OTL logfile created on: 05.12.2011 10:55:17 - Run 1 OTL by OldTimer - Version 3.2.31.0 Folder = C:\Dokumente und Einstellungen\Freisler 88\Eigene Dateien\Downloads Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 8.0.6001.18702) Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy 2,75 Gb Total Physical Memory | 1,94 Gb Available Physical Memory | 70,45% Memory free 4,59 Gb Paging File | 3,75 Gb Available in Paging File | 81,60% Paging File free Paging file location(s): C:\pagefile.sys 2046 4092 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINXP | %ProgramFiles% = C:\Programme Drive C: | 298,08 Gb Total Space | 202,63 Gb Free Space | 67,98% Space Free | Partition Type: NTFS Unable to calculate disk information. Computer Name: SVA-398A5D1020F | User Name: Freisler 88 | Logged in as Administrator. Boot Mode: Normal | Scan Mode: Current user | Quick Scan Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days [color=#E56717]========== Processes (SafeList) ==========[/color] PRC - [2011.12.05 10:50:39 | 000,584,192 | ---- | M] (OldTimer Tools) -- C:\Dokumente und Einstellungen\Freisler 88\Eigene Dateien\Downloads\OTL.exe PRC - [2011.11.30 13:32:19 | 000,912,856 | ---- | M] (Mozilla Corporation) -- C:\Programme\Mozilla Firefox\firefox.exe PRC - [2011.11.22 04:19:58 | 000,482,992 | ---- | M] (Crawler.com) -- C:\Programme\Spyware Terminator\st_rsser.exe PRC - [2011.09.01 08:08:25 | 000,136,360 | ---- | M] (Avira GmbH) -- C:\Programme\Avira\AntiVir Desktop\sched.exe PRC - [2011.09.01 08:08:23 | 000,269,480 | ---- | M] (Avira GmbH) -- C:\Programme\Avira\AntiVir Desktop\avguard.exe PRC - [2011.08.31 17:00:48 | 000,366,152 | ---- | M] (Malwarebytes Corporation) -- C:\Programme\Malwarebytes' Anti-Malware\mbamservice.exe PRC - [2010.11.10 23:08:40 | 000,281,768 | ---- | M] (Avira GmbH) -- C:\Programme\Avira\AntiVir Desktop\avgnt.exe PRC - [2010.09.20 09:17:25 | 000,604,488 | ---- | M] (TuneUp Software) -- C:\WINXP\system32\TUProgSt.exe PRC - [2010.08.10 14:47:16 | 000,062,864 | ---- | M] () -- C:\Programme\Smart PDF Converter Pro\SmartSoft PDF Printer Agent.exe PRC - [2010.08.02 11:40:56 | 000,199,600 | ---- | M] (Telefónica I+D) -- C:\Programme\o2\Mobile Connection Manager\ImpWiFiSvc.exe PRC - [2010.05.04 12:09:14 | 000,188,128 | ---- | M] (Softwareentwicklung Remus - ArchiCrypt) -- C:\Programme\ArchiCrypt\ArchiCrypt Shredder 5\ArchiCryptInjector32.exe PRC - [2010.04.24 00:10:54 | 000,209,768 | ---- | M] (Microsoft Corporation) -- C:\Programme\Microsoft Application Virtualization Client\sftvsa.exe PRC - [2010.04.24 00:10:44 | 000,483,688 | ---- | M] (Microsoft Corporation) -- C:\Programme\Microsoft Application Virtualization Client\sftlist.exe PRC - [2010.04.23 21:10:38 | 001,668,920 | ---- | M] (Piriform Ltd) -- C:\Programme\CCleaner\CCleaner.exe PRC - [2010.02.28 01:33:14 | 003,207,072 | ---- | M] (Microsoft Corporation) -- C:\Programme\Gemeinsame Dateien\Microsoft Shared\Virtualization Handler\CVH.EXE PRC - [2010.02.28 01:33:14 | 000,821,664 | ---- | M] (Microsoft Corporation) -- C:\Programme\Gemeinsame Dateien\Microsoft Shared\Virtualization Handler\CVHSVC.EXE PRC - [2010.02.28 01:33:14 | 000,077,664 | ---- | M] () -- C:\Programme\Gemeinsame Dateien\Microsoft Shared\Virtualization Handler\OFFICEVIRT.EXE PRC - [2010.01.31 12:29:34 | 000,229,458 | ---- | M] (IDT, Inc.) -- c:\Programme\IDT\WDM\stacsv.exe PRC - [2010.01.14 21:10:53 | 000,076,968 | ---- | M] (Avira GmbH) -- C:\Programme\Avira\AntiVir Desktop\avshadow.exe PRC - [2009.07.24 18:38:50 | 000,189,728 | ---- | M] (Protexis Inc.) -- c:\Programme\Gemeinsame Dateien\Protexis\License Service\PsiService_2.exe PRC - [2009.04.27 09:17:13 | 000,759,048 | ---- | M] (ABBYY) -- C:\Programme\ABBYY PDF Transformer 3.0\NetworkLicenseServer.exe PRC - [2009.04.21 08:01:56 | 000,737,280 | ---- | M] (Andrea Electronics Corporation) -- C:\WINXP\system32\AESTFltr.exe PRC - [2009.03.27 18:10:56 | 000,014,336 | ---- | M] (LSI Corporation) -- C:\Programme\LSI SoftModem\agrsmsvc.exe PRC - [2008.04.14 13:00:00 | 000,979,456 | ---- | M] (Microsoft Corporation) -- C:\WINXP\explorer.exe PRC - [2008.04.14 13:00:00 | 000,018,944 | ---- | M] (Microsoft Corporation) -- C:\WINXP\system32\ping.exe PRC - [2007.09.02 12:58:52 | 000,495,616 | ---- | M] () -- C:\Programme\RocketDock\RocketDock.exe [color=#E56717]========== Modules (No Company Name) ==========[/color] MOD - [2011.11.30 13:32:19 | 000,849,368 | ---- | M] () -- C:\Programme\Mozilla Firefox\js3250.dll MOD - [2011.09.05 18:04:58 | 000,301,056 | ---- | M] () -- C:\Programme\Gemeinsame Dateien\Adobe\Acrobat\ActiveX\PDFShell.DEU MOD - [2011.08.17 06:32:09 | 011,800,576 | ---- | M] () -- C:\WINXP\assembly\NativeImages_v2.0.50727_32\System.Web\40893760431f8f0dcce3e18630e45b23\System.Web.ni.dll MOD - [2011.08.17 06:27:54 | 000,971,264 | ---- | M] () -- C:\WINXP\assembly\NativeImages_v2.0.50727_32\System.Configuration\77df2cd21a5b85a1605b335aa9ad9d44\System.Configuration.ni.dll MOD - [2011.08.17 06:15:51 | 000,025,600 | ---- | M] () -- C:\WINXP\assembly\NativeImages_v2.0.50727_32\Accessibility\d9228d58804dfd75fd92a4d12ffac8af\Accessibility.ni.dll MOD - [2011.08.16 09:29:24 | 005,450,752 | ---- | M] () -- C:\WINXP\assembly\NativeImages_v2.0.50727_32\System.Xml\10154dcad2d62f226af2fd4211460a4b\System.Xml.ni.dll MOD - [2011.08.16 09:29:17 | 012,430,848 | ---- | M] () -- C:\WINXP\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\d00cc387e462e4c3cdcd112b137cac87\System.Windows.Forms.ni.dll MOD - [2011.08.16 09:29:00 | 001,587,200 | ---- | M] () -- C:\WINXP\assembly\NativeImages_v2.0.50727_32\System.Drawing\7ed09623172a292eaee51e2e3bcaf784\System.Drawing.ni.dll MOD - [2011.08.16 09:27:24 | 007,950,848 | ---- | M] () -- C:\WINXP\assembly\NativeImages_v2.0.50727_32\System\e6c79e1d71b0c9000afd7e5e439b5c54\System.ni.dll MOD - [2011.08.16 09:27:13 | 011,490,816 | ---- | M] () -- C:\WINXP\assembly\NativeImages_v2.0.50727_32\mscorlib\0309936a8e1672d39b9cf14463ce69f9\mscorlib.ni.dll MOD - [2011.08.16 09:26:11 | 000,303,104 | ---- | M] () -- C:\WINXP\assembly\GAC_MSIL\System.Runtime.Remoting\2.0.0.0__b77a5c561934e089\System.Runtime.Remoting.dll MOD - [2011.04.21 15:59:06 | 001,131,840 | ---- | M] () -- C:\Dokumente und Einstellungen\Freisler 88\Anwendungsdaten\Mozilla\Firefox\Profiles\9mqondjf.default\extensions\DTToolbar@toolbarnet.com\components\DTToolbarFF.dll MOD - [2010.12.24 15:33:24 | 000,008,704 | ---- | M] () -- C:\WINXP\assembly\GAC_MSIL\CLI.Caste.HydraVision.Shared\2.0.3632.28362__90ba9c70f846762e\CLI.Caste.HydraVision.Shared.dll MOD - [2010.12.24 15:33:24 | 000,007,680 | ---- | M] () -- C:\WINXP\assembly\GAC_MSIL\CLI.Caste.HydraVision.Wizard\2.0.3632.28368__90ba9c70f846762e\CLI.Caste.HydraVision.Wizard.dll MOD - [2010.12.24 15:33:23 | 001,736,704 | ---- | M] () -- C:\WINXP\assembly\GAC_MSIL\CLI.Aspect.DisplaysManager.Graphics.Wizard\2.0.3632.28243__90ba9c70f846762e\CLI.Aspect.DisplaysManager.Graphics.Wizard.dll MOD - [2010.12.24 15:33:23 | 000,380,928 | ---- | M] () -- C:\WINXP\assembly\GAC_MSIL\CLI.Caste.Graphics.Runtime\2.0.3632.28218__90ba9c70f846762e\CLI.Caste.Graphics.Runtime.dll MOD - [2010.12.24 15:33:23 | 000,204,800 | ---- | M] () -- C:\WINXP\assembly\GAC_MSIL\CLI.Aspect.InfoCentre.Graphics.Wizard\2.0.3632.28245__90ba9c70f846762e\CLI.Aspect.InfoCentre.Graphics.Wizard.dll MOD - [2010.12.24 15:33:23 | 000,040,960 | ---- | M] () -- C:\WINXP\assembly\GAC_MSIL\CLI.Caste.Graphics.Wizard\2.0.3632.28238__90ba9c70f846762e\CLI.Caste.Graphics.Wizard.dll MOD - [2010.12.24 15:33:23 | 000,020,480 | ---- | M] () -- C:\WINXP\assembly\GAC_MSIL\CLI.Aspect.HotkeysHandling.Graphics.Runtime\2.0.3632.28229__90ba9c70f846762e\CLI.Aspect.HotkeysHandling.Graphics.Runtime.dll MOD - [2010.12.24 15:33:23 | 000,011,776 | ---- | M] () -- C:\WINXP\assembly\GAC_MSIL\CLI.Caste.HydraVision.Runtime\2.0.3632.28362__90ba9c70f846762e\CLI.Caste.HydraVision.Runtime.dll MOD - [2010.12.24 15:33:23 | 000,007,680 | ---- | M] () -- C:\WINXP\assembly\GAC_MSIL\CLI.Caste.HydraVision.Dashboard\2.0.3632.28362__90ba9c70f846762e\CLI.Caste.HydraVision.Dashboard.dll MOD - [2010.12.24 15:33:22 | 000,491,520 | ---- | M] () -- C:\WINXP\assembly\GAC_MSIL\CLI.Aspect.TransCode.Graphics.Wizard\2.0.3632.28345__90ba9c70f846762e\CLI.Aspect.TransCode.Graphics.Wizard.dll MOD - [2010.12.24 15:33:22 | 000,077,824 | ---- | M] () -- C:\WINXP\assembly\GAC_MSIL\CLI.Aspect.DeviceTV.Graphics.Runtime\2.0.3632.28319__90ba9c70f846762e\CLI.Aspect.DeviceTV.Graphics.Runtime.dll MOD - [2010.12.24 15:33:22 | 000,073,728 | ---- | M] () -- C:\WINXP\assembly\GAC_MSIL\CLI.Caste.Graphics.Dashboard\2.0.3632.28229__90ba9c70f846762e\CLI.Caste.Graphics.Dashboard.dll MOD - [2010.12.24 15:33:22 | 000,065,536 | ---- | M] () -- C:\WINXP\assembly\GAC_MSIL\CLI.Aspect.DeviceCV.Graphics.Runtime\2.0.3632.28290__90ba9c70f846762e\CLI.Aspect.DeviceCV.Graphics.Runtime.dll MOD - [2010.12.24 15:33:22 | 000,049,152 | ---- | M] () -- C:\WINXP\assembly\GAC_MSIL\CLI.Aspect.DeviceProperty.Graphics.Runtime\2.0.3632.28277__90ba9c70f846762e\CLI.Aspect.DeviceProperty.Graphics.Runtime.dll MOD - [2010.12.24 15:33:21 | 000,356,352 | ---- | M] () -- C:\WINXP\assembly\GAC_MSIL\CLI.Aspect.Radeon3D.Graphics.Dashboard\2.0.3632.28298__90ba9c70f846762e\CLI.Aspect.Radeon3D.Graphics.Dashboard.dll MOD - [2010.12.24 15:33:21 | 000,094,208 | ---- | M] () -- C:\WINXP\assembly\GAC_MSIL\CLI.Aspect.Radeon3D.Graphics.Wizard\2.0.3632.28299__90ba9c70f846762e\CLI.Aspect.Radeon3D.Graphics.Wizard.dll MOD - [2010.12.24 15:33:21 | 000,065,536 | ---- | M] () -- C:\WINXP\assembly\GAC_MSIL\CLI.Aspect.Welcome.Graphics.Dashboard\2.0.3632.28346__90ba9c70f846762e\CLI.Aspect.Welcome.Graphics.Dashboard.dll MOD - [2010.12.24 15:33:21 | 000,065,536 | ---- | M] () -- C:\WINXP\assembly\GAC_MSIL\CLI.Aspect.Radeon3D.Graphics.Runtime\2.0.3632.28298__90ba9c70f846762e\CLI.Aspect.Radeon3D.Graphics.Runtime.dll MOD - [2010.12.24 15:33:21 | 000,061,440 | ---- | M] () -- C:\WINXP\assembly\GAC_MSIL\CLI.Aspect.VPURecover.Graphics.Dashboard\2.0.3632.28244__90ba9c70f846762e\CLI.Aspect.VPURecover.Graphics.Dashboard.dll MOD - [2010.12.24 15:33:21 | 000,028,672 | ---- | M] () -- C:\WINXP\assembly\GAC_MSIL\CLI.Aspect.VPURecover.Graphics.Runtime\2.0.3632.28244__90ba9c70f846762e\CLI.Aspect.VPURecover.Graphics.Runtime.dll MOD - [2010.12.24 15:33:21 | 000,013,312 | ---- | M] () -- C:\WINXP\assembly\GAC_MSIL\CLI.Aspect.Welcome.Graphics.Runtime\2.0.3632.28389__90ba9c70f846762e\CLI.Aspect.Welcome.Graphics.Runtime.dll MOD - [2010.12.24 15:33:20 | 000,114,688 | ---- | M] () -- C:\WINXP\assembly\GAC_MSIL\CLI.Aspect.PowerPlay4.Graphics.Dashboard\2.0.3632.28347__90ba9c70f846762e\CLI.Aspect.PowerPlay4.Graphics.Dashboard.dll MOD - [2010.12.24 15:33:20 | 000,049,152 | ---- | M] () -- C:\WINXP\assembly\GAC_MSIL\CLI.Aspect.PowerPlay4.Graphics.Runtime\2.0.3632.28347__90ba9c70f846762e\CLI.Aspect.PowerPlay4.Graphics.Runtime.dll MOD - [2010.12.24 15:33:19 | 000,827,392 | ---- | M] () -- C:\WINXP\assembly\GAC_MSIL\CLI.Aspect.MMVideo.Graphics.Dashboard\2.0.3632.28280__90ba9c70f846762e\CLI.Aspect.MMVideo.Graphics.Dashboard.dll MOD - [2010.12.24 15:33:19 | 000,409,600 | ---- | M] () -- C:\WINXP\assembly\GAC_MSIL\CLI.Aspect.MMVideo.Graphics.Wizard\2.0.3632.28312__90ba9c70f846762e\CLI.Aspect.MMVideo.Graphics.Wizard.dll MOD - [2010.12.24 15:33:19 | 000,098,304 | ---- | M] () -- C:\WINXP\assembly\GAC_MSIL\CLI.Aspect.MMVideo.Graphics.Runtime\2.0.3632.28279__90ba9c70f846762e\CLI.Aspect.MMVideo.Graphics.Runtime.dll MOD - [2010.12.24 15:33:18 | 000,573,440 | ---- | M] () -- C:\WINXP\assembly\GAC_MSIL\CLI.Aspect.DisplaysColour2.Graphics.Dashboard\2.0.3632.28247__90ba9c70f846762e\CLI.Aspect.DisplaysColour2.Graphics.Dashboard.dll MOD - [2010.12.24 15:33:18 | 000,409,600 | ---- | M] () -- C:\WINXP\assembly\GAC_MSIL\CLI.Aspect.DisplaysManager.Graphics.Dashboard\2.0.3632.28232__90ba9c70f846762e\CLI.Aspect.DisplaysManager.Graphics.Dashboard.dll MOD - [2010.12.24 15:33:18 | 000,307,200 | ---- | M] () -- C:\WINXP\assembly\GAC_MSIL\CLI.Aspect.DeviceLCD.Graphics.Wizard\2.0.3632.28253__90ba9c70f846762e\CLI.Aspect.DeviceLCD.Graphics.Wizard.dll MOD - [2010.12.24 15:33:18 | 000,196,608 | ---- | M] () -- C:\WINXP\assembly\GAC_MSIL\CLI.Aspect.InfoCentre.Graphics.Dashboard\2.0.3632.28246__90ba9c70f846762e\CLI.Aspect.InfoCentre.Graphics.Dashboard.dll MOD - [2010.12.24 15:33:18 | 000,094,208 | ---- | M] () -- C:\WINXP\assembly\GAC_MSIL\CLI.Aspect.DisplaysOptions.Graphics.Dashboard\2.0.3632.28287__90ba9c70f846762e\CLI.Aspect.DisplaysOptions.Graphics.Dashboard.dll MOD - [2010.12.24 15:33:18 | 000,040,960 | ---- | M] () -- C:\WINXP\assembly\GAC_MSIL\CLI.Aspect.DisplaysOptions.Graphics.Runtime\2.0.3632.28286__90ba9c70f846762e\CLI.Aspect.DisplaysOptions.Graphics.Runtime.dll MOD - [2010.12.24 15:33:18 | 000,040,960 | ---- | M] () -- C:\WINXP\assembly\GAC_MSIL\CLI.Aspect.DisplaysColour2.Graphics.Runtime\2.0.3632.28252__90ba9c70f846762e\CLI.Aspect.DisplaysColour2.Graphics.Runtime.dll MOD - [2010.12.24 15:33:17 | 000,393,216 | ---- | M] () -- C:\WINXP\assembly\GAC_MSIL\CLI.Aspect.DeviceCRT.Graphics.Dashboard\2.0.3632.28279__90ba9c70f846762e\CLI.Aspect.DeviceCRT.Graphics.Dashboard.dll MOD - [2010.12.24 15:33:17 | 000,323,584 | ---- | M] () -- C:\WINXP\assembly\GAC_MSIL\CLI.Aspect.DeviceLCD.Graphics.Dashboard\2.0.3632.28289__90ba9c70f846762e\CLI.Aspect.DeviceLCD.Graphics.Dashboard.dll MOD - [2010.12.24 15:33:17 | 000,270,336 | ---- | M] () -- C:\WINXP\assembly\GAC_MSIL\CLI.Aspect.CrossDisplay.Graphics.Dashboard\1.0.0.0__90ba9c70f846762e\CLI.Aspect.CrossDisplay.Graphics.Dashboard.dll MOD - [2010.12.24 15:33:17 | 000,065,536 | ---- | M] () -- C:\WINXP\assembly\GAC_MSIL\CLI.Aspect.DeviceDFP.Graphics.Runtime\2.0.3632.28278__90ba9c70f846762e\CLI.Aspect.DeviceDFP.Graphics.Runtime.dll MOD - [2010.12.24 15:33:17 | 000,040,960 | ---- | M] () -- C:\WINXP\assembly\GAC_MSIL\CLI.Aspect.DeviceCRT.Graphics.Runtime\2.0.3632.28279__90ba9c70f846762e\CLI.Aspect.DeviceCRT.Graphics.Runtime.dll MOD - [2010.12.24 15:33:17 | 000,036,864 | ---- | M] () -- C:\WINXP\assembly\GAC_MSIL\CLI.Aspect.DeviceLCD.Graphics.Runtime\2.0.3632.28288__90ba9c70f846762e\CLI.Aspect.DeviceLCD.Graphics.Runtime.dll MOD - [2010.12.24 15:33:16 | 000,020,480 | ---- | M] () -- C:\WINXP\assembly\GAC_MSIL\AEM.Plugin.Hotkeys.Shared\2.0.3621.42212__90ba9c70f846762e\AEM.Plugin.Hotkeys.Shared.dll MOD - [2010.12.24 15:33:16 | 000,020,480 | ---- | M] () -- C:\WINXP\assembly\GAC_MSIL\AEM.Actions.CCAA.Shared\2.0.3621.42210__90ba9c70f846762e\AEM.Actions.CCAA.Shared.dll MOD - [2010.12.24 15:33:16 | 000,016,384 | ---- | M] () -- C:\WINXP\assembly\GAC_MSIL\AEM.Plugin.WinMessages.Shared\2.0.3621.42227__90ba9c70f846762e\AEM.Plugin.WinMessages.Shared.dll MOD - [2010.12.24 15:33:16 | 000,016,384 | ---- | M] () -- C:\WINXP\assembly\GAC_MSIL\AEM.Plugin.REG.Shared\2.0.3621.42278__90ba9c70f846762e\AEM.Plugin.REG.Shared.dll MOD - [2010.12.24 15:33:16 | 000,016,384 | ---- | M] () -- C:\WINXP\assembly\GAC_MSIL\AEM.Plugin.GD.Shared\2.0.3621.42271__90ba9c70f846762e\AEM.Plugin.GD.Shared.dll MOD - [2010.12.24 15:33:16 | 000,016,384 | ---- | M] () -- C:\WINXP\assembly\GAC_MSIL\AEM.Plugin.EEU.Shared\2.0.3621.42225__90ba9c70f846762e\AEM.Plugin.EEU.Shared.dll MOD - [2010.12.24 15:33:16 | 000,016,384 | ---- | M] () -- C:\WINXP\assembly\GAC_MSIL\AEM.Plugin.DPPE.Shared\2.0.3621.42271__90ba9c70f846762e\AEM.Plugin.DPPE.Shared.dll MOD - [2010.12.24 15:33:16 | 000,007,168 | ---- | M] () -- C:\WINXP\assembly\GAC_MSIL\atixclib\1.0.0.0__90ba9c70f846762e\atixclib.dll MOD - [2010.12.24 15:33:15 | 000,098,304 | ---- | M] () -- C:\WINXP\assembly\GAC_MSIL\CLI.Foundation\2.0.3621.42196__90ba9c70f846762e\CLI.Foundation.dll MOD - [2010.12.24 15:33:15 | 000,045,056 | ---- | M] () -- C:\WINXP\assembly\GAC_MSIL\DEM.Graphics.I0601\2.0.2573.17685__90ba9c70f846762e\DEM.Graphics.I0601.dll MOD - [2010.12.24 15:33:15 | 000,032,768 | ---- | M] () -- C:\WINXP\assembly\GAC_MSIL\LOG.Foundation\2.0.3621.42190__90ba9c70f846762e\LOG.Foundation.dll MOD - [2010.12.24 15:33:15 | 000,028,672 | ---- | M] () -- C:\WINXP\assembly\GAC_MSIL\NEWAEM.Foundation\2.0.3621.42192__90ba9c70f846762e\NEWAEM.Foundation.dll MOD - [2010.12.24 15:33:15 | 000,028,672 | ---- | M] () -- C:\WINXP\assembly\GAC_MSIL\CLI.Foundation.XManifest\2.0.3621.42329__90ba9c70f846762e\CLI.Foundation.XManifest.dll MOD - [2010.12.24 15:33:15 | 000,016,384 | ---- | M] () -- C:\WINXP\assembly\GAC_MSIL\MOM.Foundation\2.0.3621.42223__90ba9c70f846762e\MOM.Foundation.dll MOD - [2010.12.24 15:33:15 | 000,016,384 | ---- | M] () -- C:\WINXP\assembly\GAC_MSIL\DEM.Graphics.I0706\2.0.2743.23304__90ba9c70f846762e\DEM.Graphics.I0706.dll MOD - [2010.12.24 15:33:15 | 000,016,384 | ---- | M] () -- C:\WINXP\assembly\GAC_MSIL\DEM.Graphics\2.0.3621.42228__90ba9c70f846762e\DEM.Graphics.dll MOD - [2010.12.24 15:33:15 | 000,016,384 | ---- | M] () -- C:\WINXP\assembly\GAC_MSIL\DEM.Foundation\2.0.2573.17684__90ba9c70f846762e\DEM.Foundation.dll MOD - [2010.12.24 15:33:14 | 000,151,552 | ---- | M] () -- C:\WINXP\assembly\GAC_MSIL\CLI.Caste.Graphics.Shared\2.0.3621.42202__90ba9c70f846762e\CLI.Caste.Graphics.Shared.dll MOD - [2010.12.24 15:33:14 | 000,057,344 | ---- | M] () -- C:\WINXP\assembly\GAC_MSIL\CLI.Aspect.Radeon3D.Graphics.Shared\2.0.3621.42246__90ba9c70f846762e\CLI.Aspect.Radeon3D.Graphics.Shared.dll MOD - [2010.12.24 15:33:14 | 000,040,960 | ---- | M] () -- C:\WINXP\assembly\GAC_MSIL\CLI.Aspect.TransCode.Graphics.Shared\2.0.3621.42267__90ba9c70f846762e\CLI.Aspect.TransCode.Graphics.Shared.dll MOD - [2010.12.24 15:33:14 | 000,028,672 | ---- | M] () -- C:\WINXP\assembly\GAC_MSIL\CLI.Aspect.PowerPlay4.Graphics.Shared\2.0.3621.42267__90ba9c70f846762e\CLI.Aspect.PowerPlay4.Graphics.Shared.dll MOD - [2010.12.24 15:33:14 | 000,024,576 | ---- | M] () -- C:\WINXP\assembly\GAC_MSIL\CLI.Component.Dashboard.Shared\2.0.3621.42213__90ba9c70f846762e\CLI.Component.Dashboard.Shared.dll MOD - [2010.12.24 15:33:14 | 000,020,480 | ---- | M] () -- C:\WINXP\assembly\GAC_MSIL\CLI.Component.Wizard.Shared\2.0.3621.42217__90ba9c70f846762e\CLI.Component.Wizard.Shared.dll MOD - [2010.12.24 15:33:14 | 000,020,480 | ---- | M] () -- C:\WINXP\assembly\GAC_MSIL\CLI.Component.Client.Shared\2.0.3621.42209__90ba9c70f846762e\CLI.Component.Client.Shared.dll MOD - [2010.12.24 15:33:14 | 000,020,480 | ---- | M] () -- C:\WINXP\assembly\GAC_MSIL\CLI.Aspect.Welcome.Graphics.Shared\2.0.3621.42268__90ba9c70f846762e\CLI.Aspect.Welcome.Graphics.Shared.dll MOD - [2010.12.24 15:33:14 | 000,020,480 | ---- | M] () -- C:\WINXP\assembly\GAC_MSIL\CLI.Aspect.VPURecover.Graphics.Shared\2.0.3621.42241__90ba9c70f846762e\CLI.Aspect.VPURecover.Graphics.Shared.dll MOD - [2010.12.24 15:33:14 | 000,016,384 | ---- | M] () -- C:\WINXP\assembly\GAC_MSIL\CLI.Component.Runtime.Shared\2.0.3621.42211__90ba9c70f846762e\CLI.Component.Runtime.Shared.dll MOD - [2010.12.24 15:33:14 | 000,016,384 | ---- | M] () -- C:\WINXP\assembly\GAC_MSIL\CLI.Caste.Graphics.Wizard.Shared\2.0.3621.42240__90ba9c70f846762e\CLI.Caste.Graphics.Wizard.Shared.dll MOD - [2010.12.24 15:33:14 | 000,016,384 | ---- | M] () -- C:\WINXP\assembly\GAC_MSIL\CLI.Caste.Graphics.Dashboard.Shared\2.0.3621.42221__90ba9c70f846762e\CLI.Caste.Graphics.Dashboard.Shared.dll MOD - [2010.12.24 15:33:13 | 000,065,536 | ---- | M] () -- C:\WINXP\assembly\GAC_MSIL\CLI.Aspect.DeviceTV.Graphics.Shared\2.0.3621.42247__90ba9c70f846762e\CLI.Aspect.DeviceTV.Graphics.Shared.dll MOD - [2010.12.24 15:33:13 | 000,061,440 | ---- | M] () -- C:\WINXP\assembly\GAC_MSIL\CLI.Aspect.MMVideo.Graphics.Shared\2.0.3621.42226__90ba9c70f846762e\CLI.Aspect.MMVideo.Graphics.Shared.dll MOD - [2010.12.24 15:33:13 | 000,053,248 | ---- | M] () -- C:\WINXP\assembly\GAC_MSIL\CLI.Aspect.DeviceDFP.Graphics.Shared\2.0.3621.42226__90ba9c70f846762e\CLI.Aspect.DeviceDFP.Graphics.Shared.dll MOD - [2010.12.24 15:33:13 | 000,053,248 | ---- | M] () -- C:\WINXP\assembly\GAC_MSIL\CLI.Aspect.DeviceCRT.Graphics.Shared\2.0.3621.42243__90ba9c70f846762e\CLI.Aspect.DeviceCRT.Graphics.Shared.dll MOD - [2010.12.24 15:33:13 | 000,040,960 | ---- | M] () -- C:\WINXP\assembly\GAC_MSIL\CLI.Aspect.DeviceProperty.Graphics.Shared\2.0.3621.42214__90ba9c70f846762e\CLI.Aspect.DeviceProperty.Graphics.Shared.dll MOD - [2010.12.24 15:33:13 | 000,040,960 | ---- | M] () -- C:\WINXP\assembly\GAC_MSIL\CLI.Aspect.DeviceCV.Graphics.Shared\2.0.3621.42224__90ba9c70f846762e\CLI.Aspect.DeviceCV.Graphics.Shared.dll MOD - [2010.12.24 15:33:13 | 000,028,672 | ---- | M] () -- C:\WINXP\assembly\GAC_MSIL\CLI.Aspect.DisplaysColour2.Graphics.Shared\2.0.3621.42241__90ba9c70f846762e\CLI.Aspect.DisplaysColour2.Graphics.Shared.dll MOD - [2010.12.24 15:33:13 | 000,028,672 | ---- | M] () -- C:\WINXP\assembly\GAC_MSIL\CLI.Aspect.DeviceLCD.Graphics.Shared\2.0.3621.42229__90ba9c70f846762e\CLI.Aspect.DeviceLCD.Graphics.Shared.dll MOD - [2010.12.24 15:33:13 | 000,028,672 | ---- | M] () -- C:\WINXP\assembly\GAC_MSIL\CLI.Aspect.CustomFormats.Graphics.Shared\2.0.3621.42211__90ba9c70f846762e\CLI.Aspect.CustomFormats.Graphics.Shared.dll MOD - [2010.12.24 15:33:13 | 000,024,576 | ---- | M] () -- C:\WINXP\assembly\GAC_MSIL\CLI.Aspect.DisplaysOptions.Graphics.Shared\2.0.3621.42244__90ba9c70f846762e\CLI.Aspect.DisplaysOptions.Graphics.Shared.dll MOD - [2010.12.24 15:33:13 | 000,020,480 | ---- | M] () -- C:\WINXP\assembly\GAC_MSIL\CLI.Aspect.HotkeysHandling.Graphics.Shared\2.0.3621.42226__90ba9c70f846762e\CLI.Aspect.HotkeysHandling.Graphics.Shared.dll MOD - [2010.12.24 15:33:12 | 000,741,376 | ---- | M] () -- C:\WINXP\assembly\GAC_MSIL\ResourceManagement.Foundation.Implementation\2.0.3632.28381__90ba9c70f846762e\ResourceManagement.Foundation.Implementation.dll MOD - [2010.12.24 15:33:12 | 000,106,496 | ---- | M] () -- C:\WINXP\assembly\GAC_MSIL\MOM.Implementation\2.0.3632.28338__90ba9c70f846762e\MOM.Implementation.dll MOD - [2010.12.24 15:33:12 | 000,065,536 | ---- | M] () -- C:\WINXP\assembly\GAC_MSIL\LOG.Foundation.Implementation\2.0.3632.28336__90ba9c70f846762e\LOG.Foundation.Implementation.dll MOD - [2010.12.24 15:33:12 | 000,045,056 | ---- | M] () -- C:\WINXP\assembly\GAC_MSIL\AEM.Plugin.Source.Kit.Server\2.0.3632.28353__90ba9c70f846762e\AEM.Plugin.Source.Kit.Server.dll MOD - [2010.12.24 15:33:12 | 000,036,864 | ---- | M] () -- C:\WINXP\assembly\GAC_MSIL\LOG.Foundation.Private\2.0.3621.42192__90ba9c70f846762e\LOG.Foundation.Private.dll MOD - [2010.12.24 15:33:12 | 000,020,480 | ---- | M] () -- C:\WINXP\assembly\GAC_MSIL\ResourceManagement.Foundation.Private\2.0.3621.42200__90ba9c70f846762e\ResourceManagement.Foundation.Private.dll MOD - [2010.12.24 15:33:12 | 000,020,480 | ---- | M] () -- C:\WINXP\assembly\GAC_MSIL\LOG.Foundation.Implementation.Private\2.0.3621.42221__90ba9c70f846762e\LOG.Foundation.Implementation.Private.dll MOD - [2010.12.24 15:33:12 | 000,020,480 | ---- | M] () -- C:\WINXP\assembly\GAC_MSIL\APM.Foundation\2.0.3621.42225__90ba9c70f846762e\APM.Foundation.dll MOD - [2010.12.24 15:33:12 | 000,016,384 | ---- | M] () -- C:\WINXP\assembly\GAC_MSIL\AEM.Server.Shared\2.0.3621.42213__90ba9c70f846762e\AEM.Server.Shared.dll MOD - [2010.12.24 15:33:12 | 000,014,848 | ---- | M] () -- C:\WINXP\assembly\GAC_MSIL\AxInterop.WBOCXLib\1.0.0.0__90ba9c70f846762e\AxInterop.WBOCXLib.dll MOD - [2010.12.24 15:33:12 | 000,013,312 | ---- | M] () -- C:\WINXP\assembly\GAC\Interop.WBOCXLib\1.0.0.0__90ba9c70f846762e\Interop.WBOCXLib.dll MOD - [2010.12.24 15:33:12 | 000,007,168 | ---- | M] () -- C:\WINXP\assembly\GAC_MSIL\CLI.Component.Runtime.Extension.EEU\2.0.3632.28212__90ba9c70f846762e\CLI.Component.Runtime.Extension.EEU.dll MOD - [2010.12.24 15:33:11 | 000,577,536 | ---- | M] () -- C:\WINXP\assembly\GAC_MSIL\CLI.Component.Systemtray\2.0.3632.28331__90ba9c70f846762e\CLI.Component.Systemtray.dll MOD - [2010.12.24 15:33:11 | 000,405,504 | ---- | M] () -- C:\WINXP\assembly\GAC_MSIL\CLI.Component.Wizard\2.0.3632.28237__90ba9c70f846762e\CLI.Component.Wizard.dll MOD - [2010.12.24 15:33:11 | 000,061,440 | ---- | M] () -- C:\WINXP\assembly\GAC_MSIL\CLI.Component.Runtime\2.0.3632.28215__90ba9c70f846762e\CLI.Component.Runtime.dll MOD - [2010.12.24 15:33:11 | 000,057,344 | ---- | M] () -- C:\WINXP\assembly\GAC_MSIL\CLI.Component.SkinFactory\2.0.3632.28217__90ba9c70f846762e\CLI.Component.SkinFactory.dll MOD - [2010.12.24 15:33:11 | 000,049,152 | ---- | M] () -- C:\WINXP\assembly\GAC_MSIL\CLI.Component.Runtime.Shared.Private\2.0.3621.42219__90ba9c70f846762e\CLI.Component.Runtime.Shared.Private.dll MOD - [2010.12.24 15:33:11 | 000,040,960 | ---- | M] () -- C:\WINXP\assembly\GAC_MSIL\CLI.Foundation.Private\2.0.3621.42205__90ba9c70f846762e\CLI.Foundation.Private.dll MOD - [2010.12.24 15:33:11 | 000,024,576 | ---- | M] () -- C:\WINXP\assembly\GAC_MSIL\CLI.Component.Wizard.Shared.Private\2.0.3621.42221__90ba9c70f846762e\CLI.Component.Wizard.Shared.Private.dll MOD - [2010.12.24 15:33:10 | 001,220,608 | ---- | M] () -- C:\WINXP\assembly\GAC_MSIL\CLI.Component.Dashboard\2.0.3632.28224__90ba9c70f846762e\CLI.Component.Dashboard.dll MOD - [2010.12.24 15:33:10 | 000,040,960 | ---- | M] () -- C:\WINXP\assembly\GAC_MSIL\CLI.Component.Client.Shared.Private\2.0.3621.42217__90ba9c70f846762e\CLI.Component.Client.Shared.Private.dll MOD - [2010.12.24 15:33:10 | 000,020,480 | ---- | M] () -- C:\WINXP\assembly\GAC_MSIL\CLI.Component.Dashboard.Shared.Private\2.0.3621.42221__90ba9c70f846762e\CLI.Component.Dashboard.Shared.Private.dll MOD - [2010.12.24 15:33:10 | 000,020,480 | ---- | M] () -- C:\WINXP\assembly\GAC_MSIL\CLI.Caste.Graphics.Runtime.Shared.Private\2.0.3621.42249__90ba9c70f846762e\CLI.Caste.Graphics.Runtime.Shared.Private.dll MOD - [2010.12.24 15:33:09 | 000,061,440 | ---- | M] () -- C:\WINXP\assembly\GAC_MSIL\APM.Server\2.0.3632.28215__90ba9c70f846762e\APM.Server.dll MOD - [2010.12.24 15:33:09 | 000,045,056 | ---- | M] () -- C:\WINXP\assembly\GAC_MSIL\AEM.Server\2.0.3632.28213__90ba9c70f846762e\AEM.Server.dll MOD - [2010.12.24 15:33:09 | 000,032,768 | ---- | M] () -- C:\WINXP\assembly\GAC_MSIL\ATICCCom\2.0.0.0__90ba9c70f846762e\ATICCCom.dll MOD - [2010.12.24 15:33:09 | 000,019,456 | ---- | M] () -- C:\WINXP\assembly\GAC_MSIL\CCC.Implementation\2.0.3632.28338__90ba9c70f846762e\CCC.Implementation.dll MOD - [2010.08.10 14:47:16 | 000,062,864 | ---- | M] () -- C:\Programme\Smart PDF Converter Pro\SmartSoft PDF Printer Agent.exe MOD - [2010.05.29 21:35:47 | 000,315,392 | ---- | M] () -- C:\WINXP\assembly\GAC_MSIL\mscorlib.resources\2.0.0.0_de_b77a5c561934e089\mscorlib.resources.dll MOD - [2010.05.29 21:35:45 | 000,434,176 | ---- | M] () -- C:\WINXP\assembly\GAC_MSIL\System.Windows.Forms.resources\2.0.0.0_de_b77a5c561934e089\System.Windows.Forms.resources.dll MOD - [2010.04.24 02:10:52 | 000,026,624 | ---- | M] () -- C:\Programme\CCleaner\Lang\lang-1031.dll MOD - [2010.03.27 13:42:08 | 000,550,400 | ---- | M] () -- C:\Programme\K-Lite Codec Pack\Filters\Haali\splitter.ax MOD - [2010.03.27 11:47:54 | 000,109,568 | ---- | M] () -- C:\Programme\K-Lite Codec Pack\Filters\Haali\avi.dll MOD - [2010.03.27 11:44:14 | 000,080,384 | ---- | M] () -- C:\Programme\K-Lite Codec Pack\Filters\Haali\mkzlib.dll MOD - [2010.03.27 11:44:10 | 000,024,576 | ---- | M] () -- C:\Programme\K-Lite Codec Pack\Filters\Haali\mkunicode.dll MOD - [2010.02.28 01:33:14 | 000,077,664 | ---- | M] () -- C:\Programme\Gemeinsame Dateien\Microsoft Shared\Virtualization Handler\OFFICEVIRT.EXE MOD - [2010.01.28 12:57:53 | 000,355,688 | ---- | M] () -- C:\Programme\Avira\AntiVir Desktop\sqlite3.dll MOD - [2009.11.24 13:36:36 | 000,016,384 | R--- | M] () -- C:\Programme\ATI Technologies\ATI.ACE\Branding\Branding.dll MOD - [2009.06.30 20:42:36 | 000,141,312 | ---- | M] () -- C:\Programme\WinRAR\RarExt.dll MOD - [2009.01.18 17:15:14 | 000,344,064 | ---- | M] () -- C:\Programme\K-Lite Codec Pack\Filters\mmmpcdmx.ax MOD - [2008.04.14 13:00:00 | 000,148,992 | ---- | M] () -- C:\WINXP\system32\mpg2splt.ax MOD - [2008.04.14 13:00:00 | 000,014,336 | ---- | M] () -- C:\WINXP\system32\msdmo.dll MOD - [2007.09.02 12:58:52 | 000,495,616 | ---- | M] () -- C:\Programme\RocketDock\RocketDock.exe MOD - [2007.09.02 12:57:36 | 000,069,632 | ---- | M] () -- C:\Programme\RocketDock\RocketDock.dll MOD - [2005.01.06 17:33:30 | 000,116,224 | ---- | M] () -- C:\WINXP\system32\redmonnt.dll [color=#E56717]========== Win32 Services (SafeList) ==========[/color] SRV - [2011.11.22 04:19:58 | 000,482,992 | ---- | M] (Crawler.com) [Auto | Running] -- C:\Programme\Spyware Terminator\st_rsser.exe -- (ST2012_Svc) SRV - [2011.09.01 08:08:25 | 000,136,360 | ---- | M] (Avira GmbH) [Auto | Running] -- C:\Programme\Avira\AntiVir Desktop\sched.exe -- (AntiVirSchedulerService) SRV - [2011.09.01 08:08:23 | 000,269,480 | ---- | M] (Avira GmbH) [Auto | Running] -- C:\Programme\Avira\AntiVir Desktop\avguard.exe -- (AntiVirService) SRV - [2011.08.31 17:00:48 | 000,366,152 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Programme\Malwarebytes' Anti-Malware\mbamservice.exe -- (MBAMService) SRV - [2010.12.18 17:43:25 | 000,072,704 | ---- | M] (Adobe Systems) [On_Demand | Stopped] -- C:\Programme\Gemeinsame Dateien\Adobe Systems Shared\Service\Adobelmsvc.exe -- (Adobe LM Service) SRV - [2010.09.21 09:30:37 | 000,361,288 | ---- | M] (TuneUp Software) [On_Demand | Stopped] -- C:\WINXP\system32\TuneUpDefragService.exe -- (TuneUp.Defrag) SRV - [2010.09.20 09:17:25 | 000,604,488 | ---- | M] (TuneUp Software) [Auto | Running] -- C:\WINXP\system32\TUProgSt.exe -- (TuneUp.ProgramStatisticsSvc) SRV - [2010.08.02 11:40:56 | 000,199,600 | ---- | M] (Telefónica I+D) [Auto | Running] -- C:\Programme\o2\Mobile Connection Manager\ImpWiFiSvc.exe -- (TGCM_ImportWiFiSvc) SRV - [2010.05.04 12:09:14 | 000,188,128 | ---- | M] (Softwareentwicklung Remus - ArchiCrypt) [Auto | Running] -- C:\Programme\ArchiCrypt\ArchiCrypt Shredder 5\ArchiCryptInjector32.exe -- (ArchiCrypt Sichere Loeschzonen) SRV - [2010.04.24 00:10:54 | 000,209,768 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Programme\Microsoft Application Virtualization Client\sftvsa.exe -- (sftvsa) SRV - [2010.04.24 00:10:44 | 000,483,688 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Programme\Microsoft Application Virtualization Client\sftlist.exe -- (sftlist) SRV - [2010.02.28 01:33:14 | 000,821,664 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Programme\Gemeinsame Dateien\Microsoft Shared\Virtualization Handler\CVHSVC.EXE -- (cvhsvc) SRV - [2010.01.31 12:29:34 | 000,229,458 | ---- | M] (IDT, Inc.) [Auto | Running] -- c:\Programme\IDT\WDM\stacsv.exe -- (STacSV) SRV - [2010.01.09 20:37:50 | 004,640,000 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Programme\Gemeinsame Dateien\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE -- (osppsvc) SRV - [2010.01.09 20:18:00 | 000,149,352 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Programme\Gemeinsame Dateien\Microsoft Shared\Source Engine\OSE.EXE -- (ose) SRV - [2009.07.24 18:38:50 | 000,189,728 | ---- | M] (Protexis Inc.) [Auto | Running] -- c:\Programme\Gemeinsame Dateien\Protexis\License Service\PsiService_2.exe -- (PSI_SVC_2) SRV - [2009.04.27 09:17:13 | 000,759,048 | ---- | M] (ABBYY) [Auto | Running] -- C:\Programme\ABBYY PDF Transformer 3.0\NetworkLicenseServer.exe -- (ABBYY.Licensing.PDFTransformer.Classic.3.0) SRV - [2009.03.27 18:10:56 | 000,014,336 | ---- | M] (LSI Corporation) [Auto | Running] -- C:\Programme\LSI SoftModem\agrsmsvc.exe -- (AgereModemAudio) [color=#E56717]========== Driver Services (SafeList) ==========[/color] DRV - [2011.09.01 08:08:25 | 000,138,192 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\WINXP\system32\drivers\avipbb.sys -- (avipbb) DRV - [2011.09.01 08:08:25 | 000,066,616 | ---- | M] (Avira GmbH) [File_System | Auto | Running] -- C:\WINXP\system32\drivers\avgntflt.sys -- (avgntflt) DRV - [2011.08.31 17:00:50 | 000,022,216 | ---- | M] (Malwarebytes Corporation) [File_System | On_Demand | Running] -- C:\WINXP\system32\drivers\mbam.sys -- (MBAMProtector) DRV - [2011.06.21 11:24:06 | 000,032,768 | ---- | M] () [Kernel | System | Running] -- C:\WINXP\system32\drivers\sp_rsdrv2.sys -- (sp_rsdrv2) DRV - [2010.09.23 10:11:28 | 000,298,784 | ---- | M] (Marvell) [Kernel | On_Demand | Stopped] -- C:\WINXP\system32\drivers\yk51x86.sys -- (yukonwxp) DRV - [2010.07.08 12:41:44 | 000,026,008 | ---- | M] (Telefónica I+D) [Kernel | System | Running] -- C:\WINXP\system32\drivers\tidnet.sys -- (tidnet) DRV - [2010.05.31 12:55:52 | 000,691,696 | ---- | M] () [Kernel | Boot | Running] -- C:\WINXP\System32\Drivers\sptd.sys -- (sptd) DRV - [2010.05.29 19:53:19 | 001,735,040 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Running] -- C:\WINXP\system32\drivers\BCMWL5.SYS -- (BCM43XX) DRV - [2010.04.24 00:10:54 | 000,018,280 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\WINXP\system32\drivers\Sftvolxp.sys -- (Sftvol) DRV - [2010.04.24 00:10:52 | 000,020,584 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Running] -- C:\WINXP\system32\drivers\Sftredirxp.sys -- (Sftredir) DRV - [2010.04.24 00:10:50 | 000,211,432 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\WINXP\system32\drivers\Sftplayxp.sys -- (Sftplay) DRV - [2010.04.24 00:10:44 | 000,554,344 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\WINXP\system32\drivers\Sftfsxp.sys -- (Sftfs) DRV - [2010.04.09 08:24:12 | 000,063,616 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Running] -- C:\WINXP\system32\drivers\ew_jubusenum.sys -- (huawei_enumerator) DRV - [2010.03.25 03:08:30 | 000,105,728 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINXP\system32\drivers\ewusbmdm.sys -- (hwdatacard) DRV - [2010.03.20 04:56:04 | 000,101,504 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINXP\system32\drivers\ew_hwusbdev.sys -- (ew_hwusbdev) DRV - [2010.03.20 03:28:00 | 000,117,504 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINXP\system32\drivers\ewusbnet.sys -- (ewusbnet) DRV - [2010.01.31 12:29:34 | 001,656,403 | ---- | M] (IDT, Inc.) [Kernel | On_Demand | Running] -- C:\WINXP\system32\drivers\sthda.sys -- (STHDA) DRV - [2009.12.11 22:02:42 | 004,525,056 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\WINXP\system32\drivers\ati2mtag.sys -- (ati2mtag) DRV - [2009.08.13 11:07:12 | 001,163,328 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Running] -- C:\WINXP\system32\drivers\AGRSM.sys -- (AgereSoftModem) DRV - [2009.07.02 09:40:34 | 001,765,168 | ---- | M] () [Kernel | On_Demand | Running] -- C:\WINXP\system32\drivers\snp2uvc.sys -- (SNP2UVC) USB2.0 PC Camera (SNP2UVC) DRV - [2009.05.11 11:49:19 | 000,011,608 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\Programme\Avira\AntiVir Desktop\avgio.sys -- (avgio) DRV - [2009.05.11 09:12:49 | 000,028,520 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\WINXP\system32\drivers\ssmdrv.sys -- (ssmdrv) DRV - [2009.04.21 09:13:34 | 000,113,664 | ---- | M] (Andrea Electronics Corporation) [Kernel | On_Demand | Running] -- C:\WINXP\system32\drivers\AESTAud.sys -- (AESTAud) DRV - [2009.01.14 14:16:20 | 000,156,816 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Stopped] -- C:\WINXP\system32\drivers\btwdndis.sys -- (BTWDNDIS) DRV - [2009.01.14 14:16:20 | 000,047,272 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Stopped] -- C:\WINXP\system32\drivers\btwusb.sys -- (BTWUSB) DRV - [2009.01.14 14:16:18 | 000,991,656 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Running] -- C:\WINXP\system32\drivers\btkrnl.sys -- (BTKRNL) DRV - [2009.01.14 14:16:18 | 000,534,568 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Stopped] -- C:\WINXP\system32\drivers\btaudio.sys -- (btaudio) DRV - [2009.01.14 14:16:18 | 000,037,160 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Running] -- C:\WINXP\system32\drivers\btport.sys -- (BTDriver) DRV - [2008.11.13 14:10:06 | 000,007,680 | ---- | M] (SCM Microsystems Inc.) [Kernel | On_Demand | Stopped] -- C:\WINXP\system32\drivers\STCFUx32.sys -- (STCFUx32) DRV - [2008.10.09 14:42:42 | 000,017,408 | ---- | M] (Windows (R) Codename Longhorn DDK provider) [Kernel | On_Demand | Stopped] -- C:\WINXP\system32\drivers\KMWDFILTER.sys -- (KMWDFILTER) DRV - [2008.05.02 10:58:28 | 000,008,064 | ---- | M] (Windows (R) Codename Longhorn DDK provider) [Kernel | On_Demand | Stopped] -- C:\WINXP\system32\drivers\usbser_lowerfltj.sys -- (UsbserFilt) DRV - [2008.05.02 10:58:14 | 000,020,864 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINXP\system32\drivers\ccdcmbo.sys -- (nmwcdc) DRV - [2008.05.02 10:58:14 | 000,008,064 | ---- | M] (Windows (R) Codename Longhorn DDK provider) [Kernel | On_Demand | Stopped] -- C:\WINXP\system32\drivers\usbser_lowerflt.sys -- (upperdev) DRV - [2008.05.02 10:58:12 | 000,017,536 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINXP\system32\drivers\ccdcmb.sys -- (nmwcd) DRV - [2007.06.29 13:47:34 | 000,034,304 | ---- | M] (AMD, Inc.) [Kernel | On_Demand | Running] -- C:\WINXP\system32\drivers\AmdLLD.sys -- (AmdLLD) DRV - [2007.06.18 16:12:04 | 000,016,768 | ---- | M] (Hewlett-Packard Development Company, L.P.) [Kernel | On_Demand | Running] -- C:\WINXP\system32\drivers\HpqKbFiltr.sys -- (HpqKbFiltr) DRV - [2007.04.16 20:46:00 | 000,033,792 | ---- | M] (Advanced Micro Devices) [Kernel | System | Running] -- C:\WINXP\system32\drivers\AmdPPM.sys -- (AmdPPM) DRV - [2005.05.25 08:39:06 | 000,004,608 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Programme\RMClock\RTCore32.sys -- (RTCore32) [color=#E56717]========== Standard Registry (SafeList) ==========[/color] [color=#E56717]========== Internet Explorer ==========[/color] IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\WINXP\system32\blank.htm IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = about:blank IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\WINXP\system32\blank.htm IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://de.msn.com/?ocid=iehp IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = BA 4B FF AF EE 97 CC 01 [binary data] IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 [color=#E56717]========== FireFox ==========[/color] FF - prefs.js..browser.search.defaultenginename: "foxsearch" FF - prefs.js..browser.search.defaultthis.engineName: "SearchElf 1.2 Customized Web Search" FF - prefs.js..browser.search.defaulturl: "http://search.conduit.com/ResultsExt.aspx?ctid=CT2769726&SearchSource=3&q={searchTerms}" FF - prefs.js..browser.search.order.1: "foxsearch" FF - prefs.js..browser.search.selectedEngine: "foxsearch" FF - prefs.js..browser.startup.homepage: "http://www.google.de/" FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0 FF - prefs.js..extensions.enabledItems: gutscheinmieze@synatix-gmbh.de:1.03 FF - prefs.js..extensions.enabledItems: {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}:1.3.10 FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}:6.0.22 FF - prefs.js..extensions.enabledItems: DTToolbar@toolbarnet.com:1.1.8.0191 FF - prefs.js..extensions.enabledItems: {23fcfd51-4958-4f00-80a3-ae97e717ed8b}:2.1.0.900 FF - prefs.js..extensions.enabledItems: {6904342A-8307-11DF-A508-4AE2DFD72085}:2.1.0.900 FF - prefs.js..keyword.URL: "http://www.finduny.com?client=mozilla-firefox&cd=UTF-8&search=1&q=" FF - user.js..browser.search.selectedEngine: "foxsearch" FF - user.js..browser.search.order.1: "foxsearch" FF - user.js..browser.search.defaultenginename: "foxsearch" FF - user.js..keyword.URL: "http://www.finduny.com?client=mozilla-firefox&cd=UTF-8&search=1&q=" FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINXP\system32\Macromed\Flash\NPSWF32.dll () FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\WINXP\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.) FF - HKLM\Software\MozillaPlugins\@divx.com/DivX Browser Plugin,version=1.0.0: C:\Programme\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC) FF - HKLM\Software\MozillaPlugins\@divx.com/DivX OVS Helper,version=1.0.0: C:\Programme\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.) FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Programme\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.) FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Programme\Microsoft Silverlight\4.0.60531.0\npctrl.dll ( Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~1\MI1933~1\Office14\NPSPWRAP.DLL (Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: c:\WINXP\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=1.0.5: C:\Programme\VideoLAN\VLC\npvlc.dll (the VideoLAN Team) FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Programme\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.) FF - HKLM\Software\MozillaPlugins\yaxmpb@yahoo.com/YahooActiveXPluginBridge;version=1.0.0.1: C:\Programme\Mozilla Firefox\plugins\npyaxmpb.dll (Yahoo! Inc.) FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Dokumente und Einstellungen\Freisler 88\Lokale Einstellungen\Anwendungsdaten\Google\Update\1.3.21.79\npGoogleUpdate3.dll (Google Inc.) FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Dokumente und Einstellungen\Freisler 88\Lokale Einstellungen\Anwendungsdaten\Google\Update\1.3.21.79\npGoogleUpdate3.dll (Google Inc.) FF - HKCU\Software\MozillaPlugins\@www.flatcast.com/FlatViewer 5.2: C:\DOKUME~1\FREISL~1\ANWEND~1\Flatcast\NpFv522.dll (1 mal 1 Software GmbH) FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\extensions\\{23fcfd51-4958-4f00-80a3-ae97e717ed8b}: C:\Programme\DivX\DivX Plus Web Player\firefox\html5video [2010.12.23 23:15:50 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\extensions\\{6904342A-8307-11DF-A508-4AE2DFD72085}: C:\Programme\DivX\DivX Plus Web Player\firefox\wpa [2010.12.23 23:15:51 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 3.6.24\extensions\\Components: C:\Programme\Mozilla Firefox\components [2011.12.04 14:49:47 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 3.6.24\extensions\\Plugins: C:\Programme\Mozilla Firefox\plugins [2011.11.30 13:32:30 | 000,000,000 | ---D | M] [2010.05.29 20:56:25 | 000,000,000 | ---D | M] (No name found) -- C:\Dokumente und Einstellungen\Freisler 88\Anwendungsdaten\Mozilla\Extensions [2011.12.05 09:29:00 | 000,000,000 | ---D | M] (No name found) -- C:\Dokumente und Einstellungen\Freisler 88\Anwendungsdaten\Mozilla\Firefox\Profiles\9mqondjf.default\extensions [2010.06.03 17:56:07 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Dokumente und Einstellungen\Freisler 88\Anwendungsdaten\Mozilla\Firefox\Profiles\9mqondjf.default\extensions\{20a82645-c095-46ed-80e3-08825760534b} [2011.11.20 20:54:05 | 000,000,000 | ---D | M] (Adblock Plus) -- C:\Dokumente und Einstellungen\Freisler 88\Anwendungsdaten\Mozilla\Firefox\Profiles\9mqondjf.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d} [2011.11.20 20:53:59 | 000,000,000 | ---D | M] ("DAEMON Tools Toolbar") -- C:\Dokumente und Einstellungen\Freisler 88\Anwendungsdaten\Mozilla\Firefox\Profiles\9mqondjf.default\extensions\DTToolbar@toolbarnet.com [2011.06.13 18:08:10 | 000,000,000 | ---D | M] (Gutscheinmieze) -- C:\Dokumente und Einstellungen\Freisler 88\Anwendungsdaten\Mozilla\Firefox\Profiles\9mqondjf.default\extensions\gutscheinmieze@synatix-gmbh.de [2010.11.23 12:14:58 | 000,000,929 | ---- | M] () -- C:\Dokumente und Einstellungen\Freisler 88\Anwendungsdaten\Mozilla\Firefox\Profiles\9mqondjf.default\searchplugins\conduit.xml [2010.11.13 22:11:51 | 000,002,059 | ---- | M] () -- C:\Dokumente und Einstellungen\Freisler 88\Anwendungsdaten\Mozilla\Firefox\Profiles\9mqondjf.default\searchplugins\daemon-search.xml [2011.12.05 09:27:42 | 000,000,000 | ---D | M] (No name found) -- C:\Programme\Mozilla Firefox\extensions [2010.10.28 16:13:23 | 000,000,000 | ---D | M] (Java Console) -- C:\Programme\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA} [2010.12.23 23:15:50 | 000,000,000 | ---D | M] (DivX Plus Web Player HTML5 <video>) -- C:\PROGRAMME\DIVX\DIVX PLUS WEB PLAYER\FIREFOX\HTML5VIDEO [2010.12.23 23:15:51 | 000,000,000 | ---D | M] (DivX HiQ) -- C:\PROGRAMME\DIVX\DIVX PLUS WEB PLAYER\FIREFOX\WPA [2010.05.29 20:38:45 | 000,000,000 | ---D | M] (Java Quick Starter) -- C:\PROGRAMME\JAVA\JRE6\LIB\DEPLOY\JQS\FF [2010.09.15 03:50:38 | 000,472,808 | ---- | M] (Sun Microsystems, Inc.) -- C:\Programme\mozilla firefox\plugins\npdeployJava1.dll [2009.09.21 09:59:40 | 001,275,296 | ---- | M] (1 mal 1 Software GmbH) -- C:\Programme\mozilla firefox\plugins\NpFv501.dll [2009.09.21 10:00:44 | 001,447,328 | ---- | M] (1 mal 1 Software GmbH) -- C:\Programme\mozilla firefox\plugins\NpFv522.dll [2010.03.08 11:24:04 | 000,103,168 | ---- | M] (Midasplayer Ltd) -- C:\Programme\mozilla firefox\plugins\npmidas.dll [2010.03.19 07:23:30 | 000,686,592 | ---- | M] (Synatix GmbH) -- C:\Programme\mozilla firefox\plugins\npmieze.dll [2007.03.10 00:16:44 | 000,189,496 | ---- | M] (Yahoo! Inc.) -- C:\Programme\mozilla firefox\plugins\npyaxmpb.dll [2011.11.30 13:32:25 | 000,001,392 | ---- | M] () -- C:\Programme\mozilla firefox\searchplugins\amazondotcom-de.xml [2011.11.30 13:32:25 | 000,002,344 | ---- | M] () -- C:\Programme\mozilla firefox\searchplugins\eBay-de.xml [2011.06.13 18:08:10 | 000,000,143 | ---- | M] () -- C:\Programme\mozilla firefox\searchplugins\foxsearch.src [2011.11.30 13:32:25 | 000,006,805 | ---- | M] () -- C:\Programme\mozilla firefox\searchplugins\leo_ende_de.xml [2011.11.30 13:32:25 | 000,001,178 | ---- | M] () -- C:\Programme\mozilla firefox\searchplugins\wikipedia-de.xml [2011.11.30 13:32:25 | 000,001,105 | ---- | M] () -- C:\Programme\mozilla firefox\searchplugins\yahoo-de.xml [color=#E56717]========== Chrome ==========[/color] CHR - default_search_provider: facemoods (Enabled) CHR - default_search_provider: search_url = http://start.facemoods.com/?a=ddrnw&s={searchTerms}&f=4 CHR - default_search_provider: suggest_url = CHR - plugin: Shockwave Flash (Enabled) = C:\Dokumente und Einstellungen\Freisler 88\Lokale Einstellungen\Anwendungsdaten\Google\Chrome\Application\15.0.874.121\gcswf32.dll CHR - plugin: Shockwave Flash (Enabled) = C:\WINXP\system32\Macromed\Flash\NPSWF32.dll CHR - plugin: Java Deployment Toolkit 6.0.220.4 (Enabled) = C:\Programme\Java\jre6\bin\new_plugin\npdeployJava1.dll CHR - plugin: Java(TM) Platform SE 6 U22 (Enabled) = C:\Programme\Java\jre6\bin\new_plugin\npjp2.dll CHR - plugin: Silverlight Plug-In (Enabled) = c:\Programme\Microsoft Silverlight\4.0.60531.0\npctrl.dll CHR - plugin: Shockwave for Director (Enabled) = C:\WINXP\system32\Adobe\Director\np32dsw.dll CHR - plugin: DivX Web Player (Enabled) = C:\Programme\DivX\DivX Plus Web Player\npdivx32.dll CHR - plugin: Windows Media Player Plug-in Dynamic Link Library (Enabled) = C:\Programme\Windows Media Player\npdsplay.dll CHR - plugin: Microsoft Office 2010 (Enabled) = C:\PROGRA~1\MI1933~1\Office14\NPSPWRAP.DLL CHR - plugin: Remoting Viewer (Enabled) = internal-remoting-viewer CHR - plugin: Native Client (Enabled) = C:\Dokumente und Einstellungen\Freisler 88\Lokale Einstellungen\Anwendungsdaten\Google\Chrome\Application\15.0.874.121\ppGoogleNaClPluginChrome.dll CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Dokumente und Einstellungen\Freisler 88\Lokale Einstellungen\Anwendungsdaten\Google\Chrome\Application\15.0.874.121\pdf.dll CHR - plugin: king.com - Game controller for firefox (Enabled) = C:\Dokumente und Einstellungen\Freisler 88\Lokale Einstellungen\Anwendungsdaten\Google\Chrome\Application\plugins\npmidas.dll CHR - plugin: Flatcast Viewer Plugin 5.0.356 (Enabled) = C:\Programme\Mozilla Firefox\plugins\NpFv501.dll CHR - plugin: Flatcast Viewer Plugin 5.2.2.454 (Enabled) = C:\Programme\Mozilla Firefox\plugins\NpFv522.dll CHR - plugin: Windows Genuine Advantage (Enabled) = C:\Programme\Mozilla Firefox\plugins\npLegitCheckPlugin.dll CHR - plugin: Gutscheinmieze-Plugin (Enabled) = C:\Programme\Mozilla Firefox\plugins\npmieze.dll CHR - plugin: Yahoo! activeX Plug-in Bridge (Enabled) = C:\Programme\Mozilla Firefox\plugins\npyaxmpb.dll CHR - plugin: Microsoft DRM (Enabled) = C:\Programme\Windows Media Player\npdrmv2.dll CHR - plugin: Microsoft DRM (Enabled) = C:\Programme\Windows Media Player\npwmsdrm.dll CHR - plugin: Google Update (Enabled) = C:\Dokumente und Einstellungen\Freisler 88\Lokale Einstellungen\Anwendungsdaten\Google\Update\1.3.21.79\npGoogleUpdate3.dll CHR - plugin: DivX OVS Helper Plug-in (Enabled) = C:\Programme\DivX\DivX OVS Helper\npovshelper.dll CHR - plugin: VLC Multimedia Plug-in (Enabled) = C:\Programme\VideoLAN\VLC\npvlc.dll CHR - plugin: Windows Presentation Foundation (Enabled) = c:\WINXP\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll CHR - plugin: Default Plug-in (Enabled) = default_plugin CHR - Extension: DivX HiQ = C:\Dokumente und Einstellungen\Freisler 88\Lokale Einstellungen\Anwendungsdaten\Google\Chrome\User Data\Default\Extensions\fnjbmmemklcjgepojigaapkoodmkgbae\2.1.0.900_0\ CHR - Extension: DivX Plus Web Player HTML5 video = C:\Dokumente und Einstellungen\Freisler 88\Lokale Einstellungen\Anwendungsdaten\Google\Chrome\User Data\Default\Extensions\nneajnkjbffgblleaoojgaacokifdkhm\2.1.0.900_0\ Hosts file not found O2 - BHO: (Adobe PDF Link Helper) - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Programme\Gemeinsame Dateien\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated) O2 - BHO: (DivX Plus Web Player HTML5