Zurück   Trojaner-Board > Archiv - Kein Posten möglich > Mülltonne
wie findest du das bild - studivz 'wuaucld.exe'

wie findest du das bild - studivz 'wuaucld.exe'


Mülltonne: wie findest du das bild - studivz 'wuaucld.exe'

Windows 7 Beiträge, die gegen unsere Regeln verstoßen haben, solche, die die Welt nicht braucht oder sonstiger Müll landet hier in der Mülltonne...

 
Alt 13.06.2010, 08:54   #1
Alexande
 
wie findest du das bild - studivz 'wuaucld.exe' - Standard

wie findest du das bild - studivz 'wuaucld.exe'


Hallo,
habe mich dümmlicherweise auch mit dem Virus infiziert nachdem ich meine Platte platt gemacht habe und in der annahme war java fehlt noch.

Die wuaucld.exe hat Avira seit dem letzten update erkannt, ich weiss aber nicht ob das auch alles war.
Ich hoffe Ihr könnt auch mir helfen.
Vielen Dank.


Code:
ATTFilter
OTL logfile created on: 13.06.2010 09:43:51 - Run 3
OTL by OldTimer - Version 3.2.6.0     Folder = C:\Users\Alex\Downloads
 An unknown product  (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7600.16385)
Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy
 
3,00 Gb Total Physical Memory | 2,00 Gb Available Physical Memory | 69,00% Memory free
6,00 Gb Paging File | 5,00 Gb Available in Paging File | 81,00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 287,95 Gb Total Space | 236,13 Gb Free Space | 82,00% Space Free | Partition Type: NTFS
Drive D: | 10,00 Gb Total Space | 4,28 Gb Free Space | 42,75% Space Free | Partition Type: NTFS
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded
 
Computer Name: ALEX-NOTEBOOK
Current User Name: Alex
Logged in as Administrator.
 
Current Boot Mode: Normal
Scan Mode: Current user
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Standard
 
========== Processes (SafeList) ==========
 
PRC - [2010.06.09 18:45:27 | 000,572,416 | ---- | M] (OldTimer Tools) -- C:\Users\Alex\Downloads\OTL.exe
PRC - [2010.04.01 20:00:17 | 000,910,296 | ---- | M] (Mozilla Corporation) -- C:\Programme\Internet\Mozilla Firefox\firefox.exe
PRC - [2010.04.01 13:33:15 | 000,267,432 | ---- | M] (Avira GmbH) -- C:\Programme\Avira\AntiVir Desktop\avguard.exe
PRC - [2010.03.02 11:28:23 | 000,282,792 | ---- | M] (Avira GmbH) -- C:\Programme\Avira\AntiVir Desktop\avgnt.exe
PRC - [2010.02.24 10:28:01 | 000,135,336 | ---- | M] (Avira GmbH) -- C:\Programme\Avira\AntiVir Desktop\sched.exe
PRC - [2010.02.21 05:03:12 | 001,093,208 | ---- | M] (Microsoft Corporation) -- C:\Programme\Microsoft Security Essentials\msseces.exe
PRC - [2010.01.23 08:12:06 | 000,462,336 | ---- | M] () -- C:\Programme\Autodesk\Inventor 2011\Moldflow\bin\mitsijm.exe
PRC - [2010.01.14 22:10:53 | 000,076,968 | ---- | M] (Avira GmbH) -- C:\Programme\Avira\AntiVir Desktop\avshadow.exe
PRC - [2009.12.09 18:02:38 | 000,017,904 | ---- | M] (Microsoft Corporation) -- c:\Programme\Microsoft Security Essentials\MsMpEng.exe
PRC - [2009.10.31 07:45:39 | 002,614,272 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
PRC - [2009.08.18 02:36:36 | 000,348,160 | ---- | M] (AMD) -- C:\Windows\System32\atieclxx.exe
PRC - [2009.08.18 02:36:08 | 000,176,128 | ---- | M] (AMD) -- C:\Windows\System32\atiesrxx.exe
PRC - [2009.07.14 03:14:47 | 001,121,280 | ---- | M] (Microsoft Corporation) -- C:\Programme\Windows Media Player\wmpnetwk.exe
PRC - [2009.07.14 03:14:42 | 000,049,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\taskhost.exe
PRC - [2009.07.14 03:14:28 | 000,157,184 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\perfmon.exe
PRC - [2009.07.14 03:14:15 | 000,271,360 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\conhost.exe
PRC - [2009.01.26 15:31:10 | 001,153,368 | ---- | M] (Safer Networking Ltd.) -- C:\Programme\Spybot - Search & Destroy\SDWinSec.exe
PRC - [2008.06.05 15:26:36 | 000,752,168 | ---- | M] (Broadcom Corporation.) -- C:\Programme\Bluetooth\BTTray.exe
PRC - [2008.06.05 15:26:36 | 000,518,696 | ---- | M] (Broadcom Corporation.) -- C:\Programme\Bluetooth\bin\btwdins.exe
PRC - [2008.05.06 16:03:08 | 000,221,239 | ---- | M] (IDT, Inc.) -- C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_x86_neutral_c8e33401effad09d\stacsv.exe
PRC - [2008.02.28 16:51:50 | 000,073,728 | ---- | M] (Andrea Electronics Corporation) -- C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_x86_neutral_c8e33401effad09d\AEstSrv.exe
 
 
========== Modules (SafeList) ==========
 
MOD - [2010.06.09 18:45:27 | 000,572,416 | ---- | M] (OldTimer Tools) -- C:\Users\Alex\Downloads\OTL.exe
MOD - [2009.07.14 03:16:15 | 000,099,840 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\sspicli.dll
MOD - [2009.07.14 03:16:13 | 000,092,160 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\sechost.dll
MOD - [2009.07.14 03:16:13 | 000,050,688 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\samcli.dll
MOD - [2009.07.14 03:16:12 | 000,031,744 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\profapi.dll
MOD - [2009.07.14 03:16:03 | 000,022,016 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\netutils.dll
MOD - [2009.07.14 03:15:35 | 000,288,256 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\KernelBase.dll
MOD - [2009.07.14 03:15:21 | 000,093,696 | ---- | M] (Windows (R) Codename Longhorn DDK provider) -- C:\Windows\System32\fms.dll
MOD - [2009.07.14 03:15:13 | 000,067,072 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dwmapi.dll
MOD - [2009.07.14 03:15:11 | 000,064,512 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\devobj.dll
MOD - [2009.07.14 03:15:07 | 000,036,864 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\cryptbase.dll
MOD - [2009.07.14 03:15:02 | 000,145,920 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\cfgmgr32.dll
MOD - [2009.07.14 03:14:10 | 000,095,232 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msscript.ocx
MOD - [2009.07.14 03:03:50 | 001,680,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16385_none_421189da2b7fabfc\comctl32.dll
MOD - [2009.07.14 03:03:50 | 001,624,576 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7600.16385_none_72fc7cbf861225ca\GdiPlus.dll
 
 
========== Win32 Services (SafeList) ==========
 
SRV - [2010.06.06 20:44:29 | 002,478,640 | ---- | M] () [Auto | Running] -- C:/Program Files/Common Files/Akamai/rswin_3697.dll -- (Akamai)
SRV - [2010.06.01 19:12:20 | 001,045,256 | ---- | M] (Acresso Software Inc.) [On_Demand | Stopped] -- C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe -- (FLEXnet Licensing Service)
SRV - [2010.04.28 07:44:02 | 000,704,872 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Live\Family Safety\fsssvc.exe -- (fsssvc)
SRV - [2010.04.01 13:33:15 | 000,267,432 | ---- | M] (Avira GmbH) [Auto | Running] -- C:\Program Files\Avira\AntiVir Desktop\avguard.exe -- (AntiVirService)
SRV - [2010.02.24 10:28:01 | 000,135,336 | ---- | M] (Avira GmbH) [Auto | Running] -- C:\Program Files\Avira\AntiVir Desktop\sched.exe -- (AntiVirSchedulerService)
SRV - [2010.01.23 08:12:06 | 000,462,336 | ---- | M] () [Auto | Running] -- C:\Programme\Autodesk\Inventor 2011\Moldflow\bin\mitsijm.exe -- (mitsijm2011)
SRV - [2009.12.09 18:02:38 | 000,017,904 | ---- | M] (Microsoft Corporation) [Auto | Running] -- c:\Program Files\Microsoft Security Essentials\MsMpEng.exe -- (MsMpSvc)
SRV - [2009.08.18 02:36:08 | 000,176,128 | ---- | M] (AMD) [Auto | Running] -- C:\Windows\System32\atiesrxx.exe -- (AMD External Events Utility)
SRV - [2009.07.14 03:16:21 | 000,185,856 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\wwansvc.dll -- (WwanSvc)
SRV - [2009.07.14 03:16:17 | 000,151,552 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\wbiosrvc.dll -- (WbioSrvc)
SRV - [2009.07.14 03:16:17 | 000,119,808 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\umpo.dll -- (Power)
SRV - [2009.07.14 03:16:16 | 000,037,376 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\themeservice.dll -- (Themes)
SRV - [2009.07.14 03:16:15 | 000,053,760 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\sppuinotify.dll -- (sppuinotify)
SRV - [2009.07.14 03:16:15 | 000,016,384 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\StorSvc.dll -- (StorSvc)
SRV - [2009.07.14 03:16:13 | 000,043,520 | ---- | M] (Microsoft Corporation) [Unknown | Running] -- C:\Windows\System32\RpcEpMap.dll -- (RpcEptMapper)
SRV - [2009.07.14 03:16:13 | 000,025,088 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\sensrsvc.dll -- (SensrSvc)
SRV - [2009.07.14 03:16:12 | 001,004,544 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\PeerDistSvc.dll -- (PeerDistSvc)
SRV - [2009.07.14 03:16:12 | 000,269,824 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\pnrpsvc.dll -- (PNRPsvc)
SRV - [2009.07.14 03:16:12 | 000,269,824 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\pnrpsvc.dll -- (p2pimsvc)
SRV - [2009.07.14 03:16:12 | 000,165,376 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\provsvc.dll -- (HomeGroupProvider)
SRV - [2009.07.14 03:16:12 | 000,020,480 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\pnrpauto.dll -- (PNRPAutoReg)
SRV - [2009.07.14 03:15:41 | 000,680,960 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Programme\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2009.07.14 03:15:36 | 000,194,560 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\ListSvc.dll -- (HomeGroupListener)
SRV - [2009.07.14 03:15:21 | 000,797,696 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\FntCache.dll -- (FontCache)
SRV - [2009.07.14 03:15:11 | 000,253,440 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\dhcpcore.dll -- (Dhcp)
SRV - [2009.07.14 03:15:10 | 000,218,624 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\defragsvc.dll -- (defragsvc)
SRV - [2009.07.14 03:14:59 | 000,076,800 | ---- | M] (Microsoft Corporation) [Unknown | Stopped] -- C:\Windows\System32\bdesvc.dll -- (BDESVC)
SRV - [2009.07.14 03:14:58 | 000,088,064 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\AxInstSv.dll -- (AxInstSV) ActiveX-Installer (AxInstSV)
SRV - [2009.07.14 03:14:53 | 000,027,648 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\appidsvc.dll -- (AppIDSvc)
SRV - [2009.07.14 03:14:29 | 003,179,520 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\System32\sppsvc.exe -- (sppsvc)
SRV - [2009.01.26 15:31:10 | 001,153,368 | ---- | M] (Safer Networking Ltd.) [Auto | Running] -- C:\Programme\Spybot - Search & Destroy\SDWinSec.exe -- (SBSDWSCService)
SRV - [2008.06.05 15:26:36 | 000,518,696 | ---- | M] (Broadcom Corporation.) [Auto | Running] -- C:\Programme\Bluetooth\bin\btwdins.exe -- (btwdins)
SRV - [2008.05.06 16:03:08 | 000,221,239 | ---- | M] (IDT, Inc.) [Auto | Running] -- C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_x86_neutral_c8e33401effad09d\stacsv.exe -- (STacSV)
SRV - [2008.02.28 16:51:50 | 000,073,728 | ---- | M] (Andrea Electronics Corporation) [Auto | Running] -- C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_x86_neutral_c8e33401effad09d\AEstSrv.exe -- (AESTFilters)
 
 
========== Driver Services (SafeList) ==========
 
DRV - [2010.04.28 07:44:02 | 000,054,632 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\fssfltr.sys -- (fssfltr)
DRV - [2010.03.01 10:05:19 | 000,124,784 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\Windows\System32\drivers\avipbb.sys -- (avipbb)
DRV - [2010.02.16 14:24:01 | 000,060,936 | ---- | M] (Avira GmbH) [File_System | Auto | Running] -- C:\Windows\System32\drivers\avgntflt.sys -- (avgntflt)
DRV - [2009.12.11 09:44:02 | 000,133,720 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\Drivers\ksecpkg.sys -- (KSecPkg)
DRV - [2009.12.02 15:23:40 | 000,149,040 | ---- | M] (Microsoft Corporation) [File_System | System | Running] -- C:\Windows\System32\drivers\MpFilter.sys -- (MpFilter)
DRV - [2009.12.02 15:23:40 | 000,042,368 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Running] -- C:\Windows\System32\drivers\MpNWMon.sys -- (MpNWMon)
DRV - [2009.08.18 03:48:06 | 004,994,560 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\atikmdag.sys -- (atikmdag)
DRV - [2009.07.14 03:26:21 | 000,015,952 | ---- | M] (CMD Technology, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\cmdide.sys -- (cmdide)
DRV - [2009.07.14 03:26:17 | 000,297,552 | ---- | M] (Adaptec, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\adpahci.sys -- (adpahci)
DRV - [2009.07.14 03:26:15 | 000,422,976 | ---- | M] (Adaptec, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\adp94xx.sys -- (adp94xx)
DRV - [2009.07.14 03:26:15 | 000,159,312 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\amdsbs.sys -- (amdsbs)
DRV - [2009.07.14 03:26:15 | 000,146,512 | ---- | M] (Adaptec, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\adpu320.sys -- (adpu320)
DRV - [2009.07.14 03:26:15 | 000,086,608 | ---- | M] (Adaptec, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\arcsas.sys -- (arcsas)
DRV - [2009.07.14 03:26:15 | 000,079,952 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\amdsata.sys -- (amdsata)
DRV - [2009.07.14 03:26:15 | 000,076,368 | ---- | M] (Adaptec, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\arc.sys -- (arc)
DRV - [2009.07.14 03:26:15 | 000,023,616 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\system32\DRIVERS\amdxata.sys -- (amdxata)
DRV - [2009.07.14 03:26:15 | 000,014,400 | ---- | M] (Acer Laboratories Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\aliide.sys -- (aliide)
DRV - [2009.07.14 03:20:44 | 000,142,416 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\nvstor.sys -- (nvstor)
DRV - [2009.07.14 03:20:44 | 000,117,312 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\nvraid.sys -- (nvraid)
DRV - [2009.07.14 03:20:44 | 000,044,624 | ---- | M] (IBM Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\nfrd960.sys -- (nfrd960)
DRV - [2009.07.14 03:20:37 | 000,089,168 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\lsi_sas.sys -- (LSI_SAS)
DRV - [2009.07.14 03:20:36 | 000,332,352 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\iaStorV.sys -- (iaStorV)
DRV - [2009.07.14 03:20:36 | 000,235,584 | ---- | M] (LSI Corporation, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\MegaSR.sys -- (MegaSR)
DRV - [2009.07.14 03:20:36 | 000,096,848 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\lsi_scsi.sys -- (LSI_SCSI)
DRV - [2009.07.14 03:20:36 | 000,095,824 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\lsi_fc.sys -- (LSI_FC)
DRV - [2009.07.14 03:20:36 | 000,054,864 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\lsi_sas2.sys -- (LSI_SAS2)
DRV - [2009.07.14 03:20:36 | 000,041,040 | ---- | M] (Intel Corp./ICP vortex GmbH) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\iirsp.sys -- (iirsp)
DRV - [2009.07.14 03:20:36 | 000,030,800 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\megasas.sys -- (megasas)
DRV - [2009.07.14 03:20:36 | 000,013,904 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\hwpolicy.sys -- (hwpolicy)
DRV - [2009.07.14 03:20:28 | 000,453,712 | ---- | M] (Emulex) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\elxstor.sys -- (elxstor)
DRV - [2009.07.14 03:20:28 | 000,070,720 | ---- | M] (Adaptec, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\djsvs.sys -- (aic78xx)
DRV - [2009.07.14 03:20:28 | 000,067,152 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\HpSAMD.sys -- (HpSAMD)
DRV - [2009.07.14 03:20:28 | 000,046,160 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\System32\drivers\fsdepends.sys -- (FsDepends)
DRV - [2009.07.14 03:19:11 | 000,141,904 | ---- | M] (VIA Technologies Inc.,Ltd) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\vsmraid.sys -- (vsmraid)
DRV - [2009.07.14 03:19:10 | 000,175,824 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\vmbus.sys -- (vmbus)
DRV - [2009.07.14 03:19:10 | 000,159,824 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\vhdmp.sys -- (vhdmp)
DRV - [2009.07.14 03:19:10 | 000,040,896 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\system32\DRIVERS\vmstorfl.sys -- (storflt)
DRV - [2009.07.14 03:19:10 | 000,032,832 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\system32\DRIVERS\vdrvroot.sys -- (vdrvroot)
DRV - [2009.07.14 03:19:10 | 000,028,224 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\storvsc.sys -- (storvsc)
DRV - [2009.07.14 03:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\System32\drivers\wimmount.sys -- (WIMMount)
DRV - [2009.07.14 03:19:10 | 000,016,976 | ---- | M] (VIA Technologies, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\viaide.sys -- (viaide)
DRV - [2009.07.14 03:19:04 | 001,383,488 | ---- | M] (QLogic Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\ql2300.sys -- (ql2300)
DRV - [2009.07.14 03:19:04 | 000,173,648 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\rdyboost.sys -- (rdyboost)
DRV - [2009.07.14 03:19:04 | 000,106,064 | ---- | M] (QLogic Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\ql40xx.sys -- (ql40xx)
DRV - [2009.07.14 03:19:04 | 000,077,888 | ---- | M] (Silicon Integrated Systems) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\sisraid4.sys -- (SiSRaid4)
DRV - [2009.07.14 03:19:04 | 000,043,088 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\pcw.sys -- (pcw)
DRV - [2009.07.14 03:19:04 | 000,040,016 | ---- | M] (Silicon Integrated Systems Corp.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\SiSRaid2.sys -- (SiSRaid2)
DRV - [2009.07.14 03:19:04 | 000,021,072 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\stexstor.sys -- (stexstor)
DRV - [2009.07.14 03:17:54 | 000,369,568 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\Drivers\cng.sys -- (CNG)
DRV - [2009.07.14 02:57:25 | 000,272,128 | ---- | M] (Brother Industries Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\Brserid.sys -- (Brserid) Brother MFC Serial Port Interface Driver (WDM)
DRV - [2009.07.14 02:02:41 | 000,018,944 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\rdpbus.sys -- (rdpbus)
DRV - [2009.07.14 02:01:41 | 000,007,168 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\System32\drivers\RDPREFMP.sys -- (RDPREFMP)
DRV - [2009.07.14 01:55:00 | 000,049,152 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\agilevpn.sys -- (RasAgileVpn) WAN Miniport (IKEv2)
DRV - [2009.07.14 01:53:51 | 000,009,728 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\System32\drivers\wfplwf.sys -- (WfpLwf)
DRV - [2009.07.14 01:52:44 | 000,027,136 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ndiscap.sys -- (NdisCap)
DRV - [2009.07.14 01:52:02 | 000,019,968 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\vwifibus.sys -- (vwifibus)
DRV - [2009.07.14 01:52:00 | 000,163,328 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\1394ohci.sys -- (1394ohci)
DRV - [2009.07.14 01:51:35 | 000,008,192 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\umpass.sys -- (UmPass)
DRV - [2009.07.14 01:51:23 | 000,080,640 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\USBAUDIO.sys -- (usbaudio) USB-Audiotreiber (WDM)
DRV - [2009.07.14 01:51:11 | 000,034,944 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\winusb.sys -- (WinUsb)
DRV - [2009.07.14 01:51:08 | 000,004,096 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\mshidkmdf.sys -- (mshidkmdf)
DRV - [2009.07.14 01:46:55 | 000,012,288 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\MTConfig.sys -- (MTConfig)
DRV - [2009.07.14 01:45:26 | 000,031,232 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\CompositeBus.sys -- (CompositeBus)
DRV - [2009.07.14 01:36:52 | 000,050,176 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\appid.sys -- (AppID)
DRV - [2009.07.14 01:33:50 | 000,026,624 | ---- | M] (Microsoft Corporation) [Kernel | Unknown | Stopped] -- C:\Windows\System32\drivers\scfilter.sys -- (scfilter)
DRV - [2009.07.14 01:28:47 | 000,005,632 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\vms3cap.sys -- (s3cap)
DRV - [2009.07.14 01:28:45 | 000,017,920 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\VMBusHID.sys -- (VMBusHID)
DRV - [2009.07.14 01:24:05 | 000,032,256 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\System32\drivers\discache.sys -- (discache)
DRV - [2009.07.14 01:19:21 | 000,021,504 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\HidBatt.sys -- (HidBatt)
DRV - [2009.07.14 01:16:36 | 000,009,728 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\acpipmi.sys -- (AcpiPmi)
DRV - [2009.07.14 01:11:04 | 000,052,736 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\amdppm.sys -- (AmdPPM)
DRV - [2009.07.14 00:54:14 | 000,026,624 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\hcw85cir.sys -- (hcw85cir)
DRV - [2009.07.14 00:53:33 | 000,012,160 | ---- | M] (Brother Industries Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\BrUsbMdm.sys -- (BrUsbMdm)
DRV - [2009.07.14 00:53:33 | 000,011,904 | ---- | M] (Brother Industries Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\BrUsbSer.sys -- (BrUsbSer)
DRV - [2009.07.14 00:53:32 | 000,062,336 | ---- | M] (Brother Industries Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\BrSerWdm.sys -- (BrSerWdm)
DRV - [2009.07.14 00:53:28 | 000,013,568 | ---- | M] (Brother Industries, Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\BrFiltLo.sys -- (BrFiltLo)
DRV - [2009.07.14 00:53:28 | 000,005,248 | ---- | M] (Brother Industries, Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\BrFiltUp.sys -- (BrFiltUp)
DRV - [2009.07.14 00:02:51 | 004,231,168 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\netw5v32.sys -- (netw5v32) Intel(R)
DRV - [2009.07.14 00:02:49 | 000,229,888 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\k57nd60x.sys -- (k57nd60x) Broadcom NetLink (TM)
DRV - [2009.07.14 00:02:49 | 000,229,888 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\b57nd60x.sys -- (b57nd60x)
DRV - [2009.07.14 00:02:48 | 003,100,160 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\evbdx.sys -- (ebdrv)
DRV - [2009.07.14 00:02:48 | 000,430,080 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\bxvbdx.sys -- (b06bdrv)
DRV - [2009.05.11 10:12:49 | 000,028,520 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\Windows\System32\drivers\ssmdrv.sys -- (ssmdrv)
DRV - [2008.05.06 16:04:42 | 000,379,904 | ---- | M] (IDT, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\stwrt.sys -- (STHDA)
DRV - [2008.01.29 18:46:58 | 000,029,736 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\btwl2cap.sys -- (btwl2cap)
DRV - [2008.01.29 17:54:02 | 000,081,960 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\btwaudio.sys -- (btwaudio)
DRV - [2008.01.29 17:54:02 | 000,017,448 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\btwrchid.sys -- (btwrchid)
DRV - [2008.01.29 17:54:00 | 000,100,392 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\btwavdt.sys -- (btwavdt)
DRV - [2006.11.14 17:35:20 | 000,037,376 | ---- | M] (REDC) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\rixdptsk.sys -- (rismxdp)
 
 
========== Standard Registry (SafeList) ==========
 
 
========== Internet Explorer ==========
 
 
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://de.msn.com/?ocid=iehp
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 09 64 A6 DB AA 01 CB 01  [binary data]
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local
 
========== FireFox ==========
 
FF - prefs.js..browser.search.defaultenginename: "Live Search"
FF - prefs.js..browser.search.defaulturl: "hxxp://search.live.com/results.aspx?FORM=IEFM1&q="
FF - prefs.js..browser.search.param.yahoo-fr: "chr-greentree_ff&type=971163"
FF - prefs.js..browser.search.selectedEngine: "Google"
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: "www.google.de"
FF - prefs.js..keyword.URL: "hxxp://search.live.com/results.aspx?FORM=IEFM1&q="
FF - prefs.js..network.proxy.type: 4
 
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.3\extensions\\Components: \components
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.3\extensions\\Plugins: \plugins
FF - HKLM\software\mozilla\Mozilla Sunbird 1.0b1\extensions\\Components: C:\Programme\Mozilla Sunbird\components [2010.06.09 20:47:59 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Sunbird 1.0b1\extensions\\Plugins: C:\Programme\Mozilla Sunbird\plugins
FF - HKLM\software\mozilla\Mozilla Thunderbird 3.0.4\extensions\\Components: \components
FF - HKLM\software\mozilla\Mozilla Thunderbird 3.0.4\extensions\\Plugins: \plugins
 
[2010.06.09 20:48:46 | 000,000,000 | ---D | M] -- C:\Users\Alex\AppData\Roaming\mozilla\Extensions
[2010.06.01 19:16:26 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Alex\AppData\Roaming\mozilla\Extensions\{3550f703-e582-4d05-9a08-453d09bdfdc6}
[2010.06.09 20:48:46 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Alex\AppData\Roaming\mozilla\Extensions\{718e30fb-e89b-41dd-9da7-e25a45638b28}
[2010.06.07 21:35:50 | 000,000,000 | ---D | M] -- C:\Users\Alex\AppData\Roaming\mozilla\Firefox\Profiles\h3p7oj9f.default\extensions
[2010.06.09 20:48:46 | 000,000,000 | ---D | M] -- C:\Users\Alex\AppData\Roaming\mozilla\Sunbird\Profiles\3uhg0o3d.default\extensions
[2009.02.19 20:36:12 | 000,001,632 | ---- | M] () -- C:\Users\Alex\AppData\Roaming\Mozilla\FireFox\Profiles\h3p7oj9f.default\searchplugins\live-search.xml
 
O1 HOSTS File: ([2009.06.10 23:39:37 | 000,000,824 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - No CLSID value found.
O2 - BHO: (Windows Live Anmelde-Hilfsprogramm) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Programme\Common Files\microsoft shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Programme\Internet\bin\jp2ssv.dll (Sun Microsystems, Inc.)
O4 - HKLM..\Run: [avgnt] C:\Program Files\Avira\AntiVir Desktop\avgnt.exe (Avira GmbH)
O4 - HKLM..\Run: [MSSE] c:\Program Files\Microsoft Security Essentials\msseces.exe (Microsoft Corporation)
O4 - HKCU..\Run: [SpybotSD TeaTimer] C:\Programme\Spybot - Search & Destroy\TeaTimer.exe (Safer-Networking Ltd.)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O8 - Extra context menu item: Bild an &Bluetooth-Gerät senden... - C:\Programme\Bluetooth\btsendto_ie_ctx.htm ()
O8 - Extra context menu item: Seite an &Bluetooth-Gerät senden... - C:\Programme\Bluetooth\btsendto_ie.htm ()
O9 - Extra Button: In Blog veröffentlichen - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Programme\Windows Live\Writer\WriterBrowserExtension.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : In Windows Live Writer in Blog veröffentliche&n - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Programme\Windows Live\Writer\WriterBrowserExtension.dll (Microsoft Corporation)
O9 - Extra Button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Programme\Bluetooth\btsendto_ie.htm ()
O9 - Extra 'Tools' menuitem : @btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Programme\Bluetooth\btsendto_ie.htm ()
O10 - NameSpace_Catalog5\Catalog_Entries\000000000008 [] - C:\Programme\Bonjour\mdnsNSP.dll (Apple Computer, Inc.)
O13 - gopher Prefix: missing
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab (Java Plug-in 1.6.0_20)
O16 - DPF: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab (Java Plug-in 1.6.0_20)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab (Java Plug-in 1.6.0_20)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} https://fpdownload.macromedia.com/pub/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 212.204.40.250 194.25.2.129
O18 - Protocol\Handler\livecall {828030A1-22C1-4009-854F-8E305202313F} - C:\Programme\Windows Live\Messenger\msgrapp.14.0.8117.0416.dll (Microsoft Corporation)
O18 - Protocol\Handler\msnim {828030A1-22C1-4009-854F-8E305202313F} - C:\Programme\Windows Live\Messenger\msgrapp.14.0.8117.0416.dll (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\System32\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (/pagefile) -  File not found
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
O30 - LSA: Security Packages - (pku2u) - C:\Windows\System32\pku2u.dll (Microsoft Corporation)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009.06.10 23:42:20 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O33 - MountPoints2\{15c00b82-73e0-11df-84ce-00225f4b5de6}\Shell - "" = AutoRun
O33 - MountPoints2\{15c00b82-73e0-11df-84ce-00225f4b5de6}\Shell\AutoRun\command - "" = G:\LaunchU3.exe -- File not found
O34 - HKLM BootExecute: (autocheck autochk *) -  File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
 
========== Files/Folders - Created Within 30 Days ==========
 
[2010.06.12 13:41:51 | 000,000,000 | ---D | C] -- C:\Users\Alex\Desktop\PDMO
[2010.06.12 12:41:35 | 000,293,888 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\System32\atmfd.dll
[2010.06.12 12:41:35 | 000,034,304 | ---- | C] (Adobe Systems) -- C:\Windows\System32\atmlib.dll
[2010.06.12 12:41:26 | 002,326,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\win32k.sys
[2010.06.12 12:41:23 | 000,067,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\asycfilt.dll
[2010.06.12 12:41:18 | 000,606,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mstime.dll
[2010.06.12 12:41:18 | 000,381,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iedkcs32.dll
[2010.06.12 12:41:18 | 000,064,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeedsbs.dll
[2010.06.12 12:41:18 | 000,048,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jsproxy.dll
[2010.06.09 20:47:53 | 000,000,000 | ---D | C] -- C:\Programme\Mozilla Sunbird
[2010.06.09 19:13:59 | 000,000,000 | ---D | C] -- C:\Programme\CCleaner
[2010.06.09 17:50:47 | 000,000,000 | ---D | C] -- C:\Users\Alex\AppData\Local\Diagnostics
[2010.06.08 14:42:30 | 000,000,000 | ---D | C] -- C:\Users\Alex\AppData\Roaming\Malwarebytes
[2010.06.08 14:42:22 | 000,038,224 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbamswissarmy.sys
[2010.06.08 14:42:20 | 000,020,952 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbam.sys
[2010.06.08 14:42:20 | 000,000,000 | ---D | C] -- C:\Programme\Malwarebytes' Anti-Malware
[2010.06.08 14:42:20 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2010.06.08 08:17:46 | 000,000,000 | ---D | C] -- C:\Users\Alex\AppData\Roaming\Avira
[2010.06.08 08:14:17 | 000,028,520 | ---- | C] (Avira GmbH) -- C:\Windows\System32\drivers\ssmdrv.sys
[2010.06.08 08:14:14 | 000,124,784 | ---- | C] (Avira GmbH) -- C:\Windows\System32\drivers\avipbb.sys
[2010.06.08 08:14:14 | 000,060,936 | ---- | C] (Avira GmbH) -- C:\Windows\System32\drivers\avgntflt.sys
[2010.06.08 08:14:14 | 000,051,992 | ---- | C] (AVIRA GmbH) -- C:\Windows\System32\drivers\avgntdd.sys
[2010.06.08 08:14:14 | 000,017,016 | ---- | C] (AVIRA GmbH) -- C:\Windows\System32\drivers\avgntmgr.sys
[2010.06.08 08:14:12 | 000,000,000 | ---D | C] -- C:\Programme\Avira
[2010.06.08 08:14:12 | 000,000,000 | ---D | C] -- C:\ProgramData\Avira
[2010.06.08 07:58:28 | 000,000,000 | ---D | C] -- C:\Programme\Spybot - Search & Destroy
[2010.06.08 07:58:28 | 000,000,000 | ---D | C] -- C:\ProgramData\Spybot - Search & Destroy
[2010.06.07 21:24:23 | 000,000,000 | ---D | C] -- C:\Programme\Trend Micro
[2010.06.07 20:51:40 | 000,000,000 | ---D | C] -- C:\Users\Alex\AppData\Local\ElevatedDiagnostics
[2010.06.07 12:25:42 | 000,000,000 | ---D | C] -- C:\Users\Alex\AppData\Local\Adobe
[2010.06.07 12:20:59 | 000,000,000 | ---D | C] -- C:\Programme\Adobe Photoshop CS3
[2010.06.07 12:19:43 | 000,000,000 | ---D | C] -- C:\ProgramData\Adobe
[2010.06.07 12:18:03 | 000,000,000 | ---D | C] -- C:\Programme\Bonjour
[2010.06.07 12:15:59 | 000,000,000 | ---D | C] -- C:\Programme\Adobe Stock Photos CS3
[2010.06.07 12:12:41 | 000,000,000 | ---D | C] -- C:\Programme\Adobe
[2010.06.07 12:10:44 | 000,000,000 | ---D | C] -- C:\Programme\Adobe Device Central CS3
[2010.06.07 12:01:58 | 000,000,000 | ---D | C] -- C:\Programme\Adobe Bridge CS3
[2010.06.07 11:58:03 | 000,000,000 | ---D | C] -- C:\Programme\Common Files\Adobe
[2010.06.07 11:18:59 | 000,000,000 | ---D | C] -- C:\Users\Alex\Documents\Neuer Ordner
[2010.06.07 09:06:04 | 000,000,000 | ---D | C] -- C:\Users\Alex\Desktop\Frauen
[2010.06.07 09:01:24 | 001,060,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MFC71.dll
[2010.06.07 09:01:24 | 000,499,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msvcp71.dll
[2010.06.07 09:01:24 | 000,348,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msvcr71.dll
[2010.06.07 08:55:45 | 000,049,152 | ---- | C] (Blue Sky Software Corporation.) -- C:\Windows\System32\INETWH32.DLL
[2010.06.07 08:53:04 | 000,000,000 | ---D | C] -- C:\Programme\NetObjects
[2010.06.06 23:54:24 | 000,000,000 | ---D | C] -- C:\Users\Alex\AppData\Roaming\dvdcss
[2010.06.06 23:40:28 | 000,000,000 | ---D | C] -- C:\Windows\pss
[2010.06.06 23:09:12 | 000,000,000 | ---D | C] -- C:\Users\Alex\AppData\Roaming\vlc
[2010.06.06 21:04:57 | 000,000,000 | ---D | C] -- C:\Windows\Fonts\Redist
[2010.06.06 21:04:26 | 000,000,000 | ---D | C] -- C:\Programme\Autodesk Impression 3
[2010.06.06 21:02:58 | 000,236,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine2_3.dll
[2010.06.06 21:02:58 | 000,230,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine2_2.dll
[2010.06.06 21:02:58 | 000,062,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xinput1_2.dll
[2010.06.06 21:02:57 | 000,062,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xinput1_1.dll
[2010.06.06 21:02:55 | 000,229,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine2_1.dll
[2010.06.06 21:02:51 | 002,388,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_30.dll
[2010.06.06 21:02:50 | 002,332,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_29.dll
[2010.06.06 21:02:50 | 002,323,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_28.dll
[2010.06.06 21:02:50 | 002,319,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_27.dll
[2010.06.06 21:02:50 | 002,297,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_26.dll
[2010.06.06 21:02:50 | 000,230,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine2_0.dll
[2010.06.06 21:02:50 | 000,014,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\x3daudio1_0.dll
[2010.06.06 21:02:49 | 002,337,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_25.dll
[2010.06.06 21:02:49 | 002,222,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_24.dll
[2010.06.06 20:44:26 | 000,000,000 | ---D | C] -- C:\Programme\Common Files\Akamai
[2010.06.04 10:02:14 | 010,222,080 | ---- | C] (Foxit Corporation) -- C:\Users\Alex\Foxit Reader.exe
[2010.06.03 21:44:38 | 000,000,000 | ---D | C] -- C:\ProgramData\Sun
[2010.06.03 21:44:37 | 000,000,000 | ---D | C] -- C:\Programme\Common Files\Java
[2010.06.03 21:44:24 | 000,000,000 | ---D | C] -- C:\extensions
[2010.06.03 21:44:23 | 000,411,368 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\System32\deployJava1.dll
[2010.06.03 21:44:23 | 000,153,376 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\System32\javaws.exe
[2010.06.03 21:44:23 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\System32\javaw.exe
[2010.06.03 21:44:23 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\System32\java.exe
[2010.06.03 21:41:47 | 000,000,000 | ---D | C] -- C:\Users\Alex\AppData\Roaming\OpenOffice.org
[2010.06.03 20:16:16 | 000,000,000 | ---D | C] -- C:\Programme\OpenOffice.org 3
[2010.06.03 12:23:42 | 000,000,000 | ---D | C] -- C:\Users\Alex\Tracing
[2010.06.03 09:31:20 | 000,000,000 | R--D | C] -- C:\Users\Alex\Documents\Scanned Documents
[2010.06.03 09:31:20 | 000,000,000 | ---D | C] -- C:\Users\Alex\Documents\Fax
[2010.06.03 09:29:13 | 000,000,000 | ---D | C] -- C:\Programme\Archivierung
[2010.06.03 09:20:24 | 000,000,000 | ---D | C] -- C:\Programme\Office
[2010.06.03 09:17:24 | 000,000,000 | ---D | C] -- C:\Programme\Video
[2010.06.02 16:40:32 | 000,000,000 | ---D | C] -- C:\Programme\Microsoft Security Essentials
[2010.06.02 16:31:50 | 000,000,000 | ---D | C] -- C:\Users\Alex\AppData\Local\Apps
[2010.06.02 16:31:49 | 000,000,000 | ---D | C] -- C:\Users\Alex\AppData\Local\Deployment
[2010.06.02 16:14:41 | 000,000,000 | ---D | C] -- C:\Programme\DellTPad
[2010.06.02 16:12:56 | 000,492,544 | ---- | C] (Creative Technology Ltd.) -- C:\Windows\System32\ctapo32.dll
[2010.06.02 16:12:56 | 000,372,736 | ---- | C] (Andrea Electronics Corporation) -- C:\Windows\System32\aestecap.dll
[2010.06.02 16:12:56 | 000,133,632 | ---- | C] (Andrea Electronics Corporation) -- C:\Windows\System32\aestacap.dll
[2010.06.02 16:12:56 | 000,053,248 | ---- | C] (Andrea Electronics Corporation) -- C:\Windows\System32\aestaren.dll
[2010.06.02 16:12:56 | 000,045,568 | ---- | C] (Creative Technology Ltd) -- C:\Windows\System32\ctppld.dll
[2010.06.02 16:12:55 | 005,550,145 | ---- | C] (IDT, Inc.) -- C:\Windows\System32\idtcpl.cpl
[2010.06.02 16:12:55 | 002,469,888 | ---- | C] (IDT, Inc.) -- C:\Windows\System32\stlang.dll
[2010.06.02 16:12:55 | 000,512,000 | ---- | C] (IDT, Inc.) -- C:\Windows\System32\idtmini1.exe
[2010.06.02 16:12:55 | 000,073,728 | ---- | C] (Andrea Electronics Corporation) -- C:\Windows\System32\AESTCom.dll
[2010.06.02 16:12:09 | 000,580,608 | ---- | C] (IDT, Inc.) -- C:\Windows\System32\stapo.dll
[2010.06.02 16:12:09 | 000,404,480 | ---- | C] (IDT, Inc.) -- C:\Windows\System32\stapi32.dll
[2010.06.02 16:12:09 | 000,379,904 | ---- | C] (IDT, Inc.) -- C:\Windows\System32\drivers\stwrt.sys
[2010.06.02 16:12:09 | 000,344,576 | ---- | C] (IDT, Inc.) -- C:\Windows\System32\stcplx.dll
[2010.06.02 16:12:09 | 000,164,352 | ---- | C] (IDT, Inc.) -- C:\Windows\System32\st325939.dll
[2010.06.02 16:12:08 | 000,000,000 | -H-D | C] -- C:\Programme\InstallShield Installation Information
[2010.06.02 16:12:08 | 000,000,000 | ---D | C] -- C:\Programme\IDT
[2010.06.02 16:12:05 | 000,000,000 | ---D | C] -- C:\Programme\Common Files\InstallShield
[2010.06.02 16:10:05 | 000,000,000 | ---D | C] -- C:\Users\Alex\Documents\Bluetooth-Exchange-Ordner
[2010.06.02 16:10:05 | 000,000,000 | ---D | C] -- C:\Users\Alex\Bluetooth Software
[2010.06.02 16:09:38 | 000,100,392 | ---- | C] (Broadcom Corporation.) -- C:\Windows\System32\drivers\btwavdt.sys
[2010.06.02 16:09:38 | 000,029,736 | ---- | C] (Broadcom Corporation.) -- C:\Windows\System32\drivers\btwl2cap.sys
[2010.06.02 16:09:37 | 000,081,960 | ---- | C] (Broadcom Corporation.) -- C:\Windows\System32\drivers\btwaudio.sys
[2010.06.02 16:09:37 | 000,017,448 | ---- | C] (Broadcom Corporation.) -- C:\Windows\System32\drivers\btwrchid.sys
[2010.06.02 16:09:31 | 000,233,472 | ---- | C] (Broadcom Corporation.) -- C:\Windows\System32\BtwRSupport.dll
[2010.06.02 16:09:20 | 000,000,000 | ---D | C] -- C:\Windows\System32\es-MX
[2010.06.02 16:09:20 | 000,000,000 | ---D | C] -- C:\Windows\System32\es-AR
[2010.06.02 16:09:19 | 000,000,000 | ---D | C] -- C:\Programme\Bluetooth
[2010.06.02 16:07:05 | 000,000,000 | ---D | C] -- C:\dell
[2010.06.02 16:03:45 | 000,000,000 | ---D | C] -- C:\Windows\System32\vmm32
[2010.06.02 16:03:45 | 000,000,000 | ---D | C] -- C:\Programme\Dell
[2010.06.02 13:15:08 | 000,000,000 | ---D | C] -- C:\Users\Alex\.hedgewars
[2010.06.02 13:12:44 | 000,000,000 | ---D | C] -- C:\Programme\Spiele
[2010.06.02 12:11:17 | 000,000,000 | ---D | C] -- C:\Users\Alex\AppData\Roaming\Macromedia
[2010.06.02 12:11:17 | 000,000,000 | ---D | C] -- C:\Users\Alex\AppData\Roaming\Adobe
[2010.06.02 12:11:15 | 000,000,000 | ---D | C] -- C:\Windows\System32\Macromed
[2010.06.01 22:45:30 | 000,000,000 | ---D | C] -- C:\Programme\MSXML 4.0
[2010.06.01 19:46:22 | 000,000,000 | ---D | C] -- C:\Programme\Microsoft Silverlight
[2010.06.01 19:46:13 | 000,054,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\fssfltr.sys
[2010.06.01 19:46:13 | 000,000,000 | ---D | C] -- C:\Windows\System32\DRVSTORE
[2010.06.01 19:45:22 | 003,426,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_32.dll
[2010.06.01 19:45:09 | 000,000,000 | ---D | C] -- C:\Programme\Microsoft SQL Server Compact Edition
[2010.06.01 19:44:40 | 000,000,000 | ---D | C] -- C:\Programme\Microsoft
[2010.06.01 19:44:29 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\microsoft
[2010.06.01 19:44:14 | 000,000,000 | ---D | C] -- C:\Programme\Windows Live SkyDrive
[2010.06.01 19:43:57 | 000,000,000 | ---D | C] -- C:\Programme\Windows Live
[2010.06.01 19:43:35 | 000,000,000 | ---D | C] -- C:\Windows\PCHEALTH
[2010.06.01 19:41:41 | 000,000,000 | ---D | C] -- C:\Users\Alex\AppData\Local\Autodesk,_Inc
[2010.06.01 19:39:43 | 000,000,000 | ---D | C] -- C:\ProgramData\FLEXnet
[2010.06.01 19:38:09 | 000,000,000 | ---D | C] -- C:\Programme\Common Files\Windows Live
[2010.06.01 19:24:21 | 000,000,000 | ---D | C] -- C:\Windows\Panther
[2010.06.01 19:24:06 | 000,000,000 | -HSD | C] -- C:\Boot
[2010.06.01 19:16:23 | 000,000,000 | ---D | C] -- C:\Users\Alex\AppData\Roaming\Thunderbird
[2010.06.01 19:16:23 | 000,000,000 | ---D | C] -- C:\Users\Alex\AppData\Local\Thunderbird
[2010.06.01 19:14:43 | 000,000,000 | ---D | C] -- C:\Users\Alex\AppData\Local\Mozilla
[2010.06.01 19:14:42 | 000,000,000 | ---D | C] -- C:\Users\Alex\AppData\Roaming\Mozilla
[2010.06.01 19:12:22 | 000,000,000 | ---D | C] -- C:\Users\Alex\Documents\Autodesk
[2010.06.01 19:12:19 | 000,000,000 | ---D | C] -- C:\Programme\Common Files\Macrovision Shared
[2010.06.01 19:09:02 | 000,000,000 | ---D | C] -- C:\Programme\Internet
[2010.06.01 19:08:56 | 000,293,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\browserchoice.exe
[2010.06.01 19:07:35 | 000,000,000 | ---D | C] -- C:\MITSI 2011 Temporary Files
[2010.06.01 19:07:35 | 000,000,000 | ---D | C] -- C:\Users\Alex\Documents\Inventor
[2010.06.01 19:07:35 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\Autodesk
[2010.06.01 19:06:07 | 000,000,000 | ---D | C] -- C:\Programme\Microsoft Chart Controls
[2010.06.01 19:06:01 | 000,000,000 | ---D | C] -- C:\Programme\Microsoft WSE
[2010.06.01 19:04:58 | 000,000,000 | ---D | C] -- C:\Users\Alex\AppData\Local\Autodesk
[2010.06.01 19:04:46 | 001,846,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DCompiler_41.dll
[2010.06.01 19:04:46 | 000,453,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx10_41.dll
[2010.06.01 19:04:45 | 004,178,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DX9_41.dll
[2010.06.01 19:04:23 | 000,000,000 | ---D | C] -- C:\Programme\Common Files\Designer
[2010.06.01 19:04:22 | 000,000,000 | ---D | C] -- C:\Programme\Microsoft Office
[2010.06.01 19:04:06 | 000,000,000 | ---D | C] -- C:\Programme\Common Files\Autodesk Shared
[2010.06.01 19:04:06 | 000,000,000 | ---D | C] -- C:\Programme\Autodesk
[2010.06.01 18:59:53 | 002,614,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\explorer.exe
[2010.06.01 18:59:50 | 001,037,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\lsasrv.dll
[2010.06.01 18:59:50 | 000,133,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\ksecpkg.sys
[2010.06.01 18:59:37 | 012,625,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wmploc.DLL
[2010.06.01 18:59:37 | 001,320,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\CertEnroll.dll
[2010.06.01 18:59:37 | 000,507,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\winload.exe
[2010.06.01 18:59:37 | 000,442,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\winresume.exe
[2010.06.01 18:59:12 | 000,108,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\t2embed.dll
[2010.06.01 18:59:12 | 000,070,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\fontsub.dll
[2010.06.01 18:58:54 | 000,716,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jscript.dll
[2010.06.01 18:58:52 | 000,641,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\CPFilters.dll
[2010.06.01 18:58:52 | 000,465,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\psisdecd.dll
[2010.06.01 18:58:52 | 000,417,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msdri.dll
[2010.06.01 18:58:52 | 000,204,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MSNP.ax
[2010.06.01 18:58:51 | 003,954,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ntkrnlpa.exe
[2010.06.01 18:58:51 | 003,899,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ntoskrnl.exe
[2010.06.01 18:58:50 | 001,328,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\quartz.dll
[2010.06.01 18:58:50 | 000,091,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\avifil32.dll
[2010.06.01 18:58:50 | 000,084,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mciavi32.dll
[2010.06.01 18:58:34 | 000,427,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\vbscript.dll
[2010.06.01 18:58:34 | 000,369,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\secproc.dll
[2010.06.01 18:58:34 | 000,365,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\secproc_isv.dll
[2010.06.01 18:58:34 | 000,324,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\RMActivate_isv.exe
[2010.06.01 18:58:34 | 000,320,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\RMActivate.exe
[2010.06.01 18:58:34 | 000,280,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\RMActivate_ssp.exe
[2010.06.01 18:58:34 | 000,277,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\RMActivate_ssp_isv.exe
[2010.06.01 18:58:34 | 000,085,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\secproc_ssp_isv.dll
[2010.06.01 18:58:34 | 000,085,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\secproc_ssp.dll
[2010.06.01 18:58:02 | 000,000,000 | ---D | C] -- C:\Users\Alex\AppData\Roaming\Autodesk
[2010.06.01 18:58:02 | 000,000,000 | ---D | C] -- C:\ProgramData\Autodesk
[2010.06.01 18:57:04 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\tzres.dll
[2010.06.01 18:56:35 | 000,000,000 | -HSD | C] -- C:\Windows\Installer
[2010.06.01 18:55:55 | 000,221,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MpSigStub.exe
[2010.06.01 18:45:48 | 000,000,000 | ---D | C] -- C:\Users\Alex\AutoCAD_Inventor_Suite_2011_German_Win_32bit
[2010.06.01 18:32:42 | 000,000,000 | R--D | C] -- C:\Users\Alex\Searches
[2010.06.01 18:32:32 | 000,000,000 | ---D | C] -- C:\Users\Alex\AppData\Roaming\Identities
[2010.06.01 18:32:31 | 000,000,000 | R--D | C] -- C:\Users\Alex\Contacts
[2010.06.01 18:32:22 | 000,000,000 | ---D | C] -- C:\Users\Alex\AppData\Local\VirtualStore
[2010.06.01 18:32:21 | 000,000,000 | -HSD | C] -- C:\Users\Alex\Vorlagen
[2010.06.01 18:32:21 | 000,000,000 | -HSD | C] -- C:\Users\Alex\AppData\Local\Verlauf
[2010.06.01 18:32:21 | 000,000,000 | -HSD | C] -- C:\Users\Alex\AppData\Local\Temporary Internet Files
[2010.06.01 18:32:21 | 000,000,000 | -HSD | C] -- C:\Users\Alex\Startmenü
[2010.06.01 18:32:21 | 000,000,000 | -HSD | C] -- C:\Users\Alex\SendTo
[2010.06.01 18:32:21 | 000,000,000 | -HSD | C] -- C:\Users\Alex\Recent
[2010.06.01 18:32:21 | 000,000,000 | -HSD | C] -- C:\Users\Alex\Netzwerkumgebung
[2010.06.01 18:32:21 | 000,000,000 | -HSD | C] -- C:\Users\Alex\Lokale Einstellungen
[2010.06.01 18:32:21 | 000,000,000 | -HSD | C] -- C:\Users\Alex\Documents\Eigene Videos
[2010.06.01 18:32:21 | 000,000,000 | -HSD | C] -- C:\Users\Alex\Documents\Eigene Musik
[2010.06.01 18:32:21 | 000,000,000 | -HSD | C] -- C:\Users\Alex\Eigene Dateien
[2010.06.01 18:32:21 | 000,000,000 | -HSD | C] -- C:\Users\Alex\Documents\Eigene Bilder
[2010.06.01 18:32:21 | 000,000,000 | -HSD | C] -- C:\Users\Alex\Druckumgebung
[2010.06.01 18:32:21 | 000,000,000 | -HSD | C] -- C:\Users\Alex\Cookies
[2010.06.01 18:32:21 | 000,000,000 | -HSD | C] -- C:\Users\Alex\AppData\Local\Anwendungsdaten
[2010.06.01 18:32:21 | 000,000,000 | -HSD | C] -- C:\Users\Alex\Anwendungsdaten
[2010.06.01 18:32:20 | 000,000,000 | --SD | C] -- C:\Users\Alex\AppData\Roaming\Microsoft
[2010.06.01 18:32:20 | 000,000,000 | R--D | C] -- C:\Users\Alex\Videos
[2010.06.01 18:32:20 | 000,000,000 | R--D | C] -- C:\Users\Alex\Saved Games
[2010.06.01 18:32:20 | 000,000,000 | R--D | C] -- C:\Users\Alex\Pictures
[2010.06.01 18:32:20 | 000,000,000 | R--D | C] -- C:\Users\Alex\Music
[2010.06.01 18:32:20 | 000,000,000 | R--D | C] -- C:\Users\Alex\Links
[2010.06.01 18:32:20 | 000,000,000 | R--D | C] -- C:\Users\Alex\Favorites
[2010.06.01 18:32:20 | 000,000,000 | R--D | C] -- C:\Users\Alex\Downloads
[2010.06.01 18:32:20 | 000,000,000 | R--D | C] -- C:\Users\Alex\Documents
[2010.06.01 18:32:20 | 000,000,000 | R--D | C] -- C:\Users\Alex\Desktop
[2010.06.01 18:32:20 | 000,000,000 | -H-D | C] -- C:\Users\Alex\AppData
[2010.06.01 18:32:20 | 000,000,000 | ---D | C] -- C:\Users\Alex\AppData\Local\Temp
[2010.06.01 18:32:20 | 000,000,000 | ---D | C] -- C:\Users\Alex\AppData\Local\Microsoft
[2010.06.01 18:32:20 | 000,000,000 | ---D | C] -- C:\Users\Alex\AppData\Roaming\Media Center Programs
[2010.06.01 18:32:10 | 000,000,000 | -HSD | C] -- C:\ProgramData\Vorlagen
[2010.06.01 18:32:10 | 000,000,000 | -HSD | C] -- C:\ProgramData\Startmenü
[2010.06.01 18:32:10 | 000,000,000 | -HSD | C] -- C:\Recovery
[2010.06.01 18:32:10 | 000,000,000 | -HSD | C] -- C:\Programme
[2010.06.01 18:32:10 | 000,000,000 | -HSD | C] -- C:\Programme\Gemeinsame Dateien
[2010.06.01 18:32:10 | 000,000,000 | -HSD | C] -- C:\ProgramData\Favoriten
[2010.06.01 18:32:10 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Eigene Videos
[2010.06.01 18:32:10 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Eigene Musik
[2010.06.01 18:32:10 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Eigene Bilder
[2010.06.01 18:32:10 | 000,000,000 | -HSD | C] -- C:\Dokumente und Einstellungen
[2010.06.01 18:32:10 | 000,000,000 | -HSD | C] -- C:\ProgramData\Dokumente
[2010.06.01 18:32:10 | 000,000,000 | -HSD | C] -- C:\ProgramData\Anwendungsdaten
[2010.06.01 18:27:42 | 000,000,000 | ---D | C] -- C:\Windows\SoftwareDistribution
[2010.06.01 18:25:08 | 000,000,000 | ---D | C] -- C:\Windows\Prefetch
[2010.06.01 18:24:50 | 000,000,000 | -HSD | C] -- C:\System Volume Information
 
========== Files - Modified Within 30 Days ==========
 
[2010.06.13 09:44:18 | 002,097,152 | -HS- | M] () -- C:\Users\Alex\ntuser.dat
[2010.06.13 09:34:14 | 000,014,752 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2010.06.13 09:34:14 | 000,014,752 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2010.06.13 09:31:34 | 001,472,002 | ---- | M] () -- C:\Windows\System32\PerfStringBackup.INI
[2010.06.13 09:31:34 | 000,643,866 | ---- | M] () -- C:\Windows\System32\perfh007.dat
[2010.06.13 09:31:34 | 000,607,190 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2010.06.13 09:31:34 | 000,126,394 | ---- | M] () -- C:\Windows\System32\perfc007.dat
[2010.06.13 09:31:34 | 000,103,568 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2010.06.13 09:26:59 | 000,000,006 | -H-- | M] () -- C:\Windows\tasks\SA.DAT
[2010.06.13 09:26:57 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2010.06.13 09:26:43 | 2388,279,296 | -HS- | M] () -- C:\hiberfil.sys
[2010.06.12 18:40:49 | 002,704,878 | -H-- | M] () -- C:\Users\Alex\AppData\Local\IconCache.db
[2010.06.12 15:44:33 | 000,007,594 | ---- | M] () -- C:\Users\Alex\AppData\Local\Resmon.ResmonCfg
[2010.06.12 15:40:17 | 001,740,224 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT
[2010.06.11 01:43:42 | 000,956,778 | ---- | M] () -- C:\Users\Alex\Desktop\EMPA-Präsentation.odp
[2010.06.11 01:37:39 | 000,003,584 | ---- | M] () -- C:\Users\Alex\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010.06.11 01:33:49 | 002,725,612 | ---- | M] () -- C:\Users\Alex\Desktop\Animation_EMPA.wmv
[2010.06.09 20:48:00 | 000,001,662 | ---- | M] () -- C:\Users\Public\Desktop\Mozilla Sunbird.lnk
[2010.06.09 19:14:04 | 000,001,602 | ---- | M] () -- C:\Users\Alex\Desktop\CCleaner.lnk
[2010.06.08 14:42:25 | 000,000,784 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
[2010.06.08 14:38:02 | 000,002,921 | ---- | M] () -- C:\Users\Alex\Desktop\BT Verknüpfung.lnk
[2010.06.08 14:30:34 | 000,000,000 | -H-- | M] () -- C:\Windows\System32\drivers\Msft_User_WpdFs_01_09_00.Wdf
[2010.06.08 08:14:28 | 000,002,012 | ---- | M] () -- C:\Users\Public\Desktop\Avira AntiVir Control Center.lnk
[2010.06.07 21:24:23 | 000,001,812 | ---- | M] () -- C:\Users\Alex\Desktop\HijackThis.lnk
[2010.06.07 12:25:26 | 000,001,486 | ---- | M] () -- C:\Users\Alex\Desktop\Photoshop - Verknüpfung.lnk
[2010.06.07 12:16:25 | 000,113,016 | ---- | M] () -- C:\Users\Alex\AppData\Local\GDIPFONTCACHEV1.DAT
[2010.06.07 11:17:58 | 000,000,000 | -H-- | M] () -- C:\Windows\System32\drivers\Msft_User_WpdMtpDr_01_09_00.Wdf
[2010.06.07 09:02:00 | 000,001,874 | ---- | M] () -- C:\Users\Public\Desktop\NetObjects Fusion 9.0.lnk
[2010.06.06 21:05:05 | 000,000,859 | ---- | M] () -- C:\Users\Public\Desktop\Autodesk Impression 3.lnk
[2010.06.03 21:44:14 | 000,411,368 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\System32\deployJava1.dll
[2010.06.03 21:44:14 | 000,153,376 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\System32\javaws.exe
[2010.06.03 21:44:14 | 000,145,184 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\System32\javaw.exe
[2010.06.03 21:44:14 | 000,145,184 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\System32\java.exe
[2010.06.03 20:16:44 | 000,001,102 | ---- | M] () -- C:\Users\Public\Desktop\OpenOffice.org 3.2.lnk
[2010.06.03 12:30:08 | 000,524,288 | -HS- | M] () -- C:\Users\Alex\ntuser.dat{880b6207-6edc-11df-a0a0-002219de4688}.TMContainer00000000000000000002.regtrans-ms
[2010.06.03 12:30:08 | 000,524,288 | -HS- | M] () -- C:\Users\Alex\ntuser.dat{880b6207-6edc-11df-a0a0-002219de4688}.TMContainer00000000000000000001.regtrans-ms
[2010.06.03 12:30:08 | 000,065,536 | -HS- | M] () -- C:\Users\Alex\ntuser.dat{880b6207-6edc-11df-a0a0-002219de4688}.TM.blf
[2010.06.03 09:34:43 | 000,000,258 | ---- | M] () -- C:\Users\Alex\Desktop\GameExplorer.lnk
[2010.06.02 16:09:22 | 000,000,655 | ---- | M] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\BTTray.lnk
[2010.06.01 19:47:16 | 000,524,288 | -HS- | M] () -- C:\Users\Alex\NTUSER.DAT{6cced2f1-6e01-11de-8bed-001e0bcd1824}.TMContainer00000000000000000002.regtrans-ms
[2010.06.01 19:47:16 | 000,524,288 | -HS- | M] () -- C:\Users\Alex\NTUSER.DAT{6cced2f1-6e01-11de-8bed-001e0bcd1824}.TMContainer00000000000000000001.regtrans-ms
[2010.06.01 19:47:16 | 000,065,536 | -HS- | M] () -- C:\Users\Alex\NTUSER.DAT{6cced2f1-6e01-11de-8bed-001e0bcd1824}.TM.blf
[2010.06.01 19:24:08 | 000,008,192 | RHS- | M] () -- C:\BOOTSECT.BAK
[2010.06.01 19:11:53 | 000,002,072 | ---- | M] () -- C:\Users\Public\Desktop\Autodesk Inventor Professional 2011.lnk
[2010.06.01 18:32:21 | 000,000,020 | -HS- | M] () -- C:\Users\Alex\ntuser.ini
[2010.06.01 18:28:30 | 000,057,035 | ---- | M] () -- C:\Windows\System32\license.rtf
[2010.06.01 18:27:25 | 000,000,000 | ---- | M] () -- C:\Windows\ativpsrm.bin
[2010.06.01 13:37:58 | 000,065,536 | ---- | M] () -- C:\Users\Alex\Documents\cert8.db
[2010.06.01 13:37:58 | 000,016,384 | ---- | M] () -- C:\Users\Alex\Documents\key3.db
[2010.06.01 13:37:58 | 000,011,180 | ---- | M] () -- C:\Users\Alex\Documents\prefs.js
[2010.06.01 11:56:44 | 000,019,996 | ---- | M] () -- C:\Users\Alex\Documents\localstore.rdf
[2010.05.27 09:24:13 | 000,034,304 | ---- | M] (Adobe Systems) -- C:\Windows\System32\atmlib.dll
[2010.05.27 05:49:37 | 000,293,888 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\System32\atmfd.dll
[2010.05.21 14:14:28 | 000,221,568 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\MpSigStub.exe
[2010.05.21 09:11:36 | 000,009,632 | ---- | M] () -- C:\Users\Alex\Documents\mimeTypes.rdf
[2010.05.21 07:14:50 | 000,048,128 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\jsproxy.dll
[2010.05.19 09:58:26 | 010,222,080 | ---- | M] (Foxit Corporation) -- C:\Users\Alex\Foxit Reader.exe
 
========== Files Created - No Company Name ==========
 
[2010.06.11 01:37:39 | 000,003,584 | ---- | C] () -- C:\Users\Alex\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010.06.11 01:33:31 | 002,725,612 | ---- | C] () -- C:\Users\Alex\Desktop\Animation_EMPA.wmv
[2010.06.09 20:48:00 | 000,001,662 | ---- | C] () -- C:\Users\Public\Desktop\Mozilla Sunbird.lnk
[2010.06.09 19:23:51 | 000,956,778 | ---- | C] () -- C:\Users\Alex\Desktop\EMPA-Präsentation.odp
[2010.06.09 19:14:04 | 000,001,602 | ---- | C] () -- C:\Users\Alex\Desktop\CCleaner.lnk
[2010.06.08 14:42:25 | 000,000,784 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
[2010.06.08 14:38:02 | 000,002,921 | ---- | C] () -- C:\Users\Alex\Desktop\BT Verknüpfung.lnk
[2010.06.08 14:30:34 | 000,000,000 | -H-- | C] () -- C:\Windows\System32\drivers\Msft_User_WpdFs_01_09_00.Wdf
[2010.06.08 08:14:28 | 000,002,012 | ---- | C] () -- C:\Users\Public\Desktop\Avira AntiVir Control Center.lnk
[2010.06.08 07:54:29 | 000,000,655 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\BTTray.lnk
[2010.06.07 21:26:58 | 000,007,594 | ---- | C] () -- C:\Users\Alex\AppData\Local\Resmon.ResmonCfg
[2010.06.07 21:24:23 | 000,001,812 | ---- | C] () -- C:\Users\Alex\Desktop\HijackThis.lnk
[2010.06.07 12:25:26 | 000,001,486 | ---- | C] () -- C:\Users\Alex\Desktop\Photoshop - Verknüpfung.lnk
[2010.06.07 11:17:58 | 000,000,000 | -H-- | C] () -- C:\Windows\System32\drivers\Msft_User_WpdMtpDr_01_09_00.Wdf
[2010.06.07 09:02:00 | 000,001,874 | ---- | C] () -- C:\Users\Public\Desktop\NetObjects Fusion 9.0.lnk
[2010.06.07 08:55:45 | 000,028,672 | ---- | C] () -- C:\Windows\System32\nnr.dll
[2010.06.06 21:05:05 | 000,000,859 | ---- | C] () -- C:\Users\Public\Desktop\Autodesk Impression 3.lnk
[2010.06.03 20:16:44 | 000,001,102 | ---- | C] () -- C:\Users\Public\Desktop\OpenOffice.org 3.2.lnk
[2010.06.03 09:34:43 | 000,000,258 | ---- | C] () -- C:\Users\Alex\Desktop\GameExplorer.lnk
[2010.06.03 08:52:56 | 000,524,288 | -HS- | C] () -- C:\Users\Alex\ntuser.dat{880b6207-6edc-11df-a0a0-002219de4688}.TMContainer00000000000000000002.regtrans-ms
[2010.06.03 08:52:56 | 000,524,288 | -HS- | C] () -- C:\Users\Alex\ntuser.dat{880b6207-6edc-11df-a0a0-002219de4688}.TMContainer00000000000000000001.regtrans-ms
[2010.06.03 08:52:56 | 000,065,536 | -HS- | C] () -- C:\Users\Alex\ntuser.dat{880b6207-6edc-11df-a0a0-002219de4688}.TM.blf
[2010.06.01 19:24:08 | 000,008,192 | RHS- | C] () -- C:\BOOTSECT.BAK
[2010.06.01 19:24:06 | 000,383,562 | RHS- | C] () -- C:\bootmgr
[2010.06.01 19:18:06 | 000,065,536 | ---- | C] () -- C:\Users\Alex\Documents\cert8.db
[2010.06.01 19:18:06 | 000,019,996 | ---- | C] () -- C:\Users\Alex\Documents\localstore.rdf
[2010.06.01 19:18:06 | 000,016,384 | ---- | C] () -- C:\Users\Alex\Documents\secmod.db
[2010.06.01 19:18:06 | 000,016,384 | ---- | C] () -- C:\Users\Alex\Documents\key3.db
[2010.06.01 19:18:06 | 000,011,180 | ---- | C] () -- C:\Users\Alex\Documents\prefs.js
[2010.06.01 19:18:06 | 000,009,632 | ---- | C] () -- C:\Users\Alex\Documents\mimeTypes.rdf
[2010.06.01 19:18:06 | 000,002,602 | ---- | C] () -- C:\Users\Alex\Documents\extensions.rdf
[2010.06.01 19:11:53 | 000,002,072 | ---- | C] () -- C:\Users\Public\Desktop\Autodesk Inventor Professional 2011.lnk
[2010.06.01 18:32:21 | 000,524,288 | -HS- | C] () -- C:\Users\Alex\NTUSER.DAT{6cced2f1-6e01-11de-8bed-001e0bcd1824}.TMContainer00000000000000000002.regtrans-ms
[2010.06.01 18:32:21 | 000,524,288 | -HS- | C] () -- C:\Users\Alex\NTUSER.DAT{6cced2f1-6e01-11de-8bed-001e0bcd1824}.TMContainer00000000000000000001.regtrans-ms
[2010.06.01 18:32:21 | 000,262,144 | -HS- | C] () -- C:\Users\Alex\ntuser.dat.LOG1
[2010.06.01 18:32:21 | 000,065,536 | -HS- | C] () -- C:\Users\Alex\NTUSER.DAT{6cced2f1-6e01-11de-8bed-001e0bcd1824}.TM.blf
[2010.06.01 18:32:21 | 000,000,020 | -HS- | C] () -- C:\Users\Alex\ntuser.ini
[2010.06.01 18:32:21 | 000,000,000 | -HS- | C] () -- C:\Users\Alex\ntuser.dat.LOG2
[2010.06.01 18:32:20 | 002,097,152 | -HS- | C] () -- C:\Users\Alex\ntuser.dat
[2010.06.01 18:27:25 | 000,000,000 | ---- | C] () -- C:\Windows\ativpsrm.bin
[2010.06.01 18:24:49 | 2388,279,296 | -HS- | C] () -- C:\hiberfil.sys
[2009.07.14 01:51:43 | 000,073,728 | ---- | C] () -- C:\Windows\System32\BthpanContextHandler.dll
[2009.07.14 01:42:10 | 000,064,000 | ---- | C] () -- C:\Windows\System32\BWContextHandler.dll
[2005.05.06 19:06:00 | 000,016,480 | ---- | C] () -- C:\Windows\System32\rixdicon.dll
[2001.11.14 13:56:00 | 001,802,240 | ---- | C] () -- C:\Windows\System32\lcppn21.dll
< End of report >

Alt 13.06.2010, 15:08   #2
cosinus
/// Winkelfunktion
/// TB-Süch-Tiger™
 
wie findest du das bild - studivz 'wuaucld.exe' - Standard

wie findest du das bild - studivz 'wuaucld.exe'


http://www.trojaner-board.de/87077-v...scdvn-exe.html
__________________

__________________
 

Themen zu wie findest du das bild - studivz 'wuaucld.exe'
adobe, antivir, autorun, avgntflt.sys, avira, bho, bonjour, components, corp./icp, defender, desktop, explorer, firefox, fontcache, format, google, helper, hijack, installation, langs, location, logfile, media center, microsoft security, microsoft security essentials, mozilla, mozilla thunderbird, nvstor.sys, object, oldtimer, otl logfile, photoshop, plug-in, port, programdata, registry, safer networking, searchplugins, security, software, start menu, virus, webcheck, windows, wuaucld


« problem: iexplore.exe | Wie findest du dieses Bild? »


Ähnliche Themen: wie findest du das bild - studivz 'wuaucld.exe'


  1. studivz virus hey bist du das auf dem bild
    Plagegeister aller Art und deren Bekämpfung - 07.02.2011 (9)
  2. Trojaner über studivz-nachrichten "bist du das auf dem bild"
    Plagegeister aller Art und deren Bekämpfung - 05.01.2011 (4)
  3. Icq virus / wie findest du das bild... usw
    Plagegeister aller Art und deren Bekämpfung - 09.11.2010 (16)
  4. .scr datei via studivz PN empfangen
    Plagegeister aller Art und deren Bekämpfung - 13.09.2010 (16)
  5. ICQ Virus "Wie findest du das Bild?"
    Plagegeister aller Art und deren Bekämpfung - 23.06.2010 (9)
  6. icq virus "wie findest du das bild"
    Plagegeister aller Art und deren Bekämpfung - 20.06.2010 (23)
  7. wuaucld.exe bitte um schnelle Hilfe!
    Plagegeister aller Art und deren Bekämpfung - 20.06.2010 (22)
  8. Icq Viru: "Wie findest du das Bild:D"
    Plagegeister aller Art und deren Bekämpfung - 20.06.2010 (6)
  9. "Wie findest du dieses Bild"
    Plagegeister aller Art und deren Bekämpfung - 15.06.2010 (1)
  10. Msn/ICQ - Virus "Wie findest du dieses Bild" (winscdvn.exe)
    Plagegeister aller Art und deren Bekämpfung - 14.06.2010 (52)
  11. Wie findest du dieses Bild?
    Mülltonne - 13.06.2010 (1)
  12. Virus "Wie findest du dieses Bild" (winscdvn.exe)
    Plagegeister aller Art und deren Bekämpfung - 13.06.2010 (1)
  13. Trojaner über StudiVZ bekommen
    Plagegeister aller Art und deren Bekämpfung - 13.06.2010 (21)
  14. StudiVZ geht jährlich zum TÜV
    Nachrichten - 19.01.2010 (0)
  15. StudiVZ gibt Datenschutzversprechen
    Nachrichten - 28.07.2009 (0)
  16. Komische Werbung studivz
    Log-Analyse und Auswertung - 06.01.2009 (4)
Anleitungen und Tipps

- Für alle Hilfesuchenden! Was beachten?

- Anleitung: MyStartSearch.com entfernen

- Anleitung: WebSearches löschen

- Hilfe: iStartSurf entfernen – so gehts!

- Anleitung: Omiga Plus richtig entfernen

- Browser Viren entfernen


Zum Thema wie findest du das bild - studivz 'wuaucld.exe' - Hallo, habe mich dümmlicherweise auch mit dem Virus infiziert nachdem ich meine Platte platt gemacht habe und in der annahme war java fehlt noch. Die wuaucld.exe hat Avira seit dem - wie findest du das bild - studivz 'wuaucld.exe'...
Archiv
Du betrachtest: wie findest du das bild - studivz 'wuaucld.exe' auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130 131