|
Plagegeister aller Art und deren Bekämpfung: jucheck.exe,jusched.exe,Kaspersky Fehlermeldung nach NeuinstallationWindows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen. |
05.12.2010, 18:57 | #1 |
| jucheck.exe,jusched.exe,Kaspersky Fehlermeldung nach Neuinstallation Hallo! Folgendes Problem irritiert mich gerade sehr: Ich habe einen PC (Notebook,Sony Vaio,Windows 7/64bit) gerade neu aufgesetzt.Ich habe dazu Sicherheitskopien benutzt die nach dem Kauf erstellt wurden,da dem PC keine CD beilag.Ich habe die Option "Vollständige Systemwiederherstellung" angewählt.(Es gab auch die Möglichkeit "Festplattenlöschung" - wird aber nur empfohlen wenn man den PC verkaufen will,jedenfalls laut Handbuch.Bei der Systemwiederherstellung stand, alles wird auf den Ursprung zürückgesetzt;Laufwerk C und alle Partitionen werden mitsamt allen Daten gelöscht) Sorry,wenn ich zu viel schreibe,weiß nicht genau welche Infos wichtig sind. Als nächstes habe ich Kaspersky IS2011 installiert. Soweit so gut. Dann habe ich Firefox runtergeladen (offizielle Seite). und währenddessen ploppte ein Fenster auf,ob ich zulassen möchte,daß ein Programm namens juchek.exe (Herausgeber unbekannt) auf den Computer zugreift.Ich weiß/denke,daß das was mit Java zu tun hat,habe aber erstmal "nein" angeklickt.Dann meldete Kaspersky plötzlich etwas von einem legalem(?!) Programm,welches ein Angreifer benutzen kann um dem PC Schaden zuzufügen.Im Bericht steht "1 - infiziert" und unter den Details finde ich dann zwei rot markierte Einträge : Verdächtiges Verhalten erkannt C:/PROGRAM FILES/JAVA/JRE6/BIN/JUSCHED.EXE Programm: Java (TM) Platform SE binary Gefunden: PDM.Rootshell Kaspersky steht allerdings weiterhin auf "grün" und meldet den PC als sicher. Der Witz ist,daß ich den PC aufgrund einer ähnlichen Fehlermeldung überhaupt erst neu aufgesetzt habe. Das bekomme ich leider nicht mehr alles zusammen,aber die Fehlermeldungen waren ähnlich ,nur gelb unterlegt,nicht rot und es stand da was von einem PDM.keylogger.Wollte ich die Ursprungsordner der beanstandeten Daten öffnen waren diese leer.Da ich gerade ein Programm installiert hatte,habe ich die Fehlerquelle dort vermutet und habe mir fast gedacht,daß es sich um einen Fehlalarm handelt,aber da der PC ziemlich neu ist und nur wenig Daten drauf waren habe ich ihn halt lieber noch einmal "plattgemacht". Und nun habe ich das gleiche Problem wieder. Im Internet habe ich schon geschaut und öfter was über Fehler dieser Art gefunden,da handelte es sich fast immer um Fehlalarme. Trotzdem bin ich unsicher,ob nicht vorher doch ein wirkliches Problem da war und ich jetzt vielleicht bei der Neuinstallation was falsch gemacht habe,oder ob es möglich ist,daß jemand irgendwie trotzdem an meinen Computer kommt. Vielleicht bin ich paranoid,aber ich kenne mich mit Computern einfach null aus um das einschätzen zu können,wäre also super,wenn jemand mal meine Logfiles anschauen könnte. P.S.Falls ich hier zu unverständlich geschrieben habe oder irgendwas an Angaben fehlt bitte Bescheid sagen.Danke. AlanaOTL Logfile: Code:
ATTFilter OTL logfile created on: 05.12.2010 18:29:39 - Run 1 OTL by OldTimer - Version 3.2.17.3 Folder = C:\Users\Anna\Downloads 64bit- Home Premium Edition (Version = 6.1.7600) - Type = NTWorkstation Internet Explorer (Version = 8.0.7600.16385) Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy 4,00 Gb Total Physical Memory | 2,00 Gb Available Physical Memory | 50,00% Memory free 8,00 Gb Paging File | 5,00 Gb Available in Paging File | 71,00% Paging File free Paging file location(s): ?:\pagefile.sys [binary data] %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86) Drive C: | 286,96 Gb Total Space | 262,08 Gb Free Space | 91,33% Space Free | Partition Type: NTFS Drive D: | 298,09 Gb Total Space | 215,41 Gb Free Space | 72,27% Space Free | Partition Type: NTFS Drive H: | 7,24 Gb Total Space | 7,24 Gb Free Space | 100,00% Space Free | Partition Type: FAT32 Computer Name: *** | User Name:Anna | Logged in as Administrator. Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days ========== Processes (SafeList) ========== PRC - [2010.12.05 18:29:18 | 000,575,488 | ---- | M] (OldTimer Tools) -- C:\Users\Anna\Downloads\OTL.exe PRC - [2010.12.05 14:38:47 | 000,026,624 | ---- | M] (Sony Corporation) -- C:\Program Files (x86)\SONY\Marketing Tools\MarketingTools.exe PRC - [2010.11.29 17:42:14 | 000,963,976 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe PRC - [2010.10.27 07:13:18 | 000,912,344 | ---- | M] (Mozilla Corporation) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe PRC - [2010.05.07 12:39:36 | 000,344,736 | ---- | M] (Kaspersky Lab ZAO) -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe PRC - [2009.12.14 21:06:24 | 002,320,920 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe PRC - [2009.12.14 21:06:08 | 000,268,824 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe PRC - [2009.12.01 22:03:52 | 000,204,648 | ---- | M] (Sony Corporation) -- C:\Program Files (x86)\SONY\VAIO Event Service\VESMgr.exe PRC - [2009.12.01 22:03:52 | 000,112,488 | ---- | M] (Sony Corporation) -- C:\Program Files (x86)\SONY\VAIO Event Service\VESMgrSub.exe PRC - [2009.11.20 23:25:24 | 000,013,336 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe PRC - [2009.11.20 23:25:22 | 000,284,696 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe PRC - [2009.10.24 03:18:54 | 000,360,224 | ---- | M] (Sony Corporation) -- c:\Program Files (x86)\Sony\PMB\PMBDeviceInfoProvider.exe PRC - [2009.10.24 03:18:52 | 000,597,792 | ---- | M] (Sony Corporation) -- C:\Program Files (x86)\SONY\PMB\PMBVolumeWatcher.exe PRC - [2009.09.14 19:24:08 | 000,206,336 | ---- | M] (Sony Corporation) -- C:\Program Files (x86)\Common Files\Sony Shared\VAIO Entertainment Platform\VzCdb\VzCdbSvc.exe PRC - [2009.09.14 18:53:48 | 000,642,416 | ---- | M] (Sony Corporation) -- C:\Program Files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe PRC - [2009.08.26 19:24:00 | 000,320,880 | ---- | M] (Sony Corporation) -- C:\Program Files (x86)\SONY\ISB Utility\ISBMgr.exe PRC - [2009.08.18 14:09:28 | 000,077,824 | ---- | M] (Intel Corporation) -- C:\Programme\Sony\VAIO Care\listener.exe PRC - [2008.09.18 10:59:10 | 000,104,960 | ---- | M] (ArcSoft, Inc.) -- C:\Program Files (x86)\ArcSoft\Magic-i Visual Effects 2\uCamMonitor.exe PRC - [2007.07.24 11:15:14 | 000,185,632 | ---- | M] (Protexis Inc.) -- C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe PRC - [2007.01.04 19:48:50 | 000,112,152 | ---- | M] (InterVideo) -- C:\Program Files (x86)\Common Files\InterVideo\RegMgr\iviRegMgr.exe ========== Modules (SafeList) ========== MOD - [2010.12.05 18:29:18 | 000,575,488 | ---- | M] (OldTimer Tools) -- C:\Users\***\Downloads\OTL.exe MOD - [2009.07.14 02:03:50 | 001,680,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16385_none_421189da2b7fabfc\comctl32.dll ========== Win32 Services (SafeList) ========== SRV:64bit: - [2010.01.27 21:10:56 | 000,202,752 | ---- | M] (AMD) [Auto | Running] -- C:\Windows\SysNative\atiesrxx.exe -- (AMD External Events Utility) SRV:64bit: - [2009.11.30 19:51:18 | 000,571,248 | ---- | M] (Sony Corporation) [On_Demand | Running] -- C:\Program Files\Sony\VAIO Power Management\SPMService.exe -- (VAIO Power Management) SRV:64bit: - [2009.11.25 19:06:06 | 000,821,760 | ---- | M] (Sony Corporation) [Auto | Running] -- C:\Program Files\Sony\VAIO Smart Network\VSNService.exe -- (VSNService) SRV:64bit: - [2009.10.30 09:50:40 | 001,165,680 | ---- | M] (Sony Corporation) [On_Demand | Stopped] -- C:\Program Files\Sony\VAIO Update 5\VUAgent.exe -- (VUAgent) SRV:64bit: - [2009.09.16 23:28:42 | 000,167,424 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files\Sony\VAIO Care\collsvc.exe -- (SampleCollector) SRV:64bit: - [2009.09.16 13:27:12 | 000,480,624 | ---- | M] (Sony Corporation) [On_Demand | Stopped] -- C:\Program Files\Sony\VCM Intelligent Analyzing Manager\VcmIAlzMgr.exe -- (VcmIAlzMgr) SRV:64bit: - [2009.09.08 18:09:20 | 000,110,960 | ---- | M] (Sony Corporation) [On_Demand | Stopped] -- C:\Program Files\Common Files\Sony Shared\VcmXml\VcmXmlIfHelper64.exe -- (VcmXmlIfHelper) SRV:64bit: - [2009.09.01 21:42:00 | 000,361,840 | ---- | M] (Sony Corporation) [On_Demand | Stopped] -- C:\Program Files\Sony\VCM Intelligent Network Service Manager\VcmINSMgr.exe -- (VcmINSMgr) SRV - [2010.12.05 14:28:57 | 000,332,272 | ---- | M] (Google Inc.) [On_Demand | Stopped] -- C:\ProgramData\Partner\Partner.exe -- (Partner Service) SRV - [2010.05.07 12:39:36 | 000,344,736 | ---- | M] (Kaspersky Lab ZAO) [Auto | Running] -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe -- (AVP) SRV - [2009.12.14 21:06:24 | 002,320,920 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe -- (UNS) Intel(R) SRV - [2009.12.14 21:06:08 | 000,268,824 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe -- (LMS) Intel(R) SRV - [2009.12.01 22:03:52 | 000,204,648 | ---- | M] (Sony Corporation) [Auto | Running] -- C:\Program Files (x86)\SONY\VAIO Event Service\VESMgr.exe -- (VAIO Event Service) SRV - [2009.11.20 23:25:24 | 000,013,336 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe -- (IAStorDataMgrSvc) Intel(R) SRV - [2009.10.24 03:18:54 | 000,360,224 | ---- | M] (Sony Corporation) [Auto | Running] -- c:\Program Files (x86)\Sony\PMB\PMBDeviceInfoProvider.exe -- (PMBDeviceInfoProvider) SRV - [2009.10.15 16:34:36 | 000,427,304 | ---- | M] (Sony Corporation) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDms.exe -- (SOHDms) SRV - [2009.10.15 16:34:36 | 000,091,432 | ---- | M] (Sony Corporation) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHPlMgr.exe -- (SOHPlMgr) SRV - [2009.10.15 16:34:36 | 000,075,048 | ---- | M] (Sony Corporation) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDs.exe -- (SOHDs) SRV - [2009.10.15 16:34:34 | 000,120,104 | ---- | M] (Sony Corporation) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHCImp.exe -- (SOHCImp) SRV - [2009.10.15 16:34:34 | 000,070,952 | ---- | M] (Sony Corporation) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDBSvr.exe -- (SOHDBSvr) SRV - [2009.09.28 09:42:50 | 000,109,056 | ---- | M] (ArcSoft Inc.) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe -- (ACDaemon) SRV - [2009.09.14 19:24:08 | 000,206,336 | ---- | M] (Sony Corporation) [Auto | Running] -- C:\Program Files (x86)\Common Files\Sony Shared\VAIO Entertainment Platform\VzCdb\VzCdbSvc.exe -- (VzCdbSvc) SRV - [2009.09.14 19:24:08 | 000,069,632 | ---- | M] (Sony Corporation) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Sony Shared\VAIO Entertainment Platform\VzHardwareResourceManager\VzHardwareResourceManager\VzHardwareResourceManager.exe -- (VAIO Entertainment TV Device Arbitration Service) SRV - [2009.09.14 18:53:48 | 000,642,416 | ---- | M] (Sony Corporation) [Auto | Running] -- C:\Program Files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe -- (VCFw) SRV - [2009.09.04 21:35:12 | 000,873,248 | ---- | M] (Broadcom Corporation.) [Auto | Running] -- C:\Programme\WIDCOMM\Bluetooth Software\btwdins.exe -- (btwdins) SRV - [2009.08.31 01:59:30 | 000,362,992 | ---- | M] (Sonic Solutions) [Auto | Stopped] -- C:\Program Files (x86)\Roxio\Digital Home 10\RoxioUpnpService10.exe -- (Roxio Upnp Server 10) SRV - [2009.08.31 01:59:18 | 000,313,840 | ---- | M] (Sonic Solutions) [On_Demand | Stopped] -- C:\Program Files (x86)\Roxio\Digital Home 10\RoxioUPnPRenderer10.exe -- (Roxio UPnP Renderer 10) SRV - [2009.06.10 22:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32) SRV - [2008.09.18 10:59:10 | 000,104,960 | ---- | M] (ArcSoft, Inc.) [Auto | Running] -- C:\Program Files (x86)\ArcSoft\Magic-i Visual Effects 2\uCamMonitor.exe -- (uCamMonitor) SRV - [2007.07.24 11:15:14 | 000,185,632 | ---- | M] (Protexis Inc.) [Auto | Running] -- C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe -- (PSI_SVC_2) SRV - [2007.01.04 19:48:50 | 000,112,152 | ---- | M] (InterVideo) [Auto | Running] -- C:\Program Files (x86)\Common Files\InterVideo\RegMgr\iviRegMgr.exe -- (IviRegMgr) ========== Driver Services (SafeList) ========== DRV:64bit: - [2010.12.05 15:29:58 | 000,560,216 | ---- | M] (Kaspersky Lab) [File_System | System | Running] -- C:\Windows\SysNative\drivers\klif.sys -- (KLIF) DRV:64bit: - [2010.05.07 00:19:14 | 000,460,888 | ---- | M] (Kaspersky Lab ZAO) [Kernel | System | Stopped] -- C:\Windows\SysNative\drivers\kl2.sys -- (kl2) DRV:64bit: - [2010.05.07 00:19:10 | 000,460,888 | ---- | M] (Kaspersky Lab ZAO) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\kl1.sys -- (KL1) DRV:64bit: - [2010.04.22 19:07:36 | 000,027,736 | ---- | M] (Kaspersky Lab ZAO) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\klim6.sys -- (KLIM6) DRV:64bit: - [2010.01.27 21:10:59 | 006,106,624 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\atikmdag.sys -- (atikmdag) DRV:64bit: - [2009.12.16 21:03:59 | 000,244,736 | ---- | M] (Intel(R) Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\IntcDAud.sys -- (IntcDAud) Intel(R) DRV:64bit: - [2009.12.16 21:03:04 | 007,778,176 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\igdkmd64.sys -- (igfx) DRV:64bit: - [2009.12.16 03:49:48 | 000,213,280 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\RtHDMIVX.sys -- (RTHDMIAzAudService) DRV:64bit: - [2009.12.14 21:06:07 | 000,056,344 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\HECIx64.sys -- (HECIx64) Intel(R) DRV:64bit: - [2009.11.20 23:09:48 | 000,537,112 | ---- | M] (Intel Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\iaStor.sys -- (iaStor) DRV:64bit: - [2009.11.18 05:30:44 | 000,021,160 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\btwrchid.sys -- (btwrchid) DRV:64bit: - [2009.11.18 05:30:32 | 000,132,648 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\btwavdt.sys -- (btwavdt) DRV:64bit: - [2009.11.18 05:30:32 | 000,098,344 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\btwaudio.sys -- (btwaudio) DRV:64bit: - [2009.11.18 05:30:21 | 000,052,264 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\btusbflt.sys -- (btusbflt) DRV:64bit: - [2009.11.18 05:23:46 | 000,035,104 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\btwl2cap.sys -- (btwl2cap) DRV:64bit: - [2009.11.13 21:08:21 | 000,151,936 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Impcd.sys -- (Impcd) DRV:64bit: - [2009.11.12 21:16:19 | 000,395,264 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\yk62x64.sys -- (yukonw7) DRV:64bit: - [2009.11.12 21:06:44 | 001,542,656 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\athrx.sys -- (athr) DRV:64bit: - [2009.11.06 21:27:30 | 000,093,696 | ---- | M] (REDC) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\rimssne64.sys -- (rimspci) DRV:64bit: - [2009.11.04 10:59:59 | 000,253,488 | ---- | M] (Alps Electric Co., Ltd.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Apfiltr.sys -- (ApfiltrService) DRV:64bit: - [2009.11.02 20:27:10 | 000,022,544 | ---- | M] (Kaspersky Lab) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\klmouflt.sys -- (klmouflt) DRV:64bit: - [2009.10.09 03:47:00 | 000,109,056 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\sdbus.sys -- (sdbus) DRV:64bit: - [2009.09.15 21:09:08 | 000,075,776 | ---- | M] (REDC) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\risdsne64.sys -- (risdsnpe) DRV:64bit: - [2009.08.19 21:09:21 | 000,011,392 | ---- | M] (Sony Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\SFEP.sys -- (SFEP) DRV:64bit: - [2009.08.05 23:24:16 | 000,061,280 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\fssfltr.sys -- (fssfltr) DRV:64bit: - [2009.07.14 02:52:21 | 000,106,576 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata) DRV:64bit: - [2009.07.14 02:52:21 | 000,028,752 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata) DRV:64bit: - [2009.07.14 02:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs) DRV:64bit: - [2009.07.14 02:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2) DRV:64bit: - [2009.07.14 02:47:48 | 000,077,888 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD) DRV:64bit: - [2009.07.14 02:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor) DRV:64bit: - [2009.06.10 21:38:56 | 000,000,308 | ---- | M] () [File_System | On_Demand | Running] -- C:\Windows\SysNative\wbem\ntfs.mof -- (Ntfs) DRV:64bit: - [2009.06.10 21:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv) DRV:64bit: - [2009.06.10 21:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv) DRV:64bit: - [2009.06.10 21:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a) DRV:64bit: - [2009.06.10 21:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir) DRV:64bit: - [2009.05.26 14:32:04 | 000,019,968 | ---- | M] (ArcSoft, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\ArcSoftKsUFilter.sys -- (ArcSoftKsUFilter) DRV:64bit: - [2009.05.20 11:00:00 | 000,055,280 | ---- | M] (Sonic Solutions) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\PxHlpa64.sys -- (PxHlpa64) DRV:64bit: - [2007.04.17 11:51:50 | 000,014,112 | ---- | M] (InterVideo) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\regi.sys -- (regi) ========== Standard Registry (SafeList) ========== ========== Internet Explorer ========== IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.com/ig/redirectdomain?brand=SVEC&bmod=EU01 IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SearchDefaultBranded = 1 IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com/ig/redirectdomain?brand=SVEC&bmod=EU01 IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 ========== FireFox ========== FF - HKLM\software\mozilla\Mozilla Firefox 3.6.12\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2010.12.05 16:14:43 | 000,000,000 | ---D | M] FF - HKLM\software\mozilla\Mozilla Firefox 3.6.12\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins [2010.12.05 16:14:42 | 000,000,000 | ---D | M] FF - HKLM\software\mozilla\Thunderbird\Extensions\\{eea12ec4-729d-4703-bc37-106ce9879ce2}: C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2011\THBExt [2010.12.05 15:30:23 | 000,000,000 | ---D | M] [2010.12.05 16:14:59 | 000,000,000 | ---D | M] -- C:\Users\Anna\AppData\Roaming\mozilla\Extensions [2010.12.05 16:14:59 | 000,000,000 | ---D | M] -- C:\Users\Anna\AppData\Roaming\mozilla\Firefox\Profiles\f3v4sglo.default\extensions [2010.12.05 16:14:42 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\mozilla firefox\extensions [2010.10.27 06:44:13 | 000,001,392 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\amazondotcom-de.xml [2010.10.27 06:44:13 | 000,002,344 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\eBay-de.xml [2010.10.27 06:44:13 | 000,006,805 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\leo_ende_de.xml [2010.10.27 06:44:13 | 000,001,178 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\wikipedia-de.xml [2010.10.27 06:44:13 | 000,001,105 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\yahoo-de.xml O1 HOSTS File: ([2009.06.10 22:00:26 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts O2:64bit: - BHO: (Windows Live Family Safety Browser Helper Class) - {4f3ed5cd-0726-42a9-87f5-d13f3d2976ac} - C:\Programme\Windows Live\Family Safety\fssbho.dll (Microsoft Corporation) O2:64bit: - BHO: (IEVkbdBHO Class) - {59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2011\x64\ievkbd.dll (Kaspersky Lab ZAO) O2:64bit: - BHO: (Partner BHO Class) - {83FF80F4-8C74-4b80-B5BA-C8DDD434E5C4} - C:\ProgramData\Partner\Partner64.dll (Google Inc.) O2:64bit: - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.) O2:64bit: - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Programme\Google\GoogleToolbarNotifier\5.2.4204.1700\swg64.dll (Google Inc.) O2:64bit: - BHO: (FilterBHO Class) - {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2011\x64\klwtbbho.dll (Kaspersky Lab ZAO) O2 - BHO: (IEVkbdBHO Class) - {59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2011\ievkbd.dll (Kaspersky Lab ZAO) O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - No CLSID value found. O2 - BHO: (Partner BHO Class) - {83FF80F4-8C74-4b80-B5BA-C8DDD434E5C4} - C:\ProgramData\Partner\Partner.dll (Google Inc.) O2 - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.) O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.2.4204.1700\swg.dll (Google Inc.) O2 - BHO: (Google Dictionary Compression sdch) - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files (x86)\Google\Google Toolbar\Component\fastsearch_B7C5AC242193BB3E.dll (Google Inc.) O2 - BHO: (FilterBHO Class) - {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2011\klwtbbho.dll (Kaspersky Lab ZAO) O3:64bit: - HKLM\..\Toolbar: (Google Toolbar) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.) O3 - HKLM\..\Toolbar: (Google Toolbar) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.) O3:64bit: - HKCU\..\Toolbar\WebBrowser: (Google Toolbar) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.) O3 - HKCU\..\Toolbar\WebBrowser: (Google Toolbar) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.) O4:64bit: - HKLM..\Run: [Apoint] C:\Programme\Apoint\Apoint.exe (Alps Electric Co., Ltd.) O4:64bit: - HKLM..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Realtek Semiconductor) O4 - HKLM..\Run: [AVP] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe (Kaspersky Lab ZAO) O4 - HKLM..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe (Intel Corporation) O4 - HKLM..\Run: [ISBMgr.exe] C:\Program Files (x86)\Sony\ISB Utility\ISBMgr.exe (Sony Corporation) O4 - HKLM..\Run: [MarketingTools] C:\Program Files (x86)\Sony\Marketing Tools\MarketingTools.exe (Sony Corporation) O4 - HKLM..\Run: [PMBVolumeWatcher] c:\Program Files (x86)\Sony\PMB\PMBVolumeWatcher.exe (Sony Corporation) O4 - HKLM..\Run: [StartCCC] c:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.) O4 - HKLM..\RunOnce: [Malwarebytes' Anti-Malware] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation) O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3 O8:64bit: - Extra context menu item: Bild an &Bluetooth-Gerät senden... - C:\Programme\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm () O8:64bit: - Extra context menu item: Hinzufügen zu Anti-Banner - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2011\ie_banner_deny.htm () O8:64bit: - Extra context menu item: Seite an &Bluetooth-Gerät senden... - C:\Programme\WIDCOMM\Bluetooth Software\btsendto_ie.htm () O8 - Extra context menu item: Bild an &Bluetooth-Gerät senden... - C:\Programme\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm () O8 - Extra context menu item: Hinzufügen zu Anti-Banner - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2011\ie_banner_deny.htm () O8 - Extra context menu item: Seite an &Bluetooth-Gerät senden... - C:\Programme\WIDCOMM\Bluetooth Software\btsendto_ie.htm () O9:64bit: - Extra Button: &Virtuelle Tastatur - {4248FE82-7FCB-46AC-B270-339F08212110} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2011\x64\klwtbbho.dll (Kaspersky Lab ZAO) O9:64bit: - Extra Button: @C:\Program Files\WIDCOMM\Bluetooth Software\btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Programme\WIDCOMM\Bluetooth Software\btsendto_ie.htm () O9:64bit: - Extra 'Tools' menuitem : @C:\Program Files\WIDCOMM\Bluetooth Software\btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Programme\WIDCOMM\Bluetooth Software\btsendto_ie.htm () O9:64bit: - Extra Button: Li&nks untersuchen - {CCF151D8-D089-449F-A5A4-D9909053F20F} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2011\x64\klwtbbho.dll (Kaspersky Lab ZAO) O9 - Extra Button: &Virtuelle Tastatur - {4248FE82-7FCB-46AC-B270-339F08212110} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2011\klwtbbho.dll (Kaspersky Lab ZAO) O9 - Extra Button: Send To Bluetooth - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Programme\WIDCOMM\Bluetooth Software\btsendto_ie.htm () O9 - Extra 'Tools' menuitem : Send to &Bluetooth Device... - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Programme\WIDCOMM\Bluetooth Software\btsendto_ie.htm () O9 - Extra Button: Li&nks untersuchen - {CCF151D8-D089-449F-A5A4-D9909053F20F} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2011\klwtbbho.dll (Kaspersky Lab ZAO) O9 - Extra Button: Add to Evernote - {E0B8C461-F8FB-49b4-8373-FE32E92528A6} - c:\Program Files (x86)\Evernote\Evernote3.5\enbar.dll (Evernote Corporation) O9 - Extra 'Tools' menuitem : Add to Evernote - {E0B8C461-F8FB-49b4-8373-FE32E92528A6} - c:\Program Files (x86)\Evernote\Evernote3.5\enbar.dll (Evernote Corporation) O13 - gopher Prefix: missing O13 - gopher Prefix: missing O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_16-windows-i586.cab (Java Plug-in 1.6.0_16) O16 - DPF: {CAFEEFAC-0016-0000-0016-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_16-windows-i586.cab (Java Plug-in 1.6.0_16) O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_16-windows-i586.cab (Java Plug-in 1.6.0_16) O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_16-windows-i586.cab (Java Plug-in 1.6.0_16) O16 - DPF: {CAFEEFAC-0016-0000-0016-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_16-windows-i586.cab (Java Plug-in 1.6.0_16) O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_16-windows-i586.cab (Java Plug-in 1.6.0_16) O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.178.1 O18:64bit: - Protocol\Handler\livecall {828030A1-22C1-4009-854F-8E305202313F} - Reg Error: Key error. File not found O18:64bit: - Protocol\Handler\msnim {828030A1-22C1-4009-854F-8E305202313F} - Reg Error: Key error. File not found O18:64bit: - Protocol\Handler\wlmailhtml {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - Reg Error: Key error. File not found O18 - Protocol\Handler\livecall {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~2\WIC4A1~1\MESSEN~1\MSGRAP~1.DLL (Microsoft Corporation) O18 - Protocol\Handler\msnim {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~2\WIC4A1~1\MESSEN~1\MSGRAP~1.DLL (Microsoft Corporation) O20:64bit: - AppInit_DLLs: (C:\PROGRA~2\KASPER~1\KASPER~1\x64\kloehk.dll) - C:\PROGRA~2\KASPER~1\KASPER~1\x64\kloehk.dll (Kaspersky Lab ZAO) O20:64bit: - AppInit_DLLs: (C:\PROGRA~2\KASPER~1\KASPER~1\x64\sbhook64.dll) - C:\PROGRA~2\KASPER~1\KASPER~1\x64\sbhook64.dll (Kaspersky Lab ZAO) O20 - AppInit_DLLs: (C:\PROGRA~2\KASPER~1\KASPER~1\mzvkbd3.dll) - C:\PROGRA~2\KASPER~1\KASPER~1\mzvkbd3.dll (Kaspersky Lab ZAO) O20 - AppInit_DLLs: (C:\PROGRA~2\KASPER~1\KASPER~1\sbhook.dll) - C:\PROGRA~2\KASPER~1\KASPER~1\sbhook.dll (Kaspersky Lab ZAO) O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation) O20:64bit: - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\SysNative\SystemPropertiesPerformance.exe (Microsoft Corporation) O20:64bit: - HKLM Winlogon: VMApplet - (/pagefile) - File not found O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation) O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found O20:64bit: - Winlogon\Notify\igfxcui: DllName - Reg Error: Key error. - C:\Windows\SysNative\igfxdev.dll (Intel Corporation) O20:64bit: - Winlogon\Notify\klogon: DllName - Reg Error: Key error. - C:\Windows\SysNative\klogon.dll (Kaspersky Lab ZAO) O20 - Winlogon\Notify\VESWinlogon: DllName - VESWinlogon.dll - C:\Windows\SysWow64\VESWinlogon.dll (Sony Corporation) O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found. O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found. O32 - HKLM CDRom: AutoRun - 1 O33 - MountPoints2\{c8567f4e-007b-11e0-baa8-5442495c3fce}\Shell - "" = AutoRun O33 - MountPoints2\{c8567f4e-007b-11e0-baa8-5442495c3fce}\Shell\AutoRun\command - "" = H:\pushinst.exe -- File not found O34 - HKLM BootExecute: (autocheck autochk *) - File not found O35:64bit: - HKLM\..comfile [open] -- "%1" %* O35:64bit: - HKLM\..exefile [open] -- "%1" %* O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %* O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* ========== Files/Folders - Created Within 30 Days ========== [2010.12.05 18:03:05 | 000,000,000 | ---D | C] -- C:\Users\Anna\AppData\Roaming\Malwarebytes [2010.12.05 18:02:35 | 000,038,224 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\SysWow64\drivers\mbamswissarmy.sys [2010.12.05 18:02:34 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes [2010.12.05 18:02:31 | 000,024,152 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\SysNative\drivers\mbam.sys [2010.12.05 18:02:31 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware [2010.12.05 16:31:45 | 000,000,000 | ---D | C] -- C:\Users\Anna\AppData\Roaming\Macromedia [2010.12.05 16:14:50 | 000,000,000 | ---D | C] -- C:\Users\Anna\AppData\Roaming\Mozilla [2010.12.05 16:14:50 | 000,000,000 | ---D | C] -- C:\Users\Anna\AppData\Local\Mozilla [2010.12.05 16:14:41 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Mozilla Firefox [2010.12.05 16:09:49 | 000,000,000 | ---D | C] -- C:\Users\Anna\AppData\Roaming\Adobe [2010.12.05 15:45:09 | 000,000,000 | ---D | C] -- C:\Users\Anna\AVM_Driver [2010.12.05 15:41:29 | 000,000,000 | ---D | C] -- C:\Users\Anna\AppData\Local\Diagnostics [2010.12.05 15:33:23 | 000,000,000 | ---D | C] -- C:\Users\Anna\AppData\Roaming\Google [2010.12.05 15:33:22 | 000,000,000 | ---D | C] -- C:\Users\Anna\AppData\Local\Google [2010.12.05 15:30:06 | 000,000,000 | ---D | C] -- C:\ProgramData\Kaspersky Lab [2010.12.05 15:30:06 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Kaspersky Lab [2010.12.05 15:29:58 | 000,560,216 | ---- | C] (Kaspersky Lab) -- C:\Windows\SysNative\drivers\klif.sys [2010.12.05 15:11:29 | 000,000,000 | ---D | C] -- C:\Users\Anna\AppData\Local\Sony_Corporation [2010.12.05 15:11:26 | 000,000,000 | ---D | C] -- C:\Users\Anna\AppData\Roaming\Intel Corporation [2010.12.05 15:11:22 | 000,000,000 | ---D | C] -- C:\Users\Anna\AppData\Local\Broadcom [2010.12.05 15:11:22 | 000,000,000 | ---D | C] -- C:\Users\Anna\Documents\Bluetooth Exchange Folder [2010.12.05 15:11:17 | 000,000,000 | ---D | C] -- C:\Users\Anna\AppData\Roaming\ATI [2010.12.05 15:11:17 | 000,000,000 | ---D | C] -- C:\Users\Anna\AppData\Local\ATI [2010.12.05 15:10:58 | 000,000,000 | R--D | C] -- C:\Users\Anna\Searches [2010.12.05 15:10:50 | 000,000,000 | ---D | C] -- C:\Users\Anna\AppData\Roaming\Identities [2010.12.05 15:10:47 | 000,000,000 | R--D | C] -- C:\Users\Anna\Contacts [2010.12.05 15:10:13 | 000,000,000 | -H-D | C] -- C:\Windows\msdownld.tmp [2010.12.05 14:58:16 | 000,000,000 | ---D | C] -- C:\Users\Anna\AppData\Local\VirtualStore [2010.12.05 14:57:58 | 000,000,000 | ---D | C] -- C:\Users\Anna\AppData\Roaming\Sony Corporation [2010.12.05 14:57:55 | 000,000,000 | --SD | C] -- C:\Users\Anna\AppData\Roaming\Microsoft [2010.12.05 14:57:55 | 000,000,000 | R--D | C] -- C:\Users\Anna\Videos [2010.12.05 14:57:55 | 000,000,000 | R--D | C] -- C:\Users\Anna\Saved Games [2010.12.05 14:57:55 | 000,000,000 | R--D | C] -- C:\Users\Anna\Pictures [2010.12.05 14:57:55 | 000,000,000 | R--D | C] -- C:\Users\Anna\Music [2010.12.05 14:57:55 | 000,000,000 | R--D | C] -- C:\Users\Anna\Links [2010.12.05 14:57:55 | 000,000,000 | R--D | C] -- C:\Users\Anna\Favorites [2010.12.05 14:57:55 | 000,000,000 | R--D | C] -- C:\Users\Anna\Downloads [2010.12.05 14:57:55 | 000,000,000 | R--D | C] -- C:\Users\Anna\Documents [2010.12.05 14:57:55 | 000,000,000 | R--D | C] -- C:\Users\Anna\Desktop [2010.12.05 14:57:55 | 000,000,000 | -HSD | C] -- C:\Users\Anna\Vorlagen [2010.12.05 14:57:55 | 000,000,000 | -HSD | C] -- C:\Users\Anna\AppData\Local\Verlauf [2010.12.05 14:57:55 | 000,000,000 | -HSD | C] -- C:\Users\Anna\AppData\Local\Temporary Internet Files [2010.12.05 14:57:55 | 000,000,000 | -HSD | C] -- C:\Users\Anna\Startmenü [2010.12.05 14:57:55 | 000,000,000 | -HSD | C] -- C:\Users\Anna\SendTo [2010.12.05 14:57:55 | 000,000,000 | -HSD | C] -- C:\Users\Anna\Recent [2010.12.05 14:57:55 | 000,000,000 | -HSD | C] -- C:\Users\Anna\Netzwerkumgebung [2010.12.05 14:57:55 | 000,000,000 | -HSD | C] -- C:\Users\Anna\Lokale Einstellungen [2010.12.05 14:57:55 | 000,000,000 | -HSD | C] -- C:\Users\Anna\Documents\Eigene Videos [2010.12.05 14:57:55 | 000,000,000 | -HSD | C] -- C:\Users\Anna\Documents\Eigene Musik [2010.12.05 14:57:55 | 000,000,000 | -HSD | C] -- C:\Users\Anna\Eigene Dateien [2010.12.05 14:57:55 | 000,000,000 | -HSD | C] -- C:\Users\Anna\Documents\Eigene Bilder [2010.12.05 14:57:55 | 000,000,000 | -HSD | C] -- C:\Users\Anna\Druckumgebung [2010.12.05 14:57:55 | 000,000,000 | -HSD | C] -- C:\Users\Anna\Cookies [2010.12.05 14:57:55 | 000,000,000 | -HSD | C] -- C:\Users\Anna\AppData\Local\Anwendungsdaten [2010.12.05 14:57:55 | 000,000,000 | -HSD | C] -- C:\Users\Anna\Anwendungsdaten [2010.12.05 14:57:55 | 000,000,000 | -H-D | C] -- C:\Users\Anna\AppData [2010.12.05 14:57:55 | 000,000,000 | ---D | C] -- C:\Users\Anna\AppData\Local\Temp [2010.12.05 14:57:55 | 000,000,000 | ---D | C] -- C:\Users\Anna\AppData\Local\Microsoft [2010.12.05 14:57:55 | 000,000,000 | ---D | C] -- C:\Users\Anna\AppData\Roaming\Media Center Programs [2010.12.05 14:57:36 | 000,000,000 | -HSD | C] -- C:\ProgramData\Vorlagen [2010.12.05 14:57:36 | 000,000,000 | -HSD | C] -- C:\ProgramData\Startmenü [2010.12.05 14:57:36 | 000,000,000 | -HSD | C] -- C:\Programme [2010.12.05 14:57:36 | 000,000,000 | -HSD | C] -- C:\Programme\Gemeinsame Dateien [2010.12.05 14:57:36 | 000,000,000 | -HSD | C] -- C:\ProgramData\Favoriten [2010.12.05 14:57:36 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Eigene Videos [2010.12.05 14:57:36 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Eigene Musik [2010.12.05 14:57:36 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Eigene Bilder [2010.12.05 14:57:36 | 000,000,000 | -HSD | C] -- C:\Dokumente und Einstellungen [2010.12.05 14:57:36 | 000,000,000 | -HSD | C] -- C:\ProgramData\Dokumente [2010.12.05 14:57:36 | 000,000,000 | -HSD | C] -- C:\ProgramData\Anwendungsdaten [2010.12.05 14:48:14 | 000,000,000 | ---D | C] -- C:\_FS_SWRINFO [2010.12.05 14:48:13 | 000,000,000 | ---D | C] -- C:\Documentation [2010.12.05 14:48:04 | 000,061,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\fssfltr.sys [2010.12.05 14:48:04 | 000,000,000 | ---D | C] -- C:\Programme\Windows Live [2010.12.05 14:48:04 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\DRVSTORE [2010.12.05 14:47:34 | 004,398,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_32.dll [2010.12.05 14:47:34 | 003,426,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_32.dll [2010.12.05 14:46:54 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft [2010.12.05 14:46:46 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\microsoft [2010.12.05 14:46:41 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Windows Live SkyDrive [2010.12.05 14:46:27 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Windows Live [2010.12.05 14:46:18 | 000,000,000 | ---D | C] -- C:\Windows\PCHEALTH [2010.12.05 14:45:40 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Windows Live [2010.12.05 14:45:11 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Sony Corporation [2010.12.05 14:43:01 | 003,727,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_35.dll [2010.12.05 14:42:49 | 000,000,000 | ---D | C] -- C:\Temp [2010.12.05 14:42:33 | 000,098,304 | ---- | C] (Sony Corporation) -- C:\Windows\SysWow64\VESWinlogon.dll [2010.12.05 14:39:51 | 000,455,680 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\SysNative\deploytk.dll [2010.12.05 14:39:51 | 000,181,760 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\SysNative\javaws.exe [2010.12.05 14:39:51 | 000,165,888 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\SysNative\javaw.exe [2010.12.05 14:39:51 | 000,165,888 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\SysNative\java.exe [2010.12.05 14:39:48 | 000,000,000 | ---D | C] -- C:\Programme\Java [2010.12.05 14:39:43 | 000,411,368 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\deploytk.dll [2010.12.05 14:39:43 | 000,149,280 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\javaws.exe [2010.12.05 14:39:43 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\javaw.exe [2010.12.05 14:39:43 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\java.exe [2010.12.05 14:39:39 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Java [2010.12.05 14:39:30 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\VAIO screensavers [2010.12.05 14:39:26 | 000,000,000 | ---D | C] -- C:\ProgramData\Uninstall [2010.12.05 14:39:20 | 000,000,000 | ---D | C] -- C:\ProgramData\Sonic [2010.12.05 14:39:14 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Roxio [2010.12.05 14:38:58 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Sonic Shared [2010.12.05 14:38:53 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Roxio Shared [2010.12.05 14:38:43 | 000,563,696 | ---- | C] (Sonic Solutions) -- C:\Windows\SysWow64\pxdrv.dll [2010.12.05 14:38:43 | 000,133,616 | ---- | C] (Sonic Solutions) -- C:\Windows\SysWow64\pxafs.dll [2010.12.05 14:38:43 | 000,072,176 | ---- | C] (Sonic Solutions) -- C:\Windows\SysWow64\pxhpinst.exe [2010.12.05 14:38:43 | 000,055,280 | ---- | C] (Sonic Solutions) -- C:\Windows\SysNative\drivers\PxHlpa64.sys [2010.12.05 14:38:43 | 000,010,224 | ---- | C] (Sonic Solutions) -- C:\Windows\SysNative\drivers\cdralw2k.sys [2010.12.05 14:38:43 | 000,010,224 | ---- | C] (Sonic Solutions) -- C:\Windows\SysNative\drivers\cdr4_xp.sys [2010.12.05 14:38:43 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\PX Storage Engine [2010.12.05 14:36:15 | 000,000,000 | ---D | C] -- C:\ProgramData\MusicStation [2010.12.05 14:36:15 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\MusicStation [2010.12.05 14:36:14 | 000,000,000 | ---D | C] -- C:\Programme\Microsoft Synchronization Services [2010.12.05 14:36:14 | 000,000,000 | ---D | C] -- C:\Programme\Microsoft SQL Server Compact Edition [2010.12.05 14:36:13 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Synchronization Services [2010.12.05 14:36:13 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft SQL Server Compact Edition [2010.12.05 14:35:52 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Office [2010.12.05 14:32:47 | 005,425,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DX9_41.dll [2010.12.05 14:32:47 | 004,178,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_41.dll [2010.12.05 14:32:47 | 002,430,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_41.dll [2010.12.05 14:32:47 | 001,846,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_41.dll [2010.12.05 14:32:47 | 000,520,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_41.dll [2010.12.05 14:32:47 | 000,453,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_41.dll [2010.12.05 14:32:14 | 000,000,000 | ---D | C] -- C:\ProgramData\SiteAdvisor [2010.12.05 14:29:44 | 000,000,000 | ---D | C] -- C:\ProgramData\McAfee [2010.12.05 14:29:13 | 000,499,712 | R--- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msvcp71.dll [2010.12.05 14:29:13 | 000,348,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msvcr71.dll [2010.12.05 14:29:13 | 000,245,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\unicows.dll [2010.12.05 14:29:13 | 000,212,480 | ---- | C] (Eastman Kodak) -- C:\Windows\SysWow64\PCDLIB32.DLL [2010.12.05 14:29:12 | 000,055,808 | ---- | C] (ArcSoft, Inc.) -- C:\Windows\System\ArcSoftKsUFilter.dll [2010.12.05 14:29:12 | 000,019,968 | ---- | C] (ArcSoft, Inc.) -- C:\Windows\SysNative\drivers\ArcSoftKsUFilter.sys [2010.12.05 14:29:11 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\ArcSoft [2010.12.05 14:29:11 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\ArcSoft [2010.12.05 14:29:05 | 000,000,000 | ---D | C] -- C:\Programme\Google [2010.12.05 14:29:04 | 000,000,000 | ---D | C] -- C:\ProgramData\Google [2010.12.05 14:28:59 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Google [2010.12.05 14:28:57 | 000,000,000 | ---D | C] -- C:\ProgramData\Partner [2010.12.05 14:28:54 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\Macromed [2010.12.05 14:28:51 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Evernote [2010.12.05 14:28:50 | 000,000,000 | ---D | C] -- C:\ProgramData\Evernote [2010.12.05 14:28:38 | 000,000,000 | -H-D | C] -- C:\SPLASH.000 [2010.12.05 14:28:23 | 000,000,000 | -H-D | C] -- C:\SPLASH.SYS [2010.12.05 14:28:06 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Downloaded Installations [2010.12.05 14:27:40 | 000,000,000 | ---D | C] -- C:\ProgramData\ATI [2010.12.05 14:27:08 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\ATI Technologies [2010.12.05 14:26:15 | 000,014,112 | ---- | C] (InterVideo) -- C:\Windows\SysNative\drivers\regi.sys [2010.12.05 14:26:12 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\InterVideo [2010.12.05 14:26:04 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Protexis [2010.12.05 14:26:00 | 000,000,000 | ---D | C] -- C:\ProgramData\Corel [2010.12.05 14:25:59 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Corel [2010.12.05 14:25:55 | 002,332,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_29.dll [2010.12.05 14:25:30 | 000,000,000 | ---D | C] -- C:\ProgramData\Adobe [2010.12.05 14:25:30 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Adobe [2010.12.05 14:25:30 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Adobe [2010.12.05 14:25:08 | 000,000,000 | ---D | C] -- C:\Windows\Sonysys [2010.12.05 14:24:58 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\SONY [2010.12.05 14:23:28 | 000,000,000 | ---D | C] -- C:\Programme\Apoint [2010.12.05 14:23:17 | 001,691,680 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RHDMEx64.dll [2010.12.05 14:23:17 | 001,638,432 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RtkHDM64.dll [2010.12.05 14:23:17 | 000,304,640 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RH3DHT64.dll [2010.12.05 14:23:17 | 000,304,640 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RH3DAA64.dll [2010.12.05 14:23:17 | 000,213,280 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\drivers\RtHDMIVX.sys [2010.12.05 14:23:17 | 000,064,032 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RHCoInst64.dll [2010.12.05 14:23:06 | 000,000,000 | ---D | C] -- C:\Programme\Realtek [2010.12.05 14:23:05 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\RTCOM [2010.12.05 14:22:54 | 002,719,504 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\SysNative\WavesGUILib.dll [2010.12.05 14:22:54 | 002,197,264 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxAudioEQ.dll [2010.12.05 14:22:54 | 001,692,192 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RtPgEx64.dll [2010.12.05 14:22:54 | 001,638,432 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RtkAPO64.dll [2010.12.05 14:22:54 | 001,201,184 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RTCOM64.dll [2010.12.05 14:22:54 | 000,612,384 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RTSnMg64.cpl [2010.12.05 14:22:54 | 000,518,896 | ---- | C] (SRS Labs, Inc.) -- C:\Windows\SysNative\SRSTSX64.dll [2010.12.05 14:22:54 | 000,449,056 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RtkApi64.dll [2010.12.05 14:22:54 | 000,363,008 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RTEEP64A.dll [2010.12.05 14:22:54 | 000,332,320 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RtlCPAPI64.dll [2010.12.05 14:22:54 | 000,325,904 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxAudioAPO20.dll [2010.12.05 14:22:54 | 000,321,536 | ---- | C] (Fortemedia Corporation) -- C:\Windows\SysNative\FMAPO64.dll [2010.12.05 14:22:54 | 000,304,640 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RP3DHT64.dll [2010.12.05 14:22:54 | 000,304,640 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RP3DAA64.dll [2010.12.05 14:22:54 | 000,211,184 | ---- | C] (SRS Labs, Inc.) -- C:\Windows\SysNative\SRSTSH64.dll [2010.12.05 14:22:54 | 000,198,896 | ---- | C] (SRS Labs, Inc.) -- C:\Windows\SysNative\SRSHP64.dll [2010.12.05 14:22:54 | 000,198,656 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RTEED64A.dll [2010.12.05 14:22:54 | 000,155,888 | ---- | C] (SRS Labs, Inc.) -- C:\Windows\SysNative\SRSWOW64.dll [2010.12.05 14:22:54 | 000,149,536 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RtkCfg64.dll [2010.12.05 14:22:54 | 000,095,744 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RTEEL64A.dll [2010.12.05 14:22:54 | 000,073,216 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RTEEG64A.dll [2010.12.05 14:22:54 | 000,066,592 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RCoInst64.dll [2010.12.05 14:22:53 | 000,838,176 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\RtlExUpd.dll [2010.12.05 14:22:53 | 000,168,864 | ---- | C] (Andrea Electronics Corporation) -- C:\Windows\SysNative\AERTAC64.dll [2010.12.05 14:22:53 | 000,108,960 | ---- | C] (Andrea Electronics Corporation) -- C:\Windows\SysNative\AERTAR64.dll [2010.12.05 14:22:53 | 000,000,000 | -H-D | C] -- C:\Program Files (x86)\Temp [2010.12.05 14:22:53 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Realtek [2010.12.05 14:22:48 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\InstallShield [2010.12.05 14:22:23 | 000,000,000 | ---D | C] -- C:\Windows\SoftwareDistribution [2010.12.05 14:16:52 | 000,000,000 | -HSD | C] -- C:\System Volume Information [2010.12.05 14:15:53 | 000,000,000 | ---D | C] -- C:\Programme\Sony [2010.12.05 14:14:51 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\winrm [2010.12.05 14:14:51 | 000,000,000 | ---D | C] -- C:\Windows\de-DE [2010.12.05 14:14:50 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\XPSViewer [2010.12.05 14:14:50 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\winrm [2010.12.05 14:14:50 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\WCN [2010.12.05 14:14:50 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\WCN [2010.12.05 14:14:50 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\drivers\UMDF [2010.12.05 14:14:50 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\sysprep [2010.12.05 14:14:50 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\slmgr [2010.12.05 14:14:50 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\slmgr [2010.12.05 14:14:50 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\Printing_Admin_Scripts [2010.12.05 14:14:50 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\drivers\UMDF\de-DE [2010.12.05 14:14:50 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\drivers\de-DE [2010.12.05 14:14:50 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\drivers\de-DE [2010.12.05 14:14:50 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\de [2010.12.05 14:14:50 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\0407 [2010.12.05 14:14:50 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\0407 [2010.12.05 14:14:49 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\Printing_Admin_Scripts [2010.12.05 14:14:49 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\de [2010.12.05 14:14:30 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\usbrpm.sys.mui [2010.12.05 14:14:28 | 000,017,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\fvevol.sys.mui [2010.12.05 14:14:21 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\drivers\de-DE\qwavedrv.sys.mui [2010.12.05 14:14:20 | 000,017,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\nwifi.sys.mui [2010.12.05 14:14:20 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\qwavedrv.sys.mui [2010.12.05 14:14:18 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\volsnap.sys.mui [2010.12.05 14:14:18 | 000,025,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\usbport.sys.mui [2010.12.05 14:14:18 | 000,020,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\processr.sys.mui [2010.12.05 14:14:18 | 000,020,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\intelppm.sys.mui [2010.12.05 14:14:18 | 000,020,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\amdppm.sys.mui [2010.12.05 14:14:18 | 000,020,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\amdk8.sys.mui [2010.12.05 14:14:18 | 000,011,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\usbhub.sys.mui [2010.12.05 14:14:18 | 000,011,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\serial.sys.mui [2010.12.05 14:14:18 | 000,011,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\ohci1394.sys.mui [2010.12.05 14:14:18 | 000,011,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\1394ohci.sys.mui [2010.12.05 14:14:18 | 000,011,776 | ---- | C] (Brother Industries Ltd.) -- C:\Windows\SysNative\drivers\de-DE\BrSerId.sys.mui [2010.12.05 14:14:18 | 000,011,776 | ---- | C] (Brother Industries Ltd.) -- C:\Windows\SysNative\drivers\de-DE\BrSerIb.sys.mui [2010.12.05 14:14:18 | 000,010,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\i8042prt.sys.mui [2010.12.05 14:14:18 | 000,010,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\acpi.sys.mui [2010.12.05 14:14:18 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\battc.sys.mui [2010.12.05 14:14:18 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\pci.sys.mui [2010.12.05 14:14:18 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\IPMIDrv.sys.mui [2010.12.05 14:14:18 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\sermouse.sys.mui [2010.12.05 14:14:18 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\kbdclass.sys.mui [2010.12.05 14:14:18 | 000,004,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\mouclass.sys.mui [2010.12.05 14:14:18 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\wacompen.sys.mui [2010.12.05 14:14:18 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\vhdmp.sys.mui [2010.12.05 14:14:18 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\vdrvroot.sys.mui [2010.12.05 14:14:18 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\tpm.sys.mui [2010.12.05 14:14:18 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\isapnp.sys.mui [2010.12.05 14:14:18 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\hdaudbus.sys.mui [2010.12.05 14:14:18 | 000,003,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\parport.sys.mui [2010.12.05 14:14:18 | 000,003,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\ataport.sys.mui [2010.12.05 14:14:18 | 000,003,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\umbus.sys.mui [2010.12.05 14:14:18 | 000,003,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\mssmbios.sys.mui [2010.12.05 14:14:18 | 000,003,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\mouhid.sys.mui [2010.12.05 14:14:18 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\vwifibus.sys.mui [2010.12.05 14:14:18 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\ULIAGPKX.SYS.mui [2010.12.05 14:14:18 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\UAGP35.SYS.mui [2010.12.05 14:14:18 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\NV_AGP.SYS.mui [2010.12.05 14:14:18 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\MTConfig.sys.mui [2010.12.05 14:14:18 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\kbdhid.sys.mui [2010.12.05 14:14:18 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\GAGP30KX.SYS.mui [2010.12.05 14:14:18 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\AGP440.sys.mui [2010.12.05 14:14:18 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\wd.sys.mui [2010.12.05 14:14:18 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\disk.sys.mui [2010.12.05 14:14:18 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\cdrom.sys.mui [2010.12.05 14:14:18 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\amdide.sys.mui [2010.12.05 14:14:16 | 000,051,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\tcpip.sys.mui [2010.12.05 14:14:16 | 000,038,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\mpio.sys.mui [2010.12.05 14:14:16 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\bthport.sys.mui [2010.12.05 14:14:16 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\msdsm.sys.mui [2010.12.05 14:14:16 | 000,004,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\pcmcia.sys.mui [2010.12.05 14:14:16 | 000,004,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\bthpan.sys.mui [2010.12.05 14:14:16 | 000,004,096 | ---- | C] (SCM Microsystems, Inc.) -- C:\Windows\SysNative\drivers\de-DE\pscr.sys.mui [2010.12.05 14:14:16 | 000,003,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\portcls.sys.mui [2010.12.05 14:14:16 | 000,003,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\HdAudio.sys.mui [2010.12.05 14:14:16 | 000,003,584 | ---- | C] (ATI Technologies Inc.) -- C:\Windows\SysNative\drivers\de-DE\atikmdag.sys.mui [2010.12.05 14:14:16 | 000,003,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\serscan.sys.mui [2010.12.05 14:14:16 | 000,003,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\rndismpx.sys.mui [2010.12.05 14:14:16 | 000,003,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\rndismp6.sys.mui [2010.12.05 14:14:16 | 000,003,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\hidbth.sys.mui [2010.12.05 14:14:16 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\pnpmem.sys.mui [2010.12.05 14:14:16 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\Dot4usb.sys.mui [2010.12.05 14:14:16 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\BTHUSB.SYS.mui [2010.12.05 14:14:16 | 000,002,560 | ---- | C] (Brother Industries Ltd.) -- C:\Windows\SysNative\drivers\de-DE\BrParwdm.sys.mui [2010.12.05 14:14:16 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\ws2ifsl.sys.mui [2010.12.05 14:14:16 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\bthenum.sys.mui [2010.12.05 14:14:14 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\pacer.sys.mui [2010.12.05 14:14:13 | 000,029,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\bfe.dll.mui [2010.12.05 14:14:13 | 000,003,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\modem.sys.mui [2010.12.05 14:14:12 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\afd.sys.mui [2010.12.05 14:14:12 | 000,003,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\ipnat.sys.mui [2010.12.05 14:14:12 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\volmgrx.sys.mui [2010.12.05 14:14:10 | 000,072,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\ntfs.sys.mui [2010.12.05 14:14:10 | 000,009,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\tunnel.sys.mui [2010.12.05 14:14:10 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\luafv.sys.mui [2010.12.05 14:14:10 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\drivers\de-DE\ndiscap.sys.mui [2010.12.05 14:14:10 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\rdbss.sys.mui [2010.12.05 14:14:10 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\srv.sys.mui [2010.12.05 14:14:10 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\drivers\de-DE\scfilter.sys.mui [2010.12.05 14:14:09 | 000,003,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\ndisuio.sys.mui [2010.12.05 14:14:09 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\partmgr.sys.mui [2010.12.05 14:14:09 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\mountmgr.sys.mui [2010.12.05 14:14:08 | 000,051,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\drivers\de-DE\tcpip.sys.mui [2010.12.05 14:14:08 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\ndiscap.sys.mui [2010.12.05 14:14:08 | 000,003,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\RNDISMP.sys.mui [2010.12.05 14:14:08 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\scfilter.sys.mui [2010.12.05 14:14:07 | 000,041,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\ndis.sys.mui [2010.12.05 14:14:07 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\fltmgr.sys.mui [2010.12.05 14:14:07 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\wdf01000.sys.mui [2010.12.05 14:14:06 | 000,044,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\http.sys.mui [2010.12.05 14:14:06 | 000,029,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\drivers\de-DE\bfe.dll.mui [2010.12.05 14:14:06 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\drivers\de-DE\pacer.sys.mui [2010.12.05 14:14:06 | 000,003,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\scsiport.sys.mui [1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ] ========== Files - Modified Within 30 Days ========== [2010.12.05 18:02:35 | 000,001,109 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk [2010.12.05 17:59:50 | 001,472,002 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI [2010.12.05 17:59:50 | 000,643,866 | ---- | M] () -- C:\Windows\SysNative\perfh007.dat [2010.12.05 17:59:50 | 000,607,190 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat [2010.12.05 17:59:50 | 000,126,394 | ---- | M] () -- C:\Windows\SysNative\perfc007.dat [2010.12.05 17:59:50 | 000,103,568 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat [2010.12.05 16:14:45 | 000,001,939 | ---- | M] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk [2010.12.05 16:14:41 | 000,013,936 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 [2010.12.05 16:14:41 | 000,013,936 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 [2010.12.05 16:06:07 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat [2010.12.05 16:06:01 | 3106,455,552 | -HS- | M] () -- C:\hiberfil.sys [2010.12.05 16:02:53 | 000,153,353 | ---- | M] () -- C:\Windows\SysNative\drivers\klin.dat [2010.12.05 16:02:53 | 000,106,761 | ---- | M] () -- C:\Windows\SysNative\drivers\klick.dat [2010.12.05 15:29:58 | 000,560,216 | ---- | M] (Kaspersky Lab) -- C:\Windows\SysNative\drivers\klif.sys [2010.12.05 15:10:38 | 000,000,000 | RH-- | M] () -- C:\Windows\SysWow64\drivers\104D_Sony_VPCEC2S1E.mrk [2010.12.05 15:10:38 | 000,000,000 | RH-- | M] () -- C:\Windows\SysNative\drivers\104D_Sony_VPCEC2S1E.mrk [2010.12.05 14:56:46 | 000,052,953 | ---- | M] () -- C:\Windows\SysWow64\license.rtf [2010.12.05 14:56:46 | 000,052,953 | ---- | M] () -- C:\Windows\SysNative\license.rtf [2010.12.05 14:50:39 | 000,310,480 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT [2010.12.05 14:45:09 | 000,196,608 | ---- | M] () -- C:\Windows\ocsetup_install_OEMHelpCustomization.etl [2010.12.05 14:39:48 | 000,455,680 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\SysNative\deploytk.dll [2010.12.05 14:39:48 | 000,181,760 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\SysNative\javaws.exe [2010.12.05 14:39:48 | 000,165,888 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\SysNative\javaw.exe [2010.12.05 14:39:48 | 000,165,888 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\SysNative\java.exe [2010.12.05 14:39:40 | 000,411,368 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\deploytk.dll [2010.12.05 14:39:40 | 000,149,280 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\javaws.exe [2010.12.05 14:39:40 | 000,145,184 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\javaw.exe [2010.12.05 14:39:40 | 000,145,184 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\java.exe [2010.12.05 14:36:22 | 000,000,221 | ---- | M] () -- C:\ProgramData\MusicStation.xml [2010.12.05 14:36:19 | 000,000,228 | ---- | M] () -- C:\Windows\SysWow64\MsiExec.config [2010.12.05 14:28:39 | 000,000,073 | -H-- | M] () -- C:\splash.idx [2010.12.05 14:26:36 | 000,000,040 | -H-- | M] () -- C:\Windows\SysNative\ivireg.ivr [2010.12.05 14:23:29 | 000,000,000 | -H-- | M] () -- C:\Windows\SysNative\drivers\Msft_Kernel_Apfiltr_01007.Wdf [2010.12.05 14:14:42 | 000,295,922 | ---- | M] () -- C:\Windows\SysNative\perfi007.dat [2010.12.05 14:14:42 | 000,038,104 | ---- | M] () -- C:\Windows\SysNative\perfd007.dat [2010.12.05 14:14:30 | 000,002,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\usbrpm.sys.mui [2010.12.05 14:14:28 | 000,017,920 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\fvevol.sys.mui [2010.12.05 14:14:25 | 000,002,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\UMDF\de-DE\WpdMtpDr.dll.mui [2010.12.05 14:14:21 | 000,002,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\drivers\de-DE\qwavedrv.sys.mui [2010.12.05 14:14:20 | 000,017,408 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\nwifi.sys.mui [2010.12.05 14:14:20 | 000,002,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\qwavedrv.sys.mui [2010.12.05 14:14:18 | 000,028,672 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\volsnap.sys.mui [2010.12.05 14:14:18 | 000,025,088 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\usbport.sys.mui [2010.12.05 14:14:18 | 000,020,992 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\processr.sys.mui [2010.12.05 14:14:18 | 000,020,992 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\intelppm.sys.mui [2010.12.05 14:14:18 | 000,020,992 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\amdppm.sys.mui [2010.12.05 14:14:18 | 000,020,992 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\amdk8.sys.mui [2010.12.05 14:14:18 | 000,011,776 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\usbhub.sys.mui [2010.12.05 14:14:18 | 000,011,776 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\serial.sys.mui [2010.12.05 14:14:18 | 000,011,776 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\ohci1394.sys.mui [2010.12.05 14:14:18 | 000,011,776 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\1394ohci.sys.mui [2010.12.05 14:14:18 | 000,011,776 | ---- | M] (Brother Industries Ltd.) -- C:\Windows\SysNative\drivers\de-DE\BrSerId.sys.mui [2010.12.05 14:14:18 | 000,011,776 | ---- | M] (Brother Industries Ltd.) -- C:\Windows\SysNative\drivers\de-DE\BrSerIb.sys.mui [2010.12.05 14:14:18 | 000,010,752 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\i8042prt.sys.mui [2010.12.05 14:14:18 | 000,010,752 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\acpi.sys.mui [2010.12.05 14:14:18 | 000,009,728 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\battc.sys.mui [2010.12.05 14:14:18 | 000,008,192 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\pci.sys.mui [2010.12.05 14:14:18 | 000,006,656 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\IPMIDrv.sys.mui [2010.12.05 14:14:18 | 000,005,632 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\sermouse.sys.mui [2010.12.05 14:14:18 | 000,005,120 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\kbdclass.sys.mui [2010.12.05 14:14:18 | 000,004,608 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\mouclass.sys.mui [2010.12.05 14:14:18 | 000,004,096 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\wacompen.sys.mui [2010.12.05 14:14:18 | 000,004,096 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\vhdmp.sys.mui [2010.12.05 14:14:18 | 000,004,096 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\vdrvroot.sys.mui [2010.12.05 14:14:18 | 000,004,096 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\tpm.sys.mui [2010.12.05 14:14:18 | 000,004,096 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\isapnp.sys.mui [2010.12.05 14:14:18 | 000,004,096 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\hdaudbus.sys.mui [2010.12.05 14:14:18 | 000,003,584 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\parport.sys.mui [2010.12.05 14:14:18 | 000,003,584 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\ataport.sys.mui [2010.12.05 14:14:18 | 000,003,072 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\umbus.sys.mui [2010.12.05 14:14:18 | 000,003,072 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\mssmbios.sys.mui [2010.12.05 14:14:18 | 000,003,072 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\mouhid.sys.mui [2010.12.05 14:14:18 | 000,002,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\vwifibus.sys.mui [2010.12.05 14:14:18 | 000,002,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\ULIAGPKX.SYS.mui [2010.12.05 14:14:18 | 000,002,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\UAGP35.SYS.mui [2010.12.05 14:14:18 | 000,002,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\NV_AGP.SYS.mui [2010.12.05 14:14:18 | 000,002,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\MTConfig.sys.mui [2010.12.05 14:14:18 | 000,002,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\kbdhid.sys.mui [2010.12.05 14:14:18 | 000,002,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\GAGP30KX.SYS.mui [2010.12.05 14:14:18 | 000,002,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\AGP440.sys.mui [2010.12.05 14:14:18 | 000,002,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\wd.sys.mui [2010.12.05 14:14:18 | 000,002,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\disk.sys.mui [2010.12.05 14:14:18 | 000,002,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\cdrom.sys.mui [2010.12.05 14:14:18 | 000,002,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\amdide.sys.mui [2010.12.05 14:14:16 | 000,051,712 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\tcpip.sys.mui [2010.12.05 14:14:16 | 000,038,912 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\mpio.sys.mui [2010.12.05 14:14:16 | 000,008,192 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\bthport.sys.mui [2010.12.05 14:14:16 | 000,006,656 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\UMDF\de-DE\WUDFUsbccidDriver.dll.mui [2010.12.05 14:14:16 | 000,006,656 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\msdsm.sys.mui [2010.12.05 14:14:16 | 000,004,608 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\pcmcia.sys.mui [2010.12.05 14:14:16 | 000,004,608 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\bthpan.sys.mui [2010.12.05 14:14:16 | 000,004,096 | ---- | M] (SCM Microsystems, Inc.) -- C:\Windows\SysNative\drivers\de-DE\pscr.sys.mui [2010.12.05 14:14:16 | 000,003,584 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\portcls.sys.mui [2010.12.05 14:14:16 | 000,003,584 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\HdAudio.sys.mui [2010.12.05 14:14:16 | 000,003,584 | ---- | M] (ATI Technologies Inc.) -- C:\Windows\SysNative\drivers\de-DE\atikmdag.sys.mui [2010.12.05 14:14:16 | 000,003,072 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\serscan.sys.mui [2010.12.05 14:14:16 | 000,003,072 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\rndismpx.sys.mui [2010.12.05 14:14:16 | 000,003,072 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\rndismp6.sys.mui [2010.12.05 14:14:16 | 000,003,072 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\hidbth.sys.mui [2010.12.05 14:14:16 | 000,002,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\pnpmem.sys.mui [2010.12.05 14:14:16 | 000,002,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\Dot4usb.sys.mui [2010.12.05 14:14:16 | 000,002,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\BTHUSB.SYS.mui [2010.12.05 14:14:16 | 000,002,560 | ---- | M] (Brother Industries Ltd.) -- C:\Windows\SysNative\drivers\de-DE\BrParwdm.sys.mui [2010.12.05 14:14:16 | 000,002,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\ws2ifsl.sys.mui [2010.12.05 14:14:16 | 000,002,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\bthenum.sys.mui [2010.12.05 14:14:14 | 000,016,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\pacer.sys.mui [2010.12.05 14:14:13 | 000,029,696 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\bfe.dll.mui [2010.12.05 14:14:13 | 000,003,584 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\modem.sys.mui [2010.12.05 14:14:12 | 000,016,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\afd.sys.mui [2010.12.05 14:14:12 | 000,003,584 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\ipnat.sys.mui [2010.12.05 14:14:12 | 000,002,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\volmgrx.sys.mui [2010.12.05 14:14:10 | 000,072,192 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\ntfs.sys.mui [2010.12.05 14:14:10 | 000,009,216 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\tunnel.sys.mui [2010.12.05 14:14:10 | 000,007,168 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\luafv.sys.mui [2010.12.05 14:14:10 | 000,005,632 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\drivers\de-DE\ndiscap.sys.mui [2010.12.05 14:14:10 | 000,005,120 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\rdbss.sys.mui [2010.12.05 14:14:10 | 000,002,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\srv.sys.mui [2010.12.05 14:14:10 | 000,002,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\drivers\de-DE\scfilter.sys.mui [2010.12.05 14:14:09 | 000,003,072 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\ndisuio.sys.mui [2010.12.05 14:14:09 | 000,002,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\partmgr.sys.mui [2010.12.05 14:14:09 | 000,002,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\mountmgr.sys.mui [2010.12.05 14:14:08 | 000,051,712 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\drivers\de-DE\tcpip.sys.mui [2010.12.05 14:14:08 | 000,005,632 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\ndiscap.sys.mui [2010.12.05 14:14:08 | 000,003,072 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\RNDISMP.sys.mui [2010.12.05 14:14:08 | 000,002,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\scfilter.sys.mui [2010.12.05 14:14:07 | 000,041,984 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\ndis.sys.mui [2010.12.05 14:14:07 | 000,005,632 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\fltmgr.sys.mui [2010.12.05 14:14:07 | 000,002,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\wdf01000.sys.mui [2010.12.05 14:14:06 | 000,044,032 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\http.sys.mui [2010.12.05 14:14:06 | 000,029,696 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\drivers\de-DE\bfe.dll.mui [2010.12.05 14:14:06 | 000,016,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\drivers\de-DE\pacer.sys.mui [2010.12.05 14:14:06 | 000,003,072 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\scsiport.sys.mui [2010.11.29 17:42:18 | 000,038,224 | ---- | M] (Malwarebytes Corporation) -- C:\Windows\SysWow64\drivers\mbamswissarmy.sys [2010.11.29 17:42:06 | 000,024,152 | ---- | M] (Malwarebytes Corporation) -- C:\Windows\SysNative\drivers\mbam.sys [1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ] ========== Files Created - No Company Name ========== [2010.12.05 18:02:35 | 000,001,109 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk [2010.12.05 16:14:45 | 000,001,939 | ---- | C] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk [2010.12.05 15:30:43 | 000,153,353 | ---- | C] () -- C:\Windows\SysNative\drivers\klin.dat [2010.12.05 15:30:43 | 000,106,761 | ---- | C] () -- C:\Windows\SysNative\drivers\klick.dat [2010.12.05 15:10:38 | 000,000,000 | RH-- | C] () -- C:\Windows\SysWow64\drivers\104D_Sony_VPCEC2S1E.mrk [2010.12.05 15:10:38 | 000,000,000 | RH-- | C] () -- C:\Windows\SysNative\drivers\104D_Sony_VPCEC2S1E.mrk [2010.12.05 14:48:50 | 3106,455,552 | -HS- | C] () -- C:\hiberfil.sys [2010.12.05 14:44:51 | 000,196,608 | ---- | C] () -- C:\Windows\ocsetup_install_OEMHelpCustomization.etl [2010.12.05 14:36:22 | 000,000,221 | ---- | C] () -- C:\ProgramData\MusicStation.xml [2010.12.05 14:36:19 | 000,000,228 | ---- | C] () -- C:\Windows\SysWow64\MsiExec.config [2010.12.05 14:29:24 | 000,002,119 | ---- | C] () -- C:\Windows\SysWow64\McOEMAppRules.dat [2010.12.05 14:26:15 | 000,000,040 | -H-- | C] () -- C:\Windows\SysNative\ivireg.ivr [2010.12.05 14:23:29 | 000,000,000 | -H-- | C] () -- C:\Windows\SysNative\drivers\Msft_Kernel_Apfiltr_01007.Wdf [2010.12.05 14:15:09 | 000,643,866 | ---- | C] () -- C:\Windows\SysNative\perfh007.dat [2010.12.05 14:15:09 | 000,295,922 | ---- | C] () -- C:\Windows\SysNative\perfi007.dat [2010.12.05 14:15:09 | 000,126,394 | ---- | C] () -- C:\Windows\SysNative\perfc007.dat [2010.12.05 14:15:09 | 000,038,104 | ---- | C] () -- C:\Windows\SysNative\perfd007.dat [2010.05.19 22:45:17 | 000,208,896 | ---- | C] () -- C:\Windows\SysWow64\iglhsip32.dll [2010.05.19 22:45:17 | 000,143,360 | ---- | C] () -- C:\Windows\SysWow64\iglhcp32.dll [2009.07.14 00:42:10 | 000,064,000 | ---- | C] () -- C:\Windows\SysWow64\BWContextHandler.dll [2009.07.13 22:03:59 | 000,364,544 | ---- | C] () -- C:\Windows\SysWow64\msjetoledb40.dll < End of report > Malwarebytes' Anti-Malware 1.50 www.malwarebytes.org Datenbank Version: 5248 Windows 6.1.7600 Internet Explorer 8.0.7600.16385 05.12.2010 18:27:30 mbam-log-2010-12-05 (18-27-30).txt Art des Suchlaufs: Vollständiger Suchlauf (C:\|D:\|E:\|F:\|G:\|H:\|) Durchsuchte Objekte: 248214 Laufzeit: 22 Minute(n), 16 Sekunde(n) Infizierte Speicherprozesse: 0 Infizierte Speichermodule: 0 Infizierte Registrierungsschlüssel: 0 Infizierte Registrierungswerte: 0 Infizierte Dateiobjekte der Registrierung: 0 Infizierte Verzeichnisse: 0 Infizierte Dateien: 0 Infizierte Speicherprozesse: (Keine bösartigen Objekte gefunden) Infizierte Speichermodule: (Keine bösartigen Objekte gefunden) Infizierte Registrierungsschlüssel: (Keine bösartigen Objekte gefunden) Infizierte Registrierungswerte: (Keine bösartigen Objekte gefunden) Infizierte Dateiobjekte der Registrierung: (Keine bösartigen Objekte gefunden) Infizierte Verzeichnisse: (Keine bösartigen Objekte gefunden) Infizierte Dateien: (Keine bösartigen Objekte gefunden) |
08.12.2010, 12:25 | #2 |
/// Selecta Jahrusso | jucheck.exe,jusched.exe,Kaspersky Fehlermeldung nach NeuinstallationDas ist definitiv ein Fehlalarm. Die .exe Datei ist von Java welche automatisch nach Updates sucht und dadurch auf das Inet zugreifen will. Kannst mir mal einen Scanbericht von Kaspersky posten. Ich bin leider nicht mit der Software vertraut sonst würde ich dir genauere Anweisungen geben. Folgendes kannst du ebenfalls getrost deinstallieren. Google Toolbar ( falls nicht wirklich benötigt ) Und da der PC frisch ist sehen wir uns noch gleich ein paar Sicherheitsrelvante Dinge an Downloade Dir bitte SecurityCheck
Bitte poste in deiner nächsten Antwort Kaspersky Log checkup.txt
__________________ |
08.12.2010, 20:34 | #3 |
| jucheck.exe,jusched.exe,Kaspersky Fehlermeldung nach Neuinstallation Hallo Larusso!
__________________Vielen Dank für deine Antwort. Einen Logfile von Kaspersky kann ich leider nicht posten.Die sehen nicht so aus wie die von z.B.Avira.Es stand da wirklich nur diese Fehlermeldung so wie ich es gepostet hatte. Gestern kamen dann noch zwei hinzu,ebenfalls mit dem Text "legales Programm,welches ein Angreifer benutzen kann um dem PC Schaden zuzufügen" .Die waren dann in C:/Program Files/Microsoft/RAW (??) .Das waren tmp-Dateien.Ursprungsordner wieder leer.Eine wurde kurz darauf von Kaspersky als virenfrei gemeldet mit der Empfehlung "zulassen/wiederherstellen".Habe ich gemacht.Ob das jetzt richtig war...? Danach wollte ich den PC einfach mal von einem anderen Scanner durchleuchten lassen,da ich aber weiß,daß zwei Programme sich irgendwie gegenseitig behindern können habe ich alles von Kaspersky deinstalliert und mir Avira runtergeladen. Ich poste also statt dessen diese logfiles,okay? Es sind zwei verschiedene,Rootkitssuche und vollständige Systemprüfung.In der ersten Suche gab es ein "verstecktes Objekt" in der zweiten nichts.Malwarebytes hat nichts gefunden. CheckUp habe ich gemacht,hänge ich an. GoogleToolbar habe ich deinstalliert,brauche ich nicht,war aber irgendwie "gleich mit dabei"... Frage: Kann ich diese Windows Live -Sachen auch deinstallieren?Hatte das nie,habe es nie gebraucht war aber auch mit dabei.Es gibt einiges auf diesem PC was ich nicht kenne.Da sind über 70 Programme( so viele hatte ich früher nie) und ich habe keinen Schimmer was ich brauche und was vielleicht überflüssiger "Schnickschnack" ist.Kannst du das sehen/erkennen was da eventuell noch deinstalliert werden könnte? Tut mir leid,daß ich dich so zuquatsche,abe ich hatte noch nie einen nagelneuen PC und ich wundere mich einfach nur was da schon so alles drauf ist. Danke für deine Hilfe Alana Hier Die Logfiles Avira AntiVir Personal Erstellungsdatum der Reportdatei: Dienstag, 7. Dezember 2010 19:35 Es wird nach 3128220 Virenstämmen gesucht. Das Programm läuft als uneingeschränkte Vollversion. Online-Dienste stehen zur Verfügung. Lizenznehmer : Avira AntiVir Personal - FREE Antivirus Seriennummer : 0000149996-ADJIE-0000001 Plattform : Windows 7 x64 Windowsversion : (plain) [6.1.7600] Boot Modus : Normal gebootet Benutzername : Anna Computername : xxx Versionsinformationen: BUILD.DAT : 10.0.0.596 31825 Bytes 16.11.2010 15:52:00 AVSCAN.EXE : 10.0.3.1 434344 Bytes 02.08.2010 15:09:33 AVSCAN.DLL : 10.0.3.0 56168 Bytes 02.08.2010 15:09:45 LUKE.DLL : 10.0.2.3 104296 Bytes 02.08.2010 15:09:38 LUKERES.DLL : 10.0.0.0 13672 Bytes 14.01.2010 11:59:47 VBASE000.VDF : 7.10.0.0 19875328 Bytes 06.11.2009 09:05:36 VBASE001.VDF : 7.10.1.0 1372672 Bytes 19.11.2009 19:27:49 VBASE002.VDF : 7.10.3.1 3143680 Bytes 20.01.2010 17:37:42 VBASE003.VDF : 7.10.3.75 996864 Bytes 26.01.2010 16:37:42 VBASE004.VDF : 7.10.4.203 1579008 Bytes 05.03.2010 11:29:03 VBASE005.VDF : 7.10.6.82 2494464 Bytes 15.04.2010 15:09:41 VBASE006.VDF : 7.10.7.218 2294784 Bytes 02.06.2010 15:09:42 VBASE007.VDF : 7.10.9.165 4840960 Bytes 23.07.2010 15:09:43 VBASE008.VDF : 7.10.11.133 3454464 Bytes 13.09.2010 20:16:17 VBASE009.VDF : 7.10.13.80 2265600 Bytes 02.11.2010 20:16:27 VBASE010.VDF : 7.10.13.81 2048 Bytes 02.11.2010 20:16:27 VBASE011.VDF : 7.10.13.82 2048 Bytes 02.11.2010 20:16:27 VBASE012.VDF : 7.10.13.83 2048 Bytes 02.11.2010 20:16:27 VBASE013.VDF : 7.10.13.116 147968 Bytes 04.11.2010 20:16:28 VBASE014.VDF : 7.10.13.147 146944 Bytes 07.11.2010 20:16:29 VBASE015.VDF : 7.10.13.180 123904 Bytes 09.11.2010 20:16:29 VBASE016.VDF : 7.10.13.211 122368 Bytes 11.11.2010 20:16:30 VBASE017.VDF : 7.10.13.243 147456 Bytes 15.11.2010 20:16:30 VBASE018.VDF : 7.10.14.15 142848 Bytes 17.11.2010 20:16:31 VBASE019.VDF : 7.10.14.41 134144 Bytes 19.11.2010 20:16:32 VBASE020.VDF : 7.10.14.63 128000 Bytes 22.11.2010 20:16:32 VBASE021.VDF : 7.10.14.87 143872 Bytes 24.11.2010 20:16:33 VBASE022.VDF : 7.10.14.116 140800 Bytes 26.11.2010 20:16:34 VBASE023.VDF : 7.10.14.147 150528 Bytes 30.11.2010 20:16:35 VBASE024.VDF : 7.10.14.175 126464 Bytes 03.12.2010 20:16:35 VBASE025.VDF : 7.10.14.203 120320 Bytes 07.12.2010 18:33:39 VBASE026.VDF : 7.10.14.204 2048 Bytes 07.12.2010 18:33:39 VBASE027.VDF : 7.10.14.205 2048 Bytes 07.12.2010 18:33:39 VBASE028.VDF : 7.10.14.206 2048 Bytes 07.12.2010 18:33:40 VBASE029.VDF : 7.10.14.207 2048 Bytes 07.12.2010 18:33:40 VBASE030.VDF : 7.10.14.208 2048 Bytes 07.12.2010 18:33:40 VBASE031.VDF : 7.10.14.220 58880 Bytes 07.12.2010 18:33:40 Engineversion : 8.2.4.122 AEVDF.DLL : 8.1.2.1 106868 Bytes 02.08.2010 15:09:30 AESCRIPT.DLL : 8.1.3.48 1286524 Bytes 06.12.2010 20:16:51 AESCN.DLL : 8.1.7.2 127349 Bytes 06.12.2010 20:16:50 AESBX.DLL : 8.1.3.2 254324 Bytes 06.12.2010 20:16:52 AERDL.DLL : 8.1.9.2 635252 Bytes 06.12.2010 20:16:49 AEPACK.DLL : 8.2.4.1 512375 Bytes 06.12.2010 20:16:48 AEOFFICE.DLL : 8.1.1.10 201084 Bytes 06.12.2010 20:16:46 AEHEUR.DLL : 8.1.2.54 3113335 Bytes 07.12.2010 18:33:48 AEHELP.DLL : 8.1.16.0 246136 Bytes 06.12.2010 20:16:40 AEGEN.DLL : 8.1.5.0 397685 Bytes 06.12.2010 20:16:40 AEEMU.DLL : 8.1.3.0 393589 Bytes 06.12.2010 20:16:39 AECORE.DLL : 8.1.19.0 196984 Bytes 06.12.2010 20:16:38 AEBB.DLL : 8.1.1.0 53618 Bytes 02.08.2010 15:09:25 AVWINLL.DLL : 10.0.0.0 19304 Bytes 02.08.2010 15:09:33 AVPREF.DLL : 10.0.0.0 44904 Bytes 02.08.2010 15:09:33 AVREP.DLL : 10.0.0.8 62209 Bytes 17.06.2010 14:26:53 AVREG.DLL : 10.0.3.2 53096 Bytes 02.08.2010 15:09:33 AVSCPLR.DLL : 10.0.3.1 83816 Bytes 02.08.2010 15:09:33 AVARKT.DLL : 10.0.0.14 227176 Bytes 02.08.2010 15:09:31 AVEVTLOG.DLL : 10.0.0.8 203112 Bytes 02.08.2010 15:09:32 SQLITE3.DLL : 3.6.19.0 355688 Bytes 17.06.2010 14:27:02 AVSMTP.DLL : 10.0.0.17 63848 Bytes 02.08.2010 15:09:33 NETNT.DLL : 10.0.0.0 11624 Bytes 17.06.2010 14:27:01 RCIMAGE.DLL : 10.0.0.26 2550120 Bytes 28.01.2010 13:10:08 RCTEXT.DLL : 10.0.58.0 98152 Bytes 02.08.2010 15:09:45 Konfiguration für den aktuellen Suchlauf: Job Name..............................: Suche nach Rootkits und aktiver Malware Konfigurationsdatei...................: C:\ProgramData\Avira\AntiVir Desktop\PROFILES\rootkit.avp Protokollierung.......................: niedrig Primäre Aktion........................: interaktiv Sekundäre Aktion......................: ignorieren Durchsuche Masterbootsektoren.........: ein Durchsuche Bootsektoren...............: ein Durchsuche aktive Programme...........: ein Laufende Programme erweitert..........: ein Durchsuche Registrierung..............: ein Suche nach Rootkits...................: ein Integritätsprüfung von Systemdateien..: aus Datei Suchmodus.......................: Alle Dateien Durchsuche Archive....................: ein Rekursionstiefe einschränken..........: 20 Archiv Smart Extensions...............: ein Makrovirenheuristik...................: ein Dateiheuristik........................: hoch Beginn des Suchlaufs: Dienstag, 7. Dezember 2010 19:35 Der Suchlauf nach versteckten Objekten wird begonnen. C:\Windows\SYSTEM32\drivers\avgntflt.sys C:\Windows\SYSTEM32\drivers\avgntflt.sys [HINWEIS] Der Registrierungseintrag ist nicht sichtbar. Der Suchlauf über gestartete Prozesse wird begonnen: Durchsuche Prozess 'IELowutil.exe' - '32' Modul(e) wurden durchsucht Durchsuche Prozess 'avscan.exe' - '66' Modul(e) wurden durchsucht Durchsuche Prozess 'UNS.exe' - '54' Modul(e) wurden durchsucht Durchsuche Prozess 'listener.exe' - '23' Modul(e) wurden durchsucht Durchsuche Prozess 'iviRegMgr.exe' - '22' Modul(e) wurden durchsucht Durchsuche Prozess 'avguard.exe' - '67' Modul(e) wurden durchsucht Durchsuche Prozess 'avcenter.exe' - '103' Modul(e) wurden durchsucht Durchsuche Prozess 'VCFw.exe' - '67' Modul(e) wurden durchsucht Durchsuche Prozess 'avgnt.exe' - '56' Modul(e) wurden durchsucht Durchsuche Prozess 'jusched.exe' - '27' Modul(e) wurden durchsucht Durchsuche Prozess 'MarketingTools.exe' - '43' Modul(e) wurden durchsucht Durchsuche Prozess 'PMBVolumeWatcher.exe' - '53' Modul(e) wurden durchsucht Durchsuche Prozess 'ISBMgr.exe' - '40' Modul(e) wurden durchsucht Durchsuche Prozess 'IAStorIcon.exe' - '48' Modul(e) wurden durchsucht Durchsuche Prozess 'VESMgrSub.exe' - '72' Modul(e) wurden durchsucht Durchsuche Prozess 'DllHost.exe' - '36' Modul(e) wurden durchsucht Durchsuche Prozess 'VzCdbSvc.exe' - '33' Modul(e) wurden durchsucht Durchsuche Prozess 'VESMgr.exe' - '66' Modul(e) wurden durchsucht Durchsuche Prozess 'uCamMonitor.exe' - '28' Modul(e) wurden durchsucht Durchsuche Prozess 'PsiService_2.exe' - '22' Modul(e) wurden durchsucht Durchsuche Prozess 'PMBDeviceInfoProvider.exe' - '32' Modul(e) wurden durchsucht Durchsuche Prozess 'LMS.exe' - '29' Modul(e) wurden durchsucht Durchsuche Prozess 'sched.exe' - '50' Modul(e) wurden durchsucht Der Suchlauf auf Verweise zu ausführbaren Dateien (Registry) wird begonnen: Die Registry wurde durchsucht ( '174' Dateien ). Der Suchlauf über die ausgewählten Dateien wird begonnen: Beginne mit der Suche in 'C:' Ende des Suchlaufs: Dienstag, 7. Dezember 2010 19:56 Benötigte Zeit: 21:37 Minute(n) Der Suchlauf wurde vollständig durchgeführt. 19629 Verzeichnisse wurden überprüft 228890 Dateien wurden geprüft 0 Viren bzw. unerwünschte Programme wurden gefunden 0 Dateien wurden als verdächtig eingestuft 0 Dateien wurden gelöscht 0 Viren bzw. unerwünschte Programme wurden repariert 0 Dateien wurden in die Quarantäne verschoben 0 Dateien wurden umbenannt 0 Dateien konnten nicht durchsucht werden 228890 Dateien ohne Befall 1401 Archive wurden durchsucht 0 Warnungen 0 Hinweise 508386 Objekte wurden beim Rootkitscan durchsucht 1 Versteckte Objekte wurden gefunden Nummer zwei: Avira AntiVir Personal Erstellungsdatum der Reportdatei: Dienstag, 7. Dezember 2010 23:45 Es wird nach 3128220 Virenstämmen gesucht. Das Programm läuft als uneingeschränkte Vollversion. Online-Dienste stehen zur Verfügung. Lizenznehmer : Avira AntiVir Personal - FREE Antivirus Seriennummer : 0000149996-ADJIE-0000001 Plattform : Windows 7 x64 Windowsversion : (plain) [6.1.7600] Boot Modus : Normal gebootet Benutzername : SYSTEM Computername : xxx Versionsinformationen: BUILD.DAT : 10.0.0.596 31825 Bytes 16.11.2010 15:52:00 AVSCAN.EXE : 10.0.3.1 434344 Bytes 02.08.2010 15:09:33 AVSCAN.DLL : 10.0.3.0 56168 Bytes 02.08.2010 15:09:45 LUKE.DLL : 10.0.2.3 104296 Bytes 02.08.2010 15:09:38 LUKERES.DLL : 10.0.0.0 13672 Bytes 14.01.2010 11:59:47 VBASE000.VDF : 7.10.0.0 19875328 Bytes 06.11.2009 09:05:36 VBASE001.VDF : 7.10.1.0 1372672 Bytes 19.11.2009 19:27:49 VBASE002.VDF : 7.10.3.1 3143680 Bytes 20.01.2010 17:37:42 VBASE003.VDF : 7.10.3.75 996864 Bytes 26.01.2010 16:37:42 VBASE004.VDF : 7.10.4.203 1579008 Bytes 05.03.2010 11:29:03 VBASE005.VDF : 7.10.6.82 2494464 Bytes 15.04.2010 15:09:41 VBASE006.VDF : 7.10.7.218 2294784 Bytes 02.06.2010 15:09:42 VBASE007.VDF : 7.10.9.165 4840960 Bytes 23.07.2010 15:09:43 VBASE008.VDF : 7.10.11.133 3454464 Bytes 13.09.2010 20:16:17 VBASE009.VDF : 7.10.13.80 2265600 Bytes 02.11.2010 20:16:27 VBASE010.VDF : 7.10.13.81 2048 Bytes 02.11.2010 20:16:27 VBASE011.VDF : 7.10.13.82 2048 Bytes 02.11.2010 20:16:27 VBASE012.VDF : 7.10.13.83 2048 Bytes 02.11.2010 20:16:27 VBASE013.VDF : 7.10.13.116 147968 Bytes 04.11.2010 20:16:28 VBASE014.VDF : 7.10.13.147 146944 Bytes 07.11.2010 20:16:29 VBASE015.VDF : 7.10.13.180 123904 Bytes 09.11.2010 20:16:29 VBASE016.VDF : 7.10.13.211 122368 Bytes 11.11.2010 20:16:30 VBASE017.VDF : 7.10.13.243 147456 Bytes 15.11.2010 20:16:30 VBASE018.VDF : 7.10.14.15 142848 Bytes 17.11.2010 20:16:31 VBASE019.VDF : 7.10.14.41 134144 Bytes 19.11.2010 20:16:32 VBASE020.VDF : 7.10.14.63 128000 Bytes 22.11.2010 20:16:32 VBASE021.VDF : 7.10.14.87 143872 Bytes 24.11.2010 20:16:33 VBASE022.VDF : 7.10.14.116 140800 Bytes 26.11.2010 20:16:34 VBASE023.VDF : 7.10.14.147 150528 Bytes 30.11.2010 20:16:35 VBASE024.VDF : 7.10.14.175 126464 Bytes 03.12.2010 20:16:35 VBASE025.VDF : 7.10.14.203 120320 Bytes 07.12.2010 18:33:39 VBASE026.VDF : 7.10.14.204 2048 Bytes 07.12.2010 18:33:39 VBASE027.VDF : 7.10.14.205 2048 Bytes 07.12.2010 18:33:39 VBASE028.VDF : 7.10.14.206 2048 Bytes 07.12.2010 18:33:40 VBASE029.VDF : 7.10.14.207 2048 Bytes 07.12.2010 18:33:40 VBASE030.VDF : 7.10.14.208 2048 Bytes 07.12.2010 18:33:40 VBASE031.VDF : 7.10.14.220 58880 Bytes 07.12.2010 18:33:40 Engineversion : 8.2.4.122 AEVDF.DLL : 8.1.2.1 106868 Bytes 02.08.2010 15:09:30 AESCRIPT.DLL : 8.1.3.48 1286524 Bytes 06.12.2010 20:16:51 AESCN.DLL : 8.1.7.2 127349 Bytes 06.12.2010 20:16:50 AESBX.DLL : 8.1.3.2 254324 Bytes 06.12.2010 20:16:52 AERDL.DLL : 8.1.9.2 635252 Bytes 06.12.2010 20:16:49 AEPACK.DLL : 8.2.4.1 512375 Bytes 06.12.2010 20:16:48 AEOFFICE.DLL : 8.1.1.10 201084 Bytes 06.12.2010 20:16:46 AEHEUR.DLL : 8.1.2.54 3113335 Bytes 07.12.2010 18:33:48 AEHELP.DLL : 8.1.16.0 246136 Bytes 06.12.2010 20:16:40 AEGEN.DLL : 8.1.5.0 397685 Bytes 06.12.2010 20:16:40 AEEMU.DLL : 8.1.3.0 393589 Bytes 06.12.2010 20:16:39 AECORE.DLL : 8.1.19.0 196984 Bytes 06.12.2010 20:16:38 AEBB.DLL : 8.1.1.0 53618 Bytes 02.08.2010 15:09:25 AVWINLL.DLL : 10.0.0.0 19304 Bytes 02.08.2010 15:09:33 AVPREF.DLL : 10.0.0.0 44904 Bytes 02.08.2010 15:09:33 AVREP.DLL : 10.0.0.8 62209 Bytes 17.06.2010 14:26:53 AVREG.DLL : 10.0.3.2 53096 Bytes 02.08.2010 15:09:33 AVSCPLR.DLL : 10.0.3.1 83816 Bytes 02.08.2010 15:09:33 AVARKT.DLL : 10.0.0.14 227176 Bytes 02.08.2010 15:09:31 AVEVTLOG.DLL : 10.0.0.8 203112 Bytes 02.08.2010 15:09:32 SQLITE3.DLL : 3.6.19.0 355688 Bytes 17.06.2010 14:27:02 AVSMTP.DLL : 10.0.0.17 63848 Bytes 02.08.2010 15:09:33 NETNT.DLL : 10.0.0.0 11624 Bytes 17.06.2010 14:27:01 RCIMAGE.DLL : 10.0.0.26 2550120 Bytes 28.01.2010 13:10:08 RCTEXT.DLL : 10.0.58.0 98152 Bytes 02.08.2010 15:09:45 Konfiguration für den aktuellen Suchlauf: Job Name..............................: Vollständige Systemprüfung Konfigurationsdatei...................: C:\Program Files (x86)\Avira\AntiVir Desktop\sysscan.avp Protokollierung.......................: niedrig Primäre Aktion........................: interaktiv Sekundäre Aktion......................: ignorieren Durchsuche Masterbootsektoren.........: ein Durchsuche Bootsektoren...............: ein Bootsektoren..........................: C:, D:, Durchsuche aktive Programme...........: ein Laufende Programme erweitert..........: ein Durchsuche Registrierung..............: ein Suche nach Rootkits...................: ein Integritätsprüfung von Systemdateien..: aus Datei Suchmodus.......................: Alle Dateien Durchsuche Archive....................: ein Rekursionstiefe einschränken..........: 20 Archiv Smart Extensions...............: ein Makrovirenheuristik...................: ein Dateiheuristik........................: mittel Beginn des Suchlaufs: Dienstag, 7. Dezember 2010 23:45 Der Suchlauf nach versteckten Objekten wird begonnen. Der Suchlauf über gestartete Prozesse wird begonnen: Durchsuche Prozess 'avscan.exe' - '75' Modul(e) wurden durchsucht Durchsuche Prozess 'avscan.exe' - '30' Modul(e) wurden durchsucht Durchsuche Prozess 'avcenter.exe' - '84' Modul(e) wurden durchsucht Durchsuche Prozess 'plugin-container.exe' - '70' Modul(e) wurden durchsucht Durchsuche Prozess 'firefox.exe' - '97' Modul(e) wurden durchsucht Durchsuche Prozess 'avgnt.exe' - '56' Modul(e) wurden durchsucht Durchsuche Prozess 'jusched.exe' - '27' Modul(e) wurden durchsucht Durchsuche Prozess 'MarketingTools.exe' - '45' Modul(e) wurden durchsucht Durchsuche Prozess 'PMBVolumeWatcher.exe' - '53' Modul(e) wurden durchsucht Durchsuche Prozess 'ISBMgr.exe' - '40' Modul(e) wurden durchsucht Durchsuche Prozess 'IAStorIcon.exe' - '48' Modul(e) wurden durchsucht Durchsuche Prozess 'listener.exe' - '23' Modul(e) wurden durchsucht Durchsuche Prozess 'VCSpt.exe' - '24' Modul(e) wurden durchsucht Durchsuche Prozess 'UNS.exe' - '54' Modul(e) wurden durchsucht Durchsuche Prozess 'iviRegMgr.exe' - '22' Modul(e) wurden durchsucht Durchsuche Prozess 'VESMgrSub.exe' - '72' Modul(e) wurden durchsucht Durchsuche Prozess 'DllHost.exe' - '36' Modul(e) wurden durchsucht Durchsuche Prozess 'IAStorDataMgrSvc.exe' - '45' Modul(e) wurden durchsucht Durchsuche Prozess 'VzCdbSvc.exe' - '33' Modul(e) wurden durchsucht Durchsuche Prozess 'VCFw.exe' - '67' Modul(e) wurden durchsucht Durchsuche Prozess 'VESMgr.exe' - '66' Modul(e) wurden durchsucht Durchsuche Prozess 'uCamMonitor.exe' - '28' Modul(e) wurden durchsucht Durchsuche Prozess 'PsiService_2.exe' - '22' Modul(e) wurden durchsucht Durchsuche Prozess 'PMBDeviceInfoProvider.exe' - '32' Modul(e) wurden durchsucht Durchsuche Prozess 'LMS.exe' - '29' Modul(e) wurden durchsucht Durchsuche Prozess 'avguard.exe' - '67' Modul(e) wurden durchsucht Durchsuche Prozess 'sched.exe' - '50' Modul(e) wurden durchsucht Der Suchlauf über die Masterbootsektoren wird begonnen: Masterbootsektor HD0 [INFO] Es wurde kein Virus gefunden! Masterbootsektor HD1 [INFO] Es wurde kein Virus gefunden! Masterbootsektor HD2 [INFO] Es wurde kein Virus gefunden! Masterbootsektor HD3 [INFO] Es wurde kein Virus gefunden! Der Suchlauf über die Bootsektoren wird begonnen: Bootsektor 'C:\' [INFO] Es wurde kein Virus gefunden! Bootsektor 'D:\' [INFO] Es wurde kein Virus gefunden! Der Suchlauf auf Verweise zu ausführbaren Dateien (Registry) wird begonnen: Die Registry wurde durchsucht ( '97' Dateien ). Der Suchlauf über die ausgewählten Dateien wird begonnen: Beginne mit der Suche in 'C:\' Beginne mit der Suche in 'D:\' Ende des Suchlaufs: Mittwoch, 8. Dezember 2010 00:15 Benötigte Zeit: 30:20 Minute(n) Der Suchlauf wurde vollständig durchgeführt. 19789 Verzeichnisse wurden überprüft 250846 Dateien wurden geprüft 0 Viren bzw. unerwünschte Programme wurden gefunden 0 Dateien wurden als verdächtig eingestuft 0 Dateien wurden gelöscht 0 Viren bzw. unerwünschte Programme wurden repariert 0 Dateien wurden in die Quarantäne verschoben 0 Dateien wurden umbenannt 0 Dateien konnten nicht durchsucht werden 250846 Dateien ohne Befall 2139 Archive wurden durchsucht 0 Warnungen 0 Hinweise 509711 Objekte wurden beim Rootkitscan durchsucht 0 Versteckte Objekte wurden gefunden Nummer drei,Check Up: Results of screen317's Security Check version 0.99.6 Windows 7 (UAC is enabled) Internet Explorer 8 `````````````````````````````` Antivirus/Firewall Check: Avira AntiVir Personal - Free Antivirus WMI entry may not exist for antivirus; attempting automatic update. Avira successfully updated! ``````````````````````````````` Anti-malware/Other Utilities Check: Malwarebytes' Anti-Malware Java(TM) 6 Update 22 Adobe Flash Player 10.0.42.34 Adobe Reader 9.2 - Deutsch Out of date Adobe Reader installed! Mozilla Firefox (3.6.12) ```````````````````````````````` Process Check: objlist.exe by Laurent Avira Antivir avgnt.exe Avira Antivir avguard.exe ```````````````````````````````` DNS Vulnerability Check: GREAT! (Not vulnerable to DNS cache poisoning) ``````````End of Log```````````` Edit: DasLogfile3 sieht hier gepostet ganz anders aus als bei mir,hoffe das ist richtig so. Geändert von Alana (08.12.2010 um 21:12 Uhr) |
08.12.2010, 22:02 | #4 |
/// Selecta Jahrusso | jucheck.exe,jusched.exe,Kaspersky Fehlermeldung nach Neuinstallation Okay, wie gesagt bin ich mit Kaspersky nicht so vertraut. Aber ich denke mal das es da iwo mit Kas selbst happert. AM besten ist es wenn Du dich mal hier an das deutschsprachige Supportforum von Kaspersky wendest. Kaspersky Lab Forum (Powered by Invision Power Board) Die haben wahrscheinlich eine sehr schnelle Antwort auf Lager bzw sind die über False Positives informiert. Das die Rechner mit Software zugemüllt sind liegt daran, dass es Werkseinstellungen gibt die einfach was vorinstallieren. Deinstalliere bitte deine aktuelle Version von Adobe Reader Start--> Systemsteuerung--> Software--> Adobe Reader und lade dir die neue Version von Hier herunter- Entferne den Hacken für den McAfee SecurityScan. Als alternative würde ich dir den schlankeren Foxit Reader empfehlen Gehe bitte in folgenden Ordner C:\Users\Anna\Downloads Dort müsste sich eine Extras.txt befinden. Poste mir diese bitte hier. Ist dies nicht der Fall bitte folgendes Starte bitte OTL.exe. Wähle unter Extra Registrierung: Benutze Safe List und klicke auf den Scan Button. Bitte poste in deiner nächsten Antwort Extras.txt
__________________ mfg, Daniel ASAP & UNITE Member Alliance of Security Analysis Professionals Unified Network of Instructors and Trusted Eliminators Lerne, zurück zu schlagen und unterstütze uns! TB Akademie |
09.12.2010, 09:01 | #5 |
| jucheck.exe,jusched.exe,Kaspersky Fehlermeldung nach Neuinstallation Hallo Larusso! Danke für den Kaspersky Link.Das Forum kenne ich,so kam ich ja auf die Vermutung,daß es sich um einen Fehlalarm handelt. Gestern habe ich nur die alte Textdatei gefunden.Habe dann erstmal Adobe deinsatlliert und neu runtergeladen.Foxit habe ich probiert aber da irgendwas falsch gemacht,hatte dann wieder so eine Toolbar mit drauf???Probiere ich dann heute nochmal. Hier jetzt das neue Scanergebnis von eben gerade OTL by OldTimer - Version 3.2.17.3 Folder = C:\Users\Anna\Downloads 64bit- Home Premium Edition (Version = 6.1.7600) - Type = NTWorkstation Internet Explorer (Version = 8.0.7600.16385) Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy 4,00 Gb Total Physical Memory | 3,00 Gb Available Physical Memory | 69,00% Memory free 8,00 Gb Paging File | 6,00 Gb Available in Paging File | 80,00% Paging File free Paging file location(s): ?:\pagefile.sys [binary data] %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86) Drive C: | 286,96 Gb Total Space | 253,72 Gb Free Space | 88,42% Space Free | Partition Type: NTFS Drive D: | 298,09 Gb Total Space | 227,39 Gb Free Space | 76,28% Space Free | Partition Type: NTFS Computer Name: xxx | User Name: Anna | Logged in as Administrator. Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days ========== Processes (SafeList) ========== PRC - [2010.12.09 08:08:55 | 000,575,488 | ---- | M] (OldTimer Tools) -- C:\Users\Anna\Downloads\OTL(2).exe PRC - [2010.12.08 19:41:54 | 000,267,944 | ---- | M] (Avira GmbH) -- C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe PRC - [2010.10.27 07:13:18 | 000,912,344 | ---- | M] (Mozilla Corporation) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe PRC - [2010.08.12 15:15:34 | 000,081,296 | ---- | M] (Sony Corporation) -- C:\Programme\Sony\VAIO Care\VCSpt.exe PRC - [2010.08.02 16:09:38 | 000,135,336 | ---- | M] (Avira GmbH) -- C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe PRC - [2010.08.02 16:09:32 | 000,281,768 | ---- | M] (Avira GmbH) -- C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe PRC - [2010.05.28 11:14:24 | 000,205,168 | ---- | M] (Sony Corporation) -- C:\Program Files (x86)\SONY\VAIO Event Service\VESMgr.exe PRC - [2010.05.18 13:38:46 | 000,075,776 | ---- | M] (Sony of America Corporation) -- C:\Programme\Sony\VAIO Care\listener.exe PRC - [2009.12.14 21:06:24 | 002,320,920 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe PRC - [2009.12.14 21:06:08 | 000,268,824 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe PRC - [2009.12.01 22:03:52 | 000,112,488 | ---- | M] (Sony Corporation) -- C:\Program Files (x86)\SONY\VAIO Event Service\VESMgrSub.exe PRC - [2009.11.20 23:25:24 | 000,013,336 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe PRC - [2009.11.20 23:25:22 | 000,284,696 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe PRC - [2009.10.24 03:18:54 | 000,360,224 | ---- | M] (Sony Corporation) -- c:\Program Files (x86)\Sony\PMB\PMBDeviceInfoProvider.exe PRC - [2009.10.24 03:18:52 | 000,597,792 | ---- | M] (Sony Corporation) -- C:\Program Files (x86)\SONY\PMB\PMBVolumeWatcher.exe PRC - [2009.09.14 19:24:08 | 000,206,336 | ---- | M] (Sony Corporation) -- C:\Program Files (x86)\Common Files\Sony Shared\VAIO Entertainment Platform\VzCdb\VzCdbSvc.exe PRC - [2009.09.14 18:53:48 | 000,642,416 | ---- | M] (Sony Corporation) -- C:\Program Files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe PRC - [2009.08.26 19:24:00 | 000,320,880 | ---- | M] (Sony Corporation) -- C:\Program Files (x86)\SONY\ISB Utility\ISBMgr.exe PRC - [2008.09.18 10:59:10 | 000,104,960 | ---- | M] (ArcSoft, Inc.) -- C:\Program Files (x86)\ArcSoft\Magic-i Visual Effects 2\uCamMonitor.exe PRC - [2007.07.24 11:15:14 | 000,185,632 | ---- | M] (Protexis Inc.) -- C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe PRC - [2007.01.04 19:48:50 | 000,112,152 | ---- | M] (InterVideo) -- C:\Program Files (x86)\Common Files\InterVideo\RegMgr\iviRegMgr.exe ========== Modules (SafeList) ========== MOD - [2010.12.09 08:08:55 | 000,575,488 | ---- | M] (OldTimer Tools) -- C:\Users\Anna\Downloads\OTL(2).exe MOD - [2010.08.21 06:21:32 | 001,680,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd\comctl32.dll ========== Win32 Services (SafeList) ========== SRV:64bit: - [2010.08.12 15:15:34 | 000,257,936 | ---- | M] (Sony Corporation) [Auto | Running] -- C:\Program Files\Sony\VAIO Care\VCPerfService.exe -- (SampleCollector) SRV:64bit: - [2010.04.09 13:37:36 | 001,223,024 | ---- | M] (Sony Corporation) [On_Demand | Stopped] -- C:\Program Files\Sony\VAIO Update 5\VUAgent.exe -- (VUAgent) SRV:64bit: - [2010.01.27 21:10:56 | 000,202,752 | ---- | M] (AMD) [Auto | Running] -- C:\Windows\SysNative\atiesrxx.exe -- (AMD External Events Utility) SRV:64bit: - [2009.11.30 19:51:18 | 000,571,248 | ---- | M] (Sony Corporation) [On_Demand | Running] -- C:\Program Files\Sony\VAIO Power Management\SPMService.exe -- (VAIO Power Management) SRV:64bit: - [2009.11.25 19:06:06 | 000,821,760 | ---- | M] (Sony Corporation) [Auto | Running] -- C:\Program Files\Sony\VAIO Smart Network\VSNService.exe -- (VSNService) SRV:64bit: - [2009.09.16 13:27:12 | 000,480,624 | ---- | M] (Sony Corporation) [On_Demand | Stopped] -- C:\Program Files\Sony\VCM Intelligent Analyzing Manager\VcmIAlzMgr.exe -- (VcmIAlzMgr) SRV:64bit: - [2009.09.08 18:09:20 | 000,110,960 | ---- | M] (Sony Corporation) [On_Demand | Stopped] -- C:\Program Files\Common Files\Sony Shared\VcmXml\VcmXmlIfHelper64.exe -- (VcmXmlIfHelper) SRV:64bit: - [2009.09.01 21:42:00 | 000,361,840 | ---- | M] (Sony Corporation) [On_Demand | Stopped] -- C:\Program Files\Sony\VCM Intelligent Network Service Manager\VcmINSMgr.exe -- (VcmINSMgr) SRV - [2010.12.08 19:41:54 | 000,267,944 | ---- | M] (Avira GmbH) [Auto | Running] -- C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe -- (AntiVirService) SRV - [2010.08.02 16:09:38 | 000,135,336 | ---- | M] (Avira GmbH) [Auto | Running] -- C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe -- (AntiVirSchedulerService) SRV - [2010.05.28 11:14:24 | 000,205,168 | ---- | M] (Sony Corporation) [Auto | Running] -- C:\Program Files (x86)\SONY\VAIO Event Service\VESMgr.exe -- (VAIO Event Service) SRV - [2009.12.14 21:06:24 | 002,320,920 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe -- (UNS) Intel(R) SRV - [2009.12.14 21:06:08 | 000,268,824 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe -- (LMS) Intel(R) SRV - [2009.11.20 23:25:24 | 000,013,336 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe -- (IAStorDataMgrSvc) Intel(R) SRV - [2009.10.24 03:18:54 | 000,360,224 | ---- | M] (Sony Corporation) [Auto | Running] -- c:\Program Files (x86)\Sony\PMB\PMBDeviceInfoProvider.exe -- (PMBDeviceInfoProvider) SRV - [2009.10.15 16:34:36 | 000,427,304 | ---- | M] (Sony Corporation) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDms.exe -- (SOHDms) SRV - [2009.10.15 16:34:36 | 000,091,432 | ---- | M] (Sony Corporation) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHPlMgr.exe -- (SOHPlMgr) SRV - [2009.10.15 16:34:36 | 000,075,048 | ---- | M] (Sony Corporation) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDs.exe -- (SOHDs) SRV - [2009.10.15 16:34:34 | 000,120,104 | ---- | M] (Sony Corporation) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHCImp.exe -- (SOHCImp) SRV - [2009.10.15 16:34:34 | 000,070,952 | ---- | M] (Sony Corporation) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDBSvr.exe -- (SOHDBSvr) SRV - [2009.09.28 09:42:50 | 000,109,056 | ---- | M] (ArcSoft Inc.) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe -- (ACDaemon) SRV - [2009.09.14 19:24:08 | 000,206,336 | ---- | M] (Sony Corporation) [Auto | Running] -- C:\Program Files (x86)\Common Files\Sony Shared\VAIO Entertainment Platform\VzCdb\VzCdbSvc.exe -- (VzCdbSvc) SRV - [2009.09.14 19:24:08 | 000,069,632 | ---- | M] (Sony Corporation) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Sony Shared\VAIO Entertainment Platform\VzHardwareResourceManager\VzHardwareResourceManager\VzHardwareResourceManager.exe -- (VAIO Entertainment TV Device Arbitration Service) SRV - [2009.09.14 18:53:48 | 000,642,416 | ---- | M] (Sony Corporation) [Auto | Running] -- C:\Program Files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe -- (VCFw) SRV - [2009.09.04 21:35:12 | 000,873,248 | ---- | M] (Broadcom Corporation.) [Auto | Running] -- C:\Programme\WIDCOMM\Bluetooth Software\btwdins.exe -- (btwdins) SRV - [2009.08.31 01:59:30 | 000,362,992 | ---- | M] (Sonic Solutions) [Auto | Stopped] -- C:\Program Files (x86)\Roxio\Digital Home 10\RoxioUpnpService10.exe -- (Roxio Upnp Server 10) SRV - [2009.08.31 01:59:18 | 000,313,840 | ---- | M] (Sonic Solutions) [On_Demand | Stopped] -- C:\Program Files (x86)\Roxio\Digital Home 10\RoxioUPnPRenderer10.exe -- (Roxio UPnP Renderer 10) SRV - [2009.06.10 22:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32) SRV - [2008.09.18 10:59:10 | 000,104,960 | ---- | M] (ArcSoft, Inc.) [Auto | Running] -- C:\Program Files (x86)\ArcSoft\Magic-i Visual Effects 2\uCamMonitor.exe -- (uCamMonitor) SRV - [2007.07.24 11:15:14 | 000,185,632 | ---- | M] (Protexis Inc.) [Auto | Running] -- C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe -- (PSI_SVC_2) SRV - [2007.01.04 19:48:50 | 000,112,152 | ---- | M] (InterVideo) [Auto | Running] -- C:\Program Files (x86)\Common Files\InterVideo\RegMgr\iviRegMgr.exe -- (IviRegMgr) ========== Driver Services (SafeList) ========== DRV:64bit: - [2010.12.07 19:33:50 | 000,083,120 | ---- | M] (Avira GmbH) [File_System | Auto | Running] -- C:\Windows\SysNative\drivers\avgntflt.sys -- (avgntflt) DRV:64bit: - [2010.08.02 16:09:46 | 000,116,568 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\avipbb.sys -- (avipbb) DRV:64bit: - [2010.01.27 21:10:59 | 006,106,624 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\atikmdag.sys -- (atikmdag) DRV:64bit: - [2009.12.16 21:03:59 | 000,244,736 | ---- | M] (Intel(R) Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\IntcDAud.sys -- (IntcDAud) Intel(R) DRV:64bit: - [2009.12.16 21:03:04 | 007,778,176 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\igdkmd64.sys -- (igfx) DRV:64bit: - [2009.12.16 03:49:48 | 000,213,280 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\RtHDMIVX.sys -- (RTHDMIAzAudService) DRV:64bit: - [2009.12.14 21:06:07 | 000,056,344 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\HECIx64.sys -- (HECIx64) Intel(R) DRV:64bit: - [2009.11.20 23:09:48 | 000,537,112 | ---- | M] (Intel Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\iaStor.sys -- (iaStor) DRV:64bit: - [2009.11.18 05:30:44 | 000,021,160 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\btwrchid.sys -- (btwrchid) DRV:64bit: - [2009.11.18 05:30:32 | 000,132,648 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\btwavdt.sys -- (btwavdt) DRV:64bit: - [2009.11.18 05:30:32 | 000,098,344 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\btwaudio.sys -- (btwaudio) DRV:64bit: - [2009.11.18 05:30:21 | 000,052,264 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\btusbflt.sys -- (btusbflt) DRV:64bit: - [2009.11.18 05:23:46 | 000,035,104 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\btwl2cap.sys -- (btwl2cap) DRV:64bit: - [2009.11.13 21:08:21 | 000,151,936 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Impcd.sys -- (Impcd) DRV:64bit: - [2009.11.12 21:16:19 | 000,395,264 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\yk62x64.sys -- (yukonw7) DRV:64bit: - [2009.11.12 21:06:44 | 001,542,656 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\athrx.sys -- (athr) DRV:64bit: - [2009.11.06 21:27:30 | 000,093,696 | ---- | M] (REDC) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\rimssne64.sys -- (rimspci) DRV:64bit: - [2009.11.04 10:59:59 | 000,253,488 | ---- | M] (Alps Electric Co., Ltd.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Apfiltr.sys -- (ApfiltrService) DRV:64bit: - [2009.10.10 03:41:20 | 000,109,056 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\sdbus.sys -- (sdbus) DRV:64bit: - [2009.09.15 21:09:08 | 000,075,776 | ---- | M] (REDC) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\risdsne64.sys -- (risdsnpe) DRV:64bit: - [2009.08.19 21:09:21 | 000,011,392 | ---- | M] (Sony Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\SFEP.sys -- (SFEP) DRV:64bit: - [2009.08.05 23:24:16 | 000,061,280 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\fssfltr.sys -- (fssfltr) DRV:64bit: - [2009.07.14 02:52:21 | 000,106,576 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata) DRV:64bit: - [2009.07.14 02:52:21 | 000,028,752 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata) DRV:64bit: - [2009.07.14 02:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs) DRV:64bit: - [2009.07.14 02:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2) DRV:64bit: - [2009.07.14 02:47:48 | 000,077,888 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD) DRV:64bit: - [2009.07.14 02:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor) DRV:64bit: - [2009.06.10 21:38:56 | 000,000,308 | ---- | M] () [File_System | On_Demand | Running] -- C:\Windows\SysNative\wbem\ntfs.mof -- (Ntfs) DRV:64bit: - [2009.06.10 21:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv) DRV:64bit: - [2009.06.10 21:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv) DRV:64bit: - [2009.06.10 21:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a) DRV:64bit: - [2009.06.10 21:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir) DRV:64bit: - [2009.05.26 14:32:04 | 000,019,968 | ---- | M] (ArcSoft, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\ArcSoftKsUFilter.sys -- (ArcSoftKsUFilter) DRV:64bit: - [2009.05.20 11:00:00 | 000,055,280 | ---- | M] (Sonic Solutions) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\PxHlpa64.sys -- (PxHlpa64) DRV:64bit: - [2007.04.17 11:51:50 | 000,014,112 | ---- | M] (InterVideo) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\regi.sys -- (regi) ========== Standard Registry (SafeList) ========== ========== Internet Explorer ========== IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.com/ig/redirectdomain?brand=SVEC&bmod=EU01 IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SearchDefaultBranded = 1 IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.ask.com/?gcht=HC&o=101702&l=dis IE - HKCU\..\URLSearchHook: {cc05a3e3-64c3-4af2-bfc1-af0d66b69065} - Reg Error: Key error. File not found IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 ========== FireFox ========== FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}:6.0.22 FF - HKLM\software\mozilla\Mozilla Firefox 3.6.12\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2010.12.09 08:39:03 | 000,000,000 | ---D | M] FF - HKLM\software\mozilla\Mozilla Firefox 3.6.12\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins [2010.12.09 08:39:02 | 000,000,000 | ---D | M] [2010.12.09 08:39:17 | 000,000,000 | ---D | M] -- C:\Users\Anna\AppData\Roaming\mozilla\Extensions [2010.12.09 08:39:17 | 000,000,000 | ---D | M] -- C:\Users\Anna\AppData\Roaming\mozilla\Firefox\Profiles\xjhk2sa4.default\extensions [2010.12.09 08:39:02 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\mozilla firefox\extensions [2010.12.05 21:38:04 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files (x86)\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA} [2010.09.15 04:50:38 | 000,472,808 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files (x86)\mozilla firefox\plugins\npdeployJava1.dll [2010.10.27 06:44:13 | 000,001,392 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\amazondotcom-de.xml [2010.10.27 06:44:13 | 000,002,344 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\eBay-de.xml [2010.10.27 06:44:13 | 000,006,805 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\leo_ende_de.xml [2010.10.27 06:44:13 | 000,001,178 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\wikipedia-de.xml [2010.10.27 06:44:13 | 000,001,105 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\yahoo-de.xml O1 HOSTS File: ([2009.06.10 22:00:26 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts O2:64bit: - BHO: (Windows Live Family Safety Browser Helper Class) - {4f3ed5cd-0726-42a9-87f5-d13f3d2976ac} - C:\Programme\Windows Live\Family Safety\fssbho.dll (Microsoft Corporation) O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - No CLSID value found. O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {CC05A3E3-64C3-4AF2-BFC1-AF0D66B69065} - No CLSID value found. O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {D4027C7F-154A-4066-A1AD-4243D8127440} - No CLSID value found. O4:64bit: - HKLM..\Run: [Apoint] C:\Programme\Apoint\Apoint.exe (Alps Electric Co., Ltd.) O4:64bit: - HKLM..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Realtek Semiconductor) O4 - HKLM..\Run: [Adobe Reader Speed Launcher] C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe (Adobe Systems Incorporated) O4 - HKLM..\Run: [avgnt] C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe (Avira GmbH) O4 - HKLM..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe (Intel Corporation) O4 - HKLM..\Run: [ISBMgr.exe] C:\Program Files (x86)\Sony\ISB Utility\ISBMgr.exe (Sony Corporation) O4 - HKLM..\Run: [MarketingTools] C:\Program Files (x86)\Sony\Marketing Tools\MarketingTools.exe (Sony Corporation) O4 - HKLM..\Run: [PMBVolumeWatcher] c:\Program Files (x86)\Sony\PMB\PMBVolumeWatcher.exe (Sony Corporation) O4 - HKLM..\Run: [StartCCC] c:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.) O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 28 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3 O8:64bit: - Extra context menu item: Bild an &Bluetooth-Gerät senden... - C:\Programme\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm () O8:64bit: - Extra context menu item: Seite an &Bluetooth-Gerät senden... - C:\Programme\WIDCOMM\Bluetooth Software\btsendto_ie.htm () O8 - Extra context menu item: Bild an &Bluetooth-Gerät senden... - C:\Programme\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm () O8 - Extra context menu item: Seite an &Bluetooth-Gerät senden... - C:\Programme\WIDCOMM\Bluetooth Software\btsendto_ie.htm () O9:64bit: - Extra Button: @C:\Program Files\WIDCOMM\Bluetooth Software\btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Programme\WIDCOMM\Bluetooth Software\btsendto_ie.htm () O9:64bit: - Extra 'Tools' menuitem : @C:\Program Files\WIDCOMM\Bluetooth Software\btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Programme\WIDCOMM\Bluetooth Software\btsendto_ie.htm () O9 - Extra Button: Send To Bluetooth - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Programme\WIDCOMM\Bluetooth Software\btsendto_ie.htm () O9 - Extra 'Tools' menuitem : Send to &Bluetooth Device... - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Programme\WIDCOMM\Bluetooth Software\btsendto_ie.htm () O9 - Extra Button: Add to Evernote - {E0B8C461-F8FB-49b4-8373-FE32E92528A6} - c:\Program Files (x86)\Evernote\Evernote3.5\enbar.dll (Evernote Corporation) O9 - Extra 'Tools' menuitem : Add to Evernote - {E0B8C461-F8FB-49b4-8373-FE32E92528A6} - c:\Program Files (x86)\Evernote\Evernote3.5\enbar.dll (Evernote Corporation) O13 - gopher Prefix: missing O13 - gopher Prefix: missing O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_16-windows-i586.cab (Java Plug-in 1.6.0_16) O16 - DPF: {CAFEEFAC-0016-0000-0016-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_16-windows-i586.cab (Java Plug-in 1.6.0_16) O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_16-windows-i586.cab (Reg Error: Key error.) O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab (Java Plug-in 1.6.0_22) O16 - DPF: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab (Java Plug-in 1.6.0_22) O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab (Java Plug-in 1.6.0_22) O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.178.1 O18:64bit: - Protocol\Handler\livecall {828030A1-22C1-4009-854F-8E305202313F} - Reg Error: Key error. File not found O18:64bit: - Protocol\Handler\msnim {828030A1-22C1-4009-854F-8E305202313F} - Reg Error: Key error. File not found O18:64bit: - Protocol\Handler\wlmailhtml {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - Reg Error: Key error. File not found O18 - Protocol\Handler\livecall {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~2\WIC4A1~1\MESSEN~1\MSGRAP~1.DLL (Microsoft Corporation) O18 - Protocol\Handler\msnim {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~2\WIC4A1~1\MESSEN~1\MSGRAP~1.DLL (Microsoft Corporation) O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation) O20:64bit: - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\SysNative\SystemPropertiesPerformance.exe (Microsoft Corporation) O20:64bit: - HKLM Winlogon: VMApplet - (/pagefile) - File not found O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation) O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found O20:64bit: - Winlogon\Notify\igfxcui: DllName - Reg Error: Key error. - C:\Windows\SysNative\igfxdev.dll (Intel Corporation) O20 - Winlogon\Notify\VESWinlogon: DllName - VESWinlogon.dll - C:\Windows\SysWow64\VESWinlogon.dll (Sony Corporation) O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found. O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found. O32 - HKLM CDRom: AutoRun - 1 O33 - MountPoints2\{c8567f4e-007b-11e0-baa8-5442495c3fce}\Shell - "" = AutoRun O33 - MountPoints2\{c8567f4e-007b-11e0-baa8-5442495c3fce}\Shell\AutoRun\command - "" = H:\pushinst.exe -- File not found O33 - MountPoints2\H\Shell - "" = AutoRun O33 - MountPoints2\H\Shell\AutoRun\command - "" = H:\pushinst.exe -- File not found O34 - HKLM BootExecute: (autocheck autochk *) - File not found O35:64bit: - HKLM\..comfile [open] -- "%1" %* O35:64bit: - HKLM\..exefile [open] -- "%1" %* O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %* O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* ========== Files/Folders - Created Within 30 Days ========== [2010.12.09 08:39:11 | 000,000,000 | ---D | C] -- C:\Users\Anna\AppData\Roaming\Mozilla [2010.12.09 00:53:31 | 000,000,000 | ---D | C] -- C:\Users\Anna\AppData\Roaming\Corel [2010.12.09 00:53:27 | 000,000,000 | ---D | C] -- C:\Users\Anna\Corel [2010.12.08 23:12:12 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Foxit Software [2010.12.08 23:11:14 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Conduit [2010.12.08 23:11:12 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\ConduitEngine [2010.12.08 23:06:58 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Adobe [2010.12.08 23:06:58 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Adobe [2010.12.08 22:41:19 | 000,000,000 | ---D | C] -- C:\Users\Anna\AppData\Local\Adobe [2010.12.07 23:15:27 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Silverlight [2010.12.07 23:15:10 | 000,109,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\sdbus.sys [2010.12.06 21:55:40 | 000,000,000 | ---D | C] -- C:\Users\Anna\AppData\Roaming\Avira [2010.12.06 21:10:31 | 000,116,568 | ---- | C] (Avira GmbH) -- C:\Windows\SysNative\drivers\avipbb.sys [2010.12.06 21:10:31 | 000,083,120 | ---- | C] (Avira GmbH) -- C:\Windows\SysNative\drivers\avgntflt.sys [2010.12.06 21:10:30 | 000,000,000 | ---D | C] -- C:\ProgramData\Avira [2010.12.06 21:10:30 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Avira [2010.12.06 19:26:42 | 000,000,000 | ---D | C] -- C:\Update [2010.12.06 09:44:06 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\MSXML 4.0 [2010.12.05 23:21:05 | 000,295,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\PresentationHost.exe [2010.12.05 23:21:05 | 000,099,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\PresentationHostProxy.dll [2010.12.05 23:21:05 | 000,049,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\netfxperf.dll [2010.12.05 23:21:04 | 001,942,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dfshim.dll [2010.12.05 23:21:04 | 001,130,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dfshim.dll [2010.12.05 23:21:04 | 000,320,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\PresentationHost.exe [2010.12.05 23:21:04 | 000,109,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\PresentationHostProxy.dll [2010.12.05 23:21:04 | 000,048,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\netfxperf.dll [2010.12.05 23:20:46 | 000,294,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\browserchoice.exe [2010.12.05 23:14:16 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\IrfanView [2010.12.05 21:38:57 | 000,000,000 | ---D | C] -- C:\ProgramData\Sun [2010.12.05 21:38:56 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Java [2010.12.05 21:38:03 | 000,472,808 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\deployJava1.dll [2010.12.05 21:38:03 | 000,153,376 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\javaws.exe [2010.12.05 21:38:03 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\javaw.exe [2010.12.05 21:38:03 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\java.exe [2010.12.05 20:18:31 | 000,000,000 | ---D | C] -- C:\Users\Anna\AppData\Roaming\vlc [2010.12.05 20:17:53 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\VideoLAN [2010.12.05 19:43:55 | 000,000,000 | ---D | C] -- C:\Programme\CCleaner [2010.12.05 18:03:05 | 000,000,000 | ---D | C] -- C:\Users\Anna\AppData\Roaming\Malwarebytes [2010.12.05 18:02:35 | 000,038,224 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\SysWow64\drivers\mbamswissarmy.sys [2010.12.05 18:02:34 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes [2010.12.05 18:02:31 | 000,024,152 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\SysNative\drivers\mbam.sys [2010.12.05 18:02:31 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware [2010.12.05 16:31:45 | 000,000,000 | ---D | C] -- C:\Users\Anna\AppData\Roaming\Macromedia [2010.12.05 16:14:51 | 000,052,224 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rtutils.dll [2010.12.05 16:14:51 | 000,037,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\rtutils.dll [2010.12.05 16:14:50 | 000,000,000 | ---D | C] -- C:\Users\Anna\AppData\Local\Mozilla [2010.12.05 16:14:49 | 000,148,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\t2embed.dll [2010.12.05 16:14:49 | 000,109,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\t2embed.dll [2010.12.05 16:14:48 | 002,085,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ole32.dll [2010.12.05 16:14:48 | 001,736,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntdll.dll [2010.12.05 16:14:46 | 000,483,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\StructuredQuery.dll [2010.12.05 16:14:41 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Mozilla Firefox [2010.12.05 16:14:38 | 000,641,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\CPFilters.dll [2010.12.05 16:14:37 | 000,961,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\CPFilters.dll [2010.12.05 16:14:37 | 000,258,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mpg2splt.ax [2010.12.05 16:14:36 | 000,552,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msdri.dll [2010.12.05 16:14:36 | 000,288,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MSNP.ax [2010.12.05 16:14:36 | 000,204,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\MSNP.ax [2010.12.05 16:14:36 | 000,199,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mpg2splt.ax [2010.12.05 16:14:28 | 005,507,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntoskrnl.exe [2010.12.05 16:14:28 | 003,955,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ntkrnlpa.exe [2010.12.05 16:14:27 | 003,899,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ntoskrnl.exe [2010.12.05 16:14:24 | 000,633,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\comctl32.dll [2010.12.05 16:14:23 | 000,861,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\oleaut32.dll [2010.12.05 16:14:02 | 000,082,944 | ---- | C] (Radius Inc.) -- C:\Windows\SysWow64\iccvid.dll [2010.12.05 16:14:01 | 000,144,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cdd.dll [2010.12.05 16:13:52 | 001,024,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wmpmde.dll [2010.12.05 16:13:52 | 000,738,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wmpmde.dll [2010.12.05 16:12:58 | 000,027,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\Diskdump.sys [2010.12.05 16:12:55 | 001,446,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\lsasrv.dll [2010.12.05 16:12:41 | 014,627,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wmp.dll [2010.12.05 16:12:35 | 011,406,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wmp.dll [2010.12.05 16:12:34 | 012,625,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wmploc.DLL [2010.12.05 16:12:33 | 012,625,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wmploc.DLL [2010.12.05 16:12:22 | 000,954,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfc40.dll [2010.12.05 16:12:22 | 000,954,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfc40u.dll [2010.12.05 16:12:22 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\sscore.dll [2010.12.05 16:12:20 | 000,366,080 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\SysNative\atmfd.dll [2010.12.05 16:12:20 | 000,293,888 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\atmfd.dll [2010.12.05 16:12:20 | 000,046,080 | ---- | C] (Adobe Systems) -- C:\Windows\SysNative\atmlib.dll [2010.12.05 16:12:20 | 000,034,304 | ---- | C] (Adobe Systems) -- C:\Windows\SysWow64\atmlib.dll [2010.12.05 16:12:15 | 000,702,976 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msfeeds.dll [2010.12.05 16:12:15 | 000,599,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msfeeds.dll [2010.12.05 16:12:14 | 000,256,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iepeers.dll [2010.12.05 16:12:14 | 000,247,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieui.dll [2010.12.05 16:12:14 | 000,185,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iepeers.dll [2010.12.05 16:12:14 | 000,176,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieui.dll [2010.12.05 16:12:14 | 000,097,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mshtmled.dll [2010.12.05 16:12:14 | 000,067,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmled.dll [2010.12.05 16:12:14 | 000,057,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\licmgr10.dll [2010.12.05 16:12:14 | 000,044,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\licmgr10.dll [2010.12.05 16:12:13 | 000,482,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\html.iec [2010.12.05 16:12:13 | 000,386,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\html.iec [2010.12.05 16:12:13 | 000,012,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msfeedssync.exe [2010.12.05 16:12:13 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msfeedssync.exe [2010.12.05 16:09:49 | 000,000,000 | ---D | C] -- C:\Users\Anna\AppData\Roaming\Adobe [2010.12.05 15:49:11 | 000,220,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wintrust.dll [2010.12.05 15:49:11 | 000,172,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wintrust.dll [2010.12.05 15:45:09 | 000,000,000 | ---D | C] -- C:\Users\Anna\AVM_Driver [2010.12.05 15:41:29 | 000,000,000 | ---D | C] -- C:\Users\Anna\AppData\Local\Diagnostics [2010.12.05 15:33:23 | 000,000,000 | ---D | C] -- C:\Users\Anna\AppData\Roaming\Google [2010.12.05 15:33:22 | 000,000,000 | ---D | C] -- C:\Users\Anna\AppData\Local\Google [2010.12.05 15:11:29 | 000,000,000 | ---D | C] -- C:\Users\Anna\AppData\Local\Sony_Corporation [2010.12.05 15:11:26 | 000,000,000 | ---D | C] -- C:\Users\Anna\AppData\Roaming\Intel Corporation [2010.12.05 15:11:22 | 000,000,000 | ---D | C] -- C:\Users\Anna\AppData\Local\Broadcom [2010.12.05 15:11:22 | 000,000,000 | ---D | C] -- C:\Users\Anna\Documents\Bluetooth Exchange Folder [2010.12.05 15:11:17 | 000,000,000 | ---D | C] -- C:\Users\Anna\AppData\Roaming\ATI [2010.12.05 15:11:17 | 000,000,000 | ---D | C] -- C:\Users\Anna\AppData\Local\ATI [2010.12.05 15:10:58 | 000,000,000 | R--D | C] -- C:\Users\Anna\Searches [2010.12.05 15:10:50 | 000,000,000 | ---D | C] -- C:\Users\Anna\AppData\Roaming\Identities [2010.12.05 15:10:47 | 000,000,000 | R--D | C] -- C:\Users\Anna\Contacts [2010.12.05 15:10:13 | 000,000,000 | -H-D | C] -- C:\Windows\msdownld.tmp [2010.12.05 14:58:16 | 000,000,000 | ---D | C] -- C:\Users\Anna\AppData\Local\VirtualStore [2010.12.05 14:57:58 | 000,000,000 | ---D | C] -- C:\Users\Anna\AppData\Roaming\Sony Corporation [2010.12.05 14:57:55 | 000,000,000 | --SD | C] -- C:\Users\Anna\AppData\Roaming\Microsoft [2010.12.05 14:57:55 | 000,000,000 | R--D | C] -- C:\Users\Anna\Videos [2010.12.05 14:57:55 | 000,000,000 | R--D | C] -- C:\Users\Anna\Saved Games [2010.12.05 14:57:55 | 000,000,000 | R--D | C] -- C:\Users\Anna\Pictures [2010.12.05 14:57:55 | 000,000,000 | R--D | C] -- C:\Users\Anna\Music [2010.12.05 14:57:55 | 000,000,000 | R--D | C] -- C:\Users\Anna\Links [2010.12.05 14:57:55 | 000,000,000 | R--D | C] -- C:\Users\Anna\Favorites [2010.12.05 14:57:55 | 000,000,000 | R--D | C] -- C:\Users\Anna\Downloads [2010.12.05 14:57:55 | 000,000,000 | R--D | C] -- C:\Users\Anna\Documents [2010.12.05 14:57:55 | 000,000,000 | R--D | C] -- C:\Users\Anna\Desktop [2010.12.05 14:57:55 | 000,000,000 | -HSD | C] -- C:\Users\Anna\Vorlagen [2010.12.05 14:57:55 | 000,000,000 | -HSD | C] -- C:\Users\Anna\AppData\Local\Verlauf [2010.12.05 14:57:55 | 000,000,000 | -HSD | C] -- C:\Users\Anna\AppData\Local\Temporary Internet Files [2010.12.05 14:57:55 | 000,000,000 | -HSD | C] -- C:\Users\Anna\Startmenü [2010.12.05 14:57:55 | 000,000,000 | -HSD | C] -- C:\Users\Anna\SendTo [2010.12.05 14:57:55 | 000,000,000 | -HSD | C] -- C:\Users\Anna\Recent [2010.12.05 14:57:55 | 000,000,000 | -HSD | C] -- C:\Users\Anna\Netzwerkumgebung [2010.12.05 14:57:55 | 000,000,000 | -HSD | C] -- C:\Users\Anna\Lokale Einstellungen [2010.12.05 14:57:55 | 000,000,000 | -HSD | C] -- C:\Users\Anna\Documents\Eigene Videos [2010.12.05 14:57:55 | 000,000,000 | -HSD | C] -- C:\Users\Anna\Documents\Eigene Musik [2010.12.05 14:57:55 | 000,000,000 | -HSD | C] -- C:\Users\Anna\Eigene Dateien [2010.12.05 14:57:55 | 000,000,000 | -HSD | C] -- C:\Users\Anna\Documents\Eigene Bilder [2010.12.05 14:57:55 | 000,000,000 | -HSD | C] -- C:\Users\Anna\Druckumgebung [2010.12.05 14:57:55 | 000,000,000 | -HSD | C] -- C:\Users\Anna\Cookies [2010.12.05 14:57:55 | 000,000,000 | -HSD | C] -- C:\Users\Anna\AppData\Local\Anwendungsdaten [2010.12.05 14:57:55 | 000,000,000 | -HSD | C] -- C:\Users\Anna\Anwendungsdaten [2010.12.05 14:57:55 | 000,000,000 | -H-D | C] -- C:\Users\Anna\AppData [2010.12.05 14:57:55 | 000,000,000 | ---D | C] -- C:\Users\Anna\AppData\Local\Temp [2010.12.05 14:57:55 | 000,000,000 | ---D | C] -- C:\Users\Anna\AppData\Local\Microsoft [2010.12.05 14:57:55 | 000,000,000 | ---D | C] -- C:\Users\Anna\AppData\Roaming\Media Center Programs [2010.12.05 14:57:36 | 000,000,000 | -HSD | C] -- C:\ProgramData\Vorlagen [2010.12.05 14:57:36 | 000,000,000 | -HSD | C] -- C:\ProgramData\Startmenü [2010.12.05 14:57:36 | 000,000,000 | -HSD | C] -- C:\Programme [2010.12.05 14:57:36 | 000,000,000 | -HSD | C] -- C:\Programme\Gemeinsame Dateien [2010.12.05 14:57:36 | 000,000,000 | -HSD | C] -- C:\ProgramData\Favoriten [2010.12.05 14:57:36 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Eigene Videos [2010.12.05 14:57:36 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Eigene Musik [2010.12.05 14:57:36 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Eigene Bilder [2010.12.05 14:57:36 | 000,000,000 | -HSD | C] -- C:\Dokumente und Einstellungen [2010.12.05 14:57:36 | 000,000,000 | -HSD | C] -- C:\ProgramData\Dokumente [2010.12.05 14:57:36 | 000,000,000 | -HSD | C] -- C:\ProgramData\Anwendungsdaten [2010.12.05 14:48:14 | 000,000,000 | ---D | C] -- C:\_FS_SWRINFO [2010.12.05 14:48:13 | 000,000,000 | ---D | C] -- C:\Documentation [2010.12.05 14:48:04 | 000,061,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\fssfltr.sys [2010.12.05 14:48:04 | 000,000,000 | ---D | C] -- C:\Programme\Windows Live [2010.12.05 14:48:04 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\DRVSTORE [2010.12.05 14:47:34 | 004,398,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_32.dll [2010.12.05 14:47:34 | 003,426,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_32.dll [2010.12.05 14:46:54 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft [2010.12.05 14:46:46 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\microsoft [2010.12.05 14:46:41 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Windows Live SkyDrive [2010.12.05 14:46:27 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Windows Live [2010.12.05 14:46:18 | 000,000,000 | ---D | C] -- C:\Windows\PCHEALTH [2010.12.05 14:45:40 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Windows Live [2010.12.05 14:45:11 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Sony Corporation [2010.12.05 14:43:01 | 003,727,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_35.dll [2010.12.05 14:42:49 | 000,000,000 | ---D | C] -- C:\Temp [2010.12.05 14:42:33 | 000,098,304 | ---- | C] (Sony Corporation) -- C:\Windows\SysWow64\VESWinlogon.dll [2010.12.05 14:39:51 | 000,455,680 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\SysNative\deploytk.dll [2010.12.05 14:39:51 | 000,181,760 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\SysNative\javaws.exe [2010.12.05 14:39:51 | 000,165,888 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\SysNative\javaw.exe [2010.12.05 14:39:51 | 000,165,888 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\SysNative\java.exe [2010.12.05 14:39:48 | 000,000,000 | ---D | C] -- C:\Programme\Java [2010.12.05 14:39:39 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Java [2010.12.05 14:39:30 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\VAIO screensavers [2010.12.05 14:39:26 | 000,000,000 | ---D | C] -- C:\ProgramData\Uninstall [2010.12.05 14:39:20 | 000,000,000 | ---D | C] -- C:\ProgramData\Sonic [2010.12.05 14:39:14 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Roxio [2010.12.05 14:38:58 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Sonic Shared [2010.12.05 14:38:53 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Roxio Shared [2010.12.05 14:38:43 | 000,563,696 | ---- | C] (Sonic Solutions) -- C:\Windows\SysWow64\pxdrv.dll [2010.12.05 14:38:43 | 000,133,616 | ---- | C] (Sonic Solutions) -- C:\Windows\SysWow64\pxafs.dll [2010.12.05 14:38:43 | 000,072,176 | ---- | C] (Sonic Solutions) -- C:\Windows\SysWow64\pxhpinst.exe [2010.12.05 14:38:43 | 000,055,280 | ---- | C] (Sonic Solutions) -- C:\Windows\SysNative\drivers\PxHlpa64.sys [2010.12.05 14:38:43 | 000,010,224 | ---- | C] (Sonic Solutions) -- C:\Windows\SysNative\drivers\cdralw2k.sys [2010.12.05 14:38:43 | 000,010,224 | ---- | C] (Sonic Solutions) -- C:\Windows\SysNative\drivers\cdr4_xp.sys [2010.12.05 14:38:43 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\PX Storage Engine [2010.12.05 14:36:15 | 000,000,000 | ---D | C] -- C:\ProgramData\MusicStation [2010.12.05 14:36:15 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\MusicStation [2010.12.05 14:36:14 | 000,000,000 | ---D | C] -- C:\Programme\Microsoft Synchronization Services [2010.12.05 14:36:14 | 000,000,000 | ---D | C] -- C:\Programme\Microsoft SQL Server Compact Edition [2010.12.05 14:36:13 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Synchronization Services [2010.12.05 14:36:13 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft SQL Server Compact Edition [2010.12.05 14:35:52 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Office [2010.12.05 14:32:47 | 005,425,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DX9_41.dll [2010.12.05 14:32:47 | 004,178,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_41.dll [2010.12.05 14:32:47 | 002,430,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_41.dll [2010.12.05 14:32:47 | 001,846,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_41.dll [2010.12.05 14:32:47 | 000,520,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_41.dll [2010.12.05 14:32:47 | 000,453,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_41.dll [2010.12.05 14:32:14 | 000,000,000 | ---D | C] -- C:\ProgramData\SiteAdvisor [2010.12.05 14:29:44 | 000,000,000 | ---D | C] -- C:\ProgramData\McAfee [2010.12.05 14:29:13 | 000,499,712 | R--- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msvcp71.dll [2010.12.05 14:29:13 | 000,348,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msvcr71.dll [2010.12.05 14:29:13 | 000,245,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\unicows.dll [2010.12.05 14:29:13 | 000,212,480 | ---- | C] (Eastman Kodak) -- C:\Windows\SysWow64\PCDLIB32.DLL [2010.12.05 14:29:12 | 000,055,808 | ---- | C] (ArcSoft, Inc.) -- C:\Windows\System\ArcSoftKsUFilter.dll [2010.12.05 14:29:12 | 000,019,968 | ---- | C] (ArcSoft, Inc.) -- C:\Windows\SysNative\drivers\ArcSoftKsUFilter.sys [2010.12.05 14:29:11 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\ArcSoft [2010.12.05 14:29:11 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\ArcSoft [2010.12.05 14:29:05 | 000,000,000 | ---D | C] -- C:\Programme\Google [2010.12.05 14:28:59 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Google [2010.12.05 14:28:57 | 000,000,000 | ---D | C] -- C:\ProgramData\Partner [2010.12.05 14:28:54 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\Macromed [2010.12.05 14:28:51 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Evernote [2010.12.05 14:28:50 | 000,000,000 | ---D | C] -- C:\ProgramData\Evernote [2010.12.05 14:28:38 | 000,000,000 | -H-D | C] -- C:\SPLASH.000 [2010.12.05 14:28:23 | 000,000,000 | -H-D | C] -- C:\SPLASH.SYS [2010.12.05 14:28:06 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Downloaded Installations [2010.12.05 14:27:40 | 000,000,000 | ---D | C] -- C:\ProgramData\ATI [2010.12.05 14:27:08 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\ATI Technologies [2010.12.05 14:26:15 | 000,014,112 | ---- | C] (InterVideo) -- C:\Windows\SysNative\drivers\regi.sys [2010.12.05 14:26:12 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\InterVideo [2010.12.05 14:26:04 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Protexis [2010.12.05 14:26:00 | 000,000,000 | ---D | C] -- C:\ProgramData\Corel [2010.12.05 14:25:59 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Corel [2010.12.05 14:25:55 | 002,332,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_29.dll [2010.12.05 14:25:30 | 000,000,000 | ---D | C] -- C:\ProgramData\Adobe [2010.12.05 14:25:08 | 000,000,000 | ---D | C] -- C:\Windows\Sonysys [2010.12.05 14:24:58 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\SONY [2010.12.05 14:23:28 | 000,000,000 | ---D | C] -- C:\Programme\Apoint [2010.12.05 14:23:17 | 001,691,680 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RHDMEx64.dll [2010.12.05 14:23:17 | 001,638,432 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RtkHDM64.dll [2010.12.05 14:23:17 | 000,304,640 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RH3DHT64.dll [2010.12.05 14:23:17 | 000,304,640 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RH3DAA64.dll [2010.12.05 14:23:17 | 000,213,280 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\drivers\RtHDMIVX.sys [2010.12.05 14:23:17 | 000,064,032 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RHCoInst64.dll [2010.12.05 14:23:06 | 000,000,000 | ---D | C] -- C:\Programme\Realtek [2010.12.05 14:23:05 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\RTCOM [2010.12.05 14:22:54 | 002,719,504 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\SysNative\WavesGUILib.dll [2010.12.05 14:22:54 | 002,197,264 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxAudioEQ.dll [2010.12.05 14:22:54 | 001,692,192 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RtPgEx64.dll [2010.12.05 14:22:54 | 001,638,432 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RtkAPO64.dll [2010.12.05 14:22:54 | 001,201,184 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RTCOM64.dll [2010.12.05 14:22:54 | 000,612,384 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RTSnMg64.cpl [2010.12.05 14:22:54 | 000,518,896 | ---- | C] (SRS Labs, Inc.) -- C:\Windows\SysNative\SRSTSX64.dll [2010.12.05 14:22:54 | 000,449,056 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RtkApi64.dll [2010.12.05 14:22:54 | 000,363,008 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RTEEP64A.dll [2010.12.05 14:22:54 | 000,332,320 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RtlCPAPI64.dll [2010.12.05 14:22:54 | 000,325,904 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxAudioAPO20.dll [2010.12.05 14:22:54 | 000,321,536 | ---- | C] (Fortemedia Corporation) -- C:\Windows\SysNative\FMAPO64.dll [2010.12.05 14:22:54 | 000,304,640 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RP3DHT64.dll [2010.12.05 14:22:54 | 000,304,640 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RP3DAA64.dll [2010.12.05 14:22:54 | 000,211,184 | ---- | C] (SRS Labs, Inc.) -- C:\Windows\SysNative\SRSTSH64.dll [2010.12.05 14:22:54 | 000,198,896 | ---- | C] (SRS Labs, Inc.) -- C:\Windows\SysNative\SRSHP64.dll [2010.12.05 14:22:54 | 000,198,656 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RTEED64A.dll [2010.12.05 14:22:54 | 000,155,888 | ---- | C] (SRS Labs, Inc.) -- C:\Windows\SysNative\SRSWOW64.dll [2010.12.05 14:22:54 | 000,149,536 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RtkCfg64.dll [2010.12.05 14:22:54 | 000,095,744 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RTEEL64A.dll [2010.12.05 14:22:54 | 000,073,216 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RTEEG64A.dll [2010.12.05 14:22:54 | 000,066,592 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RCoInst64.dll [2010.12.05 14:22:53 | 000,838,176 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\RtlExUpd.dll [2010.12.05 14:22:53 | 000,168,864 | ---- | C] (Andrea Electronics Corporation) -- C:\Windows\SysNative\AERTAC64.dll [2010.12.05 14:22:53 | 000,108,960 | ---- | C] (Andrea Electronics Corporation) -- C:\Windows\SysNative\AERTAR64.dll [2010.12.05 14:22:53 | 000,000,000 | -H-D | C] -- C:\Program Files (x86)\Temp [2010.12.05 14:22:53 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Realtek [2010.12.05 14:22:48 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\InstallShield [2010.12.05 14:22:23 | 000,000,000 | ---D | C] -- C:\Windows\SoftwareDistribution [2010.12.05 14:16:52 | 000,000,000 | -HSD | C] -- C:\System Volume Information [2010.12.05 14:15:53 | 000,000,000 | ---D | C] -- C:\Programme\Sony [2010.12.05 14:14:51 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\winrm [2010.12.05 14:14:51 | 000,000,000 | ---D | C] -- C:\Windows\de-DE [2010.12.05 14:14:50 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\XPSViewer [2010.12.05 14:14:50 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\winrm [2010.12.05 14:14:50 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\WCN [2010.12.05 14:14:50 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\WCN [2010.12.05 14:14:50 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\drivers\UMDF [2010.12.05 14:14:50 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\sysprep [2010.12.05 14:14:50 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\slmgr [2010.12.05 14:14:50 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\slmgr [2010.12.05 14:14:50 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\Printing_Admin_Scripts [2010.12.05 14:14:50 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\drivers\UMDF\de-DE [2010.12.05 14:14:50 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\drivers\de-DE [2010.12.05 14:14:50 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\drivers\de-DE [2010.12.05 14:14:50 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\de [2010.12.05 14:14:50 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\0407 [2010.12.05 14:14:50 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\0407 [2010.12.05 14:14:49 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\Printing_Admin_Scripts [2010.12.05 14:14:49 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\de [2010.12.05 14:14:30 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\usbrpm.sys.mui [2010.12.05 14:14:28 | 000,017,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\fvevol.sys.mui [2010.12.05 14:14:21 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\drivers\de-DE\qwavedrv.sys.mui [2010.12.05 14:14:20 | 000,017,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\nwifi.sys.mui [2010.12.05 14:14:20 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\qwavedrv.sys.mui [2010.12.05 14:14:18 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\volsnap.sys.mui [2010.12.05 14:14:18 | 000,025,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\usbport.sys.mui [2010.12.05 14:14:18 | 000,020,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\processr.sys.mui [2010.12.05 14:14:18 | 000,020,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\intelppm.sys.mui [2010.12.05 14:14:18 | 000,020,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\amdppm.sys.mui [2010.12.05 14:14:18 | 000,020,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\amdk8.sys.mui [2010.12.05 14:14:18 | 000,011,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\usbhub.sys.mui [2010.12.05 14:14:18 | 000,011,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\serial.sys.mui [2010.12.05 14:14:18 | 000,011,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\ohci1394.sys.mui [2010.12.05 14:14:18 | 000,011,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\1394ohci.sys.mui [2010.12.05 14:14:18 | 000,011,776 | ---- | C] (Brother Industries Ltd.) -- C:\Windows\SysNative\drivers\de-DE\BrSerId.sys.mui [2010.12.05 14:14:18 | 000,011,776 | ---- | C] (Brother Industries Ltd.) -- C:\Windows\SysNative\drivers\de-DE\BrSerIb.sys.mui [2010.12.05 14:14:18 | 000,010,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\i8042prt.sys.mui [2010.12.05 14:14:18 | 000,010,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\acpi.sys.mui [2010.12.05 14:14:18 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\battc.sys.mui [2010.12.05 14:14:18 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\pci.sys.mui [2010.12.05 14:14:18 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\IPMIDrv.sys.mui [2010.12.05 14:14:18 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\sermouse.sys.mui [2010.12.05 14:14:18 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\kbdclass.sys.mui [2010.12.05 14:14:18 | 000,004,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\mouclass.sys.mui [2010.12.05 14:14:18 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\wacompen.sys.mui [2010.12.05 14:14:18 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\vhdmp.sys.mui [2010.12.05 14:14:18 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\vdrvroot.sys.mui [2010.12.05 14:14:18 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\tpm.sys.mui [2010.12.05 14:14:18 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\isapnp.sys.mui [2010.12.05 14:14:18 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\hdaudbus.sys.mui [2010.12.05 14:14:18 | 000,003,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\parport.sys.mui [2010.12.05 14:14:18 | 000,003,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\ataport.sys.mui [2010.12.05 14:14:18 | 000,003,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\umbus.sys.mui [2010.12.05 14:14:18 | 000,003,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\mssmbios.sys.mui [2010.12.05 14:14:18 | 000,003,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\mouhid.sys.mui [2010.12.05 14:14:18 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\vwifibus.sys.mui [2010.12.05 14:14:18 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\ULIAGPKX.SYS.mui [2010.12.05 14:14:18 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\UAGP35.SYS.mui [2010.12.05 14:14:18 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\NV_AGP.SYS.mui [2010.12.05 14:14:18 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\MTConfig.sys.mui [2010.12.05 14:14:18 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\kbdhid.sys.mui [2010.12.05 14:14:18 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\GAGP30KX.SYS.mui [2010.12.05 14:14:18 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\AGP440.sys.mui [2010.12.05 14:14:18 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\wd.sys.mui [2010.12.05 14:14:18 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\disk.sys.mui [2010.12.05 14:14:18 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\cdrom.sys.mui [2010.12.05 14:14:18 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\amdide.sys.mui [2010.12.05 14:14:16 | 000,051,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\tcpip.sys.mui [2010.12.05 14:14:16 | 000,038,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\mpio.sys.mui [2010.12.05 14:14:16 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\bthport.sys.mui [2010.12.05 14:14:16 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\msdsm.sys.mui [2010.12.05 14:14:16 | 000,004,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\pcmcia.sys.mui [2010.12.05 14:14:16 | 000,004,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\bthpan.sys.mui [2010.12.05 14:14:16 | 000,004,096 | ---- | C] (SCM Microsystems, Inc.) -- C:\Windows\SysNative\drivers\de-DE\pscr.sys.mui [2010.12.05 14:14:16 | 000,003,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\portcls.sys.mui [2010.12.05 14:14:16 | 000,003,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\HdAudio.sys.mui [2010.12.05 14:14:16 | 000,003,584 | ---- | C] (ATI Technologies Inc.) -- C:\Windows\SysNative\drivers\de-DE\atikmdag.sys.mui [2010.12.05 14:14:16 | 000,003,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\serscan.sys.mui [2010.12.05 14:14:16 | 000,003,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\rndismpx.sys.mui [2010.12.05 14:14:16 | 000,003,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\rndismp6.sys.mui [2010.12.05 14:14:16 | 000,003,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\hidbth.sys.mui [2010.12.05 14:14:16 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\pnpmem.sys.mui [2010.12.05 14:14:16 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\Dot4usb.sys.mui [2010.12.05 14:14:16 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\BTHUSB.SYS.mui [2010.12.05 14:14:16 | 000,002,560 | ---- | C] (Brother Industries Ltd.) -- C:\Windows\SysNative\drivers\de-DE\BrParwdm.sys.mui [2010.12.05 14:14:16 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\ws2ifsl.sys.mui [2010.12.05 14:14:16 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\bthenum.sys.mui [2010.12.05 14:14:14 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\pacer.sys.mui [2010.12.05 14:14:13 | 000,029,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\bfe.dll.mui [2010.12.05 14:14:13 | 000,003,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\modem.sys.mui [2010.12.05 14:14:12 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\afd.sys.mui [2010.12.05 14:14:12 | 000,003,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\ipnat.sys.mui [2010.12.05 14:14:12 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\volmgrx.sys.mui [2010.12.05 14:14:10 | 000,072,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\ntfs.sys.mui [2010.12.05 14:14:10 | 000,009,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\tunnel.sys.mui [2010.12.05 14:14:10 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\luafv.sys.mui [2010.12.05 14:14:10 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\drivers\de-DE\ndiscap.sys.mui [2010.12.05 14:14:10 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\rdbss.sys.mui [2010.12.05 14:14:10 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\srv.sys.mui [2010.12.05 14:14:10 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\drivers\de-DE\scfilter.sys.mui [2010.12.05 14:14:09 | 000,003,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\ndisuio.sys.mui [2010.12.05 14:14:09 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\partmgr.sys.mui [2010.12.05 14:14:09 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\mountmgr.sys.mui [2010.12.05 14:14:08 | 000,051,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\drivers\de-DE\tcpip.sys.mui [2010.12.05 14:14:08 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\ndiscap.sys.mui [2010.12.05 14:14:08 | 000,003,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\RNDISMP.sys.mui [2010.12.05 14:14:08 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\scfilter.sys.mui [2010.12.05 14:14:07 | 000,041,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\ndis.sys.mui [2010.12.05 14:14:07 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\fltmgr.sys.mui [2010.12.05 14:14:07 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\wdf01000.sys.mui [2010.12.05 14:14:06 | 000,044,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\http.sys.mui [2010.12.05 14:14:06 | 000,029,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\drivers\de-DE\bfe.dll.mui [2010.12.05 14:14:06 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\drivers\de-DE\pacer.sys.mui [2010.12.05 14:14:06 | 000,003,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\scsiport.sys.mui [1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ] ========== Files - Modified Within 30 Days ========== [2010.12.09 08:39:04 | 000,001,939 | ---- | M] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk [2010.12.09 08:25:48 | 000,013,936 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 [2010.12.09 08:25:48 | 000,013,936 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 [2010.12.09 08:17:25 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat [2010.12.09 08:17:17 | 3106,455,552 | -HS- | M] () -- C:\hiberfil.sys [2010.12.09 07:54:59 | 000,003,422 | ---- | M] () -- C:\Users\Anna\Documents\cc_20101209_075453.reg [2010.12.09 00:53:31 | 000,000,952 | -HS- | M] () -- C:\ProgramData\KGyGaAvL.sys [2010.12.08 23:07:03 | 000,002,019 | ---- | M] () -- C:\Users\Public\Desktop\Adobe Reader X.lnk [2010.12.08 00:26:47 | 000,010,235 | ---- | M] () -- C:\Users\Anna\Documents\Dokument7122.rtf [2010.12.07 21:11:32 | 000,000,036 | ---- | M] () -- C:\Users\Anna\AppData\Local\housecall.guid.cache [2010.12.07 20:33:27 | 000,001,561 | ---- | M] () -- C:\Users\Anna\Documents\Dokumentmbm712.rtf [2010.12.07 20:05:28 | 000,009,420 | ---- | M] () -- C:\Users\Anna\Documents\Dokument.avira 712.rtf [2010.12.07 19:33:50 | 000,083,120 | ---- | M] (Avira GmbH) -- C:\Windows\SysNative\drivers\avgntflt.sys [2010.12.07 08:22:42 | 000,001,561 | ---- | M] () -- C:\Users\Anna\Documents\mbm log.rtf [2010.12.06 23:52:21 | 000,010,157 | ---- | M] () -- C:\Users\Anna\Documents\Dokument.avira.rtf [2010.12.06 23:50:27 | 000,010,157 | ---- | M] () -- C:\Users\Anna\Documents\Dokument.rtf [2010.12.06 21:10:37 | 000,002,066 | ---- | M] () -- C:\Users\Public\Desktop\Avira AntiVir Control Center.lnk [2010.12.06 09:40:54 | 000,000,402 | ---- | M] () -- C:\Users\Anna\Documents\cc_20101206_094044.reg [2010.12.06 07:56:55 | 001,472,002 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI [2010.12.06 07:56:55 | 000,643,866 | ---- | M] () -- C:\Windows\SysNative\perfh007.dat [2010.12.06 07:56:55 | 000,607,190 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat [2010.12.06 07:56:55 | 000,126,394 | ---- | M] () -- C:\Windows\SysNative\perfc007.dat [2010.12.06 07:56:55 | 000,103,568 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat [2010.12.06 07:48:51 | 000,310,480 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT [2010.12.05 23:14:16 | 000,000,998 | ---- | M] () -- C:\Users\Public\Desktop\IrfanView.lnk [2010.12.05 20:18:23 | 000,001,066 | ---- | M] () -- C:\Users\Public\Desktop\VLC media player.lnk [2010.12.05 19:50:23 | 000,015,264 | ---- | M] () -- C:\Users\Anna\Documents\cc_20101205_195019.reg [2010.12.05 19:50:01 | 000,050,632 | ---- | M] () -- C:\Users\Anna\Documents\cc_20101205_194925.reg [2010.12.05 19:43:56 | 000,000,822 | ---- | M] () -- C:\Users\Public\Desktop\CCleaner.lnk [2010.12.05 18:02:35 | 000,001,109 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk [2010.12.05 15:10:38 | 000,000,000 | RH-- | M] () -- C:\Windows\SysWow64\drivers\104D_Sony_VPCEC2S1E.mrk [2010.12.05 15:10:38 | 000,000,000 | RH-- | M] () -- C:\Windows\SysNative\drivers\104D_Sony_VPCEC2S1E.mrk [2010.12.05 14:56:46 | 000,052,953 | ---- | M] () -- C:\Windows\SysWow64\license.rtf [2010.12.05 14:56:46 | 000,052,953 | ---- | M] () -- C:\Windows\SysNative\license.rtf [2010.12.05 14:45:09 | 000,196,608 | ---- | M] () -- C:\Windows\ocsetup_install_OEMHelpCustomization.etl [2010.12.05 14:39:48 | 000,455,680 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\SysNative\deploytk.dll [2010.12.05 14:39:48 | 000,181,760 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\SysNative\javaws.exe [2010.12.05 14:39:48 | 000,165,888 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\SysNative\javaw.exe [2010.12.05 14:39:48 | 000,165,888 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\SysNative\java.exe [2010.12.05 14:36:22 | 000,000,221 | ---- | M] () -- C:\ProgramData\MusicStation.xml [2010.12.05 14:36:19 | 000,000,228 | ---- | M] () -- C:\Windows\SysWow64\MsiExec.config [2010.12.05 14:28:39 | 000,000,073 | -H-- | M] () -- C:\splash.idx [2010.12.05 14:26:36 | 000,000,040 | -H-- | M] () -- C:\Windows\SysNative\ivireg.ivr [2010.12.05 14:23:29 | 000,000,000 | -H-- | M] () -- C:\Windows\SysNative\drivers\Msft_Kernel_Apfiltr_01007.Wdf [2010.12.05 14:14:42 | 000,295,922 | ---- | M] () -- C:\Windows\SysNative\perfi007.dat [2010.12.05 14:14:42 | 000,038,104 | ---- | M] () -- C:\Windows\SysNative\perfd007.dat [2010.12.05 14:14:30 | 000,002,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\usbrpm.sys.mui [2010.12.05 14:14:28 | 000,017,920 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\fvevol.sys.mui [2010.12.05 14:14:25 | 000,002,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\UMDF\de-DE\WpdMtpDr.dll.mui [2010.12.05 14:14:21 | 000,002,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\drivers\de-DE\qwavedrv.sys.mui [2010.12.05 14:14:20 | 000,017,408 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\nwifi.sys.mui [2010.12.05 14:14:20 | 000,002,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\qwavedrv.sys.mui [2010.12.05 14:14:18 | 000,028,672 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\volsnap.sys.mui [2010.12.05 14:14:18 | 000,025,088 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\usbport.sys.mui [2010.12.05 14:14:18 | 000,020,992 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\processr.sys.mui [2010.12.05 14:14:18 | 000,020,992 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\intelppm.sys.mui [2010.12.05 14:14:18 | 000,020,992 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\amdppm.sys.mui [2010.12.05 14:14:18 | 000,020,992 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\amdk8.sys.mui [2010.12.05 14:14:18 | 000,011,776 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\usbhub.sys.mui [2010.12.05 14:14:18 | 000,011,776 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\serial.sys.mui [2010.12.05 14:14:18 | 000,011,776 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\ohci1394.sys.mui [2010.12.05 14:14:18 | 000,011,776 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\1394ohci.sys.mui [2010.12.05 14:14:18 | 000,011,776 | ---- | M] (Brother Industries Ltd.) -- C:\Windows\SysNative\drivers\de-DE\BrSerId.sys.mui [2010.12.05 14:14:18 | 000,011,776 | ---- | M] (Brother Industries Ltd.) -- C:\Windows\SysNative\drivers\de-DE\BrSerIb.sys.mui [2010.12.05 14:14:18 | 000,010,752 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\i8042prt.sys.mui [2010.12.05 14:14:18 | 000,010,752 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\acpi.sys.mui [2010.12.05 14:14:18 | 000,009,728 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\battc.sys.mui [2010.12.05 14:14:18 | 000,008,192 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\pci.sys.mui [2010.12.05 14:14:18 | 000,006,656 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\IPMIDrv.sys.mui [2010.12.05 14:14:18 | 000,005,632 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\sermouse.sys.mui [2010.12.05 14:14:18 | 000,005,120 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\kbdclass.sys.mui [2010.12.05 14:14:18 | 000,004,608 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\mouclass.sys.mui [2010.12.05 14:14:18 | 000,004,096 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\wacompen.sys.mui [2010.12.05 14:14:18 | 000,004,096 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\vhdmp.sys.mui [2010.12.05 14:14:18 | 000,004,096 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\vdrvroot.sys.mui [2010.12.05 14:14:18 | 000,004,096 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\tpm.sys.mui [2010.12.05 14:14:18 | 000,004,096 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\isapnp.sys.mui [2010.12.05 14:14:18 | 000,004,096 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\hdaudbus.sys.mui [2010.12.05 14:14:18 | 000,003,584 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\parport.sys.mui [2010.12.05 14:14:18 | 000,003,584 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\ataport.sys.mui [2010.12.05 14:14:18 | 000,003,072 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\umbus.sys.mui [2010.12.05 14:14:18 | 000,003,072 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\mssmbios.sys.mui [2010.12.05 14:14:18 | 000,003,072 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\mouhid.sys.mui [2010.12.05 14:14:18 | 000,002,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\vwifibus.sys.mui [2010.12.05 14:14:18 | 000,002,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\ULIAGPKX.SYS.mui [2010.12.05 14:14:18 | 000,002,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\UAGP35.SYS.mui [2010.12.05 14:14:18 | 000,002,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\NV_AGP.SYS.mui [2010.12.05 14:14:18 | 000,002,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\MTConfig.sys.mui [2010.12.05 14:14:18 | 000,002,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\kbdhid.sys.mui [2010.12.05 14:14:18 | 000,002,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\GAGP30KX.SYS.mui [2010.12.05 14:14:18 | 000,002,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\AGP440.sys.mui [2010.12.05 14:14:18 | 000,002,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\wd.sys.mui [2010.12.05 14:14:18 | 000,002,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\disk.sys.mui [2010.12.05 14:14:18 | 000,002,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\cdrom.sys.mui [2010.12.05 14:14:18 | 000,002,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\amdide.sys.mui [2010.12.05 14:14:16 | 000,051,712 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\tcpip.sys.mui [2010.12.05 14:14:16 | 000,038,912 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\mpio.sys.mui [2010.12.05 14:14:16 | 000,008,192 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\bthport.sys.mui [2010.12.05 14:14:16 | 000,006,656 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\UMDF\de-DE\WUDFUsbccidDriver.dll.mui [2010.12.05 14:14:16 | 000,006,656 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\msdsm.sys.mui [2010.12.05 14:14:16 | 000,004,608 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\pcmcia.sys.mui [2010.12.05 14:14:16 | 000,004,608 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\bthpan.sys.mui [2010.12.05 14:14:16 | 000,004,096 | ---- | M] (SCM Microsystems, Inc.) -- C:\Windows\SysNative\drivers\de-DE\pscr.sys.mui [2010.12.05 14:14:16 | 000,003,584 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\portcls.sys.mui [2010.12.05 14:14:16 | 000,003,584 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\HdAudio.sys.mui [2010.12.05 14:14:16 | 000,003,584 | ---- | M] (ATI Technologies Inc.) -- C:\Windows\SysNative\drivers\de-DE\atikmdag.sys.mui [2010.12.05 14:14:16 | 000,003,072 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\serscan.sys.mui [2010.12.05 14:14:16 | 000,003,072 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\rndismpx.sys.mui [2010.12.05 14:14:16 | 000,003,072 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\rndismp6.sys.mui [2010.12.05 14:14:16 | 000,003,072 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\hidbth.sys.mui [2010.12.05 14:14:16 | 000,002,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\pnpmem.sys.mui [2010.12.05 14:14:16 | 000,002,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\Dot4usb.sys.mui [2010.12.05 14:14:16 | 000,002,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\BTHUSB.SYS.mui [2010.12.05 14:14:16 | 000,002,560 | ---- | M] (Brother Industries Ltd.) -- C:\Windows\SysNative\drivers\de-DE\BrParwdm.sys.mui [2010.12.05 14:14:16 | 000,002,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\ws2ifsl.sys.mui [2010.12.05 14:14:16 | 000,002,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\bthenum.sys.mui [2010.12.05 14:14:14 | 000,016,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\pacer.sys.mui [2010.12.05 14:14:13 | 000,029,696 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\bfe.dll.mui [2010.12.05 14:14:13 | 000,003,584 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\modem.sys.mui [2010.12.05 14:14:12 | 000,016,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\afd.sys.mui [2010.12.05 14:14:12 | 000,003,584 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\ipnat.sys.mui [2010.12.05 14:14:12 | 000,002,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\volmgrx.sys.mui [2010.12.05 14:14:10 | 000,072,192 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\ntfs.sys.mui [2010.12.05 14:14:10 | 000,009,216 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\tunnel.sys.mui [2010.12.05 14:14:10 | 000,007,168 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\luafv.sys.mui [2010.12.05 14:14:10 | 000,005,632 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\drivers\de-DE\ndiscap.sys.mui [2010.12.05 14:14:10 | 000,005,120 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\rdbss.sys.mui [2010.12.05 14:14:10 | 000,002,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\srv.sys.mui [2010.12.05 14:14:10 | 000,002,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\drivers\de-DE\scfilter.sys.mui [2010.12.05 14:14:09 | 000,003,072 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\ndisuio.sys.mui [2010.12.05 14:14:09 | 000,002,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\partmgr.sys.mui [2010.12.05 14:14:09 | 000,002,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\mountmgr.sys.mui [2010.12.05 14:14:08 | 000,051,712 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\drivers\de-DE\tcpip.sys.mui [2010.12.05 14:14:08 | 000,005,632 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\ndiscap.sys.mui [2010.12.05 14:14:08 | 000,003,072 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\RNDISMP.sys.mui [2010.12.05 14:14:08 | 000,002,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\scfilter.sys.mui [2010.12.05 14:14:07 | 000,041,984 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\ndis.sys.mui [2010.12.05 14:14:07 | 000,005,632 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\fltmgr.sys.mui [2010.12.05 14:14:07 | 000,002,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\wdf01000.sys.mui [2010.12.05 14:14:06 | 000,044,032 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\http.sys.mui [2010.12.05 14:14:06 | 000,029,696 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\drivers\de-DE\bfe.dll.mui [2010.12.05 14:14:06 | 000,016,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\drivers\de-DE\pacer.sys.mui [2010.12.05 14:14:06 | 000,003,072 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\de-DE\scsiport.sys.mui [2010.11.29 17:42:18 | 000,038,224 | ---- | M] (Malwarebytes Corporation) -- C:\Windows\SysWow64\drivers\mbamswissarmy.sys [2010.11.29 17:42:06 | 000,024,152 | ---- | M] (Malwarebytes Corporation) -- C:\Windows\SysNative\drivers\mbam.sys [1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ] ========== Files Created - No Company Name ========== [2010.12.09 08:39:04 | 000,001,939 | ---- | C] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk [2010.12.09 07:54:56 | 000,003,422 | ---- | C] () -- C:\Users\Anna\Documents\cc_20101209_075453.reg [2010.12.09 00:53:31 | 000,000,952 | -HS- | C] () -- C:\ProgramData\KGyGaAvL.sys [2010.12.08 23:07:03 | 000,002,019 | ---- | C] () -- C:\Users\Public\Desktop\Adobe Reader X.lnk [2010.12.08 00:26:47 | 000,010,235 | ---- | C] () -- C:\Users\Anna\Documents\Dokument7122.rtf [2010.12.07 21:11:32 | 000,000,036 | ---- | C] () -- C:\Users\Anna\AppData\Local\housecall.guid.cache [2010.12.07 20:33:20 | 000,001,561 | ---- | C] () -- C:\Users\Anna\Documents\Dokumentmbm712.rtf [2010.12.07 20:05:28 | 000,009,420 | ---- | C] () -- C:\Users\Anna\Documents\Dokument.avira 712.rtf [2010.12.07 08:22:42 | 000,001,561 | ---- | C] () -- C:\Users\Anna\Documents\mbm log.rtf [2010.12.06 23:46:37 | 000,010,157 | ---- | C] () -- C:\Users\Anna\Documents\Dokument.rtf [2010.12.06 23:33:44 | 000,010,157 | ---- | C] () -- C:\Users\Anna\Documents\Dokument.avira.rtf [2010.12.06 21:10:37 | 000,002,066 | ---- | C] () -- C:\Users\Public\Desktop\Avira AntiVir Control Center.lnk [2010.12.06 09:40:48 | 000,000,402 | ---- | C] () -- C:\Users\Anna\Documents\cc_20101206_094044.reg [2010.12.05 23:14:16 | 000,000,998 | ---- | C] () -- C:\Users\Public\Desktop\IrfanView.lnk [2010.12.05 20:18:23 | 000,001,066 | ---- | C] () -- C:\Users\Public\Desktop\VLC media player.lnk [2010.12.05 19:50:21 | 000,015,264 | ---- | C] () -- C:\Users\Anna\Documents\cc_20101205_195019.reg [2010.12.05 19:49:27 | 000,050,632 | ---- | C] () -- C:\Users\Anna\Documents\cc_20101205_194925.reg [2010.12.05 19:43:56 | 000,000,822 | ---- | C] () -- C:\Users\Public\Desktop\CCleaner.lnk [2010.12.05 18:02:35 | 000,001,109 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk [2010.12.05 15:10:38 | 000,000,000 | RH-- | C] () -- C:\Windows\SysWow64\drivers\104D_Sony_VPCEC2S1E.mrk [2010.12.05 15:10:38 | 000,000,000 | RH-- | C] () -- C:\Windows\SysNative\drivers\104D_Sony_VPCEC2S1E.mrk [2010.12.05 14:48:50 | 3106,455,552 | -HS- | C] () -- C:\hiberfil.sys [2010.12.05 14:44:51 | 000,196,608 | ---- | C] () -- C:\Windows\ocsetup_install_OEMHelpCustomization.etl [2010.12.05 14:36:22 | 000,000,221 | ---- | C] () -- C:\ProgramData\MusicStation.xml [2010.12.05 14:36:19 | 000,000,228 | ---- | C] () -- C:\Windows\SysWow64\MsiExec.config [2010.12.05 14:29:24 | 000,002,119 | ---- | C] () -- C:\Windows\SysWow64\McOEMAppRules.dat [2010.12.05 14:26:15 | 000,000,040 | -H-- | C] () -- C:\Windows\SysNative\ivireg.ivr [2010.12.05 14:23:29 | 000,000,000 | -H-- | C] () -- C:\Windows\SysNative\drivers\Msft_Kernel_Apfiltr_01007.Wdf [2010.12.05 14:15:09 | 000,643,866 | ---- | C] () -- C:\Windows\SysNative\perfh007.dat [2010.12.05 14:15:09 | 000,295,922 | ---- | C] () -- C:\Windows\SysNative\perfi007.dat [2010.12.05 14:15:09 | 000,126,394 | ---- | C] () -- C:\Windows\SysNative\perfc007.dat [2010.12.05 14:15:09 | 000,038,104 | ---- | C] () -- C:\Windows\SysNative\perfd007.dat [2010.05.19 22:45:17 | 000,208,896 | ---- | C] () -- C:\Windows\SysWow64\iglhsip32.dll [2010.05.19 22:45:17 | 000,143,360 | ---- | C] () -- C:\Windows\SysWow64\iglhcp32.dll [2009.07.14 00:42:10 | 000,064,000 | ---- | C] () -- C:\Windows\SysWow64\BWContextHandler.dll [2009.07.13 22:03:59 | 000,364,544 | ---- | C] () -- C:\Windows\SysWow64\msjetoledb40.dll < End of report > |
09.12.2010, 10:34 | #6 |
/// Selecta Jahrusso | jucheck.exe,jusched.exe,Kaspersky Fehlermeldung nach Neuinstallation Toolbars kann man abhacken bei der Installierung. Nicht immer nur klick klick klick fertig installieren. Lesen was getan wurde. Du hast mir die OTL.txt geschickt. Ich brauche die Extras.txt Muss sich genau hier befinden C:\Users\Anna\Downloads\ Extras.txt
__________________ --> jucheck.exe,jusched.exe,Kaspersky Fehlermeldung nach Neuinstallation |
09.12.2010, 19:32 | #7 |
| jucheck.exe,jusched.exe,Kaspersky Fehlermeldung nach Neuinstallation Hallo! Ja,ich war wohl zu schnell beim klicken... Entschuldige für den falschen Text,hier der hoffentlich richtige:OTL EXTRAS Logfile: Code:
ATTFilter OTL Extras logfile created on: 09.12.2010 08:47:20 - Run 8 OTL by OldTimer - Version 3.2.17.3 Folder = C:\Users\Anna\Downloads 64bit- Home Premium Edition (Version = 6.1.7600) - Type = NTWorkstation Internet Explorer (Version = 8.0.7600.16385) Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy 4,00 Gb Total Physical Memory | 3,00 Gb Available Physical Memory | 69,00% Memory free 8,00 Gb Paging File | 6,00 Gb Available in Paging File | 80,00% Paging File free Paging file location(s): ?:\pagefile.sys [binary data] %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86) Drive C: | 286,96 Gb Total Space | 253,72 Gb Free Space | 88,42% Space Free | Partition Type: NTFS Drive D: | 298,09 Gb Total Space | 227,39 Gb Free Space | 76,28% Space Free | Partition Type: NTFS Computer Name: xxx | User Name: Anna | Logged in as Administrator. Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days ========== Extra Registry (SafeList) ========== ========== File Associations ========== 64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>] .url[@ = InternetShortcut] -- C:\Windows\System32\ieframe.DLL (Microsoft Corporation) [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>] .cpl [@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation) .url [@ = InternetShortcut] -- C:\Windows\System32\ieframe.DLL (Microsoft Corporation) [HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>] .html [@ = FirefoxHTML] -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation) ========== Shell Spawning ========== 64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command] batfile [open] -- "%1" %* File not found cmdfile [open] -- "%1" %* File not found comfile [open] -- "%1" %* File not found exefile [open] -- "%1" %* File not found helpfile [open] -- Reg Error: Key error. htmlfile [edit] -- Reg Error: Key error. htmlfile [print] -- rundll32.exe %windir%\system32\mshtml.dll,PrintHTML "%1" File not found inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation) InternetShortcut [open] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l (Microsoft Corporation) InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation) piffile [open] -- "%1" %* File not found regfile [merge] -- Reg Error: Key error. scrfile [config] -- "%1" File not found scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation) scrfile [open] -- "%1" /S File not found txtfile [edit] -- Reg Error: Key error. Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1 File not found Directory [AddToPlaylistVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" () Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation) Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Directory [PlayWithVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" () Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Folder [explore] -- Reg Error: Value error. Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command] batfile [open] -- "%1" %* cmdfile [open] -- "%1" %* comfile [open] -- "%1" %* cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation) exefile [open] -- "%1" %* helpfile [open] -- Reg Error: Key error. htmlfile [edit] -- Reg Error: Key error. htmlfile [print] -- rundll32.exe %windir%\system32\mshtml.dll,PrintHTML "%1" inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation) InternetShortcut [open] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l (Microsoft Corporation) InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation) piffile [open] -- "%1" %* regfile [merge] -- Reg Error: Key error. scrfile [config] -- "%1" scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation) scrfile [open] -- "%1" /S txtfile [edit] -- Reg Error: Key error. Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1 Directory [AddToPlaylistVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" () Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation) Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Directory [PlayWithVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" () Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Folder [explore] -- Reg Error: Value error. Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) ========== Security Center Settings ========== 64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center] "cval" = 1 64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring] 64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc] "VistaSp1" = 28 4D B2 76 41 04 CA 01 [binary data] "AntiVirusOverride" = 0 "AntiSpywareOverride" = 0 "FirewallOverride" = 0 64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc] ========== Firewall Settings ========== [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile] "DisableNotifications" = 0 "EnableFirewall" = 1 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile] "DisableNotifications" = 0 "EnableFirewall" = 1 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile] "DisableNotifications" = 0 "EnableFirewall" = 1 ========== Authorized Applications List ========== ========== HKEY_LOCAL_MACHINE Uninstall List ========== 64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "{071c9b48-7c32-4621-a0ac-3f809523288f}" = Microsoft Visual C++ 2005 Redistributable (x64) "{26A24AE4-039D-4CA4-87B4-2F86416016FF}" = Java(TM) 6 Update 16 (64-bit) "{8D1163BE-5ECD-0303-87F7-35ED38BBB2E1}" = ATI Catalyst Install Manager "{95120000-00B9-0409-1000-0000000FF1CE}" = Microsoft Application Error Reporting "{9E9D49A4-1DF4-4138-B7DB-5D87A893088E}" = WIDCOMM Bluetooth Software "{9F72EF8B-AEC9-4CA5-B483-143980AFD6FD}" = Alps Pointing-device for VAIO "{B6E3757B-5E77-3915-866A-CCFC4B8D194C}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053 "{BF456ADA-407C-BFA2-52DA-08ECE9E18549}" = ccc-utility64 "{F0A36649-873E-4832-A5F1-BF5DF8600BDB}" = Windows Live Family Safety "{F83779DF-E1F5-43A2-A7BE-732F856FADB7}" = Microsoft SQL Server Compact 3.5 SP1 x64 English "3BA80AB4C7E9F8497C115C844953A3D4BEB84D21" = Windows Driver Package - Broadcom HIDClass (07/28/2009 6.2.0.9800) "930E4792BDAEAFB62A9514EE7578775658A5D07C" = Windows Driver Package - Broadcom Bluetooth (09/09/2009 6.2.0.9405) "CCleaner" = CCleaner [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "{08096C0A-B9B2-7F42-3760-BD9A1CBA9A6E}" = Catalyst Control Center Graphics Full Existing "{0899D75A-C2FC-42EA-A702-5B9A5F24EAD5}" = VAIO Smart Network "{08E81ABD-79F7-49C2-881F-FD6CB0975693}" = Roxio Central Data "{10014C6B-F482-991B-8865-32BFEA347CE1}" = CCC Help Hungarian "{12D0BE8D-538C-4AB1-86DE-C540308F50DA}" = VAIO Content Metadata Manager Settings "{1404E04F-C98C-5195-251E-9CED867E37D7}" = CCC Help French "{1873FFC1-FDCB-47E1-B7C7-F418211E3530}" = PMB VAIO Edition plug-in (VAIO Image Optimizer) "{1AA0193C-398B-D400-A156-C060CFDDF132}" = Catalyst Control Center Core Implementation "{1E450972-E996-4EC1-A4C3-1518A46928D0}" = VAIO Content Metadata Intelligent Network Service Manager "{1F54DAFA-9261-4A62-B59D-6C9F26B48FE4}" = Roxio Central Tools "{1FD416D0-CC16-41D1-A25C-C9986CD8BBAB}" = VAIO Content Metadata Intelligent Analyzing Manager "{205C6BDD-7B73-42DE-8505-9A093F35A238}" = Windows Live-Uploadtool "{208345BE-27BB-4367-B245-A5B6E764FDD0}" = VAIO Content Metadata Intelligent Analyzing Manager "{2110ECBD-BF15-4673-8852-8C68DDEB26AC}" = Media Gallery "{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}" = MSVCRT "{233C14B1-D05F-96A7-1509-C87417F899F8}" = CCC Help Turkish "{23825B69-36DF-4DAD-9CFD-118D11D80F16}" = Einstellungen für VAIO-Inhaltsüberwachung "{2637552C-A1EE-D6C9-3D9E-716BCB76081D}" = ccc-core-static "{26A24AE4-039D-4CA4-87B4-2F83216016FF}" = Java(TM) 6 Update 22 "{291FB4BF-EEC7-4CF9-8469-F39ED1DBC4D8}" = VAIO Content Metadata XML Interface Library "{2BA722D1-48D1-406E-9123-8AE5431D63EF}" = Windows Live Fotogalerie "{34DC654E-6E43-4BFA-9E00-6C16CFA7B9F0}" = VAIO Data Restore Tool "{36C5BBF0-E5BF-4DE1-B684-7E90B0C93FB5}" = VAIO Care "{37531547-B1F4-45E6-98FC-8AF5F2F0EAA4}" = VAIO Content Metadata Manager Settings "{3B4E636E-9D65-4D67-BA61-189800823F52}" = Windows Live Communications Platform "{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}" = Intel(R) Rapid Storage Technology "{41E654A9-26D0-4EAC-854B-0FA824FFFABB}" = Windows Live Messenger "{4427F384-B5BE-4769-B7D0-C784FC321EB1}" = VAIO Content Metadata Intelligent Network Service Manager "{4882EBF5-CA37-4EF4-BCB8-9B0E78B907D0}" = VAIO Content Metadata Intelligent Analyzing Manager "{49939C5A-7835-120D-1195-7374E1AE1CAB}" = CCC Help Spanish "{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater "{4DCEA9C1-4D6E-41BF-A854-28CFA8B56DBF}" = PMB VAIO Edition plug-in (Click to Disc) "{52B97218-98CB-4B8B-9283-D213C85E1AA4}" = Windows Live Anmelde-Assistent "{537BF16E-7412-448C-95D8-846E85A1D817}" = Roxio Easy Media Creator 10 LJ "{5449FB4F-1802-4D5B-A6D8-087DB1142147}" = Realtek HDMI Audio Driver for ATI "{554E34DB-1EDD-4CE4-B63D-9E9973C6FFA5}" = VAIO Care "{57B955CE-B5D3-495D-AF1B-FAEE0540BFEF}" = VAIO Data Restore Tool "{5810367F-CB89-1257-0283-EC37270741E7}" = CCC Help Russian "{596BED91-A1D8-4DF1-8CD1-1C777F7588AC}" = VAIO DVD Menu Data "{5A4C0B1D-2379-AAE0-4907-56E83D6D8A8C}" = CCC Help Italian "{5BEE8F1F-BD32-4553-8107-500439E43BD7}" = VAIO Update "{5C1F18D2-F6B7-4242-B803-B5A78648185D}" = Corel WinDVD "{5DDAFB4B-C52E-468A-9E23-3B0CEEB671BF}" = VAIO-Support für Übertragungen "{5FC68772-6D56-41C6-9DF1-24E868198AE6}" = Windows Live Call "{650CF18F-629C-3CF1-307D-5C93321B41CD}" = Catalyst Control Center Graphics Full New "{65153EA5-8B6E-43B6-857B-C6E4FC25798A}" = Intel(R) Management Engine Components "{69131367-6458-6271-8277-25E408572433}" = CCC Help German "{6B1F20F2-6321-4669-A58C-33DF8E7517FF}" = VAIO Entertainment Platform "{6D8ED20E-E792-4DAC-BB66-009836CBD80B}" = VAIO Content Monitoring Settings "{6FA8BA2C-052B-4072-B8E2-2302C268BE9E}" = VAIO Movie Story Template Data "{70991E0A-1108-437E-BA7D-085702C670C0}" = "{72042FA6-5609-489F-A8EA-3C2DD650F667}" = VAIO Control Center "{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable "{72A6B2E5-3286-4D77-8AAC-A4BE2A8FCB90}" = CCC Help Finnish "{7392AA60-133D-4761-94DB-8FBC9B6CD5EA}" = VAIO Content Metadata Intelligent Network Service Manager "{73A4F29F-31AC-4EBD-AA1B-0CC5F18C8F83}" = Roxio Central Audio "{76618402-179D-4699-A66B-D351C59436BC}" = Windows Live Sync "{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 "{7BB90344-0647-468E-925A-7F69F7983421}" = ArcSoft Magic-i Visual Effects 2 "{803E4FA5-A940-4420-B89D-A8BC2E160247}" = VAIO Energie Verwaltung "{87A29380-9FFF-6D32-BBF1-61569DFD5BEA}" = CCC Help Portuguese "{88C252C8-A7EE-4B60-BF74-8E5919A8048F}" = PMB VAIO Edition Guide "{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight "{8D047BB8-0D97-4163-27CE-351BDF225D00}" = Catalyst Control Center Localization All "{8DE50158-80AA-4FF2-9E9F-0A7C46F71FCD}" = VAIO Media plus "{8F862B8C-D3F7-74F5-6C08-F0F70F744FF7}" = CCC Help Japanese "{9238E8A4-BEBA-43A3-B926-769BDBF194C5}" = VAIO Media plus Opening Movie "{931FE23C-BB40-4C7A-A594-DB35908D8E83}" = VAIO Quick Web Access "{935B5086-C002-0FBC-0723-5741D2478EE7}" = Catalyst Control Center InstallProxy "{95140000-0070-0000-0000-0000000FF1CE}" = Microsoft Office 2010 "{96D0B6C6-5A72-4B47-8583-A87E55F5FE81}" = "{96D8E26D-70CB-44DE-AE50-43095A39E5B2}" = VAIO Entertainment Platform "{9B163B82-3B46-4CE5-BF01-A53E550A8E58}" = Sony Home Network Library "{9DA53D22-D922-494C-B1D7-51CD9BCB9E4A}" = VAIO Hardware Diagnostics "{9EAC0E21-510E-4259-A9C6-F5D5B8969036}" = Catalyst Control Center - Branding "{A0F4F993-C4A7-F093-CF8D-5F03B39252F2}" = CCC Help Thai "{A3563827-B0DB-44DC-B037-15CC4E5E692F}" = VAIO Content Metadata XML Interface Library "{A477F82B-F291-5BB0-74FF-6654A27B311A}" = CCC Help Dutch "{A4EFAC49-5605-E9FA-5C1B-75D8AACF6139}" = Catalyst Control Center Graphics Light "{A63E7492-A0BC-4BB9-89A7-352965222380}" = VAIO Original Funktion Einstellungen "{A7C30414-2382-4086-B0D6-01A88ABA21C3}" = VAIO Gate "{A7DA438C-2E43-4C20-BFDA-C1F4A6208558}" = Setting Utility Series "{A95187EF-BCF4-4468-B501-C0BAB976ADD1}" = VAIO Personalization Manager "{AA668097-C081-B41E-DEDA-83BB12B7E85F}" = CCC Help Korean "{AB259D46-F851-41B0-9AFA-AED8998AD68A}" = MusicStation "{AC050677-EAFC-4B57-8F83-8205F65134D2}" = VAIO Content Metadata XML Interface Library "{AC76BA86-7AD7-1031-7B44-AA0000000001}" = Adobe Reader X - Deutsch "{B1DADBEB-7F82-4B29-84D6-5F14A020F0A0}" = VAIO Content Metadata Intelligent Analyzing Manager "{B25563A0-41F4-4A81-A6C1-6DBC0911B1F3}" = PMB VAIO Edition plug-in (VAIO Movie Story) "{B2F0AAB1-8C1C-1EFE-6594-417BBB023D6B}" = CCC Help Czech "{B6A26DE5-F2B5-4D58-9570-4FC760E00FCD}" = Roxio Central Copy "{B6A98E5F-D6A7-46FB-9E9D-1F7BF443491C}" = PMB "{B7546697-2A80-4256-A24B-1C33163F535B}" = VAIO Gate Default "{BCA907B6-5A0F-473E-8C63-0FF0CFAEB7B7}" = VAIO Personalization Manager "{C0618520-5C63-1583-B78A-CEE1139EF1E6}" = CCC Help Polish "{C4D738F7-996A-4C81-B8FA-C4E26D767E41}" = Windows Live Mail "{C7477742-DDB4-43E5-AC8D-0259E1E661B1}" = VAIO Event Service "{C84E8865-5E2B-5A46-99F2-B8A35917B8BF}" = Catalyst Control Center Graphics Previews Common "{D03D02D8-AB64-4785-A48E-5AA8B0FB8C14}" = Sony Home Network Library "{D36B6249-71E7-9E85-A9D6-E2239783301E}" = CCC Help Norwegian "{D5DC1775-F67A-6399-BE1D-960FC2254F91}" = CCC Help Chinese Standard "{D604D3C7-337D-FE67-09DE-A641D3B4D886}" = CCC Help Danish "{D60F97EC-EF06-4E1E-B0D1-C2CBABA62FA3}" = VAIO Wallpaper Contents "{D6C630BF-8DBB-4042-8562-DC9A52CB6E7E}" = Intel(R) Turbo Boost Technology Driver "{DD23714B-A2C6-A6D2-9309-75AFAFF1F8E6}" = CCC Help English "{DD88F979-FA58-41AC-980C-A6E1A82B61D9}" = Media Gallery "{DE8AAC73-6D8D-483E-96EA-CAEDDADB9079}" = ArcSoft WebCam Companion 3 "{E0A4805D-280A-4DD7-9E74-3A5F85E302A1}" = Windows Live Writer "{E2DFE069-083E-4631-9B6C-43C48E991DE5}" = Junk Mail filter update "{E3DC1111-5D32-40F9-BB81-64E31294C1A4}" = VAIO Personalization Manager "{E59113EB-0285-4BFD-A37A-B79EAC6B8F4B}" = Microsoft SQL Server Compact 3.5 SP1 English "{E7D5D189-E71D-EA01-419F-699F57B1ED65}" = Catalyst Control Center Graphics Previews Vista "{ED439A64-F018-4DD4-8BA5-328D85AB09AB}" = Roxio Central Core "{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}" = Microsoft SQL Server 2005 Compact Edition [ENU] "{F0E12BBA-AD66-4022-A453-A1C8A0C4D570}" = Microsoft Choice Guard "{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver "{F1432614-6183-49E6-98E8-674485463CFE}" = VAIO Original Function Settings "{F2894826-BF35-CE79-5EA6-7BAD1DF6F8BF}" = CCC Help Greek "{F392063E-8736-7812-47E7-7598F0B56D9D}" = CCC Help Swedish "{F761359C-9CED-45AE-9A51-9D6605CD55C4}" = Evernote "{F8A9085D-4C7A-41a9-8A77-C8998A96C421}" = Intel(R) Control Center "{F8FF18EE-264A-43FD-B2F6-5EAD40798C2F}" = Windows Live Essentials "{FB77DB0C-6951-47B6-9D80-A0FDBEE0334C}" = "{FE51662F-D8F6-43B5-99D9-D4894AF00F83}" = Roxio Easy Media Creator Home "{FF4EB4E5-55BB-D9AF-B5A2-3D6F359E7472}" = CCC Help Chinese Traditional "Avira AntiVir Desktop" = Avira AntiVir Personal - Free Antivirus "InstallShield_{1873FFC1-FDCB-47E1-B7C7-F418211E3530}" = PMB VAIO Edition plug-in (VAIO Image Optimizer) "InstallShield_{4DCEA9C1-4D6E-41BF-A854-28CFA8B56DBF}" = PMB VAIO Edition plug-in (Click to Disc) "InstallShield_{6FA8BA2C-052B-4072-B8E2-2302C268BE9E}" = VAIO Movie Story Template Data "InstallShield_{88C252C8-A7EE-4B60-BF74-8E5919A8048F}" = PMB VAIO Edition Guide "InstallShield_{B25563A0-41F4-4A81-A6C1-6DBC0911B1F3}" = PMB VAIO Edition plug-in (VAIO Movie Story) "IrfanView" = IrfanView (remove only) "Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware "MarketingTools" = VAIO Marketing Tools "Mozilla Firefox (3.6.12)" = Mozilla Firefox (3.6.12) "splashtop" = VAIO Quick Web Access "VAIO Help and Support" = "VAIO Premium Partners" = VAIO Premium Partners "VAIO screensaver" = VAIO screensaver "VLC media player" = VLC media player 1.1.5 "WinLiveSuite_Wave3" = Windows Live Essentials ========== Last 10 Event Log Errors ========== [ Application Events ] Error - 08.12.2010 02:57:56 | Computer Name = xxx | Source = VzCdbSvc | ID = 7 Description = Das Plug-In-Modul konnte nicht geladen werden. (GUID = {56F9312C-C989-4E04-8C23-299DEE3A36F5}) (Fehlercode = 0x80042019) Error - 08.12.2010 14:31:44 | Computer Name =xxx | Source = VzCdbSvc | ID = 7 Description = Das Plug-In-Modul konnte nicht geladen werden. (GUID = {48512A59-C8A5-4805-9048-23C9E4194BFA}) (Fehlercode = 0x80042000) Error - 08.12.2010 14:31:44 | Computer Name = xxx | Source = VzCdbSvc | ID = 7 Description = Das Plug-In-Modul konnte nicht geladen werden. (GUID = {56F9312C-C989-4E04-8C23-299DEE3A36F5}) (Fehlercode = 0x80042019) Error - 08.12.2010 15:14:50 | Computer Name = xxx | Source = Customer Experience Improvement Program | ID = 1008 Description = Error - 08.12.2010 18:09:25 | Computer Name = xxx | Source = SideBySide | ID = 16842832 Description = Fehler beim Generieren des Aktivierungskontexts für "C:\Users\Anna\Downloads\SoftonicDownloader_fuer_foxit-pdf-reader.exe". Fehler in Manifest- oder Richtliniendatei "" in Zeile . Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion. In Konflikt stehende Komponenten:. Komponente 1: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd.manifest. Komponente 2: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest. Error - 08.12.2010 18:17:40 | Computer Name = xxx | Source = SideBySide | ID = 16842832 Description = Fehler beim Generieren des Aktivierungskontexts für "C:\Users\Anna\Downloads\SoftonicDownloader_fuer_foxit-pdf-reader.exe". Fehler in Manifest- oder Richtliniendatei "" in Zeile . Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion. In Konflikt stehende Komponenten:. Komponente 1: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd.manifest. Komponente 2: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest. Error - 09.12.2010 02:46:09 | Computer Name = xxx | Source = VzCdbSvc | ID = 7 Description = Das Plug-In-Modul konnte nicht geladen werden. (GUID = {48512A59-C8A5-4805-9048-23C9E4194BFA}) (Fehlercode = 0x80042000) Error - 09.12.2010 02:46:09 | Computer Name = xxx | Source = VzCdbSvc | ID = 7 Description = Das Plug-In-Modul konnte nicht geladen werden. (GUID = {56F9312C-C989-4E04-8C23-299DEE3A36F5}) (Fehlercode = 0x80042019) Error - 09.12.2010 03:17:37 | Computer Name = xxx | Source = VzCdbSvc | ID = 7 Description = Das Plug-In-Modul konnte nicht geladen werden. (GUID = {48512A59-C8A5-4805-9048-23C9E4194BFA}) (Fehlercode = 0x80042000) Error - 09.12.2010 03:17:37 | Computer Name = xxx | Source = VzCdbSvc | ID = 7 Description = Das Plug-In-Modul konnte nicht geladen werden. (GUID = {56F9312C-C989-4E04-8C23-299DEE3A36F5}) (Fehlercode = 0x80042019) [ System Events ] Error - 05.12.2010 09:55:37 | Computer Name = xxx | Source = Service Control Manager | ID = 7009 Description = Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Roxio Upnp Server 10 erreicht. < End of report > |
10.12.2010, 12:34 | #8 |
/// Selecta Jahrusso | jucheck.exe,jusched.exe,Kaspersky Fehlermeldung nach Neuinstallation Hy und Entschuldigung für die Verzögerung. Viele der Software gehört zu VAIO selber. Da will ich jetzt nicht großartig umher versuchen was benötigt wird und was nicht. Diese Windows Live Dinge kannst Du getrost deinstallieren. Sonst irgendwelche Software installiert ( ausgenommen VAIO .. ) welche Du nicht kennst ?
__________________ mfg, Daniel ASAP & UNITE Member Alliance of Security Analysis Professionals Unified Network of Instructors and Trusted Eliminators Lerne, zurück zu schlagen und unterstütze uns! TB Akademie |
10.12.2010, 21:34 | #9 |
| jucheck.exe,jusched.exe,Kaspersky Fehlermeldung nach Neuinstallation Hallo Larusso! Ich habe hier gar nichts als Verzögerung empfunden Und ich hab ja noch eine falsche Datei hochgeladen ........... Zu deiner Frage: Nein,mich irritierten vor allem die vielen Vaio-Programme,aber ich habe den PC ja noch nicht lange und werde mit der Zeit schon noch rausfinden was ich brauche und was nicht.Hätte ja sein können,daß dir "auf die Schnelle" was auffällt.Der Rest der Programme ist mir mehr oder minder vertraut,sieht ähnlich aus wie auf meinem alten PC.................. Da du nichts weiter dazu gesagt hast,nehme ich an,daß dieses "versteckte Objekt" welches Avira gefunden hat,kein Problem ist? Wenn das so ist und jetzt sozusagen alles okay ist ( ich hoffe!)und wir dann hier am Ende sind,danke ich dir ganz doll herzlich für für deine Arbeit und Mühe! Danke! Freue mich,endlich meine Daten auf den neuen PCzu überspielen,und ihn einrichten zu können *hofft* Lieben Gruß Alana Geändert von Alana (10.12.2010 um 22:01 Uhr) |
10.12.2010, 22:12 | #10 |
/// Selecta Jahrusso | jucheck.exe,jusched.exe,Kaspersky Fehlermeldung nach Neuinstallation Da die Datei zu Avira gehört mach ich mir da eher weniger sorgen Vorallem 64 bit Systeme sind eher schwer zu infizieren ( was nicht bedeuted das es heutzutage nicht möglich ist ). Froh das wir helfen konten Dieses Thema scheint erledigt und wird aus meinen Abos gelöscht. Solltest Du das Thema erneut brauchen schicke mir bitte eine PM. Jeder andere bitte hier klicken einen eigenen Thread erstellen
__________________ mfg, Daniel ASAP & UNITE Member Alliance of Security Analysis Professionals Unified Network of Instructors and Trusted Eliminators Lerne, zurück zu schlagen und unterstütze uns! TB Akademie |
Themen zu jucheck.exe,jusched.exe,Kaspersky Fehlermeldung nach Neuinstallation |
autorun, bho, browser, computer, computern, error, fehlalarm, fehlermeldung, festplatte, firefox, format, google, home, home premium, iastor.sys, internet, internet security 2011, jusched.exe, kaspersky, laufwerk c, location, media center, mozilla, oldtimer, plug-in, problem, programdata, programm, realtek, registry, scan, searchplugins, security, server, software, super, syswow64, tastatur, webcheck, windows |