Zurück   Trojaner-Board > Malware entfernen > Plagegeister aller Art und deren Bekämpfung

Plagegeister aller Art und deren Bekämpfung: TR/Orsam.a.6262 - was soll das sein?

Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen.

Antwort
Alt 28.01.2011, 18:01   #1
Frederick
 
TR/Orsam.a.6262 - was soll das sein? - Standard

TR/Orsam.a.6262 - was soll das sein?



Hallo!

Hatte vorhin schonmal gesehn, dass hier jemand das gleiche Problem hatte. Ich wurde allerdings darauf hingewiesen einen eigenen Thread zu eröffnen. Also folgendes: Ich hatte mir vorige Woche ein uraltes Half-Life 2 Package von der Steam Seite gezogen (war ein bundle für 40€ gewesen). Da ist also das Original Spiel HL2 dabei + diverse add ons. 2 der Spiele hatte ich schon installiert und beide auch durchgespielt, bei Half-Life 2: Episode 1 allerdings meldet sich Antivir zu Wort, dass angeblich die game.exe mit der obigen Malware infiziert wäre und hat die .exe auch gleich in Quarantäne verschoben. Was soll das also sein? Ich hab über diesen VIrus oder was auch immer nichts finden können und kann mir partut nicht vorstellen, dass Steam Viren verschickt!

Ich hab jetzt Antivir nochmal laufen lassen, scheint aber alles clean zu sein. Wäre es ratsam die .exe einfach auszuführen? Sicherlich nicht, oder. Was soll ich also tun?

Nebenbei noch was anderes.... Ich hatte mein Notebook vor 6 Wochen schonmal neu augesetzt. Es passiert mir jetzt ziemlich oft, dass mein Rechner einfach einfriert wenn ich ihn an lasse und er irgendwann den Bildschirm ausschaltet bzw. in den Ruhezustand geht. Da hilft meißt nur noch Knopf gedrückt lassen.... Da jemand ne Idee?

Vielen Dank im Voraus!

Alt 28.01.2011, 20:14   #2
cosinus
/// Winkelfunktion
/// TB-Süch-Tiger™
 
TR/Orsam.a.6262 - was soll das sein? - Standard

TR/Orsam.a.6262 - was soll das sein?



Hallo und

Bitte routinemäßig einen Vollscan mit Malwarebytes machen und Log posten.
Denk daran, dass Malwarebytes vor jedem Scan manuell aktualisiert werden muss!

Falls Logs aus älteren Scans mit Malwarebytes vorhanden sind, bitte auch davon alle posten!

Danach OTL:

Systemscan mit OTL

Lade Dir bitte OTL von Oldtimer herunter und speichere es auf Deinem Desktop
  • Doppelklick auf die OTL.exe
  • Vista User: Rechtsklick auf die OTL.exe und "als Administrator ausführen" wählen
  • Oben findest Du ein Kästchen mit Output. Wähle bitte Minimal Output
  • Unter Extra Registry, wähle bitte Use SafeList
  • Klicke nun auf Run Scan links oben
  • Wenn der Scan beendet wurde werden 2 Logfiles erstellt
  • Poste die Logfiles hier in den Thread.
__________________

__________________

Alt 28.01.2011, 21:54   #3
Frederick
 
TR/Orsam.a.6262 - was soll das sein? - Standard

TR/Orsam.a.6262 - was soll das sein?



Ok, hier das Malwarebyte Log:

Malwarebytes' Anti-Malware 1.50.1.1100
www.malwarebytes.org

Database version: 5631

Windows 6.1.7600
Internet Explorer 8.0.7600.16385

28.01.2011 21:53:55
mbam-log-2011-01-28 (21-53-55).txt

Scan type: Quick scan
Objects scanned: 121000
Time elapsed: 1 minute(s), 40 second(s)

Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 0
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 0

Memory Processes Infected:
(No malicious items detected)

Memory Modules Infected:
(No malicious items detected)

Registry Keys Infected:
(No malicious items detected)

Registry Values Infected:
(No malicious items detected)

Registry Data Items Infected:
(No malicious items detected)

Folders Infected:
(No malicious items detected)

Files Infected:
(No malicious items detected)


Und die anderen beiden logs:OTL Logfile:
Code:
ATTFilter
OTL logfile created on: 28.01.2011 21:40:40 - Run 1
OTL by OldTimer - Version 3.2.20.6     Folder = C:\Users\Benutzer\Desktop
 Ultimate Edition  (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7600.16385)
Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy
 
3,00 Gb Total Physical Memory | 2,00 Gb Available Physical Memory | 70,00% Memory free
6,00 Gb Paging File | 5,00 Gb Available in Paging File | 84,00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 144,09 Gb Total Space | 98,97 Gb Free Space | 68,68% Space Free | Partition Type: NTFS
Drive D: | 144,00 Gb Total Space | 36,32 Gb Free Space | 25,22% Space Free | Partition Type: NTFS
 
Computer Name: Benutzer-PC | User Name: Benutzer | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
 
========== Processes (SafeList) ==========
 
PRC - C:\Users\Benutzer\Desktop\OTL.exe (OldTimer Tools)
PRC - C:\Users\Benutzer\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
PRC - C:\Programme\Avira\AntiVir Desktop\sched.exe (Avira GmbH)
PRC - C:\Programme\Avira\AntiVir Desktop\avgnt.exe (Avira GmbH)
PRC - C:\Programme\Avira\AntiVir Desktop\avguard.exe (Avira GmbH)
PRC - C:\Programme\Mozilla Firefox\firefox.exe (Mozilla Corporation)
PRC - C:\Users\Benutzer\AppData\Roaming\TV Movie\TV Movie Clickfinder\tvtip.exe (E.W.E.-Software)
PRC - C:\Programme\Nero\Update\NASvc.exe (Nero AG)
PRC - C:\Programme\Avira\AntiVir Desktop\avshadow.exe (Avira GmbH)
PRC - C:\Windows\explorer.exe (Microsoft Corporation)
PRC - C:\Programme\TuneUp Utilities 2010\TuneUpUtilitiesApp32.exe (TuneUp Software)
PRC - C:\Programme\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe (TuneUp Software)
PRC - C:\Windows\System32\atieclxx.exe (AMD)
PRC - C:\Windows\System32\atiesrxx.exe (AMD)
PRC - C:\Programme\Common Files\Native Instruments\Hardware\NIHardwareService.exe (Native Instruments GmbH)
PRC - C:\Programme\Windows Media Player\wmpnetwk.exe (Microsoft Corporation)
PRC - C:\Windows\System32\taskhost.exe (Microsoft Corporation)
PRC - C:\Windows\System32\conhost.exe (Microsoft Corporation)
 
 
========== Modules (SafeList) ==========
 
MOD - C:\Users\Benutzer\Desktop\OTL.exe (OldTimer Tools)
MOD - C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd\comctl32.dll (Microsoft Corporation)
MOD - C:\Windows\System32\sspicli.dll (Microsoft Corporation)
MOD - C:\Windows\System32\sechost.dll (Microsoft Corporation)
MOD - C:\Windows\System32\samcli.dll (Microsoft Corporation)
MOD - C:\Windows\System32\profapi.dll (Microsoft Corporation)
MOD - C:\Windows\System32\netutils.dll (Microsoft Corporation)
MOD - C:\Windows\System32\KernelBase.dll (Microsoft Corporation)
MOD - C:\Windows\System32\dwmapi.dll (Microsoft Corporation)
MOD - C:\Windows\System32\devobj.dll (Microsoft Corporation)
MOD - C:\Windows\System32\cryptbase.dll (Microsoft Corporation)
MOD - C:\Windows\System32\cfgmgr32.dll (Microsoft Corporation)
 
 
========== Win32 Services (SafeList) ==========
 
SRV - (TuneUp.Defrag) -- C:\Programme\TuneUp Utilities 2010\TuneUpDefragService.exe (TuneUp Software)
SRV - (AntiVirSchedulerService) -- C:\Program Files\Avira\AntiVir Desktop\sched.exe (Avira GmbH)
SRV - (AntiVirService) -- C:\Program Files\Avira\AntiVir Desktop\avguard.exe (Avira GmbH)
SRV - (FontCache) -- C:\Windows\System32\FntCache.dll (Microsoft Corporation)
SRV - (NAUpdate) -- C:\Program Files\Nero\Update\NASvc.exe (Nero AG)
SRV - (clr_optimization_v4.0.30319_32) -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe (Microsoft Corporation)
SRV - (TuneUp.UtilitiesSvc) -- C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe (TuneUp Software)
SRV - (UxTuneUp) -- C:\Windows\System32\uxtuneup.dll (TuneUp Software)
SRV - (AMD External Events Utility) -- C:\Windows\System32\atiesrxx.exe (AMD)
SRV - (NIHardwareService) -- C:\Programme\Common Files\Native Instruments\Hardware\NIHardwareService.exe (Native Instruments GmbH)
SRV - (WwanSvc) -- C:\Windows\System32\wwansvc.dll (Microsoft Corporation)
SRV - (WbioSrvc) -- C:\Windows\System32\wbiosrvc.dll (Microsoft Corporation)
SRV - (Power) -- C:\Windows\System32\umpo.dll (Microsoft Corporation)
SRV - (Themes) -- C:\Windows\System32\themeservice.dll (Microsoft Corporation)
SRV - (sppuinotify) -- C:\Windows\System32\sppuinotify.dll (Microsoft Corporation)
SRV - (RpcEptMapper) -- C:\Windows\System32\RpcEpMap.dll (Microsoft Corporation)
SRV - (SensrSvc) -- C:\Windows\System32\sensrsvc.dll (Microsoft Corporation)
SRV - (PeerDistSvc) -- C:\Windows\System32\PeerDistSvc.dll (Microsoft Corporation)
SRV - (PNRPsvc) -- C:\Windows\System32\pnrpsvc.dll (Microsoft Corporation)
SRV - (p2pimsvc) -- C:\Windows\System32\pnrpsvc.dll (Microsoft Corporation)
SRV - (HomeGroupProvider) -- C:\Windows\System32\provsvc.dll (Microsoft Corporation)
SRV - (PNRPAutoReg) -- C:\Windows\System32\pnrpauto.dll (Microsoft Corporation)
SRV - (WinDefend) -- C:\Programme\Windows Defender\MpSvc.dll (Microsoft Corporation)
SRV - (HomeGroupListener) -- C:\Windows\System32\ListSvc.dll (Microsoft Corporation)
SRV - (Dhcp) -- C:\Windows\System32\dhcpcore.dll (Microsoft Corporation)
SRV - (defragsvc) -- C:\Windows\System32\defragsvc.dll (Microsoft Corporation)
SRV - (BDESVC) -- C:\Windows\System32\bdesvc.dll (Microsoft Corporation)
SRV - (AxInstSV) ActiveX-Installer (AxInstSV) -- C:\Windows\System32\AxInstSv.dll (Microsoft Corporation)
SRV - (AppIDSvc) -- C:\Windows\System32\appidsvc.dll (Microsoft Corporation)
SRV - (sppsvc) -- C:\Windows\System32\sppsvc.exe (Microsoft Corporation)
 
 
========== Driver Services (SafeList) ==========
 
DRV - (atksgt) -- C:\Windows\System32\drivers\atksgt.sys ()
DRV - (lirsgt) -- C:\Windows\System32\drivers\lirsgt.sys ()
DRV - (sptd) -- C:\Windows\System32\Drivers\sptd.sys ()
DRV - (IntcAzAudAddService) Service for Realtek HD Audio (WDM) -- C:\Windows\System32\drivers\RTKVHDA.sys (Realtek Semiconductor Corp.)
DRV - (avipbb) -- C:\Windows\System32\drivers\avipbb.sys (Avira GmbH)
DRV - (avgntflt) -- C:\Windows\System32\drivers\avgntflt.sys (Avira GmbH)
DRV - (ssmdrv) -- C:\Windows\System32\drivers\ssmdrv.sys (Avira GmbH)
DRV - (Revoflt) -- C:\Windows\System32\drivers\revoflt.sys (VS Revo Group)
DRV - (KSecPkg) -- C:\Windows\System32\Drivers\ksecpkg.sys (Microsoft Corporation)
DRV - (VD_FileDisk) -- C:\Windows\System32\drivers\vd_filedisk.sys (Flint Incorporation)
DRV - (TuneUpUtilitiesDrv) -- C:\Programme\TuneUp Utilities 2010\TuneUpUtilitiesDriver32.sys (TuneUp Software)
DRV - (atikmdag) -- C:\Windows\System32\drivers\atikmdag.sys (ATI Technologies Inc.)
DRV - (cmdide) -- C:\Windows\system32\DRIVERS\cmdide.sys (CMD Technology, Inc.)
DRV - (adpahci) -- C:\Windows\system32\DRIVERS\adpahci.sys (Adaptec, Inc.)
DRV - (adp94xx) -- C:\Windows\system32\DRIVERS\adp94xx.sys (Adaptec, Inc.)
DRV - (amdsbs) -- C:\Windows\system32\DRIVERS\amdsbs.sys (AMD Technologies Inc.)
DRV - (adpu320) -- C:\Windows\system32\DRIVERS\adpu320.sys (Adaptec, Inc.)
DRV - (arcsas) -- C:\Windows\system32\DRIVERS\arcsas.sys (Adaptec, Inc.)
DRV - (amdsata) -- C:\Windows\system32\DRIVERS\amdsata.sys (Advanced Micro Devices)
DRV - (arc) -- C:\Windows\system32\DRIVERS\arc.sys (Adaptec, Inc.)
DRV - (amdxata) -- C:\Windows\system32\DRIVERS\amdxata.sys (Advanced Micro Devices)
DRV - (aliide) -- C:\Windows\system32\DRIVERS\aliide.sys (Acer Laboratories Inc.)
DRV - (nvstor) -- C:\Windows\system32\DRIVERS\nvstor.sys (NVIDIA Corporation)
DRV - (nvraid) -- C:\Windows\system32\DRIVERS\nvraid.sys (NVIDIA Corporation)
DRV - (nfrd960) -- C:\Windows\system32\DRIVERS\nfrd960.sys (IBM Corporation)
DRV - (LSI_SAS) -- C:\Windows\system32\DRIVERS\lsi_sas.sys (LSI Corporation)
DRV - (iaStorV) -- C:\Windows\system32\DRIVERS\iaStorV.sys (Intel Corporation)
DRV - (MegaSR) -- C:\Windows\system32\DRIVERS\MegaSR.sys (LSI Corporation, Inc.)
DRV - (LSI_SCSI) -- C:\Windows\system32\DRIVERS\lsi_scsi.sys (LSI Corporation)
DRV - (LSI_FC) -- C:\Windows\system32\DRIVERS\lsi_fc.sys (LSI Corporation)
DRV - (LSI_SAS2) -- C:\Windows\system32\DRIVERS\lsi_sas2.sys (LSI Corporation)
DRV - (iirsp) -- C:\Windows\system32\DRIVERS\iirsp.sys (Intel Corp./ICP vortex GmbH)
DRV - (megasas) -- C:\Windows\system32\DRIVERS\megasas.sys (LSI Corporation)
DRV - (hwpolicy) -- C:\Windows\System32\drivers\hwpolicy.sys (Microsoft Corporation)
DRV - (elxstor) -- C:\Windows\system32\DRIVERS\elxstor.sys (Emulex)
DRV - (aic78xx) -- C:\Windows\system32\DRIVERS\djsvs.sys (Adaptec, Inc.)
DRV - (HpSAMD) -- C:\Windows\system32\DRIVERS\HpSAMD.sys (Hewlett-Packard Company)
DRV - (FsDepends) -- C:\Windows\System32\drivers\fsdepends.sys (Microsoft Corporation)
DRV - (vsmraid) -- C:\Windows\system32\DRIVERS\vsmraid.sys (VIA Technologies Inc.,Ltd)
DRV - (vmbus) -- C:\Windows\system32\DRIVERS\vmbus.sys (Microsoft Corporation)
DRV - (vhdmp) -- C:\Windows\system32\DRIVERS\vhdmp.sys (Microsoft Corporation)
DRV - (storflt) -- C:\Windows\system32\DRIVERS\vmstorfl.sys (Microsoft Corporation)
DRV - (vdrvroot) -- C:\Windows\system32\DRIVERS\vdrvroot.sys (Microsoft Corporation)
DRV - (storvsc) -- C:\Windows\system32\DRIVERS\storvsc.sys (Microsoft Corporation)
DRV - (WIMMount) -- C:\Windows\System32\drivers\wimmount.sys (Microsoft Corporation)
DRV - (viaide) -- C:\Windows\system32\DRIVERS\viaide.sys (VIA Technologies, Inc.)
DRV - (ql2300) -- C:\Windows\system32\DRIVERS\ql2300.sys (QLogic Corporation)
DRV - (rdyboost) -- C:\Windows\System32\drivers\rdyboost.sys (Microsoft Corporation)
DRV - (ql40xx) -- C:\Windows\system32\DRIVERS\ql40xx.sys (QLogic Corporation)
DRV - (SiSRaid4) -- C:\Windows\system32\DRIVERS\sisraid4.sys (Silicon Integrated Systems)
DRV - (pcw) -- C:\Windows\System32\drivers\pcw.sys (Microsoft Corporation)
DRV - (SiSRaid2) -- C:\Windows\system32\DRIVERS\SiSRaid2.sys (Silicon Integrated Systems Corp.)
DRV - (stexstor) -- C:\Windows\system32\DRIVERS\stexstor.sys (Promise Technology)
DRV - (CNG) -- C:\Windows\System32\Drivers\cng.sys (Microsoft Corporation)
DRV - (Brserid) Brother MFC-Seriellschnittstellentreiber (WDM) -- C:\Windows\System32\Drivers\Brserid.sys (Brother Industries Ltd.)
DRV - (rdpbus) -- C:\Windows\System32\drivers\rdpbus.sys (Microsoft Corporation)
DRV - (RDPREFMP) -- C:\Windows\System32\drivers\RDPREFMP.sys (Microsoft Corporation)
DRV - (RasAgileVpn) WAN Miniport (IKEv2) -- C:\Windows\System32\drivers\agilevpn.sys (Microsoft Corporation)
DRV - (WfpLwf) -- C:\Windows\System32\drivers\wfplwf.sys (Microsoft Corporation)
DRV - (NdisCap) -- C:\Windows\System32\drivers\ndiscap.sys (Microsoft Corporation)
DRV - (vwififlt) -- C:\Windows\System32\drivers\vwififlt.sys (Microsoft Corporation)
DRV - (vwifibus) -- C:\Windows\System32\drivers\vwifibus.sys (Microsoft Corporation)
DRV - (1394ohci) -- C:\Windows\system32\DRIVERS\1394ohci.sys (Microsoft Corporation)
DRV - (UmPass) -- C:\Windows\system32\DRIVERS\umpass.sys (Microsoft Corporation)
DRV - (mshidkmdf) -- C:\Windows\System32\drivers\mshidkmdf.sys (Microsoft Corporation)
DRV - (MTConfig) -- C:\Windows\system32\DRIVERS\MTConfig.sys (Microsoft Corporation)
DRV - (CompositeBus) -- C:\Windows\System32\drivers\CompositeBus.sys (Microsoft Corporation)
DRV - (AppID) -- C:\Windows\system32\drivers\appid.sys (Microsoft Corporation)
DRV - (scfilter) -- C:\Windows\System32\drivers\scfilter.sys (Microsoft Corporation)
DRV - (s3cap) -- C:\Windows\system32\DRIVERS\vms3cap.sys (Microsoft Corporation)
DRV - (VMBusHID) -- C:\Windows\system32\DRIVERS\VMBusHID.sys (Microsoft Corporation)
DRV - (discache) -- C:\Windows\System32\drivers\discache.sys (Microsoft Corporation)
DRV - (AcpiPmi) -- C:\Windows\system32\DRIVERS\acpipmi.sys (Microsoft Corporation)
DRV - (AmdPPM) -- C:\Windows\system32\DRIVERS\amdppm.sys (Microsoft Corporation)
DRV - (hcw85cir) -- C:\Windows\system32\drivers\hcw85cir.sys (Hauppauge Computer Works, Inc.)
DRV - (BrUsbMdm) Brother MFC-nur-Fax-Modem (USB) -- C:\Windows\System32\Drivers\BrUsbMdm.sys (Brother Industries Ltd.)
DRV - (BrUsbSer) Brother MFC-WDM-Treiber (USB,seriell) -- C:\Windows\System32\Drivers\BrUsbSer.sys (Brother Industries Ltd.)
DRV - (BrSerWdm) Brother WDM-Treiber (seriell) -- C:\Windows\System32\Drivers\BrSerWdm.sys (Brother Industries Ltd.)
DRV - (BrFiltLo) -- C:\Windows\system32\DRIVERS\BrFiltLo.sys (Brother Industries, Ltd.)
DRV - (BrFiltUp) -- C:\Windows\system32\DRIVERS\BrFiltUp.sys (Brother Industries, Ltd.)
DRV - (yukonw7) -- C:\Windows\System32\drivers\yk62x86.sys (Marvell)
DRV - (E1G60) Intel(R) -- C:\Windows\System32\drivers\E1G60I32.sys (Intel Corporation)
DRV - (b57nd60x) -- C:\Windows\System32\drivers\b57nd60x.sys (Broadcom Corporation)
DRV - (ebdrv) -- C:\Windows\system32\DRIVERS\evbdx.sys (Broadcom Corporation)
DRV - (b06bdrv) -- C:\Windows\system32\DRIVERS\bxvbdx.sys (Broadcom Corporation)
DRV - (athr) -- C:\Windows\System32\drivers\athr.sys (Atheros Communications, Inc.)
DRV - (SynTP) -- C:\Windows\System32\drivers\SynTP.sys (Synaptics, Inc.)
DRV - (VMC302) -- C:\Windows\System32\drivers\vmc302.sys (Vimicro Corporation)
DRV - (KMDFMEMIO) -- C:\Windows\System32\drivers\KMDFMEMIO.sys (SAMSUNG ELECTRONICS CO., LTD.)
 
 
========== Standard Registry (SafeList) ==========
 
 
========== Internet Explorer ==========
 
 
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = h++p://de.msn.com/?ocid=iehp
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0C 1B 27 2D 48 A8 CB 01  [binary data]
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
========== FireFox ==========
 
FF - prefs.js..browser.search.defaultengine: "Ask.com"
FF - prefs.js..browser.search.defaultenginename: "Ask.com"
FF - prefs.js..browser.search.order.1: "Ask.com"
FF - prefs.js..browser.search.selectedEngine: "Google"
FF - prefs.js..browser.startup.homepage: "h++p://www.google.de/"
FF - prefs.js..extensions.enabledItems: ietab@ip.cn:1.95.20100933
FF - prefs.js..extensions.enabledItems: moveplayer@movenetworks.com:1.0.0.071303000004
FF - prefs.js..extensions.enabledItems: piclens@cooliris.com:1.12.0.36949
FF - prefs.js..extensions.enabledItems: {4176DFF4-4698-11DE-BEEB-45DA55D89593}:0.8.6
FF - prefs.js..extensions.enabledItems: {872b5b88-9db5-4310-bdd0-ac189557e5f5}:2.7.2.0
FF - prefs.js..extensions.enabledItems: {ACAA314B-EEBA-48e4-AD47-84E31C44796C}:1.0.1
FF - prefs.js..extensions.enabledItems: {b2e293ee-fd7e-4c71-a714-5f4750d8d7b7}:2.7.2.0
FF - prefs.js..extensions.enabledItems: {b9db16a4-6edc-47ec-a1f4-b86292ed211d}:4.8.1
FF - prefs.js..extensions.enabledItems: {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}:1.3.3
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}:6.0.20
 
 
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.13\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2010.12.30 19:21:17 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.13\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2011.01.06 11:13:23 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Thunderbird 3.1.7\extensions\\Components: C:\Program Files\Mozilla Thunderbird\components [2010.12.30 19:32:38 | 000,000,000 | ---D | M]
 
[2010.12.30 19:32:45 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Benutzer\AppData\Roaming\mozilla\Extensions
[2010.12.30 19:32:45 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Benutzer\AppData\Roaming\mozilla\Extensions\{3550f703-e582-4d05-9a08-453d09bdfdc6}
[2011.01.14 13:21:31 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Benutzer\AppData\Roaming\mozilla\Firefox\Profiles\n0h8g4ur.default\extensions
[2010.12.30 19:34:04 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Users\Benutzer\AppData\Roaming\mozilla\Firefox\Profiles\n0h8g4ur.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2010.12.30 19:34:05 | 000,000,000 | ---D | M] (Google Toolbar for Firefox) -- C:\Users\Benutzer\AppData\Roaming\mozilla\Firefox\Profiles\n0h8g4ur.default\extensions\{3112ca9c-de6d-4884-a869-9855de68056c}
[2010.12.30 19:34:05 | 000,000,000 | ---D | M] (AniWeather) -- C:\Users\Benutzer\AppData\Roaming\mozilla\Firefox\Profiles\n0h8g4ur.default\extensions\{4176DFF4-4698-11DE-BEEB-45DA55D89593}
[2010.12.30 19:34:06 | 000,000,000 | ---D | M] (IE Tab) -- C:\Users\Benutzer\AppData\Roaming\mozilla\Firefox\Profiles\n0h8g4ur.default\extensions\{77b819fa-95ad-4f2c-ac7c-486b356188a9}
[2010.12.30 19:34:06 | 000,000,000 | ---D | M] (DVDVideoSoftTB Toolbar) -- C:\Users\Benutzer\AppData\Roaming\mozilla\Firefox\Profiles\n0h8g4ur.default\extensions\{872b5b88-9db5-4310-bdd0-ac189557e5f5}
[2010.12.30 19:34:06 | 000,000,000 | ---D | M] ("DVDVideoSoft Menu") -- C:\Users\Benutzer\AppData\Roaming\mozilla\Firefox\Profiles\n0h8g4ur.default\extensions\{ACAA314B-EEBA-48e4-AD47-84E31C44796C}
[2010.12.30 19:34:06 | 000,000,000 | ---D | M] (myBabylon English Toolbar) -- C:\Users\Benutzer\AppData\Roaming\mozilla\Firefox\Profiles\n0h8g4ur.default\extensions\{b2e293ee-fd7e-4c71-a714-5f4750d8d7b7}
[2010.12.30 19:34:07 | 000,000,000 | ---D | M] (DownloadHelper) -- C:\Users\Benutzer\AppData\Roaming\mozilla\Firefox\Profiles\n0h8g4ur.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}
[2010.12.30 19:34:07 | 000,000,000 | ---D | M] (Adblock Plus) -- C:\Users\Benutzer\AppData\Roaming\mozilla\Firefox\Profiles\n0h8g4ur.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}
[2010.12.30 19:34:03 | 000,000,000 | ---D | M] (IE Tab Plus) -- C:\Users\Benutzer\AppData\Roaming\mozilla\Firefox\Profiles\n0h8g4ur.default\extensions\ietab@ip.cn
[2010.12.30 19:34:03 | 000,000,000 | ---D | M] (Move Media Player) -- C:\Users\Benutzer\AppData\Roaming\mozilla\Firefox\Profiles\n0h8g4ur.default\extensions\moveplayer@movenetworks.com
[2010.12.30 19:34:04 | 000,000,000 | ---D | M] (Cooliris) -- C:\Users\Benutzer\AppData\Roaming\mozilla\Firefox\Profiles\n0h8g4ur.default\extensions\piclens@cooliris.com
[2011.01.02 16:34:57 | 000,000,000 | ---D | M] (No name found) -- C:\Programme\Mozilla Firefox\extensions
[2011.01.02 16:34:57 | 000,000,000 | ---D | M] (Java Console) -- C:\Programme\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}
[2011.01.02 16:34:57 | 000,000,000 | ---D | M] (Java Console) -- C:\PROGRAM FILES\MOZILLA FIREFOX\EXTENSIONS\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}
[2011.01.02 16:34:47 | 000,411,368 | ---- | M] (Sun Microsystems, Inc.) -- C:\Programme\Mozilla Firefox\plugins\npdeployJava1.dll
[2010.12.06 23:03:18 | 000,012,800 | ---- | M] (Nullsoft, Inc.) -- C:\Programme\Mozilla Firefox\plugins\npwachk.dll
[2010.12.03 19:14:08 | 000,001,392 | ---- | M] () -- C:\Programme\Mozilla Firefox\searchplugins\amazondotcom-de.xml
[2010.12.03 19:14:08 | 000,002,344 | ---- | M] () -- C:\Programme\Mozilla Firefox\searchplugins\eBay-de.xml
[2010.12.03 19:14:08 | 000,006,805 | ---- | M] () -- C:\Programme\Mozilla Firefox\searchplugins\leo_ende_de.xml
[2010.12.03 19:14:08 | 000,001,178 | ---- | M] () -- C:\Programme\Mozilla Firefox\searchplugins\wikipedia-de.xml
[2010.12.03 19:14:08 | 000,001,105 | ---- | M] () -- C:\Programme\Mozilla Firefox\searchplugins\yahoo-de.xml
 
O1 HOSTS File: ([2009.06.10 22:39:37 | 000,000,824 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O2 - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Programme\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
O4 - HKLM..\Run: [avgnt] C:\Program Files\Avira\AntiVir Desktop\avgnt.exe (Avira GmbH)
O4 - HKLM..\Run: [Malwarebytes' Anti-Malware (reboot)] C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe (Malwarebytes Corporation)
O4 - HKCU..\Run: [TVTip] C:\Users\Benutzer\AppData\Roaming\TV Movie\TV Movie Clickfinder\tvstart.exe (E.W.E.-Software)
O4 - HKLM..\RunOnce: [Malwarebytes' Anti-Malware] C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLinkedConnections = 1
O8 - Extra context menu item: Free YouTube to MP3 Converter - C:\Users\Benutzer\AppData\Roaming\DVDVideoSoftIEHelpers\freeyoutubetomp3converter.htm ()
O8 - Extra context menu item: Nach Microsoft E&xel exportieren - C:\Programme\Microsoft Office\Office12\EXCEL.EXE (Microsoft Corporation)
O9 - Extra Button: An OneNote senden - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Programme\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : An OneNote s&enden - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Programme\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\Programme\Microsoft Office\Office12\REFIEBAR.DLL (Microsoft Corporation)
O13 - gopher Prefix: missing
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} h++p://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab (Java Plug-in 1.6.0_20)
O16 - DPF: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} h++p://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab (Java Plug-in 1.6.0_20)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} h++p://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab (Java Plug-in 1.6.0_20)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.178.1
O18 - Protocol\Handler\grooveLocalGWS {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Programme\Microsoft Office\Office12\GrooveSystemServices.dll (Microsoft Corporation)
O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Programme\Common Files\microsoft shared\Help\hxds.dll (Microsoft Corporation)
O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\Programme\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\System32\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (/pagefile) -  File not found
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
O28 - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Programme\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (pku2u) - C:\Windows\System32\pku2u.dll (Microsoft Corporation)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009.06.10 22:42:20 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *) -  File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
 
========== Files/Folders - Created Within 30 Days ==========
 
[2011.01.28 21:21:32 | 000,000,000 | ---D | C] -- C:\Users\Benutzer\AppData\Roaming\Malwarebytes
[2011.01.28 21:21:27 | 000,038,224 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbamswissarmy.sys
[2011.01.28 21:21:27 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware
[2011.01.28 21:21:26 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2011.01.28 21:21:23 | 000,020,952 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbam.sys
[2011.01.28 21:21:23 | 000,000,000 | ---D | C] -- C:\Programme\Malwarebytes' Anti-Malware
[2011.01.28 11:42:27 | 000,000,000 | ---D | C] -- C:\ProgramData\Tages
[2011.01.28 11:39:11 | 004,178,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DX9_41.dll
[2011.01.28 11:39:11 | 002,036,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DCompiler_40.dll
[2011.01.28 11:39:11 | 001,846,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DCompiler_41.dll
[2011.01.28 11:39:11 | 000,517,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAudio2_4.dll
[2011.01.28 11:39:11 | 000,453,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx10_41.dll
[2011.01.28 11:39:11 | 000,452,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx10_40.dll
[2011.01.28 11:39:11 | 000,235,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine3_4.dll
[2011.01.28 11:39:11 | 000,069,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAPOFX1_3.dll
[2011.01.28 11:39:11 | 000,022,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\X3DAudio1_6.dll
[2011.01.28 11:39:10 | 000,514,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAudio2_3.dll
[2011.01.28 11:39:10 | 000,235,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine3_3.dll
[2011.01.28 11:39:10 | 000,070,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAPOFX1_2.dll
[2011.01.28 11:39:10 | 000,068,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAPOFX1_1.dll
[2011.01.28 11:39:10 | 000,023,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\X3DAudio1_5.dll
[2011.01.28 11:39:09 | 003,851,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DX9_39.dll
[2011.01.28 11:39:09 | 001,493,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DCompiler_39.dll
[2011.01.28 11:39:09 | 000,509,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAudio2_2.dll
[2011.01.28 11:39:09 | 000,507,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAudio2_1.dll
[2011.01.28 11:39:09 | 000,467,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx10_39.dll
[2011.01.28 11:39:09 | 000,238,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine3_2.dll
[2011.01.28 11:39:09 | 000,238,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine3_1.dll
[2011.01.28 11:39:09 | 000,065,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAPOFX1_0.dll
[2011.01.28 11:39:09 | 000,025,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\X3DAudio1_4.dll
[2011.01.28 11:39:08 | 003,850,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DX9_38.dll
[2011.01.28 11:39:08 | 001,491,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DCompiler_38.dll
[2011.01.28 11:39:08 | 000,467,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx10_38.dll
[2011.01.28 11:39:07 | 003,786,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DX9_37.dll
[2011.01.28 11:39:07 | 001,420,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DCompiler_37.dll
[2011.01.28 11:39:07 | 000,479,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAudio2_0.dll
[2011.01.28 11:39:07 | 000,462,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx10_37.dll
[2011.01.28 11:39:07 | 000,444,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx10_36.dll
[2011.01.28 11:39:07 | 000,267,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine2_10.dll
[2011.01.28 11:39:07 | 000,238,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine3_0.dll
[2011.01.28 11:39:07 | 000,025,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\X3DAudio1_3.dll
[2011.01.28 11:39:06 | 003,734,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_36.dll
[2011.01.28 11:39:06 | 001,374,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DCompiler_36.dll
[2011.01.28 11:39:06 | 000,444,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx10_35.dll
[2011.01.28 11:39:06 | 000,267,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine2_9.dll
[2011.01.28 11:39:05 | 001,358,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DCompiler_35.dll
[2011.01.28 11:39:05 | 001,124,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DCompiler_34.dll
[2011.01.28 11:39:05 | 000,443,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx10_34.dll
[2011.01.28 11:39:05 | 000,266,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine2_8.dll
[2011.01.28 11:39:05 | 000,017,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\X3DAudio1_2.dll
[2011.01.28 11:39:04 | 003,495,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_33.dll
[2011.01.28 11:39:04 | 001,123,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DCompiler_33.dll
[2011.01.28 11:39:04 | 000,443,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx10_33.dll
[2011.01.28 11:39:04 | 000,261,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine2_7.dll
[2011.01.28 11:39:04 | 000,081,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xinput1_3.dll
[2011.01.28 11:39:03 | 003,426,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_32.dll
[2011.01.28 11:39:03 | 000,440,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx10.dll
[2011.01.28 11:39:03 | 000,255,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine2_6.dll
[2011.01.28 11:39:03 | 000,251,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine2_5.dll
[2011.01.28 11:39:03 | 000,237,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine2_4.dll
[2011.01.28 11:39:03 | 000,015,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\x3daudio1_1.dll
[2011.01.28 11:39:02 | 000,236,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine2_3.dll
[2011.01.28 11:39:02 | 000,062,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xinput1_2.dll
[2011.01.28 11:39:01 | 000,230,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine2_2.dll
[2011.01.28 11:39:01 | 000,229,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine2_1.dll
[2011.01.28 11:39:01 | 000,062,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xinput1_1.dll
[2011.01.28 11:38:56 | 002,332,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_29.dll
[2011.01.28 11:38:56 | 000,230,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine2_0.dll
[2011.01.28 11:38:56 | 000,014,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\x3daudio1_0.dll
[2011.01.19 19:18:41 | 000,000,000 | ---D | C] -- C:\Users\Benutzer\AppData\Roaming\Juce VST Host
[2011.01.19 10:59:56 | 000,000,000 | ---D | C] -- C:\Users\Benutzer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Voxengo
[2011.01.19 10:59:56 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Voxengo
[2011.01.19 09:58:09 | 000,000,000 | ---D | C] -- C:\ProgramData\iZotope
[2011.01.19 09:58:07 | 000,000,000 | ---D | C] -- C:\Programme\Common Files\iZotope
[2011.01.14 21:05:26 | 000,000,000 | ---D | C] -- C:\Programme\MSXML 4.0
[2011.01.14 12:57:27 | 000,000,000 | ---D | C] -- C:\Users\Benutzer\AppData\Local\Native Instruments
[2011.01.14 11:39:16 | 000,000,000 | ---D | C] -- C:\Users\Benutzer\Documents\Native Instruments
[2011.01.14 11:38:22 | 000,000,000 | -H-D | C] -- C:\ProgramData\{D69A48BF-7653-4AA8-94BC-5847522A4573}
[2011.01.14 11:37:06 | 000,000,000 | ---D | C] -- C:\ProgramData\Native Instruments
[2011.01.14 11:37:04 | 000,000,000 | -H-D | C] -- C:\ProgramData\{0CC51CB2-911C-40BB-BC1B-BD3CAC590222}
[2011.01.14 11:36:10 | 000,000,000 | -H-D | C] -- C:\ProgramData\{4F32CAF7-963B-404D-BF13-C48BA3F5F6A7}
[2011.01.14 11:35:15 | 000,000,000 | -H-D | C] -- C:\ProgramData\{AC46DC4F-66BD-4733-A8B4-0B69418C12D0}
[2011.01.14 11:34:08 | 000,000,000 | -H-D | C] -- C:\ProgramData\{EC98E512-708C-4C3B-9F07-B58768C1DD8A}
[2011.01.14 11:33:59 | 000,000,000 | -H-D | C] -- C:\ProgramData\{D7CFB71A-972A-44FF-AE44-8780EB53ABB2}
[2011.01.14 11:33:53 | 000,000,000 | ---D | C] -- C:\Programme\Native Instruments
[2011.01.14 11:33:53 | 000,000,000 | ---D | C] -- C:\Programme\Common Files\Native Instruments
[2011.01.14 11:33:53 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Native Instruments
[2011.01.13 17:21:17 | 000,000,000 | ---D | C] -- C:\Users\Benutzer\AppData\Roaming\Trillian
[2011.01.13 17:20:50 | 000,000,000 | ---D | C] -- C:\Programme\Trillian
[2011.01.13 17:11:55 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AC3Filter
[2011.01.13 17:11:51 | 000,000,000 | ---D | C] -- C:\Programme\AC3Filter
[2011.01.13 17:07:24 | 000,000,000 | ---D | C] -- C:\Users\Benutzer\AppData\Local\Nero
[2011.01.13 17:07:19 | 000,000,000 | ---D | C] -- C:\Users\Benutzer\Documents\NeroVision
[2011.01.13 17:05:55 | 000,000,000 | ---D | C] -- C:\Users\Benutzer\AppData\Roaming\Nero
[2011.01.13 16:46:26 | 000,000,000 | ---D | C] -- C:\Programme\Common Files\Nero
[2011.01.13 16:46:16 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nero
[2011.01.13 16:46:14 | 000,000,000 | ---D | C] -- C:\Programme\Nero
[2011.01.13 16:46:06 | 000,000,000 | ---D | C] -- C:\ProgramData\Nero
[2011.01.13 16:41:27 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
[2011.01.13 16:41:25 | 000,000,000 | ---D | C] -- C:\Programme\Microsoft Silverlight
[2011.01.13 16:38:23 | 001,974,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DCompiler_42.dll
[2011.01.13 16:38:07 | 004,379,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DX9_40.dll
[2011.01.13 16:37:51 | 003,727,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_35.dll
[2011.01.13 16:37:36 | 003,497,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_34.dll
[2011.01.13 16:37:20 | 002,388,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_30.dll
[2011.01.13 16:31:47 | 000,000,000 | ---D | C] -- C:\Users\Benutzer\AppData\Local\VS Revo Group
[2011.01.13 16:31:44 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller Pro
[2011.01.13 16:31:43 | 000,027,192 | ---- | C] (VS Revo Group) -- C:\Windows\System32\drivers\revoflt.sys
[2011.01.13 16:31:41 | 000,000,000 | ---D | C] -- C:\Programme\VS Revo Group
[2011.01.12 13:14:16 | 001,170,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3d10warp.dll
[2011.01.12 13:14:16 | 001,074,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\DWrite.dll
[2011.01.12 13:14:16 | 000,739,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d2d1.dll
[2011.01.12 13:14:15 | 003,181,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mf.dll
[2011.01.12 13:14:15 | 001,619,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WMVDECOD.DLL
[2011.01.12 13:14:15 | 000,801,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\FntCache.dll
[2011.01.12 13:14:15 | 000,442,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XpsPrint.dll
[2011.01.12 13:14:15 | 000,283,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XpsGdiConverter.dll
[2011.01.12 13:14:15 | 000,218,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3d10_1core.dll
[2011.01.12 13:14:15 | 000,107,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\cdd.dll
[2011.01.12 13:14:14 | 001,495,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ExplorerFrame.dll
[2011.01.12 13:14:14 | 000,211,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\dxgmms1.sys
[2011.01.12 13:14:14 | 000,196,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mfreadwrite.dll
[2011.01.12 13:14:14 | 000,161,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3d10_1.dll
[2011.01.12 13:14:14 | 000,135,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XpsRasterService.dll
[2011.01.12 13:14:10 | 000,573,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\odbc32.dll
[2011.01.09 15:33:11 | 000,000,000 | ---D | C] -- C:\Users\Benutzer\AppData\Local\ashampoo
[2011.01.09 15:33:11 | 000,000,000 | ---D | C] -- C:\ProgramData\ashampoo
[2011.01.09 13:57:57 | 000,000,000 | ---D | C] -- C:\Windows\System32\Adobe
[2011.01.08 19:48:21 | 000,000,000 | -H-D | C] -- C:\ProgramData\CanonBJ
[2011.01.07 22:11:14 | 000,000,000 | ---D | C] -- C:\Users\Benutzer\AppData\Roaming\TV Movie
[2011.01.07 21:19:00 | 000,000,000 | -HSD | C] -- C:\Windows\ftpcache
[2011.01.07 20:56:28 | 000,000,000 | ---D | C] -- C:\Users\Benutzer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
[2011.01.07 20:18:53 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Anno 1701
[2011.01.07 20:18:34 | 002,323,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_28.dll
[2011.01.07 20:18:34 | 002,319,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_27.dll
[2011.01.07 20:18:33 | 002,337,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_25.dll
[2011.01.07 20:18:33 | 002,297,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_26.dll
[2011.01.07 20:18:33 | 002,222,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_24.dll
[2011.01.07 20:07:28 | 000,000,000 | ---D | C] -- C:\Spiele
[2011.01.07 16:42:18 | 000,000,000 | ---D | C] -- C:\Users\Benutzer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TV Movie
[2011.01.07 16:42:11 | 000,000,000 | ---D | C] -- C:\Programme\TV Movie
[2011.01.07 16:41:45 | 000,000,000 | ---D | C] -- C:\Windows\Downloaded Installations
[2011.01.07 16:18:42 | 000,000,000 | ---D | C] -- C:\Users\Benutzer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Westwood
[2011.01.07 16:03:32 | 000,305,152 | ---- | C] (InstallShield Software Corporation) -- C:\Windows\IsUninst.exe
[2011.01.07 12:54:55 | 000,013,312 | ---- | C] (SAMSUNG ELECTRONICS CO., LTD.) -- C:\Windows\System32\drivers\KMDFMEMIO.sys
[2011.01.07 12:54:48 | 000,000,000 | ---D | C] -- C:\Programme\Samsung
[2011.01.07 12:54:48 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Samsung
[2011.01.07 12:54:04 | 000,000,000 | ---D | C] -- C:\Windows\VMC302
[2011.01.07 12:53:57 | 000,503,808 | ---- | C] (vimicro) -- C:\Windows\System32\vmc302.ax
[2011.01.07 12:53:57 | 000,242,560 | ---- | C] (Vimicro Corporation) -- C:\Windows\System32\drivers\vmc302.sys
[2011.01.07 12:53:57 | 000,098,304 | ---- | C] (Vimicro Corporation) -- C:\Windows\System32\VMCtrl.ax
[2011.01.07 12:53:57 | 000,073,728 | ---- | C] (Vimicro Corporation) -- C:\Windows\System32\exvmuvc.ax
[2011.01.07 12:53:57 | 000,011,776 | ---- | C] (Vimicro Corporation) -- C:\Windows\System32\vmc302.dll
[2011.01.07 12:53:56 | 000,000,000 | ---D | C] -- C:\Programme\Vimicro Corporation
[2011.01.07 12:53:18 | 000,000,000 | ---D | C] -- C:\Users\Benutzer\AppData\Roaming\InstallShield
[2011.01.07 12:53:08 | 000,000,000 | ---D | C] -- C:\Programme\Synaptics
[2011.01.07 12:53:02 | 000,196,608 | ---- | C] (Synaptics, Inc.) -- C:\Windows\System32\SynCtrl.dll
[2011.01.07 12:53:02 | 000,193,456 | ---- | C] (Synaptics, Inc.) -- C:\Windows\System32\drivers\SynTP.sys
[2011.01.07 12:53:02 | 000,147,456 | ---- | C] (Synaptics, Inc.) -- C:\Windows\System32\SynTPAPI.dll
[2011.01.07 12:53:02 | 000,110,592 | ---- | C] (Synaptics, Inc.) -- C:\Windows\System32\SynTPCo4.dll
[2011.01.07 12:52:25 | 000,319,488 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\HideWin.exe
[2011.01.06 14:05:45 | 000,029,512 | ---- | C] (TuneUp Software) -- C:\Windows\System32\TURegOpt.exe
[2011.01.06 14:05:42 | 000,030,024 | ---- | C] (TuneUp Software) -- C:\Windows\System32\uxtuneup.dll
[2011.01.06 14:05:41 | 000,021,320 | ---- | C] (TuneUp Software) -- C:\Windows\System32\authuitu.dll
[2011.01.06 14:05:38 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TuneUp Utilities
[2011.01.06 14:05:30 | 000,000,000 | ---D | C] -- C:\Users\Benutzer\AppData\Roaming\TuneUp Software
[2011.01.06 14:05:24 | 000,000,000 | ---D | C] -- C:\Programme\TuneUp Utilities 2010
[2011.01.06 14:05:05 | 000,000,000 | ---D | C] -- C:\ProgramData\TuneUp Software
[2011.01.06 14:05:00 | 000,000,000 | -HSD | C] -- C:\ProgramData\{D3742F82-1C1A-4DCC-ABBD-0E7C3C0185CC}
[2011.01.06 13:38:05 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ReValver Mk III
[2011.01.06 13:37:46 | 000,000,000 | ---D | C] -- C:\Programme\Peavey Electronics
[2011.01.06 12:49:47 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Addictive Drums
[2011.01.06 12:49:42 | 000,000,000 | ---D | C] -- C:\Users\Benutzer\Documents\Addictive Drums
[2011.01.06 12:46:23 | 000,000,000 | ---D | C] -- C:\Programme\Common Files\Digidesign
[2011.01.06 12:46:18 | 000,000,000 | ---D | C] -- C:\Programme\XLN Audio
[2011.01.06 12:41:05 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Image-Line
[2011.01.06 12:41:01 | 000,000,000 | ---D | C] -- C:\Users\Benutzer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ASIO4ALL v2
[2011.01.06 12:41:01 | 000,000,000 | ---D | C] -- C:\Programme\ASIO4ALL v2
[2011.01.06 12:41:01 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASIO4ALL v2
[2011.01.06 12:40:32 | 001,294,336 | ---- | C] (HMS h++p://hp.vector.co.jp/authors/VA012897/) -- C:\Windows\System32\vorbis.acm
[2011.01.06 12:40:29 | 000,000,000 | ---D | C] -- C:\Users\Benutzer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Image-Line
[2011.01.06 12:40:28 | 000,000,000 | ---D | C] -- C:\Programme\Outsim
[2011.01.06 12:39:32 | 000,000,000 | ---D | C] -- C:\Programme\Image-Line
[2011.01.06 12:12:48 | 000,000,000 | ---D | C] -- C:\Users\Benutzer\Documents\Adobe
[2011.01.06 12:12:44 | 000,000,000 | ---D | C] -- C:\Users\Benutzer\AppData\Local\Adobe
[2011.01.06 12:11:56 | 000,000,000 | ---D | C] -- C:\Programme\Common Files\Adobe Systems Shared
[2011.01.06 11:14:45 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
[2011.01.06 11:14:19 | 000,032,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msonpmon.dll
[2011.01.06 11:13:10 | 000,000,000 | ---D | C] -- C:\Programme\Microsoft Works
[2011.01.06 11:12:34 | 000,000,000 | ---D | C] -- C:\Programme\Microsoft Visual Studio
[2011.01.06 11:12:33 | 000,000,000 | ---D | C] -- C:\Programme\Common Files\DESIGNER
[2011.01.06 11:11:58 | 000,000,000 | ---D | C] -- C:\Windows\PCHEALTH
[2011.01.06 11:10:22 | 000,000,000 | ---D | C] -- C:\Programme\Microsoft Visual Studio 8
[2011.01.06 11:09:38 | 000,000,000 | ---D | C] -- C:\Users\Benutzer\AppData\Local\Microsoft Help
[2011.01.06 11:09:35 | 000,000,000 | ---D | C] -- C:\Programme\Microsoft Office
[2011.01.06 11:09:34 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft Help
[2011.01.06 11:09:12 | 000,000,000 | RH-D | C] -- C:\MSOCache
[2011.01.06 09:02:39 | 000,000,000 | ---D | C] -- C:\Programme\DAEMON Tools Lite
[2011.01.06 09:02:15 | 000,000,000 | ---D | C] -- C:\Users\Benutzer\AppData\Roaming\DAEMON Tools Lite
[2011.01.06 09:02:13 | 000,000,000 | ---D | C] -- C:\ProgramData\DAEMON Tools Lite
[2011.01.04 17:50:03 | 000,000,000 | ---D | C] -- C:\Games
[2011.01.03 01:10:13 | 000,000,000 | ---D | C] -- C:\Programme\Adobe
[2011.01.03 01:10:12 | 000,000,000 | ---D | C] -- C:\Programme\Common Files\Adobe
[2011.01.03 01:09:27 | 000,000,000 | ---D | C] -- C:\ProgramData\Adobe
[2011.01.02 19:47:21 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip
[2011.01.02 19:47:20 | 000,000,000 | ---D | C] -- C:\Programme\7-Zip
[2011.01.02 19:30:43 | 000,000,000 | ---D | C] -- C:\Users\Benutzer\Documents\REAPER Media
[2011.01.02 19:24:50 | 000,000,000 | ---D | C] -- C:\Users\Benutzer\AppData\Roaming\REAPER
[2011.01.02 19:24:26 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\REAPER
[2011.01.02 19:24:22 | 000,000,000 | ---D | C] -- C:\Programme\REAPER
[2011.01.02 19:21:16 | 000,000,000 | ---D | C] -- C:\Users\Benutzer\Documents\Sonoma Wire Works
[2011.01.02 19:21:10 | 000,000,000 | ---D | C] -- C:\ProgramData\Sonoma Wire Works
[2011.01.02 19:21:10 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sonoma Wire Works
[2011.01.02 19:21:10 | 000,000,000 | ---D | C] -- C:\Programme\IK Multimedia
[2011.01.02 19:21:09 | 000,000,000 | ---D | C] -- C:\Programme\Vstplugins
[2011.01.02 19:21:07 | 000,000,000 | ---D | C] -- C:\Programme\Sonoma Wire Works
[2011.01.02 18:49:05 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Guitar Pro 5
[2011.01.02 18:48:44 | 000,000,000 | ---D | C] -- C:\Programme\Guitar Pro 5
[2011.01.02 17:27:42 | 000,000,000 | ---D | C] -- C:\Users\Benutzer\AppData\Roaming\Avira
[2011.01.02 17:00:48 | 000,000,000 | ---D | C] -- C:\Users\Benutzer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
[2011.01.02 17:00:27 | 000,000,000 | ---D | C] -- C:\Users\Benutzer\AppData\Roaming\Dropbox
[2011.01.02 16:56:53 | 000,000,000 | ---D | C] -- C:\Users\Benutzer\AppData\Local\GHISLER
[2011.01.02 16:53:35 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Total Commander Ultima Prime
[2011.01.02 16:50:01 | 000,000,000 | ---D | C] -- C:\Users\Benutzer\AppData\Roaming\HEXelon
[2011.01.02 16:49:31 | 000,000,000 | ---D | C] -- C:\Programme\TC UP
[2011.01.02 16:35:14 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\JDownloader
[2011.01.02 16:35:05 | 000,000,000 | ---D | C] -- C:\ProgramData\Sun
[2011.01.02 16:35:05 | 000,000,000 | ---D | C] -- C:\Programme\Common Files\Java
[2011.01.02 16:34:56 | 000,411,368 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\System32\deployJava1.dll
[2011.01.02 16:34:56 | 000,153,376 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\System32\javaws.exe
[2011.01.02 16:34:56 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\System32\javaw.exe
[2011.01.02 16:34:56 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\System32\java.exe
[2011.01.02 16:34:45 | 000,000,000 | ---D | C] -- C:\Programme\Java
[2011.01.02 16:34:00 | 000,000,000 | ---D | C] -- C:\Programme\JDownloader
[2011.01.02 16:33:21 | 000,000,000 | ---D | C] -- C:\Users\Benutzer\AppData\Roaming\DVDVideoSoftIEHelpers
[2011.01.02 16:33:18 | 000,000,000 | ---D | C] -- C:\Users\Benutzer\Documents\DVDVideoSoft
[2011.01.02 16:33:12 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVDVideoSoft
[2011.01.02 16:33:07 | 000,000,000 | ---D | C] -- C:\Programme\DVDVideoSoft
[2011.01.02 16:33:07 | 000,000,000 | ---D | C] -- C:\Programme\Common Files\DVDVideoSoft
[2011.01.02 16:31:54 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Winamp
[2011.01.02 16:31:53 | 002,414,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_31.dll
[2011.01.02 16:31:53 | 001,892,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DX9_42.dll
[2011.01.02 16:31:29 | 000,000,000 | ---D | C] -- C:\Users\Benutzer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Winamp Erkennungs-Plug-in
[2011.01.02 16:31:29 | 000,000,000 | ---D | C] -- C:\Programme\Winamp Detect
[2011.01.02 16:31:24 | 000,000,000 | ---D | C] -- C:\Programme\Common Files\PX Storage Engine
[2011.01.02 16:31:22 | 000,000,000 | ---D | C] -- C:\Users\Benutzer\AppData\Roaming\Winamp
[2011.01.02 16:31:22 | 000,000,000 | ---D | C] -- C:\Programme\Winamp
[2011.01.02 16:30:40 | 000,000,000 | ---D | C] -- C:\Users\Benutzer\AppData\Roaming\vlc
[2011.01.02 16:30:34 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
[2011.01.02 16:30:25 | 000,000,000 | ---D | C] -- C:\Programme\VideoLAN
[2011.01.02 16:29:17 | 000,000,000 | ---D | C] -- C:\Users\Benutzer\AppData\Roaming\WinRAR
[2011.01.02 16:28:43 | 000,000,000 | ---D | C] -- C:\Users\Benutzer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
[2011.01.02 16:28:43 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
[2011.01.02 16:28:40 | 000,000,000 | ---D | C] -- C:\Programme\WinRAR
[2010.12.31 17:55:17 | 000,000,000 | ---D | C] -- C:\Windows\System32\RTCOM
[2010.12.31 17:55:01 | 001,784,352 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\System32\WavesLib.dll
[2010.12.31 17:55:01 | 000,551,456 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\System32\RTSndMgr.cpl
[2010.12.31 17:55:01 | 000,339,968 | ---- | C] (SRS Labs, Inc.) -- C:\Windows\System32\SRSTSXT.dll
[2010.12.31 17:55:01 | 000,185,776 | ---- | C] (SRS Labs, Inc.) -- C:\Windows\System32\SRSTSHD.dll
[2010.12.31 17:55:01 | 000,167,936 | ---- | C] (SRS Labs, Inc.) -- C:\Windows\System32\SRSHP360.dll
[2010.12.31 17:55:01 | 000,135,168 | ---- | C] (SRS Labs, Inc.) -- C:\Windows\System32\SRSWOW.dll
[2010.12.31 17:55:00 | 002,790,944 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\System32\RtkAPO.dll
[2010.12.31 17:55:00 | 002,776,672 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\System32\drivers\RTKVHDA.sys
[2010.12.31 17:55:00 | 001,352,736 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\System32\RtkPgExt.dll
[2010.12.31 17:55:00 | 000,347,648 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\System32\RTEEP32A.dll
[2010.12.31 17:55:00 | 000,338,464 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\System32\RtkApoApi.dll
[2010.12.31 17:55:00 | 000,290,304 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\System32\RP3DHT32.dll
[2010.12.31 17:55:00 | 000,290,304 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\System32\RP3DAA32.dll
[2010.12.31 17:55:00 | 000,164,864 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\System32\RTEED32A.dll
[2010.12.31 17:55:00 | 000,073,216 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\System32\RTEEL32A.dll
[2010.12.31 17:55:00 | 000,059,392 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\System32\RTEEG32A.dll
[2010.12.31 17:55:00 | 000,053,280 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\System32\RtkCoInst.dll
[2010.12.31 17:54:59 | 001,933,312 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\System32\MaxxAudioEQ.dll
[2010.12.31 17:54:59 | 000,306,176 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\System32\MaxxAudioAPO20.dll
[2010.12.31 17:54:59 | 000,126,976 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\System32\MaxxAudioAPO.dll
[2010.12.31 17:54:58 | 000,280,576 | ---- | C] (Fortemedia Corporation) -- C:\Windows\System32\FMAPO.dll
[2010.12.31 17:54:58 | 000,142,848 | ---- | C] (Andrea Electronics Corporation) -- C:\Windows\System32\AERTACap.dll
[2010.12.31 17:54:58 | 000,125,952 | ---- | C] (Andrea Electronics Corporation) -- C:\Windows\System32\AERTARen.dll
[2010.12.31 17:54:58 | 000,000,000 | -H-D | C] -- C:\Programme\Temp
[2010.12.31 17:54:58 | 000,000,000 | -H-D | C] -- C:\Programme\InstallShield Installation Information
[2010.12.31 17:54:58 | 000,000,000 | ---D | C] -- C:\Programme\Realtek
[2010.12.31 17:54:57 | 000,831,488 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\RtlExUpd.dll
[2010.12.31 17:54:54 | 000,000,000 | ---D | C] -- C:\Programme\Common Files\InstallShield
[2010.12.31 11:33:03 | 000,000,000 | ---D | C] -- C:\Windows\System32\Macromed
[2010.12.30 19:34:25 | 000,000,000 | ---D | C] -- C:\ProgramData\Google
[2010.12.30 19:34:25 | 000,000,000 | ---D | C] -- C:\Users\Benutzer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Cooliris
[2010.12.30 19:34:24 | 000,000,000 | ---D | C] -- C:\Users\Benutzer\AppData\Local\Cooliris
[2010.12.30 19:33:25 | 000,000,000 | ---D | C] -- C:\Programme\MozBackup
[2010.12.30 19:33:25 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MozBackup
[2010.12.30 19:32:44 | 000,000,000 | ---D | C] -- C:\Users\Benutzer\AppData\Roaming\Thunderbird
[2010.12.30 19:32:44 | 000,000,000 | ---D | C] -- C:\Users\Benutzer\AppData\Local\Thunderbird
[2010.12.30 19:32:39 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Thunderbird
[2010.12.30 19:32:35 | 000,000,000 | ---D | C] -- C:\Programme\Mozilla Thunderbird
[2010.12.30 19:27:53 | 000,000,000 | ---D | C] -- C:\Users\Benutzer\AppData\Roaming\Mozilla
[2010.12.30 19:27:53 | 000,000,000 | ---D | C] -- C:\Users\Benutzer\AppData\Local\Mozilla
[2010.12.30 19:21:18 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox
[2010.12.30 19:21:14 | 000,000,000 | ---D | C] -- C:\Programme\Mozilla Firefox
[2010.12.30 19:15:47 | 000,000,000 | ---D | C] -- C:\Programme\Microsoft.NET
[2010.12.30 19:13:25 | 000,000,000 | ---D | C] -- C:\Users\Benutzer\AppData\Roaming\Macromedia
[2010.12.30 19:13:25 | 000,000,000 | ---D | C] -- C:\Users\Benutzer\AppData\Roaming\Adobe
[2010.12.30 19:13:13 | 000,000,000 | ---D | C] -- C:\Users\Benutzer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome
[2010.12.30 19:12:32 | 000,000,000 | ---D | C] -- C:\Users\Benutzer\AppData\Local\Google
[2010.12.30 19:12:22 | 000,000,000 | ---D | C] -- C:\Users\Benutzer\AppData\Local\Deployment
[2010.12.30 19:12:22 | 000,000,000 | ---D | C] -- C:\Users\Benutzer\AppData\Local\Apps
[2010.12.30 19:05:56 | 000,295,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PresentationHost.exe
[2010.12.30 19:05:56 | 000,099,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PresentationHostProxy.dll
[2010.12.30 19:05:56 | 000,049,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\netfxperf.dll
[2010.12.30 19:00:46 | 000,293,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\browserchoice.exe
[2010.12.30 19:00:15 | 000,190,976 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\ks.sys
[2010.12.30 18:58:53 | 000,109,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\t2embed.dll
[2010.12.30 18:58:48 | 000,606,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mstime.dll
[2010.12.30 18:58:48 | 000,599,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeeds.dll
[2010.12.30 18:58:48 | 000,381,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iedkcs32.dll
[2010.12.30 18:58:48 | 000,185,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iepeers.dll
[2010.12.30 18:58:48 | 000,044,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\licmgr10.dll
[2010.12.30 18:58:47 | 001,638,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mshtml.tlb
[2010.12.30 18:58:47 | 000,386,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\html.iec
[2010.12.30 18:58:47 | 000,176,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieui.dll
[2010.12.30 18:58:47 | 000,064,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeedsbs.dll
[2010.12.30 18:58:47 | 000,048,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jsproxy.dll
[2010.12.30 18:58:47 | 000,012,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeedssync.exe
[2010.12.30 18:58:45 | 000,641,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\CPFilters.dll
[2010.12.30 18:58:44 | 000,465,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\psisdecd.dll
[2010.12.30 18:58:44 | 000,417,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msdri.dll
[2010.12.30 18:58:44 | 000,204,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MSNP.ax
[2010.12.30 18:58:44 | 000,199,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mpg2splt.ax
[2010.12.30 18:58:37 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\tzres.dll
[2010.12.30 18:58:30 | 001,037,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\lsasrv.dll
[2010.12.30 18:58:30 | 000,133,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\ksecpkg.sys
[2010.12.30 18:58:27 | 000,496,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\taskschd.dll
[2010.12.30 18:58:26 | 000,351,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wmicmiplugin.dll
[2010.12.30 18:58:26 | 000,305,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\taskcomp.dll
[2010.12.30 18:58:26 | 000,179,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\schtasks.exe
[2010.12.30 18:58:25 | 002,614,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\explorer.exe
[2010.12.30 18:58:24 | 000,197,632 | ---- | C] (Intel(R) Corporation) -- C:\Windows\System32\ir32_32.dll
[2010.12.30 18:58:24 | 000,082,944 | ---- | C] (Radius Inc.) -- C:\Windows\System32\iccvid.dll
[2010.12.30 18:58:20 | 000,037,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rtutils.dll
[2010.12.30 18:58:19 | 000,067,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\asycfilt.dll
[2010.12.30 18:58:15 | 001,320,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\CertEnroll.dll
[2010.12.30 18:58:14 | 000,507,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\winload.exe
[2010.12.30 18:58:14 | 000,442,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\winresume.exe
[2010.12.30 18:58:08 | 000,954,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mfc40.dll
[2010.12.30 18:58:08 | 000,954,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mfc40u.dll
[2010.12.30 18:58:06 | 012,625,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wmploc.DLL
[2010.12.30 18:58:02 | 003,955,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ntkrnlpa.exe
[2010.12.30 18:58:02 | 003,899,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ntoskrnl.exe
[2010.12.30 18:58:01 | 000,369,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\secproc.dll
[2010.12.30 18:58:01 | 000,365,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\secproc_isv.dll
[2010.12.30 18:58:01 | 000,324,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\RMActivate_isv.exe
[2010.12.30 18:58:01 | 000,320,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\RMActivate.exe
[2010.12.30 18:58:01 | 000,280,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\RMActivate_ssp.exe
[2010.12.30 18:58:01 | 000,277,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\RMActivate_ssp_isv.exe
[2010.12.30 18:58:01 | 000,085,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\secproc_ssp_isv.dll
[2010.12.30 18:58:01 | 000,085,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\secproc_ssp.dll
[2010.12.30 18:57:58 | 000,294,400 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\System32\atmfd.dll
[2010.12.30 18:57:58 | 000,070,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\fontsub.dll
[2010.12.30 18:57:58 | 000,034,304 | ---- | C] (Adobe Systems) -- C:\Windows\System32\atmlib.dll
[2010.12.30 18:57:55 | 001,328,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\quartz.dll
[2010.12.30 18:57:55 | 000,091,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\avifil32.dll
[2010.12.30 18:57:55 | 000,084,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mciavi32.dll
[2010.12.30 18:57:54 | 000,738,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wmpmde.dll
[2010.12.30 18:57:50 | 000,314,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\webio.dll
[2010.12.30 18:57:49 | 000,427,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\vbscript.dll
[2010.12.30 18:57:49 | 000,101,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\consent.exe
[2010.12.30 18:57:48 | 000,026,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\Diskdump.sys
[2010.12.30 18:57:47 | 000,716,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jscript.dll
[2010.12.30 18:57:46 | 000,363,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\StructuredQuery.dll
[2010.12.30 18:53:30 | 002,327,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\win32k.sys
[2010.12.30 18:47:54 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira
[2010.12.30 18:47:46 | 000,135,096 | ---- | C] (Avira GmbH) -- C:\Windows\System32\drivers\avipbb.sys
[2010.12.30 18:47:46 | 000,061,960 | ---- | C] (Avira GmbH) -- C:\Windows\System32\drivers\avgntflt.sys
[2010.12.30 18:47:46 | 000,028,520 | ---- | C] (Avira GmbH) -- C:\Windows\System32\drivers\ssmdrv.sys
[2010.12.30 18:47:45 | 000,000,000 | ---D | C] -- C:\Programme\Avira
[2010.12.30 18:47:45 | 000,000,000 | ---D | C] -- C:\ProgramData\Avira
[2010.12.30 18:44:14 | 000,000,000 | -HSD | C] -- C:\Windows\Installer
[2010.12.30 18:33:54 | 000,000,000 | R--D | C] -- C:\Users\Benutzer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
[2010.12.30 18:33:54 | 000,000,000 | R--D | C] -- C:\Users\Benutzer\Searches
[2010.12.30 18:33:54 | 000,000,000 | R--D | C] -- C:\Users\Benutzer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
[2010.12.30 18:33:45 | 000,000,000 | ---D | C] -- C:\Users\Benutzer\AppData\Roaming\Identities
[2010.12.30 18:33:39 | 000,000,000 | R--D | C] -- C:\Users\Benutzer\Contacts
[2010.12.30 18:33:28 | 000,000,000 | ---D | C] -- C:\Users\Benutzer\AppData\Local\VirtualStore
[2010.12.30 18:33:19 | 000,000,000 | --SD | C] -- C:\Users\Benutzer\AppData\Roaming\Microsoft
[2010.12.30 18:33:19 | 000,000,000 | R--D | C] -- C:\Users\Benutzer\Videos
[2010.12.30 18:33:19 | 000,000,000 | R--D | C] -- C:\Users\Benutzer\Saved Games
[2010.12.30 18:33:19 | 000,000,000 | R--D | C] -- C:\Users\Benutzer\Pictures
[2010.12.30 18:33:19 | 000,000,000 | R--D | C] -- C:\Users\Benutzer\Music
[2010.12.30 18:33:19 | 000,000,000 | R--D | C] -- C:\Users\Benutzer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
[2010.12.30 18:33:19 | 000,000,000 | R--D | C] -- C:\Users\Benutzer\Links
[2010.12.30 18:33:19 | 000,000,000 | R--D | C] -- C:\Users\Benutzer\Favorites
[2010.12.30 18:33:19 | 000,000,000 | R--D | C] -- C:\Users\Benutzer\Downloads
[2010.12.30 18:33:19 | 000,000,000 | R--D | C] -- C:\Users\Benutzer\Documents
[2010.12.30 18:33:19 | 000,000,000 | R--D | C] -- C:\Users\Benutzer\Desktop
[2010.12.30 18:33:19 | 000,000,000 | R--D | C] -- C:\Users\Benutzer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
[2010.12.30 18:33:19 | 000,000,000 | -HSD | C] -- C:\Users\Benutzer\Vorlagen
[2010.12.30 18:33:19 | 000,000,000 | -HSD | C] -- C:\Users\Benutzer\AppData\Local\Verlauf
[2010.12.30 18:33:19 | 000,000,000 | -HSD | C] -- C:\Users\Benutzer\AppData\Local\Temporary Internet Files
[2010.12.30 18:33:19 | 000,000,000 | -HSD | C] -- C:\Users\Benutzer\Startmenü
[2010.12.30 18:33:19 | 000,000,000 | -HSD | C] -- C:\Users\Benutzer\SendTo
[2010.12.30 18:33:19 | 000,000,000 | -HSD | C] -- C:\Users\Benutzer\Recent
[2010.12.30 18:33:19 | 000,000,000 | -HSD | C] -- C:\Users\Benutzer\Netzwerkumgebung
[2010.12.30 18:33:19 | 000,000,000 | -HSD | C] -- C:\Users\Benutzer\Lokale Einstellungen
[2010.12.30 18:33:19 | 000,000,000 | -HSD | C] -- C:\Users\Benutzer\Documents\Eigene Videos
[2010.12.30 18:33:19 | 000,000,000 | -HSD | C] -- C:\Users\Benutzer\Documents\Eigene Musik
[2010.12.30 18:33:19 | 000,000,000 | -HSD | C] -- C:\Users\Benutzer\Eigene Dateien
[2010.12.30 18:33:19 | 000,000,000 | -HSD | C] -- C:\Users\Benutzer\Documents\Eigene Bilder
[2010.12.30 18:33:19 | 000,000,000 | -HSD | C] -- C:\Users\Benutzer\Druckumgebung
[2010.12.30 18:33:19 | 000,000,000 | -HSD | C] -- C:\Users\Benutzer\Cookies
[2010.12.30 18:33:19 | 000,000,000 | -HSD | C] -- C:\Users\Benutzer\AppData\Local\Anwendungsdaten
[2010.12.30 18:33:19 | 000,000,000 | -HSD | C] -- C:\Users\Benutzer\Anwendungsdaten
[2010.12.30 18:33:19 | 000,000,000 | -H-D | C] -- C:\Users\Benutzer\AppData
[2010.12.30 18:33:19 | 000,000,000 | ---D | C] -- C:\Users\Benutzer\AppData\Local\Temp
[2010.12.30 18:33:19 | 000,000,000 | ---D | C] -- C:\Users\Benutzer\AppData\Local\Microsoft
[2010.12.30 18:33:19 | 000,000,000 | ---D | C] -- C:\Users\Benutzer\AppData\Roaming\Media Center Programs
[2010.12.30 18:30:12 | 000,000,000 | -HSD | C] -- C:\ProgramData\Vorlagen
[2010.12.30 18:30:12 | 000,000,000 | -HSD | C] -- C:\ProgramData\Startmenü
[2010.12.30 18:30:12 | 000,000,000 | -HSD | C] -- C:\Recovery
[2010.12.30 18:30:12 | 000,000,000 | -HSD | C] -- C:\Programme
[2010.12.30 18:30:12 | 000,000,000 | -HSD | C] -- C:\Programme\Gemeinsame Dateien
[2010.12.30 18:30:12 | 000,000,000 | -HSD | C] -- C:\ProgramData\Favoriten
[2010.12.30 18:30:12 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Eigene Videos
[2010.12.30 18:30:12 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Eigene Musik
[2010.12.30 18:30:12 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Eigene Bilder
[2010.12.30 18:30:12 | 000,000,000 | -HSD | C] -- C:\Dokumente und Einstellungen
[2010.12.30 18:30:12 | 000,000,000 | -HSD | C] -- C:\ProgramData\Dokumente
[2010.12.30 18:30:12 | 000,000,000 | -HSD | C] -- C:\ProgramData\Desktop
[2010.12.30 18:30:12 | 000,000,000 | -HSD | C] -- C:\ProgramData\Anwendungsdaten
[2010.12.30 18:30:09 | 000,000,000 | ---D | C] -- C:\Windows\SoftwareDistribution
[2010.12.30 18:24:45 | 000,000,000 | -HSD | C] -- C:\System Volume Information
[2010.12.30 18:24:42 | 000,000,000 | ---D | C] -- C:\Windows\CSC
[2010.12.30 18:22:40 | 000,000,000 | -HSD | C] -- C:\Boot
 
========== Files - Modified Within 30 Days ==========
 
[2011.01.28 21:37:33 | 000,014,016 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2011.01.28 21:37:33 | 000,014,016 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2011.01.28 21:36:42 | 000,654,166 | ---- | M] () -- C:\Windows\System32\perfh007.dat
[2011.01.28 21:36:42 | 000,616,008 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2011.01.28 21:36:42 | 000,130,006 | ---- | M] () -- C:\Windows\System32\perfc007.dat
[2011.01.28 21:36:42 | 000,106,388 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2011.01.28 21:32:24 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2011.01.28 21:32:21 | 2414,481,408 | -HS- | M] () -- C:\hiberfil.sys
[2011.01.28 21:27:00 | 000,001,134 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2243016820-921162344-3916321221-1001UA.job
[2011.01.28 21:21:28 | 000,001,067 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
[2011.01.28 21:17:00 | 000,001,118 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2243016820-921162344-3916321221-1000UA.job
[2011.01.28 19:27:00 | 000,001,082 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2243016820-921162344-3916321221-1001Core.job
[2011.01.28 19:17:00 | 000,001,066 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2243016820-921162344-3916321221-1000Core.job
[2011.01.28 11:39:13 | 000,281,760 | ---- | M] () -- C:\Windows\System32\drivers\atksgt.sys
[2011.01.28 11:39:12 | 000,025,888 | ---- | M] () -- C:\Windows\System32\drivers\lirsgt.sys
[2011.01.19 19:40:02 | 000,005,082 | ---- | M] () -- C:\Users\Benutzer\Desktop\Children Of Bodom - 08 - Trashed, Lost & Strungout.mid
[2011.01.14 13:17:43 | 000,002,359 | ---- | M] () -- C:\Users\Benutzer\Desktop\Google Chrome.lnk
[2011.01.14 13:07:08 | 000,033,130 | ---- | M] () -- C:\Users\Benutzer\Desktop\Children Of Bodom - 08 - Trashed, Lost & Strungout drums, bass.mid
[2011.01.14 13:04:18 | 000,000,014 | ---- | M] () -- C:\Users\Benutzer\Desktop\Children Of Bodom - Blooddrunk - 02 - Blooddrunk.mid
[2011.01.14 11:38:14 | 000,001,044 | ---- | M] () -- C:\Users\Public\Desktop\Guitar Rig 4.lnk
[2011.01.13 18:26:32 | 000,001,112 | ---- | M] () -- C:\Users\Benutzer\Desktop\VirtualDub - Verknüpfung.lnk
[2011.01.13 17:21:07 | 000,001,049 | ---- | M] () -- C:\Users\Benutzer\Desktop\Trillian.lnk
[2011.01.13 16:58:20 | 000,002,923 | ---- | M] () -- C:\Users\Public\Desktop\Nero StartSmart 10.lnk
[2011.01.13 16:56:19 | 000,002,987 | ---- | M] () -- C:\Users\Public\Desktop\Nero Vision 10.lnk
[2011.01.13 16:53:20 | 000,002,919 | ---- | M] () -- C:\Users\Public\Desktop\Nero MediaHub 10.lnk
[2011.01.13 16:51:02 | 000,003,133 | ---- | M] () -- C:\Users\Public\Desktop\Nero BackItUp 10.lnk
[2011.01.13 16:47:30 | 000,002,937 | ---- | M] () -- C:\Users\Public\Desktop\Nero Burning ROM 10.lnk
[2011.01.13 16:31:44 | 000,001,126 | ---- | M] () -- C:\Users\Public\Desktop\Revo Uninstaller Pro.lnk
[2011.01.07 20:18:53 | 000,001,584 | ---- | M] () -- C:\Users\Public\Desktop\Anno 1701.lnk
[2011.01.07 18:47:22 | 000,028,498 | ---- | M] () -- C:\Users\Benutzer\Desktop\drums.mid
[2011.01.07 16:42:19 | 000,002,151 | ---- | M] () -- C:\Users\Benutzer\Desktop\TV Movie ClickFinder.lnk
[2011.01.07 16:19:20 | 000,001,475 | ---- | M] () -- C:\Windows\wininit.ini
[2011.01.07 16:19:20 | 000,000,141 | ---- | M] () -- C:\Windows\tmpcpyis.bat
[2011.01.07 16:19:20 | 000,000,122 | ---- | M] () -- C:\Windows\tmpdelis.bat
[2011.01.07 16:19:20 | 000,000,026 | ---- | M] () -- C:\Windows\winstart.bat
[2011.01.07 16:03:28 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS
[2011.01.07 16:03:28 | 000,000,000 | RHS- | M] () -- C:\IO.SYS
[2011.01.07 12:54:58 | 000,000,000 | -H-- | M] () -- C:\Windows\System32\drivers\Msft_Kernel_KMDFMEMIO_01000.Wdf
[2011.01.07 12:53:11 | 000,000,000 | -H-- | M] () -- C:\Windows\System32\drivers\Msft_Kernel_SynTP_01000.Wdf
[2011.01.07 12:52:25 | 000,319,488 | ---- | M] (Realtek Semiconductor Corp.) -- C:\Windows\HideWin.exe
[2011.01.06 23:10:08 | 000,413,496 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT
[2011.01.06 14:05:38 | 000,002,111 | ---- | M] () -- C:\Users\Public\Desktop\TuneUp Utilities.lnk
[2011.01.06 13:33:05 | 001,078,731 | R--- | M] () -- C:\Users\Benutzer\Desktop\Resources.xpak
[2011.01.06 12:40:38 | 000,001,097 | ---- | M] () -- C:\Users\Benutzer\Desktop\FL Studio 8.lnk
[2011.01.06 12:11:55 | 000,001,995 | ---- | M] () -- C:\Users\Public\Desktop\Adobe Audition 3.0.lnk
[2011.01.06 11:14:45 | 000,002,703 | ---- | M] () -- C:\Users\Benutzer\Desktop\Microsoft Office Excel 2007.lnk
[2011.01.06 11:14:45 | 000,002,697 | ---- | M] () -- C:\Users\Benutzer\Desktop\Microsoft Office Word 2007.lnk
[2011.01.06 09:02:58 | 000,691,696 | ---- | M] () -- C:\Windows\System32\drivers\sptd.sys
[2011.01.06 09:02:58 | 000,001,896 | ---- | M] () -- C:\Users\Public\Desktop\DAEMON Tools Lite.lnk
[2011.01.02 19:24:26 | 000,000,937 | ---- | M] () -- C:\Users\Public\Desktop\REAPER.lnk
[2011.01.02 18:49:05 | 000,000,902 | ---- | M] () -- C:\Users\Benutzer\Desktop\Guitar Pro 5.lnk
[2011.01.02 17:02:07 | 000,001,001 | ---- | M] () -- C:\Users\Benutzer\Desktop\Dropbox.lnk
[2011.01.02 16:35:14 | 000,000,991 | ---- | M] () -- C:\Users\Public\Desktop\JDownloader.lnk
[2011.01.02 16:34:46 | 000,411,368 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\System32\deployJava1.dll
[2011.01.02 16:34:46 | 000,153,376 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\System32\javaws.exe
[2011.01.02 16:34:46 | 000,145,184 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\System32\javaw.exe
[2011.01.02 16:34:46 | 000,145,184 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\System32\java.exe
[2011.01.02 16:33:24 | 000,001,197 | ---- | M] () -- C:\Users\Benutzer\Desktop\DVDVideoSoft Free Studio.lnk
[2011.01.02 16:33:12 | 000,001,356 | ---- | M] () -- C:\Users\Benutzer\Desktop\Free YouTube to MP3 Converter.lnk
[2011.01.02 16:31:54 | 000,000,937 | ---- | M] () -- C:\Users\Public\Desktop\Winamp.lnk
[2011.01.02 16:30:34 | 000,001,024 | ---- | M] () -- C:\Users\Public\Desktop\VLC media player.lnk
[2010.12.31 17:54:25 | 001,784,352 | ---- | M] (Waves Audio Ltd.) -- C:\Windows\System32\WavesLib.dll
[2010.12.31 17:54:25 | 000,339,968 | ---- | M] (SRS Labs, Inc.) -- C:\Windows\System32\SRSTSXT.dll
[2010.12.31 17:54:25 | 000,185,776 | ---- | M] (SRS Labs, Inc.) -- C:\Windows\System32\SRSTSHD.dll
[2010.12.31 17:54:25 | 000,167,936 | ---- | M] (SRS Labs, Inc.) -- C:\Windows\System32\SRSHP360.dll
[2010.12.31 17:54:25 | 000,135,168 | ---- | M] (SRS Labs, Inc.) -- C:\Windows\System32\SRSWOW.dll
[2010.12.31 17:54:23 | 002,776,672 | ---- | M] (Realtek Semiconductor Corp.) -- C:\Windows\System32\drivers\RTKVHDA.sys
[2010.12.31 17:54:23 | 001,352,736 | ---- | M] (Realtek Semiconductor Corp.) -- C:\Windows\System32\RtkPgExt.dll
[2010.12.31 17:54:23 | 000,551,456 | ---- | M] (Realtek Semiconductor Corp.) -- C:\Windows\System32\RTSndMgr.cpl
[2010.12.31 17:54:22 | 002,790,944 | ---- | M] (Realtek Semiconductor Corp.) -- C:\Windows\System32\RtkAPO.dll
[2010.12.31 17:54:22 | 000,338,464 | ---- | M] (Realtek Semiconductor Corp.) -- C:\Windows\System32\RtkApoApi.dll
[2010.12.31 17:54:22 | 000,053,280 | ---- | M] (Realtek Semiconductor Corp.) -- C:\Windows\System32\RtkCoInst.dll
[2010.12.31 17:54:20 | 000,290,304 | ---- | M] (Dolby Laboratories, Inc.) -- C:\Windows\System32\RP3DHT32.dll
[2010.12.31 17:54:19 | 001,933,312 | ---- | M] (Waves Audio Ltd.) -- C:\Windows\System32\MaxxAudioEQ.dll
[2010.12.31 17:54:19 | 000,306,176 | ---- | M] (Waves Audio Ltd.) -- C:\Windows\System32\MaxxAudioAPO20.dll
[2010.12.31 17:54:19 | 000,290,304 | ---- | M] (Dolby Laboratories, Inc.) -- C:\Windows\System32\RP3DAA32.dll
[2010.12.31 17:54:19 | 000,126,976 | ---- | M] (Waves Audio Ltd.) -- C:\Windows\System32\MaxxAudioAPO.dll
[2010.12.31 17:54:18 | 000,280,576 | ---- | M] (Fortemedia Corporation) -- C:\Windows\System32\FMAPO.dll
[2010.12.31 17:54:07 | 000,142,848 | ---- | M] (Andrea Electronics Corporation) -- C:\Windows\System32\AERTACap.dll
[2010.12.31 17:54:07 | 000,125,952 | ---- | M] (Andrea Electronics Corporation) -- C:\Windows\System32\AERTARen.dll
[2010.12.31 17:54:06 | 000,831,488 | ---- | M] (Realtek Semiconductor Corp.) -- C:\Windows\RtlExUpd.dll
[2010.12.30 19:30:44 | 000,000,000 | -H-- | M] () -- C:\Windows\System32\drivers\Msft_User_WpdFs_01_09_00.Wdf
[2010.12.30 18:30:51 | 000,171,136 | RHS- | M] () -- C:\w7ldr
[2010.12.30 18:26:31 | 000,057,050 | ---- | M] () -- C:\Windows\System32\license.rtf
[2010.12.30 18:25:53 | 000,000,000 | ---- | M] () -- C:\Windows\ativpsrm.bin
[2010.12.30 18:22:43 | 000,008,192 | RHS- | M] () -- C:\BOOTSECT.BAK
 
========== Files Created - No Company Name ==========
 
[2011.01.28 21:21:28 | 000,001,067 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
[2011.01.19 19:40:02 | 000,005,082 | ---- | C] () -- C:\Users\Benutzer\Desktop\Children Of Bodom - 08 - Trashed, Lost & Strungout.mid
[2011.01.14 13:07:07 | 000,033,130 | ---- | C] () -- C:\Users\Benutzer\Desktop\Children Of Bodom - 08 - Trashed, Lost & Strungout drums, bass.mid
[2011.01.14 13:03:53 | 000,000,014 | ---- | C] () -- C:\Users\Benutzer\Desktop\Children Of Bodom - Blooddrunk - 02 - Blooddrunk.mid
[2011.01.14 11:38:14 | 000,001,044 | ---- | C] () -- C:\Users\Public\Desktop\Guitar Rig 4.lnk
[2011.01.13 18:26:32 | 000,001,112 | ---- | C] () -- C:\Users\Benutzer\Desktop\VirtualDub - Verknüpfung.lnk
[2011.01.13 17:21:07 | 000,001,079 | ---- | C] () -- C:\Users\Benutzer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Trillian.lnk
[2011.01.13 17:21:07 | 000,001,049 | ---- | C] () -- C:\Users\Benutzer\Desktop\Trillian.lnk
[2011.01.13 17:11:52 | 000,497,664 | ---- | C] () -- C:\Windows\System32\ac3filter.acm
[2011.01.13 16:58:20 | 000,002,923 | ---- | C] () -- C:\Users\Public\Desktop\Nero StartSmart 10.lnk
[2011.01.13 16:56:19 | 000,002,987 | ---- | C] () -- C:\Users\Public\Desktop\Nero Vision 10.lnk
[2011.01.13 16:53:20 | 000,002,919 | ---- | C] () -- C:\Users\Public\Desktop\Nero MediaHub 10.lnk
[2011.01.13 16:51:02 | 000,003,133 | ---- | C] () -- C:\Users\Public\Desktop\Nero BackItUp 10.lnk
[2011.01.13 16:47:30 | 000,002,937 | ---- | C] () -- C:\Users\Public\Desktop\Nero Burning ROM 10.lnk
[2011.01.13 16:31:44 | 000,001,126 | ---- | C] () -- C:\Users\Public\Desktop\Revo Uninstaller Pro.lnk
[2011.01.07 20:18:53 | 000,001,584 | ---- | C] () -- C:\Users\Public\Desktop\Anno 1701.lnk
[2011.01.07 20:18:49 | 000,281,760 | ---- | C] () -- C:\Windows\System32\drivers\atksgt.sys
[2011.01.07 20:18:41 | 000,025,888 | ---- | C] () -- C:\Windows\System32\drivers\lirsgt.sys
[2011.01.07 18:47:22 | 000,028,498 | ---- | C] () -- C:\Users\Benutzer\Desktop\drums.mid
[2011.01.07 16:42:19 | 000,002,151 | ---- | C] () -- C:\Users\Benutzer\Desktop\TV Movie ClickFinder.lnk
[2011.01.07 16:19:20 | 000,001,475 | ---- | C] () -- C:\Windows\wininit.ini
[2011.01.07 16:19:20 | 000,000,141 | ---- | C] () -- C:\Windows\tmpcpyis.bat
[2011.01.07 16:19:20 | 000,000,122 | ---- | C] () -- C:\Windows\tmpdelis.bat
[2011.01.07 16:19:20 | 000,000,026 | ---- | C] () -- C:\Windows\winstart.bat
[2011.01.07 16:18:42 | 000,069,632 | ---- | C] () -- C:\Windows\RAUNINST.EXE
[2011.01.07 16:03:28 | 000,000,000 | RHS- | C] () -- C:\MSDOS.SYS
[2011.01.07 16:03:28 | 000,000,000 | RHS- | C] () -- C:\IO.SYS
[2011.01.07 12:54:58 | 000,000,000 | -H-- | C] () -- C:\Windows\System32\drivers\Msft_Kernel_KMDFMEMIO_01000.Wdf
[2011.01.07 12:54:51 | 000,000,135 | R--- | C] () -- C:\Windows\System32\lngEng.ini
[2011.01.07 12:54:51 | 000,000,117 | ---- | C] () -- C:\Windows\System32\lngKor.ini
[2011.01.07 12:53:56 | 000,015,086 | ---- | C] () -- C:\Windows\uninstall.ico
[2011.01.07 12:53:56 | 000,008,990 | ---- | C] () -- C:\Windows\Product.ico
[2011.01.07 12:53:11 | 000,000,000 | -H-- | C] () -- C:\Windows\System32\drivers\Msft_Kernel_SynTP_01000.Wdf
[2011.01.07 12:53:02 | 001,060,424 | ---- | C] () -- C:\Windows\System32\WdfCoInstaller01000.dll
[2011.01.06 14:05:38 | 000,002,123 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TuneUp Utilities.lnk
[2011.01.06 14:05:38 | 000,002,111 | ---- | C] () -- C:\Users\Public\Desktop\TuneUp Utilities.lnk
[2011.01.06 13:33:05 | 001,078,731 | R--- | C] () -- C:\Users\Benutzer\Desktop\Resources.xpak
[2011.01.06 12:40:38 | 000,001,097 | ---- | C] () -- C:\Users\Benutzer\Desktop\FL Studio 8.lnk
[2011.01.06 12:11:55 | 000,002,011 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Audition 3.0.lnk
[2011.01.06 12:11:55 | 000,001,995 | ---- | C] () -- C:\Users\Public\Desktop\Adobe Audition 3.0.lnk
[2011.01.06 11:14:45 | 000,002,703 | ---- | C] () -- C:\Users\Benutzer\Desktop\Microsoft Office Excel 2007.lnk
[2011.01.06 11:14:45 | 000,002,697 | ---- | C] () -- C:\Users\Benutzer\Desktop\Microsoft Office Word 2007.lnk
[2011.01.06 09:02:58 | 000,691,696 | ---- | C] () -- C:\Windows\System32\drivers\sptd.sys
[2011.01.06 09:02:58 | 000,001,896 | ---- | C] () -- C:\Users\Public\Desktop\DAEMON Tools Lite.lnk
[2011.01.03 01:10:20 | 000,002,441 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader X.lnk
[2011.01.02 19:24:26 | 000,000,937 | ---- | C] () -- C:\Users\Public\Desktop\REAPER.lnk
[2011.01.02 18:49:05 | 000,000,902 | ---- | C] () -- C:\Users\Benutzer\Desktop\Guitar Pro 5.lnk
[2011.01.02 17:02:07 | 000,001,001 | ---- | C] () -- C:\Users\Benutzer\Desktop\Dropbox.lnk
[2011.01.02 16:35:14 | 000,000,991 | ---- | C] () -- C:\Users\Public\Desktop\JDownloader.lnk
[2011.01.02 16:33:19 | 000,001,197 | ---- | C] () -- C:\Users\Benutzer\Desktop\DVDVideoSoft Free Studio.lnk
[2011.01.02 16:33:12 | 000,001,356 | ---- | C] () -- C:\Users\Benutzer\Desktop\Free YouTube to MP3 Converter.lnk
[2011.01.02 16:31:54 | 000,000,937 | ---- | C] () -- C:\Users\Public\Desktop\Winamp.lnk
[2011.01.02 16:30:34 | 000,001,024 | ---- | C] () -- C:\Users\Public\Desktop\VLC media player.lnk
[2010.12.30 19:30:44 | 000,000,000 | -H-- | C] () -- C:\Windows\System32\drivers\Msft_User_WpdFs_01_09_00.Wdf
[2010.12.30 19:22:02 | 000,001,134 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2243016820-921162344-3916321221-1001UA.job
[2010.12.30 19:22:01 | 000,001,082 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2243016820-921162344-3916321221-1001Core.job
[2010.12.30 19:13:15 | 000,002,359 | ---- | C] () -- C:\Users\Benutzer\Desktop\Google Chrome.lnk
[2010.12.30 19:12:34 | 000,001,118 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2243016820-921162344-3916321221-1000UA.job
[2010.12.30 19:12:33 | 000,001,066 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2243016820-921162344-3916321221-1000Core.job
[2010.12.30 18:33:56 | 000,001,409 | ---- | C] () -- C:\Users\Benutzer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
[2010.12.30 18:30:51 | 000,171,136 | RHS- | C] () -- C:\w7ldr
[2010.12.30 18:25:53 | 000,000,000 | ---- | C] () -- C:\Windows\ativpsrm.bin
[2010.12.30 18:24:13 | 2414,481,408 | -HS- | C] () -- C:\hiberfil.sys
[2010.12.30 18:22:43 | 000,008,192 | RHS- | C] () -- C:\BOOTSECT.BAK
[2010.12.30 18:22:41 | 000,383,562 | RHS- | C] () -- C:\bootmgr
[2009.07.14 00:51:43 | 000,073,728 | ---- | C] () -- C:\Windows\System32\BthpanContextHandler.dll
[2009.07.14 00:42:10 | 000,064,000 | ---- | C] () -- C:\Windows\System32\BWContextHandler.dll

< End of report >
         
--- --- ---
OTL Logfile:
Code:
ATTFilter
OTL Extras logfile created on: 28.01.2011 21:40:40 - Run 1
OTL by OldTimer - Version 3.2.20.6     Folder = C:\Users\Benutzer\Desktop
 Ultimate Edition  (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7600.16385)
Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy
 
3,00 Gb Total Physical Memory | 2,00 Gb Available Physical Memory | 70,00% Memory free
6,00 Gb Paging File | 5,00 Gb Available in Paging File | 84,00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 144,09 Gb Total Space | 98,97 Gb Free Space | 68,68% Space Free | Partition Type: NTFS
Drive D: | 144,00 Gb Total Space | 36,32 Gb Free Space | 25,22% Space Free | Partition Type: NTFS
 
Computer Name: Benutzer-PC | User Name: Benutzer | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
 
========== Extra Registry (SafeList) ==========
 
 
========== File Associations ==========
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\System32\control.exe (Microsoft Corporation)
.hlp [@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation)
 
========== Shell Spawning ==========
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [OneNote.Open] -- C:\PROGRA~1\MICROS~2\Office12\ONENOTE.EXE "%L" (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
Directory [Winamp.Bookmark] -- "C:\Program Files\Winamp\winamp.exe" /BOOKMARK "%1" (Nullsoft, Inc.)
Directory [Winamp.Enqueue] -- "C:\Program Files\Winamp\winamp.exe" /ADD "%1" (Nullsoft, Inc.)
Directory [Winamp.Play] -- "C:\Program Files\Winamp\winamp.exe" "%1" (Nullsoft, Inc.)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
 
========== Security Center Settings ==========
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = Reg Error: Unknown registry data type -- File not found
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]
 
========== Firewall Settings ==========
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
 
========== Authorized Applications List ==========
 
 
========== HKEY_LOCAL_MACHINE Uninstall List ==========
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{0513EE35-E0FB-4166-B663-BD1AE3A803DE}" = Anno 1404
"{0886900B-B2F3-452C-B580-60F1253F7F80}" = Native Instruments Controller Editor
"{08C8666B-C502-4AB3-B4CB-D74AC42D14FE}" = Nero BackItUp 10 Help (CHM)
"{0B8565BA-BAD5-4732-B122-5FD78EFC50A9}" = Native Instruments Service Center
"{16987E99-C95C-4513-9239-7B44A0A71DB5}" = Nero SoundTrax 10 Help (CHM)
"{17283B95-21A8-4996-97DA-547A48DB266F}" = Easy Display Manager
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{1F7FB68F-52F6-46A3-B42F-38CE46295AE5}" = Nero MediaHub 10
"{237CCB62-8454-43E3-B158-3ACD0134852E}" = High-Definition Video Playback
"{2436F2A8-4B7E-4B6C-AE4E-604C84AA6A4F}" = Nero Core Components 10
"{26A24AE4-039D-4CA4-87B4-2F83216020FF}" = Java(TM) 6 Update 20
"{277C1559-4CF7-44FF-8D07-98AA9C13AABD}" = Nero Multimedia Suite 10 Platinum HD
"{2930FB47-6452-4476-BF16-D77F748646DB}" = Native Instruments GuitarRig Mobile IO Driver
"{329411A0-19F3-4740-874F-17400B126F27}" = Nero Vision 10 Help (CHM)
"{33643918-7957-4839-92C7-EA96CB621A98}" = Nero Express 10 Help (CHM)
"{34490F4E-48D0-492E-8249-B48BECF0537C}" = Nero DiscSpeed 10
"{3C3901C5-3455-3E0A-A214-0B093A5070A6}" = Microsoft .NET Framework 4 Client Profile
"{3D9CF3CA-3AB0-4A82-9853-D7C43FD1D775}" = ANNO 1404
"{42C8B7DF-FEB0-4D51-B169-506B6BEC5797}" = Nero 10 Menu TemplatePack 1
"{43FBAB46-5969-4200-9958-1FF81FEE506F}" = Nero 10 Movie ThemePack 1
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{523B2B1B-D8DB-4B41-90FF-C4D799E2758A}" = Nero ControlCenter 10 Help (CHM)
"{53C141BA-4F9E-43FB-B4F9-0C01BB716FA8}" = Adobe Audition 3.0
"{555868C6-49FB-484F-BB43-8980651A1B00}" = Nero BurnRights 10 Help (CHM)
"{5F548A02-80BC-404D-BAE6-F05F9BF6B449}" = Nero DiscCopyGadget 10 Help (CHM)
"{63AA3EAB-23BB-48B2-9AD0-44F878075604}" = Nero 10 Menu TemplatePack Basic
"{65BB0407-4CC8-4DC7-952E-3EEFDF05602A}" = Nero Update
"{66049135-9659-4AAD-9169-9CCA269EBB3E}" = Nero InfoTool 10 Help (CHM)
"{67579783-0FB7-4F7B-B881-E5BE47C9DBE0}_is1" = Revo Uninstaller Pro 2.1.1
"{68AB6930-5BFF-4FF6-923B-516A91984FE6}" = Nero BackItUp 10
"{6DFB899F-17A2-48F0-A533-ED8D6866CF38}" = Nero Control Center 10
"{70550193-1C22-445C-8FA4-564E155DB1A7}" = Nero Express 10
"{70F19404-B96C-4EBB-AD2B-3574F8736197}" = Nero 10 Movie ThemePack 2
"{71A51B09-E7D3-11DB-A386-005056C00008}" = Vimicro UVC Camera
"{7930FB47-6452-4476-BF16-D77F748646DB}" = Native Instruments Session IO Driver
"{7A295D8F-484B-4FFB-89AB-C1FD497591FE}" = Nero WaveEditor 10 Help (CHM)
"{7A5D731D-B4B3-490E-B339-75685712BAAB}" = Nero Burning ROM 10
"{7EE873AF-46BB-4B5D-BA6F-CFE4B0566E22}" = TuneUp Utilities Language Pack (de-DE)
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{85BEC8F6-9AA3-43FF-B56B-8276277137B3}" = Nero 10 Video TransitionPack 1
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8ECEC853-5C3D-4B10-B5C7-FF11FF724807}" = Nero Recode 10
"{90120000-0015-0407-0000-0000000FF1CE}" = Microsoft Office Access MUI (German) 2007
"{90120000-0016-0407-0000-0000000FF1CE}" = Microsoft Office Excel MUI (German) 2007
"{90120000-0018-0407-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (German) 2007
"{90120000-0019-0407-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (German) 2007
"{90120000-001A-0407-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (German) 2007
"{90120000-001B-0407-0000-0000000FF1CE}" = Microsoft Office Word MUI (German) 2007
"{90120000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2007
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-040C-0000-0000000FF1CE}" = Microsoft Office Proof (French) 2007
"{90120000-001F-0410-0000-0000000FF1CE}" = Microsoft Office Proof (Italian) 2007
"{90120000-002C-0407-0000-0000000FF1CE}" = Microsoft Office Proofing (German) 2007
"{90120000-0030-0000-0000-0000000FF1CE}" = Microsoft Office Enterprise 2007
"{90120000-0044-0407-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (German) 2007
"{90120000-006E-0407-0000-0000000FF1CE}" = Microsoft Office Shared MUI (German) 2007
"{90120000-00A1-0407-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (German) 2007
"{90120000-00BA-0407-0000-0000000FF1CE}" = Microsoft Office Groove MUI (German) 2007
"{92146419-AE44-4C8B-A48B-0ABB1B5EC026}" = Nero 10 Menu TemplatePack 3
"{92A10E9D-EA00-4A46-8F22-EEA660992D61}" = Nero 10 Sample Videos
"{92E25238-61A3-4ACD-A407-3C480EEF47A7}" = Nero RescueAgent 10 Help (CHM)
"{92EC1A84-7FFC-42DF-A8F6-79C21C4765A5}" = Nero DiscCopy Gadget 10
"{943CFD7D-5336-47AF-9418-E02473A5A517}" = Nero BurnRights 10
"{96ED4B78-300E-4033-AE6C-C115CEB4DF07}" = Nero 10 ClipartPack
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9A4297F3-2A51-4ED9-92CA-4BCB8380947E}" = Nero Vision 10
"{9B6B24BE-80E7-46C4-9FA5-B167D5E0F345}" = Nero BurningROM 10 Help (CHM)
"{A1A2ACDC-0C22-4EB1-B958-1898A93DAF28}" = TV Movie ClickFinder
"{A2433A63-5F5D-40E5-B529-9123C2B3E734}" = Anno 1701
"{A70B0C7B-3527-4D53-A694-E9492ECE9EE1}" = Nero 10 Movie ThemePack 4
"{AC76BA86-7AD7-1031-7B44-AA0000000001}" = Adobe Reader X - Deutsch
"{ACD15FDF-FC42-4175-B477-576F92FF2256}" = Nero 10 Sample ImagePack
"{B962AD08-335F-46f7-A182-257D37672E5C}" = Native Instruments Rig Kontrol 3 Driver
"{C18A0418-442A-4186-AF98-D08F5054A2FC}" = Nero DiscSpeed 10 Help (CHM)
"{C3273C55-E1E4-41FF-8D69-0158090DB8D8}" = Nero CoverDesigner 10 Help (CHM)
"{C3580AC4-C827-4332-B935-9A282ED5BB97}" = Nero Dolby Files 10
"{C7FAFC98-5ECC-40FC-B440-A5D5FE3A6A6E}" = Native Instruments Guitar Rig 4
"{D3742F82-1C1A-4DCC-ABBD-0E7C3C0185CC}" = TuneUp Utilities
"{DB7C1D4A-08BA-4C7E-A8AA-B7F9BB372DCF}" = Nero Recode 10 Help (CHM)
"{DD238642-14C7-4D54-8BD7-FAD6DEA9999B}" = Nero 10 Movie ThemePack 3
"{E1EE5339-5D32-458F-BAAB-B19F6301BCE2}" = Nero SoundTrax 10
"{E337E787-CF61-4B7B-B84F-509202A54023}" = Nero RescueAgent 10
"{E712C273-7564-4C8E-AA59-0FA19BC35117}" = Nero 10 Menu TemplatePack 2
"{EDCDFAD5-DF80-4600-A493-E9DAD6810230}" = Nero WaveEditor 10
"{EF3A4DAE-F16F-4AC1-87BB-FE00A784084F}" = Nero 10 PiP EffectPack 1
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F412B4AF-388C-4FF5-9B2F-33DB1C536953}" = Nero InfoTool 10
"{F467862A-D9CA-47ED-8D81-B4B3C9399272}" = Nero MediaHub 10 Help (CHM)
"{F5CB822F-B365-43D1-BCC0-4FDA1A2017A7}" = Nero 10 Movie ThemePack Basic
"{F6117F9C-ADB5-4590-9BE4-12C7BEC28702}" = Nero StartSmart 10 Help (CHM)
"{F61D489E-6C44-49AC-AD02-7DA8ACA73A65}" = Nero StartSmart 10
"{F750C986-5310-3A5A-95F8-4EC71C8AC01C}" = Microsoft .NET Framework 4 Client Profile DEU Language Pack
"{FCF00A6E-FB58-477A-ABE9-232907105521}" = Nero CoverDesigner 10
"7-Zip" = 7-Zip 9.20
"AC3Filter_is1" = AC3Filter 1.63b
"Addictive Drums" = Addictive Drums
"Adobe Audition 3.0" = Adobe Audition 3.0
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"Adobe Shockwave Player" = Adobe Shockwave Player 11.5
"ASIO4ALL" = ASIO4ALL
"Avira AntiVir Desktop" = Avira AntiVir Personal - Free Antivirus
"Collab" = Collab
"ENTERPRISE" = Microsoft Office Enterprise 2007
"FL Studio 8" = FL Studio 8
"Free YouTube to MP3 Converter_is1" = Free YouTube to MP3 Converter version 3.9.31
"Guitar Pro 5_is1" = Guitar Pro 5.2
"Gwarez_Steamless Source Premier Pack" = Gwarez_Steamless Source Premier Pack
"IL Download Manager" = IL Download Manager
"JDownloader" = JDownloader
"Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Microsoft .NET Framework 4 Client Profile DEU Language Pack" = Microsoft .NET Framework 4 Client Profile DEU Language Pack
"MozBackup" = MozBackup 1.4.10
"Mozilla Firefox (3.6.13)" = Mozilla Firefox (3.6.13)
"Mozilla Thunderbird (3.1.7)" = Mozilla Thunderbird (3.1.7)
"Native Instruments Controller Editor" = Native Instruments Controller Editor
"Native Instruments Guitar Rig 4" = Native Instruments Guitar Rig 4
"Native Instruments GuitarRig Mobile IO Driver" = Native Instruments GuitarRig Mobile IO Driver
"Native Instruments Rig Kontrol 3 Driver" = Native Instruments Rig Kontrol 3 Driver
"Native Instruments Service Center" = Native Instruments Service Center
"Native Instruments Session IO Driver" = Native Instruments Session IO Driver
"PoiZone" = PoiZone
"REAPER" = REAPER
"ReValver Mk III_is1" = ReValver Mk III
"SynTPDeinstKey" = Synaptics Pointing Device Driver
"TC UP" = Total Commander Ultima Prime 5.3.0.0
"Toxic Biohazard" = Toxic Biohazard
"Trillian" = Trillian
"TuneUp Utilities" = TuneUp Utilities
"Uninstall_is1" = Uninstall 1.0.0.1
"VLC media player" = VLC media player 1.1.5
"Voxengo CurveEQ VST" = Voxengo CurveEQ VST 2.6
"Winamp" = Winamp
"WinRAR archiver" = WinRAR
 
========== HKEY_CURRENT_USER Uninstall List ==========
 
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Dropbox" = Dropbox
"Google Chrome" = Google Chrome
"Winamp Detect" = Winamp Erkennungs-Plug-in
 
========== Last 10 Event Log Errors ==========
 
[ Application Events ]
Error - 25.01.2011 13:53:48 | Computer Name = Benutzer-PC | Source = SideBySide | ID = 16842787
Description = Fehler beim Generieren des Aktivierungskontextes für "C:\Program Files\Nero\Nero
 10\Nero WaveEditor\NMDllHost.exe.Manifest". Fehler in Manifest- oder Richtliniendatei
 "C:\Program Files\Nero\Nero 10\Nero WaveEditor\NScCoreComponents\NScCoreComponents.MANIFEST"
 in Zeile  3.  Die im Manifest gefundene Komponenten-ID stimmt nicht mit der ID der
 angeforderten Komponente überein.  Verweis: NScCoreComponents,type="win32",version="5.3.2.0".
Definition:
 NScCoreComponents,type="win32",version="5.3.0.0".  Verwenden Sie das Programm "sxstrace.exe"
 für eine detaillierte Diagnose.
 
Error - 25.01.2011 13:56:39 | Computer Name = Benutzer-PC | Source = SideBySide | ID = 16842815
Description = Fehler beim Generieren des Aktivierungskontextes für "c:\program files\mozbackup\dll\DelZip179.dll".
 Fehler in Manifest- oder Richtliniendatei "c:\program files\mozbackup\dll\DelZip179.dll"
 in Zeile 8.  Der Wert "*" des "language"-Attributs im assemblyIdentity-Element ist
 ungültig.
 
Error - 25.01.2011 13:57:07 | Computer Name = Benutzer-PC | Source = SideBySide | ID = 16842815
Description = Fehler beim Generieren des Aktivierungskontextes für "c:\program files\TC
 UP\PLUGINS\Media\SiMail\DelphiZip.dll". Fehler in Manifest- oder Richtliniendatei
 "c:\program files\TC UP\PLUGINS\Media\SiMail\DelphiZip.dll" in Zeile 8.  Der Wert
 "*" des "language"-Attributs im assemblyIdentity-Element ist ungültig.
 
Error - 25.01.2011 13:58:00 | Computer Name = Benutzer-PC | Source = SideBySide | ID = 16842785
Description = Fehler beim Generieren des Aktivierungskontextes für "c:\Spiele\anno
 1701\Tools\Tages\DrvSetup_x64.exe".  Die abhängige Assemblierung "Microsoft.Windows.Common-Controls,language="&#x2a;",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0""
 konnte nicht gefunden werden.  Verwenden Sie für eine detaillierte Diagnose das Programm
 "sxstrace.exe".
 
Error - 25.01.2011 17:09:54 | Computer Name = Benutzer-PC | Source = Microsoft-Windows-CAPI2 | ID = 4107
Description = Fehler beim Extrahieren der Drittanbieterstammliste aus der automatischen
 Aktualisierungs-CAB-Datei bei <h++p://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab>.
 Fehler: Ein erforderliches Zertifikat befindet sich nicht im Gültigkeitszeitraum
 gemessen an der aktuellen Systemzeit oder dem Zeitstempel in der signierten Datei.
.
 
Error - 25.01.2011 17:09:54 | Computer Name = Benutzer-PC | Source = Microsoft-Windows-CAPI2 | ID = 4107
Description = Fehler beim Extrahieren der Drittanbieterstammliste aus der automatischen
 Aktualisierungs-CAB-Datei bei <h++p://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab>.
 Fehler: Ein erforderliches Zertifikat befindet sich nicht im Gültigkeitszeitraum
 gemessen an der aktuellen Systemzeit oder dem Zeitstempel in der signierten Datei.
.
 
Error - 26.01.2011 11:49:36 | Computer Name = Benutzer-PC | Source = Microsoft-Windows-CAPI2 | ID = 4107
Description = Fehler beim Extrahieren der Drittanbieterstammliste aus der automatischen
 Aktualisierungs-CAB-Datei bei <h++p://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab>.
 Fehler: Ein erforderliches Zertifikat befindet sich nicht im Gültigkeitszeitraum
 gemessen an der aktuellen Systemzeit oder dem Zeitstempel in der signierten Datei.
.
 
Error - 26.01.2011 11:49:36 | Computer Name = Benutzer-PC | Source = Microsoft-Windows-CAPI2 | ID = 4107
Description = Fehler beim Extrahieren der Drittanbieterstammliste aus der automatischen
 Aktualisierungs-CAB-Datei bei <h++p://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab>.
 Fehler: Ein erforderliches Zertifikat befindet sich nicht im Gültigkeitszeitraum
 gemessen an der aktuellen Systemzeit oder dem Zeitstempel in der signierten Datei.
.
 
Error - 26.01.2011 12:39:26 | Computer Name = Benutzer-PC | Source = Microsoft-Windows-CAPI2 | ID = 4107
Description = Fehler beim Extrahieren der Drittanbieterstammliste aus der automatischen
 Aktualisierungs-CAB-Datei bei <h++p://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab>.
 Fehler: Ein erforderliches Zertifikat befindet sich nicht im Gültigkeitszeitraum
 gemessen an der aktuellen Systemzeit oder dem Zeitstempel in der signierten Datei.
.
 
Error - 26.01.2011 12:39:26 | Computer Name = Benutzer-PC | Source = Microsoft-Windows-CAPI2 | ID = 4107
Description = Fehler beim Extrahieren der Drittanbieterstammliste aus der automatischen
 Aktualisierungs-CAB-Datei bei <h++p://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab>.
 Fehler: Ein erforderliches Zertifikat befindet sich nicht im Gültigkeitszeitraum
 gemessen an der aktuellen Systemzeit oder dem Zeitstempel in der signierten Datei.
.
 
[ System Events ]
Error - 26.01.2011 15:49:35 | Computer Name = Benutzer-PC | Source = Service Control Manager | ID = 7000
Description = Der Dienst "atksgt" wurde aufgrund folgenden Fehlers nicht gestartet:
   %%1275
 
Error - 27.01.2011 07:00:43 | Computer Name = Benutzer-PC | Source = atikmdag | ID = 43029
Description = Display is not active
 
Error - 27.01.2011 10:03:10 | Computer Name = Benutzer-PC | Source = atikmdag | ID = 52236
Description = CPLIB :: General - Invalid Parameter
 
Error - 27.01.2011 10:03:10 | Computer Name = Benutzer-PC | Source = atikmdag | ID = 43029
Description = Display is not active
 
Error - 27.01.2011 10:03:15 | Computer Name = Benutzer-PC | Source = Application Popup | ID = 875
Description = Treiber atksgt.sys konnte nicht geladen werden.
 
Error - 27.01.2011 10:03:15 | Computer Name = Benutzer-PC | Source = Service Control Manager | ID = 7000
Description = Der Dienst "atksgt" wurde aufgrund folgenden Fehlers nicht gestartet:
   %%1275
 
Error - 27.01.2011 17:54:43 | Computer Name = Benutzer-PC | Source = atikmdag | ID = 43029
Description = Display is not active
 
Error - 27.01.2011 18:17:33 | Computer Name = Benutzer-PC | Source = atikmdag | ID = 43029
Description = Display is not active
 
Error - 28.01.2011 01:12:33 | Computer Name = Benutzer-PC | Source = atikmdag | ID = 52236
Description = CPLIB :: General - Invalid Parameter
 
Error - 28.01.2011 01:12:33 | Computer Name = Benutzer-PC | Source = atikmdag | ID = 43029
Description = Display is not active
 
 
< End of report >
         
--- --- ---
__________________

Alt 28.01.2011, 22:30   #4
cosinus
/// Winkelfunktion
/// TB-Süch-Tiger™
 
TR/Orsam.a.6262 - was soll das sein? - Standard

TR/Orsam.a.6262 - was soll das sein?



Sry aber ich wollte einen Vollscan sehen.
Poste auch alle etwaigen anderen Logs von MBAM, die du im Reiter Logdateien siehst.
__________________
Logfiles bitte immer in CODE-Tags posten

Alt 29.01.2011, 18:28   #5
Frederick
 
TR/Orsam.a.6262 - was soll das sein? - Standard

TR/Orsam.a.6262 - was soll das sein?



Oh, ok. Hier is der volle scan

Malwarebytes' Anti-Malware 1.50.1.1100
www.malwarebytes.org

Database version: 5631

Windows 6.1.7600
Internet Explorer 8.0.7600.16385

29.01.2011 18:05:21
mbam-log-2011-01-29 (18-05-21).txt

Scan type: Full scan (C:\|D:\|)
Objects scanned: 310640
Time elapsed: 48 minute(s), 32 second(s)

Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 0
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 0

Memory Processes Infected:
(No malicious items detected)

Memory Modules Infected:
(No malicious items detected)

Registry Keys Infected:
(No malicious items detected)

Registry Values Infected:
(No malicious items detected)

Registry Data Items Infected:
(No malicious items detected)

Folders Infected:
(No malicious items detected)

Files Infected:
(No malicious items detected)


Alt 30.01.2011, 13:44   #6
cosinus
/// Winkelfunktion
/// TB-Süch-Tiger™
 
TR/Orsam.a.6262 - was soll das sein? - Standard

TR/Orsam.a.6262 - was soll das sein?



Gibt es noch weitere Logs von Malwarebytes? Wenn ja bitte alle davon posten. Du findest diese im Reiter Logdateien in Malwarebytes.
__________________
--> TR/Orsam.a.6262 - was soll das sein?

Alt 30.01.2011, 16:02   #7
Frederick
 
TR/Orsam.a.6262 - was soll das sein? - Standard

TR/Orsam.a.6262 - was soll das sein?



Also ingesamt sind 3 logs drin:

Nummer 1:

Malwarebytes' Anti-Malware 1.50.1.1100
www.malwarebytes.org

Database version: 5631

Windows 6.1.7600
Internet Explorer 8.0.7600.16385

28.01.2011 21:51:55
mbam-log-2011-01-28 (21-51-55).txt

Scan type: Quick scan
Objects scanned: 1036
Time elapsed: 15 second(s)

Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 0
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 0

Memory Processes Infected:
(No malicious items detected)

Memory Modules Infected:
(No malicious items detected)

Registry Keys Infected:
(No malicious items detected)

Registry Values Infected:
(No malicious items detected)

Registry Data Items Infected:
(No malicious items detected)

Folders Infected:
(No malicious items detected)

Files Infected:
(No malicious items detected)

Nummer 2:
Malwarebytes' Anti-Malware 1.50.1.1100
www.malwarebytes.org

Database version: 5631

Windows 6.1.7600
Internet Explorer 8.0.7600.16385

28.01.2011 21:53:55
mbam-log-2011-01-28 (21-53-55).txt

Scan type: Quick scan
Objects scanned: 121000
Time elapsed: 1 minute(s), 40 second(s)

Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 0
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 0

Memory Processes Infected:
(No malicious items detected)

Memory Modules Infected:
(No malicious items detected)

Registry Keys Infected:
(No malicious items detected)

Registry Values Infected:
(No malicious items detected)

Registry Data Items Infected:
(No malicious items detected)

Folders Infected:
(No malicious items detected)

Files Infected:
(No malicious items detected)

und Nummer 3:

Malwarebytes' Anti-Malware 1.50.1.1100
www.malwarebytes.org

Database version: 5631

Windows 6.1.7600
Internet Explorer 8.0.7600.16385

29.01.2011 18:05:21
mbam-log-2011-01-29 (18-05-21).txt

Scan type: Full scan (C:\|D:\|)
Objects scanned: 310640
Time elapsed: 48 minute(s), 32 second(s)

Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 0
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 0

Memory Processes Infected:
(No malicious items detected)

Memory Modules Infected:
(No malicious items detected)

Registry Keys Infected:
(No malicious items detected)

Registry Values Infected:
(No malicious items detected)

Registry Data Items Infected:
(No malicious items detected)

Folders Infected:
(No malicious items detected)

Files Infected:
(No malicious items detected)

Antwort

Themen zu TR/Orsam.a.6262 - was soll das sein?
antivir, bildschirm, clean, diverse, einfach, folge, folgendes, friert, infiziert, installiert, malware, meldet, neu, nichts, notebook, problem, quarantäne, rechner, seite, spiele, steam, verschickt, viren, virus, woche



Ähnliche Themen: TR/Orsam.a.6262 - was soll das sein?


  1. Linux-Trojaner soll Teil der Epic/Turla-Angriffe gewesen sein
    Nachrichten - 11.12.2014 (0)
  2. OXY keine Ahnung was das sein soll
    Plagegeister aller Art und deren Bekämpfung - 01.12.2013 (26)
  3. Soll das ein Trojaner sein?
    Plagegeister aller Art und deren Bekämpfung - 07.03.2013 (23)
  4. cURL 7.x soll auf meinem Computer installiert sein
    Alles rund um Windows - 29.11.2011 (0)
  5. Was könnte das sein?
    Plagegeister aller Art und deren Bekämpfung - 04.01.2011 (1)
  6. TR/Dropper.Gen von Avira AntiVir und Trojan.Agent.CK sowie Trojan.Orsam von Malwarebytes erkannt
    Plagegeister aller Art und deren Bekämpfung - 03.12.2010 (1)
  7. Trojan:Win32/Orsam!rtf und Trojandownloader:Win32/Bredolab.AA
    Plagegeister aller Art und deren Bekämpfung - 06.07.2010 (38)
  8. keine ahnung was das sein soll...
    Log-Analyse und Auswertung - 08.02.2009 (0)
  9. wpeserv.exe und wo zu sie gut sein soll
    Plagegeister aller Art und deren Bekämpfung - 19.02.2007 (2)
  10. Was kann das sein ?
    Alles rund um Windows - 11.09.2006 (5)
  11. Eigenes Programm soll ein Hijacker sein
    Alles rund um Windows - 22.04.2006 (14)
  12. Spyware, keine ahnung wo sie sein soll, pc hat keine anzeichen von spyware
    Plagegeister aller Art und deren Bekämpfung - 07.12.2005 (6)
  13. Download "help.asp vonn 777.sexfiles.nu": Was soll das sein?
    Log-Analyse und Auswertung - 16.11.2004 (7)
  14. URL Virtumonde-watt soll denn dett sein?
    Plagegeister aller Art und deren Bekämpfung - 05.10.2004 (2)
  15. nvarem.exe soll böse sein?
    Log-Analyse und Auswertung - 21.09.2004 (2)
  16. Was soll das sein???
    Alles rund um Windows - 23.09.2003 (4)

Zum Thema TR/Orsam.a.6262 - was soll das sein? - Hallo! Hatte vorhin schonmal gesehn, dass hier jemand das gleiche Problem hatte. Ich wurde allerdings darauf hingewiesen einen eigenen Thread zu eröffnen. Also folgendes: Ich hatte mir vorige Woche ein - TR/Orsam.a.6262 - was soll das sein?...
Archiv
Du betrachtest: TR/Orsam.a.6262 - was soll das sein? auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.