| |
| |||||||
Plagegeister aller Art und deren Bekämpfung: svchost.exe*32 greift auf das Internet zu, und stellt Verbindungen herWindows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen. |
 |
20.10.2010, 09:22
| #1 |
 |  svchost.exe*32 greift auf das Internet zu, und stellt Verbindungen her Hallo, ich habe ein großes Problem. Vor einigen Tagen bemerkte ich das sich eine svchost.exe*32 sich ins system rein schleichte (svchost.exe*32\SysWOW64) ! Im Resourcenmonitor unter Netzwerk bemerkte ich seltsame Verbindung (einmal aus Deutschland t-dial... und gestern aus polel (hostadressen) Mit meinem Netspeedmonitor konnte ich erkennen das ich irgendwelche Daten von mir abgerufen wurden, ich hoffe der Hacker hat keine persönlichen Sachen ausgespäht. Den Prozess bekomme ich auch nicht beendet, startet sich sofort wieder. Ich habe einen FullScan mit Anti Avira 20 gemacht und keinen Fund HiJackthis Logfile: Code:
ATTFilter Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 10:21:16, on 20.10.2010 Platform: Windows 7 (WinNT 6.00.3504) MSIE: Internet Explorer v9.00 (9.00.7930.16406) Boot mode: Normal Running processes: D:\Program Files\Fraps\fraps.exe C:\Program Files (x86)\RivaTuner v2.24 MSI Master Overclocking Arena 2009 edition\Tools\RTSS\RTSS.exe C:\Program Files (x86)\RivaTuner v2.24 MSI Master Overclocking Arena 2009 edition\RivaTuner.exe C:\Program Files (x86)\Mozilla Firefox\firefox.exe C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe C:\Users\Waldi\Downloads\HiJackThis204.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://go.microsoft.com/fwlink/?LinkId=69157 R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = F2 - REG:system.ini: UserInit=userinit.exe O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\Microsoft Office\Office14\URLREDIR.DLL O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll O4 - HKLM\..\Run: [RTSS] "C:\Program Files (x86)\RivaTuner v2.24 MSI Master Overclocking Arena 2009 edition\Tools\RTSS\RTSSWrapper.exe" /s O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun O4 - HKLM\..\Run: [avgnt] "C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe" /min O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOKALER DIENST') O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOKALER DIENST') O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETZWERKDIENST') O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETZWERKDIENST') O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL O23 - Service: Andrea ADI Filters Service (AEADIFilters) - Unknown owner - C:\Windows\system32\AEADISRV.EXE (file missing) O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing) O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing) O23 - Service: Avira AntiVir Planer (AntiVirSchedulerService) - Avira GmbH - C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe O23 - Service: Avira AntiVir Guard (AntiVirService) - Avira GmbH - C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing) O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing) O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: KMService - Unknown owner - C:\Windows\system32\srvany.exe O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing) O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: RadeonPro Support Service - Mr. John aka japamd - C:\Program Files (x86)\RadeonPro\RadeonProSupport.exe O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing) O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing) O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing) O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing) O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing) O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing) O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing) O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing) O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing) -- End of file - 6136 bytes Malwarebytes' Anti-Malware 1.46 www.malwarebytes.org Datenbank Version: 4888 Windows 6.1.7600 Internet Explorer 9.0.7930.16406 20.10.2010 10:57:46 mbam-log-2010-10-20 (10-57-46).txt Art des Suchlaufs: Vollständiger Suchlauf (C:\|D:\|L:\|) Durchsuchte Objekte: 305930 Laufzeit: 28 Minute(n), 23 Sekunde(n) Infizierte Speicherprozesse: 1 Infizierte Speichermodule: 0 Infizierte Registrierungsschlüssel: 0 Infizierte Registrierungswerte: 0 Infizierte Dateiobjekte der Registrierung: 0 Infizierte Verzeichnisse: 0 Infizierte Dateien: 2 Infizierte Speicherprozesse: C:\Windows\KMService.exe (RiskWare.Tool.CK) -> Unloaded process successfully. Infizierte Speichermodule: (Keine bösartigen Objekte gefunden) Infizierte Registrierungsschlüssel: (Keine bösartigen Objekte gefunden) Infizierte Registrierungswerte: (Keine bösartigen Objekte gefunden) Infizierte Dateiobjekte der Registrierung: (Keine bösartigen Objekte gefunden) Infizierte Verzeichnisse: (Keine bösartigen Objekte gefunden) Infizierte Dateien: C:\Windows\KMService.exe (RiskWare.Tool.CK) -> Quarantined and deleted successfully. Geändert von sill (20.10.2010 um 09:58 Uhr) |
|
20.10.2010, 10:33
| #2 |
| |  svchost.exe*32 greift auf das Internet zu, und stellt Verbindungen her Sorry für Doppelpost, war keine Absicht
__________________  OTL Logfile: Code:
ATTFilter OTL logfile created on: 20.10.2010 11:00:49 - Run 1 OTL by OldTimer - Version 3.2.16.0 Folder = C:\Users\***\Desktop 64bit- Ultimate Edition (Version = 6.1.7600) - Type = NTWorkstation Internet Explorer (Version = 9.0.7930.16406) Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy 2,00 Gb Total Physical Memory | 1,00 Gb Available Physical Memory | 27,00% Memory free 4,00 Gb Paging File | 2,00 Gb Available in Paging File | 51,00% Paging File free Paging file location(s): ?:\pagefile.sys [binary data] %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86) Drive C: | 72,27 Gb Total Space | 51,20 Gb Free Space | 70,85% Space Free | Partition Type: NTFS Drive D: | 523,90 Gb Total Space | 90,03 Gb Free Space | 17,18% Space Free | Partition Type: NTFS Drive L: | 596,16 Gb Total Space | 372,83 Gb Free Space | 62,54% Space Free | Partition Type: NTFS Computer Name: ***** | User Name: *** | Logged in as Administrator. Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days ========== Processes (SafeList) ========== PRC - C:\Users\***\Desktop\OTL.exe (OldTimer Tools) PRC - C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation) PRC - C:\Program Files (x86)\RadeonPro\RadeonProSupport.exe (Mr. John aka japamd) PRC - C:\Windows\SysWOW64\PnkBstrA.exe () PRC - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe (Malwarebytes Corporation) PRC - C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe (Avira GmbH) PRC - C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe (Avira GmbH) PRC - C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe (Avira GmbH) PRC - D:\Program Files\Fraps\fraps.exe (Beepa P/L) PRC - C:\Program Files (x86)\RivaTuner v2.24 MSI Master Overclocking Arena 2009 edition\RivaTuner.exe () PRC - C:\Program Files (x86)\RivaTuner v2.24 MSI Master Overclocking Arena 2009 edition\Tools\RTSS\RTSS.exe () PRC - C:\Windows\SysWOW64\srvany.exe () ========== Modules (SafeList) ========== MOD - C:\Users\*****\Desktop\OTL.exe (OldTimer Tools) MOD - C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd\comctl32.dll (Microsoft Corporation) MOD - D:\Program Files\Fraps\fraps.dll (Beepa P/L) MOD - C:\Program Files (x86)\RivaTuner v2.24 MSI Master Overclocking Arena 2009 edition\Tools\RTSS\RTSSHooks.dll () ========== Win32 Services (SafeList) ========== SRV:64bit: - (PnkBstrA) -- C:\Windows\SysNative\PnkBstrA.exe File not found SRV:64bit: - (KMService) -- C:\Windows\SysNative\srvany.exe File not found SRV:64bit: - (AEADIFilters) -- C:\Windows\SysNative\AEADISRV.EXE (Andrea Electronics Corporation) SRV:64bit: - (AMD External Events Utility) -- C:\Windows\SysNative\atiesrxx.exe (AMD) SRV:64bit: - (AppMgmt) -- C:\Windows\SysNative\appmgmts.dll (Microsoft Corporation) SRV - (Akamai) -- C:/Program Files (x86)/Common Files/Akamai/netsession_win_062a651.dll () SRV - (RadeonPro Support Service) -- C:\Program Files (x86)\RadeonPro\RadeonProSupport.exe (Mr. John aka japamd) SRV - (PnkBstrA) -- C:\Windows\SysWOW64\PnkBstrA.exe () SRV - (Steam Client Service) -- C:\Program Files (x86)\Common Files\Steam\SteamService.exe (Valve Corporation) SRV - (AntiVirService) -- C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe (Avira GmbH) SRV - (AntiVirSchedulerService) -- C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe (Avira GmbH) SRV - (clr_optimization_v2.0.50727_32) -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe (Microsoft Corporation) SRV - (KMService) -- C:\Windows\SysWOW64\srvany.exe () ========== Driver Services (SafeList) ========== DRV:64bit: - (MBfilt) -- C:\Windows\SysNative\drivers\MBfilt64.sys File not found DRV:64bit: - (atksgt) -- C:\Windows\SysNative\drivers\atksgt.sys () DRV:64bit: - (lirsgt) -- C:\Windows\SysNative\drivers\lirsgt.sys () DRV:64bit: - (ADIHdAudAddService) -- C:\Windows\SysNative\drivers\ADIHdAud.sys (Analog Devices, Inc.) DRV:64bit: - (sptd) -- C:\Windows\SysNative\drivers\sptd.sys () DRV:64bit: - (amdkmdag) -- C:\Windows\SysNative\drivers\atikmdag.sys (ATI Technologies Inc.) DRV:64bit: - (amdkmdap) -- C:\Windows\SysNative\drivers\atikmpag.sys (Advanced Micro Devices, Inc.) DRV:64bit: - (AtiHdmiService) -- C:\Windows\SysNative\drivers\AtiHdmi.sys (ATI Technologies, Inc.) DRV:64bit: - (avipbb) -- C:\Windows\SysNative\drivers\avipbb.sys (Avira GmbH) DRV:64bit: - (avgntflt) -- C:\Windows\SysNative\drivers\avgntflt.sys (Avira GmbH) DRV:64bit: - (yukonw7) -- C:\Windows\SysNative\drivers\yk62x64.sys (Marvell) DRV:64bit: - (amdsata) -- C:\Windows\SysNative\drivers\amdsata.sys (Advanced Micro Devices) DRV:64bit: - (amdxata) -- C:\Windows\SysNative\drivers\amdxata.sys (Advanced Micro Devices) DRV:64bit: - (amdsbs) -- C:\Windows\SysNative\drivers\amdsbs.sys (AMD Technologies Inc.) DRV:64bit: - (LSI_SAS2) -- C:\Windows\SysNative\drivers\lsi_sas2.sys (LSI Corporation) DRV:64bit: - (HpSAMD) -- C:\Windows\SysNative\drivers\HpSAMD.sys (Hewlett-Packard Company) DRV:64bit: - (stexstor) -- C:\Windows\SysNative\drivers\stexstor.sys (Promise Technology) DRV:64bit: - (xnacc) -- C:\Windows\SysNative\drivers\xnacc.sys (Microsoft Corporation) DRV:64bit: - (Dot4Scan) -- C:\Windows\SysNative\drivers\Dot4Scan.sys (Microsoft Corporation) DRV:64bit: - (Ntfs) -- C:\Windows\SysNative\wbem\ntfs.mof () DRV:64bit: - (ebdrv) -- C:\Windows\SysNative\drivers\evbda.sys (Broadcom Corporation) DRV:64bit: - (b06bdrv) -- C:\Windows\SysNative\drivers\bxvbda.sys (Broadcom Corporation) DRV:64bit: - (b57nd60a) -- C:\Windows\SysNative\drivers\b57nd60a.sys (Broadcom Corporation) DRV:64bit: - (hcw85cir) -- C:\Windows\SysNative\drivers\hcw85cir.sys (Hauppauge Computer Works, Inc.) DRV:64bit: - (se64a) -- C:\Windows\SysNative\drivers\se64a.sys (EnTech Taiwan) DRV:64bit: - (PStrip64) -- C:\Windows\SysNative\drivers\pstrip64.sys () DRV - (RivaTuner64) -- C:\Program Files (x86)\RivaTuner v2.24 MSI Master Overclocking Arena 2009 edition\RivaTuner64.sys () ========== Standard Registry (SafeList) ========== ========== Internet Explorer ========== IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = MSN, Messenger und Hotmail sowie Nachrichten, Unterhaltung, Video, Sport, Lifestyle, Finanzen, Auto uvm. bei MSN IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de-DE IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 20 D8 AC 3B CF 6E CB 01 [binary data] IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 ========== FireFox ========== FF - prefs.js..browser.search.useDBForOrder: true FF - prefs.js..browser.startup.homepage: "www.t-online.de" FF - HKLM\software\mozilla\Mozilla Firefox 3.6.11\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2010.10.20 01:54:12 | 000,000,000 | ---D | M] FF - HKLM\software\mozilla\Mozilla Firefox 3.6.11\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins [2010.10.20 01:54:12 | 000,000,000 | ---D | M] [2010.10.08 14:31:38 | 000,000,000 | ---D | M] -- C:\Users\*****\AppData\Roaming\mozilla\Extensions [2010.10.08 14:31:38 | 000,000,000 | ---D | M] -- C:\Users\*****\AppData\Roaming\mozilla\Firefox\Profiles\1j7fpsvq.default\extensions [2010.09.30 11:33:37 | 000,002,698 | ---- | M] () -- C:\Users\*****\AppData\Roaming\Mozilla\FireFox\Profiles\1j7fpsvq.default\searchplugins\twitter.xml [2010.10.08 14:31:34 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\mozilla firefox\extensions [2010.08.25 02:44:54 | 000,001,392 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\amazondotcom-de.xml [2010.08.25 02:44:54 | 000,002,344 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\eBay-de.xml [2010.08.25 02:44:54 | 000,006,805 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\leo_ende_de.xml [2010.08.25 02:44:54 | 000,001,178 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\wikipedia-de.xml [2010.08.25 02:44:54 | 000,001,105 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\yahoo-de.xml O1 HOSTS File: ([2010.10.20 01:50:08 | 000,000,894 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts O1 - Hosts: 127.0.0.1 download.qip.ru O1 - Hosts: 127.0.0.1 validation.sls.microsoft.com O2:64bit: - BHO: (Office Document Cache Handler) - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Programme\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation) O2 - BHO: (Office Document Cache Handler) - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation) O4:64bit: - HKLM..\Run: [NVRaidService] C:\Windows\SysNative\nvraidservice.exe (NVIDIA Corporation) O4:64bit: - HKLM..\Run: [RivaTuner] C:\Program Files (x86)\RivaTuner v2.24 MSI Master Overclocking Arena 2009 edition\RivaTunerWrapper.exe () O4:64bit: - HKLM..\Run: [RivaTunerStartupDaemon] C:\Program Files (x86)\RivaTuner v2.24 MSI Master Overclocking Arena 2009 edition\RivaTunerWrapper.exe () O4 - HKLM..\Run: [avgnt] C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe (Avira GmbH) O4 - HKLM..\Run: [RTSS] C:\Program Files (x86)\RivaTuner v2.24 MSI Master Overclocking Arena 2009 edition\Tools\RTSS\RTSSWrapper.exe () O4 - HKLM..\Run: [StartCCC] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.) O4 - HKLM..\RunOnce: [Malwarebytes' Anti-Malware] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation) O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 0 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0 O13 - gopher Prefix: missing O13 - gopher Prefix: missing O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_21-windows-i586.cab (Java Plug-in 1.6.0_21) O16 - DPF: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_21-windows-i586.cab (Java Plug-in 1.6.0_21) O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_21-windows-i586.cab (Java Plug-in 1.6.0_21) O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.2.1 O18:64bit: - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Programme\Common Files\Microsoft Shared\Help\hxds.dll (Microsoft Corporation) O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - Reg Error: Key error. File not found O18:64bit: - Protocol\Filter\text/xml {807573E5-5146-11D5-A672-00B0D022E945} - C:\Programme\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL (Microsoft Corporation) O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation) O20:64bit: - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\SysNative\SystemPropertiesPerformance.exe (Microsoft Corporation) O20:64bit: - HKLM Winlogon: VMApplet - (/pagefile) - File not found O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation) O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found. O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found. O32 - HKLM CDRom: AutoRun - 1 O34 - HKLM BootExecute: (autocheck autochk *) - File not found O35:64bit: - HKLM\..comfile [open] -- "%1" %* O35:64bit: - HKLM\..exefile [open] -- "%1" %* O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %* O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* ========== Files/Folders - Created Within 30 Days ========== [2010.10.20 10:59:55 | 000,575,488 | ---- | C] (OldTimer Tools) -- C:\Users\Waldi\Desktop\OTL.exe [2010.10.20 10:47:31 | 000,000,000 | ---D | C] -- C:\Users\*****\AppData\Roaming\Avira [2010.10.20 10:25:44 | 000,000,000 | ---D | C] -- C:\Users\*****\AppData\Roaming\Malwarebytes [2010.10.20 10:25:39 | 000,038,224 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\SysWow64\drivers\mbamswissarmy.sys [2010.10.20 10:25:37 | 000,024,664 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\SysNative\drivers\mbam.sys [2010.10.20 10:25:37 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware [2010.10.20 10:25:37 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes [2010.10.20 10:06:47 | 000,116,568 | ---- | C] (Avira GmbH) -- C:\Windows\SysNative\drivers\avipbb.sys [2010.10.20 10:06:47 | 000,081,072 | ---- | C] (Avira GmbH) -- C:\Windows\SysNative\drivers\avgntflt.sys [2010.10.20 10:06:47 | 000,051,992 | ---- | C] (AVIRA GmbH) -- C:\Windows\SysWow64\drivers\avgntdd.sys [2010.10.20 10:06:47 | 000,017,016 | ---- | C] (AVIRA GmbH) -- C:\Windows\SysWow64\drivers\avgntmgr.sys [2010.10.20 10:06:47 | 000,000,000 | ---D | C] -- C:\ProgramData\Avira [2010.10.20 10:06:47 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Avira [2010.10.20 01:58:28 | 000,483,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\StructuredQuery.dll [2010.10.20 01:58:27 | 000,633,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\comctl32.dll [2010.10.20 01:58:26 | 002,085,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ole32.dll [2010.10.20 01:58:25 | 000,954,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfc40.dll [2010.10.20 01:58:25 | 000,954,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfc40u.dll [2010.10.20 01:58:16 | 000,148,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\t2embed.dll [2010.10.20 01:58:16 | 000,109,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\t2embed.dll [2010.10.20 01:58:16 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\sscore.dll [2010.10.18 16:13:04 | 003,695,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieapfltr.dat [2010.10.18 16:13:04 | 001,633,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript9.dll [2010.10.18 16:13:04 | 001,502,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\inetcpl.cpl [2010.10.18 16:13:04 | 001,448,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\inetcpl.cpl [2010.10.18 16:13:04 | 001,355,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\jscript9.dll [2010.10.18 16:13:04 | 000,819,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript.dll [2010.10.18 16:13:04 | 000,719,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\jscript.dll [2010.10.18 16:13:04 | 000,690,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msfeeds.dll [2010.10.18 16:13:04 | 000,596,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msfeeds.dll [2010.10.18 16:13:04 | 000,545,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieapfltr.dll [2010.10.18 16:13:04 | 000,532,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dxtmsft.dll [2010.10.18 16:13:04 | 000,448,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\html.iec [2010.10.18 16:13:04 | 000,367,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\html.iec [2010.10.18 16:13:04 | 000,353,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dxtmsft.dll [2010.10.18 16:13:04 | 000,313,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dxtrans.dll [2010.10.18 16:13:04 | 000,263,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieaksie.dll [2010.10.18 16:13:04 | 000,242,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieui.dll [2010.10.18 16:13:04 | 000,227,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieaksie.dll [2010.10.18 16:13:04 | 000,223,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dxtrans.dll [2010.10.18 16:13:04 | 000,193,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ie4uinit.exe [2010.10.18 16:13:04 | 000,176,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieui.dll [2010.10.18 16:13:04 | 000,173,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieUnatt.exe [2010.10.18 16:13:04 | 000,165,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iexpress.exe [2010.10.18 16:13:04 | 000,163,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieakui.dll [2010.10.18 16:13:04 | 000,163,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieakui.dll [2010.10.18 16:13:04 | 000,157,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieakeng.dll [2010.10.18 16:13:04 | 000,150,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iexpress.exe [2010.10.18 16:13:04 | 000,147,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iepeers.dll [2010.10.18 16:13:04 | 000,142,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieUnatt.exe [2010.10.18 16:13:04 | 000,136,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iesysprep.dll [2010.10.18 16:13:04 | 000,133,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\IEAdvpack.dll [2010.10.18 16:13:04 | 000,130,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieakeng.dll [2010.10.18 16:13:04 | 000,114,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iesysprep.dll [2010.10.18 16:13:04 | 000,111,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iepeers.dll [2010.10.18 16:13:04 | 000,110,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\IEAdvpack.dll [2010.10.18 16:13:04 | 000,102,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\inseng.dll [2010.10.18 16:13:04 | 000,093,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ie4uinit.exe [2010.10.18 16:13:04 | 000,085,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iesetup.dll [2010.10.18 16:13:04 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\icardie.dll [2010.10.18 16:13:04 | 000,080,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\inseng.dll [2010.10.18 16:13:04 | 000,075,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iesetup.dll [2010.10.18 16:13:04 | 000,060,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\admparse.dll [2010.10.18 16:13:04 | 000,059,392 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\icardie.dll [2010.10.18 16:13:04 | 000,051,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\admparse.dll [2010.10.18 16:13:04 | 000,049,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\imgutil.dll [2010.10.18 16:13:04 | 000,039,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iernonce.dll [2010.10.18 16:13:04 | 000,033,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\imgutil.dll [2010.10.18 16:13:04 | 000,032,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iernonce.dll [2010.10.18 16:13:04 | 000,027,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\licmgr10.dll [2010.10.18 16:13:04 | 000,023,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\licmgr10.dll [2010.10.18 16:13:04 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mshta.exe [2010.10.18 16:13:04 | 000,010,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msfeedssync.exe [2010.10.18 16:13:04 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msfeedssync.exe [2010.10.18 16:13:03 | 003,695,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieapfltr.dat [2010.10.18 16:13:03 | 000,601,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\vbscript.dll [2010.10.18 16:13:03 | 000,441,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieapfltr.dll [2010.10.18 16:13:03 | 000,215,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msls31.dll [2010.10.18 16:13:03 | 000,197,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msrating.dll [2010.10.18 16:13:03 | 000,166,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msrating.dll [2010.10.18 16:13:03 | 000,160,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msls31.dll [2010.10.18 16:13:03 | 000,159,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wextract.exe [2010.10.18 16:13:03 | 000,149,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wextract.exe [2010.10.18 16:13:03 | 000,147,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\occache.dll [2010.10.18 16:13:03 | 000,128,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\occache.dll [2010.10.18 16:13:03 | 000,112,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\url.dll [2010.10.18 16:13:03 | 000,109,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\url.dll [2010.10.18 16:13:03 | 000,097,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mshtmled.dll [2010.10.18 16:13:03 | 000,093,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SetIEInstalledDate.exe [2010.10.18 16:13:03 | 000,090,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\RegisterIEPKEYs.exe [2010.10.18 16:13:03 | 000,076,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\tdc.ocx [2010.10.18 16:13:03 | 000,076,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\SetIEInstalledDate.exe [2010.10.18 16:13:03 | 000,074,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\RegisterIEPKEYs.exe [2010.10.18 16:13:03 | 000,067,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmled.dll [2010.10.18 16:13:03 | 000,065,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\pngfilt.dll [2010.10.18 16:13:03 | 000,063,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\tdc.ocx [2010.10.18 16:13:03 | 000,049,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\pngfilt.dll [2010.10.18 16:13:03 | 000,048,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmler.dll [2010.10.18 16:13:03 | 000,048,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mshtmler.dll [2010.10.18 16:12:47 | 004,068,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mf.dll [2010.10.18 16:12:47 | 003,181,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mf.dll [2010.10.18 16:12:47 | 001,888,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WMVDECOD.DLL [2010.10.18 16:12:47 | 001,619,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\WMVDECOD.DLL [2010.10.18 16:12:47 | 000,257,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mfreadwrite.dll [2010.10.18 16:12:47 | 000,206,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mfps.dll [2010.10.18 16:12:47 | 000,196,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfreadwrite.dll [2010.10.18 16:12:32 | 001,844,224 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3d10warp.dll [2010.10.18 16:12:32 | 001,543,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\DWrite.dll [2010.10.18 16:12:32 | 001,172,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3d10warp.dll [2010.10.18 16:12:32 | 001,076,224 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\DWrite.dll [2010.10.18 16:12:32 | 000,899,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d2d1.dll [2010.10.18 16:12:32 | 000,737,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d2d1.dll [2010.10.18 16:12:32 | 000,320,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3d10_1core.dll [2010.10.18 16:12:32 | 000,218,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3d10_1core.dll [2010.10.18 16:12:18 | 000,466,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XpsGdiConverter.dll [2010.10.18 16:12:18 | 000,279,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XpsGdiConverter.dll [2010.10.18 16:12:18 | 000,229,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XpsRasterService.dll [2010.10.18 16:12:18 | 000,135,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XpsRasterService.dll [2010.10.18 16:11:57 | 001,863,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ExplorerFrame.dll [2010.10.18 16:11:57 | 001,495,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ExplorerFrame.dll [2010.10.18 15:55:31 | 000,000,000 | ---D | C] -- C:\Users\*****\AppData\Local\Rockstar Games [2010.10.18 15:24:08 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\softMCCS [2010.10.18 14:03:23 | 000,178,800 | ---- | C] (Sony DADC Austria AG.) -- C:\Windows\SysWow64\CmdLineExt_x64.dll [2010.10.18 14:02:25 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\xlive [2010.10.18 14:02:25 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Games for Windows - LIVE [2010.10.15 13:42:58 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Akamai [2010.10.15 11:08:27 | 001,053,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfc71u.dll [2010.10.15 11:08:27 | 000,771,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msvcr100_clr0400.dll [2010.10.15 11:08:27 | 000,722,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\vb40032.dll [2010.10.15 11:08:27 | 000,487,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msvcp70.dll [2010.10.15 11:08:27 | 000,339,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msvcr70.dll [2010.10.15 11:08:27 | 000,200,704 | ---- | C] (The OpenSSL Project, OpenSSL: The Open Source toolkit for SSL/TLS) -- C:\Windows\SysWow64\ssleay32.dll [2010.10.15 11:08:27 | 000,090,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\atl71.dll [2010.10.15 11:08:27 | 000,054,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msvci70.dll [2010.10.15 11:08:26 | 002,887,680 | ---- | C] (Intel Corporation) -- C:\Windows\SysWow64\libmmd.dll [2010.10.15 11:08:26 | 001,872,666 | ---- | C] (Red Hat) -- C:\Windows\SysWow64\cygwin1.dll [2010.10.15 11:08:26 | 001,024,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfc70.dll [2010.10.15 11:08:26 | 001,017,344 | ---- | C] (The OpenSSL Project, OpenSSL: The Open Source toolkit for SSL/TLS) -- C:\Windows\SysWow64\libeay32.dll [2010.10.15 11:08:26 | 001,017,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfc70u.dll [2010.10.15 11:08:26 | 000,935,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\System\vb40016.dll [2010.10.15 11:08:26 | 000,898,048 | ---- | C] (GNU <www.gnu.org>) -- C:\Windows\SysWow64\libiconv2.dll [2010.10.15 11:08:26 | 000,799,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msdia100.dll [2010.10.15 11:08:26 | 000,398,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\System\vbrun300.dll [2010.10.15 11:08:26 | 000,356,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\System\vbrun200.dll [2010.10.15 11:08:26 | 000,189,440 | ---- | C] (The OpenSSL Project, OpenSSL: The Open Source toolkit for SSL/TLS) -- C:\Windows\SysWow64\libssl32.dll [2010.10.15 11:08:26 | 000,101,888 | ---- | C] (GNU <www.gnu.org>) -- C:\Windows\SysWow64\libintl3.dll [2010.10.15 11:08:26 | 000,086,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\atl70.dll [2010.10.15 11:08:26 | 000,065,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfc71DEU.dll [2010.10.15 11:08:26 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfc71ITA.dll [2010.10.15 11:08:26 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfc71FRA.dll [2010.10.15 11:08:26 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfc71ESP.dll [2010.10.15 11:08:26 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfc70ITA.dll [2010.10.15 11:08:26 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfc70FRA.dll [2010.10.15 11:08:26 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfc70ESP.dll [2010.10.15 11:08:26 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfc70DEU.dll [2010.10.15 11:08:26 | 000,057,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfc71ENU.dll [2010.10.15 11:08:26 | 000,057,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfc70ENU.dll [2010.10.15 11:08:26 | 000,049,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfc71KOR.dll [2010.10.15 11:08:26 | 000,049,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfc71JPN.dll [2010.10.15 11:08:26 | 000,049,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfc70KOR.dll [2010.10.15 11:08:26 | 000,049,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfc70JPN.dll [2010.10.15 11:08:26 | 000,045,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfc71CHT.dll [2010.10.15 11:08:26 | 000,045,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfc70CHT.dll [2010.10.15 11:08:26 | 000,040,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfc71CHS.dll [2010.10.15 11:08:26 | 000,040,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfc70CHS.dll [2010.10.15 11:08:26 | 000,032,768 | ---- | C] (Adobe Systems, Inc.) -- C:\Windows\System\plugin.dll [2010.10.15 11:08:25 | 001,069,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mscomctl.ocx [2010.10.15 11:08:25 | 001,066,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mscomctl32.ocx [2010.10.15 11:08:25 | 000,659,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mscomct2.ocx [2010.10.15 11:08:25 | 000,614,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\comctl32.ocx [2010.10.15 11:08:25 | 000,443,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\MShflxgd.ocx [2010.10.15 11:08:25 | 000,415,552 | ---- | C] (Microsoft Corporation ) -- C:\Windows\SysWow64\comct332.ocx [2010.10.15 11:08:25 | 000,317,320 | ---- | C] (AutoIt Team) -- C:\Windows\SysWow64\AutoItX3.dll [2010.10.15 11:08:25 | 000,278,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msdatgrd.ocx [2010.10.15 11:08:25 | 000,258,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msflxgrd.ocx [2010.10.15 11:08:25 | 000,252,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msdatlst.ocx [2010.10.15 11:08:25 | 000,222,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dblist32.ocx [2010.10.15 11:08:25 | 000,221,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\tabctl32.ocx [2010.10.15 11:08:25 | 000,218,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\richtx32.ocx [2010.10.15 11:08:25 | 000,215,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mci32.ocx [2010.10.15 11:08:25 | 000,178,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msmask32.ocx [2010.10.15 11:08:25 | 000,170,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\comct232.ocx [2010.10.15 11:08:25 | 000,155,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\comdlg32.ocx [2010.10.15 11:08:25 | 000,136,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msinet.ocx [2010.10.15 11:08:25 | 000,129,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msstdfmt.dll [2010.10.15 11:08:25 | 000,127,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mswinsck.ocx [2010.10.15 11:08:25 | 000,119,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mscomm32.ocx [2010.10.15 11:08:25 | 000,107,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msstkprp.dll [2010.10.15 11:08:25 | 000,100,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\picclp32.ocx [2010.10.15 11:08:25 | 000,080,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\sysinfo.ocx [2010.10.14 21:30:56 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Xilisoft [2010.10.14 20:45:49 | 000,000,000 | ---D | C] -- D:\Eigene Dateien\Documents\ArcaniA - Gothic 4 [2010.10.13 14:44:36 | 000,000,000 | ---D | C] -- D:\Eigene Dateien\Documents\RadeonPro Benchmarks [2010.10.13 14:44:34 | 000,000,000 | ---D | C] -- C:\Users\*****\AppData\Roaming\RadeonPro [2010.10.13 14:43:43 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\RadeonPro [2010.10.09 14:22:23 | 000,014,032 | ---- | C] (EnTech Taiwan) -- C:\Windows\SysNative\drivers\se64a.sys [2010.10.09 14:22:23 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\MonInfo [2010.10.09 13:04:46 | 000,000,000 | ---D | C] -- C:\Users\Waldi\AppData\Roaming\TuneUp Software [2010.10.09 13:04:46 | 000,000,000 | ---D | C] -- C:\ProgramData\TuneUp Software [2010.10.08 14:31:33 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Mozilla Firefox [2010.10.07 12:30:31 | 000,119,808 | ---- | C] (SEIKO EPSON CORPORATION) -- C:\Windows\SysNative\E_ILMAEE.DLL [2010.10.07 12:30:31 | 000,086,528 | ---- | C] (SEIKO EPSON CORPORATION) -- C:\Windows\SysNative\E_IBCBAEE.DLL [2010.10.07 12:30:31 | 000,008,704 | ---- | C] (SEIKO EPSON CORP.) -- C:\Windows\SysNative\E_GCINST.DLL [2010.10.07 12:30:23 | 000,000,000 | ---D | C] -- C:\ProgramData\EPSON [2010.10.07 12:24:05 | 000,000,000 | ---D | C] -- C:\Users\*****i\AppData\Roaming\EPSON [2010.10.07 12:17:41 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\epson [2010.10.07 12:17:40 | 000,093,184 | ---- | C] (SEIKO EPSON CORP.) -- C:\Windows\SysNative\esxcwiad.dll [2010.10.04 14:07:52 | 000,000,000 | ---D | C] -- C:\Users\Waldi\AppData\Roaming\FIFA 11 [2010.10.02 21:21:46 | 000,000,000 | ---D | C] -- C:\Windows\pss [2010.10.02 02:27:11 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\PowerStrip [2010.10.01 13:45:15 | 000,000,000 | ---D | C] -- C:\ProgramData\ATI [2010.10.01 13:43:27 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\ATI Technologies [2010.10.01 13:43:25 | 020,736,000 | ---- | C] (Advanced Micro Devices, Inc.) -- C:\Windows\SysNative\atio6axx.dll [2010.10.01 13:43:25 | 015,830,016 | ---- | C] (Advanced Micro Devices, Inc.) -- C:\Windows\SysWow64\atioglxx.dll [2010.10.01 13:43:25 | 007,767,040 | ---- | C] (ATI Technologies Inc.) -- C:\Windows\SysNative\drivers\atikmdag.sys [2010.10.01 13:43:25 | 005,425,664 | ---- | C] (Advanced Micro Devices Inc.) -- C:\Windows\SysNative\aticaldd64.dll [2010.10.01 13:43:25 | 005,202,944 | ---- | C] (ATI Technologies Inc. ) -- C:\Windows\SysNative\atiumd64.dll [2010.10.01 13:43:25 | 004,602,880 | ---- | C] (ATI Technologies Inc. ) -- C:\Windows\SysNative\atidxx64.dll [2010.10.01 13:43:25 | 004,375,552 | ---- | C] (Advanced Micro Devices Inc.) -- C:\Windows\SysWow64\aticaldd.dll [2010.10.01 13:43:25 | 004,032,512 | ---- | C] (ATI Technologies Inc. ) -- C:\Windows\SysWow64\atiumdag.dll [2010.10.01 13:43:25 | 003,914,240 | ---- | C] (ATI Technologies Inc. ) -- C:\Windows\SysWow64\atidxx32.dll [2010.10.01 13:43:25 | 003,392,000 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysWow64\atiumdva.dll [2010.10.01 13:43:25 | 003,147,264 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysNative\atiumd6a.dll [2010.10.01 13:43:25 | 000,616,960 | ---- | C] (ATI Technologies Inc. ) -- C:\Windows\SysNative\aticfx64.dll [2010.10.01 13:43:25 | 000,528,384 | ---- | C] (ATI Technologies Inc. ) -- C:\Windows\SysWow64\aticfx32.dll [2010.10.01 13:43:25 | 000,462,336 | ---- | C] (AMD) -- C:\Windows\SysNative\atieclxx.exe [2010.10.01 13:43:25 | 000,450,560 | ---- | C] (Advanced Micro Devices, Inc.) -- C:\Windows\SysNative\ATIDEMGX.dll [2010.10.01 13:43:25 | 000,421,376 | ---- | C] (ATI Technologies, Inc.) -- C:\Windows\SysNative\atipdl64.dll [2010.10.01 13:43:25 | 000,356,352 | ---- | C] (ATI Technologies, Inc.) -- C:\Windows\SysWow64\atipdlxx.dll [2010.10.01 13:43:25 | 000,338,432 | ---- | C] (Advanced Micro Devices, Inc.) -- C:\Windows\SysNative\atiadlxx.dll [2010.10.01 13:43:25 | 000,279,040 | ---- | C] (Advanced Micro Devices, Inc.) -- C:\Windows\SysNative\drivers\atikmpag.sys [2010.10.01 13:43:25 | 000,278,528 | ---- | C] (ATI Technologies, Inc.) -- C:\Windows\SysWow64\Oemdspif.dll [2010.10.01 13:43:25 | 000,241,664 | ---- | C] (Advanced Micro Devices, Inc.) -- C:\Windows\SysWow64\atiadlxy.dll [2010.10.01 13:43:25 | 000,203,264 | ---- | C] (AMD) -- C:\Windows\SysNative\atiesrxx.exe [2010.10.01 13:43:25 | 000,143,360 | ---- | C] (Advanced Micro Devices, Inc.) -- C:\Windows\SysNative\atiapfxx.exe [2010.10.01 13:43:25 | 000,120,320 | ---- | C] (AMD) -- C:\Windows\SysNative\atitmm64.dll [2010.10.01 13:43:25 | 000,059,392 | ---- | C] (ATI Technologies, Inc.) -- C:\Windows\SysNative\atiedu64.dll [2010.10.01 13:43:25 | 000,057,344 | ---- | C] (AMD) -- C:\Windows\SysNative\coinst.dll [2010.10.01 13:43:25 | 000,053,760 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysNative\atimpc64.dll [2010.10.01 13:43:25 | 000,053,760 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysNative\amdpcom64.dll [2010.10.01 13:43:25 | 000,053,248 | ---- | C] (ATI Technologies Inc.) -- C:\Windows\SysNative\drivers\ati2erec.dll [2010.10.01 13:43:25 | 000,052,736 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysWow64\atimpc32.dll [2010.10.01 13:43:25 | 000,052,736 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysWow64\amdpcom32.dll [2010.10.01 13:43:25 | 000,051,200 | ---- | C] (Advanced Micro Devices Inc.) -- C:\Windows\SysNative\aticalrt64.dll [2010.10.01 13:43:25 | 000,046,080 | ---- | C] (Advanced Micro Devices Inc.) -- C:\Windows\SysWow64\aticalrt.dll [2010.10.01 13:43:25 | 000,044,544 | ---- | C] (Advanced Micro Devices Inc.) -- C:\Windows\SysNative\aticalcl64.dll [2010.10.01 13:43:25 | 000,044,032 | ---- | C] (Advanced Micro Devices Inc.) -- C:\Windows\SysWow64\aticalcl.dll [2010.10.01 13:43:25 | 000,043,520 | ---- | C] (ATI Technologies, Inc.) -- C:\Windows\SysWow64\ati2edxx.dll [2010.10.01 13:43:25 | 000,039,424 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysNative\atiuxp64.dll [2010.10.01 13:43:25 | 000,037,376 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysNative\atiu9p64.dll [2010.10.01 13:43:25 | 000,030,208 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysWow64\atiuxpag.dll [2010.10.01 13:43:25 | 000,028,160 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysWow64\atiu9pag.dll [2010.10.01 13:43:25 | 000,021,504 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysNative\atig6txx.dll [2010.10.01 13:43:25 | 000,019,968 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysWow64\atigktxx.dll [2010.10.01 13:43:25 | 000,014,848 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysNative\atig6pxx.dll [2010.10.01 13:43:25 | 000,012,800 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysWow64\atiglpxx.dll [2010.10.01 13:43:25 | 000,012,800 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysNative\atiglpxx.dll [2010.10.01 13:43:25 | 000,012,288 | ---- | C] (AMD) -- C:\Windows\SysNative\atimuixx.dll [2010.10.01 13:43:25 | 000,000,000 | ---D | C] -- C:\Programme\ATI [2010.10.01 13:42:57 | 000,000,000 | ---D | C] -- C:\Programme\ATI Technologies [2010.10.01 13:00:19 | 000,000,000 | ---D | C] -- C:\Users\*****\AppData\Local\2K Games [2010.10.01 12:59:59 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\NVIDIA Corporation [2010.09.30 11:41:39 | 000,000,000 | ---D | C] -- C:\ProgramData\KONAMI [2010.09.30 05:42:35 | 000,000,000 | ---D | C] -- C:\Users\Waldi\AppData\Roaming\Mozilla [2010.09.30 05:41:50 | 000,208,416 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\NvRaidServeres.dll [2010.09.30 05:41:50 | 000,207,904 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\NvRaidServerit.dll [2010.09.30 05:41:50 | 000,207,904 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\NvRaidServerde.dll [2010.09.30 05:41:50 | 000,207,392 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\NvRaidServerfr.dll [2010.09.30 05:41:50 | 000,206,880 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\NvRaidServerptb.dll [2010.09.30 05:41:50 | 000,206,880 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\NvRaidServernl.dll [2010.09.30 05:41:50 | 000,206,880 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\NvRaidServeresm.dll [2010.09.30 05:41:50 | 000,205,856 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\NvRaidServerru.dll [2010.09.30 05:41:50 | 000,205,344 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\NvRaidServersv.dll [2010.09.30 05:41:50 | 000,205,344 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\NvRaidServerno.dll [2010.09.30 05:41:50 | 000,205,344 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\NvRaidServerfi.dll [2010.09.30 05:41:50 | 000,205,344 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\NvRaidServerda.dll [2010.09.30 05:41:50 | 000,204,832 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\NvRaidServerenu.dll [2010.09.30 05:41:50 | 000,204,832 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\NvRaidServereng.dll [2010.09.30 05:41:50 | 000,199,712 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\NvRaidServerko.dll [2010.09.30 05:41:50 | 000,199,712 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\NvRaidServerja.dll [2010.09.30 05:41:50 | 000,198,176 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\NvRaidServerzht.dll [2010.09.30 05:41:50 | 000,197,664 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\NvRaidServerzhc.dll [2010.09.30 05:41:49 | 003,777,056 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcplUI.exe [2010.09.30 05:41:49 | 002,497,056 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcplUIR.dll [2010.09.30 05:41:49 | 000,843,296 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\NvRaidServer.dll [2010.09.30 05:41:49 | 000,410,656 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcpl.cpl [2010.09.30 05:41:49 | 000,291,872 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvraidservice.exe [2010.09.30 05:41:49 | 000,181,792 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\NvRaidWizardde.dll [2010.09.30 05:41:49 | 000,178,208 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\NvRaidWizardfr.dll [2010.09.30 05:41:49 | 000,178,208 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\NvRaidWizardes.dll [2010.09.30 05:41:49 | 000,177,696 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\NvRaidWizardit.dll [2010.09.30 05:41:49 | 000,176,160 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\NvRaidWizardptb.dll [2010.09.30 05:41:49 | 000,175,136 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\NvRaidWizardnl.dll [2010.09.30 05:41:49 | 000,174,112 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\NvRaidWizardru.dll [2010.09.30 05:41:49 | 000,173,088 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\NvRaidWizardno.dll [2010.09.30 05:41:49 | 000,172,064 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\NvRaidWizardsv.dll [2010.09.30 05:41:49 | 000,171,552 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\NvRaidWizardfi.dll [2010.09.30 05:41:49 | 000,171,552 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\NvRaidWizardda.dll [2010.09.30 05:41:49 | 000,169,504 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\NvRaidWizardenu.dll [2010.09.30 05:41:49 | 000,169,504 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\NvRaidWizardeng.dll [2010.09.30 05:41:49 | 000,154,656 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\NvRaidWizardja.dll [2010.09.30 05:41:49 | 000,154,144 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\NvRaidWizardko.dll [2010.09.30 05:41:49 | 000,149,536 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\NvRaidWizardzht.dll [2010.09.30 05:41:49 | 000,148,512 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\NvRaidWizardzhc.dll [2010.09.30 05:41:49 | 000,067,104 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\NvRaidSvfr.dll [2010.09.30 05:41:49 | 000,067,104 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\NvRaidSves.dll [2010.09.30 05:41:49 | 000,066,592 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\NvRaidSvit.dll [2010.09.30 05:41:49 | 000,066,592 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\NvRaidSvde.dll [2010.09.30 05:41:49 | 000,066,080 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\NvRaidSvptb.dll [2010.09.30 05:41:49 | 000,066,080 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\NvRaidSvnl.dll [2010.09.30 05:41:49 | 000,065,056 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\NvRaidSvfi.dll [2010.09.30 05:41:49 | 000,064,544 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\NvRaidSvsv.dll [2010.09.30 05:41:49 | 000,064,544 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\NvRaidSvru.dll [2010.09.30 05:41:49 | 000,064,544 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\NvRaidSvno.dll [2010.09.30 05:41:49 | 000,064,544 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\NvRaidSvda.dll [2010.09.30 05:41:49 | 000,064,032 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\NvRaidSvenu.dll [2010.09.30 05:41:49 | 000,064,032 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\NvRaidSveng.dll [2010.09.30 05:41:49 | 000,060,448 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\NvRaidSvja.dll [2010.09.30 05:41:49 | 000,059,936 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\NvRaidSvko.dll [2010.09.30 05:41:49 | 000,058,400 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\NvRaidSvzht.dll [2010.09.30 05:41:49 | 000,058,400 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\NvRaidSvzhc.dll [2010.09.30 05:41:48 | 000,768,544 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\NvRaidWizard.dll [2010.09.30 05:32:00 | 000,540,192 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\NVUNINST.EXE [2010.09.30 04:53:48 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\appmgmt [2010.09.29 22:49:25 | 000,000,000 | ---D | C] -- C:\Windows\Sun [2010.09.29 12:34:35 | 000,000,000 | ---D | C] -- D:\Eigene Dateien\Documents\FIFA 11 [2010.09.29 11:48:52 | 000,000,000 | ---D | C] -- C:\Users\*****\AppData\Roaming\Leadertech [2010.09.28 04:35:46 | 000,000,000 | ---D | C] -- C:\ProgramData\TuneUp Software-BackupByTuneUpPortable [2010.09.23 23:22:01 | 000,000,000 | -HSD | C] -- C:\ProgramData\SecuROM [2010.09.23 23:22:01 | 000,000,000 | ---D | C] -- D:\Eigene Dateien\Documents\ArcaniA - Gothic 4 Demo [2010.09.22 19:08:00 | 000,000,000 | ---D | C] -- C:\Users\*****\AppData\Roaming\TeamViewer [2010.09.20 13:23:03 | 000,000,000 | ---D | C] -- C:\Programme\Common Files\DESIGNER [2010.09.20 13:22:52 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft.NET [2010.09.20 13:21:24 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Office [2010.09.20 13:21:24 | 000,000,000 | ---D | C] -- C:\Users\*****\AppData\Local\Microsoft Help [2010.09.20 13:21:23 | 000,000,000 | ---D | C] -- C:\Programme\Microsoft Office [2010.09.20 13:21:22 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft Help [2010.09.20 13:21:08 | 000,000,000 | RH-D | C] -- C:\MSOCache ========== Files - Modified Within 30 Days ========== [2010.10.20 10:59:58 | 000,575,488 | ---- | M] (OldTimer Tools) -- C:\Users\*****\Desktop\OTL.exe [2010.10.20 10:25:41 | 000,001,031 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk [2010.10.20 09:52:32 | 000,014,016 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 [2010.10.20 09:52:32 | 000,014,016 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 [2010.10.20 09:49:37 | 001,472,002 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI [2010.10.20 09:49:37 | 000,643,628 | ---- | M] () -- C:\Windows\SysNative\perfh007.dat [2010.10.20 09:49:37 | 000,606,992 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat [2010.10.20 09:49:37 | 000,126,188 | ---- | M] () -- C:\Windows\SysNative\perfc007.dat [2010.10.20 09:49:37 | 000,103,370 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat [2010.10.20 09:45:20 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat [2010.10.20 03:26:09 | 000,007,655 | ---- | M] () -- C:\Users\*****\AppData\Local\Resmon.ResmonCfg [2010.10.20 02:52:00 | 000,294,208 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT [2010.10.20 01:52:45 | 000,383,562 | RHS- | M] () -- C:\bootmgr [2010.10.20 01:52:45 | 000,206,312 | RHS- | M] () -- C:\XELDZ [2010.10.19 15:22:20 | 000,018,667 | ---- | M] () -- C:\Users\*****\AppData\Roaming\PStrip.ini [2010.10.19 15:03:25 | 000,215,128 | ---- | M] () -- C:\Windows\SysWow64\PnkBstrB.xtr [2010.10.19 15:03:24 | 000,215,128 | ---- | M] () -- C:\Windows\SysWow64\PnkBstrB.exe [2010.10.18 14:03:23 | 000,178,800 | ---- | M] (Sony DADC Austria AG.) -- C:\Windows\SysWow64\CmdLineExt_x64.dll [2010.10.18 13:27:42 | 000,017,753 | ---- | M] () -- C:\Users\*****\AppData\Roaming\PStrip.bak [2010.10.18 13:27:40 | 000,017,753 | ---- | M] () -- C:\Users\*****\AppData\Roaming\PStrip.bko [2010.10.16 02:16:26 | 000,016,802 | ---- | M] () -- C:\Users\*****\AppData\Roaming\PStrip.bk! [2010.10.15 15:33:37 | 000,000,417 | ---- | M] () -- C:\Users\Public\Desktop\R.O.H.A.N. Vendetta.lnk [2010.10.15 11:08:34 | 000,010,129 | ---- | M] () -- C:\Windows\unins000.dat [2010.10.15 11:08:25 | 001,199,179 | ---- | M] () -- C:\Windows\unins000.exe [2010.10.13 14:43:43 | 000,000,975 | ---- | M] () -- C:\Users\*****\Desktop\RadeonPro.lnk ========== Files Created - No Company Name ========== [2010.10.20 10:25:41 | 000,001,031 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk [2010.10.20 01:50:11 | 000,206,312 | RHS- | C] () -- C:\XELDZ [2010.10.18 16:13:04 | 000,072,533 | ---- | C] () -- C:\Windows\SysWow64\ieuinit.inf [2010.10.18 16:13:04 | 000,072,533 | ---- | C] () -- C:\Windows\SysNative\ieuinit.inf [2010.10.15 15:33:37 | 000,000,417 | ---- | C] () -- C:\Users\Public\Desktop\R.O.H.A.N. Vendetta.lnk [2010.10.15 11:08:27 | 000,052,836 | ---- | C] () -- C:\Windows\SysWow64\zlib1.dll [2010.10.15 11:08:26 | 000,394,752 | ---- | C] () -- C:\Windows\SysWow64\cygwinb19.dll [2010.10.15 11:08:26 | 000,271,264 | ---- | C] () -- C:\Windows\System\vbrun100.dll [2010.10.15 11:08:26 | 000,162,304 | ---- | C] () -- C:\Windows\SysWow64\libpng13.dll [2010.10.15 11:08:25 | 001,199,179 | ---- | C] () -- C:\Windows\unins000.exe [2010.10.15 11:08:25 | 000,210,944 | ---- | C] () -- C:\Windows\System\msvcrt10.dll [2010.10.15 11:08:25 | 000,010,129 | ---- | C] () -- C:\Windows\unins000.dat [2010.10.13 14:43:43 | 000,000,975 | ---- | C] () -- C:\Users\*****\Desktop\RadeonPro.lnk [2010.10.11 11:14:14 | 001,481,728 | ---- | C] () -- C:\Windows\SysNative\LegitCheckControl.dll [2010.10.11 11:14:14 | 000,323,072 | ---- | C] () -- C:\Windows\SysNative\WgaTray.exe [2010.10.11 11:14:14 | 000,190,976 | ---- | C] () -- C:\Windows\SysNative\WgaLogon.dll [2010.10.07 12:23:48 | 000,000,000 | ---- | C] () -- C:\Users\*****\Sti_Trace.log [2010.10.04 02:38:26 | 002,601,752 | ---- | C] () -- C:\Windows\SysWow64\pbsvc_moh.exe [2010.10.02 19:14:51 | 000,017,753 | ---- | C] () -- C:\Users\*****\AppData\Roaming\PStrip.bko [2010.10.02 18:47:22 | 000,016,802 | ---- | C] () -- C:\Users\*****\AppData\Roaming\PStrip.bk! [2010.10.02 18:46:51 | 000,017,753 | ---- | C] () -- C:\Users\*****\AppData\Roaming\PStrip.bak [2010.10.02 02:27:53 | 000,018,667 | ---- | C] () -- C:\Users\*****\AppData\Roaming\PStrip.ini [2010.10.02 02:27:12 | 000,013,008 | ---- | C] () -- C:\Windows\SysNative\drivers\pstrip64.sys [2010.10.01 13:43:25 | 000,583,888 | ---- | C] () -- C:\Windows\SysWow64\atiumdva.cap [2010.10.01 13:43:25 | 000,583,888 | ---- | C] () -- C:\Windows\SysNative\atiumd6a.cap [2010.10.01 13:43:25 | 000,219,348 | ---- | C] () -- C:\Windows\SysNative\atiicdxx.dat [2010.10.01 13:43:25 | 000,076,216 | ---- | C] () -- C:\Windows\SysNative\atiapfxx.blb [2010.10.01 13:43:25 | 000,021,866 | ---- | C] () -- C:\Windows\atiogl.xml [2010.10.01 13:43:25 | 000,002,857 | ---- | C] () -- C:\Windows\SysWow64\atipblag.dat [2010.10.01 13:43:25 | 000,002,857 | ---- | C] () -- C:\Windows\SysNative\atipblag.dat [2010.09.30 05:41:49 | 000,000,538 | ---- | C] () -- C:\Windows\SysNative\RegRaidSedona.bat [2010.09.30 05:41:48 | 000,007,052 | ---- | C] () -- C:\Windows\SysNative\nvide.nvu [2010.09.20 13:31:53 | 000,008,192 | ---- | C] () -- C:\Windows\SysWow64\srvany.exe [2010.09.10 21:23:00 | 000,003,972 | ---- | C] () -- C:\Windows\SysWow64\drivers\PciBus.sys [2010.09.09 17:41:08 | 000,007,655 | ---- | C] () -- C:\Users\*****\AppData\Local\Resmon.ResmonCfg [2010.09.08 19:25:28 | 000,001,769 | ---- | C] () -- C:\Windows\Language_trs.ini [2009.07.14 01:42:10 | 000,064,000 | ---- | C] () -- C:\Windows\SysWow64\BWContextHandler.dll [2009.07.13 23:03:59 | 000,364,544 | ---- | C] () -- C:\Windows\SysWow64\msjetoledb40.dll [2008.10.22 05:29:06 | 000,173,550 | ---- | C] () -- C:\Windows\SysWow64\xlive.dll.cat [2006.10.11 05:33:58 | 000,010,288 | ---- | C] () -- C:\Windows\SysWow64\drivers\ASUSHWIO.SYS < End of report > OTL Logfile: Code:
ATTFilter OTL Extras logfile created on: 20.10.2010 11:00:49 - Run 1
OTL by OldTimer - Version 3.2.16.0 Folder = C:\Users\*****\Desktop
64bit- Ultimate Edition (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 9.0.7930.16406)
Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy
2,00 Gb Total Physical Memory | 1,00 Gb Available Physical Memory | 27,00% Memory free
4,00 Gb Paging File | 2,00 Gb Available in Paging File | 51,00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 72,27 Gb Total Space | 51,20 Gb Free Space | 70,85% Space Free | Partition Type: NTFS
Drive D: | 523,90 Gb Total Space | 90,03 Gb Free Space | 17,18% Space Free | Partition Type: NTFS
Drive L: | 596,16 Gb Total Space | 372,83 Gb Free Space | 62,54% Space Free | Partition Type: NTFS
Computer Name: ***** | User Name: **** | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Extra Registry (SafeList) ==========
========== File Associations ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.url[@ = InternetShortcut] -- C:\Windows\System32\ieframe.DLL (Microsoft Corporation)
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation)
.url [@ = InternetShortcut] -- C:\Windows\System32\ieframe.DLL (Microsoft Corporation)
[HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation)
========== Shell Spawning ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %* File not found
cmdfile [open] -- "%1" %* File not found
comfile [open] -- "%1" %* File not found
exefile [open] -- "%1" %* File not found
helpfile [open] -- Reg Error: Key error.
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [open] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %* File not found
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1" File not found
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation)
scrfile [open] -- "%1" /S File not found
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1 File not found
Directory [AddToPlaylistVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [open] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation)
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
========== Security Center Settings ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = 28 4D B2 76 41 04 CA 01 [binary data]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
========== Firewall Settings ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
========== Authorized Applications List ==========
========== HKEY_LOCAL_MACHINE Uninstall List ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{1F6D1DB5-82B5-41A4-85A2-0A382C142A35}_is1" = Allgemeine Runtime Files (x86)
"{2ACBF1FA-F5C3-4B19-A774-B22A31F231B9}_is1" = Media Player Classic - Home Cinema v1.4.2499.0 x64
"{3DDACE1F-3B1E-D6AB-CD3D-B6E987511945}" = ATI Catalyst Install Manager
"{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148
"{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}" = Microsoft Visual C++ 2005 Redistributable (x64)
"{8220EEFE-38CD-377E-8595-13398D740ACE}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17
"{88F41EE2-949B-4B52-933D-C7F8F67BC1D2}" = NetSpeedMonitor 2.5.4.0 x64
"{90140000-0011-0000-1000-0000000FF1CE}" = Microsoft Office Professional Plus 2010
"{90140000-0015-0407-1000-0000000FF1CE}" = Microsoft Office Access MUI (German) 2010
"{90140000-0016-0407-1000-0000000FF1CE}" = Microsoft Office Excel MUI (German) 2010
"{90140000-0018-0407-1000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (German) 2010
"{90140000-0019-0407-1000-0000000FF1CE}" = Microsoft Office Publisher MUI (German) 2010
"{90140000-001A-0407-1000-0000000FF1CE}" = Microsoft Office Outlook MUI (German) 2010
"{90140000-001B-0407-1000-0000000FF1CE}" = Microsoft Office Word MUI (German) 2010
"{90140000-001F-0407-1000-0000000FF1CE}" = Microsoft Office Proof (German) 2010
"{90140000-001F-0409-1000-0000000FF1CE}" = Microsoft Office Proof (English) 2010
"{90140000-001F-040C-1000-0000000FF1CE}" = Microsoft Office Proof (French) 2010
"{90140000-001F-0410-1000-0000000FF1CE}" = Microsoft Office Proof (Italian) 2010
"{90140000-002C-0407-1000-0000000FF1CE}" = Microsoft Office Proofing (German) 2010
"{90140000-0043-0000-1000-0000000FF1CE}" = Microsoft Office Office 32-bit Components 2010
"{90140000-0043-0407-1000-0000000FF1CE}" = Microsoft Office Shared 32-bit MUI (German) 2010
"{90140000-0044-0407-1000-0000000FF1CE}" = Microsoft Office InfoPath MUI (German) 2010
"{90140000-006E-0407-1000-0000000FF1CE}" = Microsoft Office Shared MUI (German) 2010
"{90140000-00A1-0407-1000-0000000FF1CE}" = Microsoft Office OneNote MUI (German) 2010
"{90140000-00BA-0407-1000-0000000FF1CE}" = Microsoft Office Groove MUI (German) 2010
"{DA5E371C-6333-3D8A-93A4-6FD5B20BCC6E}" = Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319
"{FD53298A-4734-AFCB-B733-4C07776E589E}" = ccc-utility64
"EPSON Printer and Utilities" = EPSON-Drucker-Software
"NVIDIA Drivers" = NVIDIA Drivers
"Office14.PROPLUS" = Microsoft Office Professional Plus 2010
"TeamSpeak 3 Client" = TeamSpeak 3 Client
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{0FB0306C-11D8-35F2-9AC9-121FA753F9AD}" = Visual C++ 2008 x64 Runtime - (v9.0.30729.5026)
"{0FB0306C-11D8-35F2-9AC9-121FA753F9AD}.vc_x64runtime_30729_5026" = Visual C++ 2008 x64 Runtime - v9.0.30729.5026
"{1148E85C-E1AF-48E0-A29C-68DACE07E054}" = Pro Evolution Soccer 2011
"{155F4A0E-76ED-45A2-91FB-FF2A2133C31A}" = Risen
"{179C91E9-D9ED-D5CC-F0D8-9579DBDED8D6}" = CCC Help English
"{196BB40D-1578-3D01-B289-BEFC77A11A1E}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{26A24AE4-039D-4CA4-87B4-2F83216021FF}" = Java(TM) 6 Update 21
"{2DF7B278-D3B6-40A4-B25C-0E7149F439EA}" = 3DMark05
"{3AC8457C-0385-4BEA-A959-E095F05D6D67}" = Battlefield: Bad Company™ 2
"{3FEA6CD1-EA13-4CE7-A74E-A74A4A0A7B5C}" = FIFA 11
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{5454083B-1308-4485-BF17-1110000B8301}" = Grand Theft Auto IV
"{579BA58C-F33D-4970-9953-B94B43768AC3}" = Grand Theft Auto IV
"{59E4543A-D49D-4489-B445-473D763C79AF}" = Microsoft Games for Windows - LIVE Redistributable
"{68A35043-C55A-4237-88C9-37EE1C63ED71}" = Microsoft Visual J# 2.0 Redistributable Package
"{6AFCA4E1-9B78-3640-8F72-A7BF33448200}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729
"{6C8B53B9-41EE-AD83-007A-55EE64DE6932}" = Catalyst Control Center Graphics Previews Common
"{71929EC1-FDB2-4A67-AAAD-936E4539FA84}_is1" = Driver Sweeper 2.1.0
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{7F3AD00A-1819-4B15-BB7D-08B3586336D7}" = 3DMark06
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{BEE64C14-BEF1-4610-8A68-A16EAA47B882}" = Futuremark SystemInfo
"{CF5DE1DD-F7E6-694D-1E82-84C7C9C9ABDB}" = Catalyst Control Center Graphics Previews Vista
"{DDA34038-89BD-4804-B0B8-DC48D5DFB463}" = Catalyst Control Center - Branding
"{E04ACCBC-DF36-364E-87E8-6C24BB981AB8}" = Visual C++ 2008 x86 Runtime - (v9.0.30729.5026)
"{E04ACCBC-DF36-364E-87E8-6C24BB981AB8}.vc_x86runtime_30729_5026" = Visual C++ 2008 x86 Runtime - v9.0.30729.5026
"{F71E7762-8A64-AECC-0917-DA51677041CF}" = Catalyst Control Center InstallProxy
"{F9835182-794B-4F24-902A-E2CA9D43380F}" = NVIDIA PhysX
"{F9D65BA1-84C5-B4CB-91FE-D68F07ECBA24}" = ccc-core-static
"{FF35F637-72B9-43BE-A281-06EB2854393A}" = 3DMark03
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"Akamai" = Akamai NetSession Interface
"ArcaniA" = ArcaniA - Gothic 4
"Avira AntiVir Desktop" = Avira AntiVir Personal - Free Antivirus
"BattlEye" = BattlEye Uninstall
"CCleaner" = CCleaner
"CrystalDiskInfo_is1" = CrystalDiskInfo 3.8.0
"EPSON Scanner" = EPSON Scan
"Foxit Reader" = Foxit Reader
"Fraps" = Fraps (remove only)
"ImgBurn" = ImgBurn
"Lara Croft and the Guardian of Light_is1" = Lara Croft and the Guardian of Light
"Mafia II_is1" = Mafia II
"Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware
"Marvell Miniport Driver" = Marvell Miniport Driver
"Microsoft Visual J# 2.0 Redistributable Package" = Microsoft Visual J# 2.0 Redistributable Package
"Monitor Asset Manager" = Monitor Asset Manager
"Mozilla Firefox (3.6.11)" = Mozilla Firefox (3.6.11)
"PowerStrip 3 (remove only)" = PowerStrip 3 (remove only)
"PunkBusterSvc" = PunkBuster Services
"RadeonPro_is1" = RadeonPro 1.0 (Build 1.0.10.1)
"Revo Uninstaller" = Revo Uninstaller 1.89
"RivaTuner" = RivaTuner v2.24 MSI Master Overclocking Arena 2009 edition
"Rohan_DE" = R.O.H.A.N. Vendetta
"softMCCS" = softMCCS
"VLC media player" = VLC media player 1.1.4
"WinRAR archiver" = WinRAR
"Xilisoft Video Converter Ultimate" = Xilisoft Video Converter Ultimate
========== HKEY_CURRENT_USER Uninstall List ==========
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"QIP 2005" = QIP 2005 8095
========== Last 10 Event Log Errors ==========
[ Application Events ]
Error - 19.10.2010 06:33:48 | Computer Name = ***** | Source = Application Error | ID = 1000
Description = Name der fehlerhaften Anwendung: GTAIV.exe, Version: 1.0.6.0, Zeitstempel:
0x4bb3ad56 Name des fehlerhaften Moduls: WININET.dll, Version: 9.0.7930.16406, Zeitstempel:
0x4c7e044e Ausnahmecode: 0xc0000005 Fehleroffset: 0x0000e958 ID des fehlerhaften Prozesses:
0xeb4 Startzeit der fehlerhaften Anwendung: 0x01cb6f791420e080 Pfad der fehlerhaften
Anwendung: L:\Spiele\Rockstar Games\Grand Theft Auto IV\GTAIV.exe Pfad des fehlerhaften
Moduls: C:\Windows\syswow64\WININET.dll Berichtskennung: 5ac8d3d0-db6c-11df-a936-001d92f1b738
Error - 19.10.2010 07:36:42 | Computer Name = ***** | Source = Application Error | ID = 1000
Description = Name der fehlerhaften Anwendung: GTAIV.exe, Version: 1.0.6.0, Zeitstempel:
0x4bb3ad56 Name des fehlerhaften Moduls: WININET.dll, Version: 9.0.7930.16406, Zeitstempel:
0x4c7e044e Ausnahmecode: 0xc0000005 Fehleroffset: 0x0000e958 ID des fehlerhaften Prozesses:
0x8d4 Startzeit der fehlerhaften Anwendung: 0x01cb6f81dc0f2720 Pfad der fehlerhaften
Anwendung: L:\Spiele\Rockstar Games\Grand Theft Auto IV\GTAIV.exe Pfad des fehlerhaften
Moduls: C:\Windows\syswow64\WININET.dll Berichtskennung: 24abbe80-db75-11df-a936-001d92f1b738
Error - 19.10.2010 07:40:44 | Computer Name = ***** | Source = Application Error | ID = 1000
Description = Name der fehlerhaften Anwendung: GTAIV.exe, Version: 1.0.6.0, Zeitstempel:
0x4bb3ad56 Name des fehlerhaften Moduls: WININET.dll, Version: 9.0.7930.16406, Zeitstempel:
0x4c7e044e Ausnahmecode: 0xc0000005 Fehleroffset: 0x0000e958 ID des fehlerhaften Prozesses:
0xbfc Startzeit der fehlerhaften Anwendung: 0x01cb6f826b380480 Pfad der fehlerhaften
Anwendung: L:\Spiele\Rockstar Games\Grand Theft Auto IV\GTAIV.exe Pfad des fehlerhaften
Moduls: C:\Windows\syswow64\WININET.dll Berichtskennung: b4c31a90-db75-11df-a936-001d92f1b738
Error - 19.10.2010 07:41:17 | Computer Name = ***** | Source = Application Error | ID = 1000
Description = Name der fehlerhaften Anwendung: GTAIV.exe, Version: 1.0.6.0, Zeitstempel:
0x4bb3ad56 Name des fehlerhaften Moduls: WININET.dll, Version: 9.0.7930.16406, Zeitstempel:
0x4c7e044e Ausnahmecode: 0xc0000005 Fehleroffset: 0x0000e958 ID des fehlerhaften Prozesses:
0xad4 Startzeit der fehlerhaften Anwendung: 0x01cb6f828217bb00 Pfad der fehlerhaften
Anwendung: L:\Spiele\Rockstar Games\Grand Theft Auto IV\GTAIV.exe Pfad des fehlerhaften
Moduls: C:\Windows\syswow64\WININET.dll Berichtskennung: c860ec80-db75-11df-a936-001d92f1b738
Error - 19.10.2010 07:41:44 | Computer Name = ***** | Source = Application Error | ID = 1000
Description = Name der fehlerhaften Anwendung: GTAIV.exe, Version: 1.0.6.0, Zeitstempel:
0x4bb3ad56 Name des fehlerhaften Moduls: WININET.dll, Version: 9.0.7930.16406, Zeitstempel:
0x4c7e044e Ausnahmecode: 0xc0000005 Fehleroffset: 0x0000e958 ID des fehlerhaften Prozesses:
0x97c Startzeit der fehlerhaften Anwendung: 0x01cb6f8292663ae0 Pfad der fehlerhaften
Anwendung: L:\Spiele\Rockstar Games\Grand Theft Auto IV\GTAIV.exe Pfad des fehlerhaften
Moduls: C:\Windows\syswow64\WININET.dll Berichtskennung: d8b11a10-db75-11df-a936-001d92f1b738
Error - 19.10.2010 07:42:12 | Computer Name = ***** | Source = Application Error | ID = 1000
Description = Name der fehlerhaften Anwendung: GTAIV.exe, Version: 1.0.6.0, Zeitstempel:
0x4bb3ad56 Name des fehlerhaften Moduls: WININET.dll, Version: 9.0.7930.16406, Zeitstempel:
0x4c7e044e Ausnahmecode: 0xc0000005 Fehleroffset: 0x0000e958 ID des fehlerhaften Prozesses:
0xf34 Startzeit der fehlerhaften Anwendung: 0x01cb6f82a33c1330 Pfad der fehlerhaften
Anwendung: L:\Spiele\Rockstar Games\Grand Theft Auto IV\GTAIV.exe Pfad des fehlerhaften
Moduls: C:\Windows\syswow64\WININET.dll Berichtskennung: e97a2120-db75-11df-a936-001d92f1b738
Error - 19.10.2010 07:42:40 | Computer Name = ***** | Source = Application Error | ID = 1000
Description = Name der fehlerhaften Anwendung: GTAIV.exe, Version: 1.0.6.0, Zeitstempel:
0x4bb3ad56 Name des fehlerhaften Moduls: WININET.dll, Version: 9.0.7930.16406, Zeitstempel:
0x4c7e044e Ausnahmecode: 0xc0000005 Fehleroffset: 0x0000e958 ID des fehlerhaften Prozesses:
0xe74 Startzeit der fehlerhaften Anwendung: 0x01cb6f82b35ec820 Pfad der fehlerhaften
Anwendung: L:\Spiele\Rockstar Games\Grand Theft Auto IV\GTAIV.exe Pfad des fehlerhaften
Moduls: C:\Windows\syswow64\WININET.dll Berichtskennung: f9ad50d0-db75-11df-a936-001d92f1b738
Error - 19.10.2010 07:57:22 | Computer Name = ***** | Source = Application Error | ID = 1000
Description = Name der fehlerhaften Anwendung: GTAIV.exe, Version: 1.0.6.0, Zeitstempel:
0x4bb3ad56 Name des fehlerhaften Moduls: WININET.dll, Version: 9.0.7930.16406, Zeitstempel:
0x4c7e044e Ausnahmecode: 0xc0000005 Fehleroffset: 0x0000e958 ID des fehlerhaften Prozesses:
0xc60 Startzeit der fehlerhaften Anwendung: 0x01cb6f84bfb5e430 Pfad der fehlerhaften
Anwendung: L:\Spiele\Rockstar Games\Grand Theft Auto IV\GTAIV.exe Pfad des fehlerhaften
Moduls: C:\Windows\syswow64\WININET.dll Berichtskennung: 0791eab0-db78-11df-a936-001d92f1b738
Error - 19.10.2010 20:50:54 | Computer Name = ***** | Source = Application Error | ID = 1000
Description = Name der fehlerhaften Anwendung: Dwm.exe, Version: 6.1.7600.16385,
Zeitstempel: 0x4a5bc541 Name des fehlerhaften Moduls: fraps64.dll_unloaded, Version:
0.0.0.0, Zeitstempel: 0x4a98b7fe Ausnahmecode: 0xc0000005 Fehleroffset: 0x0000000063579549
ID
des fehlerhaften Prozesses: 0x5bc Startzeit der fehlerhaften Anwendung: 0x01cb6fe8dab749e0
Pfad
der fehlerhaften Anwendung: C:\Windows\system32\Dwm.exe Pfad des fehlerhaften Moduls:
fraps64.dll Berichtskennung: 171886d0-dbe4-11df-b1ed-001d92f1b738
Error - 19.10.2010 21:30:40 | Computer Name = ***** | Source = Application Error | ID = 1000
Description = Name der fehlerhaften Anwendung: Dwm.exe, Version: 6.1.7600.16385,
Zeitstempel: 0x4a5bc541 Name des fehlerhaften Moduls: fraps64.dll_unloaded, Version:
0.0.0.0, Zeitstempel: 0x4a98b7fe Ausnahmecode: 0xc0000005 Fehleroffset: 0x0000000063579549
ID
des fehlerhaften Prozesses: 0x974 Startzeit der fehlerhaften Anwendung: 0x01cb6ff10cb4ebc0
Pfad
der fehlerhaften Anwendung: C:\Windows\system32\Dwm.exe Pfad des fehlerhaften Moduls:
fraps64.dll Berichtskennung: a5792880-dbe9-11df-811a-001d92f1b738
[ System Events ]
Error - 03.10.2010 18:55:50 | Computer Name = ***** | Source = EventLog | ID = 6008
Description = Das System wurde zuvor am ?04.?10.?2010 um 00:53:17 unerwartet heruntergefahren.
Error - 04.10.2010 05:10:19 | Computer Name = ***** | Source = EventLog | ID = 6008
Description = Das System wurde zuvor am ?04.?10.?2010 um 11:04:24 unerwartet heruntergefahren.
Error - 04.10.2010 05:13:16 | Computer Name = ***** | Source = Schannel | ID = 36888
Description = Es wurde eine schwerwiegende Warnung generiert: 10. Der interne Fehlerstatus
lautet: 10.
Error - 04.10.2010 08:06:17 | Computer Name = ***** | Source = Schannel | ID = 36888
Description = Es wurde eine schwerwiegende Warnung generiert: 10. Der interne Fehlerstatus
lautet: 10.
Error - 04.10.2010 08:34:16 | Computer Name = ***** | Source = Schannel | ID = 36888
Description = Es wurde eine schwerwiegende Warnung generiert: 10. Der interne Fehlerstatus
lautet: 10.
Error - 04.10.2010 13:11:43 | Computer Name = ***** | Source = Schannel | ID = 36888
Description = Es wurde eine schwerwiegende Warnung generiert: 10. Der interne Fehlerstatus
lautet: 10.
Error - 05.10.2010 09:01:56 | Computer Name = ***** | Source = Schannel | ID = 36888
Description = Es wurde eine schwerwiegende Warnung generiert: 10. Der interne Fehlerstatus
lautet: 10.
Error - 05.10.2010 13:24:28 | Computer Name = ***** | Source = Schannel | ID = 36888
Description = Es wurde eine schwerwiegende Warnung generiert: 10. Der interne Fehlerstatus
lautet: 10.
Error - 05.10.2010 20:31:58 | Computer Name = ***** | Source = Schannel | ID = 36888
Description = Es wurde eine schwerwiegende Warnung generiert: 10. Der interne Fehlerstatus
lautet: 10.
Error - 06.10.2010 10:58:36 | Computer Name = ***** | Source = Schannel | ID = 36888
Description = Es wurde eine schwerwiegende Warnung generiert: 10. Der interne Fehlerstatus
lautet: 10.
< End of report >
Geändert von sill (20.10.2010 um 10:41 Uhr) |
|
20.10.2010, 10:33
| #3 |
| | svchost.exe*32 greift auf das Internet zu, und stellt Verbindungen her OTL Logfile:
__________________Code:
ATTFilter OTL logfile created on: 20.10.2010 11:00:49 - Run 1 OTL by OldTimer - Version 3.2.16.0 Folder = C:\Users\***\Desktop 64bit- Ultimate Edition (Version = 6.1.7600) - Type = NTWorkstation Internet Explorer (Version = 9.0.7930.16406) Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy 2,00 Gb Total Physical Memory | 1,00 Gb Available Physical Memory | 27,00% Memory free 4,00 Gb Paging File | 2,00 Gb Available in Paging File | 51,00% Paging File free Paging file location(s): ?:\pagefile.sys [binary data] %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86) Drive C: | 72,27 Gb Total Space | 51,20 Gb Free Space | 70,85% Space Free | Partition Type: NTFS Drive D: | 523,90 Gb Total Space | 90,03 Gb Free Space | 17,18% Space Free | Partition Type: NTFS Drive L: | 596,16 Gb Total Space | 372,83 Gb Free Space | 62,54% Space Free | Partition Type: NTFS Computer Name: ***** | User Name: *** | Logged in as Administrator. Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days ========== Processes (SafeList) ========== PRC - C:\Users\***\Desktop\OTL.exe (OldTimer Tools) PRC - C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation) PRC - C:\Program Files (x86)\RadeonPro\RadeonProSupport.exe (Mr. John aka japamd) PRC - C:\Windows\SysWOW64\PnkBstrA.exe () PRC - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe (Malwarebytes Corporation) PRC - C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe (Avira GmbH) PRC - C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe (Avira GmbH) PRC - C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe (Avira GmbH) PRC - D:\Program Files\Fraps\fraps.exe (Beepa P/L) PRC - C:\Program Files (x86)\RivaTuner v2.24 MSI Master Overclocking Arena 2009 edition\RivaTuner.exe () PRC - C:\Program Files (x86)\RivaTuner v2.24 MSI Master Overclocking Arena 2009 edition\Tools\RTSS\RTSS.exe () PRC - C:\Windows\SysWOW64\srvany.exe () ========== Modules (SafeList) ========== MOD - C:\Users\*****\Desktop\OTL.exe (OldTimer Tools) MOD - C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd\comctl32.dll (Microsoft Corporation) MOD - D:\Program Files\Fraps\fraps.dll (Beepa P/L) MOD - C:\Program Files (x86)\RivaTuner v2.24 MSI Master Overclocking Arena 2009 edition\Tools\RTSS\RTSSHooks.dll () ========== Win32 Services (SafeList) ========== SRV:64bit: - (PnkBstrA) -- C:\Windows\SysNative\PnkBstrA.exe File not found SRV:64bit: - (KMService) -- C:\Windows\SysNative\srvany.exe File not found SRV:64bit: - (AEADIFilters) -- C:\Windows\SysNative\AEADISRV.EXE (Andrea Electronics Corporation) SRV:64bit: - (AMD External Events Utility) -- C:\Windows\SysNative\atiesrxx.exe (AMD) SRV:64bit: - (AppMgmt) -- C:\Windows\SysNative\appmgmts.dll (Microsoft Corporation) SRV - (Akamai) -- C:/Program Files (x86)/Common Files/Akamai/netsession_win_062a651.dll () SRV - (RadeonPro Support Service) -- C:\Program Files (x86)\RadeonPro\RadeonProSupport.exe (Mr. John aka japamd) SRV - (PnkBstrA) -- C:\Windows\SysWOW64\PnkBstrA.exe () SRV - (Steam Client Service) -- C:\Program Files (x86)\Common Files\Steam\SteamService.exe (Valve Corporation) SRV - (AntiVirService) -- C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe (Avira GmbH) SRV - (AntiVirSchedulerService) -- C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe (Avira GmbH) SRV - (clr_optimization_v2.0.50727_32) -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe (Microsoft Corporation) SRV - (KMService) -- C:\Windows\SysWOW64\srvany.exe () ========== Driver Services (SafeList) ========== DRV:64bit: - (MBfilt) -- C:\Windows\SysNative\drivers\MBfilt64.sys File not found DRV:64bit: - (atksgt) -- C:\Windows\SysNative\drivers\atksgt.sys () DRV:64bit: - (lirsgt) -- C:\Windows\SysNative\drivers\lirsgt.sys () DRV:64bit: - (ADIHdAudAddService) -- C:\Windows\SysNative\drivers\ADIHdAud.sys (Analog Devices, Inc.) DRV:64bit: - (sptd) -- C:\Windows\SysNative\drivers\sptd.sys () DRV:64bit: - (amdkmdag) -- C:\Windows\SysNative\drivers\atikmdag.sys (ATI Technologies Inc.) DRV:64bit: - (amdkmdap) -- C:\Windows\SysNative\drivers\atikmpag.sys (Advanced Micro Devices, Inc.) DRV:64bit: - (AtiHdmiService) -- C:\Windows\SysNative\drivers\AtiHdmi.sys (ATI Technologies, Inc.) DRV:64bit: - (avipbb) -- C:\Windows\SysNative\drivers\avipbb.sys (Avira GmbH) DRV:64bit: - (avgntflt) -- C:\Windows\SysNative\drivers\avgntflt.sys (Avira GmbH) DRV:64bit: - (yukonw7) -- C:\Windows\SysNative\drivers\yk62x64.sys (Marvell) DRV:64bit: - (amdsata) -- C:\Windows\SysNative\drivers\amdsata.sys (Advanced Micro Devices) DRV:64bit: - (amdxata) -- C:\Windows\SysNative\drivers\amdxata.sys (Advanced Micro Devices) DRV:64bit: - (amdsbs) -- C:\Windows\SysNative\drivers\amdsbs.sys (AMD Technologies Inc.) DRV:64bit: - (LSI_SAS2) -- C:\Windows\SysNative\drivers\lsi_sas2.sys (LSI Corporation) DRV:64bit: - (HpSAMD) -- C:\Windows\SysNative\drivers\HpSAMD.sys (Hewlett-Packard Company) DRV:64bit: - (stexstor) -- C:\Windows\SysNative\drivers\stexstor.sys (Promise Technology) DRV:64bit: - (xnacc) -- C:\Windows\SysNative\drivers\xnacc.sys (Microsoft Corporation) DRV:64bit: - (Dot4Scan) -- C:\Windows\SysNative\drivers\Dot4Scan.sys (Microsoft Corporation) DRV:64bit: - (Ntfs) -- C:\Windows\SysNative\wbem\ntfs.mof () DRV:64bit: - (ebdrv) -- C:\Windows\SysNative\drivers\evbda.sys (Broadcom Corporation) DRV:64bit: - (b06bdrv) -- C:\Windows\SysNative\drivers\bxvbda.sys (Broadcom Corporation) DRV:64bit: - (b57nd60a) -- C:\Windows\SysNative\drivers\b57nd60a.sys (Broadcom Corporation) DRV:64bit: - (hcw85cir) -- C:\Windows\SysNative\drivers\hcw85cir.sys (Hauppauge Computer Works, Inc.) DRV:64bit: - (se64a) -- C:\Windows\SysNative\drivers\se64a.sys (EnTech Taiwan) DRV:64bit: - (PStrip64) -- C:\Windows\SysNative\drivers\pstrip64.sys () DRV - (RivaTuner64) -- C:\Program Files (x86)\RivaTuner v2.24 MSI Master Overclocking Arena 2009 edition\RivaTuner64.sys () ========== Standard Registry (SafeList) ========== ========== Internet Explorer ========== IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = MSN, Messenger und Hotmail sowie Nachrichten, Unterhaltung, Video, Sport, Lifestyle, Finanzen, Auto uvm. bei MSN IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de-DE IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 20 D8 AC 3B CF 6E CB 01 [binary data] IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 ========== FireFox ========== FF - prefs.js..browser.search.useDBForOrder: true FF - prefs.js..browser.startup.homepage: "www.t-online.de" FF - HKLM\software\mozilla\Mozilla Firefox 3.6.11\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2010.10.20 01:54:12 | 000,000,000 | ---D | M] FF - HKLM\software\mozilla\Mozilla Firefox 3.6.11\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins [2010.10.20 01:54:12 | 000,000,000 | ---D | M] [2010.10.08 14:31:38 | 000,000,000 | ---D | M] -- C:\Users\*****\AppData\Roaming\mozilla\Extensions [2010.10.08 14:31:38 | 000,000,000 | ---D | M] -- C:\Users\*****\AppData\Roaming\mozilla\Firefox\Profiles\1j7fpsvq.default\extensions [2010.09.30 11:33:37 | 000,002,698 | ---- | M] () -- C:\Users\*****\AppData\Roaming\Mozilla\FireFox\Profiles\1j7fpsvq.default\searchplugins\twitter.xml [2010.10.08 14:31:34 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\mozilla firefox\extensions [2010.08.25 02:44:54 | 000,001,392 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\amazondotcom-de.xml [2010.08.25 02:44:54 | 000,002,344 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\eBay-de.xml [2010.08.25 02:44:54 | 000,006,805 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\leo_ende_de.xml [2010.08.25 02:44:54 | 000,001,178 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\wikipedia-de.xml [2010.08.25 02:44:54 | 000,001,105 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\yahoo-de.xml O1 HOSTS File: ([2010.10.20 01:50:08 | 000,000,894 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts O1 - Hosts: 127.0.0.1 download.qip.ru O1 - Hosts: 127.0.0.1 validation.sls.microsoft.com O2:64bit: - BHO: (Office Document Cache Handler) - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Programme\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation) O2 - BHO: (Office Document Cache Handler) - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation) O4:64bit: - HKLM..\Run: [NVRaidService] C:\Windows\SysNative\nvraidservice.exe (NVIDIA Corporation) O4:64bit: - HKLM..\Run: [RivaTuner] C:\Program Files (x86)\RivaTuner v2.24 MSI Master Overclocking Arena 2009 edition\RivaTunerWrapper.exe () O4:64bit: - HKLM..\Run: [RivaTunerStartupDaemon] C:\Program Files (x86)\RivaTuner v2.24 MSI Master Overclocking Arena 2009 edition\RivaTunerWrapper.exe () O4 - HKLM..\Run: [avgnt] C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe (Avira GmbH) O4 - HKLM..\Run: [RTSS] C:\Program Files (x86)\RivaTuner v2.24 MSI Master Overclocking Arena 2009 edition\Tools\RTSS\RTSSWrapper.exe () O4 - HKLM..\Run: [StartCCC] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.) O4 - HKLM..\RunOnce: [Malwarebytes' Anti-Malware] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation) O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 0 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0 O13 - gopher Prefix: missing O13 - gopher Prefix: missing O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_21-windows-i586.cab (Java Plug-in 1.6.0_21) O16 - DPF: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_21-windows-i586.cab (Java Plug-in 1.6.0_21) O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_21-windows-i586.cab (Java Plug-in 1.6.0_21) O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.2.1 O18:64bit: - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Programme\Common Files\Microsoft Shared\Help\hxds.dll (Microsoft Corporation) O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - Reg Error: Key error. File not found O18:64bit: - Protocol\Filter\text/xml {807573E5-5146-11D5-A672-00B0D022E945} - C:\Programme\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL (Microsoft Corporation) O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation) O20:64bit: - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\SysNative\SystemPropertiesPerformance.exe (Microsoft Corporation) O20:64bit: - HKLM Winlogon: VMApplet - (/pagefile) - File not found O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation) O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found. O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found. O32 - HKLM CDRom: AutoRun - 1 O34 - HKLM BootExecute: (autocheck autochk *) - File not found O35:64bit: - HKLM\..comfile [open] -- "%1" %* O35:64bit: - HKLM\..exefile [open] -- "%1" %* O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %* O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* ========== Files/Folders - Created Within 30 Days ========== [2010.10.20 10:59:55 | 000,575,488 | ---- | C] (OldTimer Tools) -- C:\Users\Waldi\Desktop\OTL.exe [2010.10.20 10:47:31 | 000,000,000 | ---D | C] -- C:\Users\*****\AppData\Roaming\Avira [2010.10.20 10:25:44 | 000,000,000 | ---D | C] -- C:\Users\*****\AppData\Roaming\Malwarebytes [2010.10.20 10:25:39 | 000,038,224 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\SysWow64\drivers\mbamswissarmy.sys [2010.10.20 10:25:37 | 000,024,664 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\SysNative\drivers\mbam.sys [2010.10.20 10:25:37 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware [2010.10.20 10:25:37 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes [2010.10.20 10:06:47 | 000,116,568 | ---- | C] (Avira GmbH) -- C:\Windows\SysNative\drivers\avipbb.sys [2010.10.20 10:06:47 | 000,081,072 | ---- | C] (Avira GmbH) -- C:\Windows\SysNative\drivers\avgntflt.sys [2010.10.20 10:06:47 | 000,051,992 | ---- | C] (AVIRA GmbH) -- C:\Windows\SysWow64\drivers\avgntdd.sys [2010.10.20 10:06:47 | 000,017,016 | ---- | C] (AVIRA GmbH) -- C:\Windows\SysWow64\drivers\avgntmgr.sys [2010.10.20 10:06:47 | 000,000,000 | ---D | C] -- C:\ProgramData\Avira [2010.10.20 10:06:47 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Avira [2010.10.20 01:58:28 | 000,483,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\StructuredQuery.dll [2010.10.20 01:58:27 | 000,633,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\comctl32.dll [2010.10.20 01:58:26 | 002,085,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ole32.dll [2010.10.20 01:58:25 | 000,954,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfc40.dll [2010.10.20 01:58:25 | 000,954,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfc40u.dll [2010.10.20 01:58:16 | 000,148,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\t2embed.dll [2010.10.20 01:58:16 | 000,109,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\t2embed.dll [2010.10.20 01:58:16 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\sscore.dll [2010.10.18 16:13:04 | 003,695,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieapfltr.dat [2010.10.18 16:13:04 | 001,633,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript9.dll [2010.10.18 16:13:04 | 001,502,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\inetcpl.cpl [2010.10.18 16:13:04 | 001,448,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\inetcpl.cpl [2010.10.18 16:13:04 | 001,355,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\jscript9.dll [2010.10.18 16:13:04 | 000,819,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript.dll [2010.10.18 16:13:04 | 000,719,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\jscript.dll [2010.10.18 16:13:04 | 000,690,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msfeeds.dll [2010.10.18 16:13:04 | 000,596,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msfeeds.dll [2010.10.18 16:13:04 | 000,545,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieapfltr.dll [2010.10.18 16:13:04 | 000,532,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dxtmsft.dll [2010.10.18 16:13:04 | 000,448,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\html.iec [2010.10.18 16:13:04 | 000,367,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\html.iec [2010.10.18 16:13:04 | 000,353,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dxtmsft.dll [2010.10.18 16:13:04 | 000,313,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dxtrans.dll [2010.10.18 16:13:04 | 000,263,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieaksie.dll [2010.10.18 16:13:04 | 000,242,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieui.dll [2010.10.18 16:13:04 | 000,227,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieaksie.dll [2010.10.18 16:13:04 | 000,223,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dxtrans.dll [2010.10.18 16:13:04 | 000,193,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ie4uinit.exe [2010.10.18 16:13:04 | 000,176,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieui.dll [2010.10.18 16:13:04 | 000,173,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieUnatt.exe [2010.10.18 16:13:04 | 000,165,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iexpress.exe [2010.10.18 16:13:04 | 000,163,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieakui.dll [2010.10.18 16:13:04 | 000,163,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieakui.dll [2010.10.18 16:13:04 | 000,157,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieakeng.dll [2010.10.18 16:13:04 | 000,150,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iexpress.exe [2010.10.18 16:13:04 | 000,147,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iepeers.dll [2010.10.18 16:13:04 | 000,142,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieUnatt.exe [2010.10.18 16:13:04 | 000,136,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iesysprep.dll [2010.10.18 16:13:04 | 000,133,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\IEAdvpack.dll [2010.10.18 16:13:04 | 000,130,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieakeng.dll [2010.10.18 16:13:04 | 000,114,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iesysprep.dll [2010.10.18 16:13:04 | 000,111,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iepeers.dll [2010.10.18 16:13:04 | 000,110,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\IEAdvpack.dll [2010.10.18 16:13:04 | 000,102,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\inseng.dll [2010.10.18 16:13:04 | 000,093,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ie4uinit.exe [2010.10.18 16:13:04 | 000,085,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iesetup.dll [2010.10.18 16:13:04 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\icardie.dll [2010.10.18 16:13:04 | 000,080,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\inseng.dll [2010.10.18 16:13:04 | 000,075,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iesetup.dll [2010.10.18 16:13:04 | 000,060,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\admparse.dll [2010.10.18 16:13:04 | 000,059,392 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\icardie.dll [2010.10.18 16:13:04 | 000,051,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\admparse.dll [2010.10.18 16:13:04 | 000,049,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\imgutil.dll [2010.10.18 16:13:04 | 000,039,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iernonce.dll [2010.10.18 16:13:04 | 000,033,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\imgutil.dll [2010.10.18 16:13:04 | 000,032,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iernonce.dll [2010.10.18 16:13:04 | 000,027,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\licmgr10.dll [2010.10.18 16:13:04 | 000,023,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\licmgr10.dll [2010.10.18 16:13:04 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mshta.exe [2010.10.18 16:13:04 | 000,010,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msfeedssync.exe [2010.10.18 16:13:04 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msfeedssync.exe [2010.10.18 16:13:03 | 003,695,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieapfltr.dat [2010.10.18 16:13:03 | 000,601,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\vbscript.dll [2010.10.18 16:13:03 | 000,441,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieapfltr.dll [2010.10.18 16:13:03 | 000,215,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msls31.dll [2010.10.18 16:13:03 | 000,197,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msrating.dll [2010.10.18 16:13:03 | 000,166,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msrating.dll [2010.10.18 16:13:03 | 000,160,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msls31.dll [2010.10.18 16:13:03 | 000,159,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wextract.exe [2010.10.18 16:13:03 | 000,149,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wextract.exe [2010.10.18 16:13:03 | 000,147,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\occache.dll [2010.10.18 16:13:03 | 000,128,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\occache.dll [2010.10.18 16:13:03 | 000,112,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\url.dll [2010.10.18 16:13:03 | 000,109,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\url.dll [2010.10.18 16:13:03 | 000,097,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mshtmled.dll [2010.10.18 16:13:03 | 000,093,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SetIEInstalledDate.exe [2010.10.18 16:13:03 | 000,090,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\RegisterIEPKEYs.exe [2010.10.18 16:13:03 | 000,076,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\tdc.ocx [2010.10.18 16:13:03 | 000,076,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\SetIEInstalledDate.exe [2010.10.18 16:13:03 | 000,074,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\RegisterIEPKEYs.exe [2010.10.18 16:13:03 | 000,067,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmled.dll [2010.10.18 16:13:03 | 000,065,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\pngfilt.dll [2010.10.18 16:13:03 | 000,063,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\tdc.ocx [2010.10.18 16:13:03 | 000,049,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\pngfilt.dll [2010.10.18 16:13:03 | 000,048,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmler.dll [2010.10.18 16:13:03 | 000,048,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mshtmler.dll [2010.10.18 16:12:47 | 004,068,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mf.dll [2010.10.18 16:12:47 | 003,181,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mf.dll [2010.10.18 16:12:47 | 001,888,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WMVDECOD.DLL [2010.10.18 16:12:47 | 001,619,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\WMVDECOD.DLL [2010.10.18 16:12:47 | 000,257,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mfreadwrite.dll [2010.10.18 16:12:47 | 000,206,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mfps.dll [2010.10.18 16:12:47 | 000,196,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfreadwrite.dll [2010.10.18 16:12:32 | 001,844,224 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3d10warp.dll [2010.10.18 16:12:32 | 001,543,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\DWrite.dll [2010.10.18 16:12:32 | 001,172,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3d10warp.dll [2010.10.18 16:12:32 | 001,076,224 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\DWrite.dll [2010.10.18 16:12:32 | 000,899,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d2d1.dll [2010.10.18 16:12:32 | 000,737,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d2d1.dll [2010.10.18 16:12:32 | 000,320,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3d10_1core.dll [2010.10.18 16:12:32 | 000,218,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3d10_1core.dll [2010.10.18 16:12:18 | 000,466,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XpsGdiConverter.dll [2010.10.18 16:12:18 | 000,279,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XpsGdiConverter.dll [2010.10.18 16:12:18 | 000,229,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XpsRasterService.dll [2010.10.18 16:12:18 | 000,135,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XpsRasterService.dll [2010.10.18 16:11:57 | 001,863,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ExplorerFrame.dll [2010.10.18 16:11:57 | 001,495,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ExplorerFrame.dll [2010.10.18 15:55:31 | 000,000,000 | ---D | C] -- C:\Users\*****\AppData\Local\Rockstar Games [2010.10.18 15:24:08 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\softMCCS [2010.10.18 14:03:23 | 000,178,800 | ---- | C] (Sony DADC Austria AG.) -- C:\Windows\SysWow64\CmdLineExt_x64.dll [2010.10.18 14:02:25 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\xlive [2010.10.18 14:02:25 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Games for Windows - LIVE [2010.10.15 13:42:58 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Akamai [2010.10.15 11:08:27 | 001,053,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfc71u.dll [2010.10.15 11:08:27 | 000,771,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msvcr100_clr0400.dll [2010.10.15 11:08:27 | 000,722,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\vb40032.dll [2010.10.15 11:08:27 | 000,487,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msvcp70.dll [2010.10.15 11:08:27 | 000,339,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msvcr70.dll [2010.10.15 11:08:27 | 000,200,704 | ---- | C] (The OpenSSL Project, OpenSSL: The Open Source toolkit for SSL/TLS) -- C:\Windows\SysWow64\ssleay32.dll [2010.10.15 11:08:27 | 000,090,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\atl71.dll [2010.10.15 11:08:27 | 000,054,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msvci70.dll [2010.10.15 11:08:26 | 002,887,680 | ---- | C] (Intel Corporation) -- C:\Windows\SysWow64\libmmd.dll [2010.10.15 11:08:26 | 001,872,666 | ---- | C] (Red Hat) -- C:\Windows\SysWow64\cygwin1.dll [2010.10.15 11:08:26 | 001,024,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfc70.dll [2010.10.15 11:08:26 | 001,017,344 | ---- | C] (The OpenSSL Project, OpenSSL: The Open Source toolkit for SSL/TLS) -- C:\Windows\SysWow64\libeay32.dll [2010.10.15 11:08:26 | 001,017,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfc70u.dll [2010.10.15 11:08:26 | 000,935,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\System\vb40016.dll [2010.10.15 11:08:26 | 000,898,048 | ---- | C] (GNU <www.gnu.org>) -- C:\Windows\SysWow64\libiconv2.dll [2010.10.15 11:08:26 | 000,799,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msdia100.dll [2010.10.15 11:08:26 | 000,398,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\System\vbrun300.dll [2010.10.15 11:08:26 | 000,356,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\System\vbrun200.dll [2010.10.15 11:08:26 | 000,189,440 | ---- | C] (The OpenSSL Project, OpenSSL: The Open Source toolkit for SSL/TLS) -- C:\Windows\SysWow64\libssl32.dll [2010.10.15 11:08:26 | 000,101,888 | ---- | C] (GNU <www.gnu.org>) -- C:\Windows\SysWow64\libintl3.dll [2010.10.15 11:08:26 | 000,086,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\atl70.dll [2010.10.15 11:08:26 | 000,065,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfc71DEU.dll [2010.10.15 11:08:26 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfc71ITA.dll [2010.10.15 11:08:26 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfc71FRA.dll [2010.10.15 11:08:26 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfc71ESP.dll [2010.10.15 11:08:26 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfc70ITA.dll [2010.10.15 11:08:26 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfc70FRA.dll [2010.10.15 11:08:26 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfc70ESP.dll [2010.10.15 11:08:26 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfc70DEU.dll [2010.10.15 11:08:26 | 000,057,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfc71ENU.dll [2010.10.15 11:08:26 | 000,057,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfc70ENU.dll [2010.10.15 11:08:26 | 000,049,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfc71KOR.dll [2010.10.15 11:08:26 | 000,049,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfc71JPN.dll [2010.10.15 11:08:26 | 000,049,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfc70KOR.dll [2010.10.15 11:08:26 | 000,049,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfc70JPN.dll [2010.10.15 11:08:26 | 000,045,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfc71CHT.dll [2010.10.15 11:08:26 | 000,045,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfc70CHT.dll [2010.10.15 11:08:26 | 000,040,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfc71CHS.dll [2010.10.15 11:08:26 | 000,040,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfc70CHS.dll [2010.10.15 11:08:26 | 000,032,768 | ---- | C] (Adobe Systems, Inc.) -- C:\Windows\System\plugin.dll [2010.10.15 11:08:25 | 001,069,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mscomctl.ocx [2010.10.15 11:08:25 | 001,066,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mscomctl32.ocx [2010.10.15 11:08:25 | 000,659,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mscomct2.ocx [2010.10.15 11:08:25 | 000,614,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\comctl32.ocx [2010.10.15 11:08:25 | 000,443,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\MShflxgd.ocx [2010.10.15 11:08:25 | 000,415,552 | ---- | C] (Microsoft Corporation ) -- C:\Windows\SysWow64\comct332.ocx [2010.10.15 11:08:25 | 000,317,320 | ---- | C] (AutoIt Team) -- C:\Windows\SysWow64\AutoItX3.dll [2010.10.15 11:08:25 | 000,278,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msdatgrd.ocx [2010.10.15 11:08:25 | 000,258,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msflxgrd.ocx [2010.10.15 11:08:25 | 000,252,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msdatlst.ocx [2010.10.15 11:08:25 | 000,222,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dblist32.ocx [2010.10.15 11:08:25 | 000,221,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\tabctl32.ocx [2010.10.15 11:08:25 | 000,218,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\richtx32.ocx [2010.10.15 11:08:25 | 000,215,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mci32.ocx [2010.10.15 11:08:25 | 000,178,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msmask32.ocx [2010.10.15 11:08:25 | 000,170,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\comct232.ocx [2010.10.15 11:08:25 | 000,155,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\comdlg32.ocx [2010.10.15 11:08:25 | 000,136,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msinet.ocx [2010.10.15 11:08:25 | 000,129,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msstdfmt.dll [2010.10.15 11:08:25 | 000,127,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mswinsck.ocx [2010.10.15 11:08:25 | 000,119,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mscomm32.ocx [2010.10.15 11:08:25 | 000,107,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msstkprp.dll [2010.10.15 11:08:25 | 000,100,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\picclp32.ocx [2010.10.15 11:08:25 | 000,080,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\sysinfo.ocx [2010.10.14 21:30:56 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Xilisoft [2010.10.14 20:45:49 | 000,000,000 | ---D | C] -- D:\Eigene Dateien\Documents\ArcaniA - Gothic 4 [2010.10.13 14:44:36 | 000,000,000 | ---D | C] -- D:\Eigene Dateien\Documents\RadeonPro Benchmarks [2010.10.13 14:44:34 | 000,000,000 | ---D | C] -- C:\Users\*****\AppData\Roaming\RadeonPro [2010.10.13 14:43:43 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\RadeonPro [2010.10.09 14:22:23 | 000,014,032 | ---- | C] (EnTech Taiwan) -- C:\Windows\SysNative\drivers\se64a.sys [2010.10.09 14:22:23 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\MonInfo [2010.10.09 13:04:46 | 000,000,000 | ---D | C] -- C:\Users\Waldi\AppData\Roaming\TuneUp Software [2010.10.09 13:04:46 | 000,000,000 | ---D | C] -- C:\ProgramData\TuneUp Software [2010.10.08 14:31:33 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Mozilla Firefox [2010.10.07 12:30:31 | 000,119,808 | ---- | C] (SEIKO EPSON CORPORATION) -- C:\Windows\SysNative\E_ILMAEE.DLL [2010.10.07 12:30:31 | 000,086,528 | ---- | C] (SEIKO EPSON CORPORATION) -- C:\Windows\SysNative\E_IBCBAEE.DLL [2010.10.07 12:30:31 | 000,008,704 | ---- | C] (SEIKO EPSON CORP.) -- C:\Windows\SysNative\E_GCINST.DLL [2010.10.07 12:30:23 | 000,000,000 | ---D | C] -- C:\ProgramData\EPSON [2010.10.07 12:24:05 | 000,000,000 | ---D | C] -- C:\Users\*****i\AppData\Roaming\EPSON [2010.10.07 12:17:41 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\epson [2010.10.07 12:17:40 | 000,093,184 | ---- | C] (SEIKO EPSON CORP.) -- C:\Windows\SysNative\esxcwiad.dll [2010.10.04 14:07:52 | 000,000,000 | ---D | C] -- C:\Users\Waldi\AppData\Roaming\FIFA 11 [2010.10.02 21:21:46 | 000,000,000 | ---D | C] -- C:\Windows\pss [2010.10.02 02:27:11 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\PowerStrip [2010.10.01 13:45:15 | 000,000,000 | ---D | C] -- C:\ProgramData\ATI [2010.10.01 13:43:27 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\ATI Technologies [2010.10.01 13:43:25 | 020,736,000 | ---- | C] (Advanced Micro Devices, Inc.) -- C:\Windows\SysNative\atio6axx.dll [2010.10.01 13:43:25 | 015,830,016 | ---- | C] (Advanced Micro Devices, Inc.) -- C:\Windows\SysWow64\atioglxx.dll [2010.10.01 13:43:25 | 007,767,040 | ---- | C] (ATI Technologies Inc.) -- C:\Windows\SysNative\drivers\atikmdag.sys [2010.10.01 13:43:25 | 005,425,664 | ---- | C] (Advanced Micro Devices Inc.) -- C:\Windows\SysNative\aticaldd64.dll [2010.10.01 13:43:25 | 005,202,944 | ---- | C] (ATI Technologies Inc. ) -- C:\Windows\SysNative\atiumd64.dll [2010.10.01 13:43:25 | 004,602,880 | ---- | C] (ATI Technologies Inc. ) -- C:\Windows\SysNative\atidxx64.dll [2010.10.01 13:43:25 | 004,375,552 | ---- | C] (Advanced Micro Devices Inc.) -- C:\Windows\SysWow64\aticaldd.dll [2010.10.01 13:43:25 | 004,032,512 | ---- | C] (ATI Technologies Inc. ) -- C:\Windows\SysWow64\atiumdag.dll [2010.10.01 13:43:25 | 003,914,240 | ---- | C] (ATI Technologies Inc. ) -- C:\Windows\SysWow64\atidxx32.dll [2010.10.01 13:43:25 | 003,392,000 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysWow64\atiumdva.dll [2010.10.01 13:43:25 | 003,147,264 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysNative\atiumd6a.dll [2010.10.01 13:43:25 | 000,616,960 | ---- | C] (ATI Technologies Inc. ) -- C:\Windows\SysNative\aticfx64.dll [2010.10.01 13:43:25 | 000,528,384 | ---- | C] (ATI Technologies Inc. ) -- C:\Windows\SysWow64\aticfx32.dll [2010.10.01 13:43:25 | 000,462,336 | ---- | C] (AMD) -- C:\Windows\SysNative\atieclxx.exe [2010.10.01 13:43:25 | 000,450,560 | ---- | C] (Advanced Micro Devices, Inc.) -- C:\Windows\SysNative\ATIDEMGX.dll [2010.10.01 13:43:25 | 000,421,376 | ---- | C] (ATI Technologies, Inc.) -- C:\Windows\SysNative\atipdl64.dll [2010.10.01 13:43:25 | 000,356,352 | ---- | C] (ATI Technologies, Inc.) -- C:\Windows\SysWow64\atipdlxx.dll [2010.10.01 13:43:25 | 000,338,432 | ---- | C] (Advanced Micro Devices, Inc.) -- C:\Windows\SysNative\atiadlxx.dll [2010.10.01 13:43:25 | 000,279,040 | ---- | C] (Advanced Micro Devices, Inc.) -- C:\Windows\SysNative\drivers\atikmpag.sys [2010.10.01 13:43:25 | 000,278,528 | ---- | C] (ATI Technologies, Inc.) -- C:\Windows\SysWow64\Oemdspif.dll [2010.10.01 13:43:25 | 000,241,664 | ---- | C] (Advanced Micro Devices, Inc.) -- C:\Windows\SysWow64\atiadlxy.dll [2010.10.01 13:43:25 | 000,203,264 | ---- | C] (AMD) -- C:\Windows\SysNative\atiesrxx.exe [2010.10.01 13:43:25 | 000,143,360 | ---- | C] (Advanced Micro Devices, Inc.) -- C:\Windows\SysNative\atiapfxx.exe [2010.10.01 13:43:25 | 000,120,320 | ---- | C] (AMD) -- C:\Windows\SysNative\atitmm64.dll [2010.10.01 13:43:25 | 000,059,392 | ---- | C] (ATI Technologies, Inc.) -- C:\Windows\SysNative\atiedu64.dll [2010.10.01 13:43:25 | 000,057,344 | ---- | C] (AMD) -- C:\Windows\SysNative\coinst.dll [2010.10.01 13:43:25 | 000,053,760 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysNative\atimpc64.dll [2010.10.01 13:43:25 | 000,053,760 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysNative\amdpcom64.dll [2010.10.01 13:43:25 | 000,053,248 | ---- | C] (ATI Technologies Inc.) -- C:\Windows\SysNative\drivers\ati2erec.dll [2010.10.01 13:43:25 | 000,052,736 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysWow64\atimpc32.dll [2010.10.01 13:43:25 | 000,052,736 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysWow64\amdpcom32.dll [2010.10.01 13:43:25 | 000,051,200 | ---- | C] (Advanced Micro Devices Inc.) -- C:\Windows\SysNative\aticalrt64.dll [2010.10.01 13:43:25 | 000,046,080 | ---- | C] (Advanced Micro Devices Inc.) -- C:\Windows\SysWow64\aticalrt.dll [2010.10.01 13:43:25 | 000,044,544 | ---- | C] (Advanced Micro Devices Inc.) -- C:\Windows\SysNative\aticalcl64.dll [2010.10.01 13:43:25 | 000,044,032 | ---- | C] (Advanced Micro Devices Inc.) -- C:\Windows\SysWow64\aticalcl.dll [2010.10.01 13:43:25 | 000,043,520 | ---- | C] (ATI Technologies, Inc.) -- C:\Windows\SysWow64\ati2edxx.dll [2010.10.01 13:43:25 | 000,039,424 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysNative\atiuxp64.dll [2010.10.01 13:43:25 | 000,037,376 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysNative\atiu9p64.dll [2010.10.01 13:43:25 | 000,030,208 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysWow64\atiuxpag.dll [2010.10.01 13:43:25 | 000,028,160 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysWow64\atiu9pag.dll [2010.10.01 13:43:25 | 000,021,504 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysNative\atig6txx.dll [2010.10.01 13:43:25 | 000,019,968 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysWow64\atigktxx.dll [2010.10.01 13:43:25 | 000,014,848 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysNative\atig6pxx.dll [2010.10.01 13:43:25 | 000,012,800 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysWow64\atiglpxx.dll [2010.10.01 13:43:25 | 000,012,800 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysNative\atiglpxx.dll [2010.10.01 13:43:25 | 000,012,288 | ---- | C] (AMD) -- C:\Windows\SysNative\atimuixx.dll [2010.10.01 13:43:25 | 000,000,000 | ---D | C] -- C:\Programme\ATI [2010.10.01 13:42:57 | 000,000,000 | ---D | C] -- C:\Programme\ATI Technologies [2010.10.01 13:00:19 | 000,000,000 | ---D | C] -- C:\Users\*****\AppData\Local\2K Games [2010.10.01 12:59:59 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\NVIDIA Corporation [2010.09.30 11:41:39 | 000,000,000 | ---D | C] -- C:\ProgramData\KONAMI [2010.09.30 05:42:35 | 000,000,000 | ---D | C] -- C:\Users\Waldi\AppData\Roaming\Mozilla [2010.09.30 05:41:50 | 000,208,416 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\NvRaidServeres.dll [2010.09.30 05:41:50 | 000,207,904 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\NvRaidServerit.dll [2010.09.30 05:41:50 | 000,207,904 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\NvRaidServerde.dll [2010.09.30 05:41:50 | 000,207,392 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\NvRaidServerfr.dll [2010.09.30 05:41:50 | 000,206,880 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\NvRaidServerptb.dll [2010.09.30 05:41:50 | 000,206,880 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\NvRaidServernl.dll [2010.09.30 05:41:50 | 000,206,880 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\NvRaidServeresm.dll [2010.09.30 05:41:50 | 000,205,856 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\NvRaidServerru.dll [2010.09.30 05:41:50 | 000,205,344 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\NvRaidServersv.dll [2010.09.30 05:41:50 | 000,205,344 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\NvRaidServerno.dll [2010.09.30 05:41:50 | 000,205,344 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\NvRaidServerfi.dll [2010.09.30 05:41:50 | 000,205,344 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\NvRaidServerda.dll [2010.09.30 05:41:50 | 000,204,832 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\NvRaidServerenu.dll [2010.09.30 05:41:50 | 000,204,832 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\NvRaidServereng.dll [2010.09.30 05:41:50 | 000,199,712 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\NvRaidServerko.dll [2010.09.30 05:41:50 | 000,199,712 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\NvRaidServerja.dll [2010.09.30 05:41:50 | 000,198,176 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\NvRaidServerzht.dll [2010.09.30 05:41:50 | 000,197,664 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\NvRaidServerzhc.dll [2010.09.30 05:41:49 | 003,777,056 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcplUI.exe [2010.09.30 05:41:49 | 002,497,056 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcplUIR.dll [2010.09.30 05:41:49 | 000,843,296 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\NvRaidServer.dll [2010.09.30 05:41:49 | 000,410,656 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcpl.cpl [2010.09.30 05:41:49 | 000,291,872 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvraidservice.exe [2010.09.30 05:41:49 | 000,181,792 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\NvRaidWizardde.dll [2010.09.30 05:41:49 | 000,178,208 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\NvRaidWizardfr.dll [2010.09.30 05:41:49 | 000,178,208 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\NvRaidWizardes.dll [2010.09.30 05:41:49 | 000,177,696 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\NvRaidWizardit.dll [2010.09.30 05:41:49 | 000,176,160 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\NvRaidWizardptb.dll [2010.09.30 05:41:49 | 000,175,136 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\NvRaidWizardnl.dll [2010.09.30 05:41:49 | 000,174,112 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\NvRaidWizardru.dll [2010.09.30 05:41:49 | 000,173,088 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\NvRaidWizardno.dll [2010.09.30 05:41:49 | 000,172,064 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\NvRaidWizardsv.dll [2010.09.30 05:41:49 | 000,171,552 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\NvRaidWizardfi.dll [2010.09.30 05:41:49 | 000,171,552 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\NvRaidWizardda.dll [2010.09.30 05:41:49 | 000,169,504 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\NvRaidWizardenu.dll [2010.09.30 05:41:49 | 000,169,504 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\NvRaidWizardeng.dll [2010.09.30 05:41:49 | 000,154,656 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\NvRaidWizardja.dll [2010.09.30 05:41:49 | 000,154,144 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\NvRaidWizardko.dll [2010.09.30 05:41:49 | 000,149,536 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\NvRaidWizardzht.dll [2010.09.30 05:41:49 | 000,148,512 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\NvRaidWizardzhc.dll [2010.09.30 05:41:49 | 000,067,104 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\NvRaidSvfr.dll [2010.09.30 05:41:49 | 000,067,104 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\NvRaidSves.dll [2010.09.30 05:41:49 | 000,066,592 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\NvRaidSvit.dll [2010.09.30 05:41:49 | 000,066,592 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\NvRaidSvde.dll [2010.09.30 05:41:49 | 000,066,080 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\NvRaidSvptb.dll [2010.09.30 05:41:49 | 000,066,080 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\NvRaidSvnl.dll [2010.09.30 05:41:49 | 000,065,056 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\NvRaidSvfi.dll [2010.09.30 05:41:49 | 000,064,544 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\NvRaidSvsv.dll [2010.09.30 05:41:49 | 000,064,544 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\NvRaidSvru.dll [2010.09.30 05:41:49 | 000,064,544 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\NvRaidSvno.dll [2010.09.30 05:41:49 | 000,064,544 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\NvRaidSvda.dll [2010.09.30 05:41:49 | 000,064,032 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\NvRaidSvenu.dll [2010.09.30 05:41:49 | 000,064,032 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\NvRaidSveng.dll [2010.09.30 05:41:49 | 000,060,448 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\NvRaidSvja.dll [2010.09.30 05:41:49 | 000,059,936 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\NvRaidSvko.dll [2010.09.30 05:41:49 | 000,058,400 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\NvRaidSvzht.dll [2010.09.30 05:41:49 | 000,058,400 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\NvRaidSvzhc.dll [2010.09.30 05:41:48 | 000,768,544 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\NvRaidWizard.dll [2010.09.30 05:32:00 | 000,540,192 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\NVUNINST.EXE [2010.09.30 04:53:48 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\appmgmt [2010.09.29 22:49:25 | 000,000,000 | ---D | C] -- C:\Windows\Sun [2010.09.29 12:34:35 | 000,000,000 | ---D | C] -- D:\Eigene Dateien\Documents\FIFA 11 [2010.09.29 11:48:52 | 000,000,000 | ---D | C] -- C:\Users\*****\AppData\Roaming\Leadertech [2010.09.28 04:35:46 | 000,000,000 | ---D | C] -- C:\ProgramData\TuneUp Software-BackupByTuneUpPortable [2010.09.23 23:22:01 | 000,000,000 | -HSD | C] -- C:\ProgramData\SecuROM [2010.09.23 23:22:01 | 000,000,000 | ---D | C] -- D:\Eigene Dateien\Documents\ArcaniA - Gothic 4 Demo [2010.09.22 19:08:00 | 000,000,000 | ---D | C] -- C:\Users\*****\AppData\Roaming\TeamViewer [2010.09.20 13:23:03 | 000,000,000 | ---D | C] -- C:\Programme\Common Files\DESIGNER [2010.09.20 13:22:52 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft.NET [2010.09.20 13:21:24 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Office [2010.09.20 13:21:24 | 000,000,000 | ---D | C] -- C:\Users\*****\AppData\Local\Microsoft Help [2010.09.20 13:21:23 | 000,000,000 | ---D | C] -- C:\Programme\Microsoft Office [2010.09.20 13:21:22 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft Help [2010.09.20 13:21:08 | 000,000,000 | RH-D | C] -- C:\MSOCache ========== Files - Modified Within 30 Days ========== [2010.10.20 10:59:58 | 000,575,488 | ---- | M] (OldTimer Tools) -- C:\Users\*****\Desktop\OTL.exe [2010.10.20 10:25:41 | 000,001,031 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk [2010.10.20 09:52:32 | 000,014,016 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 [2010.10.20 09:52:32 | 000,014,016 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 [2010.10.20 09:49:37 | 001,472,002 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI [2010.10.20 09:49:37 | 000,643,628 | ---- | M] () -- C:\Windows\SysNative\perfh007.dat [2010.10.20 09:49:37 | 000,606,992 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat [2010.10.20 09:49:37 | 000,126,188 | ---- | M] () -- C:\Windows\SysNative\perfc007.dat [2010.10.20 09:49:37 | 000,103,370 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat [2010.10.20 09:45:20 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat [2010.10.20 03:26:09 | 000,007,655 | ---- | M] () -- C:\Users\*****\AppData\Local\Resmon.ResmonCfg [2010.10.20 02:52:00 | 000,294,208 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT [2010.10.20 01:52:45 | 000,383,562 | RHS- | M] () -- C:\bootmgr [2010.10.20 01:52:45 | 000,206,312 | RHS- | M] () -- C:\XELDZ [2010.10.19 15:22:20 | 000,018,667 | ---- | M] () -- C:\Users\*****\AppData\Roaming\PStrip.ini [2010.10.19 15:03:25 | 000,215,128 | ---- | M] () -- C:\Windows\SysWow64\PnkBstrB.xtr [2010.10.19 15:03:24 | 000,215,128 | ---- | M] () -- C:\Windows\SysWow64\PnkBstrB.exe [2010.10.18 14:03:23 | 000,178,800 | ---- | M] (Sony DADC Austria AG.) -- C:\Windows\SysWow64\CmdLineExt_x64.dll [2010.10.18 13:27:42 | 000,017,753 | ---- | M] () -- C:\Users\*****\AppData\Roaming\PStrip.bak [2010.10.18 13:27:40 | 000,017,753 | ---- | M] () -- C:\Users\*****\AppData\Roaming\PStrip.bko [2010.10.16 02:16:26 | 000,016,802 | ---- | M] () -- C:\Users\*****\AppData\Roaming\PStrip.bk! [2010.10.15 15:33:37 | 000,000,417 | ---- | M] () -- C:\Users\Public\Desktop\R.O.H.A.N. Vendetta.lnk [2010.10.15 11:08:34 | 000,010,129 | ---- | M] () -- C:\Windows\unins000.dat [2010.10.15 11:08:25 | 001,199,179 | ---- | M] () -- C:\Windows\unins000.exe [2010.10.13 14:43:43 | 000,000,975 | ---- | M] () -- C:\Users\*****\Desktop\RadeonPro.lnk ========== Files Created - No Company Name ========== [2010.10.20 10:25:41 | 000,001,031 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk [2010.10.20 01:50:11 | 000,206,312 | RHS- | C] () -- C:\XELDZ [2010.10.18 16:13:04 | 000,072,533 | ---- | C] () -- C:\Windows\SysWow64\ieuinit.inf [2010.10.18 16:13:04 | 000,072,533 | ---- | C] () -- C:\Windows\SysNative\ieuinit.inf [2010.10.15 15:33:37 | 000,000,417 | ---- | C] () -- C:\Users\Public\Desktop\R.O.H.A.N. Vendetta.lnk [2010.10.15 11:08:27 | 000,052,836 | ---- | C] () -- C:\Windows\SysWow64\zlib1.dll [2010.10.15 11:08:26 | 000,394,752 | ---- | C] () -- C:\Windows\SysWow64\cygwinb19.dll [2010.10.15 11:08:26 | 000,271,264 | ---- | C] () -- C:\Windows\System\vbrun100.dll [2010.10.15 11:08:26 | 000,162,304 | ---- | C] () -- C:\Windows\SysWow64\libpng13.dll [2010.10.15 11:08:25 | 001,199,179 | ---- | C] () -- C:\Windows\unins000.exe [2010.10.15 11:08:25 | 000,210,944 | ---- | C] () -- C:\Windows\System\msvcrt10.dll [2010.10.15 11:08:25 | 000,010,129 | ---- | C] () -- C:\Windows\unins000.dat [2010.10.13 14:43:43 | 000,000,975 | ---- | C] () -- C:\Users\*****\Desktop\RadeonPro.lnk [2010.10.11 11:14:14 | 001,481,728 | ---- | C] () -- C:\Windows\SysNative\LegitCheckControl.dll [2010.10.11 11:14:14 | 000,323,072 | ---- | C] () -- C:\Windows\SysNative\WgaTray.exe [2010.10.11 11:14:14 | 000,190,976 | ---- | C] () -- C:\Windows\SysNative\WgaLogon.dll [2010.10.07 12:23:48 | 000,000,000 | ---- | C] () -- C:\Users\*****\Sti_Trace.log [2010.10.04 02:38:26 | 002,601,752 | ---- | C] () -- C:\Windows\SysWow64\pbsvc_moh.exe [2010.10.02 19:14:51 | 000,017,753 | ---- | C] () -- C:\Users\*****\AppData\Roaming\PStrip.bko [2010.10.02 18:47:22 | 000,016,802 | ---- | C] () -- C:\Users\*****\AppData\Roaming\PStrip.bk! [2010.10.02 18:46:51 | 000,017,753 | ---- | C] () -- C:\Users\*****\AppData\Roaming\PStrip.bak [2010.10.02 02:27:53 | 000,018,667 | ---- | C] () -- C:\Users\*****\AppData\Roaming\PStrip.ini [2010.10.02 02:27:12 | 000,013,008 | ---- | C] () -- C:\Windows\SysNative\drivers\pstrip64.sys [2010.10.01 13:43:25 | 000,583,888 | ---- | C] () -- C:\Windows\SysWow64\atiumdva.cap [2010.10.01 13:43:25 | 000,583,888 | ---- | C] () -- C:\Windows\SysNative\atiumd6a.cap [2010.10.01 13:43:25 | 000,219,348 | ---- | C] () -- C:\Windows\SysNative\atiicdxx.dat [2010.10.01 13:43:25 | 000,076,216 | ---- | C] () -- C:\Windows\SysNative\atiapfxx.blb [2010.10.01 13:43:25 | 000,021,866 | ---- | C] () -- C:\Windows\atiogl.xml [2010.10.01 13:43:25 | 000,002,857 | ---- | C] () -- C:\Windows\SysWow64\atipblag.dat [2010.10.01 13:43:25 | 000,002,857 | ---- | C] () -- C:\Windows\SysNative\atipblag.dat [2010.09.30 05:41:49 | 000,000,538 | ---- | C] () -- C:\Windows\SysNative\RegRaidSedona.bat [2010.09.30 05:41:48 | 000,007,052 | ---- | C] () -- C:\Windows\SysNative\nvide.nvu [2010.09.20 13:31:53 | 000,008,192 | ---- | C] () -- C:\Windows\SysWow64\srvany.exe [2010.09.10 21:23:00 | 000,003,972 | ---- | C] () -- C:\Windows\SysWow64\drivers\PciBus.sys [2010.09.09 17:41:08 | 000,007,655 | ---- | C] () -- C:\Users\*****\AppData\Local\Resmon.ResmonCfg [2010.09.08 19:25:28 | 000,001,769 | ---- | C] () -- C:\Windows\Language_trs.ini [2009.07.14 01:42:10 | 000,064,000 | ---- | C] () -- C:\Windows\SysWow64\BWContextHandler.dll [2009.07.13 23:03:59 | 000,364,544 | ---- | C] () -- C:\Windows\SysWow64\msjetoledb40.dll [2008.10.22 05:29:06 | 000,173,550 | ---- | C] () -- C:\Windows\SysWow64\xlive.dll.cat [2006.10.11 05:33:58 | 000,010,288 | ---- | C] () -- C:\Windows\SysWow64\drivers\ASUSHWIO.SYS < End of report > OTL Logfile: Code:
ATTFilter OTL Extras logfile created on: 20.10.2010 11:00:49 - Run 1
OTL by OldTimer - Version 3.2.16.0 Folder = C:\Users\*****\Desktop
64bit- Ultimate Edition (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 9.0.7930.16406)
Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy
2,00 Gb Total Physical Memory | 1,00 Gb Available Physical Memory | 27,00% Memory free
4,00 Gb Paging File | 2,00 Gb Available in Paging File | 51,00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 72,27 Gb Total Space | 51,20 Gb Free Space | 70,85% Space Free | Partition Type: NTFS
Drive D: | 523,90 Gb Total Space | 90,03 Gb Free Space | 17,18% Space Free | Partition Type: NTFS
Drive L: | 596,16 Gb Total Space | 372,83 Gb Free Space | 62,54% Space Free | Partition Type: NTFS
Computer Name: ***** | User Name: **** | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Extra Registry (SafeList) ==========
========== File Associations ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.url[@ = InternetShortcut] -- C:\Windows\System32\ieframe.DLL (Microsoft Corporation)
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation)
.url [@ = InternetShortcut] -- C:\Windows\System32\ieframe.DLL (Microsoft Corporation)
[HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation)
========== Shell Spawning ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %* File not found
cmdfile [open] -- "%1" %* File not found
comfile [open] -- "%1" %* File not found
exefile [open] -- "%1" %* File not found
helpfile [open] -- Reg Error: Key error.
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [open] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %* File not found
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1" File not found
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation)
scrfile [open] -- "%1" /S File not found
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1 File not found
Directory [AddToPlaylistVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [open] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation)
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
========== Security Center Settings ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = 28 4D B2 76 41 04 CA 01 [binary data]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
========== Firewall Settings ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
========== Authorized Applications List ==========
========== HKEY_LOCAL_MACHINE Uninstall List ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{1F6D1DB5-82B5-41A4-85A2-0A382C142A35}_is1" = Allgemeine Runtime Files (x86)
"{2ACBF1FA-F5C3-4B19-A774-B22A31F231B9}_is1" = Media Player Classic - Home Cinema v1.4.2499.0 x64
"{3DDACE1F-3B1E-D6AB-CD3D-B6E987511945}" = ATI Catalyst Install Manager
"{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148
"{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}" = Microsoft Visual C++ 2005 Redistributable (x64)
"{8220EEFE-38CD-377E-8595-13398D740ACE}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17
"{88F41EE2-949B-4B52-933D-C7F8F67BC1D2}" = NetSpeedMonitor 2.5.4.0 x64
"{90140000-0011-0000-1000-0000000FF1CE}" = Microsoft Office Professional Plus 2010
"{90140000-0015-0407-1000-0000000FF1CE}" = Microsoft Office Access MUI (German) 2010
"{90140000-0016-0407-1000-0000000FF1CE}" = Microsoft Office Excel MUI (German) 2010
"{90140000-0018-0407-1000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (German) 2010
"{90140000-0019-0407-1000-0000000FF1CE}" = Microsoft Office Publisher MUI (German) 2010
"{90140000-001A-0407-1000-0000000FF1CE}" = Microsoft Office Outlook MUI (German) 2010
"{90140000-001B-0407-1000-0000000FF1CE}" = Microsoft Office Word MUI (German) 2010
"{90140000-001F-0407-1000-0000000FF1CE}" = Microsoft Office Proof (German) 2010
"{90140000-001F-0409-1000-0000000FF1CE}" = Microsoft Office Proof (English) 2010
"{90140000-001F-040C-1000-0000000FF1CE}" = Microsoft Office Proof (French) 2010
"{90140000-001F-0410-1000-0000000FF1CE}" = Microsoft Office Proof (Italian) 2010
"{90140000-002C-0407-1000-0000000FF1CE}" = Microsoft Office Proofing (German) 2010
"{90140000-0043-0000-1000-0000000FF1CE}" = Microsoft Office Office 32-bit Components 2010
"{90140000-0043-0407-1000-0000000FF1CE}" = Microsoft Office Shared 32-bit MUI (German) 2010
"{90140000-0044-0407-1000-0000000FF1CE}" = Microsoft Office InfoPath MUI (German) 2010
"{90140000-006E-0407-1000-0000000FF1CE}" = Microsoft Office Shared MUI (German) 2010
"{90140000-00A1-0407-1000-0000000FF1CE}" = Microsoft Office OneNote MUI (German) 2010
"{90140000-00BA-0407-1000-0000000FF1CE}" = Microsoft Office Groove MUI (German) 2010
"{DA5E371C-6333-3D8A-93A4-6FD5B20BCC6E}" = Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319
"{FD53298A-4734-AFCB-B733-4C07776E589E}" = ccc-utility64
"EPSON Printer and Utilities" = EPSON-Drucker-Software
"NVIDIA Drivers" = NVIDIA Drivers
"Office14.PROPLUS" = Microsoft Office Professional Plus 2010
"TeamSpeak 3 Client" = TeamSpeak 3 Client
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{0FB0306C-11D8-35F2-9AC9-121FA753F9AD}" = Visual C++ 2008 x64 Runtime - (v9.0.30729.5026)
"{0FB0306C-11D8-35F2-9AC9-121FA753F9AD}.vc_x64runtime_30729_5026" = Visual C++ 2008 x64 Runtime - v9.0.30729.5026
"{1148E85C-E1AF-48E0-A29C-68DACE07E054}" = Pro Evolution Soccer 2011
"{155F4A0E-76ED-45A2-91FB-FF2A2133C31A}" = Risen
"{179C91E9-D9ED-D5CC-F0D8-9579DBDED8D6}" = CCC Help English
"{196BB40D-1578-3D01-B289-BEFC77A11A1E}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{26A24AE4-039D-4CA4-87B4-2F83216021FF}" = Java(TM) 6 Update 21
"{2DF7B278-D3B6-40A4-B25C-0E7149F439EA}" = 3DMark05
"{3AC8457C-0385-4BEA-A959-E095F05D6D67}" = Battlefield: Bad Company™ 2
"{3FEA6CD1-EA13-4CE7-A74E-A74A4A0A7B5C}" = FIFA 11
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{5454083B-1308-4485-BF17-1110000B8301}" = Grand Theft Auto IV
"{579BA58C-F33D-4970-9953-B94B43768AC3}" = Grand Theft Auto IV
"{59E4543A-D49D-4489-B445-473D763C79AF}" = Microsoft Games for Windows - LIVE Redistributable
"{68A35043-C55A-4237-88C9-37EE1C63ED71}" = Microsoft Visual J# 2.0 Redistributable Package
"{6AFCA4E1-9B78-3640-8F72-A7BF33448200}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729
"{6C8B53B9-41EE-AD83-007A-55EE64DE6932}" = Catalyst Control Center Graphics Previews Common
"{71929EC1-FDB2-4A67-AAAD-936E4539FA84}_is1" = Driver Sweeper 2.1.0
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{7F3AD00A-1819-4B15-BB7D-08B3586336D7}" = 3DMark06
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{BEE64C14-BEF1-4610-8A68-A16EAA47B882}" = Futuremark SystemInfo
"{CF5DE1DD-F7E6-694D-1E82-84C7C9C9ABDB}" = Catalyst Control Center Graphics Previews Vista
"{DDA34038-89BD-4804-B0B8-DC48D5DFB463}" = Catalyst Control Center - Branding
"{E04ACCBC-DF36-364E-87E8-6C24BB981AB8}" = Visual C++ 2008 x86 Runtime - (v9.0.30729.5026)
"{E04ACCBC-DF36-364E-87E8-6C24BB981AB8}.vc_x86runtime_30729_5026" = Visual C++ 2008 x86 Runtime - v9.0.30729.5026
"{F71E7762-8A64-AECC-0917-DA51677041CF}" = Catalyst Control Center InstallProxy
"{F9835182-794B-4F24-902A-E2CA9D43380F}" = NVIDIA PhysX
"{F9D65BA1-84C5-B4CB-91FE-D68F07ECBA24}" = ccc-core-static
"{FF35F637-72B9-43BE-A281-06EB2854393A}" = 3DMark03
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"Akamai" = Akamai NetSession Interface
"ArcaniA" = ArcaniA - Gothic 4
"Avira AntiVir Desktop" = Avira AntiVir Personal - Free Antivirus
"BattlEye" = BattlEye Uninstall
"CCleaner" = CCleaner
"CrystalDiskInfo_is1" = CrystalDiskInfo 3.8.0
"EPSON Scanner" = EPSON Scan
"Foxit Reader" = Foxit Reader
"Fraps" = Fraps (remove only)
"ImgBurn" = ImgBurn
"Lara Croft and the Guardian of Light_is1" = Lara Croft and the Guardian of Light
"Mafia II_is1" = Mafia II
"Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware
"Marvell Miniport Driver" = Marvell Miniport Driver
"Microsoft Visual J# 2.0 Redistributable Package" = Microsoft Visual J# 2.0 Redistributable Package
"Monitor Asset Manager" = Monitor Asset Manager
"Mozilla Firefox (3.6.11)" = Mozilla Firefox (3.6.11)
"PowerStrip 3 (remove only)" = PowerStrip 3 (remove only)
"PunkBusterSvc" = PunkBuster Services
"RadeonPro_is1" = RadeonPro 1.0 (Build 1.0.10.1)
"Revo Uninstaller" = Revo Uninstaller 1.89
"RivaTuner" = RivaTuner v2.24 MSI Master Overclocking Arena 2009 edition
"Rohan_DE" = R.O.H.A.N. Vendetta
"softMCCS" = softMCCS
"VLC media player" = VLC media player 1.1.4
"WinRAR archiver" = WinRAR
"Xilisoft Video Converter Ultimate" = Xilisoft Video Converter Ultimate
========== HKEY_CURRENT_USER Uninstall List ==========
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"QIP 2005" = QIP 2005 8095
========== Last 10 Event Log Errors ==========
[ Application Events ]
Error - 19.10.2010 06:33:48 | Computer Name = ***** | Source = Application Error | ID = 1000
Description = Name der fehlerhaften Anwendung: GTAIV.exe, Version: 1.0.6.0, Zeitstempel:
0x4bb3ad56 Name des fehlerhaften Moduls: WININET.dll, Version: 9.0.7930.16406, Zeitstempel:
0x4c7e044e Ausnahmecode: 0xc0000005 Fehleroffset: 0x0000e958 ID des fehlerhaften Prozesses:
0xeb4 Startzeit der fehlerhaften Anwendung: 0x01cb6f791420e080 Pfad der fehlerhaften
Anwendung: L:\Spiele\Rockstar Games\Grand Theft Auto IV\GTAIV.exe Pfad des fehlerhaften
Moduls: C:\Windows\syswow64\WININET.dll Berichtskennung: 5ac8d3d0-db6c-11df-a936-001d92f1b738
Error - 19.10.2010 07:36:42 | Computer Name = ***** | Source = Application Error | ID = 1000
Description = Name der fehlerhaften Anwendung: GTAIV.exe, Version: 1.0.6.0, Zeitstempel:
0x4bb3ad56 Name des fehlerhaften Moduls: WININET.dll, Version: 9.0.7930.16406, Zeitstempel:
0x4c7e044e Ausnahmecode: 0xc0000005 Fehleroffset: 0x0000e958 ID des fehlerhaften Prozesses:
0x8d4 Startzeit der fehlerhaften Anwendung: 0x01cb6f81dc0f2720 Pfad der fehlerhaften
Anwendung: L:\Spiele\Rockstar Games\Grand Theft Auto IV\GTAIV.exe Pfad des fehlerhaften
Moduls: C:\Windows\syswow64\WININET.dll Berichtskennung: 24abbe80-db75-11df-a936-001d92f1b738
Error - 19.10.2010 07:40:44 | Computer Name = ***** | Source = Application Error | ID = 1000
Description = Name der fehlerhaften Anwendung: GTAIV.exe, Version: 1.0.6.0, Zeitstempel:
0x4bb3ad56 Name des fehlerhaften Moduls: WININET.dll, Version: 9.0.7930.16406, Zeitstempel:
0x4c7e044e Ausnahmecode: 0xc0000005 Fehleroffset: 0x0000e958 ID des fehlerhaften Prozesses:
0xbfc Startzeit der fehlerhaften Anwendung: 0x01cb6f826b380480 Pfad der fehlerhaften
Anwendung: L:\Spiele\Rockstar Games\Grand Theft Auto IV\GTAIV.exe Pfad des fehlerhaften
Moduls: C:\Windows\syswow64\WININET.dll Berichtskennung: b4c31a90-db75-11df-a936-001d92f1b738
Error - 19.10.2010 07:41:17 | Computer Name = ***** | Source = Application Error | ID = 1000
Description = Name der fehlerhaften Anwendung: GTAIV.exe, Version: 1.0.6.0, Zeitstempel:
0x4bb3ad56 Name des fehlerhaften Moduls: WININET.dll, Version: 9.0.7930.16406, Zeitstempel:
0x4c7e044e Ausnahmecode: 0xc0000005 Fehleroffset: 0x0000e958 ID des fehlerhaften Prozesses:
0xad4 Startzeit der fehlerhaften Anwendung: 0x01cb6f828217bb00 Pfad der fehlerhaften
Anwendung: L:\Spiele\Rockstar Games\Grand Theft Auto IV\GTAIV.exe Pfad des fehlerhaften
Moduls: C:\Windows\syswow64\WININET.dll Berichtskennung: c860ec80-db75-11df-a936-001d92f1b738
Error - 19.10.2010 07:41:44 | Computer Name = ***** | Source = Application Error | ID = 1000
Description = Name der fehlerhaften Anwendung: GTAIV.exe, Version: 1.0.6.0, Zeitstempel:
0x4bb3ad56 Name des fehlerhaften Moduls: WININET.dll, Version: 9.0.7930.16406, Zeitstempel:
0x4c7e044e Ausnahmecode: 0xc0000005 Fehleroffset: 0x0000e958 ID des fehlerhaften Prozesses:
0x97c Startzeit der fehlerhaften Anwendung: 0x01cb6f8292663ae0 Pfad der fehlerhaften
Anwendung: L:\Spiele\Rockstar Games\Grand Theft Auto IV\GTAIV.exe Pfad des fehlerhaften
Moduls: C:\Windows\syswow64\WININET.dll Berichtskennung: d8b11a10-db75-11df-a936-001d92f1b738
Error - 19.10.2010 07:42:12 | Computer Name = ***** | Source = Application Error | ID = 1000
Description = Name der fehlerhaften Anwendung: GTAIV.exe, Version: 1.0.6.0, Zeitstempel:
0x4bb3ad56 Name des fehlerhaften Moduls: WININET.dll, Version: 9.0.7930.16406, Zeitstempel:
0x4c7e044e Ausnahmecode: 0xc0000005 Fehleroffset: 0x0000e958 ID des fehlerhaften Prozesses:
0xf34 Startzeit der fehlerhaften Anwendung: 0x01cb6f82a33c1330 Pfad der fehlerhaften
Anwendung: L:\Spiele\Rockstar Games\Grand Theft Auto IV\GTAIV.exe Pfad des fehlerhaften
Moduls: C:\Windows\syswow64\WININET.dll Berichtskennung: e97a2120-db75-11df-a936-001d92f1b738
Error - 19.10.2010 07:42:40 | Computer Name = ***** | Source = Application Error | ID = 1000
Description = Name der fehlerhaften Anwendung: GTAIV.exe, Version: 1.0.6.0, Zeitstempel:
0x4bb3ad56 Name des fehlerhaften Moduls: WININET.dll, Version: 9.0.7930.16406, Zeitstempel:
0x4c7e044e Ausnahmecode: 0xc0000005 Fehleroffset: 0x0000e958 ID des fehlerhaften Prozesses:
0xe74 Startzeit der fehlerhaften Anwendung: 0x01cb6f82b35ec820 Pfad der fehlerhaften
Anwendung: L:\Spiele\Rockstar Games\Grand Theft Auto IV\GTAIV.exe Pfad des fehlerhaften
Moduls: C:\Windows\syswow64\WININET.dll Berichtskennung: f9ad50d0-db75-11df-a936-001d92f1b738
Error - 19.10.2010 07:57:22 | Computer Name = ***** | Source = Application Error | ID = 1000
Description = Name der fehlerhaften Anwendung: GTAIV.exe, Version: 1.0.6.0, Zeitstempel:
0x4bb3ad56 Name des fehlerhaften Moduls: WININET.dll, Version: 9.0.7930.16406, Zeitstempel:
0x4c7e044e Ausnahmecode: 0xc0000005 Fehleroffset: 0x0000e958 ID des fehlerhaften Prozesses:
0xc60 Startzeit der fehlerhaften Anwendung: 0x01cb6f84bfb5e430 Pfad der fehlerhaften
Anwendung: L:\Spiele\Rockstar Games\Grand Theft Auto IV\GTAIV.exe Pfad des fehlerhaften
Moduls: C:\Windows\syswow64\WININET.dll Berichtskennung: 0791eab0-db78-11df-a936-001d92f1b738
Error - 19.10.2010 20:50:54 | Computer Name = ***** | Source = Application Error | ID = 1000
Description = Name der fehlerhaften Anwendung: Dwm.exe, Version: 6.1.7600.16385,
Zeitstempel: 0x4a5bc541 Name des fehlerhaften Moduls: fraps64.dll_unloaded, Version:
0.0.0.0, Zeitstempel: 0x4a98b7fe Ausnahmecode: 0xc0000005 Fehleroffset: 0x0000000063579549
ID
des fehlerhaften Prozesses: 0x5bc Startzeit der fehlerhaften Anwendung: 0x01cb6fe8dab749e0
Pfad
der fehlerhaften Anwendung: C:\Windows\system32\Dwm.exe Pfad des fehlerhaften Moduls:
fraps64.dll Berichtskennung: 171886d0-dbe4-11df-b1ed-001d92f1b738
Error - 19.10.2010 21:30:40 | Computer Name = ***** | Source = Application Error | ID = 1000
Description = Name der fehlerhaften Anwendung: Dwm.exe, Version: 6.1.7600.16385,
Zeitstempel: 0x4a5bc541 Name des fehlerhaften Moduls: fraps64.dll_unloaded, Version:
0.0.0.0, Zeitstempel: 0x4a98b7fe Ausnahmecode: 0xc0000005 Fehleroffset: 0x0000000063579549
ID
des fehlerhaften Prozesses: 0x974 Startzeit der fehlerhaften Anwendung: 0x01cb6ff10cb4ebc0
Pfad
der fehlerhaften Anwendung: C:\Windows\system32\Dwm.exe Pfad des fehlerhaften Moduls:
fraps64.dll Berichtskennung: a5792880-dbe9-11df-811a-001d92f1b738
[ System Events ]
Error - 03.10.2010 18:55:50 | Computer Name = ***** | Source = EventLog | ID = 6008
Description = Das System wurde zuvor am ?04.?10.?2010 um 00:53:17 unerwartet heruntergefahren.
Error - 04.10.2010 05:10:19 | Computer Name = ***** | Source = EventLog | ID = 6008
Description = Das System wurde zuvor am ?04.?10.?2010 um 11:04:24 unerwartet heruntergefahren.
Error - 04.10.2010 05:13:16 | Computer Name = ***** | Source = Schannel | ID = 36888
Description = Es wurde eine schwerwiegende Warnung generiert: 10. Der interne Fehlerstatus
lautet: 10.
Error - 04.10.2010 08:06:17 | Computer Name = ***** | Source = Schannel | ID = 36888
Description = Es wurde eine schwerwiegende Warnung generiert: 10. Der interne Fehlerstatus
lautet: 10.
Error - 04.10.2010 08:34:16 | Computer Name = ***** | Source = Schannel | ID = 36888
Description = Es wurde eine schwerwiegende Warnung generiert: 10. Der interne Fehlerstatus
lautet: 10.
Error - 04.10.2010 13:11:43 | Computer Name = ***** | Source = Schannel | ID = 36888
Description = Es wurde eine schwerwiegende Warnung generiert: 10. Der interne Fehlerstatus
lautet: 10.
Error - 05.10.2010 09:01:56 | Computer Name = ***** | Source = Schannel | ID = 36888
Description = Es wurde eine schwerwiegende Warnung generiert: 10. Der interne Fehlerstatus
lautet: 10.
Error - 05.10.2010 13:24:28 | Computer Name = ***** | Source = Schannel | ID = 36888
Description = Es wurde eine schwerwiegende Warnung generiert: 10. Der interne Fehlerstatus
lautet: 10.
Error - 05.10.2010 20:31:58 | Computer Name = ***** | Source = Schannel | ID = 36888
Description = Es wurde eine schwerwiegende Warnung generiert: 10. Der interne Fehlerstatus
lautet: 10.
Error - 06.10.2010 10:58:36 | Computer Name = ***** | Source = Schannel | ID = 36888
Description = Es wurde eine schwerwiegende Warnung generiert: 10. Der interne Fehlerstatus
lautet: 10.
< End of report >
|
|
21.10.2010, 00:23
| #4 |
| | svchost.exe*32 greift auf das Internet zu, und stellt Verbindungen her muss ich noch combofix machen ? oder is das system sauber? |
|
22.10.2010, 09:38
| #5 |
| | svchost.exe*32 greift auf das Internet zu, und stellt Verbindungen her ich bitte um support, mache mir sorgen |
|
26.10.2010, 11:23
| #6 |
| | svchost.exe*32 greift auf das Internet zu, und stellt Verbindungen her Wieso antwortet kein Moderator? |
|
| Themen zu svchost.exe*32 greift auf das Internet zu, und stellt Verbindungen her |
| antivir, antivir guard, avg, avira, bho, desktop, explorer, firefox, helper, hijack, hijackthis, internet, internet explorer, lsass.exe, micro, microsoft, monitor, mozilla, netzwerk, plug-in, prozess, riskware.tool.ck, software, svchost.exe, svchost.exe*32, system, system32, syswow64, windows |
Linear-Darstellung
