Home » Spyware & Browser Hijacker Support Forum » 3 nervende Probleme!!! » Themenansicht

3 nervende Probleme!!!
#0
14.03.2009, 02:38
timmi85
Member

Beiträge: 29
#1 hallo und schönes wochenende....(:

ich habe mehrere probleme mit meinen labtop und bitte sich mal jemanden meine log files auszuwerten oder vllt nen lösungsvorschlag zu nennnen..DANKE!!^^


als erstes und nervigstes problem verbraucht mein firefox 3.0.7 nach einer weile laufzeit extrem viel cpu oder hängt sich ganz auf.

installierte add ons sind:flagfox, fireshot, google toolbar und reload every.

themes sind: Aerofox, crystalfox qute und pitch dark drauf.



als zweites hängt sich der windows explorer manchmal auf nach 30 sec. warten geht es meist wieder.



und zu guter letzt startet mein rechner jedesmal mit dem update konfig......obwohl keine neuen runtergeladen werden konnten da es ausgestellt ist.das dauert manchamal 5 min bis die start melodie kommt.



mein system:

acer aspire 5315
intel celeron cpu 540@ 1,86Ghz 2,00 GB-Ram



ich hoffe jemand kann mir bei irgenwas helfen danke schonmal.

hier die logs.....

malewarebytes:


Malwarebytes' Anti-Malware 1.34
Datenbank Version: 1846
Windows 6.0.6001 Service Pack 1

14.03.2009 02:23:59
mbam-log-2009-03-14 (02-23-59).txt

Scan-Methode: Quick-Scan
Durchsuchte Objekte: 63404
Laufzeit: 2 minute(s), 31 second(s)

Infizierte Speicherprozesse: 0
Infizierte Speichermodule: 0
Infizierte Registrierungsschlüssel: 0
Infizierte Registrierungswerte: 0
Infizierte Dateiobjekte der Registrierung: 0
Infizierte Verzeichnisse: 0
Infizierte Dateien: 0

Infizierte Speicherprozesse:
(Keine bösartigen Objekte gefunden)

Infizierte Speichermodule:
(Keine bösartigen Objekte gefunden)

Infizierte Registrierungsschlüssel:
(Keine bösartigen Objekte gefunden)

Infizierte Registrierungswerte:
(Keine bösartigen Objekte gefunden)

Infizierte Dateiobjekte der Registrierung:
(Keine bösartigen Objekte gefunden)

Infizierte Verzeichnisse:
(Keine bösartigen Objekte gefunden)

Infizierte Dateien:
(Keine bösartigen Objekte gefunden)





















combofix:


ComboFix 09-03-13.01 - Marcus 2009-03-14 2:02:27.2 - NTFSx86
Microsoft® Windows Vista™ Home Premium 6.0.6001.1.1252.1.1031.18.2037.945 [GMT 1:00]
ausgeführt von:: c:\users\Marcus\Downloads\ComboFix.exe
* Resident AV is active

.

((((((((((((((((((((((( Dateien erstellt von 2009-02-14 bis 2009-03-14 ))))))))))))))))))))))))))))))
.

2009-03-13 20:22 . 2009-03-13 20:22 <DIR> d-------- c:\program files\Java
2009-03-13 18:47 . 2009-03-13 18:48 <DIR> d-------- c:\users\Marcus\Contacts
2009-03-12 00:06 . 2009-03-12 00:06 <DIR> d-------- c:\program files\MAGIX
2009-03-11 23:29 . 2009-03-11 23:31 <DIR> d-------- c:\program files\PhotoFiltre
2009-03-11 17:25 . 2008-12-16 04:29 8,147,456 --a------ c:\windows\System32\wmploc.DLL
2009-03-11 17:25 . 2008-11-27 05:43 268,288 --a------ c:\windows\System32\schannel.dll
2009-03-11 17:25 . 2008-12-16 06:31 7,680 --a------ c:\windows\System32\spwmp.dll
2009-03-11 17:25 . 2008-12-16 06:31 4,096 --a------ c:\windows\System32\msdxm.ocx
2009-03-11 17:25 . 2008-12-16 06:31 4,096 --a------ c:\windows\System32\dxmasf.dll
2009-03-11 17:24 . 2009-02-09 04:10 2,033,152 --a------ c:\windows\System32\win32k.sys
2009-03-11 15:43 . 2009-03-11 15:43 110,324 --ah----- c:\windows\System32\mlfcache.dat
2009-03-11 15:42 . 2009-03-11 15:42 <DIR> d-------- c:\users\Marcus\AppData\Roaming\Apple Computer
2009-03-11 15:42 . 2009-03-11 15:42 <DIR> d-------- c:\program files\Safari
2009-03-11 15:41 . 2009-03-11 15:41 <DIR> d-------- c:\program files\Apple Software Update
2009-03-11 15:39 . 2009-03-11 15:39 <DIR> d-------- c:\users\All Users\Apple
2009-03-11 15:39 . 2009-03-11 15:39 <DIR> d-------- c:\programdata\Apple
2009-03-09 18:20 . 2009-03-09 18:20 <DIR> d-------- c:\program files\jeak.de
2009-03-08 13:30 . 2009-03-10 20:11 <DIR> d-------- c:\users\Marcus\zeug
2009-03-02 23:36 . 2009-03-02 23:36 <DIR> d-------- c:\users\Marcus\AppData\Roaming\TuneUp Software
2009-03-02 23:36 . 2009-03-02 23:36 361,728 --a------ c:\windows\System32\TuneUpDefragService.exe
2009-03-02 23:36 . 2008-07-18 15:05 28,416 --a------ c:\windows\System32\uxtuneup.dll
2009-03-02 23:36 . 2008-07-18 15:05 16,640 --a------ c:\windows\System32\authuitu.dll
2009-03-02 23:35 . 2009-03-02 23:35 <DIR> d-------- c:\users\All Users\TuneUp Software
2009-03-02 23:35 . 2009-03-02 23:35 <DIR> d-------- c:\programdata\TuneUp Software
2009-03-02 23:34 . 2009-03-02 23:36 <DIR> d-------- c:\program files\TuneUp Utilities 2008
2009-03-02 23:21 . 2009-03-02 23:21 <DIR> d----c--- c:\windows\System32\DRVSTORE
2009-02-27 18:53 . 2009-02-27 18:54 <DIR> d-------- C:\DVDVideoSoft
2009-02-27 14:03 . 2009-02-27 14:03 <DIR> d-------- c:\users\Marcus\AppData\Roaming\vlc
2009-02-27 14:03 . 2009-02-27 14:03 <DIR> d-------- c:\program files\VideoLAN
2009-02-26 11:42 . 2009-02-26 12:22 <DIR> d-------- c:\program files\Pcsx2_0.9.4
2009-02-23 16:13 . 2009-03-13 23:17 65,536 --------- c:\windows\System32\Ikeext.etl
2009-02-22 16:02 . 2007-12-10 14:22 110,632 --a------ c:\windows\System32\drivers\s3017mdm.sys
2009-02-22 16:02 . 2007-12-10 14:22 110,120 --a------ c:\windows\System32\drivers\s3017unic.sys
2009-02-22 16:02 . 2007-12-10 14:22 104,616 --a------ c:\windows\System32\drivers\s3017mgmt.sys
2009-02-22 16:02 . 2007-12-10 14:22 100,648 --a------ c:\windows\System32\drivers\s3017obex.sys
2009-02-22 16:02 . 2007-12-10 14:22 83,880 --a------ c:\windows\System32\drivers\s3017bus.sys
2009-02-22 16:02 . 2007-12-10 14:22 25,512 --a------ c:\windows\System32\drivers\s3017nd5.sys
2009-02-22 16:02 . 2007-12-10 14:22 15,016 --a------ c:\windows\System32\drivers\s3017mdfl.sys
2009-02-22 16:02 . 2007-12-10 14:22 12,200 --a------ c:\windows\System32\drivers\s3017whnt.sys
2009-02-22 16:02 . 2007-12-10 14:22 12,200 --a------ c:\windows\System32\drivers\s3017wh.sys
2009-02-22 16:02 . 2007-12-10 14:22 12,200 --a------ c:\windows\System32\drivers\s3017cmnt.sys
2009-02-22 16:02 . 2007-12-10 14:22 12,200 --a------ c:\windows\System32\drivers\s3017cm.sys
2009-02-22 16:02 . 2007-12-10 14:22 10,792 --a------ c:\windows\System32\drivers\s3017cr.sys
2009-02-20 15:46 . 2009-02-22 18:51 <DIR> d-------- c:\users\Marcus\AppData\Roaming\McLoad
2009-02-20 15:13 . 2009-02-20 15:13 <DIR> d-------- c:\program files\CCleaner
2009-02-20 12:51 . 2009-02-20 12:51 <DIR> d-------- c:\users\All Users\SUPERAntiSpyware.com
2009-02-20 12:51 . 2009-02-20 12:51 <DIR> d-------- c:\programdata\SUPERAntiSpyware.com
2009-02-20 12:50 . 2009-02-20 12:50 <DIR> d-------- c:\users\Marcus\AppData\Roaming\SUPERAntiSpyware.com
2009-02-20 12:50 . 2009-02-20 12:50 <DIR> d-------- c:\program files\SUPERAntiSpyware
2009-02-20 12:49 . 2009-03-02 23:32 <DIR> d-------- c:\program files\Common Files\Wise Installation Wizard
2009-02-16 14:00 . 2009-01-15 04:36 1,383,424 --a------ c:\windows\System32\mshtml.tlb
2009-02-16 14:00 . 2009-01-15 07:11 827,392 --a------ c:\windows\System32\wininet.dll
2009-02-16 13:30 . 2008-12-05 05:32 428,544 --a------ c:\windows\System32\EncDec.dll
2009-02-16 13:30 . 2008-12-05 05:32 293,376 --a------ c:\windows\System32\psisdecd.dll
2009-02-16 13:30 . 2008-12-05 05:31 217,088 --a------ c:\windows\System32\psisrndr.ax
2009-02-16 13:30 . 2008-12-05 05:31 177,664 --a------ c:\windows\System32\mpg2splt.ax
2009-02-16 13:30 . 2008-12-05 05:31 80,896 --a------ c:\windows\System32\MSNP.ax

.
(((((((((((((((((((((((((((((((((((( Find3M Bericht ))))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2009-03-13 19:22 410,984 ----a-w c:\windows\System32\deploytk.dll
2009-03-13 19:02 940 ----a-w c:\users\Marcus\AppData\Roaming\wklnhst.dat
2009-03-12 21:35 --------- d-----w c:\users\Marcus\AppData\Roaming\gtk-2.0
2009-03-12 18:04 --------- d-----w c:\program files\Windows Mail
2009-03-11 23:12 --------- d-----w c:\users\Marcus\AppData\Roaming\Ashampoo
2009-03-11 23:12 --------- d-----w c:\program files\Ashampoo
2009-03-11 14:42 --------- d-----w c:\programdata\Apple Computer
2009-03-09 19:08 --------- d-----w c:\users\Marcus\AppData\Roaming\Any Video Converter
2009-03-09 18:49 --------- d-----w c:\program files\Free FLV Converter
2009-03-09 01:49 --------- d-----w c:\program files\DivX
2009-03-06 17:44 290,816 ----a-w c:\windows\System32\TubeFinder.exe
2009-03-02 22:26 --------- d--h--w c:\program files\InstallShield Installation Information
2009-02-27 11:19 --------- d-----w c:\program files\Microsoft Silverlight
2009-02-22 23:36 --------- d-----w c:\program files\Yahoo!
2009-02-22 23:36 --------- d-----w c:\program files\PhotoScape
2009-02-19 18:45 --------- d-----w c:\program files\Malwarebytes' Anti-Malware
2009-02-11 09:19 38,496 ----a-w c:\windows\system32\drivers\mbamswissarmy.sys
2009-02-11 09:19 15,504 ----a-w c:\windows\system32\drivers\mbam.sys
2009-02-05 17:16 --------- d-----w c:\users\Marcus\AppData\Roaming\SecondLife
2009-02-05 13:20 --------- d-----w c:\users\Marcus\AppData\Roaming\DAEMON Tools Pro
2009-02-05 11:55 --------- d-----w c:\users\Marcus\AppData\Roaming\DAEMON Tools Lite
2009-02-05 11:54 --------- d-----w c:\users\Marcus\AppData\Roaming\DAEMON Tools
2009-02-05 11:53 --------- d-----w c:\programdata\DAEMON Tools Lite
2009-02-05 11:53 --------- d-----w c:\program files\DAEMON Tools Lite
2009-02-04 23:04 717,296 ----a-w c:\windows\system32\drivers\sptd.sys
2009-02-04 20:36 --------- d-----w c:\program files\Smart Projects
2009-02-03 23:37 --------- d---a-w c:\programdata\TEMP
2009-01-31 12:51 --------- d-----w c:\program files\Common Files\PX Storage Engine
2009-01-26 20:38 --------- d-----w c:\program files\Paint.NET
2009-01-24 00:18 --------- d-----w c:\users\Marcus\AppData\Roaming\phonostar-Player
2009-01-21 19:08 --------- d-----w c:\program files\Videograbber 5.0
2009-01-21 14:22 --------- d-----w c:\users\Marcus\AppData\Roaming\dvdcss
2008-10-23 10:19 77,824 ----a-w c:\program files\FaceControl.8bf
2008-06-28 12:16 5,864,016 ----a-w c:\program files\ashampoo_burningstudio661_free_cbo_de.exe
2008-06-20 12:37 174 --sha-w c:\program files\desktop.ini
2006-02-03 07:41 41,168 ----a-w c:\users\Public\FirewallInstallHelper.dll
2006-05-03 09:06 163,328 --sh--r c:\windows\System32\flvDX.dll
2007-02-21 10:47 31,232 --sh--r c:\windows\System32\msfDX.dll
2008-03-16 12:30 216,064 --sh--r c:\windows\System32\nbDX.dll
2008-06-17 10:21 32,768 --sha-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\MSHist012008061720080618\index.dat
2008-08-14 01:56 32,768 --sha-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\MSHist012008081420080815\index.dat
2008-11-13 14:07 32,768 --sha-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\MSHist012008111320081114\index.dat
.

((((((((((((((((((((((((((((( SnapShot@2009-02-16_18.55.38,51 )))))))))))))))))))))))))))))))))))))))))
.
+ 2009-02-17 16:28:55 12,288 ----a-w c:\windows\assembly\GAC_MSIL\Microsoft.Build.Conversion.v3.5.resources\3.5.0.0_de_b03f5f7f11d50a3a\Microsoft.Build.Conversion.v3.5.resources.dll
+ 2009-02-17 16:28:55 69,632 ----a-w c:\windows\assembly\GAC_MSIL\Microsoft.Build.Engine.resources\3.5.0.0_de_b03f5f7f11d50a3a\Microsoft.Build.Engine.resources.dll
+ 2009-02-17 16:28:55 163,840 ----a-w c:\windows\assembly\GAC_MSIL\Microsoft.Build.Tasks.v3.5.resources\3.5.0.0_de_b03f5f7f11d50a3a\Microsoft.Build.Tasks.v3.5.resources.dll
+ 2009-02-17 16:28:55 11,776 ----a-w c:\windows\assembly\GAC_MSIL\Microsoft.Build.Utilities.v3.5.resources\3.5.0.0_de_b03f5f7f11d50a3a\Microsoft.Build.Utilities.v3.5.resources.dll
+ 2009-02-17 16:28:55 8,192 ----a-w c:\windows\assembly\GAC_MSIL\System.ComponentModel.DataAnnotations.resources\3.5.0.0_de_31bf3856ad364e35\System.ComponentModel.DataAnnotations.Resources.dll
+ 2009-02-17 16:28:55 61,440 ----a-w c:\windows\assembly\GAC_MSIL\System.Core.resources\3.5.0.0_de_b77a5c561934e089\System.Core.Resources.dll
+ 2009-02-17 16:28:55 5,120 ----a-w c:\windows\assembly\GAC_MSIL\System.Data.DataSetExtensions.resources\3.5.0.0_de_b77a5c561934e089\System.Data.DataSetExtensions.Resources.dll
+ 2009-02-17 16:28:55 15,360 ----a-w c:\windows\assembly\GAC_MSIL\System.Data.Entity.Design.resources\3.5.0.0_de_b77a5c561934e089\System.Data.Entity.Design.Resources.dll
+ 2009-02-17 16:28:56 397,312 ----a-w c:\windows\assembly\GAC_MSIL\System.Data.Entity.resources\3.5.0.0_de_b77a5c561934e089\System.Data.Entity.Resources.dll
+ 2009-02-17 16:28:54 57,344 ----a-w c:\windows\assembly\GAC_MSIL\System.Data.Linq.resources\3.5.0.0_de_b77a5c561934e089\System.Data.Linq.Resources.dll
+ 2009-02-17 16:28:54 36,864 ----a-w c:\windows\assembly\GAC_MSIL\System.Data.Services.Client.resources\3.5.0.0_de_b77a5c561934e089\System.Data.Services.Client.resources.dll
+ 2009-02-17 16:28:54 7,680 ----a-w c:\windows\assembly\GAC_MSIL\System.Data.Services.Design.resources\3.5.0.0_de_b77a5c561934e089\System.Data.Services.Design.resources.dll
+ 2009-02-17 16:28:54 69,632 ----a-w c:\windows\assembly\GAC_MSIL\System.Data.Services.resources\3.5.0.0_de_b77a5c561934e089\System.Data.Services.resources.dll
+ 2009-02-17 16:28:54 36,864 ----a-w c:\windows\assembly\GAC_MSIL\System.DirectoryServices.AccountManagement.resources\3.5.0.0_de_b77a5c561934e089\System.DirectoryServices.AccountManagement.resources.dll
+ 2009-02-17 16:28:56 11,264 ----a-w c:\windows\assembly\GAC_MSIL\System.Management.Instrumentation.resources\3.5.0.0_de_b77a5c561934e089\System.Management.Instrumentation.Resources.dll
+ 2009-02-17 16:28:56 28,672 ----a-w c:\windows\assembly\GAC_MSIL\System.Net.resources\3.5.0.0_de_b03f5f7f11d50a3a\System.Net.Resources.dll
+ 2009-02-17 16:28:54 69,632 ----a-w c:\windows\assembly\GAC_MSIL\System.ServiceModel.Web.resources\3.5.0.0_de_31bf3856ad364e35\System.ServiceModel.Web.resources.dll
+ 2009-02-17 16:28:56 3,584 ----a-w c:\windows\assembly\GAC_MSIL\System.Web.Abstractions.resources\3.5.0.0_de_31bf3856ad364e35\System.Web.Abstractions.Resources.dll
+ 2009-02-17 16:28:56 4,096 ----a-w c:\windows\assembly\GAC_MSIL\System.Web.DynamicData.Design.resources\3.5.0.0_de_31bf3856ad364e35\System.Web.DynamicData.Design.Resources.dll
+ 2009-02-17 16:28:56 16,896 ----a-w c:\windows\assembly\GAC_MSIL\System.Web.DynamicData.resources\3.5.0.0_de_31bf3856ad364e35\System.Web.DynamicData.Resources.dll
+ 2009-02-17 16:28:56 11,264 ----a-w c:\windows\assembly\GAC_MSIL\System.Web.Entity.Design.resources\3.5.0.0_de_b77a5c561934e089\System.Web.Entity.Design.Resources.dll
+ 2009-02-17 16:28:56 15,360 ----a-w c:\windows\assembly\GAC_MSIL\System.Web.Entity.resources\3.5.0.0_de_b77a5c561934e089\System.Web.Entity.Resources.dll
+ 2009-02-17 16:28:56 49,152 ----a-w c:\windows\assembly\GAC_MSIL\System.Web.Extensions.Design.resources\3.5.0.0_de_31bf3856ad364e35\System.Web.Extensions.Design.Resources.dll
+ 2009-02-17 16:28:56 634,880 ----a-w c:\windows\assembly\GAC_MSIL\System.Web.Extensions.resources\3.5.0.0_de_31bf3856ad364e35\System.Web.Extensions.Resources.dll
+ 2009-02-17 16:28:56 7,168 ----a-w c:\windows\assembly\GAC_MSIL\System.Web.Routing.resources\3.5.0.0_de_31bf3856ad364e35\System.Web.Routing.Resources.dll
+ 2009-02-17 16:28:56 3,584 ----a-w c:\windows\assembly\GAC_MSIL\System.Windows.Presentation.resources\3.5.0.0_de_b77a5c561934e089\System.Windows.Presentation.resources.dll
+ 2009-02-17 16:28:54 102,400 ----a-w c:\windows\assembly\GAC_MSIL\System.WorkflowServices.resources\3.5.0.0_de_31bf3856ad364e35\System.WorkflowServices.resources.dll
+ 2009-02-17 16:28:56 8,192 ----a-w c:\windows\assembly\GAC_MSIL\System.Xml.Linq.resources\3.5.0.0_de_b77a5c561934e089\System.Xml.Linq.Resources.dll
- 2009-02-02 13:35:42 86,016 ----a-w c:\windows\inf\infpub.dat
+ 2009-03-02 22:13:15 86,016 ----a-w c:\windows\inf\infpub.dat
- 2009-02-02 13:35:37 86,016 ----a-w c:\windows\inf\infstor.dat
+ 2009-03-02 22:13:15 143,360 ----a-w c:\windows\inf\infstor.dat
- 2009-02-02 13:35:42 143,360 ----a-w c:\windows\inf\infstrng.dat
+ 2009-03-02 22:13:13 143,360 ----a-w c:\windows\inf\infstrng.dat
+ 2009-03-11 14:41:09 27,136 ----a-r c:\windows\Installer\{6956856F-B6B3-4BE0-BA0B-8F495BE32033}\AppleSoftwareUpdateIco.exe
+ 2009-03-11 14:42:29 307,200 ----a-r c:\windows\Installer\{AF10D7E4-D29A-45DA-8050-B116097B69B5}\SafariIco.exe
+ 2009-02-20 11:50:32 18,944 ----a-r c:\windows\Installer\{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}\IconCDDCBBF13.exe
+ 2009-02-20 11:50:32 65,024 ----a-r c:\windows\Installer\{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}\IconCDDCBBF15.exe
+ 2008-07-31 03:19:34 201,728 ----a-w c:\windows\Microsoft.NET\Framework\v3.5\1031\cscompui.dll
+ 2008-07-31 03:19:34 275,960 ----a-w c:\windows\Microsoft.NET\Framework\v3.5\1031\vbc7ui.dll
+ 2008-07-31 03:19:34 17,944 ----a-w c:\windows\Microsoft.NET\Framework\v3.5\de\DataSvcUtil.resources.dll
+ 2008-07-31 03:19:34 21,008 ----a-w c:\windows\Microsoft.NET\Framework\v3.5\de\EdmGen.Resources.dll
+ 2008-07-31 03:19:34 163,840 ----a-w c:\windows\Microsoft.NET\Framework\v3.5\de\Microsoft.Build.Tasks.v3.5.resources.dll
+ 2008-07-31 03:19:34 4,096 ----a-w c:\windows\Microsoft.NET\Framework\v3.5\de\Microsoft.Data.Entity.Build.Tasks.Resources.dll
+ 2008-07-31 03:19:34 46,096 ----a-w c:\windows\Microsoft.NET\Framework\v3.5\de\MSBuild.resources.exe
+ 2008-07-31 03:16:54 27,910 ----a-w c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 Language Pack SP1 - deu\baseline.dat
+ 2008-07-31 00:05:00 97,280 ----a-w c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 Language Pack SP1 - deu\DeleteTemp.exe
+ 2008-07-31 00:05:00 276,984 ----a-w c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 Language Pack SP1 - deu\dlmgr.dll
+ 2008-07-31 00:05:00 1,064,448 ----a-w c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 Language Pack SP1 - deu\gencomp.dll
+ 2008-07-31 00:05:00 177,152 ----a-w c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 Language Pack SP1 - deu\HtmlLite.dll
+ 2008-07-31 03:19:34 183,296 ----a-w c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 Language Pack SP1 - deu\RebootStub.exe
+ 2008-07-31 00:04:58 269,304 ----a-w c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 Language Pack SP1 - deu\setup.exe
+ 2008-07-31 00:07:38 130,048 ----a-w c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 Language Pack SP1 - deu\setupres.dll
+ 2008-07-31 00:04:58 1,364,992 ----a-w c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 Language Pack SP1 - deu\SITSetup.dll
+ 2008-07-31 00:05:00 1,054,208 ----a-w c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 Language Pack SP1 - deu\vs_setup.dll
+ 2008-07-31 00:05:00 632,320 ----a-w c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 Language Pack SP1 - deu\vs70uimgr.dll
+ 2008-07-31 00:05:00 413,184 ----a-w c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 Language Pack SP1 - deu\vsbasereqs.dll
+ 2008-07-31 00:05:00 689,152 ----a-w c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 Language Pack SP1 - deu\vsscenario.dll
+ 2008-07-31 00:07:38 111,608 ----a-w c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 Language Pack SP1 - deu\WapRes.dll
+ 2008-07-31 00:05:00 984,056 ----a-w c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 Language Pack SP1 - deu\WapUI.dll
- 2009-02-16 10:47:48 2,048 --sha-w c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive0.dat
+ 2009-03-13 22:17:33 2,048 --sha-w c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive0.dat
- 2009-02-16 10:47:48 2,048 --sha-w c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive1.dat
+ 2009-03-13 22:17:33 2,048 --sha-w c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive1.dat
- 2009-02-16 10:49:43 262,144 --sha-w c:\windows\ServiceProfiles\LocalService\ntuser.dat
+ 2009-03-13 22:19:49 262,144 --sha-w c:\windows\ServiceProfiles\LocalService\ntuser.dat
- 2008-12-10 19:41:55 2,633,728 -c--a-w c:\windows\ServiceProfiles\NetworkService\AppData\Roaming\Microsoft\SoftwareLicensing\tokens.dat
+ 2009-03-12 18:10:11 2,633,728 -c--a-w c:\windows\ServiceProfiles\NetworkService\AppData\Roaming\Microsoft\SoftwareLicensing\tokens.dat
- 2009-02-16 10:49:48 262,144 --sha-w c:\windows\ServiceProfiles\NetworkService\ntuser.dat
+ 2009-03-13 22:19:54 262,144 --sha-w c:\windows\ServiceProfiles\NetworkService\ntuser.dat
+ 2009-03-13 22:19:54 262,144 ---ha-w c:\windows\ServiceProfiles\NetworkService\ntuser.dat.LOG1
- 2009-02-16 10:48:01 32,768 --sha-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
+ 2009-03-13 17:40:54 32,768 --sha-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
- 2009-02-16 10:48:01 245,760 --sha-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat
+ 2009-03-13 17:40:54 245,760 --sha-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat
- 2009-02-16 10:48:01 32,768 --sha-w c:\windows\System32\config\systemprofile\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
+ 2009-03-13 17:40:54 32,768 --sha-w c:\windows\System32\config\systemprofile\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
- 2009-02-16 17:51:25 262,144 ----a-w c:\windows\System32\config\systemprofile\ntuser.dat
+ 2009-03-14 01:02:07 262,144 ----a-w c:\windows\System32\config\systemprofile\ntuser.dat
+ 2007-07-09 13:17:36 95,744 ----a-w c:\windows\System32\drivers\Gt51Ip.sys
+ 2007-06-26 12:38:46 51,968 ----a-w c:\windows\System32\drivers\gt72ubus.sys
+ 2007-03-30 12:38:14 8,064 ----a-w c:\windows\System32\drivers\gtptser.sys
+ 2008-01-18 14:16:22 83,880 ----a-w c:\windows\System32\DriverStore\FileRepository\a016bus.inf_e30c4f95\i386\a016bus.sys
+ 2008-01-18 14:16:28 12,200 ----a-w c:\windows\System32\DriverStore\FileRepository\a016bus.inf_e30c4f95\i386\a016whnt.sys
+ 2008-01-18 14:16:24 12,200 ----a-w c:\windows\System32\DriverStore\FileRepository\a016mdm2.inf_ab1fd688\i386\a016cmnt.sys
+ 2008-01-18 14:16:24 15,016 ----a-w c:\windows\System32\DriverStore\FileRepository\a016mdm2.inf_ab1fd688\i386\a016mdfl.sys
+ 2008-01-18 14:16:26 110,504 ----a-w c:\windows\System32\DriverStore\FileRepository\a016mdm2.inf_ab1fd688\i386\a016mdm.sys
+ 2008-01-18 14:16:24 12,200 ----a-w c:\windows\System32\DriverStore\FileRepository\a016obx2.inf_41413e44\i386\a016cmnt.sys
+ 2008-01-18 14:16:28 100,648 ----a-w c:\windows\System32\DriverStore\FileRepository\a016obx2.inf_41413e44\i386\a016obex.sys
+ 2008-01-18 14:16:24 12,200 ----a-w c:\windows\System32\DriverStore\FileRepository\a016sdm2.inf_535ad767\i386\a016cmnt.sys
+ 2008-01-18 14:16:26 104,488 ----a-w c:\windows\System32\DriverStore\FileRepository\a016sdm2.inf_535ad767\i386\a016mgmt.sys
+ 2007-03-30 12:38:14 8,064 ----a-w c:\windows\System32\DriverStore\FileRepository\gt72mdm.inf_dd234bd3\gtptser.sys
+ 2007-07-09 13:17:36 95,744 ----a-w c:\windows\System32\DriverStore\FileRepository\gt72ndis.inf_b89d876d\Gt51Ip.sys
+ 2007-03-30 12:38:14 8,064 ----a-w c:\windows\System32\DriverStore\FileRepository\gt72sc.inf_9cf7b127\gtptser.sys
+ 2007-06-22 10:54:30 21,376 ----a-w c:\windows\System32\DriverStore\FileRepository\gt72sc.inf_9cf7b127\gtscser.sys
+ 2007-03-30 12:38:14 8,064 ----a-w c:\windows\System32\DriverStore\FileRepository\gt72ser.inf_ea167780\gtptser.sys
+ 2007-06-26 12:38:46 51,968 ----a-w c:\windows\System32\DriverStore\FileRepository\gt72ubus.inf_edb40b3b\gt72ubus.sys
+ 2007-04-03 11:57:42 83,336 ----a-w c:\windows\System32\DriverStore\FileRepository\s116bus.inf_df34fcbe\i386\s116bus.sys
+ 2007-04-03 11:57:54 12,424 ----a-w c:\windows\System32\DriverStore\FileRepository\s116bus.inf_df34fcbe\i386\s116whnt.sys
+ 2007-04-03 11:57:44 12,424 ----a-w c:\windows\System32\DriverStore\FileRepository\s116mdm2.inf_32ac0887\i386\s116cmnt.sys
+ 2007-04-03 11:57:48 15,112 ----a-w c:\windows\System32\DriverStore\FileRepository\s116mdm2.inf_32ac0887\i386\s116mdfl.sys
+ 2007-04-03 11:57:48 108,680 ----a-w c:\windows\System32\DriverStore\FileRepository\s116mdm2.inf_32ac0887\i386\s116mdm.sys
+ 2007-04-03 11:57:50 22,792 ----a-w c:\windows\System32\DriverStore\FileRepository\s116ndis.inf_0845a3ac\i386\s116nd3.sys
+ 2007-04-03 11:57:52 23,176 ----a-w c:\windows\System32\DriverStore\FileRepository\s116ndis.inf_0845a3ac\i386\s116nd5.sys
+ 2007-04-03 11:57:44 12,424 ----a-w c:\windows\System32\DriverStore\FileRepository\s116obx2.inf_e4219e6e\i386\s116cmnt.sys
+ 2007-04-03 11:57:52 98,696 ----a-w c:\windows\System32\DriverStore\FileRepository\s116obx2.inf_e4219e6e\i386\s116obex.sys
+ 2007-04-03 11:57:44 12,424 ----a-w c:\windows\System32\DriverStore\FileRepository\s116sdm2.inf_7ab729fa\i386\s116cmnt.sys
+ 2007-04-03 11:57:50 100,488 ----a-w c:\windows\System32\DriverStore\FileRepository\s116sdm2.inf_7ab729fa\i386\s116mgmt.sys
+ 2007-04-03 11:57:46 11,016 ----a-w c:\windows\System32\DriverStore\FileRepository\s116unic.inf_3462cddf\i386\s116crnt.sys
+ 2007-04-03 11:57:54 99,080 ----a-w c:\windows\System32\DriverStore\FileRepository\s116unic.inf_3462cddf\i386\s116unic.sys
+ 2007-04-03 11:57:54 12,424 ----a-w c:\windows\System32\DriverStore\FileRepository\s116unic.inf_3462cddf\i386\s116whnt.sys
+ 2007-06-25 09:43:22 82,984 ----a-w c:\windows\System32\DriverStore\FileRepository\s117bus.inf_899d5dfe\i386\s117bus.sys
+ 2007-06-25 09:43:36 12,200 ----a-w c:\windows\System32\DriverStore\FileRepository\s117bus.inf_899d5dfe\i386\s117whnt.sys
+ 2007-06-25 09:43:24 12,200 ----a-w c:\windows\System32\DriverStore\FileRepository\s117mdm2.inf_e579813c\i386\s117cmnt.sys
+ 2007-06-25 09:43:26 14,888 ----a-w c:\windows\System32\DriverStore\FileRepository\s117mdm2.inf_e579813c\i386\s117mdfl.sys
+ 2007-06-25 09:43:36 108,456 ----a-w c:\windows\System32\DriverStore\FileRepository\s117mdm2.inf_e579813c\i386\s117mdm.sys
+ 2007-06-25 09:43:36 22,568 ----a-w c:\windows\System32\DriverStore\FileRepository\s117ndis.inf_a5235957\i386\s117nd3.sys
+ 2007-06-25 09:43:36 22,952 ----a-w c:\windows\System32\DriverStore\FileRepository\s117ndis.inf_a5235957\i386\s117nd5.sys
+ 2007-06-25 09:43:24 12,200 ----a-w c:\windows\System32\DriverStore\FileRepository\s117obx2.inf_313493e6\i386\s117cmnt.sys
+ 2007-06-25 09:43:38 98,344 ----a-w c:\windows\System32\DriverStore\FileRepository\s117obx2.inf_313493e6\i386\s117obex.sys
+ 2007-06-25 09:43:24 12,200 ----a-w c:\windows\System32\DriverStore\FileRepository\s117sdm2.inf_ed2914dd\i386\s117cmnt.sys
+ 2007-06-25 09:43:36 100,264 ----a-w c:\windows\System32\DriverStore\FileRepository\s117sdm2.inf_ed2914dd\i386\s117mgmt.sys
+ 2007-06-25 09:43:38 10,792 ----a-w c:\windows\System32\DriverStore\FileRepository\s117unic.inf_d140838a\i386\s117crnt.sys
+ 2007-06-25 09:43:36 98,856 ----a-w c:\windows\System32\DriverStore\FileRepository\s117unic.inf_d140838a\i386\s117unic.sys
+ 2007-06-25 09:43:36 12,200 ----a-w c:\windows\System32\DriverStore\FileRepository\s117unic.inf_d140838a\i386\s117whnt.sys
+ 2007-11-01 05:20:34 83,840 ----a-w c:\windows\System32\DriverStore\FileRepository\s1317bus.inf_05686549\i386\s1317bus.sys
+ 2007-11-01 05:20:36 12,160 ----a-w c:\windows\System32\DriverStore\FileRepository\s1317bus.inf_05686549\i386\s1317whnt.sys
+ 2007-11-01 05:20:34 12,160 ----a-w c:\windows\System32\DriverStore\FileRepository\s1317mdm2.inf_0bb5aeeb\i386\s1317cmnt.sys
+ 2007-11-01 05:20:36 14,976 ----a-w c:\windows\System32\DriverStore\FileRepository\s1317mdm2.inf_0bb5aeeb\i386\s1317mdfl.sys
+ 2007-11-01 05:20:36 110,592 ----a-w c:\windows\System32\DriverStore\FileRepository\s1317mdm2.inf_0bb5aeeb\i386\s1317mdm.sys
+ 2007-11-01 05:20:36 24,960 ----a-w c:\windows\System32\DriverStore\FileRepository\s1317ndis.inf_d81a4853\i386\s1317nd3.sys
+ 2007-11-01 05:20:36 25,472 ----a-w c:\windows\System32\DriverStore\FileRepository\s1317ndis.inf_d81a4853\i386\s1317nd5.sys
+ 2007-11-01 05:20:34 12,160 ----a-w c:\windows\System32\DriverStore\FileRepository\s1317obx2.inf_98f6de2b\i386\s1317cmnt.sys
+ 2007-11-01 05:20:36 100,608 ----a-w c:\windows\System32\DriverStore\FileRepository\s1317obx2.inf_98f6de2b\i386\s1317obex.sys
+ 2007-11-01 05:20:34 12,160 ----a-w c:\windows\System32\DriverStore\FileRepository\s1317sdm2.inf_56ffa65b\i386\s1317cmnt.sys
+ 2007-11-01 05:20:36 104,448 ----a-w c:\windows\System32\DriverStore\FileRepository\s1317sdm2.inf_56ffa65b\i386\s1317mgmt.sys
+ 2007-11-01 05:20:34 10,752 ----a-w c:\windows\System32\DriverStore\FileRepository\s1317unic.inf_04377286\i386\s1317crnt.sys
+ 2007-11-01 05:20:36 109,952 ----a-w c:\windows\System32\DriverStore\FileRepository\s1317unic.inf_04377286\i386\s1317unic.sys
+ 2007-11-01 05:20:36 12,160 ----a-w c:\windows\System32\DriverStore\FileRepository\s1317unic.inf_04377286\i386\s1317whnt.sys
+ 2007-11-02 13:22:36 83,496 ----a-w c:\windows\System32\DriverStore\FileRepository\s217bus.inf_5ab01da8\i386\s217bus.sys
+ 2007-11-02 13:22:38 12,200 ----a-w c:\windows\System32\DriverStore\FileRepository\s217bus.inf_5ab01da8\i386\s217whnt.sys
+ 2007-11-02 13:22:36 12,200 ----a-w c:\windows\System32\DriverStore\FileRepository\s217mdm2.inf_7d89efd1\i386\s217cmnt.sys
+ 2007-11-02 13:22:36 15,016 ----a-w c:\windows\System32\DriverStore\FileRepository\s217mdm2.inf_7d89efd1\i386\s217mdfl.sys
+ 2007-11-02 13:22:36 109,992 ----a-w c:\windows\System32\DriverStore\FileRepository\s217mdm2.inf_7d89efd1\i386\s217mdm.sys
+ 2007-11-02 13:22:36 24,360 ----a-w c:\windows\System32\DriverStore\FileRepository\s217ndis.inf_64d930da\i386\s217nd3.sys
+ 2007-11-02 13:22:38 24,872 ----a-w c:\windows\System32\DriverStore\FileRepository\s217ndis.inf_64d930da\i386\s217nd5.sys
+ 2007-11-02 13:22:36 12,200 ----a-w c:\windows\System32\DriverStore\FileRepository\s217obx2.inf_7ad482e7\i386\s217cmnt.sys
+ 2007-11-02 13:22:38 100,008 ----a-w c:\windows\System32\DriverStore\FileRepository\s217obx2.inf_7ad482e7\i386\s217obex.sys
+ 2007-11-02 13:22:36 12,200 ----a-w c:\windows\System32\DriverStore\FileRepository\s217sdm2.inf_d45dc7d2\i386\s217cmnt.sys
+ 2007-11-02 13:22:38 103,976 ----a-w c:\windows\System32\DriverStore\FileRepository\s217sdm2.inf_d45dc7d2\i386\s217mgmt.sys
+ 2007-11-02 13:22:36 10,792 ----a-w c:\windows\System32\DriverStore\FileRepository\s217unic.inf_90f65b0d\i386\s217crnt.sys
+ 2007-11-02 13:22:38 105,896 ----a-w c:\windows\System32\DriverStore\FileRepository\s217unic.inf_90f65b0d\i386\s217unic.sys
+ 2007-11-02 13:22:38 12,200 ----a-w c:\windows\System32\DriverStore\FileRepository\s217unic.inf_90f65b0d\i386\s217whnt.sys
+ 2007-12-10 13:22:14 83,880 ----a-w c:\windows\System32\DriverStore\FileRepository\s3017bus.inf_2eeae02b\i386\s3017bus.sys
+ 2007-12-10 13:22:22 12,200 ----a-w c:\windows\System32\DriverStore\FileRepository\s3017bus.inf_2eeae02b\i386\s3017whnt.sys
+ 2007-12-10 13:22:16 12,200 ----a-w c:\windows\System32\DriverStore\FileRepository\s3017mdm2.inf_3d087208\i386\s3017cmnt.sys
+ 2007-12-10 13:22:18 15,016 ----a-w c:\windows\System32\DriverStore\FileRepository\s3017mdm2.inf_3d087208\i386\s3017mdfl.sys
+ 2007-12-10 13:22:18 110,632 ----a-w c:\windows\System32\DriverStore\FileRepository\s3017mdm2.inf_3d087208\i386\s3017mdm.sys
+ 2007-12-10 13:22:20 25,000 ----a-w c:\windows\System32\DriverStore\FileRepository\s3017ndis.inf_704910e7\i386\s3017nd3.sys
+ 2007-12-10 13:22:20 25,512 ----a-w c:\windows\System32\DriverStore\FileRepository\s3017ndis.inf_704910e7\i386\s3017nd5.sys
+ 2007-12-10 13:22:16 12,200 ----a-w c:\windows\System32\DriverStore\FileRepository\s3017obx2.inf_b66993fd\i386\s3017cmnt.sys
+ 2007-12-10 13:22:22 100,648 ----a-w c:\windows\System32\DriverStore\FileRepository\s3017obx2.inf_b66993fd\i386\s3017obex.sys
+ 2007-12-10 13:22:16 12,200 ----a-w c:\windows\System32\DriverStore\FileRepository\s3017sdm2.inf_498afe8d\i386\s3017cmnt.sys
+ 2007-12-10 13:22:20 104,616 ----a-w c:\windows\System32\DriverStore\FileRepository\s3017sdm2.inf_498afe8d\i386\s3017mgmt.sys
+ 2007-12-10 13:22:16 10,792 ----a-w c:\windows\System32\DriverStore\FileRepository\s3017unic.inf_9c663b1a\i386\s3017crnt.sys
+ 2007-12-10 13:22:22 110,120 ----a-w c:\windows\System32\DriverStore\FileRepository\s3017unic.inf_9c663b1a\i386\s3017unic.sys
+ 2007-12-10 13:22:22 12,200 ----a-w c:\windows\System32\DriverStore\FileRepository\s3017unic.inf_9c663b1a\i386\s3017whnt.sys
+ 2007-04-03 11:59:30 83,208 ----a-w c:\windows\System32\DriverStore\FileRepository\s616bus.inf_40963848\i386\s616bus.sys
+ 2007-04-03 11:59:44 12,424 ----a-w c:\windows\System32\DriverStore\FileRepository\s616bus.inf_40963848\i386\s616whnt.sys
+ 2007-04-03 11:59:32 12,424 ----a-w c:\windows\System32\DriverStore\FileRepository\s616mdm2.inf_4f7f684d\i386\s616cmnt.sys
+ 2007-04-03 11:59:36 15,112 ----a-w c:\windows\System32\DriverStore\FileRepository\s616mdm2.inf_4f7f684d\i386\s616mdfl.sys
+ 2007-04-03 11:59:38 108,680 ----a-w c:\windows\System32\DriverStore\FileRepository\s616mdm2.inf_4f7f684d\i386\s616mdm.sys
+ 2007-04-03 11:59:40 22,792 ----a-w c:\windows\System32\DriverStore\FileRepository\s616ndis.inf_5dea29e2\i386\s616nd3.sys
+ 2007-04-03 11:59:42 23,176 ----a-w c:\windows\System32\DriverStore\FileRepository\s616ndis.inf_5dea29e2\i386\s616nd5.sys
+ 2007-04-03 11:59:32 12,424 ----a-w c:\windows\System32\DriverStore\FileRepository\s616obx2.inf_ffd2466f\i386\s616cmnt.sys
+ 2007-04-03 11:59:42 98,568 ----a-w c:\windows\System32\DriverStore\FileRepository\s616obx2.inf_ffd2466f\i386\s616obex.sys
+ 2007-04-03 11:59:32 12,424 ----a-w c:\windows\System32\DriverStore\FileRepository\s616sdm2.inf_7b36e9a8\i386\s616cmnt.sys
+ 2007-04-03 11:59:40 100,360 ----a-w c:\windows\System32\DriverStore\FileRepository\s616sdm2.inf_7b36e9a8\i386\s616mgmt.sys
+ 2007-04-03 11:59:36 11,016 ----a-w c:\windows\System32\DriverStore\FileRepository\s616unic.inf_8a075415\i386\s616crnt.sys
+ 2007-04-03 11:59:42 99,080 ----a-w c:\windows\System32\DriverStore\FileRepository\s616unic.inf_8a075415\i386\s616unic.sys
+ 2007-04-03 11:59:44 12,424 ----a-w c:\windows\System32\DriverStore\FileRepository\s616unic.inf_8a075415\i386\s616whnt.sys
+ 2007-04-04 10:43:20 83,208 ----a-w c:\windows\System32\DriverStore\FileRepository\s716bus.inf_54505e4c\i386\s716bus.sys
+ 2007-04-04 10:43:38 12,424 ----a-w c:\windows\System32\DriverStore\FileRepository\s716bus.inf_54505e4c\i386\s716whnt.sys
+ 2007-04-04 10:43:22 12,424 ----a-w c:\windows\System32\DriverStore\FileRepository\s716mdm2.inf_1331e8fc\i386\s716cmnt.sys
+ 2007-04-04 10:43:32 15,112 ----a-w c:\windows\System32\DriverStore\FileRepository\s716mdm2.inf_1331e8fc\i386\s716mdfl.sys
+ 2007-04-04 10:43:34 108,552 ----a-w c:\windows\System32\DriverStore\FileRepository\s716mdm2.inf_1331e8fc\i386\s716mdm.sys
+ 2007-04-04 10:43:34 22,792 ----a-w c:\windows\System32\DriverStore\FileRepository\s716ndis.inf_0334975b\i386\s716nd3.sys
+ 2007-04-04 10:43:36 23,176 ----a-w c:\windows\System32\DriverStore\FileRepository\s716ndis.inf_0334975b\i386\s716nd5.sys
+ 2007-04-04 10:43:22 12,424 ----a-w c:\windows\System32\DriverStore\FileRepository\s716obx2.inf_e0cf2447\i386\s716cmnt.sys
+ 2007-04-04 10:43:36 98,568 ----a-w c:\windows\System32\DriverStore\FileRepository\s716obx2.inf_e0cf2447\i386\s716obex.sys
+ 2007-12-10 13:22:16 12,200 ----a-w c:\windows\System32\DriverStore\Temp\{bb9d529c-4152-406c-891b-3c44d2c6642d}\Package\i386\s3017cmnt.sys
+ 2007-12-10 13:22:18 15,016 ----a-w c:\windows\System32\DriverStore\Temp\{bb9d529c-4152-406c-891b-3c44d2c6642d}\Package\i386\s3017mdfl.sys
+ 2007-12-10 13:22:18 110,632 ----a-w c:\windows\System32\DriverStore\Temp\{bb9d529c-4152-406c-891b-3c44d2c6642d}\Package\i386\s3017mdm.sys
- 2008-11-28 09:01:42 2,251,376 ----a-w c:\windows\System32\FNTCACHE.DAT
+ 2009-03-12 18:08:36 2,296,008 ----a-w c:\windows\System32\FNTCACHE.DAT
- 2008-11-27 20:20:18 85,704 ----a-w c:\windows\System32\GDIPFONTCACHEV1.DAT
+ 2009-03-12 16:00:09 106,128 ----a-w c:\windows\System32\GDIPFONTCACHEV1.DAT
- 2008-10-16 04:47:29 6,068,736 ----a-w c:\windows\System32\ieframe.dll
+ 2009-01-15 06:07:53 6,069,248 ----a-w c:\windows\System32\ieframe.dll
- 2008-10-16 04:47:29 270,336 ----a-w c:\windows\System32\iertutil.dll
+ 2009-01-15 06:07:53 270,336 ----a-w c:\windows\System32\iertutil.dll
- 2008-11-10 04:43:37 144,792 ----a-w c:\windows\System32\java.exe
+ 2009-03-13 19:22:38 144,792 ----a-w c:\windows\System32\java.exe
- 2008-11-10 04:43:38 144,792 ----a-w c:\windows\System32\javaw.exe
+ 2009-03-13 19:22:39 144,792 ----a-w c:\windows\System32\javaw.exe
- 2008-11-10 04:43:39 148,888 ----a-w c:\windows\System32\javaws.exe
+ 2009-03-13 19:22:39 148,888 ----a-w c:\windows\System32\javaws.exe
- 2008-10-16 04:47:30 28,160 ----a-w c:\windows\System32\jsproxy.dll
+ 2009-01-15 06:08:05 28,160 ----a-w c:\windows\System32\jsproxy.dll
- 2009-02-12 04:56:17 21,244,872 ----a-w c:\windows\System32\mrt.exe
+ 2009-02-25 20:54:59 24,768,960 ----a-w c:\windows\System32\mrt.exe
- 2008-01-19 07:34:58 458,240 ----a-w c:\windows\System32\msfeeds.dll
+ 2009-01-15 06:08:34 458,240 ----a-w c:\windows\System32\msfeeds.dll
- 2008-12-12 05:52:52 3,578,880 ----a-w c:\windows\System32\mshtml.dll
+ 2009-01-15 06:08:35 3,580,416 ----a-w c:\windows\System32\mshtml.dll
- 2008-10-16 04:47:32 671,232 ----a-w c:\windows\System32\mstime.dll
+ 2009-01-15 06:08:50 671,232 ----a-w c:\windows\System32\mstime.dll
- 2003-04-18 14:29:26 44,544 ----a-w c:\windows\System32\msxml4a.dll
+ 2003-04-18 15:29:26 44,544 ----a-w c:\windows\System32\msxml4a.dll
+ 2009-02-16 18:53:59 2,456 ----a-w c:\windows\System32\networklist\icons\{799CC05B-B3E5-4AB5-B312-F34F04AF06F5}_24.bin
+ 2009-02-16 18:53:59 4,280 ----a-w c:\windows\System32\networklist\icons\{799CC05B-B3E5-4AB5-B312-F34F04AF06F5}_32.bin
+ 2009-02-16 18:53:59 9,560 ----a-w c:\windows\System32\networklist\icons\{799CC05B-B3E5-4AB5-B312-F34F04AF06F5}_48.bin
+ 2009-02-19 17:52:35 2,456 ----a-w c:\windows\System32\networklist\icons\{A15C8CEA-A70D-4FE6-B44F-E2382FD00488}_24.bin
+ 2009-02-19 17:52:35 4,280 ----a-w c:\windows\System32\networklist\icons\{A15C8CEA-A70D-4FE6-B44F-E2382FD00488}_32.bin
+ 2009-02-19 17:52:35 9,560 ----a-w c:\windows\System32\networklist\icons\{A15C8CEA-A70D-4FE6-B44F-E2382FD00488}_48.bin
- 2009-02-16 17:17:58 122,648 ----a-w c:\windows\System32\perfc007.dat
+ 2009-03-13 22:24:07 122,648 ----a-w c:\windows\System32\perfc007.dat
- 2009-02-16 17:17:59 101,250 ----a-w c:\windows\System32\perfc009.dat
+ 2009-03-13 22:24:07 101,250 ----a-w c:\windows\System32\perfc009.dat
- 2009-02-16 17:17:59 618,442 ----a-w c:\windows\System32\perfh007.dat
+ 2009-03-13 22:24:07 618,442 ----a-w c:\windows\System32\perfh007.dat
- 2009-02-16 17:17:59 587,178 ----a-w c:\windows\System32\perfh009.dat
+ 2009-03-13 22:24:07 587,178 ----a-w c:\windows\System32\perfh009.dat
- 2009-02-16 12:55:56 6,553,600 ----a-w c:\windows\System32\SMI\Store\Machine\schema.dat
+ 2009-03-13 01:56:55 6,553,600 ----a-w c:\windows\System32\SMI\Store\Machine\schema.dat
- 2008-10-16 04:47:34 1,166,336 ----a-w c:\windows\System32\urlmon.dll
+ 2009-01-15 06:11:05 1,166,336 ----a-w c:\windows\System32\urlmon.dll
- 2009-02-16 10:49:54 12,550 ----a-w c:\windows\System32\WDI\{86432a0b-3c7d-4ddf-a89c-172faa90485d}\S-1-5-21-3720695484-2507963313-15357407-1000_UserData.bin
+ 2009-03-13 22:19:49 12,622 ----a-w c:\windows\System32\WDI\{86432a0b-3c7d-4ddf-a89c-172faa90485d}\S-1-5-21-3720695484-2507963313-15357407-1000_UserData.bin
- 2009-02-16 10:49:54 81,720 ----a-w c:\windows\System32\WDI\BootPerformanceDiagnostics_SystemData.bin
+ 2009-03-13 22:19:49 86,882 ----a-w c:\windows\System32\WDI\BootPerformanceDiagnostics_SystemData.bin
- 2009-02-09 22:23:10 2,664 ----a-w c:\windows\System32\WDI\ERCQueuedResolutions.dat
+ 2009-03-12 18:04:57 2,692 ----a-w c:\windows\System32\WDI\ERCQueuedResolutions.dat
- 2009-02-16 10:49:53 69,788 ----a-w c:\windows\System32\WDI\ShutdownPerformanceDiagnostics_SystemData.bin
+ 2009-03-13 12:41:36 72,128 ----a-w c:\windows\System32\WDI\ShutdownPerformanceDiagnostics_SystemData.bin
- 2009-02-09 20:24:31 311,432 ----a-w c:\windows\System32\WDI\SuspendPerformanceDiagnostics_SystemData_S3.bin
+ 2009-03-12 16:32:37 360,972 ----a-w c:\windows\System32\WDI\SuspendPerformanceDiagnostics_SystemData_S3.bin
- 2009-02-04 20:11:51 256,326 ----a-w c:\windows\System32\WDI\SuspendPerformanceDiagnostics_SystemData_S4.bin
+ 2009-03-08 21:38:43 284,312 ----a-w c:\windows\System32\WDI\SuspendPerformanceDiagnostics_SystemData_S4.bin
- 2008-01-19 07:37:03 10,620,928 ----a-w c:\windows\System32\wmp.dll
+ 2008-12-16 05:31:35 10,622,976 ----a-w c:\windows\System32\wmp.dll
+ 2009-02-24 17:40:19 65,536 ----a-w c:\windows\tracing\IPSEC.BIN
+ 2009-02-24 17:40:19 65,536 ----a-w c:\windows\tracing\RASL2TP.BIN
+ 2009-02-24 17:40:19 65,536 ----a-w c:\windows\tracing\RASPPTP.BIN
+ 2009-02-24 17:40:19 131,072 ----a-w c:\windows\tracing\RASSSTP.BIN
- 2009-02-16 12:56:29 196,288,947 ----a-w c:\windows\winsxs\ManifestCache\6.0.6001.18000_001c50b5_blobs.bin
+ 2009-03-11 16:24:56 197,071,858 ----a-w c:\windows\winsxs\ManifestCache\6.0.6001.18000_001c50b5_blobs.bin
+ 2008-12-16 05:53:36 4,096 ----a-w c:\windows\winsxs\x86_microsoft-windows-mediaplayer-core_31bf3856ad364e35_6.0.6000.16789_none_09360999522be962\dxmasf.dll
+ 2008-12-16 05:53:35 7,680 ----a-w c:\windows\winsxs\x86_microsoft-windows-mediaplayer-core_31bf3856ad364e35_6.0.6000.16789_none_09360999522be962\spwmp.dll
+ 2008-12-16 05:53:36 10,619,904 ----a-w c:\windows\winsxs\x86_microsoft-windows-mediaplayer-core_31bf3856ad364e35_6.0.6000.16789_none_09360999522be962\wmp.dll
+ 2008-12-16 05:53:30 107,520 ----a-w c:\windows\winsxs\x86_microsoft-windows-mediaplayer-core_31bf3856ad364e35_6.0.6000.16789_none_09360999522be962\wmpconfig.exe
+ 2008-12-16 05:53:30 168,960 ----a-w c:\windows\winsxs\x86_microsoft-windows-mediaplayer-core_31bf3856ad364e35_6.0.6000.16789_none_09360999522be962\wmplayer.exe
+ 2008-12-16 04:00:17 8,147,968 ----a-w c:\windows\winsxs\x86_microsoft-windows-mediaplayer-core_31bf3856ad364e35_6.0.6000.16789_none_09360999522be962\wmploc.DLL
+ 2008-12-16 05:53:30 107,520 ----a-w c:\windows\winsxs\x86_microsoft-windows-mediaplayer-core_31bf3856ad364e35_6.0.6000.16789_none_09360999522be962\wmpshare.exe
+ 2008-12-16 05:37:10 4,096 ----a-w c:\windows\winsxs\x86_microsoft-windows-mediaplayer-core_31bf3856ad364e35_6.0.6000.20976_none_09c777586b441e5d\dxmasf.dll
+ 2008-12-16 05:36:47 7,680 ----a-w c:\windows\winsxs\x86_microsoft-windows-mediaplayer-core_31bf3856ad364e35_6.0.6000.20976_none_09c777586b441e5d\spwmp.dll
+ 2008-12-16 05:37:33 10,619,904 ----a-w c:\windows\winsxs\x86_microsoft-windows-mediaplayer-core_31bf3856ad364e35_6.0.6000.20976_none_09c777586b441e5d\wmp.dll
+ 2008-12-16 03:49:51 107,520 ----a-w c:\windows\winsxs\x86_microsoft-windows-mediaplayer-core_31bf3856ad364e35_6.0.6000.20976_none_09c777586b441e5d\wmpconfig.exe
+ 2008-12-16 03:49:38 168,960 ----a-w c:\windows\winsxs\x86_microsoft-windows-mediaplayer-core_31bf3856ad364e35_6.0.6000.20976_none_09c777586b441e5d\wmplayer.exe
+ 2008-12-16 03:49:52 8,147,968 ----a-w c:\windows\winsxs\x86_microsoft-windows-mediaplayer-core_31bf3856ad364e35_6.0.6000.20976_none_09c777586b441e5d\wmploc.DLL
+ 2008-12-16 03:49:20 107,520 ----a-w c:\windows\winsxs\x86_microsoft-windows-mediaplayer-core_31bf3856ad364e35_6.0.6000.20976_none_09c777586b441e5d\wmpshare.exe
+ 2008-12-16 05:31:31 4,096 ----a-w c:\windows\winsxs\x86_microsoft-windows-mediaplayer-core_31bf3856ad364e35_6.0.6001.18185_none_0b1847174f5614f7\dxmasf.dll
+ 2008-12-16 05:31:30 7,680 ----a-w c:\windows\winsxs\x86_microsoft-windows-mediaplayer-core_31bf3856ad364e35_6.0.6001.18185_none_0b1847174f5614f7\spwmp.dll
+ 2008-12-16 05:31:35 10,622,976 ----a-w c:\windows\winsxs\x86_microsoft-windows-mediaplayer-core_31bf3856ad364e35_6.0.6001.18185_none_0b1847174f5614f7\wmp.dll
+ 2008-12-16 05:31:19 107,520 ----a-w c:\windows\winsxs\x86_microsoft-windows-mediaplayer-core_31bf3856ad364e35_6.0.6001.18185_none_0b1847174f5614f7\wmpconfig.exe
+ 2008-12-16 05:31:19 168,960 ----a-w c:\windows\winsxs\x86_microsoft-windows-mediaplayer-core_31bf3856ad364e35_6.0.6001.18185_none_0b1847174f5614f7\wmplayer.exe
+ 2008-12-16 03:29:44 8,147,456 ----a-w c:\windows\winsxs\x86_microsoft-windows-mediaplayer-core_31bf3856ad364e35_6.0.6001.18185_none_0b1847174f5614f7\wmploc.DLL
+ 2008-12-16 05:31:19 107,520 ----a-w c:\windows\winsxs\x86_microsoft-windows-mediaplayer-core_31bf3856ad364e35_6.0.6001.18185_none_0b1847174f5614f7\wmpshare.exe
+ 2008-12-16 04:32:10 4,096 ----a-w c:\windows\winsxs\x86_microsoft-windows-mediaplayer-core_31bf3856ad364e35_6.0.6001.22331_none_0bd3f43c684ec0d7\dxmasf.dll
+ 2008-12-16 04:31:29 7,680 ----a-w c:\windows\winsxs\x86_microsoft-windows-mediaplayer-core_31bf3856ad364e35_6.0.6001.22331_none_0bd3f43c684ec0d7\spwmp.dll
+ 2008-12-16 04:32:38 10,624,512 ----a-w c:\windows\winsxs\x86_microsoft-windows-mediaplayer-core_31bf3856ad364e35_6.0.6001.22331_none_0bd3f43c684ec0d7\wmp.dll
+ 2008-12-16 02:38:46 107,520 ----a-w c:\windows\winsxs\x86_microsoft-windows-mediaplayer-core_31bf3856ad364e35_6.0.6001.22331_none_0bd3f43c684ec0d7\wmpconfig.exe
+ 2008-12-16 02:38:29 168,960 ----a-w c:\windows\winsxs\x86_microsoft-windows-mediaplayer-core_31bf3856ad364e35_6.0.6001.22331_none_0bd3f43c684ec0d7\wmplayer.exe
+ 2008-12-16 02:39:20 8,147,456 ----a-w c:\windows\winsxs\x86_microsoft-windows-mediaplayer-core_31bf3856ad364e35_6.0.6001.22331_none_0bd3f43c684ec0d7\wmploc.DLL
+ 2008-12-16 02:38:10 107,520 ----a-w c:\windows\winsxs\x86_microsoft-windows-mediaplayer-core_31bf3856ad364e35_6.0.6001.22331_none_0bd3f43c684ec0d7\wmpshare.exe
+ 2009-02-11 23:29:35 2,409,784 ----a-w c:\windows\winsxs\x86_microsoft-windows-oespamfilter-dat_31bf3856ad364e35_6.0.6000.16819_none_f0a011f86e53bc84\OESpamFilter.dat
+ 2009-02-11 23:29:48 2,409,784 ----a-w c:\windows\winsxs\x86_microsoft-windows-oespamfilter-dat_31bf3856ad364e35_6.0.6000.21009_none_f13456d18769739f\OESpamFilter.dat
+ 2009-02-12 00:40:03 2,409,784 ----a-w c:\windows\winsxs\x86_microsoft-windows-oespamfilter-dat_31bf3856ad364e35_6.0.6001.18214_none_f2814f2c6b7ecec2\OESpamFilter.dat
+ 2009-02-12 00:28:19 2,409,784 ----a-w c:\windows\winsxs\x86_microsoft-windows-oespamfilter-dat_31bf3856ad364e35_6.0.6001.22375_none_f2cb0cb984cc2f89\OESpamFilter.dat
+ 2008-11-27 04:42:05 269,824 ----a-w c:\windows\winsxs\x86_microsoft-windows-security-schannel_31bf3856ad364e35_6.0.6000.16782_none_1fdb8f82585b552d\schannel.dll
+ 2008-12-02 04:25:38 269,824 ----a-w c:\windows\winsxs\x86_microsoft-windows-security-schannel_31bf3856ad364e35_6.0.6000.20967_none_207fcf7d716438ef\schannel.dll
+ 2008-11-27 04:43:25 268,288 ----a-w c:\windows\winsxs\x86_microsoft-windows-security-schannel_31bf3856ad364e35_6.0.6001.18175_none_21cf9ef255771632\schannel.dll
+ 2008-12-02 04:36:39 268,288 ----a-w c:\windows\winsxs\x86_microsoft-windows-security-schannel_31bf3856ad364e35_6.0.6001.22320_none_228a4bcd6e70a8bb\schannel.dll
+ 2009-02-09 01:59:26 2,028,032 ----a-w c:\windows\winsxs\x86_microsoft-windows-win32k_31bf3856ad364e35_6.0.6000.16816_none_b70870b09d62e718\win32k.sys
+ 2009-02-09 01:54:23 2,030,080 ----a-w c:\windows\winsxs\x86_microsoft-windows-win32k_31bf3856ad364e35_6.0.6000.21006_none_b79cb589b6789e33\win32k.sys
+ 2009-02-09 03:10:34 2,033,152 ----a-w c:\windows\winsxs\x86_microsoft-windows-win32k_31bf3856ad364e35_6.0.6001.18211_none_b8e9ade49a8df956\win32k.sys
+ 2009-02-09 02:54:45 2,033,664 ----a-w c:\windows\winsxs\x86_microsoft-windows-win32k_31bf3856ad364e35_6.0.6001.22372_none_b9336b71b3db5a1d\win32k.sys
.
-- Snapshot auf jetziges Datum zurückgesetzt --
.
(((((((((((((((((((((((((((( Autostartpunkte der Registrierung ))))))))))))))))))))))))))))))))))))))))
.
.
*Hinweis* leere Einträge & legitime Standardeinträge werden nicht angezeigt.
REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ehTray.exe"="c:\windows\ehome\ehTray.exe" [2008-01-19 125952]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"eDataSecurity Loader"="c:\acer\Empowering Technology\eDataSecurity\eDSloader.exe" [2007-04-25 457216]
"Apoint"="c:\program files\Apoint2K\Apoint.exe" [2007-06-06 159744]
"Acer Tour Reminder"="c:\acer\AcerTour\Reminder.exe" [2007-05-22 151552]
"WarReg_PopUp"="c:\acer\WR_PopUp\WarReg_PopUp.exe" [2006-11-05 57344]
"avgnt"="c:\program files\Avira\AntiVir PersonalEdition Classic\avgnt.exe" [2008-07-19 266497]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2008-02-11 141848]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2008-02-11 166424]
"Persistence"="c:\windows\system32\igfxpers.exe" [2008-02-11 133656]
"LManager"="c:\progra~1\LAUNCH~1\LManager.exe" [2007-07-16 768520]
"TkBellExe"="c:\program files\Common Files\Real\Update_OB\realsched.exe" [2008-11-08 185896]
"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 8.0\Reader\Reader_sl.exe" [2008-10-15 39792]
"SunJavaUpdateSched"="c:\program files\Java\jre6\bin\jusched.exe" [2009-03-13 148888]
"RtHDVCpl"="RtHDVCpl.exe" [2007-07-06 c:\windows\RtHDVCpl.exe]

c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
web'n'walk Manager.lnk - c:\program files\T-Mobile\web'n'walk Manager\web'n'walk Manager.exe [2007-11-07 798720]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"EnableLUA"= 0 (0x0)
"EnableUIADesktopToggle"= 0 (0x0)

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\explorer]
"NoResolveTrack"= 0 (0x0)
"NoFileAssociate"= 0 (0x0)

[hkey_local_machine\software\microsoft\windows\currentversion\explorer\ShellExecuteHooks]
"{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA}"= "c:\program files\SUPERAntiSpyware\SASSEH.DLL" [2008-05-13 77824]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\!SASWinLogon]
2008-12-22 11:05 356352 c:\program files\SUPERAntiSpyware\SASWINLO.dll

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\windows]
"AppInit_DLLs"=eNetHook.dll

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"vidc.i420"= i420vfw.dll
"msacm.l3acm"= c:\windows\system32\l3codecp.acm
"msacm.l3codec"= c:\windows\system32\l3codecp.acm

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
BootExecute REG_MULTI_SZ autocheck autochk /p \??\F:\0autocheck autochk *

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
@="Driver"

[HKLM\~\startupfolder\CCleaner.exe]
path=CCleaner.exe
backup=c:\windows\pss\CCleaner.exe.Startup
backupExtension=.Startup

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Acer Tour Reminder]
--a------ 2007-05-22 14:49 151552 c:\acer\AcerTour\Reminder.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ICQ]
--a------ 2008-11-30 14:41 172792 c:\progra~1\ICQ6.5\ICQ.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PlayMovie]
--------- 2007-05-24 13:38 206952 c:\program files\Acer Arcade Deluxe\Play Movie\PMVService.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SUPERAntiSpyware]
--a------ 2009-01-15 16:17 1830128 c:\program files\SUPERAntiSpyware\SUPERAntiSpyware.exe

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring]
"DisableMonitoring"=dword:00000001

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecAntiVirus]
"DisableMonitoring"=dword:00000001

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecFirewall]
"DisableMonitoring"=dword:00000001

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\FirewallRules]
"{650690AE-294A-4C4D-B970-295A47B2A065}"= c:\program files\Acer Arcade Deluxe\Acer Arcade Deluxe\Acer Arcade Deluxe.exe:Acer Arcade Deluxe
"{BD36B784-84D8-4B37-83BD-DF533C93BB03}"= c:\program files\Acer Arcade Deluxe\VideoMagician\VideoMagician.exe:VideoMagician
"{2A244C2D-44B7-42EE-9217-799A3F0EB866}"= c:\program files\Acer Arcade Deluxe\HomeMedia\HomeMedia.exe:HomeMedia
"{68D38B0B-0061-4E79-AA33-5F18EB9B3E64}"= c:\program files\Acer Arcade Deluxe\DV Wizard\DV Wizard.exe;)V Wizard
"{8AF9B2C8-139E-480B-8687-105641CC5DE2}"= UDP:c:\program files\Microsoft Office\Office12\ONENOTE.EXE:Microsoft Office OneNote
"{6360C419-FD9E-4369-AB7A-99B38BBB01FE}"= TCP:c:\program files\Microsoft Office\Office12\ONENOTE.EXE:Microsoft Office OneNote
"{27246F7D-5919-4981-9051-918C9E0641FB}"= c:\program files\Acer Arcade Deluxe\DVDivine\DVDivine.exe;)VDivine
"{42D9D1FD-B840-41D8-BBE9-6E7C1BBD7B30}"= c:\program files\Acer Arcade Deluxe\Play Movie\PlayMovie.exe:play Movie
"{38D3B740-A6D0-4FB2-9AE6-AF7D06B590A2}"= c:\program files\Acer Arcade Deluxe\Play Movie\PMVService.exe:play Movie Resident Program
"TCP Query User{9CD575A7-0027-49A1-9C2A-D1806AADC08E}c:\\program files\\web.de\\web.de multimessenger\\messengr.exe"= UDP:c:\program files\web.de\web.de multimessenger\messengr.exe:WEB.DE MultiMessenger
"UDP Query User{C90D1838-482D-4F09-B83E-AF263B0DE4EE}c:\\program files\\web.de\\web.de multimessenger\\messengr.exe"= TCP:c:\program files\web.de\web.de multimessenger\messengr.exe:WEB.DE MultiMessenger
"TCP Query User{18099F24-6F4C-4687-8771-896603966F0D}c:\\program files\\web.de\\web.de multimessenger\\messengr.exe"= UDP:c:\program files\web.de\web.de multimessenger\messengr.exe:WEB.DE MultiMessenger
"UDP Query User{E6EAB7BD-14A6-4359-84E0-8C53A2891645}c:\\program files\\web.de\\web.de multimessenger\\messengr.exe"= TCP:c:\program files\web.de\web.de multimessenger\messengr.exe:WEB.DE MultiMessenger
"{3B4732A6-14FC-438C-B37E-B89D7E7E5CE6}"= UDP:profile=Private|Profile=Public|c:\program files\Tobit ClipInc\Server\ClipInc-Server.exe:ClipInc Server
"{6C47B181-AA5D-43C9-A9FA-AFEC120ED5CF}"= TCP:profile=Private|Profile=Public|c:\program files\Tobit ClipInc\Server\ClipInc-Server.exe:ClipInc Server
"{B62B83B1-34AA-44B9-BA73-D1D949923178}"= UDP:profile=Private|Profile=Public|c:\program files\Tobit ClipInc\Player\ClipInc-Player.exe:ClipInc Player
"{DDAD9AD2-008E-44FF-B0C4-FE5E49438855}"= TCP:profile=Private|Profile=Public|c:\program files\Tobit ClipInc\Player\ClipInc-Player.exe:ClipInc Player
"TCP Query User{35F2691C-A3BF-4366-9F49-1880A68A4802}c:\\program files\\sony ericsson\\update service\\update service.exe"= UDP:c:\program files\sony ericsson\update service\update service.exe:Update Service
"UDP Query User{AE261740-F513-4475-8786-DCFDE2FC58C5}c:\\program files\\sony ericsson\\update service\\update service.exe"= TCP:c:\program files\sony ericsson\update service\update service.exe:Update Service
"{6E6A17A0-56DE-462E-B1B8-A244F7CC0BE8}"= c:\program files\Windows Live\Messenger\livecall.exe:Windows Live Messenger (Phone)
"{9DA6AC57-D38E-46E4-8B8A-72B76E368CC5}"= c:\program files\Windows Live\Messenger\livecall.exe:Windows Live Messenger (Phone)
"{5488E710-5328-4CED-89F9-8B433B518382}"= c:\program files\Windows Live\Messenger\livecall.exe:Windows Live Messenger (Phone)
"{6AA9B86D-C0AB-4CEC-BD8B-1333FE8504D9}"= c:\program files\Windows Live\Messenger\livecall.exe:Windows Live Messenger (Phone)
"TCP Query User{2C3AA6C6-7B3A-4699-9C7E-119D39A73BA3}c:\\program files\\internet explorer\\iexplore.exe"= UDP:c:\program files\internet explorer\iexplore.exe:Internet Explorer
"UDP Query User{26F10238-E6A3-4190-837E-F477DCC6DE44}c:\\program files\\internet explorer\\iexplore.exe"= TCP:c:\program files\internet explorer\iexplore.exe:Internet Explorer
"{4F350656-CF81-42E5-B7DE-52A8C1FC4DE1}"= UDP:c:\program files\Yahoo!\Messenger\YahooMessenger.exe:Yahoo! Messenger
"{F54444C5-4F10-46F4-8310-C015B1B9CA91}"= TCP:c:\program files\Yahoo!\Messenger\YahooMessenger.exe:Yahoo! Messenger
"{5FB47E5C-4B90-4C49-A7FF-1DE32D62449C}"= UDP:c:\program files\Yahoo!\Messenger\YServer.exe:Yahoo! FT Server
"{AE429D13-816E-413D-AE91-CC7BA4E707AE}"= TCP:c:\program files\Yahoo!\Messenger\YServer.exe:Yahoo! FT Server
"TCP Query User{E6FC236E-82E6-48E9-80B0-07F47D1FA053}c:\\program files\\icq6\\icq.exe"= UDP:c:\program files\icq6\icq.exe:ICQ Library
"UDP Query User{89E0EA87-4C71-4EAF-BDB7-18B66BEEAB4B}c:\\program files\\icq6\\icq.exe"= TCP:c:\program files\icq6\icq.exe:ICQ Library
"TCP Query User{1A919858-E155-4BB9-B3EB-2D6F44A5BC1D}c:\\program files\\mozilla firefox\\firefox.exe"= UDP:c:\program files\mozilla firefox\firefox.exe:Firefox
"UDP Query User{0E794209-88FA-4694-BD91-F3FC70113964}c:\\program files\\mozilla firefox\\firefox.exe"= TCP:c:\program files\mozilla firefox\firefox.exe:Firefox
"TCP Query User{C7845CF6-7B6B-4FD0-BF09-2CF43EA1E815}c:\\program files\\gimp-2.0\\lib\\gimp\\2.0\\plug-ins\\script-fu.exe"= UDP:c:\program files\gimp-2.0\lib\gimp\2.0\plug-ins\script-fu.exe:script-fu
"UDP Query User{DF598A5F-1B55-4E9B-B112-E8EE3437D1C5}c:\\program files\\gimp-2.0\\lib\\gimp\\2.0\\plug-ins\\script-fu.exe"= TCP:c:\program files\gimp-2.0\lib\gimp\2.0\plug-ins\script-fu.exe:script-fu
"{5CFE543E-E486-43CE-8953-93E683696877}"= UDP:5353:Adobe CSI CS4
"{9F3DBF06-D663-464E-B268-8481E19CC192}"= UDP:c:\program files\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe:Adobe CSI CS4
"{C3798555-8FCC-4D49-94BB-E25B2B9B6508}"= TCP:c:\program files\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe:Adobe CSI CS4
"TCP Query User{98B47A0C-C209-4E91-B54F-ADE7F552E8AD}c:\\program files\\icq6\\icq.exe"= UDP:c:\program files\icq6\icq.exe:ICQ Library
"UDP Query User{F099707F-260B-421C-86F5-BF3FCFECCE42}c:\\program files\\icq6\\icq.exe"= TCP:c:\program files\icq6\icq.exe:ICQ Library

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\PublicProfile]
"DisableNotifications"= 1 (0x1)

R1 SASDIFSV;SASDIFSV;c:\program files\SUPERAntiSpyware\sasdifsv.sys [2009-01-15 8944]
R1 SASKUTIL;SASKUTIL;c:\program files\SUPERAntiSpyware\SASKUTIL.SYS [2009-01-15 55024]
R2 {49DE1C67-83F8-4102-99E0-C16DCC7EEC796};{49DE1C67-83F8-4102-99E0-C16DCC7EEC796};c:\program files\Acer Arcade Deluxe\Play Movie\000.fcl [2007-10-29 20:15:47 13560]
R2 ALaunchService;ALaunch Service;c:\acer\ALaunch\ALaunchSvc.exe [2007-07-27 50688]
R2 GtDetectSc;GtDetectSc;c:\program files\T-Mobile\web'n'walk Manager\GtDetectSc.exe [2007-11-05 204915]
R2 TeamViewer;TeamViewer 3;c:\program files\TeamViewer3\TeamViewer_Service.exe [2008-09-25 181544]
R3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0;c:\windows\System32\drivers\b57nd60x.sys [2007-07-28 179712]
R3 GT72NDISIPXP;GT 72 IP NDIS;c:\windows\System32\drivers\Gt51Ip.sys [2007-07-09 95744]
R3 GT72UBUS;GT 72 U BUS;c:\windows\System32\drivers\gt72ubus.sys [2007-06-26 51968]
R3 GTPTSER;GT PT SER;c:\windows\System32\drivers\gtptser.sys [2007-03-30 8064]
S3 d12xbus;4G Systems Multi Mode Datacard Composite Device driver (WDM);c:\windows\System32\drivers\d12xbus.sys [2008-05-10 66880]
S3 d12xmdfl;4G Systems Multi Mode Datacard Modem (Filter);c:\windows\System32\drivers\d12xmdfl.sys [2008-05-10 9456]
S3 d12xmdm;4G Systems Multi Mode Datacard Modem;c:\windows\System32\drivers\d12xmdm.sys [2008-05-10 101056]
S3 d12xserd;4G Systems Multi Mode Datacard Serial Interface (WDM);c:\windows\System32\drivers\d12xserd.sys [2008-05-10 79968]
S3 s3017bus;Sony Ericsson Device 3017 driver (WDM);c:\windows\System32\drivers\s3017bus.sys [2009-02-22 83880]
S3 s3017mdfl;Sony Ericsson Device 3017 USB WMC Modem Filter;c:\windows\System32\drivers\s3017mdfl.sys [2009-02-22 15016]
S3 s3017mdm;Sony Ericsson Device 3017 USB WMC Modem Driver;c:\windows\System32\drivers\s3017mdm.sys [2009-02-22 110632]
S3 s3017mgmt;Sony Ericsson Device 3017 USB WMC Device Management Drivers (WDM);c:\windows\System32\drivers\s3017mgmt.sys [2009-02-22 104616]
S3 s3017nd5;Sony Ericsson Device 3017 USB Ethernet Emulation SEMC3017 (NDIS);c:\windows\System32\drivers\s3017nd5.sys [2009-02-22 25512]
S3 s3017obex;Sony Ericsson Device 3017 USB WMC OBEX Interface;c:\windows\System32\drivers\s3017obex.sys [2009-02-22 100648]
S3 s3017unic;Sony Ericsson Device 3017 USB Ethernet Emulation SEMC3017 (WDM);c:\windows\System32\drivers\s3017unic.sys [2009-02-22 110120]
S3 SASENUM;SASENUM;c:\program files\SUPERAntiSpyware\SASENUM.SYS [2009-01-15 7408]

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs
UxTuneUp

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{340915af-1eae-11dd-bf7d-001b38684d28}]
\shell\AutoRun\command - c:\windows\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL F:\autorun.exe

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{3ddb6b30-7f4f-11dd-9be4-001b38684d28}]
\shell\AutoRun\command - F:\AutoRun.exe

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{3ddb6b45-7f4f-11dd-9be4-001b38684d28}]
\shell\AutoRun\command - F:\AutoRun.exe

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{84ded317-1ed7-11dd-9075-001b38684d28}]
\shell\AutoRun\command - c:\windows\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL F:\autorun.exe

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{84ded33c-1ed7-11dd-9075-001b38684d28}]
\shell\AutoRun\command - c:\windows\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL F:\autorun.exe

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{d3d0e541-f43c-11dd-93ba-e735577c6b59}]
\shell\AutoRun\command - F:\autoplay.exe

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{d47a4eb4-03e0-11de-968a-c6fe37153091}]
\shell\AutoRun\command - F:\setup.exe AUTORUN=1
.
Inhalt des "geplante Tasks" Ordners

2009-03-14 c:\windows\Tasks\1-Klick-Wartung.job
- c:\program files\TuneUp Utilities 2008\OneClickStarter.exe [2008-08-21 18:47]
.
- - - - Entfernte verwaiste Registrierungseinträge - - - -

WebBrowser-{EEE6C35B-6118-11DC-9C72-001320C79847} - (no file)


.
------- Zusätzlicher Suchlauf -------
.
uStart Page = hxxp://www.google.de
uSearchMigratedDefaultURL = hxxp://search.yahoo.com/search?p={searchTerms}&ei=utf-8&fr=b1ie7
mStart Page = hxxp://de.intl.acer.yahoo.com
uSearchURL,(Default) = hxxp://de.rd.yahoo.com/customize/ycomp/defaults/su/*http://de.yahoo.com
IE: Nach Microsoft E&xel exportieren - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000
FF - ProfilePath - c:\users\Marcus\AppData\Roaming\Mozilla\Firefox\Profiles\fxda8tok.default\
FF - prefs.js: browser.search.defaulturl - hxxp://www.google.de/search?q=
FF - prefs.js: browser.search.selectedEngine - Google
FF - prefs.js: browser.startup.homepage - hxxp://www.
FF - prefs.js: keyword.URL - hxxp://www.google.de/search?q=
FF - component: c:\users\Marcus\AppData\Roaming\Mozilla\Firefox\Profiles\fxda8tok.default\extensions\{0b457cAA-602d-484a-8fe7-c1d894a011ba}\platform\WINNT_x86-msvc\components\SSSLauncher.dll

---- FIREFOX Richtlinien ----
FF - user.js: content.max.tokenizing.time - 200000
FF - user.js: content.notify.interval - 100000
FF - user.js: content.switch.threshold - 650000
FF - user.js: nglayout.initialpaint.delay - 300
.

**************************************************************************

catchme 0.3.1367 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-03-14 02:06:44
Windows 6.0.6001 Service Pack 1 NTFS

Scanne versteckte Prozesse...

[0] 0x1C5D8B04

Scanne versteckte Autostarteinträge...

Scanne versteckte Dateien...

Scan erfolgreich abgeschlossen
versteckte Dateien: 0

**************************************************************************
.
--------------------- Durch laufende Prozesse gestartete DLLs ---------------------

- - - - - - - > 'Explorer.exe'(3572)
c:\windows\system32\MsnChatHook.dll
c:\windows\system32\ShowErrMsg.dll
c:\windows\system32\sysenv.dll
c:\windows\system32\BatchCrypto.dll
c:\windows\system32\CryptoAPI.dll
c:\windows\system32\keyManager.dll
.
Zeit der Fertigstellung: 2009-03-14 2:10:14
ComboFix-quarantined-files.txt 2009-03-14 01:10:09

Vor Suchlauf: 21 Verzeichnis(se), 11.254.947.840 Bytes frei
Nach Suchlauf: 21 Verzeichnis(se), 10,938,580,992 Bytes frei

606 --- E O F --- 2009-03-13 18:51:10



hijack this:


Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 02:25:37, on 14.03.2009
Platform: Windows Vista SP1 (WinNT 6.00.1905)
MSIE: Internet Explorer v7.00 (7.00.6001.18000)
Boot mode: Normal

Running processes:
C:\Windows\system32\Dwm.exe
C:\Acer\Empowering Technology\eDataSecurity\eDSLoader.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe
C:\Windows\System32\hkcmd.exe
C:\Windows\System32\igfxpers.exe
C:\Windows\RtHDVCpl.exe
C:\Program Files\Launch Manager\LManager.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\Windows\ehome\ehtray.exe
C:\Program Files\T-Mobile\web'n'walk Manager\web'n'walk Manager.exe
C:\Windows\system32\igfxsrvc.exe
C:\Windows\ehome\ehmsas.exe
C:\Windows\system32\taskeng.exe
C:\Windows\system32\igfxext.exe
C:\Windows\Explorer.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.de
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://de.intl.acer.yahoo.com
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://de.rd.yahoo.com/customize/ycomp/defaults/su/*http://de.yahoo.com
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: (no name) - - (no file)
O1 - Hosts: ::1 localhost
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O3 - Toolbar: Acer eDataSecurity Management - {5CBE3B7C-1E47-477e-A7DD-396DB0476E29} - C:\Windows\system32\eDStoolbar.dll
O4 - HKLM\..\Run: [eDataSecurity Loader] C:\Acer\Empowering Technology\eDataSecurity\eDSloader.exe
O4 - HKLM\..\Run: [Apoint] C:\Program Files\Apoint2K\Apoint.exe
O4 - HKLM\..\Run: [Acer Tour Reminder] C:\Acer\AcerTour\Reminder.exe
O4 - HKLM\..\Run: [WarReg_PopUp] C:\Acer\WR_PopUp\WarReg_PopUp.exe
O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe" /min
O4 - HKLM\..\Run: [IgfxTray] C:\Windows\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\Windows\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\Windows\system32\igfxpers.exe
O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe
O4 - HKLM\..\Run: [LManager] C:\PROGRA~1\LAUNCH~1\LManager.exe
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
O4 - Global Startup: web'n'walk Manager.lnk = C:\Program Files\T-Mobile\web'n'walk Manager\web'n'walk Manager.exe
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O8 - Extra context menu item: Nach Microsoft E&xel exportieren - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: An OneNote senden - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: An OneNote s&enden - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6.5\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6.5\ICQ.exe
O13 - Gopher Prefix:
O20 - AppInit_DLLs: eNetHook.dll
O20 - Winlogon Notify: !SASWinLogon - C:\Program Files\SUPERAntiSpyware\SASWINLO.dll
O23 - Service: Agere Modem Call Progress Audio (AgereModemAudio) - Agere Systems - C:\Windows\system32\agrsmsvc.exe
O23 - Service: ALaunch Service (ALaunchService) - Unknown owner - C:\Acer\ALaunch\ALaunchSvc.exe
O23 - Service: Avira AntiVir Personal – Free Antivirus Planer (AntiVirScheduler) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
O23 - Service: Avira AntiVir Personal – Free Antivirus Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
O23 - Service: eDSService.exe (eDataSecurity Service) - HiTRSUT - C:\Acer\Empowering Technology\eDataSecurity\eDSService.exe
O23 - Service: eLock Service (eLockService) - Acer Inc. - C:\Acer\Empowering Technology\eLock\Service\eLockServ.exe
O23 - Service: eNet Service - Acer Inc. - C:\Acer\Empowering Technology\eNet\eNet Service.exe
O23 - Service: eRecovery Service (eRecoveryService) - Acer Inc. - C:\Acer\Empowering Technology\eRecovery\eRecoveryService.exe
O23 - Service: eSettings Service (eSettingsService) - Unknown owner - C:\Acer\Empowering Technology\eSettings\Service\capuserv.exe
O23 - Service: FLEXnet Licensing Service - Acresso Software Inc. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: GtDetectSc - Option - C:\Program Files\T-Mobile\web'n'walk Manager\GtDetectSc.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: MobilityService - Unknown owner - C:\Acer\Mobility Center\MobilityService.exe
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\CyberLink\Shared Files\RichVideo.exe
O23 - Service: TeamViewer 3 (TeamViewer) - TeamViewer GmbH - C:\Program Files\TeamViewer3\TeamViewer_Service.exe
O23 - Service: @%SystemRoot%\System32\TuneUpDefragService.exe,-1 (TuneUp.Defrag) - TuneUp Software GmbH - C:\Windows\System32\TuneUpDefragService.exe
O23 - Service: ePower Service (WMIService) - acer - C:\Acer\Empowering Technology\ePower\ePowerSvc.exe
O23 - Service: XAudioService - Conexant Systems, Inc. - C:\Windows\system32\DRIVERS\xaudio.exe

--
End of file - 6801 bytes


und die uninstall list:



2007 Microsoft Office Suite Service Pack 1 (SP1)
2007 Microsoft Office Suite Service Pack 1 (SP1)
2007 Microsoft Office Suite Service Pack 1 (SP1)
2007 Microsoft Office Suite Service Pack 1 (SP1)
2007 Microsoft Office Suite Service Pack 1 (SP1)
2007 Microsoft Office Suite Service Pack 1 (SP1)
2007 Microsoft Office Suite Service Pack 1 (SP1)
2007 Microsoft Office Suite Service Pack 1 (SP1)
2007 Microsoft Office Suite Service Pack 1 (SP1)
2007 Microsoft Office Suite Service Pack 1 (SP1)
Acer Arcade Deluxe
Acer eDataSecurity Management
Acer eLock Management
Acer Empowering Technology
Acer eNet Management
Acer ePower Management
Acer ePresentation Management
Acer eSettings Management
Acer GridVista
Acer Mobility Center Plug-In
Acer ScreenSaver
Acer Tour
Activation Assistant for the 2007 Microsoft Office suites
Adobe Anchor Service CS4
Adobe Bridge CS4
Adobe CMaps CS4
Adobe Color - Photoshop Specific CS4
Adobe Color EU Recommended Settings CS4
Adobe Color JA Extra Settings CS4
Adobe Color NA Extra Settings CS4
Adobe Color Video Profiles CS CS4
Adobe CSI CS4
Adobe Default Language CS4
Adobe Device Central CS4
Adobe Drive CS4
Adobe ExtendScript Toolkit CS4
Adobe Extension Manager CS4
Adobe Flash Player ActiveX
Adobe Flash Player Plugin
Adobe Fonts All
Adobe Linguistics CS4
Adobe Output Module
Adobe PDF Library Files CS4
Adobe Photoshop CS4
Adobe Photoshop CS4
Adobe Photoshop CS4
Adobe Photoshop CS4 Support
Adobe Reader 8.1.3
Adobe Search for Help
Adobe Service Manager Extension
Adobe Setup
Adobe Shockwave Player
Adobe Type Support CS4
Adobe Update Manager CS4
Adobe WinSoft Linguistics Plugin
Adobe XMP Panels CS4
AdobeColorCommonSetCMYK
AdobeColorCommonSetRGB
Agere Systems HDA Modem
ALPS Touch Pad Driver
Anno 1602
Any Video Converter 2.6.1
AP Tuner 3.08
Apple Software Update
Ashampoo Burning Studio 6 FREE
Ashampoo Photo Commander 6.30
Ashampoo WinOptimizer 4 FREE
Avira AntiVir Personal - Free Antivirus
AVS DVD Player version 2.4
CCleaner (remove only)
CD Audio Reader Filter (remove only)
Codec Pack - All In 1 6.0.3.0
Connect
DirectVobSub (remove only)
DivX Codec
DivX Player
DivX Plus DirectShow Filters
DivX Web Player
DScaler 5 Mpeg Decoders
DVD Shrink 3.2
EatCam Webcam Recorder 2.0 for Yahoo Messenger
Exact Audio Copy 0.99pb4
Favorit
Free Fire Screensaver
Free FLV Converter V 6.21.0
Free YouTube to Mp3 Converter version 3.1
GIMP 2.6.3
HijackThis 2.0.2
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)
ICQ6.5
Intel(R) Graphics Media Accelerator Driver
IsoBuster 2.5
Java(TM) 6 Update 12
kuler
Launch Manager
MAGIX Xtreme Foto Designer 6 6.0.19.0 (D)
Malwarebytes' Anti-Malware
Microsoft .NET Framework 3.5 Language Pack SP1 - deu
Microsoft .NET Framework 3.5 Language Pack SP1 - DEU
Microsoft .NET Framework 3.5 SP1
Microsoft .NET Framework 3.5 SP1
Microsoft Office Excel MUI (German) 2007
Microsoft Office Home and Student 2007
Microsoft Office Home and Student 2007
Microsoft Office OneNote MUI (German) 2007
Microsoft Office PowerPoint MUI (German) 2007
Microsoft Office Proof (English) 2007
Microsoft Office Proof (French) 2007
Microsoft Office Proof (German) 2007
Microsoft Office Proof (Italian) 2007
Microsoft Office Proofing (German) 2007
Microsoft Office Shared MUI (German) 2007
Microsoft Office Word MUI (German) 2007
Microsoft Silverlight
Microsoft Visual C++ 2005 Redistributable
Microsoft Works
Moorhuhn-X
Mozilla Firefox (3.0.7)
MSXML 4.0 SP2 (KB936181)
MSXML 4.0 SP2 (KB941833)
MSXML 4.0 SP2 (KB954430)
NTI Backup NOW! 4.7
NTI Backup NOW! 4.7
NTI CD & DVD-Maker
OpenOffice.org Installer 1.0
OpenSource Flash Video Splitter (remove only)
PDF Settings CS4
PhotoFiltre
PhotoScape
Photoshop Camera Raw
PowerProducer 3.72
RealPlayer
Realtek High Definition Audio Driver
Safari
Security Update for 2007 Microsoft Office System (KB951550)
Security Update for 2007 Microsoft Office System (KB951944)
Security Update for 2007 Microsoft Office System (KB958439)
Security Update for Microsoft Office Excel 2007 (KB958437)
Security Update for Microsoft Office OneNote 2007 (KB950130)
Security Update for Microsoft Office PowerPoint 2007 (KB951338)
Security Update for Microsoft Office system 2007 (KB954326)
Security Update for Microsoft Office system 2007 (KB956828)
Security Update for Microsoft Office Word 2007 (KB956358)
Sony Eyetoy Webcam
Suite Shared Configuration CS4
SUPER © Version 2008.bld.33 (Sep 2, 2008)
SUPERAntiSpyware Free Edition
TeamViewer 3
Text-To-Speech-Runtime
TuneUp Utilities 2008
Uninstall 1.0.0.1
Update for Microsoft Office Excel 2007 Help (KB957242)
Update for Office 2007 (KB946691)
VC80CRTRedist - 8.0.50727.762
Videograbber 5.0
VLC media player 0.9.8a
web'n'walk Manager
Windows Live Messenger
WinRAR

danke für jeden brauchbaren tipp brauche denn rechner täglich und muss mich auf ihn verlassen.......
Dieser Beitrag wurde am 14.03.2009 um 02:42 Uhr von timmi85 editiert.
Seitenanfang Seitenende
Um auf dieses Thema zu ANTWORTEN
bitte erst » hier kostenlos registrieren!!

Folgende Themen könnten Dich auch interessieren:
Seite(n): 1