OTL.txtOTL Logfile: Code:
OTL logfile created on: 5/4/2012 7:20:11 PM - Run
OTLPE by OldTimer - Version 3.1.48.0 Folder = X:\Programs\OTLPE
Microsoft Windows XP Service Pack 3 (Version = 5.1.2600) - Type = SYSTEM
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy
1,015.00 Mb Total Physical Memory | 775.00 Mb Available Physical Memory | 76.00% Memory free
902.00 Mb Paging File | 801.00 Mb Available in Paging File | 89.00% Paging File free
Paging file location(s): C:\pagefile.sys 1524 3048 [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Programme
Drive C: | 74.53 Gb Total Space | 56.95 Gb Free Space | 76.42% Space Free | Partition Type: NTFS
Drive D: | 7.38 Gb Total Space | 6.99 Gb Free Space | 94.63% Space Free | Partition Type: FAT32
Drive X: | 436.59 Mb Total Space | 0.00 Mb Free Space | 0.00% Space Free | Partition Type: CDFS
Computer Name: REATOGO | User Name: SYSTEM
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
Using ControlSet: ControlSet003
========== Win32 Services (SafeList) ==========
SRV - File not found [Auto] -- -- (atchksrv) Intel(R)
SRV - [2012/04/14 05:52:16 | 000,253,088 | ---- | M] (Adobe Systems Incorporated) [On_Demand] -- C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2012/01/31 02:56:05 | 000,086,224 | ---- | M] (Avira Operations GmbH & Co. KG) [Auto] -- C:\Programme\Avira\AntiVir Desktop\sched.exe -- (AntiVirSchedulerService)
SRV - [2012/01/31 02:55:53 | 000,463,824 | ---- | M] (Avira Operations GmbH & Co. KG) [Auto] -- C:\Programme\Avira\AntiVir Desktop\AVWEBGRD.EXE -- (AntiVirWebService)
SRV - [2012/01/31 02:55:48 | 000,110,032 | ---- | M] (Avira Operations GmbH & Co. KG) [Auto] -- C:\Programme\Avira\AntiVir Desktop\avguard.exe -- (AntiVirService)
SRV - [2011/08/05 06:30:02 | 000,444,640 | ---- | M] (Microsoft Corporation) [On_Demand] -- C:\Programme\Zune\ZuneWlanCfgSvc.exe -- (ZuneWlanCfgSvc)
SRV - [2011/08/05 06:30:02 | 000,268,512 | ---- | M] (Microsoft Corporation) [On_Demand] -- C:\Programme\Zune\WMZuneComm.exe -- (WMZuneComm)
SRV - [2011/08/05 06:29:56 | 006,363,872 | ---- | M] (Microsoft Corporation) [On_Demand] -- C:\Programme\Zune\ZuneNss.exe -- (ZuneNetworkSvc)
SRV - [2011/08/05 06:29:56 | 000,057,056 | ---- | M] (Microsoft Corporation) [Auto] -- C:\Programme\Zune\ZuneBusEnum.exe -- (ZuneBusEnum)
SRV - [2011/04/27 09:39:26 | 000,011,736 | ---- | M] (Microsoft Corporation) [Auto] -- C:\Programme\Microsoft Security Client\Antimalware\MsMpEng.exe -- (MsMpSvc)
SRV - [2009/02/23 05:48:50 | 000,030,312 | ---- | M] (Microsoft Corporation) [Auto] -- C:\Programme\Microsoft Small Business\Business Contact Manager\BcmSqlStartupSvc.exe -- (BcmSqlStartupSvc)
SRV - [2007/05/18 04:52:16 | 000,562,744 | ---- | M] (TOSHIBA Corporation) [Auto] -- C:\WINDOWS\system32\ThpSrv.exe -- (Thpsrv)
SRV - [2007/04/10 07:10:20 | 001,489,688 | ---- | M] (Intel Corporation) [Auto] -- C:\Programme\Intel\AMT\UNS.exe -- (UNS) Intel(R)
SRV - [2007/04/10 07:10:06 | 000,121,624 | ---- | M] (Intel Corporation) [Auto] -- C:\Programme\Intel\AMT\LMS.exe -- (LMS) Intel(R)
SRV - [2007/02/25 15:55:18 | 000,125,048 | ---- | M] (TOSHIBA CORPORATION) [Auto] -- C:\Programme\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe -- (TOSHIBA Bluetooth Service)
SRV - [2006/10/26 08:03:08 | 000,145,184 | ---- | M] (Microsoft Corporation) [On_Demand] -- C:\Programme\Gemeinsame Dateien\Microsoft Shared\Source Engine\OSE.EXE -- (ose)
SRV - [2006/10/05 15:10:12 | 000,009,216 | ---- | M] (Agere Systems) [Auto] -- C:\WINDOWS\system32\agrsmsvc.exe -- (AgereModemAudio)
SRV - [2006/05/25 13:30:16 | 000,114,688 | ---- | M] (TOSHIBA Corporation) [Auto] -- C:\WINDOWS\system32\TODDSrv.exe -- (TODDSrv)
SRV - [2006/01/19 13:51:20 | 000,118,784 | ---- | M] (TOSHIBA) [Auto] -- C:\Programme\TOSHIBA\TME3\Tmesrv31.exe -- (Tmesrv)
SRV - [2005/01/17 19:38:38 | 000,040,960 | ---- | M] (TOSHIBA CORPORATION) [Auto] -- C:\Programme\Toshiba\ConfigFree\CFSvcs.exe -- (CFSvcs)
SRV - [2004/10/21 20:24:18 | 000,073,728 | ---- | M] (Macrovision Corporation) [On_Demand] -- C:\Programme\Gemeinsame Dateien\InstallShield\Driver\1050\Intel 32\IDriverT.exe -- (IDriverT)
========== Driver Services (SafeList) ==========
DRV - File not found [Kernel | On_Demand] -- -- (WDICA)
DRV - File not found [Kernel | On_Demand] -- -- (Tosrfcom)
DRV - File not found [Kernel | On_Demand] -- -- (PDRFRAME)
DRV - File not found [Kernel | On_Demand] -- -- (PDRELI)
DRV - File not found [Kernel | On_Demand] -- -- (PDFRAME)
DRV - File not found [Kernel | On_Demand] -- -- (PDCOMP)
DRV - File not found [Kernel | System] -- -- (PCIDump)
DRV - File not found [Kernel | System] -- -- (lbrtfdc)
DRV - File not found [Kernel | System] -- -- (i2omgmt)
DRV - File not found [Kernel | System] -- -- (Changer)
DRV - [2012/04/01 20:31:43 | 000,039,016 | ---- | M] (RapidSolution Software AG) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\tbhsd.sys -- (tbhsd)
DRV - [2012/01/31 02:56:33 | 000,137,416 | ---- | M] (Avira GmbH) [Kernel | System] -- C:\WINDOWS\system32\drivers\avipbb.sys -- (avipbb)
DRV - [2012/01/31 02:56:33 | 000,074,640 | ---- | M] (Avira GmbH) [File_System | Auto] -- C:\WINDOWS\system32\drivers\avgntflt.sys -- (avgntflt)
DRV - [2011/09/16 10:08:07 | 000,036,000 | ---- | M] (Avira GmbH) [Kernel | System] -- C:\WINDOWS\system32\drivers\avkmgr.sys -- (avkmgr)
DRV - [2009/10/08 10:55:33 | 000,028,520 | ---- | M] (Avira GmbH) [Kernel | System] -- C:\WINDOWS\system32\drivers\ssmdrv.sys -- (ssmdrv)
DRV - [2007/04/27 07:01:34 | 002,203,520 | ---- | M] (Intel Corporation) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\NETw4x32.sys -- (NETw4x32) Intel(R)
DRV - [2007/04/27 04:19:00 | 000,021,120 | ---- | M] (TOSHIBA Corporation) [Kernel | Boot] -- C:\WINDOWS\system32\drivers\thpdrv.sys -- (Thpdrv)
DRV - [2007/04/06 03:27:36 | 000,044,800 | ---- | M] (Intel Corporation) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\HECI.sys -- (HECI) Intel(R)
DRV - [2007/03/26 06:22:18 | 000,105,856 | ---- | M] (TOSHIBA Corporation) [File_System | Auto] -- C:\WINDOWS\system32\drivers\tdudf.sys -- (tdudf)
DRV - [2007/03/12 22:32:40 | 004,486,144 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\RtkHDAud.sys -- (IntcAzAudAddService) Service for Realtek HD Audio (WDM)
DRV - [2007/03/09 09:23:18 | 000,006,528 | ---- | M] (TOSHIBA Corporation) [Kernel | Boot] -- C:\WINDOWS\system32\drivers\Thpevm.sys -- (Thpevm)
DRV - [2007/02/22 09:10:30 | 000,016,128 | ---- | M] (TOSHIBA Corporation.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\tdcmdpst.sys -- (tdcmdpst)
DRV - [2007/02/21 12:20:36 | 000,435,072 | ---- | M] (TOSHIBA Corporation) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\TEchoCan.sys -- (TEchoCan)
DRV - [2007/02/19 06:15:32 | 000,134,016 | ---- | M] (TOSHIBA Corporation) [File_System | Auto] -- C:\WINDOWS\system32\drivers\trudf.sys -- (trudf)
DRV - [2007/02/15 10:44:06 | 000,016,768 | ---- | M] (TOSHIBA Corporation) [Kernel | Boot] -- C:\WINDOWS\system32\drivers\TVALZ.SYS -- (TVALZ)
DRV - [2006/11/28 18:11:00 | 001,161,888 | ---- | M] (Agere Systems) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\AGRSM.sys -- (AgereSoftModem)
DRV - [2006/11/02 01:00:08 | 000,039,368 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\winusb.sys -- (WinUSB)
DRV - [2006/10/23 10:32:20 | 000,009,216 | ---- | M] (TOSHIBA Corporation) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\tosrfec.sys -- (tosrfec)
DRV - [2006/09/19 14:28:00 | 000,036,608 | ---- | M] (Infineon Technologies AG) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\ifxtpm.sys -- (IFXTPM)
DRV - [2006/05/05 12:00:02 | 000,013,568 | ---- | M] (UPEK Inc.) [File_System | Auto] -- C:\Programme\Gemeinsame Dateien\Protector Suite QL\Drivers\FdRedir.sys -- (FdRedir)
DRV - [2006/05/05 11:59:52 | 000,033,024 | ---- | M] (UPEK Inc.) [Kernel | Auto] -- C:\Programme\Gemeinsame Dateien\Protector Suite QL\Drivers\filedisk.sys -- (FileDisk2)
DRV - [2006/05/05 11:33:04 | 000,003,456 | ---- | M] (UPEK Inc.) [Kernel | Auto] -- C:\Programme\Protector Suite QL\smihlp.sys -- (smihlp)
DRV - [2004/06/16 05:08:48 | 000,005,888 | ---- | M] (Toshiba Corporation) [Kernel | System] -- C:\WINDOWS\system32\drivers\TMEI3E.sys -- (TMEI3E)
DRV - [2004/05/08 23:38:06 | 000,101,833 | ---- | M] (Alps Electric Co., Ltd.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\Apfiltr.sys -- (ApfiltrService)
DRV - [2003/01/29 17:35:00 | 000,012,032 | ---- | M] (TOSHIBA Corporation.) [Kernel | Auto] -- C:\WINDOWS\system32\drivers\Netdevio.sys -- (Netdevio)
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\Administrator_ON_C\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\Clemens_D_ON_C\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.de/
IE - HKU\Clemens_D_ON_C\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeLive,version=1.5: C:\Programme\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
O1 HOSTS File: ([2004/08/04 08:00:00 | 000,000,820 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (Adobe PDF Reader) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Programme\Gemeinsame Dateien\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
O2 - BHO: (SSVHelper Class) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Programme\Java\jre1.6.0\bin\ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (Avira SearchFree Toolbar plus Web Protection) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Programme\Ask.com\GenericAskToolbar.dll (Ask)
O3 - HKLM\..\Toolbar: (Avira SearchFree Toolbar plus Web Protection) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Programme\Ask.com\GenericAskToolbar.dll (Ask)
O3 - HKU\Clemens_D_ON_C\..\Toolbar\WebBrowser: (Avira SearchFree Toolbar plus Web Protection) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Programme\Ask.com\GenericAskToolbar.dll (Ask)
O4 - HKLM..\Run: [] File not found
O4 - HKLM..\Run: [000StTHK] C:\WINDOWS\System32\000StTHK.exe ()
O4 - HKLM..\Run: [00THotkey] C:\WINDOWS\system32\00THotkey.exe (TOSHIBA Corporation)
O4 - HKLM..\Run: [Alcmtr] C:\WINDOWS\Alcmtr.exe (Realtek Semiconductor Corp.)
O4 - HKLM..\Run: [ApnUpdater] C:\Programme\Ask.com\Updater\Updater.exe (Ask)
O4 - HKLM..\Run: [avgnt] C:\Programme\Avira\AntiVir Desktop\avgnt.exe (Avira Operations GmbH & Co. KG)
O4 - HKLM..\Run: [DDWMon] C:\Programme\TOSHIBA\TOSHIBA Direct Disc Writer\\ddwmon.exe ()
O4 - HKLM..\Run: [DpUtil] C:\Programme\Toshiba\DualPointUtility\TEDTray.exe (TOSHIBA)
O4 - HKLM..\Run: [MSC] C:\Programme\Microsoft Security Client\msseces.exe (Microsoft Corporation)
O4 - HKLM..\Run: [NDSTray.exe] File not found
O4 - HKLM..\Run: [PSQLLauncher] C:\Programme\Protector Suite QL\launcher.exe (UPEK Inc.)
O4 - HKLM..\Run: [SmoothView] C:\Programme\Toshiba\TOSHIBA Zoom-Dienstprogramm\SmoothView.exe (TOSHIBA Corporation)
O4 - HKLM..\Run: [TAudEffect] C:\Programme\TOSHIBA\TAudEffect\TAudEff.exe (TOSHIBA)
O4 - HKLM..\Run: [TFncKy] File not found
O4 - HKLM..\Run: [TFNF5] C:\WINDOWS\System32\TFNF5.exe (TOSHIBA Corp.)
O4 - HKLM..\Run: [ThpSrv] C:\WINDOWS\System32\thpsrv.exe (TOSHIBA Corporation)
O4 - HKLM..\Run: [TMERzCtl.EXE] C:\Programme\TOSHIBA\TME3\TMERzCtl.EXE (TOSHIBA)
O4 - HKLM..\Run: [TMESRV.EXE] C:\Programme\TOSHIBA\TME3\TMESRV31.EXE (TOSHIBA)
O4 - HKLM..\Run: [topi] C:\Programme\TOSHIBA\Toshiba Online Product Information\topi.exe (TOSHIBA)
O4 - HKLM..\Run: [TOSDCR] C:\WINDOWS\System32\TOSDCR.exe (TOSHIBA Corporation)
O4 - HKLM..\Run: [TosHKCW.exe] C:\Programme\TOSHIBA\Wireless Hotkey\TosHKCW.exe (TOSHIBA CORPORATION)
O4 - HKLM..\Run: [TPSMain] C:\WINDOWS\System32\TPSMain.exe (TOSHIBA Corporation)
O4 - HKLM..\Run: [TPSODDCtl] C:\WINDOWS\System32\TPSODDCtl.exe (TOSHIBA Corporation)
O4 - HKU\.DEFAULT..\Run: [DWQueuedReporting] C:\Programme\Gemeinsame Dateien\Microsoft Shared\DW\DWTRIG20.EXE (Microsoft Corporation)
O4 - HKU\Administrator_ON_C..\Run: [TOSCDSPD] C:\Programme\Toshiba\TOSCDSPD\TOSCDSPD.exe (TOSHIBA)
O4 - HKU\Clemens_D_ON_C..\Run: [] C:\Dokumente und Einstellungen\Clemens D\Lokale Einstellungen\Temp\hnszs0.exe ()
O4 - HKU\Clemens_D_ON_C..\Run: [TOSCDSPD] C:\Programme\Toshiba\TOSCDSPD\TOSCDSPD.exe (TOSHIBA)
O4 - Startup: C:\Dokumente und Einstellungen\Clemens D\Startmenü\Programme\Autostart\Dropbox.lnk = File not found
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\Administrator_ON_C\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\Clemens_D_ON_C\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\LocalService_ON_C\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\NetworkService_ON_C\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O9 - Extra 'Tools' menuitem : Sun Java Konsole - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Programme\Java\jre1.5.0_06\bin\NPJPI150_06.dll (Sun Microsystems, Inc.)
O10 - Protocol_Catalog9\Catalog_Entries\000000000001 - C:\Programme\Avira\AntiVir Desktop\avsda.dll (Avira Operations GmbH & Co. KG)
O10 - Protocol_Catalog9\Catalog_Entries\000000000002 - C:\Programme\Avira\AntiVir Desktop\avsda.dll (Avira Operations GmbH & Co. KG)
O10 - Protocol_Catalog9\Catalog_Entries\000000000018 - C:\Programme\Avira\AntiVir Desktop\avsda.dll (Avira Operations GmbH & Co. KG)
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} hxxp://www.update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1333656708828 (MUWebControl Class)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0-windows-i586.cab (Java Plug-in 1.6.0)
O16 - DPF: {CAFEEFAC-0015-0000-0006-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.5.0/jinstall-1_5_0_06-windows-i586.cab (Java Plug-in 1.5.0_06)
O16 - DPF: {CAFEEFAC-0016-0000-0000-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0-windows-i586.cab (Java Plug-in 1.6.0)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0-windows-i586.cab (Java Plug-in 1.6.0)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.178.1
O18 - Protocol\Handler\http\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\http\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\https\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\https\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\ipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\mso-offdap {3D9F03FA-7A94-11D3-BE81-0050048385D1} - C:\Programme\Gemeinsame Dateien\Microsoft Shared\Web Components\10\OWC10.DLL (Microsoft Corporation)
O18 - Protocol\Handler\mso-offdap11 {32505114-5902-49B2-880A-1F7738E5A384} - C:\Programme\Gemeinsame Dateien\Microsoft Shared\Web Components\11\OWC11.DLL (Microsoft Corporation)
O18 - Protocol\Filter\text/xml {807553E5-5146-11D5-A672-00B0D022E945} - C:\Programme\Gemeinsame Dateien\Microsoft Shared\OFFICE11\MSOXMLMF.DLL (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - Winlogon\Notify\psfus: DllName - psqlpwd.dll - C:\WINDOWS\System32\psqlpwd.dll (UPEK Inc.)
O20 - Winlogon\Notify\TosBtNP: DllName - TosBtNP.dll - C:\WINDOWS\System32\TosBtNP.dll (TOSHIBA CORPORATION)
O24 - Desktop Components:0 (Die derzeitige Homepage) - About:Home
O24 - Desktop WallPaper: C:\WINDOWS\TOSHIBA1280x0800.bmp
O24 - Desktop BackupWallPaper: C:\WINDOWS\TOSHIBA1280x0800.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2007/07/09 09:07:01 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O32 - AutoRun File - [2006/03/24 07:06:41 | 000,000,053 | R--- | M] () - X:\AUTORUN.INF -- [ CDFS ]
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
========== Files/Folders - Created Within 30 Days ==========
[2012/05/03 17:17:44 | 000,000,000 | R-SD | C] -- C:\Dokumente und Einstellungen\Clemens D\Eigene Dateien\Safe
[2012/05/03 01:32:36 | 000,000,000 | ---D | C] -- C:\Malwarebytes' Anti-Malware
[2012/05/03 01:31:20 | 000,000,000 | ---D | C] -- C:\Programme\SpybotPortable
[2012/05/02 23:40:52 | 001,585,560 | ---- | C] (Emsi Software GmbH) -- C:\Programme\start.exe
[2012/05/02 23:40:49 | 000,000,000 | ---D | C] -- C:\Programme\Run
[2012/05/02 23:40:49 | 000,000,000 | ---D | C] -- C:\Programme\Languages
[2012/05/02 23:40:26 | 000,000,000 | ---D | C] -- C:\Programme\New Folder
[2012/04/30 10:41:49 | 000,000,000 | ---D | C] -- C:\Kaspersky Rescue Disk 10.0
[2012/04/30 08:12:35 | 000,000,000 | ---D | C] -- C:\WINDOWS\Sun
[2012/04/25 10:57:01 | 000,000,000 | RH-D | C] -- C:\Dokumente und Einstellungen\Clemens D\Recent
[2012/04/25 10:29:18 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\Clemens D\Desktop\Musik
[2012/04/21 07:14:11 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\Clemens D\Lokale Einstellungen\Anwendungsdaten\CrashRpt
[2012/04/21 07:12:37 | 000,000,000 | -HSD | C] -- C:\WINDOWS\System32\AI_RecycleBin
[2012/04/21 07:10:57 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\RapidSolution
[2012/04/21 07:03:20 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\Clemens D\Lokale Einstellungen\Anwendungsdaten\RapidSolution
[2012/04/18 16:18:15 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Microsoft Office Live Add-in
[2012/04/18 16:18:08 | 000,000,000 | ---D | C] -- C:\Programme\Microsoft
[2012/04/15 17:08:02 | 000,000,000 | ---D | C] -- C:\Programme\eRightSoft
[2012/04/14 05:52:18 | 000,000,000 | -HSD | C] -- C:\Dokumente und Einstellungen\LocalService\IETldCache
[2012/04/13 13:20:07 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Fighters
[2012/04/13 13:20:03 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Fighters
[2012/04/13 13:19:58 | 000,000,000 | ---D | C] -- C:\Programme\Fighters
[2012/04/10 16:21:47 | 000,209,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\TABCTL32.ocx
[2012/04/10 16:21:47 | 000,140,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\COMDLG32.ocx
[2012/04/06 11:53:31 | 000,274,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mucltui.dll
[2012/04/06 11:53:31 | 000,017,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mucltui.dll.mui
[2012/04/06 11:31:10 | 000,418,464 | ---- | C] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerApp.exe
[2012/04/06 11:31:10 | 000,070,304 | ---- | C] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerCPLApp.cpl
[2012/04/06 09:41:38 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\All Users\Dokumente\microsoft
[2012/04/06 09:40:34 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\sv-SE
[2012/04/06 09:40:34 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ms-MY
[2012/04/06 09:40:33 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\zh-TW
[2012/04/06 09:40:33 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\zh-CN
[2012/04/06 09:40:33 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ru-RU
[2012/04/06 09:40:33 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\pt-PT
[2012/04/06 09:40:33 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\pt-BR
[2012/04/06 09:40:33 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\pl-PL
[2012/04/06 09:40:33 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\nl-NL
[2012/04/06 09:40:33 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\nb-NO
[2012/04/06 09:40:33 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ko-KR
[2012/04/06 09:40:33 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ja-JP
[2012/04/06 09:40:33 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\it-IT
[2012/04/06 09:40:33 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\hu-HU
[2012/04/06 09:40:33 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\fr-FR
[2012/04/06 09:40:33 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\fi-FI
[2012/04/06 09:40:33 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\es-ES
[2012/04/06 09:40:33 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\el-GR
[2012/04/06 09:40:33 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\da-DK
[2012/04/06 09:40:33 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\cs-CZ
[2012/04/06 08:32:25 | 000,000,000 | ---D | C] -- C:\WINDOWS\pss
[2012/04/06 08:19:20 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\UMDF\ko-KR
[2012/04/06 08:19:18 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\UMDF\ms-MY
[2012/04/06 08:19:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\UMDF\id-ID
[2012/04/06 08:19:14 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\UMDF\sv-SE
[2012/04/06 08:19:12 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\UMDF\nb-NO
[2012/04/06 08:19:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\UMDF\hu-HU
[2012/04/06 08:19:09 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\UMDF\fi-FI
[2012/04/06 08:19:07 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\UMDF\el-GR
[2012/04/06 08:19:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\UMDF\da-DK
[2012/04/06 08:19:02 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\UMDF\cs-CZ
[2012/04/06 08:18:58 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\UMDF\zh-TW
[2012/04/06 08:18:53 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\UMDF\ru-RU
[2012/04/06 08:18:51 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\UMDF\pl-PL
[2012/04/06 08:18:48 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\UMDF\zh-CN
[2012/04/06 08:18:46 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\UMDF\ja-JP
[2012/04/06 08:18:44 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\UMDF\pt-BR
[2012/04/06 08:18:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\UMDF\pt-PT
[2012/04/06 08:18:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\UMDF\nl-NL
[2012/04/06 08:18:40 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\UMDF\it-IT
[2012/04/06 08:18:39 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\UMDF\de-DE
[2012/04/06 08:18:38 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\UMDF\fr-FR
[2012/04/06 08:18:37 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\UMDF\es-ES
[2012/04/06 08:17:41 | 000,016,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\spmsgXP_2k3.dll
[2012/04/06 08:17:24 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Zune
[2012/04/06 08:17:17 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\UMDF\en-US
[2012/04/06 08:17:06 | 000,000,000 | ---D | C] -- C:\Programme\Zune
[2012/04/06 08:15:40 | 000,016,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\spmsg.dll
[2012/04/06 08:14:53 | 000,000,000 | ---D | C] -- C:\Programme\Windows Media Connect 2
[2012/04/06 08:09:46 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\Clemens D\Desktop\Bilder
[2012/04/06 08:06:33 | 000,062,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cdrom.sys
[2012/04/06 08:06:31 | 000,466,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\imapi2fs.dll
[2012/04/06 08:06:31 | 000,466,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imapi2fs.dll
[2012/04/06 08:06:31 | 000,320,512 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\imapi2.dll
[2012/04/06 08:06:31 | 000,320,512 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imapi2.dll
[2012/04/06 08:04:50 | 000,000,000 | R--D | C] -- C:\Dokumente und Einstellungen\Clemens D\Eigene Dateien\Dropbox
[2012/04/06 08:03:56 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Xleaner
[2012/04/06 08:03:51 | 000,000,000 | ---D | C] -- C:\Programme\Xleaner
[2012/04/06 08:03:31 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\Clemens D\Startmenü\Programme\Dropbox
[2012/04/06 08:03:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\UMDF
[2012/04/06 08:03:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\LogFiles
[2012/04/06 08:02:37 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\Clemens D\Anwendungsdaten\Dropbox
[2012/04/06 08:00:40 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\Clemens D\Desktop\Programme
[2012/04/06 08:00:30 | 000,000,000 | ---D | C] -- C:\Programme\mp3DirectCut
[2012/04/06 08:00:11 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\7-Zip
[2012/04/06 08:00:09 | 000,000,000 | ---D | C] -- C:\Programme\7-Zip
[2012/04/06 07:59:03 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\Clemens D\Desktop\Briefe
[2012/04/06 07:57:28 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\Clemens D\Desktop\ElsterFormular
[2012/04/06 07:43:16 | 000,026,368 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\usbstor.sys
[2012/04/06 06:37:31 | 000,237,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\MpSigStub.exe
[2012/04/06 06:31:01 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\Clemens D\Desktop\Downloads
[2012/04/06 06:29:52 | 000,000,000 | ---D | C] -- C:\Programme\Microsoft Security Client
[2012/04/06 03:20:14 | 000,139,784 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rdpwd.sys
[2012/04/06 03:16:32 | 000,010,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ndistapi.sys
[2012/04/06 03:16:17 | 000,105,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mup.sys
[2012/04/06 03:12:24 | 000,040,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ndproxy.sys
[2012/04/06 03:12:14 | 000,045,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wab.exe
[2012/04/06 03:11:50 | 000,978,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mfc42.dll
[2012/04/06 03:11:50 | 000,954,368 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mfc40.dll
[2012/04/06 03:11:50 | 000,953,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mfc40u.dll
[2012/04/06 03:11:14 | 000,617,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\comctl32.dll
[2012/04/06 02:56:33 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\Clemens D\Anwendungsdaten\Avira
[2012/04/06 02:55:10 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\NtmsData
[2012/04/06 02:53:45 | 000,000,000 | -HSD | C] -- C:\Dokumente und Einstellungen\Clemens D\IECompatCache
[2012/04/06 02:53:24 | 000,000,000 | -HSD | C] -- C:\Dokumente und Einstellungen\Clemens D\PrivacIE
[2012/04/06 02:53:19 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\Clemens D\Anwendungsdaten\AskToolbar
[2012/04/06 02:51:50 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\Clemens D\Anwendungsdaten\Macromedia
[2012/04/06 02:51:05 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Avira
[2012/04/06 02:50:30 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\Clemens D\Lokale Einstellungen\Anwendungsdaten\AskToolbar
[2012/04/06 02:50:30 | 000,000,000 | ---D | C] -- C:\Programme\Ask.com
[2012/04/06 02:49:58 | 000,028,520 | ---- | C] (Avira GmbH) -- C:\WINDOWS\System32\drivers\ssmdrv.sys
[2012/04/06 02:49:55 | 000,137,416 | ---- | C] (Avira GmbH) -- C:\WINDOWS\System32\drivers\avipbb.sys
[2012/04/06 02:49:55 | 000,074,640 | ---- | C] (Avira GmbH) -- C:\WINDOWS\System32\drivers\avgntflt.sys
[2012/04/06 02:49:55 | 000,036,000 | ---- | C] (Avira GmbH) -- C:\WINDOWS\System32\drivers\avkmgr.sys
[2012/04/06 02:49:54 | 000,000,000 | ---D | C] -- C:\Programme\Avira
[2012/04/06 02:49:54 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Avira
[2012/04/06 02:32:40 | 000,000,000 | -HSD | C] -- C:\Dokumente und Einstellungen\Clemens D\IETldCache
[2012/04/06 02:20:02 | 000,000,000 | ---D | C] -- C:\WINDOWS\ie8updates
[2012/04/06 02:19:30 | 000,000,000 | ---D | C] -- C:\WINDOWS\WBEM
[2012/04/06 02:19:07 | 000,000,000 | -H-D | C] -- C:\WINDOWS\ie8
[2012/04/06 02:13:22 | 000,000,000 | ---D | C] -- C:\WINDOWS\Prefetch
[2012/04/06 02:01:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\l2schemas
[2012/04/06 02:01:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\de
[2012/04/06 02:01:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\bits
[2012/04/06 01:58:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\network diagnostic
[2012/04/06 01:56:32 | 000,000,000 | -H-D | C] -- C:\WINDOWS\$NtServicePackUninstall$
[2012/04/06 01:42:50 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\NetworkService\Lokale Einstellungen\Anwendungsdaten\PCHealth
[2012/04/06 01:42:27 | 000,602,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msfeeds.dll
[2012/04/06 01:42:27 | 000,055,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msfeedsbs.dll
[2012/04/06 01:42:24 | 002,000,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iertutil.dll
[2012/04/06 01:42:24 | 000,743,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iedvtool.dll
[2012/04/06 01:42:22 | 011,082,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ieframe.dll
[2012/04/05 18:00:34 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\XPSViewer
[2012/04/05 18:00:31 | 000,000,000 | ---D | C] -- C:\Programme\MSBuild
[2012/04/05 18:00:30 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\en-US
[2012/04/05 18:00:25 | 000,000,000 | ---D | C] -- C:\Programme\Reference Assemblies
[2012/04/05 18:00:07 | 001,676,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xpssvcs.dll
[2012/04/05 18:00:07 | 001,676,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\xpssvcs.dll
[2012/04/05 18:00:07 | 000,597,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\printfilterpipelinesvc.exe
[2012/04/05 18:00:07 | 000,575,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\xpsshhdr.dll
[2012/04/05 18:00:07 | 000,117,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\prntvpt.dll
[2012/04/05 18:00:07 | 000,089,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\filterpipelineprintproc.dll
[2012/04/05 18:00:07 | 000,000,000 | ---D | C] -- C:\123f42326d91ec6e0f35d7
[2012/04/05 17:03:54 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\Clemens D\Lokale Einstellungen\Anwendungsdaten\PCHealth
[2012/04/05 17:01:36 | 000,000,000 | ---D | C] -- C:\WINDOWS\ServicePackFiles
[2012/04/05 16:57:22 | 000,000,000 | ---D | C] -- C:\Programme\MSXML 6.0
[2012/04/05 16:56:03 | 000,000,000 | ---D | C] -- C:\Programme\Microsoft CAPICOM 2.1.0.2
[2012/04/05 16:49:09 | 000,028,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mdimon.dll
[2012/04/05 16:48:18 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Microsoft Office
[2012/04/05 16:47:40 | 000,000,000 | ---D | C] -- C:\Programme\Gemeinsame Dateien\DESIGNER
[2012/04/05 16:47:26 | 000,000,000 | ---D | C] -- C:\WINDOWS\SHELLNEW
[2012/04/05 16:44:11 | 000,000,000 | RH-D | C] -- C:\MSOCache
[2012/04/05 16:40:41 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Windows Genuine Advantage
[2012/04/05 16:35:00 | 000,025,471 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\drivers\watv10nt.sys
[2012/04/05 16:35:00 | 000,022,271 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\drivers\watv06nt.sys
[2012/04/05 16:35:00 | 000,011,935 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\drivers\wadv11nt.sys
[2012/04/05 16:35:00 | 000,011,871 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\drivers\wadv09nt.sys
[2012/04/05 16:35:00 | 000,011,807 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\drivers\wadv07nt.sys
[2012/04/05 16:35:00 | 000,011,295 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\drivers\wadv08nt.sys
[2012/04/05 16:34:54 | 000,404,990 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\slntamr.sys
[2012/04/05 16:34:54 | 000,129,535 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\slnt7554.sys
[2012/04/05 16:34:54 | 000,095,424 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\slnthal.sys
[2012/04/05 16:34:54 | 000,013,240 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\slwdmsup.sys
[2012/04/05 16:34:53 | 000,166,912 | ---- | C] (S3 Graphics, Inc.) -- C:\WINDOWS\System32\drivers\s3gnbm.sys
[2012/04/05 16:34:52 | 000,013,776 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\recagent.sys
[2012/04/05 16:34:50 | 000,180,360 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\ntmtlfax.sys
[2012/04/05 16:34:49 | 000,452,736 | ---- | C] (Matrox Graphics Inc.) -- C:\WINDOWS\System32\drivers\mtxparhm.sys
[2012/04/05 16:34:48 | 001,309,184 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\mtlstrm.sys
[2012/04/05 16:34:48 | 000,126,686 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\mtlmnt5.sys
[2012/04/05 16:32:28 | 000,073,216 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atintuxx.sys
[2012/04/05 16:32:28 | 000,063,488 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinxsxx.sys
[2012/04/05 16:32:28 | 000,031,744 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinxbxx.sys
[2012/04/05 16:32:28 | 000,028,672 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinsnxx.sys
[2012/04/05 16:32:28 | 000,013,824 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinttxx.sys
[2012/04/05 16:32:27 | 000,701,952 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati2mtag.sys
[2012/04/05 16:32:27 | 000,327,168 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati2mtaa.sys
[2012/04/05 16:32:27 | 000,104,960 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinrvxx.sys
[2012/04/05 16:32:27 | 000,063,663 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1rvxx.sys
[2012/04/05 16:32:27 | 000,057,856 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinbtxx.sys
[2012/04/05 16:32:27 | 000,052,224 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinraxx.sys
[2012/04/05 16:32:27 | 000,036,463 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1tuxx.sys
[2012/04/05 16:32:27 | 000,034,735 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1xsxx.sys
[2012/04/05 16:32:27 | 000,030,671 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1raxx.sys
[2012/04/05 16:32:27 | 000,029,455 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1xbxx.sys
[2012/04/05 16:32:27 | 000,026,367 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1snxx.sys
[2012/04/05 16:32:27 | 000,021,343 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1ttxx.sys
[2012/04/05 16:32:27 | 000,014,336 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinpdxx.sys
[2012/04/05 16:32:27 | 000,013,824 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinmdxx.sys
[2012/04/05 16:32:27 | 000,012,047 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1pdxx.sys
[2012/04/05 16:32:27 | 000,011,615 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1mdxx.sys
[2012/04/05 16:32:26 | 000,056,623 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1btxx.sys
[2012/04/05 16:17:29 | 000,273,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\bthport.sys
[2012/04/05 16:17:16 | 000,357,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\srv.sys
[2012/04/05 16:17:02 | 000,203,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rmcast.sys
[2012/04/05 16:16:50 | 000,331,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadce.dll
[2012/04/05 16:16:47 | 000,456,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mrxsmb.sys
[2012/04/05 16:14:30 | 000,471,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\aclayers.dll
[2012/04/05 16:14:27 | 002,195,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntoskrnl.exe
[2012/04/05 16:14:26 | 000,737,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\lsasrv.dll
[2012/04/05 16:14:25 | 002,151,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntkrnlmp.exe
[2012/04/05 16:14:24 | 002,029,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntkrpamp.exe
[2012/04/05 16:13:22 | 002,066,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mstscax.dll
[2012/04/05 16:12:31 | 000,119,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\t2embed.dll
[2012/04/05 16:12:31 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fontsub.dll
[2012/04/05 16:12:26 | 003,558,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\moviemk.exe
[2012/04/05 16:12:22 | 000,293,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\browserchoice.exe
[2012/04/05 16:12:05 | 000,337,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\netapi32.dll
[2012/04/05 16:10:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\PreInstall
[2012/04/05 16:00:22 | 000,000,000 | -HSD | C] -- C:\Dokumente und Einstellungen\Clemens D\UserData
[2012/04/05 15:59:21 | 000,000,000 | -HSD | C] -- C:\RECYCLER
[2012/04/05 15:32:31 | 000,744,448 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\helpsvc.exe
[2012/04/05 15:32:28 | 001,172,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msxml3.dll
[2012/04/05 15:25:40 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\Clemens D\Desktop\Toshiba
[2012/04/05 15:22:01 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\SoftwareDistribution
[2012/04/05 15:02:08 | 000,192,512 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxres.dll
[2012/04/05 15:01:46 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\Clemens D\Netzwerkumgebung
[2012/04/05 15:01:46 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\Administrator\Netzwerkumgebung
[2012/04/05 15:00:57 | 000,000,000 | --SD | C] -- C:\Dokumente und Einstellungen\Clemens D\Anwendungsdaten\Microsoft
[2012/04/05 15:00:57 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\Clemens D\Anwendungsdaten\InstallShield
[2012/04/05 15:00:57 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\Clemens D\Anwendungsdaten\Identities
[2012/04/05 15:00:57 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\Clemens D\Anwendungsdaten\Adobe
[2012/04/05 15:00:56 | 000,000,000 | RH-D | C] -- C:\Dokumente und Einstellungen\Clemens D\SendTo
[2012/04/05 15:00:56 | 000,000,000 | RH-D | C] -- C:\Dokumente und Einstellungen\Clemens D\Anwendungsdaten
[2012/04/05 15:00:56 | 000,000,000 | R--D | C] -- C:\Dokumente und Einstellungen\Clemens D\Startmenü\Programme\Zubehör
[2012/04/05 15:00:56 | 000,000,000 | R--D | C] -- C:\Dokumente und Einstellungen\Clemens D\Startmenü
[2012/04/05 15:00:56 | 000,000,000 | R--D | C] -- C:\Dokumente und Einstellungen\Clemens D\Favoriten
[2012/04/05 15:00:56 | 000,000,000 | R--D | C] -- C:\Dokumente und Einstellungen\Clemens D\Eigene Dateien\Eigene Videos
[2012/04/05 15:00:56 | 000,000,000 | R--D | C] -- C:\Dokumente und Einstellungen\Clemens D\Eigene Dateien\Eigene Musik
[2012/04/05 15:00:56 | 000,000,000 | R--D | C] -- C:\Dokumente und Einstellungen\Clemens D\Eigene Dateien
[2012/04/05 15:00:56 | 000,000,000 | R--D | C] -- C:\Dokumente und Einstellungen\Clemens D\Eigene Dateien\Eigene Bilder
[2012/04/05 15:00:56 | 000,000,000 | R--D | C] -- C:\Dokumente und Einstellungen\Clemens D\Startmenü\Programme\Autostart
[2012/04/05 15:00:56 | 000,000,000 | -HSD | C] -- C:\Dokumente und Einstellungen\Clemens D\Cookies
[2012/04/05 15:00:56 | 000,000,000 | -H-D | C] -- C:\Dokumente und Einstellungen\Clemens D\Vorlagen
[2012/04/05 15:00:56 | 000,000,000 | -H-D | C] -- C:\Dokumente und Einstellungen\Clemens D\Lokale Einstellungen
[2012/04/05 15:00:56 | 000,000,000 | -H-D | C] -- C:\Dokumente und Einstellungen\Clemens D\Druckumgebung
[2012/04/05 15:00:56 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\Clemens D\Lokale Einstellungen\Anwendungsdaten\WMTools Downloaded Files
[2012/04/05 15:00:56 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\Clemens D\Eigene Dateien\Updater5
[2012/04/05 15:00:56 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\Clemens D\Anwendungsdaten\toshiba
[2012/04/05 15:00:56 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\Clemens D\Anwendungsdaten\Sun
[2012/04/05 15:00:56 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\Clemens D\Lokale Einstellungen\Anwendungsdaten\Seven Zip
[2012/04/05 15:00:56 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\Clemens D\Anwendungsdaten\Protector Suite
[2012/04/05 15:00:56 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\Clemens D\Lokale Einstellungen\Anwendungsdaten\Microsoft Help
[2012/04/05 15:00:56 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\Clemens D\Lokale Einstellungen\Anwendungsdaten\Microsoft
[2012/04/05 15:00:56 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\Clemens D\Desktop
[2012/04/05 15:00:56 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\Clemens D\Lokale Einstellungen\Anwendungsdaten\ApplicationHistory
[2012/04/05 15:00:56 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\Clemens D\Lokale Einstellungen\Anwendungsdaten\Adobe
[2012/04/05 15:00:56 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\Clemens D\Lokale Einstellungen\Anwendungsdaten\{3248F0A6-6813-11D6-A77B-00B0D0150060}
[2012/04/05 15:00:06 | 000,000,000 | R--D | C] -- C:\WINDOWS\system32\config\systemprofile\Eigene Dateien
[2012/04/05 15:00:06 | 000,000,000 | ---D | C] -- C:\WINDOWS\system32\config\systemprofile\Anwendungsdaten\toshiba
[2012/04/05 15:00:06 | 000,000,000 | ---D | C] -- C:\WINDOWS\system32\config\systemprofile\Anwendungsdaten\Sun
[2012/04/05 15:00:06 | 000,000,000 | ---D | C] -- C:\WINDOWS\system32\config\systemprofile\Anwendungsdaten\Protector Suite
[2012/04/05 15:00:06 | 000,000,000 | ---D | C] -- C:\WINDOWS\system32\config\systemprofile\Anwendungsdaten\InstallShield
[2012/04/05 15:00:06 | 000,000,000 | ---D | C] -- C:\WINDOWS\system32\config\systemprofile\Anwendungsdaten\Identities
[2012/04/05 15:00:06 | 000,000,000 | ---D | C] -- C:\WINDOWS\system32\config\systemprofile\Anwendungsdaten\Adobe
[2012/04/05 14:59:45 | 000,172,032 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrtrk.lrc
[2012/04/05 14:59:45 | 000,172,032 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrsve.lrc
[2012/04/05 14:59:45 | 000,155,648 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrheb.lrc
[2012/04/05 14:59:45 | 000,131,072 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrjpn.lrc
[2012/04/05 14:59:45 | 000,126,976 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrkor.lrc
[2012/04/05 14:59:45 | 000,057,344 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igxprd32.dll
[2012/04/05 14:59:45 | 000,024,576 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxexps.dll
[2012/04/05 14:59:44 | 000,188,416 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrita.lrc
[2012/04/05 14:59:44 | 000,184,320 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrfra.lrc
[2012/04/05 14:59:44 | 000,176,128 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrcsy.lrc
[2012/04/05 14:59:44 | 000,172,032 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrdan.lrc
[2012/04/05 14:59:44 | 000,163,840 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrtha.lrc
[2012/04/05 14:59:44 | 000,159,744 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrara.lrc
[2012/04/05 14:59:44 | 000,047,616 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxsrvc.dll
[2012/04/05 14:59:43 | 002,383,872 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\ig4icd32.dll
[2012/04/05 14:59:43 | 001,612,480 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igxpdv32.dll
[2012/04/05 14:59:43 | 001,486,848 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\ig4dev32.dll
[2012/04/05 14:59:43 | 000,535,320 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxcfg.exe
[2012/04/05 14:59:43 | 000,192,512 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrdeu.lrc
[2012/04/05 14:59:43 | 000,188,416 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrnld.lrc
[2012/04/05 14:59:43 | 000,180,224 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrptg.lrc
[2012/04/05 14:59:43 | 000,180,224 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrhun.lrc
[2012/04/05 14:59:43 | 000,172,032 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrnor.lrc
[2012/04/05 14:59:43 | 000,172,032 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrenu.lrc
[2012/04/05 14:59:43 | 000,170,776 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxzoom.exe
[2012/04/05 14:59:43 | 000,149,504 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igxpgd32.dll
[2012/04/05 14:59:43 | 000,122,880 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxcpl.cpl
[2012/04/05 14:59:43 | 000,102,400 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\hccutils.dll
[2012/04/05 14:59:42 | 003,293,184 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxress.dll
[2012/04/05 14:59:42 | 002,556,928 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igxpdx32.dll
[2012/04/05 14:59:42 | 000,200,704 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxpph.dll
[2012/04/05 14:59:42 | 000,192,512 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrell.lrc
[2012/04/05 14:59:42 | 000,188,416 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxresp.lrc
[2012/04/05 14:59:42 | 000,180,224 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrrus.lrc
[2012/04/05 14:59:42 | 000,180,224 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrptb.lrc
[2012/04/05 14:59:42 | 000,180,224 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrplk.lrc
[2012/04/05 14:59:42 | 000,176,128 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrsky.lrc
[2012/04/05 14:59:42 | 000,176,128 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrfin.lrc
[2012/04/05 14:59:42 | 000,172,032 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrslv.lrc
[2012/04/05 14:59:42 | 000,135,168 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxdo.dll
[2012/04/05 14:59:42 | 000,110,592 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrcht.lrc
[2012/04/05 14:59:42 | 000,110,592 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrchs.lrc
[2012/04/05 14:59:41 | 000,400,152 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\igxpun.exe
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
========== Files - Modified Within 30 Days ==========
[2012/05/03 23:08:06 | 000,000,243 | RHS- | M] () -- C:\boot.ini
[2012/05/03 17:17:37 | 000,000,432 | ---- | M] () -- C:\WINDOWS\tasks\SLOW-PCfighter.job
[2012/05/03 17:17:35 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2012/05/03 17:17:33 | 1064,095,744 | -HS- | M] () -- C:\hiberfil.sys
[2012/05/03 14:40:00 | 000,000,234 | ---- | M] () -- C:\WINDOWS\tasks\Scheduled Update for Ask Toolbar.job
[2012/05/03 14:22:30 | 000,000,416 | -H-- | M] () -- C:\WINDOWS\tasks\MP Scheduled Scan.job
[2012/05/03 14:19:10 | 000,001,158 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2012/04/30 07:52:15 | 000,000,884 | ---- | M] () -- C:\WINDOWS\tasks\Adobe Flash Player Updater.job
[2012/04/30 06:49:14 | 000,000,112 | ---- | M] () -- C:\Programme\autorun.inf
[2012/04/30 06:49:12 | 001,585,560 | ---- | M] (Emsi Software GmbH) -- C:\Programme\start.exe
[2012/04/30 06:49:04 | 000,000,060 | ---- | M] () -- C:\Programme\CommandlineScanner.bat
[2012/04/30 06:49:04 | 000,000,056 | ---- | M] () -- C:\Programme\EmergencyKitScanner.bat
[2012/04/22 03:32:35 | 000,273,376 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2012/04/21 14:19:49 | 000,161,984 | ---- | M] () -- C:\Dokumente und Einstellungen\LocalService\Lokale Einstellungen\Anwendungsdaten\FontCache3.0.0.0.dat
[2012/04/18 16:18:15 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Microsoft Office Live Add-in
[2012/04/15 16:47:09 | 000,004,608 | ---- | M] () -- C:\Dokumente und Einstellungen\Clemens D\Lokale Einstellungen\Anwendungsdaten\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2012/04/15 16:43:52 | 000,001,020 | ---- | M] () -- C:\Dokumente und Einstellungen\Clemens D\Startmenü\Programme\Autostart\Dropbox.lnk
[2012/04/15 08:20:08 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Microsoft Office
[2012/04/15 08:19:26 | 000,000,400 | ---- | M] () -- C:\WINDOWS\ODBC.INI
[2012/04/14 05:52:16 | 000,418,464 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerApp.exe
[2012/04/14 05:52:15 | 000,070,304 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerCPLApp.cpl
[2012/04/13 13:20:07 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Fighters
[2012/04/12 07:23:41 | 000,516,814 | ---- | M] () -- C:\WINDOWS\System32\perfh007.dat
[2012/04/12 07:23:41 | 000,488,614 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2012/04/12 07:23:41 | 000,108,696 | ---- | M] () -- C:\WINDOWS\System32\perfc007.dat
[2012/04/12 07:23:41 | 000,089,364 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2012/04/10 16:21:50 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Xleaner
[2012/04/08 07:11:30 | 000,159,066 | ---- | M] () -- C:\Dokumente und Einstellungen\Clemens D\Eigene Dateien\fuer_sie_strick_8-12.pdf
[2012/04/06 09:42:15 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\System32\drivers\Msft_User_ZuneDriver_01_09_00.Wdf
[2012/04/06 09:42:15 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\System32\drivers\Msft_Kernel_WinUSB_01009.Wdf
[2012/04/06 09:41:05 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\System32\drivers\MsftWdf_user_01_09_00.Wdf
[2012/04/06 08:17:52 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\System32\drivers\Msft_Kernel_zumbus_01009.Wdf
[2012/04/06 08:17:51 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\System32\drivers\MsftWdf_Kernel_01009_Coinstaller_Critical.Wdf
[2012/04/06 08:17:24 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Zune
[2012/04/06 08:15:54 | 000,000,780 | ---- | M] () -- C:\Dokumente und Einstellungen\Clemens D\Anwendungsdaten\Microsoft\Internet Explorer\Quick Launch\Windows Media Player.lnk
[2012/04/06 08:15:18 | 000,023,392 | ---- | M] () -- C:\WINDOWS\System32\nscompat.tlb
[2012/04/06 08:15:18 | 000,016,832 | ---- | M] () -- C:\WINDOWS\System32\amcompat.tlb
[2012/04/06 08:03:28 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\System32\drivers\UMDF\MsftWdf_user_01_00_00.Wdf
[2012/04/06 08:00:11 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\7-Zip
[2012/04/06 07:34:19 | 000,000,104 | ---- | M] () -- C:\Dokumente und Einstellungen\Clemens D\Desktop\Arbeitsplatz.lnk
[2012/04/06 06:31:26 | 000,001,912 | ---- | M] () -- C:\WINDOWS\epplauncher.mif
[2012/04/06 06:30:31 | 000,001,652 | ---- | M] () -- C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Microsoft Security Essentials.lnk
[2012/04/06 02:51:05 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Avira
[2012/04/06 02:32:43 | 000,000,795 | ---- | M] () -- C:\Dokumente und Einstellungen\Clemens D\Anwendungsdaten\Microsoft\Internet Explorer\Quick Launch\Internet Explorer Browser starten.lnk
[2012/04/06 02:14:00 | 000,316,640 | ---- | M] () -- C:\WINDOWS\WMSysPr9.prx
[2012/04/06 02:01:49 | 000,000,000 | R--D | M] -- C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Zubehör
[2012/04/06 01:58:29 | 000,251,712 | RHS- | M] () -- C:\ntldr
[2012/04/05 23:16:27 | 000,000,000 | R--D | M] -- C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Verwaltung
[2012/04/05 23:16:27 | 000,000,000 | R--D | M] -- C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Spiele
[2012/04/05 23:16:27 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\TOSHIBA
[2012/04/05 23:16:27 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Protector Suite QL
[2012/04/05 23:16:27 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Microsoft SQL Server 2005
[2012/04/05 23:16:27 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\InterVideo WinDVD
[2012/04/05 23:16:27 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Intel(R) Matrix Storage Manager
[2012/04/05 17:53:51 | 000,001,503 | ---- | M] () -- C:\Dokumente und Einstellungen\All Users\Desktop\Browserwahl.lnk
[2012/04/05 17:08:07 | 000,000,142 | ---- | M] () -- C:\Dokumente und Einstellungen\Clemens D\Lokale Einstellungen\Anwendungsdaten\fusioncache.dat
[2012/04/05 17:00:43 | 000,000,423 | ---- | M] () -- C:\WINDOWS\System32\mapisvc.inf
[2012/04/05 16:02:03 | 002,325,904 | ---- | M] () -- C:\Dokumente und Einstellungen\Clemens D\Desktop\Nokia_710_UG_de.pdf
[2012/04/05 15:26:11 | 000,000,016 | ---- | M] () -- C:\WINDOWS\System32\coh.cache
[2012/04/05 15:02:14 | 000,000,000 | R--D | M] -- C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Autostart
[2012/04/05 15:01:41 | 000,000,000 | RHS- | M] () -- C:\WINDOWS\System32\drivers\TOSHIBA_Tecra M9_05225-on_Vers.MRK
[2012/04/05 15:00:08 | 000,000,288 | ---- | M] () -- C:\WINDOWS\System32\$winnt$.inf
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
========== Files Created - No Company Name ==========
[2012/05/02 23:40:52 | 000,000,112 | ---- | C] () -- C:\Programme\autorun.inf
[2012/05/02 23:40:49 | 000,000,060 | ---- | C] () -- C:\Programme\CommandlineScanner.bat
[2012/05/02 23:40:49 | 000,000,056 | ---- | C] () -- C:\Programme\EmergencyKitScanner.bat
[2012/04/22 03:32:35 | 000,273,376 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2012/04/21 14:19:49 | 000,161,984 | ---- | C] () -- C:\Dokumente und Einstellungen\LocalService\Lokale Einstellungen\Anwendungsdaten\FontCache3.0.0.0.dat
[2012/04/15 16:43:52 | 000,001,020 | ---- | C] () -- C:\Dokumente und Einstellungen\Clemens D\Startmenü\Programme\Autostart\Dropbox.lnk
[2012/04/15 16:42:53 | 000,004,608 | ---- | C] () -- C:\Dokumente und Einstellungen\Clemens D\Lokale Einstellungen\Anwendungsdaten\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2012/04/14 11:25:48 | 000,000,432 | ---- | C] () -- C:\WINDOWS\tasks\SLOW-PCfighter.job
[2012/04/08 07:11:30 | 000,159,066 | ---- | C] () -- C:\Dokumente und Einstellungen\Clemens D\Eigene Dateien\fuer_sie_strick_8-12.pdf
[2012/04/06 11:31:11 | 000,000,884 | ---- | C] () -- C:\WINDOWS\tasks\Adobe Flash Player Updater.job
[2012/04/06 09:42:15 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\System32\drivers\Msft_User_ZuneDriver_01_09_00.Wdf
[2012/04/06 09:42:15 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\System32\drivers\Msft_Kernel_WinUSB_01009.Wdf
[2012/04/06 09:41:05 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\System32\drivers\MsftWdf_user_01_09_00.Wdf
[2012/04/06 08:17:52 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\System32\drivers\Msft_Kernel_zumbus_01009.Wdf
[2012/04/06 08:17:51 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\System32\drivers\MsftWdf_Kernel_01009_Coinstaller_Critical.Wdf
[2012/04/06 08:03:28 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\System32\drivers\UMDF\MsftWdf_user_01_00_00.Wdf
[2012/04/06 07:34:19 | 000,000,104 | ---- | C] () -- C:\Dokumente und Einstellungen\Clemens D\Desktop\Arbeitsplatz.lnk
[2012/04/06 06:36:19 | 000,000,416 | -H-- | C] () -- C:\WINDOWS\tasks\MP Scheduled Scan.job
[2012/04/06 06:31:26 | 000,001,912 | ---- | C] () -- C:\WINDOWS\epplauncher.mif
[2012/04/06 06:30:31 | 000,001,652 | ---- | C] () -- C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Microsoft Security Essentials.lnk
[2012/04/06 03:19:53 | 000,003,072 | ---- | C] () -- C:\WINDOWS\System32\iacenc.dll
[2012/04/06 03:19:53 | 000,003,072 | ---- | C] () -- C:\WINDOWS\System32\dllcache\iacenc.dll
[2012/04/06 02:50:57 | 000,000,234 | ---- | C] () -- C:\WINDOWS\tasks\Scheduled Update for Ask Toolbar.job
[2012/04/05 17:53:51 | 000,001,503 | ---- | C] () -- C:\Dokumente und Einstellungen\All Users\Desktop\Browserwahl.lnk
[2012/04/05 16:49:11 | 000,000,400 | ---- | C] () -- C:\WINDOWS\ODBC.INI
[2012/04/05 16:34:49 | 000,067,866 | ---- | C] () -- C:\WINDOWS\System32\drivers\netwlan5.img
[2012/04/05 16:34:23 | 000,129,045 | ---- | C] () -- C:\WINDOWS\System32\drivers\cxthsfs2.cty
[2012/04/05 16:32:28 | 000,064,352 | ---- | C] () -- C:\WINDOWS\System32\drivers\ativmc20.cod
[2012/04/05 16:13:25 | 000,000,780 | ---- | C] () -- C:\Dokumente und Einstellungen\Clemens D\Anwendungsdaten\Microsoft\Internet Explorer\Quick Launch\Windows Media Player.lnk
[2012/04/05 16:02:02 | 002,325,904 | ---- | C] () -- C:\Dokumente und Einstellungen\Clemens D\Desktop\Nokia_710_UG_de.pdf
[2012/04/05 15:26:11 | 000,000,016 | ---- | C] () -- C:\WINDOWS\System32\coh.cache
[2012/04/05 15:01:41 | 000,000,000 | RHS- | C] () -- C:\WINDOWS\System32\drivers\TOSHIBA_Tecra M9_05225-on_Vers.MRK
[2012/04/05 15:01:00 | 000,000,795 | ---- | C] () -- C:\Dokumente und Einstellungen\Clemens D\Anwendungsdaten\Microsoft\Internet Explorer\Quick Launch\Internet Explorer Browser starten.lnk
[2012/04/05 15:01:00 | 000,000,079 | ---- | C] () -- C:\Dokumente und Einstellungen\Clemens D\Anwendungsdaten\Microsoft\Internet Explorer\Quick Launch\Desktop anzeigen.scf
[2012/04/05 15:00:58 | 000,000,142 | ---- | C] () -- C:\Dokumente und Einstellungen\Clemens D\Lokale Einstellungen\Anwendungsdaten\fusioncache.dat
[2012/04/05 15:00:57 | 000,001,599 | ---- | C] () -- C:\Dokumente und Einstellungen\Clemens D\Startmenü\Programme\Remoteunterstützung.lnk
[2012/04/05 15:00:57 | 000,000,783 | ---- | C] () -- C:\Dokumente und Einstellungen\Clemens D\Startmenü\Programme\Internet Explorer.lnk
[2012/04/05 15:00:57 | 000,000,768 | ---- | C] () -- C:\Dokumente und Einstellungen\Clemens D\Startmenü\Programme\Windows Media Player.lnk
[2012/04/05 15:00:57 | 000,000,718 | ---- | C] () -- C:\Dokumente und Einstellungen\Clemens D\Startmenü\Programme\Outlook Express.lnk
[2012/04/05 15:00:38 | 1064,095,744 | -HS- | C] () -- C:\hiberfil.sys
[2012/04/05 15:00:06 | 000,000,759 | ---- | C] () -- C:\WINDOWS\system32\config\systemprofile\Anwendungsdaten\Microsoft\Internet Explorer\Quick Launch\Internet Explorer Browser starten.lnk
[2012/04/05 15:00:06 | 000,000,079 | ---- | C] () -- C:\WINDOWS\system32\config\systemprofile\Anwendungsdaten\Microsoft\Internet Explorer\Quick Launch\Desktop anzeigen.scf
[2012/04/05 14:59:43 | 000,204,800 | ---- | C] () -- C:\WINDOWS\System32\igfxCoIn_v4831.dll
[2012/04/05 14:59:43 | 000,025,504 | ---- | C] () -- C:\WINDOWS\System32\igxpxs32.vp
[2012/04/05 14:59:42 | 000,910,304 | ---- | C] () -- C:\WINDOWS\System32\igmedkrn.dll
[2012/04/05 14:59:42 | 000,002,096 | ---- | C] () -- C:\WINDOWS\System32\igxpxk32.vp
[2012/04/05 14:59:41 | 000,121,232 | ---- | C] () -- C:\WINDOWS\System32\IScrNBR.bmp
[2012/04/05 14:59:41 | 000,121,232 | ---- | C] () -- C:\WINDOWS\System32\IScrNB.bmp
[2012/04/05 14:59:33 | 000,000,747 | ---- | C] () -- C:\Dokumente und Einstellungen\Default User\Startmenü\Programme\Internet Explorer.lnk
[2012/04/05 14:59:33 | 000,000,718 | ---- | C] () -- C:\Dokumente und Einstellungen\Default User\Startmenü\Programme\Outlook Express.lnk
[2007/07/16 04:59:13 | 000,000,562 | ---- | C] () -- C:\WINDOWS\TBTdetect.ini
[2007/07/10 06:52:14 | 000,000,061 | ---- | C] () -- C:\WINDOWS\smscfg.ini
[2007/07/10 02:10:09 | 000,204,800 | ---- | C] () -- C:\WINDOWS\System32\IVIresizeW7.dll
[2007/07/10 02:10:09 | 000,200,704 | ---- | C] () -- C:\WINDOWS\System32\IVIresizeA6.dll
[2007/07/10 02:10:09 | 000,192,512 | ---- | C] () -- C:\WINDOWS\System32\IVIresizeP6.dll
[2007/07/10 02:10:09 | 000,192,512 | ---- | C] () -- C:\WINDOWS\System32\IVIresizeM6.dll
[2007/07/10 02:10:09 | 000,188,416 | ---- | C] () -- C:\WINDOWS\System32\IVIresizePX.dll
[2007/07/10 02:10:09 | 000,020,480 | ---- | C] () -- C:\WINDOWS\System32\IVIresize.dll
[2007/07/10 02:05:27 | 000,000,000 | ---- | C] () -- C:\WINDOWS\NDSTray.INI
[2007/07/10 01:36:39 | 000,010,146 | ---- | C] () -- C:\WINDOWS\System32\tosmreg.ini
[2007/07/10 01:36:39 | 000,007,671 | ---- | C] () -- C:\WINDOWS\System32\cseltbl.ini
[2007/07/10 01:36:38 | 000,128,113 | ---- | C] () -- C:\WINDOWS\System32\csellang.ini
[2007/07/10 01:36:38 | 000,045,056 | ---- | C] () -- C:\WINDOWS\System32\csellang.dll
[2007/07/09 19:42:28 | 001,626,112 | ---- | C] () -- C:\WINDOWS\System32\nwiz.exe
[2007/07/09 19:42:27 | 001,703,936 | ---- | C] () -- C:\WINDOWS\System32\nvwdmcpl.dll
[2007/07/09 19:42:27 | 001,019,904 | ---- | C] () -- C:\WINDOWS\System32\nvwimg.dll
[2007/07/09 19:42:26 | 001,018,804 | ---- | C] () -- C:\WINDOWS\System32\nvucode.bin
[2007/07/09 19:42:26 | 000,466,944 | ---- | C] () -- C:\WINDOWS\System32\nvshell.dll
[2007/07/09 19:42:24 | 001,474,560 | ---- | C] () -- C:\WINDOWS\System32\nview.dll
[2007/07/09 19:42:24 | 001,339,392 | ---- | C] () -- C:\WINDOWS\System32\nvdspsch.exe
[2007/07/09 19:42:20 | 000,425,984 | ---- | C] () -- C:\WINDOWS\System32\keystone.exe
[2007/07/09 11:03:46 | 000,024,576 | ---- | C] () -- C:\WINDOWS\System32\000StTHK.exe
[2007/07/09 11:01:48 | 000,049,152 | ---- | C] () -- C:\WINDOWS\System32\ChCfg.exe
[2007/07/09 11:01:03 | 000,004,408 | ---- | C] () -- C:\WINDOWS\System32\drivers\HDACfg.dat
[2007/07/09 10:04:06 | 000,004,161 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
[2007/07/09 09:13:02 | 000,000,146 | ---- | C] () -- C:\Dokumente und Einstellungen\Administrator\Lokale Einstellungen\Anwendungsdaten\fusioncache.dat
[2007/07/09 09:09:40 | 000,000,849 | ---- | C] () -- C:\WINDOWS\orun32.ini
[2007/07/09 09:08:35 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat
[2007/07/09 09:05:38 | 000,021,740 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat
[2007/07/09 08:58:16 | 000,028,672 | ---- | C] () -- C:\WINDOWS\System32\ToshBIOS.dll
[2007/07/09 08:58:16 | 000,000,083 | ---- | C] () -- C:\WINDOWS\System32\OEMINFO.INI
[2007/07/09 08:58:15 | 000,159,744 | ---- | C] () -- C:\WINDOWS\MakeMrk.exe
[2007/07/09 08:58:06 | 000,516,814 | ---- | C] () -- C:\WINDOWS\System32\perfh007.dat
[2007/07/09 08:58:06 | 000,269,480 | ---- | C] () -- C:\WINDOWS\System32\perfi007.dat
[2007/07/09 08:58:06 | 000,108,696 | ---- | C] () -- C:\WINDOWS\System32\perfc007.dat
[2007/07/09 08:58:06 | 000,034,478 | ---- | C] () -- C:\WINDOWS\System32\perfd007.dat
[2007/07/09 08:57:53 | 000,004,569 | ---- | C] () -- C:\WINDOWS\System32\secupd.dat
[2007/07/09 08:57:50 | 000,488,614 | ---- | C] () -- C:\WINDOWS\System32\perfh009.dat
[2007/07/09 08:57:50 | 000,272,128 | ---- | C] () -- C:\WINDOWS\System32\perfi009.dat
[2007/07/09 08:57:50 | 000,089,364 | ---- | C] () -- C:\WINDOWS\System32\perfc009.dat
[2007/07/09 08:57:50 | 000,028,626 | ---- | C] () -- C:\WINDOWS\System32\perfd009.dat
[2007/07/09 08:57:48 | 013,107,200 | ---- | C] () -- C:\WINDOWS\System32\oembios.bin
[2007/07/09 08:57:48 | 000,004,598 | ---- | C] () -- C:\WINDOWS\System32\oembios.dat
[2007/07/09 08:57:47 | 000,000,741 | ---- | C] () -- C:\WINDOWS\System32\noise.dat
[2007/07/09 08:57:46 | 000,673,088 | ---- | C] () -- C:\WINDOWS\System32\mlang.dat
[2007/07/09 08:57:46 | 000,046,258 | ---- | C] () -- C:\WINDOWS\System32\mib.bin
[2007/07/09 08:57:42 | 000,218,003 | ---- | C] () -- C:\WINDOWS\System32\dssec.dat
[2007/07/09 08:57:37 | 000,001,804 | ---- | C] () -- C:\WINDOWS\System32\dcache.bin
[2006/12/05 07:05:04 | 000,114,688 | ---- | C] () -- C:\WINDOWS\System32\TosBtAcc.dll
[2005/07/22 15:30:18 | 000,065,536 | ---- | C] () -- C:\WINDOWS\System32\TosCommAPI.dll
[2003/02/20 11:53:42 | 000,005,702 | ---- | C] () -- C:\WINDOWS\System32\OUTLPERF.INI
========== LOP Check ==========
[2007/07/10 03:22:13 | 000,000,000 | ---D | M] -- C:\WINDOWS\system32\config\systemprofile\Anwendungsdaten\Protector Suite
[2012/04/05 23:16:10 | 000,000,000 | ---D | M] -- C:\WINDOWS\system32\config\systemprofile\Anwendungsdaten\toshiba
[2007/07/10 03:22:13 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Administrator\Anwendungsdaten\Protector Suite
[2012/04/05 23:16:10 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Administrator\Anwendungsdaten\toshiba
[2012/04/06 02:53:24 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Clemens D\Anwendungsdaten\AskToolbar
[2012/05/03 17:17:58 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Clemens D\Anwendungsdaten\Dropbox
[2007/07/10 03:22:13 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Clemens D\Anwendungsdaten\Protector Suite
[2012/04/05 23:16:10 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Clemens D\Anwendungsdaten\toshiba
[2012/04/13 13:20:03 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Fighters
[2012/04/21 07:11:10 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\RapidSolution
[2012/05/03 14:22:30 | 000,000,416 | -H-- | M] () -- C:\WINDOWS\Tasks\MP Scheduled Scan.job
[2012/05/03 14:40:00 | 000,000,234 | ---- | M] () -- C:\WINDOWS\Tasks\Scheduled Update for Ask Toolbar.job
[2012/05/03 17:17:37 | 000,000,432 | ---- | M] () -- C:\WINDOWS\Tasks\SLOW-PCfighter.job
========== Purity Check ==========
< End of report >
--- --- ---
Extra.txtOTL Logfile: Code:
OTL Extras logfile created on: 5/4/2012 7:20:11 PM - Run
OTLPE by OldTimer - Version 3.1.48.0 Folder = X:\Programs\OTLPE
Microsoft Windows XP Service Pack 3 (Version = 5.1.2600) - Type = SYSTEM
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy
1,015.00 Mb Total Physical Memory | 775.00 Mb Available Physical Memory | 76.00% Memory free
902.00 Mb Paging File | 801.00 Mb Available in Paging File | 89.00% Paging File free
Paging file location(s): C:\pagefile.sys 1524 3048 [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Programme
Drive C: | 74.53 Gb Total Space | 56.95 Gb Free Space | 76.42% Space Free | Partition Type: NTFS
Drive D: | 7.38 Gb Total Space | 6.99 Gb Free Space | 94.63% Space Free | Partition Type: FAT32
Drive X: | 436.59 Mb Total Space | 0.00 Mb Free Space | 0.00% Space Free | Partition Type: CDFS
Computer Name: REATOGO | User Name: SYSTEM
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
Using ControlSet: ControlSet003
========== Extra Registry (SafeList) ==========
========== File Associations ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
========== Shell Spawning ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
exefile [open] -- "%1" %*
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
========== Security Center Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"FirstRunDisabled" = 1
"AntiVirusDisableNotify" = 0
"FirewallDisableNotify" = 0
"UpdatesDisableNotify" = 0
"AntiVirusOverride" = 0
"FirewallOverride" = 0
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
"DisableMonitoring" = 1
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]
"DisableMonitoring" = 1
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]
"DisableMonitoring" = 1
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]
========== System Restore Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\Sr]
"Start" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\SrService]
"Start" = 2
========== Firewall Settings ==========
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0
"DoNotAllowExceptions" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0
"DoNotAllowExceptions" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
========== Authorized Applications List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"C:\Dokumente und Einstellungen\Clemens D\Anwendungsdaten\Dropbox\bin\Dropbox.exe" = C:\Dokumente und Einstellungen\Clemens D\Anwendungsdaten\Dropbox\bin\Dropbox.exe:*:Enabled:Dropbox -- (Dropbox, Inc.)
========== HKEY_LOCAL_MACHINE Uninstall List ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{028ED9C4-25EE-4DEE-9CF4-91034BC89B18}" = Microsoft SQL Server 2005 Express Edition (MSSMLBIZ)
"{0456ebd7-5f67-4ab6-852e-63781e3f389c}" = Macromedia Flash Player
"{0577A2AA-DEA0-4D40-8372-4211102D43E4}" = TOSHIBA Mic Effect
"{05BFB060-4F22-4710-B0A2-2801A1B606C5}" = Microsoft Antimalware
"{07629207-FAA0-4F1A-8092-BF5085BE511F}" = Unterstützungsdateien für das Microsoft SQL Server-Setup (Englisch)
"{07EEE598-5F21-4B57-B40B-46592625B3D9}" = Zune Language Pack (PTB)
"{1280E900-35DA-4E08-A700-B79A5B2B8532}" = Microsoft Antimalware Service DE-DE Language Pack
"{12B3A009-A080-4619-9A2A-C6DB151D8D67}" = TOSHIBA Assist
"{1E63ACB5-D45E-4856-8FC9-78F4B0D7BB80}" = TOSHIBA Sicherheits-Assistent
"{2290A680-4083-410A-ADCC-7092C67FC052}" = Toshiba Online Product Information
"{2A9DFFD8-4E09-4B91-B957-454805B0D7C4}" = Zune Language Pack (CHS)
"{2C38F661-26B7-445D-B87D-B53FE2D3BD42}" = TOSHIBA PC-Diagnose-Tool
"{3248F0A8-6813-11D6-A77B-00B0D0150060}" = J2SE Runtime Environment 5.0 Update 6
"{3248F0A8-6813-11D6-A77B-00B0D0160000}" = Java(TM) SE Runtime Environment 6
"{350C97B3-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{3589A659-F732-4E65-A89A-5438C332E59D}" = Zune Language Pack (ELL)
"{3B8D9FA4-745C-47C9-962D-4ABE6ACE136B}" = TOSHIBA Mobile Extension3
"{3D9DF3BD-C8A9-48AE-AD88-8A29B545B202}" = SLOW-PCfighter
"{400830CA-F056-4BBE-80A3-9DF9CA4FB889}" = TOSHIBA Direct Disc Writer
"{4323A3CF-D66F-46BC-AD16-B94D7BF05CF1}" = TOSHIBA Dienstprogramm für duales Zeigegerät
"{4cb9f93c-9edc-4be9-ae61-af128ddbecfa}" = Business Contact Manager für Outlook 2007 SP2
"{50120000-1105-0000-0000-0000000FF1CE}" = Microsoft Office 2007 Primary Interop Assemblies
"{50779A29-834E-4E36-BBEB-B7CABC67A825}" = Microsoft Security Client DE-DE Language Pack
"{51C839E1-2BE4-4E77-A1BA-CCEA5DAFA741}" = Zune Language Pack (KOR)
"{54B6DC7D-8C5B-4DFB-BC15-C010A3326B2B}" = Microsoft Security Client
"{56190F69-01D3-46CA-9861-43377C5E9B87}" = TOSHIBA Utilities
"{56995235-B76E-44A6-BA17-8FF13D3F907A}" = TOSHIBA Benutzerhandbücher
"{57C51D56-B287-4C11-9192-EC3C46EF76A4}" = Zune Language Pack (RUS)
"{5C93E291-A1CC-4E51-85C6-E194209FCDB4}" = Zune Language Pack (PTG)
"{5DA0E02F-970B-424B-BF41-513A5018E4C0}" = TOSHIBA Disc Creator
"{5DEFD397-4012-46C3-B6DA-E8013E660772}" = Zune Language Pack (NOR)
"{64212898-097F-4F3F-AECA-6D34A7EF82DF}" = TOSHIBA Zoom-Dienstprogramm
"{6740BCB0-5863-47F4-80F4-44F394DE4FE2}" = Zune Language Pack (NLD)
"{6B33492E-FBBC-4EC3-8738-09E16E395A10}" = Zune Language Pack (ESP)
"{6EB931CD-A7DA-4A44-B74A-89C8EB50086F}" = Zune Language Pack (SVE)
"{72D84E46-E633-4729-8A77-2347C8CD4096}_is1" = Xleaner v4.07.647
"{737629F4-4111-4FD4-9071-29873B7C6426}" = Protector Suite 5.4
"{76BA306B-2AA0-47C0-AB6B-F313AB56C136}" = Zune Language Pack (MSL)
"{7862BAD8-A379-4128-8AA1-EFD5A9603C53}" = Wireless Hotkey
"{86D4B82A-ABED-442A-BE86-96357B70F4FE}" = Ask Toolbar
"{8960A0A1-BB5A-479E-92CF-65AB9D684B43}" = Zune Language Pack (PLK)
"{8B112338-2B08-4851-AF84-E7CAD74CEB32}" = Zune Language Pack (DAN)
"{90110407-6000-11D3-8CFE-0150048383C9}" = Microsoft Office Professional Edition 2003
"{90140000-2005-0000-0000-0000000FF1CE}" = Microsoft Office File Validation Add-In
"{9068B2BE-D93A-4C0A-861C-5E35E2C0E09E}" = Intel(R) Matrix Storage Manager
"{90A40407-6000-11D3-8CFE-0150048383C9}" = Microsoft Office 2003 Web Components
"{91810AFC-A4F8-4EBA-A5AA-B198BBC81144}" = InterVideo WinDVD for TOSHIBA
"{92ECE3F9-591E-4C12-8A62-B9FCE38BF646}" = Zune Language Pack (IND)
"{94A90C69-71C1-470A-88F5-AA47ECC96B40}" = TOSHIBA HDD Protection
"{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting
"{9ACBDDE2-DD2D-4103-8ECE-D1A9F7F03D1A}" = TOSHIBA Power Saver
"{9B75648B-6C30-4A0D-9DE6-0D09D20AF5A5}" = Zune
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{9F72EF8B-AEC9-4CA5-B483-143980AFD6FD}" = ALPS Touch Pad Driver
"{9FE35071-CAB2-4E79-93E7-BFC6A2DC5C5D}" = CD/DVD Drive Acoustic Silencer
"{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2
"{A5A53EA8-A11E-49F0-BDF5-AE536426A31A}" = Zune Language Pack (CHT)
"{A6690C0E-B96E-4F0F-A8EB-D5B332454AC6}" = TOSHIBA Controls
"{A8F2E50B-86E2-4D96-9BD2-9758BCC6F9B3}" = Zune Language Pack (CSY)
"{A939D341-5A04-4E0A-BB55-3E65B386432D}" = Microsoft Office Small Business Connectivity Components
"{AC76BA86-7AD7-1031-7B44-A80000000002}" = Adobe Reader 8 - Deutsch
"{B4870774-5F3A-46D9-9DFE-06FB5599E26B}" = Zune Language Pack (FIN)
"{BBF5493A-05FB-4449-90DE-84A61EB78154}" = TOSHIBA SD Memory Boot Utility
"{BDD83DC9-BEE9-4654-A5DA-CC46C250088D}" = TOSHIBA ConfigFree
"{BE236D9A-52EC-4A17-82DA-84B5EAD31E3E}" = Zune Language Pack (DEU)
"{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2
"{C0FC3B56-E345-40CD-A5CB-7EB791CE3E74}" = TOSHIBA Password Utility
"{C5D37FFA-7483-410B-982B-91E93FD3B7DA}" = Zune Language Pack (ITA)
"{C68D33B1-0204-4EBE-BC45-A6E432B1D13A}" = Zune Language Pack (FRA)
"{C6BE19C6-B102-4038-B2A6-1C313872DBB4}" = Zune Language Pack (HUN)
"{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{CEBB6BFB-D708-4F99-A633-BC2600E01EF6}" = Bluetooth Stack for Windows by Toshiba
"{D8A781C9-3892-4E2E-9320-480CF896CFBB}" = Zune Language Pack (JPN)
"{E78BFA60-5393-4C38-82AB-E8019E464EB4}" = Microsoft .NET Framework 1.1 German Language Pack
"{EBFF48F5-3CFA-436F-8FD5-94FB01D3A0A7}" = TOSHIBA SD Memory Utilities
"{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F2CB8C3C-9C9E-4FAB-9067-655601C5F748}" = Windows Mobile Device Updater Component
"{F40BBEC7-C2A4-4A00-9B24-7A055A2C5262}" = Microsoft Office Live Add-in 1.5
"{F46E21DF-5BE1-48E2-8390-5EEA8B25E36A}" = Microsoft SQL Server Native Client
"{FC4C645F-8EBC-4F1E-A517-D1505B43A374}" = TOSHIBA Wireless Key Logon
"{FDE96E86-7780-431C-92F7-679C6A7CEC51}" = Microsoft SQL Server VSS Writer
"7-Zip" = 7-Zip 4.65
"Adobe Flash Player ActiveX" = Adobe Flash Player 11 ActiveX
"Avira AntiVir Desktop" = Avira Free Antivirus
"Business Contact Manager" = Business Contact Manager für Outlook 2007 SP2
"HDMI" = Intel(R) Graphics Media Accelerator Driver
"HECI" = Intel(R) Management Engine Interface
"ie8" = Windows Internet Explorer 8
"InstallShield_{2C38F661-26B7-445D-B87D-B53FE2D3BD42}" = TOSHIBA PC-Diagnose-Tool
"InstallShield_{56190F69-01D3-46CA-9861-43377C5E9B87}" = TOSHIBA Dienstprogramme
"InstallShield_{9ACBDDE2-DD2D-4103-8ECE-D1A9F7F03D1A}" = TOSHIBA Power Saver
"InstallShield_{C0FC3B56-E345-40CD-A5CB-7EB791CE3E74}" = TOSHIBA Passwort-Utility
"MESOL" = Intel(R) Active Management Technology Device Software
"Microsoft .NET Framework 1.1 (1033)" = Microsoft .NET Framework 1.1
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"Microsoft Security Client" = Microsoft Security Essentials
"Microsoft SQL Server 2005" = Microsoft SQL Server 2005
"MSCompPackV1" = Microsoft Compression Client Pack 1.0 for Windows XP
"PROSet" = Intel(R) PRO Network Connections Drivers
"SLOW-PCfighter" = SLOW-PCfighter
"TDspBtn" = TOSHIBA Utility zum Bildschirmwechsel
"TFNF5" = TOSHIBA Hotkey Utility für Anzeigegeräte
"TME" = Deinstallationsprogamm fur TOSHIBA Mobile Extension3
"TOSHIBA Software Modem" = TOSHIBA Software Modem
"Wdf01009" = Microsoft Kernel-Mode Driver Framework Feature Pack 1.9
"WIC" = Windows Imaging Component
"Windows Media Format Runtime" = Windows Media Format 11 runtime
"Windows Media Player" = Windows Media Player 11
"Windows XP Service Pack" = Windows XP Service Pack 3
"winusb0100" = Microsoft WinUsb 1.0
"WMFDist11" = Windows Media Format 11 runtime
"wmp11" = Windows Media Player 11
"Wudf01009" = Microsoft User-Mode Driver Framework Feature Pack 1.9
"Zune" = Zune
========== HKEY_USERS Uninstall List ==========
[HKEY_USERS\Clemens_D_ON_C\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{79A765E1-C399-405B-85AF-466F52E918B0}" = Avira SearchFree Toolbar plus Web Protection Updater
"Dropbox" = Dropbox
< End of report >
--- --- ---
Hoffe das ist so Ok |
