Home » Viren, Trojaner & Malware Forum » Bestätigung für ein reines System » Themenansicht

Bestätigung für ein reines System
#0
24.08.2008, 00:50
juventiner
Member

Beiträge: 47
#1 Hallo, ich brauche eine vergewisserung das ich ein sauberes System habe das frei von Keyloggern und sonstiger Malware. In diesen Sachen bin ich nicht gerade der Profi und brauche Rat von Fachleuten.

Zitat

Combofix:
ComboFix 08-08-23.01 - Drilon 2008-08-24 0:28:24.3 - NTFSx86
Microsoft Windows XP Home Edition 5.1.2600.3.1252.1.1031.18.201 [GMT 2:00]
ausgeführt von:: C:\Dokumente und Einstellungen\Drilon\Eigene Dateien\My Downloads\ComboFix.exe
* Neuer Wiederherstellungspunkt wurde erstellt

[color=red]Achtung - Auf diesem PC ist keine Wiederherstellungskonsole installiert !![/color]
.

(((((((((((((((((((((((((((((((((((( Weitere L”schungen ))))))))))))))))))))))))))))))))))))))))))))))))
.

C:\Dokumente und Einstellungen\Drilon\Anwendungsdaten\.#
C:\Dokumente und Einstellungen\Drilon\Cookies\drilon@asn.advolution[2].txt
C:\Dokumente und Einstellungen\Drilon\Cookies\drilon@partners.webmasterplan[2].txt
C:\Programme\OneStepSearch
C:\Programme\OneStepSearch\home.js
C:\Programme\OneStepSearch\onestep.dll
C:\Programme\OneStepSearch\onestep.exe
C:\Programme\OneStepSearch\osopt.exe
C:\Programme\OneStepSearch\uninstall.exe
C:\WINDOWS\system32\180BB6CB9E.dll

.
((((((((((((((((((((((((((((((((((((((( Treiber/Dienste )))))))))))))))))))))))))))))))))))))))))))))))))
.

-------\Legacy_ONESTEP_SEARCH_SERVICE
-------\Service_OneStep Search Service


((((((((((((((((((((((( Dateien erstellt von 2008-07-23 bis 2008-08-23 ))))))))))))))))))))))))))))))
.

2008-08-24 00:20 . 2008-08-24 00:20 <DIR> d-------- C:\Programme\Trend Micro
2008-08-22 21:39 . 2008-08-22 21:40 <DIR> d-------- C:\Programme\Free Sound Recorder
2008-08-22 17:02 . 2008-08-22 17:02 <DIR> d-------- C:\Dokumente und Einstellungen\Drilon\Anwendungsdaten\Screenshot Sender
2008-08-19 22:02 . 2008-08-19 22:02 <DIR> d-------- C:\Programme\ASCII
2008-08-19 22:02 . 2000-03-07 00:00 237,568 --a------ C:\WINDOWS\system32\Unlha32.dll
2008-08-19 22:02 . 2000-07-08 17:06 87,040 --a------ C:\WINDOWS\UnGins.exe
2008-08-18 20:56 . 2008-08-18 20:56 <DIR> d-------- C:\WINDOWS\Downloaded Installations
2008-08-16 00:36 . 2008-08-16 00:36 <DIR> d-------- C:\Programme\ASIO4ALL v2
2008-08-16 00:35 . 2008-08-16 00:35 <DIR> d-------- C:\Programme\VstPlugins
2008-08-16 00:35 . 2002-07-08 00:14 1,294,336 --a------ C:\WINDOWS\system32\vorbis.acm
2008-08-16 00:35 . 2006-06-20 10:56 225,280 --a------ C:\WINDOWS\system32\rewire.dll
2008-08-16 00:31 . 2008-08-16 00:31 <DIR> d-------- C:\Programme\Outsim
2008-08-16 00:28 . 2008-08-16 00:36 <DIR> d-------- C:\Programme\Image-Line
2008-08-13 16:36 . 2008-08-13 16:36 <DIR> d-------- C:\Dokumente und Einstellungen\NetworkService\Anwendungsdaten\Xfire
2008-08-13 16:34 . 2008-08-15 17:52 <DIR> d-------- C:\Programme\Xfire
2008-08-13 16:34 . 2008-08-16 15:11 <DIR> d-------- C:\Dokumente und Einstellungen\Drilon\Anwendungsdaten\Xfire
2008-08-13 07:37 . 2008-04-11 21:04 691,712 -----c--- C:\WINDOWS\system32\dllcache\inetcomm.dll
2008-08-13 07:37 . 2008-05-01 16:34 331,776 -----c--- C:\WINDOWS\system32\dllcache\msadce.dll
2008-08-13 00:07 . 2008-08-13 00:07 42,320 --a------ C:\WINDOWS\system32\xfcodec.dll
2008-08-12 22:39 . 2008-08-12 22:39 <DIR> d-------- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\InstallShield
2008-08-12 22:27 . 2008-08-12 22:27 <DIR> d-------- C:\Programme\gPotato.eu
2008-08-08 15:09 . 2008-08-08 15:09 <DIR> d-------- C:\Dokumente und Einstellungen\Drilon\Anwendungsdaten\Nvu
2008-08-08 15:08 . 2008-08-08 15:09 <DIR> d-------- C:\Programme\Nvu
2008-08-08 11:54 . 2008-08-08 11:54 <DIR> d-------- C:\Programme\Rockstar Games
2008-08-06 19:32 . 2008-08-06 19:32 <DIR> d-------- C:\Programme\Valve
2008-08-06 17:16 . 2008-08-06 17:16 <DIR> d-------- C:\Programme\KaraFun
2008-08-06 17:16 . 2008-08-06 17:16 <DIR> d-------- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Recisio
2008-08-06 00:44 . 2008-08-06 12:10 <DIR> d-------- C:\WINDOWS\PAC207
2008-08-06 00:44 . 2004-03-24 03:22 138,396 -ra------ C:\WINDOWS\system32\drivers\pfc027.sys
2008-08-06 00:44 . 2004-03-24 07:33 73,728 -ra------ C:\WINDOWS\system32\SP207.ax
2008-08-06 00:44 . 2004-01-08 04:30 11,170 -ra------ C:\WINDOWS\system32\PA207Usd.dll
2008-08-06 00:42 . 2008-08-06 00:42 <DIR> d-------- C:\Programme\PC Camera
2008-08-06 00:42 . 2008-08-06 00:42 <DIR> d-------- C:\Programme\C14Software
2008-08-04 22:49 . 2008-08-04 22:49 <DIR> d-------- C:\Programme\LiveUpdate
2008-08-04 22:48 . 2008-04-14 00:15 26,112 --a------ C:\WINDOWS\system32\drivers\usbser.sys
2008-08-04 22:48 . 2008-04-14 00:15 26,112 --a--c--- C:\WINDOWS\system32\dllcache\usbser.sys
2008-08-04 22:47 . 2008-08-04 22:49 <DIR> d-------- C:\Programme\mobile PhoneTools
2008-08-04 22:47 . 2008-08-04 22:58 <DIR> d-------- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\BVRP Software
2008-08-04 20:56 . 2008-08-04 20:56 <DIR> d-------- C:\Dokumente und Einstellungen\Drilon\Anwendungsdaten\Apple Computer
2008-08-04 20:52 . 2008-08-04 20:53 <DIR> d-------- C:\Programme\QuickTime
2008-08-04 20:52 . 2008-08-04 20:52 <DIR> d-------- C:\Programme\Apple Software Update
2008-08-04 20:52 . 2008-08-04 20:52 <DIR> d-------- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Apple Computer
2008-08-04 20:52 . 2008-08-04 20:52 <DIR> d-------- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Apple
2008-08-04 20:22 . 2008-08-04 20:35 <DIR> d-------- C:\Programme\3GP Player
2008-08-03 14:43 . 2008-08-03 19:18 <DIR> d-------- C:\Dokumente und Einstellungen\Drilon\Anwendungsdaten\Hamachi
2008-08-03 14:42 . 2008-08-03 14:43 <DIR> d-------- C:\Programme\Hamachi
2008-08-03 14:42 . 2008-08-03 14:42 25,280 --a------ C:\WINDOWS\system32\drivers\hamachi.sys
2008-08-02 13:06 . 2008-08-02 13:40 <DIR> d-------- C:\Dokumente und Einstellungen\Drilon\Anwendungsdaten\phpDesigner 2008
2008-08-02 13:05 . 2008-08-02 19:03 <DIR> d-------- C:\Programme\phpDesigner 2008
2008-07-27 23:28 . 2008-07-27 23:28 <DIR> d-------- C:\include_files
2008-07-27 23:28 . 2008-07-27 23:28 <DIR> d-------- C:\cache
2008-07-27 23:26 . 2008-08-21 19:39 <DIR> d-------- C:\Programme\Softomate
2008-07-27 22:54 . 2008-07-27 22:54 <DIR> d-------- C:\Programme\Conduit
2008-07-27 22:54 . 2008-08-21 19:43 <DIR> d-------- C:\Programme\a-scripting.de.ms
2008-07-27 16:42 . 2008-08-08 18:20 <DIR> d-------- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\TrackMania
2008-07-27 16:22 . 2008-07-27 16:28 <DIR> d-------- C:\Programme\TmNationsForever
2008-07-23 17:14 . 2008-07-23 17:14 <DIR> d-------- C:\Programme\ICQ6Toolbar
2008-07-23 17:14 . 2008-07-23 17:14 <DIR> d-------- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\ICQ
2008-07-23 17:13 . 2008-07-23 17:41 <DIR> d-------- C:\Dokumente und Einstellungen\Drilon\Anwendungsdaten\ICQ
2008-07-23 17:11 . 2008-07-23 17:21 <DIR> d-------- C:\Programme\ICQ6
2008-07-23 15:42 . 2008-07-23 15:42 <DIR> d-------- C:\Programme\AmitySource

.
(((((((((((((((((((((((((((((((((((( Find3M Bericht ))))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2008-08-22 17:38 --------- d--h--w C:\Programme\InstallShield Installation Information
2008-08-22 06:45 --------- d-----w C:\Dokumente und Einstellungen\Drilon\Anwendungsdaten\FileZilla
2008-08-18 19:12 --------- d-----w C:\Programme\Steam
2008-08-12 20:27 --------- d-----w C:\Programme\Gemeinsame Dateien\InstallShield
2008-07-24 09:49 --------- d-----w C:\Programme\Enigma Software Group
2008-07-23 11:34 --------- d-----w C:\Dokumente und Einstellungen\Drilon\Anwendungsdaten\TeamViewer
2008-07-22 20:11 --------- d-----w C:\Dokumente und Einstellungen\Drilon\Anwendungsdaten\DJJava
2008-07-22 19:58 --------- d-----w C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Protexis
2008-07-22 19:56 --------- d-----w C:\Programme\decomp
2008-07-22 10:28 --------- d-----w C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Microsoft Help
2008-07-22 10:24 --------- d-----w C:\Programme\Microsoft Visual Studio 8
2008-07-20 19:38 --------- d-----w C:\Programme\9Rays.Net
2008-07-20 14:34 --------- d-----w C:\Programme\Graal
2008-07-19 15:50 162,008 ----a-w C:\WINDOWS\system32\drivers\PnkBstrK.sys
2008-07-19 11:07 --------- d-----w C:\Programme\FileZilla FTP Client
2008-07-18 16:37 --------- d-----w C:\Dokumente und Einstellungen\Drilon\Anwendungsdaten\MozillaControl
2008-07-18 16:30 --------- d-----w C:\Programme\Mozilla ActiveX Control v1.7.12
2008-07-18 10:34 --------- d-----w C:\Programme\WhatPulse
2008-07-17 20:02 --------- d-----w C:\Programme\MSXML 4.0
2008-07-16 22:43 --------- d-----w C:\Programme\Logitech
2008-07-16 22:42 --------- d-----w C:\Programme\Gemeinsame Dateien\Labtec
2008-07-16 18:25 --------- d-----w C:\Programme\ENEKB
2008-07-14 17:49 --------- d-----w C:\Programme\Gemeinsame Dateien\DVDVideoSoft
2008-07-14 17:49 --------- d-----w C:\Programme\DVDVideoSoft
2008-07-13 23:15 --------- d-----w C:\Programme\Windows Media Connect 2
2008-07-13 23:03 --------- d-----w C:\Programme\Avira
2008-07-13 23:03 --------- d-----w C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Avira
2008-07-13 15:59 --------- d-----w C:\Dokumente und Einstellungen\Drilon\Anwendungsdaten\Atari
2008-07-13 15:54 --------- d-----w C:\Programme\Gemeinsame Dateien\PocketSoft
2008-07-13 15:50 --------- d-----w C:\Programme\Atari
2008-07-12 14:12 --------- d-----w C:\Programme\Enterbrain
2008-07-12 14:11 --------- d-----w C:\Programme\RTPXP
2008-07-12 14:11 --------- d-----w C:\Programme\Gemeinsame Dateien\Enterbrain
2008-07-11 21:59 --------- d-----w C:\Programme\Opera
2008-07-11 15:02 --------- d-----w C:\Programme\Microsoft Visual Studio 9.0
2008-07-11 15:02 --------- d-----w C:\Programme\Business Objects
2008-07-11 15:00 --------- d-----w C:\Programme\Microsoft SQL Server
2008-07-11 14:54 --------- d-----w C:\Programme\Microsoft.NET
2008-07-11 14:52 --------- d-----w C:\Programme\MSXML 6.0
2008-07-11 14:48 --------- d-----w C:\Programme\Microsoft Device Emulator
2008-07-11 14:47 --------- d-----w C:\Programme\Windows Mobile 5.0 SDK R2
2008-07-11 14:44 --------- d-----w C:\Programme\Microsoft Synchronization Services
2008-07-11 14:44 --------- d-----w C:\Programme\Microsoft SQL Server Compact Edition
2008-07-11 14:26 --------- d-----w C:\Programme\Gemeinsame Dateien\Merge Modules
2008-07-11 14:26 --------- d-----w C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\PreEmptive Solutions
2008-07-11 14:20 --------- d-----w C:\Programme\MSBuild
2008-07-11 14:20 --------- d-----w C:\Programme\HTML Help Workshop
2008-07-11 14:16 --------- d-----w C:\Programme\Microsoft SDKs
2008-07-11 14:16 --------- d-----w C:\Programme\CE Remote Tools
2008-07-11 14:14 --------- d-----w C:\Programme\Microsoft Web Designer Tools
2008-07-11 14:01 --------- d-----w C:\Programme\Reference Assemblies
2008-07-10 22:00 --------- d-----w C:\Programme\Gemeinsame Dateien\Adobe
2008-07-10 19:30 --------- d-----w C:\Dokumente und Einstellungen\Drilon\Anwendungsdaten\Download Manager
2008-07-10 09:45 --------- d-----w C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Messenger Plus!
2008-07-10 01:09 --------- d-----w C:\Programme\S3
2008-07-09 23:46 --------- d-----w C:\Programme\MSN Messenger
2008-07-09 23:46 --------- d-----w C:\Programme\Messenger Plus! Live
2008-07-09 21:59 --------- d-----w C:\Programme\Windows Live
2008-07-09 21:58 --------- d-----w C:\Programme\TeamViewer3
2008-07-09 21:35 9,388 ----a-w C:\WINDOWS\system32\drivers\iaStor.PNF
2008-07-09 21:35 7,280 ----a-w C:\WINDOWS\system32\drivers\viamraid.PNF
2008-07-09 21:35 63,240 ----a-w C:\WINDOWS\system32\drivers\Si3112r.PNF
2008-07-09 21:35 6,984 ----a-w C:\WINDOWS\system32\drivers\SiSRaid.PNF
2008-07-09 21:35 20,152 ----a-w C:\WINDOWS\system32\drivers\INFCACHE.1
2008-07-09 21:35 12,432 ----a-w C:\WINDOWS\system32\drivers\adpu320.PNF
2008-07-09 21:35 12,204 ----a-w C:\WINDOWS\system32\drivers\nvraid.PNF
2008-07-09 21:35 10,828 ----a-w C:\WINDOWS\system32\drivers\iaAHCI.PNF
2008-07-09 21:28 --------- d-----w C:\Programme\KeePass Password Safe
2008-07-09 21:17 --------- d-----w C:\Programme\Java
2008-07-09 21:10 --------- d-----w C:\Programme\Wireless LAN
2008-07-09 21:09 --------- d-----w C:\Programme\Realtek Sound Manager
2008-07-09 21:09 --------- d-----w C:\Programme\Realtek AC97
2008-07-09 21:09 --------- d-----w C:\Programme\AvRack
2008-07-09 20:52 --------- d-----w C:\Programme\microsoft frontpage
2008-07-09 20:51 --------- d-----w C:\Programme\Gemeinsame Dateien\Java
2008-07-09 20:45 --------- d-----w C:\Programme\Online-Dienste
2008-07-09 20:44 --------- d-----w C:\Programme\Gemeinsame Dateien\Dienste
.

((((((((((((((((((((((((((((( snapshot@2008-07-15_12.16.44.75 )))))))))))))))))))))))))))))))))))))))))
.
+ 2008-07-07 20:23:19 253,952 ----a-w C:\WINDOWS\$hf_mig$\KB950974\SP3QFE\es.dll
+ 2007-11-30 12:39:14 18,808 ----a-w C:\WINDOWS\$hf_mig$\KB950974\spmsg.dll
+ 2007-11-30 12:39:14 234,872 ----a-w C:\WINDOWS\$hf_mig$\KB950974\spuninst.exe
+ 2007-11-30 12:39:14 26,488 ----a-w C:\WINDOWS\$hf_mig$\KB950974\update\spcustom.dll
+ 2007-11-30 12:39:08 765,304 ----a-w C:\WINDOWS\$hf_mig$\KB950974\update\update.exe
+ 2007-11-30 12:39:08 388,984 ----a-w C:\WINDOWS\$hf_mig$\KB950974\update\updspapi.dll
+ 2008-07-11 12:51:51 62,976 ----a-w C:\WINDOWS\$hf_mig$\KB951072-v2\SP3QFE\tzchange.exe
+ 2007-11-30 11:18:34 18,808 ----a-w C:\WINDOWS\$hf_mig$\KB951072-v2\spmsg.dll
+ 2007-11-30 11:18:34 234,872 ----a-w C:\WINDOWS\$hf_mig$\KB951072-v2\spuninst.exe
+ 2007-11-30 11:18:34 26,488 ----a-w C:\WINDOWS\$hf_mig$\KB951072-v2\update\spcustom.dll
+ 2007-11-30 12:39:14 765,304 ----a-w C:\WINDOWS\$hf_mig$\KB951072-v2\update\update.exe
+ 2007-11-30 12:39:15 388,984 ----a-w C:\WINDOWS\$hf_mig$\KB951072-v2\update\updspapi.dll
+ 2008-06-24 16:53:23 74,240 ----a-w C:\WINDOWS\$hf_mig$\KB952954\SP3QFE\mscms.dll
+ 2007-11-30 12:39:14 18,808 ----a-w C:\WINDOWS\$hf_mig$\KB952954\spmsg.dll
+ 2007-11-30 12:39:14 234,872 ----a-w C:\WINDOWS\$hf_mig$\KB952954\spuninst.exe
+ 2007-11-30 12:39:14 26,488 ----a-w C:\WINDOWS\$hf_mig$\KB952954\update\spcustom.dll
+ 2007-11-30 12:39:14 765,304 ----a-w C:\WINDOWS\$hf_mig$\KB952954\update\update.exe
+ 2007-11-30 12:39:15 388,984 ----a-w C:\WINDOWS\$hf_mig$\KB952954\update\updspapi.dll
+ 2008-06-25 04:25:06 3,088,896 ----a-w C:\WINDOWS\$hf_mig$\KB953838\SP3QFE\mshtml.dll
+ 2008-06-26 08:00:06 1,499,136 ----a-w C:\WINDOWS\$hf_mig$\KB953838\SP3QFE\shdocvw.dll
+ 2008-06-26 08:00:06 620,544 ----a-w C:\WINDOWS\$hf_mig$\KB953838\SP3QFE\urlmon.dll
+ 2008-06-23 14:55:04 672,256 ----a-w C:\WINDOWS\$hf_mig$\KB953838\SP3QFE\wininet.dll
+ 2007-11-30 12:39:14 18,808 ----a-w C:\WINDOWS\$hf_mig$\KB953838\spmsg.dll
+ 2007-11-30 12:39:14 234,872 ----a-w C:\WINDOWS\$hf_mig$\KB953838\spuninst.exe
+ 2007-11-30 12:39:14 26,488 ----a-w C:\WINDOWS\$hf_mig$\KB953838\update\spcustom.dll
+ 2007-11-30 12:39:08 765,304 ----a-w C:\WINDOWS\$hf_mig$\KB953838\update\update.exe
+ 2007-11-30 12:39:08 388,984 ----a-w C:\WINDOWS\$hf_mig$\KB953838\update\updspapi.dll
+ 2008-07-27 14:29:30 53,248 ----a-w C:\WINDOWS\assembly\GAC\Microsoft.DirectX.AudioVideoPlayback\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.AudioVideoPlayback.dll
+ 2008-07-27 14:29:30 12,800 ----a-w C:\WINDOWS\assembly\GAC\Microsoft.DirectX.Diagnostics\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.Diagnostics.dll
+ 2008-07-27 14:29:30 473,600 ----a-w C:\WINDOWS\assembly\GAC\Microsoft.DirectX.Direct3D\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.Direct3D.dll
+ 2008-07-27 14:29:18 2,676,224 ----a-w C:\WINDOWS\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll
+ 2008-07-27 14:29:20 2,846,720 ----a-w C:\WINDOWS\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2903.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll
+ 2008-07-27 14:29:22 563,712 ----a-w C:\WINDOWS\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2904.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll
+ 2008-07-27 14:29:23 567,296 ----a-w C:\WINDOWS\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2905.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll
+ 2008-07-27 14:29:23 576,000 ----a-w C:\WINDOWS\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2906.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll
+ 2008-07-27 14:29:24 577,024 ----a-w C:\WINDOWS\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2907.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll
+ 2008-07-27 14:29:25 577,536 ----a-w C:\WINDOWS\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2908.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll
+ 2008-07-27 14:29:26 577,536 ----a-w C:\WINDOWS\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2909.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll
+ 2008-07-27 14:29:27 578,560 ----a-w C:\WINDOWS\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2910.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll
+ 2008-07-27 14:29:31 578,560 ----a-w C:\WINDOWS\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2911.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll
+ 2008-07-27 14:29:31 145,920 ----a-w C:\WINDOWS\assembly\GAC\Microsoft.DirectX.DirectDraw\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.DirectDraw.dll
+ 2008-07-27 14:29:31 159,232 ----a-w C:\WINDOWS\assembly\GAC\Microsoft.DirectX.DirectInput\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.DirectInput.dll
+ 2008-07-27 14:29:32 364,544 ----a-w C:\WINDOWS\assembly\GAC\Microsoft.DirectX.DirectPlay\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.DirectPlay.dll
+ 2008-07-27 14:29:32 178,176 ----a-w C:\WINDOWS\assembly\GAC\Microsoft.DirectX.DirectSound\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.DirectSound.dll
+ 2008-07-27 14:29:29 223,232 ----a-w C:\WINDOWS\assembly\GAC\Microsoft.DirectX\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.dll
+ 2008-07-20 19:38:25 479,232 ----a-w C:\WINDOWS\assembly\GAC\NineRays.FlyGrid\1.4.4.0__a4c41e6c73e32dc8\NineRays.FlyGrid.dll
+ 2008-07-20 19:38:20 176,128 ----a-w C:\WINDOWS\assembly\GAC\QWhale.Common\1.4.0.6__da632fd1713dff10\QWhale.Common.dll
+ 2008-07-20 19:38:23 737,280 ----a-w C:\WINDOWS\assembly\GAC\QWhale.Editor\1.4.0.6__da632fd1713dff10\QWhale.Editor.dll
+ 2008-07-20 19:38:20 360,448 ----a-w C:\WINDOWS\assembly\GAC\QWhale.Syntax.Parsers\1.4.0.6__da632fd1713dff10\QWhale.Syntax.Parsers.dll
+ 2008-07-20 19:38:24 262,144 ----a-w C:\WINDOWS\assembly\GAC\QWhale.Syntax.Schemes\1.4.0.6__da632fd1713dff10\QWhale.Syntax.Schemes.dll
+ 2008-07-20 19:38:18 253,952 ----a-w C:\WINDOWS\assembly\GAC\QWhale.Syntax\1.4.0.6__da632fd1713dff10\QWhale.Syntax.dll
+ 2008-07-20 19:38:21 237,568 ----a-w C:\WINDOWS\assembly\GAC\SandBar\1.4.1.0__75b7ec17dd7c14c3\SandBar.dll
+ 2008-07-20 19:38:19 241,664 ----a-w C:\WINDOWS\assembly\GAC\SandDock\2.4.2.0__75b7ec17dd7c14c3\SandDock.dll
+ 2008-07-21 18:34:30 53,248 ----a-w C:\WINDOWS\assembly\GAC_32\Microsoft.Build.VisualJSharp\2.0.0.0__b03f5f7f11d50a3a\Microsoft.Build.VisualJSharp.dll
+ 2008-07-22 10:24:34 1,662,976 ----a-w C:\WINDOWS\assembly\GAC_32\mscorcfg\2.0.0.0__b03f5f7f11d50a3a\mscorcfg.dll
+ 2008-07-21 18:34:31 16,384 ----a-w C:\WINDOWS\assembly\GAC_32\vjscor\2.0.0.0__b03f5f7f11d50a3a\vjscor.dll
+ 2008-07-21 18:34:32 57,344 ----a-w C:\WINDOWS\assembly\GAC_32\VJSharpCodeProvider\2.0.0.0__b03f5f7f11d50a3a\VJSharpCodeProvider.DLL
+ 2008-07-21 18:34:32 12,288 ----a-w C:\WINDOWS\assembly\GAC_32\vjsjbc\2.0.0.0__b03f5f7f11d50a3a\vjsjbc.dll
+ 2008-07-21 18:34:33 3,661,824 ----a-w C:\WINDOWS\assembly\GAC_32\vjslib\2.0.0.0__b03f5f7f11d50a3a\vjslib.dll
+ 2008-07-21 18:34:34 28,672 ----a-w C:\WINDOWS\assembly\GAC_32\vjslibcw\2.0.0.0__b03f5f7f11d50a3a\vjslibcw.dll
+ 2008-07-21 18:34:34 921,600 ----a-w C:\WINDOWS\assembly\GAC_32\VJSSupUILib\2.0.0.0__b03f5f7f11d50a3a\vjssupuilib.dll
+ 2008-07-21 18:34:36 36,864 ----a-w C:\WINDOWS\assembly\GAC_32\vjsvwaux\2.0.0.0__b03f5f7f11d50a3a\vjsvwaux.dll
+ 2008-07-21 18:34:37 3,411,968 ----a-w C:\WINDOWS\assembly\GAC_32\vjswfc\2.0.0.0__b03f5f7f11d50a3a\vjswfc.dll
+ 2008-07-21 18:34:30 9,728 ----a-w C:\WINDOWS\assembly\GAC_32\VjsWfcBrowserStubLib\2.0.0.0__b03f5f7f11d50a3a\VJSWfcBrowserStubLib.dll
+ 2008-07-21 18:34:38 185,856 ----a-w C:\WINDOWS\assembly\GAC_32\vjswfccw\2.0.0.0__b03f5f7f11d50a3a\vjswfccw.dll
+ 2008-07-21 18:34:40 1,196,032 ----a-w C:\WINDOWS\assembly\GAC_32\vjswfchtml\2.0.0.0__b03f5f7f11d50a3a\vjswfchtml.dll
+ 2008-07-22 10:24:34 106,496 ----a-w C:\WINDOWS\assembly\GAC_MSIL\Microsoft.Build.Conversion\2.0.0.0__b03f5f7f11d50a3a\Microsoft.Build.Conversion.dll
+ 2008-07-22 10:23:20 733,184 ----a-w C:\WINDOWS\assembly\GAC_MSIL\Microsoft.VisualStudio.CommonIDE\8.0.0.0__b03f5f7f11d50a3a\microsoft.visualstudio.commonide.dll
+ 2008-07-22 10:23:33 106,496 ----a-w C:\WINDOWS\assembly\GAC_MSIL\Microsoft.VisualStudio.Configuration\2.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualStudio.Configuration.dll
+ 2008-07-22 10:23:32 49,152 ----a-w C:\WINDOWS\assembly\GAC_MSIL\Microsoft.VisualStudio.DebuggerVisualizers\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualStudio.DebuggerVisualizers.dll
+ 2008-07-22 10:23:33 434,176 ----a-w C:\WINDOWS\assembly\GAC_MSIL\Microsoft.VisualStudio.Design\2.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualStudio.Design.dll
+ 2008-07-22 10:23:20 1,859,584 ----a-w C:\WINDOWS\assembly\GAC_MSIL\Microsoft.VisualStudio.Editors\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualStudio.Editors.dll
+ 2008-07-22 10:24:11 24,576 ----a-w C:\WINDOWS\assembly\GAC_MSIL\Microsoft.VisualStudio.HostingProcess.Utilities.Sync\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualStudio.HostingProcess.Utilities.Sync.dll
+ 2008-07-22 10:24:15 49,152 ----a-w C:\WINDOWS\assembly\GAC_MSIL\Microsoft.VisualStudio.HostingProcess.Utilities\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualStudio.HostingProcess.Utilities.dll
+ 2008-07-22 10:23:25 806,912 ----a-w C:\WINDOWS\assembly\GAC_MSIL\Microsoft.VisualStudio.Publish\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualStudio.Publish.dll
+ 2008-07-22 10:23:19 249,856 ----a-w C:\WINDOWS\assembly\GAC_MSIL\Microsoft.VisualStudio.Shell.Design\2.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualStudio.Shell.Design.dll
+ 2008-07-22 10:23:33 360,448 ----a-w C:\WINDOWS\assembly\GAC_MSIL\Microsoft.VisualStudio.Windows.Forms\2.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualStudio.Windows.Forms.dll
+ 2008-07-22 10:23:09 73,728 ----a-w C:\WINDOWS\assembly\GAC_MSIL\Microsoft.VisualStudio.WizardFramework\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualStudio.WizardFramework.Dll
+ 2008-07-22 10:23:22 294,912 ----a-w C:\WINDOWS\assembly\GAC_MSIL\Microsoft.VisualStudio\2.0.0.0__b03f5f7f11d50a3a\microsoft.visualstudio.dll
+ 2008-07-22 10:23:01 4,202,496 ----a-w C:\WINDOWS\assembly\GAC_MSIL\Microsoft.VSDesigner\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VSDesigner.dll
+ 2008-07-22 10:23:16 139,264 ----a-w C:\WINDOWS\assembly\GAC_MSIL\msddsp\8.0.0.0__b03f5f7f11d50a3a\msddsp.dll
+ 2008-07-22 14:37:24 122,880 ----a-w C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Vis#\d0e362fb3f519833bb02a486ff2751e1\Microsoft.Build.VisualJSharp.ni.dll
+ 2008-07-22 14:37:50 1,191,936 ----a-w C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Microsoft.VisualStu#\067cf13f81735f1d7785c8acb04670b3\Microsoft.VisualStudio.Design.ni.dll
+ 2008-07-22 14:38:14 655,360 ----a-w C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Microsoft.VisualStu#\09b11124ebb87e232e526bf5c2110b52\Microsoft.VisualStudio.Shell.Design.ni.dll
+ 2008-07-22 14:38:18 151,552 ----a-w C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Microsoft.VisualStu#\1a7cfbbc0ae07632b58fcf61c5822bf8\Microsoft.VisualStudio.Tools.Applications.DesignTime.ni.dll
+ 2008-07-22 14:37:37 704,512 ----a-w C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Microsoft.VisualStu#\416f3824d65f8eeacd73320dc2a8a679\Microsoft.VisualStudio.ni.dll
+ 2008-07-22 14:37:46 241,664 ----a-w C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Microsoft.VisualStu#\511ebf17a76f3871413e278e19638b56\Microsoft.VisualStudio.Configuration.ni.dll
+ 2008-07-22 14:37:59 4,046,848 ----a-w C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Microsoft.VisualStu#\52414c2b77791f0159ba8ed91830c435\Microsoft.VisualStudio.Editors.ni.dll
+ 2008-07-22 14:37:43 2,011,136 ----a-w C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Microsoft.VisualStu#\5d8524c184d0e86496f68ebf715710aa\Microsoft.VisualStudio.CommonIDE.ni.dll
+ 2008-07-22 14:38:28 868,352 ----a-w C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Microsoft.VisualStu#\74929c703037825c3ecd797f966e7efe\Microsoft.VisualStudio.Windows.Forms.ni.dll
+ 2008-07-22 14:38:53 33,280 ----a-w C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\vjscor\3ec6ad2c76a5f150415c0262df1c6a61\vjscor.ni.dll
+ 2008-07-22 14:38:54 139,264 ----a-w C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\VJSharpCodeProvider\200bb0de6d7ca7451fe6eb83ed1d66d1\VJSharpCodeProvider.ni.dll
+ 2008-07-22 14:38:55 34,816 ----a-w C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\vjsjbc\d4f226ec3f3048fad662c91f982db186\vjsjbc.ni.dll
+ 2008-07-22 14:39:07 8,429,568 ----a-w C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\vjslib\706a48380549750ee1305b7b57b38148\vjslib.ni.dll
+ 2008-07-22 14:39:08 48,640 ----a-w C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\vjslibcw\c93f9cf51ac036bdbe48948a3691f74a\vjslibcw.ni.dll
+ 2008-07-22 14:39:13 2,674,688 ----a-w C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\VJSSupUILib\b4fd86614b1a4dd0c11a6ad53e60d335\VJSSupUILib.ni.dll
+ 2008-07-22 14:39:14 50,176 ----a-w C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\vjsvwaux\aed9094b087f3adcb8a2b84e5247f612\vjsvwaux.ni.dll
+ 2008-07-22 14:39:22 7,368,704 ----a-w C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\vjswfc\0dd7002c5591b5ca694be863d4965989\vjswfc.ni.dll
+ 2008-07-22 14:39:23 25,600 ----a-w C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\VjsWfcBrowserStubLib\d8845b6d3de41990b475af94e7b0bac1\VjsWfcBrowserStubLib.ni.dll
+ 2008-07-22 14:39:24 450,560 ----a-w C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\vjswfccw\20fa8c7ad96c7f1d2f35b00ccf0f20dc\vjswfccw.ni.dll
+ 2008-07-22 14:39:28 3,633,152 ----a-w C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\vjswfchtml\b5c541fc2f3a1d684157edc29a701bbb\vjswfchtml.ni.dll
+ 2002-07-25 15:13:18 24,576 ----a-w C:\WINDOWS\Downloaded Program Files\dwusplay.dll
+ 2002-07-25 15:13:12 196,608 ----a-w C:\WINDOWS\Downloaded Program Files\dwusplay.exe
+ 2005-08-11 13:30:30 417,792 ----a-w C:\WINDOWS\Downloaded Program Files\isusweb.dll
+ 2005-10-20 18:02:28 163,328 ----a-w C:\WINDOWS\erdnt\subs\ERDNT.EXE
- 2006-11-03 07:55:48 316,928 ----a-w C:\WINDOWS\inf\unregmp2.exe
+ 2007-06-29 10:02:06 318,464 ----a-w C:\WINDOWS\inf\unregmp2.exe
+ 2008-08-04 18:52:27 27,136 ----a-r C:\WINDOWS\Installer\{02DFF6B1-1654-411C-8D7B-FD6052EF016F}\AppleSoftwareUpdateIco.exe
+ 2008-07-17 19:21:58 27,648 ----a-r C:\WINDOWS\Installer\{048298C9-A4D3-490B-9FF9-AB023A9238F3}\Icon048298C91.exe
+ 2008-07-16 22:43:51 9,902 ----a-r C:\WINDOWS\Installer\{58E653BE-BD68-4D68-BB2E-3AE1B925AAD0}\MainApp.exe
+ 2008-07-17 20:02:03 32,768 ----a-r C:\WINDOWS\Installer\{C04E32E0-0416-434D-AFB9-6969D703A9EF}\icon.exe
+ 1998-11-17 11:44:44 328,704 ----a-w C:\WINDOWS\IsUn0407.exe
+ 2005-03-18 14:23:10 53,248 ----a-w C:\WINDOWS\Microsoft.NET\DirectX for Managed Code\1.0.2902.0\Microsoft.DirectX.AudioVideoPlayback.dll
+ 2005-03-18 14:23:10 12,800 ----a-w C:\WINDOWS\Microsoft.NET\DirectX for Managed Code\1.0.2902.0\Microsoft.DirectX.Diagnostics.dll
+ 2005-03-18 14:23:14 473,600 ----a-w C:\WINDOWS\Microsoft.NET\DirectX for Managed Code\1.0.2902.0\Microsoft.DirectX.Direct3D.dll
+ 2004-09-29 10:38:58 2,676,224 ----a-w C:\WINDOWS\Microsoft.NET\DirectX for Managed Code\1.0.2902.0\Microsoft.DirectX.Direct3DX.dll
+ 2005-03-18 14:23:10 145,920 ----a-w C:\WINDOWS\Microsoft.NET\DirectX for Managed Code\1.0.2902.0\Microsoft.DirectX.DirectDraw.dll
+ 2005-03-18 14:23:10 159,232 ----a-w C:\WINDOWS\Microsoft.NET\DirectX for Managed Code\1.0.2902.0\Microsoft.DirectX.DirectInput.dll
+ 2005-03-18 14:23:14 364,544 ----a-w C:\WINDOWS\Microsoft.NET\DirectX for Managed Code\1.0.2902.0\Microsoft.DirectX.DirectPlay.dll
+ 2005-03-18 14:23:12 178,176 ----a-w C:\WINDOWS\Microsoft.NET\DirectX for Managed Code\1.0.2902.0\Microsoft.DirectX.DirectSound.dll
+ 2005-03-18 14:23:14 223,232 ----a-w C:\WINDOWS\Microsoft.NET\DirectX for Managed Code\1.0.2902.0\Microsoft.DirectX.dll
+ 2004-12-01 13:53:06 2,846,720 ----a-w C:\WINDOWS\Microsoft.NET\DirectX for Managed Code\1.0.2903.0\Microsoft.DirectX.Direct3DX.dll
+ 2005-02-05 17:32:54 563,712 ----a-w C:\WINDOWS\Microsoft.NET\DirectX for Managed Code\1.0.2904.0\Microsoft.DirectX.Direct3DX.dll
+ 2005-03-18 15:23:14 567,296 ----a-w C:\WINDOWS\Microsoft.NET\DirectX for Managed Code\1.0.2905.0\Microsoft.DirectX.Direct3DX.dll
+ 2005-05-26 13:15:56 576,000 ----a-w C:\WINDOWS\Microsoft.NET\DirectX for Managed Code\1.0.2906.0\Microsoft.DirectX.Direct3DX.dll
+ 2005-07-22 15:21:34 577,024 ----a-w C:\WINDOWS\Microsoft.NET\DirectX for Managed Code\1.0.2907.0\Microsoft.DirectX.Direct3DX.dll
+ 2005-09-28 12:11:52 577,536 ----a-w C:\WINDOWS\Microsoft.NET\DirectX for Managed Code\1.0.2908.0\Microsoft.DirectX.Direct3DX.dll
+ 2005-12-05 15:20:50 577,536 ----a-w C:\WINDOWS\Microsoft.NET\DirectX for Managed Code\1.0.2909.0\Microsoft.DirectX.Direct3DX.dll
+ 2006-02-03 05:40:48 578,560 ----a-w C:\WINDOWS\Microsoft.NET\DirectX for Managed Code\1.0.2910.0\Microsoft.DirectX.Direct3DX.dll
+ 2006-03-31 09:27:50 578,560 ----a-w C:\WINDOWS\Microsoft.NET\DirectX for Managed Code\1.0.2911.0\Microsoft.DirectX.Direct3DX.dll
+ 2005-09-23 01:40:46 61,952 ----a-w C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\1033\vjscui.dll
+ 2005-09-23 01:41:18 39,424 ----a-w C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\1033\vjslibui.dll
+ 2005-09-23 05:01:18 68,280 ----a-w C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\al.exe
+ 2005-09-23 05:01:16 609,472 ----a-w C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\Microsoft Visual J# 2.0 Redistributable Package\install.exe
+ 2005-09-23 04:32:24 80,896 ----a-w C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\Microsoft Visual J# 2.0 Redistributable Package\install.res.1028.dll
+ 2005-09-23 04:34:44 85,504 ----a-w C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\Microsoft Visual J# 2.0 Redistributable Package\install.res.1031.dll
+ 2005-09-23 01:46:14 80,896 ----a-w C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\Microsoft Visual J# 2.0 Redistributable Package\install.res.1033.dll
+ 2005-09-23 04:38:52 86,016 ----a-w C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\Microsoft Visual J# 2.0 Redistributable Package\install.res.1036.dll
+ 2005-09-23 04:40:56 84,480 ----a-w C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\Microsoft Visual J# 2.0 Redistributable Package\install.res.1040.dll
+ 2005-09-23 04:42:58 80,896 ----a-w C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\Microsoft Visual J# 2.0 Redistributable Package\install.res.1041.dll
+ 2005-09-23 04:44:58 80,896 ----a-w C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\Microsoft Visual J# 2.0 Redistributable Package\install.res.1042.dll
+ 2005-09-23 04:47:04 82,432 ----a-w C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\Microsoft Visual J# 2.0 Redistributable Package\install.res.1046.dll
+ 2005-09-23 04:47:30 82,432 ----a-w C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\Microsoft Visual J# 2.0 Redistributable Package\install.res.1049.dll
+ 2005-09-23 04:30:18 80,896 ----a-w C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\Microsoft Visual J# 2.0 Redistributable Package\install.res.2052.dll
+ 2005-09-23 04:36:48 85,504 ----a-w C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\Microsoft Visual J# 2.0 Redistributable Package\install.res.3082.dll
+ 2005-09-23 05:57:06 245,408 ----a-w C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\Microsoft Visual J# 2.0 Redistributable Package\unicows.dll
+ 2005-09-23 04:32:24 42,496 ----a-w C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\Microsoft Visual J# 2.0 Redistributable Package\vjscustom.1028.dll
+ 2005-09-23 04:34:44 42,496 ----a-w C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\Microsoft Visual J# 2.0 Redistributable Package\vjscustom.1031.dll
+ 2005-09-23 01:48:06 42,496 ----a-w C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\Microsoft Visual J# 2.0 Redistributable Package\vjscustom.1033.dll
+ 2005-09-23 04:38:52 42,496 ----a-w C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\Microsoft Visual J# 2.0 Redistributable Package\vjscustom.1036.dll
+ 2005-09-23 04:40:56 42,496 ----a-w C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\Microsoft Visual J# 2.0 Redistributable Package\vjscustom.1040.dll
+ 2005-09-23 04:42:58 42,496 ----a-w C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\Microsoft Visual J# 2.0 Redistributable Package\vjscustom.1041.dll
+ 2005-09-23 04:45:00 42,496 ----a-w C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\Microsoft Visual J# 2.0 Redistributable Package\vjscustom.1042.dll
+ 2005-09-23 04:47:04 42,496 ----a-w C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\Microsoft Visual J# 2.0 Redistributable Package\vjscustom.1046.dll
+ 2005-09-23 04:47:30 42,496 ----a-w C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\Microsoft Visual J# 2.0 Redistributable Package\vjscustom.1049.dll
+ 2005-09-23 04:30:18 42,496 ----a-w C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\Microsoft Visual J# 2.0 Redistributable Package\vjscustom.2052.dll
+ 2005-09-23 04:36:48 42,496 ----a-w C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\Microsoft Visual J# 2.0 Redistributable Package\vjscustom.3082.dll
+ 2005-09-23 04:56:22 106,496 ----a-w C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\Microsoft.Build.Conversion.dll
+ 2005-09-23 04:56:42 53,248 ----a-w C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\Microsoft.Build.VisualJSharp.dll
+ 2005-09-23 05:01:18 13,496 ----a-w C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\vjc.exe
+ 2005-09-23 02:49:26 1,290,240 ----a-w C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\vjsc.dll
+ 2005-09-23 04:56:56 16,384 ----a-w C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\vjscor.dll
+ 2005-09-23 04:56:34 57,344 ----a-w C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\VJSharpCodeProvider.DLL
+ 2005-09-23 04:56:44 12,288 ----a-w C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\vjsjbc.dll
+ 2005-09-23 04:56:16 3,661,824 ----a-w C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\vjslib.dll
+ 2005-09-23 04:56:36 28,672 ----a-w C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\vjslibcw.dll
+ 2005-09-23 01:41:48 176,640 ----a-w C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\vjsnativ.dll
+ 2005-09-23 04:56:40 921,600 ----a-w C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\vjssupuilib.dll
+ 2005-09-23 04:56:24 36,864 ----a-w C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\vjsvwaux.dll
+ 2005-09-23 04:56:22 3,411,968 ----a-w C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\vjswfc.dll
+ 2005-09-23 04:56:22 9,728 ----a-w C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\VJSWfcBrowserStubLib.dll
+ 2005-09-23 04:56:44 185,856 ----a-w C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\vjswfccw.dll
+ 2005-09-23 04:56:36 1,196,032 ----a-w C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\vjswfchtml.dll
+ 2005-09-23 01:41:50 2,560 ----a-w C:\WINDOWS\Microsoft.NET\Framework\VJSharp\VJSharpSxS10.dll
+ 2005-09-23 01:40:48 94,208 ----a-w C:\WINDOWS\Microsoft.NET\Framework\VJSharp\vjshost.dll
+ 2005-09-23 01:41:50 68,608 ----a-w C:\WINDOWS\Microsoft.NET\Framework\VJSharp\VJSWfcHost.dll
+ 2001-11-05 08:50:24 69,632 ----a-r C:\WINDOWS\PAC207\AmCap.exe
+ 2004-01-15 08:01:20 61,440 ----a-r C:\WINDOWS\PAC207\StillImg.exe
+ 2001-03-02 18:52:40 15,360 ----a-w C:\WINDOWS\system32\asfsipc.dll
+ 2005-02-05 17:45:26 2,222,800 ----a-w C:\WINDOWS\system32\d3dx9_24.dll
+ 2005-03-18 15:19:58 2,337,488 ----a-w C:\WINDOWS\system32\d3dx9_25.dll
+ 2005-05-26 13:34:52 2,297,552 ----a-w C:\WINDOWS\system32\d3dx9_26.dll
+ 2005-07-22 17:59:04 2,319,568 ----a-w C:\WINDOWS\system32\d3dx9_27.dll
+ 2005-12-05 16:09:18 2,323,664 ----a-w C:\WINDOWS\system32\d3dx9_28.dll
+ 2006-02-03 06:43:16 2,332,368 ----a-w C:\WINDOWS\system32\d3dx9_29.dll
+ 2006-03-31 10:40:58 2,388,176 ----a-w C:\WINDOWS\system32\d3dx9_30.dll
+ 2008-04-13 22:16:24 17,024 -c--a-w C:\WINDOWS\system32\dllcache\ccdecode.sys
+ 2008-04-14 05:52:10 619,008 -c--a-w C:\WINDOWS\system32\dllcache\dx7vb.dll
+ 2008-07-07 20:26:58 253,952 -c----w C:\WINDOWS\system32\dllcache\es.dll
+ 2008-04-14 05:25:36 52,992 -c--a-w C:\WINDOWS\system32\dllcache\i8042prt.sys
+ 2008-04-14 05:28:04 37,632 -c--a-w C:\WINDOWS\system32\dllcache\isapnp.sys
+ 2008-04-14 05:52:14 47,616 -c--a-w C:\WINDOWS\system32\dllcache\iyuv_32.dll
+ 2008-04-14 05:28:38 25,216 -c--a-w C:\WINDOWS\system32\dllcache\kbdclass.sys
+ 2008-04-13 22:46:38 141,056 -c--a-w C:\WINDOWS\system32\dllcache\ks.sys
+ 2008-06-24 16:42:48 74,240 -c----w C:\WINDOWS\system32\dllcache\mscms.dll
- 2008-04-21 06:42:36 3,087,872 -c----w C:\WINDOWS\system32\dllcache\mshtml.dll
+ 2008-06-23 15:10:11 3,088,384 -c----w C:\WINDOWS\system32\dllcache\mshtml.dll
- 2006-10-18 19:47:16 414,208 -c--a-w C:\WINDOWS\system32\dllcache\msscp.dll
+ 2006-12-04 14:21:50 414,720 -c--a-w C:\WINDOWS\system32\dllcache\msscp.dll
+ 2008-04-13 22:09:52 5,504 -c--a-w C:\WINDOWS\system32\dllcache\mstee.sys
+ 2008-04-14 05:52:20 16,896 -c--a-w C:\WINDOWS\system32\dllcache\msyuv.dll
+ 2008-04-13 22:16:26 85,248 -c--a-w C:\WINDOWS\system32\dllcache\nabtsfec.sys
+ 2008-04-13 22:16:24 10,880 -c--a-w C:\WINDOWS\system32\dllcache\ndisip.sys
+ 2008-06-26 08:12:40 1,499,136 -c----w C:\WINDOWS\system32\dllcache\shdocvw.dll
+ 2008-04-13 22:16:24 11,136 -c--a-w C:\WINDOWS\system32\dllcache\slip.sys
+ 2008-04-13 22:16:22 15,232 -c--a-w C:\WINDOWS\system32\dllcache\streamip.sys
+ 2001-08-18 02:54:30 8,192 -c--a-w C:\WINDOWS\system32\dllcache\tsbyuv.dll
- 2006-11-03 07:55:48 316,928 -c--a-w C:\WINDOWS\system32\dllcache\unregmp2.exe
+ 2007-06-29 10:02:06 318,464 -c--a-w C:\WINDOWS\system32\dllcache\unregmp2.exe
+ 2008-06-26 08:12:40 620,544 -c----w C:\WINDOWS\system32\dllcache\urlmon.dll
+ 2008-04-13 22:15:14 60,032 -c--a-w C:\WINDOWS\system32\dllcache\usbaudio.sys
+ 2008-04-13 22:15:40 32,128 -c--a-w C:\WINDOWS\system32\dllcache\usbccgp.sys
+ 2008-04-14 05:52:32 54,272 -c--a-w C:\WINDOWS\system32\dllcache\vfwwdm32.dll
- 2008-04-21 06:42:36 671,744 -c----w C:\WINDOWS\system32\dllcache\wininet.dll
+ 2008-06-23 15:10:12 671,744 -c----w C:\WINDOWS\system32\dllcache\wininet.dll
- 2006-10-18 19:47:20 10,834,432 -c--a-w C:\WINDOWS\system32\dllcache\wmp.dll
+ 2007-06-11 21:51:12 10,834,944 -c--a-w C:\WINDOWS\system32\dllcache\wmp.dll
+ 2008-04-13 22:16:26 19,200 -c--a-w C:\WINDOWS\system32\dllcache\wstcodec.sys
- 2008-03-04 11:28:49 79,424 ----a-w C:\WINDOWS\system32\drivers\avipbb.sys
+ 2008-07-19 09:57:43 75,072 ----a-w C:\WINDOWS\system32\drivers\avipbb.sys
+ 2008-04-13 22:16:24 17,024 ----a-w C:\WINDOWS\system32\drivers\CCDECODE.sys
+ 2005-01-14 09:22:00 5,504 ----a-w C:\WINDOWS\system32\drivers\EKBfltr.sys
+ 2005-03-18 08:39:00 42,496 ----a-w C:\WINDOWS\system32\drivers\fetnd5bv.sys
+ 2004-01-21 01:14:46 5,915 ----a-w C:\WINDOWS\system32\drivers\lv302af.sys
+ 2004-01-21 01:14:42 271,360 ----a-w C:\WINDOWS\system32\drivers\LV302AV.SYS
+ 2004-01-21 01:16:46 12,080 ----a-w C:\WINDOWS\system32\drivers\LVUSBSta.sys
+ 2008-04-13 22:09:52 5,504 ----a-w C:\WINDOWS\system32\drivers\MSTEE.sys
+ 2008-04-13 22:16:26 85,248 ----a-w C:\WINDOWS\system32\drivers\NABTSFEC.sys
+ 2008-04-13 22:16:24 10,880 ----a-w C:\WINDOWS\system32\drivers\NdisIP.sys
+ 2008-04-13 22:16:24 11,136 ----a-w C:\WINDOWS\system32\drivers\SLIP.sys
+ 2008-04-13 22:16:22 15,232 ----a-w C:\WINDOWS\system32\drivers\StreamIP.sys
+ 2008-04-13 22:15:14 60,032 ----a-w C:\WINDOWS\system32\drivers\USBAUDIO.sys
+ 2008-04-13 22:15:40 32,128 ----a-w C:\WINDOWS\system32\drivers\usbccgp.sys
+ 2003-07-01 20:42:00 27,904 ----a-w C:\WINDOWS\system32\drivers\VIAAGP1.SYS
+ 2008-04-13 22:16:26 19,200 ----a-w C:\WINDOWS\system32\drivers\WSTCODEC.SYS
- 2008-04-14 05:52:12 246,272 ----a-w C:\WINDOWS\system32\es.dll
+ 2008-07-07 20:26:58 253,952 ----a-w C:\WINDOWS\system32\es.dll
- 2008-07-11 20:33:31 6,479,432 ----a-w C:\WINDOWS\system32\FNTCACHE.DAT
+ 2008-08-23 08:00:02 6,479,488 ----a-w C:\WINDOWS\system32\FNTCACHE.DAT
+ 1998-11-18 13:33:16 144,384 ----a-w C:\WINDOWS\system32\Iacenc.dll
+ 1999-01-27 11:39:06 65,024 ----a-w C:\WINDOWS\system32\indounin.dll
- 2008-04-14 05:52:14 691,712 ----a-w C:\WINDOWS\system32\inetcomm.dll
+ 2008-04-11 19:04:24 691,712 ----a-w C:\WINDOWS\system32\inetcomm.dll
+ 1997-06-13 05:56:08 56,832 ----a-w C:\WINDOWS\system32\Iyvu9_32.dll
+ 2004-02-12 14:58:18 462,848 ----a-w C:\WINDOWS\system32\LCamCpl.dll
+ 2004-02-12 14:13:52 30,720 ----a-w C:\WINDOWS\system32\lfbmp12n.dll
+ 2004-02-12 14:13:52 328,704 ----a-w C:\WINDOWS\system32\Lfcmp12n.dll
+ 2004-02-12 14:13:52 78,336 ----a-w C:\WINDOWS\system32\lffax12n.dll
+ 2004-02-12 14:13:52 141,312 ----a-w C:\WINDOWS\system32\lftif12n.dll
+ 2004-02-12 14:33:26 90,112 ----a-w C:\WINDOWS\system32\LQCUI2.dll
+ 2004-02-12 14:13:54 259,072 ----a-w C:\WINDOWS\system32\Ltdis12n.dll
+ 2004-02-12 14:13:54 207,872 ----a-w C:\WINDOWS\system32\Ltefx12n.dll
+ 2004-02-12 14:13:54 131,072 ----a-w C:\WINDOWS\system32\Ltfil12n.dll
+ 2004-02-12 14:13:54 164,864 ----a-w C:\WINDOWS\system32\Ltimg12n.dll
+ 2004-02-12 14:13:56 406,016 ----a-w C:\WINDOWS\system32\Ltkrn12n.dll
+ 2004-02-12 14:13:58 856,064 ----a-w C:\WINDOWS\system32\Ltwvc12n.dll
+ 2004-01-21 01:25:56 172,032 ----a-w C:\WINDOWS\system32\lvcodec2.dll
+ 2004-01-21 01:28:30 86,016 ----a-w C:\WINDOWS\system32\lvcoinst.dll
+ 2004-01-21 01:24:26 57,344 ----a-w C:\WINDOWS\system32\LVComC.dll
+ 2004-01-21 01:24:22 135,214 ----a-w C:\WINDOWS\system32\LVComS.exe
+ 2004-02-12 14:14:00 215,552 ----a-w C:\WINDOWS\system32\Lvkrn12n.dll
+ 2004-01-21 01:26:10 122,880 ----a-w C:\WINDOWS\system32\LVUI2.dll
+ 2004-01-21 01:26:14 360,448 ----a-w C:\WINDOWS\system32\LVUI2RC.dll
- 2008-06-25 07:15:48 17,972,344 ----a-w C:\WINDOWS\system32\MRT.exe
+ 2008-08-05 18:11:01 15,888,504 ----a-w C:\WINDOWS\system32\MRT.exe
- 2008-04-14 05:52:18 73,728 ----a-w C:\WINDOWS\system32\mscms.dll
+ 2008-06-24 16:42:48 74,240 ----a-w C:\WINDOWS\system32\mscms.dll
- 2008-04-21 06:42:36 3,087,872 ----a-w C:\WINDOWS\system32\mshtml.dll
+ 2008-06-23 15:10:11 3,088,384 ----a-w C:\WINDOWS\system32\mshtml.dll
- 2006-10-18 19:47:16 414,208 ----a-w C:\WINDOWS\system32\msscp.dll
+ 2006-12-04 14:21:50 414,720 ----a-w C:\WINDOWS\system32\msscp.dll
- 2002-01-05 13:37:26 344,064 ----a-w C:\WINDOWS\system32\msvcr70.dll
+ 2002-01-05 14:37:00 344,064 ----a-w C:\WINDOWS\system32\msvcr70.dll
+ 2007-05-08 13:03:04 1,275,392 ----a-w C:\WINDOWS\system32\msxml4.dll
+ 2002-02-04 00:43:00 82,432 ----a-w C:\WINDOWS\system32\msxml4r.dll
+ 2004-11-04 11:31:22 835,584 ----a-w C:\WINDOWS\system32\NCTAudioCDGrabber2.dll
+ 2005-04-15 10:08:02 880,640 ----a-w C:\WINDOWS\system32\NCTAudioEditor2.dll
+ 2005-05-17 10:37:44 1,986,560 ----a-w C:\WINDOWS\system32\NCTAudioFile2.dll
+ 2005-05-18 09:52:40 1,212,416 ----a-w C:\WINDOWS\system32\NCTAudioInformation2.dll
+ 2005-04-25 11:01:12 458,752 ----a-w C:\WINDOWS\system32\NCTAudioPlayer2.dll
+ 2005-04-25 11:01:38 458,752 ----a-w C:\WINDOWS\system32\NCTAudioRecord2.dll
+ 2005-04-04 15:21:32 602,112 ----a-w C:\WINDOWS\system32\NCTAudioTransform2.dll
+ 2005-03-28 13:54:42 479,232 ----a-w C:\WINDOWS\system32\NCTAudioVisualization2.dll
+ 2005-03-28 13:52:12 417,792 ----a-w C:\WINDOWS\system32\NCTTextToAudio2.dll
+ 2005-02-24 09:51:38 348,160 ----a-w C:\WINDOWS\system32\NCTWMAFile2.dll
+ 1998-11-20 11:38:58 151,552 ----a-w C:\WINDOWS\system32\Npindeo.dll
+ 2001-03-02 18:52:42 8,704 ----a-w C:\WINDOWS\system32\npwmsdrm.dll
- 2008-07-14 22:52:14 111,928 ----a-w C:\WINDOWS\system32\PnkBstrB.exe
+ 2008-07-19 15:50:32 111,928 ----a-w C:\WINDOWS\system32\PnkBstrB.exe
+ 2004-02-12 14:34:28 401,408 ----a-w C:\WINDOWS\system32\QCUI2.dll
+ 2008-04-14 05:28:04 37,632 ----a-w C:\WINDOWS\system32\ReinstallBackups\0000\DriverFiles\i386\isapnp.sys
+ 2008-04-13 22:06:42 44,672 ----a-w C:\WINDOWS\system32\ReinstallBackups\0001\DriverFiles\i386\UAGP35.SYS
+ 2008-04-14 05:25:36 52,992 ----a-w C:\WINDOWS\system32\ReinstallBackups\0003\DriverFiles\i386\i8042prt.sys
+ 2008-04-14 05:28:38 25,216 ----a-w C:\WINDOWS\system32\ReinstallBackups\0003\DriverFiles\i386\kbdclass.sys
+ 2001-08-17 11:13:08 27,165 ----a-w C:\WINDOWS\system32\ReinstallBackups\0005\DriverFiles\i386\fetnd5.sys
- 2008-04-14 05:52:26 1,499,136 ----a-w C:\WINDOWS\system32\shdocvw.dll
+ 2008-06-26 08:12:40 1,499,136 ----a-w C:\WINDOWS\system32\shdocvw.dll
- 2006-09-25 15:58:48 14,640 ------w C:\WINDOWS\system32\spmsg.dll
+ 2007-11-30 12:39:14 18,808 ------w C:\WINDOWS\system32\spmsg.dll
+ 2008-04-14 05:52:24 728,576 ----a-w C:\WINDOWS\system32\spool\drivers\w32x86\3\PS5UI.DLL
+ 2008-04-14 05:52:24 543,232 ----a-w C:\WINDOWS\system32\spool\drivers\w32x86\3\PSCRIPT5.DLL
- 2004-08-04 12:00:00 8,192 ----a-w C:\WINDOWS\system32\tsbyuv.dll
+ 2001-08-18 02:54:30 8,192 ----a-w C:\WINDOWS\system32\tsbyuv.dll
- 2008-03-27 10:40:24 60,416 ------w C:\WINDOWS\system32\tzchange.exe
+ 2008-07-11 12:42:28 62,976 ------w C:\WINDOWS\system32\tzchange.exe
- 2008-04-14 05:52:32 621,568 ----a-w C:\WINDOWS\system32\urlmon.dll
+ 2008-06-26 08:12:40 620,544 ----a-w C:\WINDOWS\system32\urlmon.dll
+ 2008-04-14 05:52:32 54,272 ----a-w C:\WINDOWS\system32\vfwwdm32.dll
+ 2004-09-17 09:37:00 61,440 ----a-w C:\WINDOWS\system32\vuins32.dll
- 2008-04-21 06:42:36 671,744 ----a-w C:\WINDOWS\system32\wininet.dll
+ 2008-06-23 15:10:12 671,744 ----a-w C:\WINDOWS\system32\wininet.dll
- 2006-10-18 19:47:20 10,834,432 ----a-w C:\WINDOWS\system32\wmp.dll
+ 2007-06-11 21:51:12 10,834,944 ----a-w C:\WINDOWS\system32\wmp.dll
+ 2001-05-09 15:40:50 309,584 ----a-w C:\WINDOWS\system32\wmv8dmod.dll
+ 2001-05-09 14:47:10 466,944 ----a-w C:\WINDOWS\system32\wmv8dmoe.dll
+ 2001-05-09 14:50:40 446,464 ----a-w C:\WINDOWS\system32\wmvdmoe.dll
+ 2006-02-03 06:41:26 14,032 ----a-w C:\WINDOWS\system32\x3daudio1_0.dll
+ 2006-02-03 06:42:06 230,096 ----a-w C:\WINDOWS\system32\xactengine2_0.dll
+ 2006-03-31 10:39:48 229,584 ----a-w C:\WINDOWS\system32\xactengine2_1.dll
+ 2006-05-31 05:24:16 230,168 ----a-w C:\WINDOWS\system32\xactengine2_2.dll
+ 2006-03-31 10:39:24 62,672 ----a-w C:\WINDOWS\system32\xinput1_1.dll
+ 2005-12-05 16:07:30 61,136 ----a-w C:\WINDOWS\system32\xinput9_1_0.dll
+ 2004-01-21 01:29:30 122,880 ----a-w C:\WINDOWS\twain_32\QuickCam\HPortal.dll
+ 2004-01-21 01:29:04 143,360 ----a-w C:\WINDOWS\twain_32\QuickCam\HVideoS.exe
+ 2004-01-21 01:29:08 28,672 ----a-w C:\WINDOWS\twain_32\QuickCam\HVideoSP.dll
+ 2004-01-21 01:29:10 696,320 ----a-w C:\WINDOWS\twain_32\QuickCam\LHPortal.dll
+ 2004-01-21 01:30:22 20,480 ----a-w C:\WINDOWS\twain_32\QuickCam\LQCTwn32.dll
+ 2004-01-21 01:29:58 24,576 ----a-w C:\WINDOWS\twain_32\QuickCam\lvsf.dll
+ 2004-01-21 01:28:22 106,496 ----a-w C:\WINDOWS\twain_32\QuickCam\lvWIAext.dll
+ 2004-01-21 01:28:46 167,936 ----a-w C:\WINDOWS\twain_32\QuickCam\pcsmart.dll
+ 2007-05-08 13:06:44 1,275,392 ----a-w C:\WINDOWS\WinSxS\x86_Microsoft.MSXML2_6bd6b9abf345378f_4.20.9848.0_x-ww_1b897e9a\msxml4.dll
+ 2007-04-18 08:36:40 82,432 ----a-w C:\WINDOWS\WinSxS\x86_Microsoft.MSXML2R_6bd6b9abf345378f_4.1.0.0_x-ww_29c3ad6a\msxml4r.dll
.
-- Snapshot reset to current date --
.
(((((((((((((((((((((((((((( Autostart Punkte der Registrierung ))))))))))))))))))))))))))))))))))))))))
.
.
*Hinweis* leere Eintrage & legitime Standardeintrage werden nicht angezeigt.
REGEDIT4

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\URLSearchHooks]
"{4059f9db-3179-4a93-8ad2-96bcef8d9f13}"= "C:\Programme\a-scripting.de.ms\tba-sc.dll" [2008-07-27 21:11 1606680]

[HKEY_CLASSES_ROOT\clsid\{4059f9db-3179-4a93-8ad2-96bcef8d9f13}]

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{4059f9db-3179-4a93-8ad2-96bcef8d9f13}]
2008-07-27 21:11 1606680 --a------ C:\Programme\a-scripting.de.ms\tba-sc.dll

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{E31F114C-0FE9-4CA4-B2A1-3ED073345E98}]
2008-07-10 15:50 2408448 --a------ C:\PROGRA~1\SOFTOM~1\TOOLBA~1\installed\{6226BA26-C017-4007-928C-DE9715C6FA67}\0\toolbar.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
"{4059f9db-3179-4a93-8ad2-96bcef8d9f13}"= "C:\Programme\a-scripting.de.ms\tba-sc.dll" [2008-07-27 21:11 1606680]
"{6226BA26-C017-4007-928C-DE9715C6FA67}"= "C:\PROGRA~1\SOFTOM~1\TOOLBA~1\installed\{6226BA26-C017-4007-928C-DE9715C6FA67}\0\toolbar.dll" [2008-07-10 15:50 2408448]

[HKEY_CLASSES_ROOT\clsid\{4059f9db-3179-4a93-8ad2-96bcef8d9f13}]

[HKEY_CLASSES_ROOT\clsid\{6226ba26-c017-4007-928c-de9715c6fa67}]
[HKEY_CLASSES_ROOT\TBSB01961.TBSB01961.3]
[HKEY_CLASSES_ROOT\TypeLib\{77AA25E8-6083-4949-A831-9CB11861DC10}]
[HKEY_CLASSES_ROOT\TBSB01961.TBSB01961]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
"{4059F9DB-3179-4A93-8AD2-96BCEF8D9F13}"= "C:\Programme\a-scripting.de.ms\tba-sc.dll" [2008-07-27 21:11 1606680]
"{6226BA26-C017-4007-928C-DE9715C6FA67}"= "C:\PROGRA~1\SOFTOM~1\TOOLBA~1\installed\{6226BA26-C017-4007-928C-DE9715C6FA67}\0\toolbar.dll" [2008-07-10 15:50 2408448]

[HKEY_CLASSES_ROOT\clsid\{4059f9db-3179-4a93-8ad2-96bcef8d9f13}]

[HKEY_CLASSES_ROOT\clsid\{6226ba26-c017-4007-928c-de9715c6fa67}]
[HKEY_CLASSES_ROOT\TBSB01961.TBSB01961.3]
[HKEY_CLASSES_ROOT\TypeLib\{77AA25E8-6083-4949-A831-9CB11861DC10}]
[HKEY_CLASSES_ROOT\TBSB01961.TBSB01961]

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="C:\WINDOWS\system32\ctfmon.exe" [2008-04-14 07:52 15360]
"MsnMsgr"="C:\Programme\MSN Messenger\MsnMsgr.Exe" [2007-01-19 12:55 5674352]
"KeePass Password Safe"="C:\Programme\KeePass Password Safe\KeePass.exe" [2008-04-12 10:39 743424]
"MSMSGS"="C:\Programme\Messenger\msmsgs.exe" [2008-04-14 07:52 1695232]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SunJavaUpdateSched"="C:\Programme\Java\jre1.6.0_07\bin\jusched.exe" [2008-06-10 04:27 144784]
"avgnt"="C:\Programme\Avira\AntiVir PersonalEdition Classic\avgnt.exe" [2008-07-19 11:57 266497]
"LogitechVideoRepair"="C:\Programme\Logitech\Video\ISStart.exe" [2004-02-12 16:57 188416]
"QuickTime Task"="C:\Programme\QuickTime\qttask.exe" [2008-05-27 10:50 413696]
"SMSERIAL"="sm56hlpr.exe" [2004-12-29 06:01 544768 C:\WINDOWS\sm56hlpr.exe]
"SoundMan"="SOUNDMAN.EXE" [2006-06-20 14:42 577536 C:\WINDOWS\soundman.exe]
"VTTimer"="VTTimer.exe" [2005-03-08 03:33 53248 C:\WINDOWS\system32\VTTimer.exe]
"VTTrayp"="VTtrayp.exe" [2005-11-01 04:15 163840 C:\WINDOWS\system32\VTTrayp.exe]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="C:\WINDOWS\system32\CTFMON.EXE" [2008-04-14 07:52 15360]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"msacm.enc"= ITIG726.acm
"VIDC.XFR1"= xfcodec.dll

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogitechVideoTray]
--a------ 2004-02-12 16:59 77824 C:\Programme\Logitech\Video\LogiTray.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Steam]
--a------ 2008-07-17 21:22 1271032 C:\Programme\Steam\Steam.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WhatPulse]
--a------ 2006-08-21 19:48 665600 C:\Programme\WhatPulse\WhatPulse.exe

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"C:\\Programme\\MSN Messenger\\msnmsgr.exe"=
"C:\\Programme\\MSN Messenger\\livecall.exe"=
"C:\\Programme\\Mozilla Firefox\\firefox.exe"=
"C:\\Programme\\Gemeinsame Dateien\\PocketSoft\\RTPatch\\AutoRTP\\artpschd.exe"=
"C:\\Programme\\Messenger\\msmsgs.exe"=
"C:\\Programme\\Steam\\steamapps\\deejaytrixx\\counter-strike\\hl.exe"=
"C:\\Programme\\Steam\\steamapps\\deejaytrixx\\half-life 2 deathmatch\\hl2.exe"=
"C:\\Programme\\Steam\\steamapps\\deejaytrixx\\condition zero\\hl.exe"=
"C:\\Programme\\ICQ6\\ICQ.exe"=
"C:\\Programme\\Steam\\steamapps\\deejaytrixx\\day of defeat\\hl.exe"=
"C:\\Programme\\TmNationsForever\\TmForever.exe"=
"C:\\Programme\\phpDesigner 2008\\phpDesigner2008.exe"=
"C:\\Programme\\Steam\\steamapps\\deejaytrixx\\dedicated server\\hltv.exe"=
"C:\\Programme\\Xfire\\xfire.exe"=
"C:\\WINDOWS\\system32\\dxdiag.exe"=
"C:\\WINDOWS\\system32\\dpnsvr.exe"=
"C:\\Dokumente und Einstellungen\\Drilon\\Eigene Dateien\\My Downloads\\Visual Basic\\TCP Chat Server\\TCP Chat Server\\bin\\Debug\\TCP Chat Server.vshost.exe"=

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"7777:TCP"= 7777:TCP:Gta Host Port
"27015:TCP"= 27015:TCP:27015
"7777:UDP"= 7777:UDP:CS Strike

R2 ICQ Service;ICQ Service;C:\Programme\ICQ6Toolbar\ICQ Service.exe [2008-06-10 19:26]
R3 EKBfltr;ENE Keyboard Controller;C:\WINDOWS\system32\DRIVERS\EKBfltr.sys [2005-01-14 11:22]
S4 msvsmon90;Visual Studio 2008 Remote Debugger;c:\Programme\Microsoft Visual Studio 9.0\Common7\IDE\Remote Debugger\x86\msvsmon.exe [2007-11-08 00:58]

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{51087c43-4dfa-11dd-872d-00c0a8c721de}]
\Shell\Auto\command - activexdebugger32.exe f
\Shell\AutoRun\command - C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL activexdebugger32.exe e
\Shell\explore\Command - activexdebugger32.exe f
\Shell\open\Command - activexdebugger32.exe f
.
- - - - Entfernte verwaiste Registrierungseintr„ge - - - -

MSConfigStartUp-SpyHunter Security Suite - C:\Programme\Enigma Software Group\SpyHunter\SpyHunter3.exe


.
------- Zus„tzlicher Scan -------
.
FireFox -: Profile - C:\Dokumente und Einstellungen\Drilon\Anwendungsdaten\Mozilla\Firefox\Profiles\320v9hue.default\
FireFox -: prefs.js - STARTUP.HOMEPAGE - hxxp://www.Google.de
FF -: plugin - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
.

**************************************************************************

catchme 0.3.1361 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-08-24 00:35:43
Windows 5.1.2600 Service Pack 3 NTFS

Scanne versteckte Prozesse...

Scanne versteckte Autostart Eintr„ge...

Scanne versteckte Dateien...

Scan erfolgreich abgeschlossen
versteckte Dateien: 0

**************************************************************************
.
------------------------ Weitere, laufende Prozesse ------------------------
.
C:\Programme\Avira\AntiVir PersonalEdition Classic\sched.exe
C:\Programme\Avira\AntiVir PersonalEdition Classic\avguard.exe
C:\Programme\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe
C:\WINDOWS\system32\PnkBstrA.exe
C:\Programme\Microsoft SQL Server\90\Shared\sqlwriter.exe
C:\WINDOWS\system32\wscntfy.exe
.
**************************************************************************
.
Zeit der Fertigstellung: 2008-08-24 0:41:18 - PC wurde neu gestartet
ComboFix-quarantined-files.txt 2008-08-23 22:41:13
ComboFix2.txt 2008-07-15 10:17:07

Pre-Run: 12 Verzeichnis(se), 14,341,275,648 Bytes frei
Post-Run: 15 Verzeichnis(se), 14,437,801,984 Bytes frei

626 --- E O F --- 2008-08-17 09:25:52

Zitat

Und Hjackthis:

Zitat

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 00:49:48, on 24.08.2008
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP3 (6.00.2900.5512)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Programme\Avira\AntiVir PersonalEdition Classic\sched.exe
C:\Programme\Avira\AntiVir PersonalEdition Classic\avguard.exe
C:\Programme\ICQ6Toolbar\ICQ Service.exe
C:\WINDOWS\system32\PnkBstrA.exe
c:\Programme\Microsoft SQL Server\90\Shared\sqlwriter.exe
C:\WINDOWS\system32\svchost.exe
C:\Programme\Java\jre1.6.0_07\bin\jusched.exe
C:\WINDOWS\sm56hlpr.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\WINDOWS\system32\VTTimer.exe
C:\WINDOWS\system32\VTtrayp.exe
C:\Programme\Avira\AntiVir PersonalEdition Classic\avgnt.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Programme\MSN Messenger\MsnMsgr.Exe
C:\Programme\KeePass Password Safe\KeePass.exe
C:\Programme\Messenger\msmsgs.exe
C:\WINDOWS\explorer.exe
C:\WINDOWS\system32\notepad.exe
C:\Programme\Mozilla Firefox\firefox.exe
C:\Programme\MSN Messenger\usnsvc.exe
C:\WINDOWS\system32\wscntfy.exe
C:\Programme\Trend Micro\HijackThis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.pennergame.de/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R3 - URLSearchHook: (no name) - - (no file)
R3 - URLSearchHook: ICQToolBar - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Programme\ICQ6Toolbar\ICQToolBar.dll
R3 - URLSearchHook: a-scripting.de.ms Toolbar - {4059f9db-3179-4a93-8ad2-96bcef8d9f13} - C:\Programme\a-scripting.de.ms\tba-sc.dll
O2 - BHO: a-scripting.de.ms Toolbar - {4059f9db-3179-4a93-8ad2-96bcef8d9f13} - C:\Programme\a-scripting.de.ms\tba-sc.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Programme\Java\jre1.6.0_07\bin\ssv.dll
O2 - BHO: TBSB01961 - {E31F114C-0FE9-4CA4-B2A1-3ED073345E98} - C:\PROGRA~1\SOFTOM~1\TOOLBA~1\installed\{6226BA26-C017-4007-928C-DE9715C6FA67}\0\toolbar.dll
O2 - BHO: XBTBPos00 - {FCBCCB87-9224-4B8D-B117-F56D924BEB18} - C:\PROGRA~1\SOFTOM~1\TOOLBA~1\bin\tbcore3U.dll (file missing)
O3 - Toolbar: ICQToolBar - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Programme\ICQ6Toolbar\ICQToolBar.dll
O3 - Toolbar: a-scripting.de.ms Toolbar - {4059f9db-3179-4a93-8ad2-96bcef8d9f13} - C:\Programme\a-scripting.de.ms\tba-sc.dll
O3 - Toolbar: A-Scripting Toolbar v1 - {6226BA26-C017-4007-928C-DE9715C6FA67} - C:\PROGRA~1\SOFTOM~1\TOOLBA~1\installed\{6226BA26-C017-4007-928C-DE9715C6FA67}\0\toolbar.dll
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Programme\Java\jre1.6.0_07\bin\jusched.exe"
O4 - HKLM\..\Run: [SMSERIAL] sm56hlpr.exe
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [VTTimer] VTTimer.exe
O4 - HKLM\..\Run: [VTTrayp] VTtrayp.exe
O4 - HKLM\..\Run: [avgnt] "C:\Programme\Avira\AntiVir PersonalEdition Classic\avgnt.exe" /min
O4 - HKLM\..\Run: [LogitechVideoRepair] C:\Programme\Logitech\Video\ISStart.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Programme\QuickTime\qttask.exe" -atboottime
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [MsnMsgr] "C:\Programme\MSN Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [KeePass Password Safe] "C:\Programme\KeePass Password Safe\KeePass.exe"
O4 - HKCU\..\Run: [MSMSGS] "C:\Programme\Messenger\msmsgs.exe" /background
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOKALER DIENST')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETZWERKDIENST')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Programme\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Konsole - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Programme\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Programme\ICQ6\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Programme\ICQ6\ICQ.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programme\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programme\Messenger\msmsgs.exe
O23 - Service: Avira AntiVir Personal – Free Antivirus Planer (AntiVirScheduler) - Avira GmbH - C:\Programme\Avira\AntiVir PersonalEdition Classic\sched.exe
O23 - Service: Avira AntiVir Personal – Free Antivirus Guard (AntiVirService) - Avira GmbH - C:\Programme\Avira\AntiVir PersonalEdition Classic\avguard.exe
O23 - Service: ICQ Service - Unknown owner - C:\Programme\ICQ6Toolbar\ICQ Service.exe
O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe

--
End of file - 5649 bytes
Seitenanfang Seitenende
24.08.2008, 09:38
Argus
Ehrenmitglied
Avatar Argus

Beiträge: 6028
#2 Entferne
C:\Programme\Enigma Software Group
C:\Dokumente und Einstellungen\Drilon\Eigene Dateien\My Downloads\ComboFix.exe
C:\Qoobox
C:\combofix.txt
C:\combofix
Papierkorb leeren

OTMoveIt.exe
Download OTMoveIt2 zum Desktop
Starte OTMoveIt und klicke den CleanUp! button
Begin cleanup process? klicke: Yes. - "Do you want to reboot?" klicke Yes

Schliesse alle Fenster und starte Hijack This
Klicke: Do a Systemscan only
Setze ein Häckchen in das Kästchen vor den genannten Eintrag bei

Zitat

R3 - URLSearchHook: (no name) - - (no file)
O2 - BHO: TBSB01961 - {E31F114C-0FE9-4CA4-B2A1-3ED073345E98} - C:\PROGRA~1\SOFTOM~1\TOOLBA~1\installed\{6226BA26-C017-4007-928C-DE9715C6FA67}\0\toolbar.dll
O2 - BHO: XBTBPos00 - {FCBCCB87-9224-4B8D-B117-F56D924BEB18} - C:\PROGRA~1\SOFTOM~1\TOOLBA~1\bin\tbcore3U.dll (file missing)
klicke: Fix checked
Dein Internet Explorer muss geschlossen wenn Du Fix Checked klickst

a2Free (by emsisoft)
Download a2Free
Scanne und am Ende hake die gefundene sachen an und entferne sie
Poste das log ( A2scan-datum-xxxxxxxxx.txt .) hier in den Thread

Malwarebytes Anti-Malware fuer Windows 2000,XP und Vista
Download MBAM
Doppelklick mbam-setup und waehle Deutsch ,das Program wird jetzt ge-updatet
Klicke “Einstellungen“ haacke an “ Beende Inter Explorer während des Löschvorgangs “
Waehle bei Reiter “Scanner”> "Quick Scan durchfuehren" .
Waehle alle Laufwerke>Scan laufen lassen
Wenn am Ende infizierungen gefunden werden,anhaacken und entfernen lassen
Unter Scanberichte stet das log (mbam-log-XX-XX-XXXX.txt)
Poste dessen inhalt hier ins Forum
Note:
Wenn MBAM Schwierigkeiten damit hat Daten zu entfernen wird es gemeldet und klicke OK
Danach wird gefragt den Rechner neu zu starten,lass es zu
Nehme als Update Spiegel >>It-mate.co.uk
Malwarebytes Anti-Malware kann man nachher behalten !
__________
MfG Argus
Seitenanfang Seitenende
24.08.2008, 14:58
juventiner
Member

Themenstarter

Beiträge: 47
#3 MalwareBytes:

Zitat

Malwarebytes' Anti-Malware 1.25
Datenbank Version: 1080
Windows 5.1.2600 Service Pack 3

12:38:57 24.08.2008
mbam-log-08-24-2008 (12-38-57).txt

Scan-Methode: Quick-Scan
Durchsuchte Objekte: 48562
Laufzeit: 8 minute(s), 26 second(s)

Infizierte Speicherprozesse: 0
Infizierte Speichermodule: 0
Infizierte Registrierungsschlüssel: 0
Infizierte Registrierungswerte: 0
Infizierte Dateiobjekte der Registrierung: 0
Infizierte Verzeichnisse: 0
Infizierte Dateien: 0

Infizierte Speicherprozesse:
(Keine bösartigen Objekte gefunden)

Infizierte Speichermodule:
(Keine bösartigen Objekte gefunden)

Infizierte Registrierungsschlüssel:
(Keine bösartigen Objekte gefunden)

Infizierte Registrierungswerte:
(Keine bösartigen Objekte gefunden)

Infizierte Dateiobjekte der Registrierung:
(Keine bösartigen Objekte gefunden)

Infizierte Verzeichnisse:
(Keine bösartigen Objekte gefunden)

Infizierte Dateien:
(Keine bösartigen Objekte gefunden)
a2scan:

Zitat

a-squared Free - Version 3.5
Letztes Update: 24.08.2008 10:49:01

Scan Einstellungen:

Objekte: Speicher, Traces, Cookies, C:\
Archiv Scan: An
Heuristik: An
ADS Scan: An

Scan Beginn: 24.08.2008 12:40:27

C:\Dokumente und Einstellungen\Drilon\Eigene Dateien\Meine empfangenen Dateien\Rpg-Maker 2000.rar/107_110cDE.exe gefunden: Riskware.Monitor.Win32.ScreenSpy.f
C:\Dokumente und Einstellungen\Drilon\Eigene Dateien\Meine empfangenen Dateien\Rpg-Maker 2000.rar/110cDE_110cDEEX.exe gefunden: Riskware.Monitor.Win32.ScreenSpy.f
C:\Dokumente und Einstellungen\Drilon\Eigene Dateien\Meine empfangenen Dateien\Rpg-Maker 2000.rar/MP3Update.exe gefunden: Riskware.Monitor.Win32.ScreenSpy.f
C:\Dokumente und Einstellungen\Drilon\Eigene Dateien\My Downloads\ebook2004.zip/deutschpatch_v110c.zip/107_110cDE.exe gefunden: Riskware.Monitor.Win32.ScreenSpy.f
C:\Dokumente und Einstellungen\Drilon\Eigene Dateien\My Downloads\Rpg-Maker 2000.rar/107_110cDE.exe gefunden: Riskware.Monitor.Win32.ScreenSpy.f
C:\Dokumente und Einstellungen\Drilon\Eigene Dateien\My Downloads\Rpg-Maker 2000.rar/110cDE_110cDEEX.exe gefunden: Riskware.Monitor.Win32.ScreenSpy.f
C:\Dokumente und Einstellungen\Drilon\Eigene Dateien\My Downloads\Rpg-Maker 2000.rar/MP3Update.exe gefunden: Riskware.Monitor.Win32.ScreenSpy.f
C:\Dokumente und Einstellungen\Drilon\Eigene Dateien\Rm2k Ebook\Forgotten E-Book 2.00.4\downloads\files\zips\deutschpatch_v110c.zip/107_110cDE.exe gefunden: Riskware.Monitor.Win32.ScreenSpy.f
C:\Programme\Image-Line\FL Studio 8\Plugins\Fruity\Generators\Toxic Biohazard\Toxic Biohazard.dll gefunden: Backdoor.Win32.Hupigon.cmmc
C:\Programme\Image-Line\Toxic Biohazard\Toxic Biohazard.dll gefunden: Backdoor.Win32.Hupigon.cmry

Gescannt

Dateien: 221915
Traces: 423739
Cookies: 167
Prozesse: 34

Gefunden

Dateien: 10
Traces: 0
Cookies: 0
Prozesse: 0
Registry Keys: 0

Scan Ende: 24.08.2008 14:07:54
Scan Zeit: 1:27:27

C:\Programme\Image-Line\Toxic Biohazard\Toxic Biohazard.dll Gelöscht Backdoor.Win32.Hupigon.cmry
C:\Programme\Image-Line\FL Studio 8\Plugins\Fruity\Generators\Toxic Biohazard\Toxic Biohazard.dll Gelöscht Backdoor.Win32.Hupigon.cmmc
C:\Dokumente und Einstellungen\Drilon\Eigene Dateien\Meine empfangenen Dateien\Rpg-Maker 2000.rar/107_110cDE.exe Gelöscht Riskware.Monitor.Win32.ScreenSpy.f
C:\Dokumente und Einstellungen\Drilon\Eigene Dateien\Meine empfangenen Dateien\Rpg-Maker 2000.rar/110cDE_110cDEEX.exe Gelöscht Riskware.Monitor.Win32.ScreenSpy.f
C:\Dokumente und Einstellungen\Drilon\Eigene Dateien\Meine empfangenen Dateien\Rpg-Maker 2000.rar/MP3Update.exe Gelöscht Riskware.Monitor.Win32.ScreenSpy.f
C:\Dokumente und Einstellungen\Drilon\Eigene Dateien\My Downloads\ebook2004.zip/deutschpatch_v110c.zip/107_110cDE.exe Gelöscht Riskware.Monitor.Win32.ScreenSpy.f
C:\Dokumente und Einstellungen\Drilon\Eigene Dateien\My Downloads\Rpg-Maker 2000.rar/107_110cDE.exe Gelöscht Riskware.Monitor.Win32.ScreenSpy.f
C:\Dokumente und Einstellungen\Drilon\Eigene Dateien\My Downloads\Rpg-Maker 2000.rar/110cDE_110cDEEX.exe Gelöscht Riskware.Monitor.Win32.ScreenSpy.f
C:\Dokumente und Einstellungen\Drilon\Eigene Dateien\My Downloads\Rpg-Maker 2000.rar/MP3Update.exe Gelöscht Riskware.Monitor.Win32.ScreenSpy.f
C:\Dokumente und Einstellungen\Drilon\Eigene Dateien\Rm2k Ebook\Forgotten E-Book 2.00.4\downloads\files\zips\deutschpatch_v110c.zip/107_110cDE.exe Gelöscht Riskware.Monitor.Win32.ScreenSpy.f

Gelöscht

Dateien: 10
Traces: 0
Cookies: 0
Seitenanfang Seitenende
26.08.2008, 22:43
juventiner
Member

Themenstarter

Beiträge: 47
#4 Ich bräuchte immer noch hilfe, danke :x
Seitenanfang Seitenende
Um auf dieses Thema zu ANTWORTEN
bitte erst » hier kostenlos registrieren!!

Folgende Themen könnten Dich auch interessieren:
Seite(n): 1