Hallo,
mein Rechner ist seit einigen Wochen fast unerträglich langsam geworden. Die CPU-Auslastung des Taskmanagers bleibt dabei aber immer weit unter 100%. Immer wieder bleibt er auch für einige Sekunden komplett hängen, macht danach aber normal weiter.
Ein Scan mit Avira hat diese Funde zu Tage befördert:
Die beiden Dateien hat es in die Quaratäne verschoben.Code:C:\Dokumente und Einstellungen\user\Lokale Einstellungen\Anwendungsdaten\Mozilla\Firefox\Profiles\edl2xlnr.default\Cache\_CACHE_001_ [FUND] Enthält Erkennungsmuster des HTML-Scriptvirus HTML/Infected.WebPage.Gen C:\Programme\Adobe\Premiere 6.5\Plug-ins\fl-boost.prm [FUND] Ist das Trojanische Pferd TR/Buzus.dfws
Meine Windows Firewall ist aktiviert. Ich benutze eine Fritzbox 7141, ob die eine Firewall drin hat bin ich mir gerade nicht sicher.
Ich mache jetzt die Scans mit rsit und gmer.
viele Grüße,
Frank
RSIT Logfiles:
log.txt
info.txt:Code:Logfile of random's system information tool 1.07 (written by random/random) Run by user at 2010-07-06 14:11:35 Microsoft Windows XP Home Edition Service Pack 3 System drive C: has 2 GB (6%) free of 33 GB Total RAM: 1023 MB (66% free) Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 14:11:41, on 06.07.2010 Platform: Windows XP SP3 (WinNT 5.01.2600) MSIE: Internet Explorer v8.00 (8.00.6001.18702) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\ibmpmsvc.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\Programme\Avira\AntiVir Desktop\sched.exe C:\WINDOWS\System32\svchost.exe C:\Programme\Avira\AntiVir Desktop\avguard.exe C:\Programme\Gemeinsame Dateien\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe C:\Programme\Bonjour\mDNSResponder.exe C:\WINDOWS\system32\DRIVERS\CDANTSRV.EXE C:\Programme\Avira\AntiVir Desktop\avshadow.exe C:\Programme\Java\jre6\bin\jqs.exe C:\Programme\Macrium\Reflect\ReflectService.exe C:\Programme\Analog Devices\SoundMAX\SMAgent.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\Explorer.EXE C:\Programme\Analog Devices\SoundMAX\SMax4PNP.exe C:\WINDOWS\system32\rundll32.exe C:\Programme\iTunes\iTunesHelper.exe C:\Programme\Synaptics\SynTP\SynTPLpr.exe C:\Programme\Synaptics\SynTP\SynTPEnh.exe C:\Programme\Avira\AntiVir Desktop\avgnt.exe C:\WINDOWS\system32\wbem\wmiapsrv.exe C:\Programme\Gemeinsame Dateien\Java\Java Update\jusched.exe C:\WINDOWS\system32\ctfmon.exe C:\Programme\HDD Health\HDDHealth.exe C:\Programme\Adobe\Acrobat 5.0\Distillr\AcroTray.exe C:\Programme\Digital Line Detect\DLG.exe C:\Programme\iPod\bin\iPodService.exe C:\Dokumente und Einstellungen\user\Desktop\RSIT.exe C:\Programme\trend micro\user.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://fritz.box/ R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Programme\Adobe\Acrobat 5.0\Acrobat\ActiveX\AcroIEHelper.ocx O2 - BHO: Ipswitch.WsftpBrowserHelper - {601ED020-FB6C-11D3-87D8-0050DA59922B} - C:\Programme\WS_FTP Pro\wsbho2k0.dll O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Programme\Google\GoogleToolbarNotifier\5.1.1309.3572\swg.dll O2 - BHO: FDMIECookiesBHO Class - {CC59E0F9-7E43-44FA-9FAA-8377850BF205} - C:\Programme\Free Download Manager\iefdm2.dll O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Programme\Java\jre6\bin\jp2ssv.dll O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Programme\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll O4 - HKLM\..\Run: [SoundMAXPnP] C:\Programme\Analog Devices\SoundMAX\SMax4PNP.exe O4 - HKLM\..\Run: [SoundMAX] "C:\Programme\Analog Devices\SoundMAX\Smax4.exe" /tray O4 - HKLM\..\Run: [ATIPTA] C:\Programme\ATI Technologies\ATI Control Panel\atiptaxx.exe O4 - HKLM\..\Run: [BluetoothAuthenticationAgent] rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent O4 - HKLM\..\Run: [iTunesHelper] "C:\Programme\iTunes\iTunesHelper.exe" O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe O4 - HKLM\..\Run: [SynTPLpr] C:\Programme\Synaptics\SynTP\SynTPLpr.exe O4 - HKLM\..\Run: [SynTPEnh] C:\Programme\Synaptics\SynTP\SynTPEnh.exe O4 - HKLM\..\Run: [avgnt] "C:\Programme\Avira\AntiVir Desktop\avgnt.exe" /min O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Programme\Gemeinsame Dateien\Java\Java Update\jusched.exe" O4 - HKLM\..\Run: [QuickTime Task] "C:\Programme\QuickTime\QTTask.exe" -atboottime O4 - HKLM\..\Run: [AdobeCS4ServiceManager] "C:\Programme\Gemeinsame Dateien\Adobe\CS4ServiceManager\CS4ServiceManager.exe" -launchedbylogin O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [HDDHealth] C:\Programme\HDD Health\HDDHealth.exe -wl O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOKALER DIENST') O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETZWERKDIENST') O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user') O4 - Global Startup: Acrobat Assistant.lnk = C:\Programme\Adobe\Acrobat 5.0\Distillr\AcroTray.exe O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Programme\Gemeinsame Dateien\Adobe\Calibration\Adobe Gamma Loader.exe O4 - Global Startup: Digital Line Detect.lnk = C:\Programme\Digital Line Detect\DLG.exe O4 - Global Startup: Microsoft Office.lnk = C:\Programme\Microsoft Office\Office10\OSA.EXE O8 - Extra context menu item: Download all with Free Download Manager - file://C:\Programme\Free Download Manager\dlall.htm O8 - Extra context menu item: Download selected with Free Download Manager - file://C:\Programme\Free Download Manager\dlselected.htm O8 - Extra context menu item: Download video with Free Download Manager - file://C:\Programme\Free Download Manager\dlfvideo.htm O8 - Extra context menu item: Download with Free Download Manager - file://C:\Programme\Free Download Manager\dllink.htm O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000 O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programme\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programme\Messenger\msmsgs.exe O12 - Plugin for .spop: C:\Programme\Internet Explorer\Plugins\NPDocBox.dll O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://www.update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1229940877394 O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/flashplayer/current/swflash.cab O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\GEMEIN~1\Skype\SKYPE4~1.DLL O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll O23 - Service: Avira AntiVir Planer (AntiVirSchedulerService) - Avira GmbH - C:\Programme\Avira\AntiVir Desktop\sched.exe O23 - Service: Avira AntiVir Guard (AntiVirService) - Avira GmbH - C:\Programme\Avira\AntiVir Desktop\avguard.exe O23 - Service: Apple Mobile Device - Apple Inc. - C:\Programme\Gemeinsame Dateien\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe O23 - Service: Bonjour-Dienst (Bonjour Service) - Apple Inc. - C:\Programme\Bonjour\mDNSResponder.exe O23 - Service: C-DillaSrv - C-Dilla Ltd - C:\WINDOWS\system32\DRIVERS\CDANTSRV.EXE O23 - Service: FLEXnet Licensing Service - Acresso Software Inc. - C:\Programme\Gemeinsame Dateien\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe O23 - Service: Google Update Service (gupdate1c9e2fa79fa510) (gupdate1c9e2fa79fa510) - Google Inc. - C:\Programme\Google\Update\GoogleUpdate.exe O23 - Service: Google Software Updater (gusvc) - Google - C:\Programme\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: ThinkPad PM Service (IBMPMSVC) - Lenovo - C:\WINDOWS\system32\ibmpmsvc.exe O23 - Service: iPod-Dienst (iPod Service) - Apple Inc. - C:\Programme\iPod\bin\iPodService.exe O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Programme\Java\jre6\bin\jqs.exe O23 - Service: MySql - Unknown owner - C:/xampp/mysql/bin/mysqld-shareware.exe (file missing) O23 - Service: Macrium Reflect Image Mounting Service (ReflectService) - Unknown owner - C:\Programme\Macrium\Reflect\ReflectService.exe O23 - Service: SoundMAX Agent Service (SoundMAX Agent Service (default)) - Analog Devices, Inc. - C:\Programme\Analog Devices\SoundMAX\SMAgent.exe -- End of file - 8937 bytes ======Scheduled tasks folder====== C:\WINDOWS\tasks\Google Software Updater.job C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job ======Registry dump====== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}] AcroIEHlprObj Class - C:\Programme\Adobe\Acrobat 5.0\Acrobat\ActiveX\AcroIEHelper.ocx [2001-03-02 37808] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{601ED020-FB6C-11D3-87D8-0050DA59922B}] WsftpBrowserHelper Class - C:\Programme\WS_FTP Pro\wsbho2k0.dll [2001-06-07 131072] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}] Google Toolbar Notifier BHO - C:\Programme\Google\GoogleToolbarNotifier\5.1.1309.3572\swg.dll [2009-06-01 668656] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{CC59E0F9-7E43-44FA-9FAA-8377850BF205}] FDMIECookiesBHO Class - C:\Programme\Free Download Manager\iefdm2.dll [2008-12-30 98304] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}] Java(tm) Plug-In 2 SSV Helper - C:\Programme\Java\jre6\bin\jp2ssv.dll [2010-04-12 41760] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}] JQSIEStartDetectorImpl Class - C:\Programme\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2010-04-12 79648] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run] "SoundMAXPnP"=C:\Programme\Analog Devices\SoundMAX\SMax4PNP.exe [2004-10-14 1388544] "SoundMAX"=C:\Programme\Analog Devices\SoundMAX\Smax4.exe [2004-09-23 860160] "ATIPTA"=C:\Programme\ATI Technologies\ATI Control Panel\atiptaxx.exe [2007-02-06 344064] "BluetoothAuthenticationAgent"=bthprops.cpl,,BluetoothAuthenticationAgent [] "iTunesHelper"=C:\Programme\iTunes\iTunesHelper.exe [2008-11-20 290088] "NWEReboot"= [] "NeroFilterCheck"=C:\WINDOWS\system32\NeroCheck.exe [2001-07-09 155648] "SynTPLpr"=C:\Programme\Synaptics\SynTP\SynTPLpr.exe [2003-06-24 126976] "SynTPEnh"=C:\Programme\Synaptics\SynTP\SynTPEnh.exe [2003-06-24 561152] "avgnt"=C:\Programme\Avira\AntiVir Desktop\avgnt.exe [2010-03-02 282792] "SunJavaUpdateSched"=C:\Programme\Gemeinsame Dateien\Java\Java Update\jusched.exe [2010-02-18 248040] "QuickTime Task"=C:\Programme\QuickTime\QTTask.exe [2009-11-11 417792] "AdobeCS4ServiceManager"=C:\Programme\Gemeinsame Dateien\Adobe\CS4ServiceManager\CS4ServiceManager.exe [2008-08-14 611712] [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360] "HDDHealth"=C:\Programme\HDD Health\HDDHealth.exe [2008-06-15 1692672] "AdobeBridge"= [] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\swg] C:\Programme\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [2009-06-01 39408] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services] "aspnet_state"=3 C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Autostart Acrobat Assistant.lnk - C:\Programme\Adobe\Acrobat 5.0\Distillr\AcroTray.exe Adobe Gamma Loader.lnk - C:\Programme\Gemeinsame Dateien\Adobe\Calibration\Adobe Gamma Loader.exe Digital Line Detect.lnk - C:\Programme\Digital Line Detect\DLG.exe Microsoft Office.lnk - C:\Programme\Microsoft Office\Office10\OSA.EXE [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\AtiExtEvent] C:\WINDOWS\system32\Ati2evxx.dll [2007-02-07 46080] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System] "dontdisplaylastusername"=0 "legalnoticecaption"= "legalnoticetext"= "shutdownwithoutlogon"=1 "undockwithoutlogon"=1 [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer] "NoDriveTypeAutoRun"=145 "NoInstrumentation"=1 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer] "HonorAutoRunSetting"= "NoInstrumentation"= [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list] "%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019" "C:\Programme\MediaplayerClassic\mplayerc6491.exe"="C:\Programme\MediaplayerClassic\mplayerc6491.exe:*:Enabled:Media Player Classic" "C:\Programme\Bonjour\mDNSResponder.exe"="C:\Programme\Bonjour\mDNSResponder.exe:*:Enabled:Bonjour" "C:\Programme\iTunes\iTunes.exe"="C:\Programme\iTunes\iTunes.exe:*:Enabled:iTunes" "%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000" "C:\Programme\Mozilla Firefox\firefox.exe"="C:\Programme\Mozilla Firefox\firefox.exe:*:Enabled:Firefox" "C:\xampp\apache\bin\apache.exe"="C:\xampp\apache\bin\apache.exe:*:Enabled:Apache HTTP Server" "C:\xampp\mysql\bin\mysqld.exe"="C:\xampp\mysql\bin\mysqld.exe:*:Enabled:mysqld" "C:\Programme\Skype\Plugin Manager\skypePM.exe"="C:\Programme\Skype\Plugin Manager\skypePM.exe:*:Enabled:Skype Extras Manager" "C:\Programme\Gemeinsame Dateien\Adobe\CS4ServiceManager\CS4ServiceManager.exe"="C:\Programme\Gemeinsame Dateien\Adobe\CS4ServiceManager\CS4ServiceManager.exe:*:Enabled:Adobe CSI CS4" "C:\xampp\apache\bin\httpd.exe"="C:\xampp\apache\bin\httpd.exe:*:Enabled:Apache HTTP Server" "C:\xampp\MercuryMail\mercury.exe"="C:\xampp\MercuryMail\mercury.exe:*:Enabled:Mercury/32 Core Processing Module v4.72" "C:\Programme\Skype\Phone\Skype.exe"="C:\Programme\Skype\Phone\Skype.exe:*:Enabled:Skype" [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list] "%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019" "%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000" ======List of files/folders created in the last 3 months====== 2010-07-06 14:11:35 ----D---- C:\rsit 2010-07-01 13:22:30 ----A---- C:\WINDOWS\IsUn0407.exe 2010-06-23 18:19:02 ----D---- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\McAfee 2010-06-21 17:27:54 ----D---- C:\WINDOWS\system32\NtmsData 2010-06-20 21:19:17 ----D---- C:\Programme\DDR - NTFS Recovery 2010-06-20 20:56:20 ----D---- C:\Programme\Smart PC Solutions 2010-06-20 01:01:00 ----D---- C:\Programme\DDR - NTFS Recovery(Demo) 2010-06-20 01:01:00 ----A---- C:\WINDOWS\UnDeploy.exe 2010-06-11 12:50:40 ----HDC---- C:\WINDOWS\$NtUninstallKB980218$ 2010-06-11 12:50:35 ----HDC---- C:\WINDOWS\$NtUninstallKB980195$ 2010-06-11 12:50:29 ----HDC---- C:\WINDOWS\$NtUninstallKB979559$ 2010-06-11 12:47:14 ----HDC---- C:\WINDOWS\$NtUninstallKB978695_WM9$ 2010-06-11 12:47:10 ----HDC---- C:\WINDOWS\$NtUninstallKB979482$ 2010-06-11 12:47:01 ----HDC---- C:\WINDOWS\$NtUninstallKB975562$ 2010-06-06 16:49:21 ----D---- C:\Programme\Western Digital Corporation 2010-05-28 14:14:44 ----D---- C:\Programme\sculptris 2010-05-26 10:11:40 ----HDC---- C:\WINDOWS\$NtUninstallKB981793$ 2010-05-20 19:31:10 ----D---- C:\Programme\MultiFuncTimer 2010-05-18 18:52:53 ----D---- C:\Dokumente und Einstellungen\user\Anwendungsdaten\DBDesigner4 2010-05-18 18:52:27 ----D---- C:\Programme\DBDesigner 2010-05-18 18:03:44 ----D---- C:\Programme\Gemeinsame Dateien\fabFORCE 2010-05-12 08:32:24 ----HDC---- C:\WINDOWS\$NtUninstallKB978542$ 2010-05-11 21:43:18 ----D---- C:\Programme\mysqlcc-0.9.8-win32 2010-04-23 10:31:05 ----D---- C:\WINDOWS\pss 2010-04-22 13:41:32 ----D---- C:\Dokumente und Einstellungen\user\Anwendungsdaten\Avira 2010-04-21 21:41:05 ----A---- C:\WINDOWS\system32\javaws.exe 2010-04-21 21:41:05 ----A---- C:\WINDOWS\system32\javaw.exe 2010-04-21 21:41:05 ----A---- C:\WINDOWS\system32\java.exe 2010-04-21 21:41:05 ----A---- C:\WINDOWS\system32\deployJava1.dll 2010-04-21 14:16:30 ----A---- C:\WINDOWS\my.ini 2010-04-20 20:06:09 ----D---- C:\Dokumente und Einstellungen\user\Anwendungsdaten\Foxit Software 2010-04-19 16:49:21 ----D---- C:\Programme\Foxit Software 2010-04-14 19:37:03 ----D---- C:\Dokumente und Einstellungen\user\Anwendungsdaten\FireShot 2010-04-14 10:10:35 ----HDC---- C:\WINDOWS\$NtUninstallKB979683$ 2010-04-14 10:10:27 ----HDC---- C:\WINDOWS\$NtUninstallKB980232$ 2010-04-14 10:10:20 ----HDC---- C:\WINDOWS\$NtUninstallKB979402_WM9$ 2010-04-14 10:08:20 ----HDC---- C:\WINDOWS\$NtUninstallKB978338$ 2010-04-14 10:08:14 ----HDC---- C:\WINDOWS\$NtUninstallKB977816$ 2010-04-14 10:08:10 ----HDC---- C:\WINDOWS\$NtUninstallKB978601$ 2010-04-14 10:07:56 ----HDC---- C:\WINDOWS\$NtUninstallKB979309$ 2010-04-13 19:40:55 ----D---- C:\Programme\Konstanzprüfung 2010-04-11 21:51:13 ----D---- C:\linuxhilfe 2010-04-07 22:18:58 ----D---- C:\Programme\Macrium ======List of files/folders modified in the last 3 months====== 2010-07-06 14:11:41 ----D---- C:\Programme\Trend Micro 2010-07-06 14:11:11 ----D---- C:\WINDOWS\Prefetch 2010-07-06 13:54:47 ----D---- C:\Programme\Mozilla Thunderbird 2010-07-06 13:28:21 ----D---- C:\Dokumente und Einstellungen\user\Anwendungsdaten\Free Download Manager 2010-07-06 13:17:37 ----D---- C:\Programme\Gemeinsame Dateien\Akamai 2010-07-06 10:39:10 ----SD---- C:\WINDOWS\Tasks 2010-07-06 08:53:19 ----D---- C:\WINDOWS\Temp 2010-07-06 08:53:04 ----D---- C:\WINDOWS\system32\CatRoot2 2010-07-06 00:07:39 ----A---- C:\WINDOWS\SchedLgU.Txt 2010-07-05 21:08:57 ----SHD---- C:\WINDOWS\Installer 2010-07-05 12:31:44 ----A---- C:\WINDOWS\winamp.ini 2010-07-04 21:54:21 ----A---- C:\WINDOWS\NeroDigital.ini 2010-07-01 13:22:55 ----D---- C:\WINDOWS 2010-07-01 02:04:05 ----A---- C:\WINDOWS\autogk.ini 2010-06-29 10:38:51 ----D---- C:\Programme\Mozilla Firefox 2010-06-25 10:29:27 ----D---- C:\Programme\3dsmax4 2010-06-24 13:08:42 ----D---- C:\Dokumente und Einstellungen\user\Anwendungsdaten\Skype 2010-06-24 10:28:25 ----D---- C:\Dokumente und Einstellungen\user\Anwendungsdaten\skypePM 2010-06-23 19:51:23 ----RD---- C:\Programme 2010-06-22 17:44:11 ----D---- C:\WINDOWS\Debug 2010-06-22 17:13:12 ----HD---- C:\Programme\InstallShield Installation Information 2010-06-22 17:13:12 ----D---- C:\WINDOWS\system32 2010-06-21 17:27:50 ----D---- C:\WINDOWS\Registration 2010-06-11 13:15:39 ----HD---- C:\WINDOWS\inf 2010-06-11 12:50:42 ----RSHDC---- C:\WINDOWS\system32\dllcache 2010-06-11 12:50:35 ----HD---- C:\WINDOWS\$hf_mig$ 2010-06-11 12:50:21 ----D---- C:\Programme\Internet Explorer 2010-06-11 12:50:13 ----D---- C:\WINDOWS\ie8updates 2010-06-06 17:58:43 ----D---- C:\WINDOWS\Help 2010-05-28 21:37:34 ----A---- C:\WINDOWS\system32\MRT.exe 2010-05-20 19:28:48 ----RSD---- C:\WINDOWS\Fonts 2010-05-19 12:00:19 ----D---- C:\Programme\Winamp 2010-05-18 18:03:44 ----D---- C:\Programme\Gemeinsame Dateien 2010-05-13 22:17:49 ----D---- C:\Programme\Cut_Assistant_0.9.9.8_en 2010-05-13 16:30:17 ----D---- C:\Programme\Google 2010-05-12 08:32:27 ----D---- C:\Programme\Outlook Express 2010-05-11 21:49:12 ----AD---- C:\xampp 2010-05-07 17:08:10 ----D---- C:\WINDOWS\system32\drivers 2010-05-07 17:06:53 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI 2010-05-06 12:31:23 ----A---- C:\WINDOWS\system32\wininet.dll 2010-05-06 12:31:23 ----A---- C:\WINDOWS\system32\urlmon.dll 2010-05-06 12:31:22 ----N---- C:\WINDOWS\system32\occache.dll 2010-05-06 12:31:21 ----A---- C:\WINDOWS\system32\mstime.dll 2010-05-06 12:31:21 ----A---- C:\WINDOWS\system32\mshtml.dll 2010-05-06 12:31:18 ----N---- C:\WINDOWS\system32\jsproxy.dll 2010-05-06 12:31:18 ----A---- C:\WINDOWS\system32\msfeedsbs.dll 2010-05-06 12:31:18 ----A---- C:\WINDOWS\system32\msfeeds.dll 2010-05-06 12:31:18 ----A---- C:\WINDOWS\system32\iertutil.dll 2010-05-06 12:31:16 ----N---- C:\WINDOWS\system32\iepeers.dll 2010-05-06 12:31:16 ----A---- C:\WINDOWS\system32\ieframe.dll 2010-05-06 12:31:11 ----N---- C:\WINDOWS\system32\iedkcs32.dll 2010-05-05 15:30:57 ----N---- C:\WINDOWS\system32\ie4uinit.exe 2010-04-23 10:33:27 ----SH---- C:\boot.ini 2010-04-23 10:33:27 ----A---- C:\WINDOWS\win.ini 2010-04-23 10:33:27 ----A---- C:\WINDOWS\system.ini 2010-04-22 13:56:30 ----D---- C:\Python26 2010-04-22 13:43:36 ----D---- C:\Programme\Notepad++ 2010-04-22 13:43:26 ----D---- C:\Dokumente und Einstellungen\user\Anwendungsdaten\Notepad++ 2010-04-21 21:46:10 ----D---- C:\WINDOWS\WinSxS 2010-04-21 21:46:08 ----D---- C:\Programme\Gemeinsame Dateien\Microsoft Shared 2010-04-21 21:41:00 ----D---- C:\Programme\Java 2010-04-21 15:28:50 ----N---- C:\WINDOWS\system32\tzchange.exe 2010-04-20 07:29:56 ----A---- C:\WINDOWS\system32\atmfd.dll 2010-04-13 19:58:52 ----D---- C:\Dokumente und Einstellungen\user\Anwendungsdaten\TrueCrypt 2010-04-08 14:03:50 ----A---- C:\WINDOWS\system32\WMVCore.dll ======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R1 avgio;avgio; \??\C:\Programme\Avira\AntiVir Desktop\avgio.sys [] R1 avipbb;avipbb; C:\WINDOWS\system32\DRIVERS\avipbb.sys [2010-03-01 124784] R1 intelppm;Intel-Prozessortreiber; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-14 40448] R1 PQNTDrv;PQNTDrv; C:\WINDOWS\system32\drivers\PQNTDrv.sys [2002-09-16 4228] R1 ssmdrv;ssmdrv; C:\WINDOWS\system32\DRIVERS\ssmdrv.sys [2009-05-11 28520] R1 truecrypt;truecrypt; C:\WINDOWS\System32\drivers\truecrypt.sys [2008-12-22 215872] R2 adfs;adfs; C:\WINDOWS\system32\drivers\adfs.sys [2008-08-14 74720] R2 avgntflt;avgntflt; C:\WINDOWS\system32\DRIVERS\avgntflt.sys [2010-02-16 60936] R2 irda;IrDA-Protokoll; C:\WINDOWS\system32\DRIVERS\irda.sys [2008-04-13 88192] R2 mdmxsdk;mdmxsdk; C:\WINDOWS\system32\DRIVERS\mdmxsdk.sys [2006-06-19 12672] R3 aeaudio;aeaudio; C:\WINDOWS\system32\drivers\aeaudio.sys [2005-03-04 127872] R3 AR5211;Atheros Wireless Network Adapter Service; C:\WINDOWS\system32\DRIVERS\ar5211.sys [2007-05-02 472224] R3 ati2mtag;ati2mtag; C:\WINDOWS\system32\DRIVERS\ati2mtag.sys [2007-02-07 1133568] R3 CmBatt;Microsoft-Netzteiltreiber; C:\WINDOWS\system32\DRIVERS\CmBatt.sys [2008-04-13 13952] R3 E1000;Intel(R) PRO/1000 Network Connection Driver; C:\WINDOWS\system32\DRIVERS\e1000325.sys [2006-10-24 170392] R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys [2008-04-17 15464] R3 HidUsb;Microsoft HID Class-Treiber; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368] R3 HSF_DPV;HSF_DPV; C:\WINDOWS\system32\DRIVERS\HSF_DPV.sys [2006-08-29 990592] R3 HSFHWICH;HSFHWICH; C:\WINDOWS\system32\DRIVERS\HSFHWICH.sys [2006-08-29 247808] R3 IBMPMDRV;IBMPMDRV; C:\WINDOWS\system32\DRIVERS\ibmpmdrv.sys [2007-05-31 21424] R3 mouhid;Maus-HID-Treiber; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-08-18 12288] R3 NSCIRDA;NSC-Infrarotgerätetreiber; C:\WINDOWS\system32\DRIVERS\nscirda.sys [2008-04-13 28672] R3 pcouffin;VSO Software pcouffin; C:\WINDOWS\System32\Drivers\pcouffin.sys [2009-12-06 47360] R3 Rasirda;WAN-Miniport (IrDA); C:\WINDOWS\system32\DRIVERS\rasirda.sys [2001-08-17 19584] R3 smwdm;smwdm; C:\WINDOWS\system32\drivers\smwdm.sys [2005-03-28 220992] R3 SynTP;Synaptics TouchPad Driver; C:\WINDOWS\system32\DRIVERS\SynTP.sys [2003-06-24 265744] R3 usbehci;Miniporttreiber für erweiterten Microsoft USB 2.0-Hostcontroller; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2008-04-13 30208] R3 usbhub;Microsoft USB-Standardhubtreiber; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2008-04-13 59520] R3 usbuhci;Miniporttreiber für universellen Microsoft USB-Hostcontroller; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-13 20608] R3 winachsf;winachsf; C:\WINDOWS\system32\DRIVERS\HSF_CNXT.sys [2006-08-29 728576] S1 InCDPass;InCDPass; C:\WINDOWS\system32\drivers\InCDPass.sys [] S1 InCDRm;InCD Reader; C:\WINDOWS\system32\drivers\InCDRm.sys [] S1 kbdhid;Tastatur-HID-Treiber; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-14 14720] S3 BthEnum;Bluetooth-Auflistungsdienst; C:\WINDOWS\system32\DRIVERS\BthEnum.sys [2008-04-13 17024] S3 BTHMODEM;Serieller Kommunikationstreiber für Bluetooth; C:\WINDOWS\system32\DRIVERS\bthmodem.sys [2008-04-13 37888] S3 BthPan;Bluetooth-Gerät (PAN); C:\WINDOWS\system32\DRIVERS\bthpan.sys [2008-04-13 101120] S3 BTHPORT;Bluetooth-Porttreiber; C:\WINDOWS\System32\Drivers\BTHport.sys [2008-06-14 273024] S3 BTHUSB;USB-Treiber für Bluetooth-Funkgerät; C:\WINDOWS\System32\Drivers\BTHUSB.sys [2008-04-13 18944] S3 C-Dilla;C-Dilla; \??\C:\WINDOWS\system32\drivers\CDANT.SYS [] S3 HidBth;Microsoft Bluetooth-HID-Miniport; C:\WINDOWS\system32\DRIVERS\hidbth.sys [2008-04-14 25856] S3 RFCOMM;Bluetooth-Gerät (RFCOMM-Protokoll-TDI); C:\WINDOWS\system32\DRIVERS\rfcomm.sys [2008-04-13 59136] S3 usbccgp;Microsoft Standard-USB-Haupttreiber; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-13 32128] S3 usbscan;USB-Scannertreiber; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-13 15104] S3 USBSTOR;USB-Massenspeichertreiber; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368] S4 InCDFs;InCD File System; C:\WINDOWS\system32\drivers\InCDFs.sys [] ======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R2 Akamai;Akamai NetSession Interface; C:\WINDOWS\System32\svchost.exe [2008-04-14 14336] R2 AntiVirSchedulerService;Avira AntiVir Planer; C:\Programme\Avira\AntiVir Desktop\sched.exe [2010-02-24 135336] R2 AntiVirService;Avira AntiVir Guard; C:\Programme\Avira\AntiVir Desktop\avguard.exe [2010-04-25 267432] R2 Apple Mobile Device;Apple Mobile Device; C:\Programme\Gemeinsame Dateien\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe [2008-11-07 132424] R2 Ati HotKey Poller;Ati HotKey Poller; C:\WINDOWS\system32\Ati2evxx.exe [2007-02-07 364544] R2 Bonjour Service;Bonjour-Dienst; C:\Programme\Bonjour\mDNSResponder.exe [2008-08-29 238888] R2 BthServ;Bluetooth Support Service; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336] R2 C-DillaSrv;C-DillaSrv; C:\WINDOWS\system32\DRIVERS\CDANTSRV.EXE [2008-11-30 32256] R2 IBMPMSVC;ThinkPad PM Service; C:\WINDOWS\system32\ibmpmsvc.exe [2007-05-31 36400] R2 Irmon;Infrarotüberwachung; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336] R2 JavaQuickStarterService;Java Quick Starter; C:\Programme\Java\jre6\bin\jqs.exe [2010-04-12 153376] R2 ReflectService;Macrium Reflect Image Mounting Service; C:\Programme\Macrium\Reflect\ReflectService.exe [2010-03-17 220128] R2 SoundMAX Agent Service (default);SoundMAX Agent Service; C:\Programme\Analog Devices\SoundMAX\SMAgent.exe [2002-09-20 45056] R3 iPod Service;iPod-Dienst; C:\Programme\iPod\bin\iPodService.exe [2008-11-20 536872] S2 gupdate1c9e2fa79fa510;Google Update Service (gupdate1c9e2fa79fa510); C:\Programme\Google\Update\GoogleUpdate.exe [2009-06-01 133104] S2 gusvc;Google Software Updater; C:\Programme\Google\Common\Google Updater\GoogleUpdaterService.exe [2009-06-01 183280] S2 MySql;MySql; C:/xampp/mysql/bin/mysqld-shareware.exe [] S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Programme\Gemeinsame Dateien\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2009-12-21 655624] S4 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [] -----------------EOF-----------------
Die erste Verlangsamung hat eingesetzt, als ich mal .NET installieren musste. Das habe ich versucht, wieder runterzukriegen, bin aber wohl nicht 100%-ig erfolgreich gewesen. Später wurde der Rechner dann aber noch deutlich langsamer.Code:info.txt logfile of random's system information tool 1.06 2010-07-06 14:11:44 ======Uninstall list====== -->C:\Programme\DivX\DivXConverterUninstall.exe /CONVERTER -->C:\Programme\InstallShield Installation Information\{E646DCF0-5A68-11D5-B229-002078017FBF}\SETUP.exe -runfromtemp -l0x0007 -removeonly -->RunDll32 C:\PROGRA~1\GEMEIN~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Programme\InstallShield Installation Information\{3F92ABBB-6BBF-11D5-B229-002078017FBF}\SETUP.EXE" -l0x7 ControlPanel -->rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WINDOWS\INF\PCHealth.inf 3ds max 4-->MsiExec.exe /I{FF5D0751-E692-11D4-99D0-0060B0A11DC1} Adobe Acrobat 5.0-->C:\WINDOWS\ISUNINST.EXE -f"C:\Programme\Gemeinsame Dateien\Adobe\Acrobat 5.0\NT\Uninst.isu" -c"C:\Programme\Gemeinsame Dateien\Adobe\Acrobat 5.0\NT\Uninst.dll" Adobe After Effects 5.0-->MsiExec.exe /I{5FAB6A66-2DAC-11D4-8524-00C04F602FD3} Adobe After Effects CS4 Presets-->MsiExec.exe /I{44E240EC-2224-4078-A88B-2CEE0D3016EF} Adobe After Effects CS4-->C:\Programme\Gemeinsame Dateien\Adobe\Installers\3dcb365ab9e01871fb8c6f27b0ea079\Setup.exe --uninstall=1 Adobe After Effects CS4-->MsiExec.exe /I{45EC816C-0771-4C14-AE6D-72D1B578F4C8} Adobe AIR-->C:\Programme\Gemeinsame Dateien\Adobe AIR\Versions\1.0\Resources\Adobe AIR Updater.exe -arp:uninstall Adobe AIR-->MsiExec.exe /I{197A3012-8C85-4FD3-AB66-9EC7E13DB92E} Adobe Anchor Service CS4-->MsiExec.exe /I{1618734A-3957-4ADD-8199-F973763109A8} Adobe Bridge CS4-->MsiExec.exe /I{83877DB1-8B77-45BC-AB43-2BAC22E093E0} Adobe CMaps CS4-->MsiExec.exe /I{94D398EB-D2FD-4FD1-B8C4-592635E8A191} Adobe Color - Photoshop Specific CS4-->MsiExec.exe /I{3D2C9DE6-9ADE-4252-A241-E43723B0CE02} Adobe Color EU Extra Settings CS4-->MsiExec.exe /I{5570C7F0-43D0-4916-8A9E-AEDD52FA86F4} Adobe Color JA Extra Settings CS4-->MsiExec.exe /I{0D6013AB-A0C7-41DC-973C-E93129C9A29F} Adobe Color NA Recommended Settings CS4-->MsiExec.exe /I{00ADFB20-AE75-46F4-AD2C-F48B15AC3100} Adobe Color Video Profiles AE CS4-->MsiExec.exe /I{B15381DD-FF97-4FCD-A881-ED4DB0975500} Adobe Color Video Profiles CS CS4-->MsiExec.exe /I{63C24A08-70F3-4C8E-B9FB-9F21A903801D} Adobe CS4 American English Speech Analysis Models-->MsiExec.exe /I{297190A1-4B0D-4CD6-8B9F-3907F15C3FD8} Adobe CSI CS4-->MsiExec.exe /I{0F723FC1-7606-4867-866C-CE80AD292DAF} Adobe Default Language CS4-->MsiExec.exe /I{C52E3EC1-048C-45E1-8D53-10B0C6509683} Adobe Device Central CS4-->MsiExec.exe /I{67F0E67A-8E93-4C2C-B29D-47C48262738A} Adobe Drive CS4-->MsiExec.exe /I{16E16F01-2E2D-4248-A42F-76261C147B6C} Adobe Dynamiclink Support-->MsiExec.exe /I{60DB5894-B5A1-4B62-B0F3-669A22C0EE5D} Adobe Encore CS4-->MsiExec.exe /I{5EAD5443-7194-46CC-A055-428E6ABB1BAF} Adobe ExtendScript Toolkit CS4-->MsiExec.exe /I{F8EF2B3F-C345-4F20-8FE4-791A20333CD5} Adobe Extension Manager CS4-->MsiExec.exe /I{054EFA56-2AC1-48F4-A883-0AB89874B972} Adobe Flash Player 10 ActiveX-->C:\WINDOWS\system32\Macromed\Flash\uninstall_activeX.exe Adobe Flash Player 10 Plugin-->C:\WINDOWS\system32\Macromed\Flash\FlashUtil10h_Plugin.exe -maintain plugin Adobe Fonts All-->MsiExec.exe /I{FCDD51BB-CAD0-4BB1-B7DF-CE86D1032794} Adobe Linguistics CS4-->MsiExec.exe /I{931AB7EA-3656-4BB7-864D-022B09E3DD67} Adobe Media Encoder CS4 Additional Exporter-->MsiExec.exe /I{BE9CEAAA-F069-4331-BF2F-8D350F6504F4} Adobe Media Encoder CS4 Dolby-->MsiExec.exe /I{EE353798-E875-42E0-B58D-7E6696182EA8} Adobe Media Encoder CS4-->MsiExec.exe /I{DEB90B8E-0DCB-48CE-B90E-8842A2BD643E} Adobe Media Player-->msiexec /qb /x {39F6E2B4-CFE8-C30A-66E8-489651F0F34C} Adobe Media Player-->MsiExec.exe /I{39F6E2B4-CFE8-C30A-66E8-489651F0F34C} Adobe MotionPicture Color Files CS4-->MsiExec.exe /I{B05DE7B7-0B40-4411-BD4B-222CAE2D8F15} Adobe MPEG Encoder-->MsiExec.exe /I{9811A185-3D3D-11D6-9E14-00036D172B00} Adobe OnLocation CS4-->MsiExec.exe /I{7406DF60-016D-476B-A2C7-55D997592047} Adobe Output Module-->MsiExec.exe /I{BB4E33EC-8181-4685-96F7-8554293DEC6A} Adobe PDF Library Files CS4-->MsiExec.exe /I{F93C84A6-0DC6-42AF-89FA-776F7C377353} Adobe Photoshop 7.0-->C:\WINDOWS\ISUNINST.EXE -f"C:\Programme\Adobe\Photoshop 7.0\Uninst.isu" -c"C:\Programme\Adobe\Photoshop 7.0\Uninst.dll" Adobe Photoshop CS4 Support-->MsiExec.exe /I{63E5CDBF-8214-4F03-84F8-CD3CE48639AD} Adobe Photoshop CS4-->C:\Programme\Gemeinsame Dateien\Adobe\Installers\faf656ef605427ee2f42989c3ad31b8\Setup.exe --uninstall=1 Adobe Photoshop CS4-->MsiExec.exe /I{B65BA85C-0A27-4BC0-A22D-A66F0E5B9494} Adobe Photoshop CS4-->MsiExec.exe /I{E4848436-0345-47E2-B648-8B522FCDA623} Adobe Premiere 6.5-->C:\WINDOWS\UNINST.EXE -f"C:\Programme\Adobe\Premiere 6.5\DeIsL1.isu" -c"C:\Programme\Adobe\Premiere 6.5\Uninst.dll" Adobe Premiere Pro CS4 Functional Content-->MsiExec.exe /I{B169BC97-B8AA-4ACA-9CF2-9D0FF5BABDF7} Adobe Premiere Pro CS4-->C:\Programme\Gemeinsame Dateien\Adobe\Installers\26b63376f4efc354dae41af6b5e3343\Setup.exe --uninstall=1 Adobe Premiere Pro CS4-->MsiExec.exe /I{D499F8DE-3F31-4900-9157-61061613704B} Adobe Premiere Pro CS4-->MsiExec.exe /I{DE3BB35E-C0CE-4CA1-9CB4-CD9E69364BD9} Adobe Search for Help-->MsiExec.exe /I{F0E64E2E-3A60-40D8-A55D-92F6831875DA} Adobe Service Manager Extension-->MsiExec.exe /I{4943EFF5-229F-435D-BEA9-BE3CAEA783A7} Adobe Setup-->MsiExec.exe /I{0D67A4E4-5BE0-4C9A-8AD8-AB552B433F23} Adobe Setup-->MsiExec.exe /I{411F3ABA-2AB5-4799-AA19-6ADF0A8F7424} Adobe Setup-->MsiExec.exe /I{566BB41D-F006-4956-A5D3-94D8DFFA7F51} Adobe Shockwave Player 11.5-->"C:\WINDOWS\system32\Adobe\Shockwave 11\uninstaller.exe" Adobe Type Support CS4-->MsiExec.exe /I{820D3F45-F6EE-4AAF-81EF-CE21FF21D230} Adobe Update Manager CS4-->MsiExec.exe /I{05308C4E-7285-4066-BAE3-6B50DA6ED755} Adobe WinSoft Linguistics Plugin-->MsiExec.exe /I{3DA8DF9A-044E-46C4-8531-DEDBB0EE37FF} Adobe XMP Panels CS4-->MsiExec.exe /I{3A4E8896-C2E7-4084-A4A4-B8FD1894E739} AdobeColorCommonSetCMYK-->MsiExec.exe /I{68243FF8-83CA-466B-B2B8-9F99DA5479C4} AdobeColorCommonSetRGB-->MsiExec.exe /I{16E6D2C1-7C90-4309-8EC4-D2212690AAA4} Advanced RealMedia Export Plug-in for Premiere 6.0-->C:\Programme\Adobe\Premiere 6.5\Plug-ins\RNCompiler\rnuninst.exe RealNetworks|RNCompiler|6.0 AfterBurn-->RunDll32 C:\PROGRA~1\GEMEIN~1\INSTAL~1\engine\6\INTEL3~1\ctor.dll,LaunchSetup "C:\Programme\InstallShield Installation Information\{72D1C2D7-2B63-4445-979B-28C6066D8D5F}\setup.exe" Akamai NetSession Interface-->C:\Programme\Gemeinsame Dateien\Akamai\uninstall.exe Amazon MP3-Downloader 1.0.9-->C:\Programme\Amazon\MP3 Downloader\Uninstall.exe AnswerWorks Runtime-->C:\WINDOWS\IsUninst.exe -fC:\Programme\WexTech\AnswerWorks\Uninst.isu Apple Application Support-->MsiExec.exe /I{3FA365DF-2D68-45ED-8F83-8C8A33E65143} Apple Mobile Device Support-->MsiExec.exe /I{EC4455AB-F155-4CC1-A4C5-88F3777F9886} Apple Software Update-->MsiExec.exe /I{6956856F-B6B3-4BE0-BA0B-8F495BE32033} ATI - Dienstprogramm zur Deinstallation der Software-->C:\Programme\ATI Technologies\UninstallAll\AtiCimUn.exe ATI Control Panel-->RunDll32 C:\PROGRA~1\GEMEIN~1\INSTAL~1\engine\6\INTEL3~1\ctor.dll,LaunchSetup "C:\Programme\InstallShield Installation Information\{0BEDBD4E-2D34-47B5-9973-57E62B29307C}\setup.exe" ATI Display Driver-->rundll32 C:\WINDOWS\system32\atiiiexx.dll,_InfEngUnInstallINFFile_RunDLL@16 -force_restart -flags:0x2010001 -inf_class:DISPLAY -clean Auto Gordian Knot 1.60-->C:\Programme\AutoGK\uninst.exe Avira AntiVir Personal - Free Antivirus-->C:\Programme\Avira\AntiVir Desktop\setup.exe /REMOVE AviSynth 2.5-->"C:\Programme\AviSynth 2.5\Uninstall.exe" Biet-O-Matic v2.12.7-->C:\PROGRA~1\BIET-O~1\UNWISE.EXE C:\PROGRA~1\BIET-O~1\install.log Blender (remove only)-->"C:\Programme\Blender Foundation\Blender\uninstall.exe" Bonjour-->MsiExec.exe /I{8A25392D-C5D2-4E79-A2BD-C15DDC5B0959} CCleaner-->"C:\Programme\CCleaner\uninst.exe" CDex extraction audio-->"C:\Programme\CDex_170b2\uninstall.exe" C-Dilla Licence Management System-->C:\C_DILLA\setup\cdunin16.exe Cole2k Media - Codec Pack (Advanced) 7.9.0-->C:\WINDOWS\system32\C2MP\Uninst.exe Connect-->MsiExec.exe /I{B29AD377-CC12-490A-A480-1452337C618D} Cool Edit Pro v1.2 fixed-->C:\WINDOWS\UNWISE.EXE C:\PROGRA~1\COOLED~1.2\INSTALL.LOG Data Lifeguard Diagnostic for Windows 1.21-->"C:\Programme\Western Digital Corporation\Data Lifeguard Diagnostic for Windows\unins000.exe" DDR - NTFS Recovery 4.0.1.6-->C:\WINDOWS\UnDeploy.exe "C:\Programme\DDR - NTFS Recovery\Deploy.log" DDR - NTFS Recovery(Demo) 4.0.1.6-->C:\WINDOWS\UnDeploy.exe "C:\Programme\DDR - NTFS Recovery(Demo)\Deploy.log" Digimation Plugin Studio for Max4-->C:\WINDOWS\system32\UNWISE.EXE C:\WINDOWS\system32\dav15e.LOG DivX Codec-->C:\Programme\DivX\DivXCodecUninstall.exe /CODEC DivX Converter-->C:\Programme\DivX\DivXConverterUninstall.exe /CONVERTER DivX Plus DirectShow Filters-->C:\Programme\DivX\DivXDSFiltersUninstall.exe /DSFILTERS DivX Plus Web Player-->C:\Programme\DivX\DivXWebPlayerUninstall.exe /PLUGIN DVD Decrypter (Remove Only)-->"C:\Programme\DVD Decrypter\uninstall.exe" DVD Flick-->"C:\Programme\DVD Flick\unins000.exe" DVDFab 6.2.0.5 (11/11/2009)-->"C:\Programme\DVDFab 6\unins000.exe" ElsterFormular 2007/2008-->RunDll32 C:\PROGRA~1\GEMEIN~1\INSTAL~1\PROFES~1\RunTime\11\50\Intel32\Ctor.dll,LaunchSetup "C:\Programme\InstallShield Installation Information\{5BA43E5C-66FD-48D2-AB40-B807D457EF83}\setup.exe" -l0x7 -removeonly ElsterFormular 2008/2009-->RunDll32 C:\PROGRA~1\GEMEIN~1\INSTAL~1\PROFES~1\RunTime\11\50\Intel32\Ctor.dll,LaunchSetup "C:\Programme\InstallShield Installation Information\{04830D0F-F980-4EC0-89F1-594F2FD2A1B5}\setup.exe" -l0x7 -removeonly ffdshow [rev 1685] [2007-12-06]-->"C:\Programme\ffdshow\unins000.exe" Foxit Reader-->C:\Programme\Foxit Software\Foxit Reader\Uninstall.exe Free Download Manager 3.0-->"C:\Programme\Free Download Manager\unins000.exe" FreeMind-->"C:\Programme\FreeMind\unins000.exe" Google Earth-->MsiExec.exe /X{F7B0939E-58DF-11DF-B3A6-005056806466} Google Update Helper-->MsiExec.exe /I{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2} Google Updater-->"C:\Programme\Google\Google Updater\GoogleUpdater.exe" -uninstall HDD Health v3.3 Beta-->"C:\Programme\HDD Health\unins000.exe" HijackThis 2.0.2-->"C:\Programme\Trend Micro\HijackThis\HijackThis.exe" /uninstall Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)-->C:\WINDOWS\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall {A7EEA2F2-BFCD-4A54-A575-7B81A786E658} /qb+ REBOOTPROMPT="" Hotfix für Windows XP (KB952287)-->"C:\WINDOWS\$NtUninstallKB952287$\spuninst\spuninst.exe" Hotfix für Windows XP (KB961118)-->"C:\WINDOWS\$NtUninstallKB961118$\spuninst\spuninst.exe" Hotfix für Windows XP (KB970653-v3)-->"C:\WINDOWS\$NtUninstallKB970653-v3$\spuninst\spuninst.exe" Hotfix für Windows XP (KB976098-v2)-->"C:\WINDOWS\$NtUninstallKB976098-v2$\spuninst\spuninst.exe" Hotfix für Windows XP (KB979306)-->"C:\WINDOWS\$NtUninstallKB979306$\spuninst\spuninst.exe" Hotfix für Windows XP (KB981793)-->"C:\WINDOWS\$NtUninstallKB981793$\spuninst\spuninst.exe" IBM ThinkPad UltraNav Driver-->rundll32.exe "C:\Programme\Synaptics\SynTP\SynISDLL.dll",standAloneUninstall idrop-->MsiExec.exe /I{975CD947-C6FB-11D4-96B7-0010B541D591} Intel(R) PRO Network Connections Drivers-->Prounstl.exe Ipswitch WS_FTP Pro-->C:\WINDOWS\ISUNINST.EXE -f"C:\Programme\WS_FTP Pro\uninst.isu" -c"C:\Programme\WS_FTP Pro\FTPInstUtils.dll" IrfanView (remove only)-->C:\Programme\IrfanView\iv_uninstall.exe iTunes-->MsiExec.exe /I{318AB667-3230-41B5-A617-CB3BF748D371} Java(TM) 6 Update 20-->MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F83216010FF} Konstanzprüfung 1.2q-->"C:\Programme\Konstanzprüfung\unins000.exe" kuler-->MsiExec.exe /I{098727E1-775A-4450-B573-3F441F1CA243} Macrium Reflect - Free Edition-->MsiExec.exe /I{DB35267F-B5C6-495C-8407-75ADC34E759D} Microsoft Office Converter Pack-->MsiExec.exe /X{6EECB283-E65F-40EF-86D3-D51BF02A8D43} Microsoft Office XP Professional with FrontPage-->MsiExec.exe /I{90280409-6000-11D3-8CFE-0050048383C9} Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022-->MsiExec.exe /X{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4} Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17-->MsiExec.exe /X{9A25302D-30C0-39D9-BD6F-21E6EC160475} Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148-->MsiExec.exe /X{1F1C2DFC-2D24-3E06-BCB8-725134ADF989} Mozilla Firefox (3.6.6)-->C:\Programme\Mozilla Firefox\uninstall\helper.exe Mozilla Thunderbird (2.0.0.24)-->C:\Programme\Mozilla Thunderbird\uninstall\helper.exe MpegDJ GoWave!-->C:\WINDOWS\uninst.exe -f"C:\Programme\Xaudio\MpegDJ GoWave!\DeIsL1.isu" -c"C:\Programme\Xaudio\MpegDJ GoWave!\_ISREG32.DLL" MSXML 6.0 Parser-->MsiExec.exe /I{AEB9948B-4FF2-47C9-990E-47014492A0FE} MultiFuncTimer 1.0-->C:\Programme\MultiFuncTimer\unins000.exe Nero 7 Premium-->MsiExec.exe /I{4781569D-5404-1F26-4B2B-6DF444441031} Notepad++-->C:\Programme\Notepad++\uninstall.exe PDF Settings CS4-->MsiExec.exe /I{35D94F92-1D3A-43C5-8605-EA268B1A7BD9} Photoshop Camera Raw-->MsiExec.exe /I{CC75AB5C-2110-4A7F-AF52-708680D22FE8} Pixel Bender Toolkit-->MsiExec.exe /I{43509E18-076E-40FE-AF38-CA5ED400A5A9} PowerQuest PartitionMagic 8.0-->C:\PROGRA~1\GEMEIN~1\INSTAL~1\Driver\7\INTEL3~1\IDriver.exe /M{6BE2A4A4-99FB-48ED-AE1E-4E850389F804} Python 2.6 ipython-0.10-->"C:\Python26\Removeipython.exe" -u "C:\Python26\ipython-wininst.log" Python 2.6.2-->MsiExec.exe /I{24AAB420-4E30-4496-9739-3E216F3DE6AE} QuickTime-->MsiExec.exe /I{1451DE6B-ABE1-4F62-BE9A-B363A17588A2} Real Alternative 1.9.0 Lite-->"C:\Programme\Real Alternative\unins000.exe" Sicherheitsupdate für Windows Internet Explorer 8 (KB971961)-->"C:\WINDOWS\ie8updates\KB971961-IE8\spuninst\spuninst.exe" Sicherheitsupdate für Windows Internet Explorer 8 (KB972260)-->"C:\WINDOWS\ie8updates\KB972260-IE8\spuninst\spuninst.exe" Sicherheitsupdate für Windows Internet Explorer 8 (KB974455)-->"C:\WINDOWS\ie8updates\KB974455-IE8\spuninst\spuninst.exe" Sicherheitsupdate für Windows Internet Explorer 8 (KB976325)-->"C:\WINDOWS\ie8updates\KB976325-IE8\spuninst\spuninst.exe" Sicherheitsupdate für Windows Internet Explorer 8 (KB978207)-->"C:\WINDOWS\ie8updates\KB978207-IE8\spuninst\spuninst.exe" Sicherheitsupdate für Windows Internet Explorer 8 (KB981332)-->"C:\WINDOWS\ie8updates\KB981332-IE8\spuninst\spuninst.exe" Sicherheitsupdate für Windows Internet Explorer 8 (KB982381)-->"C:\WINDOWS\ie8updates\KB982381-IE8\spuninst\spuninst.exe" Sicherheitsupdate für Windows Media Player (KB952069)-->"C:\WINDOWS\$NtUninstallKB952069_WM9$\spuninst\spuninst.exe" Sicherheitsupdate für Windows Media Player (KB954155)-->"C:\WINDOWS\$NtUninstallKB954155_WM9$\spuninst\spuninst.exe" Sicherheitsupdate für Windows Media Player (KB968816)-->"C:\WINDOWS\$NtUninstallKB968816_WM9$\spuninst\spuninst.exe" Sicherheitsupdate für Windows Media Player (KB973540)-->"C:\WINDOWS\$NtUninstallKB973540_WM9$\spuninst\spuninst.exe" Sicherheitsupdate für Windows Media Player (KB978695)-->"C:\WINDOWS\$NtUninstallKB978695_WM9$\spuninst\spuninst.exe" Sicherheitsupdate für Windows Media Player (KB979402)-->"C:\WINDOWS\$NtUninstallKB979402_WM9$\spuninst\spuninst.exe" Sicherheitsupdate für Windows XP (KB923561)-->"C:\WINDOWS\$NtUninstallKB923561$\spuninst\spuninst.exe" Sicherheitsupdate für Windows XP (KB923789)-->C:\WINDOWS\system32\MacroMed\Flash\genuinst.exe C:\WINDOWS\system32\MacroMed\Flash\KB923789.inf Sicherheitsupdate für Windows XP (KB938464-v2)-->"C:\WINDOWS\$NtUninstallKB938464-v2$\spuninst\spuninst.exe" Sicherheitsupdate für Windows XP (KB946648)-->"C:\WINDOWS\$NtUninstallKB946648$\spuninst\spuninst.exe" Sicherheitsupdate für Windows XP (KB950762)-->"C:\WINDOWS\$NtUninstallKB950762$\spuninst\spuninst.exe" Sicherheitsupdate für Windows XP (KB950974)-->"C:\WINDOWS\$NtUninstallKB950974$\spuninst\spuninst.exe" Sicherheitsupdate für Windows XP (KB951066)-->"C:\WINDOWS\$NtUninstallKB951066$\spuninst\spuninst.exe" Sicherheitsupdate für Windows XP (KB951376-v2)-->"C:\WINDOWS\$NtUninstallKB951376-v2$\spuninst\spuninst.exe" Sicherheitsupdate für Windows XP (KB951748)-->"C:\WINDOWS\$NtUninstallKB951748$\spuninst\spuninst.exe" Sicherheitsupdate für Windows XP (KB952004)-->"C:\WINDOWS\$NtUninstallKB952004$\spuninst\spuninst.exe" Sicherheitsupdate für Windows XP (KB952954)-->"C:\WINDOWS\$NtUninstallKB952954$\spuninst\spuninst.exe" Sicherheitsupdate für Windows XP (KB954459)-->"C:\WINDOWS\$NtUninstallKB954459$\spuninst\spuninst.exe" Sicherheitsupdate für Windows XP (KB954600)-->"C:\WINDOWS\$NtUninstallKB954600$\spuninst\spuninst.exe" Sicherheitsupdate für Windows XP (KB955069)-->"C:\WINDOWS\$NtUninstallKB955069$\spuninst\spuninst.exe" Sicherheitsupdate für Windows XP (KB956572)-->"C:\WINDOWS\$NtUninstallKB956572$\spuninst\spuninst.exe" Sicherheitsupdate für Windows XP (KB956744)-->"C:\WINDOWS\$NtUninstallKB956744$\spuninst\spuninst.exe" Sicherheitsupdate für Windows XP (KB956802)-->"C:\WINDOWS\$NtUninstallKB956802$\spuninst\spuninst.exe" Sicherheitsupdate für Windows XP (KB956803)-->"C:\WINDOWS\$NtUninstallKB956803$\spuninst\spuninst.exe" Sicherheitsupdate für Windows XP (KB956844)-->"C:\WINDOWS\$NtUninstallKB956844$\spuninst\spuninst.exe" Sicherheitsupdate für Windows XP (KB957097)-->"C:\WINDOWS\$NtUninstallKB957097$\spuninst\spuninst.exe" Sicherheitsupdate für Windows XP (KB958644)-->"C:\WINDOWS\$NtUninstallKB958644$\spuninst\spuninst.exe" Sicherheitsupdate für Windows XP (KB958687)-->"C:\WINDOWS\$NtUninstallKB958687$\spuninst\spuninst.exe" Sicherheitsupdate für Windows XP (KB958869)-->"C:\WINDOWS\$NtUninstallKB958869$\spuninst\spuninst.exe" Sicherheitsupdate für Windows XP (KB959426)-->"C:\WINDOWS\$NtUninstallKB959426$\spuninst\spuninst.exe" Sicherheitsupdate für Windows XP (KB960225)-->"C:\WINDOWS\$NtUninstallKB960225$\spuninst\spuninst.exe" Sicherheitsupdate für Windows XP (KB960803)-->"C:\WINDOWS\$NtUninstallKB960803$\spuninst\spuninst.exe" Sicherheitsupdate für Windows XP (KB960859)-->"C:\WINDOWS\$NtUninstallKB960859$\spuninst\spuninst.exe" Sicherheitsupdate für Windows XP (KB961371)-->"C:\WINDOWS\$NtUninstallKB961371$\spuninst\spuninst.exe" Sicherheitsupdate für Windows XP (KB961501)-->"C:\WINDOWS\$NtUninstallKB961501$\spuninst\spuninst.exe" Sicherheitsupdate für Windows XP (KB968537)-->"C:\WINDOWS\$NtUninstallKB968537$\spuninst\spuninst.exe" Sicherheitsupdate für Windows XP (KB969059)-->"C:\WINDOWS\$NtUninstallKB969059$\spuninst\spuninst.exe" Sicherheitsupdate für Windows XP (KB969947)-->"C:\WINDOWS\$NtUninstallKB969947$\spuninst\spuninst.exe" Sicherheitsupdate für Windows XP (KB970238)-->"C:\WINDOWS\$NtUninstallKB970238$\spuninst\spuninst.exe" Sicherheitsupdate für Windows XP (KB970430)-->"C:\WINDOWS\$NtUninstallKB970430$\spuninst\spuninst.exe" Sicherheitsupdate für Windows XP (KB971468)-->"C:\WINDOWS\$NtUninstallKB971468$\spuninst\spuninst.exe" Sicherheitsupdate für Windows XP (KB971486)-->"C:\WINDOWS\$NtUninstallKB971486$\spuninst\spuninst.exe" Sicherheitsupdate für Windows XP (KB971557)-->"C:\WINDOWS\$NtUninstallKB971557$\spuninst\spuninst.exe" Sicherheitsupdate für Windows XP (KB971633)-->"C:\WINDOWS\$NtUninstallKB971633$\spuninst\spuninst.exe" Sicherheitsupdate für Windows XP (KB971657)-->"C:\WINDOWS\$NtUninstallKB971657$\spuninst\spuninst.exe" Sicherheitsupdate für Windows XP (KB972260)-->"C:\WINDOWS\$NtUninstallKB972260$\spuninst\spuninst.exe" Sicherheitsupdate für Windows XP (KB972270)-->"C:\WINDOWS\$NtUninstallKB972270$\spuninst\spuninst.exe" Sicherheitsupdate für Windows XP (KB973346)-->"C:\WINDOWS\$NtUninstallKB973346$\spuninst\spuninst.exe" Sicherheitsupdate für Windows XP (KB973354)-->"C:\WINDOWS\$NtUninstallKB973354$\spuninst\spuninst.exe" Sicherheitsupdate für Windows XP (KB973507)-->"C:\WINDOWS\$NtUninstallKB973507$\spuninst\spuninst.exe" Sicherheitsupdate für Windows XP (KB973525)-->"C:\WINDOWS\$NtUninstallKB973525$\spuninst\spuninst.exe" Sicherheitsupdate für Windows XP (KB973869)-->"C:\WINDOWS\$NtUninstallKB973869$\spuninst\spuninst.exe" Sicherheitsupdate für Windows XP (KB973904)-->"C:\WINDOWS\$NtUninstallKB973904$\spuninst\spuninst.exe" Sicherheitsupdate für Windows XP (KB974112)-->"C:\WINDOWS\$NtUninstallKB974112$\spuninst\spuninst.exe" Sicherheitsupdate für Windows XP (KB974318)-->"C:\WINDOWS\$NtUninstallKB974318$\spuninst\spuninst.exe" Sicherheitsupdate für Windows XP (KB974392)-->"C:\WINDOWS\$NtUninstallKB974392$\spuninst\spuninst.exe" Sicherheitsupdate für Windows XP (KB974571)-->"C:\WINDOWS\$NtUninstallKB974571$\spuninst\spuninst.exe" Sicherheitsupdate für Windows XP (KB975025)-->"C:\WINDOWS\$NtUninstallKB975025$\spuninst\spuninst.exe" Sicherheitsupdate für Windows XP (KB975467)-->"C:\WINDOWS\$NtUninstallKB975467$\spuninst\spuninst.exe" Sicherheitsupdate für Windows XP (KB975560)-->"C:\WINDOWS\$NtUninstallKB975560$\spuninst\spuninst.exe" Sicherheitsupdate für Windows XP (KB975561)-->"C:\WINDOWS\$NtUninstallKB975561$\spuninst\spuninst.exe" Sicherheitsupdate für Windows XP (KB975562)-->"C:\WINDOWS\$NtUninstallKB975562$\spuninst\spuninst.exe" Sicherheitsupdate für Windows XP (KB975713)-->"C:\WINDOWS\$NtUninstallKB975713$\spuninst\spuninst.exe" Sicherheitsupdate für Windows XP (KB977165)-->"C:\WINDOWS\$NtUninstallKB977165$\spuninst\spuninst.exe" Sicherheitsupdate für Windows XP (KB977816)-->"C:\WINDOWS\$NtUninstallKB977816$\spuninst\spuninst.exe" Sicherheitsupdate für Windows XP (KB977914)-->"C:\WINDOWS\$NtUninstallKB977914$\spuninst\spuninst.exe" Sicherheitsupdate für Windows XP (KB978037)-->"C:\WINDOWS\$NtUninstallKB978037$\spuninst\spuninst.exe" Sicherheitsupdate für Windows XP (KB978251)-->"C:\WINDOWS\$NtUninstallKB978251$\spuninst\spuninst.exe" Sicherheitsupdate für Windows XP (KB978262)-->"C:\WINDOWS\$NtUninstallKB978262$\spuninst\spuninst.exe" Sicherheitsupdate für Windows XP (KB978338)-->"C:\WINDOWS\$NtUninstallKB978338$\spuninst\spuninst.exe" Sicherheitsupdate für Windows XP (KB978542)-->"C:\WINDOWS\$NtUninstallKB978542$\spuninst\spuninst.exe" Sicherheitsupdate für Windows XP (KB978601)-->"C:\WINDOWS\$NtUninstallKB978601$\spuninst\spuninst.exe" Sicherheitsupdate für Windows XP (KB978706)-->"C:\WINDOWS\$NtUninstallKB978706$\spuninst\spuninst.exe" Sicherheitsupdate für Windows XP (KB979309)-->"C:\WINDOWS\$NtUninstallKB979309$\spuninst\spuninst.exe" Sicherheitsupdate für Windows XP (KB979482)-->"C:\WINDOWS\$NtUninstallKB979482$\spuninst\spuninst.exe" Sicherheitsupdate für Windows XP (KB979559)-->"C:\WINDOWS\$NtUninstallKB979559$\spuninst\spuninst.exe" Sicherheitsupdate für Windows XP (KB979683)-->"C:\WINDOWS\$NtUninstallKB979683$\spuninst\spuninst.exe" Sicherheitsupdate für Windows XP (KB980195)-->"C:\WINDOWS\$NtUninstallKB980195$\spuninst\spuninst.exe" Sicherheitsupdate für Windows XP (KB980218)-->"C:\WINDOWS\$NtUninstallKB980218$\spuninst\spuninst.exe" Sicherheitsupdate für Windows XP (KB980232)-->"C:\WINDOWS\$NtUninstallKB980232$\spuninst\spuninst.exe" Skype™ 4.2-->MsiExec.exe /X{D103C4BA-F905-437A-8049-DB24763BBE36} Smart Data Recovery v4.2-->"C:\Programme\Smart PC Solutions\Smart Data Recovery\unins000.exe" SoundMAX-->RunDll32 C:\PROGRA~1\GEMEIN~1\INSTAL~1\PROFES~1\RunTime\10\00\Intel32\Ctor.dll,LaunchSetup "C:\Programme\InstallShield Installation Information\{F0A37341-D692-11D4-A984-009027EC0A9C}\setup.exe" -l0x7 -removeonly Splutterfish Brazil 1.0 Final-->C:\PROGRAMME\3DSMAX4\Uninstal.exe Starcraft-->C:\WINDOWS\scunin.exe C:\WINDOWS\scunin.dat Suite Shared Configuration CS4-->MsiExec.exe /I{842B4B72-9E8F-4962-B3C1-1C422A5C4434} ThinkPad Integrated 56K Modem-->C:\Programme\CONEXANT\CNXT_MODEM_PCI_VEN_8086&DEV_24C6&SUBSYS_05591014\HXFSETUP.EXE -U -ITkp0559k.inf ThinkPad Power Management Driver-->RunDll32.exe tpinspm.dll,Uninstall TreeSize Free V1.77-->"C:\Programme\TreeSize\unins000.exe" TrueCrypt-->"C:\Programme\TrueCrypt\TrueCrypt Setup.exe" /u Update für Windows Internet Explorer 8 (KB972636)-->"C:\WINDOWS\ie8updates\KB972636-IE8\spuninst\spuninst.exe" Update für Windows Internet Explorer 8 (KB976662)-->"C:\WINDOWS\ie8updates\KB976662-IE8\spuninst\spuninst.exe" Update für Windows Internet Explorer 8 (KB976749)-->"C:\WINDOWS\ie8updates\KB976749-IE8\spuninst\spuninst.exe" Update für Windows Internet Explorer 8 (KB980182)-->"C:\WINDOWS\ie8updates\KB980182-IE8\spuninst\spuninst.exe" Update für Windows XP (KB951978)-->"C:\WINDOWS\$NtUninstallKB951978$\spuninst\spuninst.exe" Update für Windows XP (KB955759)-->"C:\WINDOWS\$NtUninstallKB955759$\spuninst\spuninst.exe" Update für Windows XP (KB955839)-->"C:\WINDOWS\$NtUninstallKB955839$\spuninst\spuninst.exe" Update für Windows XP (KB967715)-->"C:\WINDOWS\$NtUninstallKB967715$\spuninst\spuninst.exe" Update für Windows XP (KB968389)-->"C:\WINDOWS\$NtUninstallKB968389$\spuninst\spuninst.exe" Update für Windows XP (KB971737)-->"C:\WINDOWS\$NtUninstallKB971737$\spuninst\spuninst.exe" Update für Windows XP (KB973687)-->"C:\WINDOWS\$NtUninstallKB973687$\spuninst\spuninst.exe" Update für Windows XP (KB973815)-->"C:\WINDOWS\$NtUninstallKB973815$\spuninst\spuninst.exe" VC80CRTRedist - 8.0.50727.4053-->MsiExec.exe /I{5EE7D259-D137-4438-9A5F-42F432EC0421} VobSub v2.23 (Remove Only)-->"C:\Programme\VobSub\uninstall.exe" Winamp (remove only)-->"C:\Programme\Winamp\UninstWA.exe" Windows Internet Explorer 8-->"C:\WINDOWS\ie8\spuninst\spuninst.exe" Windows XP Service Pack 3-->"C:\WINDOWS\$NtServicePackUninstall$\spuninst\spuninst.exe" WinRAR archiver-->C:\Programme\WinRAR\uninstall.exe XviD MPEG-4 Video Codec-->C:\Programme\XviD\unins000.exe ======Security center information====== AV: AntiVir Desktop ======System event log====== Computer Name: USER-2BC6E86E91 Event Code: 62486 Message: Invalid parameters Record Number: 235963 Source Name: ati2mtag Time Written: 20100616150831.000000+120 Event Type: Informationen User: Computer Name: USER-2BC6E86E91 Event Code: 62486 Message: Invalid parameters Record Number: 235962 Source Name: ati2mtag Time Written: 20100616150831.000000+120 Event Type: Informationen User: Computer Name: USER-2BC6E86E91 Event Code: 62486 Message: Invalid parameters Record Number: 235961 Source Name: ati2mtag Time Written: 20100616150831.000000+120 Event Type: Informationen User: Computer Name: USER-2BC6E86E91 Event Code: 62486 Message: Invalid parameters Record Number: 235960 Source Name: ati2mtag Time Written: 20100616150831.000000+120 Event Type: Informationen User: Computer Name: USER-2BC6E86E91 Event Code: 62486 Message: Invalid parameters Record Number: 235959 Source Name: ati2mtag Time Written: 20100616150831.000000+120 Event Type: Informationen User: =====Application event log===== Computer Name: USER-2BC6E86E91 Event Code: 1100 Message: Record Number: 1505 Source Name: .NET Runtime Optimization Service Time Written: 20100304004221.000000+060 Event Type: Informationen User: Computer Name: USER-2BC6E86E91 Event Code: 1102 Message: Record Number: 1504 Source Name: .NET Runtime Optimization Service Time Written: 20100304004221.000000+060 Event Type: User: Computer Name: USER-2BC6E86E91 Event Code: 1100 Message: Record Number: 1503 Source Name: .NET Runtime Optimization Service Time Written: 20100304004220.000000+060 Event Type: Informationen User: Computer Name: USER-2BC6E86E91 Event Code: 1102 Message: Record Number: 1502 Source Name: .NET Runtime Optimization Service Time Written: 20100304004220.000000+060 Event Type: User: Computer Name: USER-2BC6E86E91 Event Code: 1100 Message: Record Number: 1501 Source Name: .NET Runtime Optimization Service Time Written: 20100304004220.000000+060 Event Type: Informationen User: ======Environment variables====== "ComSpec"=%SystemRoot%\system32\cmd.exe "Path"=%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;C:\Programme\ATI Technologies\ATI Control Panel;C:\Programme\Gemeinsame Dateien\DivX Shared\;C:\Programme\QuickTime\QTSystem\ "windir"=%SystemRoot% "FP_NO_HOST_CHECK"=NO "OS"=Windows_NT "PROCESSOR_ARCHITECTURE"=x86 "PROCESSOR_LEVEL"=6 "PROCESSOR_IDENTIFIER"=x86 Family 6 Model 13 Stepping 6, GenuineIntel "PROCESSOR_REVISION"=0d06 "NUMBER_OF_PROCESSORS"=1 "PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH "TEMP"=%SystemRoot%\TEMP "TMP"=%SystemRoot%\TEMP "CLASSPATH"=.;C:\Programme\Java\jre6\lib\ext\QTJava.zip "QTJAVA"=C:\Programme\Java\jre6\lib\ext\QTJava.zip -----------------EOF-----------------
Code:GMER 1.0.15.15281 - http://www.gmer.net Rootkit scan 2010-07-06 15:18:37 Windows 5.1.2600 Service Pack 3 Running: 9ks2mdfw.exe; Driver: C:\DOKUME~1\user\LOKALE~1\Temp\awroraog.sys ---- System - GMER 1.0.15 ---- SSDT F7E54DE6 ZwCreateKey SSDT F7E54DDC ZwCreateThread SSDT F7E54DEB ZwDeleteKey SSDT F7E54DF5 ZwDeleteValueKey SSDT F7E54DFA ZwLoadKey SSDT F7E54DC8 ZwOpenProcess SSDT F7E54DCD ZwOpenThread SSDT F7E54E04 ZwReplaceKey SSDT F7E54DFF ZwRestoreKey SSDT F7E54DF0 ZwSetValueKey ---- Devices - GMER 1.0.15 ---- AttachedDevice \Driver\Kbdclass \Device\KeyboardClass0 SynTP.sys (Synaptics Touchpad Driver/Synaptics, Inc.) AttachedDevice \Driver\Kbdclass \Device\KeyboardClass0 mouclass.sys (Mausklassentreiber/Microsoft Corporation) AttachedDevice \Driver\Kbdclass \Device\KeyboardClass1 SynTP.sys (Synaptics Touchpad Driver/Synaptics, Inc.) ---- Registry - GMER 1.0.15 ---- Reg HKLM\SYSTEM\CurrentControlSet\Services\BTHPORT\Parameters\Keys\0020e077f894 Reg HKLM\SYSTEM\CurrentControlSet\Services\BTHPORT\Parameters\Keys\0020e077f894@0016b86fd1ed 0xE1 0x29 0x28 0xB6 ... Reg HKLM\SYSTEM\CurrentControlSet\Services\BTHPORT\Parameters\Keys\0020e0796daa Reg HKLM\SYSTEM\ControlSet003\Services\BTHPORT\Parameters\Keys\0020e077f894 (not active ControlSet) Reg HKLM\SYSTEM\ControlSet003\Services\BTHPORT\Parameters\Keys\0020e077f894@0016b86fd1ed 0xE1 0x29 0x28 0xB6 ... Reg HKLM\SYSTEM\ControlSet003\Services\BTHPORT\Parameters\Keys\0020e0796daa (not active ControlSet) ---- EOF - GMER 1.0.15 ----Code:GMER 1.0.15.15281 - http://www.gmer.net Rootkit scan 2010-07-06 15:23:43 Windows 5.1.2600 Service Pack 3 Running: 9ks2mdfw.exe; Driver: C:\DOKUME~1\user\LOKALE~1\Temp\awroraog.sys ---- Modules - GMER 1.0.15 ---- Module PxHelp20.sys (Px Engine Device Driver for Windows 2000/XP/Sonic Solutions) F78B1000-F78BB000 (40960 bytes) Module pssnap.sys (Backup image protection/Macrium Software) F7AF1000-F7AF8000 (28672 bytes) Module \SystemRoot\system32\DRIVERS\ati2mtag.sys (ATI Radeon WindowsNT Miniport Driver/ATI Technologies Inc.) F7510000-F7635000 (1200128 bytes) Module \SystemRoot\system32\DRIVERS\e1000325.sys (Intel(R) PRO/1000 Adapter NDIS 5.1 deserialized driver/Intel Corporation) F74B0000-F74D8000 (163840 bytes) Module \SystemRoot\system32\DRIVERS\ar5211.sys (Driver for Atheros AR5001 Wireless Network Adapter/Atheros Communications, Inc.) F743C000-F74B0000 (475136 bytes) Module \SystemRoot\system32\DRIVERS\SynTP.sys (Synaptics Touchpad Driver/Synaptics, Inc.) F73FB000-F743C000 (266240 bytes) Module \SystemRoot\system32\DRIVERS\nscirda.sys (NSC Fast Infrared Driver./National Semiconductor Corporation) F7B81000-F7B88000 (28672 bytes) Module \SystemRoot\system32\DRIVERS\ibmpmdrv.sys (ThinkPad Power Management Driver/Lenovo.) F7D15000-F7D19000 (16384 bytes) Module \SystemRoot\system32\DRIVERS\GEARAspiWDM.sys (CD DVD Filter/GEAR Software Inc.) F7D1D000-F7D20000 (12288 bytes) Module \SystemRoot\system32\drivers\smwdm.sys (SoundMAX Integrated Digital Audio /Analog Devices, Inc.) F738E000-F73C4000 (221184 bytes) Module \SystemRoot\system32\drivers\aeaudio.sys (Andrea Audio Noise Cancellation Driver/Andrea Electronics Corporation) F734A000-F736A000 (131072 bytes) Module \SystemRoot\system32\DRIVERS\HSFHWICH.sys (HSFHWICH WDM driver/Conexant Systems, Inc.) F730D000-F734A000 (249856 bytes) Module \SystemRoot\system32\DRIVERS\HSF_DPV.sys (HSF_DP driver/Conexant Systems, Inc.) F721B000-F730D000 (991232 bytes) Module \SystemRoot\system32\DRIVERS\HSF_CNXT.sys (HSF_CNXT driver/Conexant Systems, Inc.) F7169000-F721B000 (729088 bytes) Module \SystemRoot\system32\DRIVERS\ptilink.sys (Parallel Technologies DirectParallel IO Library/Parallel Technologies, Inc.) F7BA1000-F7BA6000 (20480 bytes) Module \SystemRoot\System32\Drivers\pcouffin.sys (low level access layer for CD/DVD/BD devices/VSO Software) F78F1000-F78FD000 (49152 bytes) Module \SystemRoot\System32\drivers\truecrypt.sys (TrueCrypt Driver/TrueCrypt Foundation) BA6D7000-BA70A000 (208896 bytes) Module \SystemRoot\system32\DRIVERS\ssmdrv.sys (AVIRA SnapShot Driver/Avira GmbH) F7BF1000-F7BF7000 (24576 bytes) Module \SystemRoot\System32\Drivers\PQNTDrv.SYS (PowerQuest Boot Mode Driver./PowerQuest Corporation) F7E4F000-F7E50000 (4096 bytes) Module \SystemRoot\system32\DRIVERS\avipbb.sys (Avira Driver for Security Enhancement/Avira GmbH) BA52C000-BA54E000 (139264 bytes) Module \??\C:\Programme\Avira\AntiVir_Desktop\avgio.sys (Avira AntiVir Support for Minifilter/Avira GmbH) F7D89000-F7D8B000 (8192 bytes) Module \SystemRoot\System32\ati2dvag.dll (ATI Radeon WindowsNT Display Driver/ATI Technologies Inc.) BF012000-BF04E000 (245760 bytes) Module \SystemRoot\System32\ati2cqag.dll (Central Memory Manager / Queue Server Module/ATI Technologies Inc.) BF04E000-BF080000 (204800 bytes) Module \SystemRoot\System32\atikvmag.dll (Virtual Command And Memory Manager/ATI Technologies Inc.) BF080000-BF0B2000 (204800 bytes) Module \SystemRoot\System32\ati3duag.dll (ati3duag.dll/ATI Technologies Inc. ) BF0B2000-BF2E6000 (2310144 bytes) Module \SystemRoot\System32\ativvaxx.dll (Radeon Video Acceleration Universal Driver/ATI Technologies Inc. ) BF2E6000-BF37A000 (606208 bytes) Module \SystemRoot\System32\ATMFD.DLL (Windows NT OpenType/Type 1 Font Driver/Adobe Systems Incorporated) BFFA0000-BFFE6000 (286720 bytes) Module \SystemRoot\system32\DRIVERS\avgntflt.sys (Avira Minifilter Driver/Avira GmbH) B83BF000-B83D4000 (86016 bytes) Module \SystemRoot\System32\Drivers\adfs.SYS (Adobe Drive File System Driver/Adobe Systems, Inc.) B809B000-B80AC000 (69632 bytes) Module \SystemRoot\system32\DRIVERS\mdmxsdk.sys (Diagnostic Interface x86 Driver/Conexant) B7FE7000-B7FEB000 (16384 bytes) Module \??\C:\DOKUME~1\user\LOKALE~1\Temp\awroraog.sys (GMER) B7506000-B751D000 (94208 bytes) ---- Processes - GMER 1.0.15 ---- Process C:\WINDOWS\system32\Ati2evxx.exe (ATI External Event Utility EXE Module/ATI Technologies Inc.) 320 Library C:\WINDOWS\system32\Ati2evxx.exe (ATI External Event Utility EXE Module/ATI Technologies Inc.) 0x00400000 Library C:\WINDOWS\system32\Ati2edxx.dll (ati2edxx/ATI Technologies, Inc.) 0x00D30000 Process C:\Programme\Avira\AntiVir Desktop\avshadow.exe (AntiVir shadow copy service/Avira GmbH) 476 Library C:\Programme\Avira\AntiVir Desktop\avshadow.exe (AntiVir shadow copy service/Avira GmbH) 0x00400000 Library C:\Programme\Avira\AntiVir Desktop\avipc.dll (AVIRA IPC Library/Avira GmbH) 0x10000000 Process C:\Programme\Java\jre6\bin\jqs.exe (Java(TM) Quick Starter Service/Sun Microsystems, Inc.) 552 Library C:\Programme\Java\jre6\bin\jqs.exe (Java(TM) Quick Starter Service/Sun Microsystems, Inc.) 0x00400000 Process C:\Programme\Macrium\Reflect\ReflectService.exe 680 Library C:\Programme\Macrium\Reflect\ReflectService.exe 0x00400000 Process C:\WINDOWS\system32\winlogon.exe (Windows NT-Anmeldung/Microsoft Corporation) 724 Library C:\WINDOWS\system32\Ati2evxx.dll (ATI External Event Utility DLL Module/ATI Technologies Inc.) 0x10000000 Process C:\WINDOWS\Explorer.EXE (Windows Explorer/Microsoft Corporation) 900 Library C:\WINDOWS\system32\SynTPFcs.dll (SynTPFcs/Synaptics, Inc.) 0x63000000 Library C:\Programme\Gemeinsame Dateien\Adobe\Adobe Drive CS4\AdobeDriveCS4_NP.dll (Adobe Drive Network Provider/Adobe Systems Incorporated) 0x10000000 Process C:\Programme\Analog Devices\SoundMAX\SMAgent.exe (SoundMAX service agent component/Analog Devices, Inc.) 904 Library C:\Programme\Analog Devices\SoundMAX\SMAgent.exe (SoundMAX service agent component/Analog Devices, Inc.) 0x00400000 Process C:\WINDOWS\system32\ibmpmsvc.exe (ThinkPad Power Management Service/Lenovo) 948 Library C:\WINDOWS\system32\ibmpmsvc.exe (ThinkPad Power Management Service/Lenovo) 0x01000000 Process C:\WINDOWS\system32\Ati2evxx.exe (ATI External Event Utility EXE Module/ATI Technologies Inc.) 976 Library C:\WINDOWS\system32\Ati2evxx.exe (ATI External Event Utility EXE Module/ATI Technologies Inc.) 0x00400000 Library C:\WINDOWS\system32\Ati2edxx.dll (ati2edxx/ATI Technologies, Inc.) 0x00BD0000 Process C:\WINDOWS\system32\svchost.exe (Generic Host Process for Win32 Services/Microsoft Corporation) 1060 Library C:\Programme\Bonjour\mdnsNSP.dll (Bonjour Namespace Provider/Apple Inc.) 0x16080000 Process C:\WINDOWS\System32\svchost.exe (Generic Host Process for Win32 Services/Microsoft Corporation) 1100 Library C:\Programme\Bonjour\mdnsNSP.dll (Bonjour Namespace Provider/Apple Inc.) 0x16080000 Process C:\WINDOWS\system32\notepad.exe (Editor/Microsoft Corporation) 1116 Library C:\WINDOWS\system32\SynTPFcs.dll (SynTPFcs/Synaptics, Inc.) 0x63000000 Process C:\WINDOWS\system32\spoolsv.exe (Spooler SubSystem App/Microsoft Corporation) 1564 Library C:\WINDOWS\system32\pdfports.dll (Acrobat ® PDF Port/Adobe Systems Incorporated.) 0x50400000 Library C:\Programme\Adobe\Acrobat 5.0\Distillr\adistres.dll 0x65000000 Library C:\WINDOWS\System32\spool\PRTPROCS\W32X86\filterpipelineprintproc.dll (Print Filter Pipeline Proxy/Microsoft Corporation) 0x3F420000 Library C:\Programme\Bonjour\mdnsNSP.dll (Bonjour Namespace Provider/Apple Inc.) 0x16080000 Process C:\Programme\Avira\AntiVir Desktop\sched.exe (Antivirus Scheduler/Avira GmbH) 1604 Library C:\Programme\Avira\AntiVir Desktop\sched.exe (Antivirus Scheduler/Avira GmbH) 0x00400000 Library C:\Programme\Avira\AntiVir Desktop\schedr.dll (avschdr Dynamic Link Library/Avira GmbH) 0x10000000 Library C:\Programme\Avira\AntiVir Desktop\avevtlog.dll (Event Logger/Avira GmbH) 0x00B90000 Library C:\Programme\Avira\AntiVir Desktop\cfglib.dll (Antivirus configuration library/Avira GmbH) 0x00CF0000 Library C:\Programme\Avira\AntiVir Desktop\sqlite3.dll 0x00D10000 Process C:\WINDOWS\System32\svchost.exe (Generic Host Process for Win32 Services/Microsoft Corporation) 1864 Library c:\programme\gemeinsame dateien\akamai\rswin_3725.dll 0x10000000 Library C:\Programme\Bonjour\mdnsNSP.dll (Bonjour Namespace Provider/Apple Inc.) 0x16080000 Process C:\Programme\Avira\AntiVir Desktop\avguard.exe (Antivirus On-Access Service/Avira GmbH) 1876 Library C:\Programme\Avira\AntiVir Desktop\avguard.exe (Antivirus On-Access Service/Avira GmbH) 0x00400000 Library C:\Programme\Avira\AntiVir Desktop\libdb44.dll (Berkeley DB 4.4 DLL/Sleepycat Software) 0x13000000 Library C:\Programme\Avira\AntiVir Desktop\AVEvtLog.dll (Event Logger/Avira GmbH) 0x10000000 Library C:\Programme\Avira\AntiVir Desktop\guardmsg.dll (AVGuard Messages (Deutsch)/Avira GmbH) 0x00D40000 Library C:\Programme\Avira\AntiVir Desktop\cfglib.dll (Antivirus configuration library/Avira GmbH) 0x00D60000 Library C:\Programme\Avira\AntiVir Desktop\sqlite3.dll 0x00D80000 Library C:\Programme\Avira\AntiVir Desktop\AVPREF.DLL (Prefix DLL/Avira GmbH) 0x00EF0000 Library C:\Programme\Avira\AntiVir Desktop\avsmtp.dll (Antivirus email sender library/Avira GmbH) 0x00F10000 Library C:\Programme\Bonjour\mdnsNSP.dll (Bonjour Namespace Provider/Apple Inc.) 0x16080000 Library C:\Programme\Avira\AntiVir Desktop\AVGIO.DLL (On-access scan support/Avira GmbH) 0x00F90000 Library C:\Programme\Avira\AntiVir Desktop\aecore.dll (AntiVir Engine Module for Windows/Avira GmbH) 0x010C0000 Library C:\Programme\Avira\AntiVir Desktop\aevdf.dll (AntiVir Engine Module for Windows/Avira GmbH) 0x01110000 Library C:\Programme\Avira\AntiVir Desktop\aescript.dll (AntiVir Engine Module for Windows/Avira GmbH) 0x01140000 Library C:\Programme\Avira\AntiVir Desktop\aescn.dll (AntiVir Engine Module for Windows/Avira GmbH) 0x012A0000 Library C:\Programme\Avira\AntiVir Desktop\aesbx.dll (AntiVir Engine Module for Windows/Avira GmbH) 0x012D0000 Library C:\Programme\Avira\AntiVir Desktop\aerdl.dll (AntiVir Engine Module for Windows/Avira GmbH) 0x01320000 Library C:\Programme\Avira\AntiVir Desktop\aepack.dll (AntiVir Engine Module for Windows/Avira GmbH) 0x015C0000 Library C:\Programme\Avira\AntiVir Desktop\unacev2.dll (UNACE Dynamic Link Library/ACE Compression Software) 0x01640000 Library C:\Programme\Avira\AntiVir Desktop\aeoffice.dll (AntiVir Engine Module for Windows/Avira GmbH) 0x016A0000 Library C:\Programme\Avira\AntiVir Desktop\aeheur.dll (AntiVir Engine Module for Windows/Avira GmbH) 0x016F0000 Library C:\Programme\Avira\AntiVir Desktop\aehelp.dll (AntiVir Engine Module for Windows/Avira GmbH) 0x019A0000 Library C:\Programme\Avira\AntiVir Desktop\aegen.dll (AntiVir Engine Module for Windows/Avira GmbH) 0x019F0000 Library C:\Programme\Avira\AntiVir Desktop\aeemu.dll (AntiVir Engine Module for Windows/Avira GmbH) 0x01A60000 Library C:\Programme\Avira\AntiVir Desktop\aebb.dll (AntiVir Engine Module for Windows/Avira GmbH) 0x01AE0000 Library C:\Programme\Avira\AntiVir Desktop\avipc.dll (AVIRA IPC Library/Avira GmbH) 0x01D60000 Process C:\Programme\Gemeinsame Dateien\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe (Apple Mobile Device Service/Apple Inc.) 1896 Library C:\Programme\Gemeinsame Dateien\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe (Apple Mobile Device Service/Apple Inc.) 0x00400000 Process C:\Programme\Bonjour\mDNSResponder.exe (Bonjour Service/Apple Inc.) 1916 Library C:\Programme\Bonjour\mDNSResponder.exe (Bonjour Service/Apple Inc.) 0x00400000 Process C:\Programme\Analog Devices\SoundMAX\SMax4PNP.exe (SMax4PNP MFC Application/Analog Devices, Inc.) 1952 Library C:\Programme\Analog Devices\SoundMAX\SMax4PNP.exe (SMax4PNP MFC Application/Analog Devices, Inc.) 0x00400000 Library C:\Programme\Analog Devices\SoundMAX\SMWDMIF.dll (SMWDM Interface DLL/Analog Devices, Inc.) 0x10000000 Library C:\WINDOWS\system32\SynTPFcs.dll (SynTPFcs/Synaptics, Inc.) 0x63000000 Process C:\WINDOWS\system32\DRIVERS\CDANTSRV.EXE (C-Dilla RTS Service/C-Dilla Ltd) 2024 Library C:\WINDOWS\system32\DRIVERS\CDANTSRV.EXE (C-Dilla RTS Service/C-Dilla Ltd) 0x00400000 Process C:\Programme\iTunes\iTunesHelper.exe (iTunesHelper Module/Apple Inc.) 2076 Library C:\Programme\iTunes\iTunesHelper.exe (iTunesHelper Module/Apple Inc.) 0x00400000 Library C:\Programme\iTunes\iTunesHelper.Resources\de.lproj\iTunesHelperLocalized.DLL (iTunesHelper Ressourcebibliothek/Apple Inc.) 0x10000000 Library C:\Programme\iTunes\iTunesHelper.Resources\iTunesHelper.DLL (iTunesHelper Resource Library/Apple Inc.) 0x003F0000 Library C:\Programme\QuickTime\QTSystem\QuickTime.qts (QuickTime/Apple Inc.) 0x66800000 Library C:\Programme\QuickTime\QTSystem\QTCF.dll (QuickTime CoreFoundation/Apple Inc.) 0x68A40000 Library C:\Programme\Gemeinsame Dateien\Apple\Apple Application Support\CoreFoundation.dll (CoreFoundation/Apple Inc.) 0x01130000 Library C:\Programme\Gemeinsame Dateien\Apple\Apple Application Support\pthreadVC2.dll (POSIX Threads for Windows32 Library/Open Source Software community project) 0x010C0000 Library C:\Programme\Gemeinsame Dateien\Apple\Apple Application Support\objc.dll (Objective-C Runtime Library/Apple Inc.) 0x010D0000 Library C:\Programme\Gemeinsame Dateien\Apple\Apple Application Support\icuin40.dll (IBM ICU I18N DLL/IBM Corporation and others) 0x01200000 Library C:\Programme\Gemeinsame Dateien\Apple\Apple Application Support\icuuc40.dll (IBM ICU Common DLL/IBM Corporation and others) 0x01300000 Library C:\Programme\Gemeinsame Dateien\Apple\Apple Application Support\icudt40.dll (ICU Data DLL/IBM Corporation and others) 0x4AD00000 Library C:\Programme\Gemeinsame Dateien\Apple\Apple Application Support\ASL.dll 0x013F0000 Library C:\Programme\Gemeinsame Dateien\Apple\Apple Application Support\CFNetwork.DLL (CFNetwork/Apple, Inc.) 0x017E0000 Library C:\Programme\Gemeinsame Dateien\Apple\Apple Application Support\SQLite3.dll (SQLite3 Dynamic Link Library/Apple Inc.) 0x01890000 Library C:\Programme\Gemeinsame Dateien\Apple\Apple Application Support\zlib1.dll 0x01910000 Library C:\WINDOWS\system32\SynTPFcs.dll (SynTPFcs/Synaptics, Inc.) 0x63000000 Library C:\Programme\Gemeinsame Dateien\Apple\Mobile Device Support\bin\iTunesMobileDevice.dll (iTunesMobileDevice/Apple Inc.) 0x05FB0000 Process C:\Programme\Synaptics\SynTP\SynTPLpr.exe (TouchPad Driver Helper Application/Synaptics, Inc.) 2096 Library C:\Programme\Synaptics\SynTP\SynTPLpr.exe (TouchPad Driver Helper Application/Synaptics, Inc.) 0x00400000 Library C:\WINDOWS\system32\SynTPFcs.dll (SynTPFcs/Synaptics, Inc.) 0x63000000 Process C:\Programme\Synaptics\SynTP\SynTPEnh.exe (Synaptics TouchPad Enhancements/Synaptics, Inc.) 2104 Library C:\Programme\Synaptics\SynTP\SynTPEnh.exe (Synaptics TouchPad Enhancements/Synaptics, Inc.) 0x00400000 Library C:\WINDOWS\system32\SynTPAPI.dll (SynTPAPI/Synaptics, Inc.) 0x63010000 Library C:\WINDOWS\system32\SynTPFcs.dll (SynTPFcs/Synaptics, Inc.) 0x01000000 Process C:\Programme\Avira\AntiVir Desktop\avgnt.exe (Antivirus System Tray Tool/Avira GmbH) 2124 Library C:\Programme\Avira\AntiVir Desktop\avgnt.exe (Antivirus System Tray Tool/Avira GmbH) 0x00400000 Library C:\Programme\Avira\AntiVir Desktop\ccwkrlib.dll (Antivirus Control Center Common Worker Library/Avira GmbH) 0x10000000 Library c:\programme\avira\antivir desktop\cfglib.dll (Antivirus configuration library/Avira GmbH) 0x003E0000 Library C:\WINDOWS\system32\SynTPFcs.dll (SynTPFcs/Synaptics, Inc.) 0x63000000 Library c:\programme\avira\antivir desktop\ccgen.dll (Control Center General Plugin/Avira GmbH) 0x00F90000 Library c:\programme\avira\antivir desktop\ccgenrc.dll (Control Center General Plugin Resources/Avira GmbH) 0x01090000 Library c:\programme\avira\antivir desktop\ccguard.dll (Control Center Guard Plugin/Avira GmbH) 0x012B0000 Library c:\programme\avira\antivir desktop\ccgrdrc.dll (Control Center Guard Plugin Resources/Avira GmbH) 0x01340000 Library c:\programme\avira\antivir desktop\ccgrdw.dll (Control Center Guard Worker Plugin/Avira GmbH) 0x01360000 Library C:\Programme\Avira\AntiVir Desktop\avipc.dll (AVIRA IPC Library/Avira GmbH) 0x01390000 Library c:\programme\avira\antivir desktop\ccupdate.dll (Control Center Updater Plugin/Avira GmbH) 0x013C0000 Library c:\programme\avira\antivir desktop\ccupdrc.dll (Control Center Updater Plugin Resources/Avira GmbH) 0x01430000 Library c:\programme\avira\antivir desktop\cclic.dll (Control Center License Plugin/Avira GmbH) 0x01570000 Library c:\programme\avira\antivir desktop\cclicrc.dll (Control Center License Plugin Resources/Avira GmbH) 0x015A0000 Library c:\programme\avira\antivir desktop\ccmsg.dll (Control Center Message Plugin/Avira GmbH) 0x015C0000 Library c:\programme\avira\antivir desktop\ccmsgrc.dll (Control Center MSG Plugin Resources/Avira GmbH) 0x01630000 Library C:\Programme\Avira\AntiVir Desktop\rcimage.dll (Avira AntiVir PersonalEdition Classic Master Resource File (English)/Avira GmbH) 0x01950000 Library c:\programme\avira\antivir desktop\ccmainrc.dll (Control Center Resources/Avira GmbH) 0x01C10000 Process C:\Programme\Gemeinsame Dateien\Java\Java Update\jusched.exe (Java(TM) Update Scheduler/Sun Microsystems, Inc.) 2140 Library C:\Programme\Gemeinsame Dateien\Java\Java Update\jusched.exe (Java(TM) Update Scheduler/Sun Microsystems, Inc.) 0x00400000 Process C:\WINDOWS\system32\ctfmon.exe (CTF Loader/Microsoft Corporation) 2340 Library C:\WINDOWS\system32\SynTPFcs.dll (SynTPFcs/Synaptics, Inc.) 0x63000000 Process C:\Programme\Adobe\Acrobat 5.0\Distillr\AcroTray.exe (AcroTray/Adobe Systems Inc.) 2500 Library C:\Programme\Adobe\Acrobat 5.0\Distillr\AcroTray.exe (AcroTray/Adobe Systems Inc.) 0x00400000 Library C:\WINDOWS\system32\SynTPFcs.dll (SynTPFcs/Synaptics, Inc.) 0x63000000 Process C:\Programme\Digital Line Detect\DLG.exe (Digital Line Detection/Avanquest Software ) 2564 Library C:\Programme\Digital Line Detect\DLG.exe (Digital Line Detection/Avanquest Software ) 0x00400000 Library C:\Programme\Digital Line Detect\BVRPDIAG.dll (BVRP Diagnostics/BVRP Software) 0x10000000 Library C:\WINDOWS\system32\MdmXSdk.dll (Diagnostic Interface x86 DLL/Conexant) 0x00900000 Library C:\WINDOWS\system32\SynTPFcs.dll (SynTPFcs/Synaptics, Inc.) 0x63000000 Process C:\Programme\iPod\bin\iPodService.exe (iPodService Module/Apple Inc.) 3328 Library C:\Programme\iPod\bin\iPodService.exe (iPodService Module/Apple Inc.) 0x00400000 Library C:\Programme\iPod\bin\iPodService.Resources\de.lproj\iPodServiceLocalized.DLL (iPodService Ressourcen-Bibliothek/Apple Inc.) 0x10000000 Library C:\Programme\iPod\bin\iPodService.Resources\iPodService.DLL (iPodService Resource Library/Apple Inc.) 0x008A0000 Process C:\Dokumente und Einstellungen\user\Desktop\9ks2mdfw.exe 3640 Library C:\Dokumente und Einstellungen\user\Desktop\9ks2mdfw.exe 0x00400000 Library C:\WINDOWS\system32\SynTPFcs.dll (SynTPFcs/Synaptics, Inc.) 0x63000000 ---- Services - GMER 1.0.15 ---- Service (Adobe Drive File System Driver/Adobe Systems, Inc.) [AUTO] adfs Service AdobeDriveCS4_NP Service C:\WINDOWS\system32\drivers\aeaudio.sys (Andrea Audio Noise Cancellation Driver/Andrea Electronics Corporation) [MANUAL] aeaudio Service C:\Programme\Avira\AntiVir Desktop\sched.exe (Antivirus Scheduler/Avira GmbH) [AUTO] AntiVirSchedulerService Service C:\Programme\Avira\AntiVir Desktop\avguard.exe (Antivirus On-Access Service/Avira GmbH) [AUTO] AntiVirService Service C:\Programme\Gemeinsame Dateien\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe (Apple Mobile Device Service/Apple Inc.) [AUTO] Apple Mobile Device Service C:\WINDOWS\system32\DRIVERS\ar5211.sys (Driver for Atheros AR5001 Wireless Network Adapter/Atheros Communications, Inc.) [MANUAL] AR5211 Service C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [DISABLED] aspnet_state Service C:\WINDOWS\system32\Ati2evxx.exe (ATI External Event Utility EXE Module/ATI Technologies Inc.) [AUTO] Ati HotKey Poller Service C:\WINDOWS\system32\DRIVERS\ati2mtag.sys (ATI Radeon WindowsNT Miniport Driver/ATI Technologies Inc.) [MANUAL] ati2mtag Service Atierecord Service C:\Programme\Avira\AntiVir Desktop\avgio.sys (Avira AntiVir Support for Minifilter/Avira GmbH) [SYSTEM] avgio Service C:\WINDOWS\system32\DRIVERS\avgntflt.sys (Avira Minifilter Driver/Avira GmbH) [AUTO] avgntflt Service C:\WINDOWS\system32\DRIVERS\avipbb.sys (Avira Driver for Security Enhancement/Avira GmbH) [SYSTEM] avipbb Service C:\Programme\Bonjour\mDNSResponder.exe (Bonjour Service/Apple Inc.) [AUTO] Bonjour Service Service C:\WINDOWS\system32\drivers\CDANT.SYS (C-Dilla Windows NT RTS/Macrovision) [MANUAL] C-Dilla Service C:\WINDOWS\system32\DRIVERS\CDANTSRV.EXE (C-Dilla RTS Service/C-Dilla Ltd) [AUTO] C-DillaSrv Service C:\WINDOWS\system32\DRIVERS\e1000325.sys (Intel(R) PRO/1000 Adapter NDIS 5.1 deserialized driver/Intel Corporation) [MANUAL] E1000 Service C:\Programme\Gemeinsame Dateien\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe (Activation Licensing Service/Acresso Software Inc.) [MANUAL] FLEXnet Licensing Service Service C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys (CD DVD Filter/GEAR Software Inc.) [MANUAL] GEARAspiWDM Service C:\Programme\Google\Update\GoogleUpdate.exe (Google Installer/Google Inc.) [AUTO] gupdate1c9e2fa79fa510 Service C:\Programme\Google\Common\Google Updater\GoogleUpdaterService.exe (gusvc/Google) [AUTO] gusvc Service C:\WINDOWS\system32\DRIVERS\HSFHWICH.sys (HSFHWICH WDM driver/Conexant Systems, Inc.) [MANUAL] HSFHWICH Service C:\WINDOWS\system32\DRIVERS\HSF_DPV.sys (HSF_DP driver/Conexant Systems, Inc.) [MANUAL] HSF_DPV Service C:\WINDOWS\system32\DRIVERS\ibmpmdrv.sys (ThinkPad Power Management Driver/Lenovo.) [MANUAL] IBMPMDRV Service C:\WINDOWS\system32\ibmpmsvc.exe (ThinkPad Power Management Service/Lenovo) [AUTO] IBMPMSVC Service system32\drivers\InCDFs.sys [DISABLED] InCDFs Service system32\drivers\InCDPass.sys [SYSTEM] InCDPass Service system32\drivers\InCDRm.sys [SYSTEM] InCDRm Service C:\Programme\iPod\bin\iPodService.exe (iPodService Module/Apple Inc.) [MANUAL] iPod Service Service C:\Programme\Java\jre6\bin\jqs.exe (Java(TM) Quick Starter Service/Sun Microsystems, Inc.) [AUTO] JavaQuickStarterService Service C:\WINDOWS\system32\DRIVERS\mdmxsdk.sys (Diagnostic Interface x86 Driver/Conexant) [AUTO] mdmxsdk Service MSDTC Bridge 3.0.0.0 Service C:/xampp/mysql/bin/mysqld-shareware.exe [AUTO] MySql Service C:\WINDOWS\system32\DRIVERS\nscirda.sys (NSC Fast Infrared Driver./National Semiconductor Corporation) [MANUAL] NSCIRDA Service C:\WINDOWS\System32\Drivers\pcouffin.sys (low level access layer for CD/DVD/BD devices/VSO Software) [MANUAL] pcouffin Service (PowerQuest Boot Mode Driver./PowerQuest Corporation) [SYSTEM] PQNTDrv Service C:\WINDOWS\system32\DRIVERS\pssnap.sys (Backup image protection/Macrium Software) [BOOT] pssnap Service C:\WINDOWS\system32\DRIVERS\ptilink.sys (Parallel Technologies DirectParallel IO Library/Parallel Technologies, Inc.) [MANUAL] Ptilink Service C:\WINDOWS\System32\Drivers\PxHelp20.sys (Px Engine Device Driver for Windows 2000/XP/Sonic Solutions) [BOOT] PxHelp20 Service C:\Programme\Macrium\Reflect\ReflectService.exe [AUTO] ReflectService Service C:\WINDOWS\system32\DRIVERS\secdrv.sys (Macrovision SECURITY Driver/Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.) [MANUAL] Secdrv Service ServiceModelEndpoint 3.0.0.0 Service ServiceModelOperation 3.0.0.0 Service ServiceModelService 3.0.0.0 Service SMSvcHost 3.0.0.0 Service C:\WINDOWS\system32\drivers\smwdm.sys (SoundMAX Integrated Digital Audio /Analog Devices, Inc.) [MANUAL] smwdm Service C:\Programme\Analog Devices\SoundMAX\SMAgent.exe (SoundMAX service agent component/Analog Devices, Inc.) [AUTO] SoundMAX Agent Service (default) Service C:\WINDOWS\system32\DRIVERS\ssmdrv.sys (AVIRA SnapShot Driver/Avira GmbH) [SYSTEM] ssmdrv Service C:\WINDOWS\system32\DRIVERS\SynTP.sys (Synaptics Touchpad Driver/Synaptics, Inc.) [MANUAL] SynTP Service C:\WINDOWS\System32\drivers\truecrypt.sys (TrueCrypt Driver/TrueCrypt Foundation) [SYSTEM] truecrypt Service C:\WINDOWS\system32\DRIVERS\HSF_CNXT.sys (HSF_CNXT driver/Conexant Systems, Inc.) [MANUAL] winachsf Service Wmi ---- EOF - GMER 1.0.15 ----dann bin ich mir der Anleitung so weit mal durch. Ich freue mich, wenn sich einer meiner Problematik annimmt und hoffe, dass etwas leicht zu reparierendes gefunden wird.Code:$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$ º º hjtscanlist v2.0 º º $$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$ Microsoft Windows XP [Version 5.1.2600] C: C:\hiberfil.sys --------- C:\pagefile.sys --------- 06.07.2010 14:11 C:\rsit --------- 0 01.07.2010 13:22 C:\WINDOWS --------- 0 23.06.2010 19:51 C:\Programme --------- 0 11.05.2010 21:49 C:\xampp --------- 0 23.04.2010 10:33 C:\boot.ini --------- 211 22.04.2010 13:56 C:\Python26 --------- 0 11.04.2010 21:56 C:\linuxhilfe --------- 0 25.09.2009 19:15 C:\Dokumente und Einstellungen --------- 0 29.12.2008 23:01 C:\Program Files --------- 0 22.12.2008 12:41 C:\ntldr --------- 251712 19.12.2008 10:29 C:\RECYCLER --------- 0 30.11.2008 00:05 C:\C_DILLA --------- 0 29.11.2008 23:55 C:\Temp --------- 0 10.03.2008 13:13 C:\DRIVERS --------- 0 10.03.2008 12:51 C:\System Volume Information --------- 0 10.03.2008 12:40 C:\CONFIG.SYS --------- 0 10.03.2008 12:40 C:\IO.SYS --------- 0 10.03.2008 12:40 C:\MSDOS.SYS --------- 0 10.03.2008 12:40 C:\AUTOEXEC.BAT --------- 0 04.08.2004 14:00 C:\NTDETECT.COM --------- 47564 04.08.2004 14:00 C:\bootfont.bin --------- 4952 ---------------------------------------- C:\WINDOWS 06.07.2010 14:57 C:\WINDOWS\WindowsUpdate.log --------- 1517833 06.07.2010 14:57 C:\WINDOWS\wiadebug.log --------- 159 06.07.2010 14:57 C:\WINDOWS\wiaservc.log --------- 50 06.07.2010 14:56 C:\WINDOWS\0.log --------- 0 06.07.2010 14:56 C:\WINDOWS\bootstat.dat --------- 2048 06.07.2010 14:55 C:\WINDOWS\SchedLgU.Txt --------- 32592 05.07.2010 12:31 C:\WINDOWS\winamp.ini --------- 95 04.07.2010 21:54 C:\WINDOWS\NeroDigital.ini --------- 69 01.07.2010 02:04 C:\WINDOWS\autogk.ini --------- 274 23.04.2010 10:33 C:\WINDOWS\win.ini --------- 651 23.04.2010 10:33 C:\WINDOWS\system.ini --------- 227 21.04.2010 14:16 C:\WINDOWS\my.ini --------- 489 16.12.2009 03:30 C:\WINDOWS\UnDeploy.exe --------- 65776 19.09.2009 00:15 C:\WINDOWS\scunin.dat --------- 11802 19.09.2009 00:15 C:\WINDOWS\ScUnin.pif --------- 967 19.09.2009 00:15 C:\WINDOWS\ScUnin.exe --------- 68096 06.08.2009 09:21 C:\WINDOWS\ModemLog_ThinkPad Integrated 56K Modem.txt --------- 4158 11.01.2009 12:53 C:\WINDOWS\COOLSYS.INI --------- 0 11.01.2009 12:53 C:\WINDOWS\COOL.INI --------- 8593 11.01.2009 12:53 C:\WINDOWS\coolcust.ini --------- 11233 30.12.2008 23:05 C:\WINDOWS\WMSysPr8.prx --------- 156910 22.12.2008 12:53 C:\WINDOWS\WMSysPr9.prx --------- 316640 20.12.2008 19:16 C:\WINDOWS\ODBC.INI --------- 376 30.11.2008 00:04 C:\WINDOWS\CDILLA64.EXE --------- 60416 30.11.2008 00:04 C:\WINDOWS\CDILLA40.DLL --------- 55376 30.11.2008 00:04 C:\WINDOWS\CDILLA16.EXE --------- 7056 30.11.2008 00:04 C:\WINDOWS\CDILLA05.DLL --------- 63344 30.11.2008 00:04 C:\WINDOWS\CDILLA10.EXE --------- 23856 30.11.2008 00:04 C:\WINDOWS\CDILLA32.DLL --------- 260096 30.11.2008 00:04 C:\WINDOWS\CDILLA13.DLL --------- 45056 27.11.2008 23:14 C:\WINDOWS\nsreg.dat --------- 0 14.04.2008 04:23 C:\WINDOWS\winhlp32.exe --------- 288768 14.04.2008 04:23 C:\WINDOWS\slrundll.exe --------- 32866 14.04.2008 04:22 C:\WINDOWS\regedit.exe --------- 153600 14.04.2008 04:22 C:\WINDOWS\notepad.exe --------- 70144 14.04.2008 04:22 C:\WINDOWS\hh.exe --------- 10752 14.04.2008 04:22 C:\WINDOWS\explorer.exe --------- 1036800 14.04.2008 04:22 C:\WINDOWS\twain_32.dll --------- 50688 10.03.2008 12:43 C:\WINDOWS\REGLOCS.OLD --------- 8192 10.03.2008 12:40 C:\WINDOWS\control.ini --------- 0 10.03.2008 12:40 C:\WINDOWS\ODBCINST.INI --------- 4161 10.03.2008 12:39 C:\WINDOWS\WindowsShell.Manifest --------- 749 10.03.2008 12:37 C:\WINDOWS\vb.ini --------- 36 10.03.2008 12:37 C:\WINDOWS\vbaddin.ini --------- 37 10.03.2008 12:23 C:\WINDOWS\Sti_Trace.log --------- 0 28.12.2006 21:01 C:\WINDOWS\002583_.tmp --------- 19569 04.08.2004 14:00 C:\WINDOWS\SET3.tmp --------- 1014663 04.08.2004 14:00 C:\WINDOWS\SET4.tmp --------- 1086058 04.08.2004 14:00 C:\WINDOWS\SET8.tmp --------- 14043 04.08.2004 14:00 C:\WINDOWS\Rhododendron.bmp --------- 17362 04.08.2004 14:00 C:\WINDOWS\Seifenblase.bmp --------- 65978 04.08.2004 14:00 C:\WINDOWS\Pr„riewind.bmp --------- 65954 04.08.2004 14:00 C:\WINDOWS\TASKMAN.EXE --------- 15872 04.08.2004 14:00 C:\WINDOWS\twain.dll --------- 94800 04.08.2004 14:00 C:\WINDOWS\Feder.bmp --------- 16730 04.08.2004 14:00 C:\WINDOWS\twunk_16.exe --------- 49680 04.08.2004 14:00 C:\WINDOWS\twunk_32.exe --------- 25600 04.08.2004 14:00 C:\WINDOWS\Kaffeetasse.bmp --------- 17062 04.08.2004 14:00 C:\WINDOWS\desktop.ini --------- 2 04.08.2004 14:00 C:\WINDOWS\wmprfDEU.prx --------- 34818 04.08.2004 14:00 C:\WINDOWS\F„cher.bmp --------- 26680 04.08.2004 14:00 C:\WINDOWS\Granit.bmp --------- 26582 04.08.2004 14:00 C:\WINDOWS\vmmreg32.dll --------- 18944 04.08.2004 14:00 C:\WINDOWS\msdfmap.ini --------- 1405 04.08.2004 14:00 C:\WINDOWS\clock.avi --------- 82944 04.08.2004 14:00 C:\WINDOWS\Blaue Spitzen 16.bmp --------- 1272 04.08.2004 14:00 C:\WINDOWS\Angler.bmp --------- 17336 04.08.2004 14:00 C:\WINDOWS\Zapotek.bmp --------- 9522 04.08.2004 14:00 C:\WINDOWS\Santa Fe-Stuck.bmp --------- 65832 04.08.2004 14:00 C:\WINDOWS\winhelp.exe --------- 257568 04.08.2004 14:00 C:\WINDOWS\explorer.scf --------- 80 04.08.2004 14:00 C:\WINDOWS\winnt.bmp --------- 48680 04.08.2004 14:00 C:\WINDOWS\winnt256.bmp --------- 48680 04.08.2004 14:00 C:\WINDOWS\_default.pif --------- 707 03.06.2002 09:49 C:\WINDOWS\uninst.exe --------- 299520 17.11.1998 14:44 C:\WINDOWS\IsUn0407.exe --------- 328704 29.10.1998 17:45 C:\WINDOWS\ISUninst.exe --------- 306688 30.04.1998 15:56 C:\WINDOWS\UNWISE.EXE --------- 129024 ---------------------------------------- C:\WINDOWS\System 14.04.2008 04:23 C:\WINDOWS\System\winspool.drv --------- 146944 04.08.2004 14:00 C:\WINDOWS\System\AVIFILE.DLL --------- 109504 04.08.2004 14:00 C:\WINDOWS\System\COMMDLG.DLL --------- 33744 04.08.2004 14:00 C:\WINDOWS\System\KEYBOARD.DRV --------- 2000 04.08.2004 14:00 C:\WINDOWS\System\LZEXPAND.DLL --------- 9936 04.08.2004 14:00 C:\WINDOWS\System\MCIAVI.DRV --------- 73760 04.08.2004 14:00 C:\WINDOWS\System\MCISEQ.DRV --------- 25296 04.08.2004 14:00 C:\WINDOWS\System\MCIWAVE.DRV --------- 28160 04.08.2004 14:00 C:\WINDOWS\System\MMSYSTEM.DLL --------- 69632 04.08.2004 14:00 C:\WINDOWS\System\MMTASK.TSK --------- 1152 04.08.2004 14:00 C:\WINDOWS\System\MOUSE.DRV --------- 2032 04.08.2004 14:00 C:\WINDOWS\System\AVICAP.DLL --------- 70368 04.08.2004 14:00 C:\WINDOWS\System\OLECLI.DLL --------- 82944 04.08.2004 14:00 C:\WINDOWS\System\OLESVR.DLL --------- 24064 04.08.2004 14:00 C:\WINDOWS\System\setup.inf --------- 59167 04.08.2004 14:00 C:\WINDOWS\System\SHELL.DLL --------- 5120 04.08.2004 14:00 C:\WINDOWS\System\SOUND.DRV --------- 1744 04.08.2004 14:00 C:\WINDOWS\System\stdole.tlb --------- 5532 04.08.2004 14:00 C:\WINDOWS\System\SYSTEM.DRV --------- 3360 04.08.2004 14:00 C:\WINDOWS\System\TAPI.DLL --------- 19200 04.08.2004 14:00 C:\WINDOWS\System\TIMER.DRV --------- 4048 04.08.2004 14:00 C:\WINDOWS\System\VER.DLL --------- 9200 04.08.2004 14:00 C:\WINDOWS\System\VGA.DRV --------- 2176 04.08.2004 14:00 C:\WINDOWS\System\WFWNET.DRV --------- 13600 04.08.2004 14:00 C:\WINDOWS\System\MSVIDEO.DLL --------- 127104 ---------------------------------------- C:\WINDOWS\System32 06.07.2010 14:57 C:\WINDOWS\system32\CatRoot2 --------- 0 04.07.2010 13:21 C:\WINDOWS\system32\wpa.dbl --------- 2422 21.06.2010 20:08 C:\WINDOWS\system32\NtmsData --------- 0 11.06.2010 12:54 C:\WINDOWS\system32\FNTCACHE.DAT --------- 1993480 11.06.2010 12:50 C:\WINDOWS\system32\dllcache --------- 0 28.05.2010 21:37 C:\WINDOWS\system32\MRT.exe --------- 32472008 26.05.2010 10:12 C:\WINDOWS\system32\TZLog.log --------- 224892 07.05.2010 17:08 C:\WINDOWS\system32\drivers --------- 0 07.05.2010 17:06 C:\WINDOWS\system32\perfh009.dat --------- 342014 07.05.2010 17:06 C:\WINDOWS\system32\perfc009.dat --------- 52530 07.05.2010 17:06 C:\WINDOWS\system32\perfh007.dat --------- 353002 07.05.2010 17:06 C:\WINDOWS\system32\perfc007.dat --------- 63924 07.05.2010 17:06 C:\WINDOWS\system32\PerfStringBackup.INI --------- 819552 06.05.2010 12:31 C:\WINDOWS\system32\wininet.dll --------- 916480 06.05.2010 12:31 C:\WINDOWS\system32\urlmon.dll --------- 1209344 06.05.2010 12:31 C:\WINDOWS\system32\occache.dll --------- 206848 06.05.2010 12:31 C:\WINDOWS\system32\mstime.dll --------- 611840 06.05.2010 12:31 C:\WINDOWS\system32\mshtml.dll --------- 5950976 06.05.2010 12:31 C:\WINDOWS\system32\inetcpl.cpl --------- 1469440 06.05.2010 12:31 C:\WINDOWS\system32\jsproxy.dll --------- 25600 06.05.2010 12:31 C:\WINDOWS\system32\msfeedsbs.dll --------- 55296 06.05.2010 12:31 C:\WINDOWS\system32\iertutil.dll --------- 1985536 06.05.2010 12:31 C:\WINDOWS\system32\msfeeds.dll --------- 599040 06.05.2010 12:31 C:\WINDOWS\system32\iepeers.dll --------- 184320 06.05.2010 12:31 C:\WINDOWS\system32\ieframe.dll --------- 11076096 06.05.2010 12:31 C:\WINDOWS\system32\iedkcs32.dll --------- 387584 05.05.2010 15:30 C:\WINDOWS\system32\ie4uinit.exe --------- 173056 02.05.2010 10:05 C:\WINDOWS\system32\win32k.sys --------- 1851392 21.04.2010 21:41 C:\WINDOWS\system32\jupdate-1.6.0_20-b02.log --------- 3238 21.04.2010 15:28 C:\WINDOWS\system32\tzchange.exe --------- 46080 20.04.2010 07:29 C:\WINDOWS\system32\atmfd.dll --------- 285696 12.04.2010 17:29 C:\WINDOWS\system32\javaws.exe --------- 153376 12.04.2010 17:29 C:\WINDOWS\system32\javaw.exe --------- 145184 12.04.2010 17:29 C:\WINDOWS\system32\java.exe --------- 145184 12.04.2010 17:29 C:\WINDOWS\system32\deployJava1.dll --------- 411368 12.04.2010 15:19 C:\WINDOWS\system32\javacpl.cpl --------- 73728 08.04.2010 14:03 C:\WINDOWS\system32\WMVCore.dll --------- 2113536 30.03.2010 22:30 C:\WINDOWS\system32\jupdate-1.6.0_19-b04.log --------- 4444 19.03.2010 18:05 C:\WINDOWS\system32\wmp.dll --------- 4874240 19.03.2010 11:49 C:\WINDOWS\system32\mui --------- 0 10.03.2010 08:15 C:\WINDOWS\system32\vbscript.dll --------- 420352 06.03.2010 16:55 C:\WINDOWS\system32\CatRoot --------- 0 05.03.2010 16:37 C:\WINDOWS\system32\asycfilt.dll --------- 65536 04.03.2010 23:26 C:\WINDOWS\system32\spool --------- 0 17.02.2010 14:04 C:\WINDOWS\system32\ntoskrnl.exe --------- 2192256 16.02.2010 21:04 C:\WINDOWS\system32\ntkrnlpa.exe --------- 2069120 12.02.2010 06:33 C:\WINDOWS\system32\6to4svc.dll --------- 100864 05.02.2010 20:25 C:\WINDOWS\system32\quartz.dll --------- 1297408 29.01.2010 16:59 C:\WINDOWS\system32\inetcomm.dll --------- 691712 29.01.2010 16:43 C:\WINDOWS\system32\l3codeca.acm --------- 307260 29.01.2010 16:43 C:\WINDOWS\system32\l3codecx.ax --------- 143422 24.01.2010 15:38 C:\WINDOWS\system32\C2MP --------- 0 24.01.2010 15:38 C:\WINDOWS\system32\custom matrices --------- 0 24.01.2010 15:37 C:\WINDOWS\system32\QuickTime --------- 0 13.01.2010 16:00 C:\WINDOWS\system32\cabview.dll --------- 86528 29.12.2009 19:13 C:\WINDOWS\system32\Adobe --------- 0 29.12.2009 19:08 C:\WINDOWS\system32\Macromed --------- 0 24.12.2009 08:59 C:\WINDOWS\system32\wintrust.dll --------- 177664 17.12.2009 09:40 C:\WINDOWS\system32\mspaint.exe --------- 346624 14.12.2009 09:08 C:\WINDOWS\system32\csrsrv.dll --------- 33280 09.12.2009 07:53 C:\WINDOWS\system32\jscript.dll --------- 726528 08.12.2009 11:23 C:\WINDOWS\system32\shlwapi.dll --------- 474624 27.11.2009 19:11 C:\WINDOWS\system32\msyuv.dll --------- 17920 27.11.2009 18:08 C:\WINDOWS\system32\msrle32.dll --------- 11264 27.11.2009 18:08 C:\WINDOWS\system32\iyuv_32.dll --------- 48128 27.11.2009 18:08 C:\WINDOWS\system32\msvidc32.dll --------- 28672 27.11.2009 18:08 C:\WINDOWS\system32\tsbyuv.dll --------- 8704 27.11.2009 18:08 C:\WINDOWS\system32\avifil32.dll --------- 85504 14.11.2009 02:47 C:\WINDOWS\system32\divx_xx16.dll --------- 843776 14.11.2009 02:47 C:\WINDOWS\system32\divx_xx0c.dll --------- 856064 14.11.2009 02:47 C:\WINDOWS\system32\divx_xx0a.dll --------- 847872 14.11.2009 02:47 C:\WINDOWS\system32\divx_xx07.dll --------- 856064 14.11.2009 02:47 C:\WINDOWS\system32\divx_xx11.dll --------- 839680 14.11.2009 02:47 C:\WINDOWS\system32\DivX.dll --------- 696320 11.11.2009 00:08 C:\WINDOWS\system32\QuickTime.qts --------- 69632 11.11.2009 00:08 C:\WINDOWS\system32\QuickTimeVR.qtx --------- 94208 04.11.2009 20:38 C:\WINDOWS\system32\jupdate-1.6.0_17-b04.log --------- 3617 21.10.2009 07:38 C:\WINDOWS\system32\httpapi.dll --------- 25088 21.10.2009 07:38 C:\WINDOWS\system32\strmfilt.dll --------- 75776 18.10.2009 12:02 C:\WINDOWS\system32\ezsidmv.dat --------- 56 15.10.2009 18:28 C:\WINDOWS\system32\t2embed.dll --------- 119808 15.10.2009 18:28 C:\WINDOWS\system32\fontsub.dll --------- 81920 13.10.2009 12:32 C:\WINDOWS\system32\oakley.dll --------- 271360 12.10.2009 15:38 C:\WINDOWS\system32\raschap.dll --------- 79872 12.10.2009 15:38 C:\WINDOWS\system32\rastls.dll --------- 150528 11.09.2009 16:17 C:\WINDOWS\system32\msv1_0.dll --------- 136192 07.09.2009 17:45 C:\WINDOWS\system32\ffdshow.ax --------- 3572224 07.09.2009 17:29 C:\WINDOWS\system32\libavcodec.dll --------- 4455865 06.09.2009 16:52 C:\WINDOWS\system32\ff_x264.dll --------- 828611 04.09.2009 23:03 C:\WINDOWS\system32\msasn1.dll --------- 58880 02.09.2009 22:23 C:\WINDOWS\system32\ff_samplerate.dll --------- 183296 02.09.2009 22:22 C:\WINDOWS\system32\ff_libmad.dll --------- 178688 02.09.2009 22:22 C:\WINDOWS\system32\ff_unrar.dll --------- 113152 02.09.2009 22:22 C:\WINDOWS\system32\ff_tremor.dll --------- 146944 02.09.2009 22:22 C:\WINDOWS\system32\ff_libdts.dll --------- 257024 02.09.2009 22:22 C:\WINDOWS\system32\ff_liba52.dll --------- 142848 02.09.2009 22:22 C:\WINDOWS\system32\ff_libfaad2.dll --------- 484864 02.09.2009 18:45 C:\WINDOWS\system32\xvidcore.dll --------- 829781 02.09.2009 18:38 C:\WINDOWS\system32\TomsMoComp_ff.dll --------- 425040 02.09.2009 18:35 C:\WINDOWS\system32\libmplayer.dll --------- 557003 ---------------------------------------- C:\WINDOWS\Prefetch 06.07.2010 15:31 C:\WINDOWS\Prefetch\CMD.EXE-087B4001.pf --------- 23110 06.07.2010 15:30 C:\WINDOWS\Prefetch\WINRAR.EXE-3588DFE8.pf --------- 55062 06.07.2010 15:29 C:\WINDOWS\Prefetch\VERCLSID.EXE-3667BD89.pf --------- 13856 06.07.2010 15:28 C:\WINDOWS\Prefetch\EXPLORER.EXE-082F38A9.pf --------- 60800 06.07.2010 15:28 C:\WINDOWS\Prefetch\AVWSC.EXE-24612965.pf --------- 30894 06.07.2010 15:24 C:\WINDOWS\Prefetch\THUNDERBIRD.EXE-031A6371.pf --------- 102588 06.07.2010 15:24 C:\WINDOWS\Prefetch\GOOGLEUPDATER.EXE-36CE3796.pf --------- 87078 06.07.2010 15:24 C:\WINDOWS\Prefetch\JQSNOTIFY.EXE-1E60A522.pf --------- 10436 06.07.2010 15:24 C:\WINDOWS\Prefetch\GOOGLEUPDATERSERVICE.EXE-19F5FCF4.pf --------- 19210 06.07.2010 15:24 C:\WINDOWS\Prefetch\FIREFOX.EXE-1D57670A.pf --------- 128206 06.07.2010 15:23 C:\WINDOWS\Prefetch\NOTEPAD.EXE-336351A9.pf --------- 16738 06.07.2010 15:21 C:\WINDOWS\Prefetch\9KS2MDFW.EXE-15B7F9D4.pf --------- 30296 06.07.2010 15:18 C:\WINDOWS\Prefetch\SCRNSAVE.SCR-017F06EB.pf --------- 7586 06.07.2010 14:58 C:\WINDOWS\Prefetch\WSCNTFY.EXE-1B24F5EB.pf --------- 10422 06.07.2010 14:58 C:\WINDOWS\Prefetch\IPODSERVICE.EXE-233792DA.pf --------- 97404 06.07.2010 14:49 C:\WINDOWS\Prefetch\AVCENTER.EXE-1D2DB8A2.pf --------- 58590 06.07.2010 14:32 C:\WINDOWS\Prefetch\GOOGLEUPDATE.EXE-187AE91D.pf --------- 43612 06.07.2010 14:21 C:\WINDOWS\Prefetch\AVSCAN.EXE-25724B6E.pf --------- 58576 06.07.2010 14:21 C:\WINDOWS\Prefetch\FDM.EXE-0654E435.pf --------- 55618 06.07.2010 14:11 C:\WINDOWS\Prefetch\WMIPRVSE.EXE-28F301A9.pf --------- 61976 06.07.2010 14:11 C:\WINDOWS\Prefetch\USER.EXE-13EE424A.pf --------- 49750 06.07.2010 14:11 C:\WINDOWS\Prefetch\RSIT.EXE-0C40C807.pf --------- 19166 06.07.2010 14:00 C:\WINDOWS\Prefetch\WSFTPURL.EXE-2C2D52E5.pf --------- 26976 06.07.2010 14:00 C:\WINDOWS\Prefetch\IEXPLORE.EXE-2CA9778D.pf --------- 104570 06.07.2010 13:57 C:\WINDOWS\Prefetch\RUNDLL32.EXE-327ED30F.pf --------- 19744 06.07.2010 13:57 C:\WINDOWS\Prefetch\RUNDLL32.EXE-3910966A.pf --------- 30310 06.07.2010 13:46 C:\WINDOWS\Prefetch\TASKMGR.EXE-20256C55.pf --------- 57450 06.07.2010 13:34 C:\WINDOWS\Prefetch\FOXITR~1.EXE-2C735C97.pf --------- 47196 06.07.2010 13:33 C:\WINDOWS\Prefetch\ACRODIST.EXE-37CECDCD.pf --------- 66522 06.07.2010 13:29 C:\WINDOWS\Prefetch\HIJACKTHIS.EXE-39024128.pf --------- 56248 06.07.2010 13:17 C:\WINDOWS\Prefetch\LOGONUI.EXE-0AF22957.pf --------- 37244 06.07.2010 11:05 C:\WINDOWS\Prefetch\WINWORD.EXE-259486DA.pf --------- 82086 06.07.2010 10:33 C:\WINDOWS\Prefetch\JAVA.EXE-2167859B.pf --------- 7728 06.07.2010 10:22 C:\WINDOWS\Prefetch\PLUGIN-CONTAINER.EXE-170C935C.pf --------- 66718 06.07.2010 10:08 C:\WINDOWS\Prefetch\MPLAYERC6491.EXE-30E30419.pf --------- 98234 06.07.2010 09:38 C:\WINDOWS\Prefetch\DFRGNTFS.EXE-269967DF.pf --------- 50144 06.07.2010 09:38 C:\WINDOWS\Prefetch\DEFRAG.EXE-273F131E.pf --------- 17164 06.07.2010 09:37 C:\WINDOWS\Prefetch\Layout.ini --------- 306300 06.07.2010 09:22 C:\WINDOWS\Prefetch\VIRTUALDUB.EXE-39FE10F4.pf --------- 123062 06.07.2010 09:07 C:\WINDOWS\Prefetch\DIVXSM.EXE-38342704.pf --------- 67708 06.07.2010 09:07 C:\WINDOWS\Prefetch\FDM.EXE-2B81629D.pf --------- 84858 06.07.2010 09:06 C:\WINDOWS\Prefetch\CUT_ASSISTANT.EXE-02F55E40.pf --------- 45926 06.07.2010 08:55 C:\WINDOWS\Prefetch\AVNOTIFY.EXE-31D7686A.pf --------- 69834 06.07.2010 08:54 C:\WINDOWS\Prefetch\UPDATE.EXE-3398FCD6.pf --------- 96036 06.07.2010 08:54 C:\WINDOWS\Prefetch\2009DECODER.EXE-224EC88D.pf --------- 28828 05.07.2010 22:41 C:\WINDOWS\Prefetch\CALC.EXE-02CD573A.pf --------- 14122 05.07.2010 21:08 C:\WINDOWS\Prefetch\MSIEXEC.EXE-2F8A8CAE.pf --------- 42328 05.07.2010 21:08 C:\WINDOWS\Prefetch\RUNDLL32.EXE-1DD50D58.pf --------- 33406 05.07.2010 21:08 C:\WINDOWS\Prefetch\OCONVPCK.EXE-0DCB5B64.pf --------- 21132 05.07.2010 21:05 C:\WINDOWS\Prefetch\INSTALLER_ABC_AMBER_TEXT_CONV-0141D690.pf --------- 13874 05.07.2010 20:52 C:\WINDOWS\Prefetch\EXCEL.EXE-3281D776.pf --------- 53206 05.07.2010 20:46 C:\WINDOWS\Prefetch\I_VIEW32.EXE-0B6C3BA4.pf --------- 29496 05.07.2010 20:45 C:\WINDOWS\Prefetch\XAMPP_CLI.EXE-02BDC856.pf --------- 9250 05.07.2010 20:32 C:\WINDOWS\Prefetch\GOOGLECRASHHANDLER.EXE-046410E1.pf --------- 14286 05.07.2010 17:56 C:\WINDOWS\Prefetch\NOTEPAD++.EXE-1A8B82EC.pf --------- 41524 05.07.2010 13:03 C:\WINDOWS\Prefetch\TIMER.EXE-3013FB1F.pf --------- 13792 05.07.2010 12:58 C:\WINDOWS\Prefetch\HTTPD.EXE-25EDD3D9.pf --------- 69438 05.07.2010 12:58 C:\WINDOWS\Prefetch\MYSQLD.EXE-101F6CB7.pf --------- 23078 05.07.2010 12:58 C:\WINDOWS\Prefetch\XAMPP-CONTROL.EXE-0F0FBF15.pf --------- 29060 05.07.2010 12:58 C:\WINDOWS\Prefetch\JAVAW.EXE-1DA9F6E6.pf --------- 62962 05.07.2010 12:58 C:\WINDOWS\Prefetch\FREEMIND.EXE-0BD809F4.pf --------- 6088 05.07.2010 09:48 C:\WINDOWS\Prefetch\WINAMP.EXE-08C38ED9.pf --------- 42948 05.07.2010 09:12 C:\WINDOWS\Prefetch\IMAPI.EXE-0BF740A4.pf --------- 19352 05.07.2010 09:12 C:\WINDOWS\Prefetch\DLG.EXE-1FAA30D9.pf --------- 13744 05.07.2010 09:12 C:\WINDOWS\Prefetch\SYNTPENH.EXE-3967AE36.pf --------- 13492 05.07.2010 09:12 C:\WINDOWS\Prefetch\OSA.EXE-0082CBE3.pf --------- 45934 05.07.2010 09:12 C:\WINDOWS\Prefetch\SMAX4PNP.EXE-2279C3AD.pf --------- 20140 05.07.2010 09:12 C:\WINDOWS\Prefetch\RUNDLL32.EXE-1218E1AC.pf --------- 15916 05.07.2010 09:12 C:\WINDOWS\Prefetch\SYNTPLPR.EXE-0AB61C3B.pf --------- 8600 05.07.2010 09:12 C:\WINDOWS\Prefetch\ADOBE GAMMA LOADER.EXE-1FD09C3A.pf --------- 11136 05.07.2010 09:12 C:\WINDOWS\Prefetch\ITUNESHELPER.EXE-08906EB7.pf --------- 14584 05.07.2010 09:12 C:\WINDOWS\Prefetch\USERINIT.EXE-30B18140.pf --------- 54746 05.07.2010 09:12 C:\WINDOWS\Prefetch\ATI2EVXX.EXE-19D16EB9.pf --------- 63462 05.07.2010 09:12 C:\WINDOWS\Prefetch\NEROCHECK.EXE-092C6DFA.pf --------- 6820 05.07.2010 09:12 C:\WINDOWS\Prefetch\ATIPTAXX.EXE-12B5048A.pf --------- 10096 05.07.2010 09:12 C:\WINDOWS\Prefetch\SMAX4.EXE-2B732B8E.pf --------- 13568 05.07.2010 09:12 C:\WINDOWS\Prefetch\ATIPRBXX.EXE-2EF3CAC1.pf --------- 7228 04.07.2010 21:49 C:\WINDOWS\Prefetch\ACROTRAY.EXE-20597A61.pf --------- 16376 04.07.2010 21:49 C:\WINDOWS\Prefetch\AVGNT.EXE-39CD89BF.pf --------- 57116 04.07.2010 17:59 C:\WINDOWS\Prefetch\DIVXVERSIONCHECKER.EXE-109B55D3.pf --------- 14760 04.07.2010 16:50 C:\WINDOWS\Prefetch\RUNDLL32.EXE-451FC2C0.pf --------- 14250 04.07.2010 16:33 C:\WINDOWS\Prefetch\JAVAWS.EXE-1714DD62.pf --------- 25802 04.07.2010 16:33 C:\WINDOWS\Prefetch\JAUCHECK.EXE-2D8C9795.pf --------- 25244 04.07.2010 16:33 C:\WINDOWS\Prefetch\JAVAW.EXE-0159D575.pf --------- 67088 04.07.2010 13:23 C:\WINDOWS\Prefetch\HDDHEALTH.EXE-2852557E.pf --------- 25976 04.07.2010 13:23 C:\WINDOWS\Prefetch\CTFMON.EXE-0E17969B.pf --------- 15026 04.07.2010 13:23 C:\WINDOWS\Prefetch\JUSCHED.EXE-0137DEC5.pf --------- 12228 04.07.2010 13:23 C:\WINDOWS\Prefetch\CS4SERVICEMANAGER.EXE-36932663.pf --------- 14738 04.07.2010 13:23 C:\WINDOWS\Prefetch\QTTASK.EXE-2D7EEF34.pf --------- 8402 03.07.2010 13:00 C:\WINDOWS\Prefetch\MPNOTIFY.EXE-3631A846.pf --------- 13202 03.07.2010 04:43 C:\WINDOWS\Prefetch\WUAUCLT.EXE-399A8E72.pf --------- 21968 03.07.2010 00:04 C:\WINDOWS\Prefetch\RUNDLL32.EXE-1DD1B334.pf --------- 17702 02.07.2010 13:18 C:\WINDOWS\Prefetch\SNDVOL32.EXE-383480B7.pf --------- 17078 01.07.2010 13:22 C:\WINDOWS\Prefetch\_ISDEL.EXE-1705F129.pf --------- 7400 01.07.2010 13:22 C:\WINDOWS\Prefetch\_INS5576._MP-06A16F99.pf --------- 22452 01.07.2010 13:22 C:\WINDOWS\Prefetch\SETUP.EXE-393E66AE.pf --------- 15850 01.07.2010 13:22 C:\WINDOWS\Prefetch\CHMSTART.EXE-0DEEB877.pf --------- 6736 01.07.2010 12:00 C:\WINDOWS\Prefetch\PHOTOSHOP.EXE-2E1C999E.pf --------- 56410 01.07.2010 12:00 C:\WINDOWS\Prefetch\RUNDLL32.EXE-2AE6C217.pf --------- 16728 01.07.2010 01:47 C:\WINDOWS\Prefetch\SVCHOST.EXE-3530F672.pf --------- 33010 01.07.2010 01:47 C:\WINDOWS\Prefetch\SC.EXE-012262AF.pf --------- 11330 01.07.2010 01:29 C:\WINDOWS\Prefetch\VIRTUA~1.EXE-0A9B3FFE.pf --------- 221168 01.07.2010 01:27 C:\WINDOWS\Prefetch\BESWEET.EXE-000805DE.pf --------- 137856 01.07.2010 01:25 C:\WINDOWS\Prefetch\DGINDEX.EXE-2D3EDED6.pf --------- 173958 30.06.2010 20:33 C:\WINDOWS\Prefetch\AUTOGK.EXE-1F6E709A.pf --------- 22164 30.06.2010 14:37 C:\WINDOWS\Prefetch\RUNDLL32.EXE-2DD9023C.pf --------- 17954 30.06.2010 14:37 C:\WINDOWS\Prefetch\RUNDLL32.EXE-33DB83D5.pf --------- 17386 30.06.2010 14:36 C:\WINDOWS\Prefetch\RUNDLL32.EXE-1B67E7ED.pf --------- 20508 30.06.2010 12:36 C:\WINDOWS\Prefetch\DVDDECRYPTER.EXE-0F6C16F0.pf --------- 15680 30.06.2010 11:24 C:\WINDOWS\Prefetch\NERO.EXE-2031B565.pf --------- 55308 30.06.2010 10:31 C:\WINDOWS\Prefetch\CDEX.EXE-3A5B8FDC.pf --------- 35190 29.06.2010 21:06 C:\WINDOWS\Prefetch\RUNDLL32.EXE-2D940A34.pf --------- 14854 29.06.2010 21:06 C:\WINDOWS\Prefetch\RUNDLL32.EXE-1D7ADE0C.pf --------- 14854 29.06.2010 21:05 C:\WINDOWS\Prefetch\RUNDLL32.EXE-3907EDD0.pf --------- 14854 29.06.2010 21:05 C:\WINDOWS\Prefetch\RUNDLL32.EXE-3E538C42.pf --------- 14854 29.06.2010 21:05 C:\WINDOWS\Prefetch\RUNDLL32.EXE-4BE1D2B3.pf --------- 14854 29.06.2010 21:05 C:\WINDOWS\Prefetch\RUNDLL32.EXE-2C4E987B.pf --------- 14854 29.06.2010 21:05 C:\WINDOWS\Prefetch\RUNDLL32.EXE-378C358A.pf --------- 14854 29.06.2010 20:55 C:\WINDOWS\Prefetch\NMINDEXSTORESVR.EXE-1DBCF9FD.pf --------- 27890 29.06.2010 10:38 C:\WINDOWS\Prefetch\HELPER.EXE-244ABC1F.pf --------- 19294 29.06.2010 10:38 C:\WINDOWS\Prefetch\UPDATER.EXE-332057F2.pf --------- 24818 28.06.2010 20:06 C:\WINDOWS\Prefetch\DBDESIGNERFORK.EXE-02E01F5F.pf --------- 58648 13.06.2010 06:52 C:\WINDOWS\Prefetch\NTOSBOOT-B00DFAAD.pf --------- 971320 ---------------------------------------- C:\WINDOWS\Tasks 06.07.2010 15:24 C:\WINDOWS\Tasks\Google Software Updater.job --------- 1044 06.07.2010 14:57 C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job --------- 1084 06.07.2010 14:56 C:\WINDOWS\Tasks\SA.DAT --------- 6 06.07.2010 14:35 C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job --------- 1088 04.08.2004 14:00 C:\WINDOWS\Tasks\desktop.ini --------- 65 ---------------------------------------- C:\WINDOWS\Temp 06.07.2010 14:57 C:\WINDOWS\Temp\Perflib_Perfdata_748.dat --------- 16384 06.07.2010 14:57 C:\WINDOWS\Temp\Perflib_Perfdata_228.dat --------- 16384 01.07.2010 13:27 C:\WINDOWS\Temp\etilqs_j0vtncM0YKf953bIh1BE --------- 0 01.07.2010 13:27 C:\WINDOWS\Temp\etilqs_hiy6bqK6tKgpYZWjvpoM --------- 512 23.06.2010 19:50 C:\WINDOWS\Temp\Cookies --------- 0 23.06.2010 19:49 C:\WINDOWS\Temp\History --------- 0 23.06.2010 19:49 C:\WINDOWS\Temp\Temporary Internet Files --------- 0 12.06.2010 12:26 C:\WINDOWS\Temp\PQ_BATCH.PQB --------- 3536 11.06.2010 13:18 C:\WINDOWS\Temp\PQ_DEBUG.001 --------- 4264 11.06.2010 13:18 C:\WINDOWS\Temp\PQ_DEBUG.002 --------- 4264 13.05.2010 16:28 C:\WINDOWS\Temp\._msige52 --------- 0 ---------------------------------------- C:\DOKUME~1\user\LOKALE~1\Temp 06.07.2010 15:02 C:\DOKUME~1\user\LOKALE~1\Temp\jusched.log --------- 117275 06.07.2010 14:00 C:\DOKUME~1\user\LOKALE~1\Temp\ftpurls --------- 0 06.07.2010 13:39 C:\DOKUME~1\user\LOKALE~1\Temp\Acrobat Distiller 5 --------- 0 05.07.2010 22:59 C:\DOKUME~1\user\LOKALE~1\Temp\msohtml1 --------- 0 05.07.2010 21:08 C:\DOKUME~1\user\LOKALE~1\Temp\MSI17d30.LOG --------- 234786 05.07.2010 21:01 C:\DOKUME~1\user\LOKALE~1\Temp\MSI6f66b.LOG --------- 234682 05.07.2010 20:45 C:\DOKUME~1\user\LOKALE~1\Temp\hsperfdata_user --------- 0 04.07.2010 16:33 C:\DOKUME~1\user\LOKALE~1\Temp\AUCHECK_CORE.txt --------- 1208 04.07.2010 16:33 C:\DOKUME~1\user\LOKALE~1\Temp\AUCHECK_PARSER.txt --------- 296 01.07.2010 13:06 C:\DOKUME~1\user\LOKALE~1\Temp\5ejm1837.bmp --------- 287454 01.07.2010 12:00 C:\DOKUME~1\user\LOKALE~1\Temp\TWAIN.LOG --------- 695 01.07.2010 12:00 C:\DOKUME~1\user\LOKALE~1\Temp\Twunk001.MTX --------- 156 01.07.2010 12:00 C:\DOKUME~1\user\LOKALE~1\Temp\Twain001.Mtx --------- 3 01.07.2010 11:44 C:\DOKUME~1\user\LOKALE~1\Temp\blgvvem0.bmp --------- 1500054 01.07.2010 11:43 C:\DOKUME~1\user\LOKALE~1\Temp\442k2n5u.bmp --------- 1500054 01.07.2010 11:43 C:\DOKUME~1\user\LOKALE~1\Temp\17ogr6vd.bmp --------- 1500054 01.07.2010 11:43 C:\DOKUME~1\user\LOKALE~1\Temp\yai5ghmx.bmp --------- 1500054 01.07.2010 11:43 C:\DOKUME~1\user\LOKALE~1\Temp\s14tnywj.bmp --------- 1500054 01.07.2010 11:43 C:\DOKUME~1\user\LOKALE~1\Temp\ljpat66e.bmp --------- 1500054 01.07.2010 11:42 C:\DOKUME~1\user\LOKALE~1\Temp\bibshk8k.bmp --------- 1500054 01.07.2010 11:42 C:\DOKUME~1\user\LOKALE~1\Temp\vrgncs5c.bmp --------- 1500054 01.07.2010 11:42 C:\DOKUME~1\user\LOKALE~1\Temp\v7ark6ck.bmp --------- 1500054 01.07.2010 11:42 C:\DOKUME~1\user\LOKALE~1\Temp\pxw7qnu7.bmp --------- 1500054 01.07.2010 11:42 C:\DOKUME~1\user\LOKALE~1\Temp\igiwx341.bmp --------- 1500054 01.07.2010 11:41 C:\DOKUME~1\user\LOKALE~1\Temp\czcd3cew.bmp --------- 1500054 01.07.2010 11:41 C:\DOKUME~1\user\LOKALE~1\Temp\zlpghnrd.bmp --------- 1500054 01.07.2010 11:41 C:\DOKUME~1\user\LOKALE~1\Temp\2ljyz4fa.bmp --------- 1500054 01.07.2010 11:41 C:\DOKUME~1\user\LOKALE~1\Temp\tr58nhgg.bmp --------- 1500054 01.07.2010 11:40 C:\DOKUME~1\user\LOKALE~1\Temp\gdia0tup.bmp --------- 1500054 01.07.2010 11:40 C:\DOKUME~1\user\LOKALE~1\Temp\wunqdyis.bmp --------- 1500054 01.07.2010 11:40 C:\DOKUME~1\user\LOKALE~1\Temp\jg1sq1v1.bmp --------- 1500054 01.07.2010 11:40 C:\DOKUME~1\user\LOKALE~1\Temp\d6nhwi5w.bmp --------- 1500054 01.07.2010 11:39 C:\DOKUME~1\user\LOKALE~1\Temp\gmjwmc01.bmp --------- 1500054 01.07.2010 11:33 C:\DOKUME~1\user\LOKALE~1\Temp\plugtmp-10 --------- 0 30.06.2010 15:22 C:\DOKUME~1\user\LOKALE~1\Temp\repair02892_01.txt --------- 294 29.06.2010 12:44 C:\DOKUME~1\user\LOKALE~1\Temp\8vlxb3od.bmp --------- 2827554 29.06.2010 12:44 C:\DOKUME~1\user\LOKALE~1\Temp\i2k2uhn4.bmp --------- 2785334 29.06.2010 12:44 C:\DOKUME~1\user\LOKALE~1\Temp\8l38ih91.bmp --------- 2785334 29.06.2010 12:44 C:\DOKUME~1\user\LOKALE~1\Temp\y4ve684z.bmp --------- 2785334 29.06.2010 12:44 C:\DOKUME~1\user\LOKALE~1\Temp\sznzd37m.bmp --------- 2785334 29.06.2010 12:43 C:\DOKUME~1\user\LOKALE~1\Temp\f66yj0dn.bmp --------- 2785334 29.06.2010 12:43 C:\DOKUME~1\user\LOKALE~1\Temp\ykphemb7.bmp --------- 2785334 29.06.2010 12:43 C:\DOKUME~1\user\LOKALE~1\Temp\snh3dpeu.bmp --------- 2785334 29.06.2010 12:43 C:\DOKUME~1\user\LOKALE~1\Temp\i6891h1k.bmp --------- 2785334 29.06.2010 12:43 C:\DOKUME~1\user\LOKALE~1\Temp\f9u5qsr3.bmp --------- 2785334 29.06.2010 12:43 C:\DOKUME~1\user\LOKALE~1\Temp\5rmbfsm1.bmp --------- 2785334 29.06.2010 12:43 C:\DOKUME~1\user\LOKALE~1\Temp\yndplmpn.bmp --------- 2785334 29.06.2010 12:43 C:\DOKUME~1\user\LOKALE~1\Temp\ltxnrjvw.bmp --------- 2785334 28.06.2010 19:48 C:\DOKUME~1\user\LOKALE~1\Temp\download-21.csv --------- 1319 28.06.2010 19:47 C:\DOKUME~1\user\LOKALE~1\Temp\download-20.csv --------- 1214 28.06.2010 19:47 C:\DOKUME~1\user\LOKALE~1\Temp\download-19.csv --------- 1214 28.06.2010 19:43 C:\DOKUME~1\user\LOKALE~1\Temp\download-18.csv --------- 1214 28.06.2010 19:39 C:\DOKUME~1\user\LOKALE~1\Temp\download-17.csv --------- 1164 28.06.2010 19:39 C:\DOKUME~1\user\LOKALE~1\Temp\download-16.csv --------- 1202 28.06.2010 19:32 C:\DOKUME~1\user\LOKALE~1\Temp\download-15.csv --------- 1189 28.06.2010 18:57 C:\DOKUME~1\user\LOKALE~1\Temp\download-14.csv --------- 970 28.06.2010 18:50 C:\DOKUME~1\user\LOKALE~1\Temp\download-13.csv --------- 1024 28.06.2010 18:49 C:\DOKUME~1\user\LOKALE~1\Temp\download-12.csv --------- 1019 28.06.2010 18:48 C:\DOKUME~1\user\LOKALE~1\Temp\download-11.csv --------- 970 28.06.2010 18:45 C:\DOKUME~1\user\LOKALE~1\Temp\download-10.csv --------- 970 28.06.2010 18:42 C:\DOKUME~1\user\LOKALE~1\Temp\download-9.csv --------- 967 28.06.2010 18:39 C:\DOKUME~1\user\LOKALE~1\Temp\download-8.csv --------- 932 28.06.2010 18:37 C:\DOKUME~1\user\LOKALE~1\Temp\download-7.csv --------- 931 28.06.2010 18:31 C:\DOKUME~1\user\LOKALE~1\Temp\download-6.csv --------- 722 28.06.2010 18:28 C:\DOKUME~1\user\LOKALE~1\Temp\download-5.csv --------- 705 28.06.2010 18:27 C:\DOKUME~1\user\LOKALE~1\Temp\download-4.csv --------- 676 28.06.2010 18:26 C:\DOKUME~1\user\LOKALE~1\Temp\download-3.csv --------- 647 28.06.2010 18:20 C:\DOKUME~1\user\LOKALE~1\Temp\download-2.csv --------- 540 28.06.2010 18:13 C:\DOKUME~1\user\LOKALE~1\Temp\download-1.csv --------- 452 28.06.2010 18:05 C:\DOKUME~1\user\LOKALE~1\Temp\download.csv --------- 372 28.06.2010 17:58 C:\DOKUME~1\user\LOKALE~1\Temp\plugtmp-8 --------- 0 28.06.2010 10:25 C:\DOKUME~1\user\LOKALE~1\Temp\~DF2A40.tmp --------- 147456 27.06.2010 12:19 C:\DOKUME~1\user\LOKALE~1\Temp\repair01208_02.txt --------- 236 27.06.2010 12:17 C:\DOKUME~1\user\LOKALE~1\Temp\repair01208_01.txt --------- 294 25.06.2010 14:01 C:\DOKUME~1\user\LOKALE~1\Temp\mod4B.tmp --------- 5 25.06.2010 14:01 C:\DOKUME~1\user\LOKALE~1\Temp\plugtmp-5 --------- 0 25.06.2010 09:25 C:\DOKUME~1\user\LOKALE~1\Temp\bz_script_temp --------- 0 25.06.2010 08:18 C:\DOKUME~1\user\LOKALE~1\Temp\frank zeugnis.doc --------- 30208 24.06.2010 10:30 C:\DOKUME~1\user\LOKALE~1\Temp\SkypeSetup.exe --------- 22971688 23.06.2010 19:49 C:\DOKUME~1\user\LOKALE~1\Temp\contentDATs.exe --------- 426496 23.06.2010 19:49 C:\DOKUME~1\user\LOKALE~1\Temp\SecurityScan_Release.exe --------- 3598224 23.06.2010 18:46 C:\DOKUME~1\user\LOKALE~1\Temp\nscopy-1.tmp --------- 29052 23.06.2010 18:46 C:\DOKUME~1\user\LOKALE~1\Temp\nsmail-3.eml --------- 28866 23.06.2010 18:46 C:\DOKUME~1\user\LOKALE~1\Temp\nsmail-6.tmp --------- 4026 23.06.2010 18:46 C:\DOKUME~1\user\LOKALE~1\Temp\nsmail.html --------- 11574 23.06.2010 18:46 C:\DOKUME~1\user\LOKALE~1\Temp\nsmail-5.tmp --------- 2812 23.06.2010 18:46 C:\DOKUME~1\user\LOKALE~1\Temp\nsmail-4.tmp --------- 2586 23.06.2010 18:46 C:\DOKUME~1\user\LOKALE~1\Temp\nsmail-3.tmp --------- 2812 23.06.2010 18:46 C:\DOKUME~1\user\LOKALE~1\Temp\nscopy.tmp --------- 24874 23.06.2010 18:46 C:\DOKUME~1\user\LOKALE~1\Temp\nsmail-2.eml --------- 24596 23.06.2010 18:46 C:\DOKUME~1\user\LOKALE~1\Temp\nsmail-2.tmp --------- 2812 23.06.2010 18:46 C:\DOKUME~1\user\LOKALE~1\Temp\nsmail-1.tmp --------- 2586 23.06.2010 18:46 C:\DOKUME~1\user\LOKALE~1\Temp\nsmail.tmp --------- 2812 23.06.2010 18:00 C:\DOKUME~1\user\LOKALE~1\Temp\Twunk002.MTX --------- 0 21.06.2010 21:50 C:\DOKUME~1\user\LOKALE~1\Temp\jar_cache7889401661432053450.tmp --------- 0 21.06.2010 21:49 C:\DOKUME~1\user\LOKALE~1\Temp\jar_cache4565544857335580290.tmp --------- 0 21.06.2010 15:08 C:\DOKUME~1\user\LOKALE~1\Temp\nsmail-1.eml --------- 7015519 20.06.2010 15:20 C:\DOKUME~1\user\LOKALE~1\Temp\Set6.tmp --------- 107512 23.05.2010 10:35 C:\DOKUME~1\user\LOKALE~1\Temp\AmazonMP3AlbumArt.png --------- 8066 23.05.2010 10:35 C:\DOKUME~1\user\LOKALE~1\Temp\AmazonMP3Logo.png --------- 1689 18.05.2010 11:13 C:\DOKUME~1\user\LOKALE~1\Temp\d737eea2-d7e4-4d6f-9bd5-8d26b181988d.jpg --------- 28779 18.05.2010 11:13 C:\DOKUME~1\user\LOKALE~1\Temp\52795245-9f84-4011-b912-2f72f0456740.jpg --------- 38527 17.05.2010 16:36 C:\DOKUME~1\user\LOKALE~1\Temp\plugtmp --------- 0 09.05.2010 20:42 C:\DOKUME~1\user\LOKALE~1\Temp\~DFEBD5.tmp --------- 16384 04.05.2010 17:08 C:\DOKUME~1\user\LOKALE~1\Temp\~DFCE88.tmp --------- 16384 26.04.2010 13:23 C:\DOKUME~1\user\LOKALE~1\Temp\nsmail.eml --------- 501089 21.04.2010 21:39 C:\DOKUME~1\user\LOKALE~1\Temp\cd126c.mst --------- 5097472 20.04.2010 19:26 C:\DOKUME~1\user\LOKALE~1\Temp\plugtmp-9 --------- 0 19.04.2010 16:31 C:\DOKUME~1\user\LOKALE~1\Temp\D20496.RTF --------- 4785 19.04.2010 10:47 C:\DOKUME~1\user\LOKALE~1\Temp\plugtmp-7 --------- 0 18.04.2010 19:17 C:\DOKUME~1\user\LOKALE~1\Temp\plugtmp-6 --------- 0 17.04.2010 00:52 C:\DOKUME~1\user\LOKALE~1\Temp\~DF5195.tmp --------- 16384 16.04.2010 19:45 C:\DOKUME~1\user\LOKALE~1\Temp\plugtmp-4 --------- 0 15.04.2010 17:20 C:\DOKUME~1\user\LOKALE~1\Temp\plugtmp-3 --------- 0 15.04.2010 17:16 C:\DOKUME~1\user\LOKALE~1\Temp\~DF497D.tmp --------- 32768 15.04.2010 00:13 C:\DOKUME~1\user\LOKALE~1\Temp\plugtmp-2 --------- 0 13.04.2010 19:46 C:\DOKUME~1\user\LOKALE~1\Temp\download --------- 479 13.04.2010 09:02 C:\DOKUME~1\user\LOKALE~1\Temp\jre-6u20-windows-i586-iftw-rv.exe --------- 922400 12.04.2010 11:16 C:\DOKUME~1\user\LOKALE~1\Temp\plugtmp-1 --------- 0 21.02.2010 12:45 C:\DOKUME~1\user\LOKALE~1\Temp\stylers.model.xml --------- 95613 23.01.2010 20:44 C:\DOKUME~1\user\LOKALE~1\Temp\langs.model.xml --------- 91251 09.07.2009 01:08 C:\DOKUME~1\user\LOKALE~1\Temp\config.model.xml --------- 4820 24.05.2009 12:22 C:\DOKUME~1\user\LOKALE~1\Temp\stylesLexerModel.xml --------- 244 24.05.2009 11:40 C:\DOKUME~1\user\LOKALE~1\Temp\xmlUpdater.exe --------- 118784 25.04.2009 01:39 C:\DOKUME~1\user\LOKALE~1\Temp\stylesGlobalModel.xml --------- 192 25.04.2009 01:39 C:\DOKUME~1\user\LOKALE~1\Temp\langsModel.xml --------- 191 25.04.2009 01:39 C:\DOKUME~1\user\LOKALE~1\Temp\configModel.xml --------- 193 25.04.2009 01:38 C:\DOKUME~1\user\LOKALE~1\Temp\stylers_remove.xml --------- 821 ---------------------------------------- C:\Programme 06.07.2010 15:24 C:\Programme\Mozilla Thunderbird --------- 0 06.07.2010 14:11 C:\Programme\Trend Micro --------- 0 29.06.2010 10:38 C:\Programme\Mozilla Firefox --------- 0 28.06.2010 19:59 C:\Programme\Konstanzprfung --------- 0 25.06.2010 10:29 C:\Programme\3dsmax4 --------- 0 22.06.2010 17:13 C:\Programme\InstallShield Installation Information --------- 0 20.06.2010 21:19 C:\Programme\DDR - NTFS Recovery --------- 0 20.06.2010 20:56 C:\Programme\Smart PC Solutions --------- 0 20.06.2010 01:01 C:\Programme\DDR - NTFS Recovery(Demo) --------- 0 11.06.2010 12:50 C:\Programme\Internet Explorer --------- 0 06.06.2010 16:49 C:\Programme\Western Digital Corporation --------- 0 30.05.2010 21:55 C:\Programme\sculptris --------- 0 20.05.2010 19:36 C:\Programme\MultiFuncTimer --------- 0 19.05.2010 12:00 C:\Programme\Winamp --------- 0 18.05.2010 18:52 C:\Programme\DBDesigner --------- 0 18.05.2010 18:03 C:\Programme\Gemeinsame Dateien --------- 0 13.05.2010 22:17 C:\Programme\Cut_Assistant_0.9.9.8_en --------- 0 13.05.2010 16:30 C:\Programme\Google --------- 0 12.05.2010 08:32 C:\Programme\Outlook Express --------- 0 11.05.2010 21:43 C:\Programme\mysqlcc-0.9.8-win32 --------- 0 22.04.2010 13:43 C:\Programme\Notepad++ --------- 0 21.04.2010 21:41 C:\Programme\Java --------- 0 19.04.2010 16:49 C:\Programme\Foxit Software --------- 0 07.04.2010 22:18 C:\Programme\Macrium --------- 0 06.04.2010 10:52 C:\Programme\CCleaner --------- 0 29.03.2010 23:39 C:\Programme\diskoptimizer --------- 0 12.03.2010 00:15 C:\Programme\Movie Maker --------- 0 04.03.2010 00:41 C:\Programme\Simpleology --------- 0 02.03.2010 00:27 C:\Programme\Biet-O-Matic --------- 0 25.02.2010 23:23 C:\Programme\DivX --------- 0 13.02.2010 01:08 C:\Programme\Amazon --------- 0 22.12.2009 01:26 C:\Programme\Adobe --------- 0 21.12.2009 02:00 C:\Programme\Adobe Media Player --------- 0 13.12.2009 20:42 C:\Programme\QuickTime --------- 0 06.12.2009 22:48 C:\Programme\DVDFab 6 --------- 0 18.10.2009 11:58 C:\Programme\Skype --------- 0 16.10.2009 20:21 C:\Programme\Starcraft --------- 0 11.10.2009 00:17 C:\Programme\ElsterFormular2007 --------- 0 08.10.2009 20:28 C:\Programme\ElsterFormular --------- 0 21.09.2009 09:29 C:\Programme\AutoMKV0984 --------- 0 13.09.2009 21:05 C:\Programme\Blender Foundation --------- 0 01.09.2009 21:49 C:\Programme\2009Decoder_2.0.0.7 --------- 0 17.08.2009 22:40 C:\Programme\Avira --------- 0 02.08.2009 13:17 C:\Programme\Messenger --------- 0 02.08.2009 13:16 C:\Programme\Synaptics --------- 0 06.04.2009 21:51 C:\Programme\DVD Flick --------- 0 15.03.2009 22:40 C:\Programme\WS_FTP Pro --------- 0 03.03.2009 22:58 C:\Programme\WinRAR --------- 0 25.01.2009 00:54 C:\Programme\Free Download Manager --------- 0 11.01.2009 12:53 C:\Programme\cooleditpro1.2 --------- 0 06.01.2009 19:22 C:\Programme\TreeSize --------- 0 04.01.2009 21:47 C:\Programme\Xaudio --------- 0 02.01.2009 11:42 C:\Programme\AutoGK --------- 0 02.01.2009 11:42 C:\Programme\XviD --------- 0 02.01.2009 11:41 C:\Programme\AviSynth 2.5 --------- 0 02.01.2009 11:35 C:\Programme\VobSub --------- 0 02.01.2009 11:33 C:\Programme\DVD Decrypter --------- 0 23.12.2008 10:28 C:\Programme\Nero --------- 0 22.12.2008 14:50 C:\Programme\TrueCrypt --------- 0 22.12.2008 12:47 C:\Programme\Windows Media Player --------- 0 22.12.2008 12:44 C:\Programme\NetMeeting --------- 0 22.12.2008 12:43 C:\Programme\Windows NT --------- 0 15.12.2008 23:11 C:\Programme\iTunes --------- 0 15.12.2008 23:11 C:\Programme\iPod --------- 0 15.12.2008 23:11 C:\Programme\Bonjour --------- 0 15.12.2008 23:10 C:\Programme\Apple Software Update --------- 0 13.12.2008 01:59 C:\Programme\Real Alternative --------- 0 08.12.2008 16:32 C:\Programme\Multidecoder_1.0.0.48 --------- 0 01.12.2008 14:07 C:\Programme\ffdshow --------- 0 01.12.2008 13:56 C:\Programme\CDex_170b2 --------- 0 30.11.2008 17:41 C:\Programme\VirtualDub-1.8.6 --------- 0 30.11.2008 17:40 C:\Programme\asfbin1.7.1.756 --------- 0 30.11.2008 17:21 C:\Programme\MediaplayerClassic --------- 0 29.11.2008 23:57 C:\Programme\WexTech --------- 0 28.11.2008 00:48 C:\Programme\FreeMind --------- 0 28.11.2008 00:36 C:\Programme\GSpot270a --------- 0 28.11.2008 00:04 C:\Programme\IrfanView --------- 0 27.11.2008 23:54 C:\Programme\Microsoft ActiveSync --------- 0 27.11.2008 23:54 C:\Programme\Microsoft Office --------- 0 27.11.2008 21:47 C:\Programme\PowerQuest --------- 0 20.11.2008 14:17 C:\Programme\HDD Health --------- 0 10.03.2008 13:19 C:\Programme\ATI Technologies --------- 0 10.03.2008 13:19 C:\Programme\ThinkPad --------- 0 10.03.2008 13:19 C:\Programme\Digital Line Detect --------- 0 10.03.2008 13:18 C:\Programme\NetWaiting --------- 0 10.03.2008 13:17 C:\Programme\CONEXANT --------- 0 10.03.2008 13:13 C:\Programme\Analog Devices --------- 0 10.03.2008 12:51 C:\Programme\Uninstall Information --------- 0 10.03.2008 12:40 C:\Programme\xerox --------- 0 10.03.2008 12:40 C:\Programme\microsoft frontpage --------- 0 10.03.2008 12:39 C:\Programme\WindowsUpdate --------- 0 10.03.2008 12:38 C:\Programme\Online-Dienste --------- 0 10.03.2008 12:37 C:\Programme\ComPlus Applications --------- 0 10.03.2008 12:36 C:\Programme\MSN Gaming Zone --------- 0 10.03.2008 12:35 C:\Programme\MSN --------- 0 ---------------------------------------- C:\Dokumente und Einstellungen\All Users\.. user LocalService Gast limited Default User NetworkService All Users ---------------------------------------- C:\WINDOWS\system32\drivers\etc\hosts 127.0.0.1 localhost ---------------------------------------- Abbildname PID Sitzungsname Sitz.-Nr. Speichernutzung ========================= ===== ================ ========== =============== System Idle Process 0 Console 0 16 K System 4 Console 0 236 K smss.exe 636 Console 0 928 K csrss.exe 700 Console 0 7.644 K winlogon.exe 724 Console 0 18.816 K services.exe 768 Console 0 7.576 K lsass.exe 780 Console 0 1.416 K ibmpmsvc.exe 948 Console 0 6.024 K ati2evxx.exe 976 Console 0 6.824 K svchost.exe 992 Console 0 19.560 K svchost.exe 1060 Console 0 18.364 K svchost.exe 1100 Console 0 40.464 K svchost.exe 1176 Console 0 17.396 K svchost.exe 1340 Console 0 17.508 K spoolsv.exe 1564 Console 0 19.536 K sched.exe 1604 Console 0 844 K svchost.exe 1676 Console 0 18.132 K svchost.exe 1864 Console 0 24.856 K avguard.exe 1876 Console 0 14.516 K AppleMobileDeviceService. 1896 Console 0 7.540 K mDNSResponder.exe 1916 Console 0 17.008 K svchost.exe 1980 Console 0 17.636 K CDANTSRV.EXE 2024 Console 0 4.416 K avshadow.exe 476 Console 0 7.484 K jqs.exe 552 Console 0 5.640 K ReflectService.exe 680 Console 0 17.420 K SMAgent.exe 904 Console 0 13.876 K svchost.exe 1220 Console 0 18.504 K ati2evxx.exe 320 Console 0 7.292 K explorer.exe 900 Console 0 47.364 K SMax4PNP.exe 1952 Console 0 17.588 K rundll32.exe 2068 Console 0 17.780 K iTunesHelper.exe 2076 Console 0 27.580 K SynTPLpr.exe 2096 Console 0 6.800 K SynTPEnh.exe 2104 Console 0 17.288 K avgnt.exe 2124 Console 0 2.420 K jusched.exe 2140 Console 0 16.820 K ctfmon.exe 2340 Console 0 17.176 K AcroTray.exe 2500 Console 0 15.816 K DLG.exe 2564 Console 0 16.352 K wmiapsrv.exe 2572 Console 0 18.384 K alg.exe 2912 Console 0 17.128 K iPodService.exe 3328 Console 0 8.908 K notepad.exe 1116 Console 0 3.560 K 9ks2mdfw.exe 3640 Console 0 13.840 K notepad.exe 3112 Console 0 7.108 K firefox.exe 216 Console 0 170.796 K thunderbird.exe 3072 Console 0 28.136 K cmd.exe 2656 Console 0 2.212 K tasklist.exe 2200 Console 0 4.672 K wmiprvse.exe 4012 Console 0 5.792 K ***** Ende des Scans 06.07.2010 um 15:31:11,77 ***
Viele Grüße,
Frank
