Um auf dieses Thema zu ANTWORTEN
bitte erst » hier kostenlos registrieren!!
bitte erst » hier kostenlos registrieren!!
Folgende Themen könnten Dich auch interessieren:
Seite(n): 1
Copyright © 2024, Protecus.de - Protecus Team - Impressum / Mediadaten
seit einiger Zeit habe ich unter Systemsteuerung/Software einen Punkt, der sich "Yazzle ActiveX by OIN" nennt. Ich habe mal ein bisschen gesucht und es scheint sich ja wohl um irgendwelche Adware zu handeln. Bisher habe ich nichts bemerkt, aber es stört mich einfach, dass sich da Adware einfach so einquartiert.
Logfile of HijackThis v1.99.1
Scan saved at 16:18:20, on 05.12.2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.5730.0011)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\Programme\Gemeinsame Dateien\Symantec Shared\ccSetMgr.exe
C:\Programme\Gemeinsame Dateien\Symantec Shared\ccEvtMgr.exe
C:\WINDOWS\Explorer.EXE
C:\Programme\Gemeinsame Dateien\Symantec Shared\SNDSrvc.exe
C:\Programme\Gemeinsame Dateien\Symantec Shared\SPBBC\SPBBCSvc.exe
C:\Programme\Gemeinsame Dateien\Symantec Shared\CCPD-LC\symlcsvc.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Programme\Symantec\LiveUpdate\ALUSchedulerSvc.exe
C:\Programme\Norton AntiVirus\navapsvc.exe
C:\Programme\Norton AntiVirus\IWP\NPFMntor.exe
C:\Programme\Raxco\PerfectDisk\PDAgent.exe
C:\Programme\Gemeinsame Dateien\Symantec Shared\ccApp.exe
C:\Programme\iTunes\iTunesHelper.exe
C:\Programme\Audio Deck\EnMixCPL.exe
C:\Programme\Raxco\PerfectDisk\PDEngine.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Programme\iPod\bin\iPodService.exe
C:\WINDOWS\System32\svchost.exe
C:\Programme\Gemeinsame Dateien\Symantec Shared\Security Console\NSCSRVCE.EXE
C:\Programme\Mozilla Firefox\firefox.exe
C:\WINDOWS\system32\NOTEPAD.EXE
C:\Programme\Messenger\msmsgs.exe
C:\Programme\HijackThis\HijackThis.exe
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost
R3 - URLSearchHook: (no name) - {855F3B16-6D32-4fe6-8A56-BBB695989046} - (no file)
O2 - BHO: (no name) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - (no file)
O2 - BHO: NAV Helper - {A8F38D8D-E480-4D52-B7A2-731BB6995FDD} - C:\Programme\Norton AntiVirus\NavShExt.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\programme\google\googletoolbar3.dll
O3 - Toolbar: Norton AntiVirus - {C4069E3A-68F1-403E-B40E-20066696354B} - C:\Programme\Norton AntiVirus\NavShExt.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\programme\google\googletoolbar3.dll
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [InCD] C:\Programme\Nero\Nero 7\InCD\InCD.exe
O4 - HKLM\..\Run: [ccApp] "C:\Programme\Gemeinsame Dateien\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [ISUSScheduler] "C:\Programme\Gemeinsame Dateien\InstallShield\UpdateService\issch.exe" -start
O4 - HKLM\..\Run: [iTunesHelper] "C:\Programme\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [EnvyHFCPL] C:\Programme\Audio Deck\EnMixCPL.exe 1
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [swg] C:\Programme\Google\GoogleToolbarNotifier\1.0.720.3640\GoogleToolbarNotifier.exe
O8 - Extra context menu item: &ICQ Toolbar Search - res://C:\Programme\ICQToolbar\toolbaru.dll/SEARCH.HTML
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Programme\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Konsole - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Programme\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra button: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\Programme\ICQLite\ICQLite.exe
O9 - Extra 'Tools' menuitem: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\Programme\ICQLite\ICQLite.exe
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programme\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programme\Messenger\msmsgs.exe
O11 - Options group: [INTERNATIONAL] International*
O16 - DPF: {029FDBA6-3547-11D7-AA4C-0050BF051A00} (Rawflow ICD Client) - http://www.giga.de/giga-stream-test/Rawflow.cab
O16 - DPF: {04E214E5-63AF-4236-83C6-A7ADCBF9BD02} (HouseCall Control) - http://housecall60.trendmicro.com/housecall/xscan60.cab
O16 - DPF: {0DD4ADBE-E91D-48CC-9A04-87EA1674E385} (PerfTestClient) - http://gamer.ubicom.com/benchmarks/PerfTestCliActiveXProj_20060127.cab
O16 - DPF: {193C772A-87BE-4B19-A7BB-445B226FE9A1} (ewidoOnlineScan Control) - http://download.ewido.net/ewidoOnlineScan.cab
O16 - DPF: {54B52E52-8000-4413-BD67-FC7FE24B59F2} (EARTPatchX Class) - http://files.ea.com/downloads/rtpatch/v2/EARTPX.cab
O16 - DPF: {74CD40EA-EF77-4BAD-808A-B5982DA73F20} - http://yax-download.yazzle.net/YazzleActiveX.cab?refid=1123
O18 - Protocol: bt2 - {1730B77B-F429-498F-9B15-4514D83C8294} - (no file)
O18 - Protocol: bw+0 - {38496AFA-8E9A-48A8-9F37-B1934DC40BC9} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw+0s - {38496AFA-8E9A-48A8-9F37-B1934DC40BC9} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0 - {38496AFA-8E9A-48A8-9F37-B1934DC40BC9} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0s - {38496AFA-8E9A-48A8-9F37-B1934DC40BC9} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00 - {38496AFA-8E9A-48A8-9F37-B1934DC40BC9} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00s - {38496AFA-8E9A-48A8-9F37-B1934DC40BC9} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10 - {38496AFA-8E9A-48A8-9F37-B1934DC40BC9} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10s - {38496AFA-8E9A-48A8-9F37-B1934DC40BC9} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20 - {38496AFA-8E9A-48A8-9F37-B1934DC40BC9} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20s - {38496AFA-8E9A-48A8-9F37-B1934DC40BC9} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30 - {38496AFA-8E9A-48A8-9F37-B1934DC40BC9} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30s - {38496AFA-8E9A-48A8-9F37-B1934DC40BC9} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40 - {38496AFA-8E9A-48A8-9F37-B1934DC40BC9} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40s - {38496AFA-8E9A-48A8-9F37-B1934DC40BC9} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50 - {38496AFA-8E9A-48A8-9F37-B1934DC40BC9} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50s - {38496AFA-8E9A-48A8-9F37-B1934DC40BC9} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60 - {38496AFA-8E9A-48A8-9F37-B1934DC40BC9} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60s - {38496AFA-8E9A-48A8-9F37-B1934DC40BC9} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70 - {38496AFA-8E9A-48A8-9F37-B1934DC40BC9} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70s - {38496AFA-8E9A-48A8-9F37-B1934DC40BC9} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80 - {38496AFA-8E9A-48A8-9F37-B1934DC40BC9} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80s - {38496AFA-8E9A-48A8-9F37-B1934DC40BC9} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90 - {38496AFA-8E9A-48A8-9F37-B1934DC40BC9} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90s - {38496AFA-8E9A-48A8-9F37-B1934DC40BC9} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0 - {38496AFA-8E9A-48A8-9F37-B1934DC40BC9} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0s - {38496AFA-8E9A-48A8-9F37-B1934DC40BC9} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0 - {38496AFA-8E9A-48A8-9F37-B1934DC40BC9} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0s - {38496AFA-8E9A-48A8-9F37-B1934DC40BC9} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0 - {38496AFA-8E9A-48A8-9F37-B1934DC40BC9} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0s - {38496AFA-8E9A-48A8-9F37-B1934DC40BC9} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0 - {38496AFA-8E9A-48A8-9F37-B1934DC40BC9} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0s - {38496AFA-8E9A-48A8-9F37-B1934DC40BC9} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0 - {38496AFA-8E9A-48A8-9F37-B1934DC40BC9} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0s - {38496AFA-8E9A-48A8-9F37-B1934DC40BC9} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0 - {38496AFA-8E9A-48A8-9F37-B1934DC40BC9} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0s - {38496AFA-8E9A-48A8-9F37-B1934DC40BC9} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O18 - Protocol: bwg0 - {38496AFA-8E9A-48A8-9F37-B1934DC40BC9} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwg0s - {38496AFA-8E9A-48A8-9F37-B1934DC40BC9} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0 - {38496AFA-8E9A-48A8-9F37-B1934DC40BC9} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0s - {38496AFA-8E9A-48A8-9F37-B1934DC40BC9} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0 - {38496AFA-8E9A-48A8-9F37-B1934DC40BC9} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0s - {38496AFA-8E9A-48A8-9F37-B1934DC40BC9} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0 - {38496AFA-8E9A-48A8-9F37-B1934DC40BC9} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0s - {38496AFA-8E9A-48A8-9F37-B1934DC40BC9} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0 - {38496AFA-8E9A-48A8-9F37-B1934DC40BC9} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0s - {38496AFA-8E9A-48A8-9F37-B1934DC40BC9} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0 - {38496AFA-8E9A-48A8-9F37-B1934DC40BC9} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0s - {38496AFA-8E9A-48A8-9F37-B1934DC40BC9} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0 - {38496AFA-8E9A-48A8-9F37-B1934DC40BC9} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0s - {38496AFA-8E9A-48A8-9F37-B1934DC40BC9} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0 - {38496AFA-8E9A-48A8-9F37-B1934DC40BC9} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0s - {38496AFA-8E9A-48A8-9F37-B1934DC40BC9} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0 - {38496AFA-8E9A-48A8-9F37-B1934DC40BC9} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0s - {38496AFA-8E9A-48A8-9F37-B1934DC40BC9} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0 - {38496AFA-8E9A-48A8-9F37-B1934DC40BC9} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0s - {38496AFA-8E9A-48A8-9F37-B1934DC40BC9} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0 - {38496AFA-8E9A-48A8-9F37-B1934DC40BC9} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0s - {38496AFA-8E9A-48A8-9F37-B1934DC40BC9} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0 - {38496AFA-8E9A-48A8-9F37-B1934DC40BC9} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0s - {38496AFA-8E9A-48A8-9F37-B1934DC40BC9} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0 - {38496AFA-8E9A-48A8-9F37-B1934DC40BC9} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0s - {38496AFA-8E9A-48A8-9F37-B1934DC40BC9} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0 - {38496AFA-8E9A-48A8-9F37-B1934DC40BC9} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0s - {38496AFA-8E9A-48A8-9F37-B1934DC40BC9} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0 - {38496AFA-8E9A-48A8-9F37-B1934DC40BC9} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0s - {38496AFA-8E9A-48A8-9F37-B1934DC40BC9} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0 - {38496AFA-8E9A-48A8-9F37-B1934DC40BC9} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0s - {38496AFA-8E9A-48A8-9F37-B1934DC40BC9} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0 - {38496AFA-8E9A-48A8-9F37-B1934DC40BC9} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0s - {38496AFA-8E9A-48A8-9F37-B1934DC40BC9} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0 - {38496AFA-8E9A-48A8-9F37-B1934DC40BC9} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0s - {38496AFA-8E9A-48A8-9F37-B1934DC40BC9} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0 - {38496AFA-8E9A-48A8-9F37-B1934DC40BC9} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0s - {38496AFA-8E9A-48A8-9F37-B1934DC40BC9} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0 - {38496AFA-8E9A-48A8-9F37-B1934DC40BC9} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0s - {38496AFA-8E9A-48A8-9F37-B1934DC40BC9} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: offline-8876480 - {38496AFA-8E9A-48A8-9F37-B1934DC40BC9} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Filter: application/x-bt2 - {6E1DDCE8-76BC-4390-9488-806E8FB1AD77} - (no file)
O20 - Winlogon Notify: MCPClient - C:\PROGRA~1\GEMEIN~1\Stardock\mcpstub.dll (file missing)
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O20 - Winlogon Notify: winwim32 - winwim32.dll (file missing)
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: Automatisches LiveUpdate - Scheduler - Symantec Corporation - C:\Programme\Symantec\LiveUpdate\ALUSchedulerSvc.exe
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Programme\Gemeinsame Dateien\Symantec Shared\ccEvtMgr.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Programme\Gemeinsame Dateien\Symantec Shared\ccSetMgr.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Programme\Gemeinsame Dateien\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPod Service - Apple Computer, Inc. - C:\Programme\iPod\bin\iPodService.exe
O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
O23 - Service: Norton AntiVirus Auto-Protect-Dienst (navapsvc) - Symantec Corporation - C:\Programme\Norton AntiVirus\navapsvc.exe
O23 - Service: Norton AntiVirus Firewall Monitor Service (NPFMntor) - Symantec Corporation - C:\Programme\Norton AntiVirus\IWP\NPFMntor.exe
O23 - Service: Norton Protection Center Service (NSCService) - Symantec Corporation - C:\Programme\Gemeinsame Dateien\Symantec Shared\Security Console\NSCSRVCE.EXE
O23 - Service: PDAgent - Raxco Software, Inc. - C:\Programme\Raxco\PerfectDisk\PDAgent.exe
O23 - Service: PDEngine - Raxco Software, Inc. - C:\Programme\Raxco\PerfectDisk\PDEngine.exe
O23 - Service: Symantec AVScan (SAVScan) - Symantec Corporation - C:\Programme\Norton AntiVirus\SAVScan.exe
O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Programme\Gemeinsame Dateien\Symantec Shared\SNDSrvc.exe
O23 - Service: SPBBCSvc - Symantec Corporation - C:\Programme\Gemeinsame Dateien\Symantec Shared\SPBBC\SPBBCSvc.exe
O23 - Service: Symantec Core LC - Symantec Corporation - C:\Programme\Gemeinsame Dateien\Symantec Shared\CCPD-LC\symlcsvc.exe
---------------------
Combofix
Jan Kriebel - 06-12-05 16:11:56,43 Service Pack 2
ComboFix 06.11.27W - Running from: "C:\Dokumente und Einstellungen\Jan Kriebel"
((((((((((((((((((((((((((((((( Files Created from 2006-11-05 to 2006-12-05 ))))))))))))))))))))))))))))))))))
2006-12-05 15:53 <DIR> d-------- C:\Programme\HijackThis
2006-12-01 17:47 21,504 --a------ C:\WINDOWS\jestertb.dll
2006-11-23 21:11 129,784 --------- C:\WINDOWS\system32\pxafs.dll
2006-11-22 19:13 <DIR> d-------- C:\Dokumente und Einstellungen\Jan Kriebel\Anwendungsdaten\Alnera
2006-11-22 19:12 <DIR> d-------- C:\Programme\Alnera
2006-11-22 19:04 77,824 --a------ C:\WINDOWS\system32\GkSui20.EXE
2006-11-22 19:04 <DIR> d-------- C:\Programme\RSS-Ticker
2006-11-21 20:46 57,344 --a------ C:\WINDOWS\system32\UnEnvyNT.dll
2006-11-21 20:46 <DIR> d-------- C:\Programme\Audio Deck
2006-11-21 20:40 589,120 --a------ C:\WINDOWS\system32\drivers\Envy24HF.sys
2006-11-21 20:40 254,000 --a------ C:\WINDOWS\system32\Audio3D.dll
2006-11-18 17:52 <DIR> d-------- C:\Programme\MSXML 4.0
2006-11-18 17:52 <DIR> d-------- C:\adc0cc0c79373d0b404491c31ccd
2006-11-14 14:49 <DIR> d-------- C:\Dokumente und Einstellungen\Jan Kriebel\Anwendungsdaten\Ventrilo
2006-11-14 14:48 <DIR> d-------- C:\Programme\Ventrilo
2006-11-14 14:48 <DIR> d-------- C:\Programme\Gemeinsame Dateien\Wise Installation Wizard
2006-11-10 18:11 <DIR> d-------- C:\SteamBuster
2006-11-09 15:18 <DIR> d-------- C:\Programme\JanSoft
2006-11-05 14:32 <DIR> d-------- C:\Programme\GSpot
2006-11-05 11:52 <DIR> d-------- C:\Programme\Windows Media Connect 2
2006-11-05 11:49 <DIR> d-------- C:\WINDOWS\system32\drivers\UMDF
(((((((((((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))))))))))))))))))))))))))))))))))))))))))))))))
2006-12-05 16:11 -------- d-------- C:\Programme\Mozilla Firefox
2006-12-05 15:01 -------- d-------- C:\Programme\Mozilla Thunderbird
2006-12-04 17:27 -------- d-------- C:\Programme\Warcraft III
2006-12-02 19:26 -------- d-------- C:\Programme\World of Warcraft
2006-12-02 12:40 -------- d-------- C:\Programme\Trillian
2006-12-02 11:50 -------- d-------- C:\Dokumente und Einstellungen\Jan Kriebel\Anwendungsdaten\Xfire
2006-12-01 22:34 -------- d-------- C:\Programme\Electronic Arts
2006-12-01 18:23 -------- d--h----- C:\Programme\InstallShield Installation Information
2006-12-01 18:22 -------- d-------- C:\Programme\Activision
2006-11-25 23:57 -------- d-------- C:\Programme\EA GAMES
2006-11-25 17:12 -------- d-------- C:\Programme\WinZip
2006-11-24 15:48 -------- d-------- C:\Dokumente und Einstellungen\Jan Kriebel\Anwendungsdaten\teamspeak2
2006-11-24 15:47 -------- d-------- C:\Dokumente und Einstellungen\Jan Kriebel\Anwendungsdaten\Skype
2006-11-23 21:36 -------- d-------- C:\Programme\Winamp
2006-11-22 16:48 -------- d-------- C:\Programme\RightMark3DSound
2006-11-18 22:09 -------- d---s---- C:\Programme\Xfire
2006-11-17 22:47 98304 --a------ C:\WINDOWS\system32\CmdLineExt.dll
2006-11-17 14:06 48768 --a------ C:\WINDOWS\system32\S32EVNT1.DLL
2006-11-17 14:06 110952 --a------ C:\WINDOWS\system32\drivers\SYMEVENT.SYS
2006-11-17 14:06 -------- d-------- C:\Programme\Symantec
2006-11-16 12:27 -------- d-------- C:\Programme\Gemeinsame Dateien\Symantec Shared
2006-11-14 14:48 -------- d-------- C:\Programme\Gemeinsame Dateien
2006-11-10 20:32 -------- d-------- C:\Programme\Gothic III
2006-11-10 18:42 -------- d-------- C:\Programme\Ubisoft
2006-11-08 16:50 -------- d-------- C:\Programme\phase5
2006-11-05 13:41 -------- d-------- C:\Programme\DOSBox-0.61
2006-11-05 11:52 -------- d-------- C:\Programme\Windows Media Player
2006-11-04 14:14 1245696 --a------ C:\WINDOWS\system32\msxml4.dll
2006-11-02 14:23 2829 --a------ C:\WINDOWS\War3Unin.pif
2006-11-02 14:23 139264 --a------ C:\WINDOWS\War3Unin.exe
2006-11-01 21:23 -------- d-------- C:\Programme\iTunes
2006-11-01 21:23 -------- d-------- C:\Programme\iPod
2006-11-01 21:22 -------- d-------- C:\Programme\QuickTime
2006-11-01 21:20 -------- d-------- C:\Programme\Apple Software Update
2006-10-31 15:57 -------- d-------- C:\Programme\Tweak-XP Pro 4
2006-10-28 16:07 -------- d-------- C:\Programme\Google
2006-10-28 13:30 -------- d-------- C:\Programme\Rockstar Games
2006-10-26 12:59 -------- d-------- C:\Programme\Internet Explorer
2006-10-25 18:59 -------- d-------- C:\Dokumente und Einstellungen\Jan Kriebel\Anwendungsdaten\POPWWPROFILES
2006-10-21 19:21 -------- d-------- C:\Programme\BF2AutoLoader
2006-10-21 19:08 -------- d-------- C:\Programme\NeverwinterNights
2006-10-18 23:03 43008 --------- C:\WINDOWS\system32\wpdshextres.dll
2006-10-18 22:58 8704 --a------ C:\WINDOWS\system32\wdfmgr.exe
2006-10-18 22:58 8704 --a------ C:\WINDOWS\system32\uwdf.exe
2006-10-18 22:47 99840 --a------ C:\WINDOWS\system32\wmpshell.dll
2006-10-18 22:47 991744 --a------ C:\WINDOWS\system32\drmv2clt.dll
2006-10-18 22:47 937984 --a------ C:\WINDOWS\system32\WMNetMgr.dll
2006-10-18 22:47 8231936 --a------ C:\WINDOWS\system32\wmploc.dll
2006-10-18 22:47 767488 --------- C:\WINDOWS\system32\WMVSENCD.dll
2006-10-18 22:47 757248 --a------ C:\WINDOWS\system32\WMADMOD.dll
2006-10-18 22:47 7168 --a------ C:\WINDOWS\system32\asferror.dll
2006-10-18 22:47 656896 --------- C:\WINDOWS\system32\WMVXENCD.dll
2006-10-18 22:47 63488 --a------ C:\WINDOWS\system32\wpdmtpus.dll
2006-10-18 22:47 629760 --a------ C:\WINDOWS\system32\wpd_ci.dll
2006-10-18 22:47 613376 --------- C:\WINDOWS\system32\wmpmde.dll
2006-10-18 22:47 603648 --a------ C:\WINDOWS\system32\WMSPDMOD.dll
2006-10-18 22:47 542720 --a------ C:\WINDOWS\system32\blackbox.dll
2006-10-18 22:47 535040 --------- C:\WINDOWS\system32\wmdrmsdk.dll
2006-10-18 22:47 429056 --a------ C:\WINDOWS\system32\wmdrmdev.dll
2006-10-18 22:47 414208 --a------ C:\WINDOWS\system32\msscp.dll
2006-10-18 22:47 4096 --a------ C:\WINDOWS\system32\wmvdmoe2.dll
2006-10-18 22:47 4096 --a------ C:\WINDOWS\system32\wmvdmod.dll
2006-10-18 22:47 4096 --a------ C:\WINDOWS\system32\WMVADVE.DLL
2006-10-18 22:47 4096 --a------ C:\WINDOWS\system32\WMVADVD.dll
2006-10-18 22:47 4096 --a------ C:\WINDOWS\system32\wmsdmoe2.dll
2006-10-18 22:47 4096 --a------ C:\WINDOWS\system32\wmsdmod.dll
2006-10-18 22:47 4096 --a------ C:\WINDOWS\system32\wdfapi.dll
2006-10-18 22:47 4096 --a------ C:\WINDOWS\system32\MPG4DMOD.dll
2006-10-18 22:47 4096 --a------ C:\WINDOWS\system32\MP4SDMOD.dll
2006-10-18 22:47 4096 --a------ C:\WINDOWS\system32\MP43DMOD.dll
2006-10-18 22:47 37376 --a------ C:\WINDOWS\system32\wmdmps.dll
2006-10-18 22:47 35840 --a------ C:\WINDOWS\system32\wpdconns.dll
2006-10-18 22:47 356352 --a------ C:\WINDOWS\system32\wpdsp.dll
2006-10-18 22:47 348672 --a------ C:\WINDOWS\system32\wmdrmnet.dll
2006-10-18 22:47 33792 --a------ C:\WINDOWS\system32\wmdmlog.dll
2006-10-18 22:47 321536 --a------ C:\WINDOWS\system32\mswmdm.dll
2006-10-18 22:47 317440 --------- C:\WINDOWS\system32\MP4SDECD.dll
2006-10-18 22:47 314880 --a------ C:\WINDOWS\system32\wmpdxm.dll
2006-10-18 22:47 295936 --------- C:\WINDOWS\system32\wmpeffects.dll
2006-10-18 22:47 284160 --------- C:\WINDOWS\system32\PortableDeviceApi.dll
2006-10-18 22:47 276992 --a------ C:\WINDOWS\system32\audiodev.dll
2006-10-18 22:47 27136 --a------ C:\WINDOWS\system32\mspmsnsv.dll
2006-10-18 22:47 2603008 --------- C:\WINDOWS\system32\WpdShext.dll
2006-10-18 22:47 259072 --------- C:\WINDOWS\system32\MPG4DECD.dll
2006-10-18 22:47 259072 --------- C:\WINDOWS\system32\MP43DECD.dll
2006-10-18 22:47 2450944 --a------ C:\WINDOWS\system32\wmvcore.dll
2006-10-18 22:47 242688 --a------ C:\WINDOWS\system32\wmpasf.dll
2006-10-18 22:47 229376 --a------ C:\WINDOWS\system32\cewmdm.dll
2006-10-18 22:47 227328 --a------ C:\WINDOWS\system32\wmerror.dll
2006-10-18 22:47 222208 --a------ C:\WINDOWS\system32\wmasf.dll
2006-10-18 22:47 212992 --------- C:\WINDOWS\system32\MFPLAT.dll
2006-10-18 22:47 211456 --a------ C:\WINDOWS\system32\qasf.dll
2006-10-18 22:47 204288 --a------ C:\WINDOWS\system32\wmpsrcwp.dll
2006-10-18 22:47 199168 --------- C:\WINDOWS\system32\PortableDeviceWMDRM.dll
2006-10-18 22:47 179712 --a------ C:\WINDOWS\system32\msnetobj.dll
2006-10-18 22:47 175616 --a------ C:\WINDOWS\system32\mspmsp.dll
2006-10-18 22:47 166912 --------- C:\WINDOWS\system32\PortableDeviceTypes.dll
2006-10-18 22:47 1661440 --a------ C:\WINDOWS\system32\wmpencen.dll
2006-10-18 22:47 1574912 --------- C:\WINDOWS\system32\WMVENCOD.dll
2006-10-18 22:47 157184 --a------ C:\WINDOWS\system32\wmidx.dll
2006-10-18 22:47 154624 --a------ C:\WINDOWS\system32\wpdmtp.dll
2006-10-18 22:47 1543680 --------- C:\WINDOWS\system32\WMVDECOD.dll
2006-10-18 22:47 1382912 --------- C:\WINDOWS\system32\WMVSDECD.dll
2006-10-18 22:47 133632 --------- C:\WINDOWS\system32\WPDShServiceObj.dll
2006-10-18 22:47 1329152 --a------ C:\WINDOWS\system32\WMSPDMOE.dll
2006-10-18 22:47 132096 --------- C:\WINDOWS\system32\PortableDeviceWiaCompat.dll
2006-10-18 22:47 130048 --------- C:\WINDOWS\system32\wmpps.dll
2006-10-18 22:47 11264 --a------ C:\WINDOWS\system32\LAPRXY.dll
2006-10-18 22:47 1117696 --a------ C:\WINDOWS\system32\WMADMOE.dll
2006-10-18 22:47 101888 --------- C:\WINDOWS\system32\PortableDeviceClassExtension.dll
2006-10-18 21:03 100864 --a------ C:\WINDOWS\system32\logagent.exe
2006-10-18 21:00 38528 --a------ C:\WINDOWS\system32\drivers\wpdusb.sys
2006-10-18 21:00 249856 --------- C:\WINDOWS\system32\drmupgds.exe
2006-10-18 21:00 17408 --------- C:\WINDOWS\system32\wpdshextautoplay.exe
2006-10-18 19:31 131072 --a------ C:\WINDOWS\system32\SpoonUninstall.exe
2006-10-18 19:31 -------- d-------- C:\Programme\Illustrate
2006-10-18 19:30 -------- d-------- C:\Dokumente und Einstellungen\Jan Kriebel\Anwendungsdaten\foobar2000
2006-10-17 12:33 6049280 --------- C:\WINDOWS\system32\ieframe.dll
2006-10-17 12:33 50688 --------- C:\WINDOWS\system32\msfeedsbs.dll
2006-10-17 12:33 458752 --------- C:\WINDOWS\system32\msfeeds.dll
2006-10-17 12:33 413696 --a------ C:\WINDOWS\system32\vbscript.dll
2006-10-17 12:33 231424 --a------ C:\WINDOWS\system32\webcheck.dll
2006-10-17 12:33 180736 --------- C:\WINDOWS\system32\ieui.dll
2006-10-17 12:33 156160 --a------ C:\WINDOWS\system32\msls31.dll
2006-10-17 12:06 78336 --a------ C:\WINDOWS\system32\ieencode.dll
2006-10-17 12:05 40960 --a------ C:\WINDOWS\system32\licmgr10.dll
2006-10-17 12:05 206336 --------- C:\WINDOWS\system32\WinFXDocObj.exe
2006-10-17 12:05 105984 --a------ C:\WINDOWS\system32\url.dll
2006-10-17 12:04 101376 --a------ C:\WINDOWS\system32\occache.dll
2006-10-17 12:03 17408 --a------ C:\WINDOWS\system32\corpol.dll
2006-10-17 12:01 71680 --a------ C:\WINDOWS\system32\admparse.dll
2006-10-17 12:01 55296 --a------ C:\WINDOWS\system32\iesetup.dll
2006-10-17 12:01 382976 --a------ C:\WINDOWS\system32\iedkcs32.dll
2006-10-17 12:01 229376 --a------ C:\WINDOWS\system32\ieaksie.dll
2006-10-17 12:01 152064 --a------ C:\WINDOWS\system32\ieakeng.dll
2006-10-17 12:01 13312 --a------ C:\WINDOWS\system32\ieudinit.exe
2006-10-17 12:00 54784 --a------ C:\WINDOWS\system32\ie4uinit.exe
2006-10-17 12:00 43008 --a------ C:\WINDOWS\system32\iernonce.dll
2006-10-17 12:00 123904 --a------ C:\WINDOWS\system32\advpack.dll
2006-10-17 11:58 61952 --------- C:\WINDOWS\system32\icardie.dll
2006-10-17 11:58 12288 --------- C:\WINDOWS\system32\msfeedssync.exe
2006-10-17 11:57 36352 --a------ C:\WINDOWS\system32\imgutil.dll
2006-10-17 11:57 266752 --------- C:\WINDOWS\system32\iertutil.dll
2006-10-17 11:56 45568 --a------ C:\WINDOWS\system32\mshta.exe
2006-10-17 11:28 48128 --a------ C:\WINDOWS\system32\mshtmler.dll
2006-10-17 11:27 380928 --------- C:\WINDOWS\system32\ieapfltr.dll
2006-10-17 11:23 161792 --a------ C:\WINDOWS\system32\ieakui.dll
2006-10-13 13:35 146432 --a------ C:\WINDOWS\system32\nwprovau.dll
2006-10-13 11:56 271360 --a------ C:\WINDOWS\system32\drivers\atksgt.sys
2006-10-13 11:56 18048 --a------ C:\WINDOWS\system32\drivers\lirsgt.sys
2006-10-13 11:56 -------- d-------- C:\Programme\Gemeinsame Dateien\Microsoft Shared
2006-10-12 14:37 451072 --a------ C:\WINDOWS\Radeon Omega Drivers v3.8.291 Uninstall.exe
2006-10-12 14:37 -------- d-------- C:\Programme\Radeon Omega Drivers
2006-10-12 14:37 -------- d-------- C:\Programme\MultiRes
2006-10-11 15:18 -------- d-------- C:\Programme\Prey
2006-10-10 15:32 -------- d-------- C:\Dokumente und Einstellungen\Jan Kriebel\Anwendungsdaten\DivX
2006-10-10 15:18 -------- d-------- C:\Programme\WinRAR
2006-10-10 15:16 -------- d-------- C:\Programme\DivX
2006-10-10 15:14 56 -r-hs---- C:\WINDOWS\system32\4A18A6001F.sys
2006-10-10 15:14 11690 --ahs---- C:\WINDOWS\system32\KGyGaAvL.sys
2006-10-10 14:10 -------- d-------- C:\Programme\ICQLite
2006-10-08 15:30 356352 --a------ C:\WINDOWS\eSellerateEngine.dll
2006-10-05 12:45 -------- d-------- C:\Programme\CopyPod
2006-10-02 20:04 806912 --a------ C:\WINDOWS\system32\divx_xx0c.dll
2006-10-02 20:04 806912 --a------ C:\WINDOWS\system32\divx_xx07.dll
2006-10-02 20:04 790528 --a------ C:\WINDOWS\system32\divx_xx11.dll
2006-10-02 20:04 635486 --a------ C:\WINDOWS\system32\DivX.dll
2006-10-02 15:28 312128 --------- C:\WINDOWS\system32\msdelta.dll
2006-09-28 20:13 95344 --------- C:\WINDOWS\system32\WUDFCoinstaller.dll
2006-09-28 18:56 55808 --------- C:\WINDOWS\system32\WudfSvc.dll
2006-09-28 18:56 316416 --------- C:\WINDOWS\system32\WUDFx.dll
2006-09-28 18:56 165376 --------- C:\WINDOWS\system32\WudfPlatform.dll
2006-09-28 18:56 146432 --------- C:\WINDOWS\system32\WudfHost.exe
2006-09-25 17:58 23856 --a------ C:\WINDOWS\system32\spupdsvc.exe
2006-09-24 14:28 5248 --a------ C:\WINDOWS\system32\speedfan.sys
2006-09-19 15:43 109360 --a------ C:\WINDOWS\system32\GEARAspi.dll
2006-09-13 22:58 2560 --a------ C:\WINDOWS\_MSRSTRT.EXE
2006-09-13 06:02 1084416 --a------ C:\WINDOWS\system32\msxml3.dll
(((((((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))
*Note* empty entries are not shown
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run]
"CTFMON.EXE"="C:\\WINDOWS\\system32\\ctfmon.exe"
"swg"="C:\\Programme\\Google\\GoogleToolbarNotifier\\1.0.720.3640\\GoogleToolbarNotifier.exe"
"Steam"=""
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run]
"NeroFilterCheck"="C:\\WINDOWS\\system32\\NeroCheck.exe"
"InCD"="C:\\Programme\\Nero\\Nero 7\\InCD\\InCD.exe"
"ccApp"="\"C:\\Programme\\Gemeinsame Dateien\\Symantec Shared\\ccApp.exe\""
"ISUSScheduler"="\"C:\\Programme\\Gemeinsame Dateien\\InstallShield\\UpdateService\\issch.exe\" -start"
"iTunesHelper"="\"C:\\Programme\\iTunes\\iTunesHelper.exe\""
"EnvyHFCPL"="C:\\Programme\\Audio Deck\\EnMixCPL.exe 1"
"RSS_TICKER"=""
[HKEY_CURRENT_USER\software\microsoft\internet explorer\desktop\components]
"DeskHtmlVersion"=dword:00000110
"DeskHtmlMinorVersion"=dword:00000005
"Settings"=dword:00000001
"GeneralFlags"=dword:00000004
[HKEY_USERS\.default\software\microsoft\windows\currentversion\run]
"CTFMON.EXE"="C:\\WINDOWS\\System32\\CTFMON.EXE"
[HKEY_USERS\s-1-5-18\software\microsoft\windows\currentversion\run]
"CTFMON.EXE"="C:\\WINDOWS\\System32\\CTFMON.EXE"
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\sharedtaskscheduler]
"{438755C2-A8BA-11D1-B96B-00A0C90312E1}"="Browseui preloader"
"{8C7461EF-2B13-11d2-BE35-3078302C2030}"="Component Categories cache daemon"
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shellexecutehooks]
"{AEB6717E-7E19-11d0-97EE-00C04FD91972}"=""
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer]
"NoDriveTypeAutoRun"=dword:00000091
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer\Run]
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"dontdisplaylastusername"=dword:00000000
"legalnoticecaption"=""
"legalnoticetext"=""
"shutdownwithoutlogon"=dword:00000001
"undockwithoutlogon"=dword:00000001
"DisableStatusMessages"=dword:00000000
[HKEY_USERS\.default\software\microsoft\windows\currentversion\policies\explorer]
"NoDriveTypeAutoRun"=dword:00000091
[HKEY_USERS\s-1-5-18\software\microsoft\windows\currentversion\policies\explorer]
"NoDriveTypeAutoRun"=dword:00000091
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\shellserviceobjectdelayload]
"0aMCPClient"="{F5DF91F9-15E9-416B-A7C3-7519B11ECBFC}"
"PostBootReminder"="{7849596a-48ea-486e-8937-a2a3009f31a9}"
"CDBurn"="{fbeb8a05-beee-4442-804e-409d6c4515e9}"
"WebCheck"="{E6FB5E20-DE35-11CF-9C87-00AA005127ED}"
"SysTray"="{35CEC8A3-2BE6-11D2-8773-92E220524153}"
"WPDShServiceObj"="{AAA288BA-9A4C-45B0-95D7-94D524869DB5}"
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Dokumente und Einstellungen^All Users^Startmenü^Programme^Autostart^Adobe Reader - Schnellstart.lnk]
"path"="C:\\Dokumente und Einstellungen\\All Users\\Startmenü\\Programme\\Autostart\\Adobe Reader - Schnellstart.lnk"
"backup"="C:\\WINDOWS\\pss\\Adobe Reader - Schnellstart.lnkCommon Startup"
"location"="Common Startup"
"command"="C:\\PROGRA~1\\Adobe\\ACROBA~1.0\\Reader\\READER~1.EXE "
"item"="Adobe Reader - Schnellstart"
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Dokumente und Einstellungen^All Users^Startmenü^Programme^Autostart^AutoStart IR.lnk]
"path"="C:\\Dokumente und Einstellungen\\All Users\\Startmenü\\Programme\\Autostart\\AutoStart IR.lnk"
"backup"="C:\\WINDOWS\\pss\\AutoStart IR.lnkCommon Startup"
"location"="Common Startup"
"command"="C:\\PROGRA~1\\WinTV\\Ir.exe /QUIET"
"item"="AutoStart IR"
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Dokumente und Einstellungen^All Users^Startmenü^Programme^Autostart^Erinnerungen für Microsoft Works-Kalender.lnk]
"path"="C:\\Dokumente und Einstellungen\\All Users\\Startmenü\\Programme\\Autostart\\Erinnerungen für Microsoft Works-Kalender.lnk"
"backup"="C:\\WINDOWS\\pss\\Erinnerungen für Microsoft Works-Kalender.lnkCommon Startup"
"location"="Common Startup"
"command"="C:\\PROGRA~1\\GEMEIN~1\\MICROS~1\\WORKSS~1\\wkcalrem.exe "
"item"="Erinnerungen für Microsoft Works-Kalender"
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Dokumente und Einstellungen^All Users^Startmenü^Programme^Autostart^InterVideo WinCinema Manager.lnk]
"path"="C:\\Dokumente und Einstellungen\\All Users\\Startmenü\\Programme\\Autostart\\InterVideo WinCinema Manager.lnk"
"backup"="C:\\WINDOWS\\pss\\InterVideo WinCinema Manager.lnkCommon Startup"
"location"="Common Startup"
"command"="C:\\PROGRA~1\\INTERV~1\\Common\\Bin\\WINCIN~1.EXE "
"item"="InterVideo WinCinema Manager"
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Dokumente und Einstellungen^All Users^Startmenü^Programme^Autostart^Logitech Desktop Messenger.lnk]
"path"="C:\\Dokumente und Einstellungen\\All Users\\Startmenü\\Programme\\Autostart\\Logitech Desktop Messenger.lnk"
"backup"="C:\\WINDOWS\\pss\\Logitech Desktop Messenger.lnkCommon Startup"
"location"="Common Startup"
"command"="C:\\PROGRA~1\\Logitech\\DESKTO~1\\8876480\\Program\\LDMConf.exe /start"
"item"="Logitech Desktop Messenger"
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Dokumente und Einstellungen^All Users^Startmenü^Programme^Autostart^Microsoft Office.lnk]
"path"="C:\\Dokumente und Einstellungen\\All Users\\Startmenü\\Programme\\Autostart\\Microsoft Office.lnk"
"backup"="C:\\WINDOWS\\pss\\Microsoft Office.lnkCommon Startup"
"location"="Common Startup"
"command"="C:\\PROGRA~1\\MICROS~4\\Office\\OSA9.EXE -b -l"
"item"="Microsoft Office"
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Dokumente und Einstellungen^All Users^Startmenü^Programme^Autostart^Picture Package Menu.lnk]
"path"="C:\\Dokumente und Einstellungen\\All Users\\Startmenü\\Programme\\Autostart\\Picture Package Menu.lnk"
"backup"="C:\\WINDOWS\\pss\\Picture Package Menu.lnkCommon Startup"
"location"="Common Startup"
"command"="C:\\PROGRA~1\\SONYCO~1\\PICTUR~1\\PICTUR~3\\SonyTray.exe "
"item"="Picture Package Menu"
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Dokumente und Einstellungen^All Users^Startmenü^Programme^Autostart^Picture Package VCD Maker.lnk]
"path"="C:\\Dokumente und Einstellungen\\All Users\\Startmenü\\Programme\\Autostart\\Picture Package VCD Maker.lnk"
"backup"="C:\\WINDOWS\\pss\\Picture Package VCD Maker.lnkCommon Startup"
"location"="Common Startup"
"command"="C:\\PROGRA~1\\SONYCO~1\\PICTUR~1\\PICTUR~1\\RESIDE~1.EXE -h"
"item"="Picture Package VCD Maker"
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Dokumente und Einstellungen^All Users^Startmenü^Programme^Autostart^WinZip Quick Pick.lnk]
"path"="C:\\Dokumente und Einstellungen\\All Users\\Startmenü\\Programme\\Autostart\\WinZip Quick Pick.lnk"
"backup"="C:\\WINDOWS\\pss\\WinZip Quick Pick.lnkCommon Startup"
"location"="Common Startup"
"command"="C:\\PROGRA~1\\WinZip\\WZQKPICK.EXE "
"item"="WinZip Quick Pick"
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Dokumente und Einstellungen^Jan Kriebel^Startmenü^Programme^Autostart^Trillian.lnk]
"path"="C:\\Dokumente und Einstellungen\\Jan Kriebel\\Startmenü\\Programme\\Autostart\\Trillian.lnk"
"backup"="C:\\WINDOWS\\pss\\Trillian.lnkStartup"
"location"="Startup"
"command"="C:\\PROGRA~1\\Trillian\\trillian.exe "
"item"="Trillian"
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Anti-Blaxx Manager]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="Anti-Blaxx"
"hkey"="HKLM"
"command"="C:\\Programme\\Anti-Blaxx 1.18\\Anti-Blaxx.exe"
"inimapping"="0"
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ATICCC]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="cli"
"hkey"="HKLM"
"command"="\"C:\\Programme\\ATI Technologies\\ATI.ACE\\cli.exe\" runtime -Delay"
"inimapping"="0"
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="NMBgMonitor"
"hkey"="HKCU"
"command"="\"C:\\Programme\\Gemeinsame Dateien\\Ahead\\lib\\NMBgMonitor.exe\""
"inimapping"="0"
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="daemon"
"hkey"="HKLM"
"command"="\"C:\\Programme\\DAEMON Tools\\daemon.exe\" -lang 1033"
"inimapping"="0"
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\FeedBuster]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="FeedBuster"
"hkey"="HKCU"
"command"="\"C:\\Programme\\Alnera\\FeedBuster\\FeedBuster.exe\""
"inimapping"="0"
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ISUSPM Startup]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="isuspm"
"hkey"="HKLM"
"command"="C:\\PROGRA~1\\GEMEIN~1\\INSTAL~1\\UPDATE~1\\isuspm.exe -startup"
"inimapping"="0"
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="iTunesHelper"
"hkey"="HKLM"
"command"="\"C:\\Programme\\iTunes\\iTunesHelper.exe\""
"inimapping"="0"
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LDM]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="BackWeb-8876480"
"hkey"="HKCU"
"command"="\\Program\\BackWeb-8876480.exe"
"inimapping"="0"
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="qttask"
"hkey"="HKLM"
"command"="\"C:\\Programme\\QuickTime\\qttask.exe\" -atboottime"
"inimapping"="0"
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RemoteControl]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="PDVDServ"
"hkey"="HKLM"
"command"="C:\\Programme\\CyberLink\\PowerDVD\\PDVDServ.exe"
"inimapping"="0"
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Steam]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="steam"
"hkey"="HKCU"
"command"="\"c:\\valve\\steam\\steam.exe\" -silent"
"inimapping"="0"
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="jusched"
"hkey"="HKLM"
"command"="C:\\Programme\\Java\\jre1.5.0_06\\bin\\jusched.exe"
"inimapping"="0"
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WinampAgent]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="winampa"
"hkey"="HKLM"
"command"="C:\\Programme\\Winamp\\winampa.exe"
"inimapping"="0"
HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\MCPClient
HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\winwim32
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"="msapsspc.dll, schannel.dll, digest.dll, msnsspc.dll"
Contents of the 'Scheduled Tasks' folder
C:\WINDOWS\tasks\AppleSoftwareUpdate.job
C:\WINDOWS\tasks\Norton AntiVirus - Vollst„ndige Systemprfung ausfhren - Jan Kriebel.job
Completion time: 06-12-05 16:14:04.76
C:\ComboFix.txt ... 06-12-05 16:14
---------------------
Datfind.bat
system32
Volume in Laufwerk C: hat keine Bezeichnung.
Volumeseriennummer: 98F9-620B
Verzeichnis von C:\WINDOWS\system32
05.12.2006 16:09 12.598 wpa.dbl
17.11.2006 22:47 98.304 CmdLineExt.dll
17.11.2006 14:06 48.768 S32EVNT1.DLL
16.11.2006 12:21 207.304 FNTCACHE.DAT
16.11.2006 06:20 10.474.920 MRT.exe
05.11.2006 13:46 16.832 amcompat.tlb
05.11.2006 13:46 23.392 nscompat.tlb
04.11.2006 14:14 1.245.696 msxml4.dll
29.10.2006 08:34 401.064 perfh009.dat
29.10.2006 08:34 62.344 perfc009.dat
29.10.2006 08:34 415.470 perfh007.dat
29.10.2006 08:34 74.996 perfc007.dat
29.10.2006 08:34 966.250 PerfStringBackup.INI
25.10.2006 19:15 65.536 QuickTimeVR.qtx
25.10.2006 19:15 49.152 QuickTime.qts
18.10.2006 23:03 43.008 wpdshextres.dll
18.10.2006 22:58 8.704 wdfmgr.exe
18.10.2006 22:58 8.704 uwdf.exe
18.10.2006 22:47 2.450.944 wmvcore.dll
18.10.2006 22:47 4.096 WMVADVE.DLL
18.10.2006 22:47 629.760 wpd_ci.dll
18.10.2006 22:47 4.096 WMVADVD.dll
18.10.2006 22:47 63.488 wpdmtpus.dll
18.10.2006 22:47 1.543.680 WMVDECOD.dll
18.10.2006 22:47 1.329.152 WMSPDMOE.dll
18.10.2006 22:47 4.096 wmvdmod.dll
18.10.2006 22:47 4.096 wmvdmoe2.dll
18.10.2006 22:47 1.574.912 WMVENCOD.dll
18.10.2006 22:47 356.352 wpdsp.dll
18.10.2006 22:47 603.648 WMSPDMOD.dll
18.10.2006 22:47 1.382.912 WMVSDECD.dll
18.10.2006 22:47 767.488 WMVSENCD.dll
18.10.2006 22:47 154.624 wpdmtp.dll
18.10.2006 22:47 35.840 wpdconns.dll
18.10.2006 22:47 133.632 WPDShServiceObj.dll
18.10.2006 22:47 4.096 wmsdmoe2.dll
18.10.2006 22:47 4.096 wmsdmod.dll
18.10.2006 22:47 656.896 WMVXENCD.dll
18.10.2006 22:47 2.603.008 WpdShext.dll
18.10.2006 22:47 2.450.944 SET5D.tmp
18.10.2006 22:47 295.936 wmpeffects.dll
18.10.2006 22:47 314.880 wmpdxm.dll
18.10.2006 22:47 242.688 wmpasf.dll
18.10.2006 22:47 10.834.432 wmp.dll
18.10.2006 22:47 99.840 wmpshell.dll
18.10.2006 22:47 1.661.440 wmpencen.dll
18.10.2006 22:47 8.231.936 wmploc.dll
18.10.2006 22:47 613.376 wmpmde.dll
18.10.2006 22:47 204.288 wmpsrcwp.dll
18.10.2006 22:47 157.184 wmidx.dll
18.10.2006 22:47 130.048 wmpps.dll
18.10.2006 22:47 314.880 SETA2.tmp
18.10.2006 22:47 227.328 wmerror.dll
18.10.2006 22:47 348.672 wmdrmnet.dll
18.10.2006 22:47 535.040 wmdrmsdk.dll
18.10.2006 22:47 937.984 WMNetMgr.dll
18.10.2006 22:47 757.248 WMADMOD.dll
18.10.2006 22:47 4.096 wdfapi.dll
18.10.2006 22:47 166.912 PortableDeviceTypes.dll
18.10.2006 22:47 199.168 PortableDeviceWMDRM.dll
18.10.2006 22:47 101.888 PortableDeviceClassExtension.dll
18.10.2006 22:47 211.456 qasf.dll
18.10.2006 22:47 284.160 PortableDeviceApi.dll
18.10.2006 22:47 1.117.696 WMADMOE.dll
18.10.2006 22:47 222.208 wmasf.dll
18.10.2006 22:47 33.792 wmdmlog.dll
18.10.2006 22:47 222.208 SET51.tmp
18.10.2006 22:47 37.376 wmdmps.dll
18.10.2006 22:47 429.056 wmdrmdev.dll
18.10.2006 22:47 132.096 PortableDeviceWiaCompat.dll
18.10.2006 22:47 321.536 mswmdm.dll
18.10.2006 22:47 414.208 msscp.dll
18.10.2006 22:47 179.712 msnetobj.dll
18.10.2006 22:47 27.136 mspmsnsv.dll
18.10.2006 22:47 175.616 mspmsp.dll
18.10.2006 22:47 212.992 MFPLAT.dll
18.10.2006 22:47 259.072 MPG4DECD.dll
18.10.2006 22:47 259.072 MP43DECD.dll
18.10.2006 22:47 4.096 MP43DMOD.dll
18.10.2006 22:47 11.264 LAPRXY.dll
18.10.2006 22:47 4.096 MPG4DMOD.dll
18.10.2006 22:47 317.440 MP4SDECD.dll
18.10.2006 22:47 4.096 MP4SDMOD.dll
18.10.2006 22:47 991.744 drmv2clt.dll
18.10.2006 22:47 229.376 cewmdm.dll
18.10.2006 22:47 542.720 blackbox.dll
18.10.2006 22:47 7.168 asferror.dll
18.10.2006 22:47 276.992 audiodev.dll
18.10.2006 21:05 232.448 l3codecp.acm
18.10.2006 21:03 100.864 logagent.exe
18.10.2006 21:00 249.856 drmupgds.exe
18.10.2006 21:00 17.408 wpdshextautoplay.exe
18.10.2006 19:31 131.072 SpoonUninstall.exe
17.10.2006 12:33 6.049.280 ieframe.dll
17.10.2006 12:33 3.577.856 mshtml.dll
17.10.2006 12:33 458.752 msfeeds.dll
17.10.2006 12:33 50.688 msfeedsbs.dll
17.10.2006 12:33 475.648 mshtmled.dll
17.10.2006 12:33 818.688 wininet.dll
17.10.2006 12:33 670.720 mstime.dll
17.10.2006 12:33 231.424 webcheck.dll
17.10.2006 12:33 131.584 extmgr.dll
17.10.2006 12:33 156.160 msls31.dll
17.10.2006 12:33 1.162.240 urlmon.dll
17.10.2006 12:33 191.488 iepeers.dll
17.10.2006 12:33 27.136 jsproxy.dll
17.10.2006 12:33 413.696 vbscript.dll
17.10.2006 12:33 180.736 ieui.dll
17.10.2006 12:06 443.904 html.iec
17.10.2006 12:06 78.336 ieencode.dll
17.10.2006 12:05 206.336 WinFXDocObj.exe
17.10.2006 12:05 1.817.088 inetcpl.cpl
17.10.2006 12:05 105.984 url.dll
17.10.2006 12:05 192.000 msrating.dll
17.10.2006 12:05 40.960 licmgr10.dll
17.10.2006 12:04 101.376 occache.dll
17.10.2006 12:03 17.408 corpol.dll
17.10.2006 12:02 991.232 ieframe.dll.mui
17.10.2006 12:01 229.376 ieaksie.dll
17.10.2006 12:01 382.976 iedkcs32.dll
17.10.2006 12:01 152.064 ieakeng.dll
17.10.2006 12:01 71.680 admparse.dll
17.10.2006 12:01 55.296 iesetup.dll
17.10.2006 12:01 13.312 ieudinit.exe
17.10.2006 12:00 43.008 iernonce.dll
17.10.2006 12:00 54.784 ie4uinit.exe
17.10.2006 12:00 92.672 inseng.dll
17.10.2006 12:00 123.904 advpack.dll
17.10.2006 12:00 10.240 advpack.dll.mui
17.10.2006 12:00 491.520 jscript.dll
17.10.2006 11:58 12.288 msfeedssync.exe
17.10.2006 11:58 61.952 icardie.dll
17.10.2006 11:58 44.544 pngfilt.dll
17.10.2006 11:58 346.624 dxtmsft.dll
17.10.2006 11:57 36.352 imgutil.dll
17.10.2006 11:57 214.528 dxtrans.dll
17.10.2006 11:57 266.752 iertutil.dll
17.10.2006 11:56 45.568 mshta.exe
17.10.2006 11:55 66.560 tdc.ocx
17.10.2006 11:30 56.483 ieuinit.inf
17.10.2006 11:28 48.128 mshtmler.dll
17.10.2006 11:27 380.928 ieapfltr.dll
17.10.2006 11:23 161.792 ieakui.dll
17.10.2006 11:19 1.383.424 mshtml.tlb
16.10.2006 12:19 270.336 xpsp3res.dll
13.10.2006 13:35 146.432 nwprovau.dll
12.10.2006 14:43 1.100 d3d8caps.dat
10.10.2006 15:14 11.690 KGyGaAvL.sys
10.10.2006 15:14 56 4A18A6001F.sys
02.10.2006 20:04 806.912 divx_xx07.dll
02.10.2006 20:04 806.912 divx_xx0c.dll
02.10.2006 20:04 790.528 divx_xx11.dll
02.10.2006 20:04 635.486 DivX.dll
02.10.2006 15:28 312.128 msdelta.dll
02.10.2006 10:44 45 initdebug.nfo
28.09.2006 20:13 95.344 WUDFCoinstaller.dll
28.09.2006 18:56 146.432 WudfHost.exe
28.09.2006 18:56 316.416 WUDFx.dll
28.09.2006 18:56 165.376 WudfPlatform.dll
28.09.2006 18:56 55.808 WudfSvc.dll
25.09.2006 17:58 23.856 spupdsvc.exe
25.09.2006 17:58 14.640 spmsg.dll
24.09.2006 14:28 5.248 speedfan.sys
23.09.2006 12:12 474.112 shlwapi.dll
23.09.2006 12:12 1.497.088 shdocvw.dll
23.09.2006 12:12 1.022.976 browseui.dll
23.09.2006 12:12 74.715 IE7Eula.rtf
19.09.2006 15:43 109.360 GEARAspi.dll
18.09.2006 13:17 100 LuResult.txt
13.09.2006 06:02 1.084.416 msxml3.dll
05.09.2006 23:01 2.451.824 ieapfltr.dat
01.09.2006 07:44 8.798 icrav03.rat
01.09.2006 07:44 1.988 ticrf.rat
------------------
systemtemp
Volume in Laufwerk C: hat keine Bezeichnung.
Volumeseriennummer: 98F9-620B
Verzeichnis von C:\DOKUME~1\JANKRI~1\LOKALE~1\Temp
05.12.2006 16:19 0 cupm48yf.zip
1 Datei(en) 0 Bytes
0 Verzeichnis(se), 7.832.051.712 Bytes frei
------------------
Windows
Volume in Laufwerk C: hat keine Bezeichnung.
Volumeseriennummer: 98F9-620B
Verzeichnis von C:\WINDOWS
05.12.2006 16:08 0 0.log
05.12.2006 16:08 1.445.371 WindowsUpdate.log
05.12.2006 16:07 2.048 bootstat.dat
05.12.2006 16:06 32.530 SchedLgU.Txt
05.12.2006 15:18 165.234 wmsetup.log
04.12.2006 20:34 1.409 QTFont.for
04.12.2006 20:34 54.156 QTFont.qfn
04.12.2006 16:27 147 Ulead32.ini
01.12.2006 22:34 358.316 DirectX.log
01.12.2006 18:22 247 RomeTW Demo.ini
01.12.2006 17:47 21.504 jestertb.dll
01.12.2006 15:10 462 BRWMARK.INI
01.12.2006 15:10 26 BRPP2KA.INI
30.11.2006 21:12 406.570 setupapi.log
26.11.2006 19:19 50 wiaservc.log
26.11.2006 19:19 215 wiadebug.log
26.11.2006 11:36 72 pex.INI
23.11.2006 21:36 1.057 win.ini
23.11.2006 21:36 227 system.ini
21.11.2006 20:28 16 wininit.ini
20.11.2006 17:54 899.206 setuplog.txt
18.11.2006 17:53 256.484 comsetup.log
18.11.2006 17:53 117.479 iis6.log
18.11.2006 17:53 298.258 tsoc.log
18.11.2006 17:53 157.372 ntdtcsetup.log
18.11.2006 17:53 1.393 imsins.log
18.11.2006 17:53 40.417 ocmsn.log
18.11.2006 17:53 14.100 KB923980.log
18.11.2006 17:53 400.284 ocgen.log
18.11.2006 17:53 39.131 msgsocm.log
18.11.2006 17:53 750.829 FaxSetup.log
18.11.2006 17:52 1.393 imsins.BAK
18.11.2006 17:52 14.119 KB924270.log
18.11.2006 17:52 72.596 updspapi.log
18.11.2006 17:52 13.567 KB920213.log
17.11.2006 20:08 1.903 vtplus32.ini
13.11.2006 17:09 229 NeroDigital.ini
13.11.2006 17:09 7.680 Thumbs.db
10.11.2006 20:43 130 EurekaLog.ini
05.11.2006 13:46 85.367 spupdsvc.log
05.11.2006 11:54 2.618 wmsetup10.log
05.11.2006 11:54 5.409 KB926239.log
05.11.2006 11:53 3.299 MSCompPackV1.log
05.11.2006 11:53 18.702 wmp11.log
05.11.2006 11:50 27.390 WMFDist11.log
05.11.2006 11:50 316.640 WMSysPr9.prx
05.11.2006 11:49 12.906 Wudf01000Inst.log
04.11.2006 18:45 69.769 War3Unin.dat
02.11.2006 14:23 2.829 War3Unin.pif
02.11.2006 14:23 139.264 War3Unin.exe
01.11.2006 21:23 121 GEARInstall.log
29.10.2006 13:07 2.204.074 ntbtlog.txt
26.10.2006 12:57 25.319 ie7_main.log
26.10.2006 12:29 60.804 ie7.log
26.10.2006 12:27 10.868 IDNMitigationAPIs.log
26.10.2006 12:27 10.558 NLSDownlevelMapping.log
26.10.2006 12:26 6.471 KB915865.log
26.10.2006 12:26 5.257 KB914440.log
26.10.2006 12:26 11.086 KB904942.log
21.10.2006 18:35 14.962 mozver.dat
12.10.2006 14:40 78.987 Omega Drivers v3.8.291.log
12.10.2006 14:37 451.072 Radeon Omega Drivers v3.8.291 Uninstall.exe
12.10.2006 12:28 13.661 KB924191.log
12.10.2006 12:27 13.283 KB922819.log
12.10.2006 12:27 11.494 KB923414.log
12.10.2006 12:27 11.449 KB924496.log
12.10.2006 12:24 8.805 KB923191.log
08.10.2006 15:30 356.352 eSellerateEngine.dll
01.10.2006 19:54 65 iTouch.ini
01.10.2006 19:49 134 PatchInstall1Debug.log
30.09.2006 21:50 5.490 ModemLog_Kommunikationskabel zwischen zwei Computern.txt
27.09.2006 13:03 10.602 KB925486.log
26.09.2006 15:25 23 BlendSettings.ini
24.09.2006 10:41 1.185 eReg.dat
18.09.2006 13:32 32.582 LUINSTALL.LOG
18.09.2006 13:17 417 MININU.LOG
17.09.2006 10:28 2.158 HCWPNP.INI
17.09.2006 10:27 29.731 Irremote.ini
14.09.2006 11:23 12.941 KB920685.log
14.09.2006 11:23 15.471 KB920872.log
14.09.2006 11:23 13.233 KB919007.log
14.09.2006 11:23 9.217 KB922582.log
13.09.2006 23:27 1.636.578 setupapi.log.2.old
13.09.2006 22:58 2.560 _MSRSTRT.EXE
07.09.2006 20:18 197.891 setupact.log
02.09.2006 14:25 151.695 Omega Drivers v3.8.252.log
02.09.2006 14:22 451.072 Radeon Omega Drivers v3.8.252 Uninstall.exe
02.09.2006 14:19 33.098 Radeon Omega Drivers v3.8.273 Uninstall Log.txt
02.09.2006 14:13 301.778 Omega Drivers v3.8.273.log
02.09.2006 14:11 451.072 Radeon Omega Drivers v3.8.273 Uninstall.exe
02.09.2006 12:58 398 nsw.log
---------------
c
Volume in Laufwerk C: hat keine Bezeichnung.
Volumeseriennummer: 98F9-620B
Verzeichnis von C:\
05.12.2006 16:27 0 sys.txt
05.12.2006 16:26 17.360 system.txt
05.12.2006 16:26 296 systemtemp.txt
05.12.2006 16:25 117.566 system32.txt
05.12.2006 16:14 25.879 ComboFix.txt
05.12.2006 16:07 1.610.612.736 pagefile.sys
23.11.2006 21:36 211 boot.ini
10.11.2006 21:39 1.470 ROD.LOG
17.09.2006 10:28 1.092 Prodinfo.txt
17.09.2006 10:27 167 uniTvTv.log
17.09.2006 10:20 315.734 hcwclear.txt
02.09.2006 20:02 46.420 iPod_log.txt
---------------
Mehr wollte mir Datfind.bat nicht geben.
Ich hoffe jemand kann damit was anfangen und mir ein bisschen weiter helfen.
Mfg JanK