| teurorist | 07.11.2011 22:37 |
log zu otl
OTL Logfile: Code:
OTL logfile created on: 11/7/2011 10:16:24 PM - Run
OTLPE by OldTimer - Version 3.1.48.0 Folder = X:\Programs\OTLPE
64bit-Windows 7 Ultimate (Version = 6.1.7600) - Type = System
Internet Explorer (Version = 8.0.7600.16385)
Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy
3.00 Gb Total Physical Memory | 3.00 Gb Available Physical Memory | 91.00% Memory free
3.00 Gb Paging File | 3.00 Gb Available in Paging File | 98.00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = F: | %SystemRoot% = F:\Windows | %ProgramFiles% = F:\Program Files (x86)
Drive C: | 100.00 Mb Total Space | 75.86 Mb Free Space | 75.87% Space Free | Partition Type: NTFS
Drive D: | 3.73 Gb Total Space | 1.41 Gb Free Space | 37.80% Space Free | Partition Type: FAT32
Drive F: | 117.09 Gb Total Space | 56.15 Gb Free Space | 47.95% Space Free | Partition Type: NTFS
Drive G: | 115.70 Gb Total Space | 115.61 Gb Free Space | 99.92% Space Free | Partition Type: NTFS
Drive X: | 436.59 Mb Total Space | 0.00 Mb Free Space | 0.00% Space Free | Partition Type: CDFS
Computer Name: REATOGO | User Name: SYSTEM
Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
Using ControlSet: ControlSet001
========== Win32 Services (SafeList) ==========
SRV:64bit: - [2011/10/12 15:09:44 | 000,204,288 | ---- | M] (AMD) [Auto] -- F:\Windows\System32\atiesrxx.exe -- (AMD External Events Utility)
SRV:64bit: - [2009/07/13 20:41:27 | 001,011,712 | ---- | M] (Microsoft Corporation) [Auto] -- F:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV:64bit: - [2009/07/13 20:40:01 | 000,193,536 | ---- | M] (Microsoft Corporation) [On_Demand] -- F:\Windows\System32\appmgmts.dll -- (AppMgmt)
SRV - [2011/10/19 10:56:01 | 000,086,224 | ---- | M] (Avira Operations GmbH & Co. KG) [Auto] -- F:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe -- (AntiVirSchedulerService)
SRV - [2011/10/19 10:55:48 | 000,110,032 | ---- | M] (Avira Operations GmbH & Co. KG) [Auto] -- F:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe -- (AntiVirService)
SRV - [2011/06/06 06:55:28 | 000,064,952 | ---- | M] (Adobe Systems Incorporated) [Auto] -- F:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2011/01/18 22:20:00 | 002,078,096 | ---- | M] (WIBU-SYSTEMS AG) [Auto] -- F:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeter.exe -- (CodeMeter.exe)
SRV - [2010/03/18 07:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto] -- F:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2009/06/10 16:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [Disabled] -- F:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)
========== Driver Services (SafeList) ==========
DRV:64bit: - [2011/10/19 10:56:15 | 000,130,760 | ---- | M] (Avira GmbH) [Kernel | System] -- F:\Windows\System32\drivers\avipbb.sys -- (avipbb)
DRV:64bit: - [2011/10/19 10:56:15 | 000,097,312 | ---- | M] (Avira GmbH) [File_System | Auto] -- F:\Windows\System32\drivers\avgntflt.sys -- (avgntflt)
DRV:64bit: - [2011/10/19 10:56:15 | 000,027,760 | ---- | M] (Avira GmbH) [Kernel | System] -- F:\Windows\System32\drivers\avkmgr.sys -- (avkmgr)
DRV:64bit: - [2011/10/12 15:56:18 | 010,207,232 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand] -- F:\Windows\System32\drivers\atikmdag.sys -- (atikmdag)
DRV:64bit: - [2011/10/12 15:56:18 | 010,207,232 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand] -- F:\Windows\System32\drivers\atikmdag.sys -- (amdkmdag)
DRV:64bit: - [2011/10/12 14:30:42 | 000,317,952 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand] -- F:\Windows\System32\drivers\atikmpag.sys -- (amdkmdap)
DRV:64bit: - [2011/05/13 12:58:16 | 000,030,008 | ---- | M] (Hewlett-Packard Company) [Kernel | Boot] -- F:\Windows\System32\drivers\hpdskflt.sys -- (hpdskflt)
DRV:64bit: - [2011/05/13 12:57:58 | 000,043,320 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand] -- F:\Windows\System32\drivers\Accelerometer.sys -- (Accelerometer)
DRV:64bit: - [2010/01/13 10:37:18 | 007,675,392 | ---- | M] (Intel Corporation) [Kernel | On_Demand] -- F:\Windows\System32\drivers\NETw5s64.sys -- (NETw5s64) Intel(R)
DRV:64bit: - [2009/06/10 16:01:06 | 001,146,880 | ---- | M] (LSI Corp) [Kernel | On_Demand] -- F:\Windows\System32\drivers\agrsm64.sys -- (AgereSoftModem)
DRV:64bit: - [2009/06/10 15:38:56 | 000,000,308 | ---- | M] () [File_System | On_Demand] -- F:\Windows\System32\wbem\ntfs.mof -- (Ntfs)
DRV:64bit: - [2009/06/10 15:35:33 | 000,389,120 | ---- | M] (Marvell) [Kernel | On_Demand] -- F:\Windows\System32\drivers\yk62x64.sys -- (yukonw7)
DRV:64bit: - [2009/06/10 15:35:28 | 005,434,368 | ---- | M] (Intel Corporation) [Kernel | On_Demand] -- F:\Windows\System32\drivers\netw5v64.sys -- (netw5v64) Intel(R)
DRV:64bit: - [2009/06/10 15:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand] -- F:\Windows\system32\DRIVERS\evbda.sys -- (ebdrv)
DRV:64bit: - [2009/06/10 15:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand] -- F:\Windows\system32\DRIVERS\bxvbda.sys -- (b06bdrv)
DRV:64bit: - [2009/06/10 15:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand] -- F:\Windows\System32\drivers\b57nd60a.sys -- (b57nd60a)
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE - HKU\Isolde_ON_F\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://de.msn.com/?ocid=iehp
IE - HKU\Isolde_ON_F\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de
IE - HKU\Isolde_ON_F\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = CC 89 BC 3F 0C 9C CC 01 [binary data]
IE - HKU\Isolde_ON_F\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
========== FireFox ==========
FF:64bit: - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: F:\Windows\System32\Macromed\Flash\NPSWF64_11_0_1.dll ()
FF - HKLM\Software\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer: F:\Windows\SysWOW64\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin: F:\Program Files (x86)\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\Wow6432Node\MozillaPlugins\Adobe Reader: F:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKEY_LOCAL_MACHINE\software\wow6432node\mozilla\Mozilla Firefox 7.0.1\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2011/11/06 09:35:53 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\wow6432node\mozilla\Mozilla Firefox 7.0.1\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins
[2011/11/05 19:50:23 | 000,000,000 | ---D | M] (No name found) -- F:\Users\Isolde\AppData\Roaming\Mozilla\Extensions
[2011/11/06 09:22:32 | 000,000,000 | ---D | M] (No name found) -- F:\Program Files (x86)\Mozilla Firefox\extensions
[2011/11/06 09:22:32 | 000,000,000 | ---D | M] (Java Console) -- F:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}
File not found (No name found) --
[2011/09/29 02:09:51 | 000,134,104 | ---- | M] (Mozilla Foundation) -- F:\Program Files (x86)\mozilla firefox\components\browsercomps.dll
[2011/09/28 20:24:37 | 000,001,392 | ---- | M] () -- F:\Program Files (x86)\mozilla firefox\searchplugins\amazondotcom-de.xml
[2011/09/28 20:16:42 | 000,002,252 | ---- | M] () -- F:\Program Files (x86)\mozilla firefox\searchplugins\bing.xml
[2011/09/28 20:24:37 | 000,001,153 | ---- | M] () -- F:\Program Files (x86)\mozilla firefox\searchplugins\eBay-de.xml
[2011/09/28 20:24:37 | 000,006,805 | ---- | M] () -- F:\Program Files (x86)\mozilla firefox\searchplugins\leo_ende_de.xml
[2011/09/28 20:24:37 | 000,001,178 | ---- | M] () -- F:\Program Files (x86)\mozilla firefox\searchplugins\wikipedia-de.xml
[2011/09/28 20:24:37 | 000,001,105 | ---- | M] () -- F:\Program Files (x86)\mozilla firefox\searchplugins\yahoo-de.xml
O1 HOSTS File: ([2009/06/10 16:00:26 | 000,000,824 | ---- | M]) - F:\Windows\System32\drivers\etc\hosts
O4 - HKLM..\Run: [avgnt] F:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe (Avira Operations GmbH & Co. KG)
O4 - HKLM..\Run: [StartCCC] F:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.)
O4 - HKU\Isolde_ON_F..\Run: [vasja] F:\Users\Isolde\AppData\Local\Temp\new.exe ()
O4 - HKU\LocalService_ON_F..\Run: [Sidebar] F:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\NetworkService_ON_F..\Run: [Sidebar] F:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\LocalService_ON_F..\RunOnce: [mctadmin] File not found
O4 - HKU\NetworkService_ON_F..\RunOnce: [mctadmin] File not found
O4 - Startup: F:\Users\Isolde\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\CodeMeter Control Center.lnk ()
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O13:64bit: - gopher Prefix: missing
O13 - gopher Prefix: missing
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_23-windows-i586.cab (Java Plug-in 1.6.0_23)
O16 - DPF: {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_23-windows-i586.cab (Java Plug-in 1.6.0_23)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_23-windows-i586.cab (Java Plug-in 1.6.0_23)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.2.1
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - F:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - F:\Windows\System32\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O20 - HKLM Winlogon: Shell - (explorer.exe) - F:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2006/03/24 06:06:41 | 000,000,053 | R--- | M] () - X:\AUTORUN.INF -- [ CDFS ]
O33 - MountPoints2\{c996b4b3-07df-11e1-9110-806e6f6e6963}\Shell - "" = AutoRun
O33 - MountPoints2\{c996b4b3-07df-11e1-9110-806e6f6e6963}\Shell\AutoRun\command - "" = E:\setup.exe
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
64bit: O35 - HKLM\..comfile [open] -- "%1" %* File not found
64bit: O35 - HKLM\..exefile [open] -- "%1" %* File not found
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
========== Files/Folders - Created Within 30 Days ==========
[2011/11/07 12:21:30 | 000,000,000 | ---D | C] -- F:\Users\Isolde\AppData\Local\Diagnostics
[2011/11/07 10:26:35 | 000,000,000 | ---D | C] -- F:\Program Files (x86)\Microsoft.NET
[2011/11/06 16:57:35 | 000,000,000 | ---D | C] -- F:\Users\Isolde\AppData\Roaming\Macromedia
[2011/11/06 16:57:31 | 000,414,368 | ---- | C] (Adobe Systems Incorporated) -- F:\Windows\SysWow64\FlashPlayerCPLApp.cpl
[2011/11/06 16:57:30 | 000,000,000 | ---D | C] -- F:\Windows\SysWow64\Macromed
[2011/11/06 16:57:23 | 000,000,000 | ---D | C] -- F:\Windows\System32\Macromed
[2011/11/06 14:41:55 | 000,324,608 | ---- | C] (Microsoft Corporation) -- F:\Windows\System32\drivers\usbport.sys
[2011/11/06 14:41:55 | 000,007,936 | ---- | C] (Microsoft Corporation) -- F:\Windows\System32\drivers\usbd.sys
[2011/11/06 14:41:46 | 002,566,144 | ---- | C] (Microsoft Corporation) -- F:\Windows\System32\esent.dll
[2011/11/06 14:41:46 | 001,686,016 | ---- | C] (Microsoft Corporation) -- F:\Windows\SysWow64\esent.dll
[2011/11/06 14:41:46 | 000,187,264 | ---- | C] (Microsoft Corporation) -- F:\Windows\System32\drivers\storport.sys
[2011/11/06 14:41:45 | 000,096,768 | ---- | C] (Microsoft Corporation) -- F:\Windows\System32\fsutil.exe
[2011/11/06 14:41:45 | 000,074,240 | ---- | C] (Microsoft Corporation) -- F:\Windows\SysWow64\fsutil.exe
[2011/11/06 12:41:48 | 000,000,000 | ---D | C] -- F:\Users\Isolde\AppData\Roaming\Adobe
[2011/11/06 12:41:48 | 000,000,000 | ---D | C] -- F:\Users\Isolde\AppData\Local\Adobe
[2011/11/06 12:39:08 | 000,000,000 | ---D | C] -- F:\Program Files (x86)\Common Files\Adobe
[2011/11/06 12:39:08 | 000,000,000 | ---D | C] -- F:\Program Files (x86)\Adobe
[2011/11/06 12:38:27 | 000,000,000 | ---D | C] -- F:\ProgramData\Adobe
[2011/11/06 12:36:00 | 000,000,000 | ---D | C] -- F:\ProgramData\McAfee
[2011/11/06 10:55:19 | 000,000,000 | ---D | C] -- F:\Users\Isolde\AppData\Local\ArchiCAD-64_3484268110
[2011/11/06 09:40:55 | 000,000,000 | ---D | C] -- F:\Users\Isolde\AppData\Local\Graphisoft
[2011/11/06 09:40:53 | 000,000,000 | ---D | C] -- F:\Users\Isolde\AppData\Roaming\Graphisoft
[2011/11/06 09:36:34 | 000,000,000 | ---D | C] -- F:\Program Files\WIBU-SYSTEMS
[2011/11/06 09:36:33 | 000,000,000 | ---D | C] -- F:\Users\Isolde\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CodeMeter
[2011/11/06 09:36:33 | 000,000,000 | ---D | C] -- F:\Program Files\CodeMeter
[2011/11/06 09:36:33 | 000,000,000 | ---D | C] -- F:\Program Files (x86)\CodeMeter
[2011/11/06 09:36:25 | 000,000,000 | ---D | C] -- F:\Program Files (x86)\Common Files\Wise Installation Wizard
[2011/11/06 09:35:40 | 000,000,000 | ---D | C] -- F:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime
[2011/11/06 09:35:24 | 000,000,000 | ---D | C] -- F:\Program Files (x86)\QuickTime
[2011/11/06 09:35:24 | 000,000,000 | ---D | C] -- F:\ProgramData\Apple Computer
[2011/11/06 09:34:55 | 000,000,000 | ---D | C] -- F:\Program Files (x86)\Common Files\Apple
[2011/11/06 09:34:47 | 000,000,000 | ---D | C] -- F:\Users\Isolde\AppData\Local\Apple
[2011/11/06 09:34:45 | 000,000,000 | ---D | C] -- F:\Program Files (x86)\Apple Software Update
[2011/11/06 09:34:45 | 000,000,000 | ---D | C] -- F:\ProgramData\Apple
[2011/11/06 09:28:24 | 000,000,000 | ---D | C] -- F:\ProgramData\Microsoft\Windows\Start Menu\Programs\Graphisoft
[2011/11/06 09:28:06 | 000,000,000 | ---D | C] -- F:\Program Files\Graphisoft
[2011/11/06 09:22:52 | 000,000,000 | ---D | C] -- F:\Users\Isolde\AppData\Roaming\Install.GS
[2011/11/06 09:22:41 | 000,000,000 | ---D | C] -- F:\ProgramData\Sun
[2011/11/06 09:22:41 | 000,000,000 | ---D | C] -- F:\Program Files (x86)\Common Files\Java
[2011/11/06 09:22:31 | 000,472,808 | ---- | C] (Sun Microsystems, Inc.) -- F:\Windows\SysWow64\deployJava1.dll
[2011/11/06 09:22:31 | 000,157,472 | ---- | C] (Sun Microsystems, Inc.) -- F:\Windows\SysWow64\javaws.exe
[2011/11/06 09:22:31 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- F:\Windows\SysWow64\javaw.exe
[2011/11/06 09:22:31 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- F:\Windows\SysWow64\java.exe
[2011/11/06 09:22:16 | 000,000,000 | ---D | C] -- F:\Program Files (x86)\Java
[2011/11/06 06:25:08 | 001,942,856 | ---- | C] (Microsoft Corporation) -- F:\Windows\System32\dfshim.dll
[2011/11/06 06:25:08 | 001,130,824 | ---- | C] (Microsoft Corporation) -- F:\Windows\SysWow64\dfshim.dll
[2011/11/06 06:25:08 | 000,320,352 | ---- | C] (Microsoft Corporation) -- F:\Windows\System32\PresentationHost.exe
[2011/11/06 06:25:08 | 000,295,264 | ---- | C] (Microsoft Corporation) -- F:\Windows\SysWow64\PresentationHost.exe
[2011/11/06 06:25:08 | 000,109,912 | ---- | C] (Microsoft Corporation) -- F:\Windows\System32\PresentationHostProxy.dll
[2011/11/06 06:25:08 | 000,099,176 | ---- | C] (Microsoft Corporation) -- F:\Windows\SysWow64\PresentationHostProxy.dll
[2011/11/06 06:25:08 | 000,049,472 | ---- | C] (Microsoft Corporation) -- F:\Windows\SysWow64\netfxperf.dll
[2011/11/06 06:25:08 | 000,048,960 | ---- | C] (Microsoft Corporation) -- F:\Windows\System32\netfxperf.dll
[2011/11/06 06:24:45 | 000,294,912 | ---- | C] (Microsoft Corporation) -- F:\Windows\System32\browserchoice.exe
[2011/11/05 21:25:45 | 000,199,680 | ---- | C] (Microsoft Corporation) -- F:\Windows\System32\xmllite.dll
[2011/11/05 21:25:13 | 000,319,488 | ---- | C] (Microsoft Corporation) -- F:\Windows\SysWow64\odbcjt32.dll
[2011/11/05 21:25:13 | 000,212,992 | ---- | C] (Microsoft Corporation) -- F:\Windows\System32\odbctrac.dll
[2011/11/05 21:25:13 | 000,163,840 | ---- | C] (Microsoft Corporation) -- F:\Windows\System32\odbccp32.dll
[2011/11/05 21:25:13 | 000,122,880 | ---- | C] (Microsoft Corporation) -- F:\Windows\SysWow64\odbccp32.dll
[2011/11/05 21:25:13 | 000,106,496 | ---- | C] (Microsoft Corporation) -- F:\Windows\System32\odbccu32.dll
[2011/11/05 21:25:13 | 000,106,496 | ---- | C] (Microsoft Corporation) -- F:\Windows\System32\odbccr32.dll
[2011/11/05 21:25:12 | 000,163,840 | ---- | C] (Microsoft Corporation) -- F:\Windows\SysWow64\odbctrac.dll
[2011/11/05 21:25:12 | 000,086,016 | ---- | C] (Microsoft Corporation) -- F:\Windows\SysWow64\odbccu32.dll
[2011/11/05 21:25:12 | 000,081,920 | ---- | C] (Microsoft Corporation) -- F:\Windows\SysWow64\odbccr32.dll
[2011/11/05 21:25:01 | 000,142,336 | ---- | C] (Microsoft Corporation) -- F:\Windows\System32\poqexec.exe
[2011/11/05 21:25:01 | 000,123,904 | ---- | C] (Microsoft Corporation) -- F:\Windows\SysWow64\poqexec.exe
[2011/11/05 21:24:54 | 002,870,272 | ---- | C] (Microsoft Corporation) -- F:\Windows\explorer.exe
[2011/11/05 21:24:53 | 002,614,784 | ---- | C] (Microsoft Corporation) -- F:\Windows\SysWow64\explorer.exe
[2011/11/05 21:24:51 | 000,961,024 | ---- | C] (Microsoft Corporation) -- F:\Windows\System32\CPFilters.dll
[2011/11/05 21:24:51 | 000,723,968 | ---- | C] (Microsoft Corporation) -- F:\Windows\System32\EncDec.dll
[2011/11/05 21:24:51 | 000,642,048 | ---- | C] (Microsoft Corporation) -- F:\Windows\SysWow64\CPFilters.dll
[2011/11/05 21:24:50 | 001,118,720 | ---- | C] (Microsoft Corporation) -- F:\Windows\System32\sbe.dll
[2011/11/05 21:24:50 | 000,850,432 | ---- | C] (Microsoft Corporation) -- F:\Windows\SysWow64\sbe.dll
[2011/11/05 21:24:50 | 000,534,528 | ---- | C] (Microsoft Corporation) -- F:\Windows\SysWow64\EncDec.dll
[2011/11/05 21:24:50 | 000,259,072 | ---- | C] (Microsoft Corporation) -- F:\Windows\System32\mpg2splt.ax
[2011/11/05 21:24:50 | 000,199,680 | ---- | C] (Microsoft Corporation) -- F:\Windows\SysWow64\mpg2splt.ax
[2011/11/05 21:24:44 | 000,148,992 | ---- | C] (Microsoft Corporation) -- F:\Windows\System32\t2embed.dll
[2011/11/05 21:24:44 | 000,109,056 | ---- | C] (Microsoft Corporation) -- F:\Windows\SysWow64\t2embed.dll
[2011/11/05 21:24:42 | 002,085,376 | ---- | C] (Microsoft Corporation) -- F:\Windows\System32\ole32.dll
[2011/11/05 21:24:38 | 001,169,408 | ---- | C] (Microsoft Corporation) -- F:\Windows\System32\taskschd.dll
[2011/11/05 21:24:38 | 000,524,288 | ---- | C] (Microsoft Corporation) -- F:\Windows\System32\wmicmiplugin.dll
[2011/11/05 21:24:38 | 000,496,128 | ---- | C] (Microsoft Corporation) -- F:\Windows\SysWow64\taskschd.dll
[2011/11/05 21:24:38 | 000,473,600 | ---- | C] (Microsoft Corporation) -- F:\Windows\System32\taskcomp.dll
[2011/11/05 21:24:38 | 000,464,384 | ---- | C] (Microsoft Corporation) -- F:\Windows\System32\taskeng.exe
[2011/11/05 21:24:38 | 000,305,152 | ---- | C] (Microsoft Corporation) -- F:\Windows\SysWow64\taskcomp.dll
[2011/11/05 21:24:38 | 000,285,696 | ---- | C] (Microsoft Corporation) -- F:\Windows\System32\schtasks.exe
[2011/11/05 21:24:38 | 000,179,712 | ---- | C] (Microsoft Corporation) -- F:\Windows\SysWow64\schtasks.exe
[2011/11/05 21:24:31 | 002,326,016 | ---- | C] (Microsoft Corporation) -- F:\Windows\System32\tquery.dll
[2011/11/05 21:24:31 | 002,228,224 | ---- | C] (Microsoft Corporation) -- F:\Windows\System32\mssrch.dll
[2011/11/05 21:24:31 | 001,401,856 | ---- | C] (Microsoft Corporation) -- F:\Windows\SysWow64\mssrch.dll
[2011/11/05 21:24:30 | 001,553,920 | ---- | C] (Microsoft Corporation) -- F:\Windows\SysWow64\tquery.dll
[2011/11/05 21:24:30 | 000,779,264 | ---- | C] (Microsoft Corporation) -- F:\Windows\System32\mssvp.dll
[2011/11/05 21:24:30 | 000,666,624 | ---- | C] (Microsoft Corporation) -- F:\Windows\SysWow64\mssvp.dll
[2011/11/05 21:24:30 | 000,491,520 | ---- | C] (Microsoft Corporation) -- F:\Windows\System32\mssph.dll
[2011/11/05 21:24:30 | 000,337,408 | ---- | C] (Microsoft Corporation) -- F:\Windows\SysWow64\mssph.dll
[2011/11/05 21:24:30 | 000,249,856 | ---- | C] (Microsoft Corporation) -- F:\Windows\System32\SearchProtocolHost.exe
[2011/11/05 21:24:29 | 000,288,256 | ---- | C] (Microsoft Corporation) -- F:\Windows\System32\mssphtb.dll
[2011/11/05 21:24:29 | 000,197,120 | ---- | C] (Microsoft Corporation) -- F:\Windows\SysWow64\mssphtb.dll
[2011/11/05 21:24:29 | 000,113,664 | ---- | C] (Microsoft Corporation) -- F:\Windows\System32\SearchFilterHost.exe
[2011/11/05 21:24:29 | 000,075,264 | ---- | C] (Microsoft Corporation) -- F:\Windows\System32\msscntrs.dll
[2011/11/05 21:24:29 | 000,059,392 | ---- | C] (Microsoft Corporation) -- F:\Windows\SysWow64\msscntrs.dll
[2011/11/05 21:24:16 | 000,483,840 | ---- | C] (Microsoft Corporation) -- F:\Windows\System32\StructuredQuery.dll
[2011/11/05 21:24:04 | 001,975,296 | ---- | C] (Microsoft Corporation) -- F:\Windows\System32\CertEnroll.dll
[2011/11/05 21:24:04 | 001,320,960 | ---- | C] (Microsoft Corporation) -- F:\Windows\SysWow64\CertEnroll.dll
[2011/11/05 21:23:47 | 000,424,960 | ---- | C] (Microsoft Corporation) -- F:\Windows\System32\secproc.dll
[2011/11/05 21:23:47 | 000,422,912 | ---- | C] (Microsoft Corporation) -- F:\Windows\System32\secproc_isv.dll
[2011/11/05 21:23:47 | 000,369,152 | ---- | C] (Microsoft Corporation) -- F:\Windows\SysWow64\secproc.dll
[2011/11/05 21:23:47 | 000,365,568 | ---- | C] (Microsoft Corporation) -- F:\Windows\SysWow64\secproc_isv.dll
[2011/11/05 21:23:47 | 000,357,888 | ---- | C] (Microsoft Corporation) -- F:\Windows\System32\RMActivate_isv.exe
[2011/11/05 21:23:47 | 000,356,352 | ---- | C] (Microsoft Corporation) -- F:\Windows\System32\RMActivate.exe
[2011/11/05 21:23:47 | 000,305,152 | ---- | C] (Microsoft Corporation) -- F:\Windows\System32\RMActivate_ssp_isv.exe
[2011/11/05 21:23:46 | 000,324,608 | ---- | C] (Microsoft Corporation) -- F:\Windows\SysWow64\RMActivate_isv.exe
[2011/11/05 21:23:46 | 000,320,512 | ---- | C] (Microsoft Corporation) -- F:\Windows\SysWow64\RMActivate.exe
[2011/11/05 21:23:46 | 000,306,688 | ---- | C] (Microsoft Corporation) -- F:\Windows\System32\RMActivate_ssp.exe
[2011/11/05 21:23:46 | 000,280,064 | ---- | C] (Microsoft Corporation) -- F:\Windows\SysWow64\RMActivate_ssp.exe
[2011/11/05 21:23:46 | 000,277,504 | ---- | C] (Microsoft Corporation) -- F:\Windows\SysWow64\RMActivate_ssp_isv.exe
[2011/11/05 21:23:46 | 000,121,856 | ---- | C] (Microsoft Corporation) -- F:\Windows\System32\secproc_ssp_isv.dll
[2011/11/05 21:23:46 | 000,121,856 | ---- | C] (Microsoft Corporation) -- F:\Windows\System32\secproc_ssp.dll
[2011/11/05 21:23:46 | 000,085,504 | ---- | C] (Microsoft Corporation) -- F:\Windows\SysWow64\secproc_ssp_isv.dll
[2011/11/05 21:23:46 | 000,085,504 | ---- | C] (Microsoft Corporation) -- F:\Windows\SysWow64\secproc_ssp.dll
[2011/11/05 21:23:35 | 000,552,960 | ---- | C] (Microsoft Corporation) -- F:\Windows\System32\msdri.dll
[2011/11/05 21:23:09 | 000,476,160 | ---- | C] (Microsoft Corporation) -- F:\Windows\System32\XpsGdiConverter.dll
[2011/11/05 21:23:09 | 000,288,256 | ---- | C] (Microsoft Corporation) -- F:\Windows\SysWow64\XpsGdiConverter.dll
[2011/11/05 21:22:55 | 000,633,856 | ---- | C] (Microsoft Corporation) -- F:\Windows\System32\comctl32.dll
[2011/11/05 21:22:54 | 000,852,480 | ---- | C] (Microsoft Corporation) -- F:\Windows\System32\jscript.dll
[2011/11/05 21:22:53 | 000,716,800 | ---- | C] (Microsoft Corporation) -- F:\Windows\SysWow64\jscript.dll
[2011/11/05 21:22:53 | 000,612,352 | ---- | C] (Microsoft Corporation) -- F:\Windows\System32\vbscript.dll
[2011/11/05 21:22:49 | 000,264,192 | ---- | C] (Microsoft Corporation) -- F:\Windows\System32\upnp.dll
[2011/11/05 21:22:49 | 000,204,288 | ---- | C] (Microsoft Corporation) -- F:\Windows\SysWow64\upnp.dll
[2011/11/05 21:22:48 | 000,100,864 | ---- | C] (Microsoft Corporation) -- F:\Windows\System32\davclnt.dll
[2011/11/05 21:22:48 | 000,080,384 | ---- | C] (Microsoft Corporation) -- F:\Windows\SysWow64\davclnt.dll
[2011/11/05 21:22:48 | 000,062,976 | ---- | C] (Microsoft Corporation) -- F:\Windows\System32\wscapi.dll
[2011/11/05 21:22:48 | 000,051,200 | ---- | C] (Microsoft Corporation) -- F:\Windows\SysWow64\wscapi.dll
[2011/11/05 21:22:48 | 000,015,360 | ---- | C] (Microsoft Corporation) -- F:\Windows\System32\slwga.dll
[2011/11/05 21:22:48 | 000,014,336 | ---- | C] (Microsoft Corporation) -- F:\Windows\SysWow64\slwga.dll
[2011/11/05 21:22:33 | 000,662,528 | ---- | C] (Microsoft Corporation) -- F:\Windows\System32\XpsPrint.dll
[2011/11/05 21:22:33 | 000,442,880 | ---- | C] (Microsoft Corporation) -- F:\Windows\SysWow64\XpsPrint.dll
[2011/11/05 21:22:31 | 000,389,632 | ---- | C] (Microsoft Corporation) -- F:\Windows\System32\winlogon.exe
[2011/11/05 21:22:30 | 001,359,872 | ---- | C] (Microsoft Corporation) -- F:\Windows\System32\mfc42u.dll
[2011/11/05 21:22:29 | 001,395,712 | ---- | C] (Microsoft Corporation) -- F:\Windows\System32\mfc42.dll
[2011/11/05 21:22:29 | 001,164,288 | ---- | C] (Microsoft Corporation) -- F:\Windows\SysWow64\mfc42u.dll
[2011/11/05 21:22:29 | 001,137,664 | ---- | C] (Microsoft Corporation) -- F:\Windows\SysWow64\mfc42.dll
[2011/11/05 21:22:13 | 000,703,488 | ---- | C] (Microsoft Corporation) -- F:\Windows\System32\msfeeds.dll
[2011/11/05 21:22:12 | 000,599,552 | ---- | C] (Microsoft Corporation) -- F:\Windows\SysWow64\msfeeds.dll
[2011/11/05 21:22:12 | 000,256,000 | ---- | C] (Microsoft Corporation) -- F:\Windows\System32\iepeers.dll
[2011/11/05 21:22:12 | 000,185,856 | ---- | C] (Microsoft Corporation) -- F:\Windows\SysWow64\iepeers.dll
[2011/11/05 21:22:12 | 000,057,856 | ---- | C] (Microsoft Corporation) -- F:\Windows\System32\licmgr10.dll
[2011/11/05 21:22:12 | 000,044,544 | ---- | C] (Microsoft Corporation) -- F:\Windows\SysWow64\licmgr10.dll
[2011/11/05 21:22:11 | 000,247,808 | ---- | C] (Microsoft Corporation) -- F:\Windows\System32\ieui.dll
[2011/11/05 21:22:11 | 000,176,640 | ---- | C] (Microsoft Corporation) -- F:\Windows\SysWow64\ieui.dll
[2011/11/05 21:22:11 | 000,134,144 | ---- | C] (Microsoft Corporation) -- F:\Windows\System32\url.dll
[2011/11/05 21:22:11 | 000,132,096 | ---- | C] (Microsoft Corporation) -- F:\Windows\SysWow64\url.dll
[2011/11/05 21:22:11 | 000,097,280 | ---- | C] (Microsoft Corporation) -- F:\Windows\System32\mshtmled.dll
[2011/11/05 21:22:11 | 000,067,072 | ---- | C] (Microsoft Corporation) -- F:\Windows\SysWow64\mshtmled.dll
[2011/11/05 21:22:11 | 000,012,800 | ---- | C] (Microsoft Corporation) -- F:\Windows\SysWow64\msfeedssync.exe
[2011/11/05 21:22:11 | 000,012,288 | ---- | C] (Microsoft Corporation) -- F:\Windows\System32\msfeedssync.exe
[2011/11/05 21:22:10 | 000,482,816 | ---- | C] (Microsoft Corporation) -- F:\Windows\System32\html.iec
[2011/11/05 21:22:10 | 000,386,048 | ---- | C] (Microsoft Corporation) -- F:\Windows\SysWow64\html.iec
[2011/11/05 21:21:07 | 000,052,224 | ---- | C] (Microsoft Corporation) -- F:\Windows\System32\rtutils.dll
[2011/11/05 21:21:07 | 000,037,376 | ---- | C] (Microsoft Corporation) -- F:\Windows\SysWow64\rtutils.dll
[2011/11/05 21:20:37 | 000,367,104 | ---- | C] (Adobe Systems Incorporated) -- F:\Windows\System32\atmfd.dll
[2011/11/05 21:20:37 | 000,294,912 | ---- | C] (Adobe Systems Incorporated) -- F:\Windows\SysWow64\atmfd.dll
[2011/11/05 21:20:37 | 000,100,864 | ---- | C] (Microsoft Corporation) -- F:\Windows\System32\fontsub.dll
[2011/11/05 21:20:37 | 000,070,656 | ---- | C] (Microsoft Corporation) -- F:\Windows\SysWow64\fontsub.dll
[2011/11/05 21:20:37 | 000,046,080 | ---- | C] (Adobe Systems) -- F:\Windows\System32\atmlib.dll
[2011/11/05 21:20:37 | 000,034,304 | ---- | C] (Adobe Systems) -- F:\Windows\SysWow64\atmlib.dll
[2011/11/05 21:20:35 | 001,837,568 | ---- | C] (Microsoft Corporation) -- F:\Windows\System32\d3d10warp.dll
[2011/11/05 21:20:35 | 001,170,944 | ---- | C] (Microsoft Corporation) -- F:\Windows\SysWow64\d3d10warp.dll
[2011/11/05 21:20:35 | 000,902,656 | ---- | C] (Microsoft Corporation) -- F:\Windows\System32\d2d1.dll
[2011/11/05 21:20:34 | 004,068,864 | ---- | C] (Microsoft Corporation) -- F:\Windows\System32\mf.dll
[2011/11/05 21:20:34 | 001,888,256 | ---- | C] (Microsoft Corporation) -- F:\Windows\System32\WMVDECOD.DLL
[2011/11/05 21:20:34 | 001,540,608 | ---- | C] (Microsoft Corporation) -- F:\Windows\System32\DWrite.dll
[2011/11/05 21:20:34 | 001,074,176 | ---- | C] (Microsoft Corporation) -- F:\Windows\SysWow64\DWrite.dll
[2011/11/05 21:20:34 | 000,739,840 | ---- | C] (Microsoft Corporation) -- F:\Windows\SysWow64\d2d1.dll
[2011/11/05 21:20:33 | 003,181,568 | ---- | C] (Microsoft Corporation) -- F:\Windows\SysWow64\mf.dll
[2011/11/05 21:20:33 | 001,863,680 | ---- | C] (Microsoft Corporation) -- F:\Windows\System32\ExplorerFrame.dll
[2011/11/05 21:20:32 | 001,619,456 | ---- | C] (Microsoft Corporation) -- F:\Windows\SysWow64\WMVDECOD.DLL
[2011/11/05 21:20:32 | 001,495,040 | ---- | C] (Microsoft Corporation) -- F:\Windows\SysWow64\ExplorerFrame.dll
[2011/11/05 21:20:32 | 000,265,088 | ---- | C] (Microsoft Corporation) -- F:\Windows\System32\drivers\dxgmms1.sys
[2011/11/05 21:20:32 | 000,257,024 | ---- | C] (Microsoft Corporation) -- F:\Windows\System32\mfreadwrite.dll
[2011/11/05 21:20:32 | 000,229,888 | ---- | C] (Microsoft Corporation) -- F:\Windows\System32\XpsRasterService.dll
[2011/11/05 21:20:32 | 000,206,848 | ---- | C] (Microsoft Corporation) -- F:\Windows\System32\mfps.dll
[2011/11/05 21:20:32 | 000,196,608 | ---- | C] (Microsoft Corporation) -- F:\Windows\SysWow64\mfreadwrite.dll
[2011/11/05 21:20:32 | 000,144,384 | ---- | C] (Microsoft Corporation) -- F:\Windows\System32\cdd.dll
[2011/11/05 21:20:32 | 000,135,168 | ---- | C] (Microsoft Corporation) -- F:\Windows\SysWow64\XpsRasterService.dll
[2011/11/05 21:20:05 | 000,395,776 | ---- | C] (Microsoft Corporation) -- F:\Windows\System32\webio.dll
[2011/11/05 21:20:04 | 000,314,368 | ---- | C] (Microsoft Corporation) -- F:\Windows\SysWow64\webio.dll
[2011/11/05 21:20:03 | 000,082,944 | ---- | C] (Radius Inc.) -- F:\Windows\SysWow64\iccvid.dll
[2011/11/05 21:20:03 | 000,027,008 | ---- | C] (Microsoft Corporation) -- F:\Windows\System32\drivers\Diskdump.sys
[2011/11/05 21:19:21 | 000,356,352 | ---- | C] (Microsoft Corporation) -- F:\Windows\System32\dnsapi.dll
[2011/11/05 21:19:21 | 000,030,208 | ---- | C] (Microsoft Corporation) -- F:\Windows\System32\dnscacheugc.exe
[2011/11/05 21:19:21 | 000,028,672 | ---- | C] (Microsoft Corporation) -- F:\Windows\SysWow64\dnscacheugc.exe
[2011/11/05 21:18:53 | 001,024,512 | ---- | C] (Microsoft Corporation) -- F:\Windows\System32\wmpmde.dll
[2011/11/05 21:18:53 | 000,738,816 | ---- | C] (Microsoft Corporation) -- F:\Windows\SysWow64\wmpmde.dll
[2011/11/05 21:18:52 | 001,572,352 | ---- | C] (Microsoft Corporation) -- F:\Windows\System32\quartz.dll
[2011/11/05 21:18:52 | 001,328,640 | ---- | C] (Microsoft Corporation) -- F:\Windows\SysWow64\quartz.dll
[2011/11/05 21:18:52 | 000,091,648 | ---- | C] (Microsoft Corporation) -- F:\Windows\SysWow64\avifil32.dll
[2011/11/05 21:18:52 | 000,084,480 | ---- | C] (Microsoft Corporation) -- F:\Windows\SysWow64\mciavi32.dll
[2011/11/05 21:18:47 | 000,320,512 | ---- | C] (Microsoft Corporation) -- F:\Windows\System32\d3d10_1core.dll
[2011/11/05 21:18:47 | 000,218,624 | ---- | C] (Microsoft Corporation) -- F:\Windows\SysWow64\d3d10_1core.dll
[2011/11/05 21:18:47 | 000,197,120 | ---- | C] (Microsoft Corporation) -- F:\Windows\System32\d3d10_1.dll
[2011/11/05 21:18:47 | 000,161,792 | ---- | C] (Microsoft Corporation) -- F:\Windows\SysWow64\d3d10_1.dll
[2011/11/05 21:18:17 | 000,613,888 | ---- | C] (Microsoft Corporation) -- F:\Windows\System32\psisdecd.dll
[2011/11/05 21:18:17 | 000,465,408 | ---- | C] (Microsoft Corporation) -- F:\Windows\SysWow64\psisdecd.dll
[2011/11/05 21:18:17 | 000,288,256 | ---- | C] (Microsoft Corporation) -- F:\Windows\System32\MSNP.ax
[2011/11/05 21:18:17 | 000,204,288 | ---- | C] (Microsoft Corporation) -- F:\Windows\SysWow64\MSNP.ax
[2011/11/05 21:18:17 | 000,108,032 | ---- | C] (Microsoft Corporation) -- F:\Windows\System32\psisrndr.ax
[2011/11/05 21:18:17 | 000,104,960 | ---- | C] (Microsoft Corporation) -- F:\Windows\System32\Mpeg2Data.ax
[2011/11/05 21:18:17 | 000,075,776 | ---- | C] (Microsoft Corporation) -- F:\Windows\SysWow64\psisrndr.ax
[2011/11/05 21:18:17 | 000,075,776 | ---- | C] (Microsoft Corporation) -- F:\Windows\System32\MSDvbNP.ax
[2011/11/05 21:18:17 | 000,072,704 | ---- | C] (Microsoft Corporation) -- F:\Windows\SysWow64\Mpeg2Data.ax
[2011/11/05 21:18:17 | 000,059,904 | ---- | C] (Microsoft Corporation) -- F:\Windows\SysWow64\MSDvbNP.ax
[2011/11/05 21:18:14 | 001,739,176 | ---- | C] (Microsoft Corporation) -- F:\Windows\System32\ntdll.dll
[2011/11/05 21:17:53 | 001,446,912 | ---- | C] (Microsoft Corporation) -- F:\Windows\System32\lsasrv.dll
[2011/11/05 21:17:35 | 000,640,896 | ---- | C] (Microsoft Corporation) -- F:\Windows\System32\winload.efi
[2011/11/05 21:17:35 | 000,603,976 | ---- | C] (Microsoft Corporation) -- F:\Windows\System32\winload.exe
[2011/11/05 21:17:35 | 000,518,160 | ---- | C] (Microsoft Corporation) -- F:\Windows\System32\winresume.exe
[2011/11/05 21:17:34 | 000,556,928 | ---- | C] (Microsoft Corporation) -- F:\Windows\System32\winresume.efi
[2011/11/05 21:17:34 | 000,020,352 | ---- | C] (Microsoft Corporation) -- F:\Windows\System32\kdusb.dll
[2011/11/05 21:17:34 | 000,019,328 | ---- | C] (Microsoft Corporation) -- F:\Windows\System32\kd1394.dll
[2011/11/05 21:17:34 | 000,017,792 | ---- | C] (Microsoft Corporation) -- F:\Windows\System32\kdcom.dll
[2011/11/05 21:17:30 | 000,954,752 | ---- | C] (Microsoft Corporation) -- F:\Windows\SysWow64\mfc40.dll
[2011/11/05 21:17:30 | 000,954,288 | ---- | C] (Microsoft Corporation) -- F:\Windows\SysWow64\mfc40u.dll
[2011/11/05 21:17:22 | 000,046,592 | ---- | C] (Microsoft Corporation) -- F:\Windows\System32\msasn1.dll
[2011/11/05 21:17:20 | 001,162,240 | ---- | C] (Microsoft Corporation) -- F:\Windows\System32\kernel32.dll
[2011/11/05 21:17:20 | 000,422,400 | ---- | C] (Microsoft Corporation) -- F:\Windows\System32\KernelBase.dll
[2011/11/05 21:17:19 | 000,362,496 | ---- | C] (Microsoft Corporation) -- F:\Windows\System32\wow64win.dll
[2011/11/05 21:17:19 | 000,338,432 | ---- | C] (Microsoft Corporation) -- F:\Windows\System32\conhost.exe
[2011/11/05 21:17:19 | 000,243,200 | ---- | C] (Microsoft Corporation) -- F:\Windows\System32\wow64.dll
[2011/11/05 21:17:19 | 000,214,528 | ---- | C] (Microsoft Corporation) -- F:\Windows\System32\winsrv.dll
[2011/11/05 21:17:19 | 000,025,600 | ---- | C] (Microsoft Corporation) -- F:\Windows\SysWow64\setup16.exe
[2011/11/05 21:17:19 | 000,016,384 | ---- | C] (Microsoft Corporation) -- F:\Windows\System32\ntvdm64.dll
[2011/11/05 21:17:19 | 000,014,336 | ---- | C] (Microsoft Corporation) -- F:\Windows\SysWow64\ntvdm64.dll
[2011/11/05 21:17:19 | 000,013,312 | ---- | C] (Microsoft Corporation) -- F:\Windows\System32\wow64cpu.dll
[2011/11/05 21:17:19 | 000,007,680 | ---- | C] (Microsoft Corporation) -- F:\Windows\SysWow64\instnm.exe
[2011/11/05 21:17:19 | 000,005,120 | ---- | C] (Microsoft Corporation) -- F:\Windows\SysWow64\wow32.dll
[2011/11/05 21:17:19 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- F:\Windows\SysWow64\api-ms-win-core-libraryloader-l1-1-0.dll
[2011/11/05 21:17:19 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- F:\Windows\System32\api-ms-win-core-libraryloader-l1-1-0.dll
[2011/11/05 21:17:18 | 000,006,144 | -H-- | C] (Microsoft Corporation) -- F:\Windows\SysWow64\api-ms-win-security-base-l1-1-0.dll
[2011/11/05 21:17:18 | 000,006,144 | -H-- | C] (Microsoft Corporation) -- F:\Windows\System32\api-ms-win-security-base-l1-1-0.dll
[2011/11/05 21:17:18 | 000,005,120 | -H-- | C] (Microsoft Corporation) -- F:\Windows\SysWow64\api-ms-win-core-file-l1-1-0.dll
[2011/11/05 21:17:18 | 000,005,120 | -H-- | C] (Microsoft Corporation) -- F:\Windows\System32\api-ms-win-core-file-l1-1-0.dll
[2011/11/05 21:17:18 | 000,004,608 | -H-- | C] (Microsoft Corporation) -- F:\Windows\SysWow64\api-ms-win-core-threadpool-l1-1-0.dll
[2011/11/05 21:17:18 | 000,004,608 | -H-- | C] (Microsoft Corporation) -- F:\Windows\System32\api-ms-win-core-threadpool-l1-1-0.dll
[2011/11/05 21:17:18 | 000,004,608 | -H-- | C] (Microsoft Corporation) -- F:\Windows\SysWow64\api-ms-win-core-processthreads-l1-1-0.dll
[2011/11/05 21:17:18 | 000,004,608 | -H-- | C] (Microsoft Corporation) -- F:\Windows\System32\api-ms-win-core-processthreads-l1-1-0.dll
[2011/11/05 21:17:18 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- F:\Windows\SysWow64\api-ms-win-core-sysinfo-l1-1-0.dll
[2011/11/05 21:17:18 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- F:\Windows\System32\api-ms-win-core-sysinfo-l1-1-0.dll
[2011/11/05 21:17:18 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- F:\Windows\SysWow64\api-ms-win-core-synch-l1-1-0.dll
[2011/11/05 21:17:18 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- F:\Windows\System32\api-ms-win-core-synch-l1-1-0.dll
[2011/11/05 21:17:18 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- F:\Windows\SysWow64\api-ms-win-core-misc-l1-1-0.dll
[2011/11/05 21:17:18 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- F:\Windows\SysWow64\api-ms-win-core-localregistry-l1-1-0.dll
[2011/11/05 21:17:18 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- F:\Windows\System32\api-ms-win-core-localregistry-l1-1-0.dll
[2011/11/05 21:17:18 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- F:\Windows\SysWow64\api-ms-win-core-localization-l1-1-0.dll
[2011/11/05 21:17:18 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- F:\Windows\System32\api-ms-win-core-localization-l1-1-0.dll
[2011/11/05 21:17:18 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- F:\Windows\SysWow64\api-ms-win-core-xstate-l1-1-0.dll
[2011/11/05 21:17:18 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- F:\Windows\System32\api-ms-win-core-rtlsupport-l1-1-0.dll
[2011/11/05 21:17:18 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- F:\Windows\SysWow64\api-ms-win-core-processenvironment-l1-1-0.dll
[2011/11/05 21:17:18 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- F:\Windows\System32\api-ms-win-core-processenvironment-l1-1-0.dll
[2011/11/05 21:17:18 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- F:\Windows\SysWow64\api-ms-win-core-namedpipe-l1-1-0.dll
[2011/11/05 21:17:18 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- F:\Windows\System32\api-ms-win-core-namedpipe-l1-1-0.dll
[2011/11/05 21:17:18 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- F:\Windows\System32\api-ms-win-core-misc-l1-1-0.dll
[2011/11/05 21:17:18 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- F:\Windows\SysWow64\api-ms-win-core-memory-l1-1-0.dll
[2011/11/05 21:17:18 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- F:\Windows\System32\api-ms-win-core-memory-l1-1-0.dll
[2011/11/05 21:17:18 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- F:\Windows\SysWow64\api-ms-win-core-interlocked-l1-1-0.dll
[2011/11/05 21:17:18 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- F:\Windows\SysWow64\api-ms-win-core-heap-l1-1-0.dll
[2011/11/05 21:17:18 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- F:\Windows\System32\api-ms-win-core-heap-l1-1-0.dll
[2011/11/05 21:17:18 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- F:\Windows\System32\api-ms-win-core-xstate-l1-1-0.dll
[2011/11/05 21:17:18 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- F:\Windows\SysWow64\api-ms-win-core-util-l1-1-0.dll
[2011/11/05 21:17:18 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- F:\Windows\System32\api-ms-win-core-util-l1-1-0.dll
[2011/11/05 21:17:18 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- F:\Windows\SysWow64\api-ms-win-core-string-l1-1-0.dll
[2011/11/05 21:17:18 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- F:\Windows\System32\api-ms-win-core-string-l1-1-0.dll
[2011/11/05 21:17:18 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- F:\Windows\SysWow64\api-ms-win-core-rtlsupport-l1-1-0.dll
[2011/11/05 21:17:18 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- F:\Windows\SysWow64\api-ms-win-core-profile-l1-1-0.dll
[2011/11/05 21:17:18 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- F:\Windows\System32\api-ms-win-core-profile-l1-1-0.dll
[2011/11/05 21:17:18 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- F:\Windows\SysWow64\api-ms-win-core-io-l1-1-0.dll
[2011/11/05 21:17:18 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- F:\Windows\System32\api-ms-win-core-io-l1-1-0.dll
[2011/11/05 21:17:18 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- F:\Windows\System32\api-ms-win-core-interlocked-l1-1-0.dll
[2011/11/05 21:17:18 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- F:\Windows\SysWow64\api-ms-win-core-handle-l1-1-0.dll
[2011/11/05 21:17:18 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- F:\Windows\System32\api-ms-win-core-handle-l1-1-0.dll
[2011/11/05 21:17:18 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- F:\Windows\SysWow64\api-ms-win-core-fibers-l1-1-0.dll
[2011/11/05 21:17:18 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- F:\Windows\System32\api-ms-win-core-fibers-l1-1-0.dll
[2011/11/05 21:17:18 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- F:\Windows\SysWow64\api-ms-win-core-errorhandling-l1-1-0.dll
[2011/11/05 21:17:18 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- F:\Windows\System32\api-ms-win-core-errorhandling-l1-1-0.dll
[2011/11/05 21:17:18 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- F:\Windows\SysWow64\api-ms-win-core-delayload-l1-1-0.dll
[2011/11/05 21:17:18 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- F:\Windows\System32\api-ms-win-core-delayload-l1-1-0.dll
[2011/11/05 21:17:18 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- F:\Windows\SysWow64\api-ms-win-core-debug-l1-1-0.dll
[2011/11/05 21:17:18 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- F:\Windows\System32\api-ms-win-core-debug-l1-1-0.dll
[2011/11/05 21:17:18 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- F:\Windows\SysWow64\api-ms-win-core-datetime-l1-1-0.dll
[2011/11/05 21:17:18 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- F:\Windows\System32\api-ms-win-core-datetime-l1-1-0.dll
[2011/11/05 21:17:18 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- F:\Windows\SysWow64\api-ms-win-core-console-l1-1-0.dll
[2011/11/05 21:17:18 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- F:\Windows\System32\api-ms-win-core-console-l1-1-0.dll
[2011/11/05 21:17:17 | 000,002,048 | ---- | C] (Microsoft Corporation) -- F:\Windows\SysWow64\user.exe
[2011/11/05 21:16:58 | 000,252,928 | ---- | C] (Microsoft Corporation) -- F:\Windows\SysWow64\drvinst.exe
[2011/11/05 21:16:58 | 000,044,544 | ---- | C] (Microsoft Corporation) -- F:\Windows\SysWow64\devrtl.dll
[2011/11/05 21:16:55 | 003,138,048 | ---- | C] (Microsoft Corporation) -- F:\Windows\System32\mstscax.dll
[2011/11/05 21:16:55 | 002,690,560 | ---- | C] (Microsoft Corporation) -- F:\Windows\SysWow64\mstscax.dll
[2011/11/05 21:16:54 | 001,097,216 | ---- | C] (Microsoft Corporation) -- F:\Windows\System32\mstsc.exe
[2011/11/05 21:16:54 | 001,034,240 | ---- | C] (Microsoft Corporation) -- F:\Windows\SysWow64\mstsc.exe
[2011/11/05 21:16:40 | 014,627,840 | ---- | C] (Microsoft Corporation) -- F:\Windows\System32\wmp.dll
[2011/11/05 21:16:39 | 011,406,848 | ---- | C] (Microsoft Corporation) -- F:\Windows\SysWow64\wmp.dll
[2011/11/05 21:16:38 | 012,625,408 | ---- | C] (Microsoft Corporation) -- F:\Windows\SysWow64\wmploc.DLL
[2011/11/05 21:16:37 | 012,625,920 | ---- | C] (Microsoft Corporation) -- F:\Windows\System32\wmploc.DLL
[2011/11/05 21:16:28 | 000,031,232 | ---- | C] (Microsoft Corporation) -- F:\Windows\SysWow64\prevhost.exe
[2011/11/05 21:16:28 | 000,031,232 | ---- | C] (Microsoft Corporation) -- F:\Windows\System32\prevhost.exe
[2011/11/05 21:16:25 | 000,267,776 | ---- | C] (Microsoft Corporation) -- F:\Windows\System32\FXSCOVER.exe
[2011/11/05 21:16:23 | 000,112,000 | ---- | C] (Microsoft Corporation) -- F:\Windows\System32\consent.exe
[2011/11/05 21:16:20 | 000,861,184 | ---- | C] (Microsoft Corporation) -- F:\Windows\System32\oleaut32.dll
[2011/11/05 21:16:20 | 000,331,776 | ---- | C] (Microsoft Corporation) -- F:\Windows\System32\oleacc.dll
[2011/11/05 21:16:18 | 000,720,896 | ---- | C] (Microsoft Corporation) -- F:\Windows\System32\odbc32.dll
[2011/11/05 21:16:18 | 000,573,440 | ---- | C] (Microsoft Corporation) -- F:\Windows\SysWow64\odbc32.dll
[2011/11/05 21:16:16 | 000,009,728 | ---- | C] (Microsoft Corporation) -- F:\Windows\SysWow64\sscore.dll
[2011/11/05 21:10:00 | 005,507,968 | ---- | C] (Microsoft Corporation) -- F:\Windows\System32\ntoskrnl.exe
[2011/11/05 21:09:59 | 003,957,120 | ---- | C] (Microsoft Corporation) -- F:\Windows\SysWow64\ntkrnlpa.exe
[2011/11/05 21:09:59 | 003,902,336 | ---- | C] (Microsoft Corporation) -- F:\Windows\SysWow64\ntoskrnl.exe
[2011/11/05 19:50:18 | 000,000,000 | ---D | C] -- F:\Users\Isolde\AppData\Roaming\Mozilla
[2011/11/05 19:50:18 | 000,000,000 | ---D | C] -- F:\Users\Isolde\AppData\Local\Mozilla
[2011/11/05 19:49:55 | 000,000,000 | ---D | C] -- F:\Program Files (x86)\Mozilla Firefox
[2011/11/05 19:26:45 | 000,000,000 | ---D | C] -- F:\Users\Isolde\AppData\Roaming\Avira
[2011/11/05 19:21:26 | 000,000,000 | ---D | C] -- F:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira
[2011/11/05 19:21:16 | 000,130,760 | ---- | C] (Avira GmbH) -- F:\Windows\System32\drivers\avipbb.sys
[2011/11/05 19:21:16 | 000,097,312 | ---- | C] (Avira GmbH) -- F:\Windows\System32\drivers\avgntflt.sys
[2011/11/05 19:21:16 | 000,027,760 | ---- | C] (Avira GmbH) -- F:\Windows\System32\drivers\avkmgr.sys
[2011/11/05 19:21:15 | 000,000,000 | ---D | C] -- F:\ProgramData\Avira
[2011/11/05 19:21:15 | 000,000,000 | ---D | C] -- F:\Program Files (x86)\Avira
[2011/11/05 19:07:29 | 000,000,000 | ---D | C] -- F:\Users\Isolde\Desktop\sicherung
[2011/11/05 18:10:18 | 000,000,000 | ---D | C] -- F:\Users\Isolde\AppData\Roaming\ATI
[2011/11/05 18:10:18 | 000,000,000 | ---D | C] -- F:\Users\Isolde\AppData\Local\ATI
[2011/11/05 18:10:18 | 000,000,000 | ---D | C] -- F:\ProgramData\ATI
[2011/11/05 18:10:16 | 000,000,000 | ---D | C] -- F:\Program Files (x86)\AMD APP
[2011/11/05 18:10:14 | 000,000,000 | ---D | C] -- F:\Program Files\Common Files\ATI Technologies
[2011/11/05 18:10:14 | 000,000,000 | ---D | C] -- F:\Program Files (x86)\Common Files\ATI Technologies
[2011/11/05 18:10:11 | 000,000,000 | ---D | C] -- F:\ProgramData\Microsoft\Windows\Start Menu\Programs\Catalyst Control Center
[2011/11/05 18:09:32 | 000,000,000 | ---D | C] -- F:\Program Files (x86)\ATI Technologies
[2011/11/05 18:09:27 | 000,000,000 | -HSD | C] -- F:\Windows\Installer
[2011/11/05 18:09:21 | 000,000,000 | ---D | C] -- F:\Program Files\ATI Technologies
[2011/11/05 18:09:20 | 000,000,000 | ---D | C] -- F:\Program Files\ATI
[2011/11/05 17:44:46 | 000,220,672 | ---- | C] (Microsoft Corporation) -- F:\Windows\System32\wintrust.dll
[2011/11/05 17:44:46 | 000,172,032 | ---- | C] (Microsoft Corporation) -- F:\Windows\SysWow64\wintrust.dll
[2011/11/05 17:44:45 | 000,139,264 | ---- | C] (Microsoft Corporation) -- F:\Windows\System32\cabview.dll
[2011/11/05 17:44:45 | 000,132,608 | ---- | C] (Microsoft Corporation) -- F:\Windows\SysWow64\cabview.dll
[2011/11/05 17:42:00 | 000,000,000 | R--D | C] -- F:\Users\Isolde\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
[2011/11/05 17:42:00 | 000,000,000 | R--D | C] -- F:\Users\Isolde\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
[2011/11/05 17:42:00 | 000,000,000 | -H-D | C] -- F:\Users\Isolde\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned
[2011/11/05 17:41:50 | 000,000,000 | ---D | C] -- F:\Users\Isolde\AppData\Roaming\Identities
[2011/11/05 17:41:42 | 000,000,000 | ---D | C] -- F:\Users\Isolde\AppData\Local\VirtualStore
[2011/11/05 17:41:23 | 000,000,000 | -HSD | C] -- F:\Users\Isolde\AppData\Local\Verlauf
[2011/11/05 17:41:23 | 000,000,000 | -HSD | C] -- F:\Users\Isolde\AppData\Local\Temporary Internet Files
[2011/11/05 17:41:23 | 000,000,000 | -HSD | C] -- F:\Users\Isolde\Documents\Eigene Videos
[2011/11/05 17:41:23 | 000,000,000 | -HSD | C] -- F:\Users\Isolde\Documents\Eigene Musik
[2011/11/05 17:41:23 | 000,000,000 | -HSD | C] -- F:\Users\Isolde\Documents\Eigene Bilder
[2011/11/05 17:41:23 | 000,000,000 | -HSD | C] -- F:\Users\Isolde\AppData\Local\Anwendungsdaten
[2011/11/05 17:41:23 | 000,000,000 | ---D | C] -- F:\Users\Isolde\AppData\LocalLow
[2011/11/05 17:41:21 | 000,000,000 | --SD | C] -- F:\Users\Isolde\AppData\Roaming\Microsoft
[2011/11/05 17:41:21 | 000,000,000 | R--D | C] -- F:\Users\Isolde\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
[2011/11/05 17:41:21 | 000,000,000 | R--D | C] -- F:\Users\Isolde\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
[2011/11/05 17:41:21 | 000,000,000 | ---D | C] -- F:\Users\Isolde\AppData\Local\Temp
[2011/11/05 17:41:21 | 000,000,000 | ---D | C] -- F:\Users\Isolde\AppData\Roaming
[2011/11/05 17:41:21 | 000,000,000 | ---D | C] -- F:\Users\Isolde\AppData\Local\Microsoft
[2011/11/05 17:41:21 | 000,000,000 | ---D | C] -- F:\Users\Isolde\AppData\Roaming\Media Center Programs
[2011/11/05 17:41:21 | 000,000,000 | ---D | C] -- F:\Users\Isolde\AppData\Local
[2011/11/05 17:41:02 | 000,000,000 | -HSD | C] -- F:\ProgramData\Vorlagen
[2011/11/05 17:41:02 | 000,000,000 | -HSD | C] -- F:\ProgramData\Startmenü
[2011/11/05 17:41:02 | 000,000,000 | -HSD | C] -- F:\Program Files\Gemeinsame Dateien
[2011/11/05 17:41:02 | 000,000,000 | -HSD | C] -- F:\ProgramData\Favoriten
[2011/11/05 17:41:02 | 000,000,000 | -HSD | C] -- F:\Users\Public\Documents\Eigene Videos
[2011/11/05 17:41:02 | 000,000,000 | -HSD | C] -- F:\Users\Public\Documents\Eigene Musik
[2011/11/05 17:41:02 | 000,000,000 | -HSD | C] -- F:\Users\Public\Documents\Eigene Bilder
[2011/11/05 17:41:02 | 000,000,000 | -HSD | C] -- F:\ProgramData\Dokumente
[2011/11/05 17:41:02 | 000,000,000 | -HSD | C] -- F:\ProgramData\Anwendungsdaten
[2011/11/05 13:59:15 | 000,000,000 | ---D | C] -- F:\Windows\SoftwareDistribution
[2011/11/05 13:56:22 | 000,000,000 | ---D | C] -- F:\Windows\Prefetch
[2011/11/05 13:55:22 | 000,000,000 | ---D | C] -- F:\Windows\Panther
[2011/11/05 13:41:09 | 000,000,000 | ---D | C] -- F:\Windows.old
[2011/10/25 13:39:14 | 000,000,000 | ---D | C] -- F:\AMD
[2011/10/24 16:22:16 | 000,000,000 | ---D | C] -- F:\ATI
[2011/10/24 15:24:06 | 000,000,000 | ---D | C] -- F:\Daten
[2011/10/12 15:56:18 | 010,207,232 | ---- | C] (ATI Technologies Inc.) -- F:\Windows\System32\drivers\atikmdag.sys
[2011/10/12 15:20:20 | 024,629,760 | ---- | C] (Advanced Micro Devices, Inc.) -- F:\Windows\System32\atio6axx.dll
[2011/10/12 15:14:36 | 000,159,744 | ---- | C] (Advanced Micro Devices, Inc.) -- F:\Windows\System32\atiapfxx.exe
[2011/10/12 15:14:26 | 000,736,768 | ---- | C] (Advanced Micro Devices, Inc. ) -- F:\Windows\SysWow64\aticfx32.dll
[2011/10/12 15:13:00 | 000,867,328 | ---- | C] (Advanced Micro Devices, Inc. ) -- F:\Windows\System32\aticfx64.dll
[2011/10/12 15:10:28 | 000,466,944 | ---- | C] (Advanced Micro Devices, Inc.) -- F:\Windows\System32\ATIDEMGX.dll
[2011/10/12 15:10:18 | 000,487,936 | ---- | C] (AMD) -- F:\Windows\System32\atieclxx.exe
[2011/10/12 15:09:44 | 000,204,288 | ---- | C] (AMD) -- F:\Windows\System32\atiesrxx.exe
[2011/10/12 15:08:34 | 000,120,320 | ---- | C] (AMD) -- F:\Windows\System32\atitmm64.dll
[2011/10/12 15:08:16 | 000,423,424 | ---- | C] (ATI Technologies, Inc.) -- F:\Windows\System32\atipdl64.dll
[2011/10/12 15:08:10 | 000,356,352 | ---- | C] (ATI Technologies, Inc.) -- F:\Windows\SysWow64\atipdlxx.dll
[2011/10/12 15:07:58 | 000,278,528 | ---- | C] (ATI Technologies, Inc.) -- F:\Windows\SysWow64\Oemdspif.dll
[2011/10/12 15:07:54 | 000,021,504 | ---- | C] (AMD) -- F:\Windows\System32\atimuixx.dll
[2011/10/12 15:07:48 | 000,059,392 | ---- | C] (ATI Technologies, Inc.) -- F:\Windows\System32\atiedu64.dll
[2011/10/12 15:07:44 | 000,043,520 | ---- | C] (ATI Technologies, Inc.) -- F:\Windows\SysWow64\ati2edxx.dll
[2011/10/12 15:04:42 | 004,231,680 | ---- | C] (Advanced Micro Devices, Inc. ) -- F:\Windows\SysWow64\atidxx32.dll
[2011/10/12 15:04:14 | 018,630,656 | ---- | C] (Advanced Micro Devices, Inc.) -- F:\Windows\SysWow64\atioglxx.dll
[2011/10/12 14:46:20 | 000,051,200 | ---- | C] (Advanced Micro Devices Inc.) -- F:\Windows\System32\aticalrt64.dll
[2011/10/12 14:46:18 | 000,046,080 | ---- | C] (Advanced Micro Devices Inc.) -- F:\Windows\SysWow64\aticalrt.dll
[2011/10/12 14:46:10 | 000,044,544 | ---- | C] (Advanced Micro Devices Inc.) -- F:\Windows\System32\aticalcl64.dll
[2011/10/12 14:46:08 | 000,044,032 | ---- | C] (Advanced Micro Devices Inc.) -- F:\Windows\SysWow64\aticalcl.dll
[2011/10/12 14:45:58 | 009,877,504 | ---- | C] (Advanced Micro Devices Inc.) -- F:\Windows\System32\aticaldd64.dll
[2011/10/12 14:44:44 | 001,113,088 | ---- | C] (Advanced Micro Devices, Inc. ) -- F:\Windows\System32\atiumd6v.dll
[2011/10/12 14:44:28 | 004,289,024 | ---- | C] (Advanced Micro Devices, Inc. ) -- F:\Windows\SysWow64\atiumdag.dll
[2011/10/12 14:44:20 | 001,828,864 | ---- | C] (Advanced Micro Devices, Inc. ) -- F:\Windows\SysWow64\atiumdmv.dll
[2011/10/12 14:44:10 | 004,023,296 | ---- | C] (Advanced Micro Devices, Inc. ) -- F:\Windows\System32\atiumd6a.dll
[2011/10/12 14:42:56 | 008,391,680 | ---- | C] (Advanced Micro Devices Inc.) -- F:\Windows\SysWow64\aticaldd.dll
[2011/10/12 14:39:38 | 000,058,880 | ---- | C] (AMD) -- F:\Windows\System32\coinst.dll
[2011/10/12 14:38:20 | 005,431,808 | ---- | C] (Advanced Micro Devices, Inc. ) -- F:\Windows\System32\atiumd64.dll
[2011/10/12 14:33:10 | 004,174,848 | ---- | C] (Advanced Micro Devices, Inc. ) -- F:\Windows\SysWow64\atiumdva.dll
[2011/10/12 14:31:34 | 000,479,744 | ---- | C] (Advanced Micro Devices, Inc.) -- F:\Windows\System32\atiadlxx.dll
[2011/10/12 14:31:22 | 000,335,872 | ---- | C] (Advanced Micro Devices, Inc.) -- F:\Windows\SysWow64\atiadlxy.dll
[2011/10/12 14:31:06 | 000,017,408 | ---- | C] (Advanced Micro Devices, Inc. ) -- F:\Windows\System32\atig6pxx.dll
[2011/10/12 14:31:02 | 000,014,336 | ---- | C] (Advanced Micro Devices, Inc. ) -- F:\Windows\SysWow64\atiglpxx.dll
[2011/10/12 14:31:02 | 000,014,336 | ---- | C] (Advanced Micro Devices, Inc. ) -- F:\Windows\System32\atiglpxx.dll
[2011/10/12 14:30:58 | 000,039,936 | ---- | C] (Advanced Micro Devices, Inc. ) -- F:\Windows\System32\atig6txx.dll
[2011/10/12 14:30:50 | 000,032,768 | ---- | C] (Advanced Micro Devices, Inc. ) -- F:\Windows\SysWow64\atigktxx.dll
[2011/10/12 14:30:42 | 000,317,952 | ---- | C] (Advanced Micro Devices, Inc.) -- F:\Windows\System32\drivers\atikmpag.sys
[2011/10/12 14:29:50 | 000,040,960 | ---- | C] (Advanced Micro Devices, Inc. ) -- F:\Windows\System32\atiuxp64.dll
[2011/10/12 14:29:42 | 000,031,744 | ---- | C] (Advanced Micro Devices, Inc. ) -- F:\Windows\SysWow64\atiuxpag.dll
[2011/10/12 14:29:34 | 000,038,912 | ---- | C] (Advanced Micro Devices, Inc. ) -- F:\Windows\System32\atiu9p64.dll
[2011/10/12 14:29:26 | 000,029,184 | ---- | C] (Advanced Micro Devices, Inc. ) -- F:\Windows\SysWow64\atiu9pag.dll
[2011/10/12 14:28:30 | 000,053,248 | ---- | C] (ATI Technologies Inc.) -- F:\Windows\System32\drivers\ati2erec.dll
[2011/10/12 14:16:52 | 000,054,784 | ---- | C] (Advanced Micro Devices, Inc. ) -- F:\Windows\System32\atimpc64.dll
[2011/10/12 14:16:52 | 000,054,784 | ---- | C] (Advanced Micro Devices, Inc. ) -- F:\Windows\System32\amdpcom64.dll
[2011/10/12 14:16:42 | 000,053,760 | ---- | C] (Advanced Micro Devices, Inc. ) -- F:\Windows\SysWow64\atimpc32.dll
[2011/10/12 14:16:42 | 000,053,760 | ---- | C] (Advanced Micro Devices, Inc. ) -- F:\Windows\SysWow64\amdpcom32.dll
[2011/10/12 10:16:22 | 016,787,456 | ---- | C] (Advanced Micro Devices Inc.) -- F:\Windows\System32\amdocl64.dll
[2011/10/12 10:15:40 | 013,753,856 | ---- | C] (Advanced Micro Devices Inc.) -- F:\Windows\SysWow64\amdocl.dll
[2011/10/12 10:14:54 | 000,051,200 | ---- | C] (Khronos Group) -- F:\Windows\System32\OpenCL.dll
[2011/10/12 10:14:50 | 000,043,520 | ---- | C] (Khronos Group) -- F:\Windows\SysWow64\OpenCL.dll
[2011/10/10 13:49:35 | 000,000,000 | ---D | C] -- F:\GAMMARAY
[2011/10/10 13:45:10 | 000,000,000 | ---D | C] -- F:\WDB2005
[2011/10/09 06:51:37 | 000,000,000 | ---D | C] -- F:\swsetup
========== Files - Modified Within 30 Days ==========
[2011/11/07 15:56:38 | 000,067,584 | --S- | M] () -- F:\Windows\bootstat.dat
[2011/11/07 15:56:32 | 000,009,776 | -H-- | M] () -- F:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2011/11/07 15:56:32 | 000,009,776 | -H-- | M] () -- F:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2011/11/07 14:50:24 | 3217,502,208 | -HS- | M] () -- F:\hiberfil.sys
[2011/11/07 12:24:11 | 000,654,166 | ---- | M] () -- F:\Windows\System32\perfh007.dat
[2011/11/07 12:24:11 | 000,616,008 | ---- | M] () -- F:\Windows\System32\perfh009.dat
[2011/11/07 12:24:11 | 000,130,006 | ---- | M] () -- F:\Windows\System32\perfc007.dat
[2011/11/07 12:24:11 | 000,106,388 | ---- | M] () -- F:\Windows\System32\perfc009.dat
[2011/11/06 16:57:31 | 000,414,368 | ---- | M] (Adobe Systems Incorporated) -- F:\Windows\SysWow64\FlashPlayerCPLApp.cpl
[2011/11/06 16:50:06 | 000,000,000 | R--D | M] -- F:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
[2011/11/06 12:39:41 | 000,002,441 | ---- | M] () -- F:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader X.lnk
[2011/11/06 12:39:41 | 000,002,019 | ---- | M] () -- F:\Users\Public\Desktop\Adobe Reader X.lnk
[2011/11/06 10:57:20 | 000,001,599 | ---- | M] () -- F:\Users\Isolde\Desktop\ArchiCAD 15.lnk
[2011/11/06 10:50:04 | 002,211,440 | ---- | M] () -- F:\Users\Isolde\Documents\Ohne Titel.pln
[2011/11/06 10:08:59 | 002,212,528 | ---- | M] () -- F:\Users\Isolde\Documents\Ohne Titel.bpn
[2011/11/06 09:37:01 | 000,001,337 | ---- | M] () -- F:\Users\Public\Desktop\BIMx für ArchiCAD 15.lnk
[2011/11/06 09:37:01 | 000,001,058 | ---- | M] () -- F:\Users\Isolde\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\ArchiCAD 15.lnk
[2011/11/06 09:36:41 | 000,002,355 | ---- | M] () -- F:\Users\Isolde\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\CodeMeter Control Center.lnk
[2011/11/06 09:35:41 | 000,001,845 | ---- | M] () -- F:\Users\Public\Desktop\QuickTime Player.lnk
[2011/11/06 09:35:41 | 000,000,000 | ---D | M] -- F:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime
[2011/11/06 09:34:45 | 000,002,519 | ---- | M] () -- F:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apple Software Update.lnk
[2011/11/06 09:33:52 | 000,008,144 | ---- | M] () -- F:\Windows\vpd.properties
[2011/11/06 09:28:24 | 000,000,000 | ---D | M] -- F:\ProgramData\Microsoft\Windows\Start Menu\Programs\Graphisoft
[2011/11/06 09:22:20 | 000,157,472 | ---- | M] (Sun Microsystems, Inc.) -- F:\Windows\SysWow64\javaws.exe
[2011/11/06 09:22:20 | 000,145,184 | ---- | M] (Sun Microsystems, Inc.) -- F:\Windows\SysWow64\javaw.exe
[2011/11/06 09:22:19 | 000,472,808 | ---- | M] (Sun Microsystems, Inc.) -- F:\Windows\SysWow64\deployJava1.dll
[2011/11/06 09:22:19 | 000,145,184 | ---- | M] (Sun Microsystems, Inc.) -- F:\Windows\SysWow64\java.exe
[2011/11/06 07:18:32 | 000,274,464 | ---- | M] () -- F:\Windows\System32\FNTCACHE.DAT
[2011/11/05 19:49:57 | 000,001,154 | ---- | M] () -- F:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
[2011/11/05 19:49:57 | 000,001,142 | ---- | M] () -- F:\Users\Public\Desktop\Mozilla Firefox.lnk
[2011/11/05 19:21:26 | 000,002,070 | ---- | M] () -- F:\Users\Public\Desktop\Avira Control Center.lnk
[2011/11/05 19:21:26 | 000,000,000 | ---D | M] -- F:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira
[2011/11/05 18:10:11 | 000,000,000 | ---D | M] -- F:\ProgramData\Microsoft\Windows\Start Menu\Programs\Catalyst Control Center
[2011/11/05 17:42:45 | 000,001,437 | ---- | M] () -- F:\Users\Isolde\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
[2011/11/05 14:00:53 | 000,057,050 | ---- | M] () -- F:\Windows\SysWow64\license.rtf
[2011/11/05 14:00:53 | 000,057,050 | ---- | M] () -- F:\Windows\System32\license.rtf
[2011/11/05 14:00:41 | 000,001,345 | ---- | M] () -- F:\ProgramData\Microsoft\Windows\Start Menu\Programs\Media Center.lnk
[2011/11/05 14:00:41 | 000,000,000 | R--D | M] -- F:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools
[2011/11/05 14:00:38 | 000,000,000 | R--D | M] -- F:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
[2011/11/05 14:00:30 | 000,000,000 | R--D | M] -- F:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
[2011/11/05 14:00:29 | 000,001,326 | ---- | M] () -- F:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows DVD Maker.lnk
[2011/11/05 13:59:27 | 000,000,000 | ---- | M] () -- F:\Windows\ativpsrm.bin
[2011/11/05 13:58:37 | 000,000,000 | -H-- | M] () -- F:\Windows\System32\drivers\Msft_User_WpdFs_01_09_00.Wdf
[2011/10/19 10:56:15 | 000,130,760 | ---- | M] (Avira GmbH) -- F:\Windows\System32\drivers\avipbb.sys
[2011/10/19 10:56:15 | 000,097,312 | ---- | M] (Avira GmbH) -- F:\Windows\System32\drivers\avgntflt.sys
[2011/10/19 10:56:15 | 000,027,760 | ---- | M] (Avira GmbH) -- F:\Windows\System32\drivers\avkmgr.sys
[2011/10/12 15:56:18 | 010,207,232 | ---- | M] (ATI Technologies Inc.) -- F:\Windows\System32\drivers\atikmdag.sys
[2011/10/12 15:20:20 | 024,629,760 | ---- | M] (Advanced Micro Devices, Inc.) -- F:\Windows\System32\atio6axx.dll
[2011/10/12 15:15:20 | 000,198,664 | ---- | M] () -- F:\Windows\System32\atiapfxx.blb
[2011/10/12 15:14:36 | 000,159,744 | ---- | M] (Advanced Micro Devices, Inc.) -- F:\Windows\System32\atiapfxx.exe
[2011/10/12 15:14:26 | 000,736,768 | ---- | M] (Advanced Micro Devices, Inc. ) -- F:\Windows\SysWow64\aticfx32.dll
[2011/10/12 15:13:00 | 000,867,328 | ---- | M] (Advanced Micro Devices, Inc. ) -- F:\Windows\System32\aticfx64.dll
[2011/10/12 15:10:28 | 000,466,944 | ---- | M] (Advanced Micro Devices, Inc.) -- F:\Windows\System32\ATIDEMGX.dll
[2011/10/12 15:10:18 | 000,487,936 | ---- | M] (AMD) -- F:\Windows\System32\atieclxx.exe
[2011/10/12 15:09:44 | 000,204,288 | ---- | M] (AMD) -- F:\Windows\System32\atiesrxx.exe
[2011/10/12 15:08:34 | 000,120,320 | ---- | M] (AMD) -- F:\Windows\System32\atitmm64.dll
[2011/10/12 15:08:16 | 000,423,424 | ---- | M] (ATI Technologies, Inc.) -- F:\Windows\System32\atipdl64.dll
[2011/10/12 15:08:10 | 000,356,352 | ---- | M] (ATI Technologies, Inc.) -- F:\Windows\SysWow64\atipdlxx.dll
[2011/10/12 15:07:58 | 000,278,528 | ---- | M] (ATI Technologies, Inc.) -- F:\Windows\SysWow64\Oemdspif.dll
[2011/10/12 15:07:54 | 000,021,504 | ---- | M] (AMD) -- F:\Windows\System32\atimuixx.dll
[2011/10/12 15:07:48 | 000,059,392 | ---- | M] (ATI Technologies, Inc.) -- F:\Windows\System32\atiedu64.dll
[2011/10/12 15:07:44 | 000,043,520 | ---- | M] (ATI Technologies, Inc.) -- F:\Windows\SysWow64\ati2edxx.dll
[2011/10/12 15:04:42 | 004,231,680 | ---- | M] (Advanced Micro Devices, Inc. ) -- F:\Windows\SysWow64\atidxx32.dll
[2011/10/12 15:04:14 | 018,630,656 | ---- | M] (Advanced Micro Devices, Inc.) -- F:\Windows\SysWow64\atioglxx.dll
[2011/10/12 14:54:44 | 004,960,768 | ---- | M] (Advanced Micro Devices, Inc. ) -- F:\Windows\System32\atidxx64.dll
[2011/10/12 14:46:20 | 000,051,200 | ---- | M] (Advanced Micro Devices Inc.) -- F:\Windows\System32\aticalrt64.dll
[2011/10/12 14:46:18 | 000,046,080 | ---- | M] (Advanced Micro Devices Inc.) -- F:\Windows\SysWow64\aticalrt.dll
[2011/10/12 14:46:10 | 000,044,544 | ---- | M] (Advanced Micro Devices Inc.) -- F:\Windows\System32\aticalcl64.dll
[2011/10/12 14:46:08 | 000,044,032 | ---- | M] (Advanced Micro Devices Inc.) -- F:\Windows\SysWow64\aticalcl.dll
[2011/10/12 14:45:58 | 009,877,504 | ---- | M] (Advanced Micro Devices Inc.) -- F:\Windows\System32\aticaldd64.dll
[2011/10/12 14:44:44 | 001,113,088 | ---- | M] (Advanced Micro Devices, Inc. ) -- F:\Windows\System32\atiumd6v.dll
[2011/10/12 14:44:28 | 004,289,024 | ---- | M] (Advanced Micro Devices, Inc. ) -- F:\Windows\SysWow64\atiumdag.dll
[2011/10/12 14:44:20 | 001,828,864 | ---- | M] (Advanced Micro Devices, Inc. ) -- F:\Windows\SysWow64\atiumdmv.dll
[2011/10/12 14:44:10 | 004,023,296 | ---- | M] (Advanced Micro Devices, Inc. ) -- F:\Windows\System32\atiumd6a.dll
[2011/10/12 14:42:56 | 008,391,680 | ---- | M] (Advanced Micro Devices Inc.) -- F:\Windows\SysWow64\aticaldd.dll
[2011/10/12 14:39:38 | 000,058,880 | ---- | M] (AMD) -- F:\Windows\System32\coinst.dll
[2011/10/12 14:39:34 | 001,847,904 | ---- | M] () -- F:\Windows\System32\atiumd6a.cap
[2011/10/12 14:38:20 | 005,431,808 | ---- | M] (Advanced Micro Devices, Inc. ) -- F:\Windows\System32\atiumd64.dll
[2011/10/12 14:33:10 | 004,174,848 | ---- | M] (Advanced Micro Devices, Inc. ) -- F:\Windows\SysWow64\atiumdva.dll
[2011/10/12 14:32:14 | 001,849,344 | ---- | M] () -- F:\Windows\SysWow64\atiumdva.cap
[2011/10/12 14:31:34 | 000,479,744 | ---- | M] (Advanced Micro Devices, Inc.) -- F:\Windows\System32\atiadlxx.dll
[2011/10/12 14:31:22 | 000,335,872 | ---- | M] (Advanced Micro Devices, Inc.) -- F:\Windows\SysWow64\atiadlxy.dll
[2011/10/12 14:31:06 | 000,017,408 | ---- | M] (Advanced Micro Devices, Inc. ) -- F:\Windows\System32\atig6pxx.dll
[2011/10/12 14:31:02 | 000,014,336 | ---- | M] (Advanced Micro Devices, Inc. ) -- F:\Windows\SysWow64\atiglpxx.dll
[2011/10/12 14:31:02 | 000,014,336 | ---- | M] (Advanced Micro Devices, Inc. ) -- F:\Windows\System32\atiglpxx.dll
[2011/10/12 14:30:58 | 000,039,936 | ---- | M] (Advanced Micro Devices, Inc. ) -- F:\Windows\System32\atig6txx.dll
[2011/10/12 14:30:50 | 000,032,768 | ---- | M] (Advanced Micro Devices, Inc. ) -- F:\Windows\SysWow64\atigktxx.dll
[2011/10/12 14:30:42 | 000,317,952 | ---- | M] (Advanced Micro Devices, Inc.) -- F:\Windows\System32\drivers\atikmpag.sys
[2011/10/12 14:29:50 | 000,040,960 | ---- | M] (Advanced Micro Devices, Inc. ) -- F:\Windows\System32\atiuxp64.dll
[2011/10/12 14:29:42 | 000,031,744 | ---- | M] (Advanced Micro Devices, Inc. ) -- F:\Windows\SysWow64\atiuxpag.dll
[2011/10/12 14:29:34 | 000,038,912 | ---- | M] (Advanced Micro Devices, Inc. ) -- F:\Windows\System32\atiu9p64.dll
[2011/10/12 14:29:26 | 000,029,184 | ---- | M] (Advanced Micro Devices, Inc. ) -- F:\Windows\SysWow64\atiu9pag.dll
[2011/10/12 14:28:30 | 000,053,248 | ---- | M] (ATI Technologies Inc.) -- F:\Windows\System32\drivers\ati2erec.dll
[2011/10/12 14:16:52 | 000,054,784 | ---- | M] (Advanced Micro Devices, Inc. ) -- F:\Windows\System32\atimpc64.dll
[2011/10/12 14:16:52 | 000,054,784 | ---- | M] (Advanced Micro Devices, Inc. ) -- F:\Windows\System32\amdpcom64.dll
[2011/10/12 14:16:42 | 000,053,760 | ---- | M] (Advanced Micro Devices, Inc. ) -- F:\Windows\SysWow64\atimpc32.dll
[2011/10/12 14:16:42 | 000,053,760 | ---- | M] (Advanced Micro Devices, Inc. ) -- F:\Windows\SysWow64\amdpcom32.dll
[2011/10/12 10:16:36 | 000,066,048 | ---- | M] () -- F:\Windows\System32\OpenVideo64.dll
[2011/10/12 10:16:30 | 000,056,832 | ---- | M] () -- F:\Windows\SysWow64\OpenVideo.dll
[2011/10/12 10:16:22 | 016,787,456 | ---- | M] (Advanced Micro Devices Inc.) -- F:\Windows\System32\amdocl64.dll
[2011/10/12 10:15:40 | 013,753,856 | ---- | M] (Advanced Micro Devices Inc.) -- F:\Windows\SysWow64\amdocl.dll
[2011/10/12 10:14:54 | 000,051,200 | ---- | M] (Khronos Group) -- F:\Windows\System32\OpenCL.dll
[2011/10/12 10:14:50 | 000,043,520 | ---- | M] (Khronos Group) -- F:\Windows\SysWow64\OpenCL.dll
========== Files Created - No Company Name ==========
[2011/11/06 12:39:41 | 000,002,441 | ---- | C] () -- F:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader X.lnk
[2011/11/06 12:39:41 | 000,002,019 | ---- | C] () -- F:\Users\Public\Desktop\Adobe Reader X.lnk
[2011/11/06 10:57:20 | 000,001,599 | ---- | C] () -- F:\Users\Isolde\Desktop\ArchiCAD 15.lnk
[2011/11/06 10:08:59 | 002,212,528 | ---- | C] () -- F:\Users\Isolde\Documents\Ohne Titel.bpn
[2011/11/06 10:08:59 | 002,211,440 | ---- | C] () -- F:\Users\Isolde\Documents\Ohne Titel.pln
[2011/11/06 09:37:01 | 000,001,337 | ---- | C] () -- F:\Users\Public\Desktop\BIMx für ArchiCAD 15.lnk
[2011/11/06 09:37:01 | 000,001,058 | ---- | C] () -- F:\Users\Isolde\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\ArchiCAD 15.lnk
[2011/11/06 09:36:41 | 000,002,355 | ---- | C] () -- F:\Users\Isolde\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\CodeMeter Control Center.lnk
[2011/11/06 09:35:41 | 000,001,845 | ---- | C] () -- F:\Users\Public\Desktop\QuickTime Player.lnk
[2011/11/06 09:34:45 | 000,002,519 | ---- | C] () -- F:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apple Software Update.lnk
[2011/11/06 09:33:52 | 000,008,144 | ---- | C] () -- F:\Windows\vpd.properties
[2011/11/05 19:49:57 | 000,001,142 | ---- | C] () -- F:\Users\Public\Desktop\Mozilla Firefox.lnk
[2011/11/05 19:49:56 | 000,001,154 | ---- | C] () -- F:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
[2011/11/05 19:21:26 | 000,002,070 | ---- | C] () -- F:\Users\Public\Desktop\Avira Control Center.lnk
[2011/11/05 17:42:45 | 000,001,437 | ---- | C] () -- F:\Users\Isolde\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
[2011/11/05 17:42:08 | 000,001,409 | ---- | C] () -- F:\Users\Isolde\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer (64-bit).lnk
[2011/11/05 17:42:02 | 000,001,443 | ---- | C] () -- F:\Users\Isolde\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
[2011/11/05 17:41:22 | 000,000,290 | ---- | C] () -- F:\Users\Isolde\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk
[2011/11/05 17:41:22 | 000,000,272 | ---- | C] () -- F:\Users\Isolde\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk
[2011/11/05 14:00:41 | 000,001,345 | ---- | C] () -- F:\ProgramData\Microsoft\Windows\Start Menu\Programs\Media Center.lnk
[2011/11/05 14:00:29 | 000,001,326 | ---- | C] () -- F:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows DVD Maker.lnk
[2011/11/05 13:59:27 | 000,000,000 | ---- | C] () -- F:\Windows\ativpsrm.bin
[2011/11/05 13:58:37 | 000,000,000 | -H-- | C] () -- F:\Windows\System32\drivers\Msft_User_WpdFs_01_09_00.Wdf
[2011/10/12 15:15:20 | 000,198,664 | ---- | C] () -- F:\Windows\System32\atiapfxx.blb
[2011/10/12 14:39:34 | 001,847,904 | ---- | C] () -- F:\Windows\System32\atiumd6a.cap
[2011/10/12 14:32:14 | 001,849,344 | ---- | C] () -- F:\Windows\SysWow64\atiumdva.cap
[2011/10/12 10:16:36 | 000,066,048 | ---- | C] () -- F:\Windows\System32\OpenVideo64.dll
[2011/10/12 10:16:30 | 000,056,832 | ---- | C] () -- F:\Windows\SysWow64\OpenVideo.dll
[2011/03/17 12:51:44 | 000,003,929 | ---- | C] () -- F:\Windows\SysWow64\atipblag.dat
[2009/07/14 00:38:36 | 000,067,584 | --S- | C] () -- F:\Windows\bootstat.dat
[2009/07/13 21:35:51 | 000,000,741 | ---- | C] () -- F:\Windows\SysWow64\NOISE.DAT
[2009/07/13 21:34:42 | 000,215,943 | ---- | C] () -- F:\Windows\SysWow64\dssec.dat
[2009/07/13 19:10:29 | 000,043,131 | ---- | C] () -- F:\Windows\mib.bin
[2009/07/13 19:02:54 | 000,245,248 | ---- | C] () -- F:\Windows\SysWow64\DShowRdpFilter.dll
[2009/07/13 18:42:10 | 000,064,000 | ---- | C] () -- F:\Windows\SysWow64\BWContextHandler.dll
[2009/07/13 17:25:04 | 000,197,632 | ---- | C] () -- F:\Windows\SysWow64\ir32_32.dll
[2009/07/13 16:03:59 | 000,364,544 | ---- | C] () -- F:\Windows\SysWow64\msjetoledb40.dll
[2009/06/10 16:26:10 | 000,673,088 | ---- | C] () -- F:\Windows\SysWow64\mlang.dat
========== LOP Check ==========
[2011/11/05 17:41:02 | 000,000,000 | -HSD | M] -- F:\ProgramData\Anwendungsdaten
[2009/07/14 00:08:56 | 000,000,000 | -HSD | M] -- F:\ProgramData\Application Data
[2009/07/14 00:08:56 | 000,000,000 | -HSD | M] -- F:\ProgramData\Desktop
[2009/07/14 00:08:56 | 000,000,000 | -HSD | M] -- F:\ProgramData\Documents
[2011/11/05 17:41:02 | 000,000,000 | -HSD | M] -- F:\ProgramData\Dokumente
[2011/11/05 17:41:02 | 000,000,000 | -HSD | M] -- F:\ProgramData\Favoriten
[2009/07/14 00:08:56 | 000,000,000 | -HSD | M] -- F:\ProgramData\Favorites
[2009/07/14 00:08:56 | 000,000,000 | -HSD | M] -- F:\ProgramData\Start Menu
[2011/11/05 17:41:02 | 000,000,000 | -HSD | M] -- F:\ProgramData\Startmenü
[2009/07/14 00:08:56 | 000,000,000 | -HSD | M] -- F:\ProgramData\Templates
[2011/11/05 17:41:02 | 000,000,000 | -HSD | M] -- F:\ProgramData\Vorlagen
[2009/07/14 00:08:49 | 000,003,150 | ---- | M] () -- F:\Windows\Tasks\SCHEDLGU.TXT
========== Purity Check ==========
< End of report >
--- --- ---
@1
nachdem in eigentlich allen themen empfohlen wurde combofix auszuführen hab ich den artikel komplett gelesen und mach das immoment. hab die datei zur sicherheit direkt in 4567.com umgenant
@2
combofix log
Combofix Logfile: Code:
ComboFix 11-11-04.04 - Isolde 07.11.2011 22:55:33.1.2 - x64 MINIMAL
Microsoft Windows 7 Ultimate 6.1.7600.0.1252.49.1031.18.4091.3157 [GMT 1:00]
ausgeführt von:: F:\4567.com
AV: Avira Desktop *Enabled/Updated* {F67B4DE5-C0B4-6C3F-0EFF-6C83BD5D0C2C}
SP: Avira Desktop *Enabled/Updated* {4D1AAC01-E68E-63B1-344F-57F1C6DA4691}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
* Neuer Wiederherstellungspunkt wurde erstellt
.
.
((((((((((((((((((((((( Dateien erstellt von 2011-10-07 bis 2011-11-07 ))))))))))))))))))))))))))))))
.
.
2011-11-07 21:59 . 2011-11-07 21:59 -------- d-----w- c:\users\Default\AppData\Local\temp
2011-11-07 15:26 . 2011-11-07 15:26 -------- d-----w- c:\program files (x86)\Microsoft.NET
2011-11-06 21:57 . 2011-11-06 21:57 414368 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2011-11-06 21:57 . 2011-11-06 21:57 -------- d-----w- c:\windows\SysWow64\Macromed
2011-11-06 21:57 . 2011-11-06 21:57 -------- d-----w- c:\windows\system32\Macromed
2011-11-06 17:39 . 2011-11-06 17:39 -------- d-----w- c:\program files (x86)\Common Files\Adobe
2011-11-06 17:36 . 2011-11-06 17:36 -------- d-----w- c:\programdata\McAfee
2011-11-06 14:36 . 2011-11-06 14:36 -------- d-----w- c:\program files\WIBU-SYSTEMS
2011-11-06 14:36 . 2011-11-06 14:36 -------- d-----w- c:\program files\CodeMeter
2011-11-06 14:36 . 2011-11-06 14:36 -------- d-----w- c:\program files (x86)\CodeMeter
2011-11-06 14:36 . 2011-11-06 14:36 -------- d-----w- c:\program files (x86)\Common Files\Wise Installation Wizard
2011-11-06 14:35 . 2011-11-06 14:35 159744 ----a-w- c:\program files (x86)\Internet Explorer\Plugins\npqtplugin7.dll
2011-11-06 14:35 . 2011-11-06 14:35 159744 ----a-w- c:\program files (x86)\Internet Explorer\Plugins\npqtplugin6.dll
2011-11-06 14:35 . 2011-11-06 14:35 159744 ----a-w- c:\program files (x86)\Internet Explorer\Plugins\npqtplugin5.dll
2011-11-06 14:35 . 2011-11-06 14:35 159744 ----a-w- c:\program files (x86)\Internet Explorer\Plugins\npqtplugin4.dll
2011-11-06 14:35 . 2011-11-06 14:35 159744 ----a-w- c:\program files (x86)\Internet Explorer\Plugins\npqtplugin3.dll
2011-11-06 14:35 . 2011-11-06 14:35 159744 ----a-w- c:\program files (x86)\Internet Explorer\Plugins\npqtplugin2.dll
2011-11-06 14:35 . 2011-11-06 14:35 159744 ----a-w- c:\program files (x86)\Internet Explorer\Plugins\npqtplugin.dll
2011-11-06 14:35 . 2011-11-06 14:35 -------- d-----w- c:\program files (x86)\QuickTime
2011-11-06 14:35 . 2011-11-06 14:35 -------- d-----w- c:\programdata\Apple Computer
2011-11-06 14:34 . 2011-11-06 14:34 -------- d-----w- c:\program files (x86)\Common Files\Apple
2011-11-06 14:34 . 2011-11-06 14:34 -------- d-----w- c:\programdata\Apple
2011-11-06 14:34 . 2011-11-06 14:34 -------- d-----w- c:\program files (x86)\Apple Software Update
2011-11-06 14:28 . 2011-11-06 14:28 -------- d-----w- c:\program files\Graphisoft
2011-11-06 14:22 . 2011-11-06 14:22 -------- d-----w- c:\program files (x86)\Common Files\Java
2011-11-06 14:22 . 2011-11-06 14:22 472808 ----a-w- c:\windows\SysWow64\deployJava1.dll
2011-11-06 14:22 . 2011-11-06 14:22 -------- d-----w- c:\program files (x86)\Java
2011-11-06 11:44 . 2010-09-14 06:45 367104 ----a-w- c:\windows\system32\wcncsvc.dll
2011-11-06 11:44 . 2010-09-14 06:07 276992 ----a-w- c:\windows\SysWow64\wcncsvc.dll
2011-11-06 11:36 . 2009-09-10 06:28 311808 ----a-w- c:\windows\system32\msv1_0.dll
2011-11-06 11:36 . 2009-09-10 05:52 257024 ----a-w- c:\windows\SysWow64\msv1_0.dll
2011-11-06 11:25 . 2009-11-25 11:47 99176 ----a-w- c:\windows\SysWow64\PresentationHostProxy.dll
2011-11-06 11:25 . 2009-11-25 11:47 49472 ----a-w- c:\windows\SysWow64\netfxperf.dll
2011-11-06 11:25 . 2009-11-25 11:47 48960 ----a-w- c:\windows\system32\netfxperf.dll
2011-11-06 11:25 . 2009-11-25 11:47 297808 ----a-w- c:\windows\SysWow64\mscoree.dll
2011-11-06 11:25 . 2009-11-25 11:47 295264 ----a-w- c:\windows\SysWow64\PresentationHost.exe
2011-11-06 11:25 . 2009-11-25 11:47 1130824 ----a-w- c:\windows\SysWow64\dfshim.dll
2011-11-06 11:25 . 2009-11-25 11:47 109912 ----a-w- c:\windows\system32\PresentationHostProxy.dll
2011-11-06 11:25 . 2009-11-25 11:47 444752 ----a-w- c:\windows\system32\mscoree.dll
2011-11-06 11:25 . 2009-11-25 11:47 320352 ----a-w- c:\windows\system32\PresentationHost.exe
2011-11-06 11:25 . 2009-11-25 11:47 1942856 ----a-w- c:\windows\system32\dfshim.dll
2011-11-06 11:24 . 2010-02-23 08:16 294912 ----a-w- c:\windows\system32\browserchoice.exe
2011-11-06 11:14 . 2010-03-04 04:40 184832 ----a-w- c:\windows\system32\drivers\usbvideo.sys
2011-11-06 11:14 . 2010-03-04 04:32 243712 ----a-w- c:\windows\system32\drivers\ks.sys
2011-11-06 02:24 . 2011-02-26 06:23 2870272 ----a-w- c:\windows\explorer.exe
2011-11-06 02:23 . 2010-01-19 09:05 424960 ----a-w- c:\windows\system32\secproc.dll
2011-11-06 02:22 . 2010-08-21 05:36 224256 ----a-w- c:\windows\SysWow64\schannel.dll
2011-11-06 02:21 . 2010-06-19 06:53 52224 ----a-w- c:\windows\system32\rtutils.dll
2011-11-06 02:21 . 2010-06-19 06:23 37376 ----a-w- c:\windows\SysWow64\rtutils.dll
2011-11-06 02:19 . 2011-03-03 06:17 182272 ----a-w- c:\windows\system32\dnsrslvr.dll
2011-11-06 02:19 . 2011-03-03 06:14 30208 ----a-w- c:\windows\system32\dnscacheugc.exe
2011-11-06 02:19 . 2011-03-03 05:27 28672 ----a-w- c:\windows\SysWow64\dnscacheugc.exe
2011-11-06 02:17 . 2010-10-12 05:05 35328 ----a-w- c:\program files\Windows Mail\wabfind.dll
2011-11-06 02:16 . 2011-05-24 11:21 404992 ----a-w- c:\windows\system32\umpnpmgr.dll
2011-11-06 02:10 . 2011-06-23 05:29 5507968 ----a-w- c:\windows\system32\ntoskrnl.exe
2011-11-06 02:09 . 2011-06-23 04:38 3957120 ----a-w- c:\windows\SysWow64\ntkrnlpa.exe
2011-11-06 02:09 . 2011-06-23 04:38 3902336 ----a-w- c:\windows\SysWow64\ntoskrnl.exe
2011-11-06 00:21 . 2011-10-19 15:56 97312 ----a-w- c:\windows\system32\drivers\avgntflt.sys
2011-11-06 00:21 . 2011-10-19 15:56 27760 ----a-w- c:\windows\system32\drivers\avkmgr.sys
2011-11-06 00:21 . 2011-10-19 15:56 130760 ----a-w- c:\windows\system32\drivers\avipbb.sys
2011-11-06 00:21 . 2011-11-06 00:21 -------- d-----w- c:\programdata\Avira
2011-11-06 00:21 . 2011-11-06 00:21 -------- d-----w- c:\program files (x86)\Avira
2011-11-05 23:10 . 2011-11-05 23:10 -------- d-----w- c:\programdata\ATI
2011-11-05 23:10 . 2011-11-05 23:10 -------- d-----w- c:\program files (x86)\AMD APP
2011-11-05 23:10 . 2011-11-05 23:10 -------- d-----w- c:\program files\Common Files\ATI Technologies
2011-11-05 23:10 . 2011-11-05 23:10 -------- d-----w- c:\program files (x86)\Common Files\ATI Technologies
2011-11-05 23:09 . 2011-11-05 23:09 -------- d-----w- c:\program files (x86)\ATI Technologies
2011-11-05 23:09 . 2011-11-07 15:31 -------- d-sh--w- c:\windows\Installer
2011-11-05 23:09 . 2011-11-05 23:10 -------- d-----w- c:\program files\ATI Technologies
2011-11-05 23:09 . 2011-11-05 23:09 -------- d-----w- c:\program files\ATI
2011-11-05 22:59 . 2011-10-18 01:27 8570192 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{58252180-0C5F-4E1C-8EBF-31B8CB459836}\mpengine.dll
2011-11-05 22:59 . 2011-05-24 18:14 270720 ------w- c:\windows\system32\MpSigStub.exe
2011-11-05 22:44 . 2009-12-29 08:03 220672 ----a-w- c:\windows\system32\wintrust.dll
2011-11-05 22:44 . 2009-12-29 06:55 172032 ----a-w- c:\windows\SysWow64\wintrust.dll
2011-11-05 22:44 . 2010-01-09 07:19 139264 ----a-w- c:\windows\system32\cabview.dll
2011-11-05 22:44 . 2010-01-09 06:52 132608 ----a-w- c:\windows\SysWow64\cabview.dll
2011-11-05 18:59 . 2011-11-05 18:59 0 ----a-w- c:\windows\ativpsrm.bin
2011-11-05 18:55 . 2011-11-05 22:41 -------- d-----w- c:\windows\Panther
2011-11-05 18:41 . 2011-11-05 18:41 -------- d-----w- C:\Windows.old
2011-10-25 18:39 . 2011-10-25 18:39 -------- d-----w- C:\AMD
2011-10-24 21:22 . 2011-10-24 21:22 -------- d-----w- C:\ATI
2011-10-24 20:24 . 2011-10-24 20:24 -------- d-----w- C:\Daten
2011-10-12 20:56 . 2011-10-12 20:56 10207232 ----a-w- c:\windows\system32\drivers\atikmdag.sys
2011-10-12 20:20 . 2011-10-12 20:20 24629760 ----a-w- c:\windows\system32\atio6axx.dll
2011-10-12 20:14 . 2011-10-12 20:14 159744 ----a-w- c:\windows\system32\atiapfxx.exe
2011-10-12 20:14 . 2011-10-12 20:14 736768 ----a-w- c:\windows\SysWow64\aticfx32.dll
2011-10-12 20:13 . 2011-10-12 20:13 867328 ----a-w- c:\windows\system32\aticfx64.dll
2011-10-12 20:10 . 2011-10-12 20:10 466944 ----a-w- c:\windows\system32\ATIDEMGX.dll
2011-10-12 20:10 . 2011-10-12 20:10 487936 ----a-w- c:\windows\system32\atieclxx.exe
2011-10-12 20:09 . 2011-10-12 20:09 204288 ----a-w- c:\windows\system32\atiesrxx.exe
2011-10-12 20:08 . 2011-10-12 20:08 120320 ----a-w- c:\windows\system32\atitmm64.dll
2011-10-12 20:08 . 2011-10-12 20:08 423424 ----a-w- c:\windows\system32\atipdl64.dll
2011-10-12 20:08 . 2011-10-12 20:08 356352 ----a-w- c:\windows\SysWow64\atipdlxx.dll
2011-10-12 20:07 . 2011-10-12 20:07 278528 ----a-w- c:\windows\SysWow64\Oemdspif.dll
2011-10-12 20:07 . 2011-10-12 20:07 21504 ----a-w- c:\windows\system32\atimuixx.dll
2011-10-12 20:07 . 2011-10-12 20:07 59392 ----a-w- c:\windows\system32\atiedu64.dll
2011-10-12 20:07 . 2011-10-12 20:07 43520 ----a-w- c:\windows\SysWow64\ati2edxx.dll
2011-10-12 20:04 . 2011-10-12 20:04 4231680 ----a-w- c:\windows\SysWow64\atidxx32.dll
2011-10-12 20:04 . 2011-10-12 20:04 18630656 ----a-w- c:\windows\SysWow64\atioglxx.dll
2011-10-12 19:46 . 2011-10-12 19:46 51200 ----a-w- c:\windows\system32\aticalrt64.dll
2011-10-12 19:46 . 2011-10-12 19:46 46080 ----a-w- c:\windows\SysWow64\aticalrt.dll
2011-10-12 19:46 . 2011-10-12 19:46 44544 ----a-w- c:\windows\system32\aticalcl64.dll
2011-10-12 19:46 . 2011-10-12 19:46 44032 ----a-w- c:\windows\SysWow64\aticalcl.dll
2011-10-12 19:45 . 2011-10-12 19:45 9877504 ----a-w- c:\windows\system32\aticaldd64.dll
2011-10-12 19:44 . 2011-10-12 19:44 1113088 ----a-w- c:\windows\system32\atiumd6v.dll
2011-10-12 19:44 . 2011-10-12 19:44 4289024 ----a-w- c:\windows\SysWow64\atiumdag.dll
2011-10-12 19:44 . 2011-10-12 19:44 1828864 ----a-w- c:\windows\SysWow64\atiumdmv.dll
2011-10-12 19:44 . 2011-10-12 19:44 4023296 ----a-w- c:\windows\system32\atiumd6a.dll
2011-10-12 19:42 . 2011-10-12 19:42 8391680 ----a-w- c:\windows\SysWow64\aticaldd.dll
2011-10-12 19:39 . 2011-10-12 19:39 58880 ----a-w- c:\windows\system32\coinst.dll
2011-10-12 19:38 . 2011-10-12 19:38 5431808 ----a-w- c:\windows\system32\atiumd64.dll
2011-10-12 19:33 . 2011-10-12 19:33 4174848 ----a-w- c:\windows\SysWow64\atiumdva.dll
2011-10-12 19:31 . 2011-10-12 19:31 479744 ----a-w- c:\windows\system32\atiadlxx.dll
2011-10-12 19:31 . 2011-10-12 19:31 335872 ----a-w- c:\windows\SysWow64\atiadlxy.dll
2011-10-12 19:31 . 2011-10-12 19:31 17408 ----a-w- c:\windows\system32\atig6pxx.dll
2011-10-12 19:31 . 2011-10-12 19:31 14336 ----a-w- c:\windows\SysWow64\atiglpxx.dll
2011-10-12 19:31 . 2011-10-12 19:31 14336 ----a-w- c:\windows\system32\atiglpxx.dll
2011-10-12 19:30 . 2011-10-12 19:30 39936 ----a-w- c:\windows\system32\atig6txx.dll
2011-10-12 19:30 . 2011-10-12 19:30 32768 ----a-w- c:\windows\SysWow64\atigktxx.dll
2011-10-12 19:30 . 2011-10-12 19:30 317952 ----a-w- c:\windows\system32\drivers\atikmpag.sys
2011-10-12 19:29 . 2011-10-12 19:29 40960 ----a-w- c:\windows\system32\atiuxp64.dll
2011-10-12 19:29 . 2011-10-12 19:29 31744 ----a-w- c:\windows\SysWow64\atiuxpag.dll
2011-10-12 19:29 . 2011-10-12 19:29 38912 ----a-w- c:\windows\system32\atiu9p64.dll
2011-10-12 19:29 . 2011-10-12 19:29 29184 ----a-w- c:\windows\SysWow64\atiu9pag.dll
2011-10-12 19:28 . 2011-10-12 19:28 53248 ----a-w- c:\windows\system32\drivers\ati2erec.dll
.
.
(((((((((((((((((((((((((((((((((((( Find3M Bericht ))))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-10-12 19:54 . 2009-07-13 21:59 4960768 ----a-w- c:\windows\system32\atidxx64.dll
.
.
(((((((((((((((((((((((((((( Autostartpunkte der Registrierung ))))))))))))))))))))))))))))))))))))))))
.
.
*Hinweis* leere Einträge & legitime Standardeinträge werden nicht angezeigt.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"="c:\program files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2011-10-12 343168]
"avgnt"="c:\program files (x86)\Avira\AntiVir Desktop\avgnt.exe" [2011-10-19 258512]
"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2010-05-14 248552]
"QuickTime Task"="c:\program files (x86)\QuickTime\QTTask.exe" [2010-11-29 421888]
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2011-06-06 937920]
.
c:\users\Isolde\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
CodeMeter Control Center.lnk - c:\program files (x86)\CodeMeter\Runtime\bin\CodeMeterCC.exe [2011-1-19 6871952]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
R3 netw5v64;Intel(R) Wireless WiFi Link 5000 Series - Adaptertreiber für Windows Vista 64 Bit;c:\windows\system32\DRIVERS\netw5v64.sys [x]
S1 avkmgr;avkmgr;c:\windows\system32\DRIVERS\avkmgr.sys [x]
S1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\DRIVERS\vwififlt.sys [x]
S2 AdobeARMservice;Adobe Acrobat Update Service;c:\program files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2011-06-06 64952]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [x]
S2 AntiVirSchedulerService;Avira Planer;c:\program files (x86)\Avira\AntiVir Desktop\sched.exe [2011-10-19 86224]
S2 CodeMeter.exe;CodeMeter Runtime Server;c:\program files (x86)\CodeMeter\Runtime\bin\CodeMeter.exe [2011-01-19 2078096]
S2 hpsrv;HP Service;c:\windows\system32\Hpservice.exe [x]
S3 amdkmdag;amdkmdag;c:\windows\system32\DRIVERS\atikmdag.sys [x]
S3 amdkmdap;amdkmdap;c:\windows\system32\DRIVERS\atikmpag.sys [x]
S3 NETw5s64;Intel(R) Wireless WiFi Link Adaptertreiber für Windows 7 64-Bit;c:\windows\system32\DRIVERS\NETw5s64.sys [x]
S3 yukonw7;NDIS6.2-Miniporttreiber für Marvell Yukon-Ethernet-Controller;c:\windows\system32\DRIVERS\yk62x64.sys [x]
.
.
.
--------- x86-64 -----------
.
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"LoadAppInit_DLLs"=0x0
.
------- Zusätzlicher Suchlauf -------
.
uLocal Page = c:\windows\system32\blank.htm
mLocal Page = c:\windows\SysWOW64\blank.htm
TCP: DhcpNameServer = 192.168.2.1
FF - ProfilePath - c:\users\Isolde\AppData\Roaming\Mozilla\Firefox\Profiles\ak2790tg.default\
.
.
--------------------- Gesperrte Registrierungsschluessel ---------------------
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
"MSCurrentCountry"=dword:000000b5
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
------------------------ Weitere laufende Prozesse ------------------------
.
c:\program files (x86)\Avira\AntiVir Desktop\avguard.exe
.
**************************************************************************
.
Zeit der Fertigstellung: 2011-11-07 23:05:35 - PC wurde neu gestartet
ComboFix-quarantined-files.txt 2011-11-07 22:05
.
Vor Suchlauf: 13 Verzeichnis(se), 60.213.329.920 Bytes frei
Nach Suchlauf: 17 Verzeichnis(se), 60.102.643.712 Bytes frei
.
- - End Of File - - 4165338FBD40090BB0721BBC2832023A
--- --- --- |
