| |
| |||||||
Log-Analyse und Auswertung: Explorer. exe bringt Cpu Last fast immer auf 100%Windows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML. |
 |
14.12.2011, 13:16
| #1 |
| |  Explorer. exe bringt Cpu Last fast immer auf 100% Hallo Zusammen, ich bin wirklich verzweifelt und hoffe ihr könnt mir helfen. Mei CPU ist sehr oft auf Vollast, also 100%. Zuerst ist er im Leerklauf normal udn plötzlich steig die last auf 100% an. Wenn ich dann im Taskmanager schaue ist es der Explorer.exe der soviel Ressourcen benötigt. Wenn ich den Explorer beende ist die Last sofort wieder auf Minimum. Habe meinen Rechner bereits neu aufgesetzt und alles mögliche versucht. Swohl mit AVP als auch ohne. Alle Treiber sind aktuell und ich habe auch schon mehrere Kaspersky Scans durchlaufen lassen, gefunden wurde nichts. Ich habe auch viel im Inet nach einer möglichen Lösung gesucht. So habe ich auch den Searchindexer.exe deaktiviert, weil der ja auch viel Ressourcen benötigt. Leider bin ich aber kein Fachmann, deswegen die bitte um Hilfe mal an die Profis hier :-D. Software ist Win 7 64bit. Meine Hardware ist: AMD Athlon x2 Dual Core Prozessor 6000+ 4 Gb Ram Nvidia Geforce GTX 560 Ich habe mal ein Log File erstellt: HiJackthis Logfile: Code:
ATTFilter Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 13:14:03, on 14.12.2011 Platform: Windows 7 SP1 (WinNT 6.00.3505) MSIE: Internet Explorer v8.00 (8.00.7601.17514) Boot mode: Normal Running processes: C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2012\avp.exe C:\Program Files (x86)\Mozilla Firefox\firefox.exe C:\Program Files (x86)\Mozilla Thunderbird\thunderbird.exe C:\Users\schwein\Downloads\HiJackThis204.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://go.microsoft.com/fwlink/?LinkId=69157 R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = F2 - REG:system.ini: UserInit=userinit.exe O4 - HKLM\..\Run: [amd_dc_opt] C:\Program Files (x86)\AMD\Dual-Core Optimizer\amd_dc_opt.exe O4 - HKLM\..\Run: [AVP] "C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2012\avp.exe" O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOKALER DIENST') O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOKALER DIENST') O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETZWERKDIENST') O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETZWERKDIENST') O4 - HKUS\S-1-5-21-1854413781-1447768802-456369422-1003\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'UpdatusUser') O4 - HKUS\S-1-5-21-1854413781-1447768802-456369422-1003\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'UpdatusUser') O4 - Startup: Logitech . Produktregistrierung.lnk = C:\Program Files (x86)\Logitech\Ereg\eReg.exe O8 - Extra context menu item: Hinzufügen zu Anti-Banner - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2012\ie_banner_deny.htm O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing) O23 - Service: Kaspersky Anti-Virus Service (AVP) - Kaspersky Lab ZAO - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2012\avp.exe O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing) O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing) O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing) O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: NIHardwareService - Native Instruments GmbH - C:\Program Files\Common Files\Native Instruments\Hardware\NIHardwareService.exe O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing) O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing) O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing) O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing) O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing) O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing) O23 - Service: UMVPFSrv - Logitech Inc. - C:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing) O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing) O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing) O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing) O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing) -- End of file - 6401 bytes Bitte euch echt um Hilfe.. so langsam habe ich große Lust das Ding zu Kleinholz zu machen  .Sollte etwas fehlen gebt bitte bescheid. |
|
15.12.2011, 12:00
| #2 |
| /// Winkelfunktion /// TB-Süch-Tiger™   |  Explorer. exe bringt Cpu Last fast immer auf 100% Bitte beachten => http://www.trojaner-board.de/95173-b...es-posten.html und http://www.trojaner-board.de/69886-a...-beachten.html
__________________ |
|
15.12.2011, 19:19
| #3 |
| | Explorer. exe bringt Cpu Last fast immer auf 100% Hi Arne, ich habe es jetzt einmal versucht wie du mir geschirben hast. Ist das so in Ordnung?
__________________Hier de ODtL Datei.OTL Logfile: Code:
ATTFilter OTL logfile created on: 15.12.2011 19:02:34 - Run 1 OTL by OldTimer - Version 3.2.31.0 Folder = C:\Users\schwein\Downloads 64bit- Ultimate Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation Internet Explorer (Version = 8.0.7601.17514) Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy 4,00 Gb Total Physical Memory | 2,83 Gb Available Physical Memory | 70,65% Memory free 8,00 Gb Paging File | 6,72 Gb Available in Paging File | 84,09% Paging File free Paging file location(s): ?:\pagefile.sys [binary data] %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86) Drive C: | 465,66 Gb Total Space | 420,90 Gb Free Space | 90,39% Space Free | Partition Type: NTFS Drive I: | 931,51 Gb Total Space | 398,84 Gb Free Space | 42,82% Space Free | Partition Type: NTFS Computer Name: SCHWEIN-PC | User Name: schwein | Logged in as Administrator. Boot Mode: Normal | Scan Mode: Current user | Quick Scan | Include 64bit Scans Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days ========== Processes (SafeList) ========== PRC - [2011.12.15 18:58:28 | 000,584,192 | ---- | M] (OldTimer Tools) -- C:\Users\schwein\Downloads\OTL.exe PRC - [2011.11.21 05:30:13 | 000,924,632 | ---- | M] (Mozilla Corporation) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe PRC - [2011.10.15 09:53:00 | 002,253,120 | ---- | M] (NVIDIA Corporation) -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe PRC - [2011.10.15 00:54:40 | 000,381,248 | ---- | M] (NVIDIA Corporation) -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe PRC - [2011.08.19 09:26:50 | 000,450,848 | ---- | M] (Logitech Inc.) -- C:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe ========== Modules (No Company Name) ========== MOD - [2011.11.21 05:30:13 | 001,989,592 | ---- | M] () -- C:\Program Files (x86)\Mozilla Firefox\mozjs.dll MOD - [2011.10.15 00:54:26 | 000,265,536 | ---- | M] () -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\Nv3DVStreaming.dll ========== Win32 Services (SafeList) ========== SRV:64bit: - [2009.07.14 02:40:01 | 000,193,536 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\appmgmts.dll -- (AppMgmt) SRV - [2011.10.15 09:53:00 | 002,253,120 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe -- (nvUpdatusService) SRV - [2011.10.15 00:54:40 | 000,381,248 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe -- (Stereo Service) SRV - [2011.09.09 16:16:32 | 005,735,424 | ---- | M] (Native Instruments GmbH) [Auto | Running] -- C:\Programme\Common Files\Native Instruments\Hardware\NIHardwareService.exe -- (NIHardwareService) SRV - [2011.08.19 09:26:50 | 000,450,848 | ---- | M] (Logitech Inc.) [Auto | Running] -- C:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe -- (UMVPFSrv) SRV - [2011.04.24 23:15:02 | 000,202,296 | ---- | M] (Kaspersky Lab ZAO) [Auto | Stopped] -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2012\avp.exe -- (AVP) SRV - [2010.03.18 13:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32) SRV - [2009.06.10 22:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32) ========== Driver Services (SafeList) ========== DRV:64bit: - [2011.12.04 03:31:31 | 000,615,728 | ---- | M] (Kaspersky Lab) [File_System | System | Running] -- C:\Windows\SysNative\drivers\klif.sys -- (KLIF) DRV:64bit: - [2011.12.03 18:05:49 | 000,279,616 | ---- | M] (DT Soft Ltd) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\dtsoftbus01.sys -- (dtsoftbus01) DRV:64bit: - [2011.09.15 14:52:48 | 000,357,968 | ---- | M] (Native Instruments GmbH) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ks4avs.sys -- (ks4avs) DRV:64bit: - [2011.09.15 14:52:48 | 000,098,896 | ---- | M] (Native Instruments GmbH) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ks4usb.sys -- (ks4usb_svc) DRV:64bit: - [2011.08.19 10:27:30 | 004,869,024 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\LVUVC64.sys -- (LVUVC64) Logitech HD Webcam C510(UVC) DRV:64bit: - [2011.08.19 10:27:30 | 000,351,136 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\lvrs64.sys -- (LVRS64) DRV:64bit: - [2011.08.19 10:27:22 | 000,025,632 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\lvbflt64.sys -- (CompFilter64) DRV:64bit: - [2011.07.08 00:21:28 | 000,174,184 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\nvhda64v.sys -- (NVHDA) DRV:64bit: - [2011.06.10 06:34:52 | 000,539,240 | ---- | M] (Realtek ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Rt64win7.sys -- (RTL8167) DRV:64bit: - [2011.03.11 07:41:12 | 000,107,904 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata) DRV:64bit: - [2011.03.11 07:41:12 | 000,027,008 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata) DRV:64bit: - [2011.03.10 18:36:24 | 000,029,488 | ---- | M] (Kaspersky Lab ZAO) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\klim6.sys -- (KLIM6) DRV:64bit: - [2011.03.04 13:23:28 | 000,011,864 | ---- | M] (Kaspersky Lab ZAO) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\kl2.sys -- (kl2) DRV:64bit: - [2011.03.04 13:23:24 | 000,460,888 | ---- | M] (Kaspersky Lab ZAO) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\kl1.sys -- (KL1) DRV:64bit: - [2011.02.18 16:28:10 | 000,337,416 | ---- | M] (Avid Technology, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\MAudioDelta.sys -- (DELTAII) Service for M-Audio Delta Driver (WDM) DRV:64bit: - [2010.11.20 14:33:35 | 000,078,720 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD) DRV:64bit: - [2010.11.20 12:07:05 | 000,059,392 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbFlt.sys -- (TsUsbFlt) DRV:64bit: - [2010.11.20 12:03:42 | 000,020,992 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\rdpvideominiport.sys -- (RdpVideoMiniport) DRV:64bit: - [2010.05.07 18:43:30 | 000,030,304 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\LVPr2M64.sys -- (LVPr2Mon) DRV:64bit: - [2010.05.07 18:43:30 | 000,030,304 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\LVPr2M64.sys -- (LVPr2M64) DRV:64bit: - [2009.11.02 20:27:10 | 000,022,544 | ---- | M] (Kaspersky Lab) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\klmouflt.sys -- (klmouflt) DRV:64bit: - [2009.08.21 09:52:09 | 000,079,976 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\xusb21.sys -- (xusb21) DRV:64bit: - [2009.07.14 02:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs) DRV:64bit: - [2009.07.14 02:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2) DRV:64bit: - [2009.07.14 02:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor) DRV:64bit: - [2009.06.10 21:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv) DRV:64bit: - [2009.06.10 21:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv) DRV:64bit: - [2009.06.10 21:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a) DRV:64bit: - [2009.06.10 21:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir) DRV:64bit: - [2009.05.25 13:34:54 | 000,151,592 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\s1029unic.sys -- (s1029unic) Sony Ericsson Device 1029 USB Ethernet Emulation (WDM) DRV:64bit: - [2009.05.25 13:34:54 | 000,139,304 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\s1029mgmt.sys -- (s1029mgmt) Sony Ericsson Device 1029 USB WMC Device Management Drivers (WDM) DRV:64bit: - [2009.05.25 13:34:54 | 000,135,208 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\s1029obex.sys -- (s1029obex) DRV:64bit: - [2009.05.25 13:34:52 | 000,158,760 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\s1029mdm.sys -- (s1029mdm) DRV:64bit: - [2009.05.25 13:34:52 | 000,034,856 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\s1029nd5.sys -- (s1029nd5) Sony Ericsson Device 1029 USB Ethernet Emulation (NDIS) DRV:64bit: - [2009.05.25 13:34:50 | 000,019,496 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\s1029mdfl.sys -- (s1029mdfl) DRV:64bit: - [2009.05.25 13:34:48 | 000,116,264 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\s1029bus.sys -- (s1029bus) Sony Ericsson Device 1029 driver (WDM) DRV:64bit: - [2008.03.13 08:46:00 | 000,027,136 | ---- | M] (ManyCam LLC.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ManyCam_x64.sys -- (ManyCam) DRV - [2009.07.14 02:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\wimmount.sys -- (WIMMount) ========== Standard Registry (SafeList) ========== ========== Internet Explorer ========== IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://de.msn.com/?ocid=iehp IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = F7 89 CD 81 4C B1 CC 01 [binary data] IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 FF:64bit: - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF64_11_1_102.dll File not found FF:64bit: - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.) FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32.dll () FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\Windows\SysWOW64\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.) FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files (x86)\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.) FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files (x86)\Microsoft Silverlight\4.0.60831.0\npctrl.dll ( Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVision: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation) FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVisionStreaming: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation) FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\linkfilter@kaspersky.ru: C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2012\FFExt\linkfilter@kaspersky.ru [2011.12.04 03:52:49 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\virtualKeyboard@kaspersky.ru: C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2012\FFExt\virtualKeyboard@kaspersky.ru [2011.12.04 03:52:49 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\KavAntiBanner@Kaspersky.ru: C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2012\FFExt\KavAntiBanner@Kaspersky.ru [2011.12.04 03:52:49 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 8.0.1\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2011.12.03 01:34:24 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 8.0.1\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Thunderbird 8.0\extensions\\Components: C:\Program Files (x86)\Mozilla Thunderbird\components [2011.12.03 01:45:50 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Thunderbird 8.0\extensions\\Plugins: C:\Program Files (x86)\Mozilla Thunderbird\plugins [2011.12.03 01:49:03 | 000,000,000 | ---D | M] (No name found) -- C:\Users\schwein\AppData\Roaming\mozilla\Extensions [2011.12.14 19:51:37 | 000,000,000 | ---D | M] (No name found) -- C:\Users\schwein\AppData\Roaming\mozilla\Firefox\Profiles\mapt7m6c.vvvvv\extensions [2011.12.03 02:12:30 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\mozilla firefox\extensions [2011.12.03 02:12:31 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files (x86)\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0029-ABCDEFFEDCBA} [2011.11.21 05:30:13 | 000,134,104 | ---- | M] (Mozilla Foundation) -- C:\Program Files (x86)\mozilla firefox\components\browsercomps.dll [2011.11.21 02:17:49 | 000,001,392 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\amazondotcom-de.xml [2011.11.21 02:09:48 | 000,002,252 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\bing.xml [2011.11.21 02:17:49 | 000,001,153 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\eBay-de.xml [2011.11.21 02:17:49 | 000,006,805 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\leo_ende_de.xml [2011.11.21 02:17:49 | 000,001,178 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\wikipedia-de.xml [2011.11.21 02:17:49 | 000,001,105 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\yahoo-de.xml O1 HOSTS File: ([2009.06.10 22:00:26 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts O2:64bit: - BHO: (IEVkbdBHO Class) - {59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2012\x64\ievkbd.dll (Kaspersky Lab ZAO) O2:64bit: - BHO: (Windows Live ID Sign-in Helper) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Programme\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation) O2:64bit: - BHO: (FilterBHO Class) - {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2012\x64\klwtbbho.dll (Kaspersky Lab ZAO) O4:64bit: - HKLM..\Run: [RTHDVCPL] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Realtek Semiconductor) O4:64bit: - HKLM..\Run: [XboxStat] C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe (Microsoft Corporation) O4 - HKLM..\Run: [amd_dc_opt] C:\Program Files (x86)\AMD\Dual-Core Optimizer\amd_dc_opt.exe (AMD) O4 - HKLM..\Run: [AVP] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2012\avp.exe (Kaspersky Lab ZAO) O4 - Startup: C:\Users\schwein\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Logitech . Produktregistrierung.lnk = C:\Program Files (x86)\Logitech\Ereg\eReg.exe (Leader Technologies/Logitech) O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 0 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O9:64bit: - Extra Button: &Virtuelle Tastatur - {4248FE82-7FCB-46AC-B270-339F08212110} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2012\x64\ievkbd.dll (Kaspersky Lab ZAO) O9:64bit: - Extra Button: Li&nks untersuchen - {CCF151D8-D089-449F-A5A4-D9909053F20F} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2012\x64\klwtbbho.dll (Kaspersky Lab ZAO) O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000007 [] - C:\Programme\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL (Microsoft Corporation) O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000008 [] - C:\Programme\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL (Microsoft Corporation) O1364bit: - gopher Prefix: missing O13 - gopher Prefix: missing O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab (Java Plug-in 1.6.0_29) O16 - DPF: {CAFEEFAC-0016-0000-0029-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab (Java Plug-in 1.6.0_29) O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab (Reg Error: Key error.) O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab (Java Plug-in 1.6.0_29) O16 - DPF: {CAFEEFAC-0016-0000-0029-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab (Java Plug-in 1.6.0_29) O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab (Java Plug-in 1.6.0_29) O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.0.1 O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{318A22D9-2EC0-4BDA-A70A-5721AC81D228}: DhcpNameServer = 192.168.0.1 O18:64bit: - Protocol\Handler\skype4com - No CLSID value found O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL (Skype Technologies) O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation) O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation) O20:64bit: - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\SysNative\SystemPropertiesPerformance.exe (Microsoft Corporation) O20:64bit: - HKLM Winlogon: VMApplet - (/pagefile) - File not found O20 - HKLM Winlogon: Shell - (explorer.exe) -C:\Windows\SysWow64\explorer.exe (Microsoft Corporation) O20 - HKLM Winlogon: UserInit - (userinit.exe) -C:\Windows\SysWow64\userinit.exe (Microsoft Corporation) O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found O20:64bit: - Winlogon\Notify\klogon: DllName - (%SystemRoot%\System32\klogon.dll) - C:\Windows\SysNative\klogon.dll (Kaspersky Lab ZAO) O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found. O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found. O32 - HKLM CDRom: AutoRun - 1 O33 - MountPoints2\{07804ccb-1fde-11e1-81e2-002185c95508}\Shell - "" = AutoRun O33 - MountPoints2\{07804ccb-1fde-11e1-81e2-002185c95508}\Shell\AutoRun\command - "" = K:\Startme.exe O33 - MountPoints2\{b77943cb-1dd0-11e1-832e-002185c95508}\Shell - "" = AutoRun O33 - MountPoints2\{b77943cb-1dd0-11e1-832e-002185c95508}\Shell\AutoRun\command - "" = J:\setup\rsrc\Autorun.exe O33 - MountPoints2\{b77943cb-1dd0-11e1-832e-002185c95508}\Shell\dinstall\command - "" = J:\Directx\dxsetup.exe O34 - HKLM BootExecute: (autocheck autochk *) O35:64bit: - HKLM\..comfile [open] -- "%1" %* O35:64bit: - HKLM\..exefile [open] -- "%1" %* O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %* O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* ========== Files/Folders - Created Within 30 Days ========== [2011.12.14 21:01:17 | 000,000,000 | ---D | C] -- C:\ProgramData\CyberLink [2011.12.14 21:00:55 | 000,000,000 | ---D | C] -- C:\Users\schwein\Documents\Youcam [2011.12.14 21:00:54 | 000,000,000 | ---D | C] -- C:\Users\schwein\AppData\Roaming\CyberLink [2011.12.14 21:00:53 | 000,000,000 | ---D | C] -- C:\Users\schwein\AppData\Local\CyberLink [2011.12.14 20:53:24 | 000,000,000 | ---D | C] -- C:\ProgramData\Temp [2011.12.13 23:59:19 | 000,000,000 | ---D | C] -- C:\Users\schwein\Documents\Nitro Games [2011.12.13 23:55:23 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Paradox Interactive [2011.12.13 23:53:27 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Paradox Interactive [2011.12.13 06:25:43 | 000,000,000 | ---D | C] -- C:\Users\schwein\AppData\Local\ElevatedDiagnostics [2011.12.13 06:22:42 | 000,000,000 | ---D | C] -- C:\Users\schwein\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games [2011.12.12 21:49:15 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip [2011.12.12 21:49:14 | 000,000,000 | ---D | C] -- C:\Program Files\7-Zip [2011.12.10 17:11:54 | 000,000,000 | ---D | C] -- C:\Users\schwein\Desktop\Converted mixes [2011.12.09 02:26:01 | 000,000,000 | ---D | C] -- C:\Users\schwein\Documents\CAPCOM [2011.12.07 22:29:00 | 000,000,000 | ---D | C] -- C:\Users\schwein\AppData\Roaming\Trine2 [2011.12.07 22:22:29 | 000,000,000 | ---D | C] -- C:\Users\schwein\AppData\Local\SKIDROW [2011.12.07 22:19:12 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Frozenbyte [2011.12.07 22:17:20 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Frozenbyte [2011.12.07 00:43:49 | 000,000,000 | ---D | C] -- C:\Users\schwein\AppData\Roaming\ManyCam [2011.12.07 00:43:33 | 000,000,000 | ---D | C] -- C:\ProgramData\Ask [2011.12.04 16:40:40 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\xlive [2011.12.04 16:40:35 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Games for Windows Marketplace [2011.12.04 16:40:34 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Games for Windows - LIVE [2011.12.04 15:37:42 | 000,000,000 | ---D | C] -- C:\Users\schwein\AppData\Roaming\TeamViewer [2011.12.04 15:20:39 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner [2011.12.04 15:20:38 | 000,000,000 | ---D | C] -- C:\Program Files\CCleaner [2011.12.04 15:14:26 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\appmgmt [2011.12.04 12:50:47 | 000,000,000 | ---D | C] -- C:\Windows\Minidump [2011.12.04 12:45:44 | 000,000,000 | ---D | C] -- C:\Users\schwein\AppData\Roaming\Skype [2011.12.04 12:45:32 | 000,000,000 | R--D | C] -- C:\Program Files (x86)\Skype [2011.12.04 12:45:32 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype [2011.12.04 12:45:32 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Skype [2011.12.04 12:45:23 | 000,000,000 | ---D | C] -- C:\ProgramData\Skype [2011.12.04 11:58:11 | 000,000,000 | ---D | C] -- C:\ProgramData\NovaTech Network [2011.12.04 11:57:27 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NovaBench [2011.12.04 11:57:25 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Novawave [2011.12.04 03:38:55 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\M-Audio [2011.12.04 03:38:35 | 000,000,000 | ---D | C] -- C:\Program Files\M-Audio [2011.12.04 03:32:40 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky Internet Security 2012 [2011.12.04 03:31:43 | 000,000,000 | ---D | C] -- C:\ProgramData\Kaspersky Lab [2011.12.04 03:31:43 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Kaspersky Lab [2011.12.04 03:31:31 | 000,615,728 | ---- | C] (Kaspersky Lab) -- C:\Windows\SysNative\drivers\klif.sys [2011.12.04 01:28:21 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft CAPICOM 2.1.0.2 [2011.12.03 23:31:19 | 000,000,000 | ---D | C] -- C:\Users\schwein\Documents\Games for Windows - LIVE Demos [2011.12.03 18:53:10 | 000,000,000 | ---D | C] -- C:\Users\schwein\AppData\Roaming\NVIDIA [2011.12.03 18:52:56 | 000,000,000 | ---D | C] -- C:\Users\schwein\Documents\WB Games [2011.12.03 18:15:40 | 000,000,000 | ---D | C] -- C:\Users\schwein\AppData\Roaming\Shark007 [2011.12.03 18:15:40 | 000,000,000 | ---D | C] -- C:\ProgramData\Shark007 [2011.12.03 18:15:38 | 001,574,400 | ---- | C] (MPC-HC Team) -- C:\Windows\SysNative\VSFilter.dll [2011.12.03 18:15:38 | 000,548,864 | ---- | C] (hxxp://www.mp3dev.org/) -- C:\Windows\SysNative\lameacm.acm [2011.12.03 18:15:38 | 000,360,960 | ---- | C] (fccHandler) -- C:\Windows\SysNative\aacacm.acm [2011.12.03 18:15:38 | 000,176,640 | ---- | C] (fccHandler) -- C:\Windows\SysNative\ac3acm.acm [2011.12.03 18:15:38 | 000,147,968 | ---- | C] ( ) -- C:\Windows\SysNative\lagarith.dll [2011.12.03 18:15:38 | 000,124,909 | ---- | C] (Open Source Software community project) -- C:\Windows\SysNative\pthreadGC2.dll [2011.12.03 18:15:38 | 000,000,000 | ---D | C] -- C:\Program Files\Shark007 [2011.12.03 18:14:59 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Shark007 Codecs [2011.12.03 18:14:57 | 000,000,000 | ---D | C] -- C:\Users\schwein\AppData\Roaming\Win7codecs [2011.12.03 18:14:55 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Win7codecs [2011.12.03 18:13:55 | 000,000,000 | ---D | C] -- C:\ProgramData\Win7codecs [2011.12.03 18:08:18 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Xbox 360 Accessories [2011.12.03 18:08:05 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Xbox 360 Accessories [2011.12.03 18:06:37 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DAEMON Tools Lite [2011.12.03 18:05:49 | 000,279,616 | ---- | C] (DT Soft Ltd) -- C:\Windows\SysNative\drivers\dtsoftbus01.sys [2011.12.03 18:05:44 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\DAEMON Tools Lite [2011.12.03 18:05:26 | 000,000,000 | ---D | C] -- C:\Users\schwein\AppData\Roaming\DAEMON Tools Lite [2011.12.03 18:05:23 | 000,000,000 | ---D | C] -- C:\ProgramData\DAEMON Tools Lite [2011.12.03 17:46:02 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD [2011.12.03 17:24:23 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVDVideoSoft [2011.12.03 17:24:20 | 000,000,000 | ---D | C] -- C:\Users\schwein\AppData\Roaming\DVDVideoSoft [2011.12.03 17:24:19 | 000,000,000 | ---D | C] -- C:\Users\schwein\Documents\DVDVideoSoft [2011.12.03 17:24:19 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\DVDVideoSoft [2011.12.03 17:24:19 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\DVDVideoSoft [2011.12.03 17:16:34 | 000,000,000 | ---D | C] -- C:\Users\schwein\AppData\Local\Logitech® Webcam-Software [2011.12.03 17:04:35 | 000,000,000 | ---D | C] -- C:\Windows\pss [2011.12.03 16:54:20 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\AMD [2011.12.03 16:52:53 | 000,000,000 | ---D | C] -- C:\Users\schwein\AppData\Local\Downloaded Installations [2011.12.03 15:49:32 | 000,000,000 | ---D | C] -- C:\Users\schwein\Documents\Videomaskenprojekte [2011.12.03 15:28:28 | 000,000,000 | ---D | C] -- C:\ProgramData\LogiShrd [2011.12.03 15:24:13 | 000,000,000 | ---D | C] -- C:\Users\schwein\AppData\Roaming\Leadertech [2011.12.03 15:23:11 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\logishrd [2011.12.03 15:23:11 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\logishrd [2011.12.03 15:22:56 | 000,000,000 | ---D | C] -- C:\ProgramData\Logitech [2011.12.03 15:22:35 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\LWS [2011.12.03 15:21:53 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\logishrd [2011.12.03 15:21:48 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logitech [2011.12.03 15:21:47 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Logitech [2011.12.03 15:21:47 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\LogiShrd [2011.12.03 06:46:18 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\SPReview [2011.12.03 06:45:22 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\EventProviders [2011.12.03 06:10:03 | 000,116,224 | ---- | C] (Windows (R) Codename Longhorn DDK provider) -- C:\Windows\SysNative\fms.dll [2011.12.03 06:09:33 | 000,093,696 | ---- | C] (Windows (R) Codename Longhorn DDK provider) -- C:\Windows\SysWow64\fms.dll [2011.12.03 05:35:22 | 000,000,000 | ---D | C] -- C:\Users\schwein\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR [2011.12.03 05:35:22 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR [2011.12.03 05:35:18 | 000,000,000 | ---D | C] -- C:\Program Files\WinRAR [2011.12.03 05:33:57 | 000,000,000 | ---D | C] -- C:\Users\schwein\AppData\Roaming\WinRAR [2011.12.03 05:21:41 | 000,000,000 | ---D | C] -- C:\Users\schwein\Neuer Ordner [2011.12.03 05:20:45 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\JDownloader [2011.12.03 05:00:03 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Audacity [2011.12.03 03:20:02 | 000,000,000 | -H-D | C] -- C:\ProgramData\{DF02C15B-D0DC-409D-9C10-D19A19DF7A42} [2011.12.03 03:14:10 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Native Instruments [2011.12.03 03:12:05 | 000,000,000 | -H-D | C] -- C:\ProgramData\{01AD1010-597E-4367-9DEC-23AD9A33492A} [2011.12.03 03:08:59 | 000,000,000 | ---D | C] -- C:\Users\schwein\Documents\Native Instruments [2011.12.03 03:05:53 | 000,000,000 | ---D | C] -- C:\ProgramData\Native Instruments [2011.12.03 03:05:49 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Native Instruments [2011.12.03 03:05:24 | 000,000,000 | -H-D | C] -- C:\ProgramData\{A6DB2A6F-FF9D-453F-99D6-C1AA54BC0C14} [2011.12.03 03:05:21 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Native Instruments [2011.12.03 03:05:21 | 000,000,000 | ---D | C] -- C:\Program Files\Native Instruments [2011.12.03 03:00:28 | 000,000,000 | -H-D | C] -- C:\ProgramData\{F82DD301-AEAE-4338-838B-ED5074385AC3} [2011.12.03 03:00:23 | 000,000,000 | ---D | C] -- C:\Backup [2011.12.03 02:50:47 | 000,000,000 | ---D | C] -- C:\Windows\Sun [2011.12.03 02:26:39 | 000,000,000 | ---D | C] -- C:\Users\schwein\AppData\Roaming\Macromedia [2011.12.03 02:26:38 | 000,000,000 | ---D | C] -- C:\Users\schwein\AppData\Roaming\Adobe [2011.12.03 02:17:10 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft.NET [2011.12.03 02:14:46 | 000,444,952 | ---- | C] (Creative Labs) -- C:\Windows\SysWow64\wrap_oal.dll [2011.12.03 02:14:46 | 000,200,704 | ---- | C] (The OpenSSL Project, hxxp://www.openssl.org/) -- C:\Windows\SysWow64\ssleay32.dll [2011.12.03 02:14:45 | 001,872,666 | ---- | C] (Red Hat) -- C:\Windows\SysWow64\cygwin1.dll [2011.12.03 02:14:45 | 001,017,344 | ---- | C] (The OpenSSL Project, hxxp://www.openssl.org/) -- C:\Windows\SysWow64\libeay32.dll [2011.12.03 02:14:45 | 000,898,048 | ---- | C] (GNU <www.gnu.org>) -- C:\Windows\SysWow64\libiconv2.dll [2011.12.03 02:14:45 | 000,189,440 | ---- | C] (The OpenSSL Project, hxxp://www.openssl.org/) -- C:\Windows\SysWow64\libssl32.dll [2011.12.03 02:14:45 | 000,101,888 | ---- | C] (GNU <www.gnu.org>) -- C:\Windows\SysWow64\libintl3.dll [2011.12.03 02:14:44 | 000,317,320 | ---- | C] (AutoIt Team) -- C:\Windows\SysWow64\AutoItX3.dll [2011.12.03 02:14:19 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\Adobe [2011.12.03 02:14:02 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight [2011.12.03 02:13:42 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Silverlight [2011.12.03 02:13:20 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\Macromed [2011.12.03 02:13:18 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\Macromed [2011.12.03 02:13:00 | 000,000,000 | ---D | C] -- C:\Program Files\Java [2011.12.03 02:12:14 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Java [2011.12.03 02:09:44 | 000,000,000 | ---D | C] -- C:\AiO-Files [2011.12.03 02:01:05 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\RTCOM [2011.12.03 02:01:05 | 000,000,000 | ---D | C] -- C:\Program Files\Realtek [2011.12.03 02:00:47 | 002,604,376 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\SysNative\WavesGUILib.dll [2011.12.03 02:00:47 | 000,518,896 | ---- | C] (SRS Labs, Inc.) -- C:\Windows\SysNative\SRSTSX64.dll [2011.12.03 02:00:47 | 000,221,024 | ---- | C] (Synopsys, Inc.) -- C:\Windows\SysNative\SFNHK64.dll [2011.12.03 02:00:47 | 000,211,184 | ---- | C] (SRS Labs, Inc.) -- C:\Windows\SysNative\SRSTSH64.dll [2011.12.03 02:00:47 | 000,198,896 | ---- | C] (SRS Labs, Inc.) -- C:\Windows\SysNative\SRSHP64.dll [2011.12.03 02:00:47 | 000,155,888 | ---- | C] (SRS Labs, Inc.) -- C:\Windows\SysNative\SRSWOW64.dll [2011.12.03 02:00:47 | 000,081,248 | ---- | C] (Synopsys, Inc.) -- C:\Windows\SysNative\SFCOM64.dll [2011.12.03 02:00:47 | 000,078,688 | ---- | C] (Synopsys, Inc.) -- C:\Windows\SysNative\SFAPO64.dll [2011.12.03 02:00:47 | 000,074,064 | ---- | C] (Virage Logic Corporation / Sonic Focus) -- C:\Windows\SysWow64\SFCOM.dll [2011.12.03 02:00:46 | 003,768,152 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxAudioRealtek.dll [2011.12.03 02:00:46 | 003,308,376 | ---- | C] (Dolby Laboratories) -- C:\Windows\SysNative\R4EEP64A.dll [2011.12.03 02:00:46 | 002,132,824 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxAudioEQ.dll [2011.12.03 02:00:46 | 000,603,984 | ---- | C] (Knowles Acoustics ) -- C:\Windows\SysNative\KAAPORT64.dll [2011.12.03 02:00:46 | 000,426,328 | ---- | C] (Dolby Laboratories) -- C:\Windows\SysNative\R4EED64A.dll [2011.12.03 02:00:46 | 000,375,128 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RTEEP64A.dll [2011.12.03 02:00:46 | 000,341,336 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxAudioAPO30.dll [2011.12.03 02:00:46 | 000,334,680 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxVolumeSDAPO.dll [2011.12.03 02:00:46 | 000,318,808 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxAudioAPO20.dll [2011.12.03 02:00:46 | 000,310,104 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RP3DHT64.dll [2011.12.03 02:00:46 | 000,310,104 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RP3DAA64.dll [2011.12.03 02:00:46 | 000,204,120 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RTEED64A.dll [2011.12.03 02:00:46 | 000,136,024 | ---- | C] (Dolby Laboratories) -- C:\Windows\SysNative\R4EEL64A.dll [2011.12.03 02:00:46 | 000,118,104 | ---- | C] (Dolby Laboratories) -- C:\Windows\SysNative\R4EEA64A.dll [2011.12.03 02:00:46 | 000,101,208 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RTEEL64A.dll [2011.12.03 02:00:46 | 000,078,680 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RTEEG64A.dll [2011.12.03 02:00:46 | 000,074,072 | ---- | C] (Dolby Laboratories) -- C:\Windows\SysNative\R4EEG64A.dll [2011.12.03 02:00:45 | 002,085,440 | ---- | C] (Fortemedia Corporation) -- C:\Windows\SysNative\FMAPO64.dll [2011.12.03 02:00:45 | 001,756,264 | ---- | C] (DTS) -- C:\Windows\SysNative\DTSS2SpeakerDLL64.dll [2011.12.03 02:00:45 | 001,568,360 | ---- | C] (DTS) -- C:\Windows\SysNative\DTSS2HeadphoneDLL64.dll [2011.12.03 02:00:45 | 000,712,296 | ---- | C] (DTS) -- C:\Windows\SysNative\DTSSymmetryDLL64.dll [2011.12.03 02:00:45 | 000,693,352 | ---- | C] (DTS) -- C:\Windows\SysNative\DTSVoiceClarityDLL64.dll [2011.12.03 02:00:45 | 000,527,872 | ---- | C] (DTS) -- C:\Windows\SysNative\DTSU2PLFX64.dll [2011.12.03 02:00:45 | 000,515,584 | ---- | C] (DTS) -- C:\Windows\SysNative\DTSU2PGFX64.dll [2011.12.03 02:00:45 | 000,491,112 | ---- | C] (DTS) -- C:\Windows\SysNative\DTSNeoPCDLL64.dll [2011.12.03 02:00:45 | 000,439,808 | ---- | C] (DTS) -- C:\Windows\SysNative\DTSU2PREC64.dll [2011.12.03 02:00:45 | 000,432,744 | ---- | C] (DTS) -- C:\Windows\SysNative\DTSLimiterDLL64.dll [2011.12.03 02:00:45 | 000,428,648 | ---- | C] (DTS) -- C:\Windows\SysNative\DTSGainCompensatorDLL64.dll [2011.12.03 02:00:45 | 000,242,792 | ---- | C] (DTS) -- C:\Windows\SysNative\DTSLFXAPO64.dll [2011.12.03 02:00:45 | 000,242,792 | ---- | C] (DTS) -- C:\Windows\SysNative\DTSGFXAPO64.dll [2011.12.03 02:00:45 | 000,241,768 | ---- | C] (DTS) -- C:\Windows\SysNative\DTSGFXAPONS64.dll [2011.12.03 02:00:44 | 001,486,952 | ---- | C] (DTS) -- C:\Windows\SysNative\DTSBoostDLL64.dll [2011.12.03 02:00:44 | 000,728,680 | ---- | C] (DTS) -- C:\Windows\SysNative\DTSBassEnhancementDLL64.dll [2011.12.03 02:00:44 | 000,000,000 | -H-D | C] -- C:\Program Files (x86)\InstallShield Installation Information [2011.12.03 02:00:44 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Realtek [2011.12.03 02:00:43 | 000,000,000 | -H-D | C] -- C:\Program Files (x86)\Temp [2011.12.03 02:00:38 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\InstallShield [2011.12.03 01:47:51 | 000,000,000 | ---D | C] -- C:\Users\schwein\AppData\Roaming\Thunderbird [2011.12.03 01:47:51 | 000,000,000 | ---D | C] -- C:\Users\schwein\AppData\Local\Thunderbird [2011.12.03 01:47:06 | 000,000,000 | ---D | C] -- C:\Users\schwein\AppData\Roaming\Mozilla [2011.12.03 01:47:06 | 000,000,000 | ---D | C] -- C:\Users\schwein\AppData\Local\Mozilla [2011.12.03 01:46:48 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MozBackup [2011.12.03 01:46:48 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\MozBackup [2011.12.03 01:45:49 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Mozilla Thunderbird [2011.12.03 01:34:24 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Mozilla Firefox [2011.12.03 01:03:54 | 000,000,000 | ---D | C] -- C:\Users\schwein\AppData\Local\Microsoft Games [2011.12.03 00:52:22 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation [2011.12.03 00:51:58 | 000,000,000 | -HSD | C] -- C:\Windows\Installer [2011.12.03 00:51:22 | 000,068,928 | ---- | C] (Khronos Group) -- C:\Windows\SysNative\OpenCL.dll [2011.12.03 00:51:22 | 000,061,248 | ---- | C] (Khronos Group) -- C:\Windows\SysWow64\OpenCL.dll [2011.12.03 00:50:24 | 000,000,000 | ---D | C] -- C:\NVIDIA [2011.12.03 00:41:53 | 000,000,000 | ---D | C] -- C:\ProgramData\NVIDIA [2011.12.03 00:41:52 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\NVIDIA Corporation [2011.12.03 00:41:30 | 000,000,000 | ---D | C] -- C:\ProgramData\NVIDIA Corporation [2011.12.03 00:41:28 | 000,000,000 | ---D | C] -- C:\Program Files\NVIDIA Corporation [2011.12.03 00:39:54 | 000,000,000 | R--D | C] -- C:\Users\schwein\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup [2011.12.03 00:39:54 | 000,000,000 | R--D | C] -- C:\Users\schwein\Searches [2011.12.03 00:39:54 | 000,000,000 | R--D | C] -- C:\Users\schwein\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools [2011.12.03 00:39:44 | 000,000,000 | ---D | C] -- C:\Users\schwein\AppData\Roaming\Identities [2011.12.03 00:39:41 | 000,000,000 | R--D | C] -- C:\Users\schwein\Contacts [2011.12.03 00:39:38 | 000,000,000 | ---D | C] -- C:\Users\schwein\AppData\Local\VirtualStore [2011.12.03 00:39:27 | 000,000,000 | --SD | C] -- C:\Users\schwein\AppData\Roaming\Microsoft [2011.12.03 00:39:27 | 000,000,000 | R--D | C] -- C:\Users\schwein\Videos [2011.12.03 00:39:27 | 000,000,000 | R--D | C] -- C:\Users\schwein\Saved Games [2011.12.03 00:39:27 | 000,000,000 | R--D | C] -- C:\Users\schwein\Pictures [2011.12.03 00:39:27 | 000,000,000 | R--D | C] -- C:\Users\schwein\Music [2011.12.03 00:39:27 | 000,000,000 | R--D | C] -- C:\Users\schwein\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance [2011.12.03 00:39:27 | 000,000,000 | R--D | C] -- C:\Users\schwein\Links [2011.12.03 00:39:27 | 000,000,000 | R--D | C] -- C:\Users\schwein\Favorites [2011.12.03 00:39:27 | 000,000,000 | R--D | C] -- C:\Users\schwein\Downloads [2011.12.03 00:39:27 | 000,000,000 | R--D | C] -- C:\Users\schwein\Documents [2011.12.03 00:39:27 | 000,000,000 | R--D | C] -- C:\Users\schwein\Desktop [2011.12.03 00:39:27 | 000,000,000 | R--D | C] -- C:\Users\schwein\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories [2011.12.03 00:39:27 | 000,000,000 | -HSD | C] -- C:\Users\schwein\Vorlagen [2011.12.03 00:39:27 | 000,000,000 | -HSD | C] -- C:\Users\schwein\AppData\Local\Verlauf [2011.12.03 00:39:27 | 000,000,000 | -HSD | C] -- C:\Users\schwein\AppData\Local\Temporary Internet Files [2011.12.03 00:39:27 | 000,000,000 | -HSD | C] -- C:\Users\schwein\Startmenü [2011.12.03 00:39:27 | 000,000,000 | -HSD | C] -- C:\Users\schwein\SendTo [2011.12.03 00:39:27 | 000,000,000 | -HSD | C] -- C:\Users\schwein\Recent [2011.12.03 00:39:27 | 000,000,000 | -HSD | C] -- C:\Users\schwein\Netzwerkumgebung [2011.12.03 00:39:27 | 000,000,000 | -HSD | C] -- C:\Users\schwein\Lokale Einstellungen [2011.12.03 00:39:27 | 000,000,000 | -HSD | C] -- C:\Users\schwein\Documents\Eigene Videos [2011.12.03 00:39:27 | 000,000,000 | -HSD | C] -- C:\Users\schwein\Documents\Eigene Musik [2011.12.03 00:39:27 | 000,000,000 | -HSD | C] -- C:\Users\schwein\Eigene Dateien [2011.12.03 00:39:27 | 000,000,000 | -HSD | C] -- C:\Users\schwein\Documents\Eigene Bilder [2011.12.03 00:39:27 | 000,000,000 | -HSD | C] -- C:\Users\schwein\Druckumgebung [2011.12.03 00:39:27 | 000,000,000 | -HSD | C] -- C:\Users\schwein\Cookies [2011.12.03 00:39:27 | 000,000,000 | -HSD | C] -- C:\Users\schwein\AppData\Local\Anwendungsdaten [2011.12.03 00:39:27 | 000,000,000 | -HSD | C] -- C:\Users\schwein\Anwendungsdaten [2011.12.03 00:39:27 | 000,000,000 | -H-D | C] -- C:\Users\schwein\AppData [2011.12.03 00:39:27 | 000,000,000 | ---D | C] -- C:\Users\schwein\AppData\Local\Temp [2011.12.03 00:39:27 | 000,000,000 | ---D | C] -- C:\Users\schwein\AppData\Local\Microsoft [2011.12.03 00:39:27 | 000,000,000 | ---D | C] -- C:\Users\schwein\AppData\Roaming\Media Center Programs [2011.12.03 00:39:13 | 000,000,000 | -HSD | C] -- C:\ProgramData\Vorlagen [2011.12.03 00:39:13 | 000,000,000 | -HSD | C] -- C:\ProgramData\Startmenü [2011.12.03 00:39:13 | 000,000,000 | -HSD | C] -- C:\Recovery [2011.12.03 00:39:13 | 000,000,000 | -HSD | C] -- C:\Programme [2011.12.03 00:39:13 | 000,000,000 | -HSD | C] -- C:\Program Files\Gemeinsame Dateien [2011.12.03 00:39:13 | 000,000,000 | -HSD | C] -- C:\ProgramData\Favoriten [2011.12.03 00:39:13 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Eigene Videos [2011.12.03 00:39:13 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Eigene Musik [2011.12.03 00:39:13 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Eigene Bilder [2011.12.03 00:39:13 | 000,000,000 | -HSD | C] -- C:\Dokumente und Einstellungen [2011.12.03 00:39:13 | 000,000,000 | -HSD | C] -- C:\ProgramData\Dokumente [2011.12.03 00:39:13 | 000,000,000 | -HSD | C] -- C:\ProgramData\Anwendungsdaten [2011.12.03 00:39:09 | 000,000,000 | ---D | C] -- C:\Windows\SoftwareDistribution [2011.12.03 00:32:28 | 000,000,000 | ---D | C] -- C:\Windows\Prefetch [2011.12.03 00:32:13 | 000,000,000 | -HSD | C] -- C:\System Volume Information [2011.12.03 00:31:44 | 000,000,000 | ---D | C] -- C:\Windows\Panther [2011.11.18 12:26:10 | 000,735,744 | ---- | C] (hxxp://www.mp3dev.org/) -- C:\Windows\SysWow64\lameACM.acm [2011.09.25 16:56:26 | 000,216,064 | ---- | C] ( ) -- C:\Windows\SysWow64\lagarith.dll ========== Files - Modified Within 30 Days ========== [2011.12.15 18:58:47 | 000,014,928 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 [2011.12.15 18:58:47 | 000,014,928 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 [2011.12.15 18:56:05 | 001,612,484 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI [2011.12.15 18:56:05 | 000,696,620 | ---- | M] () -- C:\Windows\SysNative\perfh007.dat [2011.12.15 18:56:05 | 000,651,938 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat [2011.12.15 18:56:05 | 000,147,916 | ---- | M] () -- C:\Windows\SysNative\perfc007.dat [2011.12.15 18:56:05 | 000,120,870 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat [2011.12.15 18:51:32 | 000,274,464 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT [2011.12.15 18:51:28 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat [2011.12.15 18:51:06 | 3220,725,760 | -HS- | M] () -- C:\hiberfil.sys [2011.12.13 12:24:30 | 000,263,926 | ---- | M] () -- C:\Users\schwein\Documents\cc_20111213_122425.reg [2011.12.13 12:16:06 | 000,001,165 | ---- | M] () -- C:\Users\schwein\Desktop\trine2_32bit - Verknüpfung (2).lnk [2011.12.10 17:15:15 | 000,000,000 | ---- | M] () -- C:\Users\schwein\Documents\Cover499.jpg [2011.12.10 17:14:04 | 000,197,394 | ---- | M] () -- C:\Users\schwein\Desktop\fireheart.jpg [2011.12.10 02:40:38 | 529,367,084 | ---- | M] () -- C:\Users\schwein\Desktop\2011-12-10_1h50m37.wav [2011.12.09 13:56:25 | 000,000,866 | ---- | M] () -- C:\Users\Public\Desktop\CCleaner.lnk [2011.12.08 08:22:50 | 000,001,020 | ---- | M] () -- C:\Users\schwein\Desktop\MixingZubehör - Verknüpfung.lnk [2011.12.08 08:00:50 | 000,001,108 | ---- | M] () -- C:\Users\schwein\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Logitech . Produktregistrierung.lnk [2011.12.07 00:41:03 | 000,000,028 | ---- | M] () -- C:\Users\schwein\AppData\Roaming\irotate.INI [2011.12.06 08:57:51 | 000,000,214 | ---- | M] () -- C:\Users\schwein\Desktop\Sony Ericsson PC Software.url [2011.12.06 08:57:35 | 000,000,000 | -H-- | M] () -- C:\Windows\SysNative\drivers\Msft_User_WpdMtpDr_01_09_00.Wdf [2011.12.05 21:56:27 | 000,001,624 | ---- | M] () -- C:\Users\Public\Desktop\Logitech Webcam Software .lnk [2011.12.04 15:22:00 | 000,009,614 | ---- | M] () -- C:\Users\schwein\Documents\cc_20111204_152156.reg [2011.12.04 12:50:41 | 433,871,307 | ---- | M] () -- C:\Windows\MEMORY.DMP [2011.12.04 12:45:32 | 000,002,517 | ---- | M] () -- C:\Users\Public\Desktop\Skype.lnk [2011.12.04 03:52:47 | 000,152,233 | ---- | M] () -- C:\Windows\SysNative\drivers\klin.dat [2011.12.04 03:52:47 | 000,107,177 | ---- | M] () -- C:\Windows\SysNative\drivers\klick.dat [2011.12.04 03:31:31 | 000,615,728 | ---- | M] (Kaspersky Lab) -- C:\Windows\SysNative\drivers\klif.sys [2011.12.04 02:54:27 | 000,007,593 | ---- | M] () -- C:\Users\schwein\AppData\Local\Resmon.ResmonCfg [2011.12.04 01:27:28 | 001,589,442 | ---- | M] () -- C:\Windows\SysWow64\PerfStringBackup.INI [2011.12.04 00:30:48 | 000,004,608 | ---- | M] () -- C:\Users\schwein\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2011.12.03 23:06:52 | 000,000,000 | ---- | M] () -- C:\Windows\SysNative\lame_acm.xml [2011.12.03 21:09:49 | 203,399,041 | ---- | M] () -- C:\Users\schwein\Desktop\Goin wild_ by coon.mp3 [2011.12.03 21:09:45 | 000,000,000 | ---- | M] () -- C:\Users\schwein\Documents\Cover779.jpg [2011.12.03 18:09:27 | 000,000,000 | -H-- | M] () -- C:\Windows\SysNative\drivers\Msft_Kernel_xusb21_01009.Wdf [2011.12.03 18:06:45 | 000,001,950 | ---- | M] () -- C:\Users\Public\Desktop\DAEMON Tools Lite.lnk [2011.12.03 18:05:49 | 000,279,616 | ---- | M] (DT Soft Ltd) -- C:\Windows\SysNative\drivers\dtsoftbus01.sys [2011.12.03 17:24:22 | 000,001,300 | ---- | M] () -- C:\Users\schwein\Desktop\Free Audio Converter.lnk [2011.12.03 05:41:59 | 000,000,902 | ---- | M] () -- C:\Users\schwein\Desktop\Downloads - Verknüpfung.lnk [2011.12.03 05:34:19 | 000,000,626 | ---- | M] () -- C:\Users\schwein\Desktop\dddd - Verknüpfung.lnk [2011.12.03 05:08:57 | 896,974,892 | ---- | M] () -- C:\Users\schwein\Desktop\coon tribute.wav [2011.12.03 05:00:03 | 000,000,943 | ---- | M] () -- C:\Users\schwein\Desktop\Audacity.lnk [2011.12.03 03:15:23 | 000,001,002 | ---- | M] () -- C:\Users\Public\Desktop\Traktor 2.lnk [2011.12.03 03:12:03 | 000,001,094 | ---- | M] () -- C:\Users\Public\Desktop\Controller Editor.lnk [2011.12.03 03:05:22 | 000,001,059 | ---- | M] () -- C:\Users\Public\Desktop\Service Center.lnk [2011.12.03 02:41:04 | 000,000,477 | ---- | M] () -- C:\Users\schwein\Desktop\SAMSUNG (I) - Verknüpfung.lnk [2011.12.03 02:14:53 | 000,012,750 | ---- | M] () -- C:\Windows\unins002.dat [2011.12.03 02:14:41 | 001,202,763 | ---- | M] () -- C:\Windows\unins002.exe [2011.12.03 02:11:49 | 000,007,962 | ---- | M] () -- C:\Windows\unins001.dat [2011.12.03 02:11:46 | 000,709,719 | ---- | M] () -- C:\Windows\unins001.exe [2011.12.03 02:11:45 | 000,021,737 | ---- | M] () -- C:\Windows\unins000.dat [2011.12.03 02:10:51 | 001,199,175 | ---- | M] () -- C:\Windows\unins000.exe [2011.12.03 01:46:48 | 000,001,027 | ---- | M] () -- C:\Users\Public\Desktop\MozBackup.lnk [2011.12.03 01:40:53 | 000,017,408 | ---- | M] () -- C:\Users\schwein\AppData\Local\WebpageIcons.db [2011.12.03 00:35:45 | 000,053,911 | ---- | M] () -- C:\Windows\SysWow64\license.rtf [2011.12.03 00:35:45 | 000,053,911 | ---- | M] () -- C:\Windows\SysNative\license.rtf [2011.12.03 00:34:11 | 000,000,000 | -H-- | M] () -- C:\Windows\SysNative\drivers\Msft_User_WpdFs_01_09_00.Wdf [2011.11.18 12:26:10 | 000,735,744 | ---- | M] (hxxp://www.mp3dev.org/) -- C:\Windows\SysWow64\lameACM.acm ========== Files Created - No Company Name ========== [2011.12.13 12:24:28 | 000,263,926 | ---- | C] () -- C:\Users\schwein\Documents\cc_20111213_122425.reg [2011.12.13 12:16:06 | 000,001,165 | ---- | C] () -- C:\Users\schwein\Desktop\trine2_32bit - Verknüpfung (2).lnk [2011.12.10 17:15:14 | 000,000,000 | ---- | C] () -- C:\Users\schwein\Documents\Cover499.jpg [2011.12.10 17:13:58 | 000,197,394 | ---- | C] () -- C:\Users\schwein\Desktop\fireheart.jpg [2011.12.10 01:50:37 | 529,367,084 | ---- | C] () -- C:\Users\schwein\Desktop\2011-12-10_1h50m37.wav [2011.12.08 08:22:50 | 000,001,020 | ---- | C] () -- C:\Users\schwein\Desktop\MixingZubehör - Verknüpfung.lnk [2011.12.08 08:00:50 | 000,001,108 | ---- | C] () -- C:\Users\schwein\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Logitech . Produktregistrierung.lnk [2011.12.07 00:13:10 | 000,000,028 | ---- | C] () -- C:\Users\schwein\AppData\Roaming\irotate.INI [2011.12.06 08:57:51 | 000,000,214 | ---- | C] () -- C:\Users\schwein\Desktop\Sony Ericsson PC Software.url [2011.12.06 08:57:35 | 000,000,000 | -H-- | C] () -- C:\Windows\SysNative\drivers\Msft_User_WpdMtpDr_01_09_00.Wdf [2011.12.04 16:40:14 | 000,001,338 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live ID.lnk [2011.12.04 15:21:58 | 000,009,614 | ---- | C] () -- C:\Users\schwein\Documents\cc_20111204_152156.reg [2011.12.04 15:20:39 | 000,000,866 | ---- | C] () -- C:\Users\Public\Desktop\CCleaner.lnk [2011.12.04 12:50:41 | 433,871,307 | ---- | C] () -- C:\Windows\MEMORY.DMP [2011.12.04 12:45:32 | 000,002,517 | ---- | C] () -- C:\Users\Public\Desktop\Skype.lnk [2011.12.04 03:32:45 | 000,152,233 | ---- | C] () -- C:\Windows\SysNative\drivers\klin.dat [2011.12.04 03:32:45 | 000,107,177 | ---- | C] () -- C:\Windows\SysNative\drivers\klick.dat [2011.12.04 02:54:27 | 000,007,593 | ---- | C] () -- C:\Users\schwein\AppData\Local\Resmon.ResmonCfg [2011.12.04 00:30:08 | 000,004,608 | ---- | C] () -- C:\Users\schwein\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2011.12.03 23:06:52 | 000,000,000 | ---- | C] () -- C:\Windows\SysNative\lame_acm.xml [2011.12.03 21:09:45 | 000,000,000 | ---- | C] () -- C:\Users\schwein\Documents\Cover779.jpg [2011.12.03 21:05:50 | 203,399,041 | ---- | C] () -- C:\Users\schwein\Desktop\Goin wild_ by coon.mp3 [2011.12.03 18:15:38 | 004,574,208 | ---- | C] () -- C:\Windows\SysNative\x264vfw.dll [2011.12.03 18:15:38 | 000,580,096 | ---- | C] () -- C:\Windows\SysNative\ac3filter64.acm [2011.12.03 18:15:38 | 000,580,096 | ---- | C] () -- C:\Windows\SysNative\ac3filter.acm [2011.12.03 18:15:38 | 000,203,264 | ---- | C] () -- C:\Windows\SysNative\unrar.dll [2011.12.03 18:15:38 | 000,086,016 | ---- | C] () -- C:\Windows\SysNative\ff_vfw.dll [2011.12.03 18:15:38 | 000,053,760 | ---- | C] () -- C:\Windows\SysNative\ff_acm.acm [2011.12.03 18:09:27 | 000,000,000 | -H-- | C] () -- C:\Windows\SysNative\drivers\Msft_Kernel_xusb21_01009.Wdf [2011.12.03 18:06:45 | 000,001,950 | ---- | C] () -- C:\Users\Public\Desktop\DAEMON Tools Lite.lnk [2011.12.03 17:44:59 | 001,589,442 | ---- | C] () -- C:\Windows\SysWow64\PerfStringBackup.INI [2011.12.03 17:24:22 | 000,001,300 | ---- | C] () -- C:\Users\schwein\Desktop\Free Audio Converter.lnk [2011.12.03 15:21:48 | 000,001,624 | ---- | C] () -- C:\Users\Public\Desktop\Logitech Webcam Software .lnk [2011.12.03 06:11:40 | 000,095,744 | ---- | C] () -- C:\Windows\SysNative\RDVGHelper.exe [2011.12.03 06:11:18 | 000,347,904 | ---- | C] () -- C:\Windows\SysNative\systemsf.ebd [2011.12.03 06:09:05 | 000,010,429 | ---- | C] () -- C:\Windows\SysNative\ScavengeSpace.xml [2011.12.03 06:08:43 | 000,105,559 | ---- | C] () -- C:\Windows\SysWow64\RacRules.xml [2011.12.03 06:08:43 | 000,105,559 | ---- | C] () -- C:\Windows\SysNative\RacRules.xml [2011.12.03 06:08:17 | 000,146,389 | ---- | C] () -- C:\Windows\SysWow64\printmanagement.msc [2011.12.03 06:08:17 | 000,001,041 | ---- | C] () -- C:\Windows\SysWow64\tcpbidi.xml [2011.12.03 05:41:59 | 000,000,902 | ---- | C] () -- C:\Users\schwein\Desktop\Downloads - Verknüpfung.lnk [2011.12.03 05:34:19 | 000,000,626 | ---- | C] () -- C:\Users\schwein\Desktop\dddd - Verknüpfung.lnk [2011.12.03 05:21:00 | 000,001,966 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\JDownloader.lnk [2011.12.03 05:21:00 | 000,001,945 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\JDownloader Deinstallationsprogramm.lnk [2011.12.03 05:21:00 | 000,001,924 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\JDownloader Update.lnk [2011.12.03 05:07:33 | 896,974,892 | ---- | C] () -- C:\Users\schwein\Desktop\coon tribute.wav [2011.12.03 05:00:03 | 000,000,955 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Audacity.lnk [2011.12.03 05:00:03 | 000,000,943 | ---- | C] () -- C:\Users\schwein\Desktop\Audacity.lnk [2011.12.03 03:15:23 | 000,001,002 | ---- | C] () -- C:\Users\Public\Desktop\Traktor 2.lnk [2011.12.03 03:05:50 | 000,001,094 | ---- | C] () -- C:\Users\Public\Desktop\Controller Editor.lnk [2011.12.03 03:05:22 | 000,001,059 | ---- | C] () -- C:\Users\Public\Desktop\Service Center.lnk [2011.12.03 02:41:04 | 000,000,477 | ---- | C] () -- C:\Users\schwein\Desktop\SAMSUNG (I) - Verknüpfung.lnk [2011.12.03 02:14:46 | 000,100,352 | ---- | C] () -- C:\Windows\SysWow64\zlib1.dll [2011.12.03 02:14:45 | 000,394,752 | ---- | C] () -- C:\Windows\SysWow64\cygwinb19.dll [2011.12.03 02:14:45 | 000,271,264 | ---- | C] () -- C:\Windows\System\vbrun100.dll [2011.12.03 02:14:45 | 000,210,944 | ---- | C] () -- C:\Windows\System\msvcrt10.dll [2011.12.03 02:14:45 | 000,162,304 | ---- | C] () -- C:\Windows\SysWow64\libpng13.dll [2011.12.03 02:14:44 | 001,202,763 | ---- | C] () -- C:\Windows\unins002.exe [2011.12.03 02:14:44 | 000,012,750 | ---- | C] () -- C:\Windows\unins002.dat [2011.12.03 02:11:48 | 000,709,719 | ---- | C] () -- C:\Windows\unins001.exe [2011.12.03 02:11:48 | 000,007,962 | ---- | C] () -- C:\Windows\unins001.dat [2011.12.03 02:10:52 | 001,199,175 | ---- | C] () -- C:\Windows\unins000.exe [2011.12.03 02:10:52 | 000,021,737 | ---- | C] () -- C:\Windows\unins000.dat [2011.12.03 02:00:46 | 000,150,996 | ---- | C] () -- C:\Windows\SysNative\drivers\RTAIODAT.DAT [2011.12.03 01:46:48 | 000,001,027 | ---- | C] () -- C:\Users\Public\Desktop\MozBackup.lnk [2011.12.03 01:45:51 | 000,002,098 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Thunderbird.lnk [2011.12.03 01:40:51 | 000,017,408 | ---- | C] () -- C:\Users\schwein\AppData\Local\WebpageIcons.db [2011.12.03 00:40:01 | 000,001,405 | ---- | C] () -- C:\Users\schwein\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer (64-bit).lnk [2011.12.03 00:39:56 | 000,001,439 | ---- | C] () -- C:\Users\schwein\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk [2011.12.03 00:35:35 | 000,001,345 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Media Center.lnk [2011.12.03 00:35:27 | 000,001,326 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows DVD Maker.lnk [2011.12.03 00:34:11 | 000,000,000 | -H-- | C] () -- C:\Windows\SysNative\drivers\Msft_User_WpdFs_01_09_00.Wdf [2011.12.03 00:32:13 | 3220,725,760 | -HS- | C] () -- C:\hiberfil.sys [2011.10.23 06:56:16 | 004,738,560 | ---- | C] () -- C:\Windows\SysWow64\x264vfw.dll [2011.10.15 00:54:52 | 000,321,856 | ---- | C] () -- C:\Windows\SysWow64\nvStreaming.exe [2011.08.19 10:26:20 | 010,898,456 | ---- | C] () -- C:\Windows\SysWow64\LogiDPP.dll [2011.08.19 10:26:20 | 000,336,408 | ---- | C] () -- C:\Windows\SysWow64\DevManagerCore.dll [2011.08.19 10:26:20 | 000,104,472 | ---- | C] () -- C:\Windows\SysWow64\LogiDPPApp.exe [2011.07.12 15:56:50 | 000,074,752 | ---- | C] () -- C:\Windows\SysWow64\ff_vfw.dll [2011.04.09 18:55:28 | 000,179,261 | ---- | C] () -- C:\Windows\SysWow64\xlive.dll.cat [2011.02.18 16:28:16 | 000,236,040 | ---- | C] () -- C:\Windows\SysWow64\DeltaIITray.exe [2011.01.04 13:28:18 | 000,175,616 | ---- | C] () -- C:\Windows\SysWow64\unrar.dll [2009.07.14 06:38:36 | 000,067,584 | --S- | C] () -- C:\Windows\bootstat.dat [2009.07.14 03:35:51 | 000,000,741 | ---- | C] () -- C:\Windows\SysWow64\NOISE.DAT [2009.07.14 03:34:42 | 000,215,943 | ---- | C] () -- C:\Windows\SysWow64\dssec.dat [2009.07.14 01:10:29 | 000,043,131 | ---- | C] () -- C:\Windows\mib.bin [2009.07.14 00:42:10 | 000,064,000 | ---- | C] () -- C:\Windows\SysWow64\BWContextHandler.dll [2009.07.13 22:03:59 | 000,364,544 | ---- | C] () -- C:\Windows\SysWow64\msjetoledb40.dll [2009.06.10 22:26:10 | 000,673,088 | ---- | C] () -- C:\Windows\SysWow64\mlang.dat [2007.02.05 16:05:26 | 000,000,038 | ---- | C] () -- C:\Windows\AviSplitter.INI ========== LOP Check ========== [2011.12.13 12:24:07 | 000,000,000 | ---D | M] -- C:\Users\schwein\AppData\Roaming\DAEMON Tools Lite [2011.12.03 17:24:45 | 000,000,000 | ---D | M] -- C:\Users\schwein\AppData\Roaming\DVDVideoSoft [2011.12.03 15:24:13 | 000,000,000 | ---D | M] -- C:\Users\schwein\AppData\Roaming\Leadertech [2011.12.08 19:07:38 | 000,000,000 | ---D | M] -- C:\Users\schwein\AppData\Roaming\ManyCam [2011.12.03 18:15:40 | 000,000,000 | ---D | M] -- C:\Users\schwein\AppData\Roaming\Shark007 [2011.12.04 15:47:06 | 000,000,000 | ---D | M] -- C:\Users\schwein\AppData\Roaming\TeamViewer [2011.12.03 01:47:51 | 000,000,000 | ---D | M] -- C:\Users\schwein\AppData\Roaming\Thunderbird [2011.12.07 22:29:00 | 000,000,000 | ---D | M] -- C:\Users\schwein\AppData\Roaming\Trine2 [2011.12.03 18:14:57 | 000,000,000 | ---D | M] -- C:\Users\schwein\AppData\Roaming\Win7codecs [2009.07.14 06:08:49 | 000,013,734 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT ========== Purity Check ========== < End of report > Hier die extras.txtOTL Logfile: Code:
ATTFilter OTL Extras logfile created on: 15.12.2011 19:02:34 - Run 1
OTL by OldTimer - Version 3.2.31.0 Folder = C:\Users\schwein\Downloads
64bit- Ultimate Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7601.17514)
Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy
4,00 Gb Total Physical Memory | 2,83 Gb Available Physical Memory | 70,65% Memory free
8,00 Gb Paging File | 6,72 Gb Available in Paging File | 84,09% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 465,66 Gb Total Space | 420,90 Gb Free Space | 90,39% Space Free | Partition Type: NTFS
Drive I: | 931,51 Gb Total Space | 398,84 Gb Free Space | 42,82% Space Free | Partition Type: NTFS
Computer Name: SCHWEIN-PC | User Name: schwein | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan | Include 64bit Scans
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days
========== Extra Registry (SafeList) ==========
========== File Associations ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.url[@ = InternetShortcut] -- C:\Windows\SysNative\rundll32.exe (Microsoft Corporation)
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation)
[HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation)
========== Shell Spawning ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- Reg Error: Key error.
htmlfile [print] -- rundll32.exe %windir%\system32\mshtml.dll,PrintHTML "%1"
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [open] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- Reg Error: Key error.
htmlfile [print] -- rundll32.exe %windir%\system32\mshtml.dll,PrintHTML "%1"
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
========== Security Center Settings ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = 28 4D B2 76 41 04 CA 01 [binary data]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]
"DisableMonitoring" = 1
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
========== Firewall Settings ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 0
========== Authorized Applications List ==========
========== HKEY_LOCAL_MACHINE Uninstall List ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{0886900B-B2F3-452C-B580-60F1253F7F80}" = Native Instruments Controller Editor
"{0B8565BA-BAD5-4732-B122-5FD78EFC50A9}" = Native Instruments Service Center
"{0E3DAF3D-FF69-345A-A99E-1FED304CA083}" = Microsoft .NET Framework 4 Client Profile DEU Language Pack
"{138A4072-9E64-46BD-B5F9-DB2BB395391F}" = LWS VideoEffects
"{1D8E6291-B0D5-35EC-8441-6616F567A0F7}" = Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219
"{1F6D1DB5-82B5-41A4-85A2-0A382C142A35}_is1" = Allgemeine Runtime Files (x86)
"{23170F69-40C1-2702-0920-000001000000}" = 7-Zip 9.20 (x64 edition)
"{26A24AE4-039D-4CA4-87B4-2F86416029FF}" = Java(TM) 6 Update 29 (64-bit)
"{28F19F09-F228-49cb-8B90-F97DA7180DD4}" = Native Instruments Traktor Kontrol S4 Driver
"{2A358F86-3AF5-11E0-A832-B6A6DFD72085}" = M-Audio Delta Driver 6.0.5 (x64)
"{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161
"{8729E65B-8C12-4A42-B1FE-E4DA7ED52855}_is1" = DirectX 9.0c Extra Files (x86, x64)
"{8E34682C-8118-31F1-BC4C-98CD9675E1C2}" = Microsoft .NET Framework 4 Extended
"{9B48B0AC-C813-4174-9042-476A887592C7}" = Windows Live ID Sign-in Assistant
"{A8EC0CC0-AD8D-4244-B080-424EDF7A7634}" = Native Instruments Traktor 2
"{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}" = Microsoft Visual C++ 2005 Redistributable (x64)
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision" = NVIDIA 3D Vision Treiber 285.62
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel" = NVIDIA Systemsteuerung 285.62
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver" = NVIDIA Grafiktreiber 285.62
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB" = NVIDIA 3D Vision Controller-Treiber 285.62
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX" = NVIDIA PhysX-Systemsoftware 9.11.0621
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update" = NVIDIA Update 1.5.20
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver" = NVIDIA HD-Audiotreiber 1.2.24.0
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_installer" = NVIDIA Install Application
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NVIDIA.Update" = NVIDIA Update Components
"{B3B750C0-8C22-439D-B7CE-67F3ED99CC2B}" = Microsoft Xbox 360 Accessories 1.2
"{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}" = Microsoft .NET Framework 4 Client Profile
"{FDF7187F-3960-4BEC-916D-98C9A83E3A68}_is1" = DirectX for Managed Code
"Adobe Flash Player ActiveX" = Adobe Flash Player 11 ActiveX 64-bit
"Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin 64-bit
"CCleaner" = CCleaner
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Microsoft .NET Framework 4 Client Profile DEU Language Pack" = Microsoft .NET Framework 4 Client Profile DEU Language Pack
"Microsoft .NET Framework 4 Extended" = Microsoft .NET Framework 4 Extended
"WinRAR archiver" = WinRAR 4.01 (64-Bit)
"x64 Components_is1" = x64 Components v3.3.1
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{08610298-29AE-445B-B37D-EFBE05802967}" = LWS Pictures And Video
"{15634701-BACE-4449-8B25-1567DA8C9FD3}" = CameraHelperMsi
"{1651216E-E7AD-4250-92A1-FB8ED61391C9}" = LWS Help_main
"{174A3B31-4C43-43DD-866F-73C9DB887B48}" = LWS Twitter
"{21DF0294-6B9D-4741-AB6F-B2ABFBD2387E}" = LWS YouTube Plugin
"{26A24AE4-039D-4CA4-87B4-2F83216029FF}" = Java(TM) 6 Update 29
"{3EE9BCAE-E9A9-45E5-9B1C-83A4D357E05C}" = erLT
"{43430FA0-4A2E-404A-B715-951000018101}" = SUPER STREET FIGHTER IV: ARCADE EDITION
"{45E557D6-2271-4F13-8101-C620B4285AB0}" = Kaspersky Internet Security 2012
"{4CB0307C-565E-4441-86BE-0DF2E4FB828C}" = Microsoft Games for Windows Marketplace
"{68A35043-C55A-4237-88C9-37EE1C63ED71}" = Microsoft Visual J# 2.0 Redistributable Package
"{6F76EC3C-34B1-436E-97FB-48C58D7BEDCD}" = LWS Gallery
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{718B4425-80EA-4F64-A05C-48285CE63F73}" = AMD System Monitor
"{71E66D3F-A009-44AB-8784-75E2819BA4BA}" = LWS Motion Detection
"{7F6D7FD9-648D-4DD9-BB6E-3990C675ECA4}" = NVIDIA PhysX
"{83C8FA3C-F4EA-46C4-8392-D3CE353738D6}" = LWS Launcher
"{8833FFB6-5B0C-4764-81AA-06DFEED9A476}" = Realtek Ethernet Controller Driver
"{88603FC0-6B3C-442D-981E-E3D49F083548}_is1" = NovaBench 3.0.4
"{8937D274-C281-42E4-8CDB-A0B2DF979189}" = LWS Webcam Software
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8C0CAA7A-3272-4991-A808-2C7559DE3409}" = Win7codecs
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{9DAEA76B-E50F-4272-A595-0124E826553D}" = LWS WLM Plugin
"{9FD6F1A8-5550-46AF-8509-271DF0E768B5}" = Dual-Core Optimizer
"{AA59DDE4-B672-4621-A016-4C248204957A}" = Skype™ 5.6
"{D34598D1-07B8-4EB6-AD9A-DBDF58FFC19F}" = Adobe Shockwave Player 11.6
"{D40EB009-0499-459c-A8AF-C9C110766215}" = Logitech Webcam Software
"{EED027B7-0DB6-404B-8F45-6DFEE34A0441}" = LWS Video Mask Maker
"{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F2508213-9989-4E85-A078-72BE483917EF}" = Microsoft Games for Windows - LIVE Redistributable
"{FF167195-9EE4-46C0-8CD7-FBA3457E88AB}" = LWS Facebook
"{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
"5513-1208-7298-9440" = JDownloader 0.9
"Audacity_is1" = Audacity 1.2.6
"DAEMON Tools Lite" = DAEMON Tools Lite
"Free Audio Converter_is1" = Free Audio Converter version 2.3.4.920
"InstallWIX_{45E557D6-2271-4F13-8101-C620B4285AB0}" = Kaspersky Internet Security 2012
"Microsoft Visual J# 2.0 Redistributable Package" = Microsoft Visual J# 2.0 Redistributable Package
"MozBackup" = MozBackup 1.4.9
"Mozilla Firefox 8.0.1 (x86 de)" = Mozilla Firefox 8.0.1 (x86 de)
"Mozilla Thunderbird (8.0)" = Mozilla Thunderbird (8.0)
"Native Instruments Controller Editor" = Native Instruments Controller Editor
"Native Instruments Service Center" = Native Instruments Service Center
"Native Instruments Traktor 2" = Native Instruments Traktor 2
"Native Instruments Traktor Kontrol S4" = Native Instruments Traktor Kontrol S4
"Native Instruments Traktor Kontrol S4 Driver" = Native Instruments Traktor Kontrol S4 Driver
"NVIDIAStereo" = NVIDIA Stereoscopic 3D Driver
"PiratesOfBlackCove_is1" = Pirates of Black Cove
"Trine 2_is1" = Trine 2
========== Last 10 Event Log Errors ==========
[ Application Events ]
Error - 13.12.2011 00:30:46 | Computer Name = schwein-PC | Source = Application Error | ID = 1000
Description = Name der fehlerhaften Anwendung: Blur.exe, Version: 0.0.0.0, Zeitstempel:
0x562b029a Name des fehlerhaften Moduls: Blur.exe, Version: 0.0.0.0, Zeitstempel:
0x562b029a Ausnahmecode: 0xc0000005 Fehleroffset: 0x00080e43 ID des fehlerhaften Prozesses:
0x5c4 Startzeit der fehlerhaften Anwendung: 0x01ccb94ff9b0a6e2 Pfad der fehlerhaften
Anwendung: C:\Program Files (x86)\Activision\Blur\Blur.exe Pfad des fehlerhaften
Moduls: C:\Program Files (x86)\Activision\Blur\Blur.exe Berichtskennung: 394404e5-2543-11e1-bcdd-002185c95508
Error - 13.12.2011 01:25:29 | Computer Name = schwein-PC | Source = Application Error | ID = 1000
Description = Name der fehlerhaften Anwendung: NFSC.exe, Version: 0.0.0.0, Zeitstempel:
0x4534574b Name des fehlerhaften Moduls: NFSC.exe, Version: 0.0.0.0, Zeitstempel:
0x4534574b Ausnahmecode: 0xc0000005 Fehleroffset: 0x002b6be1 ID des fehlerhaften Prozesses:
0xc44 Startzeit der fehlerhaften Anwendung: 0x01ccb9579d11e4a1 Pfad der fehlerhaften
Anwendung: C:\Program Files (x86)\Electronic Arts\Need for Speed Carbon\NFSC.exe
Pfad
des fehlerhaften Moduls: C:\Program Files (x86)\Electronic Arts\Need for Speed
Carbon\NFSC.exe Berichtskennung: de31a196-254a-11e1-bcdd-002185c95508
Error - 13.12.2011 01:25:58 | Computer Name = schwein-PC | Source = Application Error | ID = 1000
Description = Name der fehlerhaften Anwendung: NFSC.exe, Version: 0.0.0.0, Zeitstempel:
0x4534574b Name des fehlerhaften Moduls: ntdll.dll, Version: 6.1.7601.17514, Zeitstempel:
0x4ce7ba58 Ausnahmecode: 0xc0000005 Fehleroffset: 0x0002dfc4 ID des fehlerhaften Prozesses:
0x938 Startzeit der fehlerhaften Anwendung: 0x01ccb957ad712487 Pfad der fehlerhaften
Anwendung: C:\Program Files (x86)\Electronic Arts\Need for Speed Carbon\NFSC.exe
Pfad
des fehlerhaften Moduls: C:\Windows\SysWOW64\ntdll.dll Berichtskennung: ef54ae9c-254a-11e1-bcdd-002185c95508
Error - 13.12.2011 01:26:11 | Computer Name = schwein-PC | Source = Application Error | ID = 1000
Description = Name der fehlerhaften Anwendung: NFSC.exe, Version: 0.0.0.0, Zeitstempel:
0x4534574b Name des fehlerhaften Moduls: ntdll.dll, Version: 6.1.7601.17514, Zeitstempel:
0x4ce7ba58 Ausnahmecode: 0xc0000005 Fehleroffset: 0x0002dfc4 ID des fehlerhaften Prozesses:
0x604 Startzeit der fehlerhaften Anwendung: 0x01ccb957b5a6f394 Pfad der fehlerhaften
Anwendung: C:\Program Files (x86)\Electronic Arts\Need for Speed Carbon\NFSC.exe
Pfad
des fehlerhaften Moduls: C:\Windows\SysWOW64\ntdll.dll Berichtskennung: f77c2f8c-254a-11e1-bcdd-002185c95508
Error - 13.12.2011 01:26:23 | Computer Name = schwein-PC | Source = Application Error | ID = 1000
Description = Name der fehlerhaften Anwendung: NFSC.exe, Version: 0.0.0.0, Zeitstempel:
0x4534574b Name des fehlerhaften Moduls: ntdll.dll, Version: 6.1.7601.17514, Zeitstempel:
0x4ce7ba58 Ausnahmecode: 0xc0000005 Fehleroffset: 0x0002dfc4 ID des fehlerhaften Prozesses:
0x5e8 Startzeit der fehlerhaften Anwendung: 0x01ccb957bca0689a Pfad der fehlerhaften
Anwendung: C:\Program Files (x86)\Electronic Arts\Need for Speed Carbon\NFSC.exe
Pfad
des fehlerhaften Moduls: C:\Windows\SysWOW64\ntdll.dll Berichtskennung: fe64f41d-254a-11e1-bcdd-002185c95508
Error - 13.12.2011 01:26:58 | Computer Name = schwein-PC | Source = Application Error | ID = 1000
Description = Name der fehlerhaften Anwendung: NFSC.exe, Version: 0.0.0.0, Zeitstempel:
0x4534574b Name des fehlerhaften Moduls: NFSC.exe, Version: 0.0.0.0, Zeitstempel:
0x4534574b Ausnahmecode: 0xc0000005 Fehleroffset: 0x002b6be1 ID des fehlerhaften Prozesses:
0xc44 Startzeit der fehlerhaften Anwendung: 0x01ccb957d460d3d2 Pfad der fehlerhaften
Anwendung: C:\Program Files (x86)\Electronic Arts\Need for Speed Carbon\NFSC.exe
Pfad
des fehlerhaften Moduls: C:\Program Files (x86)\Electronic Arts\Need for Speed
Carbon\NFSC.exe Berichtskennung: 138f767b-254b-11e1-bcdd-002185c95508
Error - 13.12.2011 06:50:38 | Computer Name = schwein-PC | Source = SideBySide | ID = 16842815
Description = Fehler beim Generieren des Aktivierungskontextes für "c:\program files
(x86)\mozbackup\dll\DelZip179.dll". Fehler in Manifest- oder Richtliniendatei "c:\program
files (x86)\mozbackup\dll\DelZip179.dll" in Zeile 8. Der Wert "*" des "language"-Attributs
im assemblyIdentity-Element ist ungültig.
Error - 14.12.2011 07:13:58 | Computer Name = schwein-PC | Source = SideBySide | ID = 16842815
Description = Fehler beim Generieren des Aktivierungskontextes für "c:\program files
(x86)\mozbackup\dll\DelZip179.dll". Fehler in Manifest- oder Richtliniendatei "c:\program
files (x86)\mozbackup\dll\DelZip179.dll" in Zeile 8. Der Wert "*" des "language"-Attributs
im assemblyIdentity-Element ist ungültig.
Error - 14.12.2011 15:54:34 | Computer Name = schwein-PC | Source = MsiInstaller | ID = 11935
Description =
Error - 15.12.2011 07:12:24 | Computer Name = schwein-PC | Source = SideBySide | ID = 16842815
Description = Fehler beim Generieren des Aktivierungskontextes für "c:\program files
(x86)\mozbackup\dll\DelZip179.dll". Fehler in Manifest- oder Richtliniendatei "c:\program
files (x86)\mozbackup\dll\DelZip179.dll" in Zeile 8. Der Wert "*" des "language"-Attributs
im assemblyIdentity-Element ist ungültig.
[ System Events ]
Error - 14.12.2011 02:52:51 | Computer Name = schwein-PC | Source = Service Control Manager | ID = 7026
Description = Das Laden folgender Boot- oder Systemstarttreiber ist fehlgeschlagen:
ntiomin
Error - 14.12.2011 06:25:56 | Computer Name = schwein-PC | Source = Service Control Manager | ID = 7026
Description = Das Laden folgender Boot- oder Systemstarttreiber ist fehlgeschlagen:
ntiomin
Error - 14.12.2011 08:06:06 | Computer Name = schwein-PC | Source = EventLog | ID = 6008
Description = Das System wurde zuvor am ?14.?12.?2011 um 13:04:41 unerwartet heruntergefahren.
Error - 14.12.2011 08:06:11 | Computer Name = schwein-PC | Source = Service Control Manager | ID = 7026
Description = Das Laden folgender Boot- oder Systemstarttreiber ist fehlgeschlagen:
ntiomin
Error - 14.12.2011 15:59:55 | Computer Name = schwein-PC | Source = EventLog | ID = 6008
Description = Das System wurde zuvor am ?14.?12.?2011 um 20:57:59 unerwartet heruntergefahren.
Error - 14.12.2011 16:00:00 | Computer Name = schwein-PC | Source = Service Control Manager | ID = 7026
Description = Das Laden folgender Boot- oder Systemstarttreiber ist fehlgeschlagen:
ntiomin
Error - 14.12.2011 16:00:10 | Computer Name = schwein-PC | Source = Disk | ID = 262155
Description = Der Treiber hat einen Controllerfehler auf \Device\Harddisk2\DR2 gefunden.
Error - 15.12.2011 03:51:45 | Computer Name = schwein-PC | Source = Service Control Manager | ID = 7026
Description = Das Laden folgender Boot- oder Systemstarttreiber ist fehlgeschlagen:
ntiomin
Error - 15.12.2011 13:51:29 | Computer Name = schwein-PC | Source = EventLog | ID = 6008
Description = Das System wurde zuvor am ?15.?12.?2011 um 18:37:31 unerwartet heruntergefahren.
Error - 15.12.2011 13:51:39 | Computer Name = schwein-PC | Source = Service Control Manager | ID = 7026
Description = Das Laden folgender Boot- oder Systemstarttreiber ist fehlgeschlagen:
ntiomin
< End of report >
Hoffe, ich habe mich nicht zu dumm angestellt und schonmal danke im Voraus :-D |
|
15.12.2011, 19:41
| #4 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Explorer. exe bringt Cpu Last fast immer auf 100% Das war KEIN CustomScan! Aber zuerstmal einen Vollscan mit Malwarebytes machen und Log posten. Denk daran, dass Malwarebytes vor jedem Scan manuell aktualisiert werden muss! Falls Logs aus älteren Scans mit Malwarebytes vorhanden sind, bitte auch davon alle posten! ESET Online Scanner
Bitte alles nach Möglichkeit hier in CODE-Tags posten. Wird so gemacht: [code] hier steht das Log [/code] Und das ganze sieht dann so aus: Code:
ATTFilter hier steht das Log
__________________ Logfiles bitte immer in CODE-Tags posten  |
|
15.12.2011, 21:19
| #5 |
| | Explorer. exe bringt Cpu Last fast immer auf 100% Hm freundlichkeit scheint nicht eure Stärke zu sein. Bitte meine Beiträge löschen, ich versuche es woanders. Mann Mann Mann |
|
15.12.2011, 21:42
| #6 | ||
| /// Winkelfunktion /// TB-Süch-Tiger™ | Explorer. exe bringt Cpu Last fast immer auf 100%Zitat:
 Ich weiß beim besten willen nicht was so unfreundlich ausgedrückt war. Weil "KEIN" grogeschrieben und der Satz mit einem "!" beendet wurde? Zitat:
__________________ --> Explorer. exe bringt Cpu Last fast immer auf 100% |
|
| Themen zu Explorer. exe bringt Cpu Last fast immer auf 100% |
| 100%, avp, cpu, exe, file, firefox, geforce, hijack, hijackthis, internet, internet explorer, internet security 2012, kaspersky, langsam, log, log file, lsass.exe, microsoft, mozilla, mozilla thunderbird, neu, neu aufgesetzt, nvidia update, prozessor, security, taskmanager, treiber, vollast, windows, wmp |
Linear-Darstellung
