Zurück   Trojaner-Board > Malware entfernen > Plagegeister aller Art und deren Bekämpfung
PDM.Invader (Loader)

PDM.Invader (Loader)


Plagegeister aller Art und deren Bekämpfung: PDM.Invader (Loader)

Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen.

 
Vorheriger Beitrag Vorheriger Beitrag   Nächster Beitrag Nächster Beitrag
Alt 17.02.2010, 05:23   #2
.OrangE.
 
PDM.Invader (Loader) - Standard

PDM.Invader (Loader)


Logfile of random's system information tool 1.06 (written by random/random)
Run by Marcel at 2010-02-17 04:56:14
Microsoft Windows XP Home Edition Service Pack 3
System drive C: has 136 GB (89%) free of 153 GB
Total RAM: 895 MB (38% free)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 04:56:30, on 17.02.2010
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Programme\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe
C:\Programme\System Control Manager\MSIService.exe
C:\Programme\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\SearchIndexer.exe
C:\Programme\WIDCOMM\Bluetooth Software\bin\btwdins.exe
C:\Programme\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\WINDOWS\RTHDCPL.EXE
C:\Programme\Synaptics\SynTP\SynTPEnh.exe
C:\Programme\System Control Manager\MGSysCtrl.exe
C:\Programme\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Programme\WIDCOMM\Bluetooth Software\BTTray.exe
C:\WINDOWS\system32\wbem\unsecapp.exe
C:\Programme\ATI Technologies\ATI.ACE\Core-Static\ccc.exe
C:\WINDOWS\system32\NOTEPAD.EXE
C:\Programme\Mozilla Firefox\firefox.exe
C:\Programme\Kaspersky Lab\Kaspersky Anti-Virus 2010\klwtblfs.exe
C:\Dokumente und Einstellungen\Marcel\Desktop\RSIT.exe
C:\Programme\trend micro\Marcel.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Programme\Gemeinsame Dateien\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: IEVkbdBHO - {59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C} - C:\Programme\Kaspersky Lab\Kaspersky Anti-Virus 2010\ievkbd.dll
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Programme\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll
O2 - BHO: Windows Live Anmelde-Hilfsprogramm - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Programme\Gemeinsame Dateien\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\MI1933~1\Office14\URLREDIR.DLL
O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Programme\Windows Live\Toolbar\wltcore.dll
O2 - BHO: link filter bho - {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Programme\Kaspersky Lab\Kaspersky Anti-Virus 2010\klwtbbho.dll
O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Programme\Windows Live\Toolbar\wltcore.dll
O4 - HKLM\..\Run: [StartCCC] "C:\Programme\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [SynTPEnh] C:\Programme\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [MGSysCtrl] C:\Programme\System Control Manager\MGSysCtrl.exe
O4 - HKLM\..\Run: [AVP] "C:\Programme\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe"
O4 - HKLM\..\Run: [BCSSync] "C:\Programme\Microsoft Office\Office14\BCSSync.exe" /DelayServices
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Programme\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Programme\Gemeinsame Dateien\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\RunOnce: [Malwarebytes' Anti-Malware] C:\Programme\Malwarebytes' Anti-Malware\mbamgui.exe /install /silent
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\RunOnce: [FlashPlayerUpdate] C:\WINDOWS\system32\Macromed\Flash\NPSWF32_FlashUtil.exe -p
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOKALER DIENST')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETZWERKDIENST')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: BTTray.lnk = ?
O8 - Extra context menu item: An OneNote s&enden - res://C:\PROGRA~1\MI1933~1\Office14\ONBttnIE.dll/105
O8 - Extra context menu item: Nach Microsoft E&xel exportieren - res://C:\PROGRA~1\MI1933~1\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Senden an &Bluetooth-Gerät... - C:\Programme\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O8 - Extra context menu item: Senden an Bluetooth - C:\Programme\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: In Blog veröffentlichen - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Programme\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: In Windows Live Writer in Blog veröffentliche&n - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Programme\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: An OneNote senden - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Programme\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: An OneNote s&enden - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Programme\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: &Virtuelle Tastatur - {4248FE82-7FCB-46AC-B270-339F08212110} - C:\Programme\Kaspersky Lab\Kaspersky Anti-Virus 2010\klwtbbho.dll
O9 - Extra button: Verknüpfte &OneNote-Notizen - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Programme\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: Verknüpfte &OneNote-Notizen - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Programme\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra button: ICQ7 - {88EB38EF-4D2C-436D-ABD3-56B232674062} - C:\Programme\ICQ7.0\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ7 - {88EB38EF-4D2C-436D-ABD3-56B232674062} - C:\Programme\ICQ7.0\ICQ.exe
O9 - Extra button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Programme\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: @btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Programme\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: Li&nks untersuchen - {CCF151D8-D089-449F-A5A4-D9909053F20F} - C:\Programme\Kaspersky Lab\Kaspersky Anti-Virus 2010\klwtbbho.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programme\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programme\Messenger\msmsgs.exe
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1265754174125
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Programme\Gemeinsame Dateien\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O20 - AppInit_DLLs: C:\PROGRA~1\KASPER~1\KASPER~1\mzvkbd3.dll
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: Kaspersky Anti-Virus (AVP) - Kaspersky Lab - C:\Programme\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Programme\WIDCOMM\Bluetooth Software\bin\btwdins.exe
O23 - Service: Micro Star SCM - Micro-Star Int'l Co., Ltd. - C:\Programme\System Control Manager\MSIService.exe

--
End of file - 8141 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\User_Feed_Synchronization-{FC46B101-468A-48D5-9305-F8BC7D070F35}.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Programme\Gemeinsame Dateien\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-12-21 75200]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C}]
IEVkbdBHO Class - C:\Programme\Kaspersky Lab\Kaspersky Anti-Virus 2010\ievkbd.dll [2009-10-20 68112]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5C255C8A-E604-49b4-9D64-90988571CECB}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6EBF7485-159F-4bff-A14F-B9E3AAC4465B}]
Search Helper - C:\Programme\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll [2009-05-19 137600]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live Anmelde-Hilfsprogramm - C:\Programme\Gemeinsame Dateien\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-01-22 408448]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MI1933~1\Office14\URLREDIR.DLL [2009-11-03 556432]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E15A8DC0-8516-42A1-81EA-DC94EC1ACF10}]
Windows Live Toolbar Helper - C:\Programme\Windows Live\Toolbar\wltcore.dll [2009-02-06 1068904]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E33CF602-D945-461A-83F0-819F76A199F8}]
FilterBHO Class - C:\Programme\Kaspersky Lab\Kaspersky Anti-Virus 2010\klwtbbho.dll [2009-10-20 268816]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{21FA44EF-376D-4D53-9B0F-8A89D3229068} - &Windows Live Toolbar - C:\Programme\Windows Live\Toolbar\wltcore.dll [2009-02-06 1068904]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"=C:\Programme\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2009-03-12 61440]
"RTHDCPL"=C:\WINDOWS\RTHDCPL.EXE [2009-04-03 17567744]
"SynTPEnh"=C:\Programme\Synaptics\SynTP\SynTPEnh.exe [2009-03-06 1434920]
"MGSysCtrl"=C:\Programme\System Control Manager\MGSysCtrl.exe [2009-05-25 2048000]
"AVP"=C:\Programme\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe [2009-10-20 340456]
"BCSSync"=C:\Programme\Microsoft Office\Office14\BCSSync.exe [2009-09-26 83312]
"Adobe Reader Speed Launcher"=C:\Programme\Adobe\Reader 9.0\Reader\Reader_sl.exe [2009-12-22 35760]
"Adobe ARM"=C:\Programme\Gemeinsame Dateien\Adobe\ARM\1.0\AdobeARM.exe [2009-12-11 948672]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"Malwarebytes' Anti-Malware"=C:\Programme\Malwarebytes' Anti-Malware\mbamgui.exe [2010-01-07 429392]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"FlashPlayerUpdate"=C:\WINDOWS\system32\Macromed\Flash\NPSWF32_FlashUtil.exe [2009-10-28 257440]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Dokumente und Einstellungen^All Users^Startmenü^Programme^Autostart^Windows Search.lnk]
C:\PROGRA~1\WI459E~1\WINDOW~1.EXE [2008-05-26 123904]

C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Autostart
BTTray.lnk - C:\Programme\WIDCOMM\Bluetooth Software\BTTray.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLS"="C:\PROGRA~1\KASPER~1\KASPER~1\mzvkbd3.dll"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\AtiExtEvent]
C:\WINDOWS\system32\Ati2evxx.dll [2009-05-21 155648]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\klogon]
C:\WINDOWS\system32\klogon.dll [2009-10-20 219664]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{56F9679E-7826-4C84-81F3-532071A8BCC5}"=C:\Programme\Windows Desktop Search\MSNLNamespaceMgr.dll [2009-05-24 304128]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wdf01000.sys]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Programme\Windows Live\Messenger\wlcsdk.exe"="C:\Programme\Windows Live\Messenger\wlcsdk.exe:*:Enabled:Windows Live Call"
"C:\Programme\Windows Live\Messenger\msnmsgr.exe"="C:\Programme\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger"
"C:\Programme\Windows Live\Sync\WindowsLiveSync.exe"="C:\Programme\Windows Live\Sync\WindowsLiveSync.exe:*:Enabled:Windows Live Sync"
"C:\Programme\Microsoft Office\Office14\ONENOTE.EXE"="C:\Programme\Microsoft Office\Office14\ONENOTE.EXE:*:Enabled:Microsoft Office OneNote"
"C:\Programme\Microsoft Office\Office14\OUTLOOK.EXE"="C:\Programme\Microsoft Office\Office14\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook"
"C:\Programme\Steam\Steam.exe"="C:\Programme\Steam\Steam.exe:*:Enabled:Steam"
"C:\Programme\Steam\SteamApps\neon1993\condition zero\hl.exe"="C:\Programme\Steam\SteamApps\neon1993\condition zero\hl.exe:*:Enabled:Half-Life Launcher"
"C:\Programme\Steam\SteamApps\neon1993\condition zero deleted scenes\hl.exe"="C:\Programme\Steam\SteamApps\neon1993\condition zero deleted scenes\hl.exe:*:Enabled:Half-Life Launcher"
"C:\Programme\Steam\SteamApps\neon1993\counter-strike\hl.exe"="C:\Programme\Steam\SteamApps\neon1993\counter-strike\hl.exe:*:Enabled:Half-Life Launcher"
"C:\Programme\ICQ7.0\ICQ.exe"="C:\Programme\ICQ7.0\ICQ.exe:*:Enabled:ICQ7"
"C:\Programme\ICQ7.0\aolload.exe"="C:\Programme\ICQ7.0\aolload.exe:*:Enabled:aolload.exe"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Programme\Windows Live\Messenger\wlcsdk.exe"="C:\Programme\Windows Live\Messenger\wlcsdk.exe:*:Enabled:Windows Live Call"
"C:\Programme\Windows Live\Messenger\msnmsgr.exe"="C:\Programme\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger"
"C:\Programme\Windows Live\Sync\WindowsLiveSync.exe"="C:\Programme\Windows Live\Sync\WindowsLiveSync.exe:*:Enabled:Windows Live Sync"
"C:\Programme\ICQ7.0\ICQ.exe"="C:\Programme\ICQ7.0\ICQ.exe:*:Enabled:ICQ7"
"C:\Programme\ICQ7.0\aolload.exe"="C:\Programme\ICQ7.0\aolload.exe:*:Enabled:aolload.exe"

======List of files/folders created in the last 1 months======

2010-02-17 04:56:15 ----D---- C:\Programme\trend micro
2010-02-17 04:56:14 ----D---- C:\rsit
2010-02-17 03:58:11 ----D---- C:\Dokumente und Einstellungen\Marcel\Anwendungsdaten\Malwarebytes
2010-02-17 03:58:03 ----D---- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Malwarebytes
2010-02-17 03:58:02 ----D---- C:\Programme\Malwarebytes' Anti-Malware
2010-02-13 02:53:51 ----D---- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Adobe
2010-02-13 02:53:35 ----D---- C:\Programme\Gemeinsame Dateien\Adobe
2010-02-13 02:53:35 ----D---- C:\Programme\Adobe
2010-02-11 17:46:25 ----D---- C:\Dokumente und Einstellungen\Marcel\Anwendungsdaten\ICQ
2010-02-11 17:46:03 ----D---- C:\Programme\ICQ7.0
2010-02-11 15:53:41 ----D---- C:\Programme\Steam
2010-02-10 02:34:55 ----A---- C:\WINDOWS\system32\vfwwdm32.dll
2010-02-10 01:20:49 ----D---- C:\Programme\GIMP-2.0
2010-02-10 01:06:12 ----A---- C:\WINDOWS\system32\mucltui.dll.mui
2010-02-10 01:06:12 ----A---- C:\WINDOWS\system32\mucltui.dll
2010-02-10 00:57:50 ----D---- C:\Programme\Microsoft Synchronization Services
2010-02-10 00:57:42 ----D---- C:\Programme\Gemeinsame Dateien\DESIGNER
2010-02-10 00:57:09 ----D---- C:\Programme\Microsoft.NET
2010-02-10 00:54:41 ----D---- C:\Programme\Microsoft Analysis Services
2010-02-10 00:54:28 ----D---- C:\WINDOWS\SHELLNEW
2010-02-10 00:53:20 ----D---- C:\FILES
2010-02-10 00:53:11 ----D---- C:\Programme\Microsoft Office
2010-02-10 00:53:08 ----D---- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Microsoft Help
2010-02-10 00:52:36 ----RHD---- C:\MSOCache
2010-02-10 00:24:49 ----N---- C:\WINDOWS\system32\spmsg2.dll
2010-02-10 00:24:48 ----HDC---- C:\WINDOWS\$NtUninstallXPSEPSCLP$
2010-02-09 23:58:34 ----D---- C:\Programme\CCleaner
2010-02-09 23:41:09 ----SHD---- C:\RECYCLER
2010-02-09 23:41:08 ----D---- C:\Dokumente und Einstellungen\Marcel\Anwendungsdaten\Windows Search
2010-02-09 23:39:57 ----D---- C:\Programme\Microsoft Silverlight
2010-02-09 23:39:20 ----D---- C:\Programme\Microsoft Sync Framework
2010-02-09 23:38:32 ----A---- C:\WINDOWS\system32\d3dx9_32.dll
2010-02-09 23:38:27 ----D---- C:\Programme\Microsoft SQL Server Compact Edition
2010-02-09 23:37:15 ----D---- C:\Programme\Microsoft
2010-02-09 23:36:55 ----D---- C:\Programme\Windows Live SkyDrive
2010-02-09 23:36:28 ----D---- C:\Programme\Windows Live
2010-02-09 23:29:35 ----D---- C:\Programme\Gemeinsame Dateien\Windows Live
2010-02-09 23:16:13 ----D---- C:\WINDOWS\system32\XPSViewer
2010-02-09 23:16:09 ----D---- C:\Programme\MSBuild
2010-02-09 23:16:07 ----D---- C:\WINDOWS\system32\en-US
2010-02-09 23:16:00 ----D---- C:\Programme\Reference Assemblies
2010-02-09 23:15:29 ----N---- C:\WINDOWS\system32\prntvpt.dll
2010-02-09 23:15:28 ----N---- C:\WINDOWS\system32\xpssvcs.dll
2010-02-09 23:15:28 ----N---- C:\WINDOWS\system32\xpsshhdr.dll
2010-02-09 23:15:27 ----D---- C:\1bc4f55fcbea4ed097832bc2
2010-02-09 23:12:43 ----D---- C:\WINDOWS\pss
2010-02-09 23:03:46 ----HDC---- C:\WINDOWS\$NtUninstallbasecsp$
2010-02-09 23:03:44 ----D---- C:\Dokumente und Einstellungen\Marcel\Anwendungsdaten\Windows Desktop Search
2010-02-09 23:03:05 ----D---- C:\WINDOWS\system32\GroupPolicy
2010-02-09 23:03:05 ----D---- C:\Programme\Windows Desktop Search
2010-02-09 23:02:56 ----HDC---- C:\WINDOWS\$NtUninstallKB940157$
2010-02-09 23:02:14 ----N---- C:\WINDOWS\system32\spmsg.dll
2010-02-09 23:02:13 ----HDC---- C:\WINDOWS\$NtUninstallMSCompPackV1$
2010-02-09 23:01:38 ----D---- C:\Programme\Windows Media Connect 2
2010-02-09 23:01:27 ----HDC---- C:\WINDOWS\$NtUninstallwmp11$
2010-02-09 23:00:26 ----HDC---- C:\WINDOWS\$NtUninstallWMFDist11$
2010-02-09 22:59:49 ----D---- C:\WINDOWS\system32\LogFiles
2010-02-09 22:59:44 ----HDC---- C:\WINDOWS\$NtUninstallWudf01000$
2010-02-09 22:56:16 ----D---- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Windows Genuine Advantage
2010-02-09 22:46:04 ----D---- C:\WINDOWS\ie8updates
2010-02-09 22:45:34 ----D---- C:\WINDOWS\WBEM
2010-02-09 22:44:25 ----HDC---- C:\WINDOWS\ie8
2010-02-09 22:43:01 ----A---- C:\WINDOWS\system32\MRT.exe
2010-02-09 22:23:39 ----D---- C:\WINDOWS\system32\PreInstall
2010-02-09 22:23:37 ----HD---- C:\WINDOWS\$hf_mig$
2010-02-09 22:21:05 ----D---- C:\Programme\Kaspersky Lab
2010-02-09 22:21:05 ----D---- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Kaspersky Lab
2010-02-09 22:19:57 ----D---- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Kaspersky Lab Setup Files
2010-02-09 22:18:00 ----D---- C:\Dokumente und Einstellungen\***\Anwendungsdaten\Macromedia
2010-02-09 22:18:00 ----D---- C:\Dokumente und Einstellungen\***\Anwendungsdaten\Adobe
2010-02-09 22:16:15 ----D---- C:\Dokumente und Einstellungen\***\Anwendungsdaten\ATI
2010-02-09 22:16:15 ----D---- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\ATI
2010-02-09 22:16:07 ----D---- C:\WINDOWS\system32\Lang
2010-02-09 22:14:40 ----D---- C:\Programme\System Control Manager
2010-02-09 22:14:40 ----A---- C:\WINDOWS\system32\msiapcfg.dll
2010-02-09 22:14:33 ----D---- C:\Dokumente und Einstellungen\***\Anwendungsdaten\InstallShield
2010-02-09 22:14:08 ----N---- C:\WINDOWS\system32\spmsgXP_2k3.dll
2010-02-09 22:14:06 ----A---- C:\WINDOWS\system32\spupdsvc.exe
2010-02-09 22:14:05 ----HDC---- C:\WINDOWS\$NtUninstallWdf01007$
2010-02-09 22:14:00 ----D---- C:\Programme\Synaptics
2010-02-09 22:13:52 ----A---- C:\WINDOWS\system32\SynTPCo4.dll
2010-02-09 22:13:52 ----A---- C:\WINDOWS\system32\SynTPAPI.dll
2010-02-09 22:13:52 ----A---- C:\WINDOWS\system32\SynCtrl.dll
2010-02-09 22:13:50 ----A---- C:\WINDOWS\system32\SynCOM.dll
2010-02-09 22:13:48 ----A---- C:\WINDOWS\system32\WdfCoInstaller01007.dll
2010-02-09 22:13:27 ----A---- C:\WINDOWS\system32\RTSUSTORicon.dll
2010-02-09 22:12:46 ----D---- C:\WINDOWS\system32\RTCOM
2010-02-09 22:12:39 ----A---- C:\WINDOWS\RtkUpd.exe
2010-02-09 22:12:37 ----A---- C:\WINDOWS\vncutil.exe
2010-02-09 22:12:37 ----A---- C:\WINDOWS\SOUNDMAN.EXE
2010-02-09 22:12:36 ----A---- C:\WINDOWS\SkyTel.exe
2010-02-09 22:12:35 ----A---- C:\WINDOWS\RtlUpd.exe
2010-02-09 22:12:34 ----A---- C:\WINDOWS\RTLCPL.EXE
2010-02-09 22:12:32 ----A---- C:\WINDOWS\system32\RtkCoInstXP.dll
2010-02-09 22:12:32 ----A---- C:\WINDOWS\RtkAudioService.exe
2010-02-09 22:12:28 ----A---- C:\WINDOWS\RTHDCPL.EXE
2010-02-09 22:12:27 ----A---- C:\WINDOWS\MicCal.exe
2010-02-09 22:12:24 ----A---- C:\WINDOWS\ALCWZRD.EXE
2010-02-09 22:12:24 ----A---- C:\WINDOWS\ALCMTR.EXE
2010-02-09 22:12:18 ----A---- C:\WINDOWS\RtlExUpd.dll
2010-02-09 22:11:46 ----A---- C:\WINDOWS\system32\hidserv.dll
2010-02-09 22:10:49 ----A---- C:\WINDOWS\system32\ksuser.dll
2010-02-09 22:09:24 ----A---- C:\WINDOWS\system32\btw_ci.dll
2010-02-09 22:09:15 ----D---- C:\Programme\WIDCOMM
2010-02-09 22:08:06 ----A---- C:\WINDOWS\system32\RtNicProp32.dll
2010-02-09 22:08:05 ----D---- C:\Programme\Realtek
2010-02-09 22:04:37 ----RSD---- C:\WINDOWS\assembly
2010-02-09 22:04:18 ----D---- C:\WINDOWS\Microsoft.NET
2010-02-09 22:03:15 ----D---- C:\Programme\ATI Technologies
2010-02-09 22:02:59 ----D---- C:\Programme\Gemeinsame Dateien\InstallShield
2010-02-09 21:22:22 ----D---- C:\Dokumente und Einstellungen\Marcel\Anwendungsdaten\Mozilla
2010-02-09 21:22:16 ----D---- C:\Programme\Mozilla Firefox
2010-02-09 21:21:19 ----D---- C:\WINDOWS\system32\SoftwareDistribution
2010-02-09 21:17:49 ----D---- C:\WINDOWS\system32\ReinstallBackups
2010-02-09 21:17:30 ----DC---- C:\WINDOWS\system32\DRVSTORE
2010-02-09 21:17:30 ----D---- C:\WINDOWS\OPTIONS
2010-02-09 21:17:26 ----D---- C:\Programme\REALTEK 11n PCIE Wireless LAN Driver
2010-02-09 21:17:26 ----A---- C:\WINDOWS\system32\ISSRemoveSP.exe
2010-02-09 21:17:25 ----HD---- C:\Programme\InstallShield Installation Information
2010-02-09 02:28:22 ----RSH---- C:\boot.ini
2010-02-09 02:01:50 ----SHD---- C:\System Volume Information
2010-02-09 01:45:49 ----RSHDC---- C:\WINDOWS\system32\dllcache
2010-02-09 01:45:49 ----RSD---- C:\WINDOWS\Fonts
2010-02-09 01:45:49 ----RD---- C:\WINDOWS\Web
2010-02-09 01:45:49 ----HD---- C:\WINDOWS\inf
2010-02-09 01:45:49 ----D---- C:\WINDOWS\WinSxS
2010-02-09 01:45:49 ----D---- C:\WINDOWS\twain_32
2010-02-09 01:45:49 ----D---- C:\WINDOWS\Temp
2010-02-09 01:45:49 ----D---- C:\WINDOWS\system32\wins
2010-02-09 01:45:49 ----D---- C:\WINDOWS\system32\wbem
2010-02-09 01:45:49 ----D---- C:\WINDOWS\system32\usmt
2010-02-09 01:45:49 ----D---- C:\WINDOWS\system32\spool
2010-02-09 01:45:49 ----D---- C:\WINDOWS\system32\ShellExt
2010-02-09 01:45:49 ----D---- C:\WINDOWS\system32\Setup
2010-02-09 01:45:49 ----D---- C:\WINDOWS\system32\ras
2010-02-09 01:45:49 ----D---- C:\WINDOWS\system32\oobe
2010-02-09 01:45:49 ----D---- C:\WINDOWS\system32\npp
2010-02-09 01:45:49 ----D---- C:\WINDOWS\system32\mui
2010-02-09 01:45:49 ----D---- C:\WINDOWS\system32\inetsrv
2010-02-09 01:45:49 ----D---- C:\WINDOWS\system32\IME
2010-02-09 01:45:49 ----D---- C:\WINDOWS\system32\icsxml
2010-02-09 01:45:49 ----D---- C:\WINDOWS\system32\ias
2010-02-09 01:45:49 ----D---- C:\WINDOWS\system32\export
2010-02-09 01:45:49 ----D---- C:\WINDOWS\system32\drivers
2010-02-09 01:45:49 ----D---- C:\WINDOWS\system32\dhcp
2010-02-09 01:45:49 ----D---- C:\WINDOWS\system32\de-de
2010-02-09 01:45:49 ----D---- C:\WINDOWS\system32\de
2010-02-09 01:45:49 ----D---- C:\WINDOWS\system32\config
2010-02-09 01:45:49 ----D---- C:\WINDOWS\system32\3com_dmi
2010-02-09 01:45:49 ----D---- C:\WINDOWS\system32\3076
2010-02-09 01:45:49 ----D---- C:\WINDOWS\system32\2052
2010-02-09 01:45:49 ----D---- C:\WINDOWS\system32\1054
2010-02-09 01:45:49 ----D---- C:\WINDOWS\system32\1042
2010-02-09 01:45:49 ----D---- C:\WINDOWS\system32\1041
2010-02-09 01:45:49 ----D---- C:\WINDOWS\system32\1037
2010-02-09 01:45:49 ----D---- C:\WINDOWS\system32\1033
2010-02-09 01:45:49 ----D---- C:\WINDOWS\system32\1031
2010-02-09 01:45:49 ----D---- C:\WINDOWS\system32\1028
2010-02-09 01:45:49 ----D---- C:\WINDOWS\system32\1025
2010-02-09 01:45:49 ----D---- C:\WINDOWS\system32
2010-02-09 01:45:49 ----D---- C:\WINDOWS\system
2010-02-09 01:45:49 ----D---- C:\WINDOWS\security
2010-02-09 01:45:49 ----D---- C:\WINDOWS\Resources
2010-02-09 01:45:49 ----D---- C:\WINDOWS\repair
2010-02-09 01:45:49 ----D---- C:\WINDOWS\Provisioning
2010-02-09 01:45:49 ----D---- C:\WINDOWS\PeerNet
2010-02-09 01:45:49 ----D---- C:\WINDOWS\pchealth
2010-02-09 01:45:49 ----D---- C:\WINDOWS\OEMDRV
2010-02-09 01:45:49 ----D---- C:\WINDOWS\Network Diagnostic
2010-02-09 01:45:49 ----D---- C:\WINDOWS\mui
2010-02-09 01:45:49 ----D---- C:\WINDOWS\msapps
2010-02-09 01:45:49 ----D---- C:\WINDOWS\msagent
2010-02-09 01:45:49 ----D---- C:\WINDOWS\Media
2010-02-09 01:45:49 ----D---- C:\WINDOWS\L2Schemas
2010-02-09 01:45:49 ----D---- C:\WINDOWS\java
2010-02-09 01:45:49 ----D---- C:\WINDOWS\ime
2010-02-09 01:45:49 ----D---- C:\WINDOWS\Help
2010-02-09 01:45:49 ----D---- C:\WINDOWS\Driver Cache
2010-02-09 01:45:49 ----D---- C:\WINDOWS\Debug
2010-02-09 01:45:49 ----D---- C:\WINDOWS\Cursors
2010-02-09 01:45:49 ----D---- C:\WINDOWS\Connection Wizard
2010-02-09 01:45:49 ----D---- C:\WINDOWS\Config
2010-02-09 01:45:49 ----D---- C:\WINDOWS\AppPatch
2010-02-09 01:45:49 ----D---- C:\WINDOWS\addins
2010-02-09 01:45:49 ----D---- C:\WINDOWS
2010-02-09 01:41:25 ----D---- C:\Dokumente und Einstellungen\***\Anwendungsdaten\Identities
2010-02-09 01:41:23 ----HD---- C:\Programme\Uninstall Information
2010-02-09 01:41:19 ----SD---- C:\Dokumente und Einstellungen\***\Anwendungsdaten\Microsoft
2010-02-09 01:41:19 ----ASH---- C:\Dokumente und Einstellungen\***\Anwendungsdaten\desktop.ini
2010-02-09 01:40:38 ----D---- C:\WINDOWS\SoftwareDistribution
2010-02-09 01:40:36 ----SD---- C:\WINDOWS\system32\Microsoft
2010-02-09 01:40:36 ----N---- C:\WINDOWS\SchedLgU.Txt
2010-02-09 01:40:36 ----D---- C:\WINDOWS\Prefetch
2010-02-09 01:37:05 ----D---- C:\WINDOWS\system32\xircom
2010-02-09 01:37:05 ----D---- C:\Programme\xerox
2010-02-09 01:37:05 ----D---- C:\Programme\microsoft frontpage
2010-02-09 01:36:54 ----A---- C:\WINDOWS\control.ini
2010-02-09 01:36:54 ----A---- C:\AUTOEXEC.BAT
2010-02-09 01:36:33 ----A---- C:\WINDOWS\system32\mapi32.dll
2010-02-09 01:35:47 ----SD---- C:\WINDOWS\Downloaded Program Files
2010-02-09 01:35:47 ----RD---- C:\WINDOWS\Offline Web Pages
2010-02-09 01:35:47 ----RAH---- C:\WINDOWS\system32\logonui.exe.manifest
2010-02-09 01:35:41 ----RAH---- C:\WINDOWS\system32\cdplayer.exe.manifest
2010-02-09 01:35:37 ----HD---- C:\Programme\WindowsUpdate
2010-02-09 01:35:33 ----D---- C:\Programme\Online-Dienste
2010-02-09 01:35:23 ----D---- C:\WINDOWS\system32\DirectX
2010-02-09 01:35:22 ----A---- C:\WINDOWS\system32\desktop.ini
2010-02-09 01:35:22 ----A---- C:\WINDOWS\system32\atrace.dll
2010-02-09 01:35:22 ----A---- C:\WINDOWS\desktop.ini
2010-02-09 01:35:21 ----D---- C:\Programme\Gemeinsame Dateien\Dienste
2010-02-09 01:35:21 ----A---- C:\WINDOWS\system32\nmevtmsg.dll
2010-02-09 01:35:21 ----A---- C:\WINDOWS\system32\acctres.dll
2010-02-09 01:35:20 ----SD---- C:\WINDOWS\Tasks
2010-02-09 01:35:20 ----D---- C:\WINDOWS\srchasst
2010-02-09 01:35:20 ----D---- C:\Programme\Gemeinsame Dateien\MSSoap
2010-02-09 01:35:20 ----A---- C:\WINDOWS\system32\icfgnt5.dll
2010-02-09 01:35:19 ----D---- C:\WINDOWS\system32\Macromed
2010-02-09 01:35:18 ----A---- C:\WINDOWS\system32\wuweb.dll
2010-02-09 01:35:18 ----A---- C:\WINDOWS\system32\wups.dll
2010-02-09 01:35:18 ----A---- C:\WINDOWS\system32\wucltui.dll
2010-02-09 01:35:18 ----A---- C:\WINDOWS\system32\wuauserv.dll
2010-02-09 01:35:18 ----A---- C:\WINDOWS\system32\wuaueng1.dll
2010-02-09 01:35:18 ----A---- C:\WINDOWS\system32\wuaueng.dll
2010-02-09 01:35:18 ----A---- C:\WINDOWS\system32\wuauclt1.exe
2010-02-09 01:35:18 ----A---- C:\WINDOWS\system32\wuauclt.exe
2010-02-09 01:35:17 ----D---- C:\Programme\Movie Maker
2010-02-09 01:35:17 ----A---- C:\WINDOWS\system32\wuapi.dll
2010-02-09 01:35:17 ----A---- C:\WINDOWS\system32\qmgrprxy.dll
2010-02-09 01:35:17 ----A---- C:\WINDOWS\system32\qmgr.dll
2010-02-09 01:35:17 ----A---- C:\WINDOWS\system32\bitsprx4.dll
2010-02-09 01:35:17 ----A---- C:\WINDOWS\system32\bitsprx3.dll
2010-02-09 01:35:17 ----A---- C:\WINDOWS\system32\bitsprx2.dll
2010-02-09 01:35:12 ----D---- C:\WINDOWS\system32\Restore
2010-02-09 01:35:12 ----A---- C:\WINDOWS\system32\srsvc.dll
2010-02-09 01:35:12 ----A---- C:\WINDOWS\system32\srrstr.dll
2010-02-09 01:35:12 ----A---- C:\WINDOWS\system32\srclient.dll
2010-02-09 01:35:12 ----A---- C:\WINDOWS\system32\safrslv.dll
2010-02-09 01:35:12 ----A---- C:\WINDOWS\system32\safrdm.dll
2010-02-09 01:35:12 ----A---- C:\WINDOWS\system32\safrcdlg.dll
2010-02-09 01:35:12 ----A---- C:\WINDOWS\system32\racpldlg.dll
2010-02-09 01:35:12 ----A---- C:\WINDOWS\system32\fltMc.exe
2010-02-09 01:35:12 ----A---- C:\WINDOWS\system32\fltlib.dll
2010-02-09 01:35:11 ----D---- C:\Programme\NetMeeting
2010-02-09 01:35:11 ----A---- C:\WINDOWS\system32\nmmkcert.dll
2010-02-09 01:35:11 ----A---- C:\WINDOWS\system32\msoert2.dll
2010-02-09 01:35:11 ----A---- C:\WINDOWS\system32\msoeacct.dll
2010-02-09 01:35:11 ----A---- C:\WINDOWS\system32\msconf.dll
2010-02-09 01:35:11 ----A---- C:\WINDOWS\system32\mnmsrvc.exe
2010-02-09 01:35:11 ----A---- C:\WINDOWS\system32\mnmdd.dll
2010-02-09 01:35:11 ----A---- C:\WINDOWS\system32\isrdbg32.dll
2010-02-09 01:35:11 ----A---- C:\WINDOWS\system32\inetres.dll
2010-02-09 01:35:11 ----A---- C:\WINDOWS\system32\inetcomm.dll
2010-02-09 01:35:11 ----A---- C:\WINDOWS\system32\ils.dll
2010-02-09 01:35:10 ----D---- C:\Programme\Outlook Express
2010-02-09 01:35:10 ----A---- C:\WINDOWS\system32\schedsvc.dll
2010-02-09 01:35:10 ----A---- C:\WINDOWS\system32\mstinit.exe
2010-02-09 01:35:10 ----A---- C:\WINDOWS\system32\mstask.dll
2010-02-09 01:35:10 ----A---- C:\WINDOWS\system32\isign32.dll
2010-02-09 01:35:10 ----A---- C:\WINDOWS\system32\inetcfg.dll
2010-02-09 01:35:10 ----A---- C:\WINDOWS\system32\icwphbk.dll
2010-02-09 01:35:10 ----A---- C:\WINDOWS\system32\icwdial.dll
2010-02-09 01:35:09 ----D---- C:\Programme\Internet Explorer
2010-02-09 01:35:09 ----D---- C:\Programme\Gemeinsame Dateien\System
2010-02-09 01:34:57 ----D---- C:\Programme\ComPlus Applications
2010-02-09 01:34:55 ----A---- C:\WINDOWS\vbaddin.ini
2010-02-09 01:34:55 ----A---- C:\WINDOWS\vb.ini
2010-02-09 01:34:50 ----D---- C:\WINDOWS\Registration
2010-02-09 01:34:16 ----D---- C:\Programme\Windows Media Player
2010-02-09 01:34:16 ----D---- C:\Programme\Online Services
2010-02-09 01:34:10 ----D---- C:\Programme\Messenger
2010-02-09 01:34:09 ----D---- C:\Programme\MSN Gaming Zone
2010-02-09 01:34:09 ----A---- C:\WINDOWS\system32\write.exe
2010-02-09 01:34:07 ----A---- C:\WINDOWS\system32\winchat.exe
2010-02-09 01:34:07 ----A---- C:\WINDOWS\system32\sndvol32.exe
2010-02-09 01:34:07 ----A---- C:\WINDOWS\system32\hticons.dll
2010-02-09 01:34:07 ----A---- C:\WINDOWS\system32\avwav.dll
2010-02-09 01:34:07 ----A---- C:\WINDOWS\system32\avtapi.dll
2010-02-09 01:34:07 ----A---- C:\WINDOWS\system32\avmeter.dll
2010-02-09 01:34:05 ----A---- C:\WINDOWS\system32\winmine.exe
2010-02-09 01:34:05 ----A---- C:\WINDOWS\system32\usrlogon.cmd
2010-02-09 01:34:05 ----A---- C:\WINDOWS\system32\tsshutdn.exe
2010-02-09 01:34:05 ----A---- C:\WINDOWS\system32\tslabels.ini
2010-02-09 01:34:05 ----A---- C:\WINDOWS\system32\tskill.exe
2010-02-09 01:34:05 ----A---- C:\WINDOWS\system32\tsdiscon.exe
2010-02-09 01:34:05 ----A---- C:\WINDOWS\system32\tscon.exe
2010-02-09 01:34:05 ----A---- C:\WINDOWS\system32\sol.exe
2010-02-09 01:34:05 ----A---- C:\WINDOWS\system32\shadow.exe
2010-02-09 01:34:05 ----A---- C:\WINDOWS\system32\rwinsta.exe
2010-02-09 01:34:05 ----A---- C:\WINDOWS\system32\reset.exe
2010-02-09 01:34:05 ----A---- C:\WINDOWS\system32\regini.exe
2010-02-09 01:34:05 ----A---- C:\WINDOWS\system32\rdpcfgex.dll
2010-02-09 01:34:05 ----A---- C:\WINDOWS\system32\qwinsta.exe
2010-02-09 01:34:05 ----A---- C:\WINDOWS\system32\qappsrv.exe
2010-02-09 01:34:05 ----A---- C:\WINDOWS\system32\mshearts.exe
2010-02-09 01:34:05 ----A---- C:\WINDOWS\system32\msg.exe
2010-02-09 01:34:05 ----A---- C:\WINDOWS\system32\msdtcprf.ini
2010-02-09 01:34:05 ----A---- C:\WINDOWS\system32\logoff.exe
2010-02-09 01:34:05 ----A---- C:\WINDOWS\system32\getuname.dll
2010-02-09 01:34:05 ----A---- C:\WINDOWS\system32\freecell.exe
2010-02-09 01:34:05 ----A---- C:\WINDOWS\system32\charmap.exe
2010-02-09 01:34:05 ----A---- C:\WINDOWS\system32\cdmodem.dll
2010-02-09 01:34:05 ----A---- C:\WINDOWS\system32\calc.exe
2010-02-09 01:34:04 ----A---- C:\WINDOWS\system32\wmimgmt.msc
2010-02-09 01:34:02 ----D---- C:\Programme\MSN
2010-02-09 01:34:02 ----A---- C:\WINDOWS\system32\sndrec32.exe
2010-02-09 01:34:02 ----A---- C:\WINDOWS\system32\mplay32.exe
2010-02-09 01:34:02 ----A---- C:\WINDOWS\system32\accwiz.exe
2010-02-09 01:34:01 ----D---- C:\Programme\Windows NT
2010-02-09 01:34:01 ----A---- C:\WINDOWS\system32\tsgqec.dll
2010-02-09 01:34:01 ----A---- C:\WINDOWS\system32\tscfgwmi.dll
2010-02-09 01:34:01 ----A---- C:\WINDOWS\system32\termsrv.dll
2010-02-09 01:34:01 ----A---- C:\WINDOWS\system32\spider.exe
2010-02-09 01:34:01 ----A---- C:\WINDOWS\system32\sessmgr.exe
2010-02-09 01:34:01 ----A---- C:\WINDOWS\system32\rhttpaa.dll
2010-02-09 01:34:01 ----A---- C:\WINDOWS\system32\remotepg.dll
2010-02-09 01:34:01 ----A---- C:\WINDOWS\system32\rdshost.exe
2010-02-09 01:34:01 ----A---- C:\WINDOWS\system32\rdsaddin.exe
2010-02-09 01:34:01 ----A---- C:\WINDOWS\system32\rdpwsx.dll
2010-02-09 01:34:01 ----A---- C:\WINDOWS\system32\rdpsnd.dll
2010-02-09 01:34:01 ----A---- C:\WINDOWS\system32\rdchost.dll
2010-02-09 01:34:01 ----A---- C:\WINDOWS\system32\mstscax.dll
2010-02-09 01:34:01 ----A---- C:\WINDOWS\system32\mstsc.exe
2010-02-09 01:34:01 ----A---- C:\WINDOWS\system32\mspaint.exe
2010-02-09 01:34:01 ----A---- C:\WINDOWS\system32\hypertrm.dll
2010-02-09 01:34:01 ----A---- C:\WINDOWS\system32\clipbrd.exe
2010-02-09 01:34:01 ----A---- C:\WINDOWS\system32\aaclient.dll
2010-02-09 01:34:00 ----D---- C:\WINDOWS\system32\MsDtc
2010-02-09 01:34:00 ----A---- C:\WINDOWS\system32\xolehlp.dll
2010-02-09 01:34:00 ----A---- C:\WINDOWS\system32\rdpclip.exe
2010-02-09 01:34:00 ----A---- C:\WINDOWS\system32\qprocess.exe
2010-02-09 01:34:00 ----A---- C:\WINDOWS\system32\mtxoci.dll
2010-02-09 01:34:00 ----A---- C:\WINDOWS\system32\msdtcuiu.dll
2010-02-09 01:34:00 ----A---- C:\WINDOWS\system32\msdtctm.dll
2010-02-09 01:34:00 ----A---- C:\WINDOWS\system32\msdtcprx.dll
2010-02-09 01:34:00 ----A---- C:\WINDOWS\system32\msdtclog.dll
2010-02-09 01:34:00 ----A---- C:\WINDOWS\system32\msdtc.exe
2010-02-09 01:34:00 ----A---- C:\WINDOWS\system32\icaapi.dll
2010-02-09 01:34:00 ----A---- C:\WINDOWS\system32\cfgbkend.dll
2010-02-09 01:33:59 ----D---- C:\WINDOWS\system32\Com
2010-02-09 01:33:59 ----A---- C:\WINDOWS\system32\stclient.dll
2010-02-09 01:33:59 ----A---- C:\WINDOWS\system32\mtxlegih.dll
2010-02-09 01:33:59 ----A---- C:\WINDOWS\system32\mtxex.dll
2010-02-09 01:33:59 ----A---- C:\WINDOWS\system32\mtxdm.dll
2010-02-09 01:33:59 ----A---- C:\WINDOWS\system32\dcomcnfg.exe
2010-02-09 01:33:59 ----A---- C:\WINDOWS\system32\comuid.dll
2010-02-09 01:33:59 ----A---- C:\WINDOWS\system32\comsvcs.dll
2010-02-09 01:33:59 ----A---- C:\WINDOWS\system32\comsnap.dll
2010-02-09 01:33:59 ----A---- C:\WINDOWS\system32\comrepl.dll
2010-02-09 01:33:59 ----A---- C:\WINDOWS\system32\comaddin.dll
2010-02-09 01:33:59 ----A---- C:\WINDOWS\system32\colbact.dll
2010-02-09 01:33:59 ----A---- C:\WINDOWS\system32\clbcatq.dll
2010-02-09 01:33:59 ----A---- C:\WINDOWS\system32\clbcatex.dll
2010-02-09 01:33:59 ----A---- C:\WINDOWS\system32\catsrvut.dll
2010-02-09 01:33:59 ----A---- C:\WINDOWS\system32\catsrvps.dll
2010-02-09 01:33:59 ----A---- C:\WINDOWS\system32\catsrv.dll
2010-02-09 01:33:58 ----A---- C:\WINDOWS\system32\servdeps.dll
2010-02-09 01:33:58 ----A---- C:\WINDOWS\system32\mmfutil.dll
2010-02-09 01:33:58 ----A---- C:\WINDOWS\system32\licwmi.dll
2010-02-09 01:33:58 ----A---- C:\WINDOWS\system32\cmprops.dll
2010-02-09 01:33:01 ----A---- C:\WINDOWS\system32\h323log.txt
2010-02-09 01:31:01 ----A---- C:\WINDOWS\system32\usbui.dll
2010-02-09 01:29:56 ----SHD---- C:\WINDOWS\Installer
2010-02-09 01:29:56 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2010-02-09 01:29:55 ----D---- C:\Programme\Gemeinsame Dateien\ODBC
2010-02-09 01:29:55 ----A---- C:\WINDOWS\ODBCINST.INI
2010-02-09 01:29:54 ----D---- C:\Programme\Gemeinsame Dateien\SpeechEngines
2010-02-09 01:29:54 ----D---- C:\Programme\Gemeinsame Dateien\Microsoft Shared
2010-02-09 01:29:53 ----RD---- C:\Programme
2010-02-09 01:29:53 ----D---- C:\Programme\Gemeinsame Dateien
2010-02-09 01:29:49 ----N---- C:\WINDOWS\system32\CONFIG.TMP
2010-02-09 01:29:49 ----A---- C:\WINDOWS\TASKMAN.EXE
2010-02-09 01:29:49 ----A---- C:\WINDOWS\system32\spxcoins.dll
2010-02-09 01:29:49 ----A---- C:\WINDOWS\system32\irclass.dll
2010-02-09 01:29:49 ----A---- C:\WINDOWS\system32\EqnClass.Dll
2010-02-09 01:29:49 ----A---- C:\WINDOWS\system32\dgsetup.dll
2010-02-09 01:29:49 ----A---- C:\WINDOWS\system32\dgrpsetu.dll
2010-02-09 01:29:48 ----A---- C:\WINDOWS\system32\storprop.dll
2010-02-09 01:29:48 ----A---- C:\WINDOWS\system32\batt.dll
2010-02-09 01:29:48 ----A---- C:\WINDOWS\NOTEPAD.EXE
2010-02-09 01:29:39 ----ASH---- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\desktop.ini
2010-02-09 01:29:30 ----D---- C:\WINDOWS\system32\CatRoot2
2010-02-09 01:29:30 ----D---- C:\WINDOWS\system32\CatRoot
2010-02-09 01:29:24 ----SD---- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Microsoft
2010-02-09 01:29:10 ----D---- C:\Dokumente und Einstellungen
2010-02-09 01:22:35 ----A---- C:\WINDOWS\system32\presetup.cmd
2010-02-09 01:18:11 ----A---- C:\WINDOWS\system32\msjter40.dll
2010-02-09 01:18:11 ----A---- C:\WINDOWS\system32\msjint40.dll
2010-02-09 01:18:11 ----A---- C:\WINDOWS\system32\msjetoledb40.dll
2010-02-09 01:18:10 ----A---- C:\WINDOWS\system32\msltus40.dll
2010-02-09 01:18:10 ----A---- C:\WINDOWS\system32\msjtes40.dll
2010-02-09 01:18:10 ----A---- C:\WINDOWS\system32\msidntld.dll
2010-02-09 01:18:10 ----A---- C:\WINDOWS\system32\mshtmler.dll
2010-02-09 01:18:10 ----A---- C:\WINDOWS\system32\mshtmled.dll
2010-02-09 01:18:06 ----A---- C:\WINDOWS\system32\msorc32r.dll
2010-02-09 01:18:05 ----A---- C:\WINDOWS\system32\msr2cenu.dll
2010-02-09 01:18:05 ----A---- C:\WINDOWS\system32\msorcl32.dll
2010-02-09 01:18:05 ----A---- C:\WINDOWS\system32\msnetobj.dll
2010-02-09 01:18:04 ----A---- C:\WINDOWS\system32\mspmsnsv.dll
2010-02-09 01:18:04 ----A---- C:\WINDOWS\system32\mspbde40.dll
2010-02-09 01:18:04 ----A---- C:\WINDOWS\system32\mspatcha.dll
2010-02-09 01:18:04 ----A---- C:\WINDOWS\system32\msftedit.dll
2010-02-09 01:18:03 ----A---- C:\WINDOWS\system32\mscpxl32.dLL
2010-02-09 01:18:03 ----A---- C:\WINDOWS\system32\mscpx32r.dLL
2010-02-09 01:18:03 ----A---- C:\WINDOWS\system32\mscdexnt.exe
2010-02-09 01:18:03 ----A---- C:\WINDOWS\system32\msaudite.dll
2010-02-09 01:18:02 ----A---- C:\WINDOWS\system32\msapsspc.dll
2010-02-09 01:18:02 ----A---- C:\WINDOWS\system32\mpnotify.exe
2010-02-09 01:18:01 ----A---- C:\WINDOWS\system32\msaatext.dll
2010-02-09 01:18:00 ----A---- C:\WINDOWS\system32\msexcl40.dll
2010-02-09 01:18:00 ----A---- C:\WINDOWS\system32\msexch40.dll
2010-02-09 01:18:00 ----A---- C:\WINDOWS\system32\msencode.dll
2010-02-09 01:17:59 ----A---- C:\WINDOWS\system32\msdadiag.dll
2010-02-09 01:17:58 ----A---- C:\WINDOWS\system32\netapi32.dll
2010-02-09 01:17:58 ----A---- C:\WINDOWS\system32\msratelc.dll
2010-02-09 01:17:57 ----A---- C:\WINDOWS\system32\nddeapir.exe
2010-02-09 01:17:57 ----A---- C:\WINDOWS\system32\ncobjapi.dll
2010-02-09 01:17:57 ----A---- C:\WINDOWS\system32\narrhook.dll
2010-02-09 01:17:57 ----A---- C:\WINDOWS\system32\narrator.exe
2010-02-09 01:17:56 ----A---- C:\WINDOWS\system32\nddenb32.dll
2010-02-09 01:17:53 ----A---- C:\WINDOWS\system32\mswdat10.dll
2010-02-09 01:17:53 ----A---- C:\WINDOWS\system32\msvcrt20.dll
2010-02-09 01:17:53 ----A---- C:\WINDOWS\system32\msvbvm60.dll
2010-02-09 01:17:53 ----A---- C:\WINDOWS\system32\msvbvm50.dll
2010-02-09 01:17:53 ----A---- C:\WINDOWS\system32\mstlsapi.dll
2010-02-09 01:17:53 ----A---- C:\WINDOWS\system32\mstext40.dll
2010-02-09 01:17:52 ----A---- C:\WINDOWS\system32\mswebdvd.dll
2010-02-09 01:17:52 ----A---- C:\WINDOWS\system32\msvidctl.dll
2010-02-09 01:17:52 ----A---- C:\WINDOWS\system32\msvidc32.dll
2010-02-09 01:17:52 ----A---- C:\WINDOWS\system32\msvcrt40.dll
2010-02-09 01:17:52 ----A---- C:\WINDOWS\system32\mssign32.dll
2010-02-09 01:17:52 ----A---- C:\WINDOWS\system32\msrecr40.dll
2010-02-09 01:17:52 ----A---- C:\WINDOWS\system32\msrd3x40.dll
2010-02-09 01:17:52 ----A---- C:\WINDOWS\system32\msrd2x40.dll
2010-02-09 01:17:51 ----A---- C:\WINDOWS\system32\msshavmsg.dll
2010-02-09 01:17:51 ----A---- C:\WINDOWS\system32\msrepl40.dll
2010-02-09 01:17:51 ----A---- C:\WINDOWS\system32\msrclr40.dll
2010-02-09 01:17:51 ----A---- C:\WINDOWS\system32\msrating.dll
2010-02-09 01:17:50 ----A---- C:\WINDOWS\system32\napmontr.dll
2010-02-09 01:17:50 ----A---- C:\WINDOWS\system32\napipsec.dll
2010-02-09 01:17:50 ----A---- C:\WINDOWS\system32\mycomput.dll
2010-02-09 01:17:49 ----A---- C:\WINDOWS\system32\msxbde40.dll
2010-02-09 01:17:49 ----A---- C:\WINDOWS\system32\mswstr10.dll
2010-02-09 01:17:43 ----A---- C:\WINDOWS\system32\mciole16.dll
2010-02-09 01:17:43 ----A---- C:\WINDOWS\system32\mciavi32.dll
2010-02-09 01:17:43 ----A---- C:\WINDOWS\system32\mchgrcoi.dll
2010-02-09 01:17:43 ----A---- C:\WINDOWS\system32\mcdsrv32.dll
2010-02-09 01:17:43 ----A---- C:\WINDOWS\system32\mcastmib.dll
2010-02-09 01:17:43 ----A---- C:\WINDOWS\system32\mapistub.dll
2010-02-09 01:17:43 ----A---- C:\WINDOWS\system32\mag_hook.dll
2010-02-09 01:17:43 ----A---- C:\WINDOWS\system32\lzexpand.dll
2010-02-09 01:17:43 ----A---- C:\WINDOWS\system32\loghours.dll
2010-02-09 01:17:42 ----A---- C:\WINDOWS\system32\lprmonui.dll
2010-02-09 01:17:42 ----A---- C:\WINDOWS\system32\logagent.exe
2010-02-09 01:17:42 ----A---- C:\WINDOWS\system32\localspl.dll
2010-02-09 01:17:42 ----A---- C:\WINDOWS\system32\localsec.dll
2010-02-09 01:17:41 ----A---- C:\WINDOWS\system32\loadperf.dll
2010-02-09 01:17:41 ----A---- C:\WINDOWS\system32\linkinfo.dll
2010-02-09 01:17:40 ----A---- C:\WINDOWS\system32\mciqtz32.dll
2010-02-09 01:17:40 ----A---- C:\WINDOWS\system32\mciole32.dll
2010-02-09 01:17:39 ----A---- C:\WINDOWS\system32\mmutilse.dll
2010-02-09 01:17:39 ----A---- C:\WINDOWS\system32\mmcshext.dll
2010-02-09 01:17:39 ----A---- C:\WINDOWS\system32\mmcndmgr.dll
2010-02-09 01:17:39 ----A---- C:\WINDOWS\system32\mimefilt.dll
2010-02-09 01:17:38 ----A---- C:\WINDOWS\system32\mmsystem.dll
2010-02-09 01:17:38 ----A---- C:\WINDOWS\system32\miglibnt.dll
2010-02-09 01:17:37 ----A---- C:\WINDOWS\system32\MP4SDMOD.dll
2010-02-09 01:17:37 ----A---- C:\WINDOWS\system32\MP43DMOD.dll
2010-02-09 01:17:37 ----A---- C:\WINDOWS\system32\mfc42loc.dll
2010-02-09 01:17:37 ----A---- C:\WINDOWS\system32\mfc40loc.dll
2010-02-09 01:17:36 ----A---- C:\WINDOWS\system32\MPG4DMOD.dll
2010-02-09 01:17:36 ----A---- C:\WINDOWS\system32\mountvol.exe
2010-02-09 01:17:35 ----A---- C:\WINDOWS\system32\moricons.dll
2010-02-09 01:17:30 ----A---- C:\WINDOWS\system32\qagentrt.dll
2010-02-09 01:17:30 ----A---- C:\WINDOWS\system32\pstorsvc.dll
2010-02-09 01:17:30 ----A---- C:\WINDOWS\system32\psnppagn.dll
2010-02-09 01:17:30 ----A---- C:\WINDOWS\system32\pschdprf.ini
2010-02-09 01:17:30 ----A---- C:\WINDOWS\system32\pschdprf.dll
2010-02-09 01:17:29 ----A---- C:\WINDOWS\system32\qedwipes.dll
2010-02-09 01:17:29 ----A---- C:\WINDOWS\system32\qcliprov.dll
2010-02-09 01:17:29 ----A---- C:\WINDOWS\system32\prodspec.ini
2010-02-09 01:17:28 ----A---- C:\WINDOWS\system32\regedt32.exe
2010-02-09 01:17:28 ----A---- C:\WINDOWS\system32\proxycfg.exe
2010-02-09 01:17:28 ----A---- C:\WINDOWS\system32\proquota.exe
2010-02-09 01:17:28 ----A---- C:\WINDOWS\system32\prflbmsg.dll
2010-02-09 01:17:27 ----A---- C:\WINDOWS\system32\regsvr32.exe
2010-02-09 01:17:26 ----A---- C:\WINDOWS\system32\rcbdyctl.dll
2010-02-09 01:17:26 ----A---- C:\WINDOWS\system32\rasphone.exe
2010-02-09 01:17:26 ----A---- C:\WINDOWS\system32\rasmontr.dll
2010-02-09 01:17:26 ----A---- C:\WINDOWS\system32\rasadhlp.dll
2010-02-09 01:17:25 ----A---- C:\WINDOWS\system32\rasautou.exe
2010-02-09 01:17:25 ----A---- C:\WINDOWS\system32\rasapi32.dll
2010-02-09 01:17:25 ----A---- C:\WINDOWS\system32\powrprof.dll
2010-02-09 01:17:24 ----A---- C:\WINDOWS\system32\perfproc.dll
2010-02-09 01:17:22 ----A---- C:\WINDOWS\system32\perffilt.ini
2010-02-09 01:17:22 ----A---- C:\WINDOWS\system32\perfdisk.dll
2010-02-09 01:17:22 ----A---- C:\WINDOWS\system32\perfctrs.dll
2010-02-09 01:17:21 ----A---- C:\WINDOWS\system32\powercfg.exe
2010-02-09 01:17:21 ----A---- C:\WINDOWS\system32\polstore.dll
2010-02-09 01:17:17 ----A---- C:\WINDOWS\system32\serwvdrv.dll
2010-02-09 01:17:17 ----A---- C:\WINDOWS\system32\services.msc
2010-02-09 01:17:17 ----A---- C:\WINDOWS\system32\photowiz.dll
2010-02-09 01:17:16 ----A---- C:\WINDOWS\system32\setupdll.dll
2010-02-09 01:17:16 ----A---- C:\WINDOWS\system32\setupapi.dll
2010-02-09 01:17:16 ----A---- C:\WINDOWS\system32\services.exe
2010-02-09 01:17:16 ----A---- C:\WINDOWS\system32\serialui.dll
2010-02-09 01:17:15 ----A---- C:\WINDOWS\system32\sendmail.dll
2010-02-09 01:17:15 ----A---- C:\WINDOWS\system32\sendcmsg.dll
2010-02-09 01:17:14 ----A---- C:\WINDOWS\system32\shutdown.exe
2010-02-09 01:17:14 ----A---- C:\WINDOWS\system32\shmgrate.exe
2010-02-09 01:17:13 ----A---- C:\WINDOWS\system32\sigverif.exe
2010-02-09 01:17:13 ----A---- C:\WINDOWS\system32\shfolder.dll
2010-02-09 01:17:11 ----A---- C:\WINDOWS\system32\sfcfiles.dll
2010-02-09 01:17:11 ----A---- C:\WINDOWS\system32\security.dll
2010-02-09 01:17:10 ----A---- C:\WINDOWS\system32\rundll32.exe
2010-02-09 01:17:10 ----A---- C:\WINDOWS\system32\rtipxmib.dll
2010-02-09 01:17:10 ----A---- C:\WINDOWS\system32\rtcshare.exe
2010-02-09 01:17:09 ----A---- C:\WINDOWS\system32\rsvpperf.dll
2010-02-09 01:17:09 ----A---- C:\WINDOWS\system32\riched32.dll
2010-02-09 01:17:09 ----A---- C:\WINDOWS\system32\riched20.dll
2010-02-09 01:17:09 ----A---- C:\WINDOWS\system32\resutils.dll
2010-02-09 01:17:08 ----A---- C:\WINDOWS\system32\routetab.dll
2010-02-09 01:17:08 ----A---- C:\WINDOWS\system32\routemon.exe
2010-02-09 01:17:07 ----A---- C:\WINDOWS\system32\seclogon.dll
2010-02-09 01:17:07 ----A---- C:\WINDOWS\system32\sdhcinst.dll
2010-02-09 01:17:07 ----A---- C:\WINDOWS\system32\scardssp.dll
2010-02-09 01:17:07 ----A---- C:\WINDOWS\system32\scarddlg.dll
2010-02-09 01:17:07 ----A---- C:\WINDOWS\system32\savedump.exe
2010-02-09 01:17:06 ----A---- C:\WINDOWS\system32\sclgntfy.dll
2010-02-09 01:17:06 ----A---- C:\WINDOWS\system32\schannel.dll
2010-02-09 01:17:06 ----A---- C:\WINDOWS\system32\scardsvr.exe
2010-02-09 01:17:03 ----A---- C:\WINDOWS\system32\nslookup.exe
2010-02-09 01:17:03 ----A---- C:\WINDOWS\system32\npptools.dll
2010-02-09 01:17:02 ----RASH---- C:\NTDETECT.COM
2010-02-09 01:17:00 ----A---- C:\WINDOWS\system32\netevent.dll
2010-02-09 01:16:58 ----A---- C:\WINDOWS\system32\netsetup.exe
2010-02-09 01:16:57 ----A---- C:\WINDOWS\system32\netshell.dll
2010-02-09 01:16:56 ----A---- C:\WINDOWS\system32\netplwiz.dll
2010-02-09 01:16:56 ----A---- C:\WINDOWS\system32\netlogon.dll
2010-02-09 01:16:54 ----A---- C:\WINDOWS\system32\opengl32.dll
2010-02-09 01:16:54 ----A---- C:\WINDOWS\system32\olethk32.dll
2010-02-09 01:16:54 ----A---- C:\WINDOWS\system32\olecnv32.dll
2010-02-09 01:16:54 ----A---- C:\WINDOWS\system32\olecli32.dll
2010-02-09 01:16:53 ----A---- C:\WINDOWS\system32\pautoenr.dll
2010-02-09 01:16:53 ----A---- C:\WINDOWS\system32\olesvr32.dll
2010-02-09 01:16:53 ----A---- C:\WINDOWS\system32\olepro32.dll
2010-02-09 01:16:53 ----A---- C:\WINDOWS\system32\oleaut32.dll
2010-02-09 01:16:53 ----A---- C:\WINDOWS\system32\oleaccrc.dll
2010-02-09 01:16:53 ----A---- C:\WINDOWS\system32\ole2disp.dll
2010-02-09 01:16:51 ----A---- C:\WINDOWS\system32\pathping.exe
2010-02-09 01:16:51 ----A---- C:\WINDOWS\system32\packager.exe
2010-02-09 01:16:51 ----A---- C:\WINDOWS\system32\p2pnetsh.dll
2010-02-09 01:16:51 ----A---- C:\WINDOWS\system32\p2pgraph.dll
2010-02-09 01:16:51 ----A---- C:\WINDOWS\system32\p2pgasvc.dll
2010-02-09 01:16:51 ----A---- C:\WINDOWS\system32\osuninst.exe
2010-02-09 01:16:51 ----A---- C:\WINDOWS\system32\osuninst.dll
2010-02-09 01:16:50 ----A---- C:\WINDOWS\system32\xpob2res.dll
2010-02-09 01:16:50 ----A---- C:\WINDOWS\system32\odbcad32.exe
2010-02-09 01:16:50 ----A---- C:\WINDOWS\system32\odbc32gt.dll
2010-02-09 01:16:50 ----A---- C:\WINDOWS\system32\odbc16gt.dll
2010-02-09 01:16:50 ----A---- C:\WINDOWS\system32\nwprovau.dll
2010-02-09 01:16:49 ----A---- C:\WINDOWS\system32\ocmanage.dll
2010-02-09 01:16:49 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2010-02-09 01:16:49 ----A---- C:\WINDOWS\system32\ntmsoprq.msc
2010-02-09 01:16:49 ----A---- C:\WINDOWS\system32\ntlanui2.dll
2010-02-09 01:16:49 ----A---- C:\WINDOWS\system32\ntlanman.dll
2010-02-09 01:16:48 ----A---- C:\WINDOWS\system32\ntsdexts.dll
2010-02-09 01:16:47 ----A---- C:\WINDOWS\system32\odtext32.dll
2010-02-09 01:16:47 ----A---- C:\WINDOWS\system32\oddbse32.dll
2010-02-09 01:16:47 ----A---- C:\WINDOWS\system32\odbctrac.dll
2010-02-09 01:16:47 ----A---- C:\WINDOWS\system32\odbcp32r.dll
2010-02-09 01:16:46 ----A---- C:\WINDOWS\system32\odbcjt32.dll
2010-02-09 01:16:46 ----A---- C:\WINDOWS\system32\odbcji32.dll
2010-02-09 01:16:46 ----A---- C:\WINDOWS\system32\odbccu32.dll
2010-02-09 01:16:46 ----A---- C:\WINDOWS\system32\odbccr32.dll
2010-02-09 01:16:46 ----A---- C:\WINDOWS\system32\odbccp32.dll
2010-02-09 01:16:46 ----A---- C:\WINDOWS\system32\odbcconf.exe
2010-02-09 01:16:46 ----A---- C:\WINDOWS\system32\odbcconf.dll
2010-02-09 01:16:45 ----A---- C:\WINDOWS\system32\compmgmt.msc
2010-02-09 01:16:45 ----A---- C:\WINDOWS\system32\compatUI.dll
2010-02-09 01:16:45 ----A---- C:\WINDOWS\system32\comdlg32.dll
2010-02-09 01:16:45 ----A---- C:\WINDOWS\system32\comctl32.dll
2010-02-09 01:16:45 ----A---- C:\WINDOWS\system32\cmsetACL.dll
2010-02-09 01:16:45 ----A---- C:\WINDOWS\system32\cmdial32.dll
2010-02-09 01:16:44 ----A---- C:\WINDOWS\system32\cliconfg.exe
2010-02-09 01:16:42 ----A---- C:\WINDOWS\system32\compstui.dll
2010-02-09 01:16:40 ----A---- C:\WINDOWS\system32\cliconfg.dll
2010-02-09 01:16:38 ----A---- C:\WINDOWS\system32\cfgmgr32.dll
2010-02-09 01:16:37 ----A---- C:\WINDOWS\system32\shellstyle.dll
2010-02-09 01:16:36 ----A---- C:\WINDOWS\system32\cleanmgr.exe
2010-02-09 01:16:35 ----A---- C:\WINDOWS\system32\diskcopy.com
2010-02-09 01:16:35 ----A---- C:\WINDOWS\system32\diskcomp.com
2010-02-09 01:16:35 ----A---- C:\WINDOWS\system32\cidaemon.exe
2010-02-09 01:16:34 ----A---- C:\WINDOWS\system32\diskmgmt.msc
2010-02-09 01:16:34 ----A---- C:\WINDOWS\system32\diskcopy.dll
2010-02-09 01:16:33 ----A---- C:\WINDOWS\system32\dimsntfy.dll
2010-02-09 01:16:33 ----A---- C:\WINDOWS\system32\diactfrm.dll
2010-02-09 01:16:32 ----A---- C:\WINDOWS\system32\docprop2.dll
2010-02-09 01:16:32 ----A---- C:\WINDOWS\system32\dimsroam.dll
2010-02-09 01:16:31 ----A---- C:\WINDOWS\system32\dpnlobby.dll
2010-02-09 01:16:31 ----A---- C:\WINDOWS\system32\dpnhupnp.dll
2010-02-09 01:16:31 ----A---- C:\WINDOWS\system32\dpnhpast.dll
2010-02-09 01:16:31 ----A---- C:\WINDOWS\system32\dpmodemx.dll
2010-02-09 01:16:31 ----A---- C:\WINDOWS\system32\dplaysvr.exe
2010-02-09 01:16:31 ----A---- C:\WINDOWS\system32\dot3gpclnt.dll
2010-02-09 01:16:31 ----A---- C:\WINDOWS\system32\dnsrslvr.dll
2010-02-09 01:16:31 ----A---- C:\WINDOWS\system32\dmserver.dll
2010-02-09 01:16:31 ----A---- C:\WINDOWS\system32\dmscript.dll
2010-02-09 01:16:31 ----A---- C:\WINDOWS\system32\dmremote.exe
2010-02-09 01:16:31 ----A---- C:\WINDOWS\system32\dllhst3g.exe
2010-02-09 01:16:30 ----A---- C:\WINDOWS\system32\dmloader.dll
2010-02-09 01:16:30 ----A---- C:\WINDOWS\system32\dmdskres.dll
2010-02-09 01:16:30 ----A---- C:\WINDOWS\system32\diskperf.exe
2010-02-09 01:16:30 ----A---- C:\WINDOWS\system32\diskpart.exe
2010-02-09 01:16:29 ----A---- C:\WINDOWS\system32\dmdskmgr.dll
2010-02-09 01:16:29 ----A---- C:\WINDOWS\system32\dmconfig.dll
2010-02-09 01:16:29 ----A---- C:\WINDOWS\system32\dmcompos.dll
2010-02-09 01:16:29 ----A---- C:\WINDOWS\system32\dhcpsapi.dll
2010-02-09 01:16:29 ----A---- C:\WINDOWS\system32\csseqchk.dll
2010-02-09 01:16:28 ----A---- C:\WINDOWS\system32\d3dpmesh.dll
2010-02-09 01:16:28 ----A---- C:\WINDOWS\system32\d3dim700.dll
2010-02-09 01:16:27 ----A---- C:\WINDOWS\system32\cryptsvc.dll
2010-02-09 01:16:27 ----A---- C:\WINDOWS\system32\cryptnet.dll
2010-02-09 01:16:27 ----A---- C:\WINDOWS\system32\cryptext.dll
2010-02-09 01:16:26 ----A---- C:\WINDOWS\system32\deskperf.dll
2010-02-09 01:16:26 ----A---- C:\WINDOWS\system32\cryptdll.dll
2010-02-09 01:16:26 ----A---- C:\WINDOWS\system32\cryptdlg.dll
2010-02-09 01:16:25 ----A---- C:\WINDOWS\system32\dhcpcsvc.dll
2010-02-09 01:16:25 ----A---- C:\WINDOWS\system32\dfsshlex.dll
2010-02-09 01:16:25 ----A---- C:\WINDOWS\system32\dfrgsnap.dll
2010-02-09 01:16:25 ----A---- C:\WINDOWS\system32\dfrgntfs.exe
2010-02-09 01:16:25 ----A---- C:\WINDOWS\system32\ddeshare.exe
2010-02-09 01:16:25 ----A---- C:\WINDOWS\system32\dbmsrpcn.dll
2010-02-09 01:16:24 ----A---- C:\WINDOWS\system32\dciman32.dll
2010-02-09 01:16:24 ----A---- C:\WINDOWS\system32\dataclen.dll
2010-02-09 01:16:23 ----A---- C:\WINDOWS\system32\dbnmpntw.dll
2010-02-09 01:16:23 ----A---- C:\WINDOWS\system32\dbnetlib.dll
2010-02-09 01:16:21 ----A---- C:\WINDOWS\system32\advapi32.dll
2010-02-09 01:16:21 ----A---- C:\WINDOWS\system32\adsmsext.dll
2010-02-09 01:16:20 ----A---- C:\WINDOWS\system32\asycfilt.dll
2010-02-09 01:16:20 ----A---- C:\WINDOWS\system32\asferror.dll
2010-02-09 01:16:20 ----A---- C:\WINDOWS\system32\amstream.dll
2010-02-09 01:16:20 ----A---- C:\WINDOWS\system32\admparse.dll
2010-02-09 01:16:18 ----A---- C:\WINDOWS\system32\actxprxy.dll
2010-02-09 01:16:18 ----A---- C:\WINDOWS\system32\actmovie.exe
2010-02-09 01:16:16 ----A---- C:\WINDOWS\system32\activeds.dll
2010-02-09 01:16:14 ----A---- C:\WINDOWS\system32\browsewm.dll
2010-02-09 01:16:14 ----A---- C:\WINDOWS\system32\browseui.dll
2010-02-09 01:16:14 ----A---- C:\WINDOWS\system32\browselc.dll
2010-02-09 01:16:12 ----A---- C:\WINDOWS\system32\capesnpn.dll
2010-02-09 01:16:11 ----A---- C:\WINDOWS\system32\avifil32.dll
2010-02-09 01:16:11 ----A---- C:\WINDOWS\system32\avicap32.dll
2010-02-09 01:16:11 ----A---- C:\WINDOWS\system32\autodisc.dll
2010-02-09 01:16:11 ----A---- C:\WINDOWS\system32\autoconv.exe
2010-02-09 01:16:10 ----A---- C:\WINDOWS\system32\auditusr.exe
2010-02-09 01:16:09 ----A---- C:\WINDOWS\system32\audiosrv.dll
2010-02-09 01:16:09 ----A---- C:\WINDOWS\system32\atmpvcno.dll
2010-02-09 01:16:08 ----A---- C:\WINDOWS\system32\bootvrfy.exe
2010-02-09 01:16:07 ----A---- C:\WINDOWS\system32\dpnmodem.dll
2010-02-09 01:16:07 ----A---- C:\WINDOWS\system32\blastcln.exe
2010-02-09 01:16:07 ----A---- C:\WINDOWS\system32\blackbox.dll
2010-02-09 01:16:07 ----A---- C:\WINDOWS\system32\batmeter.dll
2010-02-09 01:16:06 ----A---- C:\WINDOWS\system32\ipconfig.exe
2010-02-09 01:16:06 ----A---- C:\WINDOWS\system32\iologmsg.dll
2010-02-09 01:16:06 ----A---- C:\WINDOWS\system32\infosoft.dll
2010-02-09 01:16:05 ----A---- C:\WINDOWS\system32\inetppui.dll
2010-02-09 01:16:05 ----A---- C:\WINDOWS\system32\inetmib1.dll
2010-02-09 01:16:05 ----A---- C:\WINDOWS\system32\inetcplc.dll
2010-02-09 01:16:05 ----A---- C:\WINDOWS\system32\imeshare.dll
2010-02-09 01:16:05 ----A---- C:\WINDOWS\system32\imagehlp.dll
2010-02-09 01:16:03 ----A---- C:\WINDOWS\system32\ippromon.dll
2010-02-09 01:16:03 ----A---- C:\WINDOWS\system32\ipnathlp.dll
2010-02-09 01:16:03 ----A---- C:\WINDOWS\system32\iphlpapi.dll
__________________
 

Themen zu PDM.Invader (Loader)
.com, 32-bit, beim starten, components, dateien, dll, excel, explorer, fehler, firefox, flash player, index, install.exe, installation, kaspersky, log, logfile, micro, microsoft, microsoft office 2010, msiexec.exe, neue, programme, registrierungsschlüssel, rundll, scan, server, starten, trojaner, trojaner board, updates, windows internet, windows internet explorer, windows media player, wireless lan


« Urls mit Wort d ownload können nicht geöffnet werden | Trojaner schreibt sich bei jedem Booten in den Quelltext meiner Webseiten »


Ähnliche Themen: PDM.Invader (Loader)


  1. obession.co.ua/loader/loadit.exe
    Log-Analyse und Auswertung - 24.01.2014 (5)
  2. Tube Loader 15
    Log-Analyse und Auswertung - 12.11.2013 (3)
  3. Trojaner WTR Loader
    Log-Analyse und Auswertung - 28.04.2011 (18)
  4. WTR Loader
    Log-Analyse und Auswertung - 26.04.2011 (1)
  5. Kaspersky meldet verschlüsselte Verbindung /PDM INVADER /PDM Hidden data sending
    Log-Analyse und Auswertung - 30.03.2010 (1)
  6. Invader Hinweis von Kaspersky aber kein Befund?
    Plagegeister aller Art und deren Bekämpfung - 14.10.2008 (2)
  7. Heur.Invader, Trojan.Win32.Inject.mf oder was ganz anderes?
    Log-Analyse und Auswertung - 15.07.2008 (10)
  8. Virus Heur. Invader wurde gefunden
    Plagegeister aller Art und deren Bekämpfung - 18.04.2008 (17)
  9. loader.exe
    Alles rund um Windows - 22.02.2008 (0)
  10. potentille gefährliche Invader in folgenden Dateinen
    Plagegeister aller Art und deren Bekämpfung - 12.08.2007 (5)
  11. setup40.exe im Outlook Express Ordner ein Invader?
    Plagegeister aller Art und deren Bekämpfung - 29.07.2007 (24)
  12. Invader und Trojaner?? Hilfe!
    Plagegeister aller Art und deren Bekämpfung - 25.07.2007 (1)
  13. browser öffnen sich selbstständig , kaspersky meldet kurz invader dann nichtmehr...
    Log-Analyse und Auswertung - 26.02.2007 (14)
  14. Photo loader resident - was nun?
    Log-Analyse und Auswertung - 24.06.2006 (11)
  15. system/loader.dll
    Antiviren-, Firewall- und andere Schutzprogramme - 16.05.2005 (2)
  16. Loader.exe
    Plagegeister aller Art und deren Bekämpfung - 17.10.2004 (5)
  17. Datei loader.exe
    Antiviren-, Firewall- und andere Schutzprogramme - 16.07.2004 (1)
Anleitungen und Tipps

- Für alle Hilfesuchenden! Was beachten?

- Anleitung: MyStartSearch.com entfernen

- Anleitung: WebSearches löschen

- Hilfe: iStartSurf entfernen – so gehts!

- Anleitung: Omiga Plus richtig entfernen

- Browser Viren entfernen


Zum Thema PDM.Invader (Loader) - Logfile of random's system information tool 1.06 (written by random/random) Run by Marcel at 2010-02-17 04:56:14 Microsoft Windows XP Home Edition Service Pack 3 System drive C: has 136 GB - PDM.Invader (Loader)...
Archiv
Du betrachtest: PDM.Invader (Loader) auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130 131