouTube Download 2.2-->"h:\Programme\DVDVideoSoft\Free YouTube Download\unins000.exe"
Free YouTube to Mp3 Converter version 3.1-->"h:\Programme\DVDVideoSoft\Free YouTube to Mp3 Converter\unins000.exe"
Freedom-->MsiExec.exe /I{012F2124-7354-11D4-A13E-0050041C9634}
FreePDF XP (Remove only)-->C:\Programme\FreePDF_XP\fpsetup.exe /r
GameSpy Arcade-->H:\PROGRA~1\GAMESP~1\UNWISE.EXE H:\PROGRA~1\GAMESP~1\INSTALL.LOG
GetDataBack for NTFS-->"h:\Programme\Runtime Software\GetDataBack for NTFS\Uninstall.exe" "h:\Programme\Runtime Software\GetDataBack for NTFS\install.log" -u
GIF Construction Set Professional 3-->C:\WINDOWS\ALCHUNIN.EXE h:\Programme\INSTALLD.TXT
GIFmation 2.5-->"h:\Programme\BoxTop Software\GIFmation\unins000.exe"
GIMP 2.4.2-->"d:\Programme\GIMP-2.0\setup\unins000.exe"
Google Earth-->MsiExec.exe /X{2EAF7E61-068E-11DF-953C-005056806466}
Google Gears-->MsiExec.exe /I{BC2FE771-EDBE-3087-A676-2B6C45A2BF7E}
Google Update Helper-->MsiExec.exe /I{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}
Grand Theft Auto San Andreas-->RunDll32 C:\PROGRA~1\GEMEIN~1\INSTAL~1\PROFES~1\RunTime\10\50\Intel32\Ctor.dll,LaunchSetup "C:\Programme\InstallShield Installation Information\{086BADF8-9B1F-4E89-B207-2EDA520972D6}\setup.exe" -l0x7 -removeonly
HandyBits EasyCrypto Deluxe-->"C:\Programme\Gemeinsame Dateien\Teknum Systems\tsUninst.exe" "C:\Programme\HandyBits\EasyCrypto\HandyBits EasyCrypto Deluxe.del"
HijackThis 2.0.2-->"C:\Programme\Trend Micro\HijackThis\HijackThis.exe" /uninstall
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)-->C:\WINDOWS\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall /qb+ REBOOTPROMPT=""
Hotfix für Windows XP (KB952287)-->"C:\WINDOWS\$NtUninstallKB952287$\spuninst\spuninst.exe"
Hotfix für Windows XP (KB961118)-->"C:\WINDOWS\$NtUninstallKB961118$\spuninst\spuninst.exe"
htmlapp remoteintegrity-->C:\Programme\htmlapp\remoteintegrity\ha_setup\HA_Remove.exe
ICQ Toolbar-->regsvr32 /u /s "C:\Programme\ICQToolbar\toolbaru.dll"
ICQ6.5-->"C:\Programme\InstallShield Installation Information\{60DE4033-9503-48D1-A483-7846BD217CA9}\setup.exe" -runfromtemp -l0x0009 -removeonly
iMage 1.0 by Vanga Sasidhar-->C:\WINDOWS\st6unst.exe -n "i:\Programme\ST6UNST.LOG"
InfoRapid KnowledgeMap-->H:\PROGRA~1\INFORA~1\KNOWLE~1\UNWISE.EXE H:\PROGRA~1\INFORA~1\KNOWLE~1\INSTALL.LOG
IrfanView (remove only)-->h:\Programme\IrfanView\iv_uninstall.exe
James Bond 007: Nightfire-->H:\PROGRA~1\EAGAME~1\NIGHTF~1\UNWISE.EXE H:\PROGRA~1\EAGAME~1\NIGHTF~1\INSTALL.LOG
JAP-->h:\Programme\JAP\uninstall.exe
Java(TM) 6 Update 3-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160030}
Logitech G-series Keyboard Software-->MsiExec.exe /X{5A080213-5AEC-4BF2-BB32-796EB0E421EC}
MAGIX 3D Maker (embeded)-->H:\Programme\MAGIX\Common\3D_Maker_embeded\unwise.exe
MAGIX Foto Clinic 4.5 (D)-->H:\MAGIX\Foto_Clinic_45\instslct.exe
MAGIX Video Pro X 1.5 Testversion 8.6.0.16 (D)-->H:\Programme\MAGIX\Video_Pro_X_1_5_Testversion\unwise.exe
MAGIX Xtreme Foto Designer 6 6.0.27.0 (D)-->H:\Programme\MAGIX\Xtreme_Foto_Designer_6\unwise.exe
Malwarebytes' Anti-Malware-->"h:\Programme\Malwarebytes' Anti-Malware\unins000.exe"
MDK-->C:\WINDOWS\unin0407.exe -fh:\SHINY\MDK\DeIsL1.isu
Microsoft .NET Framework 2.0 Service Pack 2 Language Pack - DEU-->MsiExec.exe /I{C314CE45-3392-3B73-B4E1-139CD41CA933}
Microsoft .NET Framework 2.0 Service Pack 2-->MsiExec.exe /I{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}
Microsoft .NET Framework 3.0 Service Pack 2 Language Pack - DEU-->MsiExec.exe /I{C2C284D2-6BD7-3B34-B0C5-B2CAED168DF7}
Microsoft .NET Framework 3.0 Service Pack 2-->MsiExec.exe /I{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}
Microsoft .NET Framework 3.5 Language Pack SP1 - DEU-->C:\WINDOWS\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 Language Pack SP1 - deu\setup.exe
Microsoft .NET Framework 3.5 Language Pack SP1 - deu-->MsiExec.exe /I{052FDD78-A6EA-3187-8386-C82F4CA3A929}
Microsoft .NET Framework 3.5 SP1-->C:\WINDOWS\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\setup.exe
Microsoft .NET Framework 3.5 SP1-->MsiExec.exe /I{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}
Microsoft Midtown Madness 2-->"H:\Programme\UNINSTAL.EXE" /runtemp /addremove
Microsoft Visual Basic 2005 Express Edition - DEU-->H:\Programme\Microsoft Visual Studio 8\Microsoft Visual Basic 2005 Express Edition - DEU\setup.exe
Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{A49F249F-0C91-497F-86DF-B2585E8E76B7}
Microsoft Works-->MsiExec.exe /I{B26E3B0D-C2FA-4370-B068-7C476766F029}
Morpheus Photo Animation Suite v3.11-->"h:\Programme\Morpheus Photo Animation Suite\unins000.exe"
Mozilla Firefox (2.0.0.20)-->E:\Programme\Mozilla Firefox\uninstall\helper.exe
MSXML 4.0 SP2 (KB954430)-->MsiExec.exe /I{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}
MSXML 6 Service Pack 2 (KB954459)-->MsiExec.exe /I{1A528690-6A2D-4BC5-B143-8C4AE8D19D96}
NASA World Wind 1.4-->"h:\Programme\NASA\World Wind 1.4\Uninstall_World_Wind_1.4.exe"
NCH Tone Generator-->C:\Programme\NCH Software\ToneGen\uninst.exe
NVIDIA Drivers-->C:\WINDOWS\system32\nvuninst.exe UninstallGUI
Ots CD Scratch 1200 1.00.032-->"C:\WINDOWS\OTS_UI.EXE" "H:\Programme\OTSCDS.osi"
Pacific Poker-->H:\PROGRA~1\PACIFI~1\UNWISE.EXE H:\PROGRA~1\PACIFI~1\INSTALL.LOG
Paint.NET v3.5.3-->MsiExec.exe /X{A401975C-C1C5-4ECB-BC18-BFD9F8F401B7}
PartyPoker-->"h:\Programme\PartyGaming\PartyPoker\Uninstall.exe" "h:\Programme\PartyGaming\PartyPoker\install.log"
Password-Finder 2.2-->"h:\Programme\Password-Finder\unins000.exe"
PC Inspector File Recovery-->RunDll32 C:\PROGRA~1\GEMEIN~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Programme\InstallShield Installation Information\{0DD140D3-9563-481E-AA75-BA457CBDAEF2}\Setup.exe" -l0x7
PIF DESIGNER-->RunDll32 C:\PROGRA~1\GEMEIN~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Programme\InstallShield Installation Information\{B90450DF-E781-46FD-B1F1-0C86DA40E443}\SETUP.EXE" -l0x7 anything
PKR-->"h:\Programme\PKR\uninstall-pkr.exe"
PokerStars-->"h:\Programme\PokerStars\PokerStarsUninstall.exe" /u:PokerStars
Polipo 1.0.4-->"h:\Programme\Vidalia Bundle\Uninstall.exe"
Project Torque-->h:\Programme\AeriaGames\Project Torque\uninstall.exe
QuickTime-->MsiExec.exe /I{E0D51394-1D45-460A-B62D-383BC4F8B335}
RealPlayer-->C:\Programme\Gemeinsame Dateien\Real\Update_OB\r1puninst.exe RealNetworks|RealPlayer|12.0
RedMon - Redirection Port Monitor-->C:\WINDOWS\system32\unredmon.exe
RollerCoaster Tycoon 3-->"h:\Programme\Atari\RollerCoaster Tycoon 3\uninst\unins000.exe"
SFX Creator (remove only)-->C:\Programme\SFX Creator\Uninst.exe
Sicherheitsupdate für Windows Internet Explorer 8 (KB969897)-->"C:\WINDOWS\ie8updates\KB969897-IE8\spuninst\spuninst.exe"
Sicherheitsupdate für Windows Media Player (KB952069)-->"C:\WINDOWS\$NtUninstallKB952069_WM9$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB923561)-->"C:\WINDOWS\$NtUninstallKB923561$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB938464-v2)-->"C:\WINDOWS\$NtUninstallKB938464-v2$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB944338-v2)-->"C:\WINDOWS\$NtUninstallKB944338-v2$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB950760)-->"C:\WINDOWS\$NtUninstallKB950760$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB950762)-->"C:\WINDOWS\$NtUninstallKB950762$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB950974)-->"C:\WINDOWS\$NtUninstallKB950974$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB951066)-->"C:\WINDOWS\$NtUninstallKB951066$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB951376-v2)-->"C:\WINDOWS\$NtUninstallKB951376-v2$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB951748)-->"C:\WINDOWS\$NtUninstallKB951748$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB952004)-->"C:\WINDOWS\$NtUninstallKB952004$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB952954)-->"C:\WINDOWS\$NtUninstallKB952954$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB954600)-->"C:\WINDOWS\$NtUninstallKB954600$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB955069)-->"C:\WINDOWS\$NtUninstallKB955069$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB956572)-->"C:\WINDOWS\$NtUninstallKB956572$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB956802)-->"C:\WINDOWS\$NtUninstallKB956802$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB956803)-->"C:\WINDOWS\$NtUninstallKB956803$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB957097)-->"C:\WINDOWS\$NtUninstallKB957097$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB958644)-->"C:\WINDOWS\$NtUninstallKB958644$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB958687)-->"C:\WINDOWS\$NtUninstallKB958687$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB959426)-->"C:\WINDOWS\$NtUninstallKB959426$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB960225)-->"C:\WINDOWS\$NtUninstallKB960225$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB960803)-->"C:\WINDOWS\$NtUninstallKB960803$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB961373)-->"C:\WINDOWS\$NtUninstallKB961373$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB961501)-->"C:\WINDOWS\$NtUninstallKB961501$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB968537)-->"C:\WINDOWS\$NtUninstallKB968537$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB969898)-->"C:\WINDOWS\$NtUninstallKB969898$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB970238)-->"C:\WINDOWS\$NtUninstallKB970238$\spuninst\spuninst.exe"
SideWinder Precision Racing Wheel-->C:\WINDOWS\IsUn0407.exe -f"h:\Programme\Microsoft Hardware\Game Controllers\Precision Racing Wheel\Uninst.isu" -c"h:\Programme\Microsoft Hardware\Game Controllers\Precision Racing Wheel\Uninstall.dll"
SmartFTP Client 3.0 Setup Files (remove only)-->C:\Programme\SmartFTP Client 3.0 Setup Files\uninst-sftp.exe
SmartFTP Client-->MsiExec.exe /I{6F23C1A3-9F62-470C-BD12-B83F04E67865}
SpeedFan (remove only)-->"h:\Programme\SpeedFan\uninstall.exe"
SpyCQ v1.6c-->h:\Programme\SpyCQ\uninstall.exe
SUPER © Version 2008.bld.24 (Jan 18, 2008)-->h:\PROGRA~1\ERIGHT~1\SUPER\Setup.exe /remove /q0
SWAT 4 - THE STETCHKOV SYNDICATE-->C:\PROGRA~1\GEMEIN~1\INSTAL~1\Driver\10\INTEL3~1\IDriver.exe /M{97E12F84-C033-4DA2-97D2-F540C3E292EA} uninstall
SWAT 4-->C:\PROGRA~1\GEMEIN~1\INSTAL~1\Driver\10\INTEL3~1\IDriver.exe /M{8E1CCF20-9E12-4824-BD59-7AD9E0486DD8} uninstall
Take5 1.30 Trial-->h:\Programme\CellSoft\Take5\uninst.exe
TBS WMP Plug-in-->C:\PROGRA~1\GEMEIN~1\INSTAL~1\Driver\1050\INTEL3~1\IDriver.exe /M{13515135-48BB-4184-8C1F-2FAE0138E200}
TeamViewer 3-->h:\Programme\TeamViewer3\uninstall.exe
The Anonymous Mailer-->C:\WINDOWS\unin0407.exe -f"h:\Programme\LangerSoft\The Anonymous Mailer\DeIsL1.isu" -c"h:\Programme\LangerSoft\The Anonymous Mailer\_ISREG32.DLL"
Tibia MULTI-ip changer-->C:\Programme\Asprate\Tibia Multi IP Changer\UNinstaller.exe
Tor 0.2.1.21-->"h:\Programme\Vidalia Bundle\Uninstall.exe"
Ulead PhotoImpact 11-->RunDll32 C:\PROGRA~1\GEMEIN~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Programme\InstallShield Installation Information\{C8550C86-A712-4219-AD4C-038C9FD1D149}\setup.exe" -l0x7
Unicode Image Maker 1.02.01-->"h:\Programme\UnicodeImageMaker\unins000.exe"
Uninstall 1.0.0.1-->"C:\Programme\Gemeinsame Dateien\DVDVideoSoft\unins000.exe"
Update for Microsoft .NET Framework 3.5 SP1 (KB963707)-->C:\WINDOWS\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall {B2AE9C82-DC7B-3641-BFC8-87275C4F3607} /qb+ REBOOTPROMPT=""
Update für Windows Internet Explorer 8 (KB971930)-->"C:\WINDOWS\ie8updates\KB971930-IE8\spuninst\spuninst.exe"
Update für Windows XP (KB898461)-->"C:\WINDOWS\$NtUninstallKB898461$\spuninst\spuninst.exe"
Update für Windows XP (KB925720)-->"C:\WINDOWS\$NtUninstallKB925720$\spuninst\spuninst.exe"
Update für Windows XP (KB955839)-->"C:\WINDOWS\$NtUninstallKB955839$\spuninst\spuninst.exe"
Update für Windows XP (KB967715)-->"C:\WINDOWS\$NtUninstallKB967715$\spuninst\spuninst.exe"
V3780s Digital Camera Driver-->C:\PROGRA~1\V3780S~1\UNWISE.EXE C:\PROGRA~1\V3780S~1\INSTALL.LOG
VIA Plattform-Geräte-Manager-->C:\PROGRA~1\GEMEIN~1\INSTAL~1\Driver\7\INTEL3~1\IDriver.exe /M{20D4A895-748C-4D88-871C-FDB1695B0169}
Vidalia 0.2.6-->"h:\Programme\Vidalia Bundle\Uninstall.exe"
VideoLAN VLC media player 0.8.6d-->C:\Programme\VideoLAN\VLC\uninstall.exe
Windows Imaging Component-->"C:\WINDOWS\$NtUninstallWIC$\spuninst\spuninst.exe"
Windows Installer 3.1 (KB893803)-->"C:\WINDOWS\$MSI31Uninstall_KB893803v2$\spuninst\spuninst.exe"
Windows Internet Explorer 8-->"C:\WINDOWS\ie8\spuninst\spuninst.exe"
Windows XP Service Pack 2-->C:\WINDOWS\$NtServicePackUninstall$\spuninst\spuninst.exe
WinPcap 4.0.2-->C:\Programme\WinPcap\uninstall.exe
XML Paper Specification Shared Components Language Pack 1.0-->"C:\WINDOWS\$NtUninstallXPSEPSCLP$\spuninst\spuninst.exe"
======Security center information======
AV: avast! antivirus 4.8.1368 [VPS 100217-0]
======System event log======
Computer Name: GENJ
Event Code: 7035
Message: Der Steuerbefehl "starten" wurde erfolgreich an den Dienst "SSDP-Suchdienst" gesendet.
Record Number: 5957
Source Name: Service Control Manager
Time Written: 20091124154601.000000+060
Event Type: Informationen
User: NT-AUTORITÄT\SYSTEM
Computer Name: GENJ
Event Code: 7036
Message: Dienst "NLA (Network Location Awareness)" befindet sich jetzt im Status "Ausgeführt".
Record Number: 5956
Source Name: Service Control Manager
Time Written: 20091124154601.000000+060
Event Type: Informationen
User:
Computer Name: GENJ
Event Code: 7035
Message: Der Steuerbefehl "starten" wurde erfolgreich an den Dienst "NLA (Network Location Awareness)" gesendet.
Record Number: 5955
Source Name: Service Control Manager
Time Written: 20091124154601.000000+060
Event Type: Informationen
User: NT-AUTORITÄT\SYSTEM
Computer Name: GENJ
Event Code: 7035
Message: Der Steuerbefehl "starten" wurde erfolgreich an den Dienst "RAS-Verbindungsverwaltung" gesendet.
Record Number: 5954
Source Name: Service Control Manager
Time Written: 20091124154601.000000+060
Event Type: Informationen
User: NT-AUTORITÄT\SYSTEM
Computer Name: GENJ
Event Code: 7036
Message: Dienst "Telefonie" befindet sich jetzt im Status "Ausgeführt".
Record Number: 5953
Source Name: Service Control Manager
Time Written: 20091124154601.000000+060
Event Type: Informationen
User:
=====Application event log=====
Computer Name: GENJ
Event Code: 0
Message: Fehler beim Entfernen einer Assembly aus dem globalen Assemblycache: C:\Programme\ATI Technologies\ATI.ACE\Graphics-Full-Existing\ES\CLI.Aspect.VeryLargeDesktop.Graphics.Dashboard.resources.DLL CLI.Aspect.VeryLargeDesktop.Graphics.Dashboard.resources,Version=2.0.2736.38519
Record Number: 2509
Source Name: COM+ SOAP Services
Time Written: 20090707233450.000000+120
Event Type: Warnung
User:
Computer Name: GENJ
Event Code: 0
Message: Fehler beim Entfernen einer Assembly aus dem globalen Assemblycache: C:\Programme\ATI Technologies\ATI.ACE\Graphics-Full-Existing\ES\CLI.Aspect.WorkstationConfig.Graphics.Dashboard.resources.DLL CLI.Aspect.WorkstationConfig.Graphics.Dashboard.resources,Version=2.0.2736.38526
Record Number: 2508
Source Name: COM+ SOAP Services
Time Written: 20090707233450.000000+120
Event Type: Warnung
User:
Computer Name: GENJ
Event Code: 0
Message: Fehler beim Entfernen einer Assembly aus dem globalen Assemblycache: C:\Programme\ATI Technologies\ATI.ACE\Graphics-Full-Existing\ES\CLI.Aspect.DeviceLCD.Graphics.Dashboard.resources.DLL CLI.Aspect.DeviceLCD.Graphics.Dashboard.resources,Version=2.0.2736.38533
Record Number: 2507
Source Name: COM+ SOAP Services
Time Written: 20090707233450.000000+120
Event Type: Warnung
User:
Computer Name: GENJ
Event Code: 0
Message: Fehler beim Entfernen einer Assembly aus dem globalen Assemblycache: C:\Programme\ATI Technologies\ATI.ACE\Graphics-Full-Existing\ES\CLI.Aspect.PowerXpress.Graphics.Dashboard.resources.DLL CLI.Aspect.PowerXpress.Graphics.Dashboard.resources,Version=2.0.2736.38659
Record Number: 2506
Source Name: COM+ SOAP Services
Time Written: 20090707233450.000000+120
Event Type: Warnung
User:
Computer Name: GENJ
Event Code: 0
Message: Fehler beim Entfernen einer Assembly aus dem globalen Assemblycache: C:\Programme\ATI Technologies\ATI.ACE\Graphics-Full-Existing\ES\CLI.Aspect.PowerPlayDPPE.Graphics.Dashboard.resources.DLL CLI.Aspect.PowerPlayDPPE.Graphics.Dashboard.resources,Version=2.0.2736.38616
Record Number: 2505
Source Name: COM+ SOAP Services
Time Written: 20090707233450.000000+120
Event Type: Warnung
User:
======Environment variables======
"ComSpec"=%SystemRoot%\system32\cmd.exe
"Path"=%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\system32\wbem;C:\Programme\ATI Technologies\ATI.ACE\Core-Static;H:\Programme\QuickTime\QTSystem
"windir"=%SystemRoot%
"OS"=Windows_NT
"PROCESSOR_ARCHITECTURE"=x86
"PROCESSOR_LEVEL"=15
"PROCESSOR_IDENTIFIER"=x86 Family 15 Model 2 Stepping 7, GenuineIntel
"PROCESSOR_REVISION"=0207
"NUMBER_OF_PROCESSORS"=1
"PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH
"TEMP"=%SystemRoot%\TEMP
"TMP"=%SystemRoot%\TEMP
"FP_NO_HOST_CHECK"=NO
"CLASSPATH"=.;H:\Programme\QuickTime\QTSystem\QTJava.zip
"QTJAVA"=H:\Programme\QuickTime\QTSystem\QTJava.zip
-----------------EOF-----------------
|
