|
Anzeige:
|
|
|||||||
| Viren-Forum über Viren, Dialer, Trojaner, Spyware etc. |
EM-Tippspiel
Paule bei Facebook
Paule bei Twitter
Navigation
Letzte Forenthemen
Anzeige:
|
 |
|
|
LinkBack | Themen-Optionen | Ansicht |
15.04.2011, 22:46
|
#1 (Direktlink) |
|
Gast
Beiträge: n/a
|
Unbekannter Virus
hallo leute,
ich habe seit kurzen ein problem, ich weis nicht wie ich das beschreiben soll, es tauchen bei mir exen auf in programme. ein beispiel ist diese nach punkbuster für battlefield bc2 update auf dem desktop aufzufinden war: http://www7.pic-upload.de/15.04.11/q5aislbp3ery.jpg dieses rosa pixelige icon ist die datei die auch in prgramme vorkommt und gerade auf dem desktop. http://www7.pic-upload.de/15.04.11/aig3x7hqlq7x.jpg http://www7.pic-upload.de/15.04.11/dekq8lanas4.jpg mit dem neusten spybot search and destroy update finde ich nichts, im system 32 ist auch nichts, windows ist sauber, oder überseh ich was? das programm : F2 - REG:system.ini: UserInit=userinit.exe,C:\Program Files (x86)\qtqjxkcf\ywivikiv.exe ist löschbar, aber kommt nach dem neustart wieder, diese ywivikiv.exe startet iexplorer.exe 6 mal , 3 mal auf user, 3 mal auf system und lastet mein quad core auf 15% aus, msn, icq,skype stürzen bei verbinden ab, und iexplorer schuftet im hintergrund ohne fenster, habe iexplorer.exe zu iexplorer2.exe umbenannt, problem gelöst, aber jetzt tauchen mehr probleme auf, kann bf bc2 nicht ohne punkbuster spielen, punkbuster läuft, das spiel zeigt aber das es nicht läuft. hijackthis: Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 22:34:10, on 15.04.2011 Platform: Windows 7 (WinNT 6.00.3504) MSIE: Unable to get Internet Explorer version! Boot mode: Normal Running processes: C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe C:\Program Files (x86)\Skype\Phone\Skype.exe C:\Program Files (x86)\Spybot - Search & Destroy\TeaTimer.exe C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe C:\Program Files (x86)\Skype\Plugin Manager\skypePM.exe C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe C:\Program Files (x86)\Opera\opera.exe E:\Tools\Proggs°º©o.,,.o©º°¨¨\MyMp3Pro\myMP3.exe C:\Users\SSD\Desktop\pbsetup.exe C:\Users\SSD\Desktop\pbsetup.exe C:\Users\SSD\Desktop\HijackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = ICQ.com Suche R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = F2 - REG:system.ini: UserInit=userinit.exe,C:\Program Files (x86)\qtqjxkcf\ywivikiv.exe O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: Increase performance and video formats for your HTML5 <video> - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~2\SPYBOT~1\SDHelper.dll O2 - BHO: Use the DivX Plus Web Player to watch web videos with less interruptions and smoother playback on supported sites - {593DDEC6-7468-4cdd-90E1-42DADAA222E9} - C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MIF5BA~1\Office12\GR469A~1.DLL O2 - BHO: Windows Live Anmelde-Hilfsprogramm - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll O2 - BHO: Microsoft-Webtestaufzeichnung 10.0-Hilfsprogramm - {DDA57003-0068-4ed2-9D32-4D1EC707D94D} - C:\Program Files (x86)\Microsoft Visual Studio 10.0\Common7\IDE\PrivateAssemblies\Microsoft.VisualStudio.QualityTools.RecorderB arBHO100.dll O4 - HKLM\..\Run: [StormCodec_Helper] "C:\Program Files (x86)\Ringz Studio\Storm Codec\StormSet.exe" /S /opti O4 - HKLM\..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe" O4 - HKLM\..\Run: [NeroFilterCheck] C:\Windows\system32\NeroCheck.exe O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe" /background O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /nosplash /minimized O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files (x86)\Spybot - Search & Destroy\TeaTimer.exe O4 - HKCU\..\Run: [ICQ] "C:\Program Files (x86)\ICQ7.2\ICQ.exe" silent loginmode=4 O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOKALER DIENST') O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETZWERKDIENST') O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~2\MIF5BA~1\Office12\EXCEL.EXE/3000 O8 - Extra context menu item: Mit &BitSpirit herunterladen - D:\Program Files\BitSpirit\bsurl.htm O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MIF5BA~1\Office12\ONBttnIE.dll O9 - Extra 'Tools' menuitem: S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MIF5BA~1\Office12\ONBttnIE.dll O9 - Extra button: ICQ7.4 - {73C6DCFB-B606-47F3-BDFA-9A4FBF931E37} - C:\Program Files (x86)\ICQ7.4\ICQ.exe O9 - Extra 'Tools' menuitem: ICQ7.4 - {73C6DCFB-B606-47F3-BDFA-9A4FBF931E37} - C:\Program Files (x86)\ICQ7.4\ICQ.exe O9 - Extra button: Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll O9 - Extra 'Tools' menuitem: Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MIF5BA~1\Office12\REFIEBAR.DLL O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~2\SPYBOT~1\SDHelper.dll O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~2\SPYBOT~1\SDHelper.dll O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04**** - C:\PROGRA~2\MIF5BA~1\Office12\GRA32A~1.DLL O18 - Protocol: hddlife - {BD758015-47D9-477A-8873-4B688A2BC0E2} - C:\Program Files (x86)\Common Files\BinarySense\hlAPP.dll O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing) O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing) O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing) O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe O23 - Service: ICQ Service - Unknown owner - C:\Program Files (x86)\ICQ6Toolbar\ICQ Service.exe O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing) O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: NVIDIA Driver Helper Service (NVSvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing) O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing) O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing) O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing) O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing) O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing) O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing) O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing) O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing) O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing) O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing) -- End of file - 8818 bytes ich wäre für jede hilfe danke, bin gerade ratlos und warte auf eure antwort. mfg delaxo |
|
|
|
16.04.2011, 10:44
|
#2 (Direktlink) |
|
Super-Moderator
 Registriert seit: 08.02.2010
Beiträge: 1.728
|
Hallo,
Malwarebytes Anti-Malware Download (Free Version): Malwarebytes
OTL Download: http://oldtimer.geekstogo.com/OTL.exe 1. Doppelklick auf die OTL.exe 2. User von Windows 7 und Vista: Rechtsklick als Administrator ausführen 3. Oben findest Du ein Kästchen mit Ausgabe. Wähle bitte Minimal-Ausgabe 4. Hake an "scan all users" 5. Unter "Extra Registrierung wähle: "Benutze SafeList" "LOP Prüfung" "Purity Prüfung " 6. Kopiere in die Textbox (ohen das Wort Code): netsvcs msconfig safebootminimal safebootnetwork activex drivers32 %ALLUSERSPROFILE%\Application Data\*. %ALLUSERSPROFILE%\Application Data\*.exe /s %APPDATA%\*. %APPDATA%\*.exe /s %SYSTEMDRIVE%\*.exe /md5start userinit.exe eventlog.dll scecli.dll netlogon.dll cngaudit.dll ws2ifsl.sys sceclt.dll ntelogon.dll logevent.dll iaStor.sys nvstor.sys atapi.sys IdeChnDr.sys viasraid.sys AGP440.sys vaxscsi.sys nvatabus.sys viamraid.sys nvata.sys nvgts.sys iastorv.sys ViPrt.sys eNetHook.dll ahcix86.sys KR10N.sys nvstor32.sys ahcix86s.sys /md5stop %systemroot%\system32\drivers\*.sys /lockedfiles %systemroot%\System32\config\*.sav %systemroot%\*. /mp /s %systemroot%\system32\*.dll /lockedfiles CREATERESTOREPOINT 7. Klicke "Scan" 8. Es werden 2 Reporte erstellt: OTL.Txt sowie Extras.Txt Bitte beide Logs Posten!
__________________
Gruß Leo
|
|
|
|
16.04.2011, 17:00
|
#3 (Direktlink) |
|
Gast
Beiträge: n/a
|
re
OTL logfile created on: 16.04.2011 16:20:33 - Run 1
OTL by OldTimer - Version 3.2.22.3 Folder = C:\Users\SSD\Desktop 64bit- Ultimate Edition (Version = 6.1.7600) - Type = NTWorkstation Internet Explorer (Version = 8.0.7600.16385) Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy 4,00 Gb Total Physical Memory | 3,00 Gb Available Physical Memory | 65,00% Memory free 5,00 Gb Paging File | 3,00 Gb Available in Paging File | 67,00% Paging File free Paging file location(s): c:\pagefile.sys 1000 1000 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86) Drive C: | 111,79 Gb Total Space | 38,75 Gb Free Space | 34,67% Space Free | Partition Type: NTFS Drive D: | 298,08 Gb Total Space | 139,89 Gb Free Space | 46,93% Space Free | Partition Type: NTFS Drive E: | 931,51 Gb Total Space | 367,38 Gb Free Space | 39,44% Space Free | Partition Type: NTFS Drive F: | 931,51 Gb Total Space | 101,60 Gb Free Space | 10,91% Space Free | Partition Type: NTFS Drive G: | 465,76 Gb Total Space | 51,18 Gb Free Space | 10,99% Space Free | Partition Type: NTFS Computer Name: SSD-PC | User Name: SSD | Logged in as Administrator. Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days ========== Processes (SafeList) ========== PRC - C:\Users\SSD\Desktop\OTL.exe (OldTimer Tools) PRC - C:\Windows\SysWOW64\PnkBstrA.exe () PRC - C:\Program Files (x86)\Opera\Opera.exe (Opera Software) PRC - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe (Intel Corporation) PRC - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe (Intel Corporation) PRC - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe (NVIDIA Corporation) PRC - C:\Program Files (x86)\ICQ6Toolbar\ICQ Service.exe () PRC - C:\Program Files (x86)\Spybot - Search & Destroy\TeaTimer.exe (Safer-Networking Ltd.) ========== Modules (SafeList) ========== MOD - C:\Users\SSD\Desktop\OTL.exe (OldTimer Tools) MOD - C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16385_none_421189da2b7fabfc\comctl32.dll (Microsoft Corporation) ========== Win32 Services (SafeList) ========== SRV:64bit: - (UxTuneUp) -- C:\Windows\SysNative\uxtuneup.dll (TuneUp Software) SRV:64bit: - (OODefragAgent) -- C:\Program Files\OO Software\Defrag\oodag.exe (O&O Software GmbH) SRV:64bit: - (AppMgmt) -- C:\Windows\SysNative\appmgmts.dll (Microsoft Corporation) SRV - (PnkBstrA) -- C:\Windows\SysWOW64\PnkBstrA.exe () SRV - (Steam Client Service) -- C:\Program Files (x86)\Common Files\Steam\SteamService.exe (Valve Corporation) SRV - (afcdpsrv) -- C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe (Acronis) SRV - (TuneUp.UtilitiesSvc) -- C:\Program Files (x86)\TuneUp Utilities 2011\TuneUpUtilitiesService64.exe (TuneUp Software) SRV - (UxTuneUp) -- C:\Windows\SysWOW64\uxtuneup.dll (TuneUp Software) SRV - (AcrSch2Svc) -- C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe (Acronis) SRV - (IAStorDataMgrSvc) Intel(R) -- C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe (Intel Corporation) SRV - (Stereo Service) -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe (NVIDIA Corporation) SRV - (ICQ Service) -- C:\Program Files (x86)\ICQ6Toolbar\ICQ Service.exe () SRV - (HDDlife HDD Access service) -- C:\Program Files (x86)\Common Files\BinarySense\hldasvc.exe (BinarySense, Inc.) SRV - (clr_optimization_v4.0.30319_32) -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe (Microsoft Corporation) SRV - (clr_optimization_v2.0.50727_32) -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe (Microsoft Corporation) ========== Driver Services (SafeList) ========== DRV:64bit: - (silabser) -- C:\Windows\SysNative\drivers\silabser.sys (Silicon Laboratories) DRV:64bit: - (silabenm) -- C:\Windows\SysNative\drivers\silabenm.sys (Silicon Laboratories) DRV:64bit: - (afcdp) -- C:\Windows\SysNative\drivers\afcdp.sys (Acronis) DRV:64bit: - (tdrpman273) Acronis Try&Decide and Restore Points filter (build 273) -- C:\Windows\SysNative\drivers\tdrpm273.sys (Acronis) DRV:64bit: - (timounter) -- C:\Windows\SysNative\drivers\timntr.sys (Acronis) DRV:64bit: - (snapman) -- C:\Windows\SysNative\drivers\snapman.sys (Acronis) DRV:64bit: - (sptd) -- C:\Windows\SysNative\drivers\sptd.sys () DRV:64bit: - (iaStor) -- C:\Windows\SysNative\drivers\iaStor.sys (Intel Corporation) DRV:64bit: - (NVHDA) -- C:\Windows\SysNative\drivers\nvhda64v.sys (NVIDIA Corporation) DRV:64bit: - (amdsata) -- C:\Windows\SysNative\drivers\amdsata.sys (Advanced Micro Devices) DRV:64bit: - (amdxata) -- C:\Windows\SysNative\drivers\amdxata.sys (Advanced Micro Devices) DRV:64bit: - (amdsbs) -- C:\Windows\SysNative\drivers\amdsbs.sys (AMD Technologies Inc.) DRV:64bit: - (LSI_SAS2) -- C:\Windows\SysNative\drivers\lsi_sas2.sys (LSI Corporation) DRV:64bit: - (HpSAMD) -- C:\Windows\SysNative\drivers\HpSAMD.sys (Hewlett-Packard Company) DRV:64bit: - (stexstor) -- C:\Windows\SysNative\drivers\stexstor.sys (Promise Technology) DRV:64bit: - (Ntfs) -- C:\Windows\SysNative\wbem\ntfs.mof () DRV:64bit: - (yukonw7) -- C:\Windows\SysNative\drivers\yk62x64.sys (Marvell) DRV:64bit: - (ebdrv) -- C:\Windows\SysNative\drivers\evbda.sys (Broadcom Corporation) DRV:64bit: - (b06bdrv) -- C:\Windows\SysNative\drivers\bxvbda.sys (Broadcom Corporation) DRV:64bit: - (b57nd60a) -- C:\Windows\SysNative\drivers\b57nd60a.sys (Broadcom Corporation) DRV:64bit: - (hcw85cir) -- C:\Windows\SysNative\drivers\hcw85cir.sys (Hauppauge Computer Works, Inc.) DRV - (TuneUpUtilitiesDrv) -- C:\Program Files (x86)\TuneUp Utilities 2011\TuneUpUtilitiesDriver64.sys (TuneUp Software) DRV - (AVMPORT) -- C:\Windows\SysWOW64\drivers\avmport.sys (AVM Berlin) ========== Standard Registry (SafeList) ========== ========== Internet Explorer ========== IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = MSN, Messenger und Hotmail sowie Nachrichten, Unterhaltung, Video, Sport, Lifestyle, Finanzen, Auto uvm. bei MSN IE - HKLM\..\URLSearchHook: - Reg Error: Key error. File not found IE - HKLM\..\URLSearchHook: {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Program Files (x86)\ICQ6Toolbar\ICQToolBar.dll (ICQ) IE - HKU\.DEFAULT\..\URLSearchHook: - Reg Error: Key error. File not found IE - HKU\.DEFAULT\..\URLSearchHook: {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Program Files (x86)\ICQ6Toolbar\ICQToolBar.dll (ICQ) IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-18\..\URLSearchHook: - Reg Error: Key error. File not found IE - HKU\S-1-5-18\..\URLSearchHook: {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Program Files (x86)\ICQ6Toolbar\ICQToolBar.dll (ICQ) IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-21-2670515770-1998668559-3030411615-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = ICQ.com Suche IE - HKU\S-1-5-21-2670515770-1998668559-3030411615-1001\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 ========== FireFox ========== FF - prefs.js..browser.startup.homepage: "http://start.icq.com/" FF - prefs.js..browser.search.selectedEngine: "ICQ Search" FF - prefs.js..browser.search.defaultenginename: "ICQ Search" FF - HKLM\software\mozilla\Firefox\Extensions\\{23fcfd51-4958-4f00-80a3-ae97e717ed8b}: C:\Program Files (x86)\DivX\DivX Plus Web Player\firefox\html5video [2010.12.28 20:14:18 | 000,000,000 | ---D | M] FF - HKLM\software\mozilla\Firefox\Extensions\\{6904342A-8307-11DF-A508-4AE2DFD72085}: C:\Program Files (x86)\DivX\DivX Plus Web Player\firefox\wpa [2010.12.28 20:14:18 | 000,000,000 | ---D | M] FF - HKLM\software\mozilla\Firefox\Extensions\\ClickPotatoLite@ClickPotatoLite.com: C:\Program Files (x86)\ClickPotatoLite\bin\10.0.668.0\firefox\extensions FF - HKLM\software\mozilla\Mozilla Firefox 4.0\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2011.03.27 13:19:13 | 000,000,000 | ---D | M] FF - HKLM\software\mozilla\Mozilla Firefox 4.0\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins [2011.04.15 22:57:47 | 000,000,000 | ---D | M] [2011.03.27 13:19:21 | 000,000,000 | ---D | M] (No name found) -- C:\Users\SSD\AppData\Roaming\mozilla\Extensions [2011.04.12 20:02:23 | 000,000,000 | ---D | M] (No name found) -- C:\Users\SSD\AppData\Roaming\mozilla\Firefox\Profiles\tax5g9h3.default\extension s [2011.04.12 20:02:24 | 000,000,000 | ---D | M] ("ICQ Toolbar") -- C:\Users\SSD\AppData\Roaming\mozilla\Firefox\Profiles\tax5g9h3.default\extension s\{800b5000-a755-47e1-992b-48a1c1357f07} [2010.05.12 17:40:48 | 000,001,042 | ---- | M] () -- C:\Users\SSD\AppData\Roaming\Mozilla\Firefox\Profiles\tax5g9h3.default\searchplu gins\icqplugin.xml [2011.03.27 13:19:13 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\mozilla firefox\extensions File not found (No name found) -- [2011.03.18 19:56:37 | 000,142,296 | ---- | M] (Mozilla Foundation) -- C:\Program Files (x86)\mozilla firefox\components\browsercomps.dll [2010.01.01 10:00:00 | 000,001,392 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\amazondotcom-de.xml [2010.01.01 10:00:00 | 000,002,252 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\bing.xml [2010.01.01 10:00:00 | 000,001,153 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\eBay-de.xml [2010.01.01 10:00:00 | 000,006,805 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\leo_ende_de.xml [2010.01.01 10:00:00 | 000,001,178 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\wikipedia-de.xml [2010.01.01 10:00:00 | 000,001,105 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\yahoo-de.xml O1 HOSTS File: ([2011.04.15 22:58:09 | 000,000,027 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts O1 - Hosts: 127.0.0.1 localhost O2 - BHO: (DivX Plus Web Player HTML5 <video>) - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC) O2 - BHO: (Spybot-S&D IE Protection) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~2\SPYBOT~1\SDHelper.dll (Safer Networking Limited) O2 - BHO: (DivX HiQ) - {593DDEC6-7468-4cdd-90E1-42DADAA222E9} - C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC) O2 - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MIF5BA~1\Office12\GR469A~1.DLL (Microsoft Corporation) O2 - BHO: (Skype Plug-In) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.) O3 - HKU\S-1-5-21-2670515770-1998668559-3030411615-1001\..\Toolbar\WebBrowser: (no name) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No CLSID value found. O4:64bit: - HKLM..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Realtek Semiconductor) O4 - HKLM..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe (Intel Corporation) O4 - HKLM..\Run: [NeroFilterCheck] C:\Windows\SysWOW64\NeroCheck.exe (Ahead Software Gmbh) O4 - HKLM..\Run: [StormCodec_Helper] File not found O4 - HKU\S-1-5-21-2670515770-1998668559-3030411615-1001..\Run: [SpybotSD TeaTimer] C:\Program Files (x86)\Spybot - Search & Destroy\TeaTimer.exe (Safer-Networking Ltd.) O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 0 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLinkedConnections = 1 O7 - HKU\.DEFAULT\Software\Policies\Microsoft\Internet Explorer\Control Panel present O7 - HKU\S-1-5-18\Software\Policies\Microsoft\Internet Explorer\Control Panel present O7 - HKU\S-1-5-19\Software\Policies\Microsoft\Internet Explorer\Control Panel present O7 - HKU\S-1-5-20\Software\Policies\Microsoft\Internet Explorer\Control Panel present O7 - HKU\S-1-5-21-2670515770-1998668559-3030411615-1001\Software\Policies\Microsoft\Internet Explorer\Control Panel present O7 - HKU\S-1-5-21-2670515770-1998668559-3030411615-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0 O8:64bit: - Extra context menu item: Mit &BitSpirit herunterladen - D:\Programme\BitSpirit\bsurl.htm () O8 - Extra context menu item: Mit &BitSpirit herunterladen - D:\Programme\BitSpirit\bsurl.htm () O9 - Extra Button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MIF5BA~1\Office12\ONBttnIE.dll (Microsoft Corporation) O9 - Extra 'Tools' menuitem : S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MIF5BA~1\Office12\ONBttnIE.dll (Microsoft Corporation) O9 - Extra Button: ICQ7.4 - {73C6DCFB-B606-47F3-BDFA-9A4FBF931E37} - C:\Program Files (x86)\ICQ7.4\ICQ.exe (ICQ, LLC.) O9 - Extra 'Tools' menuitem : ICQ7.4 - {73C6DCFB-B606-47F3-BDFA-9A4FBF931E37} - C:\Program Files (x86)\ICQ7.4\ICQ.exe (ICQ, LLC.) O9 - Extra Button: Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.) O9 - Extra 'Tools' menuitem : Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.) O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MIF5BA~1\Office12\REFIEBAR.DLL (Microsoft Corporation) O9 - Extra 'Tools' menuitem : Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~2\SPYBOT~1\SDHelper.dll (Safer Networking Limited) O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jin...ndows-i586.cab (Java Plug-in 1.6.0_15) O16 - DPF: {CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jin...ndows-i586.cab (Java Plug-in 1.6.0_15) O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jin...ndows-i586.cab (Java Plug-in 1.6.0_15) O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.178.1 O18:64bit: - Protocol\Handler\grooveLocalGWS {88FED34C-F0CA-4636-A375-3CB6248B04**** - Reg Error: Key error. File not found O18:64bit: - Protocol\Handler\hddlife {BD758015-47D9-477A-8873-4B688A2BC0E2} - Reg Error: Key error. File not found O18:64bit: - Protocol\Handler\livecall {828030A1-22C1-4009-854F-8E305202313F} - Reg Error: Key error. File not found O18:64bit: - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - Reg Error: Key error. File not found O18:64bit: - Protocol\Handler\msnim {828030A1-22C1-4009-854F-8E305202313F} - Reg Error: Key error. File not found O18:64bit: - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - Reg Error: Key error. File not found O18:64bit: - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - Reg Error: Key error. File not found O18 - Protocol\Handler\grooveLocalGWS {88FED34C-F0CA-4636-A375-3CB6248B04**** - C:\PROGRA~2\MIF5BA~1\Office12\GRA32A~1.DLL (Microsoft Corporation) O18 - Protocol\Handler\hddlife {BD758015-47D9-477A-8873-4B688A2BC0E2} - C:\Program Files (x86)\Common Files\BinarySense\hlAPP.dll (BinarySense, Inc.) O18 - Protocol\Handler\livecall {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~2\WIC4A1~1\MESSEN~1\MSGRAP~1.DLL (Microsoft Corporation) O18 - Protocol\Handler\msnim {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~2\WIC4A1~1\MESSEN~1\MSGRAP~1.DLL (Microsoft Corporation) O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL (Skype Technologies) O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.) O18:64bit: - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\Programme\Common Files\Microsoft Shared\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation) O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\PROGRA~2\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation) O20:64bit: - HKLM Winlogon: Shell - (Explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation) O20:64bit: - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\SysNative\SystemPropertiesPerformance.exe (Microsoft Corporation) O20:64bit: - HKLM Winlogon: VMApplet - (/pagefile) - File not found O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation) O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found O28:64bit: - HKLM ShellExecuteHooks: {AEB6717E-7E19-11d0-97EE-00C04FD91972} - Reg Error: Key error. File not found O28 - HKLM ShellExecuteHooks: {AEB6717E-7E19-11d0-97EE-00C04FD91972} - Reg Error: Key error. File not found O28 - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6**** - C:\PROGRA~2\MIF5BA~1\Office12\GR469A~1.DLL (Microsoft Corporation) O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2009.06.10 23:42:20 | 000,000,024 | ---- | M] () - D:\autoexec.bat -- [ NTFS ] O32 - AutoRun File - [2002.01.01 01:37:46 | 000,000,000 | ---- | M] () - G:\AUTOEXEC.BAT -- [ NTFS ] O34 - HKLM BootExecute: (autocheck autochk *) - File not found O34 - HKLM BootExecute: (OODBS) - File not found O35:64bit: - HKLM\..comfile [open] -- "%1" %* O35:64bit: - HKLM\..exefile [open] -- "%1" %* O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37:64bit: - HKLM\...com [@ = ComFile] -- "%1" %* O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %* O37 - HKLM\...com [@ = ComFile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* O37 - HKU\S-1-5-21-2670515770-1998668559-3030411615-1001\...exe [@ = exefile] -- Reg Error: Key error. File not found NetSvcs:64bit: UxTuneUp - C:\Windows\SysNative\uxtuneup.dll (TuneUp Software) NetSvcs:64bit: AppMgmt - C:\Windows\SysNative\appmgmts.dll (Microsoft Corporation) MsConfig:64bit - StartUpFolder: C:^Users^SSD^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^HDDlife.lnk - - File not found MsConfig:64bit - StartUpFolder: C:^Users^SSD^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^ywivikiv.exe - - File not found MsConfig:64bit - StartUpReg: Acronis Scheduler2 Service - hkey= - key= - C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe (Acronis) MsConfig:64bit - StartUpReg: ClickPotatoLiteSA - hkey= - key= - File not found MsConfig:64bit - StartUpReg: DivX Download Manager - hkey= - key= - C:\Program Files (x86)\DivX\DivX Plus Web Player\DDmService.exe (DivX, LLC) MsConfig:64bit - StartUpReg: DivXUpdate - hkey= - key= - C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe () MsConfig:64bit - StartUpReg: OODefragTray - hkey= - key= - C:\Programme\OO Software\Defrag\oodtray.exe (O&O Software GmbH) MsConfig:64bit - StartUpReg: PSDrvCheck - hkey= - key= - C:\Windows\SysWOW64\PSDrvCheck.exe () MsConfig:64bit - StartUpReg: SAOB Monitor - hkey= - key= - C:\Program Files (x86)\Acronis\TrueImageHome\OnlineBackupStandalone\TrueImageMonitor.exe (Acronis) MsConfig:64bit - StartUpReg: Steam - hkey= - key= - C:\Program Files (x86)\Steam\steam.exe (Valve Corporation) MsConfig:64bit - StartUpReg: TrueImageMonitor.exe - hkey= - key= - C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe (Acronis) MsConfig:64bit - State: "services" - Reg Error: Key error. MsConfig:64bit - State: "startup" - Reg Error: Key error. SafeBootMin:64bit: AppMgmt - C:\Windows\SysNative\appmgmts.dll (Microsoft Corporation) SafeBootMin:64bit: Base - Driver Group SafeBootMin:64bit: Boot Bus Extender - Driver Group SafeBootMin:64bit: Boot file system - Driver Group SafeBootMin:64bit: File system - Driver Group SafeBootMin:64bit: Filter - Driver Group SafeBootMin:64bit: HelpSvc - Service SafeBootMin:64bit: PCI Configuration - Driver Group SafeBootMin:64bit: PNP Filter - Driver Group SafeBootMin:64bit: Primary disk - Driver Group SafeBootMin:64bit: sacsvr - Service SafeBootMin:64bit: SCSI Class - Driver Group SafeBootMin:64bit: System Bus Extender - Driver Group SafeBootMin:64bit: vmms - Service SafeBootMin:64bit: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers SafeBootMin:64bit: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive SafeBootMin:64bit: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive SafeBootMin:64bit: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller SafeBootMin:64bit: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc SafeBootMin:64bit: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard SafeBootMin:64bit: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse SafeBootMin:64bit: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters SafeBootMin:64bit: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter SafeBootMin:64bit: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System SafeBootMin:64bit: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive SafeBootMin:64bit: {533C5B84-EC70-11D2-9505-00C04F79DEAF} - Volume shadow copy SafeBootMin:64bit: {6BDD1FC1-810F-11D0-BEC7-08002BE2092F} - IEEE 1394 Bus host controllers SafeBootMin:64bit: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume SafeBootMin:64bit: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices SafeBootMin:64bit: {D48179BE-EC20-11D1-B6B8-00C04FA372A7} - SBP2 IEEE 1394 Devices SafeBootMin:64bit: {D94EE5D8-D189-4994-83D2-F68D7D41B0E6} - SecurityDevices SafeBootMin: Base - Driver Group SafeBootMin: Boot Bus Extender - Driver Group SafeBootMin: Boot file system - Driver Group SafeBootMin: File system - Driver Group SafeBootMin: Filter - Driver Group SafeBootMin: HelpSvc - Service SafeBootMin: PCI Configuration - Driver Group SafeBootMin: PNP Filter - Driver Group SafeBootMin: Primary disk - Driver Group SafeBootMin: sacsvr - Service SafeBootMin: SCSI Class - Driver Group SafeBootMin: System Bus Extender - Driver Group SafeBootMin: vmms - Service SafeBootMin: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers SafeBootMin: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive SafeBootMin: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive SafeBootMin: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller SafeBootMin: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc SafeBootMin: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard SafeBootMin: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse SafeBootMin: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters SafeBootMin: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter SafeBootMin: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System SafeBootMin: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive SafeBootMin: {533C5B84-EC70-11D2-9505-00C04F79DEAF} - Volume shadow copy SafeBootMin: {6BDD1FC1-810F-11D0-BEC7-08002BE2092F} - IEEE 1394 Bus host controllers SafeBootMin: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume SafeBootMin: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices SafeBootMin: {D48179BE-EC20-11D1-B6B8-00C04FA372A7} - SBP2 IEEE 1394 Devices SafeBootMin: {D94EE5D8-D189-4994-83D2-F68D7D41B0E6} - SecurityDevices SafeBootNet:64bit: AppMgmt - C:\Windows\SysNative\appmgmts.dll (Microsoft Corporation) SafeBootNet:64bit: Base - Driver Group SafeBootNet:64bit: Boot Bus Extender - Driver Group SafeBootNet:64bit: Boot file system - Driver Group SafeBootNet:64bit: File system - Driver Group SafeBootNet:64bit: Filter - Driver Group SafeBootNet:64bit: HelpSvc - Service SafeBootNet:64bit: Messenger - Service SafeBootNet:64bit: NDIS Wrapper - Driver Group SafeBootNet:64bit: NetBIOSGroup - Driver Group SafeBootNet:64bit: NetDDEGroup - Driver Group SafeBootNet:64bit: Network - Driver Group SafeBootNet:64bit: NetworkProvider - Driver Group SafeBootNet:64bit: PCI Configuration - Driver Group SafeBootNet:64bit: PNP Filter - Driver Group SafeBootNet:64bit: PNP_TDI - Driver Group SafeBootNet:64bit: Primary disk - Driver Group SafeBootNet:64bit: rdsessmgr - Service SafeBootNet:64bit: sacsvr - Service SafeBootNet:64bit: SCSI Class - Driver Group SafeBootNet:64bit: Streams Drivers - Driver Group SafeBootNet:64bit: System Bus Extender - Driver Group SafeBootNet:64bit: TDI - Driver Group SafeBootNet:64bit: vmms - Service SafeBootNet:64bit: WudfUsbccidDriver - Driver SafeBootNet:64bit: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers SafeBootNet:64bit: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive SafeBootNet:64bit: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive SafeBootNet:64bit: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller SafeBootNet:64bit: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc SafeBootNet:64bit: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard SafeBootNet:64bit: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse SafeBootNet:64bit: {4D36E972-E325-11CE-BFC1-08002BE10318} - Net SafeBootNet:64bit: {4D36E973-E325-11CE-BFC1-08002BE10318} - NetClient SafeBootNet:64bit: {4D36E974-E325-11CE-BFC1-08002BE10318} - NetService SafeBootNet:64bit: {4D36E975-E325-11CE-BFC1-08002BE10318} - NetTrans SafeBootNet:64bit: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters SafeBootNet:64bit: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter SafeBootNet:64bit: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System SafeBootNet:64bit: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive SafeBootNet:64bit: {50DD5230-BA8A-11D1-BF5D-0000F805F530} - Smart card readers SafeBootNet:64bit: {533C5B84-EC70-11D2-9505-00C04F79DEAF} - Volume shadow copy SafeBootNet:64bit: {6BDD1FC1-810F-11D0-BEC7-08002BE2092F} - IEEE 1394 Bus host controllers SafeBootNet:64bit: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume SafeBootNet:64bit: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices SafeBootNet:64bit: {D48179BE-EC20-11D1-B6B8-00C04FA372A7} - SBP2 IEEE 1394 Devices SafeBootNet:64bit: {D94EE5D8-D189-4994-83D2-F68D7D41B0E6} - SecurityDevices SafeBootNet: Base - Driver Group SafeBootNet: Boot Bus Extender - Driver Group SafeBootNet: Boot file system - Driver Group SafeBootNet: File system - Driver Group SafeBootNet: Filter - Driver Group SafeBootNet: HelpSvc - Service SafeBootNet: Messenger - Service SafeBootNet: NDIS Wrapper - Driver Group SafeBootNet: NetBIOSGroup - Driver Group SafeBootNet: NetDDEGroup - Driver Group SafeBootNet: Network - Driver Group SafeBootNet: NetworkProvider - Driver Group SafeBootNet: PCI Configuration - Driver Group SafeBootNet: PNP Filter - Driver Group SafeBootNet: PNP_TDI - Driver Group SafeBootNet: Primary disk - Driver Group SafeBootNet: rdsessmgr - Service SafeBootNet: sacsvr - Service SafeBootNet: SCSI Class - Driver Group SafeBootNet: Streams Drivers - Driver Group SafeBootNet: System Bus Extender - Driver Group SafeBootNet: TDI - Driver Group SafeBootNet: vmms - Service SafeBootNet: WudfUsbccidDriver - Driver SafeBootNet: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers SafeBootNet: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive SafeBootNet: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive SafeBootNet: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller SafeBootNet: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc SafeBootNet: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard SafeBootNet: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse SafeBootNet: {4D36E972-E325-11CE-BFC1-08002BE10318} - Net SafeBootNet: {4D36E973-E325-11CE-BFC1-08002BE10318} - NetClient SafeBootNet: {4D36E974-E325-11CE-BFC1-08002BE10318} - NetService SafeBootNet: {4D36E975-E325-11CE-BFC1-08002BE10318} - NetTrans SafeBootNet: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters SafeBootNet: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter SafeBootNet: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System SafeBootNet: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive SafeBootNet: {50DD5230-BA8A-11D1-BF5D-0000F805F530} - Smart card readers SafeBootNet: {533C5B84-EC70-11D2-9505-00C04F79DEAF} - Volume shadow copy SafeBootNet: {6BDD1FC1-810F-11D0-BEC7-08002BE2092F} - IEEE 1394 Bus host controllers SafeBootNet: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume SafeBootNet: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices SafeBootNet: {D48179BE-EC20-11D1-B6B8-00C04FA372A7} - SBP2 IEEE 1394 Devices SafeBootNet: {D94EE5D8-D189-4994-83D2-F68D7D41B0E6} - SecurityDevices ActiveX:64bit: {22d6f312-b0f6-11d0-94ab-0080c74c7e95} - Microsoft Windows Media Player 12.0 ActiveX:64bit: {2C7339CF-2B09-4501-B3F3-F3508C9228ED} - %SystemRoot%\system32\regsvr32.exe /s /n /i:/UserInstall %SystemRoot%\system32\themeui.dll ActiveX:64bit: {3af36230-a269-11d1-b5bf-0000f8051515} - Offline Browsing Pack ActiveX:64bit: {44BBA840-CC51-11CF-AAFA-00AA00B6015C} - "%ProgramFiles%\Windows Mail\WinMail.exe" OCInstallUserConfigOE ActiveX:64bit: {44BBA855-CC51-11CF-AAFA-00AA00B6015F} - DirectDrawEx ActiveX:64bit: {45ea75a0-a269-11d1-b5bf-0000f8051515} - Internet Explorer Help ActiveX:64bit: {4f645220-306d-11d2-995d-00c04f98bbc9} - Microsoft Windows Script 5.6 ActiveX:64bit: {5fd399c0-a70a-11d1-9948-00c04f98bbc9} - Internet Explorer Setup Tools ActiveX:64bit: {630b1da0-b465-11d1-9948-00c04f98bbc9} - Browsing Enhancements ActiveX:64bit: {6BF52A52-394A-11d3-B153-00C04F79FAA6} - Microsoft Windows Media Player ActiveX:64bit: {6fab99d0-bab8-11d1-994a-00c04f98bbc9} - MSN Site Access ActiveX:64bit: {7790769C-0471-11d2-AF11-00C04FA35D02} - Address Book 7 ActiveX:64bit: {89820200-ECBD-11cf-8B85-00AA005B4340} - regsvr32.exe /s /n /i:U shell32.dll ActiveX:64bit: {89820200-ECBD-11cf-8B85-00AA005B4383} - C:\Windows\System32\ie4uinit.exe -BaseSettings ActiveX:64bit: {89B4C1CD-B018-4511-B0A1-5476DBF70820} - C:\Windows\system32\Rundll32.exe C:\Windows\system32\mscories.dll,Install ActiveX:64bit: {9381D8F2-0288-11D0-9501-00AA00B911A5} - Dynamic HTML Data Binding ActiveX:64bit: {C9E9A340-D1F1-11D0-821E-444553540600} - Internet Explorer Core Fonts ActiveX:64bit: {de5aed00-a4bf-11d1-9948-00c04f98bbc9} - HTML Help ActiveX:64bit: {E92B03AB-B707-11d2-9CBD-0000F87A369E} - Active Directory Service Interface ActiveX:64bit: {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4} - .NET Framework ActiveX:64bit: {FEBEF00C-046D-438D-8A88-BF94A6C9E703} - .NET Framework ActiveX:64bit: >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} - %SystemRoot%\system32\unregmp2.exe /ShowWMP ActiveX:64bit: >{26923b43-4d38-484f-9b9e-de460746276c} - C:\Windows\System32\ie4uinit.exe -UserIconConfig ActiveX:64bit: >{60B49E34-C7CC-11D0-8953-00A0C90347FF} - "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\iedkcs32.dll",BrandIEActiveSetup SIGNUP ActiveX: {08B0E5C0-4FCB-11CF-AAA5-00401C608500} - Java (Sun) ActiveX: {22d6f312-b0f6-11d0-94ab-0080c74c7e95} - Microsoft Windows Media Player 12.0 ActiveX: {25FFAAD0-F4A3-4164-95FF-4461E9F35D51} - .NET Framework ActiveX: {2C7339CF-2B09-4501-B3F3-F3508C9228ED} - %SystemRoot%\system32\regsvr32.exe /s /n /i:/UserInstall %SystemRoot%\system32\themeui.dll ActiveX: {3af36230-a269-11d1-b5bf-0000f8051515} - Offline Browsing Pack ActiveX: {44BBA840-CC51-11CF-AAFA-00AA00B6015C} - "%ProgramFiles(x86)%\Windows Mail\WinMail.exe" OCInstallUserConfigOE ActiveX: {44BBA855-CC51-11CF-AAFA-00AA00B6015F} - DirectDrawEx ActiveX: {45ea75a0-a269-11d1-b5bf-0000f8051515} - Internet Explorer Help ActiveX: {4f645220-306d-11d2-995d-00c04f98bbc9} - Microsoft Windows Script 5.6 ActiveX: {5fd399c0-a70a-11d1-9948-00c04f98bbc9} - Internet Explorer Setup Tools ActiveX: {630b1da0-b465-11d1-9948-00c04f98bbc9} - Browsing Enhancements ActiveX: {6BF52A52-394A-11d3-B153-00C04F79FAA6} - Microsoft Windows Media Player ActiveX: {6fab99d0-bab8-11d1-994a-00c04f98bbc9} - MSN Site Access ActiveX: {7790769C-0471-11d2-AF11-00C04FA35D02} - Address Book 7 ActiveX: {7C028AF8-F614-47B3-82DA-BA94E41B1089} - .NET Framework ActiveX: {89820200-ECBD-11cf-8B85-00AA005B4340} - regsvr32.exe /s /n /i:U shell32.dll ActiveX: {89820200-ECBD-11cf-8B85-00AA005B4383} - C:\Windows\SysWOW64\ie4uinit.exe -BaseSettings ActiveX: {89B4C1CD-B018-4511-B0A1-5476DBF70820} - C:\Windows\SysWOW64\Rundll32.exe C:\Windows\SysWOW64\mscories.dll,Install ActiveX: {9381D8F2-0288-11D0-9501-00AA00B911A5} - Dynamic HTML Data Binding ActiveX: {C9E9A340-D1F1-11D0-821E-444553540600} - Internet Explorer Core Fonts ActiveX: {D27CDB6E-AE6D-11CF-96B8-444553540000} - Adobe Flash Player 9 ActiveX ActiveX: {de5aed00-a4bf-11d1-9948-00c04f98bbc9} - HTML Help ActiveX: {E92B03AB-B707-11d2-9CBD-0000F87A369E} - Active Directory Service Interface ActiveX: {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4} - .NET Framework ActiveX: >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} - %SystemRoot%\system32\unregmp2.exe /ShowWMP ActiveX: >{26923b43-4d38-484f-9b9e-de460746276c} - C:\Windows\SysWOW64\ie4uinit.exe -UserIconConfig ActiveX: >{60B49E34-C7CC-11D0-8953-00A0C90347FF} - "C:\Windows\SysWOW64\rundll32.exe" "C:\Windows\SysWOW64\iedkcs32.dll",BrandIEActiveSetup SIGNUP Drivers32:64bit: msacm.l3acm - C:\Windows\System32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS) Drivers32:64bit: VIDC.FPS1 - frapsv64.dll (Beepa P/L) Drivers32: msacm.iac2 - C:\Windows\SysWow64\iac25_32.ax (Intel Corporation) Drivers32: msacm.l3acm - C:\Windows\SysWOW64\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS) Drivers32: msacm.vorbis - C:\Windows\SysWow64\vorbis.acm (HMS http://hp.vector.co.jp/authors/VA012897/) Drivers32: msacm.voxacm160 - C:\Windows\SysWow64\vct3216.acm (Voxware, Inc.) Drivers32: vidc.cvid - C:\Windows\SysWow64\iccvid.dll (Radius Inc.) Drivers32: vidc.DIVX - C:\Windows\SysWow64\DivX.dll (DivX, Inc.) Drivers32: vidc.ffds - C:\Windows\SysWow64\ff_vfw.dll () Drivers32: vidc.FLV4 - C:\Windows\SysWow64\vp6vfw.dll (On2.com) Drivers32: VIDC.FPS1 - C:\Windows\SysWow64\frapsvid.dll (Beepa P/L) Drivers32: vidc.iv41 - C:\Windows\SysWow64\ir41_32.ax (Intel Corporation) Drivers32: vidc.iv50 - C:\Windows\SysWow64\ir50_32.dll (Intel Corporation) Drivers32: vidc.VP60 - C:\Windows\SysWow64\vp6vfw.dll (On2.com) Drivers32: vidc.VP61 - C:\Windows\SysWow64\vp6vfw.dll (On2.com) Drivers32: vidc.VP62 - C:\Windows\SysWow64\vp6vfw.dll (On2.com) Drivers32: vidc.VP6F - C:\Windows\SysWow64\vp6vfw.dll (On2.com) Drivers32: vidc.vp70 - C:\Windows\SysWow64\vp7vfw.dll (On2.com) Drivers32: vidc.yv12 - C:\Windows\SysWow64\DivX.dll (DivX, Inc.) CREATERESTOREPOINT Restore point Set: OTL Restore Point ========== Files/Folders - Created Within 30 Days ========== [2011.04.16 16:18:30 | 000,580,608 | ---- | C] (OldTimer Tools) -- C:\Users\SSD\Desktop\OTL.exe [2011.04.16 16:13:44 | 000,000,000 | -HSD | C] -- C:\$RECYCLE.BIN [2011.04.15 22:59:57 | 000,000,000 | ---D | C] -- C:\Windows\temp [2011.04.15 22:53:44 | 000,161,792 | ---- | C] (SteelWerX) -- C:\Windows\SWREG.exe [2011.04.15 22:53:44 | 000,031,232 | ---- | C] (NirSoft) -- C:\Windows\NIRCMD.exe [2011.04.15 22:53:43 | 000,136,704 | ---- | C] (SteelWerX) -- C:\Windows\SWSC.exe [2011.04.15 22:53:41 | 000,000,000 | ---D | C] -- C:\Windows\ERDNT [2011.04.15 22:53:28 | 000,000,000 | ---D | C] -- C:\Qoobox [2011.04.15 22:53:14 | 000,212,480 | ---- | C] (SteelWerX) -- C:\Windows\SWXCACLS.exe [2011.04.15 22:16:19 | 000,220,728 | ---- | C] (Mabugc Rmrqr) -- C:\Users\SSD\Desktop\pbsetupmgr.exe [2011.04.15 22:05:06 | 000,000,000 | RH-D | C] -- C:\Users\SSD\AppData\Roaming\SecuROM [2011.04.12 20:55:00 | 000,220,728 | ---- | C] (Mabugc Rmrqr) -- C:\Windows\SysWow64\explorermgr.exe [2011.04.12 20:49:27 | 000,220,728 | ---- | C] (Mabugc Rmrqr) -- C:\Windows\SysWow64\DllHostmgr.exe [2011.04.12 20:02:31 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ICQ7.4 [2011.04.12 20:00:32 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\ICQ7.4 [2011.04.12 19:36:04 | 000,000,000 | ---D | C] -- C:\Users\SSD\Desktop\backups [2011.04.12 19:33:12 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\ICQ6Toolbar [2011.04.12 19:33:10 | 000,000,000 | ---D | C] -- C:\ProgramData\ICQ [2011.04.12 19:32:38 | 000,388,608 | ---- | C] (Trend Micro Inc.) -- C:\Users\SSD\Desktop\HijackThis.exe [2011.04.05 17:39:22 | 000,505,104 | R--- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msxml.dll [2011.04.05 17:39:22 | 000,140,488 | R--- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\comdlg32.ocx [2011.04.05 17:39:22 | 000,115,016 | R--- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\MSINET.OCX [2011.04.05 17:39:22 | 000,089,360 | R--- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\VB5DB.DLL [2011.04.05 17:39:22 | 000,028,432 | R--- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msxmlr.dll [2011.04.05 17:39:22 | 000,026,096 | R--- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xmlinst.exe [2011.04.05 17:39:22 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Ubi Soft [2011.04.05 17:37:56 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ubi Soft [2011.04.03 19:51:58 | 000,000,000 | ---D | C] -- C:\Users\SSD\Desktop\Everest Ultimate Edition v5.50 Build 2100 [2011.04.03 12:07:07 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lavalys [2011.04.03 12:07:06 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Lavalys [2011.04.03 12:06:19 | 010,255,080 | ---- | C] (Lavalys, Inc. ) -- C:\Users\SSD\Desktop\everestultimate550.exe [2011.04.03 11:23:17 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HD Tune Pro [2011.04.01 19:34:52 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nero [2011.04.01 19:34:41 | 000,471,040 | ---- | C] (Pegasus Imaging Corp.) -- C:\Windows\SysWow64\ImagXRA7.dll [2011.04.01 19:34:41 | 000,262,144 | ---- | C] (Pegasus Imaging Corp.) -- C:\Windows\SysWow64\ImagXR7.dll [2011.04.01 19:34:41 | 000,106,496 | ---- | C] (Pegasus Software) -- C:\Windows\SysWow64\TwnLib20.dll [2011.04.01 19:34:40 | 001,568,768 | ---- | C] (Pegasus Imaging Corp.) -- C:\Windows\SysWow64\ImagX7.dll [2011.04.01 19:34:40 | 000,476,320 | ---- | C] (Pegasus Imaging Corp.) -- C:\Windows\SysWow64\ImagXpr7.dll [2011.04.01 19:34:40 | 000,155,648 | ---- | C] (Ahead Software Gmbh) -- C:\Windows\SysWow64\NeroCheck.exe [2011.04.01 19:34:40 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Ahead [2011.04.01 19:34:37 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Ahead [2011.03.27 13:19:14 | 000,000,000 | ---D | C] -- C:\Users\SSD\AppData\Local\Mozilla [2011.03.27 13:19:12 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Mozilla Firefox [2011.03.27 13:18:44 | 012,420,392 | ---- | C] (Mozilla) -- C:\Users\SSD\Desktop\Firefox Setup 4.0.exe [2011.03.20 19:16:47 | 000,000,000 | ---D | C] -- C:\Users\SSD\Documents\Muellabfuhr-Simulator [2011.03.20 14:04:47 | 000,000,000 | ---D | C] -- C:\ProgramData\Ubisoft [2011.03.20 14:03:29 | 000,000,000 | ---D | C] -- C:\Users\SSD\AppData\Roaming\PunkBuster [2011.03.20 13:58:08 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Ubisoft [2011.03.20 12:00:33 | 000,000,000 | ---D | C] -- C:\Users\SSD\Desktop\save2pc Ultimate 4.14 [2 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ] [1 C:\Users\SSD\Desktop\*.tmp files -> C:\Users\SSD\Desktop\*.tmp -> ] ========== Files - Modified Within 30 Days ========== |
|
|
|
16.04.2011, 17:01
|
#4 (Direktlink) |
|
Gast
Beiträge: n/a
|
2
[2011.04.16 16:18:30 | 000,580,608 | ---- | M] (OldTimer Tools) -- C:\Users\SSD\Desktop\OTL.exe
[2011.04.16 16:18:24 | 000,014,016 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 [2011.04.16 16:18:24 | 000,014,016 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 [2011.04.16 16:17:40 | 001,795,374 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI [2011.04.16 16:17:40 | 000,761,844 | ---- | M] () -- C:\Windows\SysNative\perfh007.dat [2011.04.16 16:17:40 | 000,717,162 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat [2011.04.16 16:17:40 | 000,172,230 | ---- | M] () -- C:\Windows\SysNative\perfc007.dat [2011.04.16 16:17:40 | 000,145,184 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat [2011.04.16 16:13:20 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat [2011.04.16 16:13:18 | 3220,574,208 | -HS- | M] () -- C:\hiberfil.sys [2011.04.16 16:13:18 | 000,151,844 | ---- | M] () -- C:\Windows\SysNative\oodbs.lor [2011.04.16 00:30:07 | 000,236,607 | ---- | M] () -- C:\Users\SSD\Desktop\DX2new.png [2011.04.16 00:12:00 | 000,595,348 | ---- | M] () -- C:\Users\SSD\Desktop\2011-04-15_13-17-25_649.jpg [2011.04.16 00:11:09 | 000,356,621 | ---- | M] () -- C:\Users\SSD\Desktop\2011-04-15_23-16-10_296.jpg [2011.04.15 23:11:20 | 000,075,136 | ---- | M] () -- C:\Windows\SysWow64\PnkBstrA.exe [2011.04.15 23:10:59 | 000,266,400 | ---- | M] () -- C:\Windows\SysWow64\PnkBstrB.xtr [2011.04.15 23:10:59 | 000,266,400 | ---- | M] () -- C:\Windows\SysWow64\PnkBstrB.exe [2011.04.15 22:58:09 | 000,000,027 | ---- | M] () -- C:\Windows\SysNative\drivers\etc\hosts [2011.04.15 22:53:03 | 004,321,723 | R--- | M] () -- C:\Users\SSD\Desktop\ComboFix.exe [2011.04.15 22:29:37 | 000,029,087 | ---- | M] () -- C:\Users\SSD\Desktop\pb.jpg [2011.04.15 22:27:54 | 000,000,000 | ---- | M] () -- C:\Users\SSD\Desktop\Neue Bitmap (2).bmp [2011.04.15 22:27:33 | 000,071,206 | ---- | M] () -- C:\Users\SSD\Desktop\eigenschaften.jpg [2011.04.15 22:26:25 | 000,063,712 | ---- | M] () -- C:\Users\SSD\Desktop\Details.jpg [2011.04.15 22:25:34 | 000,000,000 | ---- | M] () -- C:\Users\SSD\Desktop\Neue Bitmap.bmp [2011.04.15 22:18:44 | 000,012,050 | ---- | M] () -- C:\Users\SSD\Desktop\pbgame.htm [2011.04.15 22:16:47 | 000,220,728 | ---- | M] (Mabugc Rmrqr) -- C:\Users\SSD\Desktop\pbsetupmgr.exe [2011.04.15 22:16:19 | 000,000,081 | ---- | M] () -- C:\Users\SSD\Desktop\pbuser.htm [2011.04.15 22:15:38 | 000,735,889 | ---- | M] () -- C:\Users\SSD\Desktop\pbsetup.zip [2011.04.15 18:01:53 | 000,003,288 | ---- | M] () -- C:\Users\SSD\Desktop\ducilabibi.dlc [2011.04.12 20:55:00 | 000,220,728 | ---- | M] (Mabugc Rmrqr) -- C:\Windows\SysWow64\explorermgr.exe [2011.04.12 20:53:00 | 005,348,201 | ---- | M] () -- C:\Users\SSD\Desktop\DSC_0302.JPG [2011.04.12 20:49:27 | 000,220,728 | ---- | M] (Mabugc Rmrqr) -- C:\Windows\SysWow64\DllHostmgr.exe [2011.04.12 19:32:38 | 000,388,608 | ---- | M] (Trend Micro Inc.) -- C:\Users\SSD\Desktop\HijackThis.exe [2011.04.12 18:58:37 | 000,772,624 | ---- | M] (Sysinternals) -- C:\Users\SSD\Desktop\procexp64.exe [2011.04.11 22:40:45 | 000,006,797 | ---- | M] () -- C:\Users\SSD\Desktop\sternschnuppe klein.jpg [2011.04.11 20:23:04 | 000,143,977 | ---- | M] () -- C:\Users\SSD\Desktop\Sanktionsstudie-ALG2.pdf [2011.04.06 19:49:08 | 000,009,404 | ---- | M] () -- C:\Users\SSD\Desktop\sternschnuppe.jpg [2011.04.06 19:01:55 | 000,455,545 | ---- | M] () -- C:\Users\SSD\Desktop\tumblr_l93y3hlbxE1qakn9to1_500.gif [2011.04.06 18:14:00 | 000,266,400 | ---- | M] () -- C:\Windows\SysWow64\PnkBstrB.ex0 [2011.04.06 17:55:42 | 004,113,241 | ---- | M] () -- C:\Users\SSD\Desktop\Kiss the Sky Danielle Bollinger.mp3 [2011.04.05 17:38:01 | 000,000,625 | ---- | M] () -- C:\Users\Public\Desktop\Splinter Cell spielen.lnk [2011.04.04 21:18:37 | 000,080,140 | ---- | M] () -- C:\Users\SSD\Desktop\TomClancysSplinterCellConviction@www.torrent.to.torrent [2011.04.03 21:26:16 | 000,700,098 | ---- | M] () -- C:\Users\SSD\Desktop\2011-04-01_13-03-32_752.jpg [2011.04.03 19:51:55 | 000,001,129 | ---- | M] () -- C:\Users\SSD\Desktop\EVEREST Ultimate Edition.lnk [2011.04.03 19:51:35 | 010,252,907 | ---- | M] () -- C:\Users\SSD\Desktop\Everest.Ultimate.Edition.v5.50.2100.Full.rar [2011.04.03 19:41:38 | 000,001,220 | ---- | M] () -- C:\Users\SSD\Desktop\Everest Ultimate Edition 4.60.1500 Final Multilanguage_raidrush.org.dlc [2011.04.03 12:06:21 | 010,255,080 | ---- | M] (Lavalys, Inc. ) -- C:\Users\SSD\Desktop\everestultimate550.exe [2011.04.03 11:23:18 | 000,000,970 | ---- | M] () -- C:\Users\SSD\Desktop\HD Tune Pro.lnk [2011.04.03 11:17:45 | 000,061,895 | ---- | M] () -- C:\Users\SSD\Desktop\super_pi_mod-1.5.zip [2011.04.01 19:50:45 | 000,002,206 | ---- | M] () -- C:\Users\SSD\Desktop\ISO1.nri [2011.04.01 19:08:21 | 004,711,477 | ---- | M] () -- C:\Users\SSD\Desktop\Usher More (Lyrics).mp3 [2011.04.01 19:05:22 | 004,752,092 | ---- | M] () -- C:\Users\SSD\Desktop\wyrnxjlb.flv [2011.04.01 18:54:43 | 004,231,869 | ---- | M] () -- C:\Users\SSD\Desktop\Rihanna ft. Lady GaGa Ready [New Song 2010] OFFICIAL VIDEO.mp3 [2011.03.31 21:49:26 | 003,715,167 | ---- | M] () -- C:\Users\SSD\Desktop\Velvet Fix Me.mp3 [2011.03.31 21:17:08 | 004,587,134 | ---- | M] () -- C:\Users\SSD\Desktop\Dj foggyIn your eyes.mp3 [2011.03.27 13:19:14 | 000,000,000 | ---- | M] () -- C:\Windows\nsreg.dat [2011.03.27 13:19:13 | 000,001,141 | ---- | M] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk [2011.03.27 13:18:53 | 012,420,392 | ---- | M] (Mozilla) -- C:\Users\SSD\Desktop\Firefox Setup 4.0.exe [2011.03.24 21:01:09 | 000,127,828 | ---- | M] () -- C:\Windows\War3Unin.dat [2011.03.20 12:06:29 | 003,942,954 | ---- | M] () -- C:\Users\SSD\Desktop\Pillar Frontline_GyI.mp3 [2011.03.20 12:05:39 | 003,723,493 | ---- | M] () -- C:\Users\SSD\Desktop\Pillar Frontline.mp3 [2 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ] [1 C:\Users\SSD\Desktop\*.tmp files -> C:\Users\SSD\Desktop\*.tmp -> ] ========== Files Created - No Company Name ========== [2011.04.16 00:29:51 | 000,236,607 | ---- | C] () -- C:\Users\SSD\Desktop\DX2new.png [2011.04.16 00:11:42 | 000,595,348 | ---- | C] () -- C:\Users\SSD\Desktop\2011-04-15_13-17-25_649.jpg [2011.04.16 00:10:52 | 000,356,621 | ---- | C] () -- C:\Users\SSD\Desktop\2011-04-15_23-16-10_296.jpg [2011.04.15 22:53:44 | 000,256,512 | ---- | C] () -- C:\Windows\PEV.exe [2011.04.15 22:53:44 | 000,098,816 | ---- | C] () -- C:\Windows\sed.exe [2011.04.15 22:53:44 | 000,089,088 | ---- | C] () -- C:\Windows\MBR.exe [2011.04.15 22:53:44 | 000,080,412 | ---- | C] () -- C:\Windows\grep.exe [2011.04.15 22:53:44 | 000,068,096 | ---- | C] () -- C:\Windows\zip.exe [2011.04.15 22:52:56 | 004,321,723 | R--- | C] () -- C:\Users\SSD\Desktop\ComboFix.exe [2011.04.15 22:29:37 | 000,029,087 | ---- | C] () -- C:\Users\SSD\Desktop\pb.jpg [2011.04.15 22:27:54 | 000,000,000 | ---- | C] () -- C:\Users\SSD\Desktop\Neue Bitmap (2).bmp [2011.04.15 22:27:27 | 000,071,206 | ---- | C] () -- C:\Users\SSD\Desktop\eigenschaften.jpg [2011.04.15 22:26:25 | 000,063,712 | ---- | C] () -- C:\Users\SSD\Desktop\Details.jpg [2011.04.15 22:25:34 | 000,000,000 | ---- | C] () -- C:\Users\SSD\Desktop\Neue Bitmap.bmp [2011.04.15 22:16:19 | 000,000,081 | ---- | C] () -- C:\Users\SSD\Desktop\pbuser.htm [2011.04.15 22:16:07 | 000,012,050 | ---- | C] () -- C:\Users\SSD\Desktop\pbgame.htm [2011.04.15 22:15:55 | 000,846,336 | ---- | C] () -- C:\Users\SSD\Desktop\pbsetup.exe [2011.04.15 22:15:37 | 000,735,889 | ---- | C] () -- C:\Users\SSD\Desktop\pbsetup.zip [2011.04.15 18:01:53 | 000,003,288 | ---- | C] () -- C:\Users\SSD\Desktop\ducilabibi.dlc [2011.04.12 20:49:29 | 005,348,201 | ---- | C] () -- C:\Users\SSD\Desktop\DSC_0302.JPG [2011.04.11 22:40:45 | 000,006,797 | ---- | C] () -- C:\Users\SSD\Desktop\sternschnuppe klein.jpg [2011.04.11 20:23:04 | 000,143,977 | ---- | C] () -- C:\Users\SSD\Desktop\Sanktionsstudie-ALG2.pdf [2011.04.06 19:49:08 | 000,009,404 | ---- | C] () -- C:\Users\SSD\Desktop\sternschnuppe.jpg [2011.04.06 19:01:55 | 000,455,545 | ---- | C] () -- C:\Users\SSD\Desktop\tumblr_l93y3hlbxE1qakn9to1_500.gif [2011.04.06 17:41:38 | 004,113,241 | ---- | C] () -- C:\Users\SSD\Desktop\Kiss the Sky Danielle Bollinger.mp3 [2011.04.05 17:39:22 | 000,069,632 | R--- | C] () -- C:\Windows\SysWow64\xmltok.dll [2011.04.05 17:39:22 | 000,036,864 | R--- | C] () -- C:\Windows\SysWow64\xmlparse.dll [2011.04.05 17:39:22 | 000,035,840 | R--- | C] () -- C:\Windows\SysWow64\comdlg32.oca [2011.04.05 17:39:22 | 000,029,184 | R--- | C] () -- C:\Windows\SysWow64\MSINET.oca [2011.04.05 17:37:56 | 000,000,625 | ---- | C] () -- C:\Users\Public\Desktop\Splinter Cell spielen.lnk [2011.04.04 21:18:37 | 000,080,140 | ---- | C] () -- C:\Users\SSD\Desktop\TomClancysSplinterCellConviction@www.torrent.to.torrent [2011.04.03 21:25:57 | 000,700,098 | ---- | C] () -- C:\Users\SSD\Desktop\2011-04-01_13-03-32_752.jpg [2011.04.03 19:51:04 | 010,252,907 | ---- | C] () -- C:\Users\SSD\Desktop\Everest.Ultimate.Edition.v5.50.2100.Full.rar [2011.04.03 19:41:38 | 000,001,220 | ---- | C] () -- C:\Users\SSD\Desktop\Everest Ultimate Edition 4.60.1500 Final Multilanguage_raidrush.org.dlc [2011.04.03 12:07:07 | 000,001,129 | ---- | C] () -- C:\Users\SSD\Desktop\EVEREST Ultimate Edition.lnk [2011.04.03 11:26:23 | 000,006,887 | ---- | C] () -- C:\Users\SSD\Desktop\fosi.nfo [2011.04.03 11:23:18 | 000,000,970 | ---- | C] () -- C:\Users\SSD\Desktop\HD Tune Pro.lnk [2011.04.03 11:17:45 | 000,061,895 | ---- | C] () -- C:\Users\SSD\Desktop\super_pi_mod-1.5.zip [2011.04.01 19:50:45 | 000,002,206 | ---- | C] () -- C:\Users\SSD\Desktop\ISO1.nri [2011.04.01 19:08:12 | 004,711,477 | ---- | C] () -- C:\Users\SSD\Desktop\Usher More (Lyrics).mp3 [2011.04.01 19:03:29 | 004,752,092 | ---- | C] () -- C:\Users\SSD\Desktop\wyrnxjlb.flv [2011.04.01 18:54:34 | 004,231,869 | ---- | C] () -- C:\Users\SSD\Desktop\Rihanna ft. Lady GaGa Ready [New Song 2010] OFFICIAL VIDEO.mp3 [2011.03.31 21:49:18 | 003,715,167 | ---- | C] () -- C:\Users\SSD\Desktop\Velvet Fix Me.mp3 [2011.03.31 21:16:59 | 004,587,134 | ---- | C] () -- C:\Users\SSD\Desktop\Dj foggyIn your eyes.mp3 [2011.03.27 13:19:14 | 000,000,000 | ---- | C] () -- C:\Windows\nsreg.dat [2011.03.27 13:19:13 | 000,001,153 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk [2011.03.27 13:19:13 | 000,001,141 | ---- | C] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk [2011.03.20 12:06:21 | 003,942,954 | ---- | C] () -- C:\Users\SSD\Desktop\Pillar Frontline_GyI.mp3 [2011.03.20 12:01:59 | 003,723,493 | ---- | C] () -- C:\Users\SSD\Desktop\Pillar Frontline.mp3 [2011.03.09 18:41:08 | 000,127,828 | ---- | C] () -- C:\Windows\War3Unin.dat [2011.02.26 11:50:07 | 000,000,080 | ---- | C] () -- C:\Windows\sierra.ini [2011.02.20 11:27:01 | 000,002,378 | -HS- | C] () -- C:\Users\SSD\AppData\Local\gh308xv40u3ualtt81bdvrvb101kv60d3kd [2011.02.20 11:27:01 | 000,002,378 | -HS- | C] () -- C:\ProgramData\gh308xv40u3ualtt81bdvrvb101kv60d3kd [2011.01.31 00:19:02 | 000,396,800 | ---- | C] () -- C:\Windows\SysWow64\PSDrvCheck.exe [2011.01.31 00:18:53 | 000,665,088 | ---- | C] () -- C:\Windows\LOOP.exe [2011.01.08 12:25:36 | 000,007,605 | ---- | C] () -- C:\Users\SSD\AppData\Local\Resmon.ResmonCfg [2011.01.08 12:12:30 | 002,434,856 | ---- | C] () -- C:\Windows\SysWow64\pbsvc_bc2.exe [2011.01.08 12:12:30 | 000,266,400 | ---- | C] () -- C:\Windows\SysWow64\PnkBstrB.exe [2011.01.08 12:12:30 | 000,075,136 | ---- | C] () -- C:\Windows\SysWow64\PnkBstrA.exe [2010.12.28 20:23:55 | 001,588,294 | ---- | C] () -- C:\Windows\SysWow64\PerfStringBackup.INI [2010.12.28 20:05:37 | 000,000,056 | -H-- | C] () -- C:\Windows\SysWow64\ezsidmv.dat [2009.07.14 07:38:36 | 000,067,584 | --S- | C] () -- C:\Windows\bootstat.dat [2009.07.14 04:35:51 | 000,000,741 | ---- | C] () -- C:\Windows\SysWow64\NOISE.DAT [2009.07.14 04:34:42 | 000,215,943 | ---- | C] () -- C:\Windows\SysWow64\dssec.dat [2009.07.14 02:10:29 | 000,043,131 | ---- | C] () -- C:\Windows\mib.bin [2009.07.14 01:42:10 | 000,064,000 | ---- | C] () -- C:\Windows\SysWow64\BWContextHandler.dll [2009.07.13 23:03:59 | 000,364,544 | ---- | C] () -- C:\Windows\SysWow64\msjetoledb40.dll [2009.06.10 23:26:10 | 000,673,088 | ---- | C] () -- C:\Windows\SysWow64\mlang.dat [2006.05.26 15:29:14 | 000,005,120 | ---- | C] () -- C:\Windows\SysWow64\ff_vfw.dll [2003.05.15 08:39:50 | 000,155,136 | ---- | C] () -- C:\Windows\SysWow64\unrar.dll [2002.05.15 06:58:38 | 000,122,880 | ---- | C] () -- C:\Windows\SysWow64\v2k2_dec.dll ========== LOP Check ========== [2011.01.03 22:55:25 | 000,000,000 | ---D | M] -- C:\Users\SSD\AppData\Roaming\Acronis [2010.12.30 23:01:56 | 000,000,000 | ---D | M] -- C:\Users\SSD\AppData\Roaming\BinarySense [2010.12.29 18:48:53 | 000,000,000 | ---D | M] -- C:\Users\SSD\AppData\Roaming\BitSpirit [2011.03.03 20:13:47 | 000,000,000 | ---D | M] -- C:\Users\SSD\AppData\Roaming\Cybele Software [2010.12.28 20:21:08 | 000,000,000 | ---D | M] -- C:\Users\SSD\AppData\Roaming\DAEMON Tools Lite [2011.02.11 20:54:54 | 000,000,000 | ---D | M] -- C:\Users\SSD\AppData\Roaming\HD Tune Pro [2011.01.30 22:58:46 | 000,000,000 | ---D | M] -- C:\Users\SSD\AppData\Roaming\HLSW [2011.04.12 23:02:43 | 000,000,000 | ---D | M] -- C:\Users\SSD\AppData\Roaming\ICQ [2011.04.01 18:47:16 | 000,000,000 | ---D | M] -- C:\Users\SSD\AppData\Roaming\LogView [2010.12.28 23:09:58 | 000,000,000 | ---D | M] -- C:\Users\SSD\AppData\Roaming\LolClient [2010.12.28 19:29:03 | 000,000,000 | ---D | M] -- C:\Users\SSD\AppData\Roaming\Opera [2011.03.20 14:03:29 | 000,000,000 | ---D | M] -- C:\Users\SSD\AppData\Roaming\PunkBuster [2011.01.27 21:07:25 | 000,000,000 | ---D | M] -- C:\Users\SSD\AppData\Roaming\Steinberg [2011.02.05 17:13:20 | 000,000,000 | ---D | M] -- C:\Users\SSD\AppData\Roaming\TS3Client [2011.01.31 00:39:35 | 000,000,000 | ---D | M] -- C:\Users\SSD\AppData\Roaming\TuneUp Software [2011.04.16 16:13:21 | 000,032,632 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT ========== Purity Check ========== ========== Custom Scans ========== < %ALLUSERSPROFILE%\Application Data\*. > < %ALLUSERSPROFILE%\Application Data\*.exe /s > < %APPDATA%\*. > [2011.01.03 22:55:25 | 000,000,000 | ---D | M] -- C:\Users\SSD\AppData\Roaming\Acronis [2011.01.30 22:58:41 | 000,000,000 | ---D | M] -- C:\Users\SSD\AppData\Roaming\Adobe [2011.03.10 23:40:09 | 000,000,000 | ---D | M] -- C:\Users\SSD\AppData\Roaming\AVS4YOU [2010.12.30 23:01:56 | 000,000,000 | ---D | M] -- C:\Users\SSD\AppData\Roaming\BinarySense [2010.12.29 18:48:53 | 000,000,000 | ---D | M] -- C:\Users\SSD\AppData\Roaming\BitSpirit [2011.03.03 20:13:47 | 000,000,000 | ---D | M] -- C:\Users\SSD\AppData\Roaming\Cybele Software [2010.12.28 20:21:08 | 000,000,000 | ---D | M] -- C:\Users\SSD\AppData\Roaming\DAEMON Tools Lite [2010.12.28 22:06:43 | 000,000,000 | ---D | M] -- C:\Users\SSD\AppData\Roaming\DivX [2010.12.28 19:27:31 | 000,000,000 | ---D | M] -- C:\Users\SSD\AppData\Roaming\Google [2011.02.11 20:54:54 | 000,000,000 | ---D | M] -- C:\Users\SSD\AppData\Roaming\HD Tune Pro [2011.01.30 22:58:46 | 000,000,000 | ---D | M] -- C:\Users\SSD\AppData\Roaming\HLSW [2011.04.12 23:02:43 | 000,000,000 | ---D | M] -- C:\Users\SSD\AppData\Roaming\ICQ [2010.12.28 19:11:26 | 000,000,000 | ---D | M] -- C:\Users\SSD\AppData\Roaming\Identities [2011.02.03 00:03:24 | 000,000,000 | ---D | M] -- C:\Users\SSD\AppData\Roaming\InstallShield [2011.02.03 00:06:53 | 000,000,000 | ---D | M] -- C:\Users\SSD\AppData\Roaming\Intel Corporation [2011.04.01 18:47:16 | 000,000,000 | ---D | M] -- C:\Users\SSD\AppData\Roaming\LogView [2010.12.28 23:09:58 | 000,000,000 | ---D | M] -- C:\Users\SSD\AppData\Roaming\LolClient [2010.12.28 19:30:01 | 000,000,000 | ---D | M] -- C:\Users\SSD\AppData\Roaming\Macromedia [2009.07.14 20:18:19 | 000,000,000 | ---D | M] -- C:\Users\SSD\AppData\Roaming\Media Center Programs [2010.12.28 22:06:44 | 000,000,000 | ---D | M] -- C:\Users\SSD\AppData\Roaming\Media Player Classic [2011.04.11 13:08:27 | 000,000,000 | --SD | M] -- C:\Users\SSD\AppData\Roaming\Microsoft [2011.03.27 13:19:21 | 000,000,000 | ---D | M] -- C:\Users\SSD\AppData\Roaming\Mozilla [2010.12.28 19:47:12 | 000,000,000 | ---D | M] -- C:\Users\SSD\AppData\Roaming\NVIDIA [2010.12.28 19:29:03 | 000,000,000 | ---D | M] -- C:\Users\SSD\AppData\Roaming\Opera [2011.03.20 14:03:29 | 000,000,000 | ---D | M] -- C:\Users\SSD\AppData\Roaming\PunkBuster [2011.04.15 22:05:06 | 000,000,000 | RH-D | M] -- C:\Users\SSD\AppData\Roaming\SecuROM [2011.04.16 16:20:38 | 000,000,000 | ---D | M] -- C:\Users\SSD\AppData\Roaming\Skype [2011.04.16 16:13:49 | 000,000,000 | ---D | M] -- C:\Users\SSD\AppData\Roaming\skypePM [2011.02.19 13:17:42 | 000,000,000 | ---D | M] -- C:\Users\SSD\AppData\Roaming\SmartFTP [2011.01.27 21:07:25 | 000,000,000 | ---D | M] -- C:\Users\SSD\AppData\Roaming\Steinberg [2011.02.05 17:13:20 | 000,000,000 | ---D | M] -- C:\Users\SSD\AppData\Roaming\TS3Client [2011.01.31 00:39:35 | 000,000,000 | ---D | M] -- C:\Users\SSD\AppData\Roaming\TuneUp Software [2011.04.10 13:28:09 | 000,000,000 | ---D | M] -- C:\Users\SSD\AppData\Roaming\vlc [2010.12.28 19:14:46 | 000,000,000 | ---D | M] -- C:\Users\SSD\AppData\Roaming\WinRAR < %APPDATA%\*.exe /s > [2011.02.19 13:17:59 | 000,157,733 | R--- | M] () -- C:\Users\SSD\AppData\Roaming\Microsoft\Installer\{F73E95CD-A2E8-49FD-98EB-4A0879C1ADED}\SmartFTP.exe [2011.02.24 17:07:45 | 000,835,440 | R--- | M] () -- C:\Users\SSD\AppData\Roaming\PunkBuster\pbsetup\pbsvc.exe < %SYSTEMDRIVE%\*.exe > < MD5 for: AGP440.SYS > [2009.07.14 03:52:21 | 000,061,008 | ---- | M] (Microsoft Corporation) MD5=608C14DBA7299D8CB6ED035A68A15799 -- C:\Windows\SysNative\drivers\AGP440.sys [2009.07.14 03:52:21 | 000,061,008 | ---- | M] (Microsoft Corporation) MD5=608C14DBA7299D8CB6ED035A68A15799 -- C:\Windows\SysNative\DriverStore\FileRepository\machine.inf_amd64_neutral_9e6bb8 6c3b39a3e9\AGP440.sys [2009.07.14 03:52:21 | 000,061,008 | ---- | M] (Microsoft Corporation) MD5=608C14DBA7299D8CB6ED035A68A15799 -- C:\Windows\winsxs\amd64_machine.inf_31bf3856ad364e35_6.1.7600.16385_none_1607dee 2d861e021\AGP440.sys < MD5 for: ATAPI.SYS > [2009.07.14 03:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\ERDNT\cache64\atapi.sys [2009.07.14 03:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\SysNative\drivers\atapi.sys [2009.07.14 03:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\SysNative\DriverStore\FileRepository\mshdc.inf_amd64_neutral_a69a58a4 286f0b22\atapi.sys [2009.07.14 03:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\winsxs\amd64_mshdc.inf_31bf3856ad364e35_6.1.7600.16385_none_392d19c13 b3ad543\atapi.sys < MD5 for: CNGAUDIT.DLL > [2009.07.14 03:15:06 | 000,012,288 | ---- | M] (Microsoft Corporation) MD5=50BA656134F78AF64E4DD3C8B6FEFD7E -- C:\Windows\ERDNT\cache86\cngaudit.dll [2009.07.14 03:15:06 | 000,012,288 | ---- | M] (Microsoft Corporation) MD5=50BA656134F78AF64E4DD3C8B6FEFD7E -- C:\Windows\SysWOW64\cngaudit.dll [2009.07.14 03:15:06 | 000,012,288 | ---- | M] (Microsoft Corporation) MD5=50BA656134F78AF64E4DD3C8B6FEFD7E -- C:\Windows\winsxs\x86_microsoft-windows-cngaudit-dll_31bf3856ad364e35_6.1.7600.16385_none_e83a414890e8132b\cngaudit.dll [2009.07.14 03:40:20 | 000,018,944 | ---- | M] (Microsoft Corporation) MD5=86FE1B1F8FD42CD0DB641AB1CDB13093 -- C:\Windows\ERDNT\cache64\cngaudit.dll [2009.07.14 03:40:20 | 000,018,944 | ---- | M] (Microsoft Corporation) MD5=86FE1B1F8FD42CD0DB641AB1CDB13093 -- C:\Windows\SysNative\cngaudit.dll [2009.07.14 03:40:20 | 000,018,944 | ---- | M] (Microsoft Corporation) MD5=86FE1B1F8FD42CD0DB641AB1CDB13093 -- C:\Windows\winsxs\amd64_microsoft-windows-cngaudit-dll_31bf3856ad364e35_6.1.7600.16385_none_4458dccc49458461\cngaudit.dll < MD5 for: IASTOR.SYS > [2010.11.06 00:45:48 | 000,438,808 | ---- | M] (Intel Corporation) MD5=D7921D5A870B11CC1ADAB198A519D50A -- C:\Windows\SysNative\drivers\iaStor.sys [2010.11.06 00:45:48 | 000,438,808 | ---- | M] (Intel Corporation) MD5=D7921D5A870B11CC1ADAB198A519D50A -- C:\Windows\SysNative\DriverStore\FileRepository\iaahci.inf_amd64_neutral_710b330 fb3531234\iaStor.sys < MD5 for: IASTORV.SYS > [2009.07.14 03:48:04 | 000,410,688 | ---- | M] (Intel Corporation) MD5=D83EFB6FD45DF9D55E9A1AFC63640D50 -- C:\Windows\SysNative\drivers\iaStorV.sys [2009.07.14 03:48:04 | 000,410,688 | ---- | M] (Intel Corporation) MD5=D83EFB6FD45DF9D55E9A1AFC63640D50 -- C:\Windows\SysNative\DriverStore\FileRepository\iastorv.inf_amd64_neutral_18cccb 83b34e1453\iaStorV.sys [2009.07.14 03:48:04 | 000,410,688 | ---- | M] (Intel Corporation) MD5=D83EFB6FD45DF9D55E9A1AFC63640D50 -- C:\Windows\winsxs\amd64_iastorv.inf_31bf3856ad364e35_6.1.7600.16385_none_0b06441 fa1790136\iaStorV.sys < MD5 for: NETLOGON.DLL > [2009.07.14 03:41:52 | 000,692,736 | ---- | M] (Microsoft Corporation) MD5=956D030D375F207B22FB111E06EF9C35 -- C:\Windows\ERDNT\cache64\netlogon.dll [2009.07.14 03:41:52 | 000,692,736 | ---- | M] (Microsoft Corporation) MD5=956D030D375F207B22FB111E06EF9C35 -- C:\Windows\SysNative\netlogon.dll [2009.07.14 03:41:52 | 000,692,736 | ---- | M] (Microsoft Corporation) MD5=956D030D375F207B22FB111E06EF9C35 -- C:\Windows\winsxs\amd64_microsoft-windows-security-netlogon_31bf3856ad364e35_6.1.7600.16385_none_59aca8ea51aaeefe\netlogon.dll [2009.07.14 03:16:02 | 000,563,712 | ---- | M] (Microsoft Corporation) MD5=EAA75D9000B71F10EEC04D2AE6C60E81 -- C:\Windows\ERDNT\cache86\netlogon.dll [2009.07.14 03:16:02 | 000,563,712 | ---- | M] (Microsoft Corporation) MD5=EAA75D9000B71F10EEC04D2AE6C60E81 -- C:\Windows\SysWOW64\netlogon.dll [2009.07.14 03:16:02 | 000,563,712 | ---- | M] (Microsoft Corporation) MD5=EAA75D9000B71F10EEC04D2AE6C60E81 -- C:\Windows\winsxs\wow64_microsoft-windows-security-netlogon_31bf3856ad364e35_6.1.7600.16385_none_6401533c860bb0f9\netlogon.dll < MD5 for: NVSTOR.SYS > [2009.07.14 03:45:45 | 000,167,488 | ---- | M] (NVIDIA Corporation) MD5=477DC4D6DEB99BE37084C9AC6D013DA1 -- C:\Windows\SysNative\drivers\nvstor.sys [2009.07.14 03:45:45 | 000,167,488 | ---- | M] (NVIDIA Corporation) MD5=477DC4D6DEB99BE37084C9AC6D013DA1 -- C:\Windows\SysNative\DriverStore\FileRepository\nvraid.inf_amd64_neutral_5bde3fe 2945bce9e\nvstor.sys [2009.07.14 03:45:45 | 000,167,488 | ---- | M] (NVIDIA Corporation) MD5=477DC4D6DEB99BE37084C9AC6D013DA1 -- C:\Windows\winsxs\amd64_nvraid.inf_31bf3856ad364e35_6.1.7600.16385_none_95cfb4ce d8afab0e\nvstor.sys < MD5 for: SCECLI.DLL > [2009.07.14 03:16:13 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=26073302DAEA83CC5B944C546D6B47D2 -- C:\Windows\ERDNT\cache86\scecli.dll [2009.07.14 03:16:13 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=26073302DAEA83CC5B944C546D6B47D2 -- C:\Windows\SysWOW64\scecli.dll [2009.07.14 03:16:13 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=26073302DAEA83CC5B944C546D6B47D2 -- C:\Windows\winsxs\wow64_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.1.7600.16385_none_9e577e55272d37b4\sce cli.dll [2009.07.14 03:41:53 | 000,232,448 | ---- | M] (Microsoft Corporation) MD5=398712DDDAEFB85EDF61DF6A07B65C79 -- C:\Windows\ERDNT\cache64\scecli.dll [2009.07.14 03:41:53 | 000,232,448 | ---- | M] (Microsoft Corporation) MD5=398712DDDAEFB85EDF61DF6A07B65C79 -- C:\Windows\SysNative\scecli.dll [2009.07.14 03:41:53 | 000,232,448 | ---- | M] (Microsoft Corporation) MD5=398712DDDAEFB85EDF61DF6A07B65C79 -- C:\Windows\winsxs\amd64_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.1.7600.16385_none_9402d402f2cc75b9\sce cli.dll < MD5 for: USERINIT.EXE > [2009.07.14 03:14:43 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=6DE80F60D7DE9CE6B8C2DDFDF79EF175 -- C:\Windows\ERDNT\cache86\userinit.exe [2009.07.14 03:14:43 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=6DE80F60D7DE9CE6B8C2DDFDF79EF175 -- C:\Windows\SysWOW64\userinit.exe [2009.07.14 03:14:43 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=6DE80F60D7DE9CE6B8C2DDFDF79EF175 -- C:\Windows\winsxs\x86_microsoft-windows-userinit_31bf3856ad364e35_6.1.7600.16385_none_dbff103933038d7c\userinit.exe [2009.07.14 03:39:48 | 000,030,208 | ---- | M] (Microsoft Corporation) MD5=6F8F1376A13114CC10C0E69274F5A4DE -- C:\Windows\ERDNT\cache64\userinit.exe [2009.07.14 03:39:48 | 000,030,208 | ---- | M] (Microsoft Corporation) MD5=6F8F1376A13114CC10C0E69274F5A4DE -- C:\Windows\SysNative\userinit.exe [2009.07.14 03:39:48 | 000,030,208 | ---- | M] (Microsoft Corporation) MD5=6F8F1376A13114CC10C0E69274F5A4DE -- C:\Windows\winsxs\amd64_microsoft-windows-userinit_31bf3856ad364e35_6.1.7600.16385_none_381dabbceb60feb2\userinit.exe < MD5 for: WS2IFSL.SYS > [2009.07.14 02:10:33 | 000,021,504 | ---- | M] (Microsoft Corporation) MD5=6BCC1D7D2FD2453957C5479A32364E52 -- C:\Windows\SysNative\drivers\ws2ifsl.sys [2009.07.14 02:10:33 | 000,021,504 | ---- | M] (Microsoft Corporation) MD5=6BCC1D7D2FD2453957C5479A32364E52 -- C:\Windows\winsxs\amd64_microsoft-windows-w..rastructure-ws2ifsl_31bf3856ad364e35_6.1.7600.16385_none_ab7b927be17eace8\ws2ifsl.sys < %systemroot%\system32\drivers\*.sys /lockedfiles > < %systemroot%\System32\config\*.sav > < %systemroot%\*. /mp /s > < %systemroot%\system32\*.dll /lockedfiles > [2009.07.14 03:15:13 | 000,346,112 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\SysWOW64\dxtmsft.dll [2009.07.14 03:15:13 | 000,215,552 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\SysWOW64\dxtrans.dll [2009.07.14 03:15:28 | 000,186,368 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\SysWOW64\iepeers.dll [2009.07.14 03:16:19 | 011,406,336 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\SysWOW64\wmp.dll ========== Files - Unicode (All) ========== ========== Alternate Data Streams ========== @Alternate Data Stream - 98 bytes -> C:\ProgramData\TEMP:2BE9FEFC < End of report > |
|
|
|
16.04.2011, 17:02
|
#5 (Direktlink) |
|
Gast
Beiträge: n/a
|
OTL Extras logfile created on: 16.04.2011 16:20:33 - Run 1
OTL by OldTimer - Version 3.2.22.3 Folder = C:\Users\SSD\Desktop 64bit- Ultimate Edition (Version = 6.1.7600) - Type = NTWorkstation Internet Explorer (Version = 8.0.7600.16385) Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy 4,00 Gb Total Physical Memory | 3,00 Gb Available Physical Memory | 65,00% Memory free 5,00 Gb Paging File | 3,00 Gb Available in Paging File | 67,00% Paging File free Paging file location(s): c:\pagefile.sys 1000 1000 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86) Drive C: | 111,79 Gb Total Space | 38,75 Gb Free Space | 34,67% Space Free | Partition Type: NTFS Drive D: | 298,08 Gb Total Space | 139,89 Gb Free Space | 46,93% Space Free | Partition Type: NTFS Drive E: | 931,51 Gb Total Space | 367,38 Gb Free Space | 39,44% Space Free | Partition Type: NTFS Drive F: | 931,51 Gb Total Space | 101,60 Gb Free Space | 10,91% Space Free | Partition Type: NTFS Drive G: | 465,76 Gb Total Space | 51,18 Gb Free Space | 10,99% Space Free | Partition Type: NTFS Computer Name: SSD-PC | User Name: SSD | Logged in as Administrator. Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days ========== Extra Registry (SafeList) ========== ========== File Associations ========== 64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>] .html [@ = htmlfile] -- "C:\Program Files (x86)\Internet Explorer\iexplore.exe" -nohome .url[@ = InternetShortcut] -- C:\Windows\SysNative\rundll32.exe (Microsoft Corporation) [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>] .cpl [@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation) .html [@ = htmlfile] -- "C:\Program Files (x86)\Internet Explorer\iexplore.exe" -nohome [HKEY_USERS\S-1-5-21-2670515770-1998668559-3030411615-1001\SOFTWARE\Classes\<extension>] .exe [@ = exefile] -- Reg Error: Key error. File not found ========== Shell Spawning ========== 64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command] batfile [open] -- "%1" %* File not found cmdfile [open] -- "%1" %* File not found comfile [open] -- "%1" %* File not found exefile [open] -- "%1" %* File not found helpfile [open] -- Reg Error: Key error. htmlfile [open] -- "C:\Program Files (x86)\Internet Explorer\iexplore.exe" -nohome File not found htmlfile [opennew] -- "C:\Program Files (x86)\Internet Explorer\iexplore.exe" %1 File not found htmlfile [print] -- rundll32.exe %SystemRoot%\system32\mshtml.dll,PrintHTML "%1" (Microsoft Corporation) http [open] -- "C:\Program Files (x86)\Internet Explorer\iexplore.exe" -nohome File not found https [open] -- "C:\Program Files (x86)\Internet Explorer\iexplore.exe" -nohome File not found inffile [install] -- %SystemRoot%\System32\rundll32.exe setupapi,InstallHinfSection DefaultInstall 132 %1 (Microsoft Corporation) InternetShortcut [open] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l (Microsoft Corporation) InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation) piffile [open] -- "%1" %* File not found regfile [merge] -- Reg Error: Key error. scrfile [config] -- "%1" File not found scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l File not found scrfile [open] -- "%1" /S File not found txtfile [edit] -- Reg Error: Key error. Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1 File not found Directory [AddToPlaylistVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" () Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation) Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Directory [OneNote.Open] -- C:\PROGRA~2\MIF5BA~1\Office12\ONENOTE.EXE "%L" File not found Directory [PlayWithVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" () Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Folder [explore] -- Reg Error: Value error. Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Applications\iexplore.exe [open] -- "C:\Program Files (x86)\Internet Explorer\iexplore.exe" %1 File not found CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- "C:\Program Files (x86)\Internet Explorer\iexplore.exe" File not found [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command] batfile [open] -- "%1" %* cmdfile [open] -- "%1" %* comfile [open] -- "%1" %* cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation) exefile [open] -- "%1" %* helpfile [open] -- Reg Error: Key error. htmlfile [open] -- "C:\Program Files (x86)\Internet Explorer\iexplore.exe" -nohome htmlfile [opennew] -- "C:\Program Files (x86)\Internet Explorer\iexplore.exe" %1 http [open] -- "C:\Program Files (x86)\Internet Explorer\iexplore.exe" -nohome https [open] -- "C:\Program Files (x86)\Internet Explorer\iexplore.exe" -nohome piffile [open] -- "%1" %* regfile [merge] -- Reg Error: Key error. scrfile [config] -- "%1" scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l scrfile [open] -- "%1" /S txtfile [edit] -- Reg Error: Key error. Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1 Directory [AddToPlaylistVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" () Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation) Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Directory [OneNote.Open] -- C:\PROGRA~2\MIF5BA~1\Office12\ONENOTE.EXE "%L" Directory [PlayWithVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" () Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Folder [explore] -- Reg Error: Value error. Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Applications\iexplore.exe [open] -- "C:\Program Files (x86)\Internet Explorer\iexplore.exe" %1 CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- "C:\Program Files (x86)\Internet Explorer\iexplore.exe" ========== Security Center Settings ========== 64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center] "cval" = 1 "FirewallDisableNotify" = 0 "AntiVirusDisableNotify" = 0 "UpdatesDisableNotify" = 0 64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring] 64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc] "VistaSp1" = 28 4D B2 76 41 04 CA 01 [binary data] "AntiVirusOverride" = 0 "AntiSpywareOverride" = 0 "FirewallOverride" = 0 64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center] "FirewallDisableNotify" = 0 "AntiVirusDisableNotify" = 0 "UpdatesDisableNotify" = 0 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc] ========== System Restore Settings ========== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore] "DisableSR" = 0 ========== Firewall Settings ========== 64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall] 64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile] 64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile] [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile] [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\Fir ewallPolicy\DomainProfile] "DisableNotifications" = 0 "EnableFirewall" = 1 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\Fir ewallPolicy\StandardProfile] "DisableNotifications" = 0 "EnableFirewall" = 1 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\Fir ewallPolicy\StandardProfile\GloballyOpenPorts\List] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\Fir ewallPolicy\PublicProfile] "DisableNotifications" = 0 "EnableFirewall" = 1 ========== Authorized Applications List ========== [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\Fir ewallPolicy\DomainProfile\AuthorizedApplications\List] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\Fir ewallPolicy\StandardProfile\AuthorizedApplications\List] ========== HKEY_LOCAL_MACHINE Uninstall List ========== 64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "{02382870-19C7-3ACD-BBAE-F6E3760947DC}" = Microsoft .NET Framework 4 Extended DEU Language Pack "{09782D89-1CA6-4B7D-82C5-2DE01AF5601B}" = Microsoft SQL Server 2008 Common Files "{0ADF605D-2D94-4467-91F7-D75C71CF328D}" = Microsoft SQL Server 2008 Database Engine Shared "{0E3DAF3D-FF69-345A-A99E-1FED304CA083}" = Microsoft .NET Framework 4 Client Profile DEU Language Pack "{0F37D969-1260-419E-B308-EF7D29ABDE20}" = Web Deployment Tool "{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MX300_series" = Canon MX300 series "{11EB3D68-A5BE-43EA-8D31-43B08ADB0DA4}" = Microsoft Sync Services for ADO.NET v2.0 SP1 (x64) de "{197B3774-B7E6-4D50-AD0D-7F99B1E264D2}" = Microsoft SQL Server System CLR Types (x64) "{1CB6C387-65A7-327F-B4A5-7DDC75A291AF}" = Microsoft Visual Studio 2010 Office Developer Tools (x64) "{28D06854-572C-4A65-83E5-F8CAF26B9FDC}" = Microsoft SQL Server VSS Writer "{2DF4C5DD-7417-301D-935D-939D3B7B5997}" = Microsoft Help Viewer 1.0 Language Pack - DEU "{2F14965D-567B-4E59-ADEB-0A2CC1E3ADDF}" = Sql Server Customer Experience Improvement Program "{372806CA-AE32-4A49-9CC1-EF9E3AB28D5C}" = O&O Defrag Professional "{3F6980AF-CF57-463F-83C0-5363BE6A20C3}" = SmartFTP Client "{440668AA-7524-40DB-966A-60BE535E1B3F}" = Microsoft SQL Server 2008 Database Engine Services "{47BA3A3A-6B4E-307F-A43B-724079FE90C6}" = Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - DEU "{5340A3B5-3853-4745-BED2-DD9FF5371331}" = Microsoft SQL Server 2008 Common Files "{53952792-BF16-300E-ADF2-E7E4367E00CF}" = Visual Studio 2010 Prerequisites - English "{5D068141-189F-39E2-A052-E40D4B561256}" = Microsoft Visual Studio 2010 Tools for Office Runtime (x64) "{6AF73222-EE90-434C-AE7E-B96F70A68D89}" = Unterstützungsdateien für Microsoft SQL Server 2008-Setup "{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}" = Microsoft Visual C++ 2005 Redistributable (x64) "{7AC5FFA7-6815-4AED-B16D-8E0D7CC4B221}" = Microsoft Sync Framework Runtime v1.0 SP1 (x64) de "{7ACE202B-1B01-4B43-B6AE-03D66D621CDE}" = Microsoft SQL Server 2008 RsFx Driver "{8220EEFE-38CD-377E-8595-13398D740ACE}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 "{8325FD0C-2FDB-46C3-921A-3A78385EA972}" = Microsoft SQL Server 2008 Native Client "{8476A22A-405F-3DCB-96CA-D98C6418C89B}" = Microsoft Visual Studio 2010 Performance Collection Tools - DEU "{8583E7E3-2237-4981-B957-E28E5E9AB678}" = Microsoft SQL Server 2008 R2 Management Objects (x64) "{8E34682C-8118-31F1-BC4C-98CD9675E1C2}" = Microsoft .NET Framework 4 Extended "{90120000-002A-0000-1000-0000000FF1CE}" = Microsoft Office Office 64-bit Components 2007 "{90120000-002A-0409-1000-0000000FF1CE}" = Microsoft Office Shared 64-bit MUI (English) 2007 "{90120000-0116-0409-1000-0000000FF1CE}" = Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2007 "{94D70749-4281-39AC-AD90-B56A0E0A402E}" = Microsoft Visual C++ 2010 x64 Runtime - 10.0.30319 "{95120000-00B9-0409-1000-0000000FF1CE}" = Microsoft Application Error Reporting "{95A2AD24-BD44-3E39-A31F-CE928276577E}" = Microsoft Visual C++ 2010 x64 Designtime - 10.0.30319 "{A1F50E06-E514-393D-AAEB-2F989F0B7C68}" = Microsoft Team Foundation Server 2010 Object Model - DEU "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision" = NVIDIA 3D Vision Treiber 260.99 "{B2FE1952-0186-46c3-BAEC-A80AA35AC5B8}_Display.ControlPanel" = NVIDIA Systemsteuerung 260.99 "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver" = NVIDIA Grafiktreiber 260.99 "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX" = NVIDIA PhysX-Systemsoftware 9.10.0514 "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver" = NVIDIA HD-Audiotreiber 1.1.9.0 "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_installer" = NVIDIA Install Application "{C3EAE456-7E7A-451F-80EF-F34C7A13C558}" = Microsoft SQL Server Compact 3.5 SP2 x64 DEU "{CC8BA866-16A7-4667-BA0C-C494A1E7B2BF}" = Microsoft SQL Server 2008 Database Engine Shared "{DA5E371C-6333-3D8A-93A4-6FD5B20BCC6E}" = Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319 "{E1C1D175-C23E-38F4-9AC1-ABE5167022CF}" = Microsoft Visual Studio 2010 IntelliTrace Collection (x64) "{E802A021-0F24-3484-97F7-D74D74CB93A0}" = Microsoft Visual Studio 2010 Office Developer Tools (x64) Language Pack - DEU "{EF9A1373-9238-4E11-8FF8-7B83996F5BE5}" = Microsoft Sync Framework Services v1.0 SP1 (x64) de "{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}" = Microsoft .NET Framework 4 Client Profile "{F73E95CD-A2E8-49FD-98EB-4A0879C1ADED}" = SmartFTP Client German (Germany) MUI "{FBD367D1-642F-47CF-B79B-9BE48FB34007}" = Microsoft SQL Server 2008 Database Engine Services "{FCADA26A-5672-31DD-BF0E-BA76ECF9B02D}" = Microsoft Help Viewer 1.0 "Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile "Microsoft .NET Framework 4 Client Profile DEU Language Pack" = Microsoft .NET Framework 4 Client Profile DEU Language Pack "Microsoft .NET Framework 4 Extended" = Microsoft .NET Framework 4 Extended "Microsoft .NET Framework 4 Extended DEU Language Pack" = Microsoft .NET Framework 4 Extended DEU Language Pack "Microsoft Help Viewer 1.0" = Microsoft Help Viewer 1.0 "Microsoft Help Viewer 1.0 Language Pack - DEU" = Microsoft Help Viewer 1.0 Language Pack - DEU "Microsoft SQL Server 10" = Microsoft SQL Server 2008 (64-bit) "Microsoft SQL Server 10 Release" = Microsoft SQL Server 2008 (64-bit) "Microsoft Team Foundation Server 2010 Object Model - DEU" = Microsoft Team Foundation Server 2010-Objektmodell - DEU "Microsoft Visual Studio 2010 Tools for Office Runtime (x64)" = Microsoft Visual Studio 2010 Tools for Office Runtime (x64) "Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - DEU" = Microsoft Visual Studio 2010-Tools für Office-Laufzeit (x64) Language Pack - DEU "TeamSpeak 3 Client" = TeamSpeak 3 Client "WinRAR archiver" = WinRAR [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "{0125D081-30D0-4A97-82A8-C28D444B6256}" = Microsoft SQL Server Compact 3.5 SP2 DEU "{048298C9-A4D3-490B-9FF9-AB023A9238F3}" = Steam "{04A3A6B0-8E19-49BB-82FF-65C5A55F917D}" = Acronis*True*Image*Home 2011 "{08DA8E46-ED67-451A-9246-50E0FF6959C9}" = Microsoft Sync Framework SDK v1.0 SP1 de "{0B7C79A5-5CB2-4ABD-A9C1-92A6213CE8DD}_is1" = MSI Kombustor 1.1.3 "{11C762F9-95EA-486A-A8E7-683A50C231C1}" = SmartFTP "{1803A630-3C38-4D2B-9B9A-0CB37243539C}" = Microsoft ASP.NET MVC 2 "{186CBD06-2D05-4281-8B7D-CDE59F09810F}" = HDDlife Pro 3.1 "{196BB40D-1578-3D01-B289-BEFC77A11A1E}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 "{205C6BDD-7B73-42DE-8505-9A093F35A238}" = Windows Live-Uploadtool "{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}" = MSVCRT "{23BE4DF2-293D-4077-82F4-1FD8C269277C}" = TuneUp Utilities Language Pack (en-US) "{24036256-BFDB-4CD3-BE8A-A3D6160F2E16}" = TuneUp Utilities 2011 "{26A24AE4-039D-4CA4-87B4-2F83216015FF}" = Java(TM) 6 Update 15 "{3175E049-F9A9-4A3D-8F19-AC9FB04514D1}" = Windows Live Communications Platform "{31C3C6EA-E991-405F-A3AA-2C070CCCC47C}" = Microsoft ASP.NET MVC 2 - Visual Studio 2010 Tools - DEU "{3AC8457C-0385-4BEA-A959-E095F05D6D67}" = Battlefield: Bad Company™ 2 "{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}" = Intel(R) Rapid Storage Technology "{40416836-56CC-4C0E-A6AF-5C34BADCE483}" = Microsoft ASP.NET MVC 2 - Visual Studio 2010 Tools "{4135C790-0387-36D7-9C2A-1B09A5900460}" = Microsoft Visual Studio 2010 Ultimate - DEU "{41B31ABE-5A6E-498A-8F28-3BA3B8779A41}" = Dotfuscator Software Services - Community Edition "{4AF2248C-B3DF-46FB-9596-87F5DB193689}" = Microsoft SQL Server 2008 Browser "{5242B252-01BB-4F2E-BBF4-5C01BC3B6619}" = Microsoft SQL Server 2008 R2 Data-Tier Application Project "{52B97218-98CB-4B8B-9283-D213C85E1AA4}" = Windows Live Anmelde-Assistent "{548D4E14-F59D-4FA3-A357-CE5BA0D41D34}" = Opera 11.01 "{5A08C9D1-37AD-4A8D-90D3-33F92C578AA5}" = Microsoft SQL Server System CLR Types "{5EE7D259-D137-4438-9A5F-42F432EC0421}" = VC80CRTRedist - 8.0.50727.4053 "{616C6F39-4CE1-3434-A665-2F6A04C09A7F}" = Microsoft Visual Studio 2010 ADO.NET Entity Framework Tools "{681F4E9F-34E0-36BD-BF2C-100554E403A5}" = Microsoft Visual F# 2.0 Runtime Language Pack - DEU "{6A86554B-8928-30E4-A53C-D7337689134D}" = Microsoft Visual C++ 2010 x86 Runtime - 10.0.30319 "{6CDEAD7E-F8D8-37F7-AB6F-1E22716E30F3}" = Microsoft Visual Studio Macro Tools "{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable "{729A3000-BC8A-3B74-BA5D-5068FE12D70C}" = Microsoft Visual F# 2.0 Runtime "{73C6DCFB-B606-47F3-BDFA-9A4FBF931E37}" = ICQ7.4 "{7BEC151D-ADA9-3EA9-9273-99BA82881971}" = Microsoft Visual Studio 2010 SharePoint Developer Tools "{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable "{888F1505-C2B3-4FDE-835D-36353EBD4754}" = Ubisoft Game Launcher "{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight "{90120000-0015-0409-0000-0000000FF1CE}" = Microsoft Office Access MUI (English) 2007 "{90120000-0016-0409-0000-0000000FF1CE}" = Microsoft Office Excel MUI (English) 2007 "{90120000-0018-0409-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (English) 2007 "{90120000-0019-0409-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (English) 2007 "{90120000-001A-0409-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (English) 2007 "{90120000-001B-0409-0000-0000000FF1CE}" = Microsoft Office Word MUI (English) 2007 "{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007 "{90120000-001F-040C-0000-0000000FF1CE}" = Microsoft Office Proof (French) 2007 "{90120000-001F-0C0A-0000-0000000FF1CE}" = Microsoft Office Proof (Spanish) 2007 "{90120000-002C-0409-0000-0000000FF1CE}" = Microsoft Office Proofing (English) 2007 "{90120000-0030-0000-0000-0000000FF1CE}" = Microsoft Office Enterprise 2007 "{90120000-0044-0409-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (English) 2007 "{90120000-006E-0409-0000-0000000FF1CE}" = Microsoft Office Shared MUI (English) 2007 "{90120000-00A1-0409-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (English) 2007 "{90120000-00BA-0409-0000-0000000FF1CE}" = Microsoft Office Groove MUI (English) 2007 "{90120000-0114-0409-0000-0000000FF1CE}" = Microsoft Office Groove Setup Metadata MUI (English) 2007 "{90120000-0115-0409-0000-0000000FF1CE}" = Microsoft Office Shared Setup Metadata MUI (English) 2007 "{90120000-0117-0409-0000-0000000FF1CE}" = Microsoft Office Access Setup Metadata MUI (English) 2007 "{918A9082-6287-4D25-9002-5E5D5E4971CB}" = League of Legends "{91F54E1D-804A-46D8-A56C-53EA9C4B3177}" = Microsoft Silverlight 3 SDK - Deutsch "{92C5C058-E941-47C3-B7E8-38A79C605969}" = Microsoft SQL Server 2008 R2 Transact-SQL Language Service "{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting "{97BBECCF-B1FD-4010-8D4B-EFC9E3CCEECF}" = Driver Whiz "{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 "{9C3B8582-A72A-4835-8903-877A834407BB}" = Microsoft SQL Server 2008 R2-Datenebenenanwendungs-Framework "{A106D33E-6B43-42C0-9BFC-D03303261FA7}" = Microsoft SQL Server 2008 R2 Management Objects "{A174402A-2EE6-4B86-A930-7BC85A9933BD}" = Tom Clancy's Splinter Cell "{AC41D924-8C68-4BD5-A7A1-0AE4176C31A6}" = Crystal Reports for Visual Studio "{AC76BA86-7AD7-1031-7B44-AA0000000001}" = Adobe Reader X - Deutsch "{ACE28263-76A4-4BF5-B6F4-8BD719595969}" = Microsoft SQL Server Database Publishing Wizard 1.4 "{AED2DD42-9853-407E-A6BC-8A1D6B715909}" = Windows Live Messenger "{B4092C6D-E886-4CB2-BA68-FE5A88D31DE6}_is1" = Spybot - Search & Destroy "{B7E38540-E355-3503-AFD7-635B2F2F76E1}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4974 "{B9DB4C76-01A4-46D5-8910-F7AA6376DBAF}" = NVIDIA PhysX "{BE4BA698-8533-4F77-9559-C7F3F78C0B05}" = Assassin's Creed Brotherhood "{CAFA57E8-8927-4912-AFCF-B0AA3837E989}" = Windows Live Essentials "{CD95D125-2992-4858-B3EF-5F6FB52FBAD6}" = Skype Toolbars "{CE9BAD6E-60FC-46CC-82A2-5B0F2B1A0E36}" = Dotfuscator Software Services - Community Edition - DEU "{CFCB8616-A5D1-4281-80E8-389F685BFAE2}" = Visual Studio 2010 Tools for SQL Server Compact 3.5 SP2 DEU "{CFEF48A8-BFB8-3EAC-8BA5-DE4F8AA267CE}" = Microsoft .NET Framework 4 Multi-Targeting Pack "{D2041A37-5FEC-49F0-AE5C-3F2FFDFAA4F4}" = Windows Live Call "{DBEA1034-5882-4A88-8033-81C4EF0CFA29}" = Google Toolbar for Internet Explorer "{E4E9CBC9-1CF5-48E3-AF6F-1AB44A856346}" = Microsoft ASP.NET MVC 2 - DEU "{E633D396-5188-4E9D-8F6B-BFB8BF3467E8}" = Skype™ 5.0 "{EC66418E-DAA2-36D5-809E-40BEC94E622A}" = Microsoft Visual Studio Macro Tools - DEU Language Pack "{F0E12BBA-AD66-4022-A453-A1C8A0C4D570}" = Microsoft Choice Guard "{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver "{F8A9085D-4C7A-41a9-8A77-C8998A96C421}" = Intel(R) Control Center "{FDE12FB0-F9F7-4525-8959-B1C2C22299AC}" = Silicon Laboratories CP210x VCP Drivers for Windows XP/2003 Server/Vista/7 "Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin "Afterburner" = MSI Afterburner 2.0.0 "AVM ISDN CAPI Port" = AVM ISDN CAPI Port "AVS Audio Converter 6.3_is1" = AVS Audio Converter version 6.3 "AVS Update Manager_is1" = AVS Update Manager 1.0 "AVS4YOU Software Navigator_is1" = AVS4YOU Software Navigator 1.4 "AVS4YOU Video Converter 7_is1" = AVS Video Converter 7 "DivX Setup.divx.com" = DivX-Setup "EADM" = EA Download Manager "ENTERPRISE" = Microsoft Office Enterprise 2007 "EVEREST Ultimate Edition_is1" = EVEREST Ultimate Edition v5.50 "Fraps" = Fraps "HD Tune Pro_is1" = HD Tune Pro 4.60 "HLSW_is1" = HLSW v1.3.2.1 "ICQToolbar" = ICQ Toolbar "JDownloader" = JDownloader "Language Reader_is1" = Language Reader 2.01 "LogView V2" = LogView V2 "Microsoft DirectX SDK (June 2010)" = Microsoft DirectX SDK (June 2010) "Microsoft Visual Studio 2010 Ultimate - DEU" = Microsoft Visual Studio 2010 Ultimate - DEU "Microsoft Visual Studio Macro Tools" = Microsoft Visual Studio Macro Tools "Microsoft Visual Studio Macro Tools - DEU Language Pack" = Microsoft Visual Studio Macro Tools - DEU Language Pack "Mozilla Firefox 4.0 (x86 de)" = Mozilla Firefox 4.0 (x86 de) "MP Navigator EX 1.0" = Canon MP Navigator EX 1.0 "Nero - Burning Rom!UninstallKey" = Nero 6 Ultra Edition "NVIDIAStereo" = NVIDIA Stereoscopic 3D Driver "Opera 11.10.2092" = Opera 11.10 "PunkBusterSvc" = PunkBuster Services "ShockwaveFlash" = Adobe Flash Player 9 ActiveX "SLABCOMM&10C4&EA60" = Silicon Laboratories CP210x USB to UART Bridge (Driver Removal) "SmartFTP Client 4.0 (x64) Setup Files" = SmartFTP Client Setup Files 4.0 (x64) (remove only) "Steam App 10" = Counter-Strike "Steinberg MyMp3PRO V5.0" = Steinberg MyMp3PRO V5.0 "Storm Codec 5" = Storm Codec "TuneUp Utilities 2011" = TuneUp Utilities 2011 "VLC media player" = VLC media player 1.1.5 "Warcraft III" = Warcraft III "WinLiveSuite_Wave3" = Windows Live Essentials "z/Scope Express VT v6.1_is1" = z/Scope Express VT v6.1 ========== HKEY_USERS Uninstall List ========== [HKEY_USERS\S-1-5-21-2670515770-1998668559-3030411615-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "Warcraft III" = Warcraft III: All Products ========== Last 10 Event Log Errors ========== [ Application Events ] Error - 12.04.2011 11:03:55 | Computer Name = SSD-PC | Source = Application Error | ID = 1000 Description = Name der fehlerhaften Anwendung: Skype.exe, Version: 5.0.0.156, Zeitstempel: 0x000707f3 Name des fehlerhaften Moduls: unknown, Version: 0.0.0.0, Zeitstempel: 0x00000000 Ausnahmecode: 0xc0000005 Fehleroffset: 0x00000000 ID des fehlerhaften Prozesses: 0x8f8 Startzeit der fehlerhaften Anwendung: 0x01cbf922d228a11d Pfad der fehlerhaften Anwendung: C:\Program Files (x86)\Skype\Phone\Skype.exe Pfad des fehlerhaften Moduls: unknown Berichtskennung: 1549dc8a-6516-11e0-867c-00e061131e97 Error - 12.04.2011 12:17:54 | Computer Name = SSD-PC | Source = SideBySide | ID = 16842815 Description = Fehler beim Generieren des Aktivierungskontextes für "c:\program files (x86)\spybot - search & destroy\DelZip179.dll". Fehler in Manifest- oder Richtliniendatei "c:\program files (x86)\spybot - search & destroy\DelZip179.dll" in Zeile 8. Der Wert "*" des "language"-Attributs im assemblyIdentity-Element ist ungültig. Error - 12.04.2011 12:35:08 | Computer Name = SSD-PC | Source = Application Error | ID = 1000 Description = Name der fehlerhaften Anwendung: Skype.exe, Version: 5.0.0.156, Zeitstempel: 0x000707f3 Name des fehlerhaften Moduls: Skype.exe, Version: 5.0.0.156, Zeitstempel: 0x000707f3 Ausnahmecode: 0xc0000005 Fehleroffset: 0x001537c0 ID des fehlerhaften Prozesses: 0xc5c Startzeit der fehlerhaften Anwendung: 0x01cbf92f9508675b Pfad der fehlerhaften Anwendung: C:\Program Files (x86)\Skype\Phone\Skype.exe Pfad des fehlerhaften Moduls: C:\Program Files (x86)\Skype\Phone\Skype.exe Berichtskennung: d3784de4-6522-11e0-80cb-00e061131e97 Error - 12.04.2011 12:40:08 | Computer Name = SSD-PC | Source = Application Error | ID = 1000 Description = Name der fehlerhaften Anwendung: Skype.exe, Version: 5.0.0.156, Zeitstempel: 0x000707f3 Name des fehlerhaften Moduls: unknown, Version: 0.0.0.0, Zeitstempel: 0x00000000 Ausnahmecode: 0xc0000005 Fehleroffset: 0x00000000 ID des fehlerhaften Prozesses: 0xcec Startzeit der fehlerhaften Anwendung: 0x01cbf930457abd9f Pfad der fehlerhaften Anwendung: C:\Program Files (x86)\Skype\Phone\Skype.exe Pfad des fehlerhaften Moduls: unknown Berichtskennung: 86477ab7-6523-11e0-8b67-00e061131e97 Error - 12.04.2011 12:41:51 | Computer Name = SSD-PC | Source = Application Error | ID = 1000 Description = Name der fehlerhaften Anwendung: DllHost.exe, Version: 6.1.7600.16385, Zeitstempel: 0x4a5bc6b7 Name des fehlerhaften Moduls: ntdll.dll, Version: 6.1.7600.16385, Zeitstempel: 0x4a5bdb3b Ausnahmecode: 0xc0000005 Fehleroffset: 0x00038c39 ID des fehlerhaften Prozesses: 0xea4 Startzeit der fehlerhaften Anwendung: 0x01cbf93085edc0df Pfad der fehlerhaften Anwendung: C:\Windows\SysWOW64\DllHost.exe Pfad des fehlerhaften Moduls: C:\Windows\SysWOW64\ntdll.dll Berichtskennung: c40f6c3f-6523-11e0-8b67-00e061131e97 Error - 12.04.2011 13:04:17 | Computer Name = SSD-PC | Source = Application Error | ID = 1000 Description = Name der fehlerhaften Anwendung: Skype.exe, Version: 5.0.0.156, Zeitstempel: 0x000707f3 Name des fehlerhaften Moduls: unknown, Version: 0.0.0.0, Zeitstempel: 0x00000000 Ausnahmecode: 0xc0000005 Fehleroffset: 0x00000000 ID des fehlerhaften Prozesses: 0xd10 Startzeit der fehlerhaften Anwendung: 0x01cbf933a270333a Pfad der fehlerhaften Anwendung: C:\Program Files (x86)\Skype\Phone\Skype.exe Pfad des fehlerhaften Moduls: unknown Berichtskennung: e5f3edcd-6526-11e0-8fde-00e061131e97 Error - 12.04.2011 13:06:27 | Computer Name = SSD-PC | Source = Application Error | ID = 1000 Description = Name der fehlerhaften Anwendung: Skype.exe, Version: 5.0.0.156, Zeitstempel: 0x000707f3 Name des fehlerhaften Moduls: Skype.exe, Version: 5.0.0.156, Zeitstempel: 0x000707f3 Ausnahmecode: 0xc0000005 Fehleroffset: 0x001537c0 ID des fehlerhaften Prozesses: 0xd38 Startzeit der fehlerhaften Anwendung: 0x01cbf933f49c9dcc Pfad der fehlerhaften Anwendung: C:\Program Files (x86)\Skype\Phone\Skype.exe Pfad des fehlerhaften Moduls: C:\Program Files (x86)\Skype\Phone\Skype.exe Berichtskennung: 3375de3d-6527-11e0-804a-00e061131e97 Error - 13.04.2011 06:38:47 | Computer Name = SSD-PC | Source = SideBySide | ID = 16842815 Description = Fehler beim Generieren des Aktivierungskontextes für "c:\program files (x86)\spybot - search & destroy\DelZip179.dll". Fehler in Manifest- oder Richtliniendatei "c:\program files (x86)\spybot - search & destroy\DelZip179.dll" in Zeile 8. Der Wert "*" des "language"-Attributs im assemblyIdentity-Element ist ungültig. Error - 14.04.2011 07:02:31 | Computer Name = SSD-PC | Source = SideBySide | ID = 16842815 Description = Fehler beim Generieren des Aktivierungskontextes für "c:\program files (x86)\spybot - search & destroy\DelZip179.dll". Fehler in Manifest- oder Richtliniendatei "c:\program files (x86)\spybot - search & destroy\DelZip179.dll" in Zeile 8. Der Wert "*" des "language"-Attributs im assemblyIdentity-Element ist ungültig. Error - 15.04.2011 07:04:03 | Computer Name = SSD-PC | Source = SideBySide | ID = 16842815 Description = Fehler beim Generieren des Aktivierungskontextes für "c:\program files (x86)\spybot - search & destroy\DelZip179.dll". Fehler in Manifest- oder Richtliniendatei "c:\program files (x86)\spybot - search & destroy\DelZip179.dll" in Zeile 8. Der Wert "*" des "language"-Attributs im assemblyIdentity-Element ist ungültig. [ System Events ] Error - 13.04.2011 06:17:37 | Computer Name = SSD-PC | Source = Service Control Manager | ID = 7000 Description = Der Dienst "AVMPORT" wurde aufgrund folgenden Fehlers nicht gestartet: %%1275 Error - 14.04.2011 06:39:37 | Computer Name = SSD-PC | Source = Application Popup | ID = 1060 Description = Aufgrund der Inkompatibilität mit diesem System wurde \SystemRoot\SysWow64\drivers\avmport.sys nicht geladen. Wenden Sie sich an den Softwarehersteller, um eine kompatible Version des Treibers zu erhalten. Error - 14.04.2011 06:39:37 | Computer Name = SSD-PC | Source = Service Control Manager | ID = 7000 Description = Der Dienst "AVMPORT" wurde aufgrund folgenden Fehlers nicht gestartet: %%1275 Error - 15.04.2011 06:33:07 | Computer Name = SSD-PC | Source = Application Popup | ID = 1060 Description = Aufgrund der Inkompatibilität mit diesem System wurde \SystemRoot\SysWow64\drivers\avmport.sys nicht geladen. Wenden Sie sich an den Softwarehersteller, um eine kompatible Version des Treibers zu erhalten. Error - 15.04.2011 06:33:07 | Computer Name = SSD-PC | Source = Service Control Manager | ID = 7000 Description = Der Dienst "AVMPORT" wurde aufgrund folgenden Fehlers nicht gestartet: %%1275 Error - 15.04.2011 16:56:03 | Computer Name = SSD-PC | Source = Service Control Manager | ID = 7030 Description = Der Dienst "PEVSystemStart" ist als interaktiver Dienst gekennzeichnet. Das System wurde jedoch so konfiguriert, dass interaktive Dienste nicht möglich sind. Der Dienst wird möglicherweise nicht richtig funktionieren. Error - 15.04.2011 16:57:47 | Computer Name = SSD-PC | Source = Application Popup | ID = 1060 Description = Aufgrund der Inkompatibilität mit diesem System wurde \??\C:\ComboFix\catchme.sys nicht geladen. Wenden Sie sich an den Softwarehersteller, um eine kompatible Version des Treibers zu erhalten. Error - 15.04.2011 16:58:10 | Computer Name = SSD-PC | Source = Service Control Manager | ID = 7030 Description = Der Dienst "PEVSystemStart" ist als interaktiver Dienst gekennzeichnet. Das System wurde jedoch so konfiguriert, dass interaktive Dienste nicht möglich sind. Der Dienst wird möglicherweise nicht richtig funktionieren. Error - 16.04.2011 10:13:21 | Computer Name = SSD-PC | Source = Application Popup | ID = 1060 Description = Aufgrund der Inkompatibilität mit diesem System wurde \SystemRoot\SysWow64\drivers\avmport.sys nicht geladen. Wenden Sie sich an den Softwarehersteller, um eine kompatible Version des Treibers zu erhalten. Error - 16.04.2011 10:13:21 | Computer Name = SSD-PC | Source = Service Control Manager | ID = 7000 Description = Der Dienst "AVMPORT" wurde aufgrund folgenden Fehlers nicht gestartet: %%1275 < End of report > |
|
|
|
|
16.04.2011, 17:03
|
#6 (Direktlink) |
|
Gast
Beiträge: n/a
|
Malwarebytes' Anti-Malware 1.50.1.1100
Malwarebytes Datenbank Version: 6374 Windows 6.1.7600 Internet Explorer 8.0.7600.16385 16.04.2011 16:51:53 mbam-log-2011-04-16 (16-51-47).txt Art des Suchlaufs: Vollständiger Suchlauf (C:\|) Durchsuchte Objekte: 322704 Laufzeit: 6 Minute(n), 35 Sekunde(n) Infizierte Speicherprozesse: 0 Infizierte Speichermodule: 0 Infizierte Registrierungsschlüssel: 1 Infizierte Registrierungswerte: 1 Infizierte Dateiobjekte der Registrierung: 0 Infizierte Verzeichnisse: 0 Infizierte Dateien: 37 Infizierte Speicherprozesse: (Keine bösartigen Objekte gefunden) Infizierte Speichermodule: (Keine bösartigen Objekte gefunden) Infizierte Registrierungsschlüssel: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A078F691-9C07-4AF2-BF43-35E79EECF8B7} (Adware.Softomate) -> No action taken. Infizierte Registrierungswerte: HKEY_LOCAL_MACHINE\SOFTWARE\Mozilla\Firefox\extensions\ClickPotatoLite@ClickPota toLite.com (Adware.ClickPotato) -> Value: ClickPotatoLite@ClickPotatoLite.com -> No action taken. Infizierte Dateiobjekte der Registrierung: (Keine bösartigen Objekte gefunden) Infizierte Verzeichnisse: (Keine bösartigen Objekte gefunden) Infizierte Dateien: c:\MyMp3Pro\myMP3mgr.exe (Spyware.Passwords.XGen) -> No action taken. c:\program files (x86)\Adobe\reader 10.0\Reader\acrord32mgr.exe (Spyware.Passwords.XGen) -> No action taken. c:\program files (x86)\common files\Adobe\ARM\1.0\adobearmmgr.exe (Spyware.Passwords.XGen) -> No action taken. c:\program files (x86)\electronic arts\battlefield bad company™ 2\bfbc2gamemgr.exe (Spyware.Passwords.XGen) -> No action taken. c:\program files (x86)\ICQ7.4\ICQmgr.exe (Spyware.Passwords.XGen) -> No action taken. c:\program files (x86)\installshield installation information\{72efbfe4-c74f-4187-aefd-73ea3be968d6}\ICQ7mgr.exe (Spyware.Passwords.XGen) -> No action taken. c:\program files (x86)\Java\jre6\bin\javawmgr.exe (Spyware.Passwords.XGen) -> No action taken. c:\program files (x86)\msi afterburner\msiafterburnermgr.exe (Spyware.Passwords.XGen) -> No action taken. c:\program files (x86)\nvidia corporation\3d vision\nvscpapisvrmgr.exe (Spyware.Passwords.XGen) -> No action taken. c:\program files (x86)\Opera\operamgr.exe (Spyware.Passwords.XGen) -> No action taken. c:\program files (x86)\ringz studio\storm codec\mplayercmgr.exe (Spyware.Passwords.XGen) -> No action taken. c:\program files (x86)\Skype\Phone\Skypemgr.exe (Spyware.Passwords.XGen) -> No action taken. c:\program files (x86)\Skype\plugin manager\skypepmmgr.exe (Spyware.Passwords.XGen) -> No action taken. c:\program files (x86)\VideoLAN\VLC\vlcmgr.exe (Spyware.Passwords.XGen) -> No action taken. c:\program files (x86)\windows live\Contacts\wlcommmgr.exe (Spyware.Passwords.XGen) -> No action taken. c:\program files (x86)\windows live\messenger\msnmsgrmgr.exe (Spyware.Passwords.XGen) -> No action taken. c:\Qoobox\quarantine\C\program files (x86)\mozilla firefox\plugins\npclntax_clickpotatolitesa.dll.vir (Adware.ClickPotato) -> No action taken. c:\ragnarok_france\ragexemgr.exe (Spyware.Passwords.XGen) -> No action taken. c:\ragnarok_france\ragnarokmgr.exe (Spyware.Passwords.XGen) -> No action taken. c:\Users\SSD\AppData\Local\Opera\Opera\temporary_downloads\xvidsetup.exe (Adware.Hotbar) -> No action taken. c:\Users\SSD\Desktop\pbsetupmgr.exe (Spyware.Passwords.XGen) -> No action taken. c:\Users\SSD\Desktop\backups\backup-20110412-193604-430-ywivikiv.exe (Spyware.Passwords.XGen) -> No action taken. c:\Users\SSD\Desktop\backups\backup-20110412-193604-981-ywivikiv2.exe (Spyware.Passwords.XGen) -> No action taken. c:\Users\SSD\Desktop\neuer ordner\Keygen.exe (RiskWare.Tool.CK) -> No action taken. c:\Users\SSD\Desktop\neuer ordner\VLCSetup.exe (Adware.Hotbar) -> No action taken. c:\Users\SSD\Desktop\neuer ordner\oo.defrag.professional.v14.1.305.incl.keymaker-core\CORE10k.EXE (Dont.Steal.Our.Software) -> No action taken. c:\Users\SSD\Desktop\neuer ordner\oo.defrag.professional.v14.1.305.incl.keymaker-core\keygen.exe (RiskWare.Tool.CK) -> No action taken. c:\Users\SSD\Desktop\neuer ordner\oo.defrag.professional.v14.1.305.x64.incl.keymaker-core\CORE10k.EXE (Dont.Steal.Our.Software) -> No action taken. c:\Users\SSD\Desktop\neuer ordner\oo.defrag.professional.v14.1.305.x64.incl.keymaker-core\keygen.exe (RiskWare.Tool.CK) -> No action taken. c:\Users\SSD\Desktop\neuer ordner (4)\isopremium.9.3.5.2716\keygen\keygen.exe (RiskWare.Tool.CK) -> No action taken. c:\Users\SSD\Desktop\neuer ordner (4)\oo.defrag.pro.v12.0.197 by ab\oo.defrag.pro.v12.0.197 by ab\keygen.exe (Backdoor.RBot) -> No action taken. c:\Users\SSD\Desktop\rcx_openalpha\RCXDraw.dll (Trojan.Banker) -> No action taken. c:\Users\SSD\Desktop\rcx_openalpha\rcxdrawmgr.exe (Spyware.Passwords.XGen) -> No action taken. c:\Users\SSD\Desktop\rcx_openalpha\RCXmgr.exe (Spyware.Passwords.XGen) -> No action taken. c:\Windows\pss\ywivikiv.exe.startup (Spyware.Passwords.XGen) -> No action taken. c:\Windows\System32\explorermgr.exe (Spyware.Passwords.XGen) -> No action taken. c:\Windows\SysWOW64\explorermgr.exe (Spyware.Passwords.XGen) -> No action taken. |
|
|
|
16.04.2011, 18:10
|
#7 (Direktlink) |
|
Gast
Beiträge: n/a
|
alte system platte siehe laufzeit von der aktuellen system platte xDD
Malwarebytes Datenbank Version: 6374 Windows 6.1.7600 Internet Explorer 8.0.7600.16385 16.04.2011 18:09:00 mbam-log-2011-04-16 (18-09-00).txt Art des Suchlaufs: Vollständiger Suchlauf (D:\|) Durchsuchte Objekte: 492746 Laufzeit: 44 Minute(n), 51 Sekunde(n) Infizierte Speicherprozesse: 0 Infizierte Speichermodule: 0 Infizierte Registrierungsschlüssel: 0 Infizierte Registrierungswerte: 0 Infizierte Dateiobjekte der Registrierung: 0 Infizierte Verzeichnisse: 0 Infizierte Dateien: 20 Infizierte Speicherprozesse: (Keine bösartigen Objekte gefunden) Infizierte Speichermodule: (Keine bösartigen Objekte gefunden) Infizierte Registrierungsschlüssel: (Keine bösartigen Objekte gefunden) Infizierte Registrierungswerte: (Keine bösartigen Objekte gefunden) Infizierte Dateiobjekte der Registrierung: (Keine bösartigen Objekte gefunden) Infizierte Verzeichnisse: (Keine bösartigen Objekte gefunden) Infizierte Dateien: d:\!KillBox\g6pxb6wg2i.dll (Trojan.Agent) -> Quarantined and deleted successfully. d:\program files\reality pump\two worlds ii\rld-tw2k.exe (RiskWare.Tool.CK) -> Quarantined and deleted successfully. d:\programme\bitspirit\Builder.exe (Spyware.OnlineGames.Gen) -> Quarantined and deleted successfully. d:\programme\FlashFXP\flashfxp-patch.exe (RiskWare.Tool.CK) -> Quarantined and deleted successfully. d:\system volume information\_restore{eae42fc7-0ab8-4ac0-85e1-25f85614236a}\RP37\A0030037.exe (Trojan.Downloader) -> Quarantined and deleted successfully. d:\system volume information\_restore{eae42fc7-0ab8-4ac0-85e1-25f85614236a}\RP37\A0030038.exe (Trojan.Downloader) -> Quarantined and deleted successfully. d:\system volume information\_restore{eae42fc7-0ab8-4ac0-85e1-25f85614236a}\RP37\A0030039.exe (Trojan.Downloader) -> Quarantined and deleted successfully. d:\system volume information\_restore{eae42fc7-0ab8-4ac0-85e1-25f85614236a}\RP37\A0030040.exe (Malware.Packer) -> Quarantined and deleted successfully. d:\system volume information\_restore{eae42fc7-0ab8-4ac0-85e1-25f85614236a}\RP37\A0030041.exe (Trojan.Downloader) -> Quarantined and deleted successfully. d:\system volume information\_restore{eae42fc7-0ab8-4ac0-85e1-25f85614236a}\RP37\A0030045.exe (Trojan.Downloader) -> Quarantined and deleted successfully. d:\Users\Delax\AppData\Local\syssvc.exe (Spyware.Passwords.XGen) -> Quarantined and deleted successfully. d:\Users\Delax\Desktop\crystalidea.anytoiso.v3.0.macosx.incl.keymaker-core\CORE10k.EXE (Dont.Steal.Our.Software) -> Quarantined and deleted successfully. d:\Users\Delax\Desktop\neuer ordner (4)\isopremium.9.3.5.2716\keygen\keygen.exe (RiskWare.Tool.CK) -> Quarantined and deleted successfully. d:\Users\Delax\Desktop\neuer ordner (4)\oo.defrag.pro.v12.0.197 by ab\oo.defrag.pro.v12.0.197 by ab\keygen.exe (Backdoor.RBot) -> Quarantined and deleted successfully. d:\Users\Delax\Desktop\rcx_openalpha\RCXDraw.dll (Trojan.Banker) -> Quarantined and deleted successfully. d:\Users\Public\photoshop\TC11.EXE (Trojan.FlashKiller) -> Quarantined and deleted successfully. d:\Windows.old\documents and settings\administrator\Desktop\keygen.exe (RiskWare.Tool.CK) -> Quarantined and deleted successfully. d:\Windows.old\documents and settings\administrator\Desktop\Keygen05.exe (Trojan.Downloader) -> Quarantined and deleted successfully. d:\Windows.old\documents and settings\administrator\Desktop\xf-acad9-64-bits.exe (RiskWare.Tool.CK) -> Quarantined and deleted successfully. d:\Windows.old\documents and settings\administrator\Desktop\backups\backup-20101202-180616-210.dll (Trojan.Agent) -> Quarantined and deleted successfully. |
|
|
|
16.04.2011, 20:06
|
#8 (Direktlink) |
|
Gast
Beiträge: n/a
|
problem noch nicht gelöst
hmmm naja malwarebytes anti spyware kann man in die tonne klopfen.... das problem ist nicht gelöst! malware findet und löscht diese infizierte dateien,
ABER: nach dem ich das programm starte wo diese infizierten dateien gelöscht wurden, tauchen sie wieder auf wie aus dem nichts. z.B: ich starte warcraft3.exe----> eine warcraft3mgr.exe wird erstellt in dem selben ordner, mit diesen pinken logo. ich befürchte das ist ein keylogger der sich mit dem speicher verbindet und durch eine DLL arbeitet, die hätt ich aber gefunden! iwas stimmt da nicht, wenn das ganze mit einen anti malware getan wäre hätt ich hier nicht ins forum geschrieben..... in der google suche bin ich nicht fündig geworden, da steht auch das es mit anti malware gefunden wird, mehr auch net. das schlimme ist das passier mit jeden programm das ich starte! gibs da noch lösungvorschläge?^^ wäre für jede hilfe dankbar. |
|
|
|
16.04.2011, 22:27
|
#9 (Direktlink) | |
|
Super-Moderator
Registriert seit: 08.02.2010
Beiträge: 1.728
|
Zitat:
 Würde man meine Anweisungen nur mal ganz durchlesen  Außerdem sind Cracks und Keygens Illegal und wie du sehen kannst verbreiten sie zu 99% Viren. c:\Users\SSD\Desktop\neuer ordner\Keygen.exe ordner\oo.defrag.professional.v14.1.305.incl.keymaker-core\CORE10k.EXE (Dont.Steal.Our.Software) -> No action taken. Machst du Online Banking? Wenn ja umgehend deine Bank anrufen und das Konto sperren lassen, bevor noch Geld weg kommt. Auch weitere Online Geschäfte einstellen und von einem Sauberen System aus alle wichtigen Passwörter ändern. Ich würde dein System neu aufsetzen! EDIT: [2011.04.15 22:53:28 | 000,000,000 | ---D | C] -- C:\Qoobox [2011.04.15 22:53:03 | 004,321,723 | R--- | M] () -- C:\Users\SSD\Desktop\ComboFix.exe Wieso hast du Combofix ausgeführt?
__________________
Gruß Leo
Geändert von Der Leo (16.04.2011 um 22:39 Uhr) |
|
|
|
|
|
16.04.2011, 23:11
|
#10 (Direktlink) |
|
Gast
Beiträge: n/a
|
re,
ich hatte combofix ausgeführt bevor ich den thread hier gestartet hab, dachte das hilft vielleicht. c:\Users\SSD\Desktop\neuer ordner\Keygen.exe ordner\oo.defrag.professional.v14.1.305.incl.keymaker-core\CORE10k.EXE (Dont.Steal.Our.Software) -> No action taken. das war bevor ich alle probleme behoben gedrückt hab, es ist alles weg keine sorge. ja, ich mache online banking, ich denke aber das es opera nicht betrifft, und diese passwörter gebe ich nie manuell ein, diese sind gespeichert mit ssl verschlüsselung. das mit system aussetzten, hmmm das dauert wieder alles so lang......aber zum glück hab ich eine SSD naja, ich denke alle programme sind infiziert mit dem kack, daher muss ich eh alles neu installieren, oder gibt es doch ne neuinstallationsfreie lösung? naja, ich mach mal mein sys neu^^ |
|
|
|
|
17.04.2011, 18:21
|
#11 (Direktlink) |
|
Super-Moderator
Registriert seit: 08.02.2010
Beiträge: 1.728
|
Ja das ist vernüftig.
Benötigst du hilfe beim Formatieren? Wenn du fertig bist kannst du dich hier melden und wir sichern deinen PC besser ab.
__________________
Gruß Leo
|
|
|
|
|
17.04.2011, 22:03
|
#12 (Direktlink) |
|
Gast
Beiträge: n/a
|
Habe alles fertig, formatiert, windows neu drauf und alles installiert was ich brauche, habe auch ein acronis backup gemacht, also jetzt ist alles gut ,danke für deine hilfe Leo^^
|
|
|
|
18.04.2011, 19:46
|
#13 (Direktlink) |
|
Super-Moderator
Registriert seit: 08.02.2010
Beiträge: 1.728
|
Hallo,
das klingt gut. In Zukunft auf Keygens und Crakcs verzichten! Du hast selbst gesehn was passiert. Lieber Software Legal kaufen als später vor einem gepünderten Konto zu sitzen. Setze diese 10 Tipps um damit du sicherer im Web unterwegs bist. Paules 10 Empfehlungen zum sicheren Surfen im Internet! Tipp: Solltest du nicht Wissen ob eine Datei Sauber oder Böse ist kannst du diese von mehr als 40 Virenscanner überprüfen lassen. VirusTotal - Free Online Virus, Malware and URL Scanner
__________________
Gruß Leo
|
|
|
|
|
22.04.2011, 18:05
|
#14 (Direktlink) |
|
Gast
Beiträge: n/a
|
re,
leider, ist nicht alles gut, es war w32.ramnit.H den ich hatte, nach dem ich dachte , formatieren, backup alles ok, zack hatte der w32.ramnit.H von der anderen fesplatte über gegriffen, altes problem, alte schwierigkeiten, ich habe erst überhaupt rausfinden müssen das es ramnit.H war.....das hat gedauert! ich habe dann wie folgt alle programme in den anderen laufwerken sofort gelöscht, da alles verseucht war. habe combofix laufen lassen, mit combofix.com, der hatte alles entfernt, und anschließend hab ich mir comodo security premium geholt, und alle platten scannen lassen, alles verdächtige gelöscht ca 800 infizierte dll's und exen alles was im speicher war hat er mit sich gerissen. und nu hab ich zu 100 % alles weg dank comodo security! leo wie kommstu drauf das OTL was bringt? das hat nix von ramnit gefunden. |
|
|
|
22.04.2011, 19:42
|
#15 (Direktlink) | |
|
Super-Moderator
Registriert seit: 08.02.2010
Beiträge: 1.728
|
Hallo,
als ich gesehn hab das du Cracks und Keygens verwedenst habe ich den Support eingestellt da wir dies nicht unterschützen. Zitat:
Ich werd mich darüber nochmal Informieren. Den das reicht lange noch nicht aus. Es sind wohl noch weit mehr Datein Infieziert.
__________________
Gruß Leo
|
|
|
|
|
|
|
|
| Lesezeichen |
| Themen-Optionen | |
| Ansicht | |
|
|
|
Ähnliche Themen
|
||||
| Thema | Autor | Forum | Antworten | Letzter Beitrag |
| unbekannter Ordner | visio Problem | PC-Sicherheit, Spam und Phishing | 31 | 24.01.2012 21:57 |
| möglicherweise unbekannter Virus? | d3LuXe | Viren-Forum | 29 | 18.07.2007 11:26 |
| unbekannter Virus, brauche Hilfe | KerstinS. | Viren-Forum | 1 | 12.03.2007 07:58 |
| Mir unbekannter Virus macht Laptop unbrauchbar, Hilfe! | MrVertigo | Viren-Forum | 1 | 03.01.2007 13:38 |
| Unbekannter Festplattenfehler! | sonnenschein2 | Windows 95/98/ME/2000/NT | 1 | 25.08.2004 16:01 |
Forum
Empfohlen: 
Linear-Darstellung
