| |
| |||||||
Log-Analyse und Auswertung: ICQ-Virus 'Schau dir das Bild mal an :D'Windows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML. |
 |
25.06.2010, 19:11
| #1 |
| |  ICQ-Virus 'Schau dir das Bild mal an :D' Hallo zusammen, Ich habe dieses Problem ebenfalls auf dem PC meiner Freundin festgestellt und die Schritte bis hierher verfolgt. Nun habe ich mit Spyware Terminator die dateien entfernt und OTL laufen lassen. Das Ergebniss ist folgendes: OTL Logfile: Code:
ATTFilter OTL logfile created on: 25.06.2010 19:50:03 - Run 1 OTL by OldTimer - Version 3.2.7.0 Folder = C:\Users\Dine\Documents\Downloads 64bit- Home Premium Edition (Version = 6.1.7600) - Type = NTWorkstation Internet Explorer (Version = 8.0.7600.16385) Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy 4,00 Gb Total Physical Memory | 2,00 Gb Available Physical Memory | 45,00% Memory free 8,00 Gb Paging File | 6,00 Gb Available in Paging File | 73,00% Paging File free Paging file location(s): ?:\pagefile.sys [binary data] %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86) Drive C: | 283,40 Gb Total Space | 249,54 Gb Free Space | 88,05% Space Free | Partition Type: NTFS D: Drive not present or media not loaded E: Drive not present or media not loaded F: Drive not present or media not loaded G: Drive not present or media not loaded H: Drive not present or media not loaded I: Drive not present or media not loaded Computer Name: DINE-PC Current User Name: Dine Logged in as Administrator. Current Boot Mode: Normal Scan Mode: Current user Include 64bit Scans Company Name Whitelist: Off Skip Microsoft Files: Off File Age = 180 Days Output = Minimal ========== Processes (SafeList) ========== PRC - C:\Windows\SysWow64\DRIVERS\o2flash.exe File not found PRC - C:\Users\Dine\Documents\Downloads\OTL.exe (OldTimer Tools) PRC - C:\Program Files (x86)\Spyware Terminator\SpywareTerminatorUpdate.exe (Crawler.com) PRC - C:\Program Files (x86)\Spyware Terminator\sp_rsser.exe (Crawler.com) PRC - C:\Program Files (x86)\Spyware Terminator\SpywareTerminatorShield.exe (Crawler.com) PRC - C:\Program Files (x86)\Crawler\Toolbar\CToolbar.exe (Crawler.com) PRC - C:\PROGRA~2\McAfee\MSC\mcmscsvc.exe (McAfee, Inc.) PRC - C:\PROGRA~2\McAfee\MSC\McLgView.exe (McAfee, Inc.) PRC - C:\Program Files (x86)\Spyware Terminator\Spywareterminator.exe (Crawler.com) PRC - C:\Windows\SysWOW64\Macromed\Flash\FlashUtil10e.exe (Adobe Systems, Inc.) PRC - C:\Program Files (x86)\Dell DataSafe Online\DataSafeOnline.exe () PRC - C:\PROGRA~2\McAfee\VIRUSS~1\mcsysmon.exe (McAfee, Inc.) PRC - c:\PROGRA~2\mcafee.com\agent\mcagent.exe (McAfee, Inc.) PRC - C:\Program Files (x86)\McAfee\MPF\MPFSrv.exe (McAfee, Inc.) PRC - C:\Program Files (x86)\Roxio\Roxio Burn\RoxioBurnLauncher.exe () PRC - C:\Program Files (x86)\McAfee\MSK\MskSrver.exe (McAfee, Inc.) PRC - C:\Program Files (x86)\Dell DataSafe Local Backup\Toaster.exe (SoftThinks - Dell) PRC - C:\Program Files (x86)\Dell DataSafe Local Backup\sftservice.EXE (SoftThinks) PRC - C:\PROGRA~2\COMMON~1\McAfee\McProxy\McProxy.exe (McAfee, Inc.) PRC - C:\Program Files (x86)\Common Files\mcafee\mna\mcnasvc.exe (McAfee, Inc.) PRC - C:\Program Files (x86)\CyberLink\PowerDVD DX\PDVDDXSrv.exe (CyberLink Corp.) PRC - C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe (Creative Technology Ltd) PRC - C:\Programme\Dell\DellDock\DockLogin.exe (Stardock Corporation) PRC - C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAAnotif.exe (Intel Corporation) PRC - C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTMon.exe (Intel Corporation) PRC - C:\Program Files (x86)\Dell Support Center\bin\sprtsvc.exe (SupportSoft, Inc.) PRC - C:\Program Files (x86)\Dell Support Center\bin\sprtcmd.exe (SupportSoft, Inc.) PRC - C:\Program Files (x86)\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe (Microsoft Corporation) PRC - C:\Program Files (x86)\Windows Live\Toolbar\wltuser.exe (Microsoft Corporation) ========== Modules (SafeList) ========== MOD - C:\Users\Dine\Documents\Downloads\OTL.exe (OldTimer Tools) MOD - C:\Windows\SysWOW64\msscript.ocx (Microsoft Corporation) MOD - C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16385_none_421189da2b7fabfc\comctl32.dll (Microsoft Corporation) ========== Win32 Services (SafeList) ========== SRV:64bit: - (wltrysvc) -- C:\Program Files\Dell\Dell Wireless WLAN Card\WLTRYSVC.EXE () SRV:64bit: - (STacSV) -- C:\Windows\SysNative\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_afc3018f8cfedd20\stacsv64.exe (IDT, Inc.) SRV:64bit: - (AMD External Events Utility) -- C:\Windows\SysNative\atiesrxx.exe (AMD) SRV:64bit: - (O2FLASH) -- C:\Windows\SysNative\drivers\o2flash.exe (O2Micro International) SRV - (sp_rssrv) -- C:\Program Files (x86)\Spyware Terminator\sp_rsser.exe (Crawler.com) SRV - (mcmscsvc) -- C:\PROGRA~2\McAfee\MSC\mcmscsvc.exe (McAfee, Inc.) SRV - (GameConsoleService) -- C:\Program Files (x86)\WildTangent\Dell Games\Dell Game Console\GameConsoleService.exe (WildTangent, Inc.) SRV - (McShield) -- C:\Programme\McAfee\VirusScan\Mcshield.exe (McAfee, Inc.) SRV - (McSysmon) -- C:\PROGRA~2\McAfee\VIRUSS~1\mcsysmon.exe (McAfee, Inc.) SRV - (McODS) -- C:\Programme\McAfee\VirusScan\mcods.exe (McAfee, Inc.) SRV - (MpfService) -- C:\Program Files (x86)\McAfee\MPF\MPFSrv.exe (McAfee, Inc.) SRV - (MSK80Service) -- C:\Program Files (x86)\McAfee\MSK\MskSrver.exe (McAfee, Inc.) SRV - (SftService) -- C:\Program Files (x86)\Dell DataSafe Local Backup\sftservice.EXE (SoftThinks) SRV - (VSS) -- C:\Windows\Vss [2009.07.14 05:20:14 | 000,000,000 | ---D | M] SRV - (MSDTC) -- C:\Windows\SysWOW64\Msdtc [2009.07.14 05:20:14 | 000,000,000 | ---D | M] SRV - (vds) -- C:\Windows\SysWOW64\wbem\vds.mof () SRV - (McProxy) -- C:\PROGRA~2\COMMON~1\McAfee\McProxy\McProxy.exe (McAfee, Inc.) SRV - (McNASvc) -- C:\Program Files (x86)\Common Files\mcafee\mna\mcnasvc.exe (McAfee, Inc.) SRV - (DockLoginService) -- C:\Programme\Dell\DellDock\DockLogin.exe (Stardock Corporation) SRV - (IAANTMON) Intel(R) -- C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTMon.exe (Intel Corporation) SRV - (sprtsvc_DellSupportCenter) SupportSoft Sprocket Service (DellSupportCenter) -- C:\Program Files (x86)\Dell Support Center\bin\sprtsvc.exe (SupportSoft, Inc.) SRV - (SeaPort) -- C:\Program Files (x86)\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe (Microsoft Corporation) ========== Driver Services (SafeList) ========== DRV:64bit: - (mfehidk) -- C:\Windows\SysNative\drivers\mfehidk.sys (McAfee, Inc.) DRV:64bit: - (mfeavfk) -- C:\Windows\SysNative\drivers\mfeavfk.sys (McAfee, Inc.) DRV:64bit: - (mfesmfk) -- C:\Windows\SysNative\drivers\mfesmfk.sys (McAfee, Inc.) DRV:64bit: - (mferkdk) -- C:\Windows\SysNative\drivers\mferkdk.sys (McAfee, Inc.) DRV:64bit: - (Acceler) -- C:\Windows\SysNative\drivers\Acceler.sys (ST Microelectronics) DRV:64bit: - (BCM42RLY) -- C:\Windows\SysNative\drivers\bcm42rly.sys (Broadcom Corporation) DRV:64bit: - (BCM43XX) -- C:\Windows\SysNative\drivers\BCMWL664.SYS (Broadcom Corporation) DRV:64bit: - (amdsata) -- C:\Windows\SysNative\drivers\amdsata.sys (Advanced Micro Devices) DRV:64bit: - (amdxata) -- C:\Windows\SysNative\drivers\amdxata.sys (Advanced Micro Devices) DRV:64bit: - (amdsbs) -- C:\Windows\SysNative\drivers\amdsbs.sys (AMD Technologies Inc.) DRV:64bit: - (LSI_SAS2) -- C:\Windows\SysNative\drivers\lsi_sas2.sys (LSI Corporation) DRV:64bit: - (HpSAMD) -- C:\Windows\SysNative\drivers\HpSAMD.sys (Hewlett-Packard Company) DRV:64bit: - (stexstor) -- C:\Windows\SysNative\drivers\stexstor.sys (Promise Technology) DRV:64bit: - (sdbus) -- C:\Windows\SysNative\drivers\sdbus.sys (Microsoft Corporation) DRV:64bit: - (PxHlpa64) -- C:\Windows\SysNative\drivers\PxHlpa64.sys (Sonic Solutions) DRV:64bit: - (STHDA) -- C:\Windows\SysNative\drivers\stwrt64.sys (IDT, Inc.) DRV:64bit: - (SynTP) -- C:\Windows\SysNative\drivers\SynTP.sys (Synaptics Incorporated) DRV:64bit: - (atikmdag) -- C:\Windows\SysNative\drivers\atikmdag.sys (ATI Technologies Inc.) DRV:64bit: - (mfebopk) -- C:\Windows\SysNative\drivers\mfebopk.sys (McAfee, Inc.) DRV:64bit: - (CtClsFlt) -- C:\Windows\SysNative\drivers\CtClsFlt.sys (Creative Technology Ltd.) DRV:64bit: - (ebdrv) -- C:\Windows\SysNative\drivers\evbda.sys (Broadcom Corporation) DRV:64bit: - (b06bdrv) -- C:\Windows\SysNative\drivers\bxvbda.sys (Broadcom Corporation) DRV:64bit: - (b57nd60a) -- C:\Windows\SysNative\drivers\b57nd60a.sys (Broadcom Corporation) DRV:64bit: - (hcw85cir) -- C:\Windows\SysNative\drivers\hcw85cir.sys (Hauppauge Computer Works, Inc.) DRV:64bit: - (iaStor) -- C:\Windows\SysNative\drivers\iaStor.sys (Intel Corporation) DRV:64bit: - (RTL8167) -- C:\Windows\SysNative\drivers\Rt64win7.sys (Realtek ) DRV:64bit: - (O2MDGRDR) -- C:\Windows\SysNative\drivers\o2mdgx64.sys (O2Micro ) DRV:64bit: - (MPFP) -- C:\Windows\SysNative\drivers\Mpfp.sys (McAfee, Inc.) DRV:64bit: - (WimFltr) -- C:\Windows\SysNative\drivers\WimFltr.sys (Microsoft Corporation) DRV - (mpsdrv) -- C:\Windows\SysWOW64\wbem\mpsdrv.mof () DRV - (Tcpip) -- C:\Windows\SysWOW64\wbem\tcpip.mof () DRV - (PLCNDIS5) -- C:\Windows\system32\plcndis5.sys (Intellon, Inc.) ========== Standard Registry (SafeList) ========== ========== Internet Explorer ========== IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://g.uk.msn.com/USCON/8 IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.crawler.com/?tbid=60347 IE - HKCU\..\URLSearchHook: {1CB20BF0-BBAE-40A7-93F4-6435FF3D0411} - C:\PROGRA~2\Crawler\Toolbar\ctbr.dll (Crawler.com) IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 O1 HOSTS File: ([2009.06.10 23:00:26 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts O2:64bit: - BHO: (McAfee Phishing Filter) - {27B4851A-3207-45A2-B947-BE8AFE6163AB} - c:\PROGRA~2\mcafee\msk\MSKAPB~1.DLL () O2:64bit: - BHO: (scriptproxy) - {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - C:\Programme\McAfee\VirusScan\scriptsn.dll (McAfee, Inc.) O2 - BHO: () - {1CB20BF0-BBAE-40A7-93F4-6435FF3D0411} - C:\PROGRA~2\Crawler\Toolbar\ctbr.dll (Crawler.com) O2 - BHO: (McAfee Phishing Filter) - {27B4851A-3207-45A2-B947-BE8AFE6163AB} - c:\PROGRA~2\mcafee\msk\mskapbho.dll () O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - No CLSID value found. O2 - BHO: (Search Helper) - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll (Microsoft Corporation) O2 - BHO: (scriptproxy) - {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - C:\Program Files (x86)\McAfee\VirusScan\scriptsn.dll (McAfee, Inc.) O2 - BHO: (Windows Live Toolbar Helper) - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files (x86)\Windows Live\Toolbar\wltcore.dll (Microsoft Corporation) O3:64bit: - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found. O3 - HKLM\..\Toolbar: (&Windows Live Toolbar) - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files (x86)\Windows Live\Toolbar\wltcore.dll (Microsoft Corporation) O3 - HKLM\..\Toolbar: (&Crawler Toolbar) - {4B3803EA-5230-4DC3-A7FC-33638F3D3542} - C:\PROGRA~2\Crawler\Toolbar\ctbr.dll (Crawler.com) O3 - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found. O3 - HKCU\..\Toolbar\WebBrowser: (&Windows Live Toolbar) - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files (x86)\Windows Live\Toolbar\wltcore.dll (Microsoft Corporation) O3 - HKCU\..\Toolbar\WebBrowser: (&Crawler Toolbar) - {4B3803EA-5230-4DC3-A7FC-33638F3D3542} - C:\PROGRA~2\Crawler\Toolbar\ctbr.dll (Crawler.com) O4:64bit: - HKLM..\Run: [Broadcom Wireless Manager UI] C:\Programme\Dell\Dell Wireless WLAN Card\WLTRAY.EXE (Dell Inc.) O4:64bit: - HKLM..\Run: [IAAnotif] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\iaanotif.exe (Intel Corporation) O4:64bit: - HKLM..\Run: [QuickSet] C:\Programme\Dell\QuickSet\quickset.exe (Dell Inc.) O4:64bit: - HKLM..\Run: [SysTrayApp] C:\Programme\IDT\WDM\sttray64.exe (IDT, Inc.) O4 - HKLM..\Run: [Dell DataSafe Online] C:\Program Files (x86)\Dell DataSafe Online\DataSafeOnline.exe () O4 - HKLM..\Run: [Dell Webcam Central] C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe (Creative Technology Ltd) O4 - HKLM..\Run: [DellSupportCenter] C:\Program Files (x86)\Dell Support Center\bin\sprtcmd.exe (SupportSoft, Inc.) O4 - HKLM..\Run: [Desktop Disc Tool] c:\Program Files (x86)\Roxio\Roxio Burn\RoxioBurnLauncher.exe () O4 - HKLM..\Run: [mcagent_exe] C:\Program Files (x86)\McAfee.com\Agent\mcagent.exe (McAfee, Inc.) O4 - HKLM..\Run: [PDVDDXSrv] C:\Program Files (x86)\CyberLink\PowerDVD DX\PDVDDXSrv.exe (CyberLink Corp.) O4 - HKLM..\Run: [StartCCC] c:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.) O4 - HKCU..\Run: [msnmsgr] C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe (Microsoft Corporation) O4 - HKCU..\Run: [SpywareTerminatorUpdate] C:\Program Files (x86)\Spyware Terminator\SpywareTerminatorUpdate.exe (Crawler.com) O4 - HKLM..\RunOnce: [STToasterLauncher] C:\program files (x86)\Dell DataSafe Local Backup\toasterLauncher.exe () O4 - HKCU..\RunOnce: [FlashPlayerUpdate] C:\Windows\SysWOW64\Macromed\Flash\FlashUtil10e.exe (Adobe Systems, Inc.) O4 - Startup: C:\Users\Dine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dell Dock.lnk = C:\Program Files (x86)\Dell\DellDock\DellDock.exe File not found O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3 O9 - Extra Button: In Blog veröffentlichen - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll (Microsoft Corporation) O9 - Extra 'Tools' menuitem : In Windows Live Writer in Blog veröffentliche&n - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll (Microsoft Corporation) O9 - Extra Button: An OneNote senden - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~2\Office12\ONBttnIE.dll (Microsoft Corporation) O9 - Extra 'Tools' menuitem : An OneNote s&enden - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~2\Office12\ONBttnIE.dll (Microsoft Corporation) O9 - Extra Button: ICQ7 - {88EB38EF-4D2C-436D-ABD3-56B232674062} - C:\Program Files (x86)\ICQ7.0\ICQ.exe (ICQ, LLC.) O9 - Extra 'Tools' menuitem : ICQ7 - {88EB38EF-4D2C-436D-ABD3-56B232674062} - C:\Program Files (x86)\ICQ7.0\ICQ.exe (ICQ, LLC.) O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~2\Office12\REFIEBAR.DLL (Microsoft Corporation) O13 - gopher Prefix: missing O13 - gopher Prefix: missing O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_14-windows-i586.cab (Java Plug-in 1.6.0_14) O16 - DPF: {CAFEEFAC-0016-0000-0014-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_14-windows-i586.cab (Java Plug-in 1.6.0_14) O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_14-windows-i586.cab (Java Plug-in 1.6.0_14) O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab (Java Plug-in 1.6.0_20) O16 - DPF: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab (Java Plug-in 1.6.0_20) O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab (Java Plug-in 1.6.0_20) O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.2.1 O18:64bit: - Protocol\Handler\livecall {828030A1-22C1-4009-854F-8E305202313F} - Reg Error: Key error. File not found O18:64bit: - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - Reg Error: Key error. File not found O18:64bit: - Protocol\Handler\ms-itss {0A9007C0-4076-11D3-8789-0000F8105754} - Reg Error: Key error. File not found O18:64bit: - Protocol\Handler\msnim {828030A1-22C1-4009-854F-8E305202313F} - Reg Error: Key error. File not found O18:64bit: - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - Reg Error: Key error. File not found O18:64bit: - Protocol\Handler\tbr {4D25FB7A-8902-4291-960E-9ADA051CFBBF} - Reg Error: Key error. File not found O18:64bit: - Protocol\Handler\wlmailhtml {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - Reg Error: Key error. File not found O18 - Protocol\Handler\livecall {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~2\WIC4A1~1\MESSEN~1\MSGRAP~1.DLL (Microsoft Corporation) O18 - Protocol\Handler\msnim {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~2\WIC4A1~1\MESSEN~1\MSGRAP~1.DLL (Microsoft Corporation) O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL (Skype Technologies) O18 - Protocol\Handler\tbr {4D25FB7A-8902-4291-960E-9ADA051CFBBF} - C:\PROGRA~2\Crawler\Toolbar\ctbr.dll (Crawler.com) O18:64bit: - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\Programme\Common Files\Microsoft Shared\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation) O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\PROGRA~2\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation) O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation) O20:64bit: - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\SysNative\SystemPropertiesPerformance.exe (Microsoft Corporation) O20:64bit: - HKLM Winlogon: VMApplet - (/pagefile) - File not found O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation) O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\SysWow64\SystemPropertiesPerformance.exe (Microsoft Corporation) O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found. O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found. O32 - HKLM CDRom: AutoRun - 1 O34 - HKLM BootExecute: (autocheck autochk *) - File not found O35:64bit: - HKLM\..comfile [open] -- "%1" %* O35:64bit: - HKLM\..exefile [open] -- "%1" %* O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %* O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* ========== Files/Folders - Created Within 180 Days ========== [2010.06.25 19:01:22 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Crawler [2010.06.25 19:01:18 | 000,000,000 | ---D | C] -- C:\Users\Dine\AppData\Roaming\Spyware Terminator [2010.06.25 19:01:16 | 000,000,000 | ---D | C] -- C:\ProgramData\Spyware Terminator [2010.06.25 19:01:15 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Spyware Terminator [2010.06.25 18:25:10 | 000,000,000 | ---D | C] -- C:\Users\Dine\Documents\ICQ [2010.06.25 17:44:53 | 000,000,000 | ---D | C] -- C:\Users\Dine\AppData\Local\ElevatedDiagnostics [2010.06.25 17:23:58 | 000,000,000 | ---D | C] -- C:\ProgramData\Google [2010.05.12 09:04:46 | 000,000,000 | ---D | C] -- C:\Users\Dine\Desktop\Neuer Ordner [2010.04.28 10:36:43 | 001,446,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\lsasrv.dll [2010.04.25 13:04:26 | 000,000,000 | ---D | C] -- C:\Users\Dine\Documents\Dell WebCam Central [2010.04.25 13:04:25 | 000,000,000 | ---D | C] -- C:\Users\Dine\AppData\Roaming\Creative [2010.04.25 13:04:25 | 000,000,000 | ---D | C] -- C:\ProgramData\Creative [2010.04.22 19:46:59 | 000,000,000 | ---D | C] -- C:\Users\Dine\Documents\Downloads [2010.04.22 19:44:19 | 000,000,000 | ---D | C] -- C:\Users\Dine\AppData\Roaming\skypePM [2010.04.19 18:55:37 | 000,000,000 | ---D | C] -- C:\ProgramData\Sun [2010.04.19 18:55:36 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Java [2010.04.19 18:55:24 | 000,411,368 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\deployJava1.dll [2010.04.19 18:55:24 | 000,153,376 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\javaws.exe [2010.04.19 18:55:24 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\javaw.exe [2010.04.19 18:55:24 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\java.exe [2010.04.17 19:47:01 | 000,612,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\vbscript.dll [2010.04.17 19:47:00 | 000,427,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\vbscript.dll [2010.04.17 19:46:57 | 005,509,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntoskrnl.exe [2010.04.17 19:46:57 | 003,899,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ntoskrnl.exe [2010.04.17 19:46:56 | 003,954,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ntkrnlpa.exe [2010.04.14 11:08:56 | 000,139,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cabview.dll [2010.04.14 11:08:55 | 000,132,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\cabview.dll [2010.04.14 11:08:54 | 000,220,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wintrust.dll [2010.04.14 11:08:54 | 000,172,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wintrust.dll [2010.03.28 19:17:53 | 000,294,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\browserchoice.exe [2010.03.28 19:15:30 | 000,000,000 | ---D | C] -- C:\Users\Dine\AppData\Local\PowerDVD DX [2010.03.28 19:15:30 | 000,000,000 | ---D | C] -- C:\ProgramData\CyberLink [2010.03.25 22:16:21 | 000,000,000 | ---D | C] -- C:\Users\Dine\AppData\Roaming\Skype [2010.03.25 22:15:35 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Skype [2010.03.25 22:15:34 | 000,000,000 | R--D | C] -- C:\Program Files (x86)\Skype [2010.03.25 22:15:31 | 000,000,000 | ---D | C] -- C:\ProgramData\Skype [2010.03.22 13:12:14 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\ICQ6Toolbar [2010.03.22 13:12:12 | 000,000,000 | ---D | C] -- C:\Users\Dine\AppData\Roaming\Mozilla [2010.03.22 13:12:12 | 000,000,000 | ---D | C] -- C:\ProgramData\ICQ [2010.03.22 13:11:55 | 000,000,000 | ---D | C] -- C:\Users\Dine\AppData\Roaming\ICQ [2010.03.22 13:11:54 | 000,000,000 | ---D | C] -- C:\Users\Dine\AppData\Local\AOL [2010.03.22 13:11:37 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\ICQ7.0 [2010.03.05 11:46:49 | 000,000,000 | ---D | C] -- C:\Users\Dine\Tracing [2010.03.04 12:38:39 | 000,000,000 | ---D | C] -- C:\Users\Dine\AppData\Roaming\Google [2010.03.04 12:12:57 | 000,000,000 | ---D | C] -- C:\Users\Dine\AppData\Local\Google [2010.03.01 13:10:30 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Adobe [2010.03.01 12:44:39 | 000,000,000 | ---D | C] -- C:\Users\Dine\AppData\Local\Adobe [2010.03.01 12:19:13 | 000,243,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wow64.dll [2010.03.01 12:19:13 | 000,025,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\setup16.exe [2010.03.01 12:19:13 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ntvdm64.dll [2010.03.01 12:19:13 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\instnm.exe [2010.03.01 12:19:13 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wow32.dll [2010.03.01 12:19:13 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\user.exe [2010.03.01 12:18:56 | 000,852,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript.dll [2010.03.01 12:18:55 | 000,716,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\jscript.dll [2010.03.01 12:18:53 | 000,960,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\CPFilters.dll [2010.03.01 12:18:53 | 000,641,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\CPFilters.dll [2010.03.01 12:18:53 | 000,288,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MSNP.ax [2010.03.01 12:18:52 | 000,613,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\psisdecd.dll [2010.03.01 12:18:52 | 000,552,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msdri.dll [2010.03.01 12:18:52 | 000,465,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\psisdecd.dll [2010.03.01 12:18:52 | 000,204,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\MSNP.ax [2010.02.17 21:32:57 | 000,000,000 | ---D | C] -- C:\Users\Dine\AppData\Roaming\vlc [2010.02.17 21:18:08 | 000,424,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\secproc.dll [2010.02.17 21:18:08 | 000,422,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\secproc_isv.dll [2010.02.17 21:18:08 | 000,369,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\secproc.dll [2010.02.17 21:18:08 | 000,365,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\secproc_isv.dll [2010.02.17 21:18:08 | 000,357,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\RMActivate_isv.exe [2010.02.17 21:18:08 | 000,356,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\RMActivate.exe [2010.02.17 21:18:08 | 000,324,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\RMActivate_isv.exe [2010.02.17 21:18:08 | 000,320,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\RMActivate.exe [2010.02.17 21:18:08 | 000,306,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\RMActivate_ssp.exe [2010.02.17 21:18:08 | 000,305,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\RMActivate_ssp_isv.exe [2010.02.17 21:18:08 | 000,280,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\RMActivate_ssp.exe [2010.02.17 21:18:08 | 000,277,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\RMActivate_ssp_isv.exe [2010.02.17 21:18:08 | 000,121,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\secproc_ssp_isv.dll [2010.02.17 21:18:08 | 000,121,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\secproc_ssp.dll [2010.02.17 21:18:08 | 000,085,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\secproc_ssp_isv.dll [2010.02.17 21:18:08 | 000,085,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\secproc_ssp.dll [2010.02.17 21:17:51 | 001,572,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\quartz.dll [2010.02.17 21:17:50 | 001,328,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\quartz.dll [2010.02.17 21:17:50 | 000,091,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\avifil32.dll [2010.02.17 21:17:50 | 000,084,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mciavi32.dll [2010.02.17 20:47:17 | 000,000,000 | ---D | C] -- C:\Users\Dine\AppData\Roaming\dvdcss [2010.02.17 20:38:50 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\VideoLAN [2010.01.26 21:08:23 | 002,870,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\explorer.exe [2010.01.26 21:08:23 | 002,614,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\explorer.exe [2010.01.26 21:08:22 | 000,389,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winlogon.exe [2010.01.26 21:04:12 | 008,653,312 | ---- | C] (Dell, Inc. ) -- C:\Users\Dine\AppData\Roaming\DataSafeDotNet.exe [2010.01.23 20:40:02 | 000,148,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\t2embed.dll [2010.01.23 20:40:02 | 000,100,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\fontsub.dll [2010.01.23 20:40:01 | 000,108,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\t2embed.dll [2010.01.23 20:40:01 | 000,070,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\fontsub.dll [2010.01.23 20:31:45 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\DESIGNER [2010.01.23 20:31:31 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft.NET [2010.01.23 20:29:00 | 000,000,000 | ---D | C] -- C:\Programme\Microsoft Office [2010.01.23 20:28:33 | 000,000,000 | ---D | C] -- C:\Users\Dine\AppData\Local\Microsoft Help [2010.01.23 20:28:30 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft Help [2010.01.23 20:28:04 | 000,000,000 | RH-D | C] -- C:\MSOCache [2010.01.23 20:16:55 | 000,000,000 | ---D | C] -- C:\Users\Dine\AppData\Local\Diagnostics [2010.01.23 20:03:11 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\devolo [2010.01.23 20:02:57 | 000,000,000 | ---D | C] -- C:\Users\Dine\AppData\Roaming\Macrovision [2010.01.15 15:51:38 | 000,000,000 | ---D | C] -- C:\Users\Dine\AppData\Roaming\CyberLink [2010.01.14 18:27:17 | 000,000,000 | ---D | C] -- C:\Users\Dine\AppData\Local\Microsoft Games [2010.01.12 18:42:00 | 000,000,000 | ---D | C] -- C:\Users\Dine\AppData\Roaming\Template [2010.01.12 18:40:52 | 000,000,000 | ---D | C] -- C:\Users\Dine\AppData\Roaming\Macromedia [2010.01.12 18:40:50 | 000,000,000 | ---D | C] -- C:\Users\Dine\AppData\Roaming\Adobe [2010.01.12 18:40:49 | 000,000,000 | ---D | C] -- C:\Users\Dine\AppData\Roaming\WildTangent [2010.01.12 12:29:16 | 000,000,000 | ---D | C] -- C:\Users\Dine\AppData\Roaming\Dell [2010.01.12 12:29:01 | 000,000,000 | ---D | C] -- C:\Users\Dine\AppData\Local\DataSafeOnline [2010.01.12 12:28:58 | 000,000,000 | ---D | C] -- C:\Users\Dine\AppData\Local\Stardock_Corporation [2010.01.12 12:28:55 | 000,000,000 | ---D | C] -- C:\Users\Dine\AppData\Roaming\Roxio [2010.01.12 12:28:50 | 000,000,000 | ---D | C] -- C:\Users\Dine\AppData\Roaming\ATI [2010.01.12 12:28:50 | 000,000,000 | ---D | C] -- C:\Users\Dine\AppData\Local\ATI [2010.01.12 12:28:47 | 000,000,000 | ---D | C] -- C:\Users\Dine\AppData\Local\SupportSoft [2010.01.12 12:28:22 | 000,000,000 | R--D | C] -- C:\Users\Dine\Searches [2010.01.12 12:28:12 | 000,000,000 | ---D | C] -- C:\Users\Dine\AppData\Roaming\Identities [2010.01.12 12:28:07 | 000,000,000 | R--D | C] -- C:\Users\Dine\Contacts [2010.01.12 12:28:04 | 000,000,000 | ---D | C] -- C:\Users\Dine\AppData\Local\VirtualStore [2010.01.12 12:27:07 | 000,000,000 | -HSD | C] -- C:\System Recovery [2010.01.12 12:24:42 | 000,000,000 | -HSD | C] -- C:\Users\Dine\Vorlagen [2010.01.12 12:24:42 | 000,000,000 | -HSD | C] -- C:\Users\Dine\AppData\Local\Verlauf [2010.01.12 12:24:42 | 000,000,000 | -HSD | C] -- C:\Users\Dine\AppData\Local\Temporary Internet Files [2010.01.12 12:24:42 | 000,000,000 | -HSD | C] -- C:\Users\Dine\Startmenü [2010.01.12 12:24:42 | 000,000,000 | -HSD | C] -- C:\Users\Dine\SendTo [2010.01.12 12:24:42 | 000,000,000 | -HSD | C] -- C:\Users\Dine\Recent [2010.01.12 12:24:42 | 000,000,000 | -HSD | C] -- C:\Users\Dine\Netzwerkumgebung [2010.01.12 12:24:42 | 000,000,000 | -HSD | C] -- C:\Users\Dine\Lokale Einstellungen [2010.01.12 12:24:42 | 000,000,000 | -HSD | C] -- C:\Users\Dine\Documents\Eigene Videos [2010.01.12 12:24:42 | 000,000,000 | -HSD | C] -- C:\Users\Dine\Documents\Eigene Musik [2010.01.12 12:24:42 | 000,000,000 | -HSD | C] -- C:\Users\Dine\Eigene Dateien [2010.01.12 12:24:42 | 000,000,000 | -HSD | C] -- C:\Users\Dine\Documents\Eigene Bilder [2010.01.12 12:24:42 | 000,000,000 | -HSD | C] -- C:\Users\Dine\Druckumgebung [2010.01.12 12:24:42 | 000,000,000 | -HSD | C] -- C:\Users\Dine\Cookies [2010.01.12 12:24:42 | 000,000,000 | -HSD | C] -- C:\Users\Dine\AppData\Local\Anwendungsdaten [2010.01.12 12:24:42 | 000,000,000 | -HSD | C] -- C:\Users\Dine\Anwendungsdaten [2010.01.12 12:24:41 | 000,000,000 | --SD | C] -- C:\Users\Dine\AppData\Roaming\Microsoft [2010.01.12 12:24:41 | 000,000,000 | R--D | C] -- C:\Users\Dine\Videos [2010.01.12 12:24:41 | 000,000,000 | R--D | C] -- C:\Users\Dine\Saved Games [2010.01.12 12:24:41 | 000,000,000 | R--D | C] -- C:\Users\Dine\Pictures [2010.01.12 12:24:41 | 000,000,000 | R--D | C] -- C:\Users\Dine\Music [2010.01.12 12:24:41 | 000,000,000 | R--D | C] -- C:\Users\Dine\Links [2010.01.12 12:24:41 | 000,000,000 | R--D | C] -- C:\Users\Dine\Favorites [2010.01.12 12:24:41 | 000,000,000 | R--D | C] -- C:\Users\Dine\Downloads [2010.01.12 12:24:41 | 000,000,000 | R--D | C] -- C:\Users\Dine\Documents [2010.01.12 12:24:41 | 000,000,000 | R--D | C] -- C:\Users\Dine\Desktop [2010.01.12 12:24:41 | 000,000,000 | -H-D | C] -- C:\Users\Dine\AppData [2010.01.12 12:24:41 | 000,000,000 | ---D | C] -- C:\Users\Dine\AppData\Local\Temp [2010.01.12 12:24:41 | 000,000,000 | ---D | C] -- C:\Users\Dine\AppData\Local\Microsoft [2010.01.12 12:24:41 | 000,000,000 | ---D | C] -- C:\Users\Dine\AppData\Roaming\Media Center Programs [2010.01.12 12:24:21 | 000,000,000 | -HSD | C] -- C:\ProgramData\Vorlagen [2010.01.12 12:24:21 | 000,000,000 | -HSD | C] -- C:\ProgramData\Startmenü [2010.01.12 12:24:21 | 000,000,000 | -HSD | C] -- C:\Programme [2010.01.12 12:24:21 | 000,000,000 | -HSD | C] -- C:\Programme\Gemeinsame Dateien [2010.01.12 12:24:21 | 000,000,000 | -HSD | C] -- C:\ProgramData\Favoriten [2010.01.12 12:24:21 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Eigene Videos [2010.01.12 12:24:21 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Eigene Musik [2010.01.12 12:24:21 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Eigene Bilder [2010.01.12 12:24:21 | 000,000,000 | -HSD | C] -- C:\Dokumente und Einstellungen [2010.01.12 12:24:21 | 000,000,000 | -HSD | C] -- C:\ProgramData\Dokumente [2010.01.12 12:24:21 | 000,000,000 | -HSD | C] -- C:\ProgramData\Anwendungsdaten [2010.01.06 13:48:22 | 000,000,000 | ---D | C] -- C:\Programme\Synaptics [2010.01.06 13:46:30 | 014,629,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wmp.dll [2010.01.06 13:46:30 | 012,625,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wmploc.DLL [2010.01.06 13:46:30 | 012,625,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wmploc.DLL [2010.01.06 13:46:30 | 011,406,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wmp.dll [2010.01.06 13:46:30 | 001,975,296 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\CertEnroll.dll [2010.01.06 13:46:30 | 001,320,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\CertEnroll.dll [2010.01.06 13:46:30 | 000,366,080 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\SysNative\atmfd.dll [2010.01.06 13:46:30 | 000,293,888 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\atmfd.dll [2010.01.06 13:46:28 | 000,046,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msasn1.dll [2010.01.06 13:41:12 | 004,059,648 | ---- | C] (ATI Technologies Inc. ) -- C:\Windows\SysNative\atiumd64.dll [2010.01.06 13:41:12 | 003,105,280 | ---- | C] (ATI Technologies Inc. ) -- C:\Windows\SysWow64\atiumdag.dll [2010.01.06 13:41:12 | 002,867,712 | ---- | C] (ATI Technologies Inc. ) -- C:\Windows\SysWow64\atiumdva.dll [2010.01.06 13:41:12 | 002,622,976 | ---- | C] (ATI Technologies Inc. ) -- C:\Windows\SysNative\atiumd6a.dll [2010.01.06 13:41:12 | 000,274,432 | ---- | C] (ATI Technologies, Inc.) -- C:\Windows\SysWow64\Oemdspif.dll [2010.01.06 13:41:11 | 015,062,528 | ---- | C] (ATI Technologies Inc.) -- C:\Windows\SysNative\atio6axx.dll [2010.01.06 13:41:11 | 011,651,584 | ---- | C] (ATI Technologies Inc.) -- C:\Windows\SysWow64\atioglxx.dll [2010.01.06 13:41:11 | 000,421,376 | ---- | C] (ATI Technologies, Inc.) -- C:\Windows\SysNative\atipdl64.dll [2010.01.06 13:41:11 | 000,356,352 | ---- | C] (ATI Technologies, Inc.) -- C:\Windows\SysWow64\atipdlxx.dll [2010.01.06 13:41:11 | 000,120,320 | ---- | C] (AMD) -- C:\Windows\SysNative\atitmm64.dll [2010.01.06 13:41:10 | 006,036,480 | ---- | C] (ATI Technologies Inc.) -- C:\Windows\SysNative\drivers\atikmdag.sys [2010.01.06 13:41:10 | 004,289,536 | ---- | C] (Advanced Micro Devices Inc.) -- C:\Windows\SysNative\aticaldd64.dll [2010.01.06 13:41:10 | 003,264,512 | ---- | C] (Advanced Micro Devices Inc.) -- C:\Windows\SysWow64\aticaldd.dll [2010.01.06 13:41:10 | 002,921,984 | ---- | C] (ATI Technologies Inc. ) -- C:\Windows\SysNative\atidxx64.dll [2010.01.06 13:41:10 | 002,469,888 | ---- | C] (ATI Technologies Inc. ) -- C:\Windows\SysWow64\atidxx32.dll [2010.01.06 13:41:10 | 000,442,368 | ---- | C] (Advanced Micro Devices, Inc.) -- C:\Windows\SysNative\ATIDEMGX.dll [2010.01.06 13:41:10 | 000,420,352 | ---- | C] (AMD) -- C:\Windows\SysNative\atieclxx.exe [2010.01.06 13:41:10 | 000,203,264 | ---- | C] (AMD) -- C:\Windows\SysNative\atiesrxx.exe [2010.01.06 13:41:10 | 000,059,392 | ---- | C] (ATI Technologies, Inc.) -- C:\Windows\SysNative\atiedu64.dll [2010.01.06 13:41:10 | 000,053,248 | ---- | C] (Advanced Micro Devices Inc.) -- C:\Windows\SysWow64\aticalrt.dll [2010.01.06 13:41:10 | 000,052,224 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysNative\atimpc64.dll [2010.01.06 13:41:10 | 000,052,224 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysNative\amdpcom64.dll [2010.01.06 13:41:10 | 000,051,712 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysWow64\atimpc32.dll [2010.01.06 13:41:10 | 000,051,712 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysWow64\amdpcom32.dll [2010.01.06 13:41:10 | 000,048,640 | ---- | C] (Advanced Micro Devices Inc.) -- C:\Windows\SysNative\aticalrt64.dll [2010.01.06 13:41:10 | 000,012,288 | ---- | C] (AMD) -- C:\Windows\SysNative\atimuixx.dll [2010.01.06 13:41:09 | 000,251,904 | ---- | C] (Advanced Micro Devices, Inc.) -- C:\Windows\SysNative\atiadlxx.dll [2010.01.06 13:41:09 | 000,184,320 | ---- | C] (Advanced Micro Devices, Inc.) -- C:\Windows\SysWow64\atiadlxy.dll [2010.01.06 13:41:09 | 000,053,248 | ---- | C] (ATI Technologies Inc.) -- C:\Windows\SysNative\drivers\ati2erec.dll [2010.01.06 13:41:09 | 000,053,248 | ---- | C] (Advanced Micro Devices Inc.) -- C:\Windows\SysWow64\aticalcl.dll [2010.01.06 13:41:09 | 000,043,520 | ---- | C] (ATI Technologies, Inc.) -- C:\Windows\SysWow64\ati2edxx.dll [2010.01.06 13:41:09 | 000,041,984 | ---- | C] (Advanced Micro Devices Inc.) -- C:\Windows\SysNative\aticalcl64.dll [2010.01.06 13:41:04 | 000,023,912 | ---- | C] (ST Microelectronics) -- C:\Windows\SysNative\drivers\Acceler.sys [2010.01.06 13:41:00 | 000,408,600 | ---- | C] (Intel Corporation) -- C:\Windows\SysNative\drivers\iaStor.sys [2010.01.06 13:40:45 | 000,215,040 | ---- | C] (Realtek ) -- C:\Windows\SysNative\drivers\Rt64win7.sys [2010.01.06 13:40:43 | 001,436,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WdfCoInstaller01009.dll [2010.01.06 13:40:42 | 000,395,048 | ---- | C] (Synaptics Incorporated) -- C:\Windows\SysNative\SynCOM.dll [2010.01.06 13:40:42 | 000,272,432 | ---- | C] (Synaptics Incorporated) -- C:\Windows\SysNative\drivers\SynTP.sys [2010.01.06 13:40:42 | 000,260,904 | ---- | C] (Synaptics Incorporated) -- C:\Windows\SysNative\SynCtrl.dll [2010.01.06 13:40:42 | 000,206,120 | ---- | C] (Synaptics Incorporated) -- C:\Windows\SysWow64\SynCtrl.dll [2010.01.06 13:40:42 | 000,203,560 | ---- | C] (Synaptics Incorporated) -- C:\Windows\SysNative\SynTPAPI.dll [2010.01.06 13:40:42 | 000,169,256 | ---- | C] (Synaptics Incorporated) -- C:\Windows\SysWow64\SynCOM.dll [2010.01.06 13:40:42 | 000,147,752 | ---- | C] (Synaptics Incorporated) -- C:\Windows\SysNative\SynTPCo4.dll [2010.01.06 13:40:42 | 000,107,816 | ---- | C] (Synaptics Incorporated) -- C:\Windows\SysWow64\SynTPCOM.dll [2010.01.06 13:40:40 | 001,178,144 | ---- | C] (O2Micro) -- C:\Windows\SysNative\O2Icon_2.dll [2010.01.06 13:40:40 | 000,069,152 | ---- | C] (O2Micro ) -- C:\Windows\SysNative\drivers\o2mdgx64.sys [2010.01.06 13:40:40 | 000,065,536 | ---- | C] (O2Micro International) -- C:\Windows\SysNative\drivers\o2flash.exe [2010.01.06 13:40:38 | 001,431,040 | ---- | C] (IDT, Inc.) -- C:\Windows\SysNative\stapo64.dll [2010.01.06 13:40:38 | 000,598,016 | ---- | C] (IDT, Inc.) -- C:\Windows\SysNative\stapi64.dll [2010.01.06 13:40:38 | 000,487,424 | ---- | C] (IDT, Inc.) -- C:\Windows\SysNative\drivers\stwrt64.sys [2010.01.06 13:40:38 | 000,431,616 | ---- | C] (IDT, Inc.) -- C:\Windows\SysNative\stcplx64.dll [2010.01.06 13:40:37 | 000,209,920 | ---- | C] (IDT, Inc.) -- C:\Windows\SysNative\st646217.dll [2010.01.06 13:40:36 | 000,511,488 | ---- | C] (Creative Technology Ltd.) -- C:\Windows\SysWow64\ctapo32.dll [2010.01.06 13:40:16 | 003,898,880 | ---- | C] (Dell Inc.) -- C:\Windows\SysNative\bcmihvui64.dll [2010.01.06 13:40:16 | 002,769,400 | ---- | C] (Broadcom Corporation) -- C:\Windows\SysNative\drivers\BCMWL664.SYS [2010.01.06 13:40:16 | 000,095,472 | ---- | C] (Broadcom Corporation) -- C:\Windows\SysNative\bcmwlcoi.dll [2010.01.06 13:40:15 | 004,233,728 | ---- | C] (Dell Inc.) -- C:\Windows\SysNative\bcmihvsrv64.dll [2010.01.06 13:39:16 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\oem [2010.01.06 13:39:14 | 000,000,000 | ---D | C] -- C:\Windows\Panther [2010.01.06 13:39:14 | 000,000,000 | ---D | C] -- C:\Drivers [2010.01.06 13:29:14 | 000,000,000 | ---D | C] -- C:\dell [2010.01.06 12:34:54 | 000,000,000 | ---D | C] -- C:\ProgramData\ATI [2010.01.06 12:30:05 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Dell [2010.01.06 12:29:23 | 000,041,032 | ---- | C] (McAfee, Inc.) -- C:\Windows\SysNative\drivers\mfebopk.sys [2010.01.06 12:29:23 | 000,040,904 | ---- | C] (McAfee, Inc.) -- C:\Windows\SysNative\drivers\mferkdk.sys [2010.01.06 12:29:22 | 000,176,144 | ---- | C] (McAfee, Inc.) -- C:\Windows\SysNative\drivers\Mpfp.sys [2010.01.06 12:28:52 | 000,308,296 | ---- | C] (McAfee, Inc.) -- C:\Windows\SysNative\drivers\mfehidk.sys [2010.01.06 12:28:52 | 000,102,472 | ---- | C] (McAfee, Inc.) -- C:\Windows\SysNative\drivers\mfeavfk.sys [2010.01.06 12:28:52 | 000,049,480 | ---- | C] (McAfee, Inc.) -- C:\Windows\SysNative\drivers\mfesmfk.sys [2010.01.06 12:28:52 | 000,000,000 | ---D | C] -- C:\Programme\Common Files\McAfee [2010.01.06 12:28:52 | 000,000,000 | ---D | C] -- C:\ProgramData\McAfee [2010.01.06 12:28:51 | 000,000,000 | ---D | C] -- C:\Programme\McAfee [2010.01.06 12:28:49 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\McAfee [2010.01.06 12:28:34 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\McAfee.com [2010.01.06 12:28:15 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\McAfee [2010.01.06 12:26:55 | 000,000,000 | ---D | C] -- C:\ProgramData\Uninstall [2010.01.06 12:26:51 | 000,000,000 | ---D | C] -- C:\ProgramData\Sonic [2010.01.06 12:26:46 | 000,055,280 | ---- | C] (Sonic Solutions) -- C:\Windows\SysNative\drivers\PxHlpa64.sys [2010.01.06 12:26:46 | 000,010,224 | ---- | C] (Sonic Solutions) -- C:\Windows\SysNative\drivers\cdralw2k.sys [2010.01.06 12:26:46 | 000,010,224 | ---- | C] (Sonic Solutions) -- C:\Windows\SysNative\drivers\cdr4_xp.sys [2010.01.06 12:26:45 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Sonic Shared [2010.01.06 12:26:45 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Roxio Shared [2010.01.06 12:26:45 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\PX Storage Engine [2010.01.06 12:26:44 | 000,000,000 | ---D | C] -- C:\ProgramData\Macrovision [2010.01.06 12:26:43 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Roxio [2010.01.06 12:24:31 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\Reallusion [2010.01.06 12:24:24 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Reallusion [2010.01.06 12:24:01 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Creative [2010.01.06 12:23:24 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Dell Webcam [2010.01.06 12:23:23 | 000,224,768 | ---- | C] (Creative Technology Ltd.) -- C:\Windows\SysNative\drivers\CtAudDrv.sys [2010.01.06 12:23:23 | 000,172,704 | ---- | C] (Creative Technology Ltd.) -- C:\Windows\SysNative\drivers\CtClsFlt.sys [2010.01.06 12:23:19 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Creative Live! Cam [2010.01.06 12:22:57 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Silverlight [2010.01.06 12:22:36 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Sync Framework [2010.01.06 12:21:57 | 004,398,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_32.dll [2010.01.06 12:21:57 | 003,426,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_32.dll [2010.01.06 12:21:43 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft SQL Server Compact Edition [2010.01.06 12:21:02 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft [2010.01.06 12:20:53 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\microsoft [2010.01.06 12:20:48 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Windows Live SkyDrive [2010.01.06 12:20:33 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Windows Live [2010.01.06 12:20:22 | 000,000,000 | ---D | C] -- C:\Windows\PCHEALTH [2010.01.06 12:19:33 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Windows Live [2010.01.06 12:19:09 | 001,060,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\MFC71.dll [2010.01.06 12:19:09 | 001,047,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\MFC71u.dll [2010.01.06 12:19:09 | 000,499,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msvcp71.dll [2010.01.06 12:19:09 | 000,348,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msvcr71.dll [2010.01.06 12:19:09 | 000,089,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\atl71.dll [2010.01.06 12:19:09 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\CyberLink [2010.01.06 12:18:57 | 000,000,000 | ---D | C] -- C:\ProgramData\SupportSoft [2010.01.06 12:18:55 | 000,000,000 | ---D | C] -- C:\ProgramData\PCDr [2010.01.06 12:18:38 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\supportsoft [2010.01.06 12:18:38 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Dell Support Center [2010.01.06 12:17:37 | 000,151,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\WimFltr.sys [2010.01.06 12:17:25 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Dell DataSafe Local Backup [2010.01.06 12:12:04 | 000,000,000 | ---D | C] -- C:\ProgramData\WildTangent [2010.01.06 12:12:04 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\WildTangent [2010.01.06 12:11:25 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft CAPICOM 2.1.0.2 [2010.01.06 12:11:23 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Dell DataSafe Online [2010.01.06 12:11:18 | 000,000,000 | ---D | C] -- C:\1033 [2010.01.06 12:11:03 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Office [2010.01.06 12:10:46 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Works [2010.01.06 12:09:50 | 000,000,000 | ---D | C] -- C:\Windows\SoftwareDistribution [2010.01.06 12:09:28 | 000,000,000 | ---D | C] -- C:\ProgramData\Adobe [2010.01.06 12:09:22 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Adobe [2010.01.06 12:08:04 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\ATI Technologies [2010.01.06 12:08:02 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\InstallShield [2010.01.06 12:07:43 | 000,000,000 | ---D | C] -- C:\Intel [2010.01.06 12:07:38 | 000,000,000 | -H-D | C] -- C:\Program Files (x86)\InstallShield Installation Information [2010.01.06 12:07:38 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Intel [2010.01.06 12:07:37 | 000,000,000 | ---D | C] -- C:\ProgramData\Dell [2010.01.06 12:07:07 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Cisco [2010.01.06 12:06:24 | 001,114,624 | ---- | C] (Dell Inc.) -- C:\Windows\SysNative\BCMLogon.dll [2010.01.06 12:06:22 | 004,961,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\vcredist_x64.exe [2010.01.06 12:06:22 | 004,767,744 | ---- | C] (Dell Inc.) -- C:\Windows\SysNative\bcmttls.dll [2010.01.06 12:06:22 | 000,022,520 | ---- | C] (Broadcom Corporation) -- C:\Windows\SysNative\drivers\bcm42rly.sys [2010.01.06 12:06:21 | 007,911,424 | ---- | C] (Dell Inc.) -- C:\Windows\SysNative\BCMWLCPL.CPL [2010.01.06 12:06:21 | 003,161,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\vcredist_x64.exe [2010.01.06 12:06:21 | 000,073,216 | ---- | C] (Broadcom Corporation) -- C:\Windows\SysNative\wltrynt.dll [2010.01.06 12:06:20 | 000,000,000 | ---D | C] -- C:\Programme\Dell [2010.01.06 12:05:33 | 000,455,680 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\SysNative\deploytk.dll [2010.01.06 12:05:33 | 000,181,760 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\SysNative\javaws.exe [2010.01.06 12:05:33 | 000,165,888 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\SysNative\javaw.exe [2010.01.06 12:05:33 | 000,165,888 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\SysNative\java.exe [2010.01.06 12:05:29 | 000,000,000 | ---D | C] -- C:\Programme\Java [2010.01.06 12:05:16 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Java [2010.01.06 12:05:12 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\Macromed [2010.01.06 12:05:06 | 000,000,000 | ---D | C] -- C:\Programme\Dell Inc [2010.01.06 12:05:03 | 000,000,000 | -HSD | C] -- C:\Windows\Installer [2010.01.06 05:00:02 | 000,000,000 | ---D | C] -- C:\Programme\IDT [2010.01.06 05:00:01 | 000,652,288 | ---- | C] (Creative Technology Ltd.) -- C:\Windows\SysNative\ctapo64.dll [2010.01.06 05:00:01 | 000,511,488 | ---- | C] (Creative Technology Ltd.) -- C:\Windows\SysNative\ctapo32.dll [2010.01.06 05:00:01 | 000,431,104 | ---- | C] (Andrea Electronics Corporation) -- C:\Windows\SysNative\AESTEC64.dll [2010.01.06 05:00:01 | 000,165,888 | ---- | C] (Andrea Electronics Corporation) -- C:\Windows\SysNative\AESTAC64.dll [2010.01.06 05:00:01 | 000,068,608 | ---- | C] (Andrea Electronics Corporation) -- C:\Windows\SysNative\AESTAR64.dll [2010.01.06 05:00:00 | 012,151,808 | ---- | C] (IDT, Inc.) -- C:\Windows\SysNative\idtcpl64.cpl [2010.01.06 05:00:00 | 003,593,216 | ---- | C] (IDT, Inc.) -- C:\Windows\SysNative\stlang64.dll [2010.01.06 05:00:00 | 000,564,224 | ---- | C] (IDT, Inc.) -- C:\Windows\SysNative\idt64mp1.exe [2010.01.06 05:00:00 | 000,090,624 | ---- | C] (Andrea Electronics Corporation) -- C:\Windows\SysNative\AESTCo64.dll [2010.01.06 05:00:00 | 000,057,856 | ---- | C] (Creative Technology Ltd.) -- C:\Windows\SysNative\ctppld64.dll [2010.01.06 04:59:59 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\SRSLabs [2010.01.06 04:57:58 | 000,000,000 | ---D | C] -- C:\Windows\Prefetch [2010.01.06 04:57:39 | 000,000,000 | -HSD | C] -- C:\System Volume Information ========== Files - Modified Within 180 Days ========== [2010.06.25 19:53:15 | 001,310,720 | -HS- | M] () -- C:\Users\Dine\ntuser.dat [2010.06.25 19:48:04 | 000,000,282 | -H-- | M] () -- C:\Windows\tasks\{35DC3473-A719-4d14-B7C1-FD326CA84A0C}.job [2010.06.25 19:10:04 | 000,000,282 | -H-- | M] () -- C:\Windows\tasks\{8C3FDD81-7AE0-4605-A46A-2488B179F2A3}.job [2010.06.25 19:02:32 | 000,001,128 | ---- | M] () -- C:\Users\Public\Desktop\Spyware Terminator.lnk [2010.06.25 19:01:19 | 000,142,592 | ---- | M] () -- C:\Windows\SysWow64\drivers\sp_rsdrv2.sys [2010.06.25 18:28:24 | 000,014,016 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 [2010.06.25 18:28:24 | 000,014,016 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 [2010.06.25 18:23:37 | 000,014,643 | ---- | M] () -- C:\Windows\SysNative\Config.MPF [2010.06.25 17:35:24 | 000,524,288 | -HS- | M] () -- C:\Users\Dine\ntuser.dat{5916e7bc-806d-11df-b7ca-0026b99bc8eb}.TMContainer00000000000000000002.regtrans-ms [2010.06.25 17:35:24 | 000,524,288 | -HS- | M] () -- C:\Users\Dine\ntuser.dat{5916e7bc-806d-11df-b7ca-0026b99bc8eb}.TMContainer00000000000000000001.regtrans-ms [2010.06.25 17:35:24 | 000,065,536 | -HS- | M] () -- C:\Users\Dine\ntuser.dat{5916e7bc-806d-11df-b7ca-0026b99bc8eb}.TM.blf [2010.06.25 17:35:17 | 000,000,006 | -H-- | M] () -- C:\Windows\tasks\SA.DAT [2010.06.25 17:35:05 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat [2010.06.25 17:35:03 | 3217,264,640 | -HS- | M] () -- C:\hiberfil.sys [2010.06.25 17:33:31 | 003,800,034 | -H-- | M] () -- C:\Users\Dine\AppData\Local\IconCache.db [2010.05.26 13:26:26 | 001,472,002 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI [2010.05.26 13:26:26 | 000,643,866 | ---- | M] () -- C:\Windows\SysNative\perfh007.dat [2010.05.26 13:26:26 | 000,607,190 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat [2010.05.26 13:26:26 | 000,126,394 | ---- | M] () -- C:\Windows\SysNative\perfc007.dat [2010.05.26 13:26:26 | 000,103,568 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat [2010.05.25 09:45:36 | 000,018,191 | ---- | M] () -- C:\Users\Dine\Documents\Entwicklungsbericht Juni 010.docx [2010.05.23 14:42:47 | 000,001,000 | ---- | M] () -- C:\Users\Dine\AppData\Roaming\wklnhst.dat [2010.04.22 19:44:20 | 000,000,056 | -H-- | M] () -- C:\ProgramData\ezsidmv.dat [2010.04.17 21:03:41 | 000,002,016 | ---- | M] () -- C:\Users\Public\Desktop\Adobe Reader 9.lnk [2010.04.12 17:29:27 | 000,153,376 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\javaws.exe [2010.04.12 17:29:26 | 000,145,184 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\javaw.exe [2010.04.12 17:29:25 | 000,145,184 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\java.exe [2010.04.12 17:29:19 | 000,411,368 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\deployJava1.dll [2010.03.30 15:05:53 | 000,009,216 | ---- | M] () -- C:\Users\Dine\Documents\kündigungarcor.wps [2010.03.30 15:03:28 | 000,009,216 | ---- | M] () -- C:\Users\Dine\Documents\combicard.wps [2010.03.28 20:58:24 | 000,001,756 | ---- | M] () -- C:\Users\Public\Desktop\Browserwahl.lnk [2010.03.25 22:35:39 | 000,223,121 | ---- | M] () -- C:\Users\Dine\Documents\Prinzessin.pdf [2010.03.25 22:15:36 | 000,002,517 | ---- | M] () -- C:\Users\Public\Desktop\Skype.lnk [2010.03.22 13:12:18 | 000,001,830 | ---- | M] () -- C:\Users\Public\Desktop\ICQ7.lnk [2010.03.08 23:59:59 | 000,612,352 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\vbscript.dll [2010.03.08 23:33:56 | 000,427,520 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\vbscript.dll [2010.03.08 12:34:47 | 000,009,216 | ---- | M] () -- C:\Users\Dine\Documents\ebay.wps [2010.03.04 12:19:39 | 008,653,312 | ---- | M] (Dell, Inc. ) -- C:\Users\Dine\AppData\Roaming\DataSafeDotNet.exe [2010.03.01 12:47:39 | 000,032,468 | ---- | M] () -- C:\Users\Dine\Documents\Fortbildung Vince.pdf [2010.03.01 12:35:51 | 000,079,152 | ---- | M] () -- C:\Users\Dine\AppData\Local\GDIPFONTCACHEV1.DAT [2010.03.01 12:34:43 | 000,343,752 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT [2010.02.27 17:17:00 | 005,509,008 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ntoskrnl.exe [2010.02.27 14:07:48 | 003,954,568 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\ntkrnlpa.exe [2010.02.27 14:07:48 | 003,899,280 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\ntoskrnl.exe [2010.02.23 10:16:17 | 000,294,912 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\browserchoice.exe [2010.02.17 21:32:40 | 000,001,072 | ---- | M] () -- C:\Users\Public\Desktop\VLC media player.lnk [2010.01.19 23:25:37 | 000,030,208 | ---- | M] () -- C:\Users\Dine\Documents\Entwicklungsbericht Januar010.doc [2010.01.19 23:25:06 | 000,018,432 | ---- | M] () -- C:\Users\Dine\Documents\Entwicklungsbericht Januar010.wps [2010.01.19 11:05:57 | 000,424,960 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\secproc.dll [2010.01.19 11:05:57 | 000,422,912 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\secproc_isv.dll [2010.01.19 11:05:57 | 000,121,856 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\secproc_ssp_isv.dll [2010.01.19 11:05:57 | 000,121,856 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\secproc_ssp.dll [2010.01.19 11:00:44 | 000,305,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\RMActivate_ssp_isv.exe [2010.01.19 11:00:43 | 000,357,888 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\RMActivate_isv.exe [2010.01.19 11:00:37 | 000,356,352 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\RMActivate.exe [2010.01.19 11:00:37 | 000,306,688 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\RMActivate_ssp.exe [2010.01.19 01:29:31 | 000,365,568 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\secproc_isv.dll [2010.01.19 01:29:31 | 000,085,504 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\secproc_ssp_isv.dll [2010.01.19 01:29:31 | 000,085,504 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\secproc_ssp.dll [2010.01.19 01:29:30 | 000,369,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\secproc.dll [2010.01.19 01:28:33 | 000,324,608 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\RMActivate_isv.exe [2010.01.19 01:28:33 | 000,277,504 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\RMActivate_ssp_isv.exe [2010.01.19 01:28:30 | 000,320,512 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\RMActivate.exe [2010.01.19 01:28:30 | 000,280,064 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\RMActivate_ssp.exe [2010.01.15 15:51:40 | 000,000,000 | -H-- | M] () -- C:\Windows\SysNative\drivers\Msft_User_WpdFs_01_09_00.Wdf [2010.01.12 12:46:46 | 000,524,288 | -HS- | M] () -- C:\Users\Dine\NTUSER.DAT{016888bd-6c6f-11de-8d1d-001e0bcde3ec}.TMContainer00000000000000000002.regtrans-ms [2010.01.12 12:46:46 | 000,524,288 | -HS- | M] () -- C:\Users\Dine\NTUSER.DAT{016888bd-6c6f-11de-8d1d-001e0bcde3ec}.TMContainer00000000000000000001.regtrans-ms [2010.01.12 12:46:46 | 000,065,536 | -HS- | M] () -- C:\Users\Dine\NTUSER.DAT{016888bd-6c6f-11de-8d1d-001e0bcde3ec}.TM.blf [2010.01.12 12:29:00 | 000,001,984 | ---- | M] () -- C:\Users\Dine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dell Dock.lnk [2010.01.12 12:24:42 | 000,000,020 | -HS- | M] () -- C:\Users\Dine\ntuser.ini [2010.01.12 12:23:33 | 000,052,870 | ---- | M] () -- C:\Windows\SysWow64\license.rtf [2010.01.12 12:23:33 | 000,052,870 | ---- | M] () -- C:\Windows\SysNative\license.rtf [2010.01.09 09:19:59 | 000,139,264 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\cabview.dll [2010.01.09 08:52:59 | 000,132,608 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\cabview.dll [2010.01.06 13:49:22 | 000,003,396 | RH-- | M] () -- C:\dell.sdr [2010.01.06 13:48:43 | 000,898,624 | ---- | M] () -- C:\Windows\SysNative\oem5.inf [2010.01.06 13:46:30 | 014,629,376 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\wmp.dll [2010.01.06 13:46:30 | 012,625,920 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\wmploc.DLL [2010.01.06 13:46:30 | 012,625,408 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\wmploc.DLL [2010.01.06 13:46:30 | 011,406,336 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\wmp.dll [2010.01.06 13:46:30 | 001,975,296 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\CertEnroll.dll [2010.01.06 13:46:30 | 001,320,960 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\CertEnroll.dll [2010.01.06 13:46:30 | 000,366,080 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysNative\atmfd.dll [2010.01.06 13:46:30 | 000,293,888 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\atmfd.dll [2010.01.06 13:46:28 | 000,046,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\msasn1.dll [2010.01.06 13:40:11 | 000,003,396 | ---- | M] () -- C:\Windows\SysWow64\drivers\1028_Dell_STU_1745.mrk [2010.01.06 13:40:11 | 000,003,396 | ---- | M] () -- C:\Windows\SysNative\drivers\1028_Dell_STU_1745.mrk [2010.01.06 13:39:50 | 000,060,224 | ---- | M] () -- C:\Windows\SysNative\tcpmon.ini [2010.01.06 12:33:06 | 000,763,326 | ---- | M] () -- C:\Windows\SysNative\chklogo6.wtl [2010.01.06 12:26:58 | 000,001,716 | ---- | M] () -- C:\Users\Dine\Desktop\Dell schenkt Ihnen 1 Jahr Musik.lnk [2010.01.06 12:24:45 | 000,000,075 | RHS- | M] () -- C:\Windows\CT4CET.bin [2010.01.06 12:05:29 | 000,455,680 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\SysNative\deploytk.dll [2010.01.06 12:05:29 | 000,181,760 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\SysNative\javaws.exe [2010.01.06 12:05:29 | 000,165,888 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\SysNative\javaw.exe [2010.01.06 12:05:29 | 000,165,888 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\SysNative\java.exe [2010.01.06 04:59:51 | 000,000,000 | ---- | M] () -- C:\Windows\ativpsrm.bin [2010.01.06 04:59:45 | 000,000,000 | -H-- | M] () -- C:\Windows\SysNative\drivers\Msft_Kernel_SynTP_01009.Wdf [2009.12.29 10:03:58 | 000,220,672 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\wintrust.dll [2009.12.29 08:55:34 | 000,172,032 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\wintrust.dll ========== Files Created - No Company Name ========== [2010.06.25 19:02:32 | 000,001,128 | ---- | C] () -- C:\Users\Public\Desktop\Spyware Terminator.lnk [2010.06.25 19:01:19 | 000,142,592 | ---- | C] () -- C:\Windows\SysWow64\drivers\sp_rsdrv2.sys [2010.06.25 17:35:24 | 000,524,288 | -HS- | C] () -- C:\Users\Dine\ntuser.dat{5916e7bc-806d-11df-b7ca-0026b99bc8eb}.TMContainer00000000000000000002.regtrans-ms [2010.06.25 17:35:24 | 000,524,288 | -HS- | C] () -- C:\Users\Dine\ntuser.dat{5916e7bc-806d-11df-b7ca-0026b99bc8eb}.TMContainer00000000000000000001.regtrans-ms [2010.06.25 17:35:24 | 000,065,536 | -HS- | C] () -- C:\Users\Dine\ntuser.dat{5916e7bc-806d-11df-b7ca-0026b99bc8eb}.TM.blf [2010.05.23 14:42:46 | 000,018,191 | ---- | C] () -- C:\Users\Dine\Documents\Entwicklungsbericht Juni 010.docx [2010.05.19 16:08:15 | 000,000,282 | -H-- | C] () -- C:\Windows\tasks\{8C3FDD81-7AE0-4605-A46A-2488B179F2A3}.job [2010.05.19 16:08:14 | 000,000,282 | -H-- | C] () -- C:\Windows\tasks\{35DC3473-A719-4d14-B7C1-FD326CA84A0C}.job [2010.04.22 19:44:20 | 000,000,056 | -H-- | C] () -- C:\ProgramData\ezsidmv.dat [2010.03.30 15:03:28 | 000,009,216 | ---- | C] () -- C:\Users\Dine\Documents\combicard.wps [2010.03.30 14:49:40 | 000,009,216 | ---- | C] () -- C:\Users\Dine\Documents\kündigungarcor.wps [2010.03.28 20:58:24 | 000,001,756 | ---- | C] () -- C:\Users\Public\Desktop\Browserwahl.lnk [2010.03.25 22:35:39 | 000,223,121 | ---- | C] () -- C:\Users\Dine\Documents\Prinzessin.pdf [2010.03.25 22:15:36 | 000,002,517 | ---- | C] () -- C:\Users\Public\Desktop\Skype.lnk [2010.03.22 13:12:18 | 000,001,830 | ---- | C] () -- C:\Users\Public\Desktop\ICQ7.lnk [2010.03.08 11:04:36 | 000,009,216 | ---- | C] () -- C:\Users\Dine\Documents\ebay.wps [2010.03.01 13:10:38 | 000,002,016 | ---- | C] () -- C:\Users\Public\Desktop\Adobe Reader 9.lnk [2010.03.01 12:47:39 | 000,032,468 | ---- | C] () -- C:\Users\Dine\Documents\Fortbildung Vince.pdf [2010.02.17 21:32:40 | 000,001,072 | ---- | C] () -- C:\Users\Public\Desktop\VLC media player.lnk [2010.01.19 23:25:33 | 000,030,208 | ---- | C] () -- C:\Users\Dine\Documents\Entwicklungsbericht Januar010.doc [2010.01.15 16:05:47 | 000,018,432 | ---- | C] () -- C:\Users\Dine\Documents\Entwicklungsbericht Januar010.wps [2010.01.15 15:51:40 | 000,000,000 | -H-- | C] () -- C:\Windows\SysNative\drivers\Msft_User_WpdFs_01_09_00.Wdf [2010.01.12 18:41:58 | 000,001,000 | ---- | C] () -- C:\Users\Dine\AppData\Roaming\wklnhst.dat [2010.01.12 12:29:00 | 000,001,984 | ---- | C] () -- C:\Users\Dine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dell Dock.lnk [2010.01.12 12:25:15 | 000,014,643 | ---- | C] () -- C:\Windows\SysNative\Config.MPF [2010.01.12 12:24:42 | 000,524,288 | -HS- | C] () -- C:\Users\Dine\NTUSER.DAT{016888bd-6c6f-11de-8d1d-001e0bcde3ec}.TMContainer00000000000000000002.regtrans-ms [2010.01.12 12:24:42 | 000,524,288 | -HS- | C] () -- C:\Users\Dine\NTUSER.DAT{016888bd-6c6f-11de-8d1d-001e0bcde3ec}.TMContainer00000000000000000001.regtrans-ms [2010.01.12 12:24:42 | 000,262,144 | -HS- | C] () -- C:\Users\Dine\ntuser.dat.LOG1 [2010.01.12 12:24:42 | 000,065,536 | -HS- | C] () -- C:\Users\Dine\NTUSER.DAT{016888bd-6c6f-11de-8d1d-001e0bcde3ec}.TM.blf [2010.01.12 12:24:42 | 000,000,020 | -HS- | C] () -- C:\Users\Dine\ntuser.ini [2010.01.12 12:24:42 | 000,000,000 | -HS- | C] () -- C:\Users\Dine\ntuser.dat.LOG2 [2010.01.12 12:24:41 | 001,310,720 | -HS- | C] () -- C:\Users\Dine\ntuser.dat [2010.01.12 12:24:41 | 000,001,716 | ---- | C] () -- C:\Users\Dine\Desktop\Dell schenkt Ihnen 1 Jahr Musik.lnk [2010.01.06 13:49:22 | 000,003,396 | RH-- | C] () -- C:\dell.sdr [2010.01.06 13:41:12 | 000,219,120 | ---- | C] () -- C:\Windows\SysWow64\atiumdva.cap [2010.01.06 13:41:12 | 000,219,120 | ---- | C] () -- C:\Windows\SysNative\atiumd6a.cap [2010.01.06 13:41:11 | 000,332,288 | ---- | C] () -- C:\Windows\SysNative\ATIODE.exe [2010.01.06 13:41:11 | 000,051,200 | ---- | C] () -- C:\Windows\SysNative\ATIODCLI.exe [2010.01.06 13:41:11 | 000,018,333 | ---- | C] () -- C:\Windows\atiogl.xml [2010.01.06 13:41:10 | 000,197,654 | ---- | C] () -- C:\Windows\SysNative\atiicdxx.dat [2010.01.06 13:40:45 | 000,067,584 | ---- | C] () -- C:\Windows\SysNative\RtNicProp64.dll [2010.01.06 13:40:11 | 000,003,396 | ---- | C] () -- C:\Windows\SysWow64\drivers\1028_Dell_STU_1745.mrk [2010.01.06 13:40:11 | 000,003,396 | ---- | C] () -- C:\Windows\SysNative\drivers\1028_Dell_STU_1745.mrk [2010.01.06 12:33:05 | 000,763,326 | ---- | C] () -- C:\Windows\SysNative\chklogo6.wtl [2010.01.06 12:24:45 | 000,000,075 | RHS- | C] () -- C:\Windows\CT4CET.bin [2010.01.06 12:24:01 | 000,057,656 | ---- | C] () -- C:\Windows\SysNative\drivers\FilterPC.bmp [2010.01.06 12:24:01 | 000,024,995 | ---- | C] () -- C:\Windows\SysNative\drivers\FilterPC.jpg [2010.01.06 12:06:22 | 000,058,368 | ---- | C] () -- C:\Windows\SysNative\bcmwlrmt.dll [2010.01.06 12:06:22 | 000,006,656 | ---- | C] () -- C:\Windows\SysNative\bcmwlrc.dll [2010.01.06 12:06:22 | 000,000,459 | ---- | C] () -- C:\Windows\SysWow64\vcredist_x64.bat [2010.01.06 12:06:21 | 000,000,457 | ---- | C] () -- C:\Windows\SysNative\vcredist_x64.bat [2010.01.06 04:59:51 | 000,000,000 | ---- | C] () -- C:\Windows\ativpsrm.bin [2010.01.06 04:59:45 | 000,000,000 | -H-- | C] () -- C:\Windows\SysNative\drivers\Msft_Kernel_SynTP_01009.Wdf [2010.01.06 04:59:12 | 000,898,624 | ---- | C] () -- C:\Windows\SysNative\oem5.inf [2010.01.06 04:57:39 | 3217,264,640 | -HS- | C] () -- C:\hiberfil.sys [2009.07.14 01:42:10 | 000,064,000 | ---- | C] () -- C:\Windows\SysWow64\BWContextHandler.dll [2009.07.13 23:03:59 | 000,364,544 | ---- | C] () -- C:\Windows\SysWow64\msjetoledb40.dll < End of report > |
|
25.06.2010, 19:14
| #2 |
| | ICQ-Virus 'Schau dir das Bild mal an :D' und
__________________OTL EXTRAS Logfile: Code:
ATTFilter OTL Extras logfile created on: 25.06.2010 19:50:03 - Run 1
OTL by OldTimer - Version 3.2.7.0 Folder = C:\Users\Dine\Documents\Downloads
64bit- Home Premium Edition (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7600.16385)
Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy
4,00 Gb Total Physical Memory | 2,00 Gb Available Physical Memory | 45,00% Memory free
8,00 Gb Paging File | 6,00 Gb Available in Paging File | 73,00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 283,40 Gb Total Space | 249,54 Gb Free Space | 88,05% Space Free | Partition Type: NTFS
D: Drive not present or media not loaded
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded
Computer Name: DINE-PC
Current User Name: Dine
Logged in as Administrator.
Current Boot Mode: Normal
Scan Mode: Current user
Include 64bit Scans
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 180 Days
Output = Minimal
========== Extra Registry (SafeList) ==========
========== File Associations ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation)
========== Shell Spawning ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %* File not found
cmdfile [open] -- "%1" %* File not found
comfile [open] -- "%1" %* File not found
exefile [open] -- "%1" %* File not found
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- "C:\Program Files (x86)\Microsoft Office\Office12\msohtmed.exe" %1 (Microsoft Corporation)
htmlfile [print] -- "C:\Program Files (x86)\Microsoft Office\Office12\msohtmed.exe" /p %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %* File not found
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1" File not found
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation)
scrfile [open] -- "%1" /S File not found
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1 File not found
Directory [AddToPlaylistVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [OneNote.Open] -- C:\PROGRA~2\MICROS~2\Office12\ONENOTE.EXE "%L" File not found
Directory [PlayWithVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- "C:\Program Files (x86)\Microsoft Office\Office12\msohtmed.exe" %1 (Microsoft Corporation)
htmlfile [print] -- "C:\Program Files (x86)\Microsoft Office\Office12\msohtmed.exe" /p %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation)
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [OneNote.Open] -- C:\PROGRA~2\MICROS~2\Office12\ONENOTE.EXE "%L" File not found
Directory [PlayWithVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
========== Security Center Settings ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = 28 4D B2 76 41 04 CA 01 [binary data]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
========== Authorized Applications List ==========
========== HKEY_LOCAL_MACHINE Uninstall List ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{071c9b48-7c32-4621-a0ac-3f809523288f}" = Microsoft Visual C++ 2005 Redistributable (x64)
"{26A24AE4-039D-4CA4-87B4-2F86416014FF}" = Java(TM) 6 Update 14 (64-bit)
"{8220EEFE-38CD-377E-8595-13398D740ACE}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17
"{87CF757E-C1F1-4D22-865C-00C6950B5258}" = Quickset64
"{8EBA8727-ADC2-477B-9D9A-1A1836BE4E05}" = Dell Edoc Viewer
"{90120000-002A-0000-1000-0000000FF1CE}" = Microsoft Office Office 64-bit Components 2007
"{90120000-002A-0407-1000-0000000FF1CE}" = Microsoft Office Shared 64-bit MUI (German) 2007
"{9068B2BE-D93A-4C0A-861C-5E35E2C0E09E}" = Intel® Matrix Storage Manager
"{95120000-00B9-0409-1000-0000000FF1CE}" = Microsoft Application Error Reporting
"{B6E3757B-5E77-3915-866A-CCFC4B8D194C}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053
"{E461C0B2-523B-2940-C5DF-D174284CE609}" = ccc-utility64
"{E60B7350-EA5F-41E0-9D6F-E508781E36D2}" = Dell Dock
"{EE936C7A-EA40-31D5-9B65-8E3E089C3828}" = Microsoft Visual C++ 2008 ATL Update kb973924 - x64 9.0.30729.4148
"Dell Wireless WLAN Card Utility" = Dell Wireless WLAN Card Utility
"SynTPDeinstKey" = Synaptics Pointing Device Driver
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{03CFDC67-5B03-EE5C-4176-F545B0D2F485}" = CCC Help Korean
"{052bac4a-6f79-46d4-a024-1ce1b4f73cd4}" = Microsoft Visual C++ 2005 Redistributable
"{055EE59D-217B-43A7-ABFF-507B966405D8}" = ATI Catalyst Control Center
"{0A2AC888-61DC-CD55-5969-8602A7E9716D}" = CCC Help Italian
"{0CF884B6-C6D8-EB7B-D2BF-2877C6F49EBC}" = CCC Help Swedish
"{0ED7EE95-6A97-47AA-AD73-152C08A15B04}" = Dell DataSafe Local Backup
"{13766F76-6C8C-4E57-A9F3-3212D1C6E0D1}" = Dell DataSafe Online
"{185CC275-907C-0D83-B0C2-7B065C5108D8}" = CCC Help Chinese Traditional
"{205C6BDD-7B73-42DE-8505-9A093F35A238}" = Windows Live-Uploadtool
"{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}" = MSVCRT
"{26A24AE4-039D-4CA4-87B4-2F83216014FF}" = Java(TM) 6 Update 20
"{2BA722D1-48D1-406E-9123-8AE5431D63EF}" = Windows Live Fotogalerie
"{2ED967AD-FBB0-5355-F5F2-E7A03AAD4F71}" = Catalyst Control Center Localization All
"{30FA0F5C-B1A9-39EB-8148-3D574C0C8332}" = Catalyst Control Center Graphics Previews Common
"{35852FDE-7263-23EA-435F-44E4B61996D0}" = CCC Help Japanese
"{39D0E034-1042-4905-BECB-5502909FCB7C}" = Microsoft Works
"{3A07247E-0645-8BCF-8419-FD857790108D}" = Skins
"{3B4E636E-9D65-4D67-BA61-189800823F52}" = Windows Live Communications Platform
"{3EFEF049-23D4-4B46-8903-4592FEA51018}" = Windows Live Movie Maker
"{41E654A9-26D0-4EAC-854B-0FA824FFFABB}" = Windows Live Messenger
"{445F6C1F-C48F-0CC9-A030-040D3EA42C93}" = Catalyst Control Center Graphics Full New
"{46E08E5F-02B4-E854-CD4F-ED3E4FEBE122}" = CCC Help French
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4CBA3D4C-8F51-4D60-B27E-F6B641C571E7}" = Microsoft Search Enhancement Pack
"{51C7AD07-C3F6-4635-8E8A-231306D810FE}" = Cisco LEAP Module
"{52B97218-98CB-4B8B-9283-D213C85E1AA4}" = Windows Live Anmelde-Assistent
"{5A841BCF-1C5B-E3DA-9475-892CA6576425}" = CCC Help Finnish
"{5B8741B6-4BEA-47D3-DB77-959C7FF35B39}" = Catalyst Control Center Graphics Full Existing
"{5FA16D15-FA5B-7F0F-7CBB-369E1E2937C9}" = CCC Help Spanish
"{5FC68772-6D56-41C6-9DF1-24E868198AE6}" = Windows Live Call
"{61F27C5E-5274-0DB8-67CC-5253C6CF2B93}" = CCC Help Dutch
"{64BF0187-F3D2-498B-99EA-163AF9AE6EC9}" = Cisco EAP-FAST Module
"{65D0C510-D7B6-4438-9FC8-E6B91115AB0D}" = Live! Cam Avatar Creator
"{6625CE8F-6E89-561F-D828-1B8535DEEBB6}" = Catalyst Control Center Core Implementation
"{6811CAA0-BF12-11D4-9EA1-0050BAE317E1}" = PowerDVD DX
"{69533745-1E2D-4C98-8B4A-B7643EF9E1A2}" = Catalyst Control Center - Branding
"{6D2CCC4B-007D-EEE7-3E69-578B178A7B91}" = Catalyst Control Center Graphics Previews Vista
"{70B7A167-0B88-445D-A3EA-97C73AA88CAC}" = Windows Live Toolbar
"{71E3D92F-2C51-B4E9-F2B6-EAF89C33E580}" = CCC Help Portuguese
"{76618402-179D-4699-A66B-D351C59436BC}" = Windows Live Sync
"{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
"{77F218D6-EAF4-402C-36B1-C3F0EC62598D}" = ccc-core-static
"{7DB9F1E5-9ACB-410D-A7DC-7A3D023CE045}" = Dell Getting Started Guide
"{86C527CC-4AF2-903C-7BFF-5975272CC645}" = Catalyst Control Center InstallProxy
"{88EB38EF-4D2C-436D-ABD3-56B232674062}" = ICQ7
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8A74E887-8F0F-4017-AF53-CBA42211AAA5}" = Microsoft Sync Framework Runtime Native v1.0 (x86)
"{8DDFDDE9-C206-F32E-66AD-D17558D7677E}" = CCC Help German
"{90120000-0016-0407-0000-0000000FF1CE}" = Microsoft Office Excel MUI (German) 2007
"{90120000-0016-0407-0000-0000000FF1CE}_HOMESTUDENTR_{9BD40163-B95D-4B07-8991-0AB775B6D88B}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0018-0407-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (German) 2007
"{90120000-0018-0407-0000-0000000FF1CE}_HOMESTUDENTR_{9BD40163-B95D-4B07-8991-0AB775B6D88B}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001B-0407-0000-0000000FF1CE}" = Microsoft Office Word MUI (German) 2007
"{90120000-001B-0407-0000-0000000FF1CE}_HOMESTUDENTR_{9BD40163-B95D-4B07-8991-0AB775B6D88B}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2007
"{90120000-001F-0407-0000-0000000FF1CE}_HOMESTUDENTR_{A0516415-ED61-419A-981D-93596DA74165}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-0409-0000-0000000FF1CE}_HOMESTUDENTR_{ABDDE972-355B-4AF1-89A8-DA50B7B5C045}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-040C-0000-0000000FF1CE}" = Microsoft Office Proof (French) 2007
"{90120000-001F-040C-0000-0000000FF1CE}_HOMESTUDENTR_{F580DDD5-8D37-4998-968E-EBB76BB86787}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-0410-0000-0000000FF1CE}" = Microsoft Office Proof (Italian) 2007
"{90120000-001F-0410-0000-0000000FF1CE}_HOMESTUDENTR_{322296D4-1EAE-4030-9FBC-D2787EB25FA2}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-0020-0407-0000-0000000FF1CE}" = Compatibility Pack für 2007 Office System
"{90120000-002A-0000-1000-0000000FF1CE}_HOMESTUDENTR_{E64BA721-2310-4B55-BE5A-2925F9706192}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-002A-0407-1000-0000000FF1CE}_HOMESTUDENTR_{26454C26-D259-4543-AA60-3189E09C5F76}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-002C-0407-0000-0000000FF1CE}" = Microsoft Office Proofing (German) 2007
"{90120000-006E-0407-0000-0000000FF1CE}" = Microsoft Office Shared MUI (German) 2007
"{90120000-006E-0407-0000-0000000FF1CE}_HOMESTUDENTR_{26454C26-D259-4543-AA60-3189E09C5F76}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-00A1-0407-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (German) 2007
"{90120000-00A1-0407-0000-0000000FF1CE}_HOMESTUDENTR_{9BD40163-B95D-4B07-8991-0AB775B6D88B}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{91120000-002F-0000-0000-0000000FF1CE}" = Microsoft Office Home and Student 2007
"{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{0B36C6D6-F5D8-4EAF-BF94-4376A230AD5B}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{3D019598-7B59-447A-80AE-815B703B84FF}" = Security Update for Microsoft Office system 2007 (972581)
"{95120000-00AF-0407-0000-0000000FF1CE}" = Microsoft Office PowerPoint Viewer 2007 (German)
"{A2A4AC67-DC60-A92B-DD50-65BEE8FA8D71}" = CCC Help Russian
"{A33E7B0C-B99C-4EC9-B702-8A328B161AF9}" = Roxio Burn
"{A9668246-FB70-4103-A1E3-66C9BC2EFB49}" = Dell DataSafe Local Backup - Support Software
"{AC76BA86-7AD7-1031-7B44-A93000000001}" = Adobe Reader 9.3.2 - Deutsch
"{B2E47DE7-800B-40BB-BD1F-9F221C3AEE87}" = Roxio Burn
"{B9C5005C-56CA-38E4-A093-79F22ECA0427}" = CCC Help Norwegian
"{BD64AF4A-8C80-4152-AD77-FCDDF05208AB}" = Microsoft Sync Framework Services Native v1.0 (x86)
"{C4D738F7-996A-4C81-B8FA-C4E26D767E41}" = Windows Live Mail
"{D103C4BA-F905-437A-8049-DB24763BBE36}" = Skype™ 4.2
"{DC93F14E-D2C9-D6D1-31B6-D31AC2AD3BB0}" = Catalyst Control Center Graphics Light
"{E0A4805D-280A-4DD7-9E74-3A5F85E302A1}" = Windows Live Writer
"{E2DFE069-083E-4631-9B6C-43C48E991DE5}" = Junk Mail filter update
"{E3BFEE55-39E2-4BE0-B966-89FE583822C1}" = Dell Support Center (Support Software)
"{E6E0F53B-B7B8-E052-5C32-76C885536A3E}" = CCC Help Danish
"{ED5776D5-59B4-46B7-AF81-5F2D94D7C640}" = Cisco PEAP Module
"{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}" = Microsoft SQL Server 2005 Compact Edition [ENU]
"{F0E12BBA-AD66-4022-A453-A1C8A0C4D570}" = Microsoft Choice Guard
"{F7FE3C6E-ECB8-0853-584F-BE19BA05B1B8}" = CCC Help Chinese Standard
"{F8FF18EE-264A-43FD-B2F6-5EAD40798C2F}" = Windows Live Essentials
"{FCC49808-C684-FEFA-3C02-46A04A7C9EBD}" = CCC Help English
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Advanced Audio FX Engine" = Advanced Audio FX Engine
"CToolbar_UNINSTALL" = Crawler Toolbar with Web Security Guard
"Dell Webcam Central" = Dell Webcam Central
"dlanconf" = devolo dLAN-Konfigurationsassistent
"dslmon" = devolo Informer
"easyclean" = devolo EasyClean
"easyshare" = devolo EasyShare
"HOMESTUDENTR" = Microsoft Office Home and Student 2007
"MSC" = McAfee SecurityCenter
"Spyware Terminator_is1" = Spyware Terminator
"VLC media player" = VLC media player 1.0.5
"WildTangent dell Master Uninstall" = WildTangent-Spiele
"WinLiveSuite_Wave3" = Windows Live Essentials
========== Last 10 Event Log Errors ==========
[ Application Events ]
Error - 22.04.2010 14:49:38 | Computer Name = Dine-PC | Source = SideBySide | ID = 16842811
Description = Fehler beim Generieren des Aktivierungskontextes für "c:\program files
(x86)\microsoft\search enhancement pack\search helper\sepsearchhelperie.dll". Fehler
in Manifest- oder Richtliniendatei "c:\program files (x86)\microsoft\search enhancement
pack\search helper\sepsearchhelperie.dll" in Zeile 2. Ungültige XML-Syntax.
Error - 22.04.2010 14:53:04 | Computer Name = Dine-PC | Source = EventSystem | ID = 4622
Description =
Error - 25.04.2010 07:05:04 | Computer Name = Dine-PC | Source = EventSystem | ID = 4621
Description =
Error - 26.04.2010 09:20:06 | Computer Name = Dine-PC | Source = EventSystem | ID = 4621
Description =
Error - 28.04.2010 04:40:34 | Computer Name = Dine-PC | Source = Application Hang | ID = 1002
Description = Programm iexplore.exe, Version 8.0.7600.16385 kann nicht mehr unter
Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf
in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem
zu suchen. Prozess-ID: abc Startzeit: 01cae6ade1e0192c Endzeit: 12 Anwendungspfad:
C:\Program Files (x86)\internet explorer\iexplore.exe Berichts-ID: aaa48338-52a1-11df-83d9-0026b99bc8eb
Error - 28.04.2010 04:41:55 | Computer Name = Dine-PC | Source = Application Hang | ID = 1002
Description = Programm Skype.exe, Version 4.2.0.155 kann nicht mehr unter Windows
ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung,
um nach weiteren Informationen zum Problem zu suchen. Prozess-ID: c94 Startzeit:
01cae6ad4ccd1507 Endzeit: 39 Anwendungspfad: C:\Program Files (x86)\Skype\Phone\Skype.exe
Berichts-ID:
Error - 28.04.2010 04:49:12 | Computer Name = Dine-PC | Source = Application Hang | ID = 1002
Description = Programm ICQ.exe, Version 7.1.0.2096 kann nicht mehr unter Windows
ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung,
um nach weiteren Informationen zum Problem zu suchen. Prozess-ID: d34 Startzeit:
01cae6aefc78049a Endzeit: 12 Anwendungspfad: C:\Program Files (x86)\ICQ7.0\ICQ.exe
Berichts-ID:
Error - 28.04.2010 04:51:35 | Computer Name = Dine-PC | Source = Application Hang | ID = 1002
Description = Programm iexplore.exe, Version 8.0.7600.16385 kann nicht mehr unter
Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf
in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem
zu suchen. Prozess-ID: 980 Startzeit: 01cae6afafa38551 Endzeit: 10 Anwendungspfad:
C:\Program Files (x86)\internet explorer\iexplore.exe Berichts-ID: 3579f829-52a3-11df-9911-0026b99bc8eb
Error - 28.04.2010 04:55:39 | Computer Name = Dine-PC | Source = Application Hang | ID = 1002
Description = Programm ICQ.exe, Version 7.1.0.2096 kann nicht mehr unter Windows
ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung,
um nach weiteren Informationen zum Problem zu suchen. Prozess-ID: 1590 Startzeit:
01cae6b049528b68 Endzeit: 14 Anwendungspfad: C:\Program Files (x86)\ICQ7.0\ICQ.exe
Berichts-ID:
Error - 12.05.2010 04:30:07 | Computer Name = Dine-PC | Source = EventSystem | ID = 4622
Description =
[ Broadcom Wireless LAN Events ]
Error - 12.01.2010 06:29:14 | Computer Name = Dine-PC | Source = WLAN-Tray | ID = 0
Description = 11:29:14, Tue, Jan 12, 10 Error - Unable to get current user admin
status
Error - 12.01.2010 06:30:35 | Computer Name = Dine-PC | Source = WLAN-Tray | ID = 0
Description = 11:30:35, Tue, Jan 12, 10 Error - Unable to get current user admin
status
Error - 12.01.2010 06:32:11 | Computer Name = Dine-PC | Source = WLAN-Tray | ID = 0
Description = 11:32:11, Tue, Jan 12, 10 Error - Unable to switch user context, authentication
information not set correctly
Error - 17.02.2010 15:34:45 | Computer Name = Dine-PC | Source = WLAN-Tray | ID = 0
Description = 20:34:43, Wed, Feb 17, 10 Error - Unable to gain access to user store
[ System Events ]
Error - 25.05.2010 03:19:01 | Computer Name = Dine-PC | Source = DCOM | ID = 10010
Description =
Error - 26.05.2010 07:18:55 | Computer Name = Dine-PC | Source = Service Control Manager | ID = 7000
Description = Der Dienst "PLCNDIS5 NDIS Protocol Driver" wurde aufgrund folgenden
Fehlers nicht gestartet: %%2
Error - 26.05.2010 07:19:18 | Computer Name = Dine-PC | Source = VDS Basic Provider | ID = 33554433
Description =
Error - 26.05.2010 07:25:10 | Computer Name = Dine-PC | Source = DCOM | ID = 10010
Description =
Error - 01.06.2010 15:07:59 | Computer Name = Dine-PC | Source = Service Control Manager | ID = 7000
Description = Der Dienst "PLCNDIS5 NDIS Protocol Driver" wurde aufgrund folgenden
Fehlers nicht gestartet: %%2
Error - 01.06.2010 15:15:38 | Computer Name = Dine-PC | Source = Service Control Manager | ID = 7000
Description = Der Dienst "McAfee Inc. mferkdk" wurde aufgrund folgenden Fehlers
nicht gestartet: %%127
Error - 01.06.2010 15:23:22 | Computer Name = Dine-PC | Source = DCOM | ID = 10010
Description =
Error - 04.06.2010 15:33:16 | Computer Name = Dine-PC | Source = Service Control Manager | ID = 7000
Description = Der Dienst "PLCNDIS5 NDIS Protocol Driver" wurde aufgrund folgenden
Fehlers nicht gestartet: %%2
Error - 04.06.2010 15:39:27 | Computer Name = Dine-PC | Source = DCOM | ID = 10010
Description =
Error - 23.06.2010 12:57:26 | Computer Name = Dine-PC | Source = Service Control Manager | ID = 7000
Description = Der Dienst "PLCNDIS5 NDIS Protocol Driver" wurde aufgrund folgenden
Fehlers nicht gestartet: %%2
< End of report >
Bekommen. Was kann ich nun tun? Auf dem Rechner ist Windows 7 drauf Bitte um Hilfe  Geändert von Stoppel (25.06.2010 um 19:24 Uhr) |
|
25.06.2010, 20:51
| #3 |
| | ICQ-Virus 'Schau dir das Bild mal an :D' In einem anderen Forum wurde Highjackthis erwähnt. Der Scan ergab folgendes:
__________________HiJackthis Logfile: Code:
ATTFilter Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 21:49:50, on 25.06.2010 Platform: Windows 7 (WinNT 6.00.3504) MSIE: Internet Explorer v8.00 (8.00.7600.16385) Boot mode: Normal Running processes: c:\PROGRA~2\mcafee.com\agent\mcagent.exe C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAAnotif.exe C:\Program Files (x86)\Dell DataSafe Online\DataSafeOnline.exe C:\Program Files (x86)\CyberLink\PowerDVD DX\PDVDDXSrv.exe C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe C:\Program Files (x86)\Roxio\Roxio Burn\RoxioBurnLauncher.exe C:\Program Files (x86)\Dell Support Center\bin\sprtcmd.exe C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe C:\Program Files (x86)\Internet Explorer\iexplore.exe C:\Program Files (x86)\Internet Explorer\iexplore.exe C:\Program Files (x86)\Windows Live\Toolbar\wltuser.exe C:\Windows\SysWow64\Macromed\Flash\FlashUtil10e.exe C:\Program Files (x86)\Crawler\Toolbar\CToolbar.exe C:\Program Files (x86)\Internet Explorer\iexplore.exe C:\Users\Dine\Documents\Downloads\HiJackThis204.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://g.uk.msn.com/USCON/8 R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = hxxp://www.crawler.com/search/dispatcher.aspx?tp=aus&qkw=%s&tbid=60347 R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.crawler.com/?tbid=60347 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://go.microsoft.com/fwlink/?LinkId=69157 R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = R3 - URLSearchHook: (no name) - {1CB20BF0-BBAE-40A7-93F4-6435FF3D0411} - C:\PROGRA~2\Crawler\Toolbar\ctbr.dll F2 - REG:system.ini: UserInit=userinit.exe O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: (no name) - {1CB20BF0-BBAE-40A7-93F4-6435FF3D0411} - C:\PROGRA~2\Crawler\Toolbar\ctbr.dll O2 - BHO: McAfee Phishing Filter - {27B4851A-3207-45A2-B947-BE8AFE6163AB} - c:\PROGRA~2\mcafee\msk\mskapbho.dll O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file) O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll O2 - BHO: scriptproxy - {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - C:\Program Files (x86)\McAfee\VirusScan\scriptsn.dll O2 - BHO: Windows Live Anmelde-Hilfsprogramm - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files (x86)\Windows Live\Toolbar\wltcore.dll O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files (x86)\Windows Live\Toolbar\wltcore.dll O3 - Toolbar: &Crawler Toolbar - {4B3803EA-5230-4DC3-A7FC-33638F3D3542} - C:\PROGRA~2\Crawler\Toolbar\ctbr.dll O4 - HKLM\..\Run: [StartCCC] "c:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun O4 - HKLM\..\Run: [Dell DataSafe Online] "C:\Program Files (x86)\Dell DataSafe Online\DataSafeOnline.exe" /m O4 - HKLM\..\Run: [PDVDDXSrv] "C:\Program Files (x86)\CyberLink\PowerDVD DX\PDVDDXSrv.exe" O4 - HKLM\..\Run: [Dell Webcam Central] "C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe" /mode2 O4 - HKLM\..\Run: [Desktop Disc Tool] "c:\Program Files (x86)\Roxio\Roxio Burn\RoxioBurnLauncher.exe" O4 - HKLM\..\Run: [mcagent_exe] "C:\Program Files (x86)\McAfee.com\Agent\mcagent.exe" /runkey O4 - HKLM\..\Run: [DellSupportCenter] "C:\Program Files (x86)\Dell Support Center\bin\sprtcmd.exe" /P DellSupportCenter O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe" O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" O4 - HKLM\..\RunOnce: [STToasterLauncher] C:\program files (x86)\Dell DataSafe Local Backup\toasterLauncher.exe O4 - HKLM\..\RunOnce: [ICQ6setup] cmd.exe /c rmdir /S /Q "C:\Program Files (x86)\ICQ7.0" O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe" /background O4 - HKCU\..\Run: [SpywareTerminatorUpdate] "C:\Program Files (x86)\Spyware Terminator\SpywareTerminatorUpdate.exe" O4 - HKCU\..\RunOnce: [FlashPlayerUpdate] C:\Windows\SysWow64\Macromed\Flash\FlashUtil10e.exe O4 - .DEFAULT User Startup: Dell Dock First Run.lnk = C:\Program Files\Dell\DellDock\DellDock.exe (User 'Default user') O4 - Startup: Dell Dock.lnk = C:\Program Files\Dell\DellDock\DellDock.exe O8 - Extra context menu item: Crawler Search - tbr:iemenu O8 - Extra context menu item: Google Sidewiki... - res://C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_96D6FF0C6D236BF8.dll/cmsidewiki.html O8 - Extra context menu item: Nach Microsoft E&xel exportieren - res://C:\PROGRA~2\MICROS~2\Office12\EXCEL.EXE/3000 O9 - Extra button: In Blog veröffentlichen - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra 'Tools' menuitem: In Windows Live Writer in Blog veröffentliche&n - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra button: An OneNote senden - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~2\Office12\ONBttnIE.dll O9 - Extra 'Tools' menuitem: An OneNote s&enden - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~2\Office12\ONBttnIE.dll O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~2\Office12\REFIEBAR.DLL O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL O18 - Protocol: tbr - {4D25FB7A-8902-4291-960E-9ADA051CFBBF} - C:\PROGRA~2\Crawler\Toolbar\ctbr.dll O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing) O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing) O23 - Service: Dock Login Service (DockLoginService) - Stardock Corporation - C:\Program Files\Dell\DellDock\DockLogin.exe O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing) O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing) O23 - Service: GameConsoleService - WildTangent, Inc. - C:\Program Files (x86)\WildTangent\Dell Games\Dell Game Console\GameConsoleService.exe O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTMon.exe O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: McAfee Services (mcmscsvc) - McAfee, Inc. - C:\PROGRA~2\McAfee\MSC\mcmscsvc.exe O23 - Service: McAfee Network Agent (McNASvc) - McAfee, Inc. - C:\Program Files (x86)\Common Files\mcafee\mna\mcnasvc.exe O23 - Service: McAfee Scanner (McODS) - McAfee, Inc. - C:\PROGRA~1\McAfee\VIRUSS~1\mcods.exe O23 - Service: McAfee Proxy Service (McProxy) - McAfee, Inc. - C:\PROGRA~2\COMMON~1\McAfee\McProxy\McProxy.exe O23 - Service: McAfee Real-time Scanner (McShield) - McAfee, Inc. - C:\PROGRA~1\McAfee\VIRUSS~1\mcshield.exe O23 - Service: McAfee SystemGuards (McSysmon) - McAfee, Inc. - C:\PROGRA~2\McAfee\VIRUSS~1\mcsysmon.exe O23 - Service: McAfee Personal Firewall Service (MpfService) - McAfee, Inc. - C:\Program Files (x86)\McAfee\MPF\MPFSrv.exe O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing) O23 - Service: McAfee Anti-Spam Service (MSK80Service) - McAfee, Inc. - C:\Program Files (x86)\McAfee\MSK\MskSrver.exe O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: O2FLASH - Unknown owner - C:\Windows\system32\DRIVERS\o2flash.exe (file missing) O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing) O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: SoftThinks Agent Service (SftService) - SoftThinks - C:\Program Files (x86)\Dell DataSafe Local Backup\sftservice.EXE O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing) O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing) O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing) O23 - Service: SupportSoft Sprocket Service (DellSupportCenter) (sprtsvc_DellSupportCenter) - SupportSoft, Inc. - C:\Program Files (x86)\Dell Support Center\bin\sprtsvc.exe O23 - Service: Spyware Terminator Realtime Shield Service (sp_rssrv) - Crawler.com - C:\Program Files (x86)\Spyware Terminator\sp_rsser.exe O23 - Service: Audio Service (STacSV) - IDT, Inc. - C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_afc3018f8cfedd20\STacSV64.exe O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing) O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing) O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing) O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing) O23 - Service: Dell Wireless WLAN Tray Service (wltrysvc) - Unknown owner - C:\Program Files\Dell\Dell Wireless WLAN Card\WLTRYSVC.EXE O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing) O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing) -- End of file - 11702 bytes hilft das was? |
|
26.06.2010, 09:54
| #4 |
| | ICQ-Virus 'Schau dir das Bild mal an :D' Moin, hab heute nochmal den Spyware Terminator drüber geschickt und er fand nichts mehr, ist das Thema dann schon erledigt?  |
|
28.06.2010, 13:18
| #5 |
| | ICQ-Virus 'Schau dir das Bild mal an :D' ok da ich nichts gehört habe werde ich nun wohl doch formatieren... trotzdem Danke |
|
| Themen zu ICQ-Virus 'Schau dir das Bild mal an :D' |
| home premium, iastor.sys, location, media center, oldtimer, otl.exe, plug-in, programdata, spyware terminator, start menu, syswow64, vcredist, webcheck |
Linear-Darstellung
