| |
| |||||||
Log-Analyse und Auswertung: Internet Explorer öffnet sich immer + WerbungWindows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML. |
 |
| |
12.10.2009, 03:23
| #1 | ||
 |  Internet Explorer öffnet sich immer + Werbung Hallo Community, ich habe seit vorgestern folgendes Problem... Bestimmt 2 Mal in der Stunde öffnet sich mein internet explorer ein paar mal und zeigt mir irgendwelche Webseiten an (meist Werbung enthalten!) Hab Bitdefender 2010 auf meinem PC als Antivirus Programm. Bisher noch nichts gefunden,dass dieses Problem lösen könnte. Hatte bis vor ner Woche noch Windows 7 drauf. Aufgrundessen,dass ich neue Recovery Disks bekommen habe,hab ich mir direkt wieder Vista aufgespielt und nun.. joa  habe keine Lust wieder zu formatieren. )= hoffe ihr könnt mir helfen.. hier ebend meine HijackThis Auswertung... Zitat:
Zitat:
Danke schonmal im Vorraus. Mit freundlichen Grüßen |
|
12.10.2009, 08:11
| #2 |
  |  Internet Explorer öffnet sich immer + Werbung Hallo
__________________ Bitte als Vista 64 bit Nutzer alle folgenden Programme per Rechtsklick -> Ausführen als Administrator starten: Die schnellste und sicherste Methode ist das Neuaufsetzen wenn Du jedoch doch bereinigen möchtest geht es hier entlang: 1. Malwarebytes - Lasse Malwarebytes laufen, wenn die Setup NICHT starten möchte benenn es um zu blubb.exe. Wenn es durch ist per Vollständiger Scan bitte das Log posten. 2. Superantispyware - Lasse SUPERAntiSpyware laufen, poste danach alle Funde. 3. Avira Antivir in den Einstellungen nochmal "Rennen" lassen: Agressive Einstellungen von Avira AntiVir Log von dem Avira Scan. 4. http://www.trojaner-board.de/74908-a...t-scanner.html bitte ebenfalls laufen lassen, Log hier her. 5. http://www.trojaner-board.de/74910-a...tion-tool.html Logs posten (Beide Logfiles bitte hier herein posten).
__________________ |
|
13.10.2009, 00:08
| #3 | |
| | Internet Explorer öffnet sich immer + WerbungZitat:
SuperSpyware hat 147 Funde aber alle entfernt..hab keine Ahnung wo die Log ist. Habe kein Antivir drauf sondern Bitdenfener. Log: nichts gefunden? |
|
13.10.2009, 00:11
| #4 |
| | Internet Explorer öffnet sich immer + Werbung [CODE]Logfile of random's system information tool 1.06 (written by random/random) Run by takedown at 2009-10-13 01:04:13 Microsoft® Windows Vista™ Home Premium Service Pack 2 System drive C: has 780 GB (83%) free of 939 GB Total RAM: 4094 MB (60% free) Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 01:04:14, on 13.10.2009 Platform: Windows Vista SP2 (WinNT 6.00.1906) MSIE: Internet Explorer v8.00 (8.00.6001.18813) Boot mode: Normal Running processes: C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAAnotif.exe C:\Program Files (x86)\QIP 2005 psYNovA-Edition\qip.exe C:\Program Files (x86)\FirefoxPreloader\FirefoxPreloader.exe C:\Program Files (x86)\Java\jre6\bin\jusched.exe C:\Program Files\Logitech\Logitech WebCam Software\LWS.exe C:\Program Files (x86)\iTunes\iTunesHelper.exe C:\Program Files (x86)\Common Files\Logishrd\LQCVFX\COCIManager.exe C:\Windows\SysWOW64\conime.exe C:\Program Files (x86)\Mozilla Firefox\firefox.exe C:\Users\takedown\Desktop\RSIT.exe C:\Program Files (x86)\Trend Micro\HijackThis\takedown.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.com R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157 R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = O1 - Hosts: ::1 localhost O2 - BHO: Windows Live Anmelde-Hilfsprogramm - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll O3 - Toolbar: BitDefender Toolbar - {381FFDE8-2394-4f90-B10D-FC6124A40F8C} - "C:\Program Files\BitDefender\BitDefender 2010\Antispam32\IEToolbar.dll" (file missing) O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Java\jre6\bin\jusched.exe" O4 - HKLM\..\Run: [LogitechQuickCamRibbon] "C:\Program Files\Logitech\Logitech WebCam Software\LWS.exe" /hide O4 - HKLM\..\Run: [WinampAgent] "C:\Program Files (x86)\Winamp\winampa.exe" O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe" O4 - HKLM\..\Run: [UnlockerAssistant] "C:\Program Files (x86)\Unlocker\UnlockerAssistant.exe" O4 - HKLM\..\Run: [ Malwarebytes Anti-Malware (reboot)] "C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe" /runcleanupscript O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun O4 - HKCU\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter O4 - HKCU\..\Run: [Logitech Vid] "C:\Program Files (x86)\Logitech\Logitech Vid\vid.exe" -bootmode O4 - HKCU\..\Run: [Steam] "c:\program files (x86)\steam\steam.exe" -silent O4 - HKCU\..\Run: [SystemUp HARDDISK GUARD] "C:\Program Files (x86)\zoneLINK\SystemUp 2009\Harddisk\hdtray.exe" O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files (x86)\Windows Media Player\WMPNSCFG.exe O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe O4 - HKCU\..\Run: [SUPERAntiSpyware] C:\Program Files (x86)\SUPERAntiSpyware\SUPERAntiSpyware.exe O4 - HKCU\..\Run: [QIP2005] C:\Program Files (x86)\QIP 2005 psYNovA-Edition\qip.exe O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOKALER DIENST') O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOKALER DIENST') O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETZWERKDIENST') O4 - Startup: Seesmic Desktop.lnk = C:\Program Files (x86)\Seesmic Desktop\Seesmic Desktop.exe O4 - Global Startup: Firefox Preloader.lnk = C:\Program Files (x86)\FirefoxPreloader\FirefoxPreloader.exe O9 - Extra button: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files (x86)\ICQ6.5\ICQ.exe O9 - Extra 'Tools' menuitem: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files (x86)\ICQ6.5\ICQ.exe O13 - Gopher Prefix: O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab O20 - Winlogon Notify: !SASWinLogon - C:\Program Files (x86)\SUPERAntiSpyware\SASWINLO.dll O23 - Service: a-squared Free Service (a2free) - Emsi Software GmbH - C:\Program Files (x86)\a-squared Free\a2service.exe O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing) O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing) O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe O23 - Service: BitDefender Arrakis Server (Arrakis3) - BitDefender S.R.L. http://www.bitdefender.com - C:\Program Files\Common Files\BitDefender\BitDefender Arrakis Server\bin\arrakis3.exe O23 - Service: ASP.NET-Zustandsdienst (aspnet_state) - Unknown owner - C:\Windows\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe (file missing) O23 - Service: Bonjour-Dienst (Bonjour Service) - Apple Inc. - C:\Program Files (x86)\Bonjour\mDNSResponder.exe O23 - Service: @dfsrres.dll,-101 (DFSR) - Unknown owner - C:\Windows\system32\DFSR.exe (file missing) O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTMon.exe O23 - Service: iPod-Dienst (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: BitDefender Desktop Update Service (LIVESRV) - BitDefender S.R.L. - C:\Program Files\Common Files\BitDefender\BitDefender Update Service\livesrv.exe O23 - Service: Process Monitor (LVPrcS64) - Logitech Inc. - C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing) O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing) O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\SLsvc.exe,-101 (slsvc) - Unknown owner - C:\Windows\system32\SLsvc.exe (file missing) O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing) O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing) O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe O23 - Service: SystemUp HardDisk Service (SysUpHDService) - zoneLink - C:\Program Files (x86)\Common Files\SystemUp Harddisk\hdservice.exe O23 - Service: @%SystemRoot%\System32\TuneUpDefragService.exe,-1 (TuneUp.Defrag) - Unknown owner - C:\Windows\System32\TuneUpDefragService.exe (file missing) O23 - Service: @%SystemRoot%\System32\TUProgSt.exe,-1 (TuneUp.ProgramStatisticsSvc) - Unknown owner - C:\Windows\System32\TUProgSt.exe (file missing) O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing) O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing) O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing) O23 - Service: BitDefender Virus Shield (VSSERV) - BitDefender S.R.L. - C:\Program Files\BitDefender\BitDefender 2010\vsserv.exe O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing) O23 - Service: @%ProgramFiles%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing) -- End of file - 9022 bytes ======Scheduled tasks folder====== C:\Windows\tasks\1-Klick-Wartung.job C:\Windows\tasks\User_Feed_Synchronization-{A09EDBE1-C9EA-4417-BF7A-30CB8E6826C2}.job ======Registry dump====== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}] Windows Live Anmelde-Hilfsprogramm - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-01-22 408448] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}] Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll [2009-10-06 41760] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar] {381FFDE8-2394-4f90-B10D-FC6124A40F8C} - BitDefender Toolbar - C:\Program Files\BitDefender\BitDefender 2010\Antispam32\IEToolbar.dll [2009-10-11 128832] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run] "SunJavaUpdateSched"=C:\Program Files (x86)\Java\jre6\bin\jusched.exe [2009-10-06 149280] "LogitechQuickCamRibbon"=C:\Program Files\Logitech\Logitech WebCam Software\LWS.exe [2009-05-08 2780432] "WinampAgent"=C:\Program Files (x86)\Winamp\winampa.exe [2009-07-01 37888] "StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2009-08-13 98304] "QuickTime Task"=C:\Program Files (x86)\QuickTime\QTTask.exe [2009-09-05 417792] "iTunesHelper"=C:\Program Files (x86)\iTunes\iTunesHelper.exe [2009-09-21 305440] "UnlockerAssistant"=C:\Program Files (x86)\Unlocker\UnlockerAssistant.exe [] " Malwarebytes Anti-Malware (reboot)"=C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe [2009-09-10 1312080] [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2009-04-11 1555968] "WindowsWelcomeCenter"=oobefldr.dll,ShowWelcomeCenter [] "Logitech Vid"=C:\Program Files (x86)\Logitech\Logitech Vid\vid.exe [2009-06-02 5451536] "Steam"=c:\program files (x86)\steam\steam.exe [2009-10-07 1217784] "SystemUp HARDDISK GUARD"=C:\Program Files (x86)\zoneLINK\SystemUp 2009\Harddisk\hdtray.exe [2009-06-03 1723272] "WMPNSCFG"=C:\Program Files (x86)\Windows Media Player\WMPNSCFG.exe [] "ehTray.exe"=C:\Windows\ehome\ehTray.exe [2008-01-21 138240] "SUPERAntiSpyware"=C:\Program Files (x86)\SUPERAntiSpyware\SUPERAntiSpyware.exe [2009-09-15 1998576] "QIP2005"=C:\Program Files (x86)\QIP 2005 psYNovA-Edition\qip.exe [2009-08-13 3276288] C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup Firefox Preloader.lnk - C:\Program Files (x86)\FirefoxPreloader\FirefoxPreloader.exe C:\Users\takedown\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup Seesmic Desktop.lnk - C:\Program Files (x86)\Seesmic Desktop\Seesmic Desktop.exe [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\!SASWinLogon] C:\Program Files (x86)\SUPERAntiSpyware\SASWINLO.dll [2009-09-03 548352] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks] "{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA}"=C:\Program Files (x86)\SUPERAntiSpyware\SASSEH.DLL [2008-05-13 77824] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfPf] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfRd] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfSvc] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfUsbccidDriver] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System] "EnableLUA"=0 "dontdisplaylastusername"=0 "legalnoticecaption"= "legalnoticetext"= "shutdownwithoutlogon"=1 "undockwithoutlogon"=1 "EnableUIADesktopToggle"=0 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer] "NoActiveDesktop"= "ForceActiveDesktopOn"= "BindDirectlyToPropertySetStorage"= "NoActiveDesktopChanges"= [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list] [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list] ======File associations====== .js - edit - C:\Windows\SysWOW64\Notepad.exe %1 .js - open - C:\Windows\SysWOW64\WScript.exe "%1" %* |
|
13.10.2009, 00:13
| #5 |
| | Internet Explorer öffnet sich immer + Werbung [CODE]======List of files/folders created in the last 1 months====== 2009-10-13 01:04:13 ----D---- C:\rsit 2009-10-12 18:17:42 ----D---- C:\ProgramData\SUPERAntiSpyware.com 2009-10-12 18:17:34 ----D---- C:\Users\takedown\AppData\Roaming\SUPERAntiSpyware.com 2009-10-12 18:17:34 ----D---- C:\Program Files (x86)\SUPERAntiSpyware 2009-10-12 18:16:55 ----D---- C:\Program Files (x86)\Common Files\Wise Installation Wizard 2009-10-12 18:07:21 ----D---- C:\Users\takedown\AppData\Roaming\Malwarebytes 2009-10-12 18:07:15 ----D---- C:\ProgramData\Malwarebytes 2009-10-12 18:07:15 ----D---- C:\Program Files (x86)\Malwarebytes' Anti-Malware 2009-10-12 05:27:33 ----D---- C:\Program Files (x86)\a-squared Free 2009-10-12 04:57:10 ----D---- C:\Users\takedown\AppData\Roaming\UseNeXT 2009-10-12 04:57:08 ----D---- C:\Program Files (x86)\UseNeXT 2009-10-12 04:13:33 ----D---- C:\Program Files (x86)\Trend Micro 2009-10-11 18:00:52 ----D---- C:\Users\takedown\AppData\Roaming\Desktopicon 2009-10-11 18:00:51 ----D---- C:\Program Files (x86)\Unlocker 2009-10-11 14:27:56 ----A---- C:\Windows\ntbtlog.txt 2009-10-11 14:23:28 ----D---- C:\Users\takedown\AppData\Roaming\BitDefender 2009-10-11 14:22:52 ----D---- C:\ProgramData\BitDefender 2009-10-11 14:13:09 ----D---- C:\Program Files (x86)\Common Files\BitDefender 2009-10-11 14:01:28 ----D---- C:\Windows\system32\URTTEMP 2009-10-11 00:51:43 ----D---- C:\Windows\Sun 2009-10-10 20:31:14 ----D---- C:\Users\takedown\AppData\Roaming\Sincell 2009-10-10 20:30:44 ----D---- C:\ProgramData\Sincell 2009-10-10 15:46:42 ----A---- C:\Windows\system32\uxtuneup.dll 2009-10-10 15:46:42 ----A---- C:\Windows\system32\authuitu.dll 2009-10-10 15:43:35 ----D---- C:\Users\takedown\AppData\Roaming\TuneUp Software 2009-10-10 15:43:21 ----D---- C:\ProgramData\TuneUp Software 2009-10-10 15:43:21 ----D---- C:\Program Files (x86)\TuneUp Utilities 2009 2009-10-10 15:43:07 ----SHD---- C:\ProgramData\{55A29068-F2CE-456C-9148-C869879E2357} 2009-10-10 15:25:58 ----D---- C:\Users\takedown\AppData\Roaming\FileZilla 2009-10-10 15:25:49 ----D---- C:\Program Files (x86)\FileZilla FTP Client 2009-10-10 15:20:42 ----A---- C:\Windows\system32\commdlg.dll 2009-10-09 20:19:56 ----D---- C:\Users\takedown\AppData\Roaming\ICQ 2009-10-09 20:19:29 ----D---- C:\Program Files (x86)\ICQ6.5 2009-10-09 00:00:18 ----D---- C:\ProgramData\IsolatedStorage 2009-10-08 23:27:04 ----D---- C:\Users\takedown\AppData\Roaming\vlc 2009-10-08 02:54:18 ----A---- C:\Windows\system32\XAudio2_5.dll 2009-10-08 02:54:18 ----A---- C:\Windows\system32\xactengine3_5.dll 2009-10-08 02:54:17 ----A---- C:\Windows\system32\d3dx11_42.dll 2009-10-08 02:54:17 ----A---- C:\Windows\system32\d3dcsx_42.dll 2009-10-08 02:54:17 ----A---- C:\Windows\system32\D3DCompiler_42.dll 2009-10-08 02:54:16 ----A---- C:\Windows\system32\D3DX9_42.dll 2009-10-08 02:54:16 ----A---- C:\Windows\system32\d3dx10_42.dll 2009-10-08 02:54:13 ----A---- C:\Windows\system32\XAPOFX1_3.dll 2009-10-08 02:54:10 ----A---- C:\Windows\system32\XAudio2_3.dll 2009-10-08 02:54:10 ----A---- C:\Windows\system32\XAPOFX1_2.dll 2009-10-08 02:54:09 ----A---- C:\Windows\system32\xactengine3_3.dll 2009-10-08 02:54:09 ----A---- C:\Windows\system32\X3DAudio1_5.dll 2009-10-08 02:54:08 ----A---- C:\Windows\system32\XAudio2_2.dll 2009-10-08 02:54:08 ----A---- C:\Windows\system32\XAPOFX1_1.dll 2009-10-08 02:54:08 ----A---- C:\Windows\system32\xactengine3_2.dll 2009-10-07 22:09:23 ----A---- C:\Windows\system32\d3dx10_41.dll 2009-10-07 22:09:23 ----A---- C:\Windows\system32\D3DCompiler_41.dll 2009-10-07 22:09:20 ----A---- C:\Windows\system32\D3DX9_41.dll 2009-10-07 22:09:16 ----A---- C:\Windows\system32\XAudio2_4.dll 2009-10-07 22:09:13 ----A---- C:\Windows\system32\xactengine3_4.dll 2009-10-07 22:09:11 ----A---- C:\Windows\system32\X3DAudio1_6.dll 2009-10-07 22:09:09 ----A---- C:\Windows\system32\d3dx10_40.dll 2009-10-07 22:09:09 ----A---- C:\Windows\system32\D3DCompiler_40.dll 2009-10-07 22:09:05 ----A---- C:\Windows\system32\D3DX9_40.dll 2009-10-07 22:08:50 ----A---- C:\Windows\system32\D3DCompiler_39.dll 2009-10-07 22:08:49 ----A---- C:\Windows\system32\d3dx10_39.dll 2009-10-07 22:08:47 ----A---- C:\Windows\system32\D3DX9_39.dll 2009-10-07 22:08:43 ----A---- C:\Windows\system32\XAudio2_1.dll 2009-10-07 22:08:43 ----A---- C:\Windows\system32\XAPOFX1_0.dll 2009-10-07 22:08:41 ----A---- C:\Windows\system32\xactengine3_1.dll 2009-10-07 22:08:40 ----A---- C:\Windows\system32\X3DAudio1_4.dll 2009-10-07 22:08:38 ----A---- C:\Windows\system32\d3dx10_38.dll 2009-10-07 22:08:38 ----A---- C:\Windows\system32\D3DCompiler_38.dll 2009-10-07 22:08:36 ----A---- C:\Windows\system32\D3DX9_38.dll 2009-10-07 22:08:34 ----A---- C:\Windows\system32\XAudio2_0.dll 2009-10-07 22:08:32 ----A---- C:\Windows\system32\xactengine3_0.dll 2009-10-07 22:08:31 ----A---- C:\Windows\system32\X3DAudio1_3.dll 2009-10-07 22:08:22 ----A---- C:\Windows\system32\xactengine2_10.dll 2009-10-07 22:08:19 ----A---- C:\Windows\system32\d3dx10_36.dll 2009-10-07 22:08:19 ----A---- C:\Windows\system32\D3DCompiler_36.dll 2009-10-07 22:08:17 ----A---- C:\Windows\system32\d3dx9_36.dll 2009-10-07 22:08:16 ----A---- C:\Windows\system32\xactengine2_9.dll 2009-10-07 22:08:14 ----A---- C:\Windows\system32\d3dx10_35.dll 2009-10-07 22:08:14 ----A---- C:\Windows\system32\D3DCompiler_35.dll 2009-10-07 22:08:12 ----A---- C:\Windows\system32\d3dx9_35.dll 2009-10-07 22:08:05 ----A---- C:\Windows\system32\xactengine2_8.dll 2009-10-07 22:08:04 ----A---- C:\Windows\system32\X3DAudio1_2.dll 2009-10-07 22:08:01 ----A---- C:\Windows\system32\d3dx10_34.dll 2009-10-07 22:08:01 ----A---- C:\Windows\system32\D3DCompiler_34.dll 2009-10-07 22:07:58 ----A---- C:\Windows\system32\d3dx9_34.dll 2009-10-07 22:07:54 ----A---- C:\Windows\system32\xactengine2_7.dll 2009-10-07 22:07:52 ----A---- C:\Windows\system32\d3dx10_33.dll 2009-10-07 22:07:52 ----A---- C:\Windows\system32\D3DCompiler_33.dll 2009-10-07 22:07:50 ----A---- C:\Windows\system32\d3dx9_33.dll 2009-10-07 22:07:45 ----A---- C:\Windows\system32\xactengine2_6.dll 2009-10-07 22:07:40 ----A---- C:\Windows\system32\xactengine2_5.dll 2009-10-07 22:07:39 ----A---- C:\Windows\system32\d3dx10.dll 2009-10-07 22:07:31 ----A---- C:\Windows\system32\d3dx9_32.dll 2009-10-07 22:07:26 ----A---- C:\Windows\system32\xactengine2_4.dll 2009-10-07 22:07:26 ----A---- C:\Windows\system32\x3daudio1_1.dll 2009-10-07 22:07:20 ----A---- C:\Windows\system32\d3dx9_31.dll 2009-10-07 22:07:16 ----A---- C:\Windows\system32\xactengine2_3.dll 2009-10-07 22:07:14 ----A---- C:\Windows\system32\xinput1_2.dll 2009-10-07 22:07:11 ----A---- C:\Windows\system32\xactengine2_2.dll 2009-10-07 22:07:08 ----A---- C:\Windows\system32\xinput1_1.dll 2009-10-07 22:07:04 ----A---- C:\Windows\system32\xactengine2_1.dll 2009-10-07 22:06:37 ----A---- C:\Windows\system32\d3dx9_30.dll 2009-10-07 22:06:27 ----A---- C:\Windows\system32\xactengine2_0.dll 2009-10-07 22:06:27 ----A---- C:\Windows\system32\x3daudio1_0.dll 2009-10-07 22:06:24 ----A---- C:\Windows\system32\d3dx9_29.dll 2009-10-07 22:06:17 ----A---- C:\Windows\system32\d3dx9_28.dll 2009-10-07 22:06:11 ----A---- C:\Windows\system32\d3dx9_27.dll 2009-10-07 22:06:08 ----A---- C:\Windows\system32\d3dx9_26.dll 2009-10-07 22:06:06 ----A---- C:\Windows\system32\d3dx9_25.dll 2009-10-07 22:05:47 ----A---- C:\Windows\system32\d3dx9_24.dll 2009-10-07 22:04:13 ----D---- C:\Program Files (x86)\CAPCOM 2009-10-07 22:03:19 ----A---- C:\Windows\system32\D3DX9_37.dll 2009-10-07 22:03:19 ----A---- C:\Windows\system32\d3dx10_37.dll 2009-10-07 22:03:19 ----A---- C:\Windows\system32\D3DCompiler_37.dll 2009-10-07 22:03:18 ----A---- C:\Windows\system32\xinput1_3.dll 2009-10-07 22:02:37 ----D---- C:\Windows\system32\xlive 2009-10-07 22:02:37 ----D---- C:\Program Files (x86)\Microsoft Games for Windows - LIVE 2009-10-07 20:27:21 ----D---- C:\Users\takedown\AppData\Roaming\com.seesmic.desktop.client.D89F32799270693BEF34AAA36E9B2632B59240FA.1 2009-10-07 20:27:21 ----D---- C:\ProgramData\Adobe 2009-10-07 20:27:19 ----D---- C:\Program Files (x86)\Seesmic Desktop 2009-10-07 20:27:17 ----D---- C:\Program Files (x86)\Common Files\Adobe AIR 2009-10-07 18:11:08 ----D---- C:\Windows\system32\Samsung_USB_Drivers 2009-10-07 18:11:04 ----D---- C:\Program Files (x86)\Samsung 2009-10-07 05:49:15 ----D---- C:\Users\takedown\AppData\Roaming\WinRAR 2009-10-07 05:18:47 ----D---- C:\Windows\pss 2009-10-07 05:12:53 ----A---- C:\Windows\RtlExUpd.dll 2009-10-07 05:12:49 ----D---- C:\Program Files (x86)\Common Files\InstallShield 2009-10-07 05:08:14 ----A---- C:\Windows\DIFxAPI.dll 2009-10-07 05:08:02 ----HD---- C:\Program Files (x86)\Temp 2009-10-07 05:04:34 ----A---- C:\Windows\system32\difxapi.dll 2009-10-07 05:02:27 ----D---- C:\Program Files (x86)\Realtek 2009-10-07 05:01:35 ----D---- C:\ProgramData\Ralink 2009-10-07 05:01:00 ----D---- C:\ProgramData\Ralink Driver 2009-10-07 05:00:57 ----A---- C:\Windows\system32\RAIHV.dll 2009-10-07 05:00:57 ----A---- C:\Windows\system32\RAEXTUI.dll 2009-10-07 05:00:56 ----D---- C:\Program Files (x86)\Ralink 2009-10-07 05:00:56 ----A---- C:\Windows\system32\RaCertMgr.dll 2009-10-07 04:57:22 ----D---- C:\ProgramData\InstallShield 2009-10-07 04:52:23 ----D---- C:\Program Files (x86)\Driver-Soft 2009-10-07 03:23:50 ----D---- C:\Windows\PCHEALTH 2009-10-07 03:10:51 ----D---- C:\Program Files (x86)\MSXML 4.0 2009-10-07 03:10:40 ----SD---- C:\Windows\system32\Microsoft 2009-10-07 03:07:29 ----HD---- C:\Config.Msi 2009-10-07 01:52:46 ----D---- C:\Program Files (x86)\FirefoxPreloader 2009-10-07 01:52:46 ----A---- C:\Windows\system32\regclass.dll 2009-10-07 01:48:10 ----D---- C:\Program Files (x86)\Microsoft Silverlight 2009-10-07 01:47:53 ----D---- C:\Program Files (x86)\Microsoft CAPICOM 2.1.0.2 2009-10-07 01:37:52 ----A---- C:\Windows\system32\PerfStringBackup.INI 2009-10-07 01:28:59 ----A---- C:\Windows\system32\PresentationHostProxy.dll 2009-10-07 01:28:59 ----A---- C:\Windows\system32\mscoree.dll 2009-10-07 01:28:59 ----A---- C:\Windows\system32\dfshim.dll 2009-10-07 01:28:58 ----A---- C:\Windows\system32\PresentationHost.exe 2009-10-07 01:28:51 ----D---- C:\ProgramData\Last.fm 2009-10-07 01:28:29 ----D---- C:\Program Files (x86)\Last.fm 2009-10-07 01:21:00 ----D---- C:\Users\takedown\AppData\Roaming\ATI 2009-10-07 01:21:00 ----D---- C:\ProgramData\ATI 2009-10-07 01:13:37 ----D---- C:\Users\takedown\AppData\Roaming\Apple Computer 2009-10-07 01:13:22 ----A---- C:\Windows\system32\GEARAspi.dll 2009-10-07 01:12:53 ----D---- C:\ProgramData\{0DD0EEEE-2A7C-411C-9243-1AE62F445FC3} 2009-10-07 01:12:53 ----D---- C:\Program Files (x86)\iTunes 2009-10-07 01:10:50 ----D---- C:\Program Files (x86)\Bonjour 2009-10-07 01:10:05 ----D---- C:\Program Files (x86)\Razer 2009-10-07 01:10:04 ----HD---- C:\Program Files (x86)\InstallShield Installation Information 2009-10-07 01:09:43 ----D---- C:\Program Files (x86)\QuickTime 2009-10-07 01:09:42 ----D---- C:\ProgramData\Apple Computer 2009-10-07 01:08:34 ----D---- C:\Program Files (x86)\Apple Software Update 2009-10-07 01:05:30 ----D---- C:\ProgramData\Apple 2009-10-07 01:05:30 ----D---- C:\Program Files (x86)\Common Files\Apple 2009-10-07 00:46:43 ----D---- C:\Program Files (x86)\Microsoft 2009-10-07 00:46:17 ----D---- C:\Program Files (x86)\Windows Live SkyDrive 2009-10-07 00:46:01 ----D---- C:\Program Files (x86)\Windows Live 2009-10-07 00:43:50 ----D---- C:\Program Files (x86)\T4E 2009-10-07 00:42:21 ----D---- C:\Program Files (x86)\Common Files\Windows Live 2009-10-07 00:40:20 ----D---- C:\Program Files (x86)\SpeedFan 2009-10-07 00:34:46 ----D---- C:\Program Files (x86)\zoneLINK 2009-10-07 00:34:46 ----D---- C:\Program Files (x86)\Common Files\SystemUp Harddisk 2009-10-07 00:33:36 ----D---- C:\Program Files (x86)\ATI Technologies 2009-10-07 00:31:59 ----D---- C:\ATI 2009-10-07 00:30:10 ----D---- C:\Program Files (x86)\Common Files\PX Storage Engine 2009-10-07 00:30:09 ----D---- C:\Users\takedown\AppData\Roaming\Winamp 2009-10-07 00:30:09 ----D---- C:\Program Files (x86)\Winamp 2009-10-07 00:29:44 ----D---- C:\Users\takedown\AppData\Roaming\teamspeak2 2009-10-07 00:29:38 ----D---- C:\Program Files (x86)\Teamspeak2_RC2 2009-10-07 00:29:09 ----A---- C:\Windows\system32\jscript.dll 2009-10-07 00:29:07 ----D---- C:\Program Files (x86)\VideoLAN 2009-10-07 00:14:04 ----D---- C:\Program Files (x86)\QIP 2005 psYNovA-Edition 2009-10-07 00:13:45 ----A---- C:\Windows\system32\occache.dll 2009-10-07 00:13:45 ----A---- C:\Windows\system32\jsproxy.dll 2009-10-07 00:13:45 ----A---- C:\Windows\system32\iepeers.dll 2009-10-07 00:13:44 ----A---- C:\Windows\system32\wininet.dll 2009-10-07 00:13:44 ----A---- C:\Windows\system32\msfeedsbs.dll 2009-10-07 00:13:44 ----A---- C:\Windows\system32\msfeeds.dll 2009-10-07 00:13:44 ----A---- C:\Windows\system32\ieui.dll 2009-10-07 00:13:44 ----A---- C:\Windows\system32\iernonce.dll 2009-10-07 00:13:43 ----A---- C:\Windows\system32\urlmon.dll 2009-10-07 00:13:43 ----A---- C:\Windows\system32\msfeedssync.exe 2009-10-07 00:13:43 ----A---- C:\Windows\system32\iesetup.dll 2009-10-07 00:13:43 ----A---- C:\Windows\system32\iedkcs32.dll 2009-10-07 00:13:43 ----A---- C:\Windows\system32\ie4uinit.exe 2009-10-07 00:13:40 ----A---- C:\Windows\system32\iertutil.dll 2009-10-07 00:13:39 ----A---- C:\Windows\system32\ieframe.dll 2009-10-07 00:13:37 ----A---- C:\Windows\system32\mshtml.dll 2009-10-07 00:13:37 ----A---- C:\Windows\system32\ieUnatt.exe 2009-10-07 00:13:37 ----A---- C:\Windows\system32\iesysprep.dll 2009-10-07 00:12:03 ----D---- C:\Program Files (x86)\Steam 2009-10-07 00:12:03 ----D---- C:\Program Files (x86)\Common Files\Steam 2009-10-07 00:12:02 ----A---- C:\Windows\system32\advpack.dll 2009-10-07 00:12:02 ----A---- C:\Windows\system32\admparse.dll 2009-10-07 00:12:01 ----A---- C:\Windows\system32\ieakeng.dll 2009-10-07 00:12:01 ----A---- C:\Windows\system32\icardie.dll 2009-10-07 00:12:01 ----A---- C:\Windows\system32\corpol.dll 2009-10-07 00:12:00 ----A---- C:\Windows\system32\wextract.exe 2009-10-07 00:12:00 ----A---- C:\Windows\system32\pngfilt.dll 2009-10-07 00:12:00 ----A---- C:\Windows\system32\msls31.dll 2009-10-07 00:12:00 ----A---- C:\Windows\system32\ieapfltr.dll 2009-10-07 00:11:59 ----A---- C:\Windows\system32\mstime.dll 2009-10-07 00:11:59 ----A---- C:\Windows\system32\imgutil.dll 2009-10-07 00:11:59 ----A---- C:\Windows\system32\dxtrans.dll 2009-10-07 00:11:59 ----A---- C:\Windows\system32\dxtmsft.dll 2009-10-07 00:11:58 ----A---- C:\Windows\system32\WinFXDocObj.exe 2009-10-07 00:11:58 ----A---- C:\Windows\system32\webcheck.dll 2009-10-07 00:11:58 ----A---- C:\Windows\system32\msrating.dll 2009-10-07 00:11:58 ----A---- C:\Windows\system32\mshtmled.dll 2009-10-07 00:11:58 ----A---- C:\Windows\system32\licmgr10.dll 2009-10-07 00:11:58 ----A---- C:\Windows\system32\inseng.dll 2009-10-07 00:11:58 ----A---- C:\Windows\system32\ieakui.dll 2009-10-07 00:11:58 ----A---- C:\Windows\system32\ieaksie.dll 2009-10-07 00:11:57 ----A---- C:\Windows\system32\vbscript.dll 2009-10-07 00:11:57 ----A---- C:\Windows\system32\url.dll 2009-10-07 00:11:57 ----A---- C:\Windows\system32\mshtmler.dll 2009-10-07 00:11:57 ----A---- C:\Windows\system32\mshta.exe 2009-10-07 00:11:57 ----A---- C:\Windows\system32\iexpress.exe 2009-10-07 00:11:56 ----A---- C:\Windows\system32\SetIEInstalledDate.exe 2009-10-07 00:11:56 ----A---- C:\Windows\system32\SetDepNx.exe 2009-10-07 00:11:56 ----A---- C:\Windows\system32\RegisterIEPKEYs.exe 2009-10-07 00:11:56 ----A---- C:\Windows\system32\PDMSetup.exe 2009-10-07 00:11:19 ----D---- C:\Windows\system32\RTCOM 2009-10-07 00:11:02 ----D---- C:\Program Files (x86)\Logitech 2009-10-07 00:10:54 ----D---- C:\ProgramData\LogiShrd 2009-10-07 00:10:54 ----D---- C:\Program Files (x86)\Common Files\LogiShrd 2009-10-07 00:09:32 ----A---- C:\Windows\system32\tzres.dll 2009-10-07 00:04:44 ----A---- C:\Windows\system32\GameUXLegacyGDFs.dll 2009-10-07 00:04:44 ----A---- C:\Windows\system32\Apphlpdm.dll 2009-10-07 00:04:39 ----A---- C:\Windows\system32\kerberos.dll 2009-10-07 00:04:38 ----A---- C:\Windows\system32\wdigest.dll 2009-10-07 00:04:38 ----A---- C:\Windows\system32\secur32.dll 2009-10-07 00:04:38 ----A---- C:\Windows\system32\schannel.dll 2009-10-07 00:04:38 ----A---- C:\Windows\system32\msv1_0.dll 2009-10-07 00:04:35 ----A---- C:\Windows\system32\mstscax.dll 2009-10-07 00:04:33 ----A---- C:\Windows\system32\rpcrt4.dll 2009-10-07 00:04:31 ----A---- C:\Windows\system32\localspl.dll 2009-10-07 00:03:44 ----A---- C:\Windows\system32\netiohlp.dll 2009-10-07 00:03:43 ----A---- C:\Windows\system32\TCPSVCS.EXE 2009-10-07 00:03:43 ----A---- C:\Windows\system32\ROUTE.EXE 2009-10-07 00:03:43 ----A---- C:\Windows\system32\NETSTAT.EXE 2009-10-07 00:03:43 ----A---- C:\Windows\system32\netevent.dll 2009-10-07 00:03:43 ----A---- C:\Windows\system32\MRINFO.EXE 2009-10-07 00:03:43 ----A---- C:\Windows\system32\HOSTNAME.EXE 2009-10-07 00:03:43 ----A---- C:\Windows\system32\finger.exe 2009-10-07 00:03:43 ----A---- C:\Windows\system32\ARP.EXE 2009-10-07 00:03:27 ----A---- C:\Windows\system32\t2embed.dll 2009-10-07 00:03:26 ----A---- C:\Windows\system32\fontsub.dll 2009-10-07 00:03:26 ----A---- C:\Windows\system32\dciman32.dll 2009-10-07 00:03:26 ----A---- C:\Windows\system32\atmfd.dll 2009-10-07 00:00:38 ----A---- C:\Windows\system32\avifil32.dll 2009-10-07 00:00:28 ----A---- C:\Windows\system32\wmp.dll 2009-10-07 00:00:27 ----A---- C:\Windows\system32\wmpdxm.dll 2009-10-07 00:00:26 ----A---- C:\Windows\system32\dxmasf.dll 2009-10-07 00:00:25 ----A---- C:\Windows\system32\wmploc.DLL 2009-10-07 00:00:25 ----A---- C:\Windows\system32\spwmp.dll 2009-10-07 00:00:21 ----A---- C:\Windows\system32\WMVCORE.DLL 2009-10-07 00:00:20 ----A---- C:\Windows\system32\mf.dll 2009-10-07 00:00:17 ----A---- C:\Windows\system32\wlansec.dll 2009-10-07 00:00:17 ----A---- C:\Windows\system32\wlanmsm.dll 2009-10-07 00:00:17 ----A---- C:\Windows\system32\wlanapi.dll 2009-10-07 00:00:17 ----A---- C:\Windows\system32\L2SecHC.dll 2009-10-07 00:00:15 ----A---- C:\Windows\system32\atl.dll 2009-10-06 23:59:50 ----D---- C:\Users\takedown\AppData\Roaming\Macromedia 2009-10-06 23:59:50 ----D---- C:\Users\takedown\AppData\Roaming\Adobe 2009-10-06 23:59:45 ----D---- C:\Windows\system32\Macromed 2009-10-06 23:59:22 ----A---- C:\Windows\system32\javaws.exe 2009-10-06 23:59:22 ----A---- C:\Windows\system32\javaw.exe 2009-10-06 23:59:22 ----A---- C:\Windows\system32\java.exe 2009-10-06 23:59:22 ----A---- C:\Windows\system32\deploytk.dll 2009-10-06 23:59:13 ----D---- C:\Program Files (x86)\Java 2009-10-06 23:55:34 ----SHD---- C:\Windows\Installer 2009-10-06 23:54:52 ----D---- C:\Program Files (x86)\Intel 2009-10-06 23:54:52 ----A---- C:\Windows\system32\CSVer.dll 2009-10-06 23:54:46 ----D---- C:\Intel 2009-10-06 23:52:31 ----D---- C:\Users\takedown\AppData\Roaming\Mozilla 2009-10-06 23:52:28 ----D---- C:\Program Files (x86)\Mozilla Firefox 2009-10-06 23:49:20 ----A---- C:\Windows\system32\wups.dll 2009-10-06 23:49:20 ----A---- C:\Windows\system32\wudriver.dll 2009-10-06 23:49:20 ----A---- C:\Windows\system32\wuapi.dll 2009-10-06 23:49:14 ----A---- C:\Windows\system32\wuwebv.dll 2009-10-06 23:49:14 ----A---- C:\Windows\system32\wuapp.exe 2009-10-06 23:47:10 ----D---- C:\Users\takedown\AppData\Roaming\WinBatch 2009-10-06 23:09:41 ----D---- C:\Users\takedown\AppData\Roaming\Identities 2009-10-06 23:09:36 ----SD---- C:\Users\takedown\AppData\Roaming\Microsoft 2009-10-06 23:09:36 ----D---- C:\Users\takedown\AppData\Roaming\Media Center Programs 2009-10-06 23:08:01 ----SHD---- C:\Programme 2009-10-06 23:08:01 ----SHD---- C:\ProgramData\Vorlagen 2009-10-06 23:08:01 ----SHD---- C:\ProgramData\Startmenü 2009-10-06 23:08:01 ----SHD---- C:\ProgramData\Favoriten 2009-10-06 23:08:01 ----SHD---- C:\ProgramData\Dokumente 2009-10-06 23:08:01 ----SHD---- C:\ProgramData\Anwendungsdaten 2009-10-06 23:08:01 ----SHD---- C:\Dokumente und Einstellungen 2009-10-06 23:07:44 ----D---- C:\Windows\Debug 2009-10-06 23:01:47 ----D---- C:\Windows\Panther 2009-10-06 23:01:34 ----RAS---- C:\BOOTSECT.BAK 2009-10-06 23:01:33 ----SHD---- C:\Boot 2009-10-06 22:05:02 ----D---- C:\Windows\SoftwareDistribution 2009-10-06 22:02:24 ----D---- C:\Windows\Prefetch 2009-10-06 22:02:23 ----SHD---- C:\System Volume Information |
|
13.10.2009, 00:14
| #6 |
| | Internet Explorer öffnet sich immer + WerbungCode:
ATTFilter ======List of files/folders modified in the last 1 months====== 2009-10-13 00:40:02 ----D---- C:\Windows\Temp 2009-10-13 00:06:19 ----D---- C:\Windows\System32 2009-10-13 00:06:18 ----D---- C:\Windows\inf 2009-10-12 22:21:00 ----RD---- C:\Program Files 2009-10-12 18:17:42 ----HD---- C:\ProgramData 2009-10-12 18:17:34 ----RD---- C:\Program Files (x86) 2009-10-12 18:16:55 ----D---- C:\Program Files (x86)\Common Files 2009-10-12 18:12:27 ----D---- C:\Windows\SysWOW64 2009-10-12 18:07:17 ----D---- C:\Windows\system32\drivers 2009-10-12 13:16:58 ----D---- C:\Windows 2009-10-12 13:16:57 ----D---- C:\Windows\Tasks 2009-10-11 14:24:21 ----D---- C:\Windows\winsxs 2009-10-11 14:02:15 ----D---- C:\Windows\Registration 2009-10-11 14:01:54 ----RSD---- C:\Windows\assembly 2009-10-11 14:01:28 ----D---- C:\Program Files (x86)\Internet Explorer 2009-10-09 01:44:17 ----RSD---- C:\Windows\Fonts 2009-10-07 23:09:18 ----D---- C:\Windows\rescache 2009-10-07 22:06:48 ----D---- C:\Windows\Microsoft.NET 2009-10-07 22:04:17 ----D---- C:\Windows\Logs 2009-10-07 04:19:25 ----SD---- C:\ProgramData\Microsoft 2009-10-07 03:23:51 ----D---- C:\Program Files (x86)\Common Files\microsoft shared 2009-10-07 01:28:56 ----D---- C:\Program Files (x86)\Windows Media Player 2009-10-07 01:20:32 ----SD---- C:\Windows\Downloaded Program Files 2009-10-07 01:17:12 ----D---- C:\Windows\system32\migration 2009-10-07 01:17:12 ----D---- C:\Windows\AppPatch 2009-10-07 01:17:06 ----D---- C:\Windows\system32\de-DE 2009-10-07 01:17:04 ----D---- C:\Windows\system32\en-US 2009-10-07 01:17:03 ----D---- C:\Windows\PolicyDefinitions 2009-10-07 01:17:01 ----D---- C:\Windows\ehome 2009-10-07 01:17:00 ----D---- C:\Program Files (x86)\Windows Mail 2009-10-07 00:08:56 ----D---- C:\Windows\twain_32 2009-10-06 23:09:53 ----SHD---- C:\$Recycle.Bin 2009-10-06 23:09:36 ----RD---- C:\Users ======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R1 BdfNdisf;BitDefender Firewall NDIS 6 Filter Driver; C:\Windows\system32\DRIVERS\BdfNdisf6.sys [] R1 bdftdif;bdftdif; \??\C:\Program Files\Common Files\BitDefender\BitDefender Firewall\bdftdif.sys [2009-10-11 104968] R2 BDVEDISK;BDVEDISK; \??\C:\Program Files\BitDefender\BitDefender 2010\bdvedisk.sys [2009-04-01 101896] R3 AtiHdmiService;ATI Function Driver for HDMI Service; C:\Windows\system32\drivers\AtiHdmi.sys [] R3 atikmdag;atikmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [] R3 BDFM;BDFM; C:\Windows\system32\DRIVERS\bdfm.sys [] R3 DAdderFltr;DeathAdder Mouse; C:\Windows\system32\drivers\dadder.sys [] R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\Windows\system32\DRIVERS\GEARAspiWDM.sys [] R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [] R3 ksthunk;Kernel Streaming Thunks; C:\Windows\system32\drivers\ksthunk.sys [] R3 LVPr2M64;Logitech LVPr2M64 Driver; C:\Windows\system32\DRIVERS\LVPr2M64.sys [] R3 netr7364;USB Wireless 802.11 b/g Adaptor Driver for Vista; C:\Windows\system32\DRIVERS\netr7364.sys [] R3 PID_0928;Logitech QuickCam Express(PID_0928); C:\Windows\system32\DRIVERS\LV561V64.SYS [] R3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader; C:\Windows\System32\Drivers\RtsUStor.sys [2009-08-19 222720] R3 RTL8169;Realtek 8169 NT Driver; C:\Windows\system32\DRIVERS\Rtlh64.sys [] S1 SASDIFSV;SASDIFSV; \??\C:\Program Files (x86)\SUPERAntiSpyware\SASDIFSV.SYS [2009-09-15 9968] S1 SASKUTIL;SASKUTIL; \??\C:\Program Files (x86)\SUPERAntiSpyware\SASKUTIL.sys [2009-09-15 74480] S3 drmkaud;Microsoft Kernel-DRM-Audioentschlüsselung; C:\Windows\system32\drivers\drmkaud.sys [] S3 HdAudAddService;Microsoft 1.1 UAA-Funktionstreiber für High Definition Audio-Dienst; C:\Windows\system32\drivers\HdAudio.sys [] S3 LVPr2Mon;LVPr2M64 Driver; C:\Windows\system32\DRIVERS\LVPr2M64.sys [] S3 MSKSSRV;Microsoft Streaming Service Proxy; C:\Windows\system32\drivers\MSKSSRV.sys [] S3 MSPCLOCK;Microsoft Proxy für Streaming Clock; C:\Windows\system32\drivers\MSPCLOCK.sys [] S3 MSPQM;Microsoft Proxy für Streaming Quality Manager; C:\Windows\system32\drivers\MSPQM.sys [] S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink-Konvertierung; C:\Windows\system32\drivers\MSTEE.sys [] S3 SASENUM;SASENUM; \??\C:\Program Files (x86)\SUPERAntiSpyware\SASENUM.SYS [2009-09-15 7408] S3 USBAAPL64;Apple Mobile USB Driver; C:\Windows\System32\Drivers\usbaapl64.sys [] S3 WUDFRd;WUDFRd; C:\Windows\system32\DRIVERS\WUDFRd.sys [] S4 ErrDev;Microsoft Hardware Error Device Driver; C:\Windows\system32\drivers\errdev.sys [] S4 MegaSR;MegaSR; C:\Windows\system32\drivers\megasr.sys [] S4 WmiAcpi;Microsoft Windows Management Interface for ACPI; C:\Windows\system32\drivers\wmiacpi.sys [] ======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R2 a2free;a-squared Free Service; C:\Program Files (x86)\a-squared Free\a2service.exe [2009-10-01 1858144] R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [] R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe [2009-08-28 144672] R2 Bonjour Service;Bonjour-Dienst; C:\Program Files (x86)\Bonjour\mDNSResponder.exe [2008-12-12 238888] R2 IAANTMON;Intel(R) Matrix Storage Event Monitor; C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTMon.exe [2009-06-05 354840] R2 LIVESRV;BitDefender Desktop Update Service; C:\Program Files\Common Files\BitDefender\BitDefender Update Service\livesrv.exe [2009-10-11 440928] R2 LVPrcS64;Process Monitor; C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe [2009-04-30 190488] R2 SysUpHDService;SystemUp HardDisk Service; C:\Program Files (x86)\Common Files\SystemUp Harddisk\hdservice.exe [2009-06-03 1773960] R2 TuneUp.ProgramStatisticsSvc;@%SystemRoot%\System32\TUProgSt.exe,-1; C:\Windows\System32\TUProgSt.exe [] R2 UxTuneUp;@%SystemRoot%\System32\uxtuneup.dll,-4096; C:\Windows\System32\svchost.exe [2008-01-21 21504] R2 VSSERV;BitDefender Virus Shield; C:\Program Files\BitDefender\BitDefender 2010\vsserv.exe [2009-10-11 2273816] R3 iPod Service;iPod-Dienst; C:\Program Files\iPod\bin\iPodService.exe [2009-09-21 660256] S3 Arrakis3;BitDefender Arrakis Server; C:\Program Files\Common Files\BitDefender\BitDefender Arrakis Server\bin\arrakis3.exe [2009-10-11 278224] S3 aspnet_state;ASP.NET-Zustandsdienst; C:\Windows\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [] S3 clr_optimization_v2.0.50727_64;Microsoft .NET Framework NGEN v2.0.50727_X64; C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe [2009-04-11 89920] S3 clr_optimization_v4.0.20506_32;.NET Runtime Optimization Service v4.0.20506_X86; c:\Windows\Microsoft.NET\Framework\v4.0.20506\mscorsvw.exe [2009-05-06 104272] S3 clr_optimization_v4.0.20506_64;.NET Runtime Optimization Service v4.0.20506_X64; c:\Windows\Microsoft.NET\Framework64\v4.0.20506\mscorsvw.exe [2009-05-06 122192] S3 PerfHost;@%systemroot%\sysWow64\perfhost.exe,-2; C:\Windows\SysWow64\perfhost.exe [2008-01-21 19968] S3 scan;BitDefender Threat Scanner; C:\Windows\System32\svchost.exe [2008-01-21 21504] S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2009-10-07 316664] S3 TuneUp.Defrag;@%SystemRoot%\System32\TuneUpDefragService.exe,-1; C:\Windows\System32\TuneUpDefragService.exe [] S4 RalinkRegistryWriter;Ralink Registry Writer; C:\Program Files (x86)\Ralink\Common\RaRegistry.exe [2009-07-14 185632] S4 RalinkRegistryWriter64;Ralink Registry Writer 64; C:\Program Files (x86)\Ralink\Common\RaRegistry64.exe [2009-07-14 211232] -----------------EOF----------------- |
|
13.10.2009, 00:22
| #7 |
| | Internet Explorer öffnet sich immer + Werbung Öhhh, dann lass Bitdefender laufen, und versuche das Log zu posten. SASW Log findest du bei Preferences -> Statistik/Logs -> View Logs -> Log aufrufen, kopieren + posten. Falls du dir nicht sicher bist folge den Schritten in der SUPERAntiSpyware Anleitung. Bitte lass GMER rennen wie in Anleitung beschrieben und poste das Log.
__________________ Avira Upgrade 10 ist auf dem Markt! Agressive Einstellung von Avira What goes around comes around!  |
|
| Themen zu Internet Explorer öffnet sich immer + Werbung |
| .dll, antivirus, bho, c.exe, defender, desktop, explorer, firefox.exe, hijack, hijackthis, icq, internet, internet explorer, jusched.exe, local\temp, logfile, lws.exe, microsoft, monitor, mozilla, plug-in, rundll, scan, server, software, syswow64, temp, tuneup.defrag, tuprogst.exe, userinit.exe, vista, werbung, windows, wmp, öffnet |
Hybrid-Darstellung
