spyware , pc infected

#1 Hi leute, hab ebenfalls diese spyware die sich selbst installiert und pc entweder immer wieder neustarten lässt oder alle programme in arsch macht, abgesichert modus geht nicht mehr, total fiese software. sabine hab alles so gemacht wie du es beschrieben hast... hier aus der hijackthis ->

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 17:10, on 2007-09-27
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal

Zitat

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 17:10, on 2007-09-27
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Programme\Internet Explorer\iexplore.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\LEXBCES.EXE
C:\WINDOWS\system32\LEXPPS.EXE
C:\WINDOWS\Explorer.EXE
C:\Programme\Belkin\Bluetooth Software\bin\btwdins.exe
C:\WINDOWS\System32\nvsvc32.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\AGRSMMSG.exe
C:\WINDOWS\System32\ezSP_Px.exe
C:\WINDOWS\system32\RUNDLL32.EXE
C:\Programme\Siemens\Gigaset USB Adapter 54\PRISMSVR.EXE
C:\Programme\Microsoft Office\Office12\GrooveMonitor.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Programme\Belkin\Bluetooth Software\BTTray.exe
C:\Programme\Siemens\Gigaset USB Adapter 54\GigasetUSBMonitor.exe
C:\PROGRA~1\Belkin\BLUETO~1\BTSTAC~1.EXE
C:\WINDOWS\System32\alg.exe
C:\WINDOWS\TEMP\winF2.tmp.exe
C:\DOKUME~1\Admin\ANWEND~1\SSEMBL~1\msiexec.exe
C:\Programme\Internet Explorer\iexplore.exe
C:\Dokumente und Einstellungen\Admin\Eigene Dateien\?icrosoft\?srss.exe
C:\WINDOWS\mgrs.exe
C:\Dokumente und Einstellungen\Admin\Desktop\HJT\HJT.exe
C:\WINDOWS\TEMP\mon32.exe
C:\WINDOWS\System32\wbem\wmiprvse.exe
C:\WINDOWS\TEMP\synmon.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://start.icq.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.club-vaio.sony-europe.com/
R3 - URLSearchHook: ICQ Toolbar - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\PROGRA~1\ICQTOO~1\toolbaru.dll
F2 - REG:system.ini: UserInit=C:\WINDOWS\system32\userinit.exe,C:\WINDOWS\system32\ntos.exe,
O2 - BHO: XTTBPos00 - {055FD26D-3A88-4e15-963D-DC8493744B1D} - C:\PROGRA~1\ICQTOO~1\toolbaru.dll
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Programme\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx
O2 - BHO: (no name) - {15BFC0A5-841F-4974-BF40-35FA64BAA05C} - C:\Programme\Windows Media Player\hotehymot83122.dll
O2 - BHO: (no name) - {45F15F18-3678-4C3D-9FBD-24FFEF5B2D57} - C:\Programme\Windows Media Player\hotehymot4444.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~2\Office12\GRA8E1~1.DLL
O2 - BHO: 0 - {AAFFC7C4-A1BF-43F1-739A-2E2463C3AFB9} - C:\Programme\MSN Gaming Zone\lagub954.dll
O2 - BHO: (no name) - {E1B0AE20-62C9-4B3C-B95D-37766E3804C3} - C:\WINDOWS\system32\pozbmuxl.dll
O3 - Toolbar: ICQ Toolbar - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\PROGRA~1\ICQTOO~1\toolbaru.dll
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\System32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [AGRSMMSG] AGRSMMSG.exe
O4 - HKLM\..\Run: [ezShieldProtector for Px] C:\WINDOWS\System32\ezSP_Px.exe
O4 - HKLM\..\Run: [ATIModeChange] Ati2mdxx.exe
O4 - HKLM\..\Run: [ATIPTA] C:\Programme\ATI Technologies\ATI Control Panel\atiptaxx.exe
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\System32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [PRISMSVR.EXE] "C:\Programme\Siemens\Gigaset USB Adapter 54\PRISMSVR.EXE" /APPLY
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Programme\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O4 - HKLM\..\Run: [avp] C:\WINDOWS\TEMP\winF2.tmp.exe
O4 - HKLM\..\Run: [CTDrive] rundll32.exe C:\WINDOWS\system32\drvnut.dll,startup
O4 - HKLM\..\Run: [smgr] mgrs.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [userinit] C:\WINDOWS\system32\ntos.exe
O4 - HKCU\..\Run: [Awei] "C:\DOKUME~1\Admin\ANWEND~1\SSEMBL~1\msiexec.exe" -vt yazb
O4 - HKCU\..\Run: [Qymmxvwi] "C:\Dokumente und Einstellungen\Admin\Eigene Dateien\?icrosoft\?srss.exe"
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'LOKALER DIENST')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'NETZWERKDIENST')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: BTTray.lnk = ?
O4 - Global Startup: Gigaset WLAN Adapter Monitor.lnk = C:\Programme\Siemens\Gigaset USB Adapter 54\GigasetUSBMonitor.exe
O8 - Extra context menu item: Nach Microsoft E&xel exportieren - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Senden an &Bluetooth - C:\Programme\Belkin\Bluetooth Software\btsendto_ie_ctx.htm
O9 - Extra button: An OneNote senden - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: An OneNote s&enden - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Programme\Belkin\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: @btrez.dll,-4017 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Programme\Belkin\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Programme\ICQ6\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Programme\ICQ6\ICQ.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programme\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programme\Messenger\msmsgs.exe
O14 - IERESET.INF: START_PAGE_URL=http://www.club-vaio.sony-europe.com/
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\PROGRA~1\MICROS~2\Office12\GR99D3~1.DLL
O20 - AppInit_DLLs: c:\windows\system32\ldcore.dll
O20 - Winlogon Notify: cbxxxxu - C:\WINDOWS\SYSTEM32\cbxxxxu.dll
O20 - Winlogon Notify: partnershipreg - C:\Dokumente und Einstellungen\All Users\Dokumente\Settings\partnership.dll
O20 - Winlogon Notify: winccf32 - C:\WINDOWS\SYSTEM32\winccf32.dll
O23 - Service: AVG Anti-Spyware Guard - Anti-Malware Development a.s. - C:\Programme\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Programme\Belkin\Bluetooth Software\bin\btwdins.exe
O23 - Service: LexBce Server (LexBceS) - Lexmark International, Inc. - C:\WINDOWS\system32\LEXBCES.EXE
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe
O23 - Service: TuneUp WinStyler Theme Service (TUWinStylerThemeSvc) - TuneUp Software GmbH - C:\Programme\TuneUp Utilities 2006\WinStylerThemeSvc.exe
O24 - Desktop Component 0: (no name) - C:\Programme\MSN Gaming Zone\proprypr.html

--
End of file - 7194 bytes

und hier aus der datfind

Zitat

2002-08-29 14:00 33,280 eventcls.dll
2002-08-29 14:00 35,582 eula.txt
2002-08-29 14:00 50,688 esentutl.exe
2002-08-29 14:00 24,603 sqlwid.dll
2002-08-29 14:00 49,179 sqlwoa.dll
2002-08-29 14:00 1,015,477 esentprf.ini
2002-08-29 14:00 6,708 esentprf.hxx
2002-08-29 14:00 17,408 esentprf.dll
2002-08-29 14:00 1,114,896 esent97.dll
2002-08-29 14:00 103,936 EqnClass.Dll
2002-08-29 14:00 127,213 ega.cpi
2002-08-29 14:00 13,026 edlin.exe
2002-08-29 14:00 12,783 edit.hlp
2002-08-29 14:00 71,022 edit.com
2002-08-29 14:00 253,952 msvcrt20.dll
2002-08-29 14:00 36,864 ntsdexts.dll
2002-08-29 14:00 25,600 msvidc32.dll
2002-08-29 14:00 127,104 msvideo.dll
2002-08-29 14:00 57,856 dvdplay.exe
2002-08-29 14:00 218,003 dssec.dat
2002-08-29 14:00 54,272 stclient.dll
2002-08-29 14:00 17,920 stdole2.tlb
2002-08-29 14:00 7,168 stdole32.tlb
2002-08-29 14:00 81 dsound.vxd
2002-08-29 14:00 149,504 dskquoui.dll
2002-08-29 14:00 62,976 dsauth.dll
2002-08-29 14:00 4,656 ds16gt.dLL
2002-08-29 14:00 4,208 storage.dll
2002-08-29 14:00 124,416 drwtsn32.exe
2002-08-29 14:00 8,192 streamci.dll
2002-08-29 14:00 28,304 drwatson.exe
2002-08-29 14:00 42,768 dpwsock.dll
2002-08-29 14:00 93,702 subrange.uce
2002-08-29 14:00 20,480 subst.exe
2002-08-29 14:00 54,032 dpserial.dll
2002-08-29 14:00 61,952 dpnwsock.dll
2002-08-29 14:00 6,144 svcpack.dll
2002-08-29 14:00 138,752 swprv.dll
2002-08-29 14:00 62,464 dpnmodem.dll
2002-08-29 14:00 33,040 dplay.dll
2002-08-29 14:00 22,016 doskey.exe
2002-08-29 14:00 47,616 docprop.dll
2002-08-29 14:00 62,464 syncapp.exe
2002-08-29 14:00 61,440 dmview.ocx
2002-08-29 14:00 19,456 dmocx.dll
2002-08-29 14:00 18,432 dmintf.dll
2002-08-29 14:00 19,232 sysedit.exe
2002-08-29 14:00 15,872 sysinv.dll
2002-08-29 14:00 52,736 syskey.exe
2002-08-29 14:00 138,752 dmdskres.dll
2002-08-29 14:00 273,920 dmdlgs.dll
2002-08-29 14:00 3,214 sysprint.sep
2002-08-29 14:00 3,577 sysprtj.sep
2002-08-29 14:00 330,752 dmconfig.dll
2002-08-29 14:00 3,360 system.drv
2002-08-29 14:00 14,336 systray.exe
2002-08-29 14:00 15,872 dllhst3g.exe
2002-08-29 14:00 19,200 tapi.dll
2002-08-29 14:00 45,083 dispex.dll
2002-08-29 14:00 30,208 diskperf.exe
2002-08-29 14:00 5,632 tapiperf.dll
2002-08-29 14:00 33,309 diskmgmt.msc
2002-08-29 14:00 82,944 tapiui.dll
2002-08-29 14:00 29,696 taskman.exe
2002-08-29 14:00 1,502,208 diskcopy.dll
2002-08-29 14:00 26,624 tcmsetup.exe
2002-08-29 14:00 7,168 diskcopy.com
2002-08-29 14:00 9,216 diskcomp.com
2002-08-29 14:00 44,032 dimap.dll
2002-08-29 14:00 395,264 diactfrm.dll
2002-08-29 14:00 30,720 tcpsvcs.exe
2002-08-29 14:00 79,360 dhcpsapi.dll
2002-08-29 14:00 28,160 telephon.cpl
2002-08-29 14:00 398,848 dhcpmon.dll
2002-08-29 14:00 86,556 dgsetup.dll
2002-08-29 14:00 176,157 dgrpsetu.dll
2002-08-29 14:00 30,208 tftp.exe
2002-08-29 14:00 54,784 dfrgres.dll
2002-08-29 14:00 41,118 dfrg.msc
2002-08-29 14:00 4,048 timer.drv
2002-08-29 14:00 13,888 toolhelp.dll
2002-08-29 14:00 32,699 devmgmt.msc
2002-08-29 14:00 2 desktop.ini
2002-08-29 14:00 43,520 tracert6.exe
2002-08-29 14:00 31,232 traffic.dll
2002-08-29 14:00 11,264 tree.com
2002-08-29 14:00 18,432 deskperf.dll
2002-08-29 14:00 52,224 tsappcmp.dll
2002-08-29 14:00 9,032 ansi.sys
2002-08-29 14:00 16,896 deskmon.dll
2002-08-29 14:00 27,136 tscon.exe
2002-08-29 14:00 16,896 deskadp.dll
2002-08-29 14:00 15,360 tsd32.dll
2002-08-29 14:00 21,210 debug.exe
2002-08-29 14:00 27,136 tsdiscon.exe
2002-08-29 14:00 28,160 tskill.exe
2002-08-29 14:00 3,286 tslabels.h
2002-08-29 14:00 27,055 tslabels.ini
2002-08-29 14:00 32,256 tsshutdn.exe
2002-08-29 14:00 8,192 tssoft32.acm
2002-08-29 14:00 39,424 ddeml.dll
2002-08-29 14:00 16,384 dcomcnfg.exe
2002-08-29 14:00 177,856 typelib.dll
2002-08-29 14:00 24,576 dbmsvinn.dLL
2002-08-29 14:00 82,432 ufat.dll
2002-08-29 14:00 43,008 ntsd.exe
2002-08-29 14:00 20,480 dbmsadsn.dll
2002-08-29 14:00 847,872 dbgeng.dll
2002-08-29 14:00 13,312 umdmxfrm.dll
2002-08-29 14:00 152,064 datime.dll
2002-08-29 14:00 89,588 unicode.nls
2002-08-29 14:00 47,616 d3dxof.dll
2002-08-29 14:00 350,208 d3drm.dll
2002-08-29 14:00 590,336 d3dramp.dll
2002-08-29 14:00 15,360 unlodctr.exe
2002-08-29 14:00 34,816 d3dpmesh.dll
2002-08-29 14:00 436,224 d3dim.dll
2002-08-29 14:00 196,642 c_950.nls
2002-08-29 14:00 196,642 c_949.nls
2002-08-29 14:00 196,642 c_936.nls
2002-08-29 14:00 162,850 c_932.nls
2002-08-29 14:00 17,920 ureg.dll
2002-08-29 14:00 66,082 c_875.nls
2002-08-29 14:00 66,594 c_874.nls
2002-08-29 14:00 66,594 c_869.nls
2002-08-29 14:00 66,594 c_866.nls
2002-08-29 14:00 47,872 user.exe
2002-08-29 14:00 66,594 c_865.nls
2002-08-29 14:00 66,594 c_863.nls
2002-08-29 14:00 66,594 c_861.nls
2002-08-29 14:00 66,594 c_860.nls
2002-08-29 14:00 61,500 usrcntra.dll
2002-08-29 14:00 69,699 usrcoina.dll
2002-08-29 14:00 77,890 usrdpa.dll
2002-08-29 14:00 323,641 usrdtea.dll
2002-08-29 14:00 86,073 usrfaxa.dll
2002-08-29 14:00 53,305 usrlbva.dll
2002-08-29 14:00 1,237 usrlogon.cmd
2002-08-29 14:00 90,179 usrmlnka.exe
2002-08-29 14:00 73,796 usrprbda.exe
2002-08-29 14:00 77,883 usrrtosa.dll
2002-08-29 14:00 49,211 usrsdpia.dll
2002-08-29 14:00 81,988 usrshuta.exe
2002-08-29 14:00 41,019 usrsvpia.dll
2002-08-29 14:00 102,457 usrv42a.dll
2002-08-29 14:00 49,209 usrv80a.dll
2002-08-29 14:00 45,116 usrvoica.dll
2002-08-29 14:00 49,211 usrvpa.dll
2002-08-29 14:00 26,112 utildll.dll
2002-08-29 14:00 66,594 c_857.nls
2002-08-29 14:00 66,594 c_855.nls
2002-08-29 14:00 18,832 v7vga.rom
2002-08-29 14:00 751 noise.enu
2002-08-29 14:00 102,912 apcups.dll
2002-08-29 14:00 12,610 append.exe
2002-08-29 14:00 33,280 arp.exe
2002-08-29 14:00 66,594 c_852.nls
2002-08-29 14:00 66,594 c_850.nls
2002-08-29 14:00 66,594 c_775.nls
2002-08-29 14:00 66,594 c_737.nls
2002-08-29 14:00 24,624 vbsde.dll
2002-08-29 14:00 7,680 vcdex.dll
2002-08-29 14:00 66,082 c_500.nls
2002-08-29 14:00 66,594 c_437.nls
2002-08-29 14:00 66,082 c_28605.nls
2002-08-29 14:00 66,082 c_28603.nls
2002-08-29 14:00 66,082 c_28599.nls
2002-08-29 14:00 66,082 c_28598.nls
2002-08-29 14:00 66,082 C_28597.NLS
2002-08-29 14:00 66,082 C_28595.NLS
2002-08-29 14:00 66,082 C_28594.NLS
2002-08-29 14:00 66,082 c_28593.nls
2002-08-29 14:00 66,082 c_28592.nls
2002-08-29 14:00 66,082 c_28591.nls
2002-08-29 14:00 66,082 c_21866.nls
2002-08-29 14:00 66,082 c_20905.nls
2002-08-29 14:00 66,082 c_20866.nls
2002-08-29 14:00 45,056 wupdmgr.exe
2002-08-29 14:00 9,200 ver.dll
2002-08-29 14:00 13,312 verifier.dll
2002-08-29 14:00 116,224 verifier.exe
2002-08-29 14:00 139,810 c_20261.nls
2002-08-29 14:00 66,082 c_20127.nls
2002-08-29 14:00 20,535 vfpodbc.dll
2002-08-29 14:00 66,082 c_1258.nls
2002-08-29 14:00 9,344 vga.dll
2002-08-29 14:00 2,176 vga.drv
2002-08-29 14:00 51,456 vga256.dll
2002-08-29 14:00 18,176 vga64k.dll
2002-08-29 14:00 66,082 c_1257.nls
2002-08-29 14:00 4,608 vjoy.dll
2002-08-29 14:00 19,684 noise.esn
2002-08-29 14:00 45,056 vssadmin.exe
2002-08-29 14:00 66,082 c_1256.nls
2002-08-29 14:00 66,082 c_1255.nls
2002-08-29 14:00 16,896 vss_ps.dll
2002-08-29 14:00 66,082 c_1254.nls
2002-08-29 14:00 49,196 noise.fra
2002-08-29 14:00 66,082 c_1253.nls
2002-08-29 14:00 62,976 w32tm.exe
2002-08-29 14:00 22,016 w32topl.dll
2002-08-29 14:00 66,082 c_1252.nls
2002-08-29 14:00 66,082 c_1251.nls
2002-08-29 14:00 208,896 wavemsp.dll
2002-08-29 14:00 65,489 wbcache.deu
2002-08-29 14:00 65,489 wbcache.enu
2002-08-29 14:00 65,489 wbcache.esn
2002-08-29 14:00 65,489 wbcache.fra
2002-08-29 14:00 65,489 wbcache.ita
2002-08-29 14:00 65,489 wbcache.nld
2002-08-29 14:00 65,489 wbcache.sve
2002-08-29 14:00 1,309,184 wbdbase.deu
2002-08-29 14:00 957,440 wbdbase.enu
2002-08-29 14:00 750,080 wbdbase.esn
2002-08-29 14:00 786,944 wbdbase.fra
2002-08-29 14:00 867,840 wbdbase.ita
2002-08-29 14:00 1,095,680 wbdbase.nld
2002-08-29 14:00 937,984 wbdbase.sve
2002-08-29 14:00 66,082 c_1250.nls
2002-08-29 14:00 66,082 c_1026.nls
2002-08-29 14:00 4,096 wdl.trm
2002-08-29 14:00 66,082 c_10082.nls
2002-08-29 14:00 66,082 c_10081.nls
2002-08-29 14:00 66,082 c_10079.nls
2002-08-29 14:00 66,082 c_10029.nls
2002-08-29 14:00 40,960 webhits.dll
2002-08-29 14:00 66,082 c_10017.nls
2002-08-29 14:00 66,082 c_10010.nls
2002-08-29 14:00 13,600 wfwnet.drv
2002-08-29 14:00 66,082 c_10007.nls
2002-08-29 14:00 66,082 c_10006.nls
2002-08-29 14:00 66,082 c_10000.nls
2002-08-29 14:00 19,618 noise.ita
2002-08-29 14:00 66,082 c_037.nls
2002-08-29 14:00 8,386 ctype.nls
2002-08-29 14:00 40,448 wiasf.ax
2002-08-29 14:00 27,200 ctl3dv2.dll
2002-08-29 14:00 27,136 ctl3d32.dll
2002-08-29 14:00 145,408 wiavusd.dll
2002-08-29 14:00 73,728 csseqchk.dll
2002-08-29 14:00 9,216 wifeman.dll
2002-08-29 14:00 18,432 win.com
2002-08-29 14:00 149,019 crtdll.dll
2002-08-29 14:00 27,097 country.sys
2002-08-29 14:00 13,312 win87em.dll
2002-08-29 14:00 25,088 convert.exe
2002-08-29 14:00 22,016 control.exe
2002-08-29 14:00 35,840 winchat.exe
2002-08-29 14:00 67,584 console.dll
2002-08-29 14:00 9,216 winfax.dll
2002-08-29 14:00 38,122 winhelp.hlp
2002-08-29 14:00 20,480 winhlp32.exe
2002-08-29 14:00 345,600 confmsp.dll
2002-08-29 14:00 2,951 CONFIG.TMP
2002-08-29 14:00 147,456 comsnap.dll
2002-08-29 14:00 82,432 comrepl.dll
2002-08-29 14:00 167,936 winmine.exe
2002-08-29 14:00 30,160 compobj.dll
2002-08-29 14:00 24,576 winmsd.exe
2002-08-29 14:00 5,120 winnls.dll
2002-08-29 14:00 37,342 compmgmt.msc
2002-08-29 14:00 2,080 winoldap.mod
2002-08-29 14:00 30,720 compact.exe
2002-08-29 14:00 27,136 comp.exe
2002-08-29 14:00 33,744 commdlg.dll
2002-08-29 14:00 2,864 winsock.dll
2002-08-29 14:00 52,777 command.com
2002-08-29 14:00 2,112 winspool.exe
2002-08-29 14:00 10,544 comm.drv
2002-08-29 14:00 32,576 ntmsoprq.msc
2002-08-29 14:00 20,992 winstrm.dll
2002-08-29 14:00 3,584 comcat.dll
2002-08-29 14:00 25,600 comaddin.dll
2002-08-29 14:00 26,624 cnvfat.dll
2002-08-29 14:00 32,768 cnetcfg.dll
2002-08-29 14:00 25,888 ntmsmgr.msc
2002-08-29 14:00 14,336 cmpbk32.dll
2002-08-29 14:00 64 cmos.ram
2002-08-29 14:00 64,193 cmmgr32.hlp
2002-08-29 14:00 13,256 noise.nld
2002-08-29 14:00 59,811 cliconf.chm
2002-08-29 14:00 11,264 clb.dll
2002-08-29 14:00 18,944 ckcnv.exe
2002-08-29 14:00 19,456 cidaemon.exe
2002-08-29 14:00 60,928 wmerrDEU.dll
2002-08-29 14:00 109,568 cic.dll
2002-08-29 14:00 41,436 ciadv.msc
2002-08-29 14:00 165,888 ciadmin.dll
2002-08-29 14:00 89,600 wmidx.ocx
2002-08-29 14:00 63,488 wmimgmt.msc
2002-08-29 14:00 18,944 wmiprop.dll
2002-08-29 14:00 22,528 chkntfs.exe
2002-08-29 14:00 23,040 chkdsk.exe
2002-08-29 14:00 7,680 chcp.com
2002-08-29 14:00 127,488 charmap.exe
2002-08-29 14:00 75 Channels anzeigen.scf
2002-08-29 14:00 41,985 certmgr.msc
2002-08-29 14:00 15,872 cdmodem.dll
2002-08-29 14:00 27,648 ccfgnt.dll
2002-08-29 14:00 47,104 ntmsevt.dll
2002-08-29 14:00 359,936 cards.dll
2002-08-29 14:00 90,112 wmpstub.exe
2002-08-29 14:00 146,432 capesnpn.dll
2002-08-29 14:00 127,488 calc.exe
2002-08-29 14:00 32,768 cacls.exe
2002-08-29 14:00 43,008 msports.dll
2002-08-29 14:00 13,730 noise.sve
2002-08-29 14:00 697 noise.tha
2002-08-29 14:00 27,914 ntdos.sys
2002-08-29 14:00 311,327 wmv8dmod.dll
2002-08-29 14:00 29,146 ntdos404.sys
2002-08-29 14:00 44,544 hticons.dll
2002-08-29 14:00 1,677,312 wmvcore2.dll
2002-08-29 14:00 43,792 msxml2r.dll
2002-08-29 14:00 446,464 wmvdmoe.dll
2002-08-29 14:00 14,848 ntlanui2.dll
2002-08-29 14:00 59,904 ntlanui.dll
2002-08-29 14:00 22,984 bopomofo.uce
2002-08-29 14:00 2,736 wowdeb.exe
2002-08-29 14:00 10,544 wowexec.exe
2002-08-29 14:00 3,200 wowfax.dll
2002-08-29 14:00 14,336 wowfaxui.dll
2002-08-29 14:00 16,384 bootvrfy.exe
2002-08-29 14:00 12,288 bootvid.dll
2002-08-29 14:00 15,872 bootok.exe
2002-08-29 14:00 16,896 write.exe
2002-08-29 14:00 8,191 bios4.rom
2002-08-29 14:00 28,420 bios1.rom
2002-08-29 14:00 73,216 avwav.dll
2002-08-29 14:00 232,960 avtapi.dll
2002-08-29 14:00 16,384 avmeter.dll
2002-08-29 14:00 109,504 avifile.dll
2002-08-29 14:00 9,216 wshatm.dll
2002-08-29 14:00 66,048 avicap32.dll
2002-08-29 14:00 70,368 avicap.dll
2002-08-29 14:00 57,392 wshde.dll
2002-08-29 14:00 1,806 AUTOEXEC.NT
2002-08-29 14:00 80,896 autodisc.dll
2002-08-29 14:00 11,776 wshisn.dll
2002-08-29 14:00 7,168 wshnetbs.dll
2002-08-29 14:00 55,296 attrib.exe
2002-08-29 14:00 11,264 atrace.dll
2002-08-29 14:00 34,816 atmpvcno.dll
2002-08-29 14:00 14,336 atkctrs.dll
2002-08-29 14:00 29,370 ntdos411.sys
2002-08-29 14:00 29,274 ntdos412.sys
2002-08-29 14:00 29,146 ntdos804.sys
2002-08-29 14:00 32,256 iashlpr.dll
2002-08-29 14:00 48,794 ntimage.gif
2002-08-22 21:14 983,101 LXBKGF.DLL
2002-08-20 11:29 86,016 ezSP_Px.exe
2002-08-05 19:15 448 LXBK.LOC
2002-06-27 06:53 5,110 e100b325.din
2002-05-15 23:29 607 BTNeighborhood.dll.manifest
2002-05-15 23:29 590 btcpl.cpl.manifest
2001-11-23 18:18 597 btcss.dll.manifest
2001-11-14 13:56 1,802,240 lcppn21.dll
2001-11-09 12:01 24,064 ativcoxx.dll
2001-09-19 15:32 720,896 a3d.dll
2001-09-04 17:24 73,728 Ati2mdxx.exe
2001-08-23 04:27 13,107,200 oembios.bin
2001-08-23 04:25 4,530 oembios.dat
2001-08-23 04:25 6,788 oembios.sig
2001-08-18 05:54 8,192 tsbyuv.dll
2001-08-18 04:54 87,040 wiafbdrv.dll
2001-01-19 21:50 57,000 INSTMON.EXE
2000-09-06 17:47 26,624 BRGSRC32.DLL
2000-09-06 17:11 4,608 BRGSRC16.DLL
2000-05-22 16:58 608,448 comctl32.ocx
1998-06-24 06:00 115,016 MSINET.OCX
1998-06-18 06:00 2,407 MSINET.DEP
1998-03-24 13:44 24,848 VBAEN32.OLB
1998-03-24 13:44 24,848 VBAEND32.OLB
1997-10-22 09:37 27,612 VBADE32.OLB
1996-12-03 14:50 37,376 VEN2232.OLB
1996-05-22 19:02 5,638 OEMLOGO.BMP
2054 Datei(en) 388,279,775 Bytes
0 Verzeichnis(se), 14,579,253,248 Bytes frei
.
.
.
Datentr„ger in Laufwerk C: ist VAIO
Volumeseriennummer: C4C8-326B

Verzeichnis von C:\DOKUME~1\Admin\LOKALE~1\Temp

2007-09-27 17:12 100,483 datfind.txt
2007-09-27 14:39 512 ~DF6E23.tmp
2007-09-27 14:39 32,768 ~DF6C55.tmp
2007-09-27 14:21 512 ~DF2732.tmp
2007-09-27 14:21 32,768 ~DF236F.tmp
2007-09-27 12:45 14,331 parD1FF.tmp
2006-10-31 01:00 145,184 ose00000.exe
7 Datei(en) 326,558 Bytes
0 Verzeichnis(se), 14,579,281,920 Bytes frei
.
.
.
Datentr„ger in Laufwerk C: ist VAIO
Volumeseriennummer: C4C8-326B

Verzeichnis von C:\WINDOWS

2007-09-27 17:10 2,238 Casino.ico
2007-09-27 17:10 1,150 Free Online Dating.ico
2007-09-27 17:10 4,846 Spyware Remover.ico
2007-09-27 17:09 24,576 mgrs.exe
2007-09-27 17:08 147,456 tk58.exe
2007-09-27 17:08 169,147 TTC-4444.exe
2007-09-27 14:44 64,036 WindowsUpdate.log
2007-09-27 14:39 0 0.log
2007-09-27 14:39 159 wiadebug.log
2007-09-27 14:38 50 wiaservc.log
2007-09-27 14:38 2,048 bootstat.dat
2007-09-27 14:24 49,664 retadpu1000106.exe
2007-09-27 14:22 43,008 csrss.exe
2007-09-27 13:59 49,664 retadpu27.exe
2007-09-27 13:55 112,372 ntbtlog.txt
2007-09-27 13:55 98,304 DUMPb4e8.tmp
2007-09-27 12:45 35,190 xpupdate.exe
2007-09-27 12:37 82,432 retadpu.exe
2007-09-27 12:37 6,838 SchedLgU.Txt
2007-09-26 22:48 453,663 setupapi.log
2007-09-26 18:38 578 win.ini
2007-09-26 17:47 28,866 spupdsvc.log
2007-09-26 17:47 731 DtcInstall.log
2007-09-26 17:47 136,935 wmsetup.log
2007-09-26 17:47 316,640 WMSysPr9.prx
2007-09-26 17:47 1,519 OEWABLog.txt
2007-09-26 17:46 13,864 iis6.log
2007-09-26 17:46 42,199 comsetup.log
2007-09-26 17:46 24,758 ntdtcsetup.log
2007-09-26 17:46 5,126 msgsocm.log
2007-09-26 17:46 4,696 imsins.log
2007-09-26 17:46 4,412 ocmsn.log
2007-09-26 17:46 63,515 ocgen.log
2007-09-26 17:46 43,781 tsoc.log
2007-09-26 17:46 90,629 FaxSetup.log
2007-09-26 17:43 1,374 imsins.BAK
2007-09-26 17:43 407,797 svcpack.log
2007-09-26 17:41 200 cmsetacl.log
2007-09-26 17:41 4,285 sessmgr.setup.log
2007-09-26 17:34 565 medctroc.Log
2007-09-26 16:29 158,540 DirectX.log
2007-09-26 16:21 45,034 Q816650.log
2007-09-26 16:19 1,392 Windows Update.log
2007-09-26 16:14 101 lexstat.ini
2007-09-26 16:11 40 BRDIAG.INI
2007-09-26 16:11 23 Brownie.ini
2007-09-26 16:11 141 BRVIDEO.INI
2007-09-26 16:11 8,975 HL-2030.INI
2007-09-26 16:10 422 BRWMARK.INI
2007-09-26 15:53 1,610 setupact.log
2007-09-26 15:49 6,836 regopt.log
2007-09-26 15:49 281 setuperr.log
2007-09-26 15:49 231 system.ini
2007-08-30 17:14 97,280 b147.exe~
2007-07-20 00:47 123,392 catchme.exe
2007-07-11 09:29 33,280 b138.exe
2007-06-17 00:11 95,232 NirCmd.exe
2007-02-19 13:01 252,356 b128.exe
2004-08-04 00:58 332,800 winhlp32.exe
2004-08-04 00:58 45,154 slrundll.exe
2004-08-04 00:58 164,864 regedit.exe
2004-08-04 00:58 114,176 notepad.exe
2004-08-04 00:57 88,064 hh.exe
2004-08-04 00:57 1,178,112 explorer.exe
2004-08-04 00:57 50,688 twain_32.dll
2004-07-17 11:40 19,528 002251_.tmp
2004-02-09 18:17 8,192 REGLOCS.OLD
2004-02-09 18:02 90,252 KB823559.log
2004-02-09 18:01 89,117 Q815021.log
2004-02-09 18:01 85,860 Q813041.log
2004-02-09 18:01 83,597 Q815485.log
2004-02-09 18:00 81,289 Q815917.log
2004-02-09 18:00 78,469 Q814995.log
2004-02-09 18:00 73,062 Q816048.log
2004-02-09 18:00 70,268 Q327979.log
2004-02-09 17:59 67,402 Q813942.log
2004-02-09 17:59 63,035 Q811789.log
2004-02-09 17:59 60,285 Q813862.log
2004-02-09 17:59 56,543 Q811630.log
2004-02-09 17:58 48,613 Q329692.log
2004-02-09 17:58 2,072 vminst.log
2004-02-09 17:58 50,329 Q810577.log
2004-02-09 17:58 49,541 Q810565.log
2004-02-09 17:58 40,463 Q810833.log
2004-02-09 17:57 33,078 Q329115.log
2004-02-09 17:57 34,535 Q329170.log
2004-02-09 17:57 27,415 Q329390.log
2004-02-09 17:57 29,167 Q328310.log
2004-02-09 17:57 24,166 Q810400.log
2004-02-09 17:57 20,716 Q810090.log
2004-02-09 17:56 17,633 Q813818.log
2004-02-09 17:56 10,959 Q329834.log
2004-02-09 17:56 9,325 q329112.log
2004-02-09 17:56 11,031 Q331958.log
2004-02-09 17:56 4,442 Q323255.log
2004-02-09 17:56 2,463 Q329048.log
2004-02-09 17:56 495 q327863.log
2004-02-09 17:55 849 orun32.ini
2004-02-09 16:59 197,043 orun32.isu
2004-02-09 16:54 0 control.ini
2004-02-09 16:54 299,552 WMSysPrx.prx
2004-02-09 16:54 4,161 ODBCINST.INI
2004-02-09 16:54 749 WindowsShell.Manifest
2004-02-09 16:53 37 vbaddin.ini
2004-02-09 16:53 36 vb.ini
2004-02-09 16:51 0 Sti_Trace.log
2003-08-14 16:03 10,904 xpsp1hfm.log
2003-08-14 16:03 12,955 KB823980.log
2003-08-02 17:16 72 AcrobatSetupStatus.ini
2003-08-02 16:46 61 smscfg.ini
2003-08-02 14:26 595 chipset.log
2003-05-23 11:43 88,363 AGRSMMSG.exe
2003-03-25 18:27 70,656 agrsmdel.exe
2003-03-03 17:25 45,568 ieuninst.exe
2003-03-03 16:25 45,568 Q330994.exe
2003-02-28 19:26 57,616 setdebug.exe
2003-02-28 17:35 6,550 jautoexp.dat
2003-02-21 16:39 5,760,056 VAIO DeepSea Wallpaper TrueColor 1600x1200.bmp
2003-02-21 16:39 3,932,216 VAIO DeepSea Wallpaper TrueColor 1280x1024.bmp
2003-02-21 16:39 2,359,352 VAIO DeepSea Wallpaper TrueColor 1024x768.bmp
2003-02-21 16:39 2,949,176 VAIO DeepSea Wallpaper TrueColor 1280x768.bmp
2003-02-21 16:39 4,410,056 VAIO DeepSea Wallpaper TrueColor 1400x1050.bmp
2003-02-21 16:39 2,949,176 VAIO BrightColor Wallpaper TrueColor 1280x768.bmp
2003-02-21 16:39 2,359,352 VAIO BrightColor Wallpaper TrueColor 1024x768.bmp
2003-02-21 16:39 3,932,216 VAIO BrightColor Wallpaper TrueColor 1280x1024.bmp
2003-02-21 16:39 4,410,056 VAIO BrightColor Wallpaper TrueColor 1400x1050.bmp
2003-02-21 16:39 5,760,056 VAIO BrightColor Wallpaper TrueColor 1600x1200.bmp
2002-08-29 14:00 65,954 Pr„riewind.bmp
2002-08-29 14:00 49,680 twunk_16.exe
2002-08-29 14:00 16,730 Feder.bmp
2002-08-29 14:00 94,800 twain.dll
2002-08-29 14:00 26,680 F„cher.bmp
2002-08-29 14:00 17,362 Rhododendron.bmp
2002-08-29 14:00 29,696 TASKMAN.EXE
2002-08-29 14:00 17,062 Kaffeetasse.bmp
2002-08-29 14:00 80 explorer.scf
2002-08-29 14:00 18,944 vmmreg32.dll
2002-08-29 14:00 2 desktop.ini
2002-08-29 14:00 9,522 Zapotek.bmp
2002-08-29 14:00 82,944 clock.avi
2002-08-29 14:00 1,405 msdfmap.ini
2002-08-29 14:00 65,832 Santa Fe-Stuck.bmp
2002-08-29 14:00 1,272 Blaue Spitzen 16.bmp
2002-08-29 14:00 257,568 winhelp.exe
2002-08-29 14:00 17,336 Angler.bmp
2002-08-29 14:00 48,680 winnt.bmp
2002-08-29 14:00 48,680 winnt256.bmp
2002-08-29 14:00 34,818 wmprfDEU.prx
2002-08-29 14:00 65,978 Seifenblase.bmp
2002-08-29 14:00 36,864 twunk_32.exe
2002-08-29 14:00 26,582 Granit.bmp
2002-08-29 14:00 707 _default.pif
2001-09-12 17:15 90,112 snymsico.dll
1998-11-17 12:44 375,808 IsUn0407.exe
1997-10-13 20:55 310,272 unin0407.exe
155 Datei(en) 48,156,094 Bytes
0 Verzeichnis(se), 14,579,269,632 Bytes frei
.
.
.
Datentr„ger in Laufwerk C: ist VAIO
Volumeseriennummer: C4C8-326B

Verzeichnis von C:\WINDOWS\temp

2007-09-27 17:10 836 NDr119.tmp.html
2007-09-27 17:10 16,384 Perflib_Perfdata_fb8.dat
2007-09-27 17:10 22,016 synmon.exe
2007-09-27 17:10 22,016 mon32.exe
2007-09-27 17:09 16,384 Perflib_Perfdata_cec.dat
2007-09-27 17:09 0 win107.tmp
2007-09-27 17:09 0 win106.tmp
2007-09-27 17:09 0 win101.tmp
2007-09-27 17:09 0 win100.tmp
2007-09-27 17:09 0 win104.tmp
2007-09-27 17:09 0 win105.tmp
2007-09-27 17:09 0 win103.tmp
2007-09-27 17:09 0 winFF.tmp
2007-09-27 17:09 0 winFE.tmp
2007-09-27 17:09 0 win102.tmp
2007-09-27 17:09 0 winFC.tmp
2007-09-27 17:09 186,417 winFA.tmp.exe
2007-09-27 17:08 104,960 gosFB.tmp
2007-09-27 17:08 0 winF9.tmp
2007-09-27 17:08 0 winF7.tmp
2007-09-27 17:08 42,496 winF6.tmp.exe
2007-09-27 17:08 43 removalfile.bat
2007-09-27 17:08 0 winF5.tmp
2007-09-27 17:08 0 winF3.tmp
2007-09-27 17:08 32,768 winF2.tmp.exe
2007-09-27 17:08 0 winF1.tmp
2007-09-27 17:08 0 winEF.tmp
2007-09-27 17:08 1,137 winEE.tmp
2007-09-27 17:06 0 winE9.tmp
2007-09-27 17:06 0 winE8.tmp
2007-09-27 17:06 0 winE7.tmp
2007-09-27 17:04 0 winE4.tmp
2007-09-27 17:04 0 winE6.tmp
2007-09-27 17:04 0 winE5.tmp
2007-09-27 17:02 0 winE1.tmp
2007-09-27 17:02 0 winE3.tmp
2007-09-27 17:02 0 winE2.tmp
2007-09-27 17:00 0 winE0.tmp
2007-09-27 17:00 0 winDF.tmp
2007-09-27 17:00 0 winDE.tmp
2007-09-27 16:58 0 winDD.tmp
2007-09-27 16:58 0 winDC.tmp
2007-09-27 16:58 0 winDB.tmp
2007-09-27 16:56 0 winDA.tmp
2007-09-27 16:56 0 winD8.tmp
2007-09-27 16:56 0 winD9.tmp
2007-09-27 16:54 0 winD7.tmp
2007-09-27 16:54 0 winD6.tmp
2007-09-27 16:54 0 winD5.tmp
2007-09-27 16:52 0 winD2.tmp
2007-09-27 16:52 0 winD4.tmp
2007-09-27 16:52 0 winD3.tmp
2007-09-27 16:50 0 winD0.tmp
2007-09-27 16:50 0 winD1.tmp
2007-09-27 16:50 0 winCF.tmp
2007-09-27 16:48 0 winCE.tmp
2007-09-27 16:48 0 winCD.tmp
2007-09-27 16:48 0 winCC.tmp
2007-09-27 16:46 0 winC9.tmp
2007-09-27 16:46 0 winCB.tmp
2007-09-27 16:46 0 winCA.tmp
2007-09-27 16:44 0 winC8.tmp
2007-09-27 16:44 0 winC7.tmp
2007-09-27 16:44 0 winC6.tmp
2007-09-27 16:42 0 winC3.tmp
2007-09-27 16:42 0 winC5.tmp
2007-09-27 16:42 0 winC4.tmp
2007-09-27 16:40 0 winC0.tmp
2007-09-27 16:40 0 winC2.tmp
2007-09-27 16:40 0 winC1.tmp
2007-09-27 16:38 0 winBD.tmp
2007-09-27 16:38 0 winBF.tmp
2007-09-27 16:38 0 winBE.tmp
2007-09-27 16:36 0 winBC.tmp
2007-09-27 16:36 0 winBB.tmp
2007-09-27 16:36 0 winBA.tmp
2007-09-27 16:34 0 winB9.tmp
2007-09-27 16:34 0 winB8.tmp
2007-09-27 16:34 0 winB7.tmp
2007-09-27 16:32 0 winB5.tmp
2007-09-27 16:32 0 winB6.tmp
2007-09-27 16:32 0 winB4.tmp
2007-09-27 16:30 0 winB3.tmp
2007-09-27 16:30 0 winB2.tmp
2007-09-27 16:30 0 winB1.tmp
2007-09-27 16:28 0 winAE.tmp
2007-09-27 16:28 0 winB0.tmp
2007-09-27 16:28 0 winAF.tmp
2007-09-27 16:28 0 par6FFC.tmp
2007-09-27 16:26 0 winAD.tmp
2007-09-27 16:26 0 winAC.tmp
2007-09-27 16:26 0 winAB.tmp
2007-09-27 16:24 0 winA9.tmp
2007-09-27 16:24 0 winA8.tmp
2007-09-27 16:24 0 winAA.tmp
2007-09-27 16:22 0 winA6.tmp
2007-09-27 16:22 0 winA5.tmp
2007-09-27 16:22 0 winA7.tmp
2007-09-27 16:20 0 winA4.tmp
2007-09-27 16:20 0 winA3.tmp
2007-09-27 16:20 0 winA2.tmp
2007-09-27 16:18 0 winA0.tmp
2007-09-27 16:18 0 win9F.tmp
2007-09-27 16:18 0 winA1.tmp
2007-09-27 16:16 0 win9D.tmp
2007-09-27 16:16 0 win9C.tmp
2007-09-27 16:16 0 win9E.tmp
2007-09-27 16:14 0 win9B.tmp
2007-09-27 16:14 0 win9A.tmp
2007-09-27 16:14 0 win99.tmp
2007-09-27 16:12 0 win97.tmp
2007-09-27 16:12 0 win96.tmp
2007-09-27 16:12 0 win98.tmp
2007-09-27 16:10 0 win95.tmp
2007-09-27 16:10 0 win94.tmp
2007-09-27 16:10 0 win93.tmp
2007-09-27 16:08 0 win91.tmp
2007-09-27 16:08 0 win90.tmp
2007-09-27 16:08 0 win92.tmp
2007-09-27 16:06 0 win8F.tmp
2007-09-27 16:06 0 win8E.tmp
2007-09-27 16:06 0 win8D.tmp
2007-09-27 16:04 0 win8B.tmp
2007-09-27 16:04 0 win8A.tmp
2007-09-27 16:04 0 win8C.tmp
2007-09-27 16:02 0 win88.tmp
2007-09-27 16:02 0 win87.tmp
2007-09-27 16:02 0 win89.tmp
2007-09-27 16:00 0 win86.tmp
2007-09-27 16:00 0 win85.tmp
2007-09-27 16:00 0 win84.tmp
2007-09-27 15:58 0 win82.tmp
2007-09-27 15:58 0 win81.tmp
2007-09-27 15:58 0 win83.tmp
2007-09-27 15:56 0 win80.tmp
2007-09-27 15:56 0 win7F.tmp
2007-09-27 15:56 0 win7E.tmp
2007-09-27 15:54 0 win7D.tmp
2007-09-27 15:54 0 win7C.tmp
2007-09-27 15:54 0 win7B.tmp
2007-09-27 15:52 0 win79.tmp
2007-09-27 15:52 0 win78.tmp
2007-09-27 15:52 0 win7A.tmp
2007-09-27 15:50 0 win76.tmp
2007-09-27 15:50 0 win75.tmp
2007-09-27 15:50 0 win77.tmp
2007-09-27 15:48 0 win73.tmp
2007-09-27 15:48 0 win72.tmp
2007-09-27 15:48 0 win74.tmp
2007-09-27 15:46 0 win70.tmp
2007-09-27 15:46 0 win6F.tmp
2007-09-27 15:46 0 win71.tmp
2007-09-27 15:44 0 win6E.tmp
2007-09-27 15:44 0 win6D.tmp
2007-09-27 15:44 0 win6C.tmp
2007-09-27 15:42 0 win6A.tmp
2007-09-27 15:42 0 win69.tmp
2007-09-27 15:42 0 win6B.tmp
2007-09-27 15:40 0 win67.tmp
2007-09-27 15:40 0 win66.tmp
2007-09-27 15:40 0 win68.tmp
2007-09-27 15:38 0 win65.tmp
2007-09-27 15:38 0 win63.tmp
2007-09-27 15:38 0 win64.tmp
2007-09-27 15:36 0 win62.tmp
2007-09-27 15:36 0 win61.tmp
2007-09-27 15:36 0 win60.tmp
2007-09-27 15:34 0 win5D.tmp
2007-09-27 15:34 0 win5F.tmp
2007-09-27 15:34 0 win5E.tmp
2007-09-27 15:32 0 win5C.tmp
2007-09-27 15:32 0 win5B.tmp
2007-09-27 15:32 0 win5A.tmp
2007-09-27 15:30 0 win59.tmp
2007-09-27 15:30 0 win58.tmp
2007-09-27 15:30 0 win57.tmp
2007-09-27 15:28 0 win54.tmp
2007-09-27 15:28 0 win56.tmp
2007-09-27 15:28 0 win55.tmp
2007-09-27 15:26 0 win52.tmp
2007-09-27 15:26 0 win53.tmp
2007-09-27 15:26 0 win51.tmp
2007-09-27 15:24 0 win4E.tmp
2007-09-27 15:24 0 win4F.tmp
2007-09-27 15:24 0 win50.tmp
2007-09-27 15:22 0 win4C.tmp
2007-09-27 15:22 0 win4D.tmp
2007-09-27 15:22 0 win4B.tmp
2007-09-27 15:20 0 win4A.tmp
2007-09-27 15:20 0 win48.tmp
2007-09-27 15:20 0 win49.tmp
2007-09-27 15:18 0 win45.tmp
2007-09-27 15:18 0 win46.tmp
2007-09-27 15:18 0 win47.tmp
2007-09-27 15:16 0 win42.tmp
2007-09-27 15:16 0 win44.tmp
2007-09-27 15:16 0 win43.tmp
2007-09-27 15:14 0 win40.tmp
2007-09-27 15:14 0 win41.tmp
2007-09-27 15:14 0 win3F.tmp
2007-09-27 15:12 0 win3D.tmp
2007-09-27 15:12 0 win3C.tmp
2007-09-27 15:12 0 win3E.tmp
2007-09-27 15:10 0 win3A.tmp
2007-09-27 15:10 0 win39.tmp
2007-09-27 15:10 0 win3B.tmp
2007-09-27 15:08 0 win37.tmp
2007-09-27 15:08 0 win36.tmp
2007-09-27 15:08 0 win38.tmp
2007-09-27 15:06 0 win35.tmp
2007-09-27 15:06 0 win33.tmp
2007-09-27 15:06 0 win34.tmp
2007-09-27 15:04 0 win32.tmp
2007-09-27 15:04 0 win30.tmp
2007-09-27 15:04 0 win31.tmp
2007-09-27 15:02 0 win2F.tmp
2007-09-27 15:02 0 win2E.tmp
2007-09-27 15:02 0 win2D.tmp
2007-09-27 15:00 0 win2B.tmp
2007-09-27 15:00 0 win2C.tmp
2007-09-27 15:00 0 win2A.tmp
2007-09-27 14:58 0 win29.tmp
2007-09-27 14:58 0 win28.tmp
2007-09-27 14:58 0 win27.tmp
2007-09-27 14:56 0 win25.tmp
2007-09-27 14:56 0 win24.tmp
2007-09-27 14:56 0 win26.tmp
2007-09-27 14:54 0 win22.tmp
2007-09-27 14:54 0 win23.tmp
2007-09-27 14:54 0 win21.tmp
2007-09-27 14:52 0 win20.tmp
2007-09-27 14:52 0 win1E.tmp
2007-09-27 14:52 0 win1F.tmp
2007-09-27 14:50 0 win1B.tmp
2007-09-27 14:50 0 win1D.tmp
2007-09-27 14:50 0 win1C.tmp
2007-09-27 14:48 0 win19.tmp
2007-09-27 14:48 0 win18.tmp
2007-09-27 14:48 0 win1A.tmp
2007-09-27 14:46 0 win17.tmp
2007-09-27 14:46 0 win16.tmp
2007-09-27 14:46 0 win15.tmp
2007-09-27 14:44 0 win14.tmp
2007-09-27 14:44 0 win12.tmp
2007-09-27 14:44 0 win13.tmp
2007-09-27 14:42 0 win11.tmp
2007-09-27 14:42 0 win10.tmp
2007-09-27 14:42 0 winF.tmp
2007-09-27 14:40 0 winE.tmp
2007-09-27 14:40 0 winC.tmp
2007-09-27 14:40 0 win9.tmp
2007-09-27 14:39 18,652 exe8.exe
2007-09-27 14:39 4,096 VRR7.tmp
2007-09-27 14:39 23,040 exe6.exe
2007-09-27 14:39 17,636 VRR5.tmp
2007-09-27 14:38 0 win3.tmp
2007-09-27 14:38 0 win1.tmp
2007-09-27 14:38 0 win2.tmp
2007-09-27 14:24 23,552 explorer1.exe
2007-09-27 14:22 127 mst7.bat
2007-09-27 14:22 0 winD.tmp
2007-09-27 14:22 0 winB.tmp
2007-09-27 14:22 0 winA.tmp
2007-09-27 14:22 19,968 mst7.tmp
2007-09-27 14:22 36,352 stdrun3.exe
2007-09-27 14:22 111,710 stdrun1.exe
2007-09-27 14:22 31,232 explorer3.exe
2007-09-27 14:22 9,769 explorer4.exe
2007-09-27 14:22 13,364 explorer5.exe
2007-09-27 14:21 7,388 exe5.exe
2007-09-27 14:00 30,733 hd22.tmp
2007-09-27 12:45 30,733 hd13.tmp
2007-07-19 19:46 34,494 outerinfo.ico
273 Datei(en) 858,303 Bytes
0 Verzeichnis(se), 14,579,261,440 Bytes frei
.
.
.
Datentr„ger in Laufwerk C: ist VAIO
Volumeseriennummer: C4C8-326B

Verzeichnis von C:\WINDOWS\Downloaded Program Files

2004-02-09 16:54 65 desktop.ini
2000-01-20 16:25 1,162 Microsoft XML Parser for Java.osd
1997-10-14 19:52 697 DirectAnimation Java Classes.osd
3 Datei(en) 1,924 Bytes
0 Verzeichnis(se), 14,579,261,440 Bytes frei
.

bitte helft mir, mein pc dreht durch, ich danke schon mal im vorras
mfg 4leG

#2 Das ist eine heftige Infektion. Da auch einiges an Backdoor Malware dabei ist, solltest du ueberlegen, den Rechner neu aufzusetzen....
__________
MfG Ralf
SEO-Spam Hunter

#3 meinst du damit formatieren und neuinstallieren?, das hab ich schon 3 mal die woche gamcht gibts da echt keine lösung? kein vernüftiges antivir programm?

#4 Es gibt immer was, was AV Programmen durch die Lappen geht. Aber wenn du schon 3 mal die Woche das system neu aufgesetzt hast, hast du irgendwas falsch gemacht. Du muss wohl eine "Zweifelhafte" Seite besucht haben und von dort ein Prgamm gestartet haben. Es ist ja nun nicht so, das die Malware so auf deinen Rechner gebeamt wird... Zumindest nicht die art, die man sieht...

Nachtrag, du kannst mit Combofix mal schauen, was das alleine schon an Malware entfernen wird: http://board.protecus.de/t23188.htm

Danach nochmal Drweb und das wird noch mehr finden: http://board.protecus.de/t29350.htm
__________
MfG Ralf
SEO-Spam Hunter