IE öffnet sich ohne befehl mit werbung

Cerlaze · 10.02.2010, 10:21

gutn morgn

das problem sollte bekannt sein,
hab es bei euch schonmal gelesen.
würde aber gerne noch einmal eure hilfe erbitten was ich in meinem fall tuen sollte.

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 10:20:46, on 10.02.2010
Platform: Unknown Windows (WinNT 6.01.3504)
MSIE: Internet Explorer v8.00 (8.00.7600.16385)
Boot mode: Normal

Running processes:
C:\Windows\msa.exe
C:\Users\Cerlaze\AppData\Local\Temp\Ptr.exe
C:\Program Files (x86)\RocketDock\RocketDock.exe
C:\Program Files (x86)\avmwlanstick\WLanGUI.exe
C:\Program Files (x86)\Razer\Diamondback\razerhid.exe
C:\Program Files (x86)\McAfee.com\Agent\mcagent.exe
C:\Program Files (x86)\Razer\Diamondback\razertra.exe
C:\Program Files (x86)\Razer\Diamondback\razerofa.exe
C:\Program Files (x86)\Java\jre6\bin\javaw.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\Trend Micro\HijackThis\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: McAfee Phishing Filter - {27B4851A-3207-45A2-B947-BE8AFE6163AB} - c:\PROGRA~2\mcafee\msk\mskapbho.dll
O2 - BHO: scriptproxy - {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - C:\Program Files (x86)\McAfee\VirusScan\scriptsn.dll
O2 - BHO: Windows Live Anmelde-Hilfsprogramm - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: McAfee SiteAdvisor BHO - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
O3 - Toolbar: McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll
O4 - HKLM\..\Run: [AVMWlanClient] C:\Program Files (x86)\avmwlanstick\wlangui.exe
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [Diamondback] C:\Program Files (x86)\Razer\Diamondback\razerhid.exe
O4 - HKLM\..\Run: [mcagent_exe] "C:\Program Files (x86)\McAfee.com\Agent\mcagent.exe" /runkey
O4 - HKLM\..\Run: [McENUI] C:\PROGRA~2\McAfee\MHN\McENUI.exe /hide
O4 - HKCU\..\Run: [RocketDock] "C:\Program Files (x86)\RocketDock\RocketDock.exe"
O4 - HKCU\..\Run: [F5JMWNZTHI] C:\Users\Cerlaze\AppData\Local\Temp\Ptr.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOKALER DIENST')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOKALER DIENST')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETZWERKDIENST')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETZWERKDIENST')
O9 - Extra button: ICQ7 - {88EB38EF-4D2C-436D-ABD3-56B232674062} - C:\Program Files (x86)\ICQ7.0\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ7 - {88EB38EF-4D2C-436D-ABD3-56B232674062} - C:\Program Files (x86)\ICQ7.0\ICQ.exe
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O18 - Protocol: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll
O18 - Protocol: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: AVM WLAN Connection Service - AVM Berlin - C:\Program Files (x86)\avmwlanstick\WlanNetService.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: McAfee SiteAdvisor Service - McAfee, Inc. - C:\Program Files (x86)\McAfee\SiteAdvisor\McSACore.exe
O23 - Service: McAfee Services (mcmscsvc) - McAfee, Inc. - C:\PROGRA~2\McAfee\MSC\mcmscsvc.exe
O23 - Service: McAfee Network Agent (McNASvc) - McAfee, Inc. - c:\PROGRA~2\COMMON~1\mcafee\mna\mcnasvc.exe
O23 - Service: McAfee Scanner (McODS) - McAfee, Inc. - C:\PROGRA~1\McAfee\VIRUSS~1\mcods.exe
O23 - Service: McAfee Proxy Service (McProxy) - McAfee, Inc. - c:\PROGRA~2\COMMON~1\mcafee\mcproxy\mcproxy.exe
O23 - Service: McAfee Real-time Scanner (McShield) - McAfee, Inc. - C:\PROGRA~1\McAfee\VIRUSS~1\mcshield.exe
O23 - Service: McAfee SystemGuards (McSysmon) - McAfee, Inc. - C:\PROGRA~2\McAfee\VIRUSS~1\mcsysmon.exe
O23 - Service: McAfee Personal Firewall Service (MpfService) - McAfee, Inc. - C:\Program Files (x86)\McAfee\MPF\MPFSrv.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: McAfee Anti-Spam Service (MSK80Service) - McAfee, Inc. - C:\Program Files (x86)\McAfee\MSK\MskSrver.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NMSAccessU - Unknown owner - C:\Program Files (x86)\CDBurnerXP\NMSAccessU.exe
O23 - Service: O&O Defrag - O&O Software GmbH - C:\Program Files\OO Software\Defrag\oodag.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 8453 bytes

Chris4You · 10.02.2010, 10:34

Hi,

Malwarebytes Antimalware (MAM)
Anleitung&Download hier: http://www.trojaner-board.de/51187-m...i-malware.html
Falls der Download nicht klappt, bitte hierüber eine generische Version runterladen:
http://filepony.de/download-chameleon/
Fullscan und alles bereinigen lassen! Log posten.

OTL
Lade Dir OTL von Oldtimer herunter (http://filepony.de/download-otl/) und speichere es auf Deinem Desktop
* Doppelklick auf die OTL.exe
* Vista/Win7 User: Rechtsklick auf die OTL.exe und "als Administrator ausführen" wählen
* Oben findest Du ein Kästchen mit Output. Wähle bitte Minimal Output
* Unter Extra Registry, wähle bitte Use SafeList
* Klicke nun auf Run Scan links oben
* Wenn der Scan beendet wurde werden 2 Logfiles erstellt
* Poste die Logfiles hier in den Thread.

Gmer:
http://www.trojaner-board.de/74908-a...t-scanner.html
Den Downloadlink findest Du links oben (http://www.gmer.net/#files), dort dann
auf den Button "Download EXE", dabei wird ein zufälliger Name generiert (den und den Pfad wo Du sie gespeichert hast bitte merken).
Starte GMER und schaue, ob es schon was meldet. Macht es das, bitte alle Fragen mit "nein" beantworten, auf den Reiter "rootkit" gehen, wiederum die Frage mit "nein" beantworten und mit Hilfe von copy den Bericht in den Thread einfügen. Meldet es so nichts, gehe auf den Reiter Rootkit und mache einen Scan. Ist dieser beendet, wähle Copy und füge den Bericht ein.

chris
Für mich:
C:\Windows\msa.exe
O4 - HKCU\..\Run: [F5JMWNZTHI] C:\Users\Cerlaze\AppData\Local\Temp\Ptr.exe
F2 - REG:system.ini: UserInit=userinit.exe

Cerlaze · 10.02.2010, 12:51

**2
OTL Log:

OTL logfile created on: 10.02.2010 11:48:27 - Run 1
OTL by OldTimer - Version 3.1.28.0 Folder = C:\Users\Cerlaze\Desktop
64bit- Ultimate Edition (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7600.16385)
Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy

4,00 Gb Total Physical Memory | 3,00 Gb Available Physical Memory | 73,00% Memory free
8,00 Gb Paging File | 7,00 Gb Available in Paging File | 84,00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 250,00 Gb Total Space | 183,02 Gb Free Space | 73,21% Space Free | Partition Type: NTFS
Drive D: | 250,00 Gb Total Space | 4,10 Gb Free Space | 1,64% Space Free | Partition Type: NTFS
Drive E: | 198,63 Gb Total Space | 0,31 Gb Free Space | 0,16% Space Free | Partition Type: NTFS
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: CERLAZE-PC
Current User Name: Cerlaze
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: Current user
Include 64bit Scans
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Minimal

========== Processes (SafeList) ==========

PRC - C:\Users\Cerlaze\Desktop\OTL.exe (OldTimer Tools)
PRC - C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation)
PRC - C:\Program Files (x86)\CDBurnerXP\NMSAccessU.exe ()
PRC - C:\PROGRA~2\McAfee\VIRUSS~1\mcsysmon.exe (McAfee, Inc.)
PRC - C:\Program Files (x86)\McAfee.com\Agent\mcagent.exe (McAfee, Inc.)
PRC - C:\PROGRA~2\McAfee\MSC\mcmscsvc.exe (McAfee, Inc.)
PRC - C:\Program Files (x86)\McAfee\MPF\MPFSrv.exe (McAfee, Inc.)
PRC - C:\Program Files (x86)\McAfee\MSK\MskSrver.exe (McAfee, Inc.)
PRC - c:\PROGRA~2\COMMON~1\mcafee\mcproxy\mcproxy.exe (McAfee, Inc.)
PRC - c:\PROGRA~2\COMMON~1\mcafee\mna\mcnasvc.exe (McAfee, Inc.)
PRC - C:\Program Files (x86)\avmwlanstick\WLanGUI.exe (AVM Berlin)
PRC - C:\Program Files (x86)\avmwlanstick\WlanNetService.exe (AVM Berlin)
PRC - C:\Program Files (x86)\RocketDock\RocketDock.exe ()
PRC - C:\Program Files (x86)\Razer\Diamondback\razerhid.exe ()
PRC - C:\Program Files (x86)\Razer\Diamondback\razerofa.exe (Razer Inc.)
PRC - C:\Program Files (x86)\Razer\Diamondback\razertra.exe ()

========== Modules (SafeList) ==========

MOD - C:\Users\Cerlaze\Desktop\OTL.exe (OldTimer Tools)
MOD - c:\PROGRA~2\mcafee\SITEAD~1\saHook.dll (McAfee, Inc.)
MOD - C:\Windows\SysWOW64\comdlg32.dll (Microsoft Corporation)
MOD - C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16385_none_421189da2b7fabfc\comctl32.dll (Microsoft Corporation)
MOD - C:\Program Files (x86)\RocketDock\RocketDock.dll ()

========== Win32 Services (SafeList) ==========

SRV:64bit: - (AMD External Events Utility) -- C:\Windows\SysNative\atiesrxx.exe (AMD)
SRV:64bit: - (O&O Defrag) -- C:\Program Files\OO Software\Defrag\oodag.exe (O&O Software GmbH)
SRV:64bit: - (WwanSvc) -- C:\Windows\SysNative\wwansvc.dll (Microsoft Corporation)
SRV:64bit: - (WbioSrvc) -- C:\Windows\SysNative\wbiosrvc.dll (Microsoft Corporation)
SRV:64bit: - (UmRdpService) -- C:\Windows\SysNative\umrdp.dll (Microsoft Corporation)
SRV:64bit: - (Power) -- C:\Windows\SysNative\umpo.dll (Microsoft Corporation)
SRV:64bit: - (Themes) -- C:\Windows\SysNative\themeservice.dll (Microsoft Corporation)
SRV:64bit: - (sppuinotify) -- C:\Windows\SysNative\sppuinotify.dll (Microsoft Corporation)
SRV:64bit: - (SensrSvc) -- C:\Windows\SysNative\sensrsvc.dll (Microsoft Corporation)
SRV:64bit: - (PeerDistSvc) -- C:\Windows\SysNative\PeerDistSvc.dll (Microsoft Corporation)
SRV:64bit: - (PNRPsvc) -- C:\Windows\SysNative\pnrpsvc.dll (Microsoft Corporation)
SRV:64bit: - (p2pimsvc) -- C:\Windows\SysNative\pnrpsvc.dll (Microsoft Corporation)
SRV:64bit: - (HomeGroupProvider) -- C:\Windows\SysNative\provsvc.dll (Microsoft Corporation)
SRV:64bit: - (RpcEptMapper) -- C:\Windows\SysNative\RpcEpMap.dll (Microsoft Corporation)
SRV:64bit: - (PNRPAutoReg) -- C:\Windows\SysNative\pnrpauto.dll (Microsoft Corporation)
SRV:64bit: - (HomeGroupListener) -- C:\Windows\SysNative\ListSvc.dll (Microsoft Corporation)
SRV:64bit: - (FontCache) -- C:\Windows\SysNative\FntCache.dll (Microsoft Corporation)
SRV:64bit: - (Dhcp) -- C:\Windows\SysNative\dhcpcore.dll (Microsoft Corporation)
SRV:64bit: - (defragsvc) -- C:\Windows\SysNative\defragsvc.dll (Microsoft Corporation)
SRV:64bit: - (CscService) -- C:\Windows\SysNative\cscsvc.dll (Microsoft Corporation)
SRV:64bit: - (bthserv) -- C:\Windows\SysNative\bthserv.dll (Microsoft Corporation)
SRV:64bit: - (BDESVC) -- C:\Windows\SysNative\bdesvc.dll (Microsoft Corporation)
SRV:64bit: - (AxInstSV) -- C:\Windows\SysNative\AxInstSv.dll (Microsoft Corporation)
SRV:64bit: - (AppMgmt) -- C:\Windows\SysNative\appmgmts.dll (Microsoft Corporation)
SRV:64bit: - (AppIDSvc) -- C:\Windows\SysNative\appidsvc.dll (Microsoft Corporation)
SRV:64bit: - (wbengine) -- C:\Windows\SysNative\wbengine.exe (Microsoft Corporation)
SRV:64bit: - (sppsvc) -- C:\Windows\SysNative\sppsvc.exe (Microsoft Corporation)
SRV:64bit: - (Fax) -- C:\Windows\SysNative\FXSSVC.exe (Microsoft Corporation)
SRV - (McAfee SiteAdvisor Service) -- C:\Program Files (x86)\McAfee\SiteAdvisor\McSACore.exe (McAfee, Inc.)
SRV - (NMSAccessU) -- C:\Program Files (x86)\CDBurnerXP\NMSAccessU.exe ()
SRV - (McShield) -- C:\Programme\McAfee\VirusScan\Mcshield.exe (McAfee, Inc.)
SRV - (McSysmon) -- C:\PROGRA~2\McAfee\VIRUSS~1\mcsysmon.exe (McAfee, Inc.)
SRV - (mcmscsvc) -- C:\PROGRA~2\McAfee\MSC\mcmscsvc.exe (McAfee, Inc.)
SRV - (McODS) -- C:\Programme\McAfee\VirusScan\mcods.exe (McAfee, Inc.)
SRV - (MpfService) -- C:\Program Files (x86)\McAfee\MPF\MPFSrv.exe (McAfee, Inc.)
SRV - (MSK80Service) -- C:\Program Files (x86)\McAfee\MSK\MskSrver.exe (McAfee, Inc.)
SRV - (Steam Client Service) -- C:\Program Files (x86)\Common Files\Steam\SteamService.exe (Valve Corporation)
SRV - (VSS) -- C:\Windows\Vss [2009.07.14 04:20:14 | 000,000,000 | ---D | M]
SRV - (MSDTC) -- C:\Windows\SysWOW64\Msdtc [2009.07.14 04:20:14 | 000,000,000 | ---D | M]
SRV - (HomeGroupProvider) -- C:\Windows\SysWOW64\provsvc.dll (Microsoft Corporation)
SRV - (Dhcp) -- C:\Windows\SysWOW64\dhcpcore.dll (Microsoft Corporation)
SRV - (vds) -- C:\Windows\SysWOW64\wbem\vds.mof ()
SRV - (McProxy) -- c:\PROGRA~2\COMMON~1\mcafee\mcproxy\mcproxy.exe (McAfee, Inc.)
SRV - (McNASvc) -- c:\PROGRA~2\COMMON~1\mcafee\mna\mcnasvc.exe (McAfee, Inc.)
SRV - (clr_optimization_v2.0.50727_64) -- C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe (Microsoft Corporation)
SRV - (AVM WLAN Connection Service) -- C:\Program Files (x86)\avmwlanstick\WlanNetService.exe (AVM Berlin)

========== Driver Services (SafeList) ==========

DRV:64bit: - (atikmdag) -- C:\Windows\SysNative\drivers\atikmdag.sys (ATI Technologies Inc.)
DRV:64bit: - (amdkmdag) -- C:\Windows\SysNative\drivers\atipmdag.sys (ATI Technologies Inc.)
DRV:64bit: - (amdkmdap) -- C:\Windows\SysNative\drivers\atikmpag.sys (Advanced Micro Devices, Inc.)
DRV:64bit: - (StarOpen) -- C:\Windows\SysNative\drivers\StarOpen.sys ()
DRV:64bit: - (mfehidk) -- C:\Windows\SysNative\drivers\mfehidk.sys (McAfee, Inc.)
DRV:64bit: - (mfeavfk) -- C:\Windows\SysNative\drivers\mfeavfk.sys (McAfee, Inc.)
DRV:64bit: - (mfesmfk) -- C:\Windows\SysNative\drivers\mfesmfk.sys (McAfee, Inc.)
DRV:64bit: - (mferkdk) -- C:\Windows\SysNative\drivers\mferkdk.sys (McAfee, Inc.)
DRV:64bit: - (MPFP) -- C:\Windows\SysNative\drivers\Mpfp.sys (McAfee, Inc.)
DRV:64bit: - (amdsata) -- C:\Windows\SysNative\drivers\amdsata.sys (Advanced Micro Devices)
DRV:64bit: - (amdxata) -- C:\Windows\SysNative\drivers\amdxata.sys (Advanced Micro Devices)
DRV:64bit: - (amdsbs) -- C:\Windows\SysNative\drivers\amdsbs.sys (AMD Technologies Inc.)
DRV:64bit: - (KSecPkg) -- C:\Windows\SysNative\drivers\ksecpkg.sys (Microsoft Corporation)
DRV:64bit: - (LSI_SAS2) -- C:\Windows\SysNative\drivers\lsi_sas2.sys (LSI Corporation)
DRV:64bit: - (hwpolicy) -- C:\Windows\SysNative\drivers\hwpolicy.sys (Microsoft Corporation)
DRV:64bit: - (FsDepends) -- C:\Windows\SysNative\drivers\fsdepends.sys (Microsoft Corporation)
DRV:64bit: - (HpSAMD) -- C:\Windows\SysNative\drivers\HpSAMD.sys (Hewlett-Packard Company)
DRV:64bit: - (WIMMount) -- C:\Windows\SysNative\drivers\wimmount.sys (Microsoft Corporation)
DRV:64bit: - (vhdmp) -- C:\Windows\SysNative\drivers\vhdmp.sys (Microsoft Corporation)
DRV:64bit: - (vmbus) -- C:\Windows\SysNative\drivers\vmbus.sys (Microsoft Corporation)
DRV:64bit: - (storflt) -- C:\Windows\SysNative\drivers\vmstorfl.sys (Microsoft Corporation)
DRV:64bit: - (vdrvroot) -- C:\Windows\SysNative\drivers\vdrvroot.sys (Microsoft Corporation)
DRV:64bit: - (storvsc) -- C:\Windows\SysNative\drivers\storvsc.sys (Microsoft Corporation)
DRV:64bit: - (stexstor) -- C:\Windows\SysNative\drivers\stexstor.sys (Promise Technology)
DRV:64bit: - (rdyboost) -- C:\Windows\SysNative\drivers\rdyboost.sys (Microsoft Corporation)
DRV:64bit: - (pcw) -- C:\Windows\SysNative\drivers\pcw.sys (Microsoft Corporation)
DRV:64bit: - (CNG) -- C:\Windows\SysNative\drivers\cng.sys (Microsoft Corporation)
DRV:64bit: - (fvevol) -- C:\Windows\SysNative\drivers\fvevol.sys (Microsoft Corporation)
DRV:64bit: - (rdpbus) -- C:\Windows\SysNative\drivers\rdpbus.sys (Microsoft Corporation)
DRV:64bit: - (RDPREFMP) -- C:\Windows\SysNative\drivers\RDPREFMP.sys (Microsoft Corporation)
DRV:64bit: - (RasAgileVpn) WAN Miniport (IKEv2) -- C:\Windows\SysNative\drivers\agilevpn.sys (Microsoft Corporation)
DRV:64bit: - (WfpLwf) -- C:\Windows\SysNative\drivers\wfplwf.sys (Microsoft Corporation)
DRV:64bit: - (NdisCap) -- C:\Windows\SysNative\drivers\ndiscap.sys (Microsoft Corporation)
DRV:64bit: - (vwifibus) -- C:\Windows\SysNative\drivers\vwifibus.sys (Microsoft Corporation)
DRV:64bit: - (1394ohci) -- C:\Windows\SysNative\drivers\1394ohci.sys (Microsoft Corporation)
DRV:64bit: - (HdAudAddService) -- C:\Windows\SysNative\drivers\HdAudio.sys (Microsoft Corporation)
DRV:64bit: - (UmPass) -- C:\Windows\SysNative\drivers\umpass.sys (Microsoft Corporation)
DRV:64bit: - (mshidkmdf) -- C:\Windows\SysNative\drivers\mshidkmdf.sys (Microsoft Corporation)
DRV:64bit: - (WudfPf) -- C:\Windows\SysNative\drivers\WUDFPf.sys (Microsoft Corporation)
DRV:64bit: - (MTConfig) -- C:\Windows\SysNative\drivers\MTConfig.sys (Microsoft Corporation)
DRV:64bit: - (CompositeBus) -- C:\Windows\SysNative\drivers\CompositeBus.sys (Microsoft Corporation)
DRV:64bit: - (Beep) -- C:\Windows\SysNative\drivers\beep.sys (Microsoft Corporation)
DRV:64bit: - (AppID) -- C:\Windows\SysNative\drivers\appid.sys (Microsoft Corporation)
DRV:64bit: - (scfilter) -- C:\Windows\SysNative\drivers\scfilter.sys (Microsoft Corporation)
DRV:64bit: - (s3cap) -- C:\Windows\SysNative\drivers\vms3cap.sys (Microsoft Corporation)
DRV:64bit: - (VMBusHID) -- C:\Windows\SysNative\drivers\VMBusHID.sys (Microsoft Corporation)
DRV:64bit: - (discache) -- C:\Windows\SysNative\drivers\discache.sys (Microsoft Corporation)
DRV:64bit: - (HidBatt) -- C:\Windows\SysNative\drivers\hidbatt.sys (Microsoft Corporation)
DRV:64bit: - (CmBatt) -- C:\Windows\SysNative\drivers\CmBatt.sys (Microsoft Corporation)
DRV:64bit: - (AcpiPmi) -- C:\Windows\SysNative\drivers\acpipmi.sys (Microsoft Corporation)
DRV:64bit: - (CSC) -- C:\Windows\SysNative\drivers\csc.sys (Microsoft Corporation)
DRV:64bit: - (AmdPPM) -- C:\Windows\SysNative\drivers\amdppm.sys (Microsoft Corporation)
DRV:64bit: - (ebdrv) -- C:\Windows\SysNative\drivers\evbda.sys (Broadcom Corporation)
DRV:64bit: - (b06bdrv) -- C:\Windows\SysNative\drivers\bxvbda.sys (Broadcom Corporation)
DRV:64bit: - (b57nd60a) -- C:\Windows\SysNative\drivers\b57nd60a.sys (Broadcom Corporation)
DRV:64bit: - (hcw85cir) -- C:\Windows\SysNative\drivers\hcw85cir.sys (Hauppauge Computer Works, Inc.)
DRV:64bit: - (FWLANUSB) -- C:\Windows\SysNative\drivers\fwlanusb.sys (AVM GmbH)
DRV:64bit: - (Razerlow) -- C:\Windows\SysNative\drivers\Razerlow.sys (Razer (Asia-Pacific) Pte Ltd)
DRV:64bit: - (MTsensor) -- C:\Windows\SysNative\drivers\ASACPI.sys ()
DRV - (CSC) -- C:\Windows\CSC [2010.02.06 21:05:42 | 000,000,000 | ---D | M]
DRV - (StarOpen) -- C:\Windows\SysWOW64\drivers\StarOpen.sys ()
DRV - (WIMMount) -- C:\Windows\SysWOW64\drivers\wimmount.sys (Microsoft Corporation)
DRV - (NetBIOS) -- C:\Windows\SysWOW64\netbios.dll (Microsoft Corporation)
DRV - (mpsdrv) -- C:\Windows\SysWOW64\wbem\mpsdrv.mof ()
DRV - (Tcpip) -- C:\Windows\SysWOW64\wbem\tcpip.mof ()
DRV - (speedfan) -- C:\Windows\SysWOW64\speedfan.sys (Windows (R) Server 2003 DDK provider)
DRV - (Razerlow) -- C:\Windows\SysWOW64\drivers\Razerlow.sys (Razer (Asia-Pacific) Pte Ltd)

========== Standard Registry (SafeList) ==========

========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm

IE - HKCU\..\URLSearchHook: {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll (McAfee, Inc.)
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - HKLM\software\mozilla\Firefox\Extensions\\{B7082FAA-CB62-4872-9106-E42DD88EDE45}: C:\Program Files (x86)\McAfee\SiteAdvisor [2010.02.09 20:10:38 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.5.7\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2010.02.08 19:41:04 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.5.7\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins [2010.02.08 19:41:04 | 000,000,000 | ---D | M]

[2010.02.06 21:29:45 | 000,000,000 | ---D | M] -- C:\Users\Cerlaze\AppData\Roaming\mozilla\Extensions
[2010.02.06 21:29:45 | 000,000,000 | ---D | M] -- C:\Users\Cerlaze\AppData\Roaming\mozilla\Firefox\Profiles\jvwx3in1.default\extensions
[2010.02.09 22:08:27 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\mozilla firefox\extensions
[2010.02.08 19:41:01 | 000,001,392 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\amazondotcom-de.xml
[2010.02.08 19:41:01 | 000,002,344 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\eBay-de.xml
[2010.02.08 19:41:01 | 000,006,805 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\leo_ende_de.xml
[2010.02.08 19:41:01 | 000,001,178 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\wikipedia-de.xml
[2010.02.08 19:41:02 | 000,000,801 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\yahoo-de.xml

O1 HOSTS File: ([2009.06.10 22:00:26 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O2:64bit: - BHO: (McAfee Phishing Filter) - {27B4851A-3207-45A2-B947-BE8AFE6163AB} - c:\PROGRA~2\mcafee\msk\MSKAPB~1.DLL ()
O2:64bit: - BHO: (scriptproxy) - {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - C:\Programme\McAfee\VirusScan\scriptsn.dll (McAfee, Inc.)
O2:64bit: - BHO: (McAfee SiteAdvisor BHO) - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - c:\PROGRA~2\mcafee\SITEAD~1\x64\mcieplg.dll (McAfee, Inc.)
O2 - BHO: (Adobe PDF Link Helper) - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
O2 - BHO: (McAfee Phishing Filter) - {27B4851A-3207-45A2-B947-BE8AFE6163AB} - c:\PROGRA~2\mcafee\msk\mskapbho.dll ()
O2 - BHO: (scriptproxy) - {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - C:\Program Files (x86)\McAfee\VirusScan\scriptsn.dll (McAfee, Inc.)
O2 - BHO: (Windows Live Anmelde-Hilfsprogramm) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
O2 - BHO: (McAfee SiteAdvisor BHO) - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll (McAfee, Inc.)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
O3:64bit: - HKLM\..\Toolbar: (McAfee SiteAdvisor Toolbar) - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\PROGRA~2\mcafee\SITEAD~1\x64\mcieplg.dll (McAfee, Inc.)
O3 - HKLM\..\Toolbar: (McAfee SiteAdvisor Toolbar) - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll (McAfee, Inc.)
O4:64bit: - HKLM..\Run: [RtHDVCpl] C:\Programme\Realtek\Audio\HDA\RAVCpl64.exe (Realtek Semiconductor)
O4:64bit: - HKLM..\Run: [Skytel] C:\Programme\Realtek\Audio\HDA\SkyTel.exe (Realtek Semiconductor Corp.)
O4 - HKLM..\Run: [AVMWlanClient] C:\Program Files (x86)\avmwlanstick\wlangui.exe (AVM Berlin)
O4 - HKLM..\Run: [Diamondback] C:\Program Files (x86)\Razer\Diamondback\razerhid.exe ()
O4 - HKLM..\Run: [mcagent_exe] C:\Program Files (x86)\McAfee.com\Agent\mcagent.exe (McAfee, Inc.)
O4 - HKLM..\Run: [McENUI] C:\Programme (x86)\McAfee\MHN\McENUI.exe File not found
O4 - HKLM..\Run: [StartCCC] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.)
O4 - HKCU..\Run: [RocketDock] C:\Program Files (x86)\RocketDock\RocketDock.exe ()
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0
O9 - Extra Button: ICQ7 - {88EB38EF-4D2C-436D-ABD3-56B232674062} - C:\Program Files (x86)\ICQ7.0\ICQ.exe (ICQ, Inc.)
O9 - Extra 'Tools' menuitem : ICQ7 - {88EB38EF-4D2C-436D-ABD3-56B232674062} - C:\Program Files (x86)\ICQ7.0\ICQ.exe (ICQ, Inc.)
O13 - gopher Prefix: missing
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab (Java Plug-in 1.6.0_17)
O16 - DPF: {CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab (Java Plug-in 1.6.0_17)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab (Java Plug-in 1.6.0_17)
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (Reg Error: Key error.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.178.2
O18:64bit: - Protocol\Handler\dssrequest {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\PROGRA~2\mcafee\SITEAD~1\x64\mcieplg.dll (McAfee, Inc.)
O18:64bit: - Protocol\Handler\livecall {828030A1-22C1-4009-854F-8E305202313F} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\msnim {828030A1-22C1-4009-854F-8E305202313F} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\sacore {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\PROGRA~2\mcafee\SITEAD~1\x64\mcieplg.dll (McAfee, Inc.)
O18 - Protocol\Handler\dssrequest {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll (McAfee, Inc.)
O18 - Protocol\Handler\livecall {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~2\WIC4A1~1\MESSEN~1\MSGRAP~1.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msnim {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~2\WIC4A1~1\MESSEN~1\MSGRAP~1.DLL (Microsoft Corporation)
O18 - Protocol\Handler\sacore {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll (McAfee, Inc.)
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\SysNative\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\SysWow64\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
O30:64bit: - LSA: Security Packages - (pku2u) - C:\Windows\SysNative\pku2u.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (pku2u) - C:\Windows\SysWow64\pku2u.dll (Microsoft Corporation)
O32 - HKLM CDRom: AutoRun - 1
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O34 - HKLM BootExecute: (OODBS) - File not found
64bit: O35 - comfile [open] -- "%1" %* File not found
64bit: O35 - exefile [open] -- "%1" %* File not found
O35 - comfile [open] -- "%1" %*
O35 - exefile [open] -- "%1" %*

========== Files/Folders - Created Within 30 Days ==========

[2010.02.10 10:49:16 | 000,549,376 | ---- | C] (OldTimer Tools) -- C:\Users\Cerlaze\Desktop\OTL.exe
[2010.02.10 10:48:04 | 000,000,000 | ---D | C] -- C:\Users\Cerlaze\AppData\Roaming\Malwarebytes
[2010.02.10 10:48:00 | 000,038,224 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\SysWow64\drivers\mbamswissarmy.sys
[2010.02.10 10:47:58 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2010.02.10 10:47:57 | 000,022,104 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\SysNative\drivers\mbam.sys
[2010.02.10 10:47:57 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware
[2010.02.10 10:32:44 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Smart Projects
[2010.02.10 10:31:49 | 000,000,000 | ---D | C] -- C:\Users\Cerlaze\Desktop\Bioshock 2
[2010.02.10 10:14:18 | 000,424,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\secproc.dll
[2010.02.10 10:14:18 | 000,422,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\secproc_isv.dll
[2010.02.10 10:14:18 | 000,369,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\secproc.dll
[2010.02.10 10:14:18 | 000,365,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\secproc_isv.dll
[2010.02.10 10:14:18 | 000,357,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\RMActivate_isv.exe
[2010.02.10 10:14:18 | 000,356,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\RMActivate.exe
[2010.02.10 10:14:18 | 000,305,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\RMActivate_ssp_isv.exe
[2010.02.10 10:14:17 | 000,324,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\RMActivate_isv.exe
[2010.02.10 10:14:17 | 000,320,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\RMActivate.exe
[2010.02.10 10:14:17 | 000,306,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\RMActivate_ssp.exe
[2010.02.10 10:14:17 | 000,280,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\RMActivate_ssp.exe
[2010.02.10 10:14:17 | 000,277,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\RMActivate_ssp_isv.exe
[2010.02.10 10:14:17 | 000,121,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\secproc_ssp_isv.dll
[2010.02.10 10:14:17 | 000,121,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\secproc_ssp.dll
[2010.02.10 10:14:17 | 000,085,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\secproc_ssp_isv.dll
[2010.02.10 10:14:17 | 000,085,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\secproc_ssp.dll
[2010.02.10 10:14:14 | 001,572,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\quartz.dll
[2010.02.10 10:14:14 | 001,328,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\quartz.dll
[2010.02.10 10:14:14 | 000,091,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\avifil32.dll
[2010.02.10 10:14:14 | 000,084,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mciavi32.dll
[2010.02.10 10:14:14 | 000,054,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iyuv_32.dll
[2010.02.10 10:14:14 | 000,038,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msvidc32.dll
[2010.02.10 10:14:14 | 000,025,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msyuv.dll
[2010.02.10 10:14:14 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msrle32.dll
[2010.02.10 10:14:14 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\tsbyuv.dll
[2010.02.09 21:30:58 | 000,000,000 | ---D | C] -- C:\ProgramData\Intenium
[2010.02.09 21:17:33 | 000,000,000 | ---D | C] -- C:\Users\Cerlaze\Desktop\UPDATE
[2010.02.09 07:17:47 | 000,000,000 | ---D | C] -- C:\Users\Cerlaze\Desktop\Muster, Bewerbungen u. Lebenslauf v2
[2010.02.09 07:17:47 | 000,000,000 | ---D | C] -- C:\Users\Cerlaze\Desktop\Bewerbungen2
[2010.02.09 07:17:47 | 000,000,000 | ---D | C] -- C:\Users\Cerlaze\Desktop\Bewerbungen1
[2010.02.09 07:17:46 | 000,000,000 | ---D | C] -- C:\Users\Cerlaze\Desktop\Bewerbungen,Deckblätter u. Lebenslauf v1
[2010.02.09 07:17:46 | 000,000,000 | ---D | C] -- C:\Users\Cerlaze\Desktop\Bewerbungen muster3
[2010.02.09 07:14:23 | 001,071,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\MSCOMCTL.OCX
[2010.02.09 07:14:23 | 000,662,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Mscomct2.ocx
[2010.02.09 07:14:23 | 000,224,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\TABCTL32.OCX
[2010.02.09 07:14:23 | 000,152,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\COMDLG32.OCX
[2010.02.09 07:14:23 | 000,067,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Sysinfo.ocx
[2010.02.09 07:14:23 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\PolarSoft
[2010.02.09 07:14:23 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\PolarSoft
[2010.02.08 22:36:46 | 000,000,000 | ---D | C] -- C:\Users\Cerlaze\Desktop\The Lonely Island - Incredibad (2009)
[2010.02.08 19:40:12 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Trend Micro
[2010.02.08 14:01:18 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\digital publishing
[2010.02.08 14:00:12 | 000,000,000 | ---D | C] -- C:\Users\Cerlaze\Desktop\Sudoku
[2010.02.08 13:53:17 | 000,000,000 | ---D | C] -- C:\Users\Cerlaze\AppData\Roaming\Canneverbe Limited
[2010.02.08 13:53:16 | 000,000,000 | ---D | C] -- C:\ProgramData\Canneverbe Limited
[2010.02.08 13:53:01 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\CDBurnerXP
[2010.02.08 01:08:52 | 000,000,000 | -H-D | C] -- C:\ASUS.000
[2010.02.08 01:08:39 | 000,000,000 | -H-D | C] -- C:\ASUS.SYS
[2010.02.08 01:07:47 | 000,000,000 | ---D | C] -- C:\Users\Cerlaze\AppData\Local\Downloaded Installations
[2010.02.08 00:56:49 | 000,000,000 | ---D | C] -- C:\Users\Cerlaze\AppData\Roaming\Download Manager
[2010.02.08 00:56:41 | 000,000,000 | ---D | C] -- C:\Windows\Sun
[2010.02.07 20:46:46 | 000,000,000 | ---D | C] -- C:\Users\Cerlaze\Documents\Ubisoft
[2010.02.07 18:36:57 | 000,530,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_6.dll
[2010.02.07 18:36:57 | 000,528,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_6.dll
[2010.02.07 18:36:57 | 000,238,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_6.dll
[2010.02.07 18:36:57 | 000,176,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_6.dll
[2010.02.07 18:36:57 | 000,078,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAPOFX1_4.dll
[2010.02.07 18:36:57 | 000,074,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAPOFX1_4.dll
[2010.02.07 18:36:57 | 000,024,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\X3DAudio1_7.dll
[2010.02.07 18:36:57 | 000,022,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\X3DAudio1_7.dll
[2010.02.07 18:36:56 | 002,582,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_42.dll
[2010.02.07 18:36:56 | 001,974,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_42.dll
[2010.02.07 18:36:56 | 000,517,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_5.dll
[2010.02.07 18:36:56 | 000,515,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_5.dll
[2010.02.07 18:36:56 | 000,238,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_5.dll
[2010.02.07 18:36:56 | 000,176,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_5.dll
[2010.02.07 18:36:55 | 005,554,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dcsx_42.dll
[2010.02.07 18:36:55 | 005,501,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dcsx_42.dll
[2010.02.07 18:36:54 | 002,475,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DX9_42.dll
[2010.02.07 18:36:54 | 001,892,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_42.dll
[2010.02.07 18:36:54 | 000,523,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_42.dll
[2010.02.07 18:36:54 | 000,453,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_42.dll
[2010.02.07 18:36:54 | 000,285,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx11_42.dll
[2010.02.07 18:36:54 | 000,235,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx11_42.dll
[2010.02.07 18:36:53 | 005,425,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DX9_41.dll
[2010.02.07 18:36:53 | 004,178,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_41.dll
[2010.02.07 18:36:53 | 002,430,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_41.dll
[2010.02.07 18:36:53 | 001,846,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_41.dll
[2010.02.07 18:36:53 | 000,520,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_41.dll
[2010.02.07 18:36:53 | 000,453,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_41.dll
[2010.02.07 18:36:52 | 000,521,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_4.dll
[2010.02.07 18:36:52 | 000,517,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_4.dll
[2010.02.07 18:36:52 | 000,235,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_4.dll
[2010.02.07 18:36:52 | 000,174,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_4.dll
[2010.02.07 18:36:52 | 000,073,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAPOFX1_3.dll
[2010.02.07 18:36:52 | 000,069,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAPOFX1_3.dll
[2010.02.07 18:36:51 | 002,605,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_40.dll
[2010.02.07 18:36:51 | 002,036,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_40.dll
[2010.02.07 18:36:51 | 000,519,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_40.dll
[2010.02.07 18:36:51 | 000,452,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_40.dll
[2010.02.07 18:36:51 | 000,024,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\X3DAudio1_6.dll
[2010.02.07 18:36:51 | 000,022,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\X3DAudio1_6.dll
[2010.02.07 18:36:50 | 005,631,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DX9_40.dll
[2010.02.07 18:36:50 | 004,379,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_40.dll
[2010.02.07 18:36:50 | 000,518,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_3.dll
[2010.02.07 18:36:50 | 000,514,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_3.dll
[2010.02.07 18:36:50 | 000,074,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAPOFX1_2.dll
[2010.02.07 18:36:50 | 000,070,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAPOFX1_2.dll
[2010.02.07 18:36:49 | 000,235,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_3.dll
[2010.02.07 18:36:49 | 000,175,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_3.dll
[2010.02.07 18:36:49 | 000,025,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\X3DAudio1_5.dll
[2010.02.07 18:36:49 | 000,023,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\X3DAudio1_5.dll
[2010.02.07 18:36:48 | 000,513,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_2.dll
[2010.02.07 18:36:48 | 000,509,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_2.dll
[2010.02.07 18:36:48 | 000,238,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_2.dll
[2010.02.07 18:36:48 | 000,177,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_2.dll
[2010.02.07 18:36:48 | 000,072,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAPOFX1_1.dll
[2010.02.07 18:36:48 | 000,068,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAPOFX1_1.dll
[2010.02.07 18:36:47 | 004,992,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DX9_39.dll
[2010.02.07 18:36:47 | 003,851,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_39.dll
[2010.02.07 18:36:47 | 001,942,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_39.dll
[2010.02.07 18:36:47 | 001,493,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_39.dll
[2010.02.07 18:36:47 | 000,540,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_39.dll
[2010.02.07 18:36:47 | 000,467,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_39.dll
[2010.02.07 18:36:46 | 000,511,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_1.dll
[2010.02.07 18:36:46 | 000,507,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_1.dll
[2010.02.07 18:36:46 | 000,238,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_1.dll
[2010.02.07 18:36:46 | 000,177,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_1.dll
[2010.02.07 18:36:46 | 000,068,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAPOFX1_0.dll
[2010.02.07 18:36:46 | 000,065,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAPOFX1_0.dll
[2010.02.07 18:36:46 | 000,028,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\X3DAudio1_4.dll
[2010.02.07 18:36:46 | 000,025,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\X3DAudio1_4.dll
[2010.02.07 18:36:45 | 004,991,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DX9_38.dll
[2010.02.07 18:36:45 | 003,850,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_38.dll
[2010.02.07 18:36:45 | 001,941,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_38.dll
[2010.02.07 18:36:45 | 001,491,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_38.dll
[2010.02.07 18:36:45 | 000,540,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_38.dll
[2010.02.07 18:36:45 | 000,467,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_38.dll
[2010.02.07 18:36:44 | 000,489,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_0.dll
[2010.02.07 18:36:44 | 000,479,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_0.dll
[2010.02.07 18:36:44 | 000,238,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_0.dll
[2010.02.07 18:36:44 | 000,177,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_0.dll
[2010.02.07 18:36:44 | 000,028,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\X3DAudio1_3.dll
[2010.02.07 18:36:44 | 000,025,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\X3DAudio1_3.dll
[2010.02.07 18:36:43 | 001,860,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_37.dll
[2010.02.07 18:36:43 | 001,420,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_37.dll
[2010.02.07 18:36:43 | 000,529,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_37.dll
[2010.02.07 18:36:43 | 000,462,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_37.dll
[2010.02.07 18:36:42 | 004,910,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DX9_37.dll
[2010.02.07 18:36:42 | 003,786,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_37.dll
[2010.02.07 18:36:42 | 000,411,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_10.dll
[2010.02.07 18:36:42 | 000,267,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_10.dll
[2010.02.07 18:36:41 | 005,081,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_36.dll
[2010.02.07 18:36:41 | 003,734,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_36.dll
[2010.02.07 18:36:41 | 002,006,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_36.dll
[2010.02.07 18:36:41 | 001,374,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_36.dll
[2010.02.07 18:36:41 | 000,508,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_36.dll
[2010.02.07 18:36:41 | 000,444,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_36.dll
[2010.02.07 18:36:40 | 000,411,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_9.dll
[2010.02.07 18:36:40 | 000,267,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_9.dll
[2010.02.07 18:36:39 | 005,073,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_35.dll
[2010.02.07 18:36:39 | 003,727,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_35.dll
[2010.02.07 18:36:39 | 001,985,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_35.dll
[2010.02.07 18:36:39 | 001,358,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_35.dll
[2010.02.07 18:36:39 | 000,508,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_35.dll
[2010.02.07 18:36:39 | 000,444,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_35.dll
[2010.02.07 18:36:38 | 001,401,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_34.dll
[2010.02.07 18:36:38 | 001,124,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_34.dll
[2010.02.07 18:36:38 | 000,506,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_34.dll
[2010.02.07 18:36:38 | 000,443,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_34.dll
[2010.02.07 18:36:38 | 000,409,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_8.dll
[2010.02.07 18:36:38 | 000,266,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_8.dll
[2010.02.07 18:36:38 | 000,021,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\X3DAudio1_2.dll
[2010.02.07 18:36:38 | 000,017,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\X3DAudio1_2.dll
[2010.02.07 18:36:37 | 004,496,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_34.dll
[2010.02.07 18:36:37 | 003,497,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_34.dll
[2010.02.07 18:36:37 | 000,107,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xinput1_3.dll
[2010.02.07 18:36:37 | 000,081,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xinput1_3.dll
[2010.02.07 18:36:36 | 001,400,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_33.dll
[2010.02.07 18:36:36 | 001,123,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_33.dll
[2010.02.07 18:36:36 | 000,506,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_33.dll
[2010.02.07 18:36:36 | 000,443,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_33.dll
[2010.02.07 18:36:36 | 000,403,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_7.dll
[2010.02.07 18:36:36 | 000,261,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_7.dll
[2010.02.07 18:36:35 | 004,494,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_33.dll
[2010.02.07 18:36:35 | 003,495,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_33.dll
[2010.02.07 18:36:35 | 000,393,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_6.dll
[2010.02.07 18:36:35 | 000,390,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_5.dll
[2010.02.07 18:36:35 | 000,255,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_6.dll
[2010.02.07 18:36:35 | 000,251,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_5.dll
[2010.02.07 18:36:34 | 004,398,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_32.dll
[2010.02.07 18:36:34 | 003,426,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_32.dll
[2010.02.07 18:36:34 | 000,469,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10.dll
[2010.02.07 18:36:34 | 000,440,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10.dll
[2010.02.07 18:36:34 | 000,364,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_4.dll
[2010.02.07 18:36:34 | 000,237,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_4.dll
[2010.02.07 18:36:34 | 000,017,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\x3daudio1_1.dll
[2010.02.07 18:36:34 | 000,015,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\x3daudio1_1.dll
[2010.02.07 18:36:33 | 003,977,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_31.dll
[2010.02.07 18:36:33 | 002,414,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_31.dll
[2010.02.07 18:36:33 | 000,363,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_3.dll
[2010.02.07 18:36:33 | 000,236,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_3.dll
[2010.02.07 18:36:32 | 000,354,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_2.dll
[2010.02.07 18:36:32 | 000,230,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_2.dll
[2010.02.07 18:36:32 | 000,083,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xinput1_2.dll
[2010.02.07 18:36:32 | 000,083,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xinput1_1.dll
[2010.02.07 18:36:32 | 000,062,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xinput1_2.dll
[2010.02.07 18:36:32 | 000,062,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xinput1_1.dll
[2010.02.07 18:36:31 | 000,352,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_1.dll
[2010.02.07 18:36:31 | 000,229,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_1.dll
[2010.02.07 18:36:29 | 003,927,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_30.dll
[2010.02.07 18:36:29 | 002,388,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_30.dll
[2010.02.07 18:36:28 | 000,355,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_0.dll
[2010.02.07 18:36:28 | 000,230,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_0.dll
[2010.02.07 18:36:28 | 000,016,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\x3daudio1_0.dll
[2010.02.07 18:36:28 | 000,014,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\x3daudio1_0.dll
[2010.02.07 18:36:27 | 003,830,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_29.dll
[2010.02.07 18:36:27 | 003,815,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_28.dll
[2010.02.07 18:36:27 | 002,332,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_29.dll
[2010.02.07 18:36:27 | 002,323,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_28.dll
[2010.02.07 18:36:26 | 003,823,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_25.dll
[2010.02.07 18:36:26 | 003,767,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_26.dll
[2010.02.07 18:36:26 | 002,337,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_25.dll
[2010.02.07 18:36:26 | 002,297,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_26.dll
[2010.02.07 18:36:25 | 003,544,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_24.dll
[2010.02.07 18:36:25 | 002,222,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_24.dll
[2010.02.07 17:49:19 | 000,000,000 | ---D | C] -- C:\Users\Cerlaze\AppData\Local\Microsoft Games
[2010.02.07 17:48:58 | 000,000,000 | -H-D | C] -- C:\Windows\msdownld.tmp
[2010.02.07 17:48:53 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\directx
[2010.02.07 15:03:00 | 000,000,000 | ---D | C] -- C:\ProgramData\SiteAdvisor
[2010.02.07 15:02:56 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\SiteAdvisor
[2010.02.07 15:00:47 | 000,040,904 | ---- | C] (McAfee, Inc.) -- C:\Windows\SysNative\drivers\mferkdk.sys
[2010.02.07 15:00:46 | 000,308,296 | ---- | C] (McAfee, Inc.) -- C:\Windows\SysNative\drivers\mfehidk.sys
[2010.02.07 15:00:46 | 000,102,472 | ---- | C] (McAfee, Inc.) -- C:\Windows\SysNative\drivers\mfeavfk.sys
[2010.02.07 15:00:46 | 000,049,480 | ---- | C] (McAfee, Inc.) -- C:\Windows\SysNative\drivers\mfesmfk.sys
[2010.02.07 15:00:44 | 000,176,144 | ---- | C] (McAfee, Inc.) -- C:\Windows\SysNative\drivers\Mpfp.sys
[2010.02.07 15:00:31 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\McAfee
[2010.02.07 15:00:30 | 000,000,000 | ---D | C] -- C:\Programme\McAfee
[2010.02.07 15:00:30 | 000,000,000 | ---D | C] -- C:\Programme\Common Files\McAfee
[2010.02.07 15:00:29 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\McAfee.com
[2010.02.07 15:00:28 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\McAfee
[2010.02.07 14:52:21 | 000,000,000 | ---D | C] -- C:\ProgramData\McAfee
[2010.02.07 13:19:13 | 001,192,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wininet.dll
[2010.02.07 13:19:13 | 000,977,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wininet.dll
[2010.02.07 13:19:13 | 000,445,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iedkcs32.dll
[2010.02.07 13:19:13 | 000,381,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iedkcs32.dll
[2010.02.07 13:19:13 | 000,082,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msfeedsbs.dll
[2010.02.07 13:19:13 | 000,064,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msfeedsbs.dll
[2010.02.07 01:27:07 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Silverlight
[2010.02.07 01:26:46 | 014,629,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wmp.dll
[2010.02.07 01:26:45 | 011,406,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wmp.dll
[2010.02.07 01:26:45 | 001,975,296 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\CertEnroll.dll
[2010.02.07 01:26:44 | 012,625,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wmploc.DLL
[2010.02.07 01:26:44 | 001,320,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\CertEnroll.dll
[2010.02.07 01:26:43 | 012,625,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wmploc.DLL
[2010.02.07 01:26:38 | 002,870,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\explorer.exe
[2010.02.07 01:26:37 | 002,614,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\explorer.exe
[2010.02.07 01:26:37 | 000,389,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winlogon.exe
[2010.02.07 01:26:37 | 000,366,080 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\SysNative\atmfd.dll
[2010.02.07 01:26:37 | 000,293,888 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\atmfd.dll
[2010.02.07 01:26:37 | 000,148,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\t2embed.dll
[2010.02.07 01:26:37 | 000,108,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\t2embed.dll
[2010.02.07 01:26:37 | 000,100,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\fontsub.dll
[2010.02.07 01:26:37 | 000,070,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\fontsub.dll
[2010.02.07 01:26:34 | 000,046,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msasn1.dll
[2010.02.07 01:26:15 | 000,000,000 | ---D | C] -- C:\Programme\OO Software
[2010.02.06 23:20:47 | 000,000,000 | ---D | C] -- C:\Users\Cerlaze\AppData\Local\Oblivion
[2010.02.06 23:20:47 | 000,000,000 | ---D | C] -- C:\Users\Cerlaze\Documents\My Games
[2010.02.06 22:36:19 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Steam
[2010.02.06 22:36:18 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Steam
[2010.02.06 22:07:51 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Star Wars Knights of the Old Republic
[2010.02.06 22:01:47 | 000,000,000 | ---D | C] -- C:\Users\Cerlaze\Documents\Meine empfangenen Dateien
[2010.02.06 21:59:53 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\2K Games
[2010.02.06 21:59:38 | 000,000,000 | ---D | C] -- C:\Users\Cerlaze\Tracing
[2010.02.06 21:59:00 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft
[2010.02.06 21:58:50 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\microsoft
[2010.02.06 21:58:35 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Windows Live SkyDrive
[2010.02.06 21:58:19 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Windows Live
[2010.02.06 21:58:18 | 000,000,000 | ---D | C] -- C:\Users\Cerlaze\Documents\ICQ
[2010.02.06 21:58:04 | 000,000,000 | ---D | C] -- C:\Windows\PCHEALTH
[2010.02.06 21:55:58 | 000,000,000 | ---D | C] -- C:\Users\Cerlaze\AppData\Roaming\ICQ
[2010.02.06 21:55:58 | 000,000,000 | ---D | C] -- C:\Users\Cerlaze\AppData\Local\AOL
[2010.02.06 21:55:52 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\ICQ7.0
[2010.02.06 21:55:05 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Windows Live
[2010.02.06 21:51:09 | 000,021,120 | ---- | C] (Razer (Asia-Pacific) Pte Ltd) -- C:\Windows\SysNative\drivers\Razerlow.sys
[2010.02.06 21:51:04 | 000,073,728 | ---- | C] (Razer Inc.) -- C:\Windows\SysWow64\Diamondback.cpl
[2010.02.06 21:51:03 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Razer
[2010.02.06 21:46:27 | 000,149,280 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\javaws.exe
[2010.02.06 21:46:27 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\javaw.exe
[2010.02.06 21:46:27 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\java.exe
[2010.02.06 21:42:07 | 003,807,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_27.dll
[2010.02.06 21:42:07 | 002,319,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_27.dll
[2010.02.06 21:41:31 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Bethesda Softworks
[2010.02.06 21:41:06 | 000,000,000 | ---D | C] -- C:\Users\Cerlaze\Games
[2010.02.06 21:37:39 | 000,000,000 | ---D | C] -- C:\Users\Cerlaze\JDownloader 0.8.9
[2010.02.06 21:36:59 | 000,000,000 | ---D | C] -- C:\Users\Cerlaze\AppData\Local\Adobe
[2010.02.06 21:36:24 | 000,411,368 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\deploytk.dll
[2010.02.06 21:36:19 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Java
[2010.02.06 21:34:31 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\DivX Shared
[2010.02.06 21:34:31 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\DivX
[2010.02.06 21:33:58 | 000,000,000 | ---D | C] -- C:\ProgramData\Adobe
[2010.02.06 21:33:57 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Adobe
[2010.02.06 21:33:57 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Adobe
[2010.02.06 21:32:05 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\RocketDock
[2010.02.06 21:31:55 | 000,000,000 | ---D | C] -- C:\Users\Cerlaze\AppData\Roaming\Macromedia
[2010.02.06 21:31:54 | 000,000,000 | ---D | C] -- C:\Users\Cerlaze\AppData\Roaming\Adobe
[2010.02.06 21:31:43 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\Macromed
[2010.02.06 21:31:21 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\SpeedFan
[2010.02.06 21:29:41 | 000,000,000 | ---D | C] -- C:\Users\Cerlaze\AppData\Roaming\Mozilla
[2010.02.06 21:29:41 | 000,000,000 | ---D | C] -- C:\Users\Cerlaze\AppData\Local\Mozilla
[2010.02.06 21:29:35 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Mozilla Firefox
[2010.02.06 21:29:17 | 000,000,000 | ---D | C] -- C:\Users\Cerlaze\AppData\Roaming\Xfire
[2010.02.06 21:29:16 | 000,000,000 | ---D | C] -- C:\ProgramData\Xfire
[2010.02.06 21:29:15 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Xfire
[2010.02.06 21:28:41 | 000,013,225 | ---- | C] (Razer (Asia-Pacific) Pte Ltd) -- C:\Windows\SysWow64\drivers\Razerlow.sys
[2010.02.06 21:27:58 | 000,000,000 | ---D | C] -- C:\Users\Cerlaze\AppData\Roaming\WinRAR
[2010.02.06 21:27:38 | 000,000,000 | ---D | C] -- C:\Programme\WinRAR
[2010.02.06 21:21:30 | 000,000,000 | ---D | C] -- C:\Users\Cerlaze\AppData\Roaming\ATI
[2010.02.06 21:21:30 | 000,000,000 | ---D | C] -- C:\Users\Cerlaze\AppData\Local\ATI
[2010.02.06 21:21:30 | 000,000,000 | ---D | C] -- C:\ProgramData\ATI
[2010.02.06 21:21:27 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\ATI Technologies
[2010.02.06 21:21:22 | 000,000,000 | ---D | C] -- C:\Users\Cerlaze\AppData\Roaming\InstallShield
[2010.02.06 21:21:01 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\RTCOM
[2010.02.06 21:21:01 | 000,000,000 | ---D | C] -- C:\Programme\Realtek
[2010.02.06 21:20:52 | 001,603,104 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RtkAPO64.dll
[2010.02.06 21:20:52 | 001,277,984 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RtPgEx64.dll
[2010.02.06 21:20:52 | 000,611,360 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RTSnMg64.cpl
[2010.02.06 21:20:52 | 000,513,536 | ---- | C] (SRS Labs, Inc.) -- C:\Windows\SysNative\SRSTSX64.dll
[2010.02.06 21:20:52 | 000,332,320 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RtlCPAPI64.dll
[2010.02.06 21:20:52 | 000,211,376 | ---- | C] (SRS Labs, Inc.) -- C:\Windows\SysNative\SRSTSH64.dll
[2010.02.06 21:20:52 | 000,193,536 | ---- | C] (SRS Labs, Inc.) -- C:\Windows\SysNative\SRSHP64.dll
[2010.02.06 21:20:52 | 000,150,528 | ---- | C] (SRS Labs, Inc.) -- C:\Windows\SysNative\SRSWOW64.dll
[2010.02.06 21:20:52 | 000,149,536 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RtkCfg64.dll
[2010.02.06 21:20:51 | 001,163,296 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RTCOM64.dll
[2010.02.06 21:20:51 | 000,417,824 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RtkApi64.dll
[2010.02.06 21:20:51 | 000,304,640 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RP3DHT64.dll
[2010.02.06 21:20:51 | 000,304,640 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RP3DAA64.dll
[2010.02.06 21:20:51 | 000,058,400 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RCoInst64.dll
[2010.02.06 21:20:50 | 000,311,296 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxAudioAPO20.dll
[2010.02.06 21:20:50 | 000,176,640 | ---- | C] (Windows (R) Codename Longhorn DDK provider) -- C:\Windows\SysNative\FMAPO64.dll
[2010.02.06 21:20:50 | 000,166,400 | ---- | C] (Andrea Electronics Corporation) -- C:\Windows\SysNative\AERTAC64.dll
[2010.02.06 21:20:50 | 000,108,032 | ---- | C] (Andrea Electronics Corporation) -- C:\Windows\SysNative\AERTAR64.dll
[2010.02.06 21:20:50 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Realtek
[2010.02.06 21:20:49 | 000,000,000 | -H-D | C] -- C:\Program Files (x86)\InstallShield Installation Information
[2010.02.06 21:20:48 | 000,540,672 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\RtlExUpd.dll
[2010.02.06 21:20:48 | 000,000,000 | -H-D | C] -- C:\Program Files (x86)\Temp
[2010.02.06 21:20:45 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\InstallShield
[2010.02.06 21:20:43 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\ATI Technologies
[2010.02.06 21:20:27 | 000,000,000 | -HSD | C] -- C:\Windows\Installer
[2010.02.06 21:20:27 | 000,000,000 | ---D | C] -- C:\Programme\ATI
[2010.02.06 21:20:14 | 000,000,000 | ---D | C] -- C:\Programme\ATI Technologies
[2010.02.06 21:20:01 | 000,000,000 | ---D | C] -- C:\Users\Cerlaze\Desktop\Anwendungen
[2010.02.06 21:19:49 | 000,000,000 | ---D | C] -- C:\ATI
[2010.02.06 21:18:37 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\avmwlanstick
[2010.02.06 21:18:21 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\AVM_update
[2010.02.06 21:17:10 | 000,053,248 | ---- | C] (Windows XP Bundled build C-Centric Single User) -- C:\Windows\SysWow64\CSVer.dll
[2010.02.06 21:17:10 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Intel
[2010.02.06 21:16:59 | 000,000,000 | ---D | C] -- C:\Intel
[2010.02.06 21:16:27 | 000,000,000 | ---D | C] -- C:\Windows\SoftwareDistribution
[2010.02.06 21:15:10 | 000,000,000 | R--D | C] -- C:\Users\Cerlaze\Searches
[2010.02.06 21:15:00 | 000,000,000 | ---D | C] -- C:\Users\Cerlaze\AppData\Roaming\Identities
[2010.02.06 21:14:52 | 000,000,000 | R--D | C] -- C:\Users\Cerlaze\Contacts
[2010.02.06 21:14:49 | 000,000,000 | ---D | C] -- C:\Users\Cerlaze\AppData\Local\VirtualStore
[2010.02.06 21:14:37 | 000,000,000 | --SD | C] -- C:\Users\Cerlaze\AppData\Roaming\Microsoft
[2010.02.06 21:14:37 | 000,000,000 | R--D | C] -- C:\Users\Cerlaze\Videos
[2010.02.06 21:14:37 | 000,000,000 | R--D | C] -- C:\Users\Cerlaze\Saved Games
[2010.02.06 21:14:37 | 000,000,000 | R--D | C] -- C:\Users\Cerlaze\Pictures
[2010.02.06 21:14:37 | 000,000,000 | R--D | C] -- C:\Users\Cerlaze\Music
[2010.02.06 21:14:37 | 000,000,000 | R--D | C] -- C:\Users\Cerlaze\Links
[2010.02.06 21:14:37 | 000,000,000 | R--D | C] -- C:\Users\Cerlaze\Favorites
[2010.02.06 21:14:37 | 000,000,000 | R--D | C] -- C:\Users\Cerlaze\Downloads
[2010.02.06 21:14:37 | 000,000,000 | R--D | C] -- C:\Users\Cerlaze\Documents
[2010.02.06 21:14:37 | 000,000,000 | R--D | C] -- C:\Users\Cerlaze\Desktop
[2010.02.06 21:14:37 | 000,000,000 | -HSD | C] -- C:\Users\Cerlaze\Vorlagen
[2010.02.06 21:14:37 | 000,000,000 | -HSD | C] -- C:\Users\Cerlaze\AppData\Local\Verlauf
[2010.02.06 21:14:37 | 000,000,000 | -HSD | C] -- C:\Users\Cerlaze\AppData\Local\Temporary Internet Files
[2010.02.06 21:14:37 | 000,000,000 | -HSD | C] -- C:\Users\Cerlaze\Startmenü
[2010.02.06 21:14:37 | 000,000,000 | -HSD | C] -- C:\Users\Cerlaze\SendTo
[2010.02.06 21:14:37 | 000,000,000 | -HSD | C] -- C:\Users\Cerlaze\Recent
[2010.02.06 21:14:37 | 000,000,000 | -HSD | C] -- C:\Users\Cerlaze\Netzwerkumgebung
[2010.02.06 21:14:37 | 000,000,000 | -HSD | C] -- C:\Users\Cerlaze\Lokale Einstellungen
[2010.02.06 21:14:37 | 000,000,000 | -HSD | C] -- C:\Users\Cerlaze\Documents\Eigene Videos
[2010.02.06 21:14:37 | 000,000,000 | -HSD | C] -- C:\Users\Cerlaze\Documents\Eigene Musik
[2010.02.06 21:14:37 | 000,000,000 | -HSD | C] -- C:\Users\Cerlaze\Eigene Dateien
[2010.02.06 21:14:37 | 000,000,000 | -HSD | C] -- C:\Users\Cerlaze\Documents\Eigene Bilder
[2010.02.06 21:14:37 | 000,000,000 | -HSD | C] -- C:\Users\Cerlaze\Druckumgebung
[2010.02.06 21:14:37 | 000,000,000 | -HSD | C] -- C:\Users\Cerlaze\Cookies
[2010.02.06 21:14:37 | 000,000,000 | -HSD | C] -- C:\Users\Cerlaze\AppData\Local\Anwendungsdaten
[2010.02.06 21:14:37 | 000,000,000 | -HSD | C] -- C:\Users\Cerlaze\Anwendungsdaten
[2010.02.06 21:14:37 | 000,000,000 | -H-D | C] -- C:\Users\Cerlaze\AppData
[2010.02.06 21:14:37 | 000,000,000 | ---D | C] -- C:\Users\Cerlaze\AppData\Local\Temp
[2010.02.06 21:14:37 | 000,000,000 | ---D | C] -- C:\Users\Cerlaze\AppData\Local\Microsoft
[2010.02.06 21:14:37 | 000,000,000 | ---D | C] -- C:\Users\Cerlaze\AppData\Roaming\Media Center Programs
[2010.02.06 21:14:30 | 000,000,000 | -HSD | C] -- C:\ProgramData\Vorlagen
[2010.02.06 21:14:30 | 000,000,000 | -HSD | C] -- C:\ProgramData\Startmenü
[2010.02.06 21:14:30 | 000,000,000 | -HSD | C] -- C:\Recovery
[2010.02.06 21:14:30 | 000,000,000 | -HSD | C] -- C:\Programme
[2010.02.06 21:14:30 | 000,000,000 | -HSD | C] -- C:\Programme\Gemeinsame Dateien
[2010.02.06 21:14:30 | 000,000,000 | -HSD | C] -- C:\ProgramData\Favoriten
[2010.02.06 21:14:30 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Eigene Videos
[2010.02.06 21:14:30 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Eigene Musik
[2010.02.06 21:14:30 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Eigene Bilder
[2010.02.06 21:14:30 | 000,000,000 | -HSD | C] -- C:\Dokumente und Einstellungen
[2010.02.06 21:14:30 | 000,000,000 | -HSD | C] -- C:\ProgramData\Dokumente
[2010.02.06 21:14:30 | 000,000,000 | -HSD | C] -- C:\ProgramData\Anwendungsdaten
[2010.02.06 21:05:26 | 000,000,000 | ---D | C] -- C:\Windows\Prefetch
[2010.02.06 21:05:03 | 000,000,000 | -HSD | C] -- C:\System Volume Information
[2010.02.06 21:04:34 | 000,000,000 | ---D | C] -- C:\Windows\Panther
[2010.02.06 21:04:20 | 000,000,000 | -HSD | C] -- C:\Boot
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2010.02.10 11:49:20 | 000,016,944 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2010.02.10 11:49:20 | 000,016,944 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2010.02.10 11:46:53 | 001,472,002 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2010.02.10 11:46:53 | 000,643,628 | ---- | M] () -- C:\Windows\SysNative\perfh007.dat
[2010.02.10 11:46:53 | 000,606,992 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2010.02.10 11:46:53 | 000,126,188 | ---- | M] () -- C:\Windows\SysNative\perfc007.dat
[2010.02.10 11:46:53 | 000,103,370 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2010.02.10 11:46:34 | 001,572,864 | -HS- | M] () -- C:\Users\Cerlaze\NTUSER.DAT
[2010.02.10 11:43:26 | 000,010,530 | ---- | M] () -- C:\Windows\SysNative\Config.MPF
[2010.02.10 11:42:09 | 000,000,006 | -H-- | M] () -- C:\Windows\tasks\SA.DAT
[2010.02.10 11:42:07 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2010.02.10 11:42:05 | 3220,480,000 | -HS- | M] () -- C:\hiberfil.sys
[2010.02.10 11:42:04 | 000,021,692 | ---- | M] () -- C:\Windows\SysNative\oodbs.lor
[2010.02.10 11:41:16 | 002,359,191 | -H-- | M] () -- C:\Users\Cerlaze\AppData\Local\IconCache.db
[2010.02.10 10:49:43 | 000,293,376 | ---- | M] () -- C:\Users\Cerlaze\Desktop\mzrrn63i.exe
[2010.02.10 10:49:27 | 000,549,376 | ---- | M] (OldTimer Tools) -- C:\Users\Cerlaze\Desktop\OTL.exe
[2010.02.10 10:48:02 | 000,001,013 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
[2010.02.10 10:32:46 | 000,001,100 | ---- | M] () -- C:\Users\Cerlaze\Desktop\IsoBuster.lnk
[2010.02.09 07:14:25 | 000,001,085 | ---- | M] () -- C:\Users\Cerlaze\Desktop\TaskMate Pro.lnk
[2010.02.08 22:43:59 | 000,001,794 | ---- | M] () -- C:\Users\Cerlaze\Desktop\Counter-Strike Source.lnk
[2010.02.08 13:39:57 | 000,000,000 | -H-- | M] () -- C:\Windows\SysNative\drivers\Msft_User_WpdFs_01_09_00.Wdf
[2010.02.08 01:08:52 | 000,000,046 | -H-- | M] () -- C:\splash.idx
[2010.02.08 01:00:02 | 327,634,385 | ---- | M] () -- C:\Users\Cerlaze\Documents\ExpressGate_Installer_V141014_XPVistaWin7.zip.dlm
[2010.02.07 15:08:06 | 000,000,360 | ---- | M] () -- C:\Windows\tasks\McDefragTask.job
[2010.02.07 15:08:06 | 000,000,322 | ---- | M] () -- C:\Windows\tasks\McQcTask.job
[2010.02.07 14:39:12 | 000,000,023 | ---- | M] () -- C:\Windows\BlendSettings.ini
[2010.02.07 10:34:54 | 000,274,464 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
[2010.02.06 21:54:53 | 000,000,637 | ---- | M] () -- C:\Users\Cerlaze\Desktop\Musik.lnk
[2010.02.06 21:54:48 | 000,000,489 | ---- | M] () -- C:\Users\Cerlaze\Desktop\Sicherungen (D).lnk
[2010.02.06 21:52:02 | 000,272,464 | RHS- | M] () -- C:\RWBEX
[2010.02.06 21:52:02 | 000,000,020 | RHS- | M] () -- C:\winx.ld
[2010.02.06 21:38:04 | 000,001,383 | ---- | M] () -- C:\Users\Cerlaze\Desktop\JDownloader - Verknüpfung.lnk
[2010.02.06 21:31:21 | 000,000,045 | ---- | M] () -- C:\Windows\SysWow64\initdebug.nfo
[2010.02.06 21:29:42 | 000,000,000 | ---- | M] () -- C:\Windows\nsreg.dat
[2010.02.06 21:22:15 | 000,524,288 | -HS- | M] () -- C:\Users\Cerlaze\NTUSER.DAT{016888bd-6c6f-11de-8d1d-001e0bcde3ec}.TMContainer00000000000000000002.regtrans-ms
[2010.02.06 21:22:15 | 000,524,288 | -HS- | M] () -- C:\Users\Cerlaze\NTUSER.DAT{016888bd-6c6f-11de-8d1d-001e0bcde3ec}.TMContainer00000000000000000001.regtrans-ms
[2010.02.06 21:22:15 | 000,065,536 | -HS- | M] () -- C:\Users\Cerlaze\NTUSER.DAT{016888bd-6c6f-11de-8d1d-001e0bcde3ec}.TM.blf
[2010.02.06 21:21:39 | 000,057,560 | ---- | M] () -- C:\Users\Cerlaze\AppData\Local\GDIPFONTCACHEV1.DAT
[2010.02.06 21:16:57 | 000,001,769 | ---- | M] () -- C:\Windows\Language_trs.ini
[2010.02.06 21:14:37 | 000,000,020 | -HS- | M] () -- C:\Users\Cerlaze\ntuser.ini
[2010.02.06 21:08:40 | 000,057,050 | ---- | M] () -- C:\Windows\SysWow64\license.rtf
[2010.02.06 21:08:40 | 000,057,050 | ---- | M] () -- C:\Windows\SysNative\license.rtf
[2010.02.06 21:07:13 | 000,000,000 | ---- | M] () -- C:\Windows\ativpsrm.bin
[2010.02.06 21:04:22 | 000,008,192 | RHS- | M] () -- C:\BOOTSECT.BAK
[2010.02.04 10:01:14 | 000,530,776 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_6.dll
[2010.02.04 10:01:14 | 000,528,216 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_6.dll
[2010.02.04 10:01:14 | 000,238,936 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_6.dll
[2010.02.04 10:01:14 | 000,176,984 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_6.dll
[2010.02.04 10:01:14 | 000,078,680 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\XAPOFX1_4.dll
[2010.02.04 10:01:14 | 000,074,072 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\XAPOFX1_4.dll
[2010.02.04 10:01:14 | 000,024,920 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\X3DAudio1_7.dll
[2010.02.04 10:01:14 | 000,022,360 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\X3DAudio1_7.dll
[2010.01.22 02:33:06 | 000,041,872 | ---- | M] () -- C:\Windows\SysWow64\xfcodec.dll
[2010.01.22 02:33:06 | 000,027,536 | ---- | M] () -- C:\Windows\SysNative\xfcodec64.dll
[2010.01.19 10:05:57 | 000,424,960 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\secproc.dll
[2010.01.19 10:05:57 | 000,422,912 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\secproc_isv.dll
[2010.01.19 10:05:57 | 000,121,856 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\secproc_ssp_isv.dll
[2010.01.19 10:05:57 | 000,121,856 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\secproc_ssp.dll
[2010.01.19 10:00:44 | 000,305,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\RMActivate_ssp_isv.exe
[2010.01.19 10:00:43 | 000,357,888 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\RMActivate_isv.exe
[2010.01.19 10:00:37 | 000,356,352 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\RMActivate.exe
[2010.01.19 10:00:37 | 000,306,688 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\RMActivate_ssp.exe
[2010.01.19 00:29:31 | 000,365,568 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\secproc_isv.dll
[2010.01.19 00:29:31 | 000,085,504 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\secproc_ssp_isv.dll
[2010.01.19 00:29:31 | 000,085,504 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\secproc_ssp.dll
[2010.01.19 00:29:30 | 000,369,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\secproc.dll
[2010.01.19 00:28:33 | 000,324,608 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\RMActivate_isv.exe
[2010.01.19 00:28:33 | 000,277,504 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\RMActivate_ssp_isv.exe
[2010.01.19 00:28:30 | 000,320,512 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\RMActivate.exe
[2010.01.19 00:28:30 | 000,280,064 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\RMActivate_ssp.exe
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]

========== Files Created - No Company Name ==========

[2010.02.10 10:49:43 | 000,293,376 | ---- | C] () -- C:\Users\Cerlaze\Desktop\mzrrn63i.exe
[2010.02.10 10:48:02 | 000,001,013 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
[2010.02.10 10:32:46 | 000,001,100 | ---- | C] () -- C:\Users\Cerlaze\Desktop\IsoBuster.lnk
[2010.02.09 22:35:29 | 1412,218,880 | ---- | C] () -- C:\Users\Cerlaze\Desktop\Little Big Planet.iso
[2010.02.09 21:17:45 | 027,556,501 | ---- | C] () -- C:\Users\Cerlaze\Desktop\550.PBP
[2010.02.09 07:14:25 | 000,001,085 | ---- | C] () -- C:\Users\Cerlaze\Desktop\TaskMate Pro.lnk
[2010.02.08 22:43:59 | 000,001,794 | ---- | C] () -- C:\Users\Cerlaze\Desktop\Counter-Strike Source.lnk
[2010.02.08 13:53:01 | 000,007,168 | ---- | C] () -- C:\Windows\SysWow64\drivers\StarOpen.sys
[2010.02.08 13:53:01 | 000,005,504 | ---- | C] () -- C:\Windows\SysNative\drivers\StarOpen.sys
[2010.02.08 13:39:57 | 000,000,000 | -H-- | C] () -- C:\Windows\SysNative\drivers\Msft_User_WpdFs_01_09_00.Wdf
[2010.02.08 00:56:56 | 327,634,385 | ---- | C] () -- C:\Users\Cerlaze\Documents\ExpressGate_Installer_V141014_XPVistaWin7.zip.dlm
[2010.02.07 15:05:24 | 000,010,530 | ---- | C] () -- C:\Windows\SysNative\Config.MPF
[2010.02.07 15:00:37 | 000,000,360 | ---- | C] () -- C:\Windows\tasks\McDefragTask.job
[2010.02.07 15:00:35 | 000,000,322 | ---- | C] () -- C:\Windows\tasks\McQcTask.job
[2010.02.07 10:34:39 | 000,021,692 | ---- | C] () -- C:\Windows\SysNative\oodbs.lor
[2010.02.06 23:22:23 | 000,000,023 | ---- | C] () -- C:\Windows\BlendSettings.ini
[2010.02.06 21:54:53 | 000,000,637 | ---- | C] () -- C:\Users\Cerlaze\Desktop\Musik.lnk
[2010.02.06 21:54:48 | 000,000,489 | ---- | C] () -- C:\Users\Cerlaze\Desktop\Sicherungen (D).lnk
[2010.02.06 21:52:02 | 000,272,464 | RHS- | C] () -- C:\RWBEX
[2010.02.06 21:52:02 | 000,000,020 | RHS- | C] () -- C:\winx.ld
[2010.02.06 21:38:04 | 000,001,383 | ---- | C] () -- C:\Users\Cerlaze\Desktop\JDownloader - Verknüpfung.lnk
[2010.02.06 21:31:21 | 000,000,045 | ---- | C] () -- C:\Windows\SysWow64\initdebug.nfo
[2010.02.06 21:29:42 | 000,000,000 | ---- | C] () -- C:\Windows\nsreg.dat
[2010.02.06 21:16:57 | 000,001,769 | ---- | C] () -- C:\Windows\Language_trs.ini
[2010.02.06 21:14:37 | 001,572,864 | -HS- | C] () -- C:\Users\Cerlaze\NTUSER.DAT
[2010.02.06 21:14:37 | 000,524,288 | -HS- | C] () -- C:\Users\Cerlaze\NTUSER.DAT{016888bd-6c6f-11de-8d1d-001e0bcde3ec}.TMContainer00000000000000000002.regtrans-ms
[2010.02.06 21:14:37 | 000,524,288 | -HS- | C] () -- C:\Users\Cerlaze\NTUSER.DAT{016888bd-6c6f-11de-8d1d-001e0bcde3ec}.TMContainer00000000000000000001.regtrans-ms
[2010.02.06 21:14:37 | 000,065,536 | -HS- | C] () -- C:\Users\Cerlaze\NTUSER.DAT{016888bd-6c6f-11de-8d1d-001e0bcde3ec}.TM.blf
[2010.02.06 21:14:37 | 000,000,020 | -HS- | C] () -- C:\Users\Cerlaze\ntuser.ini
[2010.02.06 21:07:13 | 000,000,000 | ---- | C] () -- C:\Windows\ativpsrm.bin
[2010.02.06 21:05:04 | 3220,480,000 | -HS- | C] () -- C:\hiberfil.sys
[2010.02.06 21:04:22 | 000,008,192 | RHS- | C] () -- C:\BOOTSECT.BAK
[2010.02.06 21:04:21 | 000,383,562 | RHS- | C] () -- C:\bootmgr
[2010.01.22 02:33:06 | 000,041,872 | ---- | C] () -- C:\Windows\SysWow64\xfcodec.dll
[2010.01.22 02:33:06 | 000,027,536 | ---- | C] () -- C:\Windows\SysNative\xfcodec64.dll
[2009.07.14 00:42:10 | 000,064,000 | ---- | C] () -- C:\Windows\SysWow64\BWContextHandler.dll
[2009.07.13 22:03:59 | 000,364,544 | ---- | C] () -- C:\Windows\SysWow64\msjetoledb40.dll
< End of report >

Cerlaze · 10.02.2010, 12:53

**1
danke für die raschen instruktionen.
die log nach dem Malwarebytes scan and clean hab ich nichtmehr gefunden,
starte den scan nocheinmal ohne bereinigung.
hab den otl scan direkt danach gemacht deswegen ist er von der zeit neuer.

Malwarebytes' Anti-Malware Log:

Malwarebytes' Anti-Malware 1.44
Datenbank Version: 3718
Windows 6.1.7600
Internet Explorer 8.0.7600.16385

10.02.2010 12:40:04
mbam-log-2010-02-10 (12-40-04).txt

Scan-Methode: Vollständiger Scan (C:\|D:\|E:\|)
Durchsuchte Objekte: 293722
Laufzeit: 47 minute(s), 59 second(s)

Infizierte Speicherprozesse: 0
Infizierte Speichermodule: 0
Infizierte Registrierungsschlüssel: 0
Infizierte Registrierungswerte: 0
Infizierte Dateiobjekte der Registrierung: 0
Infizierte Verzeichnisse: 0
Infizierte Dateien: 0

Infizierte Speicherprozesse:
(Keine bösartigen Objekte gefunden)

Infizierte Speichermodule:
(Keine bösartigen Objekte gefunden)

Infizierte Registrierungsschlüssel:
(Keine bösartigen Objekte gefunden)

Infizierte Registrierungswerte:
(Keine bösartigen Objekte gefunden)

Infizierte Dateiobjekte der Registrierung:
(Keine bösartigen Objekte gefunden)

Infizierte Verzeichnisse:
(Keine bösartigen Objekte gefunden)

Infizierte Dateien:
(Keine bösartigen Objekte gefunden)

**3
GMER

als ich das programm öffnete erschien diese fehlermeldung

bei dem klick auf scan wieder

nach dem schnellen scan von vlt 2 minuten meldete er, das keine modifikationen an windows vergenommen wurden.
deswegen auch keine log?!

[wegen der zeichenbegrenzung auf 2 posts geteilt]

Chris4You · 10.02.2010, 14:13

Hi,

zur Sicherheit:
Du hast zuerst MAM alles reinigen lassen, dann OTL (Log gepostet) und dann noch mal MAM (dieses Log ebenfalls gepostet)...

GMER muss als ADMIN ausgeführt werden...
Ist das ein 64Bit-System (dann läuft er eh nicht, aber ein Rootkit auch nicht

)...

chris

Cerlaze · 10.02.2010, 14:30

jop genauso wars

64 bit jop, andres prog oda passt ?

habe bisher den IE nichmehr gesehn

Chris4You · 10.02.2010, 15:45

Hi,

bitte noch Dr. Web:
http://www.trojaner-board.de/59299-a...eb-cureit.html
Nach Beendigung des Scans findes Du das Log unter %USERPROFILE%\DoctorWeb\CureIt.log.
Bevor du irgendwelche Aktionen unternimmst, kopiere bitte den Inhalt des Logs und poste ihn.
Die Log Datei ist sehr groß, ca. über 5MB Text. Benutzt einfach die Suche nach "infiziert" und kopiert betreffende Teile heraus, bevor Du sie postet.

chris

IE öffnet sich ohne befehl mit werbung

Log-Analyse und Auswertung: IE öffnet sich ohne befehl mit werbung