Trojaner (Virus) löscht alles wenn Internetverbindung besteht

NagaraHyuga · 31.08.2009, 13:34

[2009.08.17 21:55:33 | 00,232,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\avtapi.dll
[2009.08.17 21:55:33 | 00,232,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\avtapi.dll
[2009.08.17 21:55:33 | 00,073,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\avwav.dll
[2009.08.17 21:55:33 | 00,073,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\avwav.dll
[2009.08.17 21:55:33 | 00,035,840 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\winchat.exe
[2009.08.17 21:55:33 | 00,035,840 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winchat.exe
[2009.08.17 21:55:33 | 00,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\avmeter.dll
[2009.08.17 21:55:33 | 00,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\avmeter.dll
[2009.08.17 21:55:30 | 00,968,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\calc.exe
[2009.08.17 21:55:30 | 00,968,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\calc.exe
[2009.08.17 21:55:30 | 00,683,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\getuname.dll
[2009.08.17 21:55:30 | 00,683,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\getuname.dll
[2009.08.17 21:55:30 | 00,093,702 | ---- | C] () -- C:\WINDOWS\System32\subrange.uce
[2009.08.17 21:55:30 | 00,080,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\charmap.exe
[2009.08.17 21:55:30 | 00,080,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\charmap.exe
[2009.08.17 21:55:30 | 00,060,458 | ---- | C] () -- C:\WINDOWS\System32\ideograf.uce
[2009.08.17 21:55:30 | 00,024,006 | ---- | C] () -- C:\WINDOWS\System32\gb2312.uce
[2009.08.17 21:55:30 | 00,022,984 | ---- | C] () -- C:\WINDOWS\System32\bopomofo.uce
[2009.08.17 21:55:30 | 00,016,740 | ---- | C] () -- C:\WINDOWS\System32\shiftjis.uce
[2009.08.17 21:55:30 | 00,012,876 | ---- | C] () -- C:\WINDOWS\System32\korean.uce
[2009.08.17 21:55:30 | 00,008,484 | ---- | C] () -- C:\WINDOWS\System32\kanji_2.uce
[2009.08.17 21:55:30 | 00,006,948 | ---- | C] () -- C:\WINDOWS\System32\kanji_1.uce
[2009.08.17 21:55:29 | 00,128,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mshearts.exe
[2009.08.17 21:55:29 | 00,128,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mshearts.exe
[2009.08.17 21:55:29 | 00,120,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\winmine.exe
[2009.08.17 21:55:29 | 00,120,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winmine.exe
[2009.08.17 21:55:29 | 00,057,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\sol.exe
[2009.08.17 21:55:29 | 00,057,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sol.exe
[2009.08.17 21:55:29 | 00,055,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\freecell.exe
[2009.08.17 21:55:29 | 00,055,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\freecell.exe
[2009.08.17 21:55:29 | 00,017,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tsshutdn.exe
[2009.08.17 21:55:29 | 00,017,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tsshutdn.exe
[2009.08.17 21:55:29 | 00,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tskill.exe
[2009.08.17 21:55:29 | 00,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tskill.exe
[2009.08.17 21:55:29 | 00,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tsdiscon.exe
[2009.08.17 21:55:29 | 00,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tscon.exe
[2009.08.17 21:55:29 | 00,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tsdiscon.exe
[2009.08.17 21:55:29 | 00,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tscon.exe
[2009.08.17 21:55:29 | 00,010,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\reset.exe
[2009.08.17 21:55:29 | 00,010,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\reset.exe
[2009.08.17 21:55:29 | 00,003,286 | ---- | C] () -- C:\WINDOWS\System32\tslabels.h
[2009.08.17 21:55:29 | 00,001,237 | ---- | C] () -- C:\WINDOWS\System32\usrlogon.cmd
[2009.08.17 21:55:28 | 00,033,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\regini.exe
[2009.08.17 21:55:28 | 00,033,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\regini.exe
[2009.08.17 21:55:28 | 00,022,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\qwinsta.exe
[2009.08.17 21:55:28 | 00,022,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msg.exe
[2009.08.17 21:55:28 | 00,022,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\qwinsta.exe
[2009.08.17 21:55:28 | 00,022,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msg.exe
[2009.08.17 21:55:28 | 00,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mtsadmin.tlb
[2009.08.17 21:55:28 | 00,017,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\qappsrv.exe
[2009.08.17 21:55:28 | 00,017,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\qappsrv.exe
[2009.08.17 21:55:28 | 00,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rwinsta.exe
[2009.08.17 21:55:28 | 00,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rwinsta.exe
[2009.08.17 21:55:28 | 00,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\logoff.exe
[2009.08.17 21:55:28 | 00,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\logoff.exe
[2009.08.17 21:55:28 | 00,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cdmodem.dll
[2009.08.17 21:55:28 | 00,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\cdmodem.dll
[2009.08.17 21:55:28 | 00,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\shadow.exe
[2009.08.17 21:55:28 | 00,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\shadow.exe
[2009.08.17 21:55:28 | 00,004,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rdpcfgex.dll
[2009.08.17 21:55:28 | 00,004,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rdpcfgex.dll
[2009.08.17 21:55:28 | 00,000,768 | ---- | C] () -- C:\WINDOWS\System32\msdtcprf.h
[2009.08.17 21:55:27 | 00,045,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmi2xml.dll
[2009.08.17 21:55:25 | 00,116,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\updprov.dll
[2009.08.17 21:55:25 | 00,076,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmipicmp.dll
[2009.08.17 21:55:25 | 00,061,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tmplprov.dll
[2009.08.17 21:55:25 | 00,061,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmimsg.dll
[2009.08.17 21:55:25 | 00,059,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wbemdisp.tlb
[2009.08.17 21:55:25 | 00,059,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\trnsprov.dll
[2009.08.17 21:55:25 | 00,052,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmitimep.dll
[2009.08.17 21:55:25 | 00,031,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wbemads.tlb
[2009.08.17 21:55:25 | 00,017,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winmgmtr.dll
[2009.08.17 21:55:25 | 00,016,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\unsecapp.exe
[2009.08.17 21:55:25 | 00,013,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winmgmt.exe
[2009.08.17 21:55:25 | 00,012,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wbemads.dll
[2009.08.17 21:55:24 | 00,273,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msiprov.dll
[2009.08.17 21:55:24 | 00,120,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dsprov.dll
[2009.08.17 21:55:24 | 00,063,488 | ---- | C] () -- C:\WINDOWS\System32\wmimgmt.msc
[2009.08.17 21:55:24 | 00,053,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fwdprov.dll
[2009.08.17 21:55:24 | 00,040,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smtpcons.dll
[2009.08.17 21:55:23 | 00,356,352 | ---- | C] (Hilgraeve, Inc.) -- C:\WINDOWS\System32\hypertrm.dll
[2009.08.17 21:55:23 | 00,346,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mspaint.exe
[2009.08.17 21:55:23 | 00,346,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mspaint.exe
[2009.08.17 21:55:23 | 00,188,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\accwiz.exe
[2009.08.17 21:55:23 | 00,188,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\accwiz.exe
[2009.08.17 21:55:23 | 00,133,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\sndrec32.exe
[2009.08.17 21:55:23 | 00,133,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sndrec32.exe
[2009.08.17 21:55:23 | 00,124,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mplay32.exe
[2009.08.17 21:55:23 | 00,124,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mplay32.exe
[2009.08.17 21:55:23 | 00,070,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\access.cpl
[2009.08.17 21:55:23 | 00,070,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\access.cpl
[2009.08.17 21:55:22 | 00,539,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\spider.exe
[2009.08.17 21:55:22 | 00,539,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\spider.exe
[2009.08.17 21:55:22 | 00,104,448 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\clipbrd.exe
[2009.08.17 21:55:22 | 00,104,448 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\clipbrd.exe
[2009.08.17 21:55:22 | 00,021,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\tdtcp.sys
[2009.08.17 21:55:22 | 00,021,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tdtcp.sys
[2009.08.17 21:55:22 | 00,012,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\tdpipe.sys
[2009.08.17 21:55:22 | 00,012,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tdpipe.sys
[2009.08.17 21:55:21 | 02,066,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mstscax.dll
[2009.08.17 21:55:21 | 02,061,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\lhmstscx.dll
[2009.08.17 21:55:21 | 00,677,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mstsc.exe
[2009.08.17 21:55:21 | 00,677,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\lhmstsc.exe
[2009.08.17 21:55:21 | 00,290,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rhttpaa.dll
[2009.08.17 21:55:21 | 00,290,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rhttpaa.dll
[2009.08.17 21:55:21 | 00,139,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\rdpwd.sys
[2009.08.17 21:55:21 | 00,139,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rdpwd.sys
[2009.08.17 21:55:21 | 00,136,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\aaclient.dll
[2009.08.17 21:55:21 | 00,136,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\aaclient.dll
[2009.08.17 21:55:21 | 00,094,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tscfgwmi.dll
[2009.08.17 21:55:21 | 00,094,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tscfgwmi.dll
[2009.08.17 21:55:21 | 00,053,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tsgqec.dll
[2009.08.17 21:55:21 | 00,053,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tsgqec.dll
[2009.08.17 21:55:20 | 00,297,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\termsrv.dll
[2009.08.17 21:55:20 | 00,297,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\termsrv.dll
[2009.08.17 21:55:20 | 00,161,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msdtcuiu.dll
[2009.08.17 21:55:20 | 00,161,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdtcuiu.dll
[2009.08.17 21:55:20 | 00,147,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rdchost.dll
[2009.08.17 21:55:20 | 00,147,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rdchost.dll
[2009.08.17 21:55:20 | 00,143,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\sessmgr.exe
[2009.08.17 21:55:20 | 00,143,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sessmgr.exe
[2009.08.17 21:55:20 | 00,087,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rdpwsx.dll
[2009.08.17 21:55:20 | 00,087,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rdpwsx.dll
[2009.08.17 21:55:20 | 00,067,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rdshost.exe
[2009.08.17 21:55:20 | 00,067,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rdshost.exe
[2009.08.17 21:55:20 | 00,062,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rdpclip.exe
[2009.08.17 21:55:20 | 00,062,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rdpclip.exe
[2009.08.17 21:55:20 | 00,061,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\remotepg.dll
[2009.08.17 21:55:20 | 00,061,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\remotepg.dll
[2009.08.17 21:55:20 | 00,039,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cfgbkend.dll
[2009.08.17 21:55:20 | 00,039,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\cfgbkend.dll
[2009.08.17 21:55:20 | 00,020,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\qprocess.exe
[2009.08.17 21:55:20 | 00,020,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\qprocess.exe
[2009.08.17 21:55:20 | 00,019,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rdpsnd.dll
[2009.08.17 21:55:20 | 00,019,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rdpsnd.dll
[2009.08.17 21:55:20 | 00,013,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rdsaddin.exe
[2009.08.17 21:55:20 | 00,013,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rdsaddin.exe
[2009.08.17 21:55:20 | 00,011,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\icaapi.dll
[2009.08.17 21:55:20 | 00,011,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icaapi.dll
[2009.08.17 21:55:19 | 00,956,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msdtctm.dll
[2009.08.17 21:55:19 | 00,956,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdtctm.dll
[2009.08.17 21:55:19 | 00,428,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msdtcprx.dll
[2009.08.17 21:55:19 | 00,428,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdtcprx.dll
[2009.08.17 21:55:19 | 00,091,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mtxoci.dll
[2009.08.17 21:55:19 | 00,091,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mtxoci.dll
[2009.08.17 21:55:19 | 00,058,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msdtclog.dll
[2009.08.17 21:55:19 | 00,058,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdtclog.dll
[2009.08.17 21:55:19 | 00,011,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xolehlp.dll
[2009.08.17 21:55:19 | 00,011,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\xolehlp.dll
[2009.08.17 21:55:19 | 00,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msdtc.exe
[2009.08.17 21:55:19 | 00,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdtc.exe
[2009.08.17 21:55:18 | 00,625,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\catsrvut.dll
[2009.08.17 21:55:18 | 00,625,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\catsrvut.dll
[2009.08.17 21:55:18 | 00,226,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\catsrv.dll
[2009.08.17 21:55:18 | 00,226,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\catsrv.dll
[2009.08.17 21:55:18 | 00,195,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\comadmin.dll
[2009.08.17 21:55:18 | 00,110,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\clbcatex.dll
[2009.08.17 21:55:18 | 00,110,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\clbcatex.dll
[2009.08.17 21:55:18 | 00,097,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\comrepl.dll
[2009.08.17 21:55:18 | 00,097,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\comrepl.dll
[2009.08.17 21:55:18 | 00,085,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\catsrvps.dll
[2009.08.17 21:55:18 | 00,085,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\catsrvps.dll
[2009.08.17 21:55:18 | 00,060,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\colbact.dll
[2009.08.17 21:55:18 | 00,060,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\colbact.dll
[2009.08.17 21:55:18 | 00,059,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\stclient.dll
[2009.08.17 21:55:18 | 00,059,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\stclient.dll
[2009.08.17 21:55:18 | 00,034,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mtxlegih.dll
[2009.08.17 21:55:18 | 00,034,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mtxlegih.dll
[2009.08.17 21:55:18 | 00,030,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mtxdm.dll
[2009.08.17 21:55:18 | 00,030,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mtxdm.dll
[2009.08.17 21:55:18 | 00,028,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\comaddin.dll
[2009.08.17 21:55:18 | 00,028,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\comaddin.dll
[2009.08.17 21:55:18 | 00,009,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\comrepl.exe
[2009.08.17 21:55:18 | 00,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dcomcnfg.exe
[2009.08.17 21:55:18 | 00,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\comrereg.exe
[2009.08.17 21:55:18 | 00,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dcomcnfg.exe
[2009.08.17 21:55:18 | 00,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mtxex.dll
[2009.08.17 21:55:18 | 00,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mtxex.dll
[2009.08.17 21:55:17 | 01,267,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\comsvcs.dll
[2009.08.17 21:55:17 | 01,267,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\comsvcs.dll
[2009.08.17 21:55:17 | 00,539,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\comuid.dll
[2009.08.17 21:55:17 | 00,539,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\comuid.dll
[2009.08.17 21:55:17 | 00,498,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\clbcatq.dll
[2009.08.17 21:55:17 | 00,498,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\clbcatq.dll
[2009.08.17 21:55:17 | 00,167,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\comsnap.dll
[2009.08.17 21:55:17 | 00,167,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\comsnap.dll
[2009.08.17 21:55:15 | 00,227,840 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmiprvse.exe
[2009.08.17 21:55:15 | 00,145,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmisvc.dll
[2009.08.17 21:55:15 | 00,099,840 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmiutils.dll
[2009.08.17 21:55:15 | 00,041,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmipsess.dll
[2009.08.17 21:55:14 | 00,531,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wbemcore.dll
[2009.08.17 21:55:14 | 00,453,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmiprvsd.dll
[2009.08.17 21:55:14 | 00,370,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmic.exe
[2009.08.17 21:55:14 | 00,273,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wbemess.dll
[2009.08.17 21:55:14 | 00,214,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wbemcomn.dll
[2009.08.17 21:55:14 | 00,197,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wbemupgd.dll
[2009.08.17 21:55:14 | 00,196,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmiadap.exe
[2009.08.17 21:55:14 | 00,178,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wbemdisp.dll
[2009.08.17 21:55:14 | 00,156,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmipcima.dll
[2009.08.17 21:55:14 | 00,144,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmiprov.dll
[2009.08.17 21:55:14 | 00,140,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmidcprv.dll
[2009.08.17 21:55:14 | 00,132,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmipdskq.dll
[2009.08.17 21:55:14 | 00,126,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmiapsrv.exe
[2009.08.17 21:55:14 | 00,120,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wbemtest.exe
[2009.08.17 21:55:14 | 00,088,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmiaprpl.dll
[2009.08.17 21:55:14 | 00,071,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wbemcons.dll
[2009.08.17 21:55:14 | 00,062,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmipjobj.dll
[2009.08.17 21:55:14 | 00,061,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmipiprt.dll
[2009.08.17 21:55:14 | 00,060,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmicookr.dll
[2009.08.17 21:55:14 | 00,043,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wbemsvc.dll
[2009.08.17 21:55:14 | 00,018,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wbemprox.dll
[2009.08.17 21:55:14 | 00,007,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmiapres.dll
[2009.08.17 21:55:13 | 00,237,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\provthrd.dll
[2009.08.17 21:55:13 | 00,212,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntevt.dll
[2009.08.17 21:55:13 | 00,201,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wbemcntl.dll
[2009.08.17 21:55:13 | 00,185,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\framedyn.dll
[2009.08.17 21:55:13 | 00,178,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\repdrvfs.dll
[2009.08.17 21:55:13 | 00,131,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\viewprov.dll
[2009.08.17 21:55:13 | 00,124,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mofd.dll

NagaraHyuga · 31.08.2009, 13:36

[2009.08.17 21:55:13 | 00,092,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\policman.dll
[2009.08.17 21:55:13 | 00,086,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\stdprov.dll
[2009.08.17 21:55:13 | 00,047,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ncprov.dll
[2009.08.17 21:55:13 | 00,036,352 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\scrcons.exe
[2009.08.17 21:55:13 | 00,024,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\krnlprov.dll
[2009.08.17 21:55:13 | 00,016,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mofcomp.exe
[2009.08.17 21:55:12 | 01,358,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cimwin32.dll
[2009.08.17 21:55:12 | 00,473,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fastprox.dll
[2009.08.17 21:55:12 | 00,247,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\esscli.dll
[2009.08.17 21:55:12 | 00,189,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cmprops.dll
[2009.08.17 21:55:12 | 00,189,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\cmprops.dll
[2009.08.17 21:55:12 | 00,058,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\licwmi.dll
[2009.08.17 21:55:12 | 00,058,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\licwmi.dll
[2009.08.17 21:55:12 | 00,056,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\servdeps.dll
[2009.08.17 21:55:12 | 00,056,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\servdeps.dll
[2009.08.17 21:55:12 | 00,017,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mmfutil.dll
[2009.08.17 21:55:12 | 00,017,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mmfutil.dll
[2009.08.17 21:55:07 | 00,196,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\rdpdr.sys
[2009.08.17 21:55:07 | 00,040,840 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\termdd.sys
[2009.08.17 21:55:06 | 00,000,000 | R--D | C] -- C:\Dokumente und Einstellungen\All Users.WINDOWS\Dokumente\Eigene Videos
[2009.08.16 20:00:00 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\report
[2009.08.04 12:45:25 | 00,000,000 | ---D | C] -- C:\Programme\Gemeinsame Dateien\Wise Installation Wizard
[2009.08.04 12:03:02 | 00,000,000 | ---D | C] -- C:\Programme\SecCopy
[2008.06.13 18:54:08 | 01,800,192 | ---- | C] () -- C:\WINDOWS\System32\hmtcdres.dll
[2008.06.13 18:54:07 | 00,394,240 | ---- | C] () -- C:\WINDOWS\System32\hmtcd.dll
[2008.05.02 22:51:07 | 00,000,338 | ---- | C] () -- C:\WINDOWS\System32\Oeminfo.ini
[2004.08.04 14:00:00 | 00,000,231 | ---- | C] () -- C:\WINDOWS\system.ini
[2004.08.04 14:00:00 | 00,000,182 | ---- | C] () -- C:\WINDOWS\System32\AIO-Auswahl.ini
[2004.08.04 14:00:00 | 00,000,076 | ---- | C] () -- C:\WINDOWS\win.ini

========== Files - Modified Within 30 Days ==========

[2 C:\WINDOWS\System32\*.tmp files]
[1 C:\WINDOWS\*.tmp files]
[2009.08.31 13:23:58 | 00,005,538 | ---- | M] () -- C:\WINDOWS\System32\update
[2009.08.31 13:21:28 | 00,001,407 | ---- | M] () -- C:\WINDOWS\wincmd.ini
[2009.08.31 13:20:32 | 00,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2009.08.31 13:19:51 | 00,243,457 | ---- | M] () -- C:\WINDOWS\System32\NvApps.xml
[2009.08.31 13:19:07 | 00,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2009.08.29 19:15:29 | 05,850,350 | -H-- | M] () -- C:\Dokumente und Einstellungen\Administrator.-MTDVD-\Lokale Einstellungen\Anwendungsdaten\IconCache.db
[2009.08.29 16:47:35 | 00,047,066 | ---- | M] () -- C:\WINDOWS\System32\lncom_.jpg
[2009.08.28 19:49:11 | 03,366,823 | ---- | M] () -- C:\WINDOWS\System32\update.exe
[2009.08.28 19:17:57 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\°‘G
[2009.08.28 18:40:25 | 00,000,754 | ---- | M] () -- C:\WINDOWS\WORDPAD.INI
[2009.08.28 18:21:35 | 00,000,145 | ---- | M] () -- C:\WINDOWS\w32dasm8.ini
[2009.08.28 17:20:02 | 00,000,512 | ---- | M] () -- C:\WINDOWS\randseed.rnd
[2009.08.28 15:30:57 | 00,037,124 | ---- | M] () -- C:\WINDOWS\System32\imsn.exe
[2009.08.28 15:29:16 | 00,065,275 | ---- | M] () -- C:\WINDOWS\p_ekran.jpg
[2009.08.28 10:30:21 | 00,000,550 | ---- | M] () -- C:\Dokumente und Einstellungen\All Users.WINDOWS\Desktop\ICQ 5.1.lnk
[2009.08.25 21:17:55 | 00,000,080 | RHS- | M] () -- C:\WINDOWS\System32\97EACEAFD6.dll
[2009.08.25 13:40:13 | 00,355,354 | ---- | M] () -- C:\AnalysisLog.sr0
[2009.08.24 17:01:21 | 00,013,104 | ---- | M] () -- C:\Dokumente und Einstellungen\Administrator.-MTDVD-\Lokale Einstellungen\Anwendungsdaten\GDIPFONTCACHEV1.DAT
[2009.08.23 14:00:39 | 01,071,010 | ---- | M] () -- C:\WINDOWS\System32\PerfStringBackup.INI
[2009.08.23 14:00:39 | 00,458,924 | ---- | M] () -- C:\WINDOWS\System32\perfh007.dat
[2009.08.23 14:00:39 | 00,441,184 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2009.08.23 14:00:39 | 00,084,872 | ---- | M] () -- C:\WINDOWS\System32\perfc007.dat
[2009.08.23 14:00:39 | 00,071,250 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2009.08.23 13:58:55 | 00,316,640 | ---- | M] () -- C:\WINDOWS\WMSysPr9.prx
[2009.08.23 13:57:56 | 00,095,072 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2009.08.23 13:34:32 | 00,000,772 | ---- | M] () -- C:\Dokumente und Einstellungen\All Users.WINDOWS\Desktop\Prototype(TM).lnk
[2009.08.23 01:08:09 | 00,156,046 | -H-- | M] () -- C:\treeinfo.wc
[2009.08.22 17:35:13 | 00,034,064 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\lhacm.acm
[2009.08.22 17:35:12 | 00,000,539 | ---- | M] () -- C:\Dokumente und Einstellungen\Administrator.-MTDVD-\Desktop\Teamspeak 2 RC2.lnk
[2009.08.22 14:37:18 | 00,007,680 | ---- | M] () -- C:\Dokumente und Einstellungen\Administrator.-MTDVD-\Lokale Einstellungen\Anwendungsdaten\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2009.08.19 12:27:44 | 00,000,723 | ---- | M] () -- C:\Dokumente und Einstellungen\Administrator.-MTDVD-\Desktop\Verknüpfung mit airrivals.lnk
[2009.08.18 14:21:12 | 00,000,691 | ---- | M] () -- C:\Dokumente und Einstellungen\All Users.WINDOWS\Desktop\AirRivals_DE.lnk
[2009.08.18 10:32:24 | 00,000,601 | ---- | M] () -- C:\Dokumente und Einstellungen\All Users.WINDOWS\Desktop\VLC media player.lnk
[2009.08.18 10:11:50 | 00,001,573 | ---- | M] () -- C:\Dokumente und Einstellungen\All Users.WINDOWS\Desktop\IrfanView Thumbnails.lnk
[2009.08.18 10:11:50 | 00,000,693 | ---- | M] () -- C:\Dokumente und Einstellungen\All Users.WINDOWS\Desktop\IrfanView.lnk
[2009.08.18 10:11:47 | 00,000,701 | ---- | M] () -- C:\Dokumente und Einstellungen\Administrator.-MTDVD-\Desktop\WinRAR 3.80.lnk
[2009.08.18 10:10:57 | 00,000,811 | ---- | M] () -- C:\Dokumente und Einstellungen\All Users.WINDOWS\Desktop\Alcohol 120%.lnk
[2009.08.18 10:03:46 | 00,717,296 | ---- | M] () -- C:\WINDOWS\System32\drivers\sptd.sys
[2009.08.17 23:56:10 | 00,000,524 | ---- | M] () -- C:\Dokumente und Einstellungen\Administrator.-MTDVD-\Desktop\QIP 2005.lnk
[2009.08.17 23:48:46 | 00,000,592 | ---- | M] () -- C:\Dokumente und Einstellungen\Administrator.-MTDVD-\Desktop\Firefox.lnk
[2009.08.17 23:47:45 | 00,000,000 | ---- | M] () -- C:\WINDOWS\nsreg.dat
[2009.08.17 23:31:32 | 00,000,554 | ---- | M] () -- C:\Dokumente und Einstellungen\Administrator.-MTDVD-\Desktop\Total Commander.lnk
[2009.08.17 22:51:46 | 00,004,128 | ---- | M] () -- C:\WINDOWS\System32\drivers\UMDF\INFCACHE.1
[2009.08.17 22:51:46 | 00,004,128 | ---- | M] () -- C:\WINDOWS\System32\drivers\INFCACHE.1
[2009.08.17 22:51:46 | 00,004,128 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\INFCACHE.1
[2009.08.17 22:51:46 | 00,004,128 | ---- | M] () -- C:\WINDOWS\System32\drivers\disdn\INFCACHE.1
[2009.08.17 22:51:46 | 00,004,128 | ---- | M] () -- C:\WINDOWS\System32\dllcache\INFCACHE.1
[2009.08.17 22:49:52 | 00,004,444 | ---- | M] () -- C:\WINDOWS\System32\pid.PNF
[2009.08.17 22:49:32 | 00,000,231 | ---- | M] () -- C:\WINDOWS\system.ini
[2009.08.17 22:19:30 | 00,000,552 | ---- | M] () -- C:\WINDOWS\System32\d3d8caps.dat
[2009.08.17 22:11:39 | 00,008,192 | ---- | M] () -- C:\WINDOWS\REGLOCS.OLD
[2009.08.17 22:10:27 | 00,001,281 | ---- | M] () -- C:\WINDOWS\System32\$winnt$.inf
[2009.08.17 21:59:54 | 00,002,951 | ---- | M] () -- C:\WINDOWS\System32\CONFIG.NT
[2009.08.17 21:59:54 | 00,000,000 | ---- | M] () -- C:\WINDOWS\control.ini
[2009.08.17 21:58:42 | 00,004,161 | ---- | M] () -- C:\WINDOWS\ODBCINST.INI
[2009.08.17 21:58:37 | 00,000,488 | RH-- | M] () -- C:\WINDOWS\System32\WindowsLogon.manifest
[2009.08.17 21:58:37 | 00,000,488 | RH-- | M] () -- C:\WINDOWS\System32\logonui.exe.manifest
[2009.08.17 21:58:31 | 00,000,749 | RH-- | M] () -- C:\WINDOWS\WindowsShell.Manifest
[2009.08.17 21:58:31 | 00,000,749 | RH-- | M] () -- C:\WINDOWS\System32\wuaucpl.cpl.manifest
[2009.08.17 21:58:31 | 00,000,749 | RH-- | M] () -- C:\WINDOWS\System32\sapi.cpl.manifest
[2009.08.17 21:58:31 | 00,000,749 | RH-- | M] () -- C:\WINDOWS\System32\nwc.cpl.manifest
[2009.08.17 21:58:31 | 00,000,749 | RH-- | M] () -- C:\WINDOWS\System32\ncpa.cpl.manifest
[2009.08.17 21:58:31 | 00,000,749 | RH-- | M] () -- C:\WINDOWS\System32\cdplayer.exe.manifest
[2009.08.17 21:57:17 | 00,021,740 | ---- | M] () -- C:\WINDOWS\System32\emptyregdb.dat
[2009.08.17 21:57:04 | 00,000,037 | ---- | M] () -- C:\WINDOWS\vbaddin.ini
[2009.08.17 21:57:04 | 00,000,036 | ---- | M] () -- C:\WINDOWS\vb.ini
[2009.08.17 21:54:18 | 00,000,211 | -HS- | M] () -- C:\boot.ini
[2009.08.05 10:59:36 | 00,206,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mswebdvd.dll
[2009.08.05 10:59:36 | 00,206,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mswebdvd.dll
< End of report >

Das war die erste TXT.Datei xD

NagaraHyuga · 31.08.2009, 13:38

OTL Extras logfile created on: 31.8.2009 13:23:04 - Run 1
OTL by OldTimer - Version 3.0.10.7 Folder = H:\^^
Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 7.0.5730.13)
Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: d.M.yyyy

2,00 Gb Total Physical Memory | 1,61 Gb Available Physical Memory | 80,45% Memory free
3,85 Gb Paging File | 3,60 Gb Available in Paging File | 93,38% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Programme
Drive C: | 31,64 Gb Total Space | 4,12 Gb Free Space | 13,01% Space Free | Partition Type: NTFS
Drive D: | 111,77 Gb Total Space | 10,69 Gb Free Space | 9,57% Space Free | Partition Type: NTFS
Drive E: | 6,70 Gb Total Space | 1,53 Gb Free Space | 22,85% Space Free | Partition Type: NTFS
F: Drive not present or media not loaded
G: Drive not present or media not loaded
Drive H: | 992,17 Mb Total Space | 908,11 Mb Free Space | 91,53% Space Free | Partition Type: FAT32
I: Drive not present or media not loaded

Computer Name: -MTDVD-
Current User Name: Administrator
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: Current user
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Minimal

========== Extra Registry (SafeList) ==========

========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.html [@ = htmlfile] -- C:\Programme\Internet Explorer\IEXPLORE.EXE (Microsoft Corporation)
.js [@ = jsfile] -- Reg Error: Key error. File not found
.jse [@ = Reg Error: Key error.] -- Reg Error: Key error. File not found
.vbe [@ = Reg Error: Key error.] -- Reg Error: Key error. File not found
.vbs [@ = vbsfile] -- Reg Error: Key error. File not found
.wsf [@ = Reg Error: Key error.] -- Reg Error: Key error. File not found
.wsh [@ = Reg Error: Key error.] -- Reg Error: Key error. File not found

[HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- D:\Programme\Mozilla Firefox\firefox.exe (Mozilla Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"FirstRunDisabled" = 1
"AntiVirusDisableNotify" = 0
"FirewallDisableNotify" = 0
"UpdatesDisableNotify" = 0
"AntiVirusOverride" = 0
"FirewallOverride" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 0
"DoNotAllowExceptions" = 0
"DisableNotifications" = 0
"DisableUnicastResponsesToMulticastBroadcast" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DoNotAllowExceptions" = 0
"DisableNotifications" = 0
"DisableUnicastResponsesToMulticastBroadcast" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"5900:TCP" = 5900:TCP:*:Enabled:vnc5900
"5800:TCP" = 5800:TCP:*:Enabled:vnc5800

========== Authorized Applications List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
"%windir%\Network Diagnostic\xpnetdiag.exe" = %windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000 -- (Microsoft Corporation)
"%windir%\system32\sessmgr.exe" = %windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019 -- (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"%windir%\Network Diagnostic\xpnetdiag.exe" = %windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000 -- (Microsoft Corporation)
"%windir%\system32\sessmgr.exe" = %windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019 -- (Microsoft Corporation)
"D:\Programme\Gameforge4D\AirRivals_DE\Launcher.atm" = D:\Programme\Gameforge4D\AirRivals_DE\Launcher.atm:Enabled:GameExe2 -- ()
"D:\Programme\Gameforge4D\AirRivals_DE\Res-Voip\SCVoIP.exe" = D:\Programme\Gameforge4D\AirRivals_DE\Res-Voip\SCVoIP.exe:Enabled:GameVoIP -- (Masang Soft)
"C:\Programme\Java\jre1.6.0_06\bin\javaw.exe" = C:\Programme\Java\jre1.6.0_06\bin\javaw.exe:*:Enabled:Java(TM) Platform SE binary -- (Sun Microsystems, Inc.)
"C:\Programme\Vuze\Azureus.exe" = C:\Programme\Vuze\Azureus.exe:*:Enabled:Azureus -- File not found
"D:\prototype\DirectX\dplaysvr.exe" = D:\prototype\DirectX\dplaysvr.exe:*:Enabled:Microsoft DirectPlay Helper -- (Microsoft Corporation)
"D:\Programme\Activision\Prototype\prototypef.exe" = D:\Programme\Activision\Prototype\prototypef.exe:*:Enabled:Prototype(TM) -- (Activision)
"D:\Programme\QIP\qip.exe" = D:\Programme\QIP\qip.exe:*

isabled:Quiet Internet Pager -- (The Author of QIP)
"D:\Programme\ICQLite\ICQLite.exe" = D:\Programme\ICQLite\ICQLite.exe:*:Enabled:ICQ Lite -- (ICQ Ltd.)
"C:\WINDOWS\services.exe" = C:\WINDOWS\services.exe:*:Enabled:services -- File not found

========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{003C5074-EB37-4A75-AC4B-F5394E08B4DD}" = McAfee VirusScan Enterprise
"{211E8730-5681-49ED-BC6A-78C9F88E95F5}" = Adobe Shockwave Player
"{289338AE-2213-4509-AED2-450414C1260C}_is1" = ICQ Update Patch 1.5
"{2BA00471-0328-3743-93BD-FA813353A783}" = Microsoft .NET Framework 3.0 Service Pack 1
"{2FC099BD-AC9B-33EB-809C-D332E1B27C40}" = Microsoft .NET Framework 3.5
"{3248F0A8-6813-11D6-A77B-00B0D0160060}" = Java(TM) 6 Update 6
"{350C97B3-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{9309DD7E-EBFE-3C95-8B47-30D3A012F606}" = Microsoft .NET Framework 2.0 Service Pack 1 Language Pack - DEU
"{9322A850-9091-4D0E-B252-3E82EDA3D94A}" = Prototype(TM)
"{A1071AEB-B0EF-3F5F-BC84-83A270EBE496}" = Microsoft .NET Framework 3.0 Service Pack 1 Language Pack - DEU
"{AC76BA86-7AD7-1031-7B44-A90000000001}" = Adobe Reader 9 lite - Deutsch
"{B508B3F1-A24A-32C0-B310-85786919EF28}" = Microsoft .NET Framework 2.0 Service Pack 1
"{C950420B-4182-49EA-850A-A6A2ABF06C6B}" = Marvell Miniport Driver
"{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1
"{E78BFA60-5393-4C38-82AB-E8019E464EB4}" = Microsoft .NET Framework 1.1 German Language Pack
"{FB08F381-6533-4108-B7DD-039E11FBC27E}" = Realtek AC'97 Audio
"7-Zip" = 7-Zip 4.65
"aborange Crypter_is1" = aborange Crypter - Deinstallation
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"AirRivals_DE_is1" = AirRivals_DE 1.0.0.35
"ICQLite" = ICQ 5.1
"InstallShield_{9322A850-9091-4D0E-B252-3E82EDA3D94A}" = Prototype(TM)
"IrfanView" = IrfanView (remove only)
"kikin Plugin (JDownloader Edition)" = kikin Plugin (JDownloader Edition) 1.11
"Microsoft .NET Framework 1.1 (1033)" = Microsoft .NET Framework 1.1
"Microsoft .NET Framework 3.5" = Microsoft .NET Framework 3.5
"Mininova-Vuze Toolbar" = Mininova-Vuze Toolbar
"NVIDIA Drivers" = NVIDIA Drivers
"NVIDIA nView Desktop Manager" = NVIDIA nView Desktop Manager
"Nvu_is1" = Nvu 1.0
"Runtimes" = Allgemeine Runtime Dateien
"Teamspeak 2 RC2_is1" = TeamSpeak 2 RC2
"Totalcmd" = Total Commander (Remove or Repair)
"VLC media player" = VLC media player 1.0.1
"XpsEPSC" = XML Paper Specification Shared Components Pack 1.0
"XPSEPSCLP" = XML Paper Specification Shared Components Language Pack 1.0
"XPSP3UPPACK" = Sereby's XP SP3 Updatepack Version 3.8.6

========== HKEY_CURRENT_USER Uninstall List ==========

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"QIP 2005" = QIP 2005 8095

========== Last 10 Event Log Errors ==========

[ Application Events ]
Error - 28.8.2009 09:32:30 | Computer Name = -MTDVD- | Source = Application Error | ID = 1000
Description = Fehlgeschlagene Anwendung explorer.exe, Version 6.0.2900.5512, fehlgeschlagenes
Modul unknown, Version 0.0.0.0, Fehleradresse 0x02641490.

Error - 28.8.2009 09:58:08 | Computer Name = -MTDVD- | Source = Application Error | ID = 1000
Description = Fehlgeschlagene Anwendung explorer.exe, Version 6.0.2900.5512, fehlgeschlagenes
Modul unknown, Version 0.0.0.0, Fehleradresse 0x10001490.

Error - 28.8.2009 10:00:38 | Computer Name = -MTDVD- | Source = Application Error | ID = 1000
Description = Fehlgeschlagene Anwendung explorer.exe, Version 6.0.2900.5512, fehlgeschlagenes
Modul unknown, Version 0.0.0.0, Fehleradresse 0x10001490.

Error - 28.8.2009 10:04:04 | Computer Name = -MTDVD- | Source = Application Error | ID = 1000
Description = Fehlgeschlagene Anwendung explorer.exe, Version 6.0.2900.5512, fehlgeschlagenes
Modul unknown, Version 0.0.0.0, Fehleradresse 0x10001490.

Error - 28.8.2009 11:48:32 | Computer Name = -MTDVD- | Source = Application Error | ID = 1000
Description = Fehlgeschlagene Anwendung explorer.exe, Version 6.0.2900.5512, fehlgeschlagenes
Modul unknown, Version 0.0.0.0, Fehleradresse 0x10001490.

Error - 28.8.2009 13:17:21 | Computer Name = -MTDVD- | Source = Application Hang | ID = 1002
Description = Stillstehende Anwendung th.exe, Version 0.0.0.0, Stillstandmodul hungapp,
Version 0.0.0.0, Stillstandadresse 0x00000000.

Error - 28.8.2009 13:20:12 | Computer Name = -MTDVD- | Source = Application Error | ID = 1000
Description = Fehlgeschlagene Anwendung explorer.exe, Version 6.0.2900.5512, fehlgeschlagenes
Modul unknown, Version 0.0.0.0, Fehleradresse 0x10001490.

Error - 28.8.2009 13:22:27 | Computer Name = -MTDVD- | Source = Application Error | ID = 1000
Description = Fehlgeschlagene Anwendung explorer.exe, Version 6.0.2900.5512, fehlgeschlagenes
Modul unknown, Version 0.0.0.0, Fehleradresse 0x10001490.

Error - 28.8.2009 16:44:05 | Computer Name = -MTDVD- | Source = Application Error | ID = 1000
Description = Fehlgeschlagene Anwendung explorer.exe, Version 6.0.2900.5512, fehlgeschlagenes
Modul unknown, Version 0.0.0.0, Fehleradresse 0x10001490.

Error - 29.8.2009 13:11:36 | Computer Name = -MTDVD- | Source = Application Error | ID = 1000
Description = Fehlgeschlagene Anwendung explorer.exe, Version 6.0.2900.5512, fehlgeschlagenes
Modul unknown, Version 0.0.0.0, Fehleradresse 0x10001490.

[ System Events ]
Error - 18.8.2009 04:20:58 | Computer Name = -MTDVD- | Source = Cdrom | ID = 262151
Description = Fehlerhafter Block bei Gerät \Device\CdRom0.

Error - 18.8.2009 04:21:05 | Computer Name = -MTDVD- | Source = Cdrom | ID = 262151
Description = Fehlerhafter Block bei Gerät \Device\CdRom0.

Error - 18.8.2009 04:21:12 | Computer Name = -MTDVD- | Source = Cdrom | ID = 262151
Description = Fehlerhafter Block bei Gerät \Device\CdRom0.

Error - 18.8.2009 04:21:19 | Computer Name = -MTDVD- | Source = Cdrom | ID = 262151
Description = Fehlerhafter Block bei Gerät \Device\CdRom0.

Error - 18.8.2009 04:21:26 | Computer Name = -MTDVD- | Source = Cdrom | ID = 262151
Description = Fehlerhafter Block bei Gerät \Device\CdRom0.

Error - 18.8.2009 04:21:33 | Computer Name = -MTDVD- | Source = Cdrom | ID = 262151
Description = Fehlerhafter Block bei Gerät \Device\CdRom0.

Error - 18.8.2009 04:21:41 | Computer Name = -MTDVD- | Source = Cdrom | ID = 262151
Description = Fehlerhafter Block bei Gerät \Device\CdRom0.

Error - 18.8.2009 04:21:48 | Computer Name = -MTDVD- | Source = Cdrom | ID = 262151
Description = Fehlerhafter Block bei Gerät \Device\CdRom0.

Error - 22.8.2009 09:49:55 | Computer Name = -MTDVD- | Source = Dhcp | ID = 1002
Description = Die IP-Adresslease 1*3.1*8.***.2 für die Netzwerkkarte mit der Netzwerkadresse
0011D83C020F wurde durch den DHCP-Server 1*3.1*8.***.2 abgelehnt (der DHCP-Server
hat eine DHCPNACK-Meldung gesendet).

Error - 27.8.2009 14:33:56 | Computer Name = -MTDVD- | Source = Tcpip | ID = 4199
Description = Das System hat einen Adressenkonflikt der IP-Adresse 1*3.1*8.***.2 mit
dem Computer mit der Netzwerkhardwareadresse 00:11

8:0E:A0:5C ermittelt. Netzwerkvorgänge
könnten daher auf diesem System unterbrochen werden.

< End of report >

NagaraHyuga · 31.08.2009, 13:41

So das waren die Dateien!!!Kann ich jetzt eigentlich wieder das Internetkabel anschließen??Denn es geht ja seit dem Programm meine suche, taskmanager und so wieder!!!

MFG
NagaraHyuga

myrtille · 31.08.2009, 23:27

Hi,

Ich würde davon abraten, da wir bisher eigentlich noch ncihts entfernt haben. Es sieht allerdings auch nicht so aus als ob du bisher viele Daten verloren hast:

Drive C: | 31,64 Gb Total Space | 4,12 Gb Free Space | 13,01% Space Free | Partition Type: NTFS
Drive D: | 111,77 Gb Total Space | 10,69 Gb Free Space | 9,57% Space Free | Partition Type: NTFS
Drive E: | 6,70 Gb Total Space | 1,53 Gb Free Space | 22,85% Space Free | Partition Type: NTFS

Was macht dich so sicher, dass alle vorhandenen Dateien gelöscht werden?

Hast du Malwarebytes laufen lassen, wenn ja, poste bitte den Bericht hier.

Versuche bitte statt rootrepeal GMER laufen zu lassen.

lg myrtille

Trojaner (Virus) löscht alles wenn Internetverbindung besteht

Plagegeister aller Art und deren Bekämpfung: Trojaner (Virus) löscht alles wenn Internetverbindung besteht