| |
| |||||||
Log-Analyse und Auswertung: Alle 10 Minuten "Keine Rückmeldung", im Browser/Desktop, Programme...Windows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML. |
 |
29.08.2010, 08:57
| #1 |
| |  Alle 10 Minuten "Keine Rückmeldung", im Browser/Desktop, Programme... Erstmal Hallo Trojaner Board und alle die diesen Thread bemerken, und mir helfen  System: Windows Vista Home Premium AMD Athlon 64 X2 Dual Core Proessor 5000+ 2.60GHz 2,00 GB RAM ATI Radeon HD 4300/4500 Series Nebenbei habe ich ein 64-Bit Motherboard, falls das irgendwas mit meinem Problem zu tun hat, das ich jetzt erkläre. Also... Ich weiß nicht ungefähr wann es begonnen hat, aber nachdem ich eines Morgens meinen PC einschaltete brauchte es ca. 5-8 Minuten um Hochzufahren... Nun das ist ja eigentlich nicht mein Problem, aber doch merksam... Mein eigentliches Problem ist, das wenn ich z.B: im Browser 3 oder mehr Tabs offen habe, Firefox urplötzlich keine Rückmeldung mehr bekommt... nach ca. 3 Minuten läuft alles wieder und dann nach ca. 10- 15 Minuten das gleiche... Keine Rückmeldung, 2 Minuten warten, dann geht alles... Genau das gleiche ist mit meinen Programmen z.B: wenn ich einen Ordner öffne oder meine Systemsteuerung... Nun denn... HiJackThis Logfile : HiJackthis Logfile: Code:
ATTFilter Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 09:45:12, on 29.08.2010 Platform: Windows Vista SP2 (WinNT 6.00.1906) MSIE: Internet Explorer v8.00 (8.00.6001.18943) Boot mode: Normal Running processes: C:\Users\***\AppData\Local\Google\Update\1.2.183.29\GoogleCrashHandler.exe C:\Program Files (x86)\Mozilla Firefox\firefox.exe C:\Program Files (x86)\Windows Media Player\wmplayer.exe C:\Users\***\Desktop\Rescue Equip\HiJackThis\HiJackThis204.exe R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = O1 - Hosts: ::1 localhost O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: AskBar BHO - {201f27d4-3704-41d6-89c1-aa35e39143ed} - C:\Program Files (x86)\AskBarDis\bar\bin\askBar.dll O2 - BHO: Windows Live Family Safety Browser Helper - {4f3ed5cd-0726-42a9-87f5-d13f3d2976ac} - C:\Program Files (x86)\Windows Live\Family Safety\fssbho.dll O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file) O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll O2 - BHO: Windows Live Anmelde-Hilfsprogramm - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files (x86)\Windows Live\Toolbar\wltcore.dll O17 - HKLM\System\CCS\Services\Tcpip\..\{D403D69F-AE32-4078-888D-30163CDB18C5}: NameServer = 195.50.140.246 195.50.140.114 O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\Windows\system32\browseui.dll O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing) O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing) O23 - Service: Avira AntiVir Planer (AntiVirSchedulerService) - Avira GmbH - C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe O23 - Service: Avira AntiVir Guard (AntiVirService) - Avira GmbH - C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe O23 - Service: @dfsrres.dll,-101 (DFSR) - Unknown owner - C:\Windows\system32\DFSR.exe (file missing) O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files (x86)\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing) O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: nProtect GameGuard Service (npggsvc) - Unknown owner - C:\Windows\system32\GameMon.des.exe (file missing) O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe O23 - Service: PnkBstrB - Unknown owner - C:\Windows\system32\PnkBstrB.exe O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing) O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\SLsvc.exe,-101 (slsvc) - Unknown owner - C:\Windows\system32\SLsvc.exe (file missing) O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing) O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing) O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing) O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing) O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing) O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing) O23 - Service: @%ProgramFiles%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing) -- End of file - 4900 bytes Anti Malwarebytes Logfile : Malwarebytes' Anti-Malware 1.46 www.malwarebytes.org Datenbank Version: 4052 Windows 6.0.6002 Service Pack 2 Internet Explorer 8.0.6001.18943 29.08.2010 00:54:04 mbam-log-2010-08-29 (00-54-04).txt Art des Suchlaufs: Vollständiger Suchlauf (C:\|D:\|E:\|F:\|G:\|H:\|I:\|) Durchsuchte Objekte: 294002 Laufzeit: 1 Stunde(n), 57 Minute(n), 43 Sekunde(n) Infizierte Speicherprozesse: 0 Infizierte Speichermodule: 0 Infizierte Registrierungsschlüssel: 0 Infizierte Registrierungswerte: 0 Infizierte Dateiobjekte der Registrierung: 0 Infizierte Verzeichnisse: 0 Infizierte Dateien: 0 Infizierte Speicherprozesse: (Keine bösartigen Objekte gefunden) Infizierte Speichermodule: (Keine bösartigen Objekte gefunden) Infizierte Registrierungsschlüssel: (Keine bösartigen Objekte gefunden) Infizierte Registrierungswerte: (Keine bösartigen Objekte gefunden) Infizierte Dateiobjekte der Registrierung: (Keine bösartigen Objekte gefunden) Infizierte Verzeichnisse: (Keine bösartigen Objekte gefunden) Infizierte Dateien: (Keine bösartigen Objekte gefunden) OTL Logfile:OTL Logfile: Code:
ATTFilter OTL logfile created on: 28.08.2010 19:54:08 - Run 1 OTL by OldTimer - Version 3.2.10.0 Folder = C:\Users\Manuel\Desktop 64bit-Windows Vista Home Premium Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation Internet Explorer (Version = 8.0.6001.18943) Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy 2,00 Gb Total Physical Memory | 1,00 Gb Available Physical Memory | 46,00% Memory free 4,00 Gb Paging File | 3,00 Gb Available in Paging File | 66,00% Paging File free Paging file location(s): ?:\pagefile.sys [binary data] %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86) Drive C: | 223,88 Gb Total Space | 152,50 Gb Free Space | 68,11% Space Free | Partition Type: NTFS Drive D: | 9,00 Gb Total Space | 8,89 Gb Free Space | 98,72% Space Free | Partition Type: NTFS E: Drive not present or media not loaded F: Drive not present or media not loaded G: Drive not present or media not loaded H: Drive not present or media not loaded I: Drive not present or media not loaded Computer Name: ***-PC Current User Name: *** Logged in as Administrator. Current Boot Mode: Normal Scan Mode: Current user Include 64bit Scans Company Name Whitelist: Off Skip Microsoft Files: Off File Age = 30 Days Output = Standard ========== Processes (SafeList) ========== PRC - [2010.08.28 19:02:11 | 000,575,488 | ---- | M] (OldTimer Tools) -- C:\Users\Manuel\Desktop\OTL.exe PRC - [2010.08.27 18:38:06 | 000,134,808 | ---- | M] (Google Inc.) -- C:\Users\Manuel\AppData\Local\Google\Update\1.2.183.29\GoogleCrashHandler.exe PRC - [2010.08.18 03:58:17 | 000,945,720 | ---- | M] (Google Inc.) -- C:\Users\Manuel\AppData\Local\Google\Chrome\Application\chrome.exe PRC - [2009.12.27 16:38:39 | 000,103,736 | ---- | M] () -- C:\Windows\SysWOW64\PnkBstrB.exe PRC - [2009.12.27 16:38:28 | 000,066,872 | ---- | M] () -- C:\Windows\SysWOW64\PnkBstrA.exe PRC - [2009.07.21 14:34:28 | 000,185,089 | ---- | M] (Avira GmbH) -- C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe PRC - [2009.05.19 11:36:18 | 000,240,512 | ---- | M] (Microsoft Corporation) -- C:\Program Files (x86)\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe PRC - [2009.05.13 16:48:18 | 000,108,289 | ---- | M] (Avira GmbH) -- C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe ========== Modules (SafeList) ========== MOD - [2010.08.28 19:02:11 | 000,575,488 | ---- | M] (OldTimer Tools) -- C:\Users\Manuel\Desktop\OTL.exe MOD - [2008.01.21 04:50:01 | 000,110,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\msscript.ocx ========== Win32 Services (SafeList) ========== SRV:64bit: - File not found [Auto | Running] -- C:\Windows\SysNative\PnkBstrB.exe -- (PnkBstrB) SRV:64bit: - File not found [Auto | Running] -- C:\Windows\SysNative\PnkBstrA.exe -- (PnkBstrA) SRV:64bit: - File not found [On_Demand | Stopped] -- C:\Windows\SysNative\GameMon.des -- (npggsvc) SRV:64bit: - [2010.08.04 03:51:20 | 000,203,264 | ---- | M] (AMD) [Auto | Running] -- C:\Windows\SysNative\atiesrxx.exe -- (AMD External Events Utility) SRV - [2009.12.27 16:38:39 | 000,103,736 | ---- | M] () [Auto | Running] -- C:\Windows\SysWOW64\PnkBstrB.exe -- (PnkBstrB) SRV - [2009.12.27 16:38:28 | 000,066,872 | ---- | M] () [Auto | Running] -- C:\Windows\SysWOW64\PnkBstrA.exe -- (PnkBstrA) SRV - [2009.12.04 01:29:00 | 003,377,880 | ---- | M] (INCA Internet Co., Ltd.) [On_Demand | Stopped] -- C:\Windows\SysWow64\GameMon.des -- (npggsvc) SRV - [2009.08.05 22:48:42 | 000,704,864 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe -- (fsssvc) SRV - [2009.07.21 14:34:28 | 000,185,089 | ---- | M] (Avira GmbH) [Auto | Running] -- C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe -- (AntiVirService) SRV - [2009.05.19 11:36:18 | 000,240,512 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files (x86)\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe -- (SeaPort) SRV - [2009.05.13 16:48:18 | 000,108,289 | ---- | M] (Avira GmbH) [Auto | Running] -- C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe -- (AntiVirSchedulerService) SRV - [2009.04.02 13:47:04 | 000,234,888 | ---- | M] () [Disabled | Stopped] -- C:\Program Files (x86)\AskBarDis\bar\bin\ASKUpgrade.exe -- (ASKUpgrade) SRV - [2009.04.02 13:47:02 | 000,464,264 | ---- | M] () [Disabled | Stopped] -- C:\Program Files (x86)\AskBarDis\bar\bin\AskService.exe -- (ASKService) ========== Driver Services (SafeList) ========== DRV:64bit: - File not found [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\DRIVERS\nwlnkfwd.sys -- (NwlnkFwd) DRV:64bit: - File not found [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\DRIVERS\nwlnkflt.sys -- (NwlnkFlt) DRV:64bit: - File not found [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\npptNT2.sys -- (NPPTNT2) DRV:64bit: - File not found [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\DRIVERS\ipinip.sys -- (IpInIp) DRV:64bit: - File not found [Kernel | Boot | Stopped] -- C:\Windows\SysNative\DRIVERS\amdide64.sys -- (amdide64) DRV:64bit: - File not found [Kernel | Boot | Stopped] -- C:\Windows\SysNative\DRIVERS\ahcix64s.sys -- (ahcix64s) DRV:64bit: - [2010.08.04 04:22:36 | 007,451,648 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\DRIVERS\atikmdag.sys -- (atikmdag) DRV:64bit: - [2010.08.04 04:22:36 | 007,451,648 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\DRIVERS\atikmdag.sys -- (amdkmdag) DRV:64bit: - [2010.08.04 03:15:44 | 000,268,288 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\DRIVERS\atikmpag.sys -- (amdkmdap) DRV:64bit: - [2009.12.08 14:52:10 | 000,074,880 | ---- | M] (Avira GmbH) [File_System | Auto | Running] -- C:\Windows\SysNative\DRIVERS\avgntflt.sys -- (avgntflt) DRV:64bit: - [2009.11.29 19:14:00 | 000,303,616 | ---- | M] () [Kernel | Auto | Stopped] -- C:\Windows\SysNative\DRIVERS\atksgt.sys -- (atksgt) DRV:64bit: - [2009.11.29 19:13:59 | 000,035,328 | ---- | M] () [Kernel | Auto | Stopped] -- C:\Windows\SysNative\DRIVERS\lirsgt.sys -- (lirsgt) DRV:64bit: - [2009.09.23 10:42:58 | 000,033,856 | -H-- | M] (LogMeIn, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\DRIVERS\hamachi.sys -- (hamachi) DRV:64bit: - [2009.08.05 23:24:16 | 000,061,280 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\DRIVERS\fssfltr.sys -- (fssfltr) DRV:64bit: - [2009.07.23 22:26:32 | 000,871,408 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\SysNative\Drivers\sptd.sys -- (sptd) DRV:64bit: - [2008.12.15 11:21:30 | 000,016,400 | ---- | M] (ATI Technologies Inc.) [Kernel | Boot | Running] -- C:\Windows\SysNative\DRIVERS\AtiPcie.sys -- (AtiPcie) ATI PCI Express (3GIO) DRV:64bit: - [2008.12.10 17:37:52 | 000,184,832 | ---- | M] (Realtek Corporation ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\DRIVERS\Rtlh64.sys -- (RTL8169) DRV:64bit: - [2008.10.17 11:00:00 | 000,179,768 | ---- | M] (AhnLab, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\Mkd3kfNt.sys -- (Mkd3kfNt) DRV:64bit: - [2008.10.17 11:00:00 | 000,106,040 | ---- | M] (AhnLab, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\Mkd2Nadr.sys -- (Mkd2Nadr) DRV:64bit: - [2008.09.01 08:03:01 | 000,316,456 | ---- | M] (Marvell Semiconductor, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\SysNative\drivers\mv64xx.sys -- (mv64xx) DRV:64bit: - [2008.04.15 11:54:16 | 000,388,120 | ---- | M] (Intel Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\SysNative\drivers\iastor.sys -- (iaStor) DRV:64bit: - [2008.02.19 22:48:14 | 000,199,176 | ---- | M] (Promise Technology, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\SysNative\drivers\ftt3.sys -- (FTT3) DRV:64bit: - [2007.10.01 14:41:08 | 000,008,192 | ---- | M] (Philips ) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\SPC520m.sys -- (SPC520m) DRV:64bit: - [2007.10.01 14:41:04 | 000,579,072 | ---- | M] (Philips ) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\SPC520.sys -- (SPC520) DRV:64bit: - [2006.11.10 15:08:58 | 000,030,720 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\DRIVERS\ATITool64.sys -- (ATITool) DRV:64bit: - [2006.09.18 23:36:24 | 000,000,308 | ---- | M] () [File_System | On_Demand | Running] -- C:\Windows\SysNative\Wbem\ntfs.mof -- (Ntfs) DRV - [2005.01.04 11:43:08 | 000,004,682 | ---- | M] (INCA Internet Co., Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysWOW64\npptNT2.sys -- (NPPTNT2) ========== Standard Registry (SafeList) ========== ========== Internet Explorer ========== IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.msn.com/ IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.msn.com/ IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://de.msn.com/?ocid=iehp IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 6B 9F A2 C1 28 0A CA 01 [binary data] IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 ========== FireFox ========== FF - prefs.js..browser.search.defaultenginename: "ICQ Search" FF - prefs.js..browser.search.selectedEngine: "ICQ Search" FF - prefs.js..browser.startup.homepage: "hxxp://www.google.de/" FF - prefs.js..extensions.enabledItems: cybersearch@cybernetnews.com:2.0.4 FF - prefs.js..extensions.enabledItems: {D4DD63FA-01E4-46a7-B6B1-EDAB7D6AD389}:0.9.6.5 FF - prefs.js..extensions.enabledItems: {e4a8a97b-f2ed-450b-b12d-ee082ba24781}:0.8.20091209.4 FF - prefs.js..extensions.enabledItems: illimitux@illimitux.net:3.1 FF - prefs.js..extensions.enabledItems: {EEE6C361-6118-11DC-9C72-001320C79847}:1.0.0.8 FF - prefs.js..extensions.enabledItems: {E9A1DEE0-C623-4439-8932-001E7D17607D}:2.1.0.5 FF - prefs.js..extensions.enabledItems: {635abd67-4fe9-1b23-4f01-e679fa7484c1}:1.6.6.20090220 FF - prefs.js..extensions.enabledItems: one@h3j4.com:1.45 FF - prefs.js..keyword.URL: "hxxp://search.sweetim.com/search.asp?src=2&q=" FF - prefs.js..sweetim.toolbar.previous.keyword.URL: "chrome://browser-region/locale/region.properties" FF - HKLM\software\mozilla\Mozilla Firefox 3.5.7\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2010.07.17 19:27:40 | 000,000,000 | ---D | M] FF - HKLM\software\mozilla\Mozilla Firefox 3.5.7\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins [2010.08.27 20:59:25 | 000,000,000 | ---D | M] [2009.07.21 20:28:38 | 000,000,000 | ---D | M] -- C:\Users\Manuel\AppData\Roaming\mozilla\Extensions [2010.01.12 00:05:15 | 000,000,000 | ---D | M] -- C:\Users\Manuel\AppData\Roaming\mozilla\Firefox\Profiles\ep9hrrs6.default\extensions [2009.09.03 10:38:08 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Users\Manuel\AppData\Roaming\mozilla\Firefox\Profiles\ep9hrrs6.default\extensions\{20a82645-c095-46ed-80e3-08825760534b} [2009.12.02 20:19:17 | 000,000,000 | ---D | M] (Yahoo! Toolbar) -- C:\Users\Manuel\AppData\Roaming\mozilla\Firefox\Profiles\ep9hrrs6.default\extensions\{635abd67-4fe9-1b23-4f01-e679fa7484c1} [2010.01.12 00:05:09 | 000,000,000 | ---D | M] (Download Statusbar) -- C:\Users\Manuel\AppData\Roaming\mozilla\Firefox\Profiles\ep9hrrs6.default\extensions\{D4DD63FA-01E4-46a7-B6B1-EDAB7D6AD389} [2009.12.13 17:52:34 | 000,000,000 | ---D | M] (Greasemonkey) -- C:\Users\Manuel\AppData\Roaming\mozilla\Firefox\Profiles\ep9hrrs6.default\extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781} [2009.12.04 14:24:19 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Manuel\AppData\Roaming\mozilla\Firefox\Profiles\ep9hrrs6.default\extensions\{E9A1DEE0-C623-4439-8932-001E7D17607D} [2009.09.04 21:33:34 | 000,000,000 | ---D | M] (SweetIM Toolbar for Firefox) -- C:\Users\Manuel\AppData\Roaming\mozilla\Firefox\Profiles\ep9hrrs6.default\extensions\{EEE6C361-6118-11DC-9C72-001320C79847} [2009.12.02 20:19:50 | 000,000,000 | ---D | M] -- C:\Users\Manuel\AppData\Roaming\mozilla\Firefox\Profiles\ep9hrrs6.default\extensions\cybersearch@cybernetnews.com [2009.09.14 16:16:49 | 000,000,000 | ---D | M] -- C:\Users\Manuel\AppData\Roaming\mozilla\Firefox\Profiles\ep9hrrs6.default\extensions\illimitux@illimitux.net [2009.08.21 19:59:54 | 000,000,000 | ---D | M] -- C:\Users\Manuel\AppData\Roaming\mozilla\Firefox\Profiles\ep9hrrs6.default\extensions\one@h3j4.com [2010.01.06 18:22:31 | 000,000,955 | ---- | M] () -- C:\Users\Manuel\AppData\Roaming\Mozilla\FireFox\Profiles\ep9hrrs6.default\searchplugins\icqplugin.xml [2009.09.04 21:33:22 | 000,003,915 | ---- | M] () -- C:\Users\Manuel\AppData\Roaming\Mozilla\FireFox\Profiles\ep9hrrs6.default\searchplugins\sweetim.xml [2010.08.27 20:59:27 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Mozilla Firefox\extensions [2009.08.06 03:01:41 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\Mozilla Firefox\extensions\{800b5000-a755-47e1-992b-48a1c1357f07} [2010.08.27 20:59:27 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA} [2010.07.17 05:00:04 | 000,423,656 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files (x86)\Mozilla Firefox\plugins\npdeployJava1.dll [2009.04.08 04:06:28 | 000,122,880 | ---- | M] (AB) -- C:\Program Files (x86)\Mozilla Firefox\plugins\NPOP7PlugIn.dll [2009.10.20 18:23:01 | 000,238,776 | ---- | M] (Pando Networks) -- C:\Program Files (x86)\Mozilla Firefox\plugins\npPandoWebInst.dll [2009.07.15 21:08:31 | 000,001,392 | ---- | M] () -- C:\Program Files (x86)\Mozilla Firefox\searchplugins\amazondotcom-de.xml [2009.07.15 21:08:31 | 000,002,344 | ---- | M] () -- C:\Program Files (x86)\Mozilla Firefox\searchplugins\eBay-de.xml [2009.07.15 21:08:31 | 000,006,805 | ---- | M] () -- C:\Program Files (x86)\Mozilla Firefox\searchplugins\leo_ende_de.xml [2009.09.11 19:35:37 | 000,001,178 | ---- | M] () -- C:\Program Files (x86)\Mozilla Firefox\searchplugins\wikipedia-de.xml [2009.07.15 21:08:31 | 000,000,801 | ---- | M] () -- C:\Program Files (x86)\Mozilla Firefox\searchplugins\yahoo-de.xml O1 HOSTS File: ([2006.09.18 23:37:24 | 000,000,761 | ---- | M]) - C:\Windows\SysNative\drivers\etc\Hosts O1 - Hosts: 127.0.0.1 localhost O1 - Hosts: ::1 localhost O2:64bit: - BHO: (Windows Live Family Safety Browser Helper Class) - {4f3ed5cd-0726-42a9-87f5-d13f3d2976ac} - C:\Programme\Windows Live\Family Safety\fssbho.dll (Microsoft Corporation) O2 - BHO: (AskBar BHO) - {201f27d4-3704-41d6-89c1-aa35e39143ed} - C:\Program Files (x86)\AskBarDis\bar\bin\askBar.dll (Ask.com) O2 - BHO: (Windows Live Family Safety Browser Helper Class) - {4f3ed5cd-0726-42a9-87f5-d13f3d2976ac} - C:\Program Files (x86)\Windows Live\Family Safety\fssbho.dll (Microsoft Corporation) O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - No CLSID value found. O2 - BHO: (Search Helper) - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll (Microsoft Corporation) O2 - BHO: (Windows Live Toolbar Helper) - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files (x86)\Windows Live\Toolbar\wltcore.dll (Microsoft Corporation) O3 - HKCU\..\Toolbar\WebBrowser: (&Windows Live Toolbar) - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files (x86)\Windows Live\Toolbar\wltcore.dll (Microsoft Corporation) O4 - HKLM..\Run: [StartCCC] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.) O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutorun = 0 O9 - Extra Button: An OneNote senden - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation) O9 - Extra 'Tools' menuitem : An OneNote s&enden - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation) O13 - gopher Prefix: missing O13 - gopher Prefix: missing O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_21-windows-i586.cab (Java Plug-in 1.6.0_21) O16 - DPF: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_21-windows-i586.cab (Java Plug-in 1.6.0_21) O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_21-windows-i586.cab (Java Plug-in 1.6.0_21) O18:64bit: - Protocol\Handler\livecall {828030A1-22C1-4009-854F-8E305202313F} - Reg Error: Key error. File not found O18:64bit: - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - Reg Error: Key error. File not found O18:64bit: - Protocol\Handler\ms-itss {0A9007C0-4076-11D3-8789-0000F8105754} - Reg Error: Key error. File not found O18:64bit: - Protocol\Handler\msnim {828030A1-22C1-4009-854F-8E305202313F} - Reg Error: Key error. File not found O18:64bit: - Protocol\Handler\wlmailhtml {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - Reg Error: Key error. File not found O18:64bit: - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\Programme\Common Files\Microsoft Shared\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation) O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation) O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation) O24 - Desktop WallPaper: C:\Users\Manuel\AppData\Roaming\Microsoft\Windows Photo Gallery\Hintergrundbild der Windows-Fotogalerie.jpg O24 - Desktop BackupWallPaper: C:\Users\Manuel\AppData\Roaming\Microsoft\Windows Photo Gallery\Hintergrundbild der Windows-Fotogalerie.jpg O32 - HKLM CDRom: AutoRun - 1 O33 - MountPoints2\{934e0311-7819-11de-b608-00248c453aa8}\Shell - "" = AutoRun O33 - MountPoints2\{934e0311-7819-11de-b608-00248c453aa8}\Shell\AutoRun\command - "" = J:\Autorun.exe -- File not found O34 - HKLM BootExecute: (autocheck autochk *) - File not found O35:64bit: - HKLM\..comfile [open] -- "%1" %* O35:64bit: - HKLM\..exefile [open] -- "%1" %* O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %* O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* ========== Files/Folders - Created Within 30 Days ========== [2010.08.28 19:43:35 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\ERUNT [2010.08.28 19:02:22 | 000,000,000 | ---D | C] -- C:\Users\Manuel\Desktop\MFTools [2010.08.28 19:02:09 | 000,575,488 | ---- | C] (OldTimer Tools) -- C:\Users\Manuel\Desktop\OTL.exe [2010.08.28 17:14:53 | 001,942,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dfshim.dll [2010.08.28 17:14:53 | 001,130,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dfshim.dll [2010.08.28 17:14:53 | 000,320,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\PresentationHost.exe [2010.08.28 17:14:53 | 000,295,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\PresentationHost.exe [2010.08.28 17:14:53 | 000,109,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\PresentationHostProxy.dll [2010.08.28 17:14:53 | 000,099,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\PresentationHostProxy.dll [2010.08.28 17:14:53 | 000,049,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\netfxperf.dll [2010.08.28 17:14:53 | 000,048,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\netfxperf.dll [2010.08.28 17:14:21 | 000,294,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\browserchoice.exe [2010.08.28 17:12:16 | 000,032,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\nshhttp.dll [2010.08.28 17:12:16 | 000,024,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\nshhttp.dll [2010.08.28 17:12:14 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\httpapi.dll [2010.08.28 17:12:14 | 000,030,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\httpapi.dll [2010.08.28 16:46:25 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft Help [2010.08.28 15:10:59 | 000,000,000 | ---D | C] -- C:\Users\Manuel\Desktop\EMU´s [2010.08.28 15:10:51 | 000,000,000 | ---D | C] -- C:\Users\Manuel\Desktop\Musik [2010.08.28 15:10:38 | 000,000,000 | ---D | C] -- C:\Users\Manuel\Desktop\Bilder [2010.08.28 15:10:01 | 000,000,000 | ---D | C] -- C:\Users\Manuel\Desktop\HiJackThis Equip [2010.08.28 14:43:58 | 000,000,000 | ---D | C] -- C:\Users\Manuel\AppData\Roaming\Uniblue [2010.08.28 14:37:41 | 000,000,000 | ---D | C] -- C:\Users\Manuel\AppData\Roaming\Registry Mechanic [2010.08.28 11:52:35 | 001,570,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\quartz.dll [2010.08.28 11:52:34 | 001,314,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\quartz.dll [2010.08.28 11:52:33 | 000,123,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msvfw32.dll [2010.08.28 11:52:33 | 000,082,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mciavi32.dll [2010.08.28 11:52:32 | 000,091,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\avifil32.dll [2010.08.28 11:52:29 | 000,817,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript.dll [2010.08.28 11:52:29 | 000,726,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\jscript.dll [2010.08.28 11:52:23 | 001,927,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\gameux.dll [2010.08.28 11:52:21 | 001,696,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\gameux.dll [2010.08.28 11:52:19 | 000,032,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Apphlpdm.dll [2010.08.28 11:52:19 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Apphlpdm.dll [2010.08.28 11:52:18 | 004,240,384 | ---- | C] (Microsoft) -- C:\Windows\SysWow64\GameUXLegacyGDFs.dll [2010.08.28 11:52:17 | 004,240,384 | ---- | C] (Microsoft) -- C:\Windows\SysNative\GameUXLegacyGDFs.dll [2010.08.28 11:52:12 | 000,366,080 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\SysNative\atmfd.dll [2010.08.28 11:52:12 | 000,289,792 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\atmfd.dll [2010.08.28 11:52:12 | 000,048,128 | ---- | C] (Adobe Systems) -- C:\Windows\SysNative\atmlib.dll [2010.08.28 11:52:12 | 000,034,304 | ---- | C] (Adobe Systems) -- C:\Windows\SysWow64\atmlib.dll [2010.08.28 11:51:47 | 000,612,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\vbscript.dll [2010.08.28 11:51:47 | 000,420,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\vbscript.dll [2010.08.28 11:51:46 | 000,050,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rtutils.dll [2010.08.28 11:51:46 | 000,036,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\rtutils.dll [2010.08.28 11:51:32 | 000,081,920 | ---- | C] (Radius Inc.) -- C:\Windows\SysWow64\iccvid.dll [2010.08.28 11:51:30 | 004,697,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntoskrnl.exe [2010.08.28 11:51:04 | 000,471,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\secproc_isv.dll [2010.08.28 11:51:04 | 000,471,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\secproc.dll [2010.08.28 11:51:03 | 000,539,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\secproc.dll [2010.08.28 11:51:03 | 000,538,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\secproc_isv.dll [2010.08.28 11:51:00 | 000,600,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\RMActivate_isv.exe [2010.08.28 11:51:00 | 000,599,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\RMActivate.exe [2010.08.28 11:51:00 | 000,409,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\RMActivate_ssp.exe [2010.08.28 11:50:59 | 000,526,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\RMActivate_isv.exe [2010.08.28 11:50:59 | 000,413,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\RMActivate_ssp_isv.exe [2010.08.28 11:50:58 | 000,518,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\RMActivate.exe [2010.08.28 11:50:58 | 000,347,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\RMActivate_ssp.exe [2010.08.28 11:50:58 | 000,346,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\RMActivate_ssp_isv.exe [2010.08.28 11:50:57 | 000,160,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\secproc_ssp_isv.dll [2010.08.28 11:50:57 | 000,160,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\secproc_ssp.dll [2010.08.28 11:50:57 | 000,152,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\secproc_ssp_isv.dll [2010.08.28 11:50:57 | 000,152,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\secproc_ssp.dll [2010.08.28 11:50:56 | 000,460,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msdrm.dll [2010.08.28 11:50:56 | 000,332,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msdrm.dll [2010.08.28 11:47:31 | 000,599,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msfeeds.dll [2010.08.28 11:47:28 | 000,173,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ie4uinit.exe [2010.08.28 11:47:28 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msfeedssync.exe [2010.08.28 11:47:27 | 002,335,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iertutil.dll [2010.08.28 11:47:27 | 001,469,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\inetcpl.cpl [2010.08.28 11:47:27 | 000,055,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iernonce.dll [2010.08.28 11:47:26 | 000,243,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\occache.dll [2010.08.28 11:47:26 | 000,206,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\occache.dll [2010.08.28 11:47:26 | 000,184,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iepeers.dll [2010.08.28 11:47:26 | 000,164,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieui.dll [2010.08.28 11:47:25 | 001,538,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\inetcpl.cpl [2010.08.28 11:47:25 | 000,706,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msfeeds.dll [2010.08.28 11:47:25 | 000,162,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieUnatt.exe [2010.08.28 11:47:25 | 000,133,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieUnatt.exe [2010.08.28 11:47:25 | 000,109,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iesysprep.dll [2010.08.28 11:47:25 | 000,071,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iesetup.dll [2010.08.28 11:47:24 | 000,252,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iepeers.dll [2010.08.28 11:47:24 | 000,219,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieui.dll [2010.08.28 11:47:24 | 000,132,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iesysprep.dll [2010.08.28 11:47:24 | 000,077,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iesetup.dll [2010.08.28 11:47:24 | 000,072,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iernonce.dll [2010.08.28 11:47:24 | 000,070,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ie4uinit.exe [2010.08.28 11:47:24 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msfeedssync.exe [2010.08.28 11:46:18 | 000,072,192 | ---- | C] (Fraunhofer Institut Integrierte Schaltungen IIS) -- C:\Windows\SysNative\l3codeca.acm [2010.08.28 11:46:18 | 000,062,464 | ---- | C] (Fraunhofer Institut Integrierte Schaltungen IIS) -- C:\Windows\SysWow64\l3codeca.acm [2010.08.28 11:46:17 | 000,220,672 | ---- | C] (Fraunhofer Institut Integrierte Schaltungen IIS) -- C:\Windows\SysWow64\l3codecp.acm [2010.08.28 11:46:17 | 000,181,760 | ---- | C] (Fraunhofer Institut Integrierte Schaltungen IIS) -- C:\Windows\SysNative\l3codecp.acm [2010.08.28 11:32:43 | 000,000,000 | ---D | C] -- C:\ProgramData\TEMP [2010.08.28 11:32:43 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Registry Mechanic [2010.08.28 11:06:17 | 000,218,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wintrust.dll [2010.08.28 11:06:17 | 000,172,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wintrust.dll [2010.08.28 11:06:15 | 000,104,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cabview.dll [2010.08.28 11:06:15 | 000,098,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\cabview.dll [2010.08.27 21:06:39 | 000,000,000 | ---D | C] -- C:\Users\Manuel\Desktop\Touhou Music [2010.08.27 20:59:39 | 000,000,000 | ---D | C] -- C:\ProgramData\Sun [2010.08.27 20:59:38 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Java [2010.08.27 20:59:25 | 000,423,656 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\deployJava1.dll [2010.08.27 20:59:25 | 000,153,376 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\javaws.exe [2010.08.27 20:59:25 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\javaw.exe [2010.08.27 20:59:25 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\java.exe [2010.08.27 20:46:02 | 000,000,000 | ---D | C] -- C:\ProgramData\ATI [2010.08.27 20:36:15 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\ATI [2010.08.27 20:27:04 | 000,000,000 | ---D | C] -- C:\ATI [2010.08.27 18:54:13 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Skype [2010.08.27 18:54:11 | 000,000,000 | R--D | C] -- C:\Program Files (x86)\Skype [2010.08.27 18:53:54 | 000,000,000 | ---D | C] -- C:\ProgramData\Skype [2010.08.04 04:22:36 | 007,451,648 | ---- | C] (ATI Technologies Inc.) -- C:\Windows\SysNative\drivers\atikmdag.sys [2010.08.04 04:07:12 | 020,817,408 | ---- | C] (Advanced Micro Devices, Inc.) -- C:\Windows\SysNative\atio6axx.dll [2010.08.04 03:55:00 | 000,143,360 | ---- | C] (Advanced Micro Devices, Inc.) -- C:\Windows\SysNative\atiapfxx.exe [2010.08.04 03:54:50 | 000,519,680 | ---- | C] (ATI Technologies Inc. ) -- C:\Windows\SysWow64\aticfx32.dll [2010.08.04 03:54:00 | 000,598,528 | ---- | C] (ATI Technologies Inc. ) -- C:\Windows\SysNative\aticfx64.dll [2010.08.04 03:52:04 | 000,450,560 | ---- | C] (Advanced Micro Devices, Inc.) -- C:\Windows\SysNative\ATIDEMGX.dll [2010.08.04 03:51:54 | 000,461,824 | ---- | C] (AMD) -- C:\Windows\SysNative\atieclxx.exe [2010.08.04 03:51:20 | 000,203,264 | ---- | C] (AMD) -- C:\Windows\SysNative\atiesrxx.exe [2010.08.04 03:49:50 | 000,356,352 | ---- | C] (ATI Technologies, Inc.) -- C:\Windows\SysWow64\atipdlxx.dll [2010.08.04 03:49:48 | 015,845,888 | ---- | C] (Advanced Micro Devices, Inc.) -- C:\Windows\SysWow64\atioglxx.dll [2010.08.04 03:49:40 | 000,278,528 | ---- | C] (ATI Technologies, Inc.) -- C:\Windows\SysWow64\Oemdspif.dll [2010.08.04 03:49:36 | 000,012,288 | ---- | C] (AMD) -- C:\Windows\SysNative\atimuixx.dll [2010.08.04 03:49:32 | 000,059,392 | ---- | C] (ATI Technologies, Inc.) -- C:\Windows\SysNative\atiedu64.dll [2010.08.04 03:49:26 | 000,043,520 | ---- | C] (ATI Technologies, Inc.) -- C:\Windows\SysWow64\ati2edxx.dll [2010.08.04 03:46:32 | 003,899,392 | ---- | C] (ATI Technologies Inc. ) -- C:\Windows\SysWow64\atidxx32.dll [2010.08.04 03:37:46 | 004,554,240 | ---- | C] (ATI Technologies Inc. ) -- C:\Windows\SysNative\atidxx64.dll [2010.08.04 03:28:30 | 003,077,120 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysNative\atiumd6a.dll [2010.08.04 03:28:26 | 004,021,760 | ---- | C] (ATI Technologies Inc. ) -- C:\Windows\SysWow64\atiumdag.dll [2010.08.04 03:26:02 | 000,051,200 | ---- | C] (Advanced Micro Devices Inc.) -- C:\Windows\SysNative\aticalrt64.dll [2010.08.04 03:26:00 | 000,046,080 | ---- | C] (Advanced Micro Devices Inc.) -- C:\Windows\SysWow64\aticalrt.dll [2010.08.04 03:25:54 | 000,044,544 | ---- | C] (Advanced Micro Devices Inc.) -- C:\Windows\SysNative\aticalcl64.dll [2010.08.04 03:25:50 | 000,044,032 | ---- | C] (Advanced Micro Devices Inc.) -- C:\Windows\SysWow64\aticalcl.dll [2010.08.04 03:25:42 | 005,394,432 | ---- | C] (Advanced Micro Devices Inc.) -- C:\Windows\SysNative\aticaldd64.dll [2010.08.04 03:24:34 | 004,341,248 | ---- | C] (Advanced Micro Devices Inc.) -- C:\Windows\SysWow64\aticaldd.dll [2010.08.04 03:23:46 | 000,056,832 | ---- | C] (AMD) -- C:\Windows\SysNative\coinst.dll [2010.08.04 03:21:38 | 003,324,416 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysWow64\atiumdva.dll [2010.08.04 03:16:14 | 000,337,920 | ---- | C] (Advanced Micro Devices, Inc.) -- C:\Windows\SysNative\atiadlxx.dll [2010.08.04 03:16:06 | 000,241,664 | ---- | C] (Advanced Micro Devices, Inc.) -- C:\Windows\SysWow64\atiadlxy.dll [2010.08.04 03:15:58 | 000,014,848 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysNative\atig6pxx.dll [2010.08.04 03:15:54 | 000,012,800 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysWow64\atiglpxx.dll [2010.08.04 03:15:54 | 000,012,800 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysNative\atiglpxx.dll [2010.08.04 03:15:52 | 000,018,432 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysNative\atig6txx.dll [2010.08.04 03:15:48 | 000,016,896 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysWow64\atigktxx.dll [2010.08.04 03:15:44 | 000,268,288 | ---- | C] (Advanced Micro Devices, Inc.) -- C:\Windows\SysNative\drivers\atikmpag.sys [2010.08.04 03:15:08 | 000,039,424 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysNative\atiuxp64.dll [2010.08.04 03:15:02 | 000,030,208 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysWow64\atiuxpag.dll [2010.08.04 03:14:56 | 000,036,864 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysNative\atiu9p64.dll [2010.08.04 03:14:48 | 000,027,648 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysWow64\atiu9pag.dll [2010.08.04 03:14:12 | 000,053,248 | ---- | C] (ATI Technologies Inc.) -- C:\Windows\SysNative\drivers\ati2erec.dll [2010.08.04 03:09:28 | 000,054,784 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysNative\atimpc64.dll [2010.08.04 03:09:28 | 000,054,784 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysNative\amdpcom64.dll [2010.08.04 03:09:22 | 000,052,736 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysWow64\atimpc32.dll [2010.08.04 03:09:22 | 000,052,736 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysWow64\amdpcom32.dll [1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ] ========== Files - Modified Within 30 Days ========== [2010.08.28 19:54:26 | 003,145,728 | -HS- | M] () -- C:\Users\Manuel\NTUSER.DAT [2010.08.28 19:43:00 | 000,001,122 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1788838440-610687927-2898759701-1000UA.job [2010.08.28 19:20:57 | 000,618,204 | ---- | M] () -- C:\Windows\SysNative\perfh007.dat [2010.08.28 19:20:57 | 000,586,980 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat [2010.08.28 19:20:57 | 000,122,636 | ---- | M] () -- C:\Windows\SysNative\perfc007.dat [2010.08.28 19:20:57 | 000,101,052 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat [2010.08.28 19:20:56 | 001,418,806 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI [2010.08.28 19:12:50 | 000,065,536 | ---- | M] () -- C:\Windows\SysNative\Ikeext.etl [2010.08.28 19:12:40 | 000,003,616 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0 [2010.08.28 19:12:40 | 000,003,616 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0 [2010.08.28 19:12:27 | 000,000,006 | -H-- | M] () -- C:\Windows\tasks\SA.DAT [2010.08.28 19:12:15 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat [2010.08.28 19:11:52 | 2146,754,560 | -HS- | M] () -- C:\hiberfil.sys [2010.08.28 19:07:44 | 000,524,288 | -HS- | M] () -- C:\Users\Manuel\NTUSER.DAT{c328fef1-6a85-11db-9fbd-cf3689cba3de}.TMContainer00000000000000000001.regtrans-ms [2010.08.28 19:07:44 | 000,065,536 | -HS- | M] () -- C:\Users\Manuel\NTUSER.DAT{c328fef1-6a85-11db-9fbd-cf3689cba3de}.TM.blf [2010.08.28 19:07:41 | 001,625,303 | -H-- | M] () -- C:\Users\Manuel\AppData\Local\IconCache.db [2010.08.28 19:05:27 | 000,000,813 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk [2010.08.28 19:02:11 | 000,575,488 | ---- | M] (OldTimer Tools) -- C:\Users\Manuel\Desktop\OTL.exe [2010.08.28 19:01:50 | 000,388,197 | ---- | M] () -- C:\Users\Manuel\Desktop\Load.exe [2010.08.28 18:43:42 | 000,000,520 | ---- | M] () -- C:\Users\Manuel\Documents\cc_20100828_184335.reg [2010.08.28 18:43:02 | 000,001,070 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1788838440-610687927-2898759701-1000Core.job [2010.08.28 18:33:39 | 000,084,888 | ---- | M] () -- C:\Users\Manuel\AppData\Local\GDIPFONTCACHEV1.DAT [2010.08.28 18:25:31 | 000,323,728 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT [2010.08.28 15:32:38 | 000,000,716 | ---- | M] () -- C:\Users\Manuel\Documents\cc_20100828_153233.reg [2010.08.28 15:32:24 | 000,003,394 | ---- | M] () -- C:\Users\Manuel\Documents\cc_20100828_153220.reg [2010.08.28 15:32:10 | 000,002,758 | ---- | M] () -- C:\Users\Manuel\Documents\cc_20100828_153205.reg [2010.08.28 15:31:46 | 000,051,682 | ---- | M] () -- C:\Users\Manuel\Documents\cc_20100828_152940.reg [2010.08.28 15:29:29 | 000,467,790 | ---- | M] () -- C:\Users\Manuel\Documents\cc_20100828_152906.reg [2010.08.27 18:54:17 | 000,001,892 | ---- | M] () -- C:\Users\Public\Desktop\Skype.lnk [2010.08.04 04:22:36 | 007,451,648 | ---- | M] (ATI Technologies Inc.) -- C:\Windows\SysNative\drivers\atikmdag.sys [2010.08.04 04:07:12 | 020,817,408 | ---- | M] (Advanced Micro Devices, Inc.) -- C:\Windows\SysNative\atio6axx.dll [2010.08.04 03:55:18 | 000,071,096 | ---- | M] () -- C:\Windows\SysNative\atiapfxx.blb [2010.08.04 03:55:00 | 000,143,360 | ---- | M] (Advanced Micro Devices, Inc.) -- C:\Windows\SysNative\atiapfxx.exe [2010.08.04 03:54:50 | 000,519,680 | ---- | M] (ATI Technologies Inc. ) -- C:\Windows\SysWow64\aticfx32.dll [2010.08.04 03:54:00 | 000,598,528 | ---- | M] (ATI Technologies Inc. ) -- C:\Windows\SysNative\aticfx64.dll [2010.08.04 03:52:04 | 000,450,560 | ---- | M] (Advanced Micro Devices, Inc.) -- C:\Windows\SysNative\ATIDEMGX.dll [2010.08.04 03:51:54 | 000,461,824 | ---- | M] (AMD) -- C:\Windows\SysNative\atieclxx.exe [2010.08.04 03:51:20 | 000,203,264 | ---- | M] (AMD) -- C:\Windows\SysNative\atiesrxx.exe [2010.08.04 03:50:14 | 000,120,320 | ---- | M] (AMD) -- C:\Windows\SysNative\atitmm64.dll [2010.08.04 03:49:56 | 000,421,376 | ---- | M] (ATI Technologies, Inc.) -- C:\Windows\SysNative\atipdl64.dll [2010.08.04 03:49:50 | 000,356,352 | ---- | M] (ATI Technologies, Inc.) -- C:\Windows\SysWow64\atipdlxx.dll [2010.08.04 03:49:48 | 015,845,888 | ---- | M] (Advanced Micro Devices, Inc.) -- C:\Windows\SysWow64\atioglxx.dll [2010.08.04 03:49:40 | 000,278,528 | ---- | M] (ATI Technologies, Inc.) -- C:\Windows\SysWow64\Oemdspif.dll [2010.08.04 03:49:36 | 000,012,288 | ---- | M] (AMD) -- C:\Windows\SysNative\atimuixx.dll [2010.08.04 03:49:32 | 000,059,392 | ---- | M] (ATI Technologies, Inc.) -- C:\Windows\SysNative\atiedu64.dll [2010.08.04 03:49:26 | 000,043,520 | ---- | M] (ATI Technologies, Inc.) -- C:\Windows\SysWow64\ati2edxx.dll [2010.08.04 03:46:32 | 003,899,392 | ---- | M] (ATI Technologies Inc. ) -- C:\Windows\SysWow64\atidxx32.dll [2010.08.04 03:37:46 | 004,554,240 | ---- | M] (ATI Technologies Inc. ) -- C:\Windows\SysNative\atidxx64.dll [2010.08.04 03:28:30 | 003,077,120 | ---- | M] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysNative\atiumd6a.dll [2010.08.04 03:28:26 | 004,021,760 | ---- | M] (ATI Technologies Inc. ) -- C:\Windows\SysWow64\atiumdag.dll [2010.08.04 03:26:02 | 000,051,200 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Windows\SysNative\aticalrt64.dll [2010.08.04 03:26:00 | 000,046,080 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Windows\SysWow64\aticalrt.dll [2010.08.04 03:25:58 | 000,523,968 | ---- | M] () -- C:\Windows\SysNative\atiumd6a.cap [2010.08.04 03:25:54 | 000,044,544 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Windows\SysNative\aticalcl64.dll [2010.08.04 03:25:50 | 000,044,032 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Windows\SysWow64\aticalcl.dll [2010.08.04 03:25:42 | 005,394,432 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Windows\SysNative\aticaldd64.dll [2010.08.04 03:24:34 | 004,341,248 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Windows\SysWow64\aticaldd.dll [2010.08.04 03:23:46 | 000,056,832 | ---- | M] (AMD) -- C:\Windows\SysNative\coinst.dll [2010.08.04 03:22:34 | 005,167,104 | ---- | M] (ATI Technologies Inc. ) -- C:\Windows\SysNative\atiumd64.dll [2010.08.04 03:21:38 | 003,324,416 | ---- | M] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysWow64\atiumdva.dll [2010.08.04 03:21:14 | 000,523,968 | ---- | M] () -- C:\Windows\SysWow64\atiumdva.cap [2010.08.04 03:16:14 | 000,337,920 | ---- | M] (Advanced Micro Devices, Inc.) -- C:\Windows\SysNative\atiadlxx.dll [2010.08.04 03:16:06 | 000,241,664 | ---- | M] (Advanced Micro Devices, Inc.) -- C:\Windows\SysWow64\atiadlxy.dll [2010.08.04 03:15:58 | 000,014,848 | ---- | M] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysNative\atig6pxx.dll [2010.08.04 03:15:54 | 000,012,800 | ---- | M] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysWow64\atiglpxx.dll [2010.08.04 03:15:54 | 000,012,800 | ---- | M] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysNative\atiglpxx.dll [2010.08.04 03:15:52 | 000,018,432 | ---- | M] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysNative\atig6txx.dll [2010.08.04 03:15:48 | 000,016,896 | ---- | M] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysWow64\atigktxx.dll [2010.08.04 03:15:44 | 000,268,288 | ---- | M] (Advanced Micro Devices, Inc.) -- C:\Windows\SysNative\drivers\atikmpag.sys [2010.08.04 03:15:08 | 000,039,424 | ---- | M] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysNative\atiuxp64.dll [2010.08.04 03:15:02 | 000,030,208 | ---- | M] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysWow64\atiuxpag.dll [2010.08.04 03:14:56 | 000,036,864 | ---- | M] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysNative\atiu9p64.dll [2010.08.04 03:14:48 | 000,027,648 | ---- | M] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysWow64\atiu9pag.dll [2010.08.04 03:14:30 | 000,026,112 | ---- | M] () -- C:\Windows\SysNative\atitmp64.dll [2010.08.04 03:14:12 | 000,053,248 | ---- | M] (ATI Technologies Inc.) -- C:\Windows\SysNative\drivers\ati2erec.dll [2010.08.04 03:09:28 | 000,054,784 | ---- | M] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysNative\atimpc64.dll [2010.08.04 03:09:28 | 000,054,784 | ---- | M] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysNative\amdpcom64.dll [2010.08.04 03:09:22 | 000,052,736 | ---- | M] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysWow64\atimpc32.dll [2010.08.04 03:09:22 | 000,052,736 | ---- | M] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysWow64\amdpcom32.dll [1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ] ========== Files Created - No Company Name ========== [2010.08.28 19:05:27 | 000,000,813 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk [2010.08.28 19:01:50 | 000,388,197 | ---- | C] () -- C:\Users\Manuel\Desktop\Load.exe [2010.08.28 18:43:40 | 000,000,520 | ---- | C] () -- C:\Users\Manuel\Documents\cc_20100828_184335.reg [2010.08.28 15:32:34 | 000,000,716 | ---- | C] () -- C:\Users\Manuel\Documents\cc_20100828_153233.reg [2010.08.28 15:32:21 | 000,003,394 | ---- | C] () -- C:\Users\Manuel\Documents\cc_20100828_153220.reg [2010.08.28 15:32:07 | 000,002,758 | ---- | C] () -- C:\Users\Manuel\Documents\cc_20100828_153205.reg [2010.08.28 15:29:43 | 000,051,682 | ---- | C] () -- C:\Users\Manuel\Documents\cc_20100828_152940.reg [2010.08.28 15:29:17 | 000,467,790 | ---- | C] () -- C:\Users\Manuel\Documents\cc_20100828_152906.reg [2010.08.28 14:14:58 | 2146,754,560 | -HS- | C] () -- C:\hiberfil.sys [2010.08.27 18:54:17 | 000,001,892 | ---- | C] () -- C:\Users\Public\Desktop\Skype.lnk [2010.08.04 03:55:18 | 000,071,096 | ---- | C] () -- C:\Windows\SysNative\atiapfxx.blb [2010.08.04 03:25:58 | 000,523,968 | ---- | C] () -- C:\Windows\SysNative\atiumd6a.cap [2010.08.04 03:21:14 | 000,523,968 | ---- | C] () -- C:\Windows\SysWow64\atiumdva.cap [2010.08.04 03:14:30 | 000,026,112 | ---- | C] () -- C:\Windows\SysNative\atitmp64.dll [2010.04.02 17:17:34 | 000,179,091 | ---- | C] () -- C:\Windows\SysWow64\xlive.dll.cat [2010.01.08 04:56:21 | 000,000,209 | ---- | C] () -- C:\Windows\SysWow64\msexcr.ini [2010.01.03 23:37:41 | 000,328,846 | ---- | C] () -- C:\Users\Manuel\AppData\Local\dd_vcredistMSI1091.txt [2010.01.03 23:37:40 | 000,014,334 | ---- | C] () -- C:\Users\Manuel\AppData\Local\dd_vcredistUI1091.txt [2009.12.16 21:10:22 | 000,423,170 | ---- | C] () -- C:\Users\Manuel\AppData\Local\dd_vcredistMSI216F.txt [2009.12.16 21:10:22 | 000,011,602 | ---- | C] () -- C:\Users\Manuel\AppData\Local\dd_vcredistUI216F.txt [2009.12.16 21:09:48 | 000,420,762 | ---- | C] () -- C:\Users\Manuel\AppData\Local\dd_vcredistMSI20FC.txt [2009.12.16 21:09:47 | 000,011,650 | ---- | C] () -- C:\Users\Manuel\AppData\Local\dd_vcredistUI20FC.txt [2009.11.29 20:09:54 | 000,000,017 | ---- | C] () -- C:\Windows\gfact.ini [2009.10.26 18:20:57 | 000,000,552 | ---- | C] () -- C:\Users\Manuel\AppData\Local\d3d8caps.dat [2009.10.25 19:37:09 | 000,120,200 | ---- | C] () -- C:\Windows\SysWow64\DLLDEV32i.dll [2009.10.25 19:36:46 | 000,006,624 | ---- | C] () -- C:\Windows\mgxoschk.ini [2009.10.18 21:22:05 | 000,001,155 | ---- | C] () -- C:\Windows\kaillera.ini [2009.10.14 17:29:22 | 000,333,452 | ---- | C] () -- C:\Users\Manuel\AppData\Local\dd_vcredistMSI3DE8.txt [2009.10.14 17:29:22 | 000,011,130 | ---- | C] () -- C:\Users\Manuel\AppData\Local\dd_vcredistUI3DE8.txt [2009.10.09 20:12:52 | 000,178,176 | ---- | C] () -- C:\Windows\SysWow64\unrar.dll [2009.10.09 20:04:44 | 000,027,648 | ---- | C] () -- C:\Windows\SysWow64\AVSredirect.dll [2009.10.05 17:10:04 | 000,000,056 | -H-- | C] () -- C:\ProgramData\ezsidmv.dat [2009.09.11 15:09:18 | 000,117,248 | ---- | C] () -- C:\Windows\SysWow64\EhStorAuthn.dll [2009.09.11 15:07:29 | 000,368,640 | ---- | C] () -- C:\Windows\SysWow64\msjetoledb40.dll [2009.08.15 17:51:04 | 001,970,176 | ---- | C] () -- C:\Windows\SysWow64\d3dx9.dll [2009.07.31 23:10:25 | 000,416,182 | ---- | C] () -- C:\Users\Manuel\AppData\Local\dd_vcredistMSI5EF3.txt [2009.07.31 23:10:24 | 000,011,370 | ---- | C] () -- C:\Users\Manuel\AppData\Local\dd_vcredistUI5EF3.txt [2009.07.24 20:51:48 | 000,389,418 | ---- | C] () -- C:\Users\Manuel\AppData\Local\dd_vcredistMSI51ED.txt [2009.07.24 20:51:47 | 000,016,020 | ---- | C] () -- C:\Users\Manuel\AppData\Local\dd_vcredistUI51ED.txt [2009.07.24 20:44:35 | 000,425,902 | ---- | C] () -- C:\Users\Manuel\AppData\Local\dd_vcredistMSI4C67.txt [2009.07.24 20:44:34 | 000,013,148 | ---- | C] () -- C:\Users\Manuel\AppData\Local\dd_vcredistUI4C67.txt [2009.07.22 17:22:46 | 000,112,632 | ---- | C] () -- C:\Users\Manuel\AppData\Local\dd_depcheckdotnetfx30.txt [2009.07.22 17:22:41 | 000,132,644 | ---- | C] () -- C:\Users\Manuel\AppData\Local\dd_dotnetfx3install.txt [2009.07.22 17:22:41 | 000,010,658 | ---- | C] () -- C:\Users\Manuel\AppData\Local\uxeventlog.txt [2009.07.22 17:22:41 | 000,002,866 | ---- | C] () -- C:\Users\Manuel\AppData\Local\dd_dotnetfx3error.txt [2009.07.17 03:37:31 | 000,127,488 | ---- | C] () -- C:\Users\Manuel\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2009.04.09 07:01:33 | 000,000,032 | ---- | C] () -- C:\Windows\CD_Start.INI [2008.01.21 04:50:05 | 000,060,124 | ---- | C] () -- C:\Windows\SysWow64\tcpmon.ini [2004.09.01 17:49:17 | 003,375,104 | ---- | C] () -- C:\Windows\SysWow64\qt-mt331.dll ========== LOP Check ========== [2009.10.07 19:12:31 | 000,000,000 | ---D | M] -- C:\Users\Manuel\AppData\Roaming\.bsnes [2010.01.07 17:13:34 | 000,000,000 | ---D | M] -- C:\Users\Manuel\AppData\Roaming\Any Video Converter [2009.12.07 21:44:54 | 000,000,000 | ---D | M] -- C:\Users\Manuel\AppData\Roaming\Azureus [2010.01.03 04:31:01 | 000,000,000 | ---D | M] -- C:\Users\Manuel\AppData\Roaming\Blitware [2009.07.25 00:23:09 | 000,000,000 | ---D | M] -- C:\Users\Manuel\AppData\Roaming\DAEMON Tools Lite [2009.10.10 18:10:35 | 000,000,000 | ---D | M] -- C:\Users\Manuel\AppData\Roaming\fltk.org [2009.12.30 18:59:42 | 000,000,000 | ---D | M] -- C:\Users\Manuel\AppData\Roaming\gtk-2.0 [2010.01.07 02:27:27 | 000,000,000 | -H-D | M] -- C:\Users\Manuel\AppData\Roaming\ijjigame [2009.10.25 19:40:35 | 000,000,000 | ---D | M] -- C:\Users\Manuel\AppData\Roaming\MAGIX [2009.08.18 14:38:51 | 000,000,000 | ---D | M] -- C:\Users\Manuel\AppData\Roaming\Notepad++ [2009.12.17 12:13:43 | 000,000,000 | ---D | M] -- C:\Users\Manuel\AppData\Roaming\Publish Providers [2010.08.28 14:37:41 | 000,000,000 | ---D | M] -- C:\Users\Manuel\AppData\Roaming\Registry Mechanic [2009.12.16 21:22:44 | 000,000,000 | ---D | M] -- C:\Users\Manuel\AppData\Roaming\Sony [2009.10.04 18:19:44 | 000,000,000 | ---D | M] -- C:\Users\Manuel\AppData\Roaming\TeamViewer [2009.10.03 12:47:08 | 000,000,000 | ---D | M] -- C:\Users\Manuel\AppData\Roaming\Teeworlds [2009.07.23 18:14:51 | 000,000,000 | ---D | M] -- C:\Users\Manuel\AppData\Roaming\Ubisoft [2010.08.28 14:43:58 | 000,000,000 | ---D | M] -- C:\Users\Manuel\AppData\Roaming\Uniblue [2009.08.21 02:38:20 | 000,000,000 | ---D | M] -- C:\Users\Manuel\AppData\Roaming\Unity [2009.07.22 00:15:11 | 000,000,000 | ---D | M] -- C:\Users\Manuel\AppData\Roaming\uTorrent [2010.01.03 04:31:01 | 000,000,366 | ---- | M] () -- C:\Windows\Tasks\Driver Robot.job [2010.08.28 19:07:49 | 000,032,562 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT ========== Purity Check ========== ========== Alternate Data Streams ========== @Alternate Data Stream - 104 bytes -> C:\ProgramData\TEMP:D1B5B4F1 < End of report > NOTE: Ich habe alle 3 Programme (Load, Anti Malwarebytes, OTL) nach der anweisung ausgeführt, doch die oben deutlich aus gedeuteten Symptome verbleiben... Och hoffe außerdem das diese Log Files gelesen werden können :S Ich hoffe auf Hilfe und bedanke mich schonmal bei jedem Helfer :  |
|
29.08.2010, 21:20
| #2 | |
| /// Winkelfunktion /// TB-Süch-Tiger™   |  Alle 10 Minuten "Keine Rückmeldung", im Browser/Desktop, Programme...Zitat:
__________________ |
|
| Themen zu Alle 10 Minuten "Keine Rückmeldung", im Browser/Desktop, Programme... |
| "keine rückmeldung", 0 bytes, 5 minuten, 64-bit, alle 10 minuten, alternate, anti malwarebytes log, antivir, antivir guard, ask.com, askbar, avgntflt.sys, avira, bho, browser, components, desktop, error, firefox, google, hijackthis log-file auswerten, home, iastor.sys, internet, internet explorer, keine rückmeldung, keine rückmeldung mehr, langs, location, log files, logfile, manuel, mozilla, oldtimer, otl-logfile, plug-in, problem, programdata, realtek, registry, searchplugins, senden, software, sptd.sys, syswow64, trojaner, trojaner board, vista |
Linear-Darstellung
