Google verweist auf falsche Seiten |
||
|---|---|---|
| #0
| ||
|
24.04.2009, 15:53
Member
Beiträge: 14 |
||
 
|
|
|
|
24.04.2009, 16:03
Member
Beiträge: 3716 |
||
|
|
|
|
|
24.04.2009, 16:43
Member
Themenstarter Beiträge: 14 |
#3
Ok beschrieben habe ich es ja oben bereits ist kommen die einzelnen logfiles:
2. Also die Tmporären Dateien habe ich bereinigt 3. mache einen Scan mit Malwarebytes - ist auch erledigt Hier ist der Reinigungslog: Malwarebytes' Anti-Malware 1.36 Datenbank Version: 2036 Windows 5.1.2600 Service Pack 3 24.04.2009 16:17:33 mbam-log-2009-04-24 (16-17-33).txt Scan-Methode: Quick-Scan Durchsuchte Objekte: 77595 Laufzeit: 1 minute(s), 24 second(s) Infizierte Speicherprozesse: 0 Infizierte Speichermodule: 0 Infizierte Registrierungsschlüssel: 4 Infizierte Registrierungswerte: 2 Infizierte Dateiobjekte der Registrierung: 2 Infizierte Verzeichnisse: 1 Infizierte Dateien: 0 Infizierte Speicherprozesse: (Keine bösartigen Objekte gefunden) Infizierte Speichermodule: (Keine bösartigen Objekte gefunden) Infizierte Registrierungsschlüssel: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\dslcnnct (Trojan.Vundo) -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\MS Track System (Trojan.Vundo) -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\rdfa (Trojan.Vundo) -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SOFTWARE\seneka (Rootkit.Trace) -> Quarantined and deleted successfully. Infizierte Registrierungswerte: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SharedTaskScheduler\{ec43e3fd-5c60-46a6-97d7-e0b85dbdd6c4} (Trojan.BHO) -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad\ssodl (Trojan.BHO) -> Quarantined and deleted successfully. Infizierte Dateiobjekte der Registrierung: HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Start_ShowMyComputer (Hijack.StartMenu) -> Bad: (0) Good: (1) -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\UpdatesDisableNotify (Disabled.SecurityCenter) -> Bad: (1) Good: (0) -> Quarantined and deleted successfully. Infizierte Verzeichnisse: C:\Dokumente und Einstellungen\seynems\Anwendungsdaten\nidle (Trojan.Agent) -> Quarantined and deleted successfully. Infizierte Dateien: (Keine bösartigen Objekte gefunden) 4.combofix ComboFix 09-04-24.01 - seynems 24.04.2009 16:22.1 - NTFSx86 Microsoft Windows XP Professional 5.1.2600.3.1252.49.1031.18.3582.3075 [GMT 2:00] ausgeführt von:: c:\dokumente und einstellungen\seynems\Desktop\ComboFix.exe AV: AntiVir Desktop *On-access scanning enabled* (Updated) * Neuer Wiederherstellungspunkt wurde erstellt Achtung - Auf diesem PC ist keine Wiederherstellungskonsole installiert !! . (((((((((((((((((((((((((((((((((((( Weitere Löschungen )))))))))))))))))))))))))))))))))))))))))))))))) . c:\dokumente und einstellungen\seynems\Lokale Einstellungen\Temporary Internet Files\fbk.sts . ((((((((((((((((((((((( Dateien erstellt von 2009-05-24 bis 2009-4-24 )))))))))))))))))))))))))))))) . 2009-04-24 14:09 . 2009-04-24 14:09 -------- d-----w c:\dokumente und einstellungen\seynems\Anwendungsdaten\Malwarebytes 2009-04-24 14:09 . 2009-04-06 13:32 15504 ----a-w c:\windows\system32\drivers\mbam.sys 2009-04-24 14:09 . 2009-04-06 13:32 38496 ----a-w c:\windows\system32\drivers\mbamswissarmy.sys 2009-04-24 14:09 . 2009-04-24 14:09 -------- d-----w c:\programme\Malwarebytes' Anti-Malware 2009-04-24 14:09 . 2009-04-24 14:09 -------- d-----w c:\dokumente und einstellungen\All Users\Anwendungsdaten\Malwarebytes 2009-04-24 13:25 . 2009-04-24 13:28 -------- d-----w c:\programme\Spybot - Search & Destroy 2009-04-24 12:50 . 2009-04-24 12:50 -------- d-----w c:\dokumente und einstellungen\All Users\Anwendungsdaten\ATI 2009-04-24 12:47 . 2009-02-25 13:15 593920 ------w c:\windows\system32\ati2sgag.exe 2009-04-24 12:41 . 2009-04-24 12:41 -------- d-----w c:\dokumente und einstellungen\seynems\Anwendungsdaten\Uniblue 2009-04-23 21:34 . 2009-04-23 21:34 -------- d-----w c:\programme\Enigma Software Group 2009-04-23 20:20 . 2009-04-23 22:06 -------- d-----w c:\dokumente und einstellungen\seynems\Anwendungsdaten\Lavasoft 2009-04-23 14:44 . 2009-04-23 14:44 -------- d-----w c:\windows\system32\GroupPolicy 2009-04-23 14:44 . 2009-04-23 22:06 -------- d-----w c:\programme\Hitman Pro 2009-04-23 14:37 . 2009-04-23 14:37 -------- d-----w c:\programme\Trend Micro 2009-04-19 12:51 . 2009-04-19 12:51 54156 ---ha-w c:\windows\QTFont.qfn 2009-04-19 12:51 . 2009-04-19 12:51 1409 ----a-w c:\windows\QTFont.for 2009-04-18 23:53 . 2009-04-18 23:54 -------- d-----w c:\dokumente und einstellungen\seynems\Anwendungsdaten\vlc 2009-04-16 16:15 . 2009-04-19 16:06 -------- d-----w c:\dokumente und einstellungen\All Users\Anwendungsdaten\PIXELA 2009-04-16 16:14 . 2009-04-16 16:14 -------- d-----w c:\programme\PIXELA 2009-04-15 21:23 . 2001-03-08 15:10 3816 ----a-w c:\windows\system32\drivers\fspio.sys 2009-04-15 21:13 . 2009-04-18 23:53 -------- d-----w c:\programme\SpeedFan 2009-04-15 21:13 . 2009-04-15 21:28 45 ----a-w c:\windows\system32\initdebug.nfo 2009-04-15 16:11 . 2009-04-15 16:11 2523 ----a-w c:\windows\system32\NMMediaServer.cfg 2009-04-15 16:10 . 2009-04-15 16:10 -------- d-----w c:\dokumente und einstellungen\seynems\Lokale Einstellungen\Anwendungsdaten\Nero 2009-04-12 23:00 . 2009-04-12 23:00 -------- d-----w c:\programme\Lavalys 2009-04-10 21:17 . 2009-04-10 21:17 472576 ----a-w c:\windows\Radeon Omega Drivers v4.8.442 Uninstall.exe 2009-04-10 14:07 . 2009-04-10 14:07 -------- d-----w c:\programme\SystemRequirementsLab 2009-04-10 14:07 . 2009-04-10 14:07 -------- d-----w c:\dokumente und einstellungen\seynems\SystemRequirementsLab 2009-04-10 10:53 . 2009-04-10 14:22 -------- d-----w c:\programme\RivaTuner v2.24 2009-04-10 10:02 . 2009-04-11 19:24 4096 ----a-w c:\windows\system32\crash 2009-04-09 17:18 . 2009-04-09 17:18 -------- d-----w C:\VundoFix Backups 2009-03-27 20:19 . 2009-04-21 21:04 15688 ----a-w c:\windows\system32\lsdelete.exe 2009-03-27 17:41 . 2009-03-09 19:06 64160 ----a-w c:\windows\system32\drivers\Lbd.sys 2009-03-27 17:39 . 2009-03-27 17:39 -------- dc-h--w c:\dokumente und einstellungen\All Users\Anwendungsdaten\{7972B2E5-3E09-4E5E-81B7-FE5819D6772F} 2009-03-27 17:10 . 2009-02-13 10:31 55640 ----a-w c:\windows\system32\drivers\avgntflt.sys 2009-03-27 17:10 . 2009-03-27 17:10 -------- d-----w c:\programme\Avira 2009-03-27 15:52 . 2009-03-27 15:52 -------- d-----w C:\MAGIX 2009-03-27 15:52 . 2002-09-20 23:33 1089536 ----a-w c:\windows\system32\ROBOEX32.DLL 2009-03-27 15:52 . 1999-01-28 13:44 49152 ----a-w c:\windows\system32\INETWH32.dll 2009-03-27 15:52 . 1998-10-15 16:28 85504 ----a-w c:\windows\system32\HtmlWH.dll 2009-03-26 16:24 . 2009-04-24 14:19 -------- d-----w c:\dokumente und einstellungen\All Users\Anwendungsdaten\Spybot - Search & Destroy . (((((((((((((((((((((((((((((((((((( Find3M Bericht )))))))))))))))))))))))))))))))))))))))))))))))))))))) . 2009-04-24 14:26 . 2009-03-26 16:03 22651 ----a-w C:\aaw7boot.log 2009-04-24 13:08 . 2007-12-24 22:24 189072 ----a-w c:\windows\system32\PnkBstrB.exe 2009-04-24 12:55 . 2007-12-24 13:49 -------- d-----w c:\programme\Mozilla Thunderbird 2009-04-24 12:53 . 2007-12-24 22:25 138920 ----a-w c:\windows\system32\drivers\PnkBstrK.sys 2009-04-24 12:48 . 2007-12-23 19:26 -------- d-----w c:\programme\ATI Technologies 2009-04-23 22:21 . 2008-01-13 00:42 -------- d-----w c:\programme\Java 2009-04-23 22:06 . 2008-01-12 22:10 -------- d-----w c:\programme\Lavasoft 2009-04-23 22:05 . 2009-04-09 17:18 429 ----a-w C:\VundoFix.txt 2009-04-23 21:29 . 2008-01-01 19:07 -------- d---a-w c:\dokumente und einstellungen\All Users\Anwendungsdaten\TEMP 2009-04-21 21:11 . 2007-12-24 17:09 -------- d-----w c:\programme\TuneUp Utilities 2008 2009-04-20 20:59 . 2007-12-24 13:15 1079808 ----a-w c:\windows\system32\AutoPartNt.exe 2009-04-16 16:14 . 2007-12-23 19:18 -------- d--h--w c:\programme\InstallShield Installation Information 2009-04-16 15:16 . 2009-01-04 11:38 -------- d-----w c:\dokumente und einstellungen\seynems\Anwendungsdaten\CameraWindowDC 2009-04-16 15:10 . 2009-01-04 11:35 -------- d-----w c:\dokumente und einstellungen\seynems\Anwendungsdaten\ZoomBrowser EX 2009-04-16 15:05 . 2009-01-04 11:19 -------- d-----w c:\programme\Canon 2009-03-31 05:30 . 2001-08-23 12:00 83976 ----a-w c:\windows\system32\perfc007.dat 2009-03-31 05:30 . 2001-08-23 12:00 456616 ----a-w c:\windows\system32\perfh007.dat 2009-03-29 01:08 . 2009-01-04 11:38 -------- d-----w c:\dokumente und einstellungen\All Users\Anwendungsdaten\PhotoStitch 2009-03-27 17:39 . 2007-12-24 17:09 -------- d-----w c:\programme\Gemeinsame Dateien\Wise Installation Wizard 2009-03-27 17:10 . 2007-12-23 20:27 -------- d-----w c:\dokumente und einstellungen\All Users\Anwendungsdaten\Avira 2009-03-26 19:53 . 2007-12-24 23:38 -------- d-----w c:\programme\ICQ6 2009-03-26 16:45 . 2008-04-19 11:27 361728 ----a-w c:\windows\system32\TuneUpDefragService.exe 2009-03-23 22:07 . 2009-01-02 20:48 -------- d-----w c:\programme\mkv2vob 2009-03-16 21:26 . 2009-03-06 23:00 -------- d-----w c:\dokumente und einstellungen\seynems\Anwendungsdaten\TeamViewer 2009-03-16 21:16 . 2009-03-16 21:16 -------- d-----w c:\programme\TeamViewer 2009-03-08 13:25 . 2008-01-11 18:29 -------- d-----w c:\dokumente und einstellungen\seynems\Anwendungsdaten\Nokia Multimedia Player 2009-03-08 12:16 . 2009-03-08 12:16 0 ---ha-w c:\windows\system32\drivers\Msft_Kernel_ccdcmb_01007.Wdf 2009-03-08 12:16 . 2009-03-08 12:16 0 ---ha-w c:\windows\system32\drivers\MsftWdf_Kernel_01007_Coinstaller_Critical.Wdf 2009-03-08 12:14 . 2009-03-08 12:14 -------- d-----w c:\dokumente und einstellungen\All Users\Anwendungsdaten\Nokia 2009-03-08 12:12 . 2008-01-11 18:02 -------- d-----w c:\dokumente und einstellungen\All Users\Anwendungsdaten\Installations 2009-03-08 12:12 . 2008-01-11 18:04 -------- d-----w c:\programme\Nokia 2009-03-08 12:11 . 2008-01-11 18:05 -------- d-----w c:\programme\Gemeinsame Dateien\Nokia 2009-03-06 23:58 . 2009-03-06 23:58 -------- d-----w c:\dokumente und einstellungen\seynems\Anwendungsdaten\Ventrilo 2009-03-06 23:58 . 2009-03-06 23:58 -------- d-----w c:\programme\Ventrilo 2009-03-02 21:47 . 2008-01-29 12:17 -------- d-----w c:\dokumente und einstellungen\seynems\Anwendungsdaten\BOM 2009-03-01 22:08 . 2008-01-29 12:15 -------- d-----w c:\programme\Biet-O-Matic 2009-03-01 17:34 . 2007-12-24 22:24 75064 ----a-w c:\windows\system32\PnkBstrA.exe 2009-02-28 22:03 . 2007-12-23 19:34 86136 ----a-w c:\dokumente und einstellungen\seynems\Lokale Einstellungen\Anwendungsdaten\GDIPFONTCACHEV1.DAT 2009-02-28 16:18 . 2008-04-05 23:49 -------- d-----w c:\dokumente und einstellungen\seynems\Anwendungsdaten\MAGIX 2009-02-28 16:16 . 2008-01-17 15:31 -------- d-----w c:\programme\MAGIX 2009-02-28 16:16 . 2008-04-05 23:16 -------- d-----w c:\dokumente und einstellungen\All Users\Anwendungsdaten\MAGIX 2009-02-28 16:16 . 2008-04-05 23:31 -------- d-----w c:\programme\Gemeinsame Dateien\MAGIX Shared 2009-02-28 16:15 . 2009-02-28 16:15 -------- d-----w c:\programme\Gemeinsame Dateien\xara 2009-02-26 10:54 . 2009-02-26 10:54 -------- d-----w c:\programme\Intelore 2009-02-25 22:58 . 2007-12-05 05:26 3565568 ----a-w c:\windows\system32\drivers\ati2mtag.sys 2009-02-25 21:42 . 2009-02-25 21:42 442368 ----a-w c:\windows\system32\ATIDEMGX.dll 2009-02-25 21:41 . 2007-12-05 03:04 325120 ----a-w c:\windows\system32\ati2dvag.dll 2009-02-25 21:30 . 2009-02-25 21:30 11841536 ----a-w c:\windows\system32\atioglxx.dll 2009-02-25 21:30 . 2009-02-25 21:30 204800 ----a-w c:\windows\system32\atipdlxx.dll 2009-02-25 21:29 . 2009-02-25 21:29 155648 ----a-w c:\windows\system32\Oemdspif.dll 2009-02-25 21:29 . 2009-02-25 21:29 26112 ----a-w c:\windows\system32\Ati2mdxx.exe 2009-02-25 21:29 . 2009-02-25 21:29 43520 ----a-w c:\windows\system32\ati2edxx.dll 2009-02-25 21:29 . 2009-02-25 21:29 155648 ----a-w c:\windows\system32\ati2evxx.dll 2009-02-25 21:27 . 2009-02-25 21:27 602112 ----a-w c:\windows\system32\ati2evxx.exe 2009-02-25 21:26 . 2009-02-25 21:26 53248 ----a-w c:\windows\system32\ATIDDC.DLL 2009-02-25 21:16 . 2007-12-05 02:44 3817984 ----a-w c:\windows\system32\ati3duag.dll 2009-02-25 21:09 . 2009-02-25 21:09 307200 ----a-w c:\windows\system32\atiiiexx.dll 2009-02-25 20:59 . 2007-12-05 02:33 2670080 ----a-w c:\windows\system32\ativvaxx.dll 2009-02-25 20:58 . 2009-02-25 20:58 887724 ----a-w c:\windows\system32\ativva6x.dat 2009-02-25 20:58 . 2009-02-25 20:58 3107788 ----a-w c:\windows\system32\ativva5x.dat 2009-02-25 20:44 . 2009-02-25 20:44 49664 ----a-w c:\windows\system32\amdpcom32.dll 2009-02-25 20:40 . 2009-02-25 20:40 475136 ----a-w c:\windows\system32\atikvmag.dll 2009-02-25 20:38 . 2009-02-25 20:38 126976 ----a-w c:\windows\system32\atiadlxx.dll 2009-02-25 20:38 . 2009-02-25 20:38 17408 ----a-w c:\windows\system32\atitvo32.dll 2009-02-25 20:37 . 2009-02-25 20:37 53248 ----a-w c:\windows\system32\drivers\ati2erec.dll 2009-02-25 20:35 . 2009-02-25 20:35 290816 ----a-w c:\windows\system32\atiok3x2.dll 2009-02-25 20:32 . 2009-02-25 20:32 45056 ----a-w c:\windows\system32\aticalrt.dll 2009-02-25 20:32 . 2009-02-25 20:32 45056 ----a-w c:\windows\system32\aticalcl.dll 2009-02-25 20:32 . 2007-12-05 02:11 626688 ----a-w c:\windows\system32\ati2cqag.dll 2009-02-25 20:30 . 2009-02-25 20:30 3227648 ----a-w c:\windows\system32\aticaldd.dll 2009-02-18 16:31 . 2009-02-07 16:38 325972 ----a-w c:\dokumente und einstellungen\seynems\Anwendungsdaten\mdbu.bin 2009-02-09 14:04 . 2004-08-03 23:46 1846912 ----a-w c:\windows\system32\win32k.sys 2009-02-06 17:52 . 2009-02-06 17:52 49504 ----a-w c:\windows\system32\sirenacm.dll 2009-01-26 17:55 . 2009-01-26 17:55 182995 ----a-w c:\windows\system32\atiicdxx.dat 2008-02-09 11:27 . 2007-12-24 22:25 22328 ----a-w c:\dokumente und einstellungen\seynems\Anwendungsdaten\PnkBstrK.sys 2008-01-01 19:03 . 2008-01-01 19:03 65984 ----a-w c:\dokumente und einstellungen\LocalService\Lokale Einstellungen\Anwendungsdaten\FontCache3.0.0.0.dat 2007-12-27 21:18 . 2007-12-27 21:18 140 ----a-w c:\dokumente und einstellungen\seynems\Lokale Einstellungen\Anwendungsdaten\fusioncache.dat 2008-12-23 12:30 . 2008-12-23 12:30 32768 --sha-w c:\windows\system32\config\systemprofile\Lokale Einstellungen\Verlauf\History.IE5\MSHist012008122320081224\index.dat . (((((((((((((((((((((((((((( Autostartpunkte der Registrierung )))))))))))))))))))))))))))))))))))))))) . . *Hinweis* leere Einträge & legitime Standardeinträge werden nicht angezeigt. REGEDIT4 [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "DAEMON Tools Lite"="c:\programme\DAEMON Tools Lite\daemon.exe" [2008-12-29 687560] "CTFMON.EXE"="c:\windows\system32\ctfmon.exe" [2008-04-14 15360] "SpybotSD TeaTimer"="c:\programme\Spybot - Search & Destroy\TeaTimer.exe" [2009-03-05 2260480] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "avgnt"="c:\programme\Avira\AntiVir Desktop\avgnt.exe" [2009-03-02 209153] "StartCCC"="c:\programme\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2009-02-25 61440] "RTHDCPL"="RTHDCPL.EXE" - c:\windows\RTHDCPL.EXE [2007-10-16 16855552] [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run] "CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360] "Nokia.PCSync"="c:\programme\Nokia\Nokia PC Suite 6\PcSync2.exe" [2007-11-07 1294336] c:\dokumente und einstellungen\All Users\Startmen\Programme\Autostart\ Launchy.lnk - c:\programme\Launchy\Launchy.exe [2009-2-22 286720] [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\LBTWlgn] 2008-05-02 01:42 72208 ----a-w c:\programme\gemeinsame dateien\logishrd\bluetooth\LBTWLgn.dll [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Lavasoft Ad-Aware Service] @="Service" [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys] @="Driver" [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WdfLoadGroup] @="" [HKLM\~\startupfolder\C:^Dokumente und Einstellungen^All Users^Startmenü^Programme^Autostart^Adobe Reader - Schnellstart.lnk] path=c:\dokumente und einstellungen\All Users\Startmenü\Programme\Autostart\Adobe Reader - Schnellstart.lnk backup=c:\windows\pss\Adobe Reader - Schnellstart.lnkCommon Startup [HKLM\~\startupfolder\C:^Dokumente und Einstellungen^All Users^Startmenü^Programme^Autostart^Adobe Reader Synchronizer.lnk] path=c:\dokumente und einstellungen\All Users\Startmenü\Programme\Autostart\Adobe Reader Synchronizer.lnk backup=c:\windows\pss\Adobe Reader Synchronizer.lnkCommon Startup [HKLM\~\startupfolder\C:^Dokumente und Einstellungen^All Users^Startmenü^Programme^Autostart^HP Digital Imaging Monitor.lnk] path=c:\dokumente und einstellungen\All Users\Startmenü\Programme\Autostart\HP Digital Imaging Monitor.lnk backup=c:\windows\pss\HP Digital Imaging Monitor.lnkCommon Startup [HKLM\~\startupfolder\C:^Dokumente und Einstellungen^All Users^Startmenü^Programme^Autostart^HP Image Zone Schnellstart.lnk] path=c:\dokumente und einstellungen\All Users\Startmenü\Programme\Autostart\HP Image Zone Schnellstart.lnk backup=c:\windows\pss\HP Image Zone Schnellstart.lnkCommon Startup [HKLM\~\startupfolder\C:^Dokumente und Einstellungen^All Users^Startmenü^Programme^Autostart^ImageMixer 3 SE Camera Monitor.lnk] path=c:\dokumente und einstellungen\All Users\Startmenü\Programme\Autostart\ImageMixer 3 SE Camera Monitor.lnk backup=c:\windows\pss\ImageMixer 3 SE Camera Monitor.lnkCommon Startup [HKLM\~\startupfolder\C:^Dokumente und Einstellungen^All Users^Startmenü^Programme^Autostart^Logitech SetPoint.lnk] path=c:\dokumente und einstellungen\All Users\Startmenü\Programme\Autostart\Logitech SetPoint.lnk backup=c:\windows\pss\Logitech SetPoint.lnkCommon Startup [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run-] "PC Suite Tray"="c:\programme\Nokia\Nokia PC Suite 6\PCSuite.exe" -onlytray [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List] "%windir%\\system32\\sessmgr.exe"= "c:\\Programme\\BitComet\\BitComet.exe"= "c:\\Programme\\KONAMI\\Pro Evolution Soccer 6\\pes6.exe"= "c:\\WINDOWS\\system32\\PnkBstrA.exe"= "c:\\WINDOWS\\system32\\PnkBstrB.exe"= "c:\\Programme\\ICQ6\\ICQ.exe"= "c:\\Programme\\Hamachi\\hamachi.exe"= "c:\\WINDOWS\\system32\\dpvsetup.exe"= "c:\\Programme\\Microsoft Office\\Office12\\OUTLOOK.EXE"= "c:\\Programme\\Microsoft Office\\Office12\\ONENOTE.EXE"= "c:\\Programme\\totalcmd\\TOTALCMD.EXE"= "c:\\Programme\\Activision\\Call of Duty 4 - Modern Warfare\\iw3mpHAMACHI 1.5.exe"= "c:\\Programme\\Bonjour\\mDNSResponder.exe"= "c:\\Programme\\devolo\\easyshare\\easyshare.exe"= "c:\\Programme\\Mozilla Firefox\\firefox.exe"= "c:\\Programme\\VideoLAN\\VLC\\vlc.exe"= "d:\\D-Box\\winserver dbox\\dboxwinsvr.exe"= "d:\\D-Box\\winserver dbox\\udrec.exe"= "c:\\Programme\\TVersity\\Media Server\\MediaServer.exe"= "%windir%\\Network Diagnostic\\xpnetdiag.exe"= "c:\\Programme\\Activision\\Call of Duty 4 - Modern Warfare\\iw3mp.exe"= "d:\\Download Clienten\\eMule-0.48a-Xtreme-6.1-bin(3)\\emule.exe"= "c:\\WINDOWS\\system32\\mshta.exe"= "c:\\Programme\\devolo\\informer\\devinf.exe"= "c:\\Programme\\Java\\jre6\\launch4j-tmp\\JDownloader.exe"= "c:\\Programme\\Nero\\Nero8\\Nero ShowTime\\ShowTime.exe"= "c:\\Programme\\Gemeinsame Dateien\\Adobe\\CS4ServiceManager\\CS4ServiceManager.exe"= "c:\\Programme\\Windows Live\\Messenger\\msnmsgr.exe"= "c:\\Programme\\Gemeinsame Dateien\\Nero\\Nero Web\\SetupX.exe"= "c:\\Programme\\Ventrilo\\Ventrilo.exe"= "c:\\Programme\\Nokia\\Nokia Software Updater\\nsu_ui_client.exe"= "c:\\Programme\\Gemeinsame Dateien\\Nokia\\Service Layer\\A\\nsl_host_process.exe"= "e:\\Games\\verknüpfungen\\Tools\\PSL_GS6_v1.20\\GoalServer6.exe"= "c:\\Programme\\TeamViewer\\Version4\\TeamViewer.exe"= "c:\\Programme\\ATI Technologies\\ATI.ACE\\Core-Static\\MOM.exe"= [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List] "20559:TCP"= 20559:TCP:BitComet 20559 TCP "20559:UDP"= 20559:UDP:BitComet 20559 UDP "5353:TCP"= 5353:TCP:Adobe CSI CS4 R2 FanSpeedNT Service;FanSpeedNT Service; [x] R3 FirebirdServerMAGIXInstance;Firebird Server - MAGIX Instance;c:\programme\MAGIX\Common\Database\bin\fbserver.exe [2005-11-17 1527900] R3 fspio;fspio;c:\windows\system32\drivers\fspio.sys [2001-03-08 3816] R3 Lavasoft Ad-Aware Service;Lavasoft Ad-Aware Service;c:\programme\Lavasoft\Ad-Aware\AAWService.exe [2009-04-21 953168] R3 libusb0;LibUsb-Win32 - Kernel Driver, Version 0.1.10.1;c:\windows\system32\drivers\libusb0.sys [2005-03-09 33792] R3 MagixASIODrv;MAGIX_ASIO_BoostDriver;c:\programme\MAGIX\Samplitude_SE_No9\mxasio.sys [2002-04-16 4899] R3 nmwcdnsu;Nokia USB Flashing Phone Parent;c:\windows\system32\drivers\nmwcdnsu.sys [2008-02-01 138112] R3 nmwcdnsuc;Nokia USB Flashing Generic;c:\windows\system32\drivers\nmwcdnsuc.sys [2008-02-01 8320] R3 QCEmerald;Logitech QuickCam Web;c:\windows\system32\DRIVERS\OVCE.sys [2001-08-17 31872] R3 XPADFL02;XPAD Filter Service 02;c:\windows\system32\DRIVERS\xpadfl02.sys [2006-12-24 27904] S0 Lbd;Lbd;c:\windows\system32\DRIVERS\Lbd.sys [2009-03-09 64160] S2 acedrv10;acedrv10;c:\windows\system32\drivers\acedrv10.sys [2007-07-27 330144] S2 acehlp10;acehlp10;c:\windows\system32\drivers\acehlp10.sys [2007-07-27 251680] S2 AntiVirSchedulerService;Avira AntiVir Planer;c:\programme\Avira\AntiVir Desktop\sched.exe [2009-03-05 108289] S2 NPF_devolo;NetGroup Packet Filter Driver (devolo);c:\windows\system32\drivers\npf_devolo.sys [2008-05-13 35840] S2 thdudf;TOSHIBA UDF2.5 Reader File System Driver;c:\windows\system32\DRIVERS\thdudf.sys [2006-11-11 66944] S3 CLEDX;Team H2O CLEDX service;c:\windows\system32\DRIVERS\cledx.sys [2005-05-09 33792] S3 SNXPCARD;Sunix PCI Multi I/O Card Driver;c:\windows\system32\DRIVERS\snxpcard.sys [2006-02-05 20864] S3 SNXPSERX;Sunix PCI Serial Port Driver;c:\windows\system32\DRIVERS\snxpserx.sys [2006-02-05 54528] HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs UxTuneUp [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{a5454302-d624-11dc-84a2-001d7d9b0a37}] \Shell\AutoRun\command - J:\InstallTomTomHOME.exe [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{f5bfc346-c9d9-11dc-847d-001d7d9b0a37}] \Shell\AutoRun\command - I:\InstallTomTomHOME.exe . Inhalt des "geplante Tasks" Ordners 2009-04-20 c:\windows\Tasks\Ad-Aware Update (Weekly).job - c:\programme\Lavasoft\Ad-Aware\Ad-AwareAdmin.exe [2009-03-09 21:04] . - - - - Entfernte verwaiste Registrierungseinträge - - - - BHO-{0f3ce750-843d-4fcf-b28e-b56ffa89054e} - (no file) BHO-{93226cde-abef-4edf-80b5-d2aa09cb64f3} - (no file) HKCU-Run-Uniblue RegistryBooster 2009 - c:\programme\Uniblue\RegistryBooster\RegistryBooster.exe . ------- Zusätzlicher Suchlauf ------- . uStart Page = www.daemon-search.com/startpage uInternet Settings,ProxyOverride = *.local IE: &D&ownload &with BitComet - c:\programme\BitComet\BitComet.exe/AddLink.htm IE: &D&ownload all video with BitComet - c:\programme\BitComet\BitComet.exe/AddVideo.htm IE: &D&ownload all with BitComet - c:\programme\BitComet\BitComet.exe/AddAllLink.htm IE: Nach Microsoft E&xel exportieren - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000 TCP: {5E2A5981-0522-42DD-A89C-DCB6B4595471} = 192.168.1.1 FF - ProfilePath - c:\dokumente und einstellungen\seynems\Anwendungsdaten\Mozilla\Firefox\Profiles\bu1qcczj.default\ FF - prefs.js: browser.search.defaulturl - hxxp://www.google.com/search?lr=&ie=UTF-8&oe=UTF-8&q= FF - prefs.js: browser.startup.homepage - google.de ---- FIREFOX Richtlinien ---- FF - user.js: network.http.max-persistent-connections-per-server - 4 FF - user.js: content.max.tokenizing.time - 200000 FF - user.js: content.notify.interval - 100000 FF - user.js: content.switch.threshold - 650000 FF - user.js: nglayout.initialpaint.delay - 300 . ************************************************************************** catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net Rootkit scan 2009-04-24 16:27 Windows 5.1.2600 Service Pack 3 NTFS Scanne versteckte Prozesse... Scanne versteckte Autostarteinträge... Scanne versteckte Dateien... Scan erfolgreich abgeschlossen versteckte Dateien: 0 ************************************************************************** . --------------------- Durch laufende Prozesse gestartete DLLs --------------------- - - - - - - - > 'winlogon.exe'(1000) c:\windows\system32\Ati2evxx.dll c:\programme\gemeinsame dateien\logishrd\bluetooth\LBTWlgn.dll c:\programme\gemeinsame dateien\logishrd\bluetooth\LBTServ.dll c:\programme\Gemeinsame Dateien\Adobe\Adobe Drive CS4\AdobeDriveCS4_NP.dll - - - - - - - > 'lsass.exe'(1056) c:\windows\system32\relog_ap.dll - - - - - - - > 'explorer.exe'(2680) c:\windows\system32\WPDShServiceObj.dll c:\programme\Nokia\Nokia PC Suite 6\phonebrowser.dll c:\programme\Nokia\Nokia PC Suite 6\PCSCM.dll c:\programme\Nokia\Nokia PC Suite 6\Lang\PhoneBrowser_ger.nlr c:\programme\Nokia\Nokia PC Suite 6\Resource\PhoneBrowser_Nokia.ngr c:\windows\system32\PortableDeviceTypes.dll c:\windows\system32\PortableDeviceApi.dll . ------------------------ Weitere laufende Prozesse ------------------------ . c:\windows\system32\ati2evxx.exe c:\windows\system32\ati2evxx.exe c:\programme\ATI Technologies\ATI.ACE\Core-Static\MOM.exe c:\programme\ATI Technologies\ATI.ACE\Core-Static\CCC.exe c:\programme\Gemeinsame Dateien\Acronis\Schedule2\schedul2.exe c:\programme\Avira\AntiVir Desktop\avguard.exe c:\programme\Gemeinsame Dateien\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe c:\programme\Bonjour\mDNSResponder.exe c:\programme\Nero\Nero8\Nero BackItUp\NBService.exe c:\windows\system32\IoctlSvc.exe c:\windows\system32\PnkBstrA.exe c:\programme\Gemeinsame Dateien\Acronis\Fomatik\TrueImageTryStartService.exe c:\programme\Canon\CAL\CALMAIN.exe c:\windows\system32\wscntfy.exe . ************************************************************************** . Zeit der Fertigstellung: 2009-04-24 16:29 - PC wurde neu gestartet ComboFix-quarantined-files.txt 2009-04-24 14:29 Vor Suchlauf: 17 Verzeichnis(se), 65.086.038.016 Bytes frei Nach Suchlauf: 16 Verzeichnis(se), 64.971.812.864 Bytes frei 327 5. High jack this Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 16:36:28, on 24.04.2009 Platform: Windows XP SP3 (WinNT 5.01.2600) MSIE: Internet Explorer v7.00 (7.00.6000.16791) Boot mode: Normal Running processes: C:\windows\System32\smss.exe C:\windows\system32\winlogon.exe C:\windows\system32\services.exe C:\windows\system32\lsass.exe C:\windows\system32\Ati2evxx.exe C:\windows\system32\svchost.exe C:\windows\System32\svchost.exe C:\windows\system32\svchost.exe C:\windows\system32\Ati2evxx.exe C:\windows\system32\spoolsv.exe C:\Programme\Avira\AntiVir Desktop\sched.exe C:\windows\RTHDCPL.EXE C:\Programme\Avira\AntiVir Desktop\avgnt.exe C:\Programme\DAEMON Tools Lite\daemon.exe C:\Programme\ATI Technologies\ATI.ACE\Core-Static\MOM.exe C:\windows\system32\ctfmon.exe C:\Programme\Spybot - Search & Destroy\TeaTimer.exe C:\Programme\Launchy\Launchy.exe C:\Programme\ATI Technologies\ATI.ACE\Core-Static\ccc.exe C:\Programme\Gemeinsame Dateien\Acronis\Schedule2\schedul2.exe C:\Programme\Avira\AntiVir Desktop\avguard.exe C:\Programme\Gemeinsame Dateien\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe C:\Programme\Bonjour\mDNSResponder.exe C:\Programme\Nero\Nero8\Nero BackItUp\NBService.exe C:\windows\system32\IoctlSvc.exe C:\windows\system32\PnkBstrA.exe C:\windows\system32\svchost.exe C:\Programme\Gemeinsame Dateien\Acronis\Fomatik\TrueImageTryStartService.exe C:\Programme\Canon\CAL\CALMAIN.exe C:\windows\system32\wscntfy.exe C:\windows\explorer.exe C:\Programme\Mozilla Firefox\firefox.exe C:\Dokumente und Einstellungen\seynems\Desktop\Neuer Ordner\hjt\hjt.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = www.daemon-search.com/startpage R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://go.microsoft.com/fwlink/?LinkId=74005 R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local O2 - BHO: Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Programme\Gemeinsame Dateien\Adobe\Acrobat\ActiveX\AcroIEHelper.dll O2 - BHO: BitComet ClickCapture - {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} - C:\Programme\BitComet\tools\BitCometBHO_1.1.11.30.dll O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file) O2 - BHO: Windows Live Anmelde-Hilfsprogramm - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Programme\Gemeinsame Dateien\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE O4 - HKLM\..\Run: [avgnt] "C:\Programme\Avira\AntiVir Desktop\avgnt.exe" /min O4 - HKLM\..\Run: [StartCCC] "C:\Programme\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Programme\DAEMON Tools Lite\daemon.exe" -autorun O4 - HKCU\..\Run: [CTFMON.EXE] C:\windows\system32\ctfmon.exe O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Programme\Spybot - Search & Destroy\TeaTimer.exe O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM') O4 - HKUS\S-1-5-18\..\Run: [Nokia.PCSync] "C:\Programme\Nokia\Nokia PC Suite 6\PcSync2.exe" /NoDialog (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user') O4 - Global Startup: Launchy.lnk = C:\Programme\Launchy\Launchy.exe O8 - Extra context menu item: &D&ownload &with BitComet - res://C:\Programme\BitComet\BitComet.exe/AddLink.htm O8 - Extra context menu item: &D&ownload all video with BitComet - res://C:\Programme\BitComet\BitComet.exe/AddVideo.htm O8 - Extra context menu item: &D&ownload all with BitComet - res://C:\Programme\BitComet\BitComet.exe/AddAllLink.htm O8 - Extra context menu item: Nach Microsoft E&xel exportieren - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000 O9 - Extra button: An OneNote senden - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll O9 - Extra 'Tools' menuitem: An OneNote s&enden - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll O9 - Extra button: (no name) - {2D663D1A-8670-49D9-A1A5-4C56B4E14E84} - (no file) O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL O9 - Extra button: BitComet - {D18A0B52-D63C-4ed0-AFC6-C1E3DC1AF43A} - res://C:\Programme\BitComet\tools\BitCometBHO_1.1.11.30.dll/206 (file missing) O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\windows\Network Diagnostic\xpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\windows\Network Diagnostic\xpnetdiag.exe O9 - Extra button: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Programme\ICQ6\ICQ.exe O9 - Extra 'Tools' menuitem: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Programme\ICQ6\ICQ.exe O9 - Extra button: @C:\Programme\Messenger\Msgslang.dll,-61144 - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programme\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: @C:\Programme\Messenger\Msgslang.dll,-61144 - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programme\Messenger\msmsgs.exe O16 - DPF: {22E5D91F-89E6-4405-AD9C-0AF27BA6F06B} (HidInputMonitorX Control) - file:///C:/Dokumente%20und%20Einstellungen/seynems/Desktop/components/hidinputmonitorx.ocx O16 - DPF: {4F63D44B-6274-4D60-8AB1-CAA7116B8AF3} (A9Helper.A9) - file:///C:/Dokumente%20und%20Einstellungen/seynems/Desktop/components/A9.ocx O16 - DPF: {7030CC6C-1A88-4591-BB5A-651B9F7F0C30} (WMVHDRatingCtrl Class) - file:///C:/Dokumente%20und%20Einstellungen/seynems/Desktop/components/wmvhdrating.ocx O17 - HKLM\System\CCS\Services\Tcpip\..\{5E2A5981-0522-42DD-A89C-DCB6B4595471}: NameServer = 192.168.1.1 O17 - HKLM\System\CS1\Services\Tcpip\..\{5E2A5981-0522-42DD-A89C-DCB6B4595471}: NameServer = 192.168.1.1 O17 - HKLM\System\CS2\Services\Tcpip\..\{5E2A5981-0522-42DD-A89C-DCB6B4595471}: NameServer = 192.168.1.1 O17 - HKLM\System\CS3\Services\Tcpip\..\{5E2A5981-0522-42DD-A89C-DCB6B4595471}: NameServer = 192.168.1.1 O23 - Service: Acronis Scheduler2 Service (AcrSch2Svc) - Acronis - C:\Programme\Gemeinsame Dateien\Acronis\Schedule2\schedul2.exe O23 - Service: Avira AntiVir Planer (AntiVirSchedulerService) - Avira GmbH - C:\Programme\Avira\AntiVir Desktop\sched.exe O23 - Service: Avira AntiVir Guard (AntiVirService) - Avira GmbH - C:\Programme\Avira\AntiVir Desktop\avguard.exe O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Programme\Gemeinsame Dateien\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\windows\system32\Ati2evxx.exe O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe O23 - Service: Bonjour-Dienst (Bonjour Service) - Apple Inc. - C:\Programme\Bonjour\mDNSResponder.exe O23 - Service: Canon Camera Access Library 8 (CCALib8) - Canon Inc. - C:\Programme\Canon\CAL\CALMAIN.exe O23 - Service: FanSpeedNT Service - Unknown owner - C:\Dokumente und Einstellungen\seynems\Desktop\FanSpeed1_2_0\fanspeedNT.exe (file missing) O23 - Service: Firebird Server - MAGIX Instance (FirebirdServerMAGIXInstance) - MAGIX® - C:\Programme\MAGIX\Common\Database\bin\fbserver.exe O23 - Service: FLEXnet Licensing Service - Acresso Software Inc. - C:\Programme\Gemeinsame Dateien\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Programme\Gemeinsame Dateien\InstallShield\Driver\11\Intel 32\IDriverT.exe O23 - Service: Lavasoft Ad-Aware Service - Lavasoft - C:\Programme\Lavasoft\Ad-Aware\AAWService.exe O23 - Service: Logitech Bluetooth Service (LBTServ) - Logitech, Inc. - C:\Programme\Gemeinsame Dateien\Logishrd\Bluetooth\LBTServ.exe O23 - Service: Nero BackItUp Scheduler 3 - Nero AG - C:\Programme\Nero\Nero8\Nero BackItUp\NBService.exe O23 - Service: NMIndexingService - Nero AG - C:\Programme\Gemeinsame Dateien\Nero\Lib\NMIndexingService.exe O23 - Service: PLFlash DeviceIoControl Service - Prolific Technology Inc. - C:\windows\system32\IoctlSvc.exe O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe O23 - Service: PnkBstrA - Unknown owner - C:\windows\system32\PnkBstrA.exe O23 - Service: ServiceLayer - Nokia. - C:\Programme\PC Connectivity Solution\ServiceLayer.exe O23 - Service: Acronis Try And Decide Service (TryAndDecideService) - Unknown owner - C:\Programme\Gemeinsame Dateien\Acronis\Fomatik\TrueImageTryStartService.exe O23 - Service: TuneUp Drive Defrag-Dienst (TuneUp.Defrag) - TuneUp Software GmbH - C:\windows\System32\TuneUpDefragService.exe O23 - Service: TVersityMediaServer - Unknown owner - C:\Programme\TVersity\Media Server\MediaServer.exe -- End of file - 9209 bytes 6. uninstall AcronisDisk Director Suite AcronisTrueImageHome Ad-Aware Ad-Aware Adobe Anchor Service CS4 Adobe Bridge CS4 Adobe CMaps CS4 Adobe Color - Photoshop Specific CS4 Adobe Color EU Recommended Settings CS4 Adobe Color JA Extra Settings CS4 Adobe Color NA Extra Settings CS4 Adobe Color Video Profiles CS CS4 Adobe CSI CS4 Adobe Default Language CS4 Adobe Device Central CS4 Adobe Drive CS4 Adobe ExtendScript Toolkit CS4 Adobe Extension Manager CS4 Adobe Flash Player 10 Plugin Adobe Flash Player 9 ActiveX Adobe Fonts All Adobe Linguistics CS4 Adobe Output Module Adobe PDF Library Files CS4 Adobe Photoshop CS4 Adobe Photoshop CS4 Adobe Photoshop CS4 Adobe Photoshop CS4 Support Adobe Reader 8.1.0 - Deutsch Adobe Search for Help Adobe Service Manager Extension Adobe Setup Adobe Type Support CS4 Adobe Update Manager CS4 Adobe WinSoft Linguistics Plugin Adobe XMP Panels CS4 AdobeColorCommonSetCMYK AdobeColorCommonSetRGB Apple Mobile Device Support Apple Software Update ATI - Software Uninstall Utility ATI Catalyst Control Center ATI Display Driver Audacity 1.3.4 (Unicode) Avira AntiVir Personal - Free Antivirus Biet-O-Matic v2.4.1 BitComet 0.97 Bonjour Call of Duty(R) 4 - Modern Warfare(TM) Call of Duty(R) 4 - Modern Warfare(TM) 1.4 Patch Call of Duty(R) 4 - Modern Warfare(TM) 1.5 Multiplayer Patch Call of Duty(R) 4 - Modern Warfare(TM) 1.5 Singleplayer Patch Call of Duty(R) 4 - Modern Warfare(TM) 1.6 Patch Call of Duty(R) 4 - Modern Warfare(TM) 1.7 Patch Canon Camera Access Library Canon Camera Support Core Library Canon G.726 WMP-Decoder CANON IMAGE GATEWAY Registrierungsanleitung CANON iMAGE GATEWAY Task for ZoomBrowser EX Canon Internet Library for ZoomBrowser EX Canon MovieEdit Task for ZoomBrowser EX Canon RAW Image Task for ZoomBrowser EX Canon Utilities CameraWindow Canon Utilities CameraWindow DC Canon Utilities CameraWindow DC_DV 5 for ZoomBrowser EX Canon Utilities CameraWindow DC_DV 6 for ZoomBrowser EX Canon Utilities EOS Utility Canon Utilities MyCamera Canon Utilities MyCamera DC Canon Utilities PhotoStitch Canon Utilities RemoteCapture Task for ZoomBrowser EX Canon Utilities ZoomBrowser EX Canon ZoomBrowser EX Memory Card Utility Catalyst Control Center - Branding CDDRV_Installer Choice Guard Connect DBOX2 Image-Flashing-Assistent 2.3.1 Multilanguage devolo dLAN-Konfigurationsassistent devolo EasyClean devolo EasyShare devolo Informer EVEREST Ultimate Edition v5.00 Firebird SQL Server - MAGIX Edition fotokasten comfort Fraps Hamachi 1.0.2.5 High Definition Audio Driver Package - KB888111 HijackThis 2.0.2 Hotfix für Windows Internet Explorer 7 (KB947864) HP Image Zone 3.5 HP PSC & OfficeJet 3.5 HP Software Update ICQ6 ImageMixer 3 SE KhalInstallWrapper kuler Launchy 2.1.2 Line 6 Monkey 1.20 (Remove Only) Logitech MouseWare 9.79.1 Logitech SetPoint MAGIX 3D Maker (embeded) MAGIX Fotobuch 3.6 MAGIX Fotos auf CD & DVD 6 deluxe (D) MAGIX Fotos auf CD & DVD 8 deluxe 8.0.0.14 (D) MAGIX Online Druck Service 3.4.3.0 (D) MAGIX Screenshare 4.3.6.1987 (D) MAGIX Xtreme Foto Designer 6 6.0.25.0 (D) Malwarebytes' Anti-Malware Memories Disc Creator 2.0 Microsoft .NET Framework 1.1 Microsoft .NET Framework 1.1 German Language Pack Microsoft .NET Framework 2.0 Microsoft .NET Framework 2.0 Language Pack - DEU Microsoft .NET Framework 3.0 Microsoft .NET Framework 3.0 Microsoft Internationalized Domain Names Mitigation APIs Microsoft Kernel-Mode Driver Framework Feature Pack 1.5 Microsoft Kernel-Mode Driver Framework Feature Pack 1.7 Microsoft National Language Support Downlevel APIs Microsoft Office Access MUI (German) 2007 Microsoft Office Enterprise 2007 Microsoft Office Enterprise 2007 Microsoft Office Excel MUI (German) 2007 Microsoft Office Groove MUI (German) 2007 Microsoft Office InfoPath MUI (German) 2007 Microsoft Office OneNote MUI (German) 2007 Microsoft Office Outlook MUI (German) 2007 Microsoft Office PowerPoint MUI (German) 2007 Microsoft Office Proof (English) 2007 Microsoft Office Proof (French) 2007 Microsoft Office Proof (German) 2007 Microsoft Office Proof (Italian) 2007 Microsoft Office Proofing (German) 2007 Microsoft Office Publisher MUI (German) 2007 Microsoft Office Shared MUI (German) 2007 Microsoft Office Word MUI (German) 2007 Microsoft User-Mode Driver Framework Feature Pack 1.5 Microsoft Visual C++ 2005 Redistributable Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 mkv2vob Mozilla Firefox (3.0.9) Mozilla Thunderbird (2.0.0.21) MSVC80_x86 MSVCRT MSXML 4.0 SP2 (KB936181) MSXML 4.0 SP2 (KB954430) MSXML 6.0 Parser (KB933579) Nero 8 Nero Mega Plugin Pack neroxml NewsLeecher v3.9 Final Nokia Connectivity Cable Driver Nokia Flashing Cable Driver Nokia PC Suite Nokia PC Suite Nokia Software Updater overland PC Connectivity Solution PDF Settings CS4 Photoshop Camera Raw Pro Evolution Soccer 6 ProtectDisc Helper Driver 10 PS3ThemeCreator QuickTime REALTEK GbE & FE Ethernet PCI-E NIC Driver Realtek High Definition Audio Driver RouterControl 1.85 Samplitude SE No.9 9.1.1.1 (D) Segoe UI Sicherheitsupdate für Step by Step Interactive Training (KB923723) Sicherheitsupdate für Windows Internet Explorer 7 (KB928090) Sicherheitsupdate für Windows Internet Explorer 7 (KB929969) Sicherheitsupdate für Windows Internet Explorer 7 (KB937143) Sicherheitsupdate für Windows Internet Explorer 7 (KB938127) Sicherheitsupdate für Windows Internet Explorer 7 (KB942615) Sicherheitsupdate für Windows Internet Explorer 7 (KB958215) Sicherheitsupdate für Windows Internet Explorer 7 (KB961260) Sicherheitsupdate für Windows Media Player (KB952069) Sicherheitsupdate für Windows Media Player 11 (KB936782) Sicherheitsupdate für Windows Media Player 11 (KB954154) Sicherheitsupdate für Windows XP (KB923789) Sicherheitsupdate für Windows XP (KB938464) Sicherheitsupdate für Windows XP (KB941569) Sicherheitsupdate für Windows XP (KB950760) Sicherheitsupdate für Windows XP (KB950762) Sicherheitsupdate für Windows XP (KB950974) Sicherheitsupdate für Windows XP (KB951066) Sicherheitsupdate für Windows XP (KB951376-v2) Sicherheitsupdate für Windows XP (KB951698) Sicherheitsupdate für Windows XP (KB951748) Sicherheitsupdate für Windows XP (KB952954) Sicherheitsupdate für Windows XP (KB953155) Sicherheitsupdate für Windows XP (KB953839) Sicherheitsupdate für Windows XP (KB954211) Sicherheitsupdate für Windows XP (KB954459) Sicherheitsupdate für Windows XP (KB954600) Sicherheitsupdate für Windows XP (KB955069) Sicherheitsupdate für Windows XP (KB956391) Sicherheitsupdate für Windows XP (KB956802) Sicherheitsupdate für Windows XP (KB956803) Sicherheitsupdate für Windows XP (KB956841) Sicherheitsupdate für Windows XP (KB957095) Sicherheitsupdate für Windows XP (KB957097) Sicherheitsupdate für Windows XP (KB958644) Sicherheitsupdate für Windows XP (KB958687) Sicherheitsupdate für Windows XP (KB958690) Sicherheitsupdate für Windows XP (KB960225) Sicherheitsupdate für Windows XP (KB960715) SixaxisDriver 0.91 SLD Codec Pack Spybot - Search & Destroy Suite Shared Configuration CS4 SyncroSoft Emu (Remove only) Syncrosofts Lizenz Kontrolle System Requirements Lab TeamViewer 4 TomTom HOME 2.5.2.60 Total Commander (Remove or Repair) TuneUp Utilities 2008 TVersity Media Server 1.0.0.8 RC5 Twin Digital GamePad VC_MergeModuleToMSI Ventrilo Client VLC media player 0.9.9 Windows Communication Foundation Windows Imaging Component Windows Live Anmelde-Assistent Windows Live Call Windows Live Communications Platform Windows Live Essentials Windows Live Essentials Windows Live Messenger Windows Live-Uploadtool Windows Media Format 11 runtime Windows Media Format 11 runtime Windows Media Format SDK Hotfix - KB891122 Windows Media Player 11 Windows Media Player 11 Windows Messenger 5.1 Windows Presentation Foundation Windows Workflow Foundation Windows XP Service Pack 3 Windows-Treiberpaket - Nokia Modem (08/03/2007 6.84.0.2) Windows-Treiberpaket - Nokia Modem (10/12/2007 3.6) WinRAR Archivierer XP Codec Pack |
|
|
|
|
|
|
24.04.2009, 18:20
Member
Beiträge: 3716 |
#4
hi,
deinstaliere adaware, es produziert viele fehlalarme. dann öffne spybot, gehe auf allgemein, dort erweitert. dann Werkzeuge resident und deaktivire den teatimer. starte deinen pc neu mach bitte noch mal einen scan mit malwareBytes, der teatimer kann reinigungen verhindern. (sorry hab ich beim ersten log übersehen!) poste den inhalt der C:\VundoFix.txt und das malwareBytes-log |
|
|
|
|
|
|
24.04.2009, 19:59
Member
Themenstarter Beiträge: 14 |
#5
Ok ich habe adaware deinstalliert und den teatimer deaktiviert.+
hiert ist der malwarebytes log Malwarebytes' Anti-Malware 1.36 Datenbank Version: 2036 Windows 5.1.2600 Service Pack 3 24.04.2009 19:56:31 mbam-log-2009-04-24 (19-56-31).txt Scan-Methode: Quick-Scan Durchsuchte Objekte: 77375 Laufzeit: 1 minute(s), 54 second(s) Infizierte Speicherprozesse: 0 Infizierte Speichermodule: 0 Infizierte Registrierungsschlüssel: 0 Infizierte Registrierungswerte: 0 Infizierte Dateiobjekte der Registrierung: 0 Infizierte Verzeichnisse: 0 Infizierte Dateien: 0 Infizierte Speicherprozesse: (Keine bösartigen Objekte gefunden) Infizierte Speichermodule: (Keine bösartigen Objekte gefunden) Infizierte Registrierungsschlüssel: (Keine bösartigen Objekte gefunden) Infizierte Registrierungswerte: (Keine bösartigen Objekte gefunden) Infizierte Dateiobjekte der Registrierung: (Keine bösartigen Objekte gefunden) Infizierte Verzeichnisse: (Keine bösartigen Objekte gefunden) Infizierte Dateien: (Keine bösartigen Objekte gefunden) was meinst du mit C:\VundoFix.txt davon war vorher nicht die rede. Brauche ich noch ein programm vundofix oder so? Falls Du aber Combofix meintest dann hier der neue Log dazu ComboFix 09-04-25.01 - seynems 24.04.2009 20:05.2 - NTFSx86 Microsoft Windows XP Professional 5.1.2600.3.1252.49.1031.18.3582.2964 [GMT 2:00] ausgeführt von:: c:\dokumente und einstellungen\seynems\Desktop\ComboFix.exe AV: AntiVir Desktop *On-access scanning disabled* (Updated) * Neuer Wiederherstellungspunkt wurde erstellt Achtung - Auf diesem PC ist keine Wiederherstellungskonsole installiert !! . ((((((((((((((((((((((( Dateien erstellt von 2009-05-24 bis 2009-4-24 )))))))))))))))))))))))))))))) . 2009-04-24 14:09 . 2009-04-24 14:09 -------- d-----w c:\dokumente und einstellungen\seynems\Anwendungsdaten\Malwarebytes 2009-04-24 14:09 . 2009-04-06 13:32 15504 ----a-w c:\windows\system32\drivers\mbam.sys 2009-04-24 14:09 . 2009-04-06 13:32 38496 ----a-w c:\windows\system32\drivers\mbamswissarmy.sys 2009-04-24 14:09 . 2009-04-24 14:09 -------- d-----w c:\programme\Malwarebytes' Anti-Malware 2009-04-24 14:09 . 2009-04-24 14:09 -------- d-----w c:\dokumente und einstellungen\All Users\Anwendungsdaten\Malwarebytes 2009-04-24 13:25 . 2009-04-24 13:28 -------- d-----w c:\programme\Spybot - Search & Destroy 2009-04-24 12:50 . 2009-04-24 12:50 -------- d-----w c:\dokumente und einstellungen\All Users\Anwendungsdaten\ATI 2009-04-24 12:47 . 2009-02-25 13:15 593920 ------w c:\windows\system32\ati2sgag.exe 2009-04-24 12:41 . 2009-04-24 12:41 -------- d-----w c:\dokumente und einstellungen\seynems\Anwendungsdaten\Uniblue 2009-04-23 21:34 . 2009-04-23 21:34 -------- d-----w c:\programme\Enigma Software Group 2009-04-23 20:20 . 2009-04-23 22:06 -------- d-----w c:\dokumente und einstellungen\seynems\Anwendungsdaten\Lavasoft 2009-04-23 14:44 . 2009-04-23 14:44 -------- d-----w c:\windows\system32\GroupPolicy 2009-04-23 14:44 . 2009-04-23 22:06 -------- d-----w c:\programme\Hitman Pro 2009-04-23 14:37 . 2009-04-23 14:37 -------- d-----w c:\programme\Trend Micro 2009-04-19 12:51 . 2009-04-19 12:51 54156 ---ha-w c:\windows\QTFont.qfn 2009-04-19 12:51 . 2009-04-19 12:51 1409 ----a-w c:\windows\QTFont.for 2009-04-18 23:53 . 2009-04-18 23:54 -------- d-----w c:\dokumente und einstellungen\seynems\Anwendungsdaten\vlc 2009-04-16 16:15 . 2009-04-19 16:06 -------- d-----w c:\dokumente und einstellungen\All Users\Anwendungsdaten\PIXELA 2009-04-16 16:14 . 2009-04-16 16:14 -------- d-----w c:\programme\PIXELA 2009-04-15 21:23 . 2001-03-08 15:10 3816 ----a-w c:\windows\system32\drivers\fspio.sys 2009-04-15 21:13 . 2009-04-18 23:53 -------- d-----w c:\programme\SpeedFan 2009-04-15 21:13 . 2009-04-15 21:28 45 ----a-w c:\windows\system32\initdebug.nfo 2009-04-15 16:11 . 2009-04-15 16:11 2523 ----a-w c:\windows\system32\NMMediaServer.cfg 2009-04-15 16:10 . 2009-04-15 16:10 -------- d-----w c:\dokumente und einstellungen\seynems\Lokale Einstellungen\Anwendungsdaten\Nero 2009-04-12 23:00 . 2009-04-12 23:00 -------- d-----w c:\programme\Lavalys 2009-04-10 21:17 . 2009-04-10 21:17 472576 ----a-w c:\windows\Radeon Omega Drivers v4.8.442 Uninstall.exe 2009-04-10 14:07 . 2009-04-10 14:07 -------- d-----w c:\programme\SystemRequirementsLab 2009-04-10 14:07 . 2009-04-10 14:07 -------- d-----w c:\dokumente und einstellungen\seynems\SystemRequirementsLab 2009-04-10 10:53 . 2009-04-10 14:22 -------- d-----w c:\programme\RivaTuner v2.24 2009-04-10 10:02 . 2009-04-11 19:24 4096 ----a-w c:\windows\system32\crash 2009-04-09 17:18 . 2009-04-09 17:18 -------- d-----w C:\VundoFix Backups 2009-03-27 17:41 . 2009-03-09 19:06 64160 ----a-w c:\windows\system32\drivers\Lbd.sys 2009-03-27 17:10 . 2009-02-13 10:31 55640 ----a-w c:\windows\system32\drivers\avgntflt.sys 2009-03-27 17:10 . 2009-03-27 17:10 -------- d-----w c:\programme\Avira 2009-03-27 15:52 . 2009-03-27 15:52 -------- d-----w C:\MAGIX 2009-03-27 15:52 . 2002-09-20 23:33 1089536 ----a-w c:\windows\system32\ROBOEX32.DLL 2009-03-27 15:52 . 1999-01-28 13:44 49152 ----a-w c:\windows\system32\INETWH32.dll 2009-03-27 15:52 . 1998-10-15 16:28 85504 ----a-w c:\windows\system32\HtmlWH.dll 2009-03-26 16:24 . 2009-04-24 14:19 -------- d-----w c:\dokumente und einstellungen\All Users\Anwendungsdaten\Spybot - Search & Destroy . (((((((((((((((((((((((((((((((((((( Find3M Bericht )))))))))))))))))))))))))))))))))))))))))))))))))))))) . 2009-04-24 17:54 . 2008-01-29 12:17 -------- d-----w c:\dokumente und einstellungen\seynems\Anwendungsdaten\BOM 2009-04-24 17:48 . 2008-01-12 22:10 -------- d-----w c:\programme\Lavasoft 2009-04-24 17:48 . 2008-01-12 22:10 -------- d-----w c:\dokumente und einstellungen\All Users\Anwendungsdaten\Lavasoft 2009-04-24 17:45 . 2007-12-24 13:49 -------- d-----w c:\programme\Mozilla Thunderbird 2009-04-24 17:43 . 2009-03-26 16:03 22875 ----a-w C:\aaw7boot.log 2009-04-24 14:59 . 2007-12-24 22:24 189072 ----a-w c:\windows\system32\PnkBstrB.exe 2009-04-24 14:51 . 2007-12-24 22:25 138920 ----a-w c:\windows\system32\drivers\PnkBstrK.sys 2009-04-24 12:48 . 2007-12-23 19:26 -------- d-----w c:\programme\ATI Technologies 2009-04-23 22:21 . 2008-01-13 00:42 -------- d-----w c:\programme\Java 2009-04-23 22:05 . 2009-04-09 17:18 429 ----a-w C:\VundoFix.txt 2009-04-23 21:29 . 2008-01-01 19:07 -------- d---a-w c:\dokumente und einstellungen\All Users\Anwendungsdaten\TEMP 2009-04-21 21:11 . 2007-12-24 17:09 -------- d-----w c:\programme\TuneUp Utilities 2008 2009-04-20 20:59 . 2007-12-24 13:15 1079808 ----a-w c:\windows\system32\AutoPartNt.exe 2009-04-16 16:14 . 2007-12-23 19:18 -------- d--h--w c:\programme\InstallShield Installation Information 2009-04-16 15:16 . 2009-01-04 11:38 -------- d-----w c:\dokumente und einstellungen\seynems\Anwendungsdaten\CameraWindowDC 2009-04-16 15:10 . 2009-01-04 11:35 -------- d-----w c:\dokumente und einstellungen\seynems\Anwendungsdaten\ZoomBrowser EX 2009-04-16 15:05 . 2009-01-04 11:19 -------- d-----w c:\programme\Canon 2009-03-31 05:30 . 2001-08-23 12:00 83976 ----a-w c:\windows\system32\perfc007.dat 2009-03-31 05:30 . 2001-08-23 12:00 456616 ----a-w c:\windows\system32\perfh007.dat 2009-03-29 01:08 . 2009-01-04 11:38 -------- d-----w c:\dokumente und einstellungen\All Users\Anwendungsdaten\PhotoStitch 2009-03-27 17:39 . 2007-12-24 17:09 -------- d-----w c:\programme\Gemeinsame Dateien\Wise Installation Wizard 2009-03-27 17:10 . 2007-12-23 20:27 -------- d-----w c:\dokumente und einstellungen\All Users\Anwendungsdaten\Avira 2009-03-26 19:53 . 2007-12-24 23:38 -------- d-----w c:\programme\ICQ6 2009-03-26 16:45 . 2008-04-19 11:27 361728 ----a-w c:\windows\system32\TuneUpDefragService.exe 2009-03-23 22:07 . 2009-01-02 20:48 -------- d-----w c:\programme\mkv2vob 2009-03-16 21:26 . 2009-03-06 23:00 -------- d-----w c:\dokumente und einstellungen\seynems\Anwendungsdaten\TeamViewer 2009-03-16 21:16 . 2009-03-16 21:16 -------- d-----w c:\programme\TeamViewer 2009-03-08 13:25 . 2008-01-11 18:29 -------- d-----w c:\dokumente und einstellungen\seynems\Anwendungsdaten\Nokia Multimedia Player 2009-03-08 12:16 . 2009-03-08 12:16 0 ---ha-w c:\windows\system32\drivers\Msft_Kernel_ccdcmb_01007.Wdf 2009-03-08 12:16 . 2009-03-08 12:16 0 ---ha-w c:\windows\system32\drivers\MsftWdf_Kernel_01007_Coinstaller_Critical.Wdf 2009-03-08 12:14 . 2009-03-08 12:14 -------- d-----w c:\dokumente und einstellungen\All Users\Anwendungsdaten\Nokia 2009-03-08 12:12 . 2008-01-11 18:02 -------- d-----w c:\dokumente und einstellungen\All Users\Anwendungsdaten\Installations 2009-03-08 12:12 . 2008-01-11 18:04 -------- d-----w c:\programme\Nokia 2009-03-08 12:11 . 2008-01-11 18:05 -------- d-----w c:\programme\Gemeinsame Dateien\Nokia 2009-03-06 23:58 . 2009-03-06 23:58 -------- d-----w c:\dokumente und einstellungen\seynems\Anwendungsdaten\Ventrilo 2009-03-06 23:58 . 2009-03-06 23:58 -------- d-----w c:\programme\Ventrilo 2009-03-01 22:08 . 2008-01-29 12:15 -------- d-----w c:\programme\Biet-O-Matic 2009-03-01 17:34 . 2007-12-24 22:24 75064 ----a-w c:\windows\system32\PnkBstrA.exe 2009-02-28 22:03 . 2007-12-23 19:34 86136 ----a-w c:\dokumente und einstellungen\seynems\Lokale Einstellungen\Anwendungsdaten\GDIPFONTCACHEV1.DAT 2009-02-28 16:18 . 2008-04-05 23:49 -------- d-----w c:\dokumente und einstellungen\seynems\Anwendungsdaten\MAGIX 2009-02-28 16:16 . 2008-01-17 15:31 -------- d-----w c:\programme\MAGIX 2009-02-28 16:16 . 2008-04-05 23:16 -------- d-----w c:\dokumente und einstellungen\All Users\Anwendungsdaten\MAGIX 2009-02-28 16:16 . 2008-04-05 23:31 -------- d-----w c:\programme\Gemeinsame Dateien\MAGIX Shared 2009-02-28 16:15 . 2009-02-28 16:15 -------- d-----w c:\programme\Gemeinsame Dateien\xara 2009-02-26 10:54 . 2009-02-26 10:54 -------- d-----w c:\programme\Intelore 2009-02-25 22:58 . 2007-12-05 05:26 3565568 ----a-w c:\windows\system32\drivers\ati2mtag.sys 2009-02-25 21:42 . 2009-02-25 21:42 442368 ----a-w c:\windows\system32\ATIDEMGX.dll 2009-02-25 21:41 . 2007-12-05 03:04 325120 ----a-w c:\windows\system32\ati2dvag.dll 2009-02-25 21:30 . 2009-02-25 21:30 11841536 ----a-w c:\windows\system32\atioglxx.dll 2009-02-25 21:30 . 2009-02-25 21:30 204800 ----a-w c:\windows\system32\atipdlxx.dll 2009-02-25 21:29 . 2009-02-25 21:29 155648 ----a-w c:\windows\system32\Oemdspif.dll 2009-02-25 21:29 . 2009-02-25 21:29 26112 ----a-w c:\windows\system32\Ati2mdxx.exe 2009-02-25 21:29 . 2009-02-25 21:29 43520 ----a-w c:\windows\system32\ati2edxx.dll 2009-02-25 21:29 . 2009-02-25 21:29 155648 ----a-w c:\windows\system32\ati2evxx.dll 2009-02-25 21:27 . 2009-02-25 21:27 602112 ----a-w c:\windows\system32\ati2evxx.exe 2009-02-25 21:26 . 2009-02-25 21:26 53248 ----a-w c:\windows\system32\ATIDDC.DLL 2009-02-25 21:16 . 2007-12-05 02:44 3817984 ----a-w c:\windows\system32\ati3duag.dll 2009-02-25 21:09 . 2009-02-25 21:09 307200 ----a-w c:\windows\system32\atiiiexx.dll 2009-02-25 20:59 . 2007-12-05 02:33 2670080 ----a-w c:\windows\system32\ativvaxx.dll 2009-02-25 20:58 . 2009-02-25 20:58 887724 ----a-w c:\windows\system32\ativva6x.dat 2009-02-25 20:58 . 2009-02-25 20:58 3107788 ----a-w c:\windows\system32\ativva5x.dat 2009-02-25 20:44 . 2009-02-25 20:44 49664 ----a-w c:\windows\system32\amdpcom32.dll 2009-02-25 20:40 . 2009-02-25 20:40 475136 ----a-w c:\windows\system32\atikvmag.dll 2009-02-25 20:38 . 2009-02-25 20:38 126976 ----a-w c:\windows\system32\atiadlxx.dll 2009-02-25 20:38 . 2009-02-25 20:38 17408 ----a-w c:\windows\system32\atitvo32.dll 2009-02-25 20:37 . 2009-02-25 20:37 53248 ----a-w c:\windows\system32\drivers\ati2erec.dll 2009-02-25 20:35 . 2009-02-25 20:35 290816 ----a-w c:\windows\system32\atiok3x2.dll 2009-02-25 20:32 . 2009-02-25 20:32 45056 ----a-w c:\windows\system32\aticalrt.dll 2009-02-25 20:32 . 2009-02-25 20:32 45056 ----a-w c:\windows\system32\aticalcl.dll 2009-02-25 20:32 . 2007-12-05 02:11 626688 ----a-w c:\windows\system32\ati2cqag.dll 2009-02-25 20:30 . 2009-02-25 20:30 3227648 ----a-w c:\windows\system32\aticaldd.dll 2009-02-18 16:31 . 2009-02-07 16:38 325972 ----a-w c:\dokumente und einstellungen\seynems\Anwendungsdaten\mdbu.bin 2009-02-09 14:04 . 2004-08-03 23:46 1846912 ----a-w c:\windows\system32\win32k.sys 2009-02-06 17:52 . 2009-02-06 17:52 49504 ----a-w c:\windows\system32\sirenacm.dll 2009-01-26 17:55 . 2009-01-26 17:55 182995 ----a-w c:\windows\system32\atiicdxx.dat 2008-02-09 11:27 . 2007-12-24 22:25 22328 ----a-w c:\dokumente und einstellungen\seynems\Anwendungsdaten\PnkBstrK.sys 2008-01-01 19:03 . 2008-01-01 19:03 65984 ----a-w c:\dokumente und einstellungen\LocalService\Lokale Einstellungen\Anwendungsdaten\FontCache3.0.0.0.dat 2007-12-27 21:18 . 2007-12-27 21:18 140 ----a-w c:\dokumente und einstellungen\seynems\Lokale Einstellungen\Anwendungsdaten\fusioncache.dat 2008-12-23 12:30 . 2008-12-23 12:30 32768 --sha-w c:\windows\system32\config\systemprofile\Lokale Einstellungen\Verlauf\History.IE5\MSHist012008122320081224\index.dat . (((((((((((((((((((((((((((( Autostartpunkte der Registrierung )))))))))))))))))))))))))))))))))))))))) . . *Hinweis* leere Einträge & legitime Standardeinträge werden nicht angezeigt. REGEDIT4 [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "DAEMON Tools Lite"="c:\programme\DAEMON Tools Lite\daemon.exe" [2008-12-29 687560] "CTFMON.EXE"="c:\windows\system32\ctfmon.exe" [2008-04-14 15360] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "avgnt"="c:\programme\Avira\AntiVir Desktop\avgnt.exe" [2009-03-02 209153] "StartCCC"="c:\programme\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2009-02-25 61440] "RTHDCPL"="RTHDCPL.EXE" - c:\windows\RTHDCPL.EXE [2007-10-16 16855552] [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run] "CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360] "Nokia.PCSync"="c:\programme\Nokia\Nokia PC Suite 6\PcSync2.exe" [2007-11-07 1294336] c:\dokumente und einstellungen\All Users\Startmen\Programme\Autostart\ Launchy.lnk - c:\programme\Launchy\Launchy.exe [2009-2-22 286720] Logitech SetPoint.lnk - c:\programme\Logitech\SetPoint\SetPoint.exe [2008-12-23 805392] [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\LBTWlgn] 2008-05-02 01:42 72208 ----a-w c:\programme\gemeinsame dateien\logishrd\bluetooth\LBTWLgn.dll [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys] @="Driver" [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WdfLoadGroup] @="" [HKLM\~\startupfolder\C:^Dokumente und Einstellungen^All Users^Startmenü^Programme^Autostart^Adobe Reader - Schnellstart.lnk] path=c:\dokumente und einstellungen\All Users\Startmenü\Programme\Autostart\Adobe Reader - Schnellstart.lnk backup=c:\windows\pss\Adobe Reader - Schnellstart.lnkCommon Startup [HKLM\~\startupfolder\C:^Dokumente und Einstellungen^All Users^Startmenü^Programme^Autostart^Adobe Reader Synchronizer.lnk] path=c:\dokumente und einstellungen\All Users\Startmenü\Programme\Autostart\Adobe Reader Synchronizer.lnk backup=c:\windows\pss\Adobe Reader Synchronizer.lnkCommon Startup [HKLM\~\startupfolder\C:^Dokumente und Einstellungen^All Users^Startmenü^Programme^Autostart^HP Digital Imaging Monitor.lnk] path=c:\dokumente und einstellungen\All Users\Startmenü\Programme\Autostart\HP Digital Imaging Monitor.lnk backup=c:\windows\pss\HP Digital Imaging Monitor.lnkCommon Startup [HKLM\~\startupfolder\C:^Dokumente und Einstellungen^All Users^Startmenü^Programme^Autostart^HP Image Zone Schnellstart.lnk] path=c:\dokumente und einstellungen\All Users\Startmenü\Programme\Autostart\HP Image Zone Schnellstart.lnk backup=c:\windows\pss\HP Image Zone Schnellstart.lnkCommon Startup [HKLM\~\startupfolder\C:^Dokumente und Einstellungen^All Users^Startmenü^Programme^Autostart^ImageMixer 3 SE Camera Monitor.lnk] path=c:\dokumente und einstellungen\All Users\Startmenü\Programme\Autostart\ImageMixer 3 SE Camera Monitor.lnk backup=c:\windows\pss\ImageMixer 3 SE Camera Monitor.lnkCommon Startup [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run-] "PC Suite Tray"="c:\programme\Nokia\Nokia PC Suite 6\PCSuite.exe" -onlytray [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List] "%windir%\\system32\\sessmgr.exe"= "c:\\Programme\\BitComet\\BitComet.exe"= "c:\\Programme\\KONAMI\\Pro Evolution Soccer 6\\pes6.exe"= "c:\\WINDOWS\\system32\\PnkBstrA.exe"= "c:\\WINDOWS\\system32\\PnkBstrB.exe"= "c:\\Programme\\ICQ6\\ICQ.exe"= "c:\\Programme\\Hamachi\\hamachi.exe"= "c:\\WINDOWS\\system32\\dpvsetup.exe"= "c:\\Programme\\Microsoft Office\\Office12\\OUTLOOK.EXE"= "c:\\Programme\\Microsoft Office\\Office12\\ONENOTE.EXE"= "c:\\Programme\\totalcmd\\TOTALCMD.EXE"= "c:\\Programme\\Activision\\Call of Duty 4 - Modern Warfare\\iw3mpHAMACHI 1.5.exe"= "c:\\Programme\\Bonjour\\mDNSResponder.exe"= "c:\\Programme\\devolo\\easyshare\\easyshare.exe"= "c:\\Programme\\Mozilla Firefox\\firefox.exe"= "c:\\Programme\\VideoLAN\\VLC\\vlc.exe"= "d:\\D-Box\\winserver dbox\\dboxwinsvr.exe"= "d:\\D-Box\\winserver dbox\\udrec.exe"= "c:\\Programme\\TVersity\\Media Server\\MediaServer.exe"= "%windir%\\Network Diagnostic\\xpnetdiag.exe"= "c:\\Programme\\Activision\\Call of Duty 4 - Modern Warfare\\iw3mp.exe"= "d:\\Download Clienten\\eMule-0.48a-Xtreme-6.1-bin(3)\\emule.exe"= "c:\\WINDOWS\\system32\\mshta.exe"= "c:\\Programme\\devolo\\informer\\devinf.exe"= "c:\\Programme\\Java\\jre6\\launch4j-tmp\\JDownloader.exe"= "c:\\Programme\\Nero\\Nero8\\Nero ShowTime\\ShowTime.exe"= "c:\\Programme\\Gemeinsame Dateien\\Adobe\\CS4ServiceManager\\CS4ServiceManager.exe"= "c:\\Programme\\Windows Live\\Messenger\\msnmsgr.exe"= "c:\\Programme\\Gemeinsame Dateien\\Nero\\Nero Web\\SetupX.exe"= "c:\\Programme\\Ventrilo\\Ventrilo.exe"= "c:\\Programme\\Nokia\\Nokia Software Updater\\nsu_ui_client.exe"= "c:\\Programme\\Gemeinsame Dateien\\Nokia\\Service Layer\\A\\nsl_host_process.exe"= "e:\\Games\\verknüpfungen\\Tools\\PSL_GS6_v1.20\\GoalServer6.exe"= "c:\\Programme\\TeamViewer\\Version4\\TeamViewer.exe"= "c:\\Programme\\ATI Technologies\\ATI.ACE\\Core-Static\\MOM.exe"= [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List] "20559:TCP"= 20559:TCP:BitComet 20559 TCP "20559:UDP"= 20559:UDP:BitComet 20559 UDP "5353:TCP"= 5353:TCP:Adobe CSI CS4 R2 FanSpeedNT Service;FanSpeedNT Service; [x] R3 FirebirdServerMAGIXInstance;Firebird Server - MAGIX Instance;c:\programme\MAGIX\Common\Database\bin\fbserver.exe [2005-11-17 1527900] R3 fspio;fspio;c:\windows\system32\drivers\fspio.sys [2001-03-08 3816] R3 libusb0;LibUsb-Win32 - Kernel Driver, Version 0.1.10.1;c:\windows\system32\drivers\libusb0.sys [2005-03-09 33792] R3 MagixASIODrv;MAGIX_ASIO_BoostDriver;c:\programme\MAGIX\Samplitude_SE_No9\mxasio.sys [2002-04-16 4899] R3 MBAMSwissArmy;MBAMSwissArmy;c:\windows\system32\drivers\mbamswissarmy.sys [2009-04-06 38496] R3 nmwcdnsu;Nokia USB Flashing Phone Parent;c:\windows\system32\drivers\nmwcdnsu.sys [2008-02-01 138112] R3 nmwcdnsuc;Nokia USB Flashing Generic;c:\windows\system32\drivers\nmwcdnsuc.sys [2008-02-01 8320] R3 QCEmerald;Logitech QuickCam Web;c:\windows\system32\DRIVERS\OVCE.sys [2001-08-17 31872] R3 XPADFL02;XPAD Filter Service 02;c:\windows\system32\DRIVERS\xpadfl02.sys [2006-12-24 27904] S0 Lbd;Lbd;c:\windows\system32\DRIVERS\Lbd.sys [2009-03-09 64160] S2 acedrv10;acedrv10;c:\windows\system32\drivers\acedrv10.sys [2007-07-27 330144] S2 acehlp10;acehlp10;c:\windows\system32\drivers\acehlp10.sys [2007-07-27 251680] S2 AntiVirSchedulerService;Avira AntiVir Planer;c:\programme\Avira\AntiVir Desktop\sched.exe [2009-03-05 108289] S2 NPF_devolo;NetGroup Packet Filter Driver (devolo);c:\windows\system32\drivers\npf_devolo.sys [2008-05-13 35840] S2 thdudf;TOSHIBA UDF2.5 Reader File System Driver;c:\windows\system32\DRIVERS\thdudf.sys [2006-11-11 66944] S3 CLEDX;Team H2O CLEDX service;c:\windows\system32\DRIVERS\cledx.sys [2005-05-09 33792] S3 SNXPCARD;Sunix PCI Multi I/O Card Driver;c:\windows\system32\DRIVERS\snxpcard.sys [2006-02-05 20864] S3 SNXPSERX;Sunix PCI Serial Port Driver;c:\windows\system32\DRIVERS\snxpserx.sys [2006-02-05 54528] HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs UxTuneUp [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{a5454302-d624-11dc-84a2-001d7d9b0a37}] \Shell\AutoRun\command - J:\InstallTomTomHOME.exe [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{f5bfc346-c9d9-11dc-847d-001d7d9b0a37}] \Shell\AutoRun\command - I:\InstallTomTomHOME.exe . Inhalt des "geplante Tasks" Ordners . . ------- Zusätzlicher Suchlauf ------- . uStart Page = www.daemon-search.com/startpage uInternet Settings,ProxyOverride = *.local IE: &D&ownload &with BitComet - c:\programme\BitComet\BitComet.exe/AddLink.htm IE: &D&ownload all video with BitComet - c:\programme\BitComet\BitComet.exe/AddVideo.htm IE: &D&ownload all with BitComet - c:\programme\BitComet\BitComet.exe/AddAllLink.htm IE: Nach Microsoft E&xel exportieren - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000 TCP: {5E2A5981-0522-42DD-A89C-DCB6B4595471} = 192.168.1.1 FF - ProfilePath - c:\dokumente und einstellungen\seynems\Anwendungsdaten\Mozilla\Firefox\Profiles\bu1qcczj.default\ FF - prefs.js: browser.search.defaulturl - hxxp://www.google.com/search?lr=&ie=UTF-8&oe=UTF-8&q= FF - prefs.js: browser.startup.homepage - google.de ---- FIREFOX Richtlinien ---- FF - user.js: network.http.max-persistent-connections-per-server - 4 FF - user.js: content.max.tokenizing.time - 200000 FF - user.js: content.notify.interval - 100000 FF - user.js: content.switch.threshold - 650000 FF - user.js: nglayout.initialpaint.delay - 300 . ************************************************************************** catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net Rootkit scan 2009-04-24 20:09 Windows 5.1.2600 Service Pack 3 NTFS Scanne versteckte Prozesse... Scanne versteckte Autostarteinträge... Scanne versteckte Dateien... Scan erfolgreich abgeschlossen versteckte Dateien: 0 ************************************************************************** . --------------------- Durch laufende Prozesse gestartete DLLs --------------------- - - - - - - - > 'winlogon.exe'(992) c:\windows\system32\Ati2evxx.dll c:\programme\gemeinsame dateien\logishrd\bluetooth\LBTWlgn.dll c:\programme\gemeinsame dateien\logishrd\bluetooth\LBTServ.dll c:\programme\Gemeinsame Dateien\Adobe\Adobe Drive CS4\AdobeDriveCS4_NP.dll - - - - - - - > 'lsass.exe'(1048) c:\windows\system32\relog_ap.dll - - - - - - - > 'explorer.exe'(3336) c:\programme\Logitech\SetPoint\GameHook.dll c:\programme\Logitech\SetPoint\lgscroll.dll c:\windows\system32\WPDShServiceObj.dll c:\programme\Nokia\Nokia PC Suite 6\phonebrowser.dll c:\programme\Nokia\Nokia PC Suite 6\PCSCM.dll c:\programme\Nokia\Nokia PC Suite 6\Lang\PhoneBrowser_ger.nlr c:\programme\Nokia\Nokia PC Suite 6\Resource\PhoneBrowser_Nokia.ngr c:\windows\system32\PortableDeviceTypes.dll c:\windows\system32\PortableDeviceApi.dll . ------------------------ Weitere laufende Prozesse ------------------------ . c:\windows\system32\ati2evxx.exe c:\windows\system32\ati2evxx.exe c:\programme\ATI Technologies\ATI.ACE\Core-Static\MOM.exe c:\programme\ATI Technologies\ATI.ACE\Core-Static\CCC.exe c:\programme\Gemeinsame Dateien\Logishrd\KHAL2\KHALMNPR.exe c:\programme\Gemeinsame Dateien\Acronis\Schedule2\schedul2.exe c:\programme\Avira\AntiVir Desktop\avguard.exe c:\programme\Gemeinsame Dateien\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe c:\programme\Bonjour\mDNSResponder.exe c:\programme\Nero\Nero8\Nero BackItUp\NBService.exe c:\windows\system32\IoctlSvc.exe c:\windows\system32\PnkBstrA.exe c:\windows\system32\PnkBstrB.exe c:\programme\Gemeinsame Dateien\Acronis\Fomatik\TrueImageTryStartService.exe c:\programme\Canon\CAL\CALMAIN.exe c:\windows\system32\wscntfy.exe . ************************************************************************** . Zeit der Fertigstellung: 2009-04-24 20:12 - PC wurde neu gestartet ComboFix-quarantined-files.txt 2009-04-24 18:12 ComboFix2.txt 2009-04-24 14:29 Vor Suchlauf: 17 Verzeichnis(se), 65.063.268.352 Bytes frei Nach Suchlauf: 16 Verzeichnis(se), 65.047.408.640 Bytes frei 316 Dieser Beitrag wurde am 24.04.2009 um 20:14 Uhr von seysas editiert.
|
|
|
|
|
|
|
24.04.2009, 20:35
Member
Beiträge: 3716 |
#6
a doch vundofix schon verwendet. ich möchte den inhalt von c:\vundofix.txt sehen.
|
|
|
|
|
|
|
24.04.2009, 21:01
Member
Themenstarter Beiträge: 14 |
#7
Zitat virenfinder posteteVundoFix V7.0.6 Scan started at 19:18:05 09.04.2009 Listing files found while scanning.... No infected files were found. Beginning removal... VundoFix V7.0.6 Scan started at 23:55:34 13.04.2009 Listing files found while scanning.... No infected files were found. VundoFix V7.0.6 Scan started at 23:57:40 23.04.2009 Listing files found while scanning.... No infected files were found. VundoFix V7.0.6 Scan started at 20:45:59 24.04.2009 Listing files found while scanning.... No infected files were found. |
|
|
|
|
|
|
24.04.2009, 21:04
Member
Beiträge: 3716 |
||
|
|
|
|
|
24.04.2009, 22:22
Member
Themenstarter Beiträge: 14 |
#9
Hier mein Log
catchme 0.3.1361.2 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net Rootkit scan 2009-04-24 22:23:14 Windows 5.1.2600 Service Pack 3 NTFS scanning hidden processes ... scanning hidden services & system hive ... [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\sptd\Cfg] "s1"=dword:2df9c43f "s2"=dword:110480d0 "h0"=dword:00000001 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4] "h0"=dword:00000000 "khjeh"=hex:ae,5c,a5,b3,e7,6f,dd,34,e6,e2,d3,73,4a,fe,24,48,97,03,d8,38,31,.. "p0"="C:\Programme\DAEMON Tools Lite\" [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001] "khjeh"=hex:d1,64,d4,03,6f,46,04,9d,8b,4e,9e,28,8b,57,7a,38,d8,b1,e7,ab,e2,.. "a0"=hex:20,01,00,00,fc,92,b8,63,6d,5c,dd,02,14,7b,19,1c,e0,d3,af,a7,12,.. [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf40] "khjeh"=hex:cf,be,64,61,2d,ac,41,18,ad,4f,0a,df,8d,37,3a,c1,a3,0d,7b,72,bb,.. [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf41] "khjeh"=hex:ea,0e,7e,35,3a,2e,98,fc,d9,7a,8f,8b,7c,00,07,6c,c4,00,bc,37,0a,.. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4] "h0"=dword:00000000 "khjeh"=hex:ae,5c,a5,b3,e7,6f,dd,34,e6,e2,d3,73,4a,fe,24,48,97,03,d8,38,31,.. "p0"="C:\Programme\DAEMON Tools\" [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001] "khjeh"=hex:a4,fd,b1,22,3b,86,d0,eb,c3,f9,10,9a,6b,5e,b7,f0,78,1a,3d,e5,8e,.. "a0"=hex:20,01,00,00,e4,2b,f9,21,45,fb,9e,c7,84,73,2a,4e,d8,37,ff,22,aa,.. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf40] "khjeh"=hex:d2,fe,79,66,3d,39,08,01,96,2e,8f,1d,11,bb,d8,69,1d,37,f3,51,6e,.. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf41] "khjeh"=hex:ea,0e,7e,35,3a,2e,98,fc,d9,7a,8f,8b,7c,00,07,6c,c4,00,bc,37,0a,.. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4] "h0"=dword:00000000 "khjeh"=hex:ae,5c,a5,b3,e7,6f,dd,34,e6,e2,d3,73,4a,fe,24,48,97,03,d8,38,31,.. "p0"="C:\Programme\DAEMON Tools Lite\" [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001] "khjeh"=hex:d1,64,d4,03,6f,46,04,9d,8b,4e,9e,28,8b,57,7a,38,d8,b1,e7,ab,e2,.. "a0"=hex:20,01,00,00,fc,92,b8,63,6d,5c,dd,02,14,7b,19,1c,e0,d3,af,a7,12,.. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf40] "khjeh"=hex:cf,be,64,61,2d,ac,41,18,ad,4f,0a,df,8d,37,3a,c1,a3,0d,7b,72,bb,.. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf41] "khjeh"=hex:ea,0e,7e,35,3a,2e,98,fc,d9,7a,8f,8b,7c,00,07,6c,c4,00,bc,37,0a,.. scanning hidden registry entries ... scanning hidden files ... scan completed successfully hidden processes: 0 hidden services: 0 hidden files: 0 Dieser Beitrag wurde am 24.04.2009 um 22:27 Uhr von seysas editiert.
|
|
|
|
|
|
|
25.04.2009, 10:53
Member
Beiträge: 3716 |
#10
das war dcoh net das ganze log?
schau mal ob du im sdfix-ordner eine sdfix.txt findest und poste die |
|
|
|
|
|
|
25.04.2009, 11:04
Member
Themenstarter Beiträge: 14 |
#11
Hier schau mal ich hatte Dir vorher einen Catchme.log geschickt, aber vielleicht meintest du ein system report.
System Report ************* Run on 25.04.2009 at 16:52 Microsoft Windows XP [Version 5.1.2600] Current user is an administrator Running Processes: \SystemRoot\System32\smss.exe [904] \??\C:\windows\system32\csrss.exe [952] \??\C:\windows\system32\winlogon.exe [988] C:\windows\system32\services.exe [1032] C:\windows\system32\lsass.exe [1044] C:\windows\system32\Ati2evxx.exe [1244] C:\windows\system32\svchost.exe [1264] C:\windows\system32\svchost.exe [1332] C:\windows\System32\svchost.exe [1616] C:\windows\system32\svchost.exe [1660] C:\windows\system32\svchost.exe [1760] C:\windows\system32\svchost.exe [1960] C:\windows\system32\Ati2evxx.exe [304] C:\windows\system32\spoolsv.exe [536] C:\Programme\Avira\AntiVir Desktop\sched.exe [624] C:\windows\Explorer.EXE [1472] C:\Programme\Java\jre6\bin\jusched.exe [1748] C:\windows\RTHDCPL.EXE [1792] C:\Programme\ATI Technologies\ATI.ACE\Core-Static\MOM.exe [1788] C:\windows\Logi_MwX.Exe [1816] C:\Programme\Avira\AntiVir Desktop\avgnt.exe [1836] C:\windows\system32\ctfmon.exe [1844] C:\Programme\DAEMON Tools Lite\daemon.exe [1852] C:\Programme\Launchy\Launchy.exe [1880] C:\Programme\Logitech\SetPoint\SetPoint.exe [1712] C:\Programme\Gemeinsame Dateien\Logishrd\KHAL2\KHALMNPR.EXE [1984] C:\Programme\ATI Technologies\ATI.ACE\Core-Static\ccc.exe [1284] C:\windows\system32\svchost.exe [2100] C:\Programme\Mozilla Thunderbird\thunderbird.exe [2688] C:\Programme\Gemeinsame Dateien\Acronis\Schedule2\schedul2.exe [2908] C:\Programme\Avira\AntiVir Desktop\avguard.exe [2932] C:\Programme\Gemeinsame Dateien\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe [2944] C:\Programme\Bonjour\mDNSResponder.exe [2980] C:\Programme\Java\jre6\bin\jqs.exe [3096] C:\Programme\Nero\Nero8\Nero BackItUp\NBService.exe [3668] C:\windows\system32\IoctlSvc.exe [3808] C:\windows\system32\PnkBstrA.exe [3820] C:\windows\system32\PnkBstrB.exe [3848] C:\windows\system32\svchost.exe [3984] C:\Programme\Gemeinsame Dateien\Acronis\Fomatik\TrueImageTryStartService.exe [788] C:\Programme\Canon\CAL\CALMAIN.exe [1576] C:\WINDOWS\system32\wbem\wmiapsrv.exe [3768] C:\windows\System32\alg.exe [4060] C:\windows\system32\wscntfy.exe [2748] C:\Programme\Mozilla Firefox\firefox.exe [3520] C:\windows\system32\NOTEPAD.EXE [1112] Drivers - Running: acedrv10 acehlp10 ACPI adfs AFD AFS2K Arp1394 atapi ati2mtag audstub avgio avgntflt avipbb Beep Cdfs Cdrom CLEDX Disk dmio dmload Fdc Fips Flpydisk FltMgr Ftdisk Gpc hamachi HDAudBus HidUsb HTTP Imapi IntcAzAudAddService intelppm IpNat IPSec isapnp Kbdclass kbdhid kmixer KSecDD Lbd LHidFilt LMouFilt LUsbFilt mnmdd Mouclass mouhid MountMgr MRxDAV MRxSmb Msfs mssmbios Mup NDIS NdisTapi Ndisuio NdisWan NDProxy NetBIOS NetBT NIC1394 Npfs NPF_devolo Ntfs Null ohci1394 Parport PartMgr ParVdm PCI PCIIde PptpMiniport PSched Ptilink RasAcd Rasl2tp RasPppoe Raspti Rdbss RDPCDD rdpdr redbook rspndr RTLE8023xp serenum Serial snapman SNXPCARD SNXPSERX sptd sr Srv ssmdrv swenum sysaudio Tcpip tdrpman TermDD thdudf tifsfilter timounter Udfs Update usbccgp usbehci usbhub usbuhci VgaSave VolSnap Wanarp Wdf01000 wdmaud WudfPf Drivers - Stopped: Abiosdsk abp480n5 ACPIEC adpu160m aec Aha154x aic78u2 aic78xx AliIde amsint asc asc3350p asc3550 AsyncMac Atdisk ATIAVAIW Atmarpc catchme cbidf2k CCDECODE cd20xrnt Cdaudio Changer CmdIde Cpqarray dac960nt dmboot DMusic dpti2o drmkaud Fastfat fspio gdrv hpn HPZid412 HPZipr12 HPZius12 i2omgmt i2omp i8042prt ini910u IntelIde Ip6Fw IpFilterDriver IpInIp IRENUM L8042pr2 lbrtfdc LHidUsb libusb0 LMouFlt2 lusbaudio MagixASIODrv MBAMSwissArmy Modem MPE mraid35x MSKSSRV MSPCLOCK MSPQM MSTEE NABTSFEC NdisIP nmwcd nmwcdc nmwcdnsu nmwcdnsuc NwlnkFlt NwlnkFwd PCIDump Pcmcia PDCOMP PDFRAME PDRELI PDRFRAME perc2 perc2hib QCEmerald ql1080 Ql10wnt ql12160 ql1240 ql1280 RDPWD Secdrv Sfloppy Simbad SLIP Sparrow splitter streamip swmidi symc810 symc8xx sym_hi sym_u3 TDPIPE TDTCP TosIde ultra upperdev usbprint usbscan usbser UsbserFilt USBSTOR ViaIde WDICA WSTCODEC WudfRd XPADFL02 Services - Running: AcrSch2Svc ALG AntiVirSchedulerService AntiVirService Apple Ati AudioSrv BITS Bonjour Browser CCALib8 CryptSvc DcomLaunch Dhcp dmserver Dnscache ERSvc Eventlog EventSystem FastUserSwitchingCompatibility helpsvc HidServ JavaQuickStarterService lanmanserver lanmanworkstation LmHosts Nero Netman Nla PLFlash PlugPlay PnkBstrA PnkBstrB PolicyAgent ProtectedStorage RasMan RemoteRegistry RpcSs SamSs Schedule seclogon SENS SharedAccess ShellHWDetection Spooler srservice SSDPSRV stisvc TapiSrv TermService Themes TrkWks TryAndDecideService UxTuneUp W32Time WebClient winmgmt WmiApSrv wscsvc wuauserv WudfSvc WZCSVC Services - Stopped: Alerter AppMgmt aspnet_state ATI CiSvc ClipSrv clr_optimization_v2.0.50727_32 COMSysApp dmadmin Dot3svc EapHost FanSpeedNT FirebirdServerMAGIXInstance FLEXnet FontCache3.0.0.0 hkmsvc HTTPFilter IDriverT idsvc ImapiService LBTServ Messenger mnmsrvc MSDTC MSIServer napagent NetDDE NetDDEdsdm Netlogon NetTcpPortSharing NMIndexingService NtLmSsp NtmsSvc odserv ose Pml RasAuto RDSessMgr RemoteAccess RpcLocator RSVP SCardSvr ServiceLayer SwPrv SysmonLog TlntSvr TuneUp.Defrag TVersityMediaServer upnphost UPS VSS WmdmPmSN Wmi WMPNetworkSvc xmlprov Files Created/Modified - 60 Days: C:\ 25 Apr 2009 15:01:04 3.756.511.232 A.SH. "C:\hiberfil.sys" 25 Apr 2009 15:01:02 2.145.386.496 A.SH. "C:\pagefile.sys" C:\windows\ 25 Apr 2009 15:01:08 2.048 A.S.. "C:\WINDOWS\bootstat.dat" 10 Apr 2009 23:17:54 472.576 A.... "C:\WINDOWS\Radeon Omega Drivers v4.8.442 Uninstall.exe" 21 Apr 2009 9:58:10 109.568 A.... "C:\WINDOWS\vFind.exe" 24 Apr 2009 16:25:08 110 A.... "C:\WINDOWS\ERDNT\CFrecovery.bat" 25 Feb 2009 22:44:30 49.664 A.... "C:\WINDOWS\system32\amdpcom32.dll" 25 Feb 2009 22:32:06 626.688 A.... "C:\WINDOWS\system32\ati2cqag.dll" 25 Feb 2009 23:41:12 325.120 A.... "C:\WINDOWS\system32\ati2dvag.dll" 25 Feb 2009 23:29:34 43.520 A.... "C:\WINDOWS\system32\ati2edxx.dll" 25 Feb 2009 23:29:16 155.648 A.... "C:\WINDOWS\system32\ati2evxx.dll" 25 Feb 2009 23:27:42 602.112 A.... "C:\WINDOWS\system32\ati2evxx.exe" 25 Feb 2009 23:29:42 26.112 A.... "C:\WINDOWS\system32\Ati2mdxx.exe" 25 Feb 2009 15:15:00 593.920 ..... "C:\WINDOWS\system32\ati2sgag.exe" 25 Feb 2009 23:16:46 3.817.984 A.... "C:\WINDOWS\system32\ati3duag.dll" 25 Feb 2009 22:38:48 126.976 A.... "C:\WINDOWS\system32\atiadlxx.dll" 25 Feb 2009 22:32:54 45.056 A.... "C:\WINDOWS\system32\aticalcl.dll" 25 Feb 2009 22:30:02 3.227.648 A.... "C:\WINDOWS\system32\aticaldd.dll" 25 Feb 2009 22:33:00 45.056 A.... "C:\WINDOWS\system32\aticalrt.dll" 25 Feb 2009 23:26:18 53.248 A.... "C:\WINDOWS\system32\ATIDDC.DLL" 25 Feb 2009 23:42:32 442.368 A.... "C:\WINDOWS\system32\ATIDEMGX.dll" 25 Feb 2009 23:09:44 307.200 A.... "C:\WINDOWS\system32\atiiiexx.dll" 25 Feb 2009 22:40:22 475.136 A.... "C:\WINDOWS\system32\atikvmag.dll" 25 Feb 2009 23:30:16 11.841.536 A.... "C:\WINDOWS\system32\atioglxx.dll" 25 Feb 2009 22:35:10 290.816 A.... "C:\WINDOWS\system32\atiok3x2.dll" 25 Feb 2009 23:30:04 204.800 A.... "C:\WINDOWS\system32\atipdlxx.dll" 25 Feb 2009 22:38:38 17.408 A.... "C:\WINDOWS\system32\atitvo32.dll" 25 Feb 2009 22:58:44 3.107.788 A.... "C:\WINDOWS\system32\ativva5x.dat" 25 Feb 2009 22:58:44 887.724 A.... "C:\WINDOWS\system32\ativva6x.dat" 25 Feb 2009 22:59:32 2.670.080 A.... "C:\WINDOWS\system32\ativvaxx.dll" 20 Apr 2009 22:59:02 1.079.808 A.... "C:\WINDOWS\system32\AutoPartNt.exe" 24 Apr 2009 20:34:34 410.976 A.... "C:\WINDOWS\system32\deploytk.dll" 17 Mar 2009 17:39:18 2.337.464 A.... "C:\WINDOWS\system32\FNTCACHE.DAT" 24 Apr 2009 20:34:34 139.264 A.... "C:\WINDOWS\system32\java.exe" 24 Apr 2009 20:34:34 139.264 A.... "C:\WINDOWS\system32\javaw.exe" 24 Apr 2009 20:34:34 143.360 A.... "C:\WINDOWS\system32\javaws.exe" 21 Mar 2009 16:06:58 1.063.424 A.... "C:\WINDOWS\system32\kernel32.dll" 25 Feb 2009 23:29:50 155.648 A.... "C:\WINDOWS\system32\Oemdspif.dll" 6 Mar 2009 16:19:00 286.720 A.... "C:\WINDOWS\system32\pdh.dll" 31 Mar 2009 7:30:20 83.976 A.... "C:\WINDOWS\system32\perfc007.dat" 31 Mar 2009 7:30:20 71.046 A.... "C:\WINDOWS\system32\perfc009.dat" 31 Mar 2009 7:30:20 456.616 A.... "C:\WINDOWS\system32\perfh007.dat" 31 Mar 2009 7:30:20 438.960 A.... "C:\WINDOWS\system32\perfh009.dat" 1 Mar 2009 19:34:46 75.064 A.... "C:\WINDOWS\system32\PnkBstrA.exe" 24 Apr 2009 20:47:46 189.072 A.... "C:\WINDOWS\system32\PnkBstrB.exe" 26 Mar 2009 18:46:00 361.728 A.... "C:\WINDOWS\system32\TuneUpDefragService.exe" 3 Mar 2009 2:03:36 826.368 A.... "C:\WINDOWS\system32\wininet.dll" 25 Apr 2009 15:01:10 6 A..H. "C:\WINDOWS\Tasks\SA.DAT" 25 Apr 2009 16:50:42 247 A.... "C:\WINDOWS\temp\scs1E.tmp" 25 Feb 2009 22:32:06 626.688 A.... "C:\WINDOWS\system32\dllcache\ati2cqag.dll" 25 Feb 2009 23:41:12 325.120 A.... "C:\WINDOWS\system32\dllcache\ati2dvag.dll" 26 Feb 2009 0:58:58 3.565.568 A.... "C:\WINDOWS\system32\dllcache\ati2mtag.sys" 25 Feb 2009 23:16:46 3.817.984 A.... "C:\WINDOWS\system32\dllcache\ati3duag.dll" 25 Feb 2009 22:59:32 2.670.080 A.... "C:\WINDOWS\system32\dllcache\ativvaxx.dll" 28 Feb 2009 6:54:42 636.072 A.... "C:\WINDOWS\system32\dllcache\iexplore.exe" 21 Mar 2009 16:06:58 1.063.424 ..... "C:\WINDOWS\system32\dllcache\kernel32.dll" 6 Mar 2009 16:19:00 286.720 ..... "C:\WINDOWS\system32\dllcache\pdh.dll" 3 Mar 2009 2:03:36 826.368 A.... "C:\WINDOWS\system32\dllcache\wininet.dll" 25 Feb 2009 22:37:48 53.248 A.... "C:\WINDOWS\system32\drivers\ati2erec.dll" 26 Feb 2009 0:58:58 3.565.568 A.... "C:\WINDOWS\system32\drivers\ati2mtag.sys" 9 Mar 2009 21:06:56 64.160 A.... "C:\WINDOWS\system32\drivers\Lbd.sys" 6 Apr 2009 15:32:46 15.504 A.... "C:\WINDOWS\system32\drivers\mbam.sys" 6 Apr 2009 15:32:54 38.496 A.... "C:\WINDOWS\system32\drivers\mbamswissarmy.sys" 24 Apr 2009 20:38:28 138.920 A.... "C:\WINDOWS\system32\drivers\PnkBstrK.sys" 24 Apr 2009 23:52:18 721.904 A.... "C:\WINDOWS\system32\drivers\sptd.sys" 24 Apr 2009 14:48:26 49.152 A.... "C:\WINDOWS\WinSxS\MSIL_CCC_90ba9c70f846762e_2.0.0.0_x-ww_c7ed2bb0\CCC.EXE" 24 Apr 2009 14:48:26 49.152 A.... "C:\WINDOWS\WinSxS\MSIL_CLI_90ba9c70f846762e_2.0.0.0_x-ww_42656733\CLI.EXE" 24 Apr 2009 14:48:24 86.016 A.... "C:\WINDOWS\WinSxS\MSIL_LOG_90ba9c70f846762e_2.0.3343.28329_x-ww_2d908276\LOG.EXE" 24 Apr 2009 14:48:26 49.152 A.... "C:\WINDOWS\WinSxS\MSIL_MOM_90ba9c70f846762e_2.0.0.0_x-ww_a60193a8\MOM.EXE" 24 Mar 2009 8:26:56 84.661 A.... "C:\WINDOWS\system32\Macromed\Flash\uninstall_plugin.exe" 24 Apr 2009 20:04:42 233.472 A.... "C:\WINDOWS\ERDNT\Hiv-backup\Users\00000001\NTUSER.DAT" 24 Apr 2009 20:04:42 8.192 A.... "C:\WINDOWS\ERDNT\Hiv-backup\Users\00000002\UsrClass.dat" 24 Apr 2009 20:04:42 233.472 A.... "C:\WINDOWS\ERDNT\Hiv-backup\Users\00000003\NTUSER.DAT" 24 Apr 2009 20:04:42 8.192 A.... "C:\WINDOWS\ERDNT\Hiv-backup\Users\00000004\UsrClass.dat" 24 Apr 2009 20:04:42 10.874.880 A.... "C:\WINDOWS\ERDNT\Hiv-backup\Users\00000005\NTUSER.DAT" 24 Apr 2009 20:04:42 319.488 A.... "C:\WINDOWS\ERDNT\Hiv-backup\Users\00000006\UsrClass.dat" 25 Feb 2009 22:44:30 49.664 A.... "C:\WINDOWS\system32\ReinstallBackups\0001\DriverFiles\amdpcom32.dll" C:\Programme\ 23 Apr 2009 15:51:38 691.656 A.... "C:\Programme\DAEMON Tools Lite\daemon.exe" 23 Apr 2009 15:50:48 1.093.064 A.... "C:\Programme\DAEMON Tools Lite\DTCommonRes.dll" 23 Apr 2009 15:52:20 2.158.024 A.... "C:\Programme\DAEMON Tools Lite\Engine.dll" 23 Apr 2009 15:52:26 725.960 A.... "C:\Programme\DAEMON Tools Lite\uninst.exe" 13 Mar 2009 13:29:44 83.968 A.... "C:\Programme\ICQ6\IcqUpdater.exe" 28 Feb 2009 6:54:42 636.072 A.... "C:\Programme\Internet Explorer\iexplore.exe" 6 Apr 2009 15:32:46 380.048 A.... "C:\Programme\Malwarebytes' Anti-Malware\mbam-dor.exe" 6 Apr 2009 15:32:44 73.360 A.... "C:\Programme\Malwarebytes' Anti-Malware\mbam.dll" 6 Apr 2009 15:32:44 1.277.584 A.... "C:\Programme\Malwarebytes' Anti-Malware\mbam.exe" 6 Apr 2009 15:32:46 73.360 A.... "C:\Programme\Malwarebytes' Anti-Malware\mbamext.dll" 6 Apr 2009 15:32:48 401.040 A.... "C:\Programme\Malwarebytes' Anti-Malware\mbamgui.exe" 6 Apr 2009 15:32:48 179.856 A.... "C:\Programme\Malwarebytes' Anti-Malware\mbamservice.exe" 6 Apr 2009 15:32:48 44.688 A.... "C:\Programme\Malwarebytes' Anti-Malware\ssubtmr6.dll" 24 Apr 2009 16:09:08 7.569 A.... "C:\Programme\Malwarebytes' Anti-Malware\unins000.dat" 24 Apr 2009 16:08:48 690.832 A.... "C:\Programme\Malwarebytes' Anti-Malware\unins000.exe" 6 Apr 2009 15:32:50 77.968 A.... "C:\Programme\Malwarebytes' Anti-Malware\zlib.dll" 13 Mar 2009 15:23:04 108.032 A.... "C:\Programme\mkv2vob\mkv2vob.exe" 23 Apr 2009 16:23:46 17.400 A.... "C:\Programme\Mozilla Firefox\AccessibleMarshal.dll" 23 Apr 2009 16:23:48 185.848 A.... "C:\Programme\Mozilla Firefox\crashreporter.exe" 23 Apr 2009 16:23:48 307.704 A.... "C:\Programme\Mozilla Firefox\firefox.exe" 23 Apr 2009 16:23:50 233.472 A.... "C:\Programme\Mozilla Firefox\freebl3.dll" 23 Apr 2009 16:23:50 697.848 A.... "C:\Programme\Mozilla Firefox\js3250.dll" 23 Apr 2009 16:23:50 710.136 A.... "C:\Programme\Mozilla Firefox\mozcrt19.dll" 23 Apr 2009 16:23:50 198.136 A.... "C:\Programme\Mozilla Firefox\nspr4.dll" 23 Apr 2009 16:23:52 718.328 A.... "C:\Programme\Mozilla Firefox\nss3.dll" 23 Apr 2009 16:23:52 292.344 A.... "C:\Programme\Mozilla Firefox\nssckbi.dll" 23 Apr 2009 16:23:52 103.928 A.... "C:\Programme\Mozilla Firefox\nssdbm3.dll" 23 Apr 2009 16:23:52 87.544 A.... "C:\Programme\Mozilla Firefox\nssutil3.dll" 23 Apr 2009 16:23:52 20.472 A.... "C:\Programme\Mozilla Firefox\plc4.dll" 23 Apr 2009 16:23:52 17.400 A.... "C:\Programme\Mozilla Firefox\plds4.dll" 23 Apr 2009 16:23:52 103.928 A.... "C:\Programme\Mozilla Firefox\smime3.dll" 23 Apr 2009 16:23:52 151.552 A.... "C:\Programme\Mozilla Firefox\softokn3.dll" 23 Apr 2009 16:23:52 395.768 A.... "C:\Programme\Mozilla Firefox\sqlite3.dll" 23 Apr 2009 16:23:52 136.696 A.... "C:\Programme\Mozilla Firefox\ssl3.dll" 23 Apr 2009 16:23:52 242.168 A.... "C:\Programme\Mozilla Firefox\updater.exe" 23 Apr 2009 16:23:52 17.912 A.... "C:\Programme\Mozilla Firefox\xpcom.dll" 23 Apr 2009 16:23:52 9.758.200 A.... "C:\Programme\Mozilla Firefox\xul.dll" 24 Mar 2009 18:59:58 13.944 A.... "C:\Programme\Mozilla Thunderbird\AccessibleMarshal.dll" 24 Mar 2009 19:00:00 200.829 A.... "C:\Programme\Mozilla Thunderbird\freebl3.dll" 24 Mar 2009 19:00:00 458.848 A.... "C:\Programme\Mozilla Thunderbird\js3250.dll" 24 Mar 2009 19:00:00 107.903 A.... "C:\Programme\Mozilla Thunderbird\license.html" 24 Mar 2009 18:59:58 23.672 A.... "C:\Programme\Mozilla Thunderbird\MapiProxy.dll" 24 Mar 2009 19:00:00 11.888 A.... "C:\Programme\Mozilla Thunderbird\mozMapi32.dll" 24 Mar 2009 19:00:00 145.032 A.... "C:\Programme\Mozilla Thunderbird\nsldap32v50.dll" 24 Mar 2009 19:00:00 30.344 A.... "C:\Programme\Mozilla Thunderbird\nsldappr32v50.dll" 24 Mar 2009 19:00:00 161.384 A.... "C:\Programme\Mozilla Thunderbird\nspr4.dll" 24 Mar 2009 19:00:00 378.464 A.... "C:\Programme\Mozilla Thunderbird\nss3.dll" 24 Mar 2009 19:00:00 300.648 A.... "C:\Programme\Mozilla Thunderbird\nssckbi.dll" 24 Mar 2009 19:00:00 34.416 A.... "C:\Programme\Mozilla Thunderbird\plc4.dll" 24 Mar 2009 19:00:00 30.312 A.... "C:\Programme\Mozilla Thunderbird\plds4.dll" 24 Mar 2009 19:00:00 112.224 A.... "C:\Programme\Mozilla Thunderbird\smime3.dll" 24 Mar 2009 19:00:00 254.060 A.... "C:\Programme\Mozilla Thunderbird\softokn3.dll" 24 Mar 2009 19:00:00 136.800 A.... "C:\Programme\Mozilla Thunderbird\ssl3.dll" 24 Mar 2009 19:00:02 8.500.328 A.... "C:\Programme\Mozilla Thunderbird\thunderbird.exe" 24 Mar 2009 19:00:02 132.224 A.... "C:\Programme\Mozilla Thunderbird\updater.exe" 24 Mar 2009 19:00:02 13.408 A.... "C:\Programme\Mozilla Thunderbird\xpcom.dll" 24 Mar 2009 19:00:04 73.840 A.... "C:\Programme\Mozilla Thunderbird\xpcom_compat.dll" 24 Mar 2009 19:00:04 420.456 A.... "C:\Programme\Mozilla Thunderbird\xpcom_core.dll" 24 Mar 2009 19:00:04 73.328 A.... "C:\Programme\Mozilla Thunderbird\xpicleanup.exe" 24 Mar 2009 19:00:04 12.392 A.... "C:\Programme\Mozilla Thunderbird\xpistub.dll" 2 Mar 2009 22:41:38 169.367 A.... "C:\Programme\PS3 Media Server\PMS.exe" 5 Mar 2009 20:56:20 48.352 A.... "C:\Programme\PS3 Media Server\Uninst.exe" 5 Mar 2009 16:07:20 2.260.480 A.SHR "C:\Programme\Spybot - Search & Destroy\TeaTimer.exe" 24 Apr 2009 15:25:22 25.417 A.... "C:\Programme\Spybot - Search & Destroy\unins000.dat" 24 Apr 2009 15:24:48 696.200 A.... "C:\Programme\Spybot - Search & Destroy\unins000.exe" 10 Apr 2009 16:07:54 47.196 A.... "C:\Programme\SystemRequirementsLab\Uninstall.exe" 21 Apr 2009 23:11:18 468 A.... "C:\Programme\TuneUp Utilities 2008\TUProduct.dat" 3 Mar 2009 11:36:48 330 A.... "C:\Programme\TuneUp Utilities 2008\Update-TU2008-DE.htm" 3 Mar 2009 11:36:48 332 A.... "C:\Programme\TuneUp Utilities 2008\Update-TU2008-EN.htm" 9 Mar 2009 15:56:42 342 A.... "C:\Programme\TuneUp Utilities 2008\Update-TU2008-UK.htm" 24 Apr 2009 20:47:52 3.139.984 A.... "C:\Programme\Activision\Call of Duty 4 - Modern Warfare\servercache.dat" 25 Feb 2009 22:15:00 139.264 ..... "C:\Programme\ATI Technologies\UninstallAll\AtiCimUn.exe" 14 Apr 2009 23:43:48 176.500 A.... "C:\Programme\Avira\AntiVir Desktop\aecore.dll" 23 Apr 2009 23:20:22 348.532 A.... "C:\Programme\Avira\AntiVir Desktop\aegen.dll" 26 Feb 2009 21:01:58 119.158 A.... "C:\Programme\Avira\AntiVir Desktop\aehelp.dll" 24 Apr 2009 23:21:42 1.737.080 A.... "C:\Programme\Avira\AntiVir Desktop\aeheur.dll" 26 Feb 2009 21:01:58 196.987 A.... "C:\Programme\Avira\AntiVir Desktop\aeoffice.dll" 18 Apr 2009 12:02:22 397.685 A.... "C:\Programme\Avira\AntiVir Desktop\aepack.dll" 3 Apr 2009 19:45:14 127.348 A.... "C:\Programme\Avira\AntiVir Desktop\aescn.dll" 23 Apr 2009 23:20:24 381.306 A.... "C:\Programme\Avira\AntiVir Desktop\aescript.dll" 24 Apr 2009 23:21:42 2.159 A.... "C:\Programme\Avira\AntiVir Desktop\aeset.dat" 27 Feb 2009 14:15:02 442.625 A.... "C:\Programme\Avira\AntiVir Desktop\avconfig.dll" 11 Mar 2009 16:50:58 11.009 A.... "C:\Programme\Avira\AntiVir Desktop\avevtrc.dll" 2 Mar 2009 13:08:44 209.153 A.... "C:\Programme\Avira\AntiVir Desktop\avgnt.exe" 2 Mar 2009 13:10:28 185.089 A.... "C:\Programme\Avira\AntiVir Desktop\avguard.exe" 27 Mar 2009 19:14:14 17.962 A.... "C:\Programme\Avira\AntiVir Desktop\build.dat" 27 Feb 2009 11:47:44 448.769 A.... "C:\Programme\Avira\AntiVir Desktop\ccgen.dll" 25 Feb 2009 17:25:28 22.273 A.... "C:\Programme\Avira\AntiVir Desktop\ccgrdrc.dll" 2 Mar 2009 13:11:50 341.249 A.... "C:\Programme\Avira\AntiVir Desktop\ccquamgr.dll" 25 Feb 2009 17:26:40 18.177 A.... "C:\Programme\Avira\AntiVir Desktop\ccquarc.dll" 11 Mar 2009 16:50:52 87.809 A.... "C:\Programme\Avira\AntiVir Desktop\rctext.dll" 5 Mar 2009 17:17:22 108.289 A.... "C:\Programme\Avira\AntiVir Desktop\sched.exe" 10 Mar 2009 11:03:22 679.681 A.... "C:\Programme\Avira\AntiVir Desktop\setup.exe" 11 Mar 2009 16:50:56 49.246 A.... "C:\Programme\Avira\AntiVir Desktop\sweb.zip" 27 Feb 2009 14:16:10 325.377 A.... "C:\Programme\Avira\AntiVir Desktop\update.dll" 5 Mar 2009 17:19:56 401.153 A.... "C:\Programme\Avira\AntiVir Desktop\update.exe" 27 Mar 2009 18:24:16 38.388 A.... "C:\Programme\BitComet\rules\dhtnodes.dat" 23 Apr 2009 15:50:38 72.192 A.... "C:\Programme\DAEMON Tools Lite\Lang\ARA.dll" 23 Apr 2009 15:50:40 95.232 A.... "C:\Programme\DAEMON Tools Lite\Lang\BGR.dll" 23 Apr 2009 15:50:40 61.440 A.... "C:\Programme\DAEMON Tools Lite\Lang\BIH.dll" 23 Apr 2009 15:50:40 4.608 A.... "C:\Programme\DAEMON Tools Lite\Lang\CAT.dll" 23 Apr 2009 15:50:34 37.888 A.... "C:\Programme\DAEMON Tools Lite\Lang\CHS.dll" 23 Apr 2009 15:50:34 38.400 A.... "C:\Programme\DAEMON Tools Lite\Lang\CHT.dll" 23 Apr 2009 15:50:34 84.480 A.... "C:\Programme\DAEMON Tools Lite\Lang\CSY.dll" 23 Apr 2009 15:50:38 84.992 A.... "C:\Programme\DAEMON Tools Lite\Lang\DAN.dll" 23 Apr 2009 15:50:34 98.816 A.... "C:\Programme\DAEMON Tools Lite\Lang\DEU.dll" 23 Apr 2009 15:50:40 19.456 A.... "C:\Programme\DAEMON Tools Lite\Lang\ELL.dll" 23 Apr 2009 15:50:32 79.872 A.... "C:\Programme\DAEMON Tools Lite\Lang\ENU.dll" 23 Apr 2009 15:50:36 98.304 A.... "C:\Programme\DAEMON Tools Lite\Lang\ESN.dll" 23 Apr 2009 15:50:40 88.576 A.... "C:\Programme\DAEMON Tools Lite\Lang\FIN.dll" 23 Apr 2009 15:50:34 102.400 A.... "C:\Programme\DAEMON Tools Lite\Lang\FRA.dll" 23 Apr 2009 15:50:36 69.120 A.... "C:\Programme\DAEMON Tools Lite\Lang\HEB.dll" 23 Apr 2009 15:50:36 90.624 A.... "C:\Programme\DAEMON Tools Lite\Lang\HRV.dll" 23 Apr 2009 15:50:36 54.272 A.... "C:\Programme\DAEMON Tools Lite\Lang\HUN.dll" 23 Apr 2009 15:50:34 95.232 A.... "C:\Programme\DAEMON Tools Lite\Lang\ITA.dll" 23 Apr 2009 15:50:38 52.736 A.... "C:\Programme\DAEMON Tools Lite\Lang\JPN.dll" 23 Apr 2009 15:50:40 4.096 A.... "C:\Programme\DAEMON Tools Lite\Lang\KAT.dll" 23 Apr 2009 15:50:38 46.080 A.... "C:\Programme\DAEMON Tools Lite\Lang\KOR.dll" 23 Apr 2009 15:50:38 93.696 A.... "C:\Programme\DAEMON Tools Lite\Lang\LTH.dll" 23 Apr 2009 15:50:40 25.088 A.... "C:\Programme\DAEMON Tools Lite\Lang\LVI.dll" 23 Apr 2009 15:50:38 68.608 A.... "C:\Programme\DAEMON Tools Lite\Lang\NLB.dll" 23 Apr 2009 15:50:36 92.160 A.... "C:\Programme\DAEMON Tools Lite\Lang\NOR.dll" 23 Apr 2009 15:50:36 89.088 A.... "C:\Programme\DAEMON Tools Lite\Lang\PLK.dll" 23 Apr 2009 15:50:36 54.272 A.... "C:\Programme\DAEMON Tools Lite\Lang\PTB.dll" 23 Apr 2009 15:50:38 91.136 A.... "C:\Programme\DAEMON Tools Lite\Lang\ROM.dll" 23 Apr 2009 15:50:34 89.600 A.... "C:\Programme\DAEMON Tools Lite\Lang\RUS.dll" 23 Apr 2009 15:50:36 66.048 A.... "C:\Programme\DAEMON Tools Lite\Lang\SKY.dll" 23 Apr 2009 15:50:38 80.384 A.... "C:\Programme\DAEMON Tools Lite\Lang\SLV.dll" 23 Apr 2009 15:50:38 87.040 A.... "C:\Programme\DAEMON Tools Lite\Lang\SRL.dll" 23 Apr 2009 15:50:34 82.432 A.... "C:\Programme\DAEMON Tools Lite\Lang\SVE.dll" 23 Apr 2009 15:50:40 93.184 A.... "C:\Programme\DAEMON Tools Lite\Lang\TRK.dll" 23 Apr 2009 15:50:36 91.648 A.... "C:\Programme\DAEMON Tools Lite\Lang\UKR.dll" 23 Apr 2009 23:34:20 112 A.... "C:\Programme\Enigma Software Group\SpyHunter\key.dat" 23 Apr 2009 16:44:52 686 A.... "C:\Programme\Hitman Pro\logs\Hitman_Pro_2009-04-23_16-44-22.htm" 23 Apr 2009 17:47:54 4.660 A.... "C:\Programme\Hitman Pro\logs\Hitman_Pro_2009-04-23_17-45-05.htm" 23 Apr 2009 22:14:48 3.721 A.... "C:\Programme\Hitman Pro\logs\Hitman_Pro_2009-04-23_22-14-06.htm" 23 Apr 2009 23:26:34 8.596 A.... "C:\Programme\Hitman Pro\logs\Hitman_Pro_2009-04-23_22-17-29.htm" 25 Feb 2009 22:15:00 65.536 A.... "C:\Programme\InstallShield Installation Information\{43801800-CFEE-11D2-A41B-006097B55AD3}\Setup.exe" 16 Apr 2009 18:05:04 380.928 A.... "C:\Programme\InstallShield Installation Information\{82C19692-571C-45D2-BAF2-278225787A35}\_setup.dll" 25 Feb 2009 22:15:00 46.080 A.... "C:\Programme\InstallShield Installation Information\{9B94BE6F-7CA3-4C40-A266-62667FF746CC}\Setup.exe" 24 Apr 2009 20:34:34 994 A.... "C:\Programme\Java\jre6\Welcome.html" 7 Mar 2009 1:27:02 21.880.832 A.... "C:\Programme\KONAMI\Pro Evolution Soccer 6\pes6.exe" 13 Apr 2009 1:01:02 8.071 A.... "C:\Programme\Lavalys\EVEREST Ultimate Edition\unins000.dat" 13 Apr 2009 1:00:52 676.284 A.... "C:\Programme\Lavalys\EVEREST Ultimate Edition\unins000.exe" 28 Feb 2009 18:16:48 125.954 A.... "C:\Programme\MAGIX\MAGIX Fotobuch\uninstall.exe" 13 Mar 2009 15:23:06 307.712 A.... "C:\Programme\mkv2vob\tools\aften.exe" 13 Mar 2009 15:23:06 18.293 A.... "C:\Programme\mkv2vob\tools\dtsinpcm.exe" 23 Apr 2009 16:23:48 23.032 A.... "C:\Programme\Mozilla Firefox\components\browserdirprovider.dll" 23 Apr 2009 16:23:48 134.648 A.... "C:\Programme\Mozilla Firefox\components\brwsrcmp.dll" 24 Apr 2009 20:34:34 410.976 A.... "C:\Programme\Mozilla Firefox\plugins\npdeploytk.dll" 23 Apr 2009 16:23:52 65.528 A.... "C:\Programme\Mozilla Firefox\plugins\npnul32.dll" 23 Apr 2009 16:23:52 510.568 A.... "C:\Programme\Mozilla Firefox\uninstall\helper.exe" 24 Mar 2009 18:59:58 67.688 A.... "C:\Programme\Mozilla Thunderbird\components\jar50.dll" 24 Mar 2009 19:00:00 54.368 A.... "C:\Programme\Mozilla Thunderbird\components\jsd3250.dll" 24 Mar 2009 19:00:00 34.944 A.... "C:\Programme\Mozilla Thunderbird\components\myspell.dll" 24 Mar 2009 19:00:00 46.712 A.... "C:\Programme\Mozilla Thunderbird\components\spellchk.dll" 24 Mar 2009 19:00:00 172.136 A.... "C:\Programme\Mozilla Thunderbird\components\xpinstal.dll" 24 Mar 2009 19:00:02 320.168 A.... "C:\Programme\Mozilla Thunderbird\uninstall\helper.exe" 11 Mar 2009 10:20:26 1.065.888 A.... "C:\Programme\Spybot - Search & Destroy\Updates\teatimer166.exe" 11 Mar 2009 15:28:28 1.036.085 A.... "C:\Programme\Spybot - Search & Destroy\Updates\teatimer166.zip" 27 Feb 2009 18:18:36 4.070.696 A.... "C:\Programme\TeamViewer\Version4\TeamViewer.exe" 27 Feb 2009 18:07:58 185.640 A.... "C:\Programme\TeamViewer\Version4\TeamViewer_Service.exe" 27 Feb 2009 18:17:16 65.536 A.... "C:\Programme\TeamViewer\Version4\TV.dll" 16 Mar 2009 23:16:36 74.440 A.... "C:\Programme\TeamViewer\Version4\uninstall.exe" 23 Apr 2009 16:38:00 396.288 A.... "C:\Programme\Trend Micro\HijackThis\HijackThis.exe" 1 Apr 2009 0:15:18 297.984 A.... "C:\Programme\VideoLAN\VLC\axvlc.dll" 1 Apr 2009 0:15:18 104.448 A.... "C:\Programme\VideoLAN\VLC\libvlc.dll" 1 Apr 2009 0:15:18 2.052.096 A.... "C:\Programme\VideoLAN\VLC\libvlccore.dll" 1 Apr 2009 0:15:18 137.216 A.... "C:\Programme\VideoLAN\VLC\npvlc.dll" 19 Apr 2009 1:52:52 187.230 A.... "C:\Programme\VideoLAN\VLC\uninstall.exe" 1 Apr 2009 0:14:54 114.840 A.... "C:\Programme\VideoLAN\VLC\vlc.exe" 9 Apr 2009 23:31:40 881.908 A.... "C:\Programme\Activision\Call of Duty 4 - Modern Warfare\pb\pbcl.dll" 9 Apr 2009 23:30:24 876.513 A.... "C:\Programme\Activision\Call of Duty 4 - Modern Warfare\pb\pbc  d.dll"20 Apr 2009 19:04:18 100 A.... "C:\Programme\Activision\Call of Duty 4 - Modern Warfare\pb\pbgame.htm" 24 Apr 2009 20:42:18 1.664 A.... "C:\Programme\Activision\Call of Duty 4 - Modern Warfare\pb\pbns_c.dat" 20 Apr 2009 19:04:28 0 A.... "C:\Programme\Activision\Call of Duty 4 - Modern Warfare\pb\pbsecsv.htm" 14 Apr 2009 19:27:26 39 A.... "C:\Programme\Activision\Call of Duty 4 - Modern Warfare\pb\pbsv.dat" 9 Apr 2009 23:30:26 202.040 A.... "C:\Programme\Activision\Call of Duty 4 - Modern Warfare\pb\PnkBstrB.exe" 9 Apr 2009 23:31:26 137.688 A.... "C:\Programme\Activision\Call of Duty 4 - Modern Warfare\pb\PnkBstrK.sys" 25 Feb 2009 15:45:38 30 A.... "C:\Programme\ATI Technologies\ATI.ACE\Core-Implementation\ACE.dat" 25 Feb 2009 15:44:54 9.728 A.... "C:\Programme\ATI Technologies\ATI.ACE\Core-Implementation\AEM.Plugin.Source.EEU.Server.dll" 25 Feb 2009 15:44:54 20.480 A.... "C:\Programme\ATI Technologies\ATI.ACE\Core-Implementation\AEM.Plugin.Source.GD.Server.dll" 25 Feb 2009 15:44:56 45.056 A.... "C:\Programme\ATI Technologies\ATI.ACE\Core-Implementation\AEM.Plugin.Source.Kit.Server.dll" 25 Feb 2009 15:39:56 45.056 A.... "C:\Programme\ATI Technologies\ATI.ACE\Core-Implementation\AEM.Server.dll" 25 Feb 2009 15:44:20 61.440 A.... "C:\Programme\ATI Technologies\ATI.ACE\Core-Implementation\AEM.UI.dll" 25 Feb 2009 15:39:56 61.440 A.... "C:\Programme\ATI Technologies\ATI.ACE\Core-Implementation\APM.Server.dll" 25 Feb 2009 15:39:56 32.768 A.... "C:\Programme\ATI Technologies\ATI.ACE\Core-Implementation\ATICCCom.dll" 25 Feb 2009 15:39:58 81.920 A.... "C:\Programme\ATI Technologies\ATI.ACE\Core-Implementation\ATIDEMOS.dll" 25 Feb 2009 15:44:20 28.672 A.... "C:\Programme\ATI Technologies\ATI.ACE\Core-Implementation\CCC.Implementation.dll" 25 Feb 2009 15:41:28 61.440 A.... "C:\Programme\ATI Technologies\ATI.ACE\Core-Implementation\CLI.Component.Erecord.dll" 25 Feb 2009 15:45:08 278.528 A.... "C:\Programme\ATI Technologies\ATI.ACE\Core-Implementation\CLI.Component.Launchpad.dll" 25 Feb 2009 15:41:42 65.536 A.... "C:\Programme\ATI Technologies\ATI.ACE\Core-Implementation\CLI.Component.Dashboard.HotKeyManager.Resources.dll" 25 Feb 2009 15:44:16 20.480 A.... "C:\Programme\ATI Technologies\ATI.ACE\Core-Implementation\CLI.Component.Load.dll" 25 Feb 2009 15:41:42 65.536 A.... "C:\Programme\ATI Technologies\ATI.ACE\Core-Implementation\CLI.Component.Dashboard.ProfileManager.Resources.dll" 25 Feb 2009 15:39:54 7.168 A.... "C:\Programme\ATI Technologies\ATI.ACE\Core-Implementation\CLI.Component.Runtime.Extension.EEU.dll" 25 Feb 2009 15:44:16 20.480 A.... "C:\Programme\ATI Technologies\ATI.ACE\Core-Implementation\CLI.Component.Help.dll" 25 Feb 2009 15:41:42 188.416 A.... "C:\Programme\ATI Technologies\ATI.ACE\Core-Implementation\CLI.Component.Dashboard.ProfileManager.dll" 25 Feb 2009 15:40:44 405.504 A.... "C:\Programme\ATI Technologies\ATI.ACE\Core-Implementation\CLI.Component.Wizard.dll" 25 Feb 2009 15:39:58 81.920 A.... "C:\Programme\ATI Technologies\ATI.ACE\Core-Implementation\CLI.Component.Runtime.dll" 25 Feb 2009 15:44:04 544.768 A.... "C:\Programme\ATI Technologies\ATI.ACE\Core-Implementation\CLI.Component.Systemtray.dll" 25 Feb 2009 15:43:26 1.019.904 A.... "C:\Programme\ATI Technologies\ATI.ACE\Core-Implementation\CLI.Component.Eeu.dll" 25 Feb 2009 15:40:00 57.344 A.... "C:\Programme\ATI Technologies\ATI.ACE\Core-Implementation\CLI.Component.SkinFactory.dll" 25 Feb 2009 15:40:58 20.480 A.... "C:\Programme\ATI Technologies\ATI.ACE\Core-Implementation\CLI.Component.Icomponent.dll" 25 Feb 2009 15:43:38 24.576 A.... "C:\Programme\ATI Technologies\ATI.ACE\Core-Implementation\CLI.Component.AutoRemoval.dll" 25 Feb 2009 15:40:16 1.142.784 A.... "C:\Programme\ATI Technologies\ATI.ACE\Core-Implementation\CLI.Component.Dashboard.dll" 25 Feb 2009 15:41:42 200.704 A.... "C:\Programme\ATI Technologies\ATI.ACE\Core-Implementation\CLI.Component.Dashboard.HotKeyManager.dll" 25 Feb 2009 15:39:54 20.480 A.... "C:\Programme\ATI Technologies\ATI.ACE\Core-Implementation\CLI.Implementation.dll" 25 Feb 2009 15:45:40 8.163 A.... "C:\Programme\ATI Technologies\ATI.ACE\Core-Implementation\install.reg" 25 Feb 2009 15:44:18 86.016 A.... "C:\Programme\ATI Technologies\ATI.ACE\Core-Implementation\LOG.exe" 25 Feb 2009 15:44:18 61.440 A.... "C:\Programme\ATI Technologies\ATI.ACE\Core-Implementation\LOG.Foundation.Implementation.dll" 25 Feb 2009 15:44:20 106.496 A.... "C:\Programme\ATI Technologies\ATI.ACE\Core-Implementation\MOM.Implementation.dll" 25 Feb 2009 15:44:56 19.968 A.... "C:\Programme\ATI Technologies\ATI.ACE\Core-Implementation\PCKGHLP.Foundation.Implementation.dll" 25 Feb 2009 15:45:36 503.808 A.... "C:\Programme\ATI Technologies\ATI.ACE\Core-Implementation\ResourceManagement.Foundation.Implementation.dll" 25 Feb 2009 15:39:42 871.936 A.... "C:\Programme\ATI Technologies\ATI.ACE\Core-Static\atiacm64.dll" 25 Feb 2009 15:39:40 704.512 A.... "C:\Programme\ATI Technologies\ATI.ACE\Core-Static\atiacmxx.dll" 25 Feb 2009 15:38:56 187.392 A.... "C:\Programme\ATI Technologies\ATI.ACE\Core-Static\atiama64.dll" 25 Feb 2009 15:38:42 155.648 A.... "C:\Programme\ATI Technologies\ATI.ACE\Core-Static\atiamaxx.dll" 25 Feb 2009 15:38:42 3.584 A.... "C:\Programme\ATI Technologies\ATI.ACE\Core-Static\atiamchs.dll" 25 Feb 2009 15:38:42 3.584 A.... "C:\Programme\ATI Technologies\ATI.ACE\Core-Static\atiamcht.dll" 25 Feb 2009 15:38:42 3.584 A.... "C:\Programme\ATI Technologies\ATI.ACE\Core-Static\atiamcsy.dll" 25 Feb 2009 15:38:42 3.584 A.... "C:\Programme\ATI Technologies\ATI.ACE\Core-Static\atiamdan.dll" 25 Feb 2009 15:38:44 3.584 A.... "C:\Programme\ATI Technologies\ATI.ACE\Core-Static\atiamdeu.dll" 25 Feb 2009 15:38:44 3.584 A.... "C:\Programme\ATI Technologies\ATI.ACE\Core-Static\atiamell.dll" 25 Feb 2009 15:38:42 3.584 A.... "C:\Programme\ATI Technologies\ATI.ACE\Core-Static\atiamenu.dll" 25 Feb 2009 15:38:42 3.584 A.... "C:\Programme\ATI Technologies\ATI.ACE\Core-Static\atiamesp.dll" 25 Feb 2009 15:38:44 3.584 A.... "C:\Programme\ATI Technologies\ATI.ACE\Core-Static\atiamfin.dll" 25 Feb 2009 15:38:44 3.584 A.... "C:\Programme\ATI Technologies\ATI.ACE\Core-Static\atiamfra.dll" 25 Feb 2009 15:38:44 3.584 A.... "C:\Programme\ATI Technologies\ATI.ACE\Core-Static\atiamhun.dll" 25 Feb 2009 15:38:44 3.584 A.... "C:\Programme\ATI Technologies\ATI.ACE\Core-Static\atiamita.dll" 25 Feb 2009 15:38:44 3.584 A.... "C:\Programme\ATI Technologies\ATI.ACE\Core-Static\atiamjpn.dll" 25 Feb 2009 15:38:44 3.584 A.... "C:\Programme\ATI Technologies\ATI.ACE\Core-Static\atiamkor.dll" 25 Feb 2009 15:38:44 3.584 A.... "C:\Programme\ATI Technologies\ATI.ACE\Core-Static\atiamnld.dll" 25 Feb 2009 15:38:46 3.584 A.... "C:\Programme\ATI Technologies\ATI.ACE\Core-Static\atiamnor.dll" 25 Feb 2009 15:38:46 3.584 A.... "C:\Programme\ATI Technologies\ATI.ACE\Core-Static\atiamplk.dll" 25 Feb 2009 15:38:46 3.584 A.... "C:\Programme\ATI Technologies\ATI.ACE\Core-Static\atiamptb.dll" 25 Feb 2009 15:38:46 3.584 A.... "C:\Programme\ATI Technologies\ATI.ACE\Core-Static\atiamrus.dll" 25 Feb 2009 15:38:46 3.584 A.... "C:\Programme\ATI Technologies\ATI.ACE\Core-Static\atiamsve.dll" 25 Feb 2009 15:38:46 3.584 A.... "C:\Programme\ATI Technologies\ATI.ACE\Core-Static\atiamtha.dll" 25 Feb 2009 15:38:46 3.584 A.... "C:\Programme\ATI Technologies\ATI.ACE\Core-Static\atiamtrk.dll" 25 Feb 2009 15:38:06 61.440 A.... "C:\Programme\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" 25 Feb 2009 15:45:40 14.213 A.... "C:\Programme\ATI Technologies\ATI.ACE\Core-Static\install.reg" 25 Feb 2009 15:43:52 364.544 A.... "C:\Programme\ATI Technologies\ATI.ACE\Graphics-Light\CLI.Aspect.DeviceTV.Graphics.Wizard.dll" 25 Feb 2009 15:40:58 1.728.512 A.... "C:\Programme\ATI Technologies\ATI.ACE\Graphics-Light\CLI.Aspect.DisplaysManager.Graphics.Wizard.dll" 25 Feb 2009 15:40:28 20.480 A.... "C:\Programme\ATI Technologies\ATI.ACE\Graphics-Light\CLI.Aspect.HotkeysHandling.Graphics.Runtime.dll" 25 Feb 2009 15:41:00 204.800 A.... "C:\Programme\ATI Technologies\ATI.ACE\Graphics-Light\CLI.Aspect.InfoCentre.Graphics.Wizard.dll" 25 Feb 2009 15:42:42 69.632 A.... "C:\Programme\ATI Technologies\ATI.ACE\Graphics-Light\CLI.Aspect.DeviceCV.Graphics.Runtime.dll" 25 Feb 2009 15:43:10 692.224 A.... "C:\Programme\ATI Technologies\ATI.ACE\Graphics-Light\CLI.Aspect.DeviceCV.Graphics.Wizard.dll" 25 Feb 2009 15:42:06 36.864 A.... "C:\Programme\ATI Technologies\ATI.ACE\Graphics-Light\CLI.Aspect.DeviceProperty.Graphics.Runtime.dll" 25 Feb 2009 15:43:38 77.824 A.... "C:\Programme\ATI Technologies\ATI.ACE\Graphics-Light\CLI.Aspect.DeviceTV.Graphics.Runtime.dll" 25 Feb 2009 15:40:02 290.816 A.... "C:\Programme\ATI Technologies\ATI.ACE\Graphics-Light\CLI.Caste.Graphics.Runtime.dll" 25 Feb 2009 15:40:44 40.960 A.... "C:\Programme\ATI Technologies\ATI.ACE\Graphics-Light\CLI.Caste.Graphics.Wizard.dll" 25 Feb 2009 15:45:42 2.084 A.... "C:\Programme\ATI Technologies\ATI.ACE\Graphics-Light\install.reg" 25 Feb 2009 15:44:34 45.056 A.... "C:\Programme\ATI Technologies\ATI.ACE\Graphics-Full-Existing\CLI.Aspect.PowerPlayDPPE.Graphics.Runtime.dll" 25 Feb 2009 15:40:58 106.496 A.... "C:\Programme\ATI Technologies\ATI.ACE\Graphics-Full-Existing\CLI.Aspect.VPURecover.Graphics.Dashboard.dll" 25 Feb 2009 15:42:08 40.960 A.... "C:\Programme\ATI Technologies\ATI.ACE\Graphics-Full-Existing\CLI.Aspect.DeviceCRT.Graphics.Runtime.dll" 25 Feb 2009 15:42:12 40.960 A.... "C:\Programme\ATI Technologies\ATI.ACE\Graphics-Full-Existing\CLI.Aspect.MultiVPU.Graphics.Runtime.dll" 25 Feb 2009 15:42:10 81.920 A.... "C:\Programme\ATI Technologies\ATI.ACE\Graphics-Full-Existing\CLI.Aspect.MMVideo.Graphics.Runtime.dll" 25 Feb 2009 15:41:26 286.720 A.... "C:\Programme\ATI Technologies\ATI.ACE\Graphics-Full-Existing\CLI.Aspect.SmartGart.Graphics.Dashboard.dll" 25 Feb 2009 15:41:14 307.200 A.... "C:\Programme\ATI Technologies\ATI.ACE\Graphics-Full-Existing\CLI.Aspect.DeviceLCD.Graphics.Wizard.dll" 25 Feb 2009 15:43:40 798.720 A.... "C:\Programme\ATI Technologies\ATI.ACE\Graphics-Full-Existing\CLI.Aspect.DeviceTV.Graphics.Dashboard.dll" 25 Feb 2009 15:42:46 675.840 A.... "C:\Programme\ATI Technologies\ATI.ACE\Graphics-Full-Existing\CLI.Aspect.DeviceCV.Graphics.Dashboard.dll" 25 Feb 2009 15:45:32 94.208 A.... "C:\Programme\ATI Technologies\ATI.ACE\Graphics-Full-Existing\CLI.Aspect.FramelockGenlock.Graphics.Runtime.dll" 25 Feb 2009 15:41:02 589.824 A.... "C:\Programme\ATI Technologies\ATI.ACE\Graphics-Full-Existing\CLI.Aspect.DisplaysColour2.Graphics.Dashboard.dll" 25 Feb 2009 15:41:28 28.672 A.... "C:\Programme\ATI Technologies\ATI.ACE\Graphics-Full-Existing\CLI.Aspect.OverDrive2.Graphics.Runtime.dll" 25 Feb 2009 15:40:58 28.672 A.... "C:\Programme\ATI Technologies\ATI.ACE\Graphics-Full-Existing\CLI.Aspect.VPURecover.Graphics.Runtime.dll" 25 Feb 2009 15:42:38 167.936 A.... "C:\Programme\ATI Technologies\ATI.ACE\Graphics-Full-Existing\CLI.Aspect.VeryLargeDesktop.Graphics.Dashboard.dll" 25 Feb 2009 15:45:10 77.824 A.... "C:\Programme\ATI Technologies\ATI.ACE\Graphics-Full-Existing\CLI.Aspect.OverDrive5.Graphics.Runtime.dll" 25 Feb 2009 15:41:30 69.632 A.... "C:\Programme\ATI Technologies\ATI.ACE\Graphics-Full-Existing\CLI.Aspect.OverDrive3.Graphics.Runtime.dll" 25 Feb 2009 15:45:08 19.456 A.... "C:\Programme\ATI Technologies\ATI.ACE\Graphics-Full-Existing\CLI.Aspect.PowerXpress.Graphics.Runtime.dll" 25 Feb 2009 15:44:22 196.608 A.... "C:\Programme\ATI Technologies\ATI.ACE\Graphics-Full-Existing\CLI.Aspect.MultiVPU3.Graphics.Dashboard.dll" 25 Feb 2009 15:45:18 151.552 A.... "C:\Programme\ATI Technologies\ATI.ACE\Graphics-Full-Existing\CLI.Aspect.MultiVPU4.Graphics.Dashboard.dll" 25 Feb 2009 15:42:24 192.512 A.... "C:\Programme\ATI Technologies\ATI.ACE\Graphics-Full-Existing\CLI.Aspect.MultiVPU2.Graphics.Dashboard.dll" 25 Feb 2009 15:42:08 438.272 A.... "C:\Programme\ATI Technologies\ATI.ACE\Graphics-Full-Existing\CLI.Aspect.DeviceCRT.Graphics.Dashboard.dll" 25 Feb 2009 15:45:18 110.592 A.... "C:\Programme\ATI Technologies\ATI.ACE\Graphics-Full-Existing\CLI.Aspect.WorkstationConfig2.Graphics.Dashboard.dll" 25 Feb 2009 15:42:58 94.208 A.... "C:\Programme\ATI Technologies\ATI.ACE\Graphics-Full-Existing\CLI.Aspect.Radeon3D.Graphics.Wizard.dll" 25 Feb 2009 15:40:30 712.704 A.... "C:\Programme\ATI Technologies\ATI.ACE\Graphics-Full-Existing\CLI.Aspect.DisplaysManager.Graphics.Dashboard.dll" 25 Feb 2009 15:43:24 405.504 A.... "C:\Programme\ATI Technologies\ATI.ACE\Graphics-Full-Existing\CLI.Aspect.MMVideo.Graphics.Wizard.dll" 25 Feb 2009 15:41:44 98.304 A.... "C:\Programme\ATI Technologies\ATI.ACE\Graphics-Full-Existing\CLI.Aspect.CustomFormatSelection.Graphics.Dashboard.dll" 25 Feb 2009 15:41:28 479.232 A.... "C:\Programme\ATI Technologies\ATI.ACE\Graphics-Full-Existing\CLI.Aspect.OverDrive2.Graphics.Dashboard.dll" 25 Feb 2009 15:45:34 323.584 A.... "C:\Programme\ATI Technologies\ATI.ACE\Graphics-Full-Existing\CLI.Aspect.FramelockGenlock.Graphics.Dashboard.dll" 25 Feb 2009 15:42:36 36.864 A.... "C:\Programme\ATI Technologies\ATI.ACE\Graphics-Full-Existing\CLI.Aspect.DisplaysOptions.Graphics.Runtime.dll" 25 Feb 2009 15:45:10 671.744 A.... "C:\Programme\ATI Technologies\ATI.ACE\Graphics-Full-Existing\CLI.Aspect.OverDrive5.Graphics.Dashboard.dll" 25 Feb 2009 15:41:30 1.036.288 A.... "C:\Programme\ATI Technologies\ATI.ACE\Graphics-Full-Existing\CLI.Aspect.OverDrive3.Graphics.Dashboard.dll" 25 Feb 2009 15:45:06 172.032 A.... "C:\Programme\ATI Technologies\ATI.ACE\Graphics-Full-Existing\CLI.Aspect.PowerXpress.Graphics.Dashboard.dll" 25 Feb 2009 15:41:26 28.672 A.... "C:\Programme\ATI Technologies\ATI.ACE\Graphics-Full-Existing\CLI.Aspect.SmartGart.Graphics.Runtime.dll" 25 Feb 2009 15:42:38 32.768 A.... "C:\Programme\ATI Technologies\ATI.ACE\Graphics-Full-Existing\CLI.Aspect.VeryLargeDesktop.Graphics.Runtime.dll" 25 Feb 2009 15:41:14 40.960 A.... "C:\Programme\ATI Technologies\ATI.ACE\Graphics-Full-Existing\CLI.Aspect.DisplaysColour2.Graphics.Runtime.dll" 25 Feb 2009 15:41:26 20.480 A.... "C:\Programme\ATI Technologies\ATI.ACE\Graphics-Full-Existing\CLI.Aspect.IntegratedUMAFrameBuffer.Graphics.Runtime.dll" 25 Feb 2009 15:42:56 61.440 A.... "C:\Programme\ATI Technologies\ATI.ACE\Graphics-Full-Existing\CLI.Aspect.Radeon3D.Graphics.Runtime.dll" 25 Feb 2009 15:42:36 126.976 A.... "C:\Programme\ATI Technologies\ATI.ACE\Graphics-Full-Existing\CLI.Aspect.DisplaysOptions.Graphics.Dashboard.dll" 25 Feb 2009 15:44:38 139.264 A.... "C:\Programme\ATI Technologies\ATI.ACE\Graphics-Full-Existing\CLI.Aspect.Welcome.Graphics.Dashboard.dll" 25 Feb 2009 15:42:42 49.152 A.... "C:\Programme\ATI Technologies\ATI.ACE\Graphics-Full-Existing\CLI.Aspect.PowerPlay3.Graphics.Runtime.dll" 25 Feb 2009 15:42:58 364.544 A.... "C:\Programme\ATI Technologies\ATI.ACE\Graphics-Full-Existing\CLI.Aspect.Radeon3D.Graphics.Dashboard.dll" 25 Feb 2009 15:41:26 245.760 A.... "C:\Programme\ATI Technologies\ATI.ACE\Graphics-Full-Existing\CLI.Aspect.IntegratedUMAFrameBuffer.Graphics.Dashboard.dll" 25 Feb 2009 15:44:48 49.152 A.... "C:\Programme\ATI Technologies\ATI.ACE\Graphics-Full-Existing\CLI.Aspect.PowerPlay4.Graphics.Runtime.dll" 25 Feb 2009 15:44:48 147.456 A.... "C:\Programme\ATI Technologies\ATI.ACE\Graphics-Full-Existing\CLI.Aspect.PowerPlay4.Graphics.Dashboard.dll" 25 Feb 2009 15:42:42 172.032 A.... "C:\Programme\ATI Technologies\ATI.ACE\Graphics-Full-Existing\CLI.Aspect.PowerPlay3.Graphics.Dashboard.dll" 25 Feb 2009 15:41:54 450.560 A.... "C:\Programme\ATI Technologies\ATI.ACE\Graphics-Full-Existing\CLI.Aspect.DeviceDFP.Graphics.Dashboard.dll" 25 Feb 2009 15:42:40 401.408 A.... "C:\Programme\ATI Technologies\ATI.ACE\Graphics-Full-Existing\CLI.Aspect.DeviceLCD.Graphics.Dashboard.dll" 25 Feb 2009 15:44:22 40.960 A.... "C:\Programme\ATI Technologies\ATI.ACE\Graphics-Full-Existing\CLI.Aspect.MultiVPU3.Graphics.Runtime.dll" 25 Feb 2009 15:45:16 40.960 A.... "C:\Programme\ATI Technologies\ATI.ACE\Graphics-Full-Existing\CLI.Aspect.MultiVPU4.Graphics.Runtime.dll" 25 Feb 2009 15:45:20 32.768 A.... "C:\Programme\ATI Technologies\ATI.ACE\Graphics-Full-Existing\CLI.Aspect.WorkstationConfig2.Graphics.Runtime.dll" 25 Feb 2009 15:42:40 32.768 A.... "C:\Programme\ATI Technologies\ATI.ACE\Graphics-Full-Existing\CLI.Aspect.DeviceLCD.Graphics.Runtime.dll" 25 Feb 2009 15:42:24 45.056 A.... "C:\Programme\ATI Technologies\ATI.ACE\Graphics-Full-Existing\CLI.Aspect.MultiVPU2.Graphics.Runtime.dll" 25 Feb 2009 15:41:00 225.280 A.... "C:\Programme\ATI Technologies\ATI.ACE\Graphics-Full-Existing\CLI.Aspect.InfoCentre.Graphics.Dashboard.dll" 25 Feb 2009 15:44:36 147.456 A.... "C:\Programme\ATI Technologies\ATI.ACE\Graphics-Full-Existing\CLI.Aspect.PowerPlayDPPE.Graphics.Dashboard.dll" 25 Feb 2009 15:42:12 811.008 A.... "C:\Programme\ATI Technologies\ATI.ACE\Graphics-Full-Existing\CLI.Aspect.MMVideo.Graphics.Dashboard.dll" 25 Feb 2009 15:41:44 286.720 A.... "C:\Programme\ATI Technologies\ATI.ACE\Graphics-Full-Existing\CLI.Aspect.DeviceProperty.Graphics.Dashboard.Shared.dll" 25 Feb 2009 15:42:08 65.536 A.... "C:\Programme\ATI Technologies\ATI.ACE\Graphics-Full-Existing\CLI.Aspect.DeviceDFP.Graphics.Runtime.dll" 25 Feb 2009 15:42:12 192.512 A.... "C:\Programme\ATI Technologies\ATI.ACE\Graphics-Full-Existing\CLI.Aspect.MultiVPU.Graphics.Dashboard.dll" 25 Feb 2009 15:44:56 90.112 A.... "C:\Programme\ATI Technologies\ATI.ACE\Graphics-Full-Existing\CLI.Aspect.AForce.Graphics.Dashboard.dll" 25 Feb 2009 15:44:54 12.288 A.... "C:\Programme\ATI Technologies\ATI.ACE\Graphics-Full-Existing\CLI.Aspect.AForce.Graphics.Runtime.dll" 25 Feb 2009 15:45:32 86.016 A.... "C:\Programme\ATI Technologies\ATI.ACE\Graphics-Full-Existing\CLI.Aspect.ALICrossfire.Graphics.Dashboard.dll" 25 Feb 2009 15:45:30 36.864 A.... "C:\Programme\ATI Technologies\ATI.ACE\Graphics-Full-Existing\CLI.Aspect.ALICrossfire.Graphics.Runtime.dll" 25 Feb 2009 15:40:28 73.728 A.... "C:\Programme\ATI Technologies\ATI.ACE\Graphics-Full-Existing\CLI.Caste.Graphics.Dashboard.dll" 25 Feb 2009 15:45:28 122.880 A.... "C:\Programme\ATI Technologies\ATI.ACE\Graphics-Full-Existing\CLI.Component.PowerXpressHybrid.dll" 25 Feb 2009 15:45:36 106.496 A.... "C:\Programme\ATI Technologies\ATI.ACE\Graphics-Full-Existing\CLI.Component.SingleAspectPage.dll" 25 Feb 2009 15:45:42 13.664 A.... "C:\Programme\ATI Technologies\ATI.ACE\Graphics-Full-Existing\install.reg" 25 Feb 2009 15:38:32 57.344 A.... "C:\Programme\ATI Technologies\ATI.ACE\Graphics-Full-Existing\MMLoadDrv.exe" 25 Feb 2009 15:44:36 491.520 A.... "C:\Programme\ATI Technologies\ATI.ACE\Graphics-Full-New\CLI.Aspect.TransCode.Graphics.Wizard.dll" 25 Feb 2009 15:45:42 245 A.... "C:\Programme\ATI Technologies\ATI.ACE\Graphics-Full-New\install.reg" 25 Feb 2009 15:38:12 73.728 A.... "C:\Programme\ATI Technologies\ATI.ACE\Graphics-Previews-Common\CCCDsPreview.exe" 25 Feb 2009 15:38:22 2.125.824 A.... "C:\Programme\ATI Technologies\ATI.ACE\Graphics-Previews-Common\MMACEFilters.dll" 25 Feb 2009 15:38:28 102.400 A.... "C:\Programme\ATI Technologies\ATI.ACE\Graphics-Previews-Common\MMACEPrev.exe" 25 Feb 2009 15:45:24 9.728 A.... "C:\Programme\ATI Technologies\ATI.ACE\HydraVision-Full\CLI.Aspect.MultiDesk.HydraVision.Shared.dll" 25 Feb 2009 15:45:14 36.864 A.... "C:\Programme\ATI Technologies\ATI.ACE\HydraVision-Full\CLI.Aspect.Grid.HydraVision.Runtime.dll" 25 Feb 2009 15:45:26 311.296 A.... "C:\Programme\ATI Technologies\ATI.ACE\HydraVision-Full\CLI.Aspect.HydraVision.Wizard.dll" 25 Feb 2009 15:45:22 32.768 A.... "C:\Programme\ATI Technologies\ATI.ACE\HydraVision-Full\CLI.Aspect.MDProp.HydraVision.Runtime.dll" 25 Feb 2009 15:45:24 32.768 A.... "C:\Programme\ATI Technologies\ATI.ACE\HydraVision-Full\CLI.Aspect.MultiDesk.HydraVision.Runtime.dll" 25 Feb 2009 15:45:24 258.048 A.... "C:\Programme\ATI Technologies\ATI.ACE\HydraVision-Full\CLI.Aspect.MDProp.HydraVision.Dashboard.dll" 25 Feb 2009 15:45:14 10.240 A.... "C:\Programme\ATI Technologies\ATI.ACE\HydraVision-Full\CLI.Aspect.Grid.HydraVision.Shared.dll" 25 Feb 2009 15:45:26 286.720 A.... "C:\Programme\ATI Technologies\ATI.ACE\HydraVision-Full\CLI.Aspect.MultiDesk.HydraVision.Dashboard.dll" 25 Feb 2009 15:45:22 10.240 A.... "C:\Programme\ATI Technologies\ATI.ACE\HydraVision-Full\CLI.Aspect.MDProp.HydraVision.Shared.dll" 25 Feb 2009 15:45:22 208.896 A.... "C:\Programme\ATI Technologies\ATI.ACE\HydraVision-Full\CLI.Aspect.DeskMan.HydraVision.Dashboard.dll" 25 Feb 2009 15:45:20 36.864 A.... "C:\Programme\ATI Technologies\ATI.ACE\HydraVision-Full\CLI.Aspect.DeskMan.HydraVision.Runtime.dll" 25 Feb 2009 15:45:20 12.800 A.... "C:\Programme\ATI Technologies\ATI.ACE\HydraVision-Full\CLI.Aspect.DeskMan.HydraVision.Shared.dll" 25 Feb 2009 15:45:14 192.512 A.... "C:\Programme\ATI Technologies\ATI.ACE\HydraVision-Full\CLI.Aspect.Grid.HydraVision.Dashboard.dll" 25 Feb 2009 15:45:12 7.680 A.... "C:\Programme\ATI Technologies\ATI.ACE\HydraVision-Full\CLI.Caste.HydraVision.Dashboard.dll" 25 Feb 2009 15:45:12 11.776 A.... "C:\Programme\ATI Technologies\ATI.ACE\HydraVision-Full\CLI.Caste.HydraVision.Runtime.dll" 25 Feb 2009 15:45:12 8.704 A.... "C:\Programme\ATI Technologies\ATI.ACE\HydraVision-Full\CLI.Caste.HydraVision.Shared.dll" 25 Feb 2009 15:45:20 7.680 A.... "C:\Programme\ATI Technologies\ATI.ACE\HydraVision-Full\CLI.Caste.HydraVision.Wizard.dll" 25 Feb 2009 15:45:42 3.499 A.... "C:\Programme\ATI Technologies\ATI.ACE\HydraVision-Full\install.reg" 14 Apr 2009 23:43:48 176.500 A.... "C:\Programme\Avira\AntiVir Desktop\FAILSAFE\aecore.dll" 23 Apr 2009 23:20:22 348.532 A.... "C:\Programme\Avira\AntiVir Desktop\FAILSAFE\aegen.dll" 26 Feb 2009 21:01:58 119.158 A.... "C:\Programme\Avira\AntiVir Desktop\FAILSAFE\aehelp.dll" 24 Apr 2009 23:21:42 1.737.080 A.... "C:\Programme\Avira\AntiVir Desktop\FAILSAFE\aeheur.dll" 26 Feb 2009 21:01:58 196.987 A.... "C:\Programme\Avira\AntiVir Desktop\FAILSAFE\aeoffice.dll" 18 Apr 2009 12:02:22 397.685 A.... "C:\Programme\Avira\AntiVir Desktop\FAILSAFE\aepack.dll" 3 Apr 2009 19:45:14 127.348 A.... "C:\Programme\Avira\AntiVir Desktop\FAILSAFE\aescn.dll" 23 Apr 2009 23:20:24 381.306 A.... "C:\Programme\Avira\AntiVir Desktop\FAILSAFE\aescript.dll" 24 Apr 2009 23:21:42 2.159 A.... "C:\Programme\Avira\AntiVir Desktop\FAILSAFE\aeset.dat" 16 Mar 2009 12:24:44 93.048 A.... "C:\Programme\Gemeinsame Dateien\Adobe\Updater6\AdobeUpdaterInstallMgr.exe" 16 Mar 2009 12:24:50 2.521.464 A.... "C:\Programme\Gemeinsame Dateien\Adobe\Updater6\Adobe_Updater.exe" 25 Feb 2009 22:58:34 36.302.200 A.... "C:\Programme\Gemeinsame Dateien\Windows Live\.cache\wlcE.tmp" 24 Apr 2009 20:34:34 1.130.496 A.... "C:\Programme\Java\jre6\bin\awt.dll" 24 Apr 2009 20:34:34 110.592 A.... "C:\Programme\Java\jre6\bin\axbridge.dll" 24 Apr 2009 20:34:34 192.512 A.... "C:\Programme\Java\jre6\bin\cmm.dll" 24 Apr 2009 20:34:34 143.360 A.... "C:\Programme\Java\jre6\bin\dcpr.dll" 24 Apr 2009 20:34:34 77.824 A.... "C:\Programme\Java\jre6\bin\deploy.dll" 24 Apr 2009 20:34:34 410.976 A.... "C:\Programme\Java\jre6\bin\deploytk.dll" 24 Apr 2009 20:34:34 16.896 A.... "C:\Programme\Java\jre6\bin\dt_shmem.dll" 24 Apr 2009 20:34:34 13.312 A.... "C:\Programme\Java\jre6\bin\dt_socket.dll" 24 Apr 2009 20:34:34 69.632 A.... "C:\Programme\Java\jre6\bin\eula.dll" 24 Apr 2009 20:34:34 339.968 A.... "C:\Programme\Java\jre6\bin\fontmanager.dll" 24 Apr 2009 20:34:34 15.872 A.... "C:\Programme\Java\jre6\bin\hpi.dll" 24 Apr 2009 20:34:34 139.264 A.... "C:\Programme\Java\jre6\bin\hprof.dll" 24 Apr 2009 20:34:34 98.304 A.... "C:\Programme\Java\jre6\bin\instrument.dll" 24 Apr 2009 20:34:34 12.800 A.... "C:\Programme\Java\jre6\bin\ioser12.dll" 24 Apr 2009 20:34:34 7.680 A.... "C:\Programme\Java\jre6\bin\j2pcsc.dll" 24 Apr 2009 20:34:34 37.376 A.... "C:\Programme\Java\jre6\bin\j2pkcs11.dll" 24 Apr 2009 20:34:34 10.240 A.... "C:\Programme\Java\jre6\bin\jaas_nt.dll" 24 Apr 2009 20:34:34 25.600 A.... "C:\Programme\Java\jre6\bin\java-rmi.exe" 24 Apr 2009 20:34:34 126.976 A.... "C:\Programme\Java\jre6\bin\java.dll" 24 Apr 2009 20:34:34 139.264 A.... "C:\Programme\Java\jre6\bin\java.exe" 24 Apr 2009 20:34:34 53.248 A.... "C:\Programme\Java\jre6\bin\javacpl.exe" 24 Apr 2009 20:34:34 139.264 A.... "C:\Programme\Java\jre6\bin\javaw.exe" 24 Apr 2009 20:34:34 143.360 A.... "C:\Programme\Java\jre6\bin\javaws.exe" 24 Apr 2009 20:34:34 14.336 A.... "C:\Programme\Java\jre6\bin\java_crw_demo.dll" 24 Apr 2009 20:34:34 5.120 A.... "C:\Programme\Java\jre6\bin\jawt.dll" 24 Apr 2009 20:34:34 79.256 A.... "C:\Programme\Java\jre6\bin\jbroker.exe" 24 Apr 2009 20:34:34 36.352 A.... "C:\Programme\Java\jre6\bin\JdbcOdbc.dll" 24 Apr 2009 20:34:34 167.936 A.... "C:\Programme\Java\jre6\bin\jdwp.dll" 24 Apr 2009 20:34:34 274.432 A.... "C:\Programme\Java\jre6\bin\jkernel.dll" 24 Apr 2009 20:34:34 77.824 A.... "C:\Programme\Java\jre6\bin\jli.dll" 24 Apr 2009 20:34:34 94.208 A.... "C:\Programme\Java\jre6\bin\jp2iexp.dll" 24 Apr 2009 20:34:34 16.896 A.... "C:\Programme\Java\jre6\bin\jp2launcher.exe" 24 Apr 2009 20:34:34 8.192 A.... "C:\Programme\Java\jre6\bin\jp2native.dll" 24 Apr 2009 20:34:34 34.816 A.... "C:\Programme\Java\jre6\bin\jp2ssv.dll" 24 Apr 2009 20:34:34 147.456 A.... "C:\Programme\Java\jre6\bin\jpeg.dll" 24 Apr 2009 20:34:34 98.304 A.... "C:\Programme\Java\jre6\bin\jpicom.dll" 24 Apr 2009 20:34:34 110.592 A.... "C:\Programme\Java\jre6\bin\jpiexp.dll" 24 Apr 2009 20:34:34 98.304 A.... "C:\Programme\Java\jre6\bin\jpinscp.dll" 24 Apr 2009 20:34:34 65.536 A.... "C:\Programme\Java\jre6\bin\jpioji.dll" 24 Apr 2009 20:34:34 122.880 A.... "C:\Programme\Java\jre6\bin\jpishare.dll" 24 Apr 2009 20:34:34 147.456 A.... "C:\Programme\Java\jre6\bin\jqs.exe" 24 Apr 2009 20:34:34 54.680 A.... "C:\Programme\Java\jre6\bin\jqsnotify.exe" 24 Apr 2009 20:34:34 147.456 A.... "C:\Programme\Java\jre6\bin\jsound.dll" 24 Apr 2009 20:34:34 18.432 A.... "C:\Programme\Java\jre6\bin\jsoundds.dll" 24 Apr 2009 20:34:34 382.360 A.... "C:\Programme\Java\jre6\bin\jucheck.exe" 24 Apr 2009 20:34:34 54.680 A.... "C:\Programme\Java\jre6\bin\jureg.exe" 24 Apr 2009 20:34:34 136.600 A.... "C:\Programme\Java\jre6\bin\jusched.exe" 24 Apr 2009 20:34:34 26.112 A.... "C:\Programme\Java\jre6\bin\keytool.exe" 24 Apr 2009 20:34:34 26.112 A.... "C:\Programme\Java\jre6\bin\kinit.exe" 24 Apr 2009 20:34:34 26.112 A.... "C:\Programme\Java\jre6\bin\klist.exe" 24 Apr 2009 20:34:34 26.112 A.... "C:\Programme\Java\jre6\bin\ktab.exe" 24 Apr 2009 20:34:34 18.432 A.... "C:\Programme\Java\jre6\bin\management.dll" 24 Apr 2009 20:34:34 602.112 A.... "C:\Programme\Java\jre6\bin\mlib_image.dll" 24 Apr 2009 20:34:34 348.160 A.... "C:\Programme\Java\jre6\bin\msvcr71.dll" 24 Apr 2009 20:34:34 266.293 A.... "C:\Programme\Java\jre6\bin\msvcrt.dll" 24 Apr 2009 20:34:34 77.824 A.... "C:\Programme\Java\jre6\bin\net.dll" 24 Apr 2009 20:34:34 20.480 A.... "C:\Programme\Java\jre6\bin\nio.dll" 24 Apr 2009 20:34:34 410.976 A.... "C:\Programme\Java\jre6\bin\npdeploytk.dll" 24 Apr 2009 20:34:34 132.504 A.... "C:\Programme\Java\jre6\bin\npjpi160_10.dll" 24 Apr 2009 20:34:34 126.976 A.... "C:\Programme\Java\jre6\bin\npoji610.dll" 24 Apr 2009 20:34:34 8.192 A.... "C:\Programme\Java\jre6\bin\npt.dll" 24 Apr 2009 20:34:34 26.112 A.... "C:\Programme\Java\jre6\bin\orbd.exe" 24 Apr 2009 20:34:34 26.112 A.... "C:\Programme\Java\jre6\bin\pack200.exe" 24 Apr 2009 20:34:34 26.112 A.... "C:\Programme\Java\jre6\bin\policytool.exe" 24 Apr 2009 20:34:34 5.120 A.... "C:\Programme\Java\jre6\bin\rmi.dll" 24 Apr 2009 20:34:34 26.112 A.... "C:\Programme\Java\jre6\bin\rmid.exe" 24 Apr 2009 20:34:34 26.112 A.... "C:\Programme\Java\jre6\bin\rmiregistry.exe" 24 Apr 2009 20:34:34 26.112 A.... "C:\Programme\Java\jre6\bin\servertool.exe" 24 Apr 2009 20:34:34 131.072 A.... "C:\Programme\Java\jre6\bin\splashscreen.dll" 24 Apr 2009 20:34:34 320.920 A.... "C:\Programme\Java\jre6\bin\ssv.dll" 24 Apr 2009 20:34:34 17.816 A.... "C:\Programme\Java\jre6\bin\ssvagent.exe" 24 Apr 2009 20:34:34 16.384 A.... "C:\Programme\Java\jre6\bin\sunmscapi.dll" 24 Apr 2009 20:34:34 26.112 A.... "C:\Programme\Java\jre6\bin\tnameserv.exe" 24 Apr 2009 20:34:34 245.400 A.... "C:\Programme\Java\jre6\bin\unicows.dll" 24 Apr 2009 20:34:34 61.440 A.... "C:\Programme\Java\jre6\bin\unpack.dll" 24 Apr 2009 20:34:34 128.408 A.... "C:\Programme\Java\jre6\bin\unpack200.exe" 24 Apr 2009 20:34:34 31.744 A.... "C:\Programme\Java\jre6\bin\verify.dll" 24 Apr 2009 20:34:34 24.701 A.... "C:\Programme\Java\jre6\bin\w2k_lsa_auth.dll" 24 Apr 2009 20:34:34 110.592 A.... "C:\Programme\Java\jre6\bin\wsdetect.dll" 24 Apr 2009 20:34:34 47.104 A.... "C:\Programme\Java\jre6\bin\zip.dll" 9 Mar 2009 23:18:08 10 A.... "C:\Programme\KONAMI\Pro Evolution Soccer 6\kitserver\bserv.dat" 9 Mar 2009 23:18:08 40 A.... "C:\Programme\KONAMI\Pro Evolution Soccer 6\kitserver\lodmixer.dat" 9 Mar 2009 23:18:08 513 A.... "C:\Programme\KONAMI\Pro Evolution Soccer 6\kitserver\stadium.dat" 1 Apr 2009 0:15:16 2.317 A.... "C:\Programme\VideoLAN\VLC\http\flash.html" 1 Apr 2009 0:15:16 2.446 A.... "C:\Programme\VideoLAN\VLC\http\index.html" 1 Apr 2009 0:15:16 2.277 A.... "C:\Programme\VideoLAN\VLC\http\mosaic.html" 1 Apr 2009 0:15:16 301 A.... "C:\Programme\VideoLAN\VLC\http\vlm_export.html" 1 Apr 2009 0:15:16 1.965 A.... "C:\Programme\VideoLAN\VLC\http\vlm.html" 1 Apr 2009 0:15:18 12.800 A.... "C:\Programme\VideoLAN\VLC\plugins\libi422_yuy2_mmx_plugin.dll" 1 Apr 2009 0:15:18 13.824 A.... "C:\Programme\VideoLAN\VLC\plugins\libi420_yuy2_mmx_plugin.dll" 1 Apr 2009 0:15:18 40.960 A.... "C:\Programme\VideoLAN\VLC\plugins\libaccess_output_rtmp_plugin.dll" 1 Apr 2009 0:15:18 9.728 A.... "C:\Programme\VideoLAN\VLC\plugins\libaccess_output_http_plugin.dll" 1 Apr 2009 0:15:20 16.384 A.... "C:\Programme\VideoLAN\VLC\plugins\libstream_out_mosaic_bridge_plugin.dll" 1 Apr 2009 0:15:18 70.144 A.... "C:\Programme\VideoLAN\VLC\plugins\libaccess_mms_plugin.dll" 1 Apr 2009 0:15:18 28.160 A.... "C:\Programme\VideoLAN\VLC\plugins\libaccess_smb_plugin.dll" 1 Apr 2009 0:15:18 12.800 A.... "C:\Programme\VideoLAN\VLC\plugins\libaccess_output_udp_plugin.dll" 1 Apr 2009 0:15:20 386.560 A.... "C:\Programme\VideoLAN\VLC\plugins\libstream_out_rtp_plugin.dll" 1 Apr 2009 0:15:18 5.632 A.... "C:\Programme\VideoLAN\VLC\plugins\libi420_ymga_plugin.dll" 1 Apr 2009 0:15:20 19.456 A.... "C:\Programme\VideoLAN\VLC\plugins\libpacketizer_vc1_plugin.dll" 1 Apr 2009 0:15:20 10.240 A.... "C:\Programme\VideoLAN\VLC\plugins\libstream_out_duplicate_plugin.dll" 1 Apr 2009 0:15:18 27.648 A.... "C:\Programme\VideoLAN\VLC\plugins\libaccess_filter_record_plugin.dll" 1 Apr 2009 0:15:18 6.656 A.... "C:\Programme\VideoLAN\VLC\plugins\libaccess_tcp_plugin.dll" 1 Apr 2009 0:15:18 85.504 A.... "C:\Programme\VideoLAN\VLC\plugins\libaccess_http_plugin.dll" 1 Apr 2009 0:15:18 24.064 A.... "C:\Programme\VideoLAN\VLC\plugins\libi420_yuy2_sse2_plugin.dll" 1 Apr 2009 0:15:18 21.504 A.... "C:\Programme\VideoLAN\VLC\plugins\libi422_yuy2_sse2_plugin.dll" 1 Apr 2009 0:15:18 41.984 A.... "C:\Programme\VideoLAN\VLC\plugins\libaccess_realrtsp_plugin.dll" 1 Apr 2009 0:15:20 7.680 A.... "C:\Programme\VideoLAN\VLC\plugins\libmux_wav_plugin.dll" 1 Apr 2009 0:15:18 5.120 A.... "C:\Programme\VideoLAN\VLC\plugins\libaccess_output_dummy_plugin.dll" 1 Apr 2009 0:15:18 7.680 A.... "C:\Programme\VideoLAN\VLC\plugins\libaccess_udp_plugin.dll" 1 Apr 2009 0:15:18 29.184 A.... "C:\Programme\VideoLAN\VLC\plugins\libaccess_filter_timeshift_plugin.dll" 1 Apr 2009 0:15:20 102.400 A.... "C:\Programme\VideoLAN\VLC\plugins\libmux_ts_plugin.dll" 1 Apr 2009 0:15:20 64.000 A.... "C:\Programme\VideoLAN\VLC\plugins\libmux_ps_plugin.dll" 1 Apr 2009 0:15:18 12.288 A.... "C:\Programme\VideoLAN\VLC\plugins\libi420_yuy2_plugin.dll" 1 Apr 2009 0:15:20 36.352 A.... "C:\Programme\VideoLAN\VLC\plugins\libstream_out_transcode_plugin.dll" 1 Apr 2009 0:15:20 7.680 A.... "C:\Programme\VideoLAN\VLC\plugins\libstream_out_gather_plugin.dll" 1 Apr 2009 0:15:20 5.120 A.... "C:\Programme\VideoLAN\VLC\plugins\libstream_out_dummy_plugin.dll" 1 Apr 2009 0:15:20 7.168 A.... "C:\Programme\VideoLAN\VLC\plugins\libmux_mpjpeg_plugin.dll" 1 Apr 2009 0:15:18 10.240 A.... "C:\Programme\VideoLAN\VLC\plugins\liba52_plugin.dll" 1 Apr 2009 0:15:18 8.192 A.... "C:\Programme\VideoLAN\VLC\plugins\liba52sys_plugin.dll" 1 Apr 2009 0:15:18 41.984 A.... "C:\Programme\VideoLAN\VLC\plugins\liba52tofloat32_plugin.dll" 1 Apr 2009 0:15:18 6.144 A.... "C:\Programme\VideoLAN\VLC\plugins\liba52tospdif_plugin.dll" 1 Apr 2009 0:15:18 13.312 A.... "C:\Programme\VideoLAN\VLC\plugins\libaccess_directory_plugin.dll" 1 Apr 2009 0:15:18 8.192 A.... "C:\Programme\VideoLAN\VLC\plugins\libaccess_fake_plugin.dll" 1 Apr 2009 0:15:18 8.192 A.... "C:\Programme\VideoLAN\VLC\plugins\libaccess_file_plugin.dll" 1 Apr 2009 0:15:18 7.680 A.... "C:\Programme\VideoLAN\VLC\plugins\libaccess_filter_bandwidth_plugin.dll" 1 Apr 2009 0:15:18 22.016 A.... "C:\Programme\VideoLAN\VLC\plugins\libadjust_plugin.dll" 1 Apr 2009 0:15:18 16.896 A.... "C:\Programme\VideoLAN\VLC\plugins\libadpcm_plugin.dll" 1 Apr 2009 0:15:18 9.216 A.... "C:\Programme\VideoLAN\VLC\plugins\libaiff_plugin.dll" 1 Apr 2009 0:15:18 7.680 A.... "C:\Programme\VideoLAN\VLC\plugins\libalphamask_plugin.dll" 1 Apr 2009 0:15:18 18.432 A.... "C:\Programme\VideoLAN\VLC\plugins\libaout_directx_plugin.dll" 1 Apr 2009 0:15:18 9.216 A.... "C:\Programme\VideoLAN\VLC\plugins\libaout_file_plugin.dll" 1 Apr 2009 0:15:18 20.992 A.... "C:\Programme\VideoLAN\VLC\plugins\libaraw_plugin.dll" 1 Apr 2009 0:15:18 75.776 A.... "C:\Programme\VideoLAN\VLC\plugins\libasf_plugin.dll" 1 Apr 2009 0:15:18 120.832 A.... "C:\Programme\VideoLAN\VLC\plugins\libatmo_plugin.dll" 1 Apr 2009 0:15:18 34.816 A.... "C:\Programme\VideoLAN\VLC\plugins\libaudio_format_plugin.dll" 1 Apr 2009 0:15:18 35.328 A.... "C:\Programme\VideoLAN\VLC\plugins\libaudioscrobbler_plugin.dll" 1 Apr 2009 0:15:18 7.680 A.... "C:\Programme\VideoLAN\VLC\plugins\libau_plugin.dll" 1 Apr 2009 0:15:18 4.886.528 A.... "C:\Programme\VideoLAN\VLC\plugins\libavcodec_plugin.dll" 1 Apr 2009 0:15:18 5.444.096 A.... "C:\Programme\VideoLAN\VLC\plugins\libavformat_plugin.dll" 1 Apr 2009 0:15:18 65.024 A.... "C:\Programme\VideoLAN\VLC\plugins\libavi_plugin.dll" 1 Apr 2009 0:15:18 23.040 A.... "C:\Programme\VideoLAN\VLC\plugins\libbandlimited_resampler_plugin.dll" 1 Apr 2009 0:15:18 149.504 A.... "C:\Programme\VideoLAN\VLC\plugins\libbda_plugin.dll" 1 Apr 2009 0:15:18 35.328 A.... "C:\Programme\VideoLAN\VLC\plugins\libblend_plugin.dll" 1 Apr 2009 0:15:18 9.216 A.... "C:\Programme\VideoLAN\VLC\plugins\libblendbench_plugin.dll" 1 Apr 2009 0:15:18 11.264 A.... "C:\Programme\VideoLAN\VLC\plugins\libbluescreen_plugin.dll" 1 Apr 2009 0:15:18 612.864 A.... "C:\Programme\VideoLAN\VLC\plugins\libcaca_plugin.dll" 1 Apr 2009 0:15:18 8.192 A.... "C:\Programme\VideoLAN\VLC\plugins\libcanvas_plugin.dll" 1 Apr 2009 0:15:18 17.408 A.... "C:\Programme\VideoLAN\VLC\plugins\libcc_plugin.dll" 1 Apr 2009 0:15:18 38.912 A.... "C:\Programme\VideoLAN\VLC\plugins\libcdda_plugin.dll" 1 Apr 2009 0:15:18 9.216 A.... "C:\Programme\VideoLAN\VLC\plugins\libcdg_plugin.dll" 1 Apr 2009 0:15:18 6.656 A.... "C:\Programme\VideoLAN\VLC\plugins\libchain_plugin.dll" 1 Apr 2009 0:15:18 12.800 A.... "C:\Programme\VideoLAN\VLC\plugins\libcinepak_plugin.dll" 1 Apr 2009 0:15:18 11.264 A.... "C:\Programme\VideoLAN\VLC\plugins\libclone_plugin.dll" 1 Apr 2009 0:15:18 43.520 A.... "C:\Programme\VideoLAN\VLC\plugins\libcmml_plugin.dll" 1 Apr 2009 0:15:18 9.216 A.... "C:\Programme\VideoLAN\VLC\plugins\libcolorthres_plugin.dll" 1 Apr 2009 0:15:18 7.168 A.... "C:\Programme\VideoLAN\VLC\plugins\libconverter_fixed_plugin.dll" 1 Apr 2009 0:15:18 19.968 A.... "C:\Programme\VideoLAN\VLC\plugins\libconverter_float_plugin.dll" 1 Apr 2009 0:15:18 17.408 A.... "C:\Programme\VideoLAN\VLC\plugins\libcrop_plugin.dll" 1 Apr 2009 0:15:18 11.776 A.... "C:\Programme\VideoLAN\VLC\plugins\libcroppadd_plugin.dll" 1 Apr 2009 0:15:18 11.264 A.... "C:\Programme\VideoLAN\VLC\plugins\libcvdsub_plugin.dll" 1 Apr 2009 0:15:18 12.288 A.... "C:\Programme\VideoLAN\VLC\plugins\libi422_yuy2_plugin.dll" 1 Apr 2009 0:15:18 39.936 A.... "C:\Programme\VideoLAN\VLC\plugins\libdeinterlace_plugin.dll" 1 Apr 2009 0:15:18 6.144 A.... "C:\Programme\VideoLAN\VLC\plugins\libdemux_cdg_plugin.dll" 1 Apr 2009 0:15:18 7.168 A.... "C:\Programme\VideoLAN\VLC\plugins\libdemuxdump_plugin.dll" 1 Apr 2009 0:15:18 32.256 A.... "C:\Programme\VideoLAN\VLC\plugins\libdirect3d_plugin.dll" 1 Apr 2009 0:15:18 21.504 A.... "C:\Programme\VideoLAN\VLC\plugins\libdmo_plugin.dll" 1 Apr 2009 0:15:18 13.824 A.... "C:\Programme\VideoLAN\VLC\plugins\libdolby_surround_decoder_plugin.dll" 1 Apr 2009 0:15:18 158.208 A.... "C:\Programme\VideoLAN\VLC\plugins\libdshow_plugin.dll" 1 Apr 2009 0:15:18 12.288 A.... "C:\Programme\VideoLAN\VLC\plugins\libdts_plugin.dll" 1 Apr 2009 0:15:18 8.704 A.... "C:\Programme\VideoLAN\VLC\plugins\libdtssys_plugin.dll" 1 Apr 2009 0:15:18 152.064 A.... "C:\Programme\VideoLAN\VLC\plugins\libdtstofloat32_plugin.dll" 1 Apr 2009 0:15:18 7.680 A.... "C:\Programme\VideoLAN\VLC\plugins\libdtstospdif_plugin.dll" 1 Apr 2009 0:15:18 13.312 A.... "C:\Programme\VideoLAN\VLC\plugins\libdummy_plugin.dll" 1 Apr 2009 0:15:18 121.344 A.... "C:\Programme\VideoLAN\VLC\plugins\libdvbsub_plugin.dll" 1 Apr 2009 0:15:18 212.992 A.... "C:\Programme\VideoLAN\VLC\plugins\libdvdnav_plugin.dll" 1 Apr 2009 0:15:18 124.928 A.... "C:\Programme\VideoLAN\VLC\plugins\libdvdread_plugin.dll" 1 Apr 2009 0:15:18 45.056 A.... "C:\Programme\VideoLAN\VLC\plugins\libequalizer_plugin.dll" 1 Apr 2009 0:15:18 11.264 A.... "C:\Programme\VideoLAN\VLC\plugins\liberase_plugin.dll" 1 Apr 2009 0:15:18 11.776 A.... "C:\Programme\VideoLAN\VLC\plugins\libexport_plugin.dll" 1 Apr 2009 0:15:18 15.872 A.... "C:\Programme\VideoLAN\VLC\plugins\libextract_plugin.dll" 1 Apr 2009 0:15:18 303.616 A.... "C:\Programme\VideoLAN\VLC\plugins\libfaad_plugin.dll" 1 Apr 2009 0:15:18 11.264 A.... "C:\Programme\VideoLAN\VLC\plugins\libfake_plugin.dll" 1 Apr 2009 0:15:18 249.344 A.... "C:\Programme\VideoLAN\VLC\plugins\libflac_plugin.dll" 1 Apr 2009 0:15:18 47.104 A.... "C:\Programme\VideoLAN\VLC\plugins\libflacsys_plugin.dll" 1 Apr 2009 0:15:18 7.680 A.... "C:\Programme\VideoLAN\VLC\plugins\libfloat32_mixer_plugin.dll" 1 Apr 2009 0:15:18 6.144 A.... "C:\Programme\VideoLAN\VLC\plugins\libfolder_plugin.dll" 1 Apr 2009 0:15:18 2.881.024 A.... "C:\Programme\VideoLAN\VLC\plugins\libfreetype_plugin.dll" 1 Apr 2009 0:15:18 11.264 A.... "C:\Programme\VideoLAN\VLC\plugins\libgaussianblur_plugin.dll" 1 Apr 2009 0:15:18 10.752 A.... "C:\Programme\VideoLAN\VLC\plugins\libgestures_plugin.dll" 1 Apr 2009 0:15:18 21.504 A.... "C:\Programme\VideoLAN\VLC\plugins\libglwin32_plugin.dll" 1 Apr 2009 0:15:18 889.344 A.... "C:\Programme\VideoLAN\VLC\plugins\libgnutls_plugin.dll" 1 Apr 2009 0:15:18 199.680 A.... "C:\Programme\VideoLAN\VLC\plugins\libgoom_plugin.dll" 1 Apr 2009 0:15:18 19.456 A.... "C:\Programme\VideoLAN\VLC\plugins\libgradient_plugin.dll" 1 Apr 2009 0:15:18 7.680 A.... "C:\Programme\VideoLAN\VLC\plugins\libgrain_plugin.dll" 1 Apr 2009 0:15:18 7.680 A.... "C:\Programme\VideoLAN\VLC\plugins\libgrey_yuv_plugin.dll" 1 Apr 2009 0:15:18 7.168 A.... "C:\Programme\VideoLAN\VLC\plugins\libh264_plugin.dll" 1 Apr 2009 0:15:18 11.776 A.... "C:\Programme\VideoLAN\VLC\plugins\libheadphone_channel_mixer_plugin.dll" 1 Apr 2009 0:15:18 22.016 A.... "C:\Programme\VideoLAN\VLC\plugins\libhotkeys_plugin.dll" 1 Apr 2009 0:15:18 102.912 A.... "C:\Programme\VideoLAN\VLC\plugins\libhttp_plugin.dll" 1 Apr 2009 0:15:18 53.248 A.... "C:\Programme\VideoLAN\VLC\plugins\libi420_rgb_mmx_plugin.dll" 1 Apr 2009 0:15:18 30.720 A.... "C:\Programme\VideoLAN\VLC\plugins\libi420_rgb_plugin.dll" 1 Apr 2009 0:15:18 116.224 A.... "C:\Programme\VideoLAN\VLC\plugins\libi420_rgb_sse2_plugin.dll" 1 Apr 2009 0:15:18 7.168 A.... "C:\Programme\VideoLAN\VLC\plugins\libi420_ymga_mmx_plugin.dll" 1 Apr 2009 0:15:18 115.200 A.... "C:\Programme\VideoLAN\VLC\plugins\libid3tag_plugin.dll" 1 Apr 2009 0:15:18 9.728 A.... "C:\Programme\VideoLAN\VLC\plugins\libimage_plugin.dll" 1 Apr 2009 0:15:18 6.144 A.... "C:\Programme\VideoLAN\VLC\plugins\libinvert_plugin.dll" 1 Apr 2009 0:15:18 94.720 A.... "C:\Programme\VideoLAN\VLC\plugins\libkate_plugin.dll" 1 Apr 2009 0:15:20 2.868.224 A.... "C:\Programme\VideoLAN\VLC\plugins\liblibass_plugin.dll" 1 Apr 2009 0:15:20 125.952 A.... "C:\Programme\VideoLAN\VLC\plugins\liblibmpeg2_plugin.dll" 1 Apr 2009 0:15:20 9.216 A.... "C:\Programme\VideoLAN\VLC\plugins\liblinear_resampler_plugin.dll" 1 Apr 2009 0:15:20 1.063.936 A.... "C:\Programme\VideoLAN\VLC\plugins\liblive555_plugin.dll" 1 Apr 2009 0:15:20 11.776 A.... "C:\Programme\VideoLAN\VLC\plugins\liblogger_plugin.dll" 1 Apr 2009 0:15:20 18.944 A.... "C:\Programme\VideoLAN\VLC\plugins\liblogo_plugin.dll" 1 Apr 2009 0:15:20 7.680 A.... "C:\Programme\VideoLAN\VLC\plugins\liblpcm_plugin.dll" 1 Apr 2009 0:15:20 254.976 A.... "C:\Programme\VideoLAN\VLC\plugins\liblua_plugin.dll" 1 Apr 2009 0:15:20 7.680 A.... "C:\Programme\VideoLAN\VLC\plugins\libm4a_plugin.dll" 1 Apr 2009 0:15:20 7.168 A.... "C:\Programme\VideoLAN\VLC\plugins\libm4v_plugin.dll" 1 Apr 2009 0:15:20 13.312 A.... "C:\Programme\VideoLAN\VLC\plugins\libmagnify_plugin.dll" 1 Apr 2009 0:15:20 12.800 A.... "C:\Programme\VideoLAN\VLC\plugins\libmarq_plugin.dll" 1 Apr 2009 0:15:20 8.192 A.... "C:\Programme\VideoLAN\VLC\plugins\libmemcpy3dn_plugin.dll" 1 Apr 2009 0:15:20 5.120 A.... "C:\Programme\VideoLAN\VLC\plugins\libmemcpy_plugin.dll" 1 Apr 2009 0:15:20 8.192 A.... "C:\Programme\VideoLAN\VLC\plugins\libmemcpymmx_plugin.dll" 1 Apr 2009 0:15:20 8.192 A.... "C:\Programme\VideoLAN\VLC\plugins\libmemcpymmxext_plugin.dll" 1 Apr 2009 0:15:20 10.752 A.... "C:\Programme\VideoLAN\VLC\plugins\libmjpeg_plugin.dll" 1 Apr 2009 0:15:20 1.288.704 A.... "C:\Programme\VideoLAN\VLC\plugins\libmkv_plugin.dll" 1 Apr 2009 0:15:20 262.656 A.... "C:\Programme\VideoLAN\VLC\plugins\libmod_plugin.dll" 1 Apr 2009 0:15:20 12.800 A.... "C:\Programme\VideoLAN\VLC\plugins\libmono_plugin.dll" 1 Apr 2009 0:15:20 25.600 A.... "C:\Programme\VideoLAN\VLC\plugins\libmosaic_plugin.dll" 1 Apr 2009 0:15:20 7.168 A.... "C:\Programme\VideoLAN\VLC\plugins\libmotionblur_plugin.dll" 1 Apr 2009 0:15:20 16.384 A.... "C:\Programme\VideoLAN\VLC\plugins\libmotiondetect_plugin.dll" 1 Apr 2009 0:15:20 193.024 A.... "C:\Programme\VideoLAN\VLC\plugins\libmp4_plugin.dll" 1 Apr 2009 0:15:20 50.688 A.... "C:\Programme\VideoLAN\VLC\plugins\libmpc_plugin.dll" 1 Apr 2009 0:15:20 12.288 A.... "C:\Programme\VideoLAN\VLC\plugins\libmpeg_audio_plugin.dll" 1 Apr 2009 0:15:20 9.216 A.... "C:\Programme\VideoLAN\VLC\plugins\libmpga_plugin.dll" 1 Apr 2009 0:15:20 107.008 A.... "C:\Programme\VideoLAN\VLC\plugins\libmpgatofixed32_plugin.dll" 1 Apr 2009 0:15:20 6.656 A.... "C:\Programme\VideoLAN\VLC\plugins\libmpgv_plugin.dll" 1 Apr 2009 0:15:20 8.192 A.... "C:\Programme\VideoLAN\VLC\plugins\libmsn_plugin.dll" 1 Apr 2009 0:15:20 40.448 A.... "C:\Programme\VideoLAN\VLC\plugins\libmux_asf_plugin.dll" 1 Apr 2009 0:15:20 19.968 A.... "C:\Programme\VideoLAN\VLC\plugins\libmux_avi_plugin.dll" 1 Apr 2009 0:15:20 6.656 A.... "C:\Programme\VideoLAN\VLC\plugins\libmux_dummy_plugin.dll" 1 Apr 2009 0:15:20 61.952 A.... "C:\Programme\VideoLAN\VLC\plugins\libmux_mp4_plugin.dll" 1 Apr 2009 0:15:20 7.168 A.... "C:\Programme\VideoLAN\VLC\plugins\libnoise_plugin.dll" 1 Apr 2009 0:15:20 8.192 A.... "C:\Programme\VideoLAN\VLC\plugins\libnormvol_plugin.dll" 1 Apr 2009 0:15:20 8.192 A.... "C:\Programme\VideoLAN\VLC\plugins\libnsc_plugin.dll" 1 Apr 2009 0:15:20 10.240 A.... "C:\Programme\VideoLAN\VLC\plugins\libnsv_plugin.dll" 1 Apr 2009 0:15:20 10.240 A.... "C:\Programme\VideoLAN\VLC\plugins\libntservice_plugin.dll" 1 Apr 2009 0:15:20 14.336 A.... "C:\Programme\VideoLAN\VLC\plugins\libnuv_plugin.dll" 1 Apr 2009 0:15:20 57.344 A.... "C:\Programme\VideoLAN\VLC\plugins\libogg_plugin.dll" 1 Apr 2009 0:15:20 17.920 A.... "C:\Programme\VideoLAN\VLC\plugins\libopengl_plugin.dll" 1 Apr 2009 0:15:20 13.824 A.... "C:\Programme\VideoLAN\VLC\plugins\libosd_parser_plugin.dll" 1 Apr 2009 0:15:20 12.800 A.... "C:\Programme\VideoLAN\VLC\plugins\libosdmenu_plugin.dll" 1 Apr 2009 0:15:20 7.168 A.... "C:\Programme\VideoLAN\VLC\plugins\libpacketizer_copy_plugin.dll" 1 Apr 2009 0:15:20 37.888 A.... "C:\Programme\VideoLAN\VLC\plugins\libpacketizer_h264_plugin.dll" 1 Apr 2009 0:15:20 42.496 A.... "C:\Programme\VideoLAN\VLC\plugins\libpacketizer_mpeg4audio_plugin.dll" 1 Apr 2009 0:15:20 17.920 A.... "C:\Programme\VideoLAN\VLC\plugins\libpacketizer_mpeg4video_plugin.dll" 1 Apr 2009 0:15:20 49.152 A.... "C:\Programme\VideoLAN\VLC\plugins\libpanoramix_plugin.dll" 1 Apr 2009 0:15:20 10.240 A.... "C:\Programme\VideoLAN\VLC\plugins\libparam_eq_plugin.dll" 1 Apr 2009 0:15:20 87.040 A.... "C:\Programme\VideoLAN\VLC\plugins\libplaylist_plugin.dll" 1 Apr 2009 0:15:20 201.216 A.... "C:\Programme\VideoLAN\VLC\plugins\libpng_plugin.dll" 1 Apr 2009 0:15:20 8.192 A.... "C:\Programme\VideoLAN\VLC\plugins\libpodcast_plugin.dll" 1 Apr 2009 0:15:20 63.488 A.... "C:\Programme\VideoLAN\VLC\plugins\libportaudio_plugin.dll" 1 Apr 2009 0:15:20 170.496 A.... "C:\Programme\VideoLAN\VLC\plugins\libpostproc_plugin.dll" 1 Apr 2009 0:15:20 10.752 A.... "C:\Programme\VideoLAN\VLC\plugins\libpsychedelic_plugin.dll" 1 Apr 2009 0:15:20 27.136 A.... "C:\Programme\VideoLAN\VLC\plugins\libps_plugin.dll" 1 Apr 2009 0:15:20 15.872 A.... "C:\Programme\VideoLAN\VLC\plugins\libpuzzle_plugin.dll" 1 Apr 2009 0:15:20 13.312 A.... "C:\Programme\VideoLAN\VLC\plugins\libpva_plugin.dll" 1 Apr 2009 0:15:20 9.238.016 A.... "C:\Programme\VideoLAN\VLC\plugins\libqt4_plugin.dll" 1 Apr 2009 0:15:20 9.216 A.... "C:\Programme\VideoLAN\VLC\plugins\libquicktime_plugin.dll" 1 Apr 2009 0:15:20 8.704 A.... "C:\Programme\VideoLAN\VLC\plugins\librawdv_plugin.dll" 1 Apr 2009 0:15:20 10.752 A.... "C:\Programme\VideoLAN\VLC\plugins\librawvid_plugin.dll" 1 Apr 2009 0:15:20 7.680 A.... "C:\Programme\VideoLAN\VLC\plugins\librawvideo_plugin.dll" 1 Apr 2009 0:15:20 41.472 A.... "C:\Programme\VideoLAN\VLC\plugins\librc_plugin.dll" 1 Apr 2009 0:15:20 25.088 A.... "C:\Programme\VideoLAN\VLC\plugins\libreal_plugin.dll" 1 Apr 2009 0:15:20 28.160 A.... "C:\Programme\VideoLAN\VLC\plugins\librealaudio_plugin.dll" 1 Apr 2009 0:15:20 8.704 A.... "C:\Programme\VideoLAN\VLC\plugins\librealvideo_plugin.dll" 1 Apr 2009 0:15:20 358.400 A.... "C:\Programme\VideoLAN\VLC\plugins\libremoteosd_plugin.dll" 1 Apr 2009 0:15:20 8.192 A.... "C:\Programme\VideoLAN\VLC\plugins\libripple_plugin.dll" 1 Apr 2009 0:15:20 12.800 A.... "C:\Programme\VideoLAN\VLC\plugins\librotate_plugin.dll" 1 Apr 2009 0:15:20 19.456 A.... "C:\Programme\VideoLAN\VLC\plugins\librss_plugin.dll" 1 Apr 2009 0:15:20 351.744 A.... "C:\Programme\VideoLAN\VLC\plugins\librtp_plugin.dll" 1 Apr 2009 0:15:20 5.632 A.... "C:\Programme\VideoLAN\VLC\plugins\librv32_plugin.dll" 1 Apr 2009 0:15:20 76.288 A.... "C:\Programme\VideoLAN\VLC\plugins\libsap_plugin.dll" 1 Apr 2009 0:15:20 7.680 A.... "C:\Programme\VideoLAN\VLC\plugins\libscale_plugin.dll" 1 Apr 2009 0:15:20 10.240 A.... "C:\Programme\VideoLAN\VLC\plugins\libscaletempo_plugin.dll" 1 Apr 2009 0:15:20 701.440 A.... "C:\Programme\VideoLAN\VLC\plugins\libschroedinger_plugin.dll" 1 Apr 2009 0:15:20 11.776 A.... "C:\Programme\VideoLAN\VLC\plugins\libscreen_plugin.dll" 1 Apr 2009 0:15:20 283.648 A.... "C:\Programme\VideoLAN\VLC\plugins\libsdl_image_plugin.dll" 1 Apr 2009 0:15:20 7.680 A.... "C:\Programme\VideoLAN\VLC\plugins\libsharpen_plugin.dll" 1 Apr 2009 0:15:20 8.704 A.... "C:\Programme\VideoLAN\VLC\plugins\libshout_plugin.dll" 1 Apr 2009 0:15:20 6.656 A.... "C:\Programme\VideoLAN\VLC\plugins\libshowintf_plugin.dll" 1 Apr 2009 0:15:20 8.704 A.... "C:\Programme\VideoLAN\VLC\plugins\libsimple_channel_mixer_plugin.dll" 1 Apr 2009 0:15:20 2.429.440 A.... "C:\Programme\VideoLAN\VLC\plugins\libskins2_plugin.dll" 1 Apr 2009 0:15:20 12.800 A.... "C:\Programme\VideoLAN\VLC\plugins\libsmf_plugin.dll" 1 Apr 2009 0:15:20 74.752 A.... "C:\Programme\VideoLAN\VLC\plugins\libspatializer_plugin.dll" 1 Apr 2009 0:15:20 5.120 A.... "C:\Programme\VideoLAN\VLC\plugins\libspdif_mixer_plugin.dll" 1 Apr 2009 0:15:20 94.208 A.... "C:\Programme\VideoLAN\VLC\plugins\libspeex_plugin.dll" 1 Apr 2009 0:15:20 12.800 A.... "C:\Programme\VideoLAN\VLC\plugins\libspudec_plugin.dll" 1 Apr 2009 0:15:20 10.240 A.... "C:\Programme\VideoLAN\VLC\plugins\libstats_plugin.dll" 1 Apr 2009 0:15:20 6.656 A.... "C:\Programme\VideoLAN\VLC\plugins\libstream_out_autodel_plugin.dll" 1 Apr 2009 0:15:20 10.240 A.... "C:\Programme\VideoLAN\VLC\plugins\libstream_out_bridge_plugin.dll" 1 Apr 2009 0:15:20 6.144 A.... "C:\Programme\VideoLAN\VLC\plugins\libstream_out_description_plugin.dll" 1 Apr 2009 0:15:20 7.680 A.... "C:\Programme\VideoLAN\VLC\plugins\libstream_out_display_plugin.dll" 1 Apr 2009 0:15:20 20.480 A.... "C:\Programme\VideoLAN\VLC\plugins\libsubsdec_plugin.dll" 1 Apr 2009 0:15:20 17.920 A.... "C:\Programme\VideoLAN\VLC\plugins\libsubsusf_plugin.dll" 1 Apr 2009 0:15:20 24.064 A.... "C:\Programme\VideoLAN\VLC\plugins\libsubtitle_plugin.dll" 1 Apr 2009 0:15:20 11.264 A.... "C:\Programme\VideoLAN\VLC\plugins\libsvcdsub_plugin.dll" 1 Apr 2009 0:15:20 392.704 A.... "C:\Programme\VideoLAN\VLC\plugins\libswscale_plugin.dll" 1 Apr 2009 0:15:20 5.632 A.... "C:\Programme\VideoLAN\VLC\plugins\libt140_plugin.dll" 1 Apr 2009 0:15:20 1.021.440 A.... "C:\Programme\VideoLAN\VLC\plugins\libtaglib_plugin.dll" 1 Apr 2009 0:15:20 15.360 A.... "C:\Programme\VideoLAN\VLC\plugins\libtelnet_plugin.dll" 1 Apr 2009 0:15:20 15.360 A.... "C:\Programme\VideoLAN\VLC\plugins\libtelx_plugin.dll" 1 Apr 2009 0:15:20 282.112 A.... "C:\Programme\VideoLAN\VLC\plugins\libtheora_plugin.dll" 1 Apr 2009 0:15:20 16.384 A.... "C:\Programme\VideoLAN\VLC\plugins\libtransform_plugin.dll" 1 Apr 2009 0:15:20 6.656 A.... "C:\Programme\VideoLAN\VLC\plugins\libtrivial_channel_mixer_plugin.dll" 1 Apr 2009 0:15:20 6.144 A.... "C:\Programme\VideoLAN\VLC\plugins\libtrivial_mixer_plugin.dll" 1 Apr 2009 0:15:20 6.144 A.... "C:\Programme\VideoLAN\VLC\plugins\libtrivial_resampler_plugin.dll" 1 Apr 2009 0:15:20 103.424 A.... "C:\Programme\VideoLAN\VLC\plugins\libts_plugin.dll" 1 Apr 2009 0:15:20 9.216 A.... "C:\Programme\VideoLAN\VLC\plugins\libtta_plugin.dll" 1 Apr 2009 0:15:20 119.808 A.... "C:\Programme\VideoLAN\VLC\plugins\libtwolame_plugin.dll" 1 Apr 2009 0:15:20 35.328 A.... "C:\Programme\VideoLAN\VLC\plugins\libty_plugin.dll" 1 Apr 2009 0:15:20 6.144 A.... "C:\Programme\VideoLAN\VLC\plugins\libugly_resampler_plugin.dll" 1 Apr 2009 0:15:20 7.680 A.... "C:\Programme\VideoLAN\VLC\plugins\libvc1_plugin.dll" 1 Apr 2009 0:15:20 24.064 A.... "C:\Programme\VideoLAN\VLC\plugins\libvcd_plugin.dll" 1 Apr 2009 0:15:20 35.840 A.... "C:\Programme\VideoLAN\VLC\plugins\libvisual_plugin.dll" 1 Apr 2009 0:15:20 8.192 A.... "C:\Programme\VideoLAN\VLC\plugins\libvmem_plugin.dll" 1 Apr 2009 0:15:20 34.816 A.... "C:\Programme\VideoLAN\VLC\plugins\libvobsub_plugin.dll" 1 Apr 2009 0:15:20 10.240 A.... "C:\Programme\VideoLAN\VLC\plugins\libvoc_plugin.dll" 1 Apr 2009 0:15:20 54.272 A.... "C:\Programme\VideoLAN\VLC\plugins\libvod_rtsp_plugin.dll" 1 Apr 2009 0:15:20 1.168.384 A.... "C:\Programme\VideoLAN\VLC\plugins\libvorbis_plugin.dll" 1 Apr 2009 0:15:20 38.400 A.... "C:\Programme\VideoLAN\VLC\plugins\libvout_directx_plugin.dll" 1 Apr 2009 0:15:20 14.848 A.... "C:\Programme\VideoLAN\VLC\plugins\libwall_plugin.dll" 1 Apr 2009 0:15:20 10.752 A.... "C:\Programme\VideoLAN\VLC\plugins\libwav_plugin.dll" 1 Apr 2009 0:15:20 7.168 A.... "C:\Programme\VideoLAN\VLC\plugins\libwave_plugin.dll" 1 Apr 2009 0:15:20 24.064 A.... "C:\Programme\VideoLAN\VLC\plugins\libwaveout_plugin.dll" 1 Apr 2009 0:15:20 24.064 A.... "C:\Programme\VideoLAN\VLC\plugins\libwingdi_plugin.dll" 1 Apr 2009 0:15:20 760.320 A.... "C:\Programme\VideoLAN\VLC\plugins\libx264_plugin.dll" 1 Apr 2009 0:15:20 6.656 A.... "C:\Programme\VideoLAN\VLC\plugins\libxa_plugin.dll" 1 Apr 2009 0:15:20 1.180.160 A.... "C:\Programme\VideoLAN\VLC\plugins\libxml_plugin.dll" 1 Apr 2009 0:15:20 12.288 A.... "C:\Programme\VideoLAN\VLC\plugins\libxtag_plugin.dll" 1 Apr 2009 0:15:20 15.360 A.... "C:\Programme\VideoLAN\VLC\plugins\libyuy2_i420_plugin.dll" 1 Apr 2009 0:15:20 11.776 A.... "C:\Programme\VideoLAN\VLC\plugins\libyuy2_i422_plugin.dll" 1 Apr 2009 0:15:20 390.656 A.... "C:\Programme\VideoLAN\VLC\plugins\libzvbi_plugin.dll" 1 Apr 2009 0:15:18 7.168 A.... "C:\Programme\VideoLAN\VLC\plugins\libaccess_output_file_plugin.dll" 1 Apr 2009 0:15:18 34.304 A.... "C:\Programme\VideoLAN\VLC\plugins\libaccess_ftp_plugin.dll" 1 Apr 2009 0:15:18 8.704 A.... "C:\Programme\VideoLAN\VLC\plugins\libaccess_filter_dump_plugin.dll" 1 Apr 2009 0:15:18 41.984 A.... "C:\Programme\VideoLAN\VLC\plugins\libaccess_rtmp_plugin.dll" 1 Apr 2009 0:15:20 13.312 A.... "C:\Programme\VideoLAN\VLC\plugins\libpacketizer_mpegvideo_plugin.dll" 1 Apr 2009 0:15:18 373.248 A.... "C:\Programme\VideoLAN\VLC\plugins\libaccess_output_shout_plugin.dll" 1 Apr 2009 0:15:20 32.768 A.... "C:\Programme\VideoLAN\VLC\plugins\libstream_out_standard_plugin.dll" 1 Apr 2009 0:15:20 9.728 A.... "C:\Programme\VideoLAN\VLC\plugins\libstream_out_es_plugin.dll" 1 Apr 2009 0:15:18 8.192 A.... "C:\Programme\VideoLAN\VLC\plugins\libi422_i420_plugin.dll" 1 Apr 2009 0:15:20 24.064 A.... "C:\Programme\VideoLAN\VLC\plugins\libmux_ogg_plugin.dll" 1 Mar 2009 19:34:20 881.908 A.... "C:\Programme\Activision\Call of Duty 4 - Modern Warfare\pb\dll\wc002180.dll" 1 Mar 2009 19:34:20 1.302.251 A.... "C:\Programme\Activision\Call of Duty 4 - Modern Warfare\pb\htm\wc002180.htm" 7 Mar 2009 0:15:16 1.949.696 A.... "C:\Programme\ICQ6\services\boxelyRenderer\VER2_5_5_1\boxelyrenderer.dll" 24 Apr 2009 20:34:34 2.359.296 A.... "C:\Programme\Java\jre6\bin\client\jvm.dll" 24 Apr 2009 20:34:34 348.160 A.... "C:\Programme\Java\jre6\bin\new_plugin\msvcr71.dll" 24 Apr 2009 20:34:34 410.976 A.... "C:\Programme\Java\jre6\bin\new_plugin\npdeploytk.dll" 24 Apr 2009 20:34:34 65.536 A.... "C:\Programme\Java\jre6\bin\new_plugin\npjp2.dll" 24 Apr 2009 20:34:34 16.801 A.... "C:\Programme\Java\jre6\lib\deploy\ffjcext.zip" 24 Apr 2009 20:34:34 152.576 A.... "C:\Programme\Java\jre6\lib\deploy\lzma.dll" 24 Mar 2009 19:00:00 1.562.104 A.... "C:\Programme\Mozilla Thunderbird\extensions\talkback@mozilla.org\components\BrandRes.dll" 24 Mar 2009 19:00:00 156.536 A.... "C:\Programme\Mozilla Thunderbird\extensions\talkback@mozilla.org\components\fullsoft.dll" 24 Mar 2009 19:00:00 14.448 A.... "C:\Programme\Mozilla Thunderbird\extensions\talkback@mozilla.org\components\qfaservices.dll" 24 Mar 2009 19:00:00 407.032 A.... "C:\Programme\Mozilla Thunderbird\extensions\talkback@mozilla.org\components\talkback.exe" 1 Apr 2009 0:15:16 10.045 A.... "C:\Programme\VideoLAN\VLC\http\old\index.html" 1 Apr 2009 0:15:16 630 A.... "C:\Programme\VideoLAN\VLC\http\old\info.html" 1 Apr 2009 0:15:16 1.484 A.... "C:\Programme\VideoLAN\VLC\http\old\webcam.html" 1 Apr 2009 0:15:14 2.218 A.... "C:\Programme\VideoLAN\VLC\lua\http\flash.html" 1 Apr 2009 0:15:14 1.999 A.... "C:\Programme\VideoLAN\VLC\lua\http\index.html" 1 Apr 2009 0:15:14 1.878 A.... "C:\Programme\VideoLAN\VLC\lua\http\mosaic.html" 1 Apr 2009 0:15:14 308 A.... "C:\Programme\VideoLAN\VLC\lua\http\vlm_export.html" 1 Apr 2009 0:15:14 1.781 A.... "C:\Programme\VideoLAN\VLC\lua\http\vlm.html" 1 Apr 2009 0:15:16 2.520 A.... "C:\Programme\VideoLAN\VLC\http\old\admin\browse.html" 1 Apr 2009 0:15:16 762 A.... "C:\Programme\VideoLAN\VLC\http\old\admin\dboxfiles.html" 1 Apr 2009 0:15:16 4.432 A.... "C:\Programme\VideoLAN\VLC\http\old\admin\index.html" 1 Apr 2009 0:15:16 3.401 A.... "C:\Programme\VideoLAN\VLC\http\old\vlm\edit.html" 1 Apr 2009 0:15:16 5.977 A.... "C:\Programme\VideoLAN\VLC\http\old\vlm\index.html" 1 Apr 2009 0:15:16 2.680 A.... "C:\Programme\VideoLAN\VLC\http\old\vlm\new.html" 1 Apr 2009 0:15:16 3.352 A.... "C:\Programme\VideoLAN\VLC\http\old\vlm\show.html" 7 Mar 2009 0:15:02 4.601 A.... "C:\Programme\ICQ6\services\icqXtraz\ver1\content\game_center\index4.html" 7 Mar 2009 0:15:02 637 A.... "C:\Programme\ICQ6\services\icqXtraz\ver1\content\game_center\lobby_banner.html" 26 Mar 2009 21:53:46 37.612 A.... "C:\Programme\ICQ6\services\icqXtraz\ver1\content\zlango\content.zip" 26 Mar 2009 21:53:46 64.188 A.... "C:\Programme\ICQ6\services\icqXtraz\ver1\theme\zlango\images.zip" 24 Apr 2009 20:34:34 73.728 A.... "C:\Programme\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll" 24 Apr 2009 14:47:40 188.548 A.... "C:\Programme\Gemeinsame Dateien\InstallShield\Professional\RunTime\09\01\Intel32\iGdi.dll" 24 Apr 2009 14:47:38 311.428 A.... "C:\Programme\Gemeinsame Dateien\InstallShield\Professional\RunTime\09\01\Intel32\setup.dll" Files with hidden attributes: Mon 26 Jan 2009 1,740,632 A.SHR --- "C:\Programme\Spybot - Search & Destroy\SDUpdate.exe" Mon 26 Jan 2009 5,365,592 A.SHR --- "C:\Programme\Spybot - Search & Destroy\SpybotSD.exe" Thu 5 Mar 2009 2,260,480 A.SHR --- "C:\Programme\Spybot - Search & Destroy\TeaTimer.exe" Program Folders: C:\Programme\ Acronis Activision Adobe Ahead ANACONDA Apple Software Update ATI Technologies Audacity 1.3 Beta (Unicode) Avira Biet-O-Matic Bonjour Canon ComPlus Applications DAEMON Tools Lite DAEMON Tools Toolbar DBOX_IFA devolo DIFX Enigma Software Group fotokasten comfort - Tchibo Edition Fraps Gemeinsame Dateien Hamachi Hitman Pro HP ICQ6 InstallShield Installation Information Intel Intelore Internet Explorer iTunes Java KONAMI Launchy Lavalys Lavasoft Line6 Logitech MAGIX Malwarebytes' Anti-Malware Media Key Messenger Microsoft microsoft frontpage Microsoft Office Microsoft Visual Studio Microsoft Works Microsoft.NET mkv2vob Movie Maker Mozilla Firefox Mozilla Thunderbird MSBuild MSN MSN Gaming Zone MSXML 4.0 MSXML 6.0 Nero NeroInstall.bak NetMeeting NewsLeecher Nokia Online Services Online-Dienste Outlook Express Overland PC Connectivity Solution PIXELA ProtectDisc Driver Installer PS3 Media Server QuickTime Realtek Reference Assemblies RivaTuner v2.24 RouterControl shut down timer_2kxp SixaxisDriver SLD Codec Pack Sony Sony Setup SpeedFan Spybot - Search & Destroy Steinberg Syncrosoft SystemRequirementsLab TeamViewer TomTom DesktopSuite TomTom HOME TomTom HOME 2 totalcmd Trend Micro TuneUp Utilities 2008 TVersity Uninstall Information Ventrilo VID_0E8F&PID_1006 VideoLAN Windows Live Windows Live SkyDrive Windows Media Connect 2 Windows Media Player Windows NT WindowsUpdate WinRAR xerox XP Codec Pack C:\Programme\Gemeinsame Dateien\ Acronis Adobe Ahead Apple Canon DESIGNER Dienste Hewlett-Packard HP InstallShield Logishrd Logitech Macrovision Shared MAGIX Shared Microsoft Shared MSSoap Nero Nokia ODBC PCSuite SpeechEngines System Windows Live Wise Installation Wizard xara Add/Remove Programs: Windows-Treiberpaket - Nokia Modem (10/12/2007 3.6) Windows-Treiberpaket - Nokia Modem (08/03/2007 6.84.0.2) Adobe Flash Player 10 Plugin Adobe Photoshop CS4 ATI - Software Uninstall Utility ATI Display Driver Audacity 1.3.4 (Unicode) Avira AntiVir Personal - Free Antivirus Biet-O-Matic v2.4.1 BitComet 0.97 Canon Camera Access Library Canon Utilities CameraWindow DC Canon Utilities CameraWindow DC_DV 5 for ZoomBrowser EX Canon Utilities CameraWindow DC_DV 6 for ZoomBrowser EX Canon Utilities CameraWindow Canon G.726 WMP-Decoder CANON iMAGE GATEWAY Task for ZoomBrowser EX Canon Internet Library for ZoomBrowser EX Canon Camera Support Core Library DAEMON Tools Toolbar DBOX2 Image-Flashing-Assistent 2.3.1 Multilanguage devolo dLAN-Konfigurationsassistent devolo Informer CANON IMAGE GATEWAY Registrierungsanleitung devolo EasyClean devolo EasyShare Microsoft Office Enterprise 2007 Canon Utilities EOS Utility EVEREST Ultimate Edition v5.00 Firebird SQL Server - MAGIX Edition fotokasten comfort Fraps SixaxisDriver 0.91 Hamachi 1.0.2.5 HijackThis 2.0.2 HP Image Zone 3.5 Microsoft Internationalized Domain Names Mitigation APIs Call of Duty(R) 4 - Modern Warfare(TM) 1.4 Patch Call of Duty(R) 4 - Modern Warfare(TM) 1.5 Multiplayer Patch Call of Duty(R) 4 - Modern Warfare(TM) 1.6 Patch Call of Duty(R) 4 - Modern Warfare(TM) 1.7 Patch Call of Duty(R) 4 - Modern Warfare(TM) 1.5 Singleplayer Patch Call of Duty(R) 4 - Modern Warfare(TM) Pro Evolution Soccer 6 High Definition Audio Driver Package - KB888111 Windows Media Format SDK Hotfix - KB891122 Sicherheitsupdate für Windows XP (KB923561) Sicherheitsupdate für Step by Step Interactive Training (KB923723) Sicherheitsupdate für Windows XP (KB923789) Sicherheitsupdate für Windows Internet Explorer 7 (KB928090) Sicherheitsupdate für Windows Internet Explorer 7 (KB929969) Sicherheitsupdate für Windows Media Player 11 (KB936782) Sicherheitsupdate für Windows Internet Explorer 7 (KB937143) Sicherheitsupdate für Windows Internet Explorer 7 (KB938127) Sicherheitsupdate für Windows XP (KB938464) Sicherheitsupdate für Windows XP (KB941569) Sicherheitsupdate für Windows Internet Explorer 7 (KB942615) Hotfix für Windows Internet Explorer 7 (KB947864) Sicherheitsupdate für Windows XP (KB950760) Sicherheitsupdate für Windows XP (KB950762) Sicherheitsupdate für Windows XP (KB950974) Sicherheitsupdate für Windows XP (KB951066) Sicherheitsupdate für Windows XP (KB951376-v2) Sicherheitsupdate für Windows XP (KB951698) Sicherheitsupdate für Windows XP (KB951748) Sicherheitsupdate für Windows XP (KB952004) Sicherheitsupdate für Windows Media Player (KB952069) Sicherheitsupdate für Windows XP (KB952954) Sicherheitsupdate für Windows XP (KB953155) Sicherheitsupdate für Windows XP (KB953839) Sicherheitsupdate für Windows Media Player 11 (KB954154) Sicherheitsupdate für Windows XP (KB954211) Sicherheitsupdate für Windows XP (KB954459) Sicherheitsupdate für Windows XP (KB954600) Sicherheitsupdate für Windows XP (KB955069) Sicherheitsupdate für Windows XP (KB956391) Sicherheitsupdate für Windows XP (KB956572) Sicherheitsupdate für Windows XP (KB956802) Sicherheitsupdate für Windows XP (KB956803) Sicherheitsupdate für Windows XP (KB956841) Sicherheitsupdate für Windows XP (KB957095) Sicherheitsupdate für Windows XP (KB957097) Sicherheitsupdate für Windows Internet Explorer 7 (KB958215) Sicherheitsupdate für Windows XP (KB958644) Sicherheitsupdate für Windows XP (KB958687) Sicherheitsupdate für Windows XP (KB958690) Sicherheitsupdate für Windows XP (KB959426) Sicherheitsupdate für Windows XP (KB960225) Sicherheitsupdate für Windows XP (KB960715) Sicherheitsupdate für Windows XP (KB960803) Sicherheitsupdate für Windows Internet Explorer 7 (KB961260) Sicherheitsupdate für Windows XP (KB961373) Sicherheitsupdate für Windows Internet Explorer 7 (KB963027) Launchy 2.1.2 Line 6 Monkey 1.20 (Remove Only) MAGIX 3D Maker (embeded) MAGIX Fotobuch 3.6 MAGIX Fotos auf CD & DVD 6 deluxe (D) MAGIX Fotos auf CD & DVD 8 deluxe 8.0.0.14 (D) MAGIX Online Druck Service 3.4.3.0 (D) MAGIX Screenshare 4.3.6.1987 (D) MAGIX Xtreme Foto Designer 6 6.0.25.0 (D) Malwarebytes' Anti-Malware Microsoft .NET Framework 2.0 Microsoft .NET Framework 2.0 Language Pack - DEU Microsoft .NET Framework 3.0 Canon MovieEdit Task for ZoomBrowser EX Mozilla Firefox (3.0.9) Mozilla Thunderbird (2.0.0.21) Canon Utilities MyCamera Canon Utilities MyCamera DC NewsLeecher v3.9 Final Microsoft National Language Support Downlevel APIs Nokia PC Suite Canon Utilities PhotoStitch ProtectDisc Helper Driver 10 Canon RAW Image Task for ZoomBrowser EX Canon Utilities RemoteCapture Task for ZoomBrowser EX RouterControl 1.85 Samplitude SE No.9 9.1.1.1 (D) Adobe Flash Player 9 ActiveX SLD Codec Pack SyncroSoft Emu (Remove only) Syncrosofts Lizenz Kontrolle System Requirements Lab TeamViewer 4 TomTom HOME 2.5.2.60 Total Commander (Remove or Repair) TVersity Media Server 1.0.0.8 RC5 VLC media player 0.9.9 Microsoft Kernel-Mode Driver Framework Feature Pack 1.5 Microsoft Kernel-Mode Driver Framework Feature Pack 1.7 Windows Imaging Component Windows Media Format 11 runtime Windows Media Player 11 Windows XP Service Pack 3 Windows Live Essentials WinRAR Archivierer Windows Media Format 11 runtime Windows Media Player 11 Microsoft User-Mode Driver Framework Feature Pack 1.5 XP Codec Pack XML Paper Specification Shared Components Pack 1.0 Canon Utilities ZoomBrowser EX Canon ZoomBrowser EX Memory Card Utility PS3ThemeCreator Adobe Update Manager CS4 Adobe Extension Manager CS4 ATI Catalyst Control Center Twin Digital GamePad kuler Adobe Color NA Extra Settings CS4 CDDRV_Installer Adobe Color JA Extra Settings CS4 Adobe Setup Adobe Color EU Recommended Settings CS4 Adobe CSI CS4 HP PSC & OfficeJet 3.5 Microsoft .NET Framework 3.0 Nokia Connectivity Cable Driver Adobe Anchor Service CS4 Adobe Drive CS4 AdobeColorCommonSetRGB DocProc Windows Live-Uploadtool MSVC80_x86 mkv2vob MSVCRT AcronisDisk Director Suite AiO_Scan Scan Java(TM) 6 Update 10 Nokia PC Suite SkinsHP1 Memories Disc Creator 2.0 AIOMinimal KhalInstallWrapper HP Software Update PDF Settings CS4 Adobe XMP Panels CS4 Windows Live Communications Platform Call of Duty(R) 4 - Modern Warfare(TM) 1.4 Patch HPSystemDiagnostics Adobe Color - Photoshop Specific CS4 Adobe WinSoft Linguistics Plugin Unload ccc-core-static Apple Mobile Device Support Bonjour Copy Windows Communication Foundation Adobe Service Manager Extension Catalyst Control Center Graphics Full New Windows Live Anmelde-Assistent ccc-core-preinstall neroxml PrintScreen Logitech MouseWare 9.79.1 TuneUp Utilities 2008 Nokia Software Updater Catalyst Control Center Graphics Full Existing Windows Live Call ICQ6 5500Trb Skins Adobe Color Video Profiles CS CS4 Adobe Photoshop CS4 Support AiOSoftware Adobe Device Central CS4 AdobeColorCommonSetCMYK Catalyst Control Center HydraVision Full 5500_Help Microsoft .NET Framework 2.0 Director Microsoft Visual C++ 2005 Redistributable 5500 InstantShare overland Windows Messenger 5.1 Ventrilo Client Windows Workflow Foundation TrayApp Adobe Type Support CS4 ImageMixer 3 SE Windows Live Messenger Adobe Bridge CS4 Suite Shared Configuration CS4 Call of Duty(R) 4 - Modern Warfare(TM) 1.5 Patch CCC Help English MSXML 4.0 SP2 (KB954430) QFolder Microsoft .NET Framework 2.0 Language Pack - DEU Call of Duty(R) 4 - Modern Warfare(TM) 1.6 Patch Choice Guard VC_MergeModuleToMSI Microsoft Software Update for Web Folders (German) 12 Microsoft Office Access MUI (German) 2007 Microsoft Office Excel MUI (German) 2007 Microsoft Office PowerPoint MUI (German) 2007 Microsoft Office Publisher MUI (German) 2007 Microsoft Office Outlook MUI (German) 2007 Microsoft Office Word MUI (German) 2007 Microsoft Office Proof (German) 2007 Microsoft Office Proof (English) 2007 Microsoft Office Proof (French) 2007 Microsoft Office Proof (Italian) 2007 Microsoft Office Proofing (German) 2007 Microsoft Office Enterprise 2007 Microsoft Office InfoPath MUI (German) 2007 Microsoft Office Shared MUI (German) 2007 Microsoft Office OneNote MUI (German) 2007 Microsoft Office Groove MUI (German) 2007 Windows Live Essentials Adobe Linguistics CS4 Call of Duty(R) 4 - Modern Warfare(TM) 1.7 Patch Adobe CMaps CS4 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 CreativeProjects Segoe UI Readme ccc-utility Adobe Reader 8.1.0 - Deutsch Fax Connect Spybot - Search & Destroy Adobe Photoshop CS4 Apple Software Update PC Connectivity Solution Windows Presentation Foundation Adobe Output Module SkinsHP2 Nero 8 QuickTime MSXML 4.0 SP2 (KB936181) Catalyst Control Center Core Implementation MSXML 6.0 Parser (KB933579) Adobe Default Language CS4 Microsoft XML Parser REALTEK GbE & FE Ethernet PCI-E NIC Driver Microsoft .NET Framework 1.1 QuickProjects Photoshop Camera Raw 5500Tour Overland Catalyst Control Center - Branding Nokia Flashing Cable Driver Call of Duty(R) 4 - Modern Warfare(TM) Adobe Photoshop CS4 AcronisTrueImageHome Catalyst Control Center Graphics Light Catalyst Control Center Graphics Previews Common Microsoft .NET Framework 1.1 German Language Pack PhotoGallery Pro Evolution Soccer 6 Nero Mega Plugin Pack Adobe Search for Help Realtek High Definition Audio Driver Logitech SetPoint Adobe ExtendScript Toolkit CS4 Adobe PDF Library Files CS4 WebReg Adobe Fonts All hpmdtab Run Values: [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run] "SunJavaUpdateSched"="\"C:\\Programme\\Java\\jre6\\bin\\jusched.exe\"" "StartCCC"="\"C:\\Programme\\ATI Technologies\\ATI.ACE\\Core-Static\\CLIStart.exe\" MSRun" "RTHDCPL"="RTHDCPL.EXE" "Logitech Utility"="Logi_MwX.Exe" "Kernel and Hardware Abstraction Layer"="KHALMNPR.EXE" "avgnt"="\"C:\\Programme\\Avira\\AntiVir Desktop\\avgnt.exe\" /min" "Alcmtr"="ALCMTR.EXE" [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents] @="" [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents\IMAIL] "Installed"="1" @="" [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents\MAPI] "NoChange"="1" "Installed"="1" @="" [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents\MSFS] "Installed"="1" @="" [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run] "CTFMON.EXE"="C:\\windows\\system32\\ctfmon.exe" "DAEMON Tools Lite"="\"C:\\Programme\\DAEMON Tools Lite\\daemon.exe\" -autorun" [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run\AdobeUpdater] @="" Bot Check: SERVICE_NAME: wscsvc DISPLAY_NAME : Sicherheitscenter START_TYPE : 2 AUTO_START SERVICE_NAME: sharedaccess DISPLAY_NAME : Windows-Firewall/Gemeinsame Nutzung der Internetverbindung START_TYPE : 2 AUTO_START SERVICE_NAME: wuauserv DISPLAY_NAME : Automatische Updates START_TYPE : 2 AUTO_START SERVICE_NAME: srservice DISPLAY_NAME : Systemwiederherstellungsdienst START_TYPE : 2 AUTO_START [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Ole] "EnableDCOM"="Y" [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa] "restrictanonymous"=dword:00000000 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update] "AUOptions"=dword:00000001 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center] "AntiVirusDisableNotify"=dword:00000000 "FirewallDisableNotify"=dword:00000000 "UpdatesDisableNotify"=dword:00000000 "AntiVirusOverride"=dword:00000000 "FirewallOverride"=dword:00000000 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center] "WaitToKillServiceTimeout"="20000" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] "SFCDisable"=dword:00000000 "Shell"="Explorer.exe" "Userinit"="C:\\windows\\system32\\userinit.exe," [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\shell extensions] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\NetBT\Parameters] "TransportBindName"="\\Device\\" ShellExecuteHooks: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks] "{AEB6717E-7E19-11d0-97EE-00C04FD91972}"="" Environment: HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager\environment ComSpec REG_EXPAND_SZ %SystemRoot%\system32\cmd.exe Path REG_EXPAND_SZ %systemroot%\system32;%systemroot%;%systemroot%\system32\wbem;C:\Programme\PC Connectivity Solution;C:\Programme\ATI Technologies\ATI.ACE\Core-Static;C:\Programme\QuickTime\QTSystem windir REG_EXPAND_SZ %SystemRoot% OS REG_SZ Windows_NT PATHEXT REG_SZ .COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH TEMP REG_EXPAND_SZ %SystemRoot%\TEMP TMP REG_EXPAND_SZ %SystemRoot%\TEMP CLASSPATH REG_SZ .;C:\Programme\Java\jre1.6.0_05\lib\ext\QTJava.zip QTJAVA REG_SZ C:\Programme\Java\jre1.6.0_05\lib\ext\QTJava.zip VERSION REG_EXPAND_SZ 2.1.5 SESSIONID REG_EXPAND_SZ 1229920881420g1u0358c.austin.hp.com13a25ff3:11e64d100ad:-2fe3 COLLECTIONID REG_EXPAND_SZ COL7300 ITEMID REG_EXPAND_SZ oj-21919-1 UPDATEDIR REG_EXPAND_SZ C:\DOKUME~1\seynems\LOKALE~1\Temp\rad62A99.tmp TOOLPATH REG_EXPAND_SZ /C:/Programme/HP/HP%20Software%20Update/install.htm HMSERVER REG_EXPAND_SZ https://vausnzisprob.austin.hp.com/wuss/servlet/WUSSServlet SWUTVER REG_EXPAND_SZ 1.0.22.20030804 OSVER REG_EXPAND_SZ winXPP LANG REG_EXPAND_SZ 1031 TIMEOUT REG_EXPAND_SZ 0 SecurityProviders: HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders SecurityProviders REG_SZ msapsspc.dll, schannel.dll, digest.dll, msnsspc.dll Authentication Packages: HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa Authentication Packages REG_MULTI_SZ msv1_0\0relog_ap\0\0 Subsystem Startup: [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Session Manager\SubSystems] "Windows"="%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,3072,512 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ProfileControl=Off MaxRequestThreads=16" Midi Drivers: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32] "midi"="wdmaud.drv" Non-Default IFEO Debugger: Non-Default Installed Components: Non-Default Safeboot Minimal: HKEY_LOCAL_MACHINE\system\currentcontrolset\control\safeboot\minimal\wdf01000.sys <NO NAME> REG_SZ Driver HKEY_LOCAL_MACHINE\system\currentcontrolset\control\safeboot\minimal\wdfloadgroup <NO NAME> REG_SZ File Associations: [HKEY_CLASSES_ROOT\batfile\shell\open\command] @="\"%1\" %*" [HKEY_CLASSES_ROOT\cmdfile\shell\open\command] @="\"%1\" %*" [HKEY_CLASSES_ROOT\comfile\shell\open\command] @="\"%1\" %*" [HKEY_CLASSES_ROOT\exefile\shell\open\command] @="\"%1\" %*" [HKEY_CLASSES_ROOT\htafile\shell\open\command] @="C:\\WINDOWS\\system32\\mshta.exe \"%1\" %*" [HKEY_CLASSES_ROOT\http\shell\open\command] @="\"C:\\Programme\\Internet Explorer\\IEXPLORE.EXE\" -nohome" [HKEY_CLASSES_ROOT\htmlfile\shell\open\command] @="\"C:\\Programme\\Internet Explorer\\IEXPLORE.EXE\" -nohome" [HKEY_CLASSES_ROOT\regedit\shell\open\command] @="regedit.exe %1" [HKEY_CLASSES_ROOT\regfile\shell\open\command] @="regedit.exe \"%1\"" [HKEY_CLASSES_ROOT\scrfile\shell\open\command] @="\"%1\" /S" [HKEY_CLASSES_ROOT\txtfile\shell\open\command] @="%SystemRoot%\system32\NOTEPAD.EXE %1" Finished! Dieser Beitrag wurde am 25.04.2009 um 17:00 Uhr von seysas editiert.
|
|
|
|
|
|
|
25.04.2009, 18:12
Member
Beiträge: 3716 |
#12
ne, du solltest sdfix im abgesicherten modus ausfüren, punkt 1 der anleitung ist das, davon muss es auch ein logfile geben.
|
|
|
|
|
|
|
26.04.2009, 03:05
Member
Themenstarter Beiträge: 14 |
#13
Ich finde leider keine Logfile. Kannst du mir bitte genauer erklären, was genau ich bei sdfix ausführen soll? also welchen menüpunkt? sonst wende ich ständig was falsches an.
Danke |
|
|
|
|
|
|
26.04.2009, 16:57
Member
Beiträge: 3716 |
#14
naja du solst einfach punkt eins der anleitung ausfüren.
also abges modus sdfix starten y drücken abwarten, logfile posten. |
|
|
|
|
|
|
26.04.2009, 17:51
Member
Themenstarter Beiträge: 14 |
#15
Also in Punkt eins ist
Problembeschreibung / Symptome ? Ebenso steht in der anlaitung gar nichts von SDFIX, ich habe es aber dennoch runtergeladen und da ist keine eizige Möglichkeit irgendwo ein y auszuführen. Ich habe unter sdfix lediglich eine catchme.exe und eine runthis.bat. lediglich bei runthis.bat habe ich so eine art menü, wo aber kein y aufgeführt ist. |
|
|
|
|
|
Um auf dieses Thema zu ANTWORTEN
bitte erst » hier kostenlos registrieren!!
bitte erst » hier kostenlos registrieren!!
Folgende Themen könnten Dich auch interessieren:
Copyright © 2024, Protecus.de - Protecus Team - Impressum / Mediadaten
ich bin leider so verzweifelt, irgendwie verlinkt mich google nicht auf die Seiten, die er mir anzeigt, sondern immer irgendwelche anderen Amiseiten usw. Ebenso will er über Firefox ständig einen Media Player update machen usw. Ich vermute auf einen Trojaner.
kann mir da jemand helfen? bitte bitte bitte
Hier ist mein Hijackthis Logfile
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 15:52:03, on 24.04.2009
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16791)
Boot mode: Normal
Running processes:
C:\windows\System32\smss.exe
C:\windows\system32\winlogon.exe
C:\windows\system32\services.exe
C:\windows\system32\lsass.exe
C:\windows\system32\Ati2evxx.exe
C:\windows\system32\svchost.exe
C:\windows\System32\svchost.exe
C:\windows\system32\svchost.exe
C:\windows\system32\Ati2evxx.exe
C:\windows\system32\spoolsv.exe
C:\Programme\Avira\AntiVir Desktop\sched.exe
C:\windows\Explorer.EXE
C:\windows\RTHDCPL.EXE
C:\Programme\Avira\AntiVir Desktop\avgnt.exe
C:\Programme\DAEMON Tools Lite\daemon.exe
C:\Programme\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\windows\system32\ctfmon.exe
C:\Programme\Launchy\Launchy.exe
C:\Programme\ATI Technologies\ATI.ACE\Core-Static\ccc.exe
C:\Programme\Gemeinsame Dateien\Acronis\Schedule2\schedul2.exe
C:\Programme\Avira\AntiVir Desktop\avguard.exe
C:\Programme\Gemeinsame Dateien\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Programme\Bonjour\mDNSResponder.exe
C:\Programme\Nero\Nero8\Nero BackItUp\NBService.exe
C:\windows\system32\IoctlSvc.exe
C:\windows\system32\PnkBstrA.exe
C:\windows\system32\svchost.exe
C:\Programme\Gemeinsame Dateien\Acronis\Fomatik\TrueImageTryStartService.exe
C:\Programme\Canon\CAL\CALMAIN.exe
C:\Programme\Mozilla Thunderbird\thunderbird.exe
C:\windows\system32\PnkBstrB.exe
C:\Programme\Mozilla Firefox\firefox.exe
C:\Programme\Trend Micro\HijackThis\HijackThis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = www.daemon-search.com/startpage
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://go.microsoft.com/fwlink/?LinkId=74005
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
O1 - Hosts: 82.98.235.133 browser-security.microsoft.com
O1 - Hosts: 82.98.235.133 url.adtrgt.com
O2 - BHO: Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Programme\Gemeinsame Dateien\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {0f3ce750-843d-4fcf-b28e-b56ffa89054e} - (no file)
O2 - BHO: BitComet ClickCapture - {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} - C:\Programme\BitComet\tools\BitCometBHO_1.1.11.30.dll
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
O2 - BHO: Windows Live Anmelde-Hilfsprogramm - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Programme\Gemeinsame Dateien\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: {3f46bc90-aa2d-5b08-fde4-febaedc62239} - {93226cde-abef-4edf-80b5-d2aa09cb64f3} - (no file)
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O4 - HKLM\..\Run: [avgnt] "C:\Programme\Avira\AntiVir Desktop\avgnt.exe" /min
O4 - HKLM\..\Run: [StartCCC] "C:\Programme\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Programme\DAEMON Tools Lite\daemon.exe" -autorun
O4 - HKCU\..\Run: [CTFMON.EXE] C:\windows\system32\ctfmon.exe
O4 - HKCU\..\Run: [Uniblue RegistryBooster 2009] C:\Programme\Uniblue\RegistryBooster\RegistryBooster.exe /S
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Programme\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOKALER DIENST')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETZWERKDIENST')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: Launchy.lnk = C:\Programme\Launchy\Launchy.exe
O8 - Extra context menu item: &D&ownload &with BitComet - res://C:\Programme\BitComet\BitComet.exe/AddLink.htm
O8 - Extra context menu item: &D&ownload all video with BitComet - res://C:\Programme\BitComet\BitComet.exe/AddVideo.htm
O8 - Extra context menu item: &D&ownload all with BitComet - res://C:\Programme\BitComet\BitComet.exe/AddAllLink.htm
O8 - Extra context menu item: Nach Microsoft E&xel exportieren - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: An OneNote senden - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: An OneNote s&enden - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: (no name) - {2D663D1A-8670-49D9-A1A5-4C56B4E14E84} - (no file)
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: BitComet - {D18A0B52-D63C-4ed0-AFC6-C1E3DC1AF43A} - res://C:\Programme\BitComet\tools\BitCometBHO_1.1.11.30.dll/206 (file missing)
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\windows\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\windows\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Programme\ICQ6\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Programme\ICQ6\ICQ.exe
O9 - Extra button: @C:\Programme\Messenger\Msgslang.dll,-61144 - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programme\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: @C:\Programme\Messenger\Msgslang.dll,-61144 - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programme\Messenger\msmsgs.exe
O16 - DPF: {22E5D91F-89E6-4405-AD9C-0AF27BA6F06B} (HidInputMonitorX Control) - file:///C:/Dokumente%20und%20Einstellungen/seynems/Desktop/components/hidinputmonitorx.ocx
O16 - DPF: {4F63D44B-6274-4D60-8AB1-CAA7116B8AF3} (A9Helper.A9) - file:///C:/Dokumente%20und%20Einstellungen/seynems/Desktop/components/A9.ocx
O16 - DPF: {7030CC6C-1A88-4591-BB5A-651B9F7F0C30} (WMVHDRatingCtrl Class) - file:///C:/Dokumente%20und%20Einstellungen/seynems/Desktop/components/wmvhdrating.ocx
O17 - HKLM\System\CCS\Services\Tcpip\..\{5E2A5981-0522-42DD-A89C-DCB6B4595471}: NameServer = 192.168.1.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{5E2A5981-0522-42DD-A89C-DCB6B4595471}: NameServer = 192.168.1.1
O17 - HKLM\System\CS2\Services\Tcpip\..\{5E2A5981-0522-42DD-A89C-DCB6B4595471}: NameServer = 192.168.1.1
O17 - HKLM\System\CS3\Services\Tcpip\..\{5E2A5981-0522-42DD-A89C-DCB6B4595471}: NameServer = 192.168.1.1
O20 - AppInit_DLLs: C:\windows\system32\ nrsmbp.dll c:\windows\system32\jowujino.dll C:\windows\system32\ c:\windows\system32\fohajifu.dll
O21 - SSODL: SSODL - {EC43E3FD-5C60-46a6-97D7-E0B85DBDD6C4} - (no file)
O22 - SharedTaskScheduler: STS - {EC43E3FD-5C60-46a6-97D7-E0B85DBDD6C4} - (no file)
O23 - Service: Acronis Scheduler2 Service (AcrSch2Svc) - Acronis - C:\Programme\Gemeinsame Dateien\Acronis\Schedule2\schedul2.exe
O23 - Service: Avira AntiVir Planer (AntiVirSchedulerService) - Avira GmbH - C:\Programme\Avira\AntiVir Desktop\sched.exe
O23 - Service: Avira AntiVir Guard (AntiVirService) - Avira GmbH - C:\Programme\Avira\AntiVir Desktop\avguard.exe
O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Programme\Gemeinsame Dateien\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\windows\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: Bonjour-Dienst (Bonjour Service) - Apple Inc. - C:\Programme\Bonjour\mDNSResponder.exe
O23 - Service: Canon Camera Access Library 8 (CCALib8) - Canon Inc. - C:\Programme\Canon\CAL\CALMAIN.exe
O23 - Service: FanSpeedNT Service - Unknown owner - C:\Dokumente und Einstellungen\seynems\Desktop\FanSpeed1_2_0\fanspeedNT.exe (file missing)
O23 - Service: Firebird Server - MAGIX Instance (FirebirdServerMAGIXInstance) - MAGIX® - C:\Programme\MAGIX\Common\Database\bin\fbserver.exe
O23 - Service: FLEXnet Licensing Service - Acresso Software Inc. - C:\Programme\Gemeinsame Dateien\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Programme\Gemeinsame Dateien\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Lavasoft Ad-Aware Service - Lavasoft - C:\Programme\Lavasoft\Ad-Aware\AAWService.exe
O23 - Service: Logitech Bluetooth Service (LBTServ) - Logitech, Inc. - C:\Programme\Gemeinsame Dateien\Logishrd\Bluetooth\LBTServ.exe
O23 - Service: Nero BackItUp Scheduler 3 - Nero AG - C:\Programme\Nero\Nero8\Nero BackItUp\NBService.exe
O23 - Service: NMIndexingService - Nero AG - C:\Programme\Gemeinsame Dateien\Nero\Lib\NMIndexingService.exe
O23 - Service: PLFlash DeviceIoControl Service - Prolific Technology Inc. - C:\windows\system32\IoctlSvc.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
O23 - Service: PnkBstrA - Unknown owner - C:\windows\system32\PnkBstrA.exe
O23 - Service: PnkBstrB - Unknown owner - C:\windows\system32\PnkBstrB.exe
O23 - Service: ServiceLayer - Nokia. - C:\Programme\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: Acronis Try And Decide Service (TryAndDecideService) - Unknown owner - C:\Programme\Gemeinsame Dateien\Acronis\Fomatik\TrueImageTryStartService.exe
O23 - Service: TuneUp Drive Defrag-Dienst (TuneUp.Defrag) - TuneUp Software GmbH - C:\windows\System32\TuneUpDefragService.exe
O23 - Service: TVersityMediaServer - Unknown owner - C:\Programme\TVersity\Media Server\MediaServer.exe
--
End of file - 10093 bytes
Ich danke im voraus