Zitat:
Sieht ok aus, da wurden nur Cookies gefunden und ein Überrest in der SWH.
| Ist damit die Systemwiederherstellung gemeint > swh ? ( hoffentlich nichts schlimmes )
Hier die OTL-logs Code:
OTL logfile created on: 14.09.2010 18:19:42 - Run 1
OTL by OldTimer - Version 3.2.12.0 Folder = C:\Dokumente und Einstellungen\Mavor\Desktop
Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 6.0.2900.2180)
Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy
3,00 Gb Total Physical Memory | 2,00 Gb Available Physical Memory | 82,00% Memory free
6,00 Gb Paging File | 5,00 Gb Available in Paging File | 93,00% Paging File free
Paging file location(s): C:\pagefile.sys 0 0 [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Programme
Drive C: | 50,01 Gb Total Space | 37,20 Gb Free Space | 74,40% Space Free | Partition Type: NTFS
D: Drive not present or media not loaded
Drive E: | 128,00 Gb Total Space | 30,54 Gb Free Space | 23,86% Space Free | Partition Type: NTFS
Drive F: | 781,50 Gb Total Space | 119,93 Gb Free Space | 15,35% Space Free | Partition Type: NTFS
Drive G: | 100,01 Gb Total Space | 67,52 Gb Free Space | 67,51% Space Free | Partition Type: NTFS
Drive H: | 195,31 Gb Total Space | 187,57 Gb Free Space | 96,04% Space Free | Partition Type: NTFS
Drive I: | 142,45 Gb Total Space | 1,62 Gb Free Space | 1,14% Space Free | Partition Type: NTFS
Drive R: | 931,51 Gb Total Space | 659,91 Gb Free Space | 70,84% Space Free | Partition Type: NTFS
Computer Name: MAVER
Current User Name: Mavor
Logged in as Administrator.
Current Boot Mode: Normal
Scan Mode: Current user
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Minimal
========== Processes (SafeList) ==========
PRC - C:\Dokumente und Einstellungen\Mavor\Desktop\OTL.exe (OldTimer Tools)
PRC - C:\Programme\Mozilla Firefox\firefox.exe (Mozilla Corporation)
PRC - C:\Programme\Gemeinsame Dateien\Acronis\CDP\afcdpsrv.exe (Acronis)
PRC - C:\Programme\LogMeIn Hamachi\hamachi-2.exe (LogMeIn Inc.)
PRC - C:\Programme\Gemeinsame Dateien\Acronis\Schedule2\schedul2.exe (Acronis)
PRC - C:\Programme\Creative\Shared Files\CTAudSvc.exe (Creative Technology Ltd)
PRC - C:\Programme\Kaspersky Lab\Kaspersky Anti-Virus 7.0\avp.exe (Kaspersky Lab)
PRC - C:\WINDOWS\system32\libusbd-nt.exe (hxxp://libusb-win32.sourceforge.net)
PRC - C:\WINDOWS\explorer.exe (Microsoft Corporation)
PRC - C:\Programme\Teamspeak2_RC2\TeamSpeak.exe (Dominating Bytes Design)
========== Modules (SafeList) ==========
MOD - C:\Dokumente und Einstellungen\Mavor\Desktop\OTL.exe (OldTimer Tools)
MOD - C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.4053_x-ww_e6967989\msvcr80.dll (Microsoft Corporation)
MOD - C:\Programme\Kaspersky Lab\Kaspersky Anti-Virus 7.0\miscr3.dll (Kaspersky Lab)
MOD - C:\Programme\Kaspersky Lab\Kaspersky Anti-Virus 7.0\fssync.dll (Kaspersky Lab)
MOD - C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll (Microsoft Corporation)
MOD - C:\WINDOWS\system32\msscript.ocx (Microsoft Corporation)
========== Win32 Services (SafeList) ==========
SRV - (afcdpsrv) -- C:\Programme\Gemeinsame Dateien\Acronis\CDP\afcdpsrv.exe (Acronis)
SRV - (Hamachi2Svc) -- C:\Programme\LogMeIn Hamachi\hamachi-2.exe (LogMeIn Inc.)
SRV - (Sound Blaster X-Fi MB Licensing Service) -- C:\Programme\Gemeinsame Dateien\Creative Labs Shared\Service\XMBLicensing.exe (Creative Labs)
SRV - (AcrSch2Svc) -- C:\Programme\Gemeinsame Dateien\Acronis\Schedule2\schedul2.exe (Acronis)
SRV - (NMIndexingService) -- C:\Programme\Gemeinsame Dateien\Nero\Lib\NMIndexingService.exe (Nero AG)
SRV - (CTAudSvcService) -- C:\Programme\Creative\Shared Files\CTAudSvc.exe (Creative Technology Ltd)
SRV - (AVP) -- C:\Programme\Kaspersky Lab\Kaspersky Anti-Virus 7.0\avp.exe (Kaspersky Lab)
SRV - (libusbd) -- C:\WINDOWS\system32\libusbd-nt.exe (hxxp://libusb-win32.sourceforge.net)
========== Driver Services (SafeList) ==========
DRV - (catchme) -- C:\DOKUME~1\Mavor\LOKALE~1\Temp\catchme.sys File not found
DRV - (ALSysIO) -- C:\DOKUME~1\Mavor\LOKALE~1\Temp\ALSysIO.sys File not found
DRV - (sptd) -- C:\WINDOWS\System32\Drivers\sptd.sys ()
DRV - (afcdp) -- C:\WINDOWS\system32\drivers\afcdp.sys (Acronis)
DRV - (tdrpman258) Acronis Try&Decide and Restore Points filter (build 258) -- C:\WINDOWS\system32\DRIVERS\tdrpm258.sys (Acronis)
DRV - (timounter) -- C:\WINDOWS\system32\DRIVERS\timntr.sys (Acronis)
DRV - (snapman) -- C:\WINDOWS\system32\DRIVERS\snapman.sys (Acronis)
DRV - (SASKUTIL) -- C:\Programme\SUPERAntiSpyware\SASKUTIL.SYS (SUPERAdBlocker.com and SUPERAntiSpyware.com)
DRV - (VCam_WDM) -- C:\WINDOWS\system32\drivers\VCam_WDM.sys (e2eSoft)
DRV - (e2eVAWdm) -- C:\WINDOWS\system32\drivers\VAud_WDM.sys (e2eSoft)
DRV - (nv) -- C:\WINDOWS\system32\drivers\nv4_mini.sys (NVIDIA Corporation)
DRV - (SASDIFSV) -- C:\Programme\SUPERAntiSpyware\sasdifsv.sys (SUPERAdBlocker.com and SUPERAntiSpyware.com)
DRV - (hamachi) -- C:\WINDOWS\system32\drivers\hamachi.sys (LogMeIn, Inc.)
DRV - (yukonwxp) -- C:\WINDOWS\system32\drivers\yk51x86.sys (Marvell)
DRV - (JRAID) -- C:\WINDOWS\system32\DRIVERS\jraid.sys (JMicron Technology Corp.)
DRV - (ADIHdAudAddService) -- C:\WINDOWS\system32\drivers\ADIHdAud.sys (Analog Devices, Inc.)
DRV - (AmbFilt) -- C:\WINDOWS\system32\drivers\Ambfilt.sys (Creative)
DRV - (klif) -- C:\WINDOWS\system32\drivers\klif.sys (Kaspersky Lab)
DRV - (AsIO) -- C:\WINDOWS\system32\drivers\AsIO.sys ()
DRV - (klim5) -- C:\WINDOWS\system32\drivers\klim5.sys (Kaspersky Lab)
DRV - (kl1) -- C:\WINDOWS\system32\drivers\kl1.sys (Kaspersky Lab)
DRV - (EuMusDesignVirtualAudioCableWdm) StudioPro audio (WDM) -- C:\WINDOWS\system32\drivers\vrtaucbl.sys (Eugene V. Muzychenko)
DRV - (StudioPro) -- C:\WINDOWS\system32\drivers\StudioPro.sys (e2eSoft)
DRV - (ATITool) -- C:\WINDOWS\system32\drivers\ATITool.sys ()
DRV - (SUPERWEBCAM) -- C:\WINDOWS\system32\drivers\superwebcam.sys (Windows (R) 2000 DDK provider)
DRV - (libusb0) -- C:\WINDOWS\system32\drivers\libusb0.sys ()
DRV - (HDAudBus) -- C:\WINDOWS\system32\drivers\Hdaudbus.sys (Windows (R) Server 2003 DDK provider)
DRV - (MTsensor) -- C:\WINDOWS\system32\drivers\ASACPI.sys ()
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = hxxp://google.de/
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
========== FireFox ==========
FF - prefs.js..browser.startup.homepage: "www.google.de"
FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0
FF - prefs.js..extensions.enabledItems: mfetcher@gmx.net:1.6.6
FF - HKLM\software\mozilla\Mozilla Firefox 3.5.12\extensions\\Components: C:\Programme\Mozilla Firefox\components [2010.09.09 01:14:49 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.5.12\extensions\\Plugins: C:\Programme\Mozilla Firefox\plugins [2010.09.09 01:14:49 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.5.9\extensions\\Components: E:\Programme\Mozilla Firefox\components
FF - HKLM\software\mozilla\Mozilla Firefox 3.5.9\extensions\\Plugins: E:\Programme\Mozilla Firefox\plugins
[2010.07.23 01:39:21 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Mavor\Anwendungsdaten\Mozilla\Extensions
[2010.09.13 23:06:24 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Mavor\Anwendungsdaten\Mozilla\Firefox\Profiles\g9yo2xi1.default\extensions
[2010.07.31 02:54:48 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Mavor\Anwendungsdaten\Mozilla\Firefox\Profiles\g9yo2xi1.default\extensions\mfetcher@gmx.net
[2010.09.13 23:06:24 | 000,000,000 | ---D | M] -- C:\Programme\Mozilla Firefox\extensions
[2010.07.24 19:05:31 | 000,001,392 | ---- | M] () -- C:\Programme\Mozilla Firefox\searchplugins\amazondotcom-de.xml
[2010.07.24 19:05:31 | 000,002,344 | ---- | M] () -- C:\Programme\Mozilla Firefox\searchplugins\eBay-de.xml
[2010.07.24 19:05:31 | 000,006,805 | ---- | M] () -- C:\Programme\Mozilla Firefox\searchplugins\leo_ende_de.xml
[2010.07.24 19:05:31 | 000,001,178 | ---- | M] () -- C:\Programme\Mozilla Firefox\searchplugins\wikipedia-de.xml
[2010.07.24 19:05:32 | 000,000,801 | ---- | M] () -- C:\Programme\Mozilla Firefox\searchplugins\yahoo-de.xml
O1 HOSTS File: ([2010.04.08 22:18:41 | 000,001,049 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: 127.0.0.1 static3.cdn.ubi.com
O1 - Hosts: 127.0.0.1 ubisoft-orbit.s3.amazonaws.com
O1 - Hosts: 127.0.0.1 onlineconfigservice.ubi.com
O1 - Hosts: 127.0.0.1 orbitservice.ubi.com
O1 - Hosts: 127.0.0.1 ubisoft-orbit-savegames.s3.amazonaws.com
O2 - BHO: (Adobe PDF Link Helper) - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Programme\Gemeinsame Dateien\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
O4 - HKLM..\Run: [AVP] C:\Programme\Kaspersky Lab\Kaspersky Anti-Virus 7.0\avp.exe (Kaspersky Lab)
O4 - HKLM..\Run: [KernelFaultCheck] File not found
O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.DLL (NVIDIA Corporation)
O4 - HKLM..\Run: [TrojanScanner] C:\Programme\Trojan Remover\Trjscan.exe (Simply Super Software)
O4 - HKCU..\Run: [DAEMON Tools Lite] C:\Programme\DAEMON Tools Lite\DTLite.exe File not found
O4 - HKCU..\Run: [SUPERAntiSpyware] C:\Programme\SUPERAntiSpyware\SUPERAntiSpyware.exe (SUPERAntiSpyware.com)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O9 - Extra Button: Statistik für Web-Anti-Virus - {1F460357-8A94-4D71-9CA3-AA4ACF32ED8E} - C:\Programme\Kaspersky Lab\Kaspersky Anti-Virus 7.0\SCIEPlgn.dll (Kaspersky Lab)
O9 - Extra Button: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - E:\Programme\ICQ6.5\ICQ.exe (ICQ, LLC.)
O9 - Extra 'Tools' menuitem : ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - E:\Programme\ICQ6.5\ICQ.exe (ICQ, LLC.)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab (Java Plug-in 1.6.0_17)
O16 - DPF: {CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab (Java Plug-in 1.6.0_17)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab (Java Plug-in 1.6.0_17)
O18 - Protocol\Handler\http\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\msdaipp.dll (Microsoft Corporation)
O18 - Protocol\Handler\http\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\msdaipp.dll (Microsoft Corporation)
O18 - Protocol\Handler\https\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\msdaipp.dll (Microsoft Corporation)
O18 - Protocol\Handler\https\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\msdaipp.dll (Microsoft Corporation)
O18 - Protocol\Handler\ipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\msdaipp.dll (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\msdaipp.dll (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\msdaipp.dll (Microsoft Corporation)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - R:\Programme\HmelyoffLabs\VHToolkit\Skype4COM.dll File not found
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - Winlogon\Notify\!SASWinLogon: DllName - C:\Programme\SUPERAntiSpyware\SASWINLO.DLL - C:\Programme\SUPERAntiSpyware\SASWINLO.DLL (SUPERAntiSpyware.com)
O20 - Winlogon\Notify\klogon: DllName - C:\WINDOWS\system32\klogon.dll - C:\WINDOWS\system32\klogon.dll (Kaspersky Lab)
O24 - Desktop Components:0 (Die derzeitige Homepage) - About:Home
O24 - Desktop WallPaper: C:\Dokumente und Einstellungen\Mavor\Lokale Einstellungen\Anwendungsdaten\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Dokumente und Einstellungen\Mavor\Lokale Einstellungen\Anwendungsdaten\Microsoft\Wallpaper1.bmp
O28 - HKLM ShellExecuteHooks: {5AE067D3-9AFB-48E0-853A-EBB7F4A000DA} - C:\Programme\SUPERAntiSpyware\SASSEH.DLL (SuperAdBlocker.com)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2010.01.02 18:27:13 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O33 - MountPoints2\{5d9670eb-5e79-11df-9f5a-90e6ba0e8fe4}\Shell\AutoRun\command - "" = D:\Menu.exe -- File not found
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
========== Files/Folders - Created Within 30 Days ==========
[2010.09.14 18:18:36 | 000,576,000 | ---- | C] (OldTimer Tools) -- C:\Dokumente und Einstellungen\Mavor\Desktop\OTL.exe
[2010.09.14 13:10:56 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\Mavor\Anwendungsdaten\SUPERAntiSpyware.com
[2010.09.14 13:10:56 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\SUPERAntiSpyware.com
[2010.09.14 13:10:44 | 000,000,000 | ---D | C] -- C:\Programme\SUPERAntiSpyware
[2010.09.13 22:09:31 | 000,038,224 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys
[2010.09.13 22:09:29 | 000,020,952 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
[2010.09.13 22:08:35 | 006,153,648 | ---- | C] (Malwarebytes Corporation ) -- C:\Dokumente und Einstellungen\Mavor\Desktop\mbam-setup.exe
[2010.09.13 22:08:21 | 009,333,808 | ---- | C] (SUPERAntiSpyware.com) -- C:\Dokumente und Einstellungen\Mavor\Desktop\SUPERAntiSpyware.exe
[2010.09.12 16:05:43 | 000,000,000 | ---D | C] -- C:\Programme\Alcohol Soft
[2010.09.12 01:00:38 | 000,000,000 | RHSD | C] -- C:\cmdcons
[2010.09.12 00:59:14 | 000,031,232 | ---- | C] (NirSoft) -- C:\WINDOWS\NIRCMD.exe
[2010.09.12 00:59:13 | 000,212,480 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWXCACLS.exe
[2010.09.12 00:59:13 | 000,161,792 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWREG.exe
[2010.09.12 00:59:13 | 000,136,704 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWSC.exe
[2010.09.12 00:58:01 | 000,000,000 | ---D | C] -- C:\WINDOWS\ERDNT
[2010.09.11 19:10:42 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\Mavor\Anwendungsdaten\Malwarebytes
[2010.09.11 19:10:38 | 000,000,000 | ---D | C] -- C:\Programme\Malwarebytes' Anti-Malware
[2010.09.11 19:10:38 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Malwarebytes
[2010.09.11 18:50:20 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\SecTaskMan
[2010.09.11 18:48:54 | 000,000,000 | ---D | C] -- C:\Programme\Security Task Manager
[2010.09.11 18:44:36 | 000,069,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ztvcabinet.dll
[2010.09.11 18:44:35 | 000,000,000 | ---D | C] -- C:\Programme\Trojan Remover
[2010.09.11 18:44:35 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\Mavor\Eigene Dateien\Simply Super Software
[2010.09.11 18:44:35 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\Mavor\Anwendungsdaten\Simply Super Software
[2010.09.04 20:03:40 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Muzzy Lane
[2010.09.04 20:00:29 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\Mavor\Anwendungsdaten\wargaming.net
[2010.08.30 18:19:13 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\Mavor\Desktop\Cpu-z
[2010.08.23 12:22:23 | 000,527,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\XAudio2_7.dll
[2010.08.23 12:22:23 | 000,074,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\XAPOFX1_5.dll
[2010.08.23 12:22:22 | 002,106,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DCompiler_43.dll
[2010.08.23 12:22:22 | 001,868,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dcsx_43.dll
[2010.08.23 12:22:22 | 000,248,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx11_43.dll
[2010.08.23 12:22:22 | 000,239,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine3_7.dll
[2010.08.23 12:22:21 | 000,470,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx10_43.dll
[2010.08.23 12:22:20 | 001,998,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DX9_43.dll
[2010.08.23 12:07:29 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\Mavor\Lokale Einstellungen\Anwendungsdaten\pcsx2
[2010.08.19 21:33:59 | 000,000,000 | ---D | C] -- C:\Programme\TeamSpeak 3 Client
[2010.08.19 21:29:18 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\Mavor\Anwendungsdaten\TS3Client
[2010.08.17 03:39:58 | 000,000,000 | ---D | C] -- C:\Programme\Gemeinsame Dateien\Blizzard Entertainment
[4 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[3 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
========== Files - Modified Within 30 Days ==========
[2010.09.14 18:21:06 | 000,888,864 | -HS- | M] () -- C:\WINDOWS\System32\drivers\fidbox.dat
[2010.09.14 18:18:37 | 000,576,000 | ---- | M] (OldTimer Tools) -- C:\Dokumente und Einstellungen\Mavor\Desktop\OTL.exe
[2010.09.14 18:10:31 | 000,000,032 | -HS- | M] () -- C:\WINDOWS\System32\drivers\fidbox.idx
[2010.09.14 18:10:27 | 007,602,176 | -H-- | M] () -- C:\Dokumente und Einstellungen\Mavor\NTUSER.DAT
[2010.09.14 18:08:29 | 000,276,202 | ---- | M] () -- C:\WINDOWS\System32\NvApps.xml
[2010.09.14 18:08:27 | 000,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT
[2010.09.14 18:08:23 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2010.09.14 17:55:07 | 003,209,504 | -HS- | M] () -- C:\WINDOWS\System32\drivers\fidbox2.dat
[2010.09.14 13:10:45 | 000,001,650 | ---- | M] () -- C:\Dokumente und Einstellungen\All Users\Desktop\SUPERAntiSpyware Free Edition.lnk
[2010.09.14 00:35:44 | 000,313,352 | -HS- | M] () -- C:\WINDOWS\System32\drivers\fidbox2.idx
[2010.09.13 22:09:42 | 009,333,808 | ---- | M] (SUPERAntiSpyware.com) -- C:\Dokumente und Einstellungen\Mavor\Desktop\SUPERAntiSpyware.exe
[2010.09.13 22:09:33 | 000,000,684 | ---- | M] () -- C:\Dokumente und Einstellungen\All Users\Desktop\Malwarebytes' Anti-Malware.lnk
[2010.09.13 22:08:44 | 006,153,648 | ---- | M] (Malwarebytes Corporation ) -- C:\Dokumente und Einstellungen\Mavor\Desktop\mbam-setup.exe
[2010.09.13 17:10:56 | 000,000,190 | -HS- | M] () -- C:\Dokumente und Einstellungen\Mavor\ntuser.ini
[2010.09.12 21:02:30 | 000,102,400 | ---- | M] () -- C:\Dokumente und Einstellungen\Mavor\Lokale Einstellungen\Anwendungsdaten\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010.09.12 17:10:01 | 000,000,512 | ---- | M] () -- C:\Dokumente und Einstellungen\Mavor\Desktop\MBRCheck_MBR_Backup_09-12-10_17-10-00.bak
[2010.09.12 16:02:46 | 000,722,416 | ---- | M] () -- C:\WINDOWS\System32\drivers\sptd.sys
[2010.09.12 01:00:41 | 000,000,471 | -HS- | M] () -- C:\boot.ini
[2010.09.11 19:00:41 | 000,080,384 | ---- | M] () -- C:\Dokumente und Einstellungen\Mavor\Desktop\MBRCheck.exe
[2010.09.11 17:35:05 | 000,005,552 | ---- | M] () -- C:\Dokumente und Einstellungen\Mavor\Desktop\RS.dlc
[2010.09.11 13:48:34 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2010.09.09 23:36:51 | 000,654,407 | ---- | M] () -- C:\Dokumente und Einstellungen\Mavor\Eigene Dateien\SandstoneSaveFail.dat
[2010.09.07 00:22:46 | 000,000,069 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini
[2010.09.01 18:38:00 | 000,272,239 | RHS- | M] () -- C:\LIABF
[2010.09.01 18:38:00 | 000,000,020 | RHS- | M] () -- C:\win7.ld
[4 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[3 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
========== Files Created - No Company Name ==========
[2010.09.14 13:10:45 | 000,001,650 | ---- | C] () -- C:\Dokumente und Einstellungen\All Users\Desktop\SUPERAntiSpyware Free Edition.lnk
[2010.09.13 22:09:33 | 000,000,684 | ---- | C] () -- C:\Dokumente und Einstellungen\All Users\Desktop\Malwarebytes' Anti-Malware.lnk
[2010.09.12 17:10:01 | 000,000,512 | ---- | C] () -- C:\Dokumente und Einstellungen\Mavor\Desktop\MBRCheck_MBR_Backup_09-12-10_17-10-00.bak
[2010.09.12 01:00:39 | 000,262,448 | RHS- | C] () -- C:\cmldr
[2010.09.12 00:59:14 | 000,077,312 | ---- | C] () -- C:\WINDOWS\MBR.exe
[2010.09.12 00:59:13 | 000,256,512 | ---- | C] () -- C:\WINDOWS\PEV.exe
[2010.09.12 00:59:13 | 000,098,816 | ---- | C] () -- C:\WINDOWS\sed.exe
[2010.09.12 00:59:13 | 000,080,412 | ---- | C] () -- C:\WINDOWS\grep.exe
[2010.09.12 00:59:13 | 000,068,096 | ---- | C] () -- C:\WINDOWS\zip.exe
[2010.09.11 19:00:41 | 000,080,384 | ---- | C] () -- C:\Dokumente und Einstellungen\Mavor\Desktop\MBRCheck.exe
[2010.09.11 18:44:36 | 000,162,304 | ---- | C] () -- C:\WINDOWS\System32\ztvunrar36.dll
[2010.09.11 18:44:36 | 000,153,088 | ---- | C] () -- C:\WINDOWS\System32\UNRAR3.dll
[2010.09.11 18:44:36 | 000,077,312 | ---- | C] () -- C:\WINDOWS\System32\ztvunace26.dll
[2010.09.11 18:44:36 | 000,075,264 | ---- | C] () -- C:\WINDOWS\System32\unacev2.dll
[2010.09.09 22:51:26 | 000,654,407 | ---- | C] () -- C:\Dokumente und Einstellungen\Mavor\Eigene Dateien\SandstoneSaveFail.dat
[2010.09.01 18:38:00 | 000,272,239 | RHS- | C] () -- C:\LIABF
[2010.09.01 18:38:00 | 000,000,020 | RHS- | C] () -- C:\win7.ld
[2010.08.23 12:21:58 | 000,000,667 | ---- | C] () -- C:\Dokumente und Einstellungen\All Users\Desktop\PCSX2 0.9.7 (r3113).lnk
[2010.07.28 19:47:32 | 000,033,792 | ---- | C] () -- C:\WINDOWS\System32\drivers\libusb0.sys
[2010.06.05 06:31:43 | 002,518,779 | ---- | C] () -- C:\WINDOWS\System32\erdmpg-enc.dll
[2010.06.05 06:31:43 | 000,268,242 | ---- | C] () -- C:\WINDOWS\System32\erdmpg-parse.dll
[2010.06.05 06:31:43 | 000,030,693 | ---- | C] () -- C:\WINDOWS\System32\erdmpg-int.dll
[2010.05.13 21:30:38 | 000,024,576 | R--- | C] () -- C:\WINDOWS\System32\AsIO.dll
[2010.05.13 21:30:38 | 000,012,400 | R--- | C] () -- C:\WINDOWS\System32\drivers\AsIO.sys
[2010.03.26 18:37:59 | 001,126,424 | ---- | C] () -- C:\Dokumente und Einstellungen\LocalService\Lokale Einstellungen\Anwendungsdaten\FontCache3.0.0.0.dat
[2010.03.14 00:26:15 | 000,139,152 | ---- | C] () -- C:\Dokumente und Einstellungen\Mavor\Anwendungsdaten\PnkBstrK.sys
[2010.03.14 00:26:15 | 000,139,040 | ---- | C] () -- C:\WINDOWS\System32\drivers\PnkBstrK.sys
[2010.02.06 19:37:52 | 000,000,754 | ---- | C] () -- C:\WINDOWS\WORDPAD.INI
[2010.01.21 14:22:31 | 000,000,069 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini
[2010.01.04 03:08:34 | 000,000,070 | ---- | C] () -- C:\WINDOWS\sbwin.ini
[2010.01.04 00:03:51 | 000,000,038 | ---- | C] () -- C:\WINDOWS\avisplitter.ini
[2010.01.04 00:03:50 | 000,881,664 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll
[2010.01.04 00:03:50 | 000,205,824 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll
[2010.01.04 00:03:49 | 000,085,504 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll
[2010.01.04 00:03:49 | 000,000,547 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll.manifest
[2010.01.03 01:10:45 | 000,722,416 | ---- | C] () -- C:\WINDOWS\System32\drivers\sptd.sys
[2010.01.02 20:29:55 | 000,102,400 | ---- | C] () -- C:\Dokumente und Einstellungen\Mavor\Lokale Einstellungen\Anwendungsdaten\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010.01.02 20:18:58 | 000,000,044 | ---- | C] () -- C:\WINDOWS\SMWizard.INI
[2010.01.02 19:24:44 | 000,008,488 | R--- | C] () -- C:\WINDOWS\System32\CTSBAMB.INI
[2010.01.02 18:59:12 | 000,041,129 | ---- | C] () -- C:\WINDOWS\Ascd_log.ini
[2010.01.02 18:58:50 | 000,005,810 | R--- | C] () -- C:\WINDOWS\System32\drivers\ASACPI.sys
[2010.01.02 18:58:43 | 000,040,686 | ---- | C] () -- C:\WINDOWS\Ascd_tmp.ini
[2010.01.02 18:58:43 | 000,010,296 | ---- | C] () -- C:\WINDOWS\System32\drivers\ASUSHWIO.SYS
[2010.01.02 18:49:38 | 000,081,920 | ---- | C] () -- C:\WINDOWS\System32\ieencode.dll
[2009.11.06 11:58:04 | 000,178,975 | ---- | C] () -- C:\WINDOWS\System32\xlive.dll.cat
[2008.04.16 04:13:00 | 000,172,544 | ---- | C] () -- C:\WINDOWS\System32\AMBSPI.DLL
[2006.11.10 15:08:50 | 000,024,064 | ---- | C] () -- C:\WINDOWS\System32\drivers\ATITool.sys
[2006.08.16 16:13:34 | 001,382,280 | ---- | C] () -- C:\WINDOWS\System32\fftw3.dll
[2002.10.16 00:54:04 | 000,178,176 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll
[2001.08.18 14:00:00 | 000,027,440 | ---- | C] () -- C:\WINDOWS\System32\drivers\secdrv.sys
========== Alternate Data Streams ==========
@Alternate Data Stream - 175 bytes -> C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\TEMP:CB0AACC9
< End of report >
Extra log Code:
OTL Extras logfile created on: 14.09.2010 18:19:42 - Run 1
OTL by OldTimer - Version 3.2.12.0 Folder = C:\Dokumente und Einstellungen\Mavor\Desktop
Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 6.0.2900.2180)
Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy
3,00 Gb Total Physical Memory | 2,00 Gb Available Physical Memory | 82,00% Memory free
6,00 Gb Paging File | 5,00 Gb Available in Paging File | 93,00% Paging File free
Paging file location(s): C:\pagefile.sys 0 0 [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Programme
Drive C: | 50,01 Gb Total Space | 37,20 Gb Free Space | 74,40% Space Free | Partition Type: NTFS
D: Drive not present or media not loaded
Drive E: | 128,00 Gb Total Space | 30,54 Gb Free Space | 23,86% Space Free | Partition Type: NTFS
Drive F: | 781,50 Gb Total Space | 119,93 Gb Free Space | 15,35% Space Free | Partition Type: NTFS
Drive G: | 100,01 Gb Total Space | 67,52 Gb Free Space | 67,51% Space Free | Partition Type: NTFS
Drive H: | 195,31 Gb Total Space | 187,57 Gb Free Space | 96,04% Space Free | Partition Type: NTFS
Drive I: | 142,45 Gb Total Space | 1,62 Gb Free Space | 1,14% Space Free | Partition Type: NTFS
Drive R: | 931,51 Gb Total Space | 659,91 Gb Free Space | 70,84% Space Free | Partition Type: NTFS
Computer Name: MAVER
Current User Name: Mavor
Logged in as Administrator.
Current Boot Mode: Normal
Scan Mode: Current user
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Minimal
========== Extra Registry (SafeList) ==========
========== File Associations ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
[HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Programme\Mozilla Firefox\firefox.exe (Mozilla Corporation)
========== Shell Spawning ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
htmlfile [edit] -- Reg Error: Key error.
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation)
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
========== Security Center Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"AntiVirusDisableNotify" = 0
"FirewallDisableNotify" = 0
"UpdatesDisableNotify" = 0
"AntiVirusOverride" = 0
"FirewallOverride" = 0
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]
"DisableMonitoring" = 1
"" =
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]
========== Firewall Settings ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"1900:UDP" = 1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007
"2869:TCP" = 2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008
========== Authorized Applications List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
"E:\Programme\ICQ6.5\ICQ.exe" = E:\Programme\ICQ6.5\ICQ.exe:*:Enabled:ICQ.exe -- (ICQ, LLC.)
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"C:\WINDOWS\system32\dpvsetup.exe" = C:\WINDOWS\system32\dpvsetup.exe:*:Enabled:Microsoft DirectPlay Voice Test -- (Microsoft Corporation)
"E:\Gamez\CAPCOM\RESIDENT EVIL 5\RE5DX9.EXE" = E:\Gamez\CAPCOM\RESIDENT EVIL 5\RE5DX9.EXE:*:Enabled:RESIDENT EVIL 5 (DX9) -- (CAPCOM CO., LTD.)
"E:\Gamez\CAPCOM\RESIDENT EVIL 5\RE5DX10.EXE" = E:\Gamez\CAPCOM\RESIDENT EVIL 5\RE5DX10.EXE:*:Enabled:RESIDENT EVIL 5 (DX10) -- (CAPCOM CO., LTD.)
"E:\uTorrent\uTorrent.exe" = E:\uTorrent\uTorrent.exe:*:Enabled:µTorrent -- (BitTorrent, Inc.)
"C:\Programme\Creative\SB X-Fi MB\WaveStudio 7\CTWave.exe" = C:\Programme\Creative\SB X-Fi MB\WaveStudio 7\CTWave.exe:*:Enabled:Creative WaveStudio -- (Creative Technology Ltd)
"C:\Programme\Java\jre6\bin\javaw.exe" = C:\Programme\Java\jre6\bin\javaw.exe:*:Enabled:Java(TM) Platform SE binary -- (Sun Microsystems, Inc.)
"I:\Gamez\Valve\Steam\Steam.exe" = I:\Gamez\Valve\Steam\Steam.exe:*:Enabled:Steam 732897 -- (Valve Corporation)
"E:\Programme\left 4 dead 2\left4dead2.exe" = E:\Programme\left 4 dead 2\left4dead2.exe:*:Enabled:left4dead2 -- File not found
"E:\Programme\ICQ6.5\ICQ.exe" = E:\Programme\ICQ6.5\ICQ.exe:*:Enabled:ICQ.exe -- (ICQ, LLC.)
"E:\World of Warcraft\WoW-3.2.0-deDE-downloader.exe" = E:\World of Warcraft\WoW-3.2.0-deDE-downloader.exe:*:Enabled:Blizzard Downloader -- File not found
"E:\World of Warcraft\Launcher.exe" = E:\World of Warcraft\Launcher.exe:*:Enabled:Blizzard Launcher -- File not found
"C:\Programme\mIRC\mirc.exe" = C:\Programme\mIRC\mirc.exe:*:Enabled:mIRC -- (mIRC Co. Ltd.)
"I:\Gamez\Valve\Steam\SteamApps\common\left 4 dead\left4dead.exe" = I:\Gamez\Valve\Steam\SteamApps\common\left 4 dead\left4dead.exe:*:Enabled:Left 4 Dead -- ()
"E:\Gamez\Mass Effect 2\Binaries\MassEffect2.exe" = E:\Gamez\Mass Effect 2\Binaries\MassEffect2.exe:*:Enabled:Mass Effect 2 -Spiel -- (BioWare)
"E:\Gamez\Mass Effect 2\MassEffect2Launcher.exe" = E:\Gamez\Mass Effect 2\MassEffect2Launcher.exe:*:Enabled:Mass Effect 2 -Launcher -- (BioWare)
"E:\Gamez\APB_Beta-EU\Binaries\USER-APBGame_USE_ME.exe" = E:\Gamez\APB_Beta-EU\Binaries\USER-APBGame_USE_ME.exe:*:Enabled:Release_USER GAME_BETA_06@504659 -- File not found
"E:\Gamez\Men of War\mow_mp.exe" = E:\Gamez\Men of War\mow_mp.exe:*:Enabled:Main executable -- ("Best Way" Corp)
"E:\Gamez\Men of War\outfront_mp.exe" = E:\Gamez\Men of War\outfront_mp.exe:*:Enabled:Main executable -- ("Best Way" Corp)
"E:\Gamez\GTA4\Rockstar Games Social Club\RGSCLauncher.exe" = E:\Gamez\GTA4\Rockstar Games Social Club\RGSCLauncher.exe:*:Enabled:Rockstar Games Social Club -- File not found
"C:\Dokumente und Einstellungen\Mavor\temp\TeamViewer\Version5\TeamViewer.exe" = C:\Dokumente und Einstellungen\Mavor\temp\TeamViewer\Version5\TeamViewer.exe:*:Enabled:TeamViewer -- File not found
"E:\Gamez\Microsoft Games\Rise of Nations\patriots.exe" = E:\Gamez\Microsoft Games\Rise of Nations\patriots.exe:*:Enabled:Rise of Nations -- File not found
"C:\Programme\Ubisoft\Ubisoft Game Launcher\UbisoftGameLauncher.exe" = C:\Programme\Ubisoft\Ubisoft Game Launcher\UbisoftGameLauncher.exe:*:Enabled:Ubisoft Game Launcher -- (Ubisoft)
"C:\Dokumente und Einstellungen\Mavor\Desktop\AC2cck\DRM\server.exe" = C:\Dokumente und Einstellungen\Mavor\Desktop\AC2cck\DRM\server.exe:*:Enabled:server -- File not found
"R:\programme\Star Vault\Mortal Online\Mortal Online Launcher.exe" = R:\programme\Star Vault\Mortal Online\Mortal Online Launcher.exe:*:Enabled:Mortal Online Launcher -- File not found
"R:\programme\Star Vault\Mortal Online\mortalonline\UnrealEngine3\Binaries\Win32\NowGame.exe" = R:\programme\Star Vault\Mortal Online\mortalonline\UnrealEngine3\Binaries\Win32\NowGame.exe:*:Enabled:NowGame -- File not found
"C:\Programme\Sony\Station\Launchpad\LaunchPad.exe" = C:\Programme\Sony\Station\Launchpad\LaunchPad.exe:*:Enabled:LaunchPad -- ()
"C:\Programme\server Teamspeak2_RC2\server_windows.exe" = C:\Programme\server Teamspeak2_RC2\server_windows.exe:*:Enabled:Server -- ()
"C:\Programme\Sony\Station\Launchpad\_aunchPad.exe" = C:\Programme\Sony\Station\Launchpad\_aunchPad.exe:*:Enabled:_aunchPad -- File not found
"E:\Gamez\Swg\Swgemu\SWGVoiceService.exe" = E:\Gamez\Swg\Swgemu\SWGVoiceService.exe:*:Enabled:SWGVoiceService -- File not found
"E:\Gamez\APB_Beta-EU\Binaries\APB.exe" = E:\Gamez\APB_Beta-EU\Binaries\APB.exe:*:Enabled:APB All Points Bulletin -- File not found
"I:\Gamez\Valve\Steam\SteamApps\slater_@gmx.de\zombie panic! source\hl2.exe" = I:\Gamez\Valve\Steam\SteamApps\slater_@gmx.de\zombie panic! source\hl2.exe:*:Enabled:Zombie Panic Source -- ()
"E:\The Guild 2 - Renaissance\GuildII.exe" = E:\The Guild 2 - Renaissance\GuildII.exe:*:Enabled:GuildII -- File not found
"E:\Gamez\Konami\PES2008.exe" = E:\Gamez\Konami\PES2008.exe:*:Enabled:Pro Evolution Soccer 2008 -- (KONAMI)
"E:\Gamez\StarCraft II\StarCraft II.exe" = E:\Gamez\StarCraft II\StarCraft II.exe:*:Enabled:Blizzard Launcher -- File not found
"E:\Gamez\StarCraft II\Versions\Base15405\SC2.exe" = E:\Gamez\StarCraft II\Versions\Base15405\SC2.exe:*:Enabled:StarCraft II -- File not found
"E:\Gamez\Starcraft 2\StarCraft II.exe" = E:\Gamez\Starcraft 2\StarCraft II.exe:*:Enabled:Blizzard Launcher -- (Blizzard Entertainment)
"E:\Gamez\Starcraft 2\Versions\Base15405\SC2.exe" = E:\Gamez\Starcraft 2\Versions\Base15405\SC2.exe:*:Enabled:StarCraft II -- (Blizzard Entertainment, Inc.)
"I:\Gamez\Valve\Steam\SteamApps\common\napoleon total war\Napoleon.exe" = I:\Gamez\Valve\Steam\SteamApps\common\napoleon total war\Napoleon.exe:*:Enabled:Napoleon: Total War -- (The Creative Assembly Ltd)
"E:\Gamez\World of Warcraft\WoW-3.2.0-deDE-downloader.exe" = E:\Gamez\World of Warcraft\WoW-3.2.0-deDE-downloader.exe:*:Enabled:Blizzard Downloader -- (Blizzard Entertainment)
"E:\Gamez\World of Warcraft\Launcher.exe" = E:\Gamez\World of Warcraft\Launcher.exe:*:Enabled:Blizzard Launcher -- (Blizzard Entertainment)
"E:\Gamez\World of Warcraft\Repair.exe" = E:\Gamez\World of Warcraft\Repair.exe:*:Enabled:Repair.exe -- (Blizzard Entertainment, Inc.)
"E:\Gamez\Mass Effect\Binaries\MassEffect.exe" = E:\Gamez\Mass Effect\Binaries\MassEffect.exe:*:Enabled:Mass Effect Game -- (BioWare)
"E:\Gamez\Mass Effect\MassEffectLauncher.exe" = E:\Gamez\Mass Effect\MassEffectLauncher.exe:*:Enabled:Mass Effect Launcher -- (BioWare)
"E:\Gamez\Muzzy Lane Software\Making History II\MH2.exe" = E:\Gamez\Muzzy Lane Software\Making History II\MH2.exe:*:Enabled:Making History II Launcher -- (Muzzy Lane Software)
========== HKEY_LOCAL_MACHINE Uninstall List ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{00C5F4F4-62F9-40D7-8000-AD8A9CD0C669}" = Microsoft Games for Windows - LIVE Redistributable
"{01501EBA-EC35-4F9F-8889-3BE346E5DA13}" = MSXML4 Parser
"{1545207E-C6F3-31D7-9918-BDBB65075FBF}" = Microsoft .NET Framework 3.5 Language Pack - deu
"{1B0FBB9A-995D-47cd-87CD-13E68B676E4F}" = Mass Effect
"{1E99F5D7-4262-4C7C-9135-F066E7485811}" = System Requirements Lab
"{2300EE96-0A41-4FAB-BD03-989EC44577A0}" = Acronis*Disk Director Suite
"{26A24AE4-039D-4CA4-87B4-2F83216017FF}" = Java(TM) 6 Update 17
"{2C9EE786-1DDB-4C98-8FA4-B1B9B5A66B77}" = Microsoft Games for Windows - LIVE
"{2FDFD600-7338-4738-90D5-FC4ACA08DC36}" = Pro Evolution Soccer 2008
"{350C97B3-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{3A1B5D40-41E9-43FA-8C7B-A8667F5586EF}" = JMB36X Raid Configurer
"{3A94E148-9C8B-4FE9-99DD-93072F99BE20}" = Sound Blaster X-Fi MB
"{3E981E45-833E-44C4-AB75-3668AA77F8EC}" = Adobe Flash Media Live Encoder 3
"{4B9BB601-13E9-4042-A3BC-E7955BF4A98F}" = Kaspersky Anti-Virus 7.0
"{56C049BE-79E9-4502-BEA7-9754A3E60F9B}" = neroxml
"{60DE4033-9503-48D1-A483-7846BD217CA9}" = ICQ6.5
"{67ED38A3-4882-448B-B44D-3428AB00D7D5}" = Acronis*True*Image*Home
"{6C37FA93-10B5-4F55-A672-954ECEDA221B}_is1" = Mass Effect - English 2 German Patch v.1.0
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{75D84EF7-0D8C-4e70-B3FA-7B42A5D4E0EB}" = Mass Effect 2
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{88038160-9BCB-47BE-A5C3-5CE2DC115509}" = Star Wars Galaxies
"{888F1505-C2B3-4FDE-835D-36353EBD4754}" = Ubisoft Game Launcher
"{891D0B03-05DF-4CD1-B267-268FDA1C1031}" = Nero 8
"{8A74DEFD-A224-49CC-AB80-4E88BC730125}" = LogMeIn Hamachi
"{9309DD7E-EBFE-3C95-8B47-30D3A012F606}" = Microsoft .NET Framework 2.0 Service Pack 1 Language Pack - DEU
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{A1071AEB-B0EF-3F5F-BC84-83A270EBE496}" = Microsoft .NET Framework 3.0 Service Pack 1 Language Pack - DEU
"{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2
"{AC08BBA0-96B9-431A-A7D0-D8598E493775}" = RESIDENT EVIL 5
"{AC76BA86-7AD7-1031-7B44-A93000000001}" = Adobe Reader 9.3 - Deutsch
"{BAA11826-70EF-4E44-9E97-8476793E022F}" = Launchpad Enhanced
"{BEEFC4F8-2909-48B3-AFAA-55D3533FDEDD}" = Creative MediaSource 5
"{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2
"{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}" = SUPERAntiSpyware
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{D0106CC2-E34B-4FA3-B6B6-91F0ACEA2CC3}" = Hearts of Iron III
"{D2FCA41E-AC01-4DCD-B3A7-DC9E32363065}}_is1" = Rapture3D 2.3.22 Game
"{D45EC259-4A19-4656-B588-C2C360DD18EA}" = Half-Life(R) 2
"{DEA314C4-0929-4250-BC92-98E4C105F28D}" = NVIDIA PhysX
"{F0A37341-D692-11D4-A984-009027EC0A9C}" = SoundMAX
"{FDA43C6E-C72A-40F4-9923-1208F6FF5604}" = nHancer
"{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"ArtMoney SE_is1" = ArtMoney SE v7.32.1
"Avidemux 2.5" = Avidemux 2.5
"AviSynth" = AviSynth 2.5
"Beta-EU" = APB Beta-EU
"Broadcaster StudioPro_is1" = Broadcaster StudioPro v1.4.0
"InstallShield_{2FDFD600-7338-4738-90D5-FC4ACA08DC36}" = Pro Evolution Soccer 2008
"InstallWIX_{4B9BB601-13E9-4042-A3BC-E7955BF4A98F}" = Kaspersky Anti-Virus 7.0
"IrfanView" = IrfanView (remove only)
"JDownloader" = JDownloader
"KLiteCodecPack_is1" = K-Lite Codec Pack 5.5.1 (Full)
"LibUSB-Win32_is1" = LibUSB-Win32-0.1.10.1
"LogMeIn Hamachi" = LogMeIn Hamachi
"Making History II" = Making History II
"Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware
"Marvell Miniport Driver" = Marvell Miniport Driver
"MediaInfo" = MediaInfo 0.7.25
"Microsoft .NET Framework 3.5 Language Pack - deu" = Microsoft .NET Framework 3.5 Language Pack - DEU
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"mIRC" = mIRC
"Mozilla Firefox (3.5.12)" = Mozilla Firefox (3.5.12)
"Mozilla Firefox (3.5.9)" = Mozilla Firefox (3.5.9)
"NVIDIA Display Control Panel" = NVIDIA Display Control Panel
"NVIDIA Drivers" = NVIDIA Drivers
"NVIDIA nView Desktop Manager" = NVIDIA nView Desktop Manager
"OpenAL" = OpenAL
"pcsx2-r3113" = PCSX2 - Playstation 2 Emulator
"PSXMemTool" = PSXMemTool 1.19b (remove only)
"PunkBusterSvc" = PunkBuster Services
"Security Task Manager" = Security Task Manager 1.7h
"StarCraft II" = StarCraft II
"Steam App 17500" = Zombie Panic! Source
"Steam App 34030" = Napoleon: Total War
"Streamripper" = Streamripper (Remove only)
"SubtitleWorkshop" = Subtitle Workshop 2.51
"SystemRequirementsLab" = System Requirements Lab
"Teamspeak 2 RC2_is1" = TeamSpeak 2 RC2
"TeamSpeak 2 Server_is1" = TeamSpeak 2 Server RC2
"TeamSpeak 3 Client" = TeamSpeak 3 Client
"Trojan Remover_is1" = Trojan Remover 6.7.6
"UltraISO_is1" = UltraISO Premium V8.51
"UseNeXT_is1" = UseNeXT
"uTorrent" = µTorrent
"VH Toolkit_is1" = VH Toolkit 1.0.46.0
"VLC media player" = VLC media player 1.0.5
"VobSub" = VobSub v2.23 (Remove Only)
"WIC" = Windows Imaging Component
"Winamp" = Winamp
"Windows Media Format Runtime" = Windows Media Format 11 runtime
"Windows XP Service Pack" = Windows XP Service Pack 2
"WinRAR archiver" = WinRAR
"WMFDist11" = Windows Media Format 11 runtime
"World of Warcraft" = World of Warcraft
"Wudf01000" = Microsoft User-Mode Driver Framework Feature Pack 1.0
"XpsEPSC" = XML Paper Specification Shared Components Pack 1.0
"XPSEPSCLP" = XML Paper Specification Shared Components Language Pack 1.0
"XviD4PSP5" = XviD4PSP 5.0
"ZoomPlayer" = Zoom Player (remove only)
========== Last 10 Event Log Errors ==========
[ Application Events ]
Error - 05.06.2010 10:26:13 | Computer Name = MAVER | Source = Application Error | ID = 1000
Description = Fehlgeschlagene Anwendung pcsx2 0.9.6.exe, Version 0.0.0.0, fehlgeschlagenes
Modul gsdx-sse4.dll, Version 1.0.1.9, Fehleradresse 0x0001e435.
Error - 24.07.2010 15:25:19 | Computer Name = MAVER | Source = Application Error | ID = 1000
Description = Fehlgeschlagene Anwendung guildii.exe, Version 0.4.0.0, fehlgeschlagenes
Modul dnsq.dll, Version 7.0.1.325, Fehleradresse 0x0000c1a1.
Error - 24.07.2010 17:14:33 | Computer Name = MAVER | Source = Application Error | ID = 1000
Description = Fehlgeschlagene Anwendung guildii.exe, Version 0.4.0.0, fehlgeschlagenes
Modul dnsq.dll, Version 7.0.1.325, Fehleradresse 0x0000c1a1.
Error - 25.07.2010 14:42:44 | Computer Name = MAVER | Source = Application Error | ID = 1000
Description = Fehlgeschlagene Anwendung guildii.exe, Version 0.4.0.0, fehlgeschlagenes
Modul dnsq.dll, Version 7.0.1.325, Fehleradresse 0x0000c1a1.
Error - 25.07.2010 18:58:50 | Computer Name = MAVER | Source = Application Error | ID = 1000
Description = Fehlgeschlagene Anwendung guildii.exe, Version 0.4.0.0, fehlgeschlagenes
Modul dnsq.dll, Version 7.0.1.325, Fehleradresse 0x0000c1a1.
Error - 26.07.2010 13:39:14 | Computer Name = MAVER | Source = Application Error | ID = 1000
Description = Fehlgeschlagene Anwendung guildii.exe, Version 0.4.0.0, fehlgeschlagenes
Modul dnsq.dll, Version 7.0.1.325, Fehleradresse 0x0000c1a1.
Error - 26.07.2010 15:49:57 | Computer Name = MAVER | Source = Application Error | ID = 1000
Description = Fehlgeschlagene Anwendung guildii.exe, Version 0.4.0.0, fehlgeschlagenes
Modul dnsq.dll, Version 7.0.1.325, Fehleradresse 0x0000c1a1.
Error - 27.07.2010 13:32:03 | Computer Name = MAVER | Source = Application Error | ID = 1000
Description = Fehlgeschlagene Anwendung guildii.exe, Version 0.4.0.0, fehlgeschlagenes
Modul dnsq.dll, Version 7.0.1.325, Fehleradresse 0x0000c1a1.
Error - 27.07.2010 14:27:34 | Computer Name = MAVER | Source = Application Error | ID = 1000
Description = Fehlgeschlagene Anwendung guildii.exe, Version 0.4.0.0, fehlgeschlagenes
Modul dnsq.dll, Version 7.0.1.325, Fehleradresse 0x0000c1a1.
Error - 27.07.2010 23:19:32 | Computer Name = MAVER | Source = crypt32 | ID = 131083
Description = Die Extrahierung der Drittanbieterstammlisten aus der automatischen
Aktualisierungs-CAB-Datei bei <hxxp://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab>
ist fehlgeschlagen mit dem Fehler: Ein erforderliches Zertifikat befindet sich
nicht im Gültigkeitszeitraum gemessen an der aktuellen Systemzeit oder dem Zeitstempel
in der signierten Datei. .
[ System Events ]
Error - 13.09.2010 10:45:51 | Computer Name = MAVER | Source = Service Control Manager | ID = 7034
Description = Dienst "WMI-Leistungsadapter" wurde unerwartet beendet. Dies ist bereits
1 Mal passiert.
Error - 13.09.2010 10:46:26 | Computer Name = MAVER | Source = Service Control Manager | ID = 7034
Description = Dienst "Gatewaydienst auf Anwendungsebene" wurde unerwartet beendet.
Dies ist bereits 1 Mal passiert.
Error - 13.09.2010 11:21:00 | Computer Name = MAVER | Source = Service Control Manager | ID = 7023
Description = Der Dienst "HID Input Service" wurde mit folgendem Fehler beendet:
%%126
Error - 13.09.2010 11:56:10 | Computer Name = MAVER | Source = Service Control Manager | ID = 7023
Description = Der Dienst "HID Input Service" wurde mit folgendem Fehler beendet:
%%126
Error - 13.09.2010 11:56:10 | Computer Name = MAVER | Source = Service Control Manager | ID = 7034
Description = Dienst "Acronis Nonstop Backup service" wurde unerwartet beendet.
Dies ist bereits 1 Mal passiert.
Error - 13.09.2010 14:05:50 | Computer Name = MAVER | Source = Service Control Manager | ID = 7023
Description = Der Dienst "HID Input Service" wurde mit folgendem Fehler beendet:
%%126
Error - 13.09.2010 14:13:37 | Computer Name = MAVER | Source = Service Control Manager | ID = 7023
Description = Der Dienst "HID Input Service" wurde mit folgendem Fehler beendet:
%%126
Error - 13.09.2010 14:32:35 | Computer Name = MAVER | Source = Service Control Manager | ID = 7023
Description = Der Dienst "HID Input Service" wurde mit folgendem Fehler beendet:
%%126
Error - 14.09.2010 07:00:28 | Computer Name = MAVER | Source = Service Control Manager | ID = 7023
Description = Der Dienst "HID Input Service" wurde mit folgendem Fehler beendet:
%%126
Error - 14.09.2010 12:09:58 | Computer Name = MAVER | Source = Service Control Manager | ID = 7023
Description = Der Dienst "HID Input Service" wurde mit folgendem Fehler beendet:
%%126
< End of report >
|
