Trojaner - es ist einfach nur langsam!

markusg · 20.02.2013, 20:29

sehr gut.
Scan mit Combofix

WARNUNG an die MITLESER:
Combofix sollte ausschließlich ausgeführt werden, wenn dies von einem Teammitglied angewiesen wurde!

Downloade dir bitte Combofix vom folgenden Downloadspiegel: Link

WICHTIG: Speichere Combofix auf deinem Desktop.

Deaktiviere bitte alle deine Antivirensoftware sowie Malware/Spyware Scanner. Diese können Combofix bei der Arbeit stören. Combofix meckert auch manchmal trotzdem noch, das kannst du dann ignorieren, mir aber bitte mitteilen.

Starte die Combofix.exe und folge den Anweisungen auf dem Bildschirm.

Während Combofix läuft bitte nicht am Computer arbeiten, die Maus bewegen oder ins Combofixfenster klicken!

Wenn Combofix fertig ist, wird es ein Logfile erstellen.

Bitte poste die C:\Combofix.txt in deiner nächsten Antwort (möglichst in CODE-Tags).

Hinweis: Solltest du nach dem Neustart folgende Fehlermeldung erhalten
Es wurde versucht, einen Registrierungsschlüssel einem ungültigen Vorgang zu unterziehen, der zum Löschen markiert wurde.
starte den Rechner einfach neu. Dies sollte das Problem beheben.

trampeltier · 20.02.2013, 20:56

Hier die Log Datei:

Combofix Logfile:

Code:

ATTFilter

ComboFix 13-02-20.01 - Mirko 20.02.2013  20:44:12.1.2 - x86
Microsoft Windows 7 Home Premium   6.1.7601.1.1252.49.1031.18.3579.2572 [GMT 1:00]
ausgeführt von:: c:\users\Mirko\Desktop\ComboFix.exe
AV: Avira Desktop *Disabled/Updated* {F67B4DE5-C0B4-6C3F-0EFF-6C83BD5D0C2C}
SP: Avira Desktop *Disabled/Updated* {4D1AAC01-E68E-63B1-344F-57F1C6DA4691}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((   Weitere Löschungen   ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\windows\security\Database\tmp.edb
.
.
(((((((((((((((((((((((   Dateien erstellt von 2013-01-20 bis 2013-02-20  ))))))))))))))))))))))))))))))
.
.
2013-02-20 19:52 . 2013-02-20 19:52	--------	d-----w-	c:\users\Default\AppData\Local\temp
2013-02-20 19:06 . 2013-02-20 19:06	177496	----a-w-	c:\windows\system32\drivers\86168009.sys
2013-02-19 23:53 . 2013-01-18 11:17	6991832	----a-w-	c:\programdata\Microsoft\Windows Defender\Definition Updates\{1045077A-6146-4F96-85CA-DC2CC1355E28}\mpengine.dll
2013-02-15 19:36 . 2013-02-15 19:36	--------	d-----w-	c:\program files\Mozilla Maintenance Service
2013-02-15 11:54 . 2013-02-15 11:54	--------	d-----w-	c:\program files\Common Files\Adobe
2013-02-15 05:19 . 2011-04-28 03:15	60416	----a-w-	c:\windows\system32\drivers\BTHUSB.SYS
2013-02-15 05:19 . 2011-04-28 03:15	393728	----a-w-	c:\windows\system32\drivers\bthport.sys
2013-02-14 15:23 . 2012-12-16 14:13	295424	----a-w-	c:\windows\system32\atmfd.dll
2013-02-14 15:23 . 2012-12-16 14:13	34304	----a-w-	c:\windows\system32\atmlib.dll
2013-02-14 14:44 . 2013-01-08 22:01	768000	----a-w-	c:\program files\Common Files\Microsoft Shared\VGX\VGX.dll
2013-02-14 14:38 . 2012-03-01 05:46	19824	----a-w-	c:\windows\system32\drivers\fs_rec.sys
2013-02-14 14:38 . 2012-03-01 05:29	5120	----a-w-	c:\windows\system32\wmi.dll
2013-02-14 14:38 . 2012-03-01 05:33	159232	----a-w-	c:\windows\system32\imagehlp.dll
2013-02-14 14:38 . 2010-02-11 07:10	293376	----a-w-	c:\windows\system32\browserchoice.exe
2013-02-14 10:07 . 2013-01-04 03:00	2347008	----a-w-	c:\windows\system32\win32k.sys
2013-02-14 10:07 . 2012-08-24 16:57	172544	----a-w-	c:\windows\system32\wintrust.dll
2013-02-14 10:07 . 2012-11-02 05:11	376832	----a-w-	c:\windows\system32\dpnet.dll
2013-02-14 10:07 . 2012-11-09 04:43	492032	----a-w-	c:\windows\system32\win32spl.dll
2013-02-14 09:57 . 2011-04-29 02:46	311808	----a-w-	c:\windows\system32\drivers\srv.sys
2013-02-14 09:57 . 2011-04-29 02:46	310272	----a-w-	c:\windows\system32\drivers\srv2.sys
2013-02-14 09:57 . 2011-04-29 02:46	114688	----a-w-	c:\windows\system32\drivers\srvnet.sys
2013-02-14 09:57 . 2011-04-25 02:18	338944	----a-w-	c:\windows\system32\drivers\afd.sys
2013-02-14 09:57 . 2011-11-17 05:38	1288472	----a-w-	c:\windows\system32\ntdll.dll
2013-02-14 09:56 . 2011-10-01 04:37	708608	----a-w-	c:\program files\Common Files\System\wab32.dll
2013-02-14 09:56 . 2012-06-02 04:36	140288	----a-w-	c:\windows\system32\cryptsvc.dll
2013-02-14 09:56 . 2012-06-02 04:36	1159680	----a-w-	c:\windows\system32\crypt32.dll
2013-02-14 09:56 . 2012-06-02 04:36	103936	----a-w-	c:\windows\system32\cryptnet.dll
2013-02-14 09:56 . 2011-08-17 04:24	465408	----a-w-	c:\windows\system32\psisdecd.dll
2013-02-14 09:56 . 2011-08-17 04:19	75776	----a-w-	c:\windows\system32\psisrndr.ax
2013-02-14 09:56 . 2011-05-24 10:44	293376	----a-w-	c:\windows\system32\umpnpmgr.dll
2013-02-14 09:56 . 2011-07-09 02:30	223744	----a-w-	c:\windows\system32\drivers\mrxsmb10.sys
2013-02-14 09:56 . 2011-04-27 02:17	96768	----a-w-	c:\windows\system32\drivers\mrxsmb20.sys
2013-02-14 09:56 . 2011-04-27 02:17	123904	----a-w-	c:\windows\system32\drivers\mrxsmb.sys
2013-02-14 09:56 . 2011-08-27 04:26	571904	----a-w-	c:\windows\system32\oleaut32.dll
2013-02-14 09:56 . 2011-08-27 04:26	233472	----a-w-	c:\windows\system32\oleacc.dll
2013-02-14 09:55 . 2011-05-03 04:30	741376	----a-w-	c:\windows\system32\inetcomm.dll
2013-02-14 09:55 . 2012-03-31 04:30	1221632	----a-w-	c:\program files\Windows Journal\NBDoc.DLL
2013-02-14 09:55 . 2012-03-31 04:29	936960	----a-w-	c:\program files\Common Files\Microsoft Shared\ink\journal.dll
2013-02-14 09:55 . 2012-03-31 04:29	989184	----a-w-	c:\program files\Windows Journal\JNTFiltr.dll
2013-02-14 09:55 . 2012-03-31 04:29	969216	----a-w-	c:\program files\Windows Journal\JNWDRV.dll
2013-02-14 09:55 . 2011-10-15 05:38	534528	----a-w-	c:\windows\system32\EncDec.dll
2013-02-14 09:55 . 2011-11-19 14:01	67072	----a-w-	c:\windows\system32\packager.dll
2013-02-14 09:55 . 2011-10-26 04:28	38912	----a-w-	c:\windows\system32\csrsrv.dll
2013-02-14 09:55 . 2011-10-26 04:32	514560	----a-w-	c:\windows\system32\qdvd.dll
2013-02-14 09:55 . 2011-10-26 04:32	1328128	----a-w-	c:\windows\system32\quartz.dll
2013-02-14 09:47 . 2011-04-09 05:56	123904	----a-w-	c:\windows\system32\poqexec.exe
2013-02-13 17:03 . 2013-02-13 17:05	--------	d-----w-	c:\program files\Winamp
2013-02-13 17:02 . 2003-06-18 16:31	18944	----a-w-	c:\windows\system32\Spool\prtprocs\w32x86\mdippr.dll
2013-02-13 17:02 . 2003-06-18 16:31	17920	----a-w-	c:\windows\system32\mdimon.dll
2013-02-13 16:58 . 2013-02-13 16:58	--------	d-----r-	C:\MSOCache
2013-02-13 15:55 . 2013-02-13 15:55	--------	d--h--w-	c:\programdata\CanonIJMyPrinter
2013-02-13 15:51 . 2010-08-25 04:00	290816	----a-w-	c:\windows\system32\CNMXLMAG.DLL
2013-02-13 15:50 . 2013-02-13 15:50	--------	d-----w-	c:\programdata\Canon IJ Network Tool
2013-02-13 15:50 . 2010-03-18 18:25	307200	----a-w-	c:\windows\system32\CNC6100L.dll
2013-02-13 15:50 . 2010-03-18 16:12	1335296	----a-w-	c:\windows\system32\CNC6100C.dll
2013-02-13 15:50 . 2010-03-18 16:12	114688	----a-w-	c:\windows\system32\CNC6100I.dll
2013-02-13 15:50 . 2010-03-18 16:11	106496	----a-w-	c:\windows\system32\CNC6100U.dll
2013-02-13 15:50 . 2008-08-25 17:02	15872	----a-w-	c:\windows\system32\CNHMCA.dll
2013-02-13 15:49 . 2013-02-13 17:19	--------	d-----w-	c:\programdata\CanonIJPLM
2013-02-13 15:46 . 2013-02-13 15:46	--------	d-----w-	c:\programdata\CanonIJMSetup
2013-02-13 15:43 . 2013-02-13 15:43	--------	d--h--w-	c:\programdata\CanonBJ
2013-02-13 15:43 . 2010-08-25 04:00	73216	----a-w-	c:\windows\system32\Spool\prtprocs\w32x86\CNMPPAG.DLL
2013-02-13 15:43 . 2010-08-25 04:00	27648	----a-w-	c:\windows\system32\Spool\prtprocs\w32x86\CNMPDAG.DLL
2013-02-13 15:43 . 2013-02-13 15:43	--------	d--h--w-	c:\windows\system32\CanonIJ Uninstaller Information
2013-02-13 15:42 . 2010-08-25 04:00	290816	----a-w-	c:\windows\system32\CNMLMAG.DLL
2013-02-13 15:42 . 2010-03-10 23:56	180224	----a-w-	c:\windows\system32\CNMIUAG.DLL
2013-02-13 15:42 . 2013-02-13 15:42	--------	d-----w-	c:\windows\system32\STRING
2013-02-13 15:42 . 2010-02-05 01:37	34816	----a-w-	c:\windows\system32\CNMNPUI.DLL
2013-02-13 15:42 . 2010-02-05 01:37	340992	----a-w-	c:\windows\system32\CNMNPPM.DLL
2013-02-13 15:40 . 2013-02-13 15:55	--------	d-----w-	c:\program files\Canon
2013-02-13 11:07 . 2013-02-13 11:50	74096	----a-w-	c:\windows\system32\FlashPlayerCPLApp.cpl
2013-02-13 11:07 . 2013-02-13 11:50	697712	----a-w-	c:\windows\system32\FlashPlayerApp.exe
2013-02-13 10:52 . 2013-02-13 23:09	--------	d-----w-	C:\Update
2013-02-13 09:11 . 2013-01-17 00:28	232336	------w-	c:\windows\system32\MpSigStub.exe
2013-02-13 08:59 . 2013-02-13 08:59	--------	d-----w-	c:\program files\Opera
2013-02-13 08:50 . 2013-02-13 08:47	36552	----a-w-	c:\windows\system32\drivers\avkmgr.sys
2013-02-13 08:50 . 2013-02-13 08:47	134336	----a-w-	c:\windows\system32\drivers\avipbb.sys
2013-02-13 08:50 . 2013-02-13 08:47	83944	----a-w-	c:\windows\system32\drivers\avgntflt.sys
2013-02-13 08:50 . 2013-02-13 08:50	--------	d-----w-	c:\programdata\Avira
2013-02-13 08:50 . 2013-02-13 08:50	--------	d-----w-	c:\program files\Avira
2013-02-13 08:47 . 2013-02-13 08:47	--------	d-----w-	c:\program files\CCleaner
2013-02-13 08:42 . 2012-02-17 05:34	826880	----a-w-	c:\windows\system32\rdpcore.dll
2013-02-13 08:42 . 2012-02-17 04:13	24576	----a-w-	c:\windows\system32\drivers\tdtcp.sys
2013-02-13 08:36 . 2012-06-02 22:19	53784	----a-w-	c:\windows\system32\wuauclt.exe
2013-02-13 08:36 . 2012-06-02 22:19	45080	----a-w-	c:\windows\system32\wups2.dll
2013-02-13 08:36 . 2012-06-02 22:19	1933848	----a-w-	c:\windows\system32\wuaueng.dll
2013-02-13 08:36 . 2012-06-02 22:12	2422272	----a-w-	c:\windows\system32\wucltux.dll
2013-02-13 08:35 . 2013-02-13 08:35	--------	d--h--w-	c:\windows\msdownld.tmp
2013-02-13 08:35 . 2012-06-02 22:19	35864	----a-w-	c:\windows\system32\wups.dll
2013-02-13 08:35 . 2012-06-02 22:19	577048	----a-w-	c:\windows\system32\wuapi.dll
2013-02-13 08:35 . 2012-06-02 22:12	88576	----a-w-	c:\windows\system32\wudriver.dll
2013-02-13 08:35 . 2013-02-13 08:35	--------	d-----w-	c:\windows\system32\VAIO Startup Setting Tool
2013-02-13 08:30 . 2013-02-13 08:30	--------	d-----w-	c:\programdata\ATI
2013-02-13 03:27 . 2013-02-13 03:27	--------	d-----w-	C:\VAIO Sample Contents
2013-02-13 03:25 . 2013-02-13 03:25	--------	d-----w-	c:\program files\Common Files\Skype
2013-02-13 03:25 . 2013-02-13 03:25	--------	d-----r-	c:\program files\Skype
2013-02-13 03:25 . 2013-02-13 03:25	--------	d-----w-	c:\programdata\Skype
2013-02-13 03:25 . 2013-02-13 03:25	--------	d-----w-	c:\program files\Nascom
2013-02-13 03:25 . 2013-02-13 03:25	97167020	----a-w-	c:\windows\system32\VAIO Hero Screensaver - Summer 2011.scr
2013-02-13 03:23 . 2009-09-04 16:29	1892184	----a-w-	c:\windows\system32\D3DX9_42.dll
2013-02-13 03:16 . 2013-02-13 03:16	--------	d-----w-	c:\program files\MSXML 4.0
2013-02-13 03:10 . 2010-06-02 03:55	74072	----a-w-	c:\windows\system32\XAPOFX1_5.dll
2013-02-13 03:10 . 2010-06-02 03:55	527192	----a-w-	c:\windows\system32\XAudio2_7.dll
2013-02-13 03:10 . 2010-06-02 03:55	239960	----a-w-	c:\windows\system32\xactengine3_7.dll
2013-02-13 03:10 . 2010-05-26 10:41	470880	----a-w-	c:\windows\system32\d3dx10_43.dll
2013-02-13 03:10 . 2010-05-26 10:41	248672	----a-w-	c:\windows\system32\d3dx11_43.dll
2013-02-13 03:10 . 2010-05-26 10:41	2106216	----a-w-	c:\windows\system32\D3DCompiler_43.dll
2013-02-13 03:10 . 2010-05-26 10:41	1998168	----a-w-	c:\windows\system32\D3DX9_43.dll
2013-02-13 03:10 . 2010-05-26 10:41	1868128	----a-w-	c:\windows\system32\d3dcsx_43.dll
2013-02-13 03:06 . 2003-03-18 21:14	499712	----a-r-	c:\windows\system32\msvcp71.dll
2013-02-13 03:06 . 2003-02-21 03:42	348160	----a-w-	c:\windows\system32\msvcr71.dll
2013-02-13 03:06 . 1995-07-31 12:44	212480	----a-w-	c:\windows\system32\PCDLIB32.DLL
2013-02-13 03:06 . 2009-05-26 13:32	17408	----a-w-	c:\windows\system32\drivers\ArcSoftKsUFilter.sys
2013-02-13 03:06 . 2008-09-04 16:06	55808	----a-w-	c:\windows\system32\ArcSoftKsUFilter.dll
2013-02-13 03:06 . 2005-04-27 15:36	245408	----a-w-	c:\windows\system32\unicows.dll
2013-02-13 03:05 . 2013-02-13 03:05	--------	d-----w-	c:\programdata\ArcSoft
2013-02-13 03:05 . 2013-02-13 03:06	--------	d-----w-	c:\program files\ArcSoft
2013-02-13 03:05 . 2013-02-13 03:05	--------	d-----w-	c:\program files\Common Files\ArcSoft
2013-02-13 03:03 . 2013-02-13 03:03	--------	d-----w-	c:\windows\system32\Macromed
2013-02-13 03:03 . 2013-02-13 03:03	--------	d-----w-	c:\program files\Common Files\Adobe AIR
2013-02-13 03:01 . 2013-02-13 03:01	--------	d-----w-	c:\windows\en
2013-02-13 02:54 . 2013-02-13 02:54	--------	d-----w-	c:\windows\uk
2013-02-13 02:54 . 2013-02-13 02:54	--------	d-----w-	c:\windows\tr
2013-02-13 02:53 . 2013-02-13 02:53	--------	d-----w-	c:\windows\sv
2013-02-13 02:53 . 2013-02-13 02:53	--------	d-----w-	c:\windows\sk
.
.
((((((((((((((((((((((((((((((((((((   Find3M Bericht   ))))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-02-13 08:35 . 2010-06-24 10:33	19696	----a-w-	c:\programdata\Microsoft\IdentityCRL\production\ppcrlconfig600.dll
2013-02-13 01:50 . 2013-02-13 01:50	2048	----a-w-	c:\windows\system32\drivers\de-DE\usbrpm.sys.mui
2013-02-13 01:50 . 2013-02-13 01:50	17920	----a-w-	c:\windows\system32\drivers\de-DE\fvevol.sys.mui
2013-02-13 01:49 . 2013-02-13 01:49	2560	----a-w-	c:\windows\system32\drivers\UMDF\de-DE\WpdMtpDr.dll.mui
2013-02-13 01:49 . 2013-02-13 01:49	2560	----a-w-	c:\windows\system32\drivers\de-DE\qwavedrv.sys.mui
2013-02-13 01:49 . 2013-02-13 01:49	17408	----a-w-	c:\windows\system32\drivers\de-DE\nwifi.sys.mui
2013-02-13 01:49 . 2013-02-13 01:49	9728	----a-w-	c:\windows\system32\drivers\de-DE\battc.sys.mui
2013-02-13 01:49 . 2013-02-13 01:49	8192	----a-w-	c:\windows\system32\drivers\de-DE\pci.sys.mui
2013-02-13 01:49 . 2013-02-13 01:49	8192	----a-w-	c:\windows\system32\drivers\de-DE\bthport.sys.mui
2013-02-13 01:49 . 2013-02-13 01:49	6656	----a-w-	c:\windows\system32\drivers\de-DE\IPMIDrv.sys.mui
2013-02-13 01:49 . 2013-02-13 01:49	6144	----a-w-	c:\windows\system32\drivers\de-DE\bcm4sbxp.sys.mui
2013-02-13 01:49 . 2013-02-13 01:49	5632	----a-w-	c:\windows\system32\drivers\de-DE\sermouse.sys.mui
2013-02-13 01:49 . 2013-02-13 01:49	5120	----a-w-	c:\windows\system32\drivers\de-DE\kbdclass.sys.mui
2013-02-13 01:49 . 2013-02-13 01:49	5120	----a-w-	c:\windows\system32\drivers\de-DE\e100b325.sys.mui
2013-02-13 01:49 . 2013-02-13 01:49	4608	----a-w-	c:\windows\system32\drivers\de-DE\vdrvroot.sys.mui
2013-02-13 01:49 . 2013-02-13 01:49	4608	----a-w-	c:\windows\system32\drivers\de-DE\mouclass.sys.mui
2013-02-13 01:49 . 2013-02-13 01:49	4096	----a-w-	c:\windows\system32\drivers\de-DE\wacompen.sys.mui
2013-02-13 01:49 . 2013-02-13 01:49	4096	----a-w-	c:\windows\system32\drivers\de-DE\vhdmp.sys.mui
2013-02-13 01:49 . 2013-02-13 01:49	4096	----a-w-	c:\windows\system32\drivers\de-DE\tpm.sys.mui
2013-02-13 01:49 . 2013-02-13 01:49	4096	----a-w-	c:\windows\system32\drivers\de-DE\isapnp.sys.mui
2013-02-13 01:49 . 2013-02-13 01:49	4096	----a-w-	c:\windows\system32\drivers\de-DE\hdaudbus.sys.mui
2013-02-13 01:49 . 2013-02-13 01:49	3584	----a-w-	c:\windows\system32\drivers\de-DE\parport.sys.mui
2013-02-13 01:49 . 2013-02-13 01:49	3584	----a-w-	c:\windows\system32\drivers\de-DE\atikmdag.sys.mui
2013-02-13 01:49 . 2013-02-13 01:49	3584	----a-w-	c:\windows\system32\drivers\de-DE\ataport.sys.mui
2013-02-13 01:49 . 2013-02-13 01:49	33280	----a-w-	c:\windows\system32\drivers\de-DE\yk62x86.sys.mui
2013-02-13 01:49 . 2013-02-13 01:49	3072	----a-w-	c:\windows\system32\drivers\de-DE\umbus.sys.mui
2013-02-13 01:49 . 2013-02-13 01:49	3072	----a-w-	c:\windows\system32\drivers\de-DE\parvdm.sys.mui
2013-02-13 01:49 . 2013-02-13 01:49	3072	----a-w-	c:\windows\system32\drivers\de-DE\mssmbios.sys.mui
2013-02-13 01:49 . 2013-02-13 01:49	3072	----a-w-	c:\windows\system32\drivers\de-DE\mouhid.sys.mui
2013-02-13 01:49 . 2013-02-13 01:49	3072	----a-w-	c:\windows\system32\drivers\de-DE\getn62.sys.mui
2013-02-13 01:49 . 2013-02-13 01:49	28672	----a-w-	c:\windows\system32\drivers\de-DE\volsnap.sys.mui
2013-02-13 01:49 . 2013-02-13 01:49	2560	----a-w-	c:\windows\system32\drivers\de-DE\vwifibus.sys.mui
2013-02-13 01:49 . 2013-02-13 01:49	2560	----a-w-	c:\windows\system32\drivers\de-DE\VIAAGP.SYS.mui
2013-02-13 01:49 . 2013-02-13 01:49	2560	----a-w-	c:\windows\system32\drivers\de-DE\ULIAGPKX.SYS.mui
2013-02-13 01:49 . 2013-02-13 01:49	2560	----a-w-	c:\windows\system32\drivers\de-DE\UAGP35.SYS.mui
2013-02-13 01:49 . 2013-02-13 01:49	2560	----a-w-	c:\windows\system32\drivers\de-DE\SISAGP.SYS.mui
2013-02-13 01:49 . 2013-02-13 01:49	2560	----a-w-	c:\windows\system32\drivers\de-DE\NV_AGP.SYS.mui
2013-02-13 01:49 . 2013-02-13 01:49	2560	----a-w-	c:\windows\system32\drivers\de-DE\MTConfig.sys.mui
2013-02-13 01:49 . 2013-02-13 01:49	2560	----a-w-	c:\windows\system32\drivers\de-DE\kbdhid.sys.mui
2013-02-13 01:49 . 2013-02-13 01:49	2560	----a-w-	c:\windows\system32\drivers\de-DE\GAGP30KX.SYS.mui
2013-02-13 01:49 . 2013-02-13 01:49	2560	----a-w-	c:\windows\system32\drivers\de-DE\disk.sys.mui
2013-02-13 01:49 . 2013-02-13 01:49	2560	----a-w-	c:\windows\system32\drivers\de-DE\BTHUSB.SYS.mui
2013-02-13 01:49 . 2013-02-13 01:49	2560	----a-w-	c:\windows\system32\drivers\de-DE\AMDAGP.SYS.mui
2013-02-13 01:49 . 2013-02-13 01:49	2560	----a-w-	c:\windows\system32\drivers\de-DE\AGP440.sys.mui
2013-02-13 01:49 . 2013-02-13 01:49	25088	----a-w-	c:\windows\system32\drivers\de-DE\usbport.sys.mui
2013-02-13 01:49 . 2013-02-13 01:49	25088	----a-w-	c:\windows\system32\drivers\de-DE\e1y6032.sys.mui
2013-02-13 01:49 . 2013-02-13 01:49	25088	----a-w-	c:\windows\system32\drivers\de-DE\e1e6032.sys.mui
2013-02-13 01:49 . 2013-02-13 01:49	22016	----a-w-	c:\windows\system32\drivers\de-DE\E1G60I32.sys.mui
2013-02-13 01:49 . 2013-02-13 01:49	20992	----a-w-	c:\windows\system32\drivers\de-DE\viac7.sys.mui
2013-02-13 01:49 . 2013-02-13 01:49	20992	----a-w-	c:\windows\system32\drivers\de-DE\processr.sys.mui
2013-02-13 01:49 . 2013-02-13 01:49	20992	----a-w-	c:\windows\system32\drivers\de-DE\intelppm.sys.mui
2013-02-13 01:49 . 2013-02-13 01:49	20992	----a-w-	c:\windows\system32\drivers\de-DE\amdppm.sys.mui
2013-02-13 01:49 . 2013-02-13 01:49	20992	----a-w-	c:\windows\system32\drivers\de-DE\amdk8.sys.mui
2013-02-13 01:49 . 2013-02-13 01:49	2048	----a-w-	c:\windows\system32\drivers\de-DE\wd.sys.mui
2013-02-13 01:49 . 2013-02-13 01:49	2048	----a-w-	c:\windows\system32\drivers\de-DE\cdrom.sys.mui
2013-02-13 01:49 . 2013-02-13 01:49	2048	----a-w-	c:\windows\system32\drivers\de-DE\bthenum.sys.mui
2013-02-13 01:49 . 2013-02-13 01:49	2048	----a-w-	c:\windows\system32\drivers\de-DE\amdide.sys.mui
2013-02-13 01:49 . 2013-02-13 01:49	13312	----a-w-	c:\windows\system32\drivers\de-DE\k57nd60x.sys.mui
2013-02-13 01:49 . 2013-02-13 01:49	13312	----a-w-	c:\windows\system32\drivers\de-DE\e1q6032.sys.mui
2013-02-13 01:49 . 2013-02-13 01:49	13312	----a-w-	c:\windows\system32\drivers\de-DE\e1k6032.sys.mui
2013-02-13 01:49 . 2013-02-13 01:49	13312	----a-w-	c:\windows\system32\drivers\de-DE\b57nd60x.sys.mui
2013-02-13 01:49 . 2013-02-13 01:49	11776	----a-w-	c:\windows\system32\drivers\de-DE\usbhub.sys.mui
2013-02-13 01:49 . 2013-02-13 01:49	11776	----a-w-	c:\windows\system32\drivers\de-DE\serial.sys.mui
2013-02-13 01:49 . 2013-02-13 01:49	11776	----a-w-	c:\windows\system32\drivers\de-DE\ohci1394.sys.mui
2013-02-13 01:49 . 2013-02-13 01:49	11776	----a-w-	c:\windows\system32\drivers\de-DE\BrSerIb.sys.mui
2013-02-13 01:49 . 2013-02-13 01:49	11776	----a-w-	c:\windows\system32\drivers\de-DE\1394ohci.sys.mui
2013-02-13 01:49 . 2013-02-13 01:49	10752	----a-w-	c:\windows\system32\drivers\de-DE\ltmdmnt.sys.mui
2013-02-13 01:49 . 2013-02-13 01:49	10752	----a-w-	c:\windows\system32\drivers\de-DE\i8042prt.sys.mui
2013-02-13 01:49 . 2013-02-13 01:49	10752	----a-w-	c:\windows\system32\drivers\de-DE\acpi.sys.mui
2013-02-13 01:49 . 2013-02-13 01:49	7168	----a-w-	c:\windows\system32\drivers\de-DE\msdsm.sys.mui
2013-02-13 01:49 . 2013-02-13 01:49	6656	----a-w-	c:\windows\system32\drivers\UMDF\de-DE\WUDFUsbccidDriver.dll.mui
2013-02-13 01:49 . 2013-02-13 01:49	4608	----a-w-	c:\windows\system32\drivers\de-DE\pcmcia.sys.mui
2013-02-13 01:49 . 2013-02-13 01:49	4608	----a-w-	c:\windows\system32\drivers\de-DE\bthpan.sys.mui
2013-02-13 01:49 . 2013-02-13 01:49	4096	----a-w-	c:\windows\system32\drivers\de-DE\pscr.sys.mui
2013-02-13 01:49 . 2013-02-13 01:49	38912	----a-w-	c:\windows\system32\drivers\de-DE\mpio.sys.mui
2013-02-13 01:49 . 2013-02-13 01:49	3584	----a-w-	c:\windows\system32\drivers\de-DE\tsusbflt.sys.mui
2013-02-13 01:49 . 2013-02-13 01:49	3584	----a-w-	c:\windows\system32\drivers\de-DE\portcls.sys.mui
2013-02-13 01:49 . 2013-02-13 01:49	3584	----a-w-	c:\windows\system32\drivers\de-DE\modem.sys.mui
2013-02-13 01:49 . 2013-02-13 01:49	3584	----a-w-	c:\windows\system32\drivers\de-DE\ipnat.sys.mui
2013-02-13 01:49 . 2013-02-13 01:49	3584	----a-w-	c:\windows\system32\drivers\de-DE\HdAudio.sys.mui
2013-02-13 01:49 . 2013-02-13 01:49	3072	----a-w-	c:\windows\system32\drivers\de-DE\serscan.sys.mui
2013-02-13 01:49 . 2013-02-13 01:49	3072	----a-w-	c:\windows\system32\drivers\de-DE\rndismpx.sys.mui
2013-02-13 01:49 . 2013-02-13 01:49	3072	----a-w-	c:\windows\system32\drivers\de-DE\rndismp6.sys.mui
2013-02-13 01:49 . 2013-02-13 01:49	3072	----a-w-	c:\windows\system32\drivers\de-DE\hidbth.sys.mui
2013-02-13 01:49 . 2013-02-13 01:49	2560	----a-w-	c:\windows\system32\drivers\de-DE\volmgrx.sys.mui
2013-02-13 01:49 . 2013-02-13 01:49	2560	----a-w-	c:\windows\system32\drivers\de-DE\pnpmem.sys.mui
2013-02-13 01:49 . 2013-02-13 01:49	2560	----a-w-	c:\windows\system32\drivers\de-DE\Dot4usb.sys.mui
2013-02-13 01:49 . 2013-02-13 01:49	2560	----a-w-	c:\windows\system32\drivers\de-DE\BrParwdm.sys.mui
2013-02-13 01:49 . 2013-02-13 01:49	16896	----a-w-	c:\windows\system32\drivers\de-DE\afd.sys.mui
2013-02-13 01:49 . 2013-02-13 01:49	11776	----a-w-	c:\windows\system32\drivers\de-DE\BrSerId.sys.mui
2013-02-13 01:49 . 2013-02-13 01:49	9216	----a-w-	c:\windows\system32\drivers\de-DE\tunnel.sys.mui
2013-02-13 01:49 . 2013-02-13 01:49	72192	----a-w-	c:\windows\system32\drivers\de-DE\ntfs.sys.mui
2013-02-13 01:49 . 2013-02-13 01:49	7168	----a-w-	c:\windows\system32\drivers\de-DE\luafv.sys.mui
2013-02-13 01:49 . 2013-02-13 01:49	5120	----a-w-	c:\windows\system32\drivers\de-DE\rdbss.sys.mui
2013-02-13 01:49 . 2013-02-13 01:49	3072	----a-w-	c:\windows\system32\drivers\de-DE\ndisuio.sys.mui
2013-02-13 01:49 . 2013-02-13 01:49	2560	----a-w-	c:\windows\system32\drivers\de-DE\srv.sys.mui
2013-02-13 01:49 . 2013-02-13 01:49	2560	----a-w-	c:\windows\system32\drivers\de-DE\partmgr.sys.mui
2013-02-13 01:49 . 2013-02-13 01:49	2560	----a-w-	c:\windows\system32\drivers\de-DE\mountmgr.sys.mui
2013-02-13 01:49 . 2013-02-13 01:49	5632	----a-w-	c:\windows\system32\drivers\de-DE\ndiscap.sys.mui
2013-02-13 01:49 . 2013-02-13 01:49	3072	----a-w-	c:\windows\system32\drivers\de-DE\RNDISMP.sys.mui
2013-02-01 18:21 . 2013-02-15 19:36	262552	----a-w-	c:\program files\mozilla firefox\components\browsercomps.dll
.
.
((((((((((((((((((((((((((((   Autostartpunkte der Registrierung   ))))))))))))))))))))))))))))))))))))))))
.
.
*Hinweis* leere Einträge & legitime Standardeinträge werden nicht angezeigt. 
REGEDIT4
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RtHDVCpl.exe" [2010-11-01 9398888]
"StartCCC"="c:\program files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2011-05-24 336384]
"SynTPEnh"="c:\program files\Synaptics\SynTP\SynTPEnh.exe" [2010-11-01 1873192]
"ISBMgr.exe"="c:\program files\Sony\ISB Utility\ISBMgr.exe" [2011-02-15 2757312]
"PMBVolumeWatcher"="c:\program files\Sony\PMB\PMBVolumeWatcher.exe" [2010-11-26 648032]
"avgnt"="c:\program files\Avira\AntiVir Desktop\avgnt.exe" [2013-02-13 385248]
"CanonMyPrinter"="c:\program files\Canon\MyPrinter\BJMyPrt.exe" [2010-03-24 2516296]
"IJNetworkScanUtility"="c:\program files\Canon\Canon IJ Network Scan Utility\CNMNSUT.exe" [2010-03-02 140640]
"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2012-12-18 946352]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
Bluetooth.lnk - c:\program files\WIDCOMM\Bluetooth Software\BTTray.exe [2010-7-29 836896]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]
@=""
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
2012-12-18 19:08	946352	----a-w-	c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
.
R2 VSNService;VSNService;c:\program files\Sony\VAIO Smart Network\VSNService.exe [x]
R3 btwampfl;Bluetooth AMP USB Filter;c:\windows\system32\drivers\btwampfl.sys [x]
R3 btwl2cap;Bluetooth L2CAP Service;c:\windows\system32\DRIVERS\btwl2cap.sys [x]
R3 e1yexpress;Intel(R) Gigabit Network Connections Driver;c:\windows\system32\DRIVERS\e1y6032.sys [x]
R3 SpfService;VAIO Entertainment Common Service;c:\program files\Common Files\Sony Shared\VAIO Entertainment Platform\SPF\SpfService.exe [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [x]
R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys [x]
R3 VCFw;VAIO Content Folder Watcher;c:\program files\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe [x]
R3 VcmIAlzMgr;VAIO Content Metadata Intelligent Analyzing Manager;c:\program files\Sony\VCM Intelligent Analyzing Manager\VcmIAlzMgr.exe [x]
R3 VcmXmlIfHelper;VAIO Content Metadata XML Interface;c:\program files\Common Files\Sony Shared\VcmXml\VcmXmlIfHelper.exe [x]
R3 WSDScan;WSD-Scanunterstützung durch UMB;c:\windows\system32\DRIVERS\WSDScan.sys [x]
R4 wlcrasvc;Windows Live Mesh remote connections service;c:\program files\Windows Live\Mesh\wlcrasvc.exe [x]
S0 amd_sata;amd_sata;c:\windows\system32\drivers\amd_sata.sys [x]
S0 amd_xata;amd_xata;c:\windows\system32\drivers\amd_xata.sys [x]
S1 avkmgr;avkmgr;c:\windows\system32\DRIVERS\avkmgr.sys [x]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [x]
S2 AMD FUEL Service;AMD FUEL Service;c:\program files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [x]
S2 AntiVirSchedulerService;Avira Planer;c:\program files\Avira\AntiVir Desktop\sched.exe [x]
S2 PMBDeviceInfoProvider;PMBDeviceInfoProvider;c:\program files\Sony\PMB\PMBDeviceInfoProvider.exe [x]
S2 SampleCollector;VAIO Care Performance Service;c:\program files\Sony\VAIO Care\VCPerfService.exe [x]
S2 uCamMonitor;CamMonitor;c:\program files\ArcSoft\Magic-i Visual Effects 2\uCamMonitor.exe [x]
S3 amdiox86;AMD IO Driver;c:\windows\system32\DRIVERS\amdiox86.sys [x]
S3 ArcSoftKsUFilter;ArcSoft Magic-I Visual Effect;c:\windows\system32\DRIVERS\ArcSoftKsUFilter.sys [x]
S3 AtiHDAudioService;ATI Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdW73.sys [x]
S3 L1C;NDIS Miniport Driver for Atheros AR813x/AR815x PCI-E Ethernet Controller;c:\windows\system32\DRIVERS\L1C62x86.sys [x]
S3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;c:\windows\system32\Drivers\RtsUStor.sys [x]
S3 SFEP;Sony Firmware Extension Parser;c:\windows\system32\DRIVERS\SFEP.sys [x]
S3 usbfilter;AMD USB Filter Driver;c:\windows\system32\DRIVERS\usbfilter.sys [x]
S3 VCService;VCService;c:\program files\Sony\VAIO Care\VCService.exe [x]
S3 VUAgent;VUAgent;c:\program files\Sony\VAIO Update\VUAgent.exe [x]
.
.
--- Andere Dienste/Treiber im Speicher ---
.
*NewlyCreated* - 45620074
*Deregistered* - 45620074
.
Inhalt des "geplante Tasks" Ordners
.
2013-02-20 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2013-02-13 11:50]
.
.
------- Zusätzlicher Suchlauf -------
.
uStart Page = hxxp://vaioportal.sony.eu
uInternet Settings,ProxyOverride = <local>
IE: Nach Microsoft &Excel exportieren - c:\progra~1\MIF5BA~1\OFFICE11\EXCEL.EXE/3000
TCP: DhcpNameServer = 192.168.1.1
FF - ProfilePath - c:\users\Mirko\AppData\Roaming\Mozilla\Firefox\Profiles\b1gclun0.default\
.
- - - - Entfernte verwaiste Registrierungseinträge - - - -
.
MSConfigStartUp-Adobe Reader Speed Launcher - c:\program files\Adobe\Reader 10.0\Reader\Reader_sl.exe
.
.
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\SampleCollector]
"ImagePath"="\"c:\program files\Sony\VAIO Care\VCPerfService.exe\" \"/service\" \"/sstates\" \"/sampleinterval=5000\" \"/procinterval=5\" \"/dllinterval=120\" \"/counter=\Processor(_Total)\% Processor Time:1/counter=\PhysicalDisk(_Total)\Disk Bytes/sec:1\" \"/counter=\Network Interface(*)\Bytes Total/sec:1\" \"/expandcounter=\Processor Information(*)\Processor Frequency:1\" \"/expandcounter=\Processor(*)\% Idle Time:1\" \"/expandcounter=\Processor(*)\% C1 Time:1\" \"/expandcounter=\Processor(*)\% C2 Time:1\" \"/expandcounter=\Processor(*)\% C3 Time:1\" \"/expandcounter=\Processor(*)\% Processor Time:1\" \"/directory=c:\programdata\Sony Corporation\VAIO Care\inteldata\""
.
--------------------- Gesperrte Registrierungsschluessel ---------------------
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil32_11_5_502_149_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil32_11_5_502_149_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Zeit der Fertigstellung: 2013-02-20  20:54:54
ComboFix-quarantined-files.txt  2013-02-20 19:54
.
Vor Suchlauf: 10 Verzeichnis(se), 440.424.914.944 Bytes frei
Nach Suchlauf: 13 Verzeichnis(se), 440.193.986.560 Bytes frei
.
- - End Of File - - 187E9ADE456EB770262061E247DC2E17

--- --- ---

Darf ich ganz vorsichtig fragen, ob du schon weißt, was für ein Tier ich hier drauf habe?

markusg · 20.02.2013, 21:00

hi,
malwarebytes:
Downloade Dir bitte Malwarebytes

Installiere
das Programm in den vorgegebenen Pfad.
Vista und Win7 User mit Rechtsklick "als Administrator starten"
Starte Malwarebytes, klicke auf Aktualisierung --> Suche
nach Aktualisierung
Wenn das Update beendet wurde, aktiviere vollständiger Scan durchführen und drücke auf Scannen.
Wenn der Scan beendet
ist, klicke auf Ergebnisse anzeigen.
Versichere Dich, dass alle Funde markiert sind und drücke Entferne Auswahl.
Poste
das Logfile, welches sich in Notepad öffnet, hier in den Thread.
Nachträglich kannst du den Bericht unter "Log Dateien" finden.

trampeltier · 20.02.2013, 22:17

Malwarebytes Anti-Malware (Test) 1.70.0.1100
www.malwarebytes.org

Datenbank Version: v2013.02.20.07

Windows 7 Service Pack 1 x86 NTFS
Internet Explorer 9.0.8112.16421
Mirko :: MIRKO-VAIO [Administrator]

Schutz: Aktiviert

20.02.2013 21:13:14
mbam-log-2013-02-20 (21-13-14).txt

Art des Suchlaufs: Vollständiger Suchlauf (C:\|)
Aktivierte Suchlaufeinstellungen: Speicher | Autostart | Registrierung | Dateisystem | Heuristiks/Extra | HeuristiKs/Shuriken | PUP | PUM
Deaktivierte Suchlaufeinstellungen: P2P
Durchsuchte Objekte: 288790
Laufzeit: 55 Minute(n), 18 Sekunde(n)

Infizierte Speicherprozesse: 0
(Keine bösartigen Objekte gefunden)

Infizierte Speichermodule: 0
(Keine bösartigen Objekte gefunden)

Infizierte Registrierungsschlüssel: 0
(Keine bösartigen Objekte gefunden)

Infizierte Registrierungswerte: 0
(Keine bösartigen Objekte gefunden)

Infizierte Dateiobjekte der Registrierung: 0
(Keine bösartigen Objekte gefunden)

Infizierte Verzeichnisse: 0
(Keine bösartigen Objekte gefunden)

Infizierte Dateien: 0
(Keine bösartigen Objekte gefunden)

(Ende)

Es wurde erneut nichts gefunden... liegt es an meiner Hardware? Hatte einen Memtest bereits gemacht, der hat nichts gefunden.

markusg · 20.02.2013, 22:17

Hi,
lade den CCleaner standard:
CCleaner - Download - Filepony
falls der CCleaner
bereits instaliert, überspringen.
öffnen, Tools (extras),uninstall Llist, als txt speichern. öffnen.
hinter, jedes von dir benötigte programm, schreibe notwendig.
hinter, jedes, von dir nicht benötigte, unnötig.
hinter, dir unbekannte, unbekannt.
liste posten.

trampeltier · 20.02.2013, 22:33

ActiveX контрола на Windows Live Mesh за отдалечени връзки Microsoft Corporation 13.02.2013 5,57MB 15.4.5722.2 unnötig
ActiveX-kontroll för fjärranslutningar för Windows Live Mesh Microsoft Corporation 13.02.2013 5,37MB 15.4.5722.2 unnötig
Adobe AIR Adobe Systems Inc. 13.02.2013 2.5.1.17730 notwendig
Adobe Flash Player 11 ActiveX Adobe Systems Incorporated 13.02.2013 6,00MB 11.5.502.149 notwendig
Adobe Flash Player 11 Plugin Adobe Systems Incorporated 13.02.2013 6,00MB 11.6.602.168 notwendig
Adobe Reader XI (11.0.02) - Deutsch Adobe Systems Incorporated 20.02.2013 132MB 11.0.02 notwendig
ArcSoft Magic-i Visual Effects 2 ArcSoft 13.02.2013 69,5MB 2.0.1.142 unnötig
ArcSoft WebCam Companion 4 ArcSoft 13.02.2013 81,3MB 4.0.21.392 notwendig
ATI Catalyst Install Manager ATI Technologies, Inc. 13.02.2013 16,6MB 3.0.829.0 notwendig
Avira Free Antivirus Avira 13.02.2013 135MB 13.0.0.3185 notwendig
Canon Easy-PhotoPrint Pro 13.02.2013 notwendig
Canon Easy-PhotoPrint Pro - Pro9000 series Extention Data 13.02.2013 notwendig
Canon Easy-PhotoPrint Pro - Pro9500 series Extention Data 13.02.2013 notwendig
Canon Easy-WebPrint EX 13.02.2013 notwendig
Canon IJ Network Scan Utility 13.02.2013 notwendig
Canon IJ Network Tool 13.02.2013 notwendig
Canon Inkjet Printer/Scanner/Fax Extended Survey Program 13.02.2013 notwendig
Canon MG6100 series Benutzerregistrierung 13.02.2013 notwendig
Canon MG6100 series MP Drivers 13.02.2013 notwendig
Canon MP Navigator EX 4.0 13.02.2013 notwendig
Canon My Printer 13.02.2013 notwendig
CCleaner Piriform 23.01.2013 3.27 notwendig
CD-LabelPrint 13.02.2013 notwendig
Control ActiveX Windows Live Mesh pentru conexiuni la distanță Microsoft Corporation 13.02.2013 5,37MB 15.4.5722.2 unnötig
Controlo ActiveX do Windows Live Mesh para Ligações Remotas Microsoft Corporation 13.02.2013 5,38MB 15.4.5722.2 unnötig
Contrôle ActiveX Windows Live Mesh pour connexions à distance Microsoft Corporation 13.02.2013 5,37MB 15.4.5722.2 unnötig
Formant ActiveX programu Windows Live Mesh odpowiedzialny za obsługę połączeń zdalnych Microsoft Corporation 13.02.2013 5,37MB 15.4.5722.2 unnötig
Java(TM) 6 Update 22 Oracle 13.02.2013 97,0MB 6.0.220 notwenig
Malwarebytes Anti-Malware Version 1.70.0.1100 Malwarebytes Corporation 20.02.2013 18,4MB 1.70.0.1100 unnötig
Microsoft .NET Framework 4 Client Profile Microsoft Corporation 11.02.2011 38,8MB 4.0.30319 unbekannt
Microsoft .NET Framework 4 Client Profile DEU Language Pack Microsoft Corporation 13.02.2013 2,93MB 4.0.30319 unbekannt
Microsoft .NET Framework 4 Extended Microsoft Corporation 11.02.2011 51,9MB 4.0.30319 unbekannt
Microsoft .NET Framework 4 Extended DEU Language Pack Microsoft Corporation 13.02.2013 10,6MB 4.0.30319 unbekannt
Microsoft Office Professional Edition 2003 Microsoft Corporation 13.02.2013 306MB 11.0.5614.0 notwendig
Microsoft Silverlight Microsoft Corporation 13.02.2013 20,4MB 4.0.50401.0 unbekannt
Microsoft SQL Server 2005 Compact Edition [ENU] Microsoft Corporation 13.02.2013 1,69MB 3.1.0000 unbekannt
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 Microsoft Corporation 13.02.2013 11,1MB 10.0.40219 unbekannt
Mozilla Firefox 18.0.2 (x86 de) Mozilla 15.02.2013 43,2MB 18.0.2 notwendig
Mozilla Maintenance Service Mozilla 15.02.2013 217KB 18.0.2 unbekannt
MSXML 4.0 SP3 Parser Microsoft Corporation 13.02.2013 1,47MB 4.30.2100.0 unbekannt
MSXML 4.0 SP3 Parser (KB2758694) Microsoft Corporation 14.02.2013 1,54MB 4.30.2117.0 unbekannt
Opera 12.14 Opera Software ASA 13.02.2013 12.14.1738 notwendig
PMB Sony Corporation 13.02.2013 282MB 5.5.02.12220 unbekannt
Realtek High Definition Audio Driver Realtek Semiconductor Corp. 13.02.2013 6.0.1.6167 notwendig
Realtek USB 2.0 Card Reader Realtek Semiconductor Corp. 13.02.2013 6.1.7600.30127 notwendig
Skype™ 5.1 Skype Technologies S.A. 13.02.2013 24,7MB 5.1.104 notwendig
Synaptics Pointing Device Driver Synaptics Incorporated 13.02.2013 46,4MB 15.1.9.0 unbekannt
VAIO - PMB VAIO Edition Plug-in Sony Corporation 13.02.2013 110MB 1.6.00.06140 unbekannt
VAIO - Remote Play mit PlayStation®3 Sony Corporation 13.02.2013 1.1.0.15070 unbekannt
VAIO - Remote-Tastatur Sony Corporation 13.02.2013 1.0.1.03020 unbekannt
VAIO Care Sony Corporation 13.02.2013 6.4.1.05290 unbekannt
VAIO Control Center Sony Corporation 13.02.2013 4.5.0.03040 unbekannt
VAIO Data Restore Tool Sony Corporation 13.02.2013 1.6.0.13140 unbekannt
VAIO Easy Connect Sony Corporation 13.02.2013 1.0.0.03050 unbekannt

VAIO Event Service Sony Corporation 13.02.2013 5.5.0.03040 unbekannt
VAIO Gate Sony Corporation 13.02.2013 2.3.0.11090 unbekannt
VAIO Gate Default Sony Corporation 13.02.2013 2.4.0.03240 unbekannt
VAIO Hero Screensaver - Summer 2011 Screensaver 13.02.2013 unbekannt
VAIO Improvement Sony Corporation 13.02.2013 1.0.0.14150 unbekannt
VAIO Improvement Validation Sony Corporation 13.02.2013 496KB 1.0.4.01190 unbekannt
VAIO Sample Contents Sony Corporation 13.02.2013 1.4.2.09010 unbekannt
VAIO Smart Network Sony Corporation 13.02.2013 3.7.0.07050 unbekannt
VAIO Update Sony Corporation 14.02.2013 6.1.1.10250 unbekannt
VAIO-Handbuch Sony Corporation 13.02.2013 1.3.0.02180 unbekannt
VAIO-Support für Übertragungen Sony Corporation 13.02.2013 1.4.0.14230 unbekannt
WIDCOMM Bluetooth Software Broadcom Corporation 13.02.2013 118MB 6.3.0.6300 notwendig
Winamp Nullsoft, Inc 13.02.2013 5.63 notwendig
Windows Live Essentials Microsoft Corporation 13.02.2013 15.4.3508.1109 unbekannt
Windows Live Mesh - ActiveX-besturingselement voor externe verbindingen Microsoft Corporation 13.02.2013 5,37MB 15.4.5722.2 unnötig
Windows Live Mesh ActiveX Control for Remote Connections Microsoft Corporation 13.02.2013 5,37MB 15.4.5722.2 unnötig
Windows Live Mesh ActiveX control for remote connections Microsoft Corporation 13.02.2013 5,38MB 15.4.5722.2 unnötig
Windows Live Mesh ActiveX-kontroll for eksterne tilkoblinger Microsoft Corporation 13.02.2013 5,37MB 15.4.5722.2 unnötig
Windows Live Mesh ActiveX-objekt til fjernforbindelser Microsoft Corporation 13.02.2013 5,37MB 15.4.5722.2 unnötig
Windows Live Mesh ActiveX-vezérlő távoli kapcsolatokhoz Microsoft Corporation 13.02.2013 5,38MB 15.4.5722.2 unnötig
Windows Live Meshin etäyhteyksien ActiveX-komponentti Microsoft Corporation 13.02.2013 5,37MB 15.4.5722.2 unnötig
WinRAR 4.20 (32-Bit) win.rar GmbH 13.02.2013 4.20.0 notwendig

markusg · 21.02.2013, 15:47

deinstaliere:
ActiveX alle
deinstaliere:
Adobe Flash Player alle
Adobe - Adobe Flash Player installieren
neueste version laden, instalieren.
bitte auch mal den adobe reader wie folgt konfigurieren:
adobe reader öffnen, bearbeiten, voreinstellungen.
allgemein:
nur zertifizierte zusatz module verwenden, anhaken.
Sicherheit (erweitert)
Erweiterte Sicherheit anhaken
und alle Dateien auswählen.
internet:
hier sollte alles deaktiviert werden, es ist sehr unsicher pdfs automatisch zu öffnen, zu downloaden etc.
es ist immer besser diese direkt abzuspeichern da man nur so die kontrolle hat was auf dem pc vor geht.
bei javascript den haken bei java script verwenden raus nehmen
bei updater, automatisch instalieren wählen.
übernehmen /ok

deinstaliere:
Control
Controlo
Contrôle
Formant
Java
downloade Java jre:
Java-Downloads für alle Betriebssysteme
klicke:
Download der Java-Software für Windows Offline
laden, und instalieren
deinstaliere:
Juniper alle
Windows Live : alle für dich unnötigen.

Öffne CCleaner analysieren, starten, PC neustarten.
Downloade Dir bitte

AdwCleaner auf deinen Desktop.

Schließe alle offenen Programme und Browser. Bebilderte Anleitung zu AdwCleaner.
Starte die AdwCleaner.exe mit einem Doppelklick.
Stimme den Nutzungsbedingungen zu.
Klicke auf Optionen und vergewissere dich, dass die folgenden Punkte ausgewählt sind:
- "Tracing" Schlüssel löschen
- Winsock Einstellungen zurücksetzen
- Proxy Einstellungen zurücksetzen
- Internet Explorer Richtlinien zurücksetzen
- Chrome Richtlinien zurücksetzen
- Stelle sicher, dass alle 5 Optionen wie hier dargestellt, ausgewählt sind
Klicke auf Suchlauf und warte bis dieser abgeschlossen ist.
Klicke nun auf Löschen und bestätige auftretende Hinweise mit Ok.
Dein Rechner wird automatisch neu gestartet. Nach dem Neustart öffnet sich eine Textdatei. Poste mir deren Inhalt mit deiner nächsten Antwort.
Die Logdatei findest du auch unter C:\AdwCleaner\AdwCleaner[Cx].txt. (x = fortlaufende Nummer).

trampeltier · 24.02.2013, 23:46

Hey, sorry, dass es etwas länger gedauert hat. Das Wochenende wurde mit der Wochenendbeziehung verbracht

Hier die LogDatei:AdwCleaner Logfile:

Code:

ATTFilter

# AdwCleaner v2.113 - Datei am 24/02/2013 um 23:41:19 erstellt
# Aktualisiert am 23/02/2013 von Xplode
# Betriebssystem : Windows 7 Home Premium Service Pack 1 (32 bits)
# Benutzer : Mirko - MIRKO-VAIO
# Bootmodus : Normal
# Ausgeführt unter : C:\Users\Mirko\AppData\Local\Opera\Opera\temporary_downloads\adwcleaner.exe
# Option [Löschen]


**** [Dienste] ****


***** [Dateien / Ordner] *****


***** [Registrierungsdatenbank] *****

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{7D86A08B-0A8F-4BE0-B693-F05E6947E780}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{2EECD738-5844-4A99-B4B6-146BF802613B}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{97F2FF5B-260C-4CCF-834A-2DDA4E29E39E}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{98889811-442D-49DD-99D7-DC866BE87DBC}

***** [Internet Browser] *****

-\\ Internet Explorer v9.0.8112.16464

[OK] Die Registrierungsdatenbank ist sauber.

-\\ Mozilla Firefox v18.0.2 (de)

Datei : C:\Users\Mirko\AppData\Roaming\Mozilla\Firefox\Profiles\b1gclun0.default\prefs.js

[OK] Die Datei ist sauber.

-\\ Google Chrome v [Version kann nicht ermittelt werden]

Datei : C:\Users\Mirko\AppData\Local\Google\Chrome\User Data\Default\Preferences

[OK] Die Datei ist sauber.

-\\ Opera v12.14.1738.0

Datei : C:\Users\Mirko\AppData\Roaming\Opera\Opera\operaprefs.ini

[OK] Die Datei ist sauber.

*************************

AdwCleaner[S1].txt - [1540 octets] - [24/02/2013 23:41:19]

########## EOF - C:\AdwCleaner[S1].txt - [1600 octets] ##########

--- --- ---

markusg · 25.02.2013, 16:12

Ich werd niemandem das we streitig machen, war eh kaum online.
HitmanPro - Download - Filepony
hitmanpro laden, doppelklicken, Lizenz, Testlizenz.
Auf Scan klicken, nichts löschen.
Auf weiter, Log als XML exportieren, und posten, bzw packen und anhängen.

trampeltier · 25.02.2013, 17:29

Die Version hat nicht funktioniert, habe daher die 32bit Version geladen. Gehe mal davon aus, dass das in Ordnung war.

Code:

ATTFilter

HitmanPro 3.7.2.189
www.hitmanpro.com

   Computer name . . . . : MIRKO-VAIO
   Windows . . . . . . . : 6.1.1.7601.X86/2
   User name . . . . . . : Mirko-VAIO\Mirko
   UAC . . . . . . . . . : Enabled
   License . . . . . . . : Free

   Scan date . . . . . . : 2013-02-25 17:26:20
   Scan mode . . . . . . : Normal
   Scan duration . . . . : 2m 21s
   Disk access mode  . . : Direct disk access (SRB)
   Cloud . . . . . . . . : Internet
   Reboot  . . . . . . . : No

   Threats . . . . . . . : 0
   Traces  . . . . . . . : 0

   Objects scanned . . . : 765.295
   Files scanned . . . . : 9.839
   Remnants scanned  . . : 176.985 files / 578.471 keys

markusg · 25.02.2013, 18:54

Sorry, hatte den falschen Link erwischt.
neues otl log bitte.

trampeltier · 25.02.2013, 22:55

Dann mal weiter - hat sich irgendwas geändert?
Ich weiß nicht ob es so flüssig läuft, wie es sollte, aber mMn läuft es schon deutlich besser. Oder ist das nur Einbildung?OTL Logfile:

Code:

ATTFilter

OTL logfile created on: 25.02.2013 22:29:34 - Run 2
OTL by OldTimer - Version 3.2.69.0     Folder = C:\Users\Mirko\Desktop
 Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy
 
3,50 Gb Total Physical Memory | 2,11 Gb Available Physical Memory | 60,45% Memory free
6,99 Gb Paging File | 5,32 Gb Available in Paging File | 76,11% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 453,50 Gb Total Space | 409,56 Gb Free Space | 90,31% Space Free | Partition Type: NTFS
 
Computer Name: MIRKO-VAIO | User Name: Mirko | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
 
========== Processes (SafeList) ==========
 
PRC - [2013.02.25 17:26:07 | 000,106,280 | ---- | M] (SurfRight B.V.) -- C:\Programme\HitmanPro\hmpsched.exe
PRC - [2013.02.19 23:09:23 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Mirko\Desktop\OTL.exe
PRC - [2013.02.13 09:59:06 | 000,879,456 | ---- | M] (Opera Software) -- C:\Programme\Opera\opera.exe
PRC - [2013.02.13 09:47:08 | 000,086,752 | ---- | M] (Avira Operations GmbH & Co. KG) -- C:\Programme\Avira\AntiVir Desktop\sched.exe
PRC - [2013.02.13 09:46:30 | 000,079,584 | ---- | M] (Avira Operations GmbH & Co. KG) -- C:\Programme\Avira\AntiVir Desktop\avshadow.exe
PRC - [2013.02.13 09:46:25 | 000,385,248 | ---- | M] (Avira Operations GmbH & Co. KG) -- C:\Programme\Avira\AntiVir Desktop\avgnt.exe
PRC - [2013.02.13 09:46:25 | 000,110,816 | ---- | M] (Avira Operations GmbH & Co. KG) -- C:\Programme\Avira\AntiVir Desktop\avguard.exe
PRC - [2012.12.18 20:08:28 | 000,065,192 | ---- | M] (Adobe Systems Incorporated) -- C:\Programme\Common Files\Adobe\ARM\1.0\armsvc.exe
PRC - [2012.12.14 16:49:28 | 000,682,344 | ---- | M] (Malwarebytes Corporation) -- C:\Programme\Malwarebytes' Anti-Malware\mbamservice.exe
PRC - [2012.12.14 16:49:28 | 000,512,360 | ---- | M] (Malwarebytes Corporation) -- C:\Programme\Malwarebytes' Anti-Malware\mbamgui.exe
PRC - [2012.12.14 16:49:28 | 000,398,184 | ---- | M] (Malwarebytes Corporation) -- C:\Programme\Malwarebytes' Anti-Malware\mbamscheduler.exe
PRC - [2012.11.23 03:48:41 | 000,049,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\taskhost.exe
PRC - [2012.10.26 10:33:12 | 001,038,496 | ---- | M] (Sony Corporation) -- C:\Programme\Sony\VAIO Update\VAIOUpdt.exe
PRC - [2012.10.26 09:44:42 | 000,957,056 | ---- | M] (Sony Corporation) -- C:\Programme\Sony\VAIO Update\VUAgent.exe
PRC - [2011.07.04 13:46:04 | 003,454,904 | ---- | M] (Sony Corporation) -- C:\Programme\Sony\VAIO Smart Network\VSNClient.exe
PRC - [2011.07.04 13:46:00 | 000,866,952 | ---- | M] (Sony Corporation) -- C:\Programme\Sony\VAIO Smart Network\VSNService.exe
PRC - [2011.07.01 05:10:14 | 000,401,408 | ---- | M] (AMD) -- C:\Windows\System32\atieclxx.exe
PRC - [2011.07.01 05:10:14 | 000,176,128 | ---- | M] (AMD) -- C:\Windows\System32\atiesrxx.exe
PRC - [2011.05.27 19:47:58 | 002,616,320 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
PRC - [2011.05.24 23:17:32 | 000,294,400 | ---- | M] (Advanced Micro Devices, Inc.) -- C:\Programme\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
PRC - [2011.03.05 16:42:36 | 000,180,928 | ---- | M] (Sony Corporation) -- C:\Programme\Sony\VAIO Event Service\VESMgrSub.exe
PRC - [2011.03.05 16:42:36 | 000,064,704 | ---- | M] (Sony Corporation) -- C:\Programme\Sony\VAIO Event Service\VESMgr.exe
PRC - [2011.02.23 14:05:04 | 000,105,024 | ---- | M] (ArcSoft, Inc.) -- C:\Programme\ArcSoft\Magic-i Visual Effects 2\uCamMonitor.exe
PRC - [2011.02.16 14:08:52 | 001,166,016 | ---- | M] (Sony Corporation) -- C:\Programme\Sony\VAIO Care\VCsystray.exe
PRC - [2011.02.15 11:47:02 | 002,757,312 | ---- | M] (Sony Corporation) -- C:\Programme\Sony\ISB Utility\ISBMgr.exe
PRC - [2011.02.14 13:23:50 | 000,086,208 | ---- | M] (Sony Corporation) -- C:\Programme\Sony\VAIO Care\VCAgent.exe
PRC - [2011.02.14 13:23:50 | 000,044,736 | ---- | M] (Sony Corporation) -- C:\Programme\Sony\VAIO Care\VCService.exe
PRC - [2011.02.14 13:23:50 | 000,013,504 | ---- | M] (Sony Corporation) -- C:\Programme\Sony\VAIO Care\Admload.exe
PRC - [2011.01.29 05:36:18 | 000,189,048 | ---- | M] (Sony Corporation) -- C:\Programme\Sony\VAIO Care\VCPerfService.exe
PRC - [2011.01.29 05:36:18 | 000,081,016 | ---- | M] (Sony of America Corporation) -- C:\Programme\Sony\VAIO Care\listener.exe
PRC - [2010.11.27 00:55:42 | 000,648,032 | ---- | M] (Sony Corporation) -- C:\Programme\Sony\PMB\PMBVolumeWatcher.exe
PRC - [2010.11.27 00:55:42 | 000,398,176 | ---- | M] (Sony Corporation) -- c:\Programme\Sony\PMB\PMBDeviceInfoProvider.exe
PRC - [2010.11.20 22:29:49 | 001,121,792 | ---- | M] (Microsoft Corporation) -- C:\Programme\Windows Media Player\wmpnetwk.exe
PRC - [2010.09.21 14:03:14 | 001,710,464 | ---- | M] (Microsoft Corp.) -- C:\Programme\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE
PRC - [2010.09.21 14:03:14 | 000,193,408 | ---- | M] (Microsoft Corp.) -- C:\Programme\Common Files\microsoft shared\Windows Live\WLIDSVCM.EXE
PRC - [2010.07.29 18:45:48 | 000,836,896 | ---- | M] (Broadcom Corporation.) -- C:\Programme\WIDCOMM\Bluetooth Software\BTTray.exe
PRC - [2010.07.29 18:45:48 | 000,656,672 | ---- | M] (Broadcom Corporation.) -- C:\Programme\WIDCOMM\Bluetooth Software\btwdins.exe
PRC - [2010.04.05 11:55:02 | 000,116,104 | ---- | M] () -- C:\Programme\Canon\IJPLM\ijplmsvc.exe
PRC - [2010.03.24 18:50:00 | 002,516,296 | ---- | M] (CANON INC.) -- C:\Programme\Canon\MyPrinter\BJMYPRT.EXE
PRC - [2010.03.02 19:52:00 | 000,140,640 | ---- | M] (CANON INC.) -- C:\Programme\Canon\Canon IJ Network Scan Utility\CNMNSUT.exe
 
 
========== Modules (No Company Name) ==========
 
MOD - [2013.02.14 23:23:25 | 001,358,336 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.WorkflowServ#\9266d6e1f8057b5b62b460cbf33cda21\System.WorkflowServices.ni.dll
MOD - [2013.02.14 23:22:39 | 001,707,008 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.ServiceModel#\1e04a5319c58010e945220af2751d34e\System.ServiceModel.Web.ni.dll
MOD - [2013.02.14 23:20:11 | 002,297,856 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Core\77dfcfed5fd5f67d0d3edc545935bb21\System.Core.ni.dll
MOD - [2013.02.14 17:50:06 | 000,240,128 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\WindowsFormsIntegra#\78967b28f748b8807eaa97c1cb454adc\WindowsFormsIntegration.ni.dll
MOD - [2013.02.14 16:39:42 | 017,478,656 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.ServiceModel\3e79256ce40faa9682f9e3511ca115ea\System.ServiceModel.ni.dll
MOD - [2013.02.14 16:39:04 | 002,347,008 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Seri#\2ad51da1b752b19c992fcefd56eb7c01\System.Runtime.Serialization.ni.dll
MOD - [2013.02.14 16:38:59 | 001,084,928 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.IdentityModel\219c68f83fa608b496b163fd6782e696\System.IdentityModel.ni.dll
MOD - [2013.02.14 16:38:54 | 000,256,000 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\SMDiagnostics\eb33bf977e97e97b12e82c18e36fbaee\SMDiagnostics.ni.dll
MOD - [2013.02.14 16:38:20 | 000,368,128 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\d7d20811a7ce7cc589153648cbb1ce5c\PresentationFramework.Aero.ni.dll
MOD - [2013.02.14 16:38:05 | 014,340,608 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\a013e3b347de5b1b608daebdff0d46c0\PresentationFramework.ni.dll
MOD - [2013.02.14 16:37:31 | 012,237,824 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationCore\19b3d17c3ce0e264c4fb62028161adf7\PresentationCore.ni.dll
MOD - [2013.02.14 16:37:08 | 003,347,968 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\WindowsBase\cf827fe7bc99d9bcf0ba3621054ef527\WindowsBase.ni.dll
MOD - [2013.02.14 16:36:52 | 012,436,480 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\cb562e2e4f74ae607f1186f6ec50cec7\System.Windows.Forms.ni.dll
MOD - [2013.02.14 16:35:52 | 000,771,584 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Remo#\90b89f6e8032310e9ac72a309fd49e83\System.Runtime.Remoting.ni.dll
MOD - [2013.02.14 16:35:34 | 011,833,344 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Web\5ecf01964c70e453d71e5d7653912ff9\System.Web.ni.dll
MOD - [2013.02.14 16:35:17 | 001,592,832 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\eead6629e384a5b69f9ae35284b7eeed\System.Drawing.ni.dll
MOD - [2013.02.14 16:35:07 | 005,453,312 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\f687c43e9fdec031988b33ae722c4613\System.Xml.ni.dll
MOD - [2013.02.14 16:34:58 | 000,971,264 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\195a77fcc6206f8bb35d419ff2cf0d72\System.Configuration.ni.dll
MOD - [2013.02.14 16:34:45 | 007,989,760 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System\369f8bdca364e2b4936d18dea582912c\System.ni.dll
MOD - [2013.02.14 16:34:30 | 011,493,376 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\7150b9136fad5b79e88f6c7f9d3d2c39\mscorlib.ni.dll
MOD - [2013.02.13 09:59:10 | 000,835,584 | ---- | M] () -- C:\Programme\Opera\gstreamer\gstreamer.dll
MOD - [2013.02.13 09:59:10 | 000,312,832 | ---- | M] () -- C:\Programme\Opera\gstreamer\plugins\gstoggdec.dll
MOD - [2013.02.13 09:59:10 | 000,158,208 | ---- | M] () -- C:\Programme\Opera\gstreamer\plugins\gstffmpegcolorspace.dll
MOD - [2013.02.13 09:59:10 | 000,101,888 | ---- | M] () -- C:\Programme\Opera\gstreamer\plugins\gstwebmdec.dll
MOD - [2013.02.13 09:59:10 | 000,096,256 | ---- | M] () -- C:\Programme\Opera\gstreamer\plugins\gstcoreplugins.dll
MOD - [2013.02.13 09:59:10 | 000,094,208 | ---- | M] () -- C:\Programme\Opera\gstreamer\plugins\gstaudioresample.dll
MOD - [2013.02.13 09:59:10 | 000,093,696 | ---- | M] () -- C:\Programme\Opera\gstreamer\plugins\gstaudioconvert.dll
MOD - [2013.02.13 09:59:10 | 000,073,728 | ---- | M] () -- C:\Programme\Opera\gstreamer\plugins\gstwavparse.dll
MOD - [2013.02.13 09:59:10 | 000,067,072 | ---- | M] () -- C:\Programme\Opera\gstreamer\plugins\gstdirectsound.dll
MOD - [2013.02.13 09:59:10 | 000,062,976 | ---- | M] () -- C:\Programme\Opera\gstreamer\plugins\gstdecodebin2.dll
MOD - [2013.02.13 09:59:10 | 000,057,344 | ---- | M] () -- C:\Programme\Opera\gstreamer\plugins\gstautodetect.dll
MOD - [2013.02.13 09:59:10 | 000,038,912 | ---- | M] () -- C:\Programme\Opera\gstreamer\plugins\gstwaveform.dll
MOD - [2013.02.13 02:49:50 | 000,249,856 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\PresentationFramework.resources\3.0.0.0_de_31bf3856ad364e35\PresentationFramework.resources.dll
MOD - [2013.02.13 02:49:22 | 000,212,992 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\System.resources\2.0.0.0_de_b77a5c561934e089\System.resources.dll
MOD - [2011.05.24 23:50:44 | 000,243,712 | ---- | M] () -- C:\Programme\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.CrossDisplay.Graphics.Dashboard.dll
MOD - [2011.05.24 23:17:38 | 000,095,232 | ---- | M] () -- C:\Programme\ATI Technologies\ATI.ACE\Fuel\Fuel.Proxy.Native.dll
MOD - [2011.03.14 14:21:10 | 000,016,384 | ---- | M] () -- C:\Programme\ATI Technologies\ATI.ACE\Branding\Branding.dll
MOD - [2010.11.13 00:19:05 | 000,434,176 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\System.Windows.Forms.resources\2.0.0.0_de_b77a5c561934e089\System.Windows.Forms.resources.dll
MOD - [2010.11.13 00:19:04 | 000,315,392 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\mscorlib.resources\2.0.0.0_de_b77a5c561934e089\mscorlib.resources.dll
 
 
========== Services (SafeList) ==========
 
SRV - [2013.02.25 17:26:07 | 000,106,280 | ---- | M] (SurfRight B.V.) [Auto | Running] -- C:\Programme\HitmanPro\hmpsched.exe -- (HitmanProScheduler)
SRV - [2013.02.24 23:22:11 | 000,251,248 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\System32\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2013.02.13 09:47:08 | 000,086,752 | ---- | M] (Avira Operations GmbH & Co. KG) [Auto | Running] -- C:\Programme\Avira\AntiVir Desktop\sched.exe -- (AntiVirSchedulerService)
SRV - [2013.02.13 09:46:25 | 000,110,816 | ---- | M] (Avira Operations GmbH & Co. KG) [Auto | Running] -- C:\Programme\Avira\AntiVir Desktop\avguard.exe -- (AntiVirService)
SRV - [2013.02.01 19:21:08 | 000,115,608 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Programme\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2012.12.18 20:08:28 | 000,065,192 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Programme\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2012.12.14 16:49:28 | 000,682,344 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Programme\Malwarebytes' Anti-Malware\mbamservice.exe -- (MBAMService)
SRV - [2012.12.14 16:49:28 | 000,398,184 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Programme\Malwarebytes' Anti-Malware\mbamscheduler.exe -- (MBAMScheduler)
SRV - [2012.10.26 09:44:42 | 000,957,056 | ---- | M] (Sony Corporation) [On_Demand | Running] -- C:\Programme\Sony\VAIO Update\VUAgent.exe -- (VUAgent)
SRV - [2011.07.04 13:46:00 | 000,866,952 | ---- | M] (Sony Corporation) [Auto | Running] -- C:\Programme\Sony\VAIO Smart Network\VSNService.exe -- (VSNService)
SRV - [2011.07.01 05:10:14 | 000,176,128 | ---- | M] (AMD) [Auto | Running] -- C:\Windows\System32\atiesrxx.exe -- (AMD External Events Utility)
SRV - [2011.05.24 23:17:32 | 000,294,400 | ---- | M] (Advanced Micro Devices, Inc.) [Auto | Running] -- C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe -- (AMD FUEL Service)
SRV - [2011.05.19 19:15:44 | 000,549,616 | ---- | M] (Sony Corporation) [On_Demand | Stopped] -- C:\Programme\Sony\VCM Intelligent Analyzing Manager\VcmIAlzMgr.exe -- (VcmIAlzMgr)
SRV - [2011.03.05 16:42:36 | 000,064,704 | ---- | M] (Sony Corporation) [Auto | Running] -- C:\Programme\Sony\VAIO Event Service\VESMgr.exe -- (VAIO Event Service)
SRV - [2011.02.23 14:05:04 | 000,105,024 | ---- | M] (ArcSoft, Inc.) [Auto | Running] -- C:\Programme\ArcSoft\Magic-i Visual Effects 2\uCamMonitor.exe -- (uCamMonitor)
SRV - [2011.02.18 22:15:04 | 000,083,232 | ---- | M] (Sony Corporation) [On_Demand | Stopped] -- C:\Programme\Common Files\Sony Shared\VcmXml\VcmXmlIfHelper.exe -- (VcmXmlIfHelper)
SRV - [2011.02.14 13:23:50 | 000,044,736 | ---- | M] (Sony Corporation) [On_Demand | Running] -- C:\Programme\Sony\VAIO Care\VCService.exe -- (VCService)
SRV - [2011.01.29 05:36:18 | 000,189,048 | ---- | M] (Sony Corporation) [Auto | Running] -- C:\Program Files\Sony\VAIO Care\VCPerfService.exe -- (SampleCollector)
SRV - [2011.01.20 12:27:18 | 000,228,056 | ---- | M] (Sony Corporation) [On_Demand | Stopped] -- C:\Programme\Common Files\Sony Shared\VAIO Entertainment Platform\SPF\SpfService.exe -- (SpfService)
SRV - [2011.01.20 12:16:26 | 000,887,000 | ---- | M] (Sony Corporation) [On_Demand | Stopped] -- C:\Programme\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe -- (VCFw)
SRV - [2010.11.27 00:55:42 | 000,398,176 | ---- | M] (Sony Corporation) [Auto | Running] -- c:\Programme\Sony\PMB\PMBDeviceInfoProvider.exe -- (PMBDeviceInfoProvider)
SRV - [2010.11.20 22:29:49 | 001,121,792 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Programme\Windows Media Player\wmpnetwk.exe -- (WMPNetworkSvc)
SRV - [2010.09.22 16:33:04 | 000,051,040 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Programme\Windows Live\Mesh\wlcrasvc.exe -- (wlcrasvc)
SRV - [2010.09.21 14:03:14 | 001,710,464 | ---- | M] (Microsoft Corp.) [Auto | Running] -- C:\Programme\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE -- (wlidsvc)
SRV - [2010.07.29 18:45:48 | 000,656,672 | ---- | M] (Broadcom Corporation.) [Auto | Running] -- C:\Programme\WIDCOMM\Bluetooth Software\btwdins.exe -- (btwdins)
SRV - [2010.04.05 11:55:02 | 000,116,104 | ---- | M] () [Auto | Running] -- C:\Programme\Canon\IJPLM\ijplmsvc.exe -- (IJPLMSVC)
SRV - [2010.03.18 11:19:26 | 000,113,152 | ---- | M] (ArcSoft Inc.) [On_Demand | Stopped] -- C:\Programme\Common Files\ArcSoft\Connection Service\Bin\ACService.exe -- (ACDaemon)
SRV - [2009.07.14 02:16:13 | 000,025,088 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\sensrsvc.dll -- (SensrSvc)
SRV - [2009.07.14 02:15:41 | 000,680,960 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Programme\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2003.07.28 12:28:22 | 000,089,136 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Programme\Common Files\microsoft shared\Source Engine\OSE.EXE -- (ose)
 
 
========== Driver Services (SafeList) ==========
 
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\Users\Mirko\AppData\Local\Temp\catchme.sys -- (catchme)
DRV - [2013.02.13 09:47:29 | 000,036,552 | ---- | M] (Avira Operations GmbH & Co. KG) [Kernel | System | Running] -- C:\Windows\System32\drivers\avkmgr.sys -- (avkmgr)
DRV - [2013.02.13 09:47:29 | 000,028,520 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\Windows\System32\drivers\ssmdrv.sys -- (ssmdrv)
DRV - [2013.02.13 09:47:28 | 000,134,336 | ---- | M] (Avira Operations GmbH & Co. KG) [Kernel | System | Running] -- C:\Windows\System32\drivers\avipbb.sys -- (avipbb)
DRV - [2013.02.13 09:47:27 | 000,083,944 | ---- | M] (Avira Operations GmbH & Co. KG) [File_System | Auto | Running] -- C:\Windows\System32\drivers\avgntflt.sys -- (avgntflt)
DRV - [2012.12.14 16:49:28 | 000,021,104 | ---- | M] (Malwarebytes Corporation) [File_System | On_Demand | Running] -- C:\Windows\System32\drivers\mbam.sys -- (MBAMProtector)
DRV - [2011.07.01 05:10:32 | 000,100,880 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\AtihdW73.sys -- (AtiHDAudioService)
DRV - [2011.07.01 05:10:19 | 007,800,832 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\atikmdag.sys -- (amdkmdag)
DRV - [2011.07.01 05:10:19 | 000,245,760 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\atikmpag.sys -- (amdkmdap)
DRV - [2011.03.28 09:54:52 | 000,197,224 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\RtsUStor.sys -- (RSUSBSTOR)
DRV - [2011.02.17 19:00:18 | 000,032,384 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\amd_xata.sys -- (amd_xata)
DRV - [2011.02.17 19:00:17 | 000,064,128 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\amd_sata.sys -- (amd_sata)
DRV - [2011.01.07 07:27:50 | 000,035,968 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\usbfilter.sys -- (usbfilter)
DRV - [2010.11.20 22:29:24 | 000,052,224 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV - [2010.11.20 22:29:03 | 000,035,968 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\winusb.sys -- (WinUsb)
DRV - [2010.11.20 22:29:03 | 000,027,264 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\TsUsbGD.sys -- (TsUsbGD)
DRV - [2010.11.01 04:20:30 | 001,800,704 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\athr.sys -- (athr)
DRV - [2010.11.01 04:17:29 | 000,068,208 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\L1C62x86.sys -- (L1C)
DRV - [2010.04.26 21:20:29 | 000,009,344 | ---- | M] (Sony Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\SFEP.sys -- (SFEP)
DRV - [2010.02.18 09:18:22 | 000,037,944 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\amdiox86.sys -- (amdiox86)
DRV - [2009.07.14 01:18:07 | 000,017,920 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\WSDPrint.sys -- (WSDPrintDevice)
DRV - [2009.07.14 01:14:49 | 000,020,480 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\WSDScan.sys -- (WSDScan)
DRV - [2009.07.14 00:52:10 | 000,014,336 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\vwifimp.sys -- (vwifimp)
DRV - [2009.07.14 00:45:33 | 000,083,456 | ---- | M] (Brother Industries Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\serial.sys -- (Serial)
DRV - [2009.07.13 23:02:52 | 000,214,016 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\e1y6032.sys -- (e1yexpress)
DRV - [2009.06.10 22:19:48 | 009,853,248 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\nvlddmkm.sys -- (nvlddmkm)
DRV - [2009.05.26 14:32:02 | 000,017,408 | ---- | M] (ArcSoft, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\ArcSoftKsUFilter.sys -- (ArcSoftKsUFilter)
 
 
========== Standard Registry (SafeList) ==========
 
 
========== Internet Explorer ==========
 
IE - HKLM\..\SearchScopes,DefaultScope = 
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = hxxp://www.bing.com/search?q={searchTerms}&form=SNYEDF&pc=MASE&src=IE-SearchBox
 
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = hxxp://sony.msn.com [binary data]
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = hxxp://vaioportal.sony.eu
IE - HKCU\..\SearchScopes,DefaultScope = 
IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = hxxp://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKCU\..\SearchScopes\{35318879-41EA-4F52-AA6D-CB7BBF4CAD0C}: "URL" = hxxp://services.zinio.com/search?s={searchTerms}&rf=sonyslices
IE - HKCU\..\SearchScopes\{3711784D-2B2E-454A-AACE-0C0B1EB4F70E}: "URL" = hxxp://rover.ebay.com/rover/1/707-37276-16609-27/4?mpre=hxxp://shop.ebay.de/?oemInLn=ieSrch-Q311&_nkw={searchTerms}
IE - HKCU\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = hxxp://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = <local>
 
========== FireFox ==========
 
FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:18.0.2
FF - user.js - File not found
 
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF32_11_6_602_168.dll ()
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.15.2: C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.15.2: C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\4.0.50401.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922: C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3508.1109: C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.0.5: C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
 
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 18.0.2\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2013.02.15 20:36:30 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 18.0.2\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins
 
[2013.02.15 20:36:51 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Mirko\AppData\Roaming\mozilla\Extensions
[2013.02.15 20:36:30 | 000,000,000 | ---D | M] (No name found) -- C:\Programme\Mozilla Firefox\extensions
[2013.02.01 19:21:57 | 000,262,552 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll
[2013.02.01 20:33:32 | 000,001,392 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\amazondotcom-de.xml
[2013.02.01 20:33:32 | 000,002,465 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\bing.xml
[2013.02.01 20:33:32 | 000,001,153 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\eBay-de.xml
[2013.02.01 20:33:32 | 000,006,805 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\leo_ende_de.xml
[2013.02.01 20:33:32 | 000,001,178 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-de.xml
[2013.02.01 20:33:32 | 000,001,105 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\yahoo-de.xml
 
========== Chrome  ==========
 
 
O1 HOSTS File: ([2013.02.20 20:52:21 | 000,000,027 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1       localhost
O2 - BHO: (Canon Easy-WebPrint EX BHO) - {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} - C:\Programme\Canon\Easy-WebPrint EX\ewpexbho.dll (CANON INC.)
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Programme\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (Windows Live ID Sign-in Helper) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Programme\Common Files\microsoft shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Programme\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O3 - HKLM\..\Toolbar: (Canon Easy-WebPrint EX) - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Programme\Canon\Easy-WebPrint EX\ewpexhlp.dll (CANON INC.)
O4 - HKLM..\Run: [avgnt] C:\Program Files\Avira\AntiVir Desktop\avgnt.exe (Avira Operations GmbH & Co. KG)
O4 - HKLM..\Run: [CanonMyPrinter] C:\Program Files\Canon\MyPrinter\BJMyPrt.exe (CANON INC.)
O4 - HKLM..\Run: [IJNetworkScanUtility] C:\Programme\Canon\Canon IJ Network Scan Utility\CNMNSUT.exe (CANON INC.)
O4 - HKLM..\Run: [ISBMgr.exe] C:\Program Files\Sony\ISB Utility\ISBMgr.exe (Sony Corporation)
O4 - HKLM..\Run: [PMBVolumeWatcher] c:\Programme\Sony\PMB\PMBVolumeWatcher.exe (Sony Corporation)
O4 - HKLM..\Run: [StartCCC] C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O8 - Extra context menu item: Nach Microsoft &Excel exportieren - C:\Programme\Microsoft Office\OFFICE11\EXCEL.EXE (Microsoft Corporation)
O9 - Extra Button: @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Programme\Windows Live\Writer\WriterBrowserExtension.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Programme\Windows Live\Writer\WriterBrowserExtension.dll (Microsoft Corporation)
O9 - Extra Button: Recherchieren - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\Programme\Microsoft Office\OFFICE11\REFIEBAR.DLL (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Programme\Common Files\microsoft shared\Windows Live\WLIDNSP.DLL (Microsoft Corp.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000008 [] - C:\Programme\Common Files\microsoft shared\Windows Live\WLIDNSP.DLL (Microsoft Corp.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 168.95.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{62D10511-3169-4EF7-B43A-C72FE57F320E}: DhcpNameServer = 168.95.1.1
O18 - Protocol\Handler\livecall {828030A1-22C1-4009-854F-8E305202313F} - C:\Programme\Windows Live\Messenger\msgrapp.dll (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msnim {828030A1-22C1-4009-854F-8E305202313F} - C:\Programme\Windows Live\Messenger\msgrapp.dll (Microsoft Corporation)
O18 - Protocol\Handler\mso-offdap11 {32505114-5902-49B2-880A-1F7738E5A384} - C:\Programme\Common Files\microsoft shared\Web Components\11\OWC11.DLL (Microsoft Corporation)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Programme\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Handler\wlmailhtml {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - C:\Programme\Windows Live\Mail\mailcomm.dll (Microsoft Corporation)
O18 - Protocol\Handler\wlpg {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Programme\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll (Microsoft Corporation)
O18 - Protocol\Filter\text/xml {807553E5-5146-11D5-A672-00B0D022E945} - C:\Programme\Common Files\microsoft shared\OFFICE11\MSOXMLMF.DLL (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\System32\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\System32\SystemPropertiesPerformance.exe (Microsoft Corporation)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009.06.10 22:42:20 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = ComFile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)
 
========== Files/Folders - Created Within 30 Days ==========
 
[2013.02.25 17:26:07 | 000,000,000 | ---D | C] -- C:\Program Files\HitmanPro
[2013.02.25 17:24:48 | 000,000,000 | ---D | C] -- C:\ProgramData\HitmanPro
[2013.02.24 23:30:12 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Java
[2013.02.24 23:30:01 | 000,861,088 | ---- | C] (Oracle Corporation) -- C:\Windows\System32\npDeployJava1.dll
[2013.02.24 23:30:01 | 000,262,560 | ---- | C] (Oracle Corporation) -- C:\Windows\System32\javaws.exe
[2013.02.24 23:29:42 | 000,174,496 | ---- | C] (Oracle Corporation) -- C:\Windows\System32\javaw.exe
[2013.02.24 23:29:42 | 000,174,496 | ---- | C] (Oracle Corporation) -- C:\Windows\System32\java.exe
[2013.02.24 23:29:42 | 000,094,112 | ---- | C] (Oracle Corporation) -- C:\Windows\System32\WindowsAccessBridge.dll
[2013.02.24 23:29:24 | 000,000,000 | ---D | C] -- C:\Program Files\Java
[2013.02.24 23:27:50 | 031,512,992 | ---- | C] (Oracle Corporation) -- C:\Users\Mirko\Desktop\jre-7u15-windows-i586.exe
[2013.02.24 23:22:40 | 000,000,000 | ---D | C] -- C:\Users\Mirko\AppData\Local\Google
[2013.02.24 23:22:27 | 000,000,000 | ---D | C] -- C:\Program Files\Google
[2013.02.24 23:22:11 | 000,691,568 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerApp.exe
[2013.02.24 23:22:11 | 000,071,024 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerCPLApp.cpl
[2013.02.24 23:18:30 | 000,000,000 | -HSD | C] -- C:\Config.Msi
[2013.02.20 23:30:59 | 000,000,000 | ---D | C] -- C:\Users\Mirko\AppData\Roaming\vlc
[2013.02.20 23:25:37 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
[2013.02.20 23:24:54 | 000,000,000 | ---D | C] -- C:\Program Files\VideoLAN
[2013.02.20 21:08:01 | 000,000,000 | ---D | C] -- C:\Users\Mirko\AppData\Roaming\Malwarebytes
[2013.02.20 21:07:47 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware
[2013.02.20 21:07:46 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2013.02.20 21:07:45 | 000,021,104 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbam.sys
[2013.02.20 21:07:45 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
[2013.02.20 21:07:26 | 000,000,000 | ---D | C] -- C:\Users\Mirko\AppData\Local\Programs
[2013.02.20 21:05:40 | 010,156,344 | ---- | C] (Malwarebytes Corporation                                    ) -- C:\Users\Mirko\Desktop\mbam-setup-1.70.0.1100.exe
[2013.02.20 20:54:59 | 000,000,000 | -HSD | C] -- C:\$RECYCLE.BIN
[2013.02.20 20:54:56 | 000,000,000 | ---D | C] -- C:\Windows\temp
[2013.02.20 20:54:56 | 000,000,000 | ---D | C] -- C:\Users\Mirko\AppData\Local\temp
[2013.02.20 20:42:29 | 000,518,144 | ---- | C] (SteelWerX) -- C:\Windows\SWREG.exe
[2013.02.20 20:42:29 | 000,406,528 | ---- | C] (SteelWerX) -- C:\Windows\SWSC.exe
[2013.02.20 20:42:29 | 000,060,416 | ---- | C] (NirSoft) -- C:\Windows\NIRCMD.exe
[2013.02.20 20:42:13 | 000,000,000 | ---D | C] -- C:\Qoobox
[2013.02.20 20:41:54 | 000,000,000 | ---D | C] -- C:\Windows\erdnt
[2013.02.20 20:37:05 | 005,034,373 | R--- | C] (Swearware) -- C:\Users\Mirko\Desktop\ComboFix.exe
[2013.02.20 20:06:16 | 000,177,496 | ---- | C] (Kaspersky Lab, GERT) -- C:\Windows\System32\drivers\86168009.sys
[2013.02.20 14:16:15 | 002,237,968 | ---- | C] (Kaspersky Lab ZAO) -- C:\Users\Mirko\Desktop\tdsskiller.exe
[2013.02.19 23:09:23 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Users\Mirko\Desktop\OTL.exe
[2013.02.19 23:07:15 | 000,000,000 | ---D | C] -- C:\Users\Mirko\Desktop\quanti
[2013.02.17 22:47:38 | 000,000,000 | ---D | C] -- C:\Users\Mirko\AppData\Local\Microsoft Games
[2013.02.15 20:37:12 | 000,000,000 | ---D | C] -- C:\Users\Mirko\AppData\Local\Macromedia
[2013.02.15 20:36:45 | 000,000,000 | ---D | C] -- C:\Users\Mirko\AppData\Roaming\Mozilla
[2013.02.15 20:36:45 | 000,000,000 | ---D | C] -- C:\Users\Mirko\AppData\Local\Mozilla
[2013.02.15 20:36:33 | 000,000,000 | ---D | C] -- C:\ProgramData\Mozilla
[2013.02.15 20:36:32 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Maintenance Service
[2013.02.15 20:36:29 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Firefox
[2013.02.15 15:11:41 | 000,000,000 | ---D | C] -- C:\Users\Mirko\Documents\Bluetooth-Exchange-Ordner
[2013.02.15 15:11:26 | 000,000,000 | ---D | C] -- C:\Users\Mirko\AppData\Local\Broadcom
[2013.02.15 12:54:44 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Adobe
[2013.02.14 16:23:02 | 000,295,424 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\System32\atmfd.dll
[2013.02.14 16:23:02 | 000,034,304 | ---- | C] (Adobe Systems) -- C:\Windows\System32\atmlib.dll
[2013.02.14 15:46:09 | 002,382,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mshtml.tlb
[2013.02.14 15:46:07 | 000,065,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jsproxy.dll
[2013.02.14 15:46:06 | 000,607,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeeds.dll
[2013.02.14 15:46:06 | 000,176,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieui.dll
[2013.02.14 15:46:06 | 000,142,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieUnatt.exe
[2013.02.14 15:46:04 | 001,800,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jscript9.dll
[2013.02.14 15:46:04 | 000,231,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\url.dll
[2013.02.14 15:46:02 | 001,427,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\inetcpl.cpl
[2013.02.14 15:38:03 | 000,293,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\browserchoice.exe
[2013.02.14 11:07:56 | 002,347,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\win32k.sys
[2013.02.14 11:07:12 | 000,376,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dpnet.dll
[2013.02.14 11:06:50 | 000,240,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\netio.sys
[2013.02.14 11:06:49 | 000,187,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\FWPKCLNT.SYS
[2013.02.14 11:06:46 | 003,967,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ntkrnlpa.exe
[2013.02.14 11:06:45 | 003,913,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ntoskrnl.exe
[2013.02.14 11:06:43 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msxml3r.dll
[2013.02.14 11:06:40 | 000,805,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\cdosys.dll
[2013.02.14 11:06:38 | 000,220,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ncrypt.dll
[2013.02.14 11:06:36 | 000,041,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\browcli.dll
[2013.02.14 11:06:10 | 000,078,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\synceng.dll
[2013.02.14 11:06:09 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rdrmemptylst.exe
[2013.02.14 11:06:08 | 000,129,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rdpcorekmts.dll
[2013.02.14 11:06:08 | 000,058,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rdpwsx.dll
[2013.02.14 11:06:05 | 000,049,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\taskhost.exe
[2013.02.14 11:06:00 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\tzres.dll
[2013.02.14 11:05:49 | 000,271,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\conhost.exe
[2013.02.14 11:05:49 | 000,169,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\winsrv.dll
[2013.02.14 11:05:49 | 000,006,144 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-security-base-l1-1-0.dll
[2013.02.14 11:05:49 | 000,005,120 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-file-l1-1-0.dll
[2013.02.14 11:05:49 | 000,004,608 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-threadpool-l1-1-0.dll
[2013.02.14 11:05:49 | 000,004,608 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-processthreads-l1-1-0.dll
[2013.02.14 11:05:49 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-sysinfo-l1-1-0.dll
[2013.02.14 11:05:49 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-synch-l1-1-0.dll
[2013.02.14 11:05:49 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-misc-l1-1-0.dll
[2013.02.14 11:05:49 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-localregistry-l1-1-0.dll
[2013.02.14 11:05:49 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-localization-l1-1-0.dll
[2013.02.14 11:05:49 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-xstate-l1-1-0.dll
[2013.02.14 11:05:49 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-processenvironment-l1-1-0.dll
[2013.02.14 11:05:49 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-namedpipe-l1-1-0.dll
[2013.02.14 11:05:49 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-memory-l1-1-0.dll
[2013.02.14 11:05:49 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-libraryloader-l1-1-0.dll
[2013.02.14 11:05:49 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-interlocked-l1-1-0.dll
[2013.02.14 11:05:49 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-heap-l1-1-0.dll
[2013.02.14 11:05:49 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-util-l1-1-0.dll
[2013.02.14 11:05:49 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-string-l1-1-0.dll
[2013.02.14 11:05:49 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-rtlsupport-l1-1-0.dll
[2013.02.14 11:05:49 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-profile-l1-1-0.dll
[2013.02.14 11:05:49 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-io-l1-1-0.dll
[2013.02.14 11:05:49 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-handle-l1-1-0.dll
[2013.02.14 11:05:49 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-fibers-l1-1-0.dll
[2013.02.14 11:05:49 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-errorhandling-l1-1-0.dll
[2013.02.14 11:05:49 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-delayload-l1-1-0.dll
[2013.02.14 11:05:49 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-debug-l1-1-0.dll
[2013.02.14 11:05:49 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-datetime-l1-1-0.dll
[2013.02.14 11:05:49 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-console-l1-1-0.dll
[2013.02.14 10:56:31 | 000,465,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\psisdecd.dll
[2013.02.14 10:56:31 | 000,075,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\psisrndr.ax
[2013.02.14 10:55:18 | 000,534,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\EncDec.dll
[2013.02.14 10:55:14 | 000,067,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\packager.dll
[2013.02.14 10:55:11 | 000,038,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\csrsrv.dll
[2013.02.14 10:55:04 | 001,328,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\quartz.dll
[2013.02.14 10:55:04 | 000,514,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\qdvd.dll
[2013.02.14 10:54:51 | 000,314,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\webio.dll
[2013.02.14 10:54:51 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sspisrv.dll
[2013.02.14 10:54:33 | 000,319,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\odbcjt32.dll
[2013.02.14 10:54:33 | 000,163,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\odbctrac.dll
[2013.02.14 10:54:33 | 000,122,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\odbccp32.dll
[2013.02.14 10:54:33 | 000,086,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\odbccu32.dll
[2013.02.14 10:54:33 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\odbccr32.dll
[2013.02.14 10:54:17 | 001,077,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\DWrite.dll
[2013.02.14 10:47:17 | 000,123,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\poqexec.exe
[2013.02.13 18:03:39 | 000,000,000 | ---D | C] -- C:\Users\Mirko\AppData\Roaming\Winamp
[2013.02.13 18:03:39 | 000,000,000 | ---D | C] -- C:\Program Files\Winamp
[2013.02.13 18:02:40 | 000,017,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mdimon.dll
[2013.02.13 18:01:34 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
[2013.02.13 18:00:47 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\DESIGNER
[2013.02.13 18:00:34 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Office
[2013.02.13 17:58:08 | 000,000,000 | R--D | C] -- C:\MSOCache
[2013.02.13 17:20:39 | 000,000,000 | ---D | C] -- C:\Users\Mirko\AppData\Local\Adobe
[2013.02.13 16:55:21 | 000,000,000 | -H-D | C] -- C:\ProgramData\CanonIJMyPrinter
[2013.02.13 16:51:35 | 000,290,816 | ---- | C] (CANON INC.) -- C:\Windows\System32\CNMXLMAG.DLL
[2013.02.13 16:50:15 | 000,000,000 | ---D | C] -- C:\ProgramData\Canon IJ Network Tool
[2013.02.13 16:50:12 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon IJ Network Utilities
[2013.02.13 16:50:07 | 001,335,296 | ---- | C] (CANON INC.) -- C:\Windows\System32\CNC6100C.dll
[2013.02.13 16:50:07 | 000,307,200 | ---- | C] (CANON INC.) -- C:\Windows\System32\CNC6100L.dll
[2013.02.13 16:50:07 | 000,114,688 | ---- | C] (CANON INC.) -- C:\Windows\System32\CNC6100I.dll
[2013.02.13 16:50:06 | 000,106,496 | ---- | C] (CANON INC.) -- C:\Windows\System32\CNC6100U.dll
[2013.02.13 16:50:06 | 000,015,872 | ---- | C] (CANON INC.) -- C:\Windows\System32\CNHMCA.dll
[2013.02.13 16:49:04 | 000,000,000 | ---D | C] -- C:\ProgramData\CanonIJPLM
[2013.02.13 16:46:43 | 000,000,000 | ---D | C] -- C:\ProgramData\CanonIJMSetup
[2013.02.13 16:46:42 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon MG6100 series Benutzerregistrierung
[2013.02.13 16:45:11 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CD-LabelPrint
[2013.02.13 16:44:38 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon Utilities
[2013.02.13 16:43:54 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon MG6100 series Manual
[2013.02.13 16:43:40 | 000,000,000 | -H-D | C] -- C:\ProgramData\CanonBJ
[2013.02.13 16:43:21 | 000,000,000 | -H-D | C] -- C:\Windows\System32\CanonIJ Uninstaller Information
[2013.02.13 16:43:21 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon MG6100 series
[2013.02.13 16:42:34 | 000,290,816 | ---- | C] (CANON INC.) -- C:\Windows\System32\CNMLMAG.DLL
[2013.02.13 16:42:27 | 000,180,224 | ---- | C] (CANON INC.) -- C:\Windows\System32\CNMIUAG.DLL
[2013.02.13 16:42:22 | 000,000,000 | -H-D | C] -- C:\Program Files\CanonBJ
[2013.02.13 16:42:14 | 000,340,992 | ---- | C] (CANON INC.) -- C:\Windows\System32\CNMNPPM.DLL
[2013.02.13 16:42:14 | 000,034,816 | ---- | C] (CANON INC.) -- C:\Windows\System32\CNMNPUI.DLL
[2013.02.13 16:42:14 | 000,000,000 | ---D | C] -- C:\Windows\System32\STRING
[2013.02.13 16:40:24 | 000,000,000 | ---D | C] -- C:\Program Files\Canon
[2013.02.13 14:49:32 | 000,000,000 | ---D | C] -- C:\Users\Mirko\AppData\Roaming\skypePM
[2013.02.13 14:48:23 | 000,000,000 | ---D | C] -- C:\Users\Mirko\AppData\Roaming\Skype
[2013.02.13 13:40:35 | 000,000,000 | ---D | C] -- C:\Users\Mirko\Desktop\Bilder
[2013.02.13 13:40:30 | 000,000,000 | ---D | C] -- C:\Users\Mirko\Desktop\Uni
[2013.02.13 13:31:05 | 000,000,000 | ---D | C] -- C:\Users\Mirko\Desktop\Musik
[2013.02.13 13:30:58 | 000,000,000 | ---D | C] -- C:\Users\Mirko\Desktop\Dokumente
[2013.02.13 13:30:55 | 000,000,000 | ---D | C] -- C:\Users\Mirko\Desktop\cinemaxx
[2013.02.13 11:52:25 | 000,000,000 | ---D | C] -- C:\Update
[2013.02.13 10:11:36 | 000,232,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MpSigStub.exe
[2013.02.13 09:59:22 | 000,000,000 | ---D | C] -- C:\Users\Mirko\AppData\Roaming\Opera
[2013.02.13 09:59:22 | 000,000,000 | ---D | C] -- C:\Users\Mirko\AppData\Local\Opera
[2013.02.13 09:59:03 | 000,000,000 | ---D | C] -- C:\Program Files\Opera
[2013.02.13 09:57:01 | 000,000,000 | ---D | C] -- C:\Users\Mirko\AppData\Roaming\Avira
[2013.02.13 09:54:36 | 000,000,000 | ---D | C] -- C:\Users\Mirko\AppData\Roaming\WinRAR
[2013.02.13 09:54:36 | 000,000,000 | ---D | C] -- C:\Users\Mirko\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
[2013.02.13 09:54:36 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
[2013.02.13 09:53:50 | 000,000,000 | ---D | C] -- C:\Program Files\WinRAR
[2013.02.13 09:50:45 | 000,028,520 | ---- | C] (Avira GmbH) -- C:\Windows\System32\drivers\ssmdrv.sys
[2013.02.13 09:50:34 | 000,036,552 | ---- | C] (Avira Operations GmbH & Co. KG) -- C:\Windows\System32\drivers\avkmgr.sys
[2013.02.13 09:50:33 | 000,134,336 | ---- | C] (Avira Operations GmbH & Co. KG) -- C:\Windows\System32\drivers\avipbb.sys
[2013.02.13 09:50:33 | 000,083,944 | ---- | C] (Avira Operations GmbH & Co. KG) -- C:\Windows\System32\drivers\avgntflt.sys
[2013.02.13 09:50:28 | 000,000,000 | ---D | C] -- C:\ProgramData\Avira
[2013.02.13 09:50:28 | 000,000,000 | ---D | C] -- C:\Program Files\Avira
[2013.02.13 09:47:38 | 000,000,000 | ---D | C] -- C:\Program Files\CCleaner
[2013.02.13 09:42:57 | 000,826,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rdpcore.dll
[2013.02.13 09:41:31 | 000,000,000 | ---D | C] -- C:\Users\Mirko\AppData\Roaming\Adobe
[2013.02.13 09:40:16 | 000,000,000 | ---D | C] -- C:\Users\Mirko\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AMD VISION Engine Control Center
[2013.02.13 09:40:14 | 000,000,000 | ---D | C] -- C:\Users\Mirko\AppData\Local\AMD
[2013.02.13 09:39:49 | 000,000,000 | ---D | C] -- C:\Users\Mirko\AppData\Roaming\ATI
[2013.02.13 09:39:49 | 000,000,000 | ---D | C] -- C:\Users\Mirko\AppData\Local\ATI
[2013.02.13 09:37:41 | 000,000,000 | R--D | C] -- C:\Users\Mirko\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
[2013.02.13 09:37:41 | 000,000,000 | R--D | C] -- C:\Users\Mirko\Searches
[2013.02.13 09:37:41 | 000,000,000 | R--D | C] -- C:\Users\Mirko\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
[2013.02.13 09:37:20 | 000,000,000 | ---D | C] -- C:\Users\Mirko\AppData\Roaming\Identities
[2013.02.13 09:37:17 | 000,000,000 | R--D | C] -- C:\Users\Mirko\Contacts
[2013.02.13 09:36:04 | 002,422,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wucltux.dll
[2013.02.13 09:36:04 | 000,045,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wups2.dll
[2013.02.13 09:35:19 | 000,577,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wuapi.dll
[2013.02.13 09:35:19 | 000,088,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wudriver.dll
[2013.02.13 09:35:19 | 000,035,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wups.dll
[2013.02.13 09:35:14 | 000,000,000 | ---D | C] -- C:\Windows\System32\VAIO Startup Setting Tool
[2013.02.13 09:35:13 | 000,000,000 | ---D | C] -- C:\Users\Mirko\AppData\Roaming\Sony Corporation
[2013.02.13 09:35:13 | 000,000,000 | ---D | C] -- C:\Windows\pss
[2013.02.13 09:34:58 | 000,171,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wuwebv.dll
[2013.02.13 09:34:58 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wuapp.exe
[2013.02.13 09:34:33 | 000,000,000 | ---D | C] -- C:\Users\Mirko\AppData\Local\VirtualStore
[2013.02.13 09:34:31 | 000,000,000 | --SD | C] -- C:\Users\Mirko\AppData\Roaming\Microsoft
[2013.02.13 09:34:31 | 000,000,000 | R--D | C] -- C:\Users\Mirko\Videos
[2013.02.13 09:34:31 | 000,000,000 | R--D | C] -- C:\Users\Mirko\Saved Games
[2013.02.13 09:34:31 | 000,000,000 | R--D | C] -- C:\Users\Mirko\Pictures
[2013.02.13 09:34:31 | 000,000,000 | R--D | C] -- C:\Users\Mirko\Music
[2013.02.13 09:34:31 | 000,000,000 | R--D | C] -- C:\Users\Mirko\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
[2013.02.13 09:34:31 | 000,000,000 | R--D | C] -- C:\Users\Mirko\Links
[2013.02.13 09:34:31 | 000,000,000 | R--D | C] -- C:\Users\Mirko\Favorites
[2013.02.13 09:34:31 | 000,000,000 | R--D | C] -- C:\Users\Mirko\Downloads
[2013.02.13 09:34:31 | 000,000,000 | R--D | C] -- C:\Users\Mirko\Documents
[2013.02.13 09:34:31 | 000,000,000 | R--D | C] -- C:\Users\Mirko\Desktop
[2013.02.13 09:34:31 | 000,000,000 | R--D | C] -- C:\Users\Mirko\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
[2013.02.13 09:34:31 | 000,000,000 | -HSD | C] -- C:\Users\Mirko\Vorlagen
[2013.02.13 09:34:31 | 000,000,000 | -HSD | C] -- C:\Users\Mirko\AppData\Local\Verlauf
[2013.02.13 09:34:31 | 000,000,000 | -HSD | C] -- C:\Users\Mirko\AppData\Local\Temporary Internet Files
[2013.02.13 09:34:31 | 000,000,000 | -HSD | C] -- C:\Users\Mirko\Startmenü
[2013.02.13 09:34:31 | 000,000,000 | -HSD | C] -- C:\Users\Mirko\SendTo
[2013.02.13 09:34:31 | 000,000,000 | -HSD | C] -- C:\Users\Mirko\Recent
[2013.02.13 09:34:31 | 000,000,000 | -HSD | C] -- C:\Users\Mirko\Netzwerkumgebung
[2013.02.13 09:34:31 | 000,000,000 | -HSD | C] -- C:\Users\Mirko\Lokale Einstellungen
[2013.02.13 09:34:31 | 000,000,000 | -HSD | C] -- C:\Users\Mirko\Documents\Eigene Videos
[2013.02.13 09:34:31 | 000,000,000 | -HSD | C] -- C:\Users\Mirko\Documents\Eigene Musik
[2013.02.13 09:34:31 | 000,000,000 | -HSD | C] -- C:\Users\Mirko\Eigene Dateien
[2013.02.13 09:34:31 | 000,000,000 | -HSD | C] -- C:\Users\Mirko\Documents\Eigene Bilder
[2013.02.13 09:34:31 | 000,000,000 | -HSD | C] -- C:\Users\Mirko\Druckumgebung
[2013.02.13 09:34:31 | 000,000,000 | -HSD | C] -- C:\Users\Mirko\Cookies
[2013.02.13 09:34:31 | 000,000,000 | -HSD | C] -- C:\Users\Mirko\AppData\Local\Anwendungsdaten
[2013.02.13 09:34:31 | 000,000,000 | -HSD | C] -- C:\Users\Mirko\Anwendungsdaten
[2013.02.13 09:34:31 | 000,000,000 | -H-D | C] -- C:\Users\Mirko\AppData
[2013.02.13 09:34:31 | 000,000,000 | ---D | C] -- C:\Users\Mirko\AppData\Local\Microsoft
[2013.02.13 09:34:31 | 000,000,000 | ---D | C] -- C:\Users\Mirko\AppData\Roaming\Media Center Programs
[2013.02.13 09:34:31 | 000,000,000 | ---D | C] -- C:\Users\Mirko\AppData\Roaming\Macromedia
[2013.02.13 09:34:04 | 000,000,000 | -HSD | C] -- C:\ProgramData\Vorlagen
[2013.02.13 09:34:04 | 000,000,000 | -HSD | C] -- C:\ProgramData\Startmenü
[2013.02.13 09:34:04 | 000,000,000 | -HSD | C] -- C:\Programme
[2013.02.13 09:34:04 | 000,000,000 | -HSD | C] -- C:\Program Files\Gemeinsame Dateien
[2013.02.13 09:34:04 | 000,000,000 | -HSD | C] -- C:\ProgramData\Favoriten
[2013.02.13 09:34:04 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Eigene Videos
[2013.02.13 09:34:04 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Eigene Musik
[2013.02.13 09:34:04 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Eigene Bilder
[2013.02.13 09:34:04 | 000,000,000 | -HSD | C] -- C:\Dokumente und Einstellungen
[2013.02.13 09:34:04 | 000,000,000 | -HSD | C] -- C:\ProgramData\Dokumente
[2013.02.13 09:34:04 | 000,000,000 | -HSD | C] -- C:\ProgramData\Anwendungsdaten
[2013.02.13 09:30:06 | 000,000,000 | ---D | C] -- C:\ProgramData\ATI
[2013.02.13 04:29:14 | 000,000,000 | -H-D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VAIO Care
[2013.02.13 04:27:08 | 000,000,000 | ---D | C] -- C:\VAIO Sample Contents
[2013.02.13 04:27:01 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sony
[2013.02.13 04:25:31 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
[2013.02.13 04:25:30 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Skype
[2013.02.13 04:25:29 | 000,000,000 | R--D | C] -- C:\Program Files\Skype
[2013.02.13 04:25:25 | 000,000,000 | ---D | C] -- C:\ProgramData\Skype
[2013.02.13 04:25:07 | 000,000,000 | ---D | C] -- C:\Program Files\Nascom
[2013.02.13 04:25:05 | 097,167,020 | ---- | C] (Axialis Software) -- C:\Windows\System32\VAIO Hero Screensaver - Summer 2011.scr
[2013.02.13 04:23:09 | 001,892,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DX9_42.dll
[2013.02.13 04:22:34 | 000,000,000 | R--D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PlayStation Extras
[2013.02.13 04:16:29 | 000,000,000 | ---D | C] -- C:\Program Files\MSXML 4.0
[2013.02.13 04:16:25 | 002,388,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_30.dll
[2013.02.13 04:16:11 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PMB
[2013.02.13 04:10:03 | 002,106,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DCompiler_43.dll
[2013.02.13 04:10:03 | 001,998,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DX9_43.dll
[2013.02.13 04:10:03 | 001,868,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dcsx_43.dll
[2013.02.13 04:10:03 | 000,527,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAudio2_7.dll
[2013.02.13 04:10:03 | 000,470,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx10_43.dll
[2013.02.13 04:10:03 | 000,248,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx11_43.dll
[2013.02.13 04:10:03 | 000,239,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine3_7.dll
[2013.02.13 04:10:03 | 000,074,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAPOFX1_5.dll
[2013.02.13 04:06:08 | 000,212,480 | ---- | C] (Eastman Kodak) -- C:\Windows\System32\PCDLIB32.DLL
[2013.02.13 04:06:03 | 000,055,808 | ---- | C] (ArcSoft, Inc.) -- C:\Windows\System32\ArcSoftKsUFilter.dll
[2013.02.13 04:06:03 | 000,017,408 | ---- | C] (ArcSoft, Inc.) -- C:\Windows\System32\drivers\ArcSoftKsUFilter.sys
[2013.02.13 04:06:01 | 000,245,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\unicows.dll
[2013.02.13 04:05:51 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ArcSoft Webcam Suite
[2013.02.13 04:05:51 | 000,000,000 | ---D | C] -- C:\ProgramData\ArcSoft
[2013.02.13 04:05:22 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\ArcSoft
[2013.02.13 04:05:22 | 000,000,000 | ---D | C] -- C:\Program Files\ArcSoft
[2013.02.13 04:03:46 | 000,000,000 | ---D | C] -- C:\Windows\System32\Macromed
[2013.02.13 04:03:41 | 000,000,000 | ---D | C] -- C:\ProgramData\Adobe
[2013.02.13 04:03:40 | 000,000,000 | ---D | C] -- C:\Program Files\Adobe
[2013.02.13 04:01:53 | 000,000,000 | ---D | C] -- C:\Windows\en
[2013.02.13 03:54:29 | 000,000,000 | R--D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live
[2013.02.13 03:54:21 | 000,000,000 | ---D | C] -- C:\Windows\uk
[2013.02.13 03:54:09 | 000,000,000 | ---D | C] -- C:\Windows\tr
[2013.02.13 03:53:58 | 000,000,000 | ---D | C] -- C:\Windows\sv
[2013.02.13 03:53:44 | 000,000,000 | ---D | C] -- C:\Windows\sk
[2013.02.13 03:53:29 | 000,000,000 | ---D | C] -- C:\Windows\ru
[2013.02.13 03:53:14 | 000,000,000 | ---D | C] -- C:\Windows\ro
[2013.02.13 03:52:52 | 000,000,000 | ---D | C] -- C:\Windows\pt-pt
[2013.02.13 03:52:36 | 000,000,000 | ---D | C] -- C:\Windows\pl
[2013.02.13 03:52:20 | 000,000,000 | ---D | C] -- C:\Windows\no
[2013.02.13 03:52:06 | 000,000,000 | ---D | C] -- C:\Windows\it
[2013.02.13 03:51:55 | 000,000,000 | ---D | C] -- C:\Windows\hu
[2013.02.13 03:51:44 | 000,000,000 | ---D | C] -- C:\Windows\el
[2013.02.13 03:51:33 | 000,000,000 | ---D | C] -- C:\Windows\de
[2013.02.13 03:51:16 | 000,000,000 | ---D | C] -- C:\Windows\fr
[2013.02.13 03:51:01 | 000,000,000 | ---D | C] -- C:\Windows\fi
[2013.02.13 03:50:47 | 000,000,000 | ---D | C] -- C:\Windows\nl
[2013.02.13 03:50:36 | 000,000,000 | ---D | C] -- C:\Windows\da
[2013.02.13 03:50:22 | 000,000,000 | ---D | C] -- C:\Windows\cs
[2013.02.13 03:50:07 | 000,000,000 | ---D | C] -- C:\Windows\bg
[2013.02.13 03:49:28 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft SQL Server Compact Edition
[2013.02.13 03:33:05 | 000,000,000 | ---D | C] -- C:\Windows\PCHEALTH
[2013.02.13 03:32:44 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Live
[2013.02.13 03:32:14 | 000,515,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAudio2_5.dll
[2013.02.13 03:32:14 | 000,069,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAPOFX1_3.dll
[2013.02.13 03:32:13 | 000,453,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx10_42.dll
[2013.02.13 03:32:08 | 003,426,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_32.dll
[2013.02.13 03:32:01 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
[2013.02.13 03:31:19 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Silverlight
[2013.02.13 03:30:39 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Windows Live
[2013.02.13 03:28:19 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft
[2013.02.13 03:28:18 | 000,000,000 | ---D | C] -- C:\temp
[2013.02.13 03:27:41 | 000,000,000 | ---D | C] -- C:\_FS_SWRINFO
[2013.02.13 03:27:40 | 000,000,000 | ---D | C] -- C:\Documentation
[2013.02.13 03:26:33 | 000,000,000 | ---D | C] -- C:\Windows\Sonysys
[2013.02.13 03:22:39 | 000,000,000 | ---D | C] -- C:\ProgramData\McAfee
[2013.02.13 03:21:49 | 000,000,000 | ---D | C] -- C:\ProgramData\Sun
[2013.02.13 03:21:44 | 000,782,240 | ---- | C] (Oracle Corporation) -- C:\Windows\System32\deployJava1.dll
[2013.02.13 03:21:25 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Sony Shared
[2013.02.13 03:17:03 | 000,000,000 | ---D | C] -- C:\Program Files\WIDCOMM
[2013.02.13 03:16:21 | 000,000,000 | ---D | C] -- C:\Program Files\Synaptics
[2013.02.13 03:15:51 | 000,000,000 | ---D | C] -- C:\Windows\System32\sda
[2013.02.13 03:15:42 | 009,888,360 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\System32\RtsUStoricon.dll
[2013.02.13 03:15:42 | 000,313,960 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\System32\RtsUStor.dll
[2013.02.13 03:15:42 | 000,197,224 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\System32\drivers\RtsUStor.sys
[2013.02.13 03:15:27 | 000,000,000 | ---D | C] -- C:\Program Files\AMD APP
[2013.02.13 03:15:24 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\ATI Technologies
[2013.02.13 03:15:19 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD VISION Engine Control Center
[2013.02.13 03:14:24 | 000,000,000 | ---D | C] -- C:\ProgramData\AMD
[2013.02.13 03:14:19 | 000,037,944 | ---- | C] (Advanced Micro Devices) -- C:\Windows\System32\drivers\amdiox86.sys
[2013.02.13 03:13:52 | 000,000,000 | ---D | C] -- C:\Program Files\ATI Technologies
[2013.02.13 03:11:54 | 000,000,000 | ---D | C] -- C:\Windows\System32\RTCOM
[2013.02.13 03:11:29 | 001,829,992 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\System32\RtkPgExt.dll
[2013.02.13 03:11:29 | 001,783,056 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\System32\WavesLib.dll
[2013.02.13 03:11:29 | 001,738,072 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\System32\WavesGUILib.dll
[2013.02.13 03:11:29 | 001,084,008 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\System32\RTSndMgr.cpl
[2013.02.13 03:11:29 | 000,345,328 | ---- | C] (SRS Labs, Inc.) -- C:\Windows\System32\SRSTSXT.dll
[2013.02.13 03:11:29 | 000,214,352 | ---- | C] (Virage Logic Corporation / Sonic Focus) -- C:\Windows\System32\SFNHK.dll
[2013.02.13 03:11:29 | 000,185,584 | ---- | C] (SRS Labs, Inc.) -- C:\Windows\System32\SRSTSHD.dll
[2013.02.13 03:11:29 | 000,173,296 | ---- | C] (SRS Labs, Inc.) -- C:\Windows\System32\SRSHP360.dll
[2013.02.13 03:11:29 | 000,140,528 | ---- | C] (SRS Labs, Inc.) -- C:\Windows\System32\SRSWOW.dll
[2013.02.13 03:11:29 | 000,074,064 | ---- | C] (Virage Logic Corporation / Sonic Focus) -- C:\Windows\System32\SFCOM.dll
[2013.02.13 03:11:29 | 000,068,944 | ---- | C] (Virage Logic Corporation / Sonic Focus) -- C:\Windows\System32\SFAPO.dll
[2013.02.13 03:11:28 | 003,604,584 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\System32\RtkAPO.dll
[2013.02.13 03:11:28 | 001,938,704 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\System32\MaxxAudioEQ.dll
[2013.02.13 03:11:28 | 001,327,104 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\System32\MaxxAudioRealtek.dll
[2013.02.13 03:11:28 | 000,371,816 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\System32\RCoRes.dat
[2013.02.13 03:11:28 | 000,367,208 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\System32\RtkApoApi.dll
[2013.02.13 03:11:28 | 000,357,576 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\System32\RTEEP32A.dll
[2013.02.13 03:11:28 | 000,293,584 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\System32\RP3DHT32.dll
[2013.02.13 03:11:28 | 000,293,584 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\System32\RP3DAA32.dll
[2013.02.13 03:11:28 | 000,252,928 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\System32\MaxxAudioAPO30.dll
[2013.02.13 03:11:28 | 000,252,760 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\System32\MaxxVolumeSDAPO.dll
[2013.02.13 03:11:28 | 000,232,792 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\System32\MaxxAudioAPO20.dll
[2013.02.13 03:11:28 | 000,168,648 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\System32\RTEED32A.dll
[2013.02.13 03:11:28 | 000,132,368 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\System32\MaxxAudioAPO.dll
[2013.02.13 03:11:28 | 000,076,488 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\System32\RTEEL32A.dll
[2013.02.13 03:11:28 | 000,064,616 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\System32\RtkCoInst.dll
[2013.02.13 03:11:28 | 000,062,664 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\System32\RTEEG32A.dll
[2013.02.13 03:11:27 | 001,251,944 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\RtlExUpd.dll
[2013.02.13 03:11:27 | 001,131,280 | ---- | C] (DTS) -- C:\Windows\System32\DTSS2SpeakerDLL.dll
[2013.02.13 03:11:27 | 000,961,296 | ---- | C] (DTS) -- C:\Windows\System32\DTSS2HeadphoneDLL.dll
[2013.02.13 03:11:27 | 000,900,368 | ---- | C] (DTS) -- C:\Windows\System32\DTSBoostDLL.dll
[2013.02.13 03:11:27 | 000,448,272 | ---- | C] (DTS) -- C:\Windows\System32\DTSBassEnhancementDLL.dll
[2013.02.13 03:11:27 | 000,427,792 | ---- | C] (DTS) -- C:\Windows\System32\DTSSymmetryDLL.dll
[2013.02.13 03:11:27 | 000,405,776 | ---- | C] (DTS) -- C:\Windows\System32\DTSVoiceClarityDLL.dll
[2013.02.13 03:11:27 | 000,299,424 | ---- | C] (Fortemedia Corporation) -- C:\Windows\System32\FMAPO.dll
[2013.02.13 03:11:27 | 000,290,064 | ---- | C] (DTS) -- C:\Windows\System32\DTSNeoPCDLL.dll
[2013.02.13 03:11:27 | 000,235,280 | ---- | C] (DTS) -- C:\Windows\System32\DTSGainCompensatorDLL.dll
[2013.02.13 03:11:27 | 000,223,504 | ---- | C] (DTS) -- C:\Windows\System32\DTSLimiterDLL.dll
[2013.02.13 03:11:27 | 000,175,200 | ---- | C] (Andrea Electronics Corporation) -- C:\Windows\System32\AERTACap.dll
[2013.02.13 03:11:27 | 000,104,672 | ---- | C] (DTS) -- C:\Windows\System32\DTSLFXAPO.dll
[2013.02.13 03:11:27 | 000,104,672 | ---- | C] (DTS) -- C:\Windows\System32\DTSGFXAPO.dll
[2013.02.13 03:11:27 | 000,104,160 | ---- | C] (DTS) -- C:\Windows\System32\DTSGFXAPONS.dll
[2013.02.13 03:11:27 | 000,096,160 | ---- | C] (Andrea Electronics Corporation) -- C:\Windows\System32\AERTARen.dll
[2013.02.13 03:11:27 | 000,000,000 | -H-D | C] -- C:\Program Files\Temp
[2013.02.13 03:11:27 | 000,000,000 | -H-D | C] -- C:\Program Files\InstallShield Installation Information
[2013.02.13 03:11:27 | 000,000,000 | ---D | C] -- C:\Program Files\Realtek
[2013.02.13 03:11:22 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\InstallShield
[2013.02.13 03:08:10 | 000,035,968 | ---- | C] (Advanced Micro Devices) -- C:\Windows\System32\drivers\usbfilter.sys
[2013.02.13 03:08:10 | 000,000,000 | ---D | C] -- C:\Windows\System32\DRVSTORE
[2013.02.13 03:08:09 | 000,000,000 | ---D | C] -- C:\Program Files\ATI
[2013.02.13 03:05:34 | 000,074,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\fsutil.exe
[2013.02.13 03:05:33 | 000,148,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\storport.sys
[2013.02.13 03:02:38 | 000,000,000 | ---D | C] -- C:\ProgramData\Sony Corporation
[2013.02.13 02:57:18 | 000,000,000 | ---D | C] -- C:\Windows\SoftwareDistribution
[2013.02.13 02:54:04 | 000,000,000 | -HSD | C] -- C:\System Volume Information
[2013.02.13 02:53:19 | 000,000,000 | ---D | C] -- C:\Program Files\Sony
[2013.02.13 02:50:51 | 000,000,000 | ---D | C] -- C:\Windows\de-DE
[2013.02.13 02:50:50 | 000,000,000 | ---D | C] -- C:\Windows\System32\winrm
[2013.02.13 02:50:50 | 000,000,000 | ---D | C] -- C:\Windows\DigitalLocker
[2013.02.13 02:50:49 | 000,000,000 | ---D | C] -- C:\Windows\System32\XPSViewer
[2013.02.13 02:50:49 | 000,000,000 | ---D | C] -- C:\Windows\System32\slmgr
[2013.02.13 02:50:49 | 000,000,000 | ---D | C] -- C:\Windows\System32\0407
[2013.02.13 02:50:48 | 000,000,000 | ---D | C] -- C:\Windows\System32\WCN
[2013.02.13 02:50:48 | 000,000,000 | ---D | C] -- C:\Windows\System32\Printing_Admin_Scripts
[2013.02.13 02:50:48 | 000,000,000 | ---D | C] -- C:\Windows\System32\drivers\de-DE
[2013.02.13 02:50:48 | 000,000,000 | ---D | C] -- C:\Windows\System32\de
[2013.02.13 02:50:07 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\de-DE\usbrpm.sys.mui
[2013.02.13 02:50:01 | 000,017,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\de-DE\fvevol.sys.mui
[2013.02.13 02:49:46 | 000,017,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\de-DE\nwifi.sys.mui
[2013.02.13 02:49:46 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\de-DE\qwavedrv.sys.mui
[2013.02.13 02:49:37 | 000,033,280 | ---- | C] (Marvell) -- C:\Windows\System32\drivers\de-DE\yk62x86.sys.mui
[2013.02.13 02:49:37 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\de-DE\volsnap.sys.mui
[2013.02.13 02:49:37 | 000,025,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\de-DE\usbport.sys.mui
[2013.02.13 02:49:37 | 000,025,088 | ---- | C] (Intel Corporation) -- C:\Windows\System32\drivers\de-DE\e1y6032.sys.mui
[2013.02.13 02:49:37 | 000,025,088 | ---- | C] (Intel Corporation) -- C:\Windows\System32\drivers\de-DE\e1e6032.sys.mui
[2013.02.13 02:49:37 | 000,022,016 | ---- | C] (Intel Corporation) -- C:\Windows\System32\drivers\de-DE\E1G60I32.sys.mui
[2013.02.13 02:49:37 | 000,020,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\de-DE\viac7.sys.mui
[2013.02.13 02:49:37 | 000,020,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\de-DE\processr.sys.mui
[2013.02.13 02:49:37 | 000,020,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\de-DE\intelppm.sys.mui
[2013.02.13 02:49:37 | 000,020,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\de-DE\amdppm.sys.mui
[2013.02.13 02:49:37 | 000,020,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\de-DE\amdk8.sys.mui
[2013.02.13 02:49:37 | 000,013,312 | ---- | C] (Intel Corporation) -- C:\Windows\System32\drivers\de-DE\e1q6032.sys.mui
[2013.02.13 02:49:37 | 000,013,312 | ---- | C] (Intel Corporation) -- C:\Windows\System32\drivers\de-DE\e1k6032.sys.mui
[2013.02.13 02:49:37 | 000,013,312 | ---- | C] (Broadcom Corporation) -- C:\Windows\System32\drivers\de-DE\k57nd60x.sys.mui
[2013.02.13 02:49:37 | 000,013,312 | ---- | C] (Broadcom Corporation) -- C:\Windows\System32\drivers\de-DE\b57nd60x.sys.mui
[2013.02.13 02:49:37 | 000,011,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\de-DE\usbhub.sys.mui
[2013.02.13 02:49:37 | 000,011,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\de-DE\serial.sys.mui
[2013.02.13 02:49:37 | 000,011,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\de-DE\ohci1394.sys.mui
[2013.02.13 02:49:37 | 000,011,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\de-DE\1394ohci.sys.mui
[2013.02.13 02:49:37 | 000,011,776 | ---- | C] (Brother Industries Ltd.) -- C:\Windows\System32\drivers\de-DE\BrSerIb.sys.mui
[2013.02.13 02:49:37 | 000,010,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\de-DE\i8042prt.sys.mui
[2013.02.13 02:49:37 | 000,010,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\de-DE\acpi.sys.mui
[2013.02.13 02:49:37 | 000,010,752 | ---- | C] (Agere Systems) -- C:\Windows\System32\drivers\de-DE\ltmdmnt.sys.mui
[2013.02.13 02:49:37 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\de-DE\battc.sys.mui
[2013.02.13 02:49:37 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\de-DE\pci.sys.mui
[2013.02.13 02:49:37 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\de-DE\bthport.sys.mui
[2013.02.13 02:49:37 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\de-DE\IPMIDrv.sys.mui
[2013.02.13 02:49:37 | 000,006,144 | ---- | C] (Broadcom Corporation) -- C:\Windows\System32\drivers\de-DE\bcm4sbxp.sys.mui
[2013.02.13 02:49:37 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\de-DE\sermouse.sys.mui
[2013.02.13 02:49:37 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\de-DE\kbdclass.sys.mui
[2013.02.13 02:49:37 | 000,005,120 | ---- | C] (Intel Corporation) -- C:\Windows\System32\drivers\de-DE\e100b325.sys.mui
[2013.02.13 02:49:37 | 000,004,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\de-DE\vdrvroot.sys.mui
[2013.02.13 02:49:37 | 000,004,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\de-DE\mouclass.sys.mui
[2013.02.13 02:49:37 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\de-DE\wacompen.sys.mui
[2013.02.13 02:49:37 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\de-DE\vhdmp.sys.mui
[2013.02.13 02:49:37 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\de-DE\tpm.sys.mui
[2013.02.13 02:49:37 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\de-DE\isapnp.sys.mui
[2013.02.13 02:49:37 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\de-DE\hdaudbus.sys.mui
[2013.02.13 02:49:37 | 000,003,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\de-DE\parport.sys.mui
[2013.02.13 02:49:37 | 000,003,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\de-DE\ataport.sys.mui
[2013.02.13 02:49:37 | 000,003,584 | ---- | C] (ATI Technologies Inc.) -- C:\Windows\System32\drivers\de-DE\atikmdag.sys.mui
[2013.02.13 02:49:37 | 000,003,072 | ---- | C] (VIA Technologies, Inc.              ) -- C:\Windows\System32\drivers\de-DE\getn62.sys.mui
[2013.02.13 02:49:37 | 000,003,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\de-DE\umbus.sys.mui
[2013.02.13 02:49:37 | 000,003,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\de-DE\parvdm.sys.mui
[2013.02.13 02:49:37 | 000,003,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\de-DE\mssmbios.sys.mui
[2013.02.13 02:49:37 | 000,003,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\de-DE\mouhid.sys.mui
[2013.02.13 02:49:37 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\de-DE\vwifibus.sys.mui
[2013.02.13 02:49:37 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\de-DE\VIAAGP.SYS.mui
[2013.02.13 02:49:37 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\de-DE\ULIAGPKX.SYS.mui
[2013.02.13 02:49:37 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\de-DE\UAGP35.SYS.mui
[2013.02.13 02:49:37 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\de-DE\SISAGP.SYS.mui
[2013.02.13 02:49:37 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\de-DE\NV_AGP.SYS.mui
[2013.02.13 02:49:37 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\de-DE\MTConfig.sys.mui
[2013.02.13 02:49:37 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\de-DE\kbdhid.sys.mui
[2013.02.13 02:49:37 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\de-DE\GAGP30KX.SYS.mui
[2013.02.13 02:49:37 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\de-DE\disk.sys.mui
[2013.02.13 02:49:37 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\de-DE\BTHUSB.SYS.mui
[2013.02.13 02:49:37 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\de-DE\AMDAGP.SYS.mui
[2013.02.13 02:49:37 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\de-DE\AGP440.sys.mui
[2013.02.13 02:49:37 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\de-DE\wd.sys.mui
[2013.02.13 02:49:37 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\de-DE\cdrom.sys.mui
[2013.02.13 02:49:37 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\de-DE\bthenum.sys.mui
[2013.02.13 02:49:37 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\de-DE\amdide.sys.mui
[2013.02.13 02:49:34 | 000,038,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\de-DE\mpio.sys.mui
[2013.02.13 02:49:34 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\de-DE\afd.sys.mui
[2013.02.13 02:49:34 | 000,011,776 | ---- | C] (Brother Industries Ltd.) -- C:\Windows\System32\drivers\de-DE\BrSerId.sys.mui
[2013.02.13 02:49:34 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\de-DE\msdsm.sys.mui
[2013.02.13 02:49:34 | 000,004,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\de-DE\pcmcia.sys.mui
[2013.02.13 02:49:34 | 000,004,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\de-DE\bthpan.sys.mui
[2013.02.13 02:49:34 | 000,004,096 | ---- | C] (SCM Microsystems, Inc.) -- C:\Windows\System32\drivers\de-DE\pscr.sys.mui
[2013.02.13 02:49:34 | 000,003,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\de-DE\tsusbflt.sys.mui
[2013.02.13 02:49:34 | 000,003,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\de-DE\portcls.sys.mui
[2013.02.13 02:49:34 | 000,003,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\de-DE\modem.sys.mui
[2013.02.13 02:49:34 | 000,003,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\de-DE\ipnat.sys.mui
[2013.02.13 02:49:34 | 000,003,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\de-DE\HdAudio.sys.mui
[2013.02.13 02:49:34 | 000,003,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\de-DE\serscan.sys.mui
[2013.02.13 02:49:34 | 000,003,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\de-DE\rndismpx.sys.mui
[2013.02.13 02:49:34 | 000,003,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\de-DE\rndismp6.sys.mui
[2013.02.13 02:49:34 | 000,003,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\de-DE\hidbth.sys.mui
[2013.02.13 02:49:34 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\de-DE\volmgrx.sys.mui
[2013.02.13 02:49:34 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\de-DE\pnpmem.sys.mui
[2013.02.13 02:49:34 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\de-DE\Dot4usb.sys.mui
[2013.02.13 02:49:34 | 000,002,560 | ---- | C] (Brother Industries Ltd.) -- C:\Windows\System32\drivers\de-DE\BrParwdm.sys.mui
[2013.02.13 02:49:30 | 000,072,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\de-DE\ntfs.sys.mui
[2013.02.13 02:49:30 | 000,009,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\de-DE\tunnel.sys.mui
[2013.02.13 02:49:30 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\de-DE\luafv.sys.mui
[2013.02.13 02:49:30 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\de-DE\rdbss.sys.mui
[2013.02.13 02:49:30 | 000,003,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\de-DE\ndisuio.sys.mui
[2013.02.13 02:49:30 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\de-DE\srv.sys.mui
[2013.02.13 02:49:30 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\de-DE\partmgr.sys.mui
[2013.02.13 02:49:30 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\de-DE\mountmgr.sys.mui
[2013.02.13 02:49:26 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\de-DE\ndiscap.sys.mui
[2013.02.13 02:49:26 | 000,003,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\de-DE\RNDISMP.sys.mui
[2013.02.13 02:49:26 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\de-DE\scfilter.sys.mui
[2013.02.13 02:49:22 | 000,041,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\de-DE\ndis.sys.mui
[2013.02.13 02:49:22 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\de-DE\fltmgr.sys.mui
[2013.02.13 02:49:22 | 000,003,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\de-DE\scsiport.sys.mui
[2013.02.13 02:49:22 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\de-DE\wdf01000.sys.mui
[2013.02.13 02:49:18 | 000,051,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\de-DE\tcpip.sys.mui
[2013.02.13 02:49:18 | 000,044,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\de-DE\http.sys.mui
[2013.02.13 02:49:18 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\de-DE\pacer.sys.mui
[2013.02.13 02:49:18 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\de-DE\rdpwd.sys.mui
[2013.02.13 02:49:18 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\de-DE\ws2ifsl.sys.mui
[2013.02.13 02:49:15 | 000,029,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\de-DE\bfe.dll.mui
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
 
========== Files - Modified Within 30 Days ==========
 
[2013.02.25 22:47:47 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2013.02.25 22:28:32 | 000,000,884 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2013.02.25 17:26:07 | 000,001,909 | ---- | M] () -- C:\Users\Public\Desktop\HitmanPro.lnk
[2013.02.25 15:03:20 | 000,000,000 | -H-- | M] () -- C:\Windows\System32\drivers\Msft_User_WpdMtpDr_01_09_00.Wdf
[2013.02.25 13:27:32 | 000,020,400 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2013.02.25 13:27:32 | 000,020,400 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2013.02.25 13:26:45 | 000,696,576 | ---- | M] () -- C:\Windows\System32\perfh007.dat
[2013.02.25 13:26:45 | 000,651,854 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2013.02.25 13:26:45 | 000,147,840 | ---- | M] () -- C:\Windows\System32\perfc007.dat
[2013.02.25 13:26:45 | 000,120,786 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2013.02.25 13:19:31 | 2814,562,304 | -HS- | M] () -- C:\hiberfil.sys
[2013.02.24 23:29:27 | 000,861,088 | ---- | M] (Oracle Corporation) -- C:\Windows\System32\npDeployJava1.dll
[2013.02.24 23:29:27 | 000,782,240 | ---- | M] (Oracle Corporation) -- C:\Windows\System32\deployJava1.dll
[2013.02.24 23:29:27 | 000,262,560 | ---- | M] (Oracle Corporation) -- C:\Windows\System32\javaws.exe
[2013.02.24 23:29:27 | 000,174,496 | ---- | M] (Oracle Corporation) -- C:\Windows\System32\javaw.exe
[2013.02.24 23:29:27 | 000,174,496 | ---- | M] (Oracle Corporation) -- C:\Windows\System32\java.exe
[2013.02.24 23:29:27 | 000,094,112 | ---- | M] (Oracle Corporation) -- C:\Windows\System32\WindowsAccessBridge.dll
[2013.02.24 23:28:44 | 031,512,992 | ---- | M] (Oracle Corporation) -- C:\Users\Mirko\Desktop\jre-7u15-windows-i586.exe
[2013.02.24 23:22:11 | 000,691,568 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerApp.exe
[2013.02.24 23:22:11 | 000,071,024 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerCPLApp.cpl
[2013.02.21 02:38:17 | 000,000,056 | -H-- | M] () -- C:\Windows\System32\ezsidmv.dat
[2013.02.20 21:07:47 | 000,001,071 | ---- | M] () -- C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
[2013.02.20 21:06:58 | 010,156,344 | ---- | M] (Malwarebytes Corporation                                    ) -- C:\Users\Mirko\Desktop\mbam-setup-1.70.0.1100.exe
[2013.02.20 20:52:21 | 000,000,027 | ---- | M] () -- C:\Windows\System32\drivers\etc\hosts
[2013.02.20 20:37:10 | 005,034,373 | R--- | M] (Swearware) -- C:\Users\Mirko\Desktop\ComboFix.exe
[2013.02.20 20:06:16 | 000,177,496 | ---- | M] (Kaspersky Lab, GERT) -- C:\Windows\System32\drivers\86168009.sys
[2013.02.20 14:16:20 | 002,237,968 | ---- | M] (Kaspersky Lab ZAO) -- C:\Users\Mirko\Desktop\tdsskiller.exe
[2013.02.19 23:39:33 | 000,374,784 | ---- | M] () -- C:\Users\Mirko\Desktop\GMER_2.1.18952.exe
[2013.02.19 23:09:23 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Mirko\Desktop\OTL.exe
[2013.02.19 23:07:50 | 000,000,000 | ---- | M] () -- C:\Users\Mirko\defogger_reenable
[2013.02.19 23:07:09 | 000,050,477 | ---- | M] () -- C:\Users\Mirko\Desktop\Defogger.exe
[2013.02.14 16:32:14 | 000,380,472 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT
[2013.02.13 18:02:49 | 000,000,400 | ---- | M] () -- C:\Windows\ODBC.INI
[2013.02.13 16:44:22 | 000,002,306 | ---- | M] () -- C:\Users\Public\Desktop\Canon MG6100 series Online-Handbuch.lnk
[2013.02.13 09:59:11 | 000,001,779 | ---- | M] () -- C:\Users\Public\Desktop\Opera.lnk
[2013.02.13 09:47:29 | 000,036,552 | ---- | M] (Avira Operations GmbH & Co. KG) -- C:\Windows\System32\drivers\avkmgr.sys
[2013.02.13 09:47:29 | 000,028,520 | ---- | M] (Avira GmbH) -- C:\Windows\System32\drivers\ssmdrv.sys
[2013.02.13 09:47:28 | 000,134,336 | ---- | M] (Avira Operations GmbH & Co. KG) -- C:\Windows\System32\drivers\avipbb.sys
[2013.02.13 09:47:27 | 000,083,944 | ---- | M] (Avira Operations GmbH & Co. KG) -- C:\Windows\System32\drivers\avgntflt.sys
[2013.02.13 09:36:32 | 000,000,000 | RH-- | M] () -- C:\Windows\System32\drivers\104D_Sony_VPCYB3V1E.mrk
[2013.02.13 09:33:08 | 000,159,772 | ---- | M] () -- C:\Windows\System32\license.rtf
[2013.02.13 04:28:07 | 000,196,608 | ---- | M] () -- C:\Windows\ocsetup_install_OEMHelpCustomization.etl
[2013.02.13 04:25:06 | 097,167,020 | ---- | M] (Axialis Software) -- C:\Windows\System32\VAIO Hero Screensaver - Summer 2011.scr
[2013.02.13 03:20:31 | 000,000,000 | ---- | M] () -- C:\Windows\ativpsrm.bin
[2013.02.13 03:19:02 | 000,000,834 | ---- | M] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Bluetooth.lnk
[2013.02.13 03:16:26 | 000,000,000 | -H-- | M] () -- C:\Windows\System32\drivers\Msft_Kernel_SynTP_01009.Wdf
[2013.02.13 02:58:08 | 000,000,000 | -H-- | M] () -- C:\Windows\System32\drivers\Msft_User_WpdFs_01_09_00.Wdf
[2013.02.13 02:50:34 | 000,295,922 | ---- | M] () -- C:\Windows\System32\perfi007.dat
[2013.02.13 02:50:34 | 000,038,104 | ---- | M] () -- C:\Windows\System32\perfd007.dat
[2013.02.13 02:50:07 | 000,002,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\de-DE\usbrpm.sys.mui
[2013.02.13 02:50:01 | 000,017,920 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\de-DE\fvevol.sys.mui
[2013.02.13 02:49:50 | 000,002,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\UMDF\de-DE\WpdMtpDr.dll.mui
[2013.02.13 02:49:46 | 000,017,408 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\de-DE\nwifi.sys.mui
[2013.02.13 02:49:46 | 000,002,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\de-DE\qwavedrv.sys.mui
[2013.02.13 02:49:37 | 000,033,280 | ---- | M] (Marvell) -- C:\Windows\System32\drivers\de-DE\yk62x86.sys.mui
[2013.02.13 02:49:37 | 000,028,672 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\de-DE\volsnap.sys.mui
[2013.02.13 02:49:37 | 000,025,088 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\de-DE\usbport.sys.mui
[2013.02.13 02:49:37 | 000,025,088 | ---- | M] (Intel Corporation) -- C:\Windows\System32\drivers\de-DE\e1y6032.sys.mui
[2013.02.13 02:49:37 | 000,025,088 | ---- | M] (Intel Corporation) -- C:\Windows\System32\drivers\de-DE\e1e6032.sys.mui
[2013.02.13 02:49:37 | 000,022,016 | ---- | M] (Intel Corporation) -- C:\Windows\System32\drivers\de-DE\E1G60I32.sys.mui
[2013.02.13 02:49:37 | 000,020,992 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\de-DE\viac7.sys.mui
[2013.02.13 02:49:37 | 000,020,992 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\de-DE\processr.sys.mui
[2013.02.13 02:49:37 | 000,020,992 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\de-DE\intelppm.sys.mui
[2013.02.13 02:49:37 | 000,020,992 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\de-DE\amdppm.sys.mui
[2013.02.13 02:49:37 | 000,020,992 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\de-DE\amdk8.sys.mui
[2013.02.13 02:49:37 | 000,013,312 | ---- | M] (Intel Corporation) -- C:\Windows\System32\drivers\de-DE\e1q6032.sys.mui
[2013.02.13 02:49:37 | 000,013,312 | ---- | M] (Intel Corporation) -- C:\Windows\System32\drivers\de-DE\e1k6032.sys.mui
[2013.02.13 02:49:37 | 000,013,312 | ---- | M] (Broadcom Corporation) -- C:\Windows\System32\drivers\de-DE\k57nd60x.sys.mui
[2013.02.13 02:49:37 | 000,013,312 | ---- | M] (Broadcom Corporation) -- C:\Windows\System32\drivers\de-DE\b57nd60x.sys.mui
[2013.02.13 02:49:37 | 000,011,776 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\de-DE\usbhub.sys.mui
[2013.02.13 02:49:37 | 000,011,776 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\de-DE\serial.sys.mui
[2013.02.13 02:49:37 | 000,011,776 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\de-DE\ohci1394.sys.mui
[2013.02.13 02:49:37 | 000,011,776 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\de-DE\1394ohci.sys.mui
[2013.02.13 02:49:37 | 000,011,776 | ---- | M] (Brother Industries Ltd.) -- C:\Windows\System32\drivers\de-DE\BrSerIb.sys.mui
[2013.02.13 02:49:37 | 000,010,752 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\de-DE\i8042prt.sys.mui
[2013.02.13 02:49:37 | 000,010,752 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\de-DE\acpi.sys.mui
[2013.02.13 02:49:37 | 000,010,752 | ---- | M] (Agere Systems) -- C:\Windows\System32\drivers\de-DE\ltmdmnt.sys.mui
[2013.02.13 02:49:37 | 000,009,728 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\de-DE\battc.sys.mui
[2013.02.13 02:49:37 | 000,008,192 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\de-DE\pci.sys.mui
[2013.02.13 02:49:37 | 000,008,192 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\de-DE\bthport.sys.mui
[2013.02.13 02:49:37 | 000,006,656 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\de-DE\IPMIDrv.sys.mui
[2013.02.13 02:49:37 | 000,006,144 | ---- | M] (Broadcom Corporation) -- C:\Windows\System32\drivers\de-DE\bcm4sbxp.sys.mui
[2013.02.13 02:49:37 | 000,005,632 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\de-DE\sermouse.sys.mui
[2013.02.13 02:49:37 | 000,005,120 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\de-DE\kbdclass.sys.mui
[2013.02.13 02:49:37 | 000,005,120 | ---- | M] (Intel Corporation) -- C:\Windows\System32\drivers\de-DE\e100b325.sys.mui
[2013.02.13 02:49:37 | 000,004,608 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\de-DE\vdrvroot.sys.mui
[2013.02.13 02:49:37 | 000,004,608 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\de-DE\mouclass.sys.mui
[2013.02.13 02:49:37 | 000,004,096 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\de-DE\wacompen.sys.mui
[2013.02.13 02:49:37 | 000,004,096 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\de-DE\vhdmp.sys.mui
[2013.02.13 02:49:37 | 000,004,096 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\de-DE\tpm.sys.mui
[2013.02.13 02:49:37 | 000,004,096 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\de-DE\isapnp.sys.mui
[2013.02.13 02:49:37 | 000,004,096 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\de-DE\hdaudbus.sys.mui
[2013.02.13 02:49:37 | 000,003,584 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\de-DE\parport.sys.mui
[2013.02.13 02:49:37 | 000,003,584 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\de-DE\ataport.sys.mui
[2013.02.13 02:49:37 | 000,003,584 | ---- | M] (ATI Technologies Inc.) -- C:\Windows\System32\drivers\de-DE\atikmdag.sys.mui
[2013.02.13 02:49:37 | 000,003,072 | ---- | M] (VIA Technologies, Inc.              ) -- C:\Windows\System32\drivers\de-DE\getn62.sys.mui
[2013.02.13 02:49:37 | 000,003,072 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\de-DE\umbus.sys.mui
[2013.02.13 02:49:37 | 000,003,072 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\de-DE\parvdm.sys.mui
[2013.02.13 02:49:37 | 000,003,072 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\de-DE\mssmbios.sys.mui
[2013.02.13 02:49:37 | 000,003,072 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\de-DE\mouhid.sys.mui
[2013.02.13 02:49:37 | 000,002,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\de-DE\vwifibus.sys.mui
[2013.02.13 02:49:37 | 000,002,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\de-DE\VIAAGP.SYS.mui
[2013.02.13 02:49:37 | 000,002,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\de-DE\ULIAGPKX.SYS.mui
[2013.02.13 02:49:37 | 000,002,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\de-DE\UAGP35.SYS.mui
[2013.02.13 02:49:37 | 000,002,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\de-DE\SISAGP.SYS.mui
[2013.02.13 02:49:37 | 000,002,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\de-DE\NV_AGP.SYS.mui
[2013.02.13 02:49:37 | 000,002,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\de-DE\MTConfig.sys.mui
[2013.02.13 02:49:37 | 000,002,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\de-DE\kbdhid.sys.mui
[2013.02.13 02:49:37 | 000,002,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\de-DE\GAGP30KX.SYS.mui
[2013.02.13 02:49:37 | 000,002,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\de-DE\disk.sys.mui
[2013.02.13 02:49:37 | 000,002,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\de-DE\BTHUSB.SYS.mui
[2013.02.13 02:49:37 | 000,002,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\de-DE\AMDAGP.SYS.mui
[2013.02.13 02:49:37 | 000,002,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\de-DE\AGP440.sys.mui
[2013.02.13 02:49:37 | 000,002,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\de-DE\wd.sys.mui
[2013.02.13 02:49:37 | 000,002,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\de-DE\cdrom.sys.mui
[2013.02.13 02:49:37 | 000,002,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\de-DE\bthenum.sys.mui
[2013.02.13 02:49:37 | 000,002,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\de-DE\amdide.sys.mui
[2013.02.13 02:49:34 | 000,038,912 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\de-DE\mpio.sys.mui
[2013.02.13 02:49:34 | 000,016,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\de-DE\afd.sys.mui
[2013.02.13 02:49:34 | 000,011,776 | ---- | M] (Brother Industries Ltd.) -- C:\Windows\System32\drivers\de-DE\BrSerId.sys.mui
[2013.02.13 02:49:34 | 000,007,168 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\de-DE\msdsm.sys.mui
[2013.02.13 02:49:34 | 000,006,656 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\UMDF\de-DE\WUDFUsbccidDriver.dll.mui
[2013.02.13 02:49:34 | 000,004,608 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\de-DE\pcmcia.sys.mui
[2013.02.13 02:49:34 | 000,004,608 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\de-DE\bthpan.sys.mui
[2013.02.13 02:49:34 | 000,004,096 | ---- | M] (SCM Microsystems, Inc.) -- C:\Windows\System32\drivers\de-DE\pscr.sys.mui
[2013.02.13 02:49:34 | 000,003,584 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\de-DE\tsusbflt.sys.mui
[2013.02.13 02:49:34 | 000,003,584 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\de-DE\portcls.sys.mui
[2013.02.13 02:49:34 | 000,003,584 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\de-DE\modem.sys.mui
[2013.02.13 02:49:34 | 000,003,584 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\de-DE\ipnat.sys.mui
[2013.02.13 02:49:34 | 000,003,584 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\de-DE\HdAudio.sys.mui
[2013.02.13 02:49:34 | 000,003,072 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\de-DE\serscan.sys.mui
[2013.02.13 02:49:34 | 000,003,072 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\de-DE\rndismpx.sys.mui
[2013.02.13 02:49:34 | 000,003,072 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\de-DE\rndismp6.sys.mui
[2013.02.13 02:49:34 | 000,003,072 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\de-DE\hidbth.sys.mui
[2013.02.13 02:49:34 | 000,002,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\de-DE\volmgrx.sys.mui
[2013.02.13 02:49:34 | 000,002,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\de-DE\pnpmem.sys.mui
[2013.02.13 02:49:34 | 000,002,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\de-DE\Dot4usb.sys.mui
[2013.02.13 02:49:34 | 000,002,560 | ---- | M] (Brother Industries Ltd.) -- C:\Windows\System32\drivers\de-DE\BrParwdm.sys.mui
[2013.02.13 02:49:30 | 000,072,192 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\de-DE\ntfs.sys.mui
[2013.02.13 02:49:30 | 000,009,216 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\de-DE\tunnel.sys.mui
[2013.02.13 02:49:30 | 000,007,168 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\de-DE\luafv.sys.mui
[2013.02.13 02:49:30 | 000,005,120 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\de-DE\rdbss.sys.mui
[2013.02.13 02:49:30 | 000,003,072 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\de-DE\ndisuio.sys.mui
[2013.02.13 02:49:30 | 000,002,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\de-DE\srv.sys.mui
[2013.02.13 02:49:30 | 000,002,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\de-DE\partmgr.sys.mui
[2013.02.13 02:49:30 | 000,002,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\de-DE\mountmgr.sys.mui
[2013.02.13 02:49:26 | 000,005,632 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\de-DE\ndiscap.sys.mui
[2013.02.13 02:49:26 | 000,003,072 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\de-DE\RNDISMP.sys.mui
[2013.02.13 02:49:26 | 000,002,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\de-DE\scfilter.sys.mui
[2013.02.13 02:49:22 | 000,041,984 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\de-DE\ndis.sys.mui
[2013.02.13 02:49:22 | 000,005,632 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\de-DE\fltmgr.sys.mui
[2013.02.13 02:49:22 | 000,003,072 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\de-DE\scsiport.sys.mui
[2013.02.13 02:49:22 | 000,002,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\de-DE\wdf01000.sys.mui
[2013.02.13 02:49:18 | 000,051,712 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\de-DE\tcpip.sys.mui
[2013.02.13 02:49:18 | 000,044,032 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\de-DE\http.sys.mui
[2013.02.13 02:49:18 | 000,016,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\de-DE\pacer.sys.mui
[2013.02.13 02:49:18 | 000,002,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\de-DE\rdpwd.sys.mui
[2013.02.13 02:49:18 | 000,002,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\de-DE\ws2ifsl.sys.mui
[2013.02.13 02:49:15 | 000,029,696 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\de-DE\bfe.dll.mui
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
 
========== Files Created - No Company Name ==========
 
[2013.02.25 17:26:07 | 000,001,909 | ---- | C] () -- C:\Users\Public\Desktop\HitmanPro.lnk
[2013.02.25 15:03:20 | 000,000,000 | -H-- | C] () -- C:\Windows\System32\drivers\Msft_User_WpdMtpDr_01_09_00.Wdf
[2013.02.24 23:22:15 | 000,000,884 | ---- | C] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2013.02.21 02:38:17 | 000,000,056 | -H-- | C] () -- C:\Windows\System32\ezsidmv.dat
[2013.02.20 21:07:47 | 000,001,071 | ---- | C] () -- C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
[2013.02.20 20:42:29 | 000,256,000 | ---- | C] () -- C:\Windows\PEV.exe
[2013.02.20 20:42:29 | 000,208,896 | ---- | C] () -- C:\Windows\MBR.exe
[2013.02.20 20:42:29 | 000,098,816 | ---- | C] () -- C:\Windows\sed.exe
[2013.02.20 20:42:29 | 000,080,412 | ---- | C] () -- C:\Windows\grep.exe
[2013.02.20 20:42:29 | 000,068,096 | ---- | C] () -- C:\Windows\zip.exe
[2013.02.19 23:39:33 | 000,374,784 | ---- | C] () -- C:\Users\Mirko\Desktop\GMER_2.1.18952.exe
[2013.02.19 23:07:50 | 000,000,000 | ---- | C] () -- C:\Users\Mirko\defogger_reenable
[2013.02.19 23:07:09 | 000,050,477 | ---- | C] () -- C:\Users\Mirko\Desktop\Defogger.exe
[2013.02.15 12:55:07 | 000,002,441 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk
[2013.02.14 00:12:51 | 000,001,145 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VAIO Update.lnk
[2013.02.13 18:02:49 | 000,000,400 | ---- | C] () -- C:\Windows\ODBC.INI
[2013.02.13 16:50:07 | 000,013,056 | ---- | C] () -- C:\Windows\System32\CNC174AD.TBL
[2013.02.13 16:44:22 | 000,002,306 | ---- | C] () -- C:\Users\Public\Desktop\Canon MG6100 series Online-Handbuch.lnk
[2013.02.13 09:59:11 | 000,001,791 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Opera.lnk
[2013.02.13 09:59:11 | 000,001,779 | ---- | C] () -- C:\Users\Public\Desktop\Opera.lnk
[2013.02.13 09:37:47 | 000,001,413 | ---- | C] () -- C:\Users\Mirko\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
[2013.02.13 09:36:32 | 000,000,000 | RH-- | C] () -- C:\Windows\System32\drivers\104D_Sony_VPCYB3V1E.mrk
[2013.02.13 09:36:14 | 000,001,965 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Music Unlimited powered by Qriocity.lnk
[2013.02.13 04:29:46 | 2814,562,304 | -HS- | C] () -- C:\hiberfil.sys
[2013.02.13 04:29:11 | 000,002,170 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VAIO Care.lnk
[2013.02.13 04:28:27 | 000,002,197 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VAIO Smart Network.lnk
[2013.02.13 04:27:43 | 000,196,608 | ---- | C] () -- C:\Windows\ocsetup_install_OEMHelpCustomization.etl
[2013.02.13 04:27:26 | 000,001,233 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VAIO Transfer.lnk
[2013.02.13 04:26:29 | 000,002,072 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VAIO Gate.lnk
[2013.02.13 04:25:50 | 000,001,798 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VAIO Easy Connect.lnk
[2013.02.13 04:25:46 | 000,002,203 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VAIO Data Restore Tool.lnk
[2013.02.13 04:22:35 | 000,001,147 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Remote Keyboard.lnk
[2013.02.13 04:16:11 | 000,001,097 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PMB.lnk
[2013.02.13 03:49:52 | 000,001,251 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live Movie Maker.lnk
[2013.02.13 03:49:35 | 000,001,320 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live Photo Gallery.lnk
[2013.02.13 03:44:49 | 000,001,404 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live Mail.lnk
[2013.02.13 03:34:54 | 000,002,432 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live Messenger.lnk
[2013.02.13 03:27:42 | 000,001,953 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VAIO Manual.lnk
[2013.02.13 03:27:05 | 000,001,479 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VAIO Control Center.lnk
[2013.02.13 03:20:31 | 000,000,000 | ---- | C] () -- C:\Windows\ativpsrm.bin
[2013.02.13 03:17:13 | 000,000,834 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Bluetooth.lnk
[2013.02.13 03:16:26 | 000,000,000 | -H-- | C] () -- C:\Windows\System32\drivers\Msft_Kernel_SynTP_01009.Wdf
[2013.02.13 03:00:18 | 000,001,345 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Media Center.lnk
[2013.02.13 03:00:00 | 000,001,326 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows DVD Maker.lnk
[2013.02.13 02:58:08 | 000,000,000 | -H-- | C] () -- C:\Windows\System32\drivers\Msft_User_WpdFs_01_09_00.Wdf
[2013.02.13 02:51:26 | 000,295,922 | ---- | C] () -- C:\Windows\System32\perfi007.dat
[2013.02.13 02:51:24 | 000,696,576 | ---- | C] () -- C:\Windows\System32\perfh007.dat
[2013.02.13 02:51:24 | 000,147,840 | ---- | C] () -- C:\Windows\System32\perfc007.dat
[2013.02.13 02:51:24 | 000,038,104 | ---- | C] () -- C:\Windows\System32\perfd007.dat
[2011.07.04 08:44:44 | 000,233,765 | ---- | C] () -- C:\Windows\System32\atiicdxx.dat
[2011.07.04 08:44:44 | 000,003,929 | ---- | C] () -- C:\Windows\System32\atipblag.dat
[2011.05.24 23:44:26 | 000,059,904 | ---- | C] () -- C:\Windows\System32\OVDecode.dll
 
========== ZeroAccess Check ==========
 
[2009.07.14 05:42:31 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini
 
[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
 
[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]
 
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2012.06.09 05:41:00 | 012,873,728 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
 
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2010.11.20 22:29:20 | 000,606,208 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
 
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
"" = %systemroot%\system32\wbem\wbemess.dll -- [2009.07.14 02:16:17 | 000,342,528 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

< End of report >

--- --- ---

markusg · 25.02.2013, 23:04

Hi,
otl fix

Fixen mit OTL

Starte bitte die OTL.exe.
Kopiere nun den Inhalt aus der Codebox in die Textbox.

Code:

ATTFilter

:OTL
:files
:Commands
[emptytemp]

Solltest du deinen Benutzernamen z. B. durch "*****" unkenntlich gemacht haben, so füge an entsprechender Stelle deinen richtigen Benutzernamen ein. Andernfalls wird der Fix nicht funktionieren.
Schließe bitte nun alle Programme.
Klicke nun bitte auf den Fix Button.
OTL kann gegebenfalls einen Neustart verlangen. Bitte dies zulassen.
Nach dem Neustart findest Du ein Textdokument auf deinem Desktop.
( Auch zu finden unter C:\_OTL\MovedFiles\<Uhrzeit_Datum>.txt)
Kopiere nun den Inhalt hier in Deinen Thread

du kannst noch zusätzlich ccleaner öffnen, extras, autostartliste, windows, und die als txt speichern und posten.

trampeltier · 26.02.2013, 01:14

... und weiter geht's

All processes killed
========== OTL ==========
========== FILES ==========
========== COMMANDS ==========

[EMPTYTEMP]

User: All Users

User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Mirko
->Temp folder emptied: 770 bytes
->Temporary Internet Files folder emptied: 44615 bytes
->Java cache emptied: 0 bytes
->FireFox cache emptied: 0 bytes
->Opera cache emptied: 2638832 bytes
->Flash cache emptied: 492 bytes

User: Public
->Temp folder emptied: 0 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 0 bytes
RecycleBin emptied: 0 bytes

Total Files Cleaned = 3,00 mb

OTL by OldTimer - Version 3.2.69.0 log created on 02262013_011114

Files\Folders moved on Reboot...

PendingFileRenameOperations files...

Registry entries deleted on Reboot...

markusg · 26.02.2013, 15:21

die Autostartliste bitte

25.02.2013, 18:54	#26
markusg /// Malware-holic	Trojaner - es ist einfach nur langsam! Sorry, hatte den falschen Link erwischt. neues otl log bitte. __________________ -Verdächtige mails bitte an uns zur Analyse weiterleiten: markusg.trojaner-board@web.de Weiterleiten Anleitung: http://markusg.trojaner-board.de Mails bitte vorerst nach obiger Anleitung an markusg.trojaner-board@web.de Weiterleiten Wenn Ihr uns unterstützen möchtet

26.02.2013, 15:21	#30
markusg /// Malware-holic	Trojaner - es ist einfach nur langsam! die Autostartliste bitte __________________ -Verdächtige mails bitte an uns zur Analyse weiterleiten: markusg.trojaner-board@web.de Weiterleiten Anleitung: http://markusg.trojaner-board.de Mails bitte vorerst nach obiger Anleitung an markusg.trojaner-board@web.de Weiterleiten Wenn Ihr uns unterstützen möchtet

Trojaner - es ist einfach nur langsam!

Plagegeister aller Art und deren Bekämpfung: Trojaner - es ist einfach nur langsam!