| |
| |||||||
Antiviren-, Firewall- und andere Schutzprogramme: Rechner verseucht ? macht was er willWindows 7 Sämtliche Fragen zur Bedienung von Firewalls, Anti-Viren Programmen, Anti Malware und Anti Trojaner Software sind hier richtig. Dies ist ein Diskussionsforum für Sicherheitslösungen für Windows Rechner. Benötigst du Hilfe beim Trojaner entfernen oder weil du dir einen Virus eingefangen hast, erstelle ein Thema in den oberen Bereinigungsforen. |
 |
06.09.2010, 07:11
| #1 |
| |  Rechner verseucht ? macht was er willHi erstmal. Ich habe ein rießen problem. Mein Rechner macht was er will. Habe Windows 7 64bit. Avira Antivir und Spyware Doctor. Also ich beschreib mal das problem. Er öffnet z.b den Taschenrechner einfach,öffnet den Windows Mediaplayer,stellt groß/klein Buchstaben einfach um, fährt den Rechner selber runter ! schreibt selber Buchstaben wenn ich schreiben will. Habe mit vielen programmen schon gesucht ob verseucht ist,aber zu finden ist nichts. was kann ich machen (auser plattmachen) |
|
06.09.2010, 13:19
| #2 |
| | Rechner verseucht ? macht was er will HiJackthis Logfile:
__________________Code:
ATTFilter Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 14:16:21, on 06.09.2010 Platform: Unknown Windows (WinNT 6.01.3504) MSIE: Internet Explorer v8.00 (8.00.7600.16385) Boot mode: Normal Running processes: C:\Windows\Domino.exe C:\Program Files (x86)\Analog Devices\SoundMAX\SoundMAX.exe C:\Program Files (x86)\uTorrent\uTorrent.exe C:\Program Files (x86)\ICQ7.2\ICQ.exe C:\Program Files (x86)\IncrediMail\Bin\IncMail.exe C:\Program Files (x86)\Samsung\Samsung PC Studio 7\PCSuite.exe C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe C:\Program Files (x86)\Analog Devices\Core\smax4pnp.exe C:\Program Files (x86)\SlySoft\CloneCD\CloneCDTray.exe C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe C:\Program Files (x86)\IncrediMail\Bin\ImApp.exe C:\Program Files (x86)\Lavasoft\Ad-Aware\AAWTray.exe C:\Program Files (x86)\Mozilla Firefox\firefox.exe C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe C:\Program Files (x86)\Internet Explorer\iexplore.exe C:\Program Files (x86)\Internet Explorer\iexplore.exe C:\program files (x86)\avira\antivir desktop\avcenter.exe C:\Program Files (x86)\Internet Explorer\iexplore.exe C:\Users\Aike\Desktop\HiJackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://google.de/ R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://go.microsoft.com/fwlink/?LinkId=69157 R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = R3 - URLSearchHook: ICQToolBar - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Program Files (x86)\ICQ6Toolbar\ICQToolBar.dll R3 - URLSearchHook: (no name) - - (no file) R3 - URLSearchHook: DVDVideoSoftTB Toolbar - {872b5b88-9db5-4310-bdd0-ac189557e5f5} - C:\Program Files (x86)\DVDVideoSoftTB\tbDVDV.dll F2 - REG:system.ini: UserInit=C:\WINDOWS\SYSWOW64\userinit.exe, O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: Browser Defender BHO - {2A0F3D1B-0909-4FF4-B272-609CCE6054E7} - C:\Program Files (x86)\Spyware Doctor\BDT\PCTBrowserDefender.dll O2 - BHO: DVDVideoSoftTB Toolbar - {872b5b88-9db5-4310-bdd0-ac189557e5f5} - C:\Program Files (x86)\DVDVideoSoftTB\tbDVDV.dll O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll O3 - Toolbar: PC Tools Browser Guard - {472734EA-242A-422B-ADF8-83D1E48CC825} - C:\Program Files (x86)\Spyware Doctor\BDT\PCTBrowserDefender.dll O3 - Toolbar: ICQToolBar - {855F3B16-6D32-4FE6-8A56-BBB695989046} - C:\Program Files (x86)\ICQ6Toolbar\ICQToolBar.dll O3 - Toolbar: DVDVideoSoftTB Toolbar - {872b5b88-9db5-4310-bdd0-ac189557e5f5} - C:\Program Files (x86)\DVDVideoSoftTB\tbDVDV.dll O4 - HKLM\..\Run: [avgnt] "C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe" /min O4 - HKLM\..\Run: [VirtualCloneDrive] "C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe" /s O4 - HKLM\..\Run: [SoundMAXPnP] C:\Program Files (x86)\Analog Devices\Core\smax4pnp.exe O4 - HKLM\..\Run: [MSIAfterburner] "C:\Program Files (x86)\MSI Afterburner\MSIAfterburnerWrapper.exe" /s O4 - HKLM\..\Run: [CloneCDTray] "C:\Program Files (x86)\SlySoft\CloneCD\CloneCDTray.exe" /s O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun O4 - HKCU\..\Run: [uTorrent] "C:\Program Files (x86)\uTorrent\uTorrent.exe" O4 - HKCU\..\Run: [ICQ] "C:\Program Files (x86)\ICQ7.2\ICQ.exe" silent loginmode=4 O4 - HKCU\..\Run: [IncrediMail] C:\Program Files (x86)\IncrediMail\bin\IncMail.exe /c O4 - HKCU\..\Run: [S60 PC Suite Tray] "C:\Program Files (x86)\Samsung\Samsung PC Studio 7\PCSuite.exe" -onlytray O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOKALER DIENST') O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOKALER DIENST') O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETZWERKDIENST') O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETZWERKDIENST') O4 - HKUS\S-1-5-18\..\Run: [Samsung.PCSync] "C:\Program Files (x86)\Samsung\Samsung PC Studio 7\PcSync2.exe" /NoDialog (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [Samsung.PCSync] "C:\Program Files (x86)\Samsung\Samsung PC Studio 7\PcSync2.exe" /NoDialog (User 'Default user') O8 - Extra context menu item: Free YouTube to Mp3 Converter - C:\Users\Aike\AppData\Roaming\DVDVideoSoftIEHelpers\youtubetomp3.htm O9 - Extra button: ICQ7.2 - {72EFBFE4-C74F-4187-AEFD-73EA3BE968D6} - C:\Program Files (x86)\ICQ7.2\ICQ.exe O9 - Extra 'Tools' menuitem: ICQ7.2 - {72EFBFE4-C74F-4187-AEFD-73EA3BE968D6} - C:\Program Files (x86)\ICQ7.2\ICQ.exe O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\Windows\bdoscandel.exe O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\Windows\bdoscandel.exe O9 - Extra button: Klicke hier um das Projekt xp-AntiSpy zu unterstützen - {0e921e80-267a-42aa-aee4-60b9a1222a44} - C:\Program Files (x86)\xp-AntiSpy\sponsoring\sponsor.html (HKCU) O9 - Extra 'Tools' menuitem: Unterstützung für xp-AntiSpy - {0e921e80-267a-42aa-aee4-60b9a1222a44} - C:\Program Files (x86)\xp-AntiSpy\sponsoring\sponsor.html (HKCU) O10 - Unknown file in Winsock LSP: c:\program files\nvidia corporation\networkaccessmanager\bin32\nvlsp.dll O10 - Unknown file in Winsock LSP: c:\program files\nvidia corporation\networkaccessmanager\bin32\nvlsp.dll O10 - Unknown file in Winsock LSP: c:\program files\nvidia corporation\networkaccessmanager\bin32\nvlsp.dll O10 - Unknown file in Winsock LSP: c:\program files\nvidia corporation\networkaccessmanager\bin32\nvlsp.dll O10 - Unknown file in Winsock LSP: c:\program files\nvidia corporation\networkaccessmanager\bin32\nvlsp.dll O10 - Unknown file in Winsock LSP: c:\program files\nvidia corporation\networkaccessmanager\bin32\nvlsp.dll O10 - Unknown file in Winsock LSP: c:\program files\nvidia corporation\networkaccessmanager\bin32\nvlsp.dll O10 - Unknown file in Winsock LSP: c:\program files\nvidia corporation\networkaccessmanager\bin32\nvlsp.dll O13 - Gopher Prefix: O16 - DPF: {1E54D648-B804-468d-BC78-4AFFED8E262F} (System Requirements Lab) - hxxp://www.nvidia.com/content/DriverDownload/srl/3.0.0.4/srl_bin/sysreqlab_nvd.cab O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - hxxp://download.bitdefender.com/resources/scanner/sources/de/scan8/oscan8.cab O16 - DPF: {74DBCB52-F298-4110-951D-AD2FF67BC8AB} (NVIDIA Smart Scan) - hxxp://www.nvidia.com/content/DriverDownload/nforce/NvidiaSmartScan.cab O16 - DPF: {C1FDEE68-98D5-4F42-A4DD-D0BECF5077EB} (EPUImageControl Class) - hxxp://tools.ebayimg.com/eps/wl/activex/eBay_Enhanced_Picture_Control_v1-0-31-0.cab O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing) O23 - Service: Avira AntiVir Planer (AntiVirSchedulerService) - Avira GmbH - C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe O23 - Service: Avira AntiVir Guard (AntiVirService) - Avira GmbH - C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe O23 - Service: Browser Defender Update Service - Threat Expert Ltd. - C:\Program Files (x86)\Spyware Doctor\BDT\BDTUpdateService.exe O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing) O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing) O23 - Service: ForceWare Intelligent Application Manager (IAM) - Unknown owner - C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcAppFlt.exe O23 - Service: ICQ Service - Unknown owner - C:\Program Files (x86)\ICQ6Toolbar\ICQ Service.exe O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: Lavasoft Ad-Aware Service - Lavasoft - C:\Program Files (x86)\Lavasoft\Ad-Aware\AAWService.exe O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing) O23 - Service: Nero BackItUp Scheduler 4.0 - Nero AG - C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: ForceWare IP service (nSvcIp) - Unknown owner - C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcIp.exe O23 - Service: Performance Service (nTuneService) - NVIDIA - C:\Program Files (x86)\NVIDIA Corporation\nTune\nTuneService.exe O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing) O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing) O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: PC Tools Auxiliary Service (sdAuxService) - PC Tools - C:\Program Files (x86)\Spyware Doctor\pctsAuxs.exe O23 - Service: PC Tools Security Service (sdCoreService) - PC Tools - C:\Program Files (x86)\Spyware Doctor\pctsSvc.exe O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing) O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing) O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing) O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing) O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing) O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing) O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing) O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing) O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing) -- End of file - 11559 bytes |
|
06.09.2010, 13:37
| #3 |
| /// Winkelfunktion /// TB-Süch-Tiger™   | Rechner verseucht ? macht was er will Hallo und
__________________ Eine Bereinigung ist mitunter mit viel Arbeit für Dich verbunden.
Hinweis: Ich kann Dir niemals eine Garantie geben, dass ich auch alles finde. Eine Formatierung ist meist der Schnellere und immer der sicherste Weg. Solltest Du Dich für eine Bereinigung entscheiden, arbeite solange mit, bis dir jemand vom Team sagt, dass Du clean bist. Vista und Win7 User Alle Tools mit Rechtsklick "als Administrator ausführen" starten. Bitte routinemäßig einen Vollscan mit Malwarebytes machen und Log posten. Denk daran, dass Malwarebytes vor jedem Scan manuell aktualisiert werden muss! Danach OTL: Systemscan mit OTL Lade Dir bitte OTL von Oldtimer herunter und speichere es auf Deinem Desktop
__________________ |
|
06.09.2010, 15:15
| #4 |
| | Rechner verseucht ? macht was er will Malwarebytes' Anti-Malware 1.46 www.malwarebytes.org Datenbank Version: 4554 Windows 6.1.7600 Internet Explorer 8.0.7600.16385 06.09.2010 16:13:26 mbam-log-2010-09-06 (16-13-26).txt Art des Suchlaufs: Vollständiger Suchlauf (C:\|D:\|F:\|G:\|H:\|I:\|J:\|L:\|M:\|) Durchsuchte Objekte: 309906 Laufzeit: 52 Minute(n), 38 Sekunde(n) Infizierte Speicherprozesse: 0 Infizierte Speichermodule: 0 Infizierte Registrierungsschlüssel: 1 Infizierte Registrierungswerte: 0 Infizierte Dateiobjekte der Registrierung: 0 Infizierte Verzeichnisse: 0 Infizierte Dateien: 3 Infizierte Speicherprozesse: (Keine bösartigen Objekte gefunden) Infizierte Speichermodule: (Keine bösartigen Objekte gefunden) Infizierte Registrierungsschlüssel: HKEY_CURRENT_USER\SOFTWARE\XBV6RD5SZF (Trojan.FakeAlert) -> Quarantined and deleted successfully. Infizierte Registrierungswerte: (Keine bösartigen Objekte gefunden) Infizierte Dateiobjekte der Registrierung: (Keine bösartigen Objekte gefunden) Infizierte Verzeichnisse: (Keine bösartigen Objekte gefunden) Infizierte Dateien: D:\Spiele Björn\Cracks\cod4 crack & serial\rzr-cod4.exe (Trojan.Agent.CK) -> Quarantined and deleted successfully. J:\OO.DiskRecovery.v6.0.6298.German.Incl.Keymaker-ZWT\00 DiskRecovery v6.0.629\keygen.exe (Backdoor.RBot) -> Quarantined and deleted successfully. J:\Spiele Björn\Cracks\cod4 crack & serial\rzr-cod4.exe (Trojan.Agent.CK) -> Quarantined and deleted successfully. |
|
06.09.2010, 15:23
| #5 |
| | Rechner verseucht ? macht was er will OTL Logfile: Code:
ATTFilter OTL logfile created on: 06.09.2010 16:17:37 - Run 1 OTL by OldTimer - Version 3.2.11.0 Folder = C:\Users\Aike\Desktop 64bit- Ultimate Edition (Version = 6.1.7600) - Type = NTWorkstation Internet Explorer (Version = 8.0.7600.16385) Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy 5,00 Gb Total Physical Memory | 2,00 Gb Available Physical Memory | 45,00% Memory free 10,00 Gb Paging File | 7,00 Gb Available in Paging File | 71,00% Paging File free Paging file location(s): ?:\pagefile.sys [binary data] %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86) Drive C: | 244,14 Gb Total Space | 143,20 Gb Free Space | 58,66% Space Free | Partition Type: NTFS Drive D: | 465,76 Gb Total Space | 370,01 Gb Free Space | 79,44% Space Free | Partition Type: NTFS E: Drive not present or media not loaded F: Drive not present or media not loaded G: Drive not present or media not loaded H: Drive not present or media not loaded I: Drive not present or media not loaded Drive J: | 221,62 Gb Total Space | 110,93 Gb Free Space | 50,05% Space Free | Partition Type: NTFS Drive L: | 488,28 Gb Total Space | 157,25 Gb Free Space | 32,20% Space Free | Partition Type: NTFS Drive M: | 443,23 Gb Total Space | 359,45 Gb Free Space | 81,10% Space Free | Partition Type: NTFS Computer Name: AIKE-PC Current User Name: Aike Logged in as Administrator. Current Boot Mode: Normal Scan Mode: Current user Include 64bit Scans Company Name Whitelist: Off Skip Microsoft Files: Off File Age = 30 Days Output = Minimal ========== Processes (SafeList) ========== PRC - C:\Users\Aike\Desktop\OTL.exe (OldTimer Tools) PRC - C:\Program Files (x86)\IncrediMail\Bin\IncMail.exe (IncrediMail, Ltd.) PRC - C:\Program Files (x86)\IncrediMail\Bin\ImApp.exe (IncrediMail, Ltd.) PRC - C:\Program Files (x86)\ICQ7.2\ICQ.exe (ICQ, LLC.) PRC - C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation) PRC - C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe (Mozilla Corporation) PRC - C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe () PRC - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe (Malwarebytes Corporation) PRC - C:\Program Files (x86)\Avira\AntiVir Desktop\setup.exe (Avira GmbH) PRC - C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe (Avira GmbH) PRC - C:\Program Files (x86)\ICQ6Toolbar\ICQ Service.exe () PRC - C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe (Avira GmbH) PRC - C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe (Avira GmbH) PRC - C:\program files (x86)\avira\antivir desktop\avcenter.exe (Avira GmbH) PRC - C:\Program Files (x86)\Spyware Doctor\BDT\BDTUpdateService.exe (Threat Expert Ltd.) PRC - C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe (Nero AG) PRC - C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe (Elaborate Bytes AG) PRC - C:\Program Files (x86)\Analog Devices\Core\smax4pnp.exe (Analog Devices, Inc.) PRC - C:\Program Files (x86)\Analog Devices\SoundMAX\SoundMAX.exe (Analog Devices, Inc.) PRC - C:\Program Files (x86)\SlySoft\CloneCD\CloneCDTray.exe (SlySoft, Inc.) PRC - C:\Program Files (x86)\Samsung\Samsung PC Studio 7\PCSuite.exe () PRC - C:\Windows\Domino.exe () ========== Modules (SafeList) ========== MOD - C:\Users\Aike\Desktop\OTL.exe (OldTimer Tools) MOD - C:\Windows\SysWOW64\msscript.ocx (Microsoft Corporation) MOD - C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16385_none_421189da2b7fabfc\comctl32.dll (Microsoft Corporation) ========== Win32 Services (SafeList) ========== SRV:64bit: - (UmRdpService) -- C:\Windows\SysNative\umrdp.dll (Microsoft Corporation) SRV:64bit: - (PeerDistSvc) -- C:\Windows\SysNative\PeerDistSvc.dll (Microsoft Corporation) SRV:64bit: - (CscService) -- C:\Windows\SysNative\cscsvc.dll (Microsoft Corporation) SRV:64bit: - (AppMgmt) -- C:\Windows\SysNative\appmgmts.dll (Microsoft Corporation) SRV:64bit: - (AEADIFilters) -- C:\Windows\SysNative\AEADISRV.EXE (Andrea Electronics Corporation) SRV - (Lavasoft Ad-Aware Service) -- C:\Program Files (x86)\Lavasoft\Ad-Aware\AAWService.exe (Lavasoft) SRV - (AntiVirService) -- C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe (Avira GmbH) SRV - (ICQ Service) -- C:\Program Files (x86)\ICQ6Toolbar\ICQ Service.exe () SRV - (AntiVirSchedulerService) -- C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe (Avira GmbH) SRV - (Browser Defender Update Service) -- C:\Program Files (x86)\Spyware Doctor\BDT\BDTUpdateService.exe (Threat Expert Ltd.) SRV - (sdCoreService) -- C:\Program Files (x86)\Spyware Doctor\pctsSvc.exe (PC Tools) SRV - (nTuneService) -- C:\Program Files (x86)\NVIDIA Corporation\nTune\nTuneService.exe (NVIDIA) SRV - (sdAuxService) -- C:\Program Files (x86)\Spyware Doctor\pctsAuxs.exe (PC Tools) SRV - (nSvcIp) -- C:\Programme\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcIp.exe () SRV - (ForceWare Intelligent Application Manager (IAM)) ForceWare Intelligent Application Manager (IAM) -- C:\Programme\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcAppFlt.exe () SRV - (SandraAgentSrv) -- C:\Programme\SiSoftware\SiSoftware Sandra Lite 2010.SP2\RpcAgentSrv.exe (SiSoftware) SRV - (Nero BackItUp Scheduler 4.0) -- C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe (Nero AG) SRV - (ServiceLayer) -- C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe (Nokia.) ========== Driver Services (SafeList) ========== DRV:64bit: - (Lbd) -- C:\Windows\SysNative\drivers\Lbd.sys (Lavasoft AB) DRV:64bit: - (avipbb) -- C:\Windows\SysNative\drivers\avipbb.sys (Avira GmbH) DRV:64bit: - (avgntflt) -- C:\Windows\SysNative\drivers\avgntflt.sys (Avira GmbH) DRV:64bit: - (ElbyCDIO) -- C:\Windows\SysNative\drivers\ElbyCDIO.sys (Elaborate Bytes AG) DRV:64bit: - (PCTCore) -- C:\Windows\SysNative\drivers\PCTCore64.sys (PC Tools) DRV:64bit: - (nvoclk64) -- C:\Windows\SysNative\drivers\nvoclk64.sys (NVIDIA Corp.) DRV:64bit: - (VClone) -- C:\Windows\SysNative\drivers\VClone.sys (Elaborate Bytes AG) DRV:64bit: - (NVNET) -- C:\Windows\SysNative\drivers\nvmf6264.sys (NVIDIA Corporation) DRV:64bit: - (amdsata) -- C:\Windows\SysNative\drivers\amdsata.sys (Advanced Micro Devices) DRV:64bit: - (amdxata) -- C:\Windows\SysNative\drivers\amdxata.sys (Advanced Micro Devices) DRV:64bit: - (amdsbs) -- C:\Windows\SysNative\drivers\amdsbs.sys (AMD Technologies Inc.) DRV:64bit: - (LSI_SAS2) -- C:\Windows\SysNative\drivers\lsi_sas2.sys (LSI Corporation) DRV:64bit: - (HpSAMD) -- C:\Windows\SysNative\drivers\HpSAMD.sys (Hewlett-Packard Company) DRV:64bit: - (vmbus) -- C:\Windows\SysNative\drivers\vmbus.sys (Microsoft Corporation) DRV:64bit: - (storflt) -- C:\Windows\SysNative\drivers\vmstorfl.sys (Microsoft Corporation) DRV:64bit: - (storvsc) -- C:\Windows\SysNative\drivers\storvsc.sys (Microsoft Corporation) DRV:64bit: - (stexstor) -- C:\Windows\SysNative\drivers\stexstor.sys (Promise Technology) DRV:64bit: - (s3cap) -- C:\Windows\SysNative\drivers\vms3cap.sys (Microsoft Corporation) DRV:64bit: - (VMBusHID) -- C:\Windows\SysNative\drivers\VMBusHID.sys (Microsoft Corporation) DRV:64bit: - (CSC) -- C:\Windows\SysNative\drivers\csc.sys (Microsoft Corporation) DRV:64bit: - (athr) -- C:\Windows\SysNative\drivers\athrx.sys (Atheros Communications, Inc.) DRV:64bit: - (Ntfs) -- C:\Windows\SysNative\wbem\ntfs.mof () DRV:64bit: - (NVENETFD) -- C:\Windows\SysNative\drivers\nvm62x64.sys (NVIDIA Corporation) DRV:64bit: - (yukonw7) -- C:\Windows\SysNative\drivers\yk62x64.sys (Marvell) DRV:64bit: - (ebdrv) -- C:\Windows\SysNative\drivers\evbda.sys (Broadcom Corporation) DRV:64bit: - (b06bdrv) -- C:\Windows\SysNative\drivers\bxvbda.sys (Broadcom Corporation) DRV:64bit: - (b57nd60a) -- C:\Windows\SysNative\drivers\b57nd60a.sys (Broadcom Corporation) DRV:64bit: - (hcw85cir) -- C:\Windows\SysNative\drivers\hcw85cir.sys (Hauppauge Computer Works, Inc.) DRV:64bit: - (ADIHdAudAddService) -- C:\Windows\SysNative\drivers\ADIHdAud.sys (Analog Devices, Inc.) DRV:64bit: - (MTsensor) -- C:\Windows\SysNative\drivers\ASACPI.sys () DRV:64bit: - (USBModem) -- C:\Windows\SysNative\drivers\lgx64modem.sys (LG Electronics Inc.) DRV:64bit: - (UsbDiag) -- C:\Windows\SysNative\drivers\lgx64diag.sys (LG Electronics Inc.) DRV:64bit: - (usbbus) -- C:\Windows\SysNative\drivers\lgx64bus.sys (LG Electronics Inc.) DRV:64bit: - (pccsmcfd) -- C:\Windows\SysNative\drivers\pccsmcfdx64.sys (Nokia) DRV:64bit: - (nmwcdsax64) -- C:\Windows\SysNative\drivers\nmwcdsax64.sys (Nokia) DRV:64bit: - (nmwcdsacjx64) -- C:\Windows\SysNative\drivers\nmwcdsacjx64.sys (Nokia) DRV:64bit: - (nmwcdsacx64) -- C:\Windows\SysNative\drivers\nmwcdsacx64.sys (Nokia) DRV:64bit: - (ZSMC301b) Vimicro USB PC Camera (ZC0301PL) -- C:\Windows\SysNative\drivers\usbVM31b.sys (Vimicro Corporation) DRV:64bit: - (ElbyCDFL) -- C:\Windows\SysNative\drivers\ElbyCDFL.sys (SlySoft, Inc.) DRV - (RTCore64) -- C:\Program Files (x86)\MSI Afterburner\RTCore64.sys () DRV - (SANDRA) -- C:\Programme\SiSoftware\SiSoftware Sandra Lite 2010.SP2\WNt500x64\sandra.sys (SiSoftware) DRV - (ElbyCDFL) -- C:\Windows\SysWOW64\drivers\ElbyCDFL.sys (SlySoft, Inc.) ========== Standard Registry (SafeList) ========== ========== Internet Explorer ========== IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm IE - HKLM\..\URLSearchHook: - Reg Error: Key error. File not found IE - HKLM\..\URLSearchHook: {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Program Files (x86)\ICQ6Toolbar\ICQToolBar.dll (ICQ) IE - HKLM\..\URLSearchHook: {872b5b88-9db5-4310-bdd0-ac189557e5f5} - C:\Program Files (x86)\DVDVideoSoftTB\tbDVDV.dll (Conduit Ltd.) IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = hxxp://google.de/ IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://de.msn.com/?ocid=iehp IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = A0 84 47 9E 9E 43 CB 01 [binary data] IE - HKCU\..\URLSearchHook: - Reg Error: Key error. File not found IE - HKCU\..\URLSearchHook: {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Program Files (x86)\ICQ6Toolbar\ICQToolBar.dll (ICQ) IE - HKCU\..\URLSearchHook: {872b5b88-9db5-4310-bdd0-ac189557e5f5} - C:\Program Files (x86)\DVDVideoSoftTB\tbDVDV.dll (Conduit Ltd.) IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 ========== FireFox ========== FF - prefs.js..browser.search.defaultenginename: "MyStart Search" FF - prefs.js..browser.search.selectedEngine: "MyStart Search" FF - prefs.js..browser.startup.homepage: "hxxp://google.de" FF - prefs.js..extensions.enabledItems: {ACAA314B-EEBA-48e4-AD47-84E31C44796C}:1.0.1 FF - prefs.js..extensions.enabledItems: {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}:1.2.2 FF - prefs.js..keyword.URL: "hxxp://mystart.incredimail.com/?loc=ff_address_bar_im2_test_v2&search=" FF - HKLM\software\mozilla\Mozilla Firefox 3.6.8\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2010.08.24 17:12:54 | 000,000,000 | ---D | M] FF - HKLM\software\mozilla\Mozilla Firefox 3.6.8\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins [2010.01.31 09:04:26 | 000,000,000 | ---D | M] [2010.08.24 17:13:07 | 000,000,000 | ---D | M] -- C:\Users\Aike\AppData\Roaming\mozilla\Extensions [2010.09.05 21:58:48 | 000,000,000 | ---D | M] -- C:\Users\Aike\AppData\Roaming\mozilla\Firefox\Profiles\98hm4j65.default\extensions [2010.08.29 12:13:35 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Aike\AppData\Roaming\mozilla\Firefox\Profiles\98hm4j65.default\extensions\{872b5b88-9db5-4310-bdd0-ac189557e5f5} [2010.08.25 19:47:30 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Aike\AppData\Roaming\mozilla\Firefox\Profiles\98hm4j65.default\extensions\{ACAA314B-EEBA-48e4-AD47-84E31C44796C} [2010.08.29 12:13:33 | 000,000,000 | ---D | M] (Adblock Plus) -- C:\Users\Aike\AppData\Roaming\mozilla\Firefox\Profiles\98hm4j65.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d} [2010.09.06 09:41:39 | 000,000,950 | ---- | M] () -- C:\Users\Aike\AppData\Roaming\Mozilla\FireFox\Profiles\98hm4j65.default\searchplugins\icqplugin-1.xml [2010.09.02 08:16:51 | 000,001,056 | ---- | M] () -- C:\Users\Aike\AppData\Roaming\Mozilla\FireFox\Profiles\98hm4j65.default\searchplugins\icqplugin.xml [2010.09.06 09:39:49 | 000,002,149 | ---- | M] () -- C:\Users\Aike\AppData\Roaming\Mozilla\FireFox\Profiles\98hm4j65.default\searchplugins\MyStart Search.xml [2010.09.05 21:58:48 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\mozilla firefox\extensions [2010.08.24 17:55:02 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files (x86)\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA} [2010.08.24 17:54:52 | 000,423,656 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files (x86)\mozilla firefox\plugins\npdeployJava1.dll [2010.07.23 02:48:56 | 000,001,392 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\amazondotcom-de.xml [2010.07.23 02:48:56 | 000,002,344 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\eBay-de.xml [2010.07.23 02:48:56 | 000,006,805 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\leo_ende_de.xml [2010.07.23 02:48:56 | 000,001,178 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\wikipedia-de.xml [2010.07.23 02:48:56 | 000,001,105 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\yahoo-de.xml O1 HOSTS File: ([2010.09.01 23:55:38 | 000,000,998 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts O1 - Hosts: 127.0.0.1 im.adtech.de O1 - Hosts: 127.0.0.1 adserver.adtech.de O1 - Hosts: 127.0.0.1 adtech.de O1 - Hosts: 127.0.0.1 atwola.com O1 - Hosts: 127.0.0.1 adserver.71i.de O1 - Hosts: 127.0.0.1 adicqserver.71i.de O1 - Hosts: 127.0.0.1 71i.de O2 - BHO: (PC Tools Browser Guard BHO) - {2A0F3D1B-0909-4FF4-B272-609CCE6054E7} - C:\Program Files (x86)\Spyware Doctor\BDT\PCTBrowserDefender.dll (Threat Expert Ltd.) O2 - BHO: (DVDVideoSoftTB Toolbar) - {872b5b88-9db5-4310-bdd0-ac189557e5f5} - C:\Program Files (x86)\DVDVideoSoftTB\tbDVDV.dll (Conduit Ltd.) O3 - HKLM\..\Toolbar: (PC Tools Browser Guard) - {472734EA-242A-422B-ADF8-83D1E48CC825} - C:\Program Files (x86)\Spyware Doctor\BDT\PCTBrowserDefender.dll (Threat Expert Ltd.) O3 - HKLM\..\Toolbar: (ICQToolBar) - {855F3B16-6D32-4FE6-8A56-BBB695989046} - C:\Program Files (x86)\ICQ6Toolbar\ICQToolBar.dll (ICQ) O3 - HKLM\..\Toolbar: (DVDVideoSoftTB Toolbar) - {872b5b88-9db5-4310-bdd0-ac189557e5f5} - C:\Program Files (x86)\DVDVideoSoftTB\tbDVDV.dll (Conduit Ltd.) O3 - HKCU\..\Toolbar\WebBrowser: (PC Tools Browser Guard) - {472734EA-242A-422B-ADF8-83D1E48CC825} - C:\Program Files (x86)\Spyware Doctor\BDT\PCTBrowserDefender.dll (Threat Expert Ltd.) O3 - HKCU\..\Toolbar\WebBrowser: (DVDVideoSoftTB Toolbar) - {872B5B88-9DB5-4310-BDD0-AC189557E5F5} - C:\Program Files (x86)\DVDVideoSoftTB\tbDVDV.dll (Conduit Ltd.) O4:64bit: - HKLM..\Run: [Domino] C:\Windows\Domino.exe () O4:64bit: - HKLM..\Run: [SoundMAX] C:\Program Files (x86)\Analog Devices\SoundMAX\soundmax.exe (Analog Devices, Inc.) O4 - HKLM..\Run: [avgnt] C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe (Avira GmbH) O4 - HKLM..\Run: [CloneCDTray] C:\Program Files (x86)\SlySoft\CloneCD\CloneCDTray.exe (SlySoft, Inc.) O4 - HKLM..\Run: [ Malwarebytes Anti-Malware (reboot)] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe (Malwarebytes Corporation) O4 - HKLM..\Run: [MSIAfterburner] C:\Program Files (x86)\MSI Afterburner\MSIAfterburnerWrapper.exe () O4 - HKLM..\Run: [SoundMAXPnP] C:\Program Files (x86)\Analog Devices\Core\smax4pnp.exe (Analog Devices, Inc.) O4 - HKLM..\Run: [VirtualCloneDrive] C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe (Elaborate Bytes AG) O4 - HKCU..\Run: [ICQ] C:\Program Files (x86)\ICQ7.2\ICQ.exe (ICQ, LLC.) O4 - HKCU..\Run: [IncrediMail] C:\Program Files (x86)\IncrediMail\bin\IncMail.exe (IncrediMail, Ltd.) O4 - HKCU..\Run: [S60 PC Suite Tray] C:\Program Files (x86)\Samsung\Samsung PC Studio 7\PCSuite.exe () O4 - HKCU..\Run: [uTorrent] C:\Program Files (x86)\uTorrent\uTorrent.exe (BitTorrent, Inc.) O4 - HKLM..\RunOnce: [Malwarebytes' Anti-Malware] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation) O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 0 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O8:64bit: - Extra context menu item: Free YouTube to Mp3 Converter - C:\Users\Aike\AppData\Roaming\DVDVideoSoftIEHelpers\youtubetomp3.htm () O8 - Extra context menu item: Free YouTube to Mp3 Converter - C:\Users\Aike\AppData\Roaming\DVDVideoSoftIEHelpers\youtubetomp3.htm () O9 - Extra Button: ICQ7.2 - {72EFBFE4-C74F-4187-AEFD-73EA3BE968D6} - C:\Program Files (x86)\ICQ7.2\ICQ.exe (ICQ, LLC.) O9 - Extra 'Tools' menuitem : ICQ7.2 - {72EFBFE4-C74F-4187-AEFD-73EA3BE968D6} - C:\Program Files (x86)\ICQ7.2\ICQ.exe (ICQ, LLC.) O10:64bit: - Protocol_Catalog9\Catalog_Entries\000000000001 - C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nvLsp.dll (NVIDIA) O10:64bit: - Protocol_Catalog9\Catalog_Entries\000000000002 - C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nvLsp.dll (NVIDIA) O10:64bit: - Protocol_Catalog9\Catalog_Entries\000000000003 - C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nvLsp.dll (NVIDIA) O10:64bit: - Protocol_Catalog9\Catalog_Entries\000000000004 - C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nvLsp.dll (NVIDIA) O10:64bit: - Protocol_Catalog9\Catalog_Entries\000000000005 - C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nvLsp.dll (NVIDIA) O10:64bit: - Protocol_Catalog9\Catalog_Entries\000000000006 - C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nvLsp.dll (NVIDIA) O10:64bit: - Protocol_Catalog9\Catalog_Entries\000000000017 - C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nvLsp.dll (NVIDIA) O10:64bit: - Protocol_Catalog9\Catalog_Entries\000000000018 - C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nvLsp.dll (NVIDIA) O10 - Protocol_Catalog9\Catalog_Entries\000000000001 - C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nvLsp.dll (NVIDIA) O10 - Protocol_Catalog9\Catalog_Entries\000000000002 - C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nvLsp.dll (NVIDIA) O10 - Protocol_Catalog9\Catalog_Entries\000000000003 - C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nvLsp.dll (NVIDIA) O10 - Protocol_Catalog9\Catalog_Entries\000000000004 - C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nvLsp.dll (NVIDIA) O10 - Protocol_Catalog9\Catalog_Entries\000000000005 - C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nvLsp.dll (NVIDIA) O10 - Protocol_Catalog9\Catalog_Entries\000000000006 - C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nvLsp.dll (NVIDIA) O10 - Protocol_Catalog9\Catalog_Entries\000000000017 - C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nvLsp.dll (NVIDIA) O10 - Protocol_Catalog9\Catalog_Entries\000000000018 - C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nvLsp.dll (NVIDIA) O13 - gopher Prefix: missing O13 - gopher Prefix: missing O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_21-windows-i586.cab (Java Plug-in 1.6.0_21) O16 - DPF: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_21-windows-i586.cab (Java Plug-in 1.6.0_21) O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_21-windows-i586.cab (Reg Error: Key error.) O16 - DPF: {1E54D648-B804-468d-BC78-4AFFED8E262F} hxxp://www.nvidia.com/content/DriverDownload/srl/3.0.0.4/srl_bin/sysreqlab_nvd.cab (System Requirements Lab Class) O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} hxxp://download.bitdefender.com/resources/scanner/sources/de/scan8/oscan8.cab (BDSCANONLINE Control) O16 - DPF: {74DBCB52-F298-4110-951D-AD2FF67BC8AB} hxxp://www.nvidia.com/content/DriverDownload/nforce/NvidiaSmartScan.cab (NVIDIA Smart Scan) O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_21-windows-i586.cab (Java Plug-in 1.6.0_21) O16 - DPF: {C1FDEE68-98D5-4F42-A4DD-D0BECF5077EB} hxxp://tools.ebayimg.com/eps/wl/activex/eBay_Enhanced_Picture_Control_v1-0-31-0.cab (EPUImageControl Class) O16 - DPF: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_21-windows-i586.cab (Java Plug-in 1.6.0_21) O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_21-windows-i586.cab (Java Plug-in 1.6.0_21) O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (Reg Error: Key error.) O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation) O20:64bit: - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\SysNative\SystemPropertiesPerformance.exe (Microsoft Corporation) O20:64bit: - HKLM Winlogon: VMApplet - (/pagefile) - File not found O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation) O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\SysWow64\SystemPropertiesPerformance.exe (Microsoft Corporation) O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found. O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found. O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2009.08.31 17:23:58 | 000,000,000 | ---- | M] () - J:\AUTOEXEC.BAT -- [ NTFS ] O33 - MountPoints2\{d6e5dfcf-af95-11df-9b04-002618249447}\Shell - "" = AutoRun O33 - MountPoints2\{d6e5dfcf-af95-11df-9b04-002618249447}\Shell\AutoRun\command - "" = K:\setup.exe -- File not found O34 - HKLM BootExecute: (autocheck autochk *) - File not found O35:64bit: - HKLM\..comfile [open] -- "%1" %* O35:64bit: - HKLM\..exefile [open] -- "%1" %* O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %* O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* ========== Files/Folders - Created Within 30 Days ========== [2010.09.06 16:16:14 | 000,574,976 | ---- | C] (OldTimer Tools) -- C:\Users\Aike\Desktop\OTL.exe [2010.09.06 15:16:52 | 000,000,000 | ---D | C] -- C:\Users\Aike\AppData\Roaming\Malwarebytes [2010.09.06 15:16:47 | 000,038,224 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\SysWow64\drivers\mbamswissarmy.sys [2010.09.06 15:16:46 | 000,024,664 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\SysNative\drivers\mbam.sys [2010.09.06 15:16:46 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware [2010.09.06 15:16:46 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes [2010.09.06 15:15:57 | 006,153,648 | ---- | C] (Malwarebytes Corporation ) -- C:\Users\Aike\Desktop\mbam-setup.exe [2010.09.06 11:29:27 | 000,000,000 | ---D | C] -- C:\Programme\Fighters [2010.09.06 10:14:58 | 000,069,152 | ---- | C] (Lavasoft AB) -- C:\Windows\SysNative\drivers\Lbd.sys [2010.09.06 10:07:27 | 000,000,000 | ---D | C] -- C:\Users\Aike\AppData\Local\Sunbelt Software [2010.09.06 10:04:15 | 000,000,000 | -H-D | C] -- C:\ProgramData\{ECC164E0-3133-4C70-A831-F08DB2940F70} [2010.09.06 10:04:11 | 000,000,000 | ---D | C] -- C:\ProgramData\Lavasoft [2010.09.06 10:04:11 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Lavasoft [2010.09.06 08:23:12 | 000,000,000 | ---D | C] -- C:\Windows\BDOSCAN8 [2010.09.05 22:42:51 | 012,402,120 | ---- | C] (Microsoft Corporation) -- C:\Users\Aike\Desktop\windows-kb890830-x64-v3.10.exe [2010.09.05 17:11:09 | 000,000,000 | ---D | C] -- C:\Users\Aike\Desktop\Mono & Nikitaman [2010.09.05 15:23:55 | 000,000,000 | ---D | C] -- C:\Users\Aike\Desktop\Polterabend [2010.09.05 01:32:00 | 000,000,000 | ---D | C] -- C:\Users\Aike\Desktop\Hochzeit Nicole [2010.09.02 20:41:42 | 000,000,000 | ---D | C] -- C:\ProgramData\SlySoft [2010.09.02 20:41:30 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\SlySoft [2010.09.02 18:08:30 | 000,000,000 | ---D | C] -- C:\Users\Aike\Desktop\The Dome 55 [2010.09.02 14:04:32 | 000,000,000 | ---D | C] -- C:\Users\Aike\AppData\Roaming\Multimedia Player [2010.09.02 00:24:09 | 000,295,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\PresentationHost.exe [2010.09.02 00:24:09 | 000,099,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\PresentationHostProxy.dll [2010.09.02 00:24:08 | 001,942,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dfshim.dll [2010.09.02 00:24:08 | 001,130,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dfshim.dll [2010.09.02 00:24:08 | 000,320,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\PresentationHost.exe [2010.09.02 00:24:08 | 000,109,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\PresentationHostProxy.dll [2010.09.02 00:24:08 | 000,049,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\netfxperf.dll [2010.09.02 00:24:08 | 000,048,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\netfxperf.dll [2010.09.02 00:23:59 | 000,294,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\browserchoice.exe [2010.09.01 23:45:46 | 000,289,144 | ---- | C] (S!Ri) -- C:\Windows\SysWow64\VCCLSID.exe [2010.09.01 23:45:46 | 000,288,417 | ---- | C] (S!Ri) -- C:\Windows\SysWow64\SrchSTS.exe [2010.09.01 23:45:46 | 000,135,168 | ---- | C] (SteelWerX) -- C:\Windows\SysWow64\swreg.exe [2010.09.01 23:45:46 | 000,087,552 | ---- | C] (S!Ri.URZ) -- C:\Windows\SysWow64\VACFix.exe [2010.09.01 23:45:46 | 000,082,944 | ---- | C] (S!Ri.URZ) -- C:\Windows\SysWow64\IEDFix.exe [2010.09.01 23:45:46 | 000,082,944 | ---- | C] (S!Ri.URZ) -- C:\Windows\SysWow64\IEDFix.C.exe [2010.09.01 23:45:46 | 000,082,432 | ---- | C] (S!Ri.URZ) -- C:\Windows\SysWow64\404Fix.exe [2010.09.01 23:45:46 | 000,080,384 | ---- | C] (S!Ri.URZ) -- C:\Windows\SysWow64\o4Patch.exe [2010.09.01 23:45:46 | 000,079,360 | ---- | C] (SteelWerX) -- C:\Windows\SysWow64\swxcacls.exe [2010.09.01 23:45:46 | 000,078,336 | ---- | C] (S!Ri.URZ) -- C:\Windows\SysWow64\Agent.OMZ.Fix.exe [2010.09.01 23:45:46 | 000,053,248 | ---- | C] (hxxp://www.beyondlogic.org) -- C:\Windows\SysWow64\Process.exe [2010.09.01 21:35:37 | 000,366,080 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\SysNative\atmfd.dll [2010.09.01 21:35:37 | 000,293,888 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\atmfd.dll [2010.09.01 21:35:37 | 000,100,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\fontsub.dll [2010.09.01 21:35:37 | 000,070,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\fontsub.dll [2010.09.01 21:35:37 | 000,046,080 | ---- | C] (Adobe Systems) -- C:\Windows\SysNative\atmlib.dll [2010.09.01 21:35:37 | 000,034,304 | ---- | C] (Adobe Systems) -- C:\Windows\SysWow64\atmlib.dll [2010.09.01 21:35:29 | 001,736,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntdll.dll [2010.09.01 21:35:29 | 000,612,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\vbscript.dll [2010.09.01 21:35:29 | 000,427,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\vbscript.dll [2010.09.01 21:35:26 | 014,629,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wmp.dll [2010.09.01 21:35:26 | 011,406,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wmp.dll [2010.09.01 21:35:25 | 001,975,296 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\CertEnroll.dll [2010.09.01 21:35:25 | 001,320,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\CertEnroll.dll [2010.09.01 21:35:24 | 012,625,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wmploc.DLL [2010.09.01 21:35:24 | 012,625,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wmploc.DLL [2010.09.01 21:35:23 | 000,424,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\secproc.dll [2010.09.01 21:35:23 | 000,422,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\secproc_isv.dll [2010.09.01 21:35:23 | 000,369,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\secproc.dll [2010.09.01 21:35:23 | 000,365,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\secproc_isv.dll [2010.09.01 21:35:23 | 000,357,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\RMActivate_isv.exe [2010.09.01 21:35:23 | 000,356,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\RMActivate.exe [2010.09.01 21:35:23 | 000,305,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\RMActivate_ssp_isv.exe [2010.09.01 21:35:22 | 000,324,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\RMActivate_isv.exe [2010.09.01 21:35:22 | 000,320,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\RMActivate.exe [2010.09.01 21:35:22 | 000,306,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\RMActivate_ssp.exe [2010.09.01 21:35:22 | 000,280,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\RMActivate_ssp.exe [2010.09.01 21:35:22 | 000,277,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\RMActivate_ssp_isv.exe [2010.09.01 21:35:22 | 000,121,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\secproc_ssp_isv.dll [2010.09.01 21:35:22 | 000,121,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\secproc_ssp.dll [2010.09.01 21:35:22 | 000,085,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\secproc_ssp_isv.dll [2010.09.01 21:35:22 | 000,085,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\secproc_ssp.dll [2010.09.01 21:35:09 | 000,148,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\t2embed.dll [2010.09.01 21:35:09 | 000,108,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\t2embed.dll [2010.09.01 21:35:03 | 005,507,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntoskrnl.exe [2010.09.01 21:35:03 | 003,955,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ntkrnlpa.exe [2010.09.01 21:35:03 | 003,899,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ntoskrnl.exe [2010.09.01 21:35:02 | 000,243,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wow64.dll [2010.09.01 21:35:02 | 000,025,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\setup16.exe [2010.09.01 21:35:01 | 000,861,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\oleaut32.dll [2010.09.01 21:35:01 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ntvdm64.dll [2010.09.01 21:35:01 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\instnm.exe [2010.09.01 21:35:01 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wow32.dll [2010.09.01 21:35:01 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\user.exe [2010.09.01 21:34:54 | 000,256,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iepeers.dll [2010.09.01 21:34:54 | 000,247,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieui.dll [2010.09.01 21:34:54 | 000,185,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iepeers.dll [2010.09.01 21:34:54 | 000,176,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieui.dll [2010.09.01 21:34:54 | 000,012,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msfeedssync.exe [2010.09.01 21:34:54 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msfeedssync.exe [2010.09.01 21:34:52 | 000,082,944 | ---- | C] (Radius Inc.) -- C:\Windows\SysWow64\iccvid.dll [2010.09.01 21:34:51 | 002,870,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\explorer.exe [2010.09.01 21:34:51 | 002,614,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\explorer.exe [2010.09.01 21:34:51 | 000,389,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winlogon.exe [2010.09.01 21:34:31 | 000,052,224 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rtutils.dll [2010.09.01 21:34:31 | 000,037,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\rtutils.dll [2010.09.01 21:34:29 | 001,572,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\quartz.dll [2010.09.01 21:34:29 | 001,328,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\quartz.dll [2010.09.01 21:34:29 | 000,091,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\avifil32.dll [2010.09.01 21:34:29 | 000,084,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mciavi32.dll [2010.09.01 21:34:24 | 000,144,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cdd.dll [2010.09.01 21:34:23 | 000,961,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\CPFilters.dll [2010.09.01 21:34:23 | 000,641,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\CPFilters.dll [2010.09.01 21:34:22 | 000,613,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\psisdecd.dll [2010.09.01 21:34:22 | 000,552,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msdri.dll [2010.09.01 21:34:22 | 000,465,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\psisdecd.dll [2010.09.01 21:34:22 | 000,288,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MSNP.ax [2010.09.01 21:34:22 | 000,258,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mpg2splt.ax [2010.09.01 21:34:22 | 000,204,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\MSNP.ax [2010.09.01 21:34:22 | 000,199,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mpg2splt.ax [2010.09.01 21:34:17 | 001,446,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\lsasrv.dll [2010.09.01 21:34:16 | 000,046,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msasn1.dll [2010.09.01 21:34:15 | 000,852,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript.dll [2010.09.01 21:34:15 | 000,716,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\jscript.dll [2010.09.01 21:24:28 | 000,220,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wintrust.dll [2010.09.01 21:24:28 | 000,172,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wintrust.dll [2010.09.01 21:24:28 | 000,139,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cabview.dll [2010.09.01 21:24:28 | 000,132,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\cabview.dll [2010.08.29 19:53:44 | 000,000,000 | ---D | C] -- C:\Users\Aike\AppData\Local\NVIDIA Corporation [2010.08.29 19:13:29 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\MSI Kombustor (DX11) [2010.08.29 19:05:19 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\MSI Afterburner [2010.08.28 23:00:19 | 000,000,000 | RH-D | C] -- C:\Users\Aike\AppData\Roaming\SecuROM [2010.08.28 14:11:20 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Conduit [2010.08.28 14:11:19 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\DVDVideoSoftTB [2010.08.28 12:37:39 | 000,000,000 | ---D | C] -- C:\Users\Aike\Desktop\Neuer Ordner [2010.08.28 10:30:04 | 000,000,000 | ---D | C] -- C:\Windows\Minidump [2010.08.27 18:01:52 | 000,000,000 | ---D | C] -- C:\Users\Aike\Desktop\GodMode.{ED7BA470-8E54-465E-825C-99712043E01C} [2010.08.27 17:18:46 | 000,000,000 | ---D | C] -- C:\Users\Aike\AppData\Roaming\Avira [2010.08.26 22:17:47 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\City Interactive [2010.08.26 22:16:25 | 002,605,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_40.dll [2010.08.26 22:16:25 | 002,036,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_40.dll [2010.08.26 22:16:25 | 000,519,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_40.dll [2010.08.26 22:16:25 | 000,452,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_40.dll [2010.08.26 22:16:22 | 005,631,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DX9_40.dll [2010.08.26 22:16:22 | 004,379,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_40.dll [2010.08.26 22:09:57 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\City Interactive [2010.08.26 20:13:16 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\SIW [2010.08.26 17:21:05 | 000,021,480 | ---- | C] (Windows (R) Win 7 DDK provider) -- C:\Windows\SysNative\drivers\cpuz134_x64.sys [2010.08.26 17:21:04 | 000,000,000 | ---D | C] -- C:\Programme\CPUID [2010.08.26 11:30:19 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\RHEM4 [2010.08.25 22:30:18 | 000,527,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_7.dll [2010.08.25 22:30:18 | 000,518,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_7.dll [2010.08.25 22:30:18 | 000,077,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAPOFX1_5.dll [2010.08.25 22:30:18 | 000,074,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAPOFX1_5.dll [2010.08.25 22:30:17 | 002,526,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_43.dll [2010.08.25 22:30:17 | 002,106,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_43.dll [2010.08.25 22:30:17 | 000,239,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_7.dll [2010.08.25 22:30:17 | 000,176,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_7.dll [2010.08.25 22:30:16 | 001,907,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dcsx_43.dll [2010.08.25 22:30:16 | 001,868,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dcsx_43.dll [2010.08.25 22:30:16 | 000,276,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx11_43.dll [2010.08.25 22:30:16 | 000,248,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx11_43.dll [2010.08.25 22:30:15 | 000,511,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_43.dll [2010.08.25 22:30:15 | 000,470,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_43.dll [2010.08.25 22:30:14 | 002,401,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DX9_43.dll [2010.08.25 22:30:14 | 001,998,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_43.dll [2010.08.25 22:30:14 | 000,530,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_6.dll [2010.08.25 22:30:14 | 000,528,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_6.dll [2010.08.25 22:30:14 | 000,078,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAPOFX1_4.dll [2010.08.25 22:30:14 | 000,074,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAPOFX1_4.dll [2010.08.25 22:30:13 | 000,238,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_6.dll [2010.08.25 22:30:13 | 000,176,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_6.dll [2010.08.25 22:30:13 | 000,024,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\X3DAudio1_7.dll [2010.08.25 22:30:13 | 000,022,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\X3DAudio1_7.dll [2010.08.25 22:30:12 | 000,517,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_5.dll [2010.08.25 22:30:12 | 000,515,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_5.dll [2010.08.25 22:30:12 | 000,238,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_5.dll [2010.08.25 22:30:12 | 000,176,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_5.dll [2010.08.25 22:30:11 | 002,582,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_42.dll [2010.08.25 22:30:11 | 001,974,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_42.dll [2010.08.25 22:30:10 | 005,554,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dcsx_42.dll [2010.08.25 22:30:10 | 005,501,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dcsx_42.dll [2010.08.25 22:30:09 | 000,523,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_42.dll [2010.08.25 22:30:09 | 000,453,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_42.dll [2010.08.25 22:30:09 | 000,285,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx11_42.dll [2010.08.25 22:30:09 | 000,235,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx11_42.dll [2010.08.25 22:30:08 | 002,475,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DX9_42.dll [2010.08.25 22:30:08 | 001,892,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_42.dll [2010.08.25 22:30:07 | 002,430,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_41.dll [2010.08.25 22:30:07 | 001,846,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_41.dll [2010.08.25 22:30:07 | 000,520,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_41.dll [2010.08.25 22:30:07 | 000,453,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_41.dll [2010.08.25 22:30:06 | 005,425,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DX9_41.dll [2010.08.25 22:30:06 | 004,178,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_41.dll [2010.08.25 22:30:06 | 000,521,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_4.dll [2010.08.25 22:30:06 | 000,517,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_4.dll [2010.08.25 22:30:06 | 000,073,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAPOFX1_3.dll [2010.08.25 22:30:06 | 000,069,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAPOFX1_3.dll [2010.08.25 22:30:05 | 000,235,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_4.dll [2010.08.25 22:30:05 | 000,174,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_4.dll [2010.08.25 22:30:05 | 000,024,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\X3DAudio1_6.dll [2010.08.25 22:30:05 | 000,022,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\X3DAudio1_6.dll [2010.08.25 22:30:02 | 000,518,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_3.dll [2010.08.25 22:30:02 | 000,514,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_3.dll [2010.08.25 22:30:02 | 000,074,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAPOFX1_2.dll [2010.08.25 22:30:02 | 000,070,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAPOFX1_2.dll [2010.08.25 22:30:01 | 000,235,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_3.dll [2010.08.25 22:30:01 | 000,175,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_3.dll [2010.08.25 22:30:01 | 000,025,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\X3DAudio1_5.dll [2010.08.25 22:30:01 | 000,023,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\X3DAudio1_5.dll [2010.08.25 22:29:46 | 003,727,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_35.dll [2010.08.25 22:24:59 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\directx [2010.08.25 22:24:44 | 000,000,000 | ---D | C] -- C:\Programme\SiSoftware [2010.08.25 21:51:15 | 000,000,000 | -HSD | C] -- C:\Config.Msi [2010.08.25 21:28:15 | 000,032,768 | ---- | C] (*) -- C:\Windows\SysWow64\chipxum.dll [2010.08.25 21:28:14 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\CHIP System-Check-Tool [2010.08.25 19:57:06 | 000,000,000 | ---D | C] -- C:\Sounds [2010.08.25 19:55:18 | 000,033,792 | ---- | C] (LG Electronics Inc.) -- C:\Windows\SysNative\drivers\lgx64modem.sys [2010.08.25 19:55:18 | 000,027,136 | ---- | C] (LG Electronics Inc.) -- C:\Windows\SysNative\drivers\lgx64diag.sys [2010.08.25 19:55:18 | 000,017,920 | ---- | C] (LG Electronics Inc.) -- C:\Windows\SysNative\drivers\lgx64bus.sys [2010.08.25 19:55:17 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\LG Electronics [2010.08.25 19:51:54 | 000,419,240 | ---- | C] (VideoSoft) -- C:\Windows\SysWow64\Vsflex7L.ocx [2010.08.25 19:51:53 | 001,164,728 | ---- | C] (NuMedia Soft, Inc.) -- C:\Windows\SysWow64\NMSDVDXU.dll [2010.08.25 19:51:53 | 000,630,784 | ---- | C] (ComponentOne) -- C:\Windows\SysWow64\vsflex8u.ocx [2010.08.25 19:51:53 | 000,244,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Msflxgrd.ocx [2010.08.25 19:51:48 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\LG PC Suite II [2010.08.25 19:51:48 | 000,000,000 | ---D | C] -- C:\Users\Aike\AppData\Roaming\LG Electronics [2010.08.25 19:50:50 | 000,000,000 | ---D | C] -- C:\Users\Aike\AppData\Roaming\InstallShield [2010.08.25 19:47:30 | 000,000,000 | ---D | C] -- C:\Users\Aike\AppData\Roaming\DVDVideoSoftIEHelpers [2010.08.25 19:47:19 | 000,000,000 | ---D | C] -- C:\Users\Aike\Documents\DVDVideoSoft [2010.08.25 19:46:48 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\DVDVideoSoft [2010.08.25 19:46:48 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\DVDVideoSoft [2010.08.25 18:03:06 | 000,000,000 | ---D | C] -- C:\Users\Aike\Documents\ICQ [2010.08.25 12:55:26 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\ICQ-Banner-Remover [2010.08.25 12:50:28 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\ICQ6Toolbar [2010.08.25 12:50:24 | 000,000,000 | ---D | C] -- C:\ProgramData\ICQ [2010.08.25 12:49:23 | 000,000,000 | ---D | C] -- C:\Users\Aike\AppData\Roaming\ICQ [2010.08.25 12:49:22 | 000,000,000 | ---D | C] -- C:\Users\Aike\AppData\Local\AOL [2010.08.25 12:49:16 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\ICQ7.2 [2010.08.25 08:08:43 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\uTorrent [2010.08.25 08:08:20 | 000,000,000 | ---D | C] -- C:\Users\Aike\AppData\Roaming\uTorrent [2010.08.24 23:26:35 | 000,000,000 | ---D | C] -- C:\Users\Aike\AppData\Roaming\Nero [2010.08.24 23:03:12 | 000,000,000 | ---D | C] -- C:\Users\Aike\AppData\Local\Threat Expert [2010.08.24 23:02:57 | 000,000,000 | ---D | C] -- C:\Windows\pss [2010.08.24 23:02:47 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Futuremark Shared [2010.08.24 23:02:03 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Futuremark [2010.08.24 22:31:37 | 000,000,000 | ---D | C] -- C:\Users\Aike\AppData\Roaming\Media Player Classic [2010.08.24 22:29:50 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Nero [2010.08.24 22:28:58 | 000,000,000 | ---D | C] -- C:\ProgramData\Nero [2010.08.24 22:28:56 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Nero [2010.08.24 22:12:43 | 000,000,000 | ---D | C] -- C:\ProgramData\PC Suite [2010.08.24 22:12:42 | 000,000,000 | ---D | C] -- C:\Users\Aike\AppData\Roaming\PC Suite [2010.08.24 22:10:40 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Elaborate Bytes [2010.08.24 21:43:06 | 000,000,000 | ---D | C] -- C:\Users\Aike\AppData\Roaming\Samsung [2010.08.24 21:42:30 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\MSXML 4.0 [2010.08.24 21:42:27 | 000,000,000 | ---D | C] -- C:\Programme\DIFX [2010.08.24 21:42:24 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\DRVSTORE [2010.08.24 21:42:04 | 000,066,560 | ---- | C] (Nokia) -- C:\Windows\SysNative\nmwcdclsx64.dll [2010.08.24 21:42:04 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Samsung [2010.08.24 21:41:09 | 000,000,000 | ---D | C] -- C:\ProgramData\Installations [2010.08.24 21:36:05 | 000,000,000 | ---D | C] -- C:\Users\Aike\AppData\Local\ElevatedDiagnostics [2010.08.24 21:34:24 | 000,116,568 | ---- | C] (Avira GmbH) -- C:\Windows\SysNative\drivers\avipbb.sys [2010.08.24 21:34:23 | 000,081,072 | ---- | C] (Avira GmbH) -- C:\Windows\SysNative\drivers\avgntflt.sys [2010.08.24 21:34:23 | 000,051,992 | ---- | C] (AVIRA GmbH) -- C:\Windows\SysWow64\drivers\avgntdd.sys [2010.08.24 21:34:23 | 000,017,016 | ---- | C] (AVIRA GmbH) -- C:\Windows\SysWow64\drivers\avgntmgr.sys [2010.08.24 21:34:22 | 000,000,000 | ---D | C] -- C:\ProgramData\Avira [2010.08.24 21:34:22 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Avira [2010.08.24 20:47:03 | 000,962,612 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfc42d.dll [2010.08.24 20:47:03 | 000,434,252 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\MSVCRTD.DLL [2010.08.24 20:46:54 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\ASUS [2010.08.24 20:46:20 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\InstallShield [2010.08.24 20:08:06 | 000,000,000 | -H-D | C] -- C:\Users\Aike\Desktop\[Originaldateien] [2010.08.24 19:07:50 | 000,149,456 | ---- | C] (PC Tools) -- C:\Windows\SGDetectionTool.dll [2010.08.24 19:07:49 | 001,652,688 | ---- | C] (Threat Expert Ltd.) -- C:\Windows\PCTBDCore.dll [2010.08.24 19:07:49 | 001,640,400 | ---- | C] (Threat Expert Ltd.) -- C:\Windows\PCTBDCore.dll.old [2010.08.24 19:07:49 | 000,165,840 | ---- | C] (Threat Expert Ltd.) -- C:\Windows\PCTBDRes.dll [2010.08.24 19:04:59 | 000,306,648 | ---- | C] (PC Tools) -- C:\Windows\SysNative\drivers\pctgntdi64.sys [2010.08.24 19:04:59 | 000,132,048 | ---- | C] (PC Tools) -- C:\Windows\SysNative\drivers\pctwfpfilter64.sys [2010.08.24 19:04:55 | 000,218,056 | ---- | C] (PC Tools) -- C:\Windows\SysNative\drivers\PCTCore64.sys [2010.08.24 19:04:51 | 000,092,896 | ---- | C] (PC Tools) -- C:\Windows\SysNative\drivers\pctplsg64.sys [2010.08.24 19:04:41 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Spyware Doctor [2010.08.24 19:04:41 | 000,000,000 | ---D | C] -- C:\Users\Aike\AppData\Roaming\PC Tools [2010.08.24 19:04:41 | 000,000,000 | ---D | C] -- C:\ProgramData\PC Tools [2010.08.24 19:04:41 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\PC Tools [2010.08.24 19:04:30 | 000,000,000 | ---D | C] -- C:\ProgramData\TEMP [2010.08.24 19:03:13 | 000,000,000 | ---D | C] -- C:\Users\Aike\AppData\Roaming\ACD Systems [2010.08.24 19:03:13 | 000,000,000 | ---D | C] -- C:\Users\Aike\AppData\Local\ACD Systems [2010.08.24 19:02:36 | 000,000,000 | ---D | C] -- C:\ProgramData\ACD Systems [2010.08.24 19:02:32 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\ACD Systems [2010.08.24 19:02:32 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\ACD Systems [2010.08.24 19:01:02 | 000,000,000 | ---D | C] -- C:\Users\Aike\AppData\Local\Downloaded Installations [2010.08.24 18:59:57 | 000,000,000 | ---D | C] -- C:\Users\Aike\AppData\Roaming\WinRAR [2010.08.24 18:28:49 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\PhotoMail Maker [2010.08.24 18:28:49 | 000,000,000 | ---D | C] -- C:\ProgramData\PhotoMail [2010.08.24 18:28:14 | 000,839,680 | ---- | C] (hxxp://www.mp3dev.org/) -- C:\Windows\SysWow64\lameACM.acm [2010.08.24 18:28:13 | 000,217,088 | ---- | C] (www.helixcommunity.org) -- C:\Windows\SysWow64\yv12vfw.dll [2010.08.24 18:28:13 | 000,118,784 | ---- | C] (fccHandler) -- C:\Windows\SysWow64\ac3acm.acm [2010.08.24 18:28:12 | 000,000,000 | ---D | C] -- C:\Users\Aike\AppData\Local\IM [2010.08.24 18:28:05 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\K-Lite Codec Pack [2010.08.24 18:28:03 | 000,000,000 | ---D | C] -- C:\ProgramData\IncrediMail [2010.08.24 18:28:03 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\IncrediMail [2010.08.24 18:28:03 | 000,000,000 | ---D | C] -- C:\ProgramData\IM [2010.08.24 18:26:42 | 000,000,000 | ---D | C] -- C:\Users\Aike\AppData\Roaming\Macromedia [2010.08.24 17:56:39 | 000,000,000 | ---D | C] -- C:\ProgramData\Adobe [2010.08.24 17:56:37 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Adobe [2010.08.24 17:56:37 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Adobe [2010.08.24 17:55:13 | 000,000,000 | ---D | C] -- C:\ProgramData\Sun [2010.08.24 17:55:12 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Java [2010.08.24 17:55:01 | 000,423,656 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\deployJava1.dll [2010.08.24 17:55:01 | 000,153,376 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\javaws.exe [2010.08.24 17:55:01 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\javaw.exe [2010.08.24 17:55:01 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\java.exe [2010.08.24 17:54:50 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Java [2010.08.24 17:54:19 | 000,000,000 | ---D | C] -- C:\Users\Aike\AppData\Local\Adobe [2010.08.24 17:54:09 | 000,000,000 | ---D | C] -- C:\ProgramData\McAfee [2010.08.24 17:49:32 | 000,000,000 | ---D | C] -- C:\Windows\Panther [2010.08.24 17:48:24 | 000,000,000 | ---D | C] -- C:\Users\Aike\AppData\Roaming\Adobe [2010.08.24 17:46:54 | 000,000,000 | ---D | C] -- C:\Users\Aike\AppData\Local\NeoSmart_Technologies [2010.08.24 17:45:32 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\NeoSmart Technologies [2010.08.24 17:44:26 | 000,000,000 | ---D | C] -- C:\Programme\WinRAR [2010.08.24 17:33:21 | 000,468,480 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\SysNative\deployJava1.dll [2010.08.24 17:33:21 | 000,183,296 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\SysNative\javaws.exe [2010.08.24 17:33:21 | 000,165,888 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\SysNative\javaw.exe [2010.08.24 17:33:21 | 000,165,888 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\SysNative\java.exe [2010.08.24 17:33:07 | 000,000,000 | ---D | C] -- C:\Programme\Java [2010.08.24 17:32:52 | 000,000,000 | ---D | C] -- C:\ProgramData\NVIDIA Corporation [2010.08.24 17:28:56 | 000,000,000 | -H-D | C] -- C:\Program Files (x86)\InstallShield Installation Information [2010.08.24 17:28:53 | 000,000,000 | ---D | C] -- C:\Programme\NVIDIA Corporation [2010.08.24 17:26:43 | 000,000,000 | ---D | C] -- C:\ProgramData\NVIDIA [2010.08.24 17:26:36 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\NVIDIA Corporation [2010.08.24 17:26:20 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\Macromed [2010.08.24 17:26:14 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\AGEIA Technologies [2010.08.24 17:26:14 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\AGEIA [2010.08.24 17:26:09 | 000,000,000 | -HSD | C] -- C:\Windows\Installer [2010.08.24 17:26:07 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Wise Installation Wizard [2010.08.24 17:26:00 | 004,223,008 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\NVStWiz.exe [2010.08.24 17:25:37 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\SystemRequirementsLab [2010.08.24 17:25:17 | 000,704,000 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\cohelper.dll [2010.08.24 17:24:45 | 000,660,072 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\NVUNINST.EXE [2010.08.24 17:24:31 | 000,000,000 | ---D | C] -- C:\NVIDIA [2010.08.24 17:23:17 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\xp-AntiSpy [2010.08.24 17:16:18 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\WinRAR [2010.08.24 17:13:01 | 000,000,000 | ---D | C] -- C:\Users\Aike\AppData\Roaming\Mozilla [2010.08.24 17:13:01 | 000,000,000 | ---D | C] -- C:\Users\Aike\AppData\Local\Mozilla [2010.08.24 17:12:51 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Mozilla Firefox [2010.08.24 17:06:37 | 000,000,000 | R--D | C] -- C:\Users\Aike\Searches [2010.08.24 17:06:29 | 000,000,000 | ---D | C] -- C:\Users\Aike\AppData\Roaming\Identities [2010.08.24 17:06:27 | 000,000,000 | R--D | C] -- C:\Users\Aike\Contacts [2010.08.24 17:06:25 | 000,000,000 | ---D | C] -- C:\Users\Aike\AppData\Local\VirtualStore [2010.08.24 17:06:17 | 000,000,000 | --SD | C] -- C:\Users\Aike\AppData\Roaming\Microsoft [2010.08.24 17:06:17 | 000,000,000 | R--D | C] -- C:\Users\Aike\Videos [2010.08.24 17:06:17 | 000,000,000 | R--D | C] -- C:\Users\Aike\Saved Games [2010.08.24 17:06:17 | 000,000,000 | R--D | C] -- C:\Users\Aike\Pictures [2010.08.24 17:06:17 | 000,000,000 | R--D | C] -- C:\Users\Aike\Music [2010.08.24 17:06:17 | 000,000,000 | R--D | C] -- C:\Users\Aike\Links [2010.08.24 17:06:17 | 000,000,000 | R--D | C] -- C:\Users\Aike\Favorites [2010.08.24 17:06:17 | 000,000,000 | R--D | C] -- C:\Users\Aike\Downloads [2010.08.24 17:06:17 | 000,000,000 | R--D | C] -- C:\Users\Aike\Documents [2010.08.24 17:06:17 | 000,000,000 | R--D | C] -- C:\Users\Aike\Desktop [2010.08.24 17:06:17 | 000,000,000 | -HSD | C] -- C:\Users\Aike\Vorlagen [2010.08.24 17:06:17 | 000,000,000 | -HSD | C] -- C:\Users\Aike\AppData\Local\Verlauf [2010.08.24 17:06:17 | 000,000,000 | -HSD | C] -- C:\Users\Aike\AppData\Local\Temporary Internet Files [2010.08.24 17:06:17 | 000,000,000 | -HSD | C] -- C:\Users\Aike\Startmenü [2010.08.24 17:06:17 | 000,000,000 | -HSD | C] -- C:\Users\Aike\SendTo [2010.08.24 17:06:17 | 000,000,000 | -HSD | C] -- C:\Users\Aike\Recent [2010.08.24 17:06:17 | 000,000,000 | -HSD | C] -- C:\Users\Aike\Netzwerkumgebung [2010.08.24 17:06:17 | 000,000,000 | -HSD | C] -- C:\Users\Aike\Lokale Einstellungen [2010.08.24 17:06:17 | 000,000,000 | -HSD | C] -- C:\Users\Aike\Documents\Eigene Videos [2010.08.24 17:06:17 | 000,000,000 | -HSD | C] -- C:\Users\Aike\Documents\Eigene Musik [2010.08.24 17:06:17 | 000,000,000 | -HSD | C] -- C:\Users\Aike\Eigene Dateien [2010.08.24 17:06:17 | 000,000,000 | -HSD | C] -- C:\Users\Aike\Documents\Eigene Bilder [2010.08.24 17:06:17 | 000,000,000 | -HSD | C] -- C:\Users\Aike\Druckumgebung [2010.08.24 17:06:17 | 000,000,000 | -HSD | C] -- C:\Users\Aike\Cookies [2010.08.24 17:06:17 | 000,000,000 | -HSD | C] -- C:\Users\Aike\AppData\Local\Anwendungsdaten [2010.08.24 17:06:17 | 000,000,000 | -HSD | C] -- C:\Users\Aike\Anwendungsdaten [2010.08.24 17:06:17 | 000,000,000 | -H-D | C] -- C:\Users\Aike\AppData [2010.08.24 17:06:17 | 000,000,000 | ---D | C] -- C:\Users\Aike\AppData\Local\Temp [2010.08.24 17:06:17 | 000,000,000 | ---D | C] -- C:\Users\Aike\AppData\Local\Microsoft [2010.08.24 17:06:17 | 000,000,000 | ---D | C] -- C:\Users\Aike\AppData\Roaming\Media Center Programs [2010.08.24 17:04:56 | 000,000,000 | -HSD | C] -- C:\ProgramData\Vorlagen [2010.08.24 17:04:56 | 000,000,000 | -HSD | C] -- C:\ProgramData\Startmenü [2010.08.24 17:04:56 | 000,000,000 | -HSD | C] -- C:\Recovery [2010.08.24 17:04:56 | 000,000,000 | -HSD | C] -- C:\Programme [2010.08.24 17:04:56 | 000,000,000 | -HSD | C] -- C:\Programme\Gemeinsame Dateien [2010.08.24 17:04:56 | 000,000,000 | -HSD | C] -- C:\ProgramData\Favoriten [2010.08.24 17:04:56 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Eigene Videos [2010.08.24 17:04:56 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Eigene Musik [2010.08.24 17:04:56 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Eigene Bilder [2010.08.24 17:04:56 | 000,000,000 | -HSD | C] -- C:\Dokumente und Einstellungen [2010.08.24 17:04:56 | 000,000,000 | -HSD | C] -- C:\ProgramData\Dokumente [2010.08.24 17:04:56 | 000,000,000 | -HSD | C] -- C:\ProgramData\Anwendungsdaten [2010.08.24 16:53:46 | 000,000,000 | ---D | C] -- C:\Windows\SoftwareDistribution [2010.08.24 16:51:39 | 000,000,000 | ---D | C] -- C:\Windows\Prefetch [2010.08.24 16:50:52 | 000,000,000 | -HSD | C] -- C:\System Volume Information [7 C:\ProgramData\*.tmp files -> C:\ProgramData\*.tmp -> ] [7 C:\ProgramData\*.tmp files -> C:\ProgramData\*.tmp -> ] ========== Files - Modified Within 30 Days ========== [2010.09.06 16:17:42 | 002,359,296 | -HS- | M] () -- C:\Users\Aike\ntuser.dat [2010.09.06 16:16:15 | 000,574,976 | ---- | M] (OldTimer Tools) -- C:\Users\Aike\Desktop\OTL.exe [2010.09.06 15:16:50 | 000,001,016 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk [2010.09.06 15:16:10 | 006,153,648 | ---- | M] (Malwarebytes Corporation ) -- C:\Users\Aike\Desktop\mbam-setup.exe [2010.09.06 13:59:45 | 000,016,944 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 [2010.09.06 13:59:45 | 000,016,944 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 [2010.09.06 13:51:57 | 000,000,006 | -H-- | M] () -- C:\Windows\tasks\SA.DAT [2010.09.06 13:51:50 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat [2010.09.06 13:51:47 | 4025,294,848 | -HS- | M] () -- C:\hiberfil.sys [2010.09.06 11:51:51 | 001,891,360 | -H-- | M] () -- C:\Users\Aike\AppData\Local\IconCache.db [2010.09.06 10:04:14 | 000,001,157 | ---- | M] () -- C:\Users\Public\Desktop\Ad-Aware.lnk [2010.09.05 22:42:51 | 012,402,120 | ---- | M] (Microsoft Corporation) -- C:\Users\Aike\Desktop\windows-kb890830-x64-v3.10.exe [2010.09.05 18:49:18 | 000,643,628 | ---- | M] () -- C:\Windows\SysNative\perfh007.dat [2010.09.05 18:49:18 | 000,606,992 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat [2010.09.05 18:49:18 | 000,126,188 | ---- | M] () -- C:\Windows\SysNative\perfc007.dat [2010.09.05 18:49:18 | 000,103,370 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat [2010.09.05 18:49:17 | 001,472,002 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI [2010.09.03 18:10:38 | 122,919,637 | ---- | M] () -- C:\Users\Aike\Desktop\02_va_-_tunnel_trance_force_vol.54_cd2.mp3 [2010.09.03 18:10:26 | 121,161,492 | ---- | M] () -- C:\Users\Aike\Desktop\01_va_-_tunnel_trance_force_vol.54_cd1.mp3 [2010.09.02 20:45:46 | 1787,428,864 | ---- | M] () -- C:\Users\Aike\Desktop\Windows XP.iso [2010.09.02 20:42:19 | 000,000,030 | ---- | M] () -- C:\Users\Aike\Desktop\Windows XP.dvd [2010.09.02 20:41:34 | 000,001,120 | ---- | M] () -- C:\Users\Public\Desktop\CloneCD.lnk [2010.09.02 08:02:07 | 000,274,464 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT [2010.09.01 23:55:40 | 000,001,992 | ---- | M] () -- C:\Windows\SysWow64\tmp.reg [2010.09.01 23:55:38 | 000,000,998 | ---- | M] () -- C:\Windows\SysNative\drivers\etc\hosts [2010.08.29 11:15:22 | 000,524,288 | -HS- | M] () -- C:\Users\Aike\ntuser.dat{e90d2a48-b34d-11df-9bc6-002618249447}.TMContainer00000000000000000002.regtrans-ms [2010.08.29 11:15:22 | 000,524,288 | -HS- | M] () -- C:\Users\Aike\ntuser.dat{e90d2a48-b34d-11df-9bc6-002618249447}.TMContainer00000000000000000001.regtrans-ms [2010.08.29 11:15:22 | 000,065,536 | -HS- | M] () -- C:\Users\Aike\ntuser.dat{e90d2a48-b34d-11df-9bc6-002618249447}.TM.blf [2010.08.28 22:28:45 | 000,002,228 | ---- | M] () -- C:\Users\Public\Desktop\Sniper Ghost Warrior.lnk [2010.08.28 19:42:23 | 000,165,799 | ---- | M] () -- C:\Users\Aike\Desktop\DSCF5596.jpg [2010.08.28 19:42:01 | 000,154,755 | ---- | M] () -- C:\Users\Aike\Desktop\DSCF5594.jpg [2010.08.28 19:41:42 | 000,158,566 | ---- | M] () -- C:\Users\Aike\Desktop\DSCF5597.jpg [2010.08.28 19:41:21 | 000,201,492 | ---- | M] () -- C:\Users\Aike\Desktop\DSCF5595.jpg [2010.08.28 10:29:56 | 307,653,441 | ---- | M] () -- C:\Windows\MEMORY.DMP [2010.08.26 22:14:11 | 000,001,964 | ---- | M] () -- C:\Users\Aike\Desktop\Terrorist Takedown 3.lnk [2010.08.26 20:13:22 | 000,000,935 | ---- | M] () -- C:\Users\Aike\Desktop\SIW.lnk [2010.08.26 17:21:05 | 000,000,869 | ---- | M] () -- C:\Users\Public\Desktop\CPUID CPU-Z.lnk [2010.08.25 22:24:57 | 000,001,174 | ---- | M] () -- C:\Users\Public\Desktop\SiSoftware Sandra Lite 2010.SP2.lnk [2010.08.25 20:54:01 | 000,007,642 | ---- | M] () -- C:\Users\Aike\AppData\Local\Resmon.ResmonCfg [2010.08.25 19:52:01 | 000,001,744 | ---- | M] () -- C:\Users\Public\Desktop\LG PC Suite II.lnk [2010.08.24 23:49:27 | 000,031,972 | ---- | M] () -- C:\Users\Aike\Documents\3dmark.3dr [2010.08.24 23:03:09 | 000,002,052 | ---- | M] () -- C:\Users\Public\Desktop\3DMark03.lnk [2010.08.24 22:52:07 | 000,004,767 | ---- | M] () -- C:\Windows\Irremote.ini [2010.08.24 22:30:18 | 000,002,722 | ---- | M] () -- C:\Users\Public\Desktop\Nero StartSmart.lnk [2010.08.24 19:02:40 | 000,000,252 | ---- | M] () -- C:\Windows\system.ini [2010.08.24 17:54:52 | 000,423,656 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\deployJava1.dll [2010.08.24 17:54:52 | 000,153,376 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\javaws.exe [2010.08.24 17:54:52 | 000,145,184 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\javaw.exe [2010.08.24 17:54:52 | 000,145,184 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\java.exe [2010.08.24 17:45:40 | 000,057,560 | ---- | M] () -- C:\Users\Aike\AppData\Local\GDIPFONTCACHEV1.DAT [2010.08.24 17:33:09 | 000,468,480 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\SysNative\deployJava1.dll [2010.08.24 17:33:09 | 000,183,296 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\SysNative\javaws.exe [2010.08.24 17:33:09 | 000,165,888 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\SysNative\javaw.exe [2010.08.24 17:33:09 | 000,165,888 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\SysNative\java.exe [2010.08.24 17:07:05 | 000,524,288 | -HS- | M] () -- C:\Users\Aike\NTUSER.DAT{016888bd-6c6f-11de-8d1d-001e0bcde3ec}.TMContainer00000000000000000002.regtrans-ms [2010.08.24 17:07:05 | 000,524,288 | -HS- | M] () -- C:\Users\Aike\NTUSER.DAT{016888bd-6c6f-11de-8d1d-001e0bcde3ec}.TMContainer00000000000000000001.regtrans-ms [2010.08.24 17:07:05 | 000,065,536 | -HS- | M] () -- C:\Users\Aike\NTUSER.DAT{016888bd-6c6f-11de-8d1d-001e0bcde3ec}.TM.blf [2010.08.24 17:06:17 | 000,000,020 | -HS- | M] () -- C:\Users\Aike\ntuser.ini [2010.08.24 16:58:57 | 000,057,050 | ---- | M] () -- C:\Windows\SysWow64\license.rtf [2010.08.24 16:58:57 | 000,057,050 | ---- | M] () -- C:\Windows\SysNative\license.rtf [2010.08.24 16:53:16 | 000,000,000 | -H-- | M] () -- C:\Windows\SysNative\drivers\Msft_User_WpdFs_01_09_00.Wdf [2010.08.12 14:15:20 | 000,069,152 | ---- | M] (Lavasoft AB) -- C:\Windows\SysNative\drivers\Lbd.sys [7 C:\ProgramData\*.tmp files -> C:\ProgramData\*.tmp -> ] [7 C:\ProgramData\*.tmp files -> C:\ProgramData\*.tmp -> ] ========== Files Created - No Company Name ========== [2010.09.06 15:16:50 | 000,001,016 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk [2010.09.06 10:04:14 | 000,001,157 | ---- | C] () -- C:\Users\Public\Desktop\Ad-Aware.lnk [2010.09.03 16:50:43 | 122,919,637 | ---- | C] () -- C:\Users\Aike\Desktop\02_va_-_tunnel_trance_force_vol.54_cd2.mp3 [2010.09.03 16:50:22 | 121,161,492 | ---- | C] () -- C:\Users\Aike\Desktop\01_va_-_tunnel_trance_force_vol.54_cd1.mp3 [2010.09.02 20:42:19 | 1787,428,864 | ---- | C] () -- C:\Users\Aike\Desktop\Windows XP.iso [2010.09.02 20:42:17 | 000,000,030 | ---- | C] () -- C:\Users\Aike\Desktop\Windows XP.dvd [2010.09.02 20:41:34 | 000,001,120 | ---- | C] () -- C:\Users\Public\Desktop\CloneCD.lnk [2010.09.01 23:46:14 | 000,001,992 | ---- | C] () -- C:\Windows\SysWow64\tmp.reg [2010.09.01 23:45:46 | 000,075,776 | ---- | C] () -- C:\Windows\SysWow64\WS2Fix.exe [2010.09.01 23:45:46 | 000,051,200 | ---- | C] () -- C:\Windows\SysWow64\dumphive.exe [2010.09.01 23:45:46 | 000,040,960 | ---- | C] () -- C:\Windows\SysWow64\swsc.exe [2010.08.29 11:15:22 | 000,524,288 | -HS- | C] () -- C:\Users\Aike\ntuser.dat{e90d2a48-b34d-11df-9bc6-002618249447}.TMContainer00000000000000000002.regtrans-ms [2010.08.29 11:15:22 | 000,524,288 | -HS- | C] () -- C:\Users\Aike\ntuser.dat{e90d2a48-b34d-11df-9bc6-002618249447}.TMContainer00000000000000000001.regtrans-ms [2010.08.29 11:15:22 | 000,065,536 | -HS- | C] () -- C:\Users\Aike\ntuser.dat{e90d2a48-b34d-11df-9bc6-002618249447}.TM.blf [2010.08.29 10:23:28 | 000,002,228 | ---- | C] () -- C:\Users\Public\Desktop\Sniper Ghost Warrior.lnk [2010.08.28 19:40:55 | 000,165,799 | ---- | C] () -- C:\Users\Aike\Desktop\DSCF5596.jpg [2010.08.28 19:40:54 | 000,201,492 | ---- | C] () -- C:\Users\Aike\Desktop\DSCF5595.jpg [2010.08.28 19:40:54 | 000,158,566 | ---- | C] () -- C:\Users\Aike\Desktop\DSCF5597.jpg [2010.08.28 19:40:54 | 000,154,755 | ---- | C] () -- C:\Users\Aike\Desktop\DSCF5594.jpg [2010.08.28 10:29:56 | 307,653,441 | ---- | C] () -- C:\Windows\MEMORY.DMP [2010.08.26 22:14:11 | 000,001,964 | ---- | C] () -- C:\Users\Aike\Desktop\Terrorist Takedown 3.lnk [2010.08.26 20:13:22 | 000,000,935 | ---- | C] () -- C:\Users\Aike\Desktop\SIW.lnk [2010.08.26 17:21:05 | 000,000,869 | ---- | C] () -- C:\Users\Public\Desktop\CPUID CPU-Z.lnk [2010.08.25 22:24:57 | 000,001,174 | ---- | C] () -- C:\Users\Public\Desktop\SiSoftware Sandra Lite 2010.SP2.lnk [2010.08.25 22:24:47 | 012,861,440 | ---- | C] () -- C:\ProgramData\sandra.mda [2010.08.25 21:28:15 | 000,077,824 | ---- | C] () -- C:\Windows\SysWow64\DriveInfo.dll [2010.08.25 20:54:01 | 000,007,642 | ---- | C] () -- C:\Users\Aike\AppData\Local\Resmon.ResmonCfg [2010.08.25 19:52:01 | 000,001,744 | ---- | C] () -- C:\Users\Public\Desktop\LG PC Suite II.lnk [2010.08.24 23:49:19 | 000,031,972 | ---- | C] () -- C:\Users\Aike\Documents\3dmark.3dr [2010.08.24 23:03:09 | 000,002,052 | ---- | C] () -- C:\Users\Public\Desktop\3DMark03.lnk [2010.08.24 22:52:07 | 000,004,767 | ---- | C] () -- C:\Windows\Irremote.ini [2010.08.24 22:30:18 | 000,002,722 | ---- | C] () -- C:\Users\Public\Desktop\Nero StartSmart.lnk [2010.08.24 20:46:57 | 000,024,576 | ---- | C] () -- C:\Windows\SysWow64\AsIO.dll [2010.08.24 20:46:57 | 000,013,368 | ---- | C] () -- C:\Windows\SysWow64\drivers\AsIO.sys [2010.08.24 20:46:54 | 000,011,832 | ---- | C] () -- C:\Windows\SysWow64\drivers\AsInsHelp64.sys [2010.08.24 20:46:54 | 000,010,216 | ---- | C] () -- C:\Windows\SysWow64\drivers\AsInsHelp32.sys [2010.08.24 20:46:19 | 000,015,416 | ---- | C] () -- C:\Windows\SysNative\drivers\ASACPI.sys [2010.08.24 19:07:50 | 000,767,952 | ---- | C] () -- C:\Windows\BDTSupport.dll.old [2010.08.24 19:07:50 | 000,767,952 | ---- | C] () -- C:\Windows\BDTSupport.dll [2010.08.24 19:07:50 | 000,000,882 | ---- | C] () -- C:\Windows\RegSDImport.xml [2010.08.24 19:07:50 | 000,000,879 | ---- | C] () -- C:\Windows\RegISSImport.xml [2010.08.24 19:07:50 | 000,000,131 | ---- | C] () -- C:\Windows\IDB.zip [2010.08.24 19:07:49 | 001,152,444 | ---- | C] () -- C:\Windows\UDB.zip [2010.08.24 19:04:59 | 000,007,357 | ---- | C] () -- C:\Windows\SysNative\drivers\pctgntdi64.cat [2010.08.24 19:04:55 | 000,007,353 | ---- | C] () -- C:\Windows\SysNative\drivers\pctcore64.cat [2010.08.24 19:04:51 | 000,007,353 | ---- | C] () -- C:\Windows\SysNative\drivers\pctplsg64.cat [2010.08.24 18:28:15 | 000,178,176 | ---- | C] () -- C:\Windows\SysWow64\unrar.dll [2010.08.24 18:28:15 | 000,000,038 | ---- | C] () -- C:\Windows\avisplitter.ini [2010.08.24 18:28:14 | 000,000,414 | ---- | C] () -- C:\Windows\SysWow64\lame_acm.xml [2010.08.24 18:28:13 | 000,881,664 | ---- | C] () -- C:\Windows\SysWow64\xvidcore.dll [2010.08.24 18:28:13 | 000,205,824 | ---- | C] () -- C:\Windows\SysWow64\xvidvfw.dll [2010.08.24 18:28:08 | 000,000,547 | ---- | C] () -- C:\Windows\SysWow64\ff_vfw.dll.manifest [2010.08.24 18:28:07 | 000,085,504 | ---- | C] () -- C:\Windows\SysWow64\ff_vfw.dll [2010.08.24 17:31:46 | 000,012,264 | ---- | C] () -- C:\Windows\SysNative\nvinfo.pb [2010.08.24 17:25:17 | 000,006,136 | ---- | C] () -- C:\Windows\SysNative\drivers\nvphy.bin [2010.08.24 17:06:17 | 002,359,296 | -HS- | C] () -- C:\Users\Aike\ntuser.dat [2010.08.24 17:06:17 | 000,524,288 | -HS- | C] () -- C:\Users\Aike\NTUSER.DAT{016888bd-6c6f-11de-8d1d-001e0bcde3ec}.TMContainer00000000000000000002.regtrans-ms [2010.08.24 17:06:17 | 000,524,288 | -HS- | C] () -- C:\Users\Aike\NTUSER.DAT{016888bd-6c6f-11de-8d1d-001e0bcde3ec}.TMContainer00000000000000000001.regtrans-ms [2010.08.24 17:06:17 | 000,262,144 | -HS- | C] () -- C:\Users\Aike\ntuser.dat.LOG1 [2010.08.24 17:06:17 | 000,065,536 | -HS- | C] () -- C:\Users\Aike\NTUSER.DAT{016888bd-6c6f-11de-8d1d-001e0bcde3ec}.TM.blf [2010.08.24 17:06:17 | 000,000,020 | -HS- | C] () -- C:\Users\Aike\ntuser.ini [2010.08.24 17:06:17 | 000,000,000 | -HS- | C] () -- C:\Users\Aike\ntuser.dat.LOG2 [2010.08.24 16:53:16 | 000,000,000 | -H-- | C] () -- C:\Windows\SysNative\drivers\Msft_User_WpdFs_01_09_00.Wdf [2010.08.24 16:50:52 | 4025,294,848 | -HS- | C] () -- C:\hiberfil.sys [2010.01.30 19:13:39 | 000,000,057 | ---- | C] () -- C:\Windows\wininit.ini [2009.07.14 01:42:10 | 000,064,000 | ---- | C] () -- C:\Windows\SysWow64\BWContextHandler.dll [2009.07.13 23:03:59 | 000,364,544 | ---- | C] () -- C:\Windows\SysWow64\msjetoledb40.dll [2009.01.05 14:44:10 | 000,000,483 | ---- | C] () -- C:\Windows\bdoscandellang.ini [2008.10.07 09:13:30 | 000,197,912 | ---- | C] () -- C:\Windows\SysWow64\physxcudart_20.dll [2008.10.07 09:13:22 | 000,058,648 | ---- | C] () -- C:\Windows\SysWow64\AgCPanelTraditionalChinese.dll [2008.10.07 09:13:20 | 000,058,648 | ---- | C] () -- C:\Windows\SysWow64\AgCPanelSwedish.dll [2008.10.07 09:13:20 | 000,058,648 | ---- | C] () -- C:\Windows\SysWow64\AgCPanelSpanish.dll [2008.10.07 09:13:20 | 000,058,648 | ---- | C] () -- C:\Windows\SysWow64\AgCPanelSimplifiedChinese.dll [2008.10.07 09:13:20 | 000,058,648 | ---- | C] () -- C:\Windows\SysWow64\AgCPanelPortugese.dll [2008.10.07 09:13:20 | 000,058,648 | ---- | C] () -- C:\Windows\SysWow64\AgCPanelKorean.dll [2008.10.07 09:13:20 | 000,058,648 | ---- | C] () -- C:\Windows\SysWow64\AgCPanelJapanese.dll [2008.10.07 09:13:20 | 000,058,648 | ---- | C] () -- C:\Windows\SysWow64\AgCPanelGerman.dll [2008.10.07 09:13:20 | 000,058,648 | ---- | C] () -- C:\Windows\SysWow64\AgCPanelFrench.dll ========== Alternate Data Streams ========== @Alternate Data Stream - 203 bytes -> C:\ProgramData\TEMP:DFC5A2B2 @Alternate Data Stream - 115 bytes -> C:\ProgramData\TEMP:A8ADE5D8 < End of report > |
|
06.09.2010, 15:27
| #6 |
| | Rechner verseucht ? macht was er will OTL EXTRAS Logfile: Code:
ATTFilter OTL Extras logfile created on: 06.09.2010 16:17:37 - Run 1
OTL by OldTimer - Version 3.2.11.0 Folder = C:\Users\Aike\Desktop
64bit- Ultimate Edition (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7600.16385)
Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy
5,00 Gb Total Physical Memory | 2,00 Gb Available Physical Memory | 45,00% Memory free
10,00 Gb Paging File | 7,00 Gb Available in Paging File | 71,00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 244,14 Gb Total Space | 143,20 Gb Free Space | 58,66% Space Free | Partition Type: NTFS
Drive D: | 465,76 Gb Total Space | 370,01 Gb Free Space | 79,44% Space Free | Partition Type: NTFS
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded
Drive J: | 221,62 Gb Total Space | 110,93 Gb Free Space | 50,05% Space Free | Partition Type: NTFS
Drive L: | 488,28 Gb Total Space | 157,25 Gb Free Space | 32,20% Space Free | Partition Type: NTFS
Drive M: | 443,23 Gb Total Space | 359,45 Gb Free Space | 81,10% Space Free | Partition Type: NTFS
Computer Name: AIKE-PC
Current User Name: Aike
Logged in as Administrator.
Current Boot Mode: Normal
Scan Mode: Current user
Include 64bit Scans
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Minimal
========== Extra Registry (SafeList) ==========
========== File Associations ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation)
[HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation)
========== Shell Spawning ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %* File not found
cmdfile [open] -- "%1" %* File not found
comfile [open] -- "%1" %* File not found
exefile [open] -- "%1" %* File not found
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- Reg Error: Key error.
htmlfile [print] -- rundll32.exe %windir%\system32\mshtml.dll,PrintHTML "%1" File not found
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %* File not found
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1" File not found
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation)
scrfile [open] -- "%1" /S File not found
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1 File not found
Directory [ACDSee 11.0.Browse] -- "C:\Program Files (x86)\ACD Systems\ACDSee\11.0\ACDSeeQV11.exe" "%1" (ACD Systems)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- Reg Error: Key error.
htmlfile [print] -- rundll32.exe %windir%\system32\mshtml.dll,PrintHTML "%1"
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation)
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [ACDSee 11.0.Browse] -- "C:\Program Files (x86)\ACD Systems\ACDSee\11.0\ACDSeeQV11.exe" "%1" (ACD Systems)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
========== Security Center Settings ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = 28 4D B2 76 41 04 CA 01 [binary data]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
========== Authorized Applications List ==========
========== HKEY_LOCAL_MACHINE Uninstall List ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{26A24AE4-039D-4CA4-87B4-2F86416021FF}" = Java(TM) 6 Update 21 (64-bit)
"{68660049-8D48-427C-9FF7-139D8340CDC0}" = MSVC80_x64
"{7CFA46E3-CC2F-4355-82AE-6012DC3633FD}" = NVIDIA ForceWare Network Access Manager
"{8220EEFE-38CD-377E-8595-13398D740ACE}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17
"{C3113E55-7BCB-4de3-8EBF-60E6CE6B2296}_is1" = SiSoftware Sandra Lite 2010.SP2
"BC15EA930074932BB2C4B4493C9FD4EA95087D1A" = Windows-Treiberpaket - Nokia pccsmcfd (10/12/2007 6.85.4.0)
"CPUID CPU-Z_is1" = CPUID CPU-Z 1.55
"NVIDIA Drivers" = NVIDIA Drivers
"WinRAR archiver" = WinRAR archiver
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{02627EE5-EACA-4742-A9CC-E687631773E4}" = Nero ShowTime
"{086A7D8C-0A38-4C7F-819A-620275550D5C}" = Nero Burning ROM Help
"{0A35B15C-9CCD-4C0C-BD5B-34ABF8C95813}_is1" = ICQ 7.2 Build #3143 Banner Remover 1.0
"{14DCD95A-EBA3-4BF0-B7EF-533852E99BE6}" = LG PC Suite II
"{1ADE1AA0-7F82-4BB1-B1BD-727DE438057B}" = Cool & Quiet
"{1C00C7C5-E615-4139-B817-7F4003DE68C0}" = Nero PhotoSnap Help
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{20400DBD-E6DB-45B8-9B6B-1DD7033818EC}" = Nero InfoTool Help
"{212748BB-0DA5-46DE-82A1-403736DC9F27}" = MSVC80_x86
"{2348B586-C9AE-46CE-936C-A68E9426E214}" = Nero StartSmart Help
"{26A24AE4-039D-4CA4-87B4-2F83216021FF}" = Java(TM) 6 Update 21
"{300578F9-9EFF-4B93-9AB1-C0E5707EF463}" = ACDSee Foto-Manager 2009
"{33CF58F5-48D8-4575-83D6-96F574E4D83A}" = Nero DriveSpeed
"{359CFC0A-BEB1-440D-95BA-CF63A86DA34F}" = Nero Recode
"{368BA326-73AD-4351-84ED-3C0A7A52CC53}" = Nero Rescue Agent
"{43E39830-1826-415D-8BAE-86845787B54B}" = Nero Vision
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{56C049BE-79E9-4502-BEA7-9754A3E60F9B}" = neroxml
"{595A3116-40BB-4E0F-A2E8-D7951DA56270}" = NeroExpress
"{5D9BE3C1-8BA4-4E7E-82FD-9F74FA6815D1}" = Nero Vision Help
"{5E08ECD1-C98E-4711-BF65-8FD736B3F969}" = Nero RescueAgent Help
"{60C731FB-C951-41CE-AD41-8E54C8594609}" = Nero Disc Copy Gadget Help
"{62AC81F6-BDD3-4110-9D36-3E9EAAB40999}" = Nero CoverDesigner
"{6CF47FD1-3CF8-4206-BA24-A2B1E43D8CCA}" = IncrediMail
"{716E0306-8318-4364-8B8F-0CC4E9376BAC}" = MSXML 4.0 SP2 Parser and SDK
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{72EFBFE4-C74F-4187-AEFD-73EA3BE968D6}" = ICQ7.2
"{75AE8014-1184-4BC0-B279-C879540719EE}" = PhotoMail Maker
"{7748AC8C-18E3-43BB-959B-088FAEA16FB2}" = Nero StartSmart
"{77E33D87-255E-413E-9C8D-EED2A7F9BEBF}" = Nero Live Help
"{7829DB6F-A066-4E40-8912-CB07887C20BB}" = Nero BurnRights
"{7C7F30F4-94E7-4AA8-8941-90C4A80C68BF}" = NVIDIA Performance
"{7E84FAC8-C518-40F9-9807-7455301D6D25}" = SamsungConnectivityCableDriver
"{83202942-84B3-4C50-8622-B8C0AA2D2885}" = Nero Express Help
"{85243696-5E58-4357-9CF8-3498C609941D}" = NeroLiveGadget Help
"{869200DB-287A-4DC0-B02B-2B6787FBCD4C}" = Nero DiscSpeed
"{98A67610-A3B5-4098-A423-3708040026D3}" = "Nero SoundTrax Help
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9E82B934-9A25-445B-B8DF-8012808074AC}" = Nero PhotoSnap
"{9E9FDDE6-2C26-492A-85A0-05646B3F2795}" = NeroLiveGadget
"{A209525B-3377-43F4-B886-32F6B6E7356F}" = Nero WaveEditor
"{A8F2089B-1F79-4BF6-B385-A2C2B0B9A74D}" = ImagXpress
"{AB67580-257C-45FF-B8F4-C8C30682091A}_is1" = SIW version 2010.07.14
"{AB6F6C80-1C35-4672-BDEF-F26FF214C409}" = Samsung PC Studio 7
"{AC599724-5755-48C1-ABE7-ABB857652930}" = PC Connectivity Solution
"{AC76BA86-7AD7-1031-7B44-A93000000001}" = Adobe Reader 9.3.4 - Deutsch
"{AD6BC5CC-2EF0-49C4-B33D-CDC8B2C4DC80}" = Nero Recode Help
"{B1ADF008-E898-4FE2-8A1F-690D9A06ACAF}" = DolbyFiles
"{b29aa9fe-341c-45f3-818e-71733775a728}" = Nero 9
"{B2EC4A38-B545-4A00-8214-13FE0E915E6D}" = Advertising Center
"{B78120A0-CF84-4366-A393-4D0A59BC546C}" = Menu Templates - Starter Kit
"{B83FC356-B7C0-441F-8A4D-D71E088E7974}" = NVIDIA PhysX
"{BD5CA0DA-71AD-43DA-B19E-6EEE0C9ADC9A}" = Nero ControlCenter
"{BEE64C14-BEF1-4610-8A68-A16EAA47B882}" = Futuremark SystemInfo
"{C3ABE126-2BB2-4246-BFE1-6797679B3579}" = LG USB Modem driver
"{C5A7CB6C-E76D-408F-BA0E-85605420FE9D}" = SoundTrax
"{CC019E3F-59D2-4486-8D4B-878105B62A71}" = Nero DiscSpeed Help
"{CE96F5A5-584D-4F8F-AA3E-9BAED413DB72}" = Nero CoverDesigner Help
"{D025A639-B9C9-417D-8531-208859000AF8}" = NeroBurningROM
"{D9DCF92E-72EB-412D-AC71-3B01276E5F8B}" = Nero ShowTime
"{DED53B0B-B67C-4244-AE6A-D6FD3C28D1EF}" = Ad-Aware
"{DF6A95F5-ADC1-406A-BDC6-2AA7CC0182AA}" = Nero Live
"{E498385E-1C51-459A-B45F-1721E37AA1A0}" = Movie Templates - Starter Kit
"{E5C7D048-F9B4-4219-B323-8BDB01A2563D}" = Nero DriveSpeed Help
"{E8A80433-302B-4FF1-815D-FCC8EAC482FF}" = Nero Installer
"{EF5B1E83-1403-4F0E-A8E6-C169DF0CCE8C}" = LG PC Suite II
"{F0A37341-D692-11D4-A984-009027EC0A9C}" = SoundMAX
"{F1861F30-3419-44DB-B2A1-C274825698B3}" = Nero Disc Copy Gadget
"{F333A33D-125C-32A2-8DCE-5C5D14231E27}" = Visual C++ 2008 x86 Runtime - (v9.0.30729)
"{F333A33D-125C-32A2-8DCE-5C5D14231E27}.vc_x86runtime_30729_01" = Visual C++ 2008 x86 Runtime - v9.0.30729.01
"{F4041DCE-3FE1-4E18-8A9E-9DE65231EE36}" = Nero ControlCenter
"{F6BDD7C5-89ED-4569-9318-469AA9732572}" = Nero BurnRights Help
"{FBCDFD61-7DCF-4E71-9226-873BA0053139}" = Nero InfoTool
"{FF35F637-72B9-43BE-A281-06EB2854393A}" = 3DMark03
"Ad-Aware" = Ad-Aware
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"Afterburner" = MSI Afterburner 1.6.1
"Avira AntiVir Desktop" = Avira AntiVir Personal - Free Antivirus
"Browser Defender_is1" = Browser Defender 2.0.6.15
"CHIP System-Check-Tool_is1" = CHIP System-Check-Tool 1.1.9.15
"CloneCD" = CloneCD
"Code of Honor 3/DE-German_is1" = Code of Honor 3
"DVDVideoSoftTB Toolbar" = DVDVideoSoftTB Toolbar
"EasyBCD" = EasyBCD 2.0
"EPSON Scanner" = EPSON Scan
"Free Audio CD Burner_is1" = Free Audio CD Burner version 1.4
"Free YouTube to MP3 Converter_is1" = Free YouTube to MP3 Converter version 3.8
"HijackThis" = HijackThis 2.0.2
"Host OpenAL (ADI)" = Host OpenAL (ADI)
"ICQToolbar" = ICQ Toolbar
"IncrediMail" = IncrediMail 2.0
"InstallShield_{7C7F30F4-94E7-4AA8-8941-90C4A80C68BF}" = NVIDIA Performance
"InstallShield_{7CFA46E3-CC2F-4355-82AE-6012DC3633FD}" = NVIDIA ForceWare Network Access Manager
"KLiteCodecPack_is1" = K-Lite Codec Pack 5.4.4 (Full)
"Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware
"Mozilla Firefox (3.6.8)" = Mozilla Firefox (3.6.8)
"PhotoMail" = PhotoMail Maker
"RHEM4" = RHEM4
"Samsung PC Studio 7" = Samsung PC Studio 7
"Sniper Ghost Warrior_is1" = Sniper Ghost Warrior
"Spyware Doctor" = Spyware Doctor 7.0
"SystemRequirementsLab" = System Requirements Lab
"Terrorist Takedown 3/EN-English_is1" = Terrorist Takedown 3
"uTorrent" = µTorrent
"VirtualCloneDrive" = VirtualCloneDrive
"WinRAR archiver" = WinRAR
"xp-AntiSpy" = xp-AntiSpy 3.97-9
========== Last 10 Event Log Errors ==========
[ Application Events ]
Error - 05.09.2010 05:41:10 | Computer Name = Aike-PC | Source = Customer Experience Improvement Program | ID = 1008
Description =
Error - 05.09.2010 06:23:00 | Computer Name = Aike-PC | Source = Application Error | ID = 1000
Description = Name der fehlerhaften Anwendung: pctsSvc.exe, Version: 7.0.0.95, Zeitstempel:
0x4af380db Name des fehlerhaften Moduls: SDAVgate.dll, Version: 7.0.3.28, Zeitstempel:
0x4b04d8c3 Ausnahmecode: 0xc0000006 Fehleroffset: 0x000bcb9a ID des fehlerhaften Prozesses:
0x904 Startzeit der fehlerhaften Anwendung: 0x01cb4cdb86f188a0 Pfad der fehlerhaften
Anwendung: C:\Program Files (x86)\Spyware Doctor\pctsSvc.exe Pfad des fehlerhaften
Moduls: C:\Program Files (x86)\Spyware Doctor\avengine\SDAVgate.dll Berichtskennung:
8edf6a10-b8d7-11df-853e-002618249447
Error - 05.09.2010 06:23:00 | Computer Name = Aike-PC | Source = Application Error | ID = 1005
Description = Aus einem der folgenden Gründe kann nicht auf die Datei "L:\found.000\dir0002.chk\1998
- Sensationell\08 - Mach's gut.mp3" zugegriffen werden: Es besteht ein Problem mit
der Netzwerkverbindung, dem Datenträger mit der gespeicherten Datei bzw. den auf
dem Computer installierten Speichertreibern, oder der Datenträger fehlt. Das Programm
PC Tools Security Service wurde wegen dieses Fehlers geschlossen. Programm: PC Tools
Security Service Datei: L:\found.000\dir0002.chk\1998 - Sensationell\08 - Mach's
gut.mp3 Der Fehlerwert ist im Abschnitt "Zusätzliche Dateien" aufgelistet. Benutzeraktion
1.
Öffnen Sie die Datei erneut. Diese Situation ist eventuell ein temporäres Problem,
das selbstständig behoben wird, wenn das Programm erneut ausgeführt wird. 2. Wenn
Sie weiterhin nicht auf die Datei zugreifen können und - diese sich im Netzwerk
befindet, dann sollte der Netzwerkadministrator überprüfen, dass kein Netzwerkproblem
besteht und dass eine Verbindung mit dem Server hergestellt werden kann. - diese
sich auf einem Wechseldatenträger, wie z. B. einer Diskette oder einer CD, befindet,
überprüfen Sie, ob der Datenträger richtig in den Computer eingelegt ist. 3. Überprüfen
und reparieren Sie das Dateisystem, indem Sie CHKDSK ausführen. Klicken Sie dazu
im Menü "Start" auf "Ausführen", geben Sie CMD ein, und klicken Sie auf "OK". Geben
Sie an der Eingabeaufforderung CHKDSK /F ein, und drücken Sie die EINGABETASTE.
4.
Stellen Sie die Datei von einer Sicherungskopie wieder her, wenn das Problem weiterhin
besteht. 5. Überprüfen Sie, ob andere Dateien auf demselben Datenträger geöffnet
werden können. Falls dies nicht möglich ist, ist der Datenträger eventuell beschädigt.
Wenden Sie sich an den Administrator oder den Hersteller der Computerhardware,
um weitere Unterstützung zu erhalten, wenn es sich um eine Festplatte handelt. Zusätzliche
Daten Fehlerwert: C000009C Datenträgertyp: 3
Error - 05.09.2010 10:18:02 | Computer Name = Aike-PC | Source = Application Error | ID = 1000
Description = Name der fehlerhaften Anwendung: pctsSvc.exe, Version: 7.0.0.95, Zeitstempel:
0x4af380db Name des fehlerhaften Moduls: SDAVgate.dll, Version: 7.0.3.28, Zeitstempel:
0x4b04d8c3 Ausnahmecode: 0xc0000006 Fehleroffset: 0x000bcb9a ID des fehlerhaften Prozesses:
0x858 Startzeit der fehlerhaften Anwendung: 0x01cb4cfa5d5343c0 Pfad der fehlerhaften
Anwendung: C:\Program Files (x86)\Spyware Doctor\pctsSvc.exe Pfad des fehlerhaften
Moduls: C:\Program Files (x86)\Spyware Doctor\avengine\SDAVgate.dll Berichtskennung:
6400d2e0-b8f8-11df-9f4b-002618249447
Error - 05.09.2010 10:18:02 | Computer Name = Aike-PC | Source = Application Error | ID = 1005
Description = Aus einem der folgenden Gründe kann nicht auf die Datei "L:\found.000\dir0002.chk\1998
- Sensationell\08 - Mach's gut.mp3" zugegriffen werden: Es besteht ein Problem mit
der Netzwerkverbindung, dem Datenträger mit der gespeicherten Datei bzw. den auf
dem Computer installierten Speichertreibern, oder der Datenträger fehlt. Das Programm
PC Tools Security Service wurde wegen dieses Fehlers geschlossen. Programm: PC Tools
Security Service Datei: L:\found.000\dir0002.chk\1998 - Sensationell\08 - Mach's
gut.mp3 Der Fehlerwert ist im Abschnitt "Zusätzliche Dateien" aufgelistet. Benutzeraktion
1.
Öffnen Sie die Datei erneut. Diese Situation ist eventuell ein temporäres Problem,
das selbstständig behoben wird, wenn das Programm erneut ausgeführt wird. 2. Wenn
Sie weiterhin nicht auf die Datei zugreifen können und - diese sich im Netzwerk
befindet, dann sollte der Netzwerkadministrator überprüfen, dass kein Netzwerkproblem
besteht und dass eine Verbindung mit dem Server hergestellt werden kann. - diese
sich auf einem Wechseldatenträger, wie z. B. einer Diskette oder einer CD, befindet,
überprüfen Sie, ob der Datenträger richtig in den Computer eingelegt ist. 3. Überprüfen
und reparieren Sie das Dateisystem, indem Sie CHKDSK ausführen. Klicken Sie dazu
im Menü "Start" auf "Ausführen", geben Sie CMD ein, und klicken Sie auf "OK". Geben
Sie an der Eingabeaufforderung CHKDSK /F ein, und drücken Sie die EINGABETASTE.
4.
Stellen Sie die Datei von einer Sicherungskopie wieder her, wenn das Problem weiterhin
besteht. 5. Überprüfen Sie, ob andere Dateien auf demselben Datenträger geöffnet
werden können. Falls dies nicht möglich ist, ist der Datenträger eventuell beschädigt.
Wenden Sie sich an den Administrator oder den Hersteller der Computerhardware,
um weitere Unterstützung zu erhalten, wenn es sich um eine Festplatte handelt. Zusätzliche
Daten Fehlerwert: C000009C Datenträgertyp: 3
Error - 06.09.2010 02:20:36 | Computer Name = Aike-PC | Source = Customer Experience Improvement Program | ID = 1008
Description =
Error - 06.09.2010 04:07:19 | Computer Name = Aike-PC | Source = Lavasoft Ad-Aware Service | ID = 0
Description =
Error - 06.09.2010 04:59:36 | Computer Name = Aike-PC | Source = Lavasoft Ad-Aware Service | ID = 0
Description =
Error - 06.09.2010 09:08:39 | Computer Name = Aike-PC | Source = SideBySide | ID = 16842785
Description = Fehler beim Generieren des Aktivierungskontextes für "C:\Program Files
(x86)\Samsung\Samsung PC Studio 7\TIS_VistaPIM.dll". Die abhängige Assemblierung
"Microsoft.VC80.DebugCRT,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0""
konnte nicht gefunden werden. Verwenden Sie für eine detaillierte Diagnose das Programm
"sxstrace.exe".
Error - 06.09.2010 09:08:55 | Computer Name = Aike-PC | Source = SideBySide | ID = 16842832
Description = Fehler beim Generieren des Aktivierungskontexts für "C:\Program Files
(x86)\Nero\Nero 9\Nero PhotoSnap\PhotoSnapViewer.exe.Manifest". Fehler in Manifest-
oder Richtliniendatei "" in Zeile . Eine für die Anwendung erforderliche Komponentenversion
steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion. In Konflikt
stehende Komponenten:. Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16385_none_fa645303170382f6.manifest.
Komponente
2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16385_none_421189da2b7fabfc.manifest.
[ System Events ]
Error - 06.09.2010 10:11:12 | Computer Name = Aike-PC | Source = Disk | ID = 262151
Description = Fehlerhafter Block bei Gerät \Device\Harddisk0\DR0.
Error - 06.09.2010 10:11:13 | Computer Name = Aike-PC | Source = Disk | ID = 262151
Description = Fehlerhafter Block bei Gerät \Device\Harddisk0\DR0.
Error - 06.09.2010 10:11:14 | Computer Name = Aike-PC | Source = Disk | ID = 262151
Description = Fehlerhafter Block bei Gerät \Device\Harddisk0\DR0.
Error - 06.09.2010 10:11:15 | Computer Name = Aike-PC | Source = Disk | ID = 262151
Description = Fehlerhafter Block bei Gerät \Device\Harddisk0\DR0.
Error - 06.09.2010 10:11:16 | Computer Name = Aike-PC | Source = Disk | ID = 262151
Description = Fehlerhafter Block bei Gerät \Device\Harddisk0\DR0.
Error - 06.09.2010 10:11:17 | Computer Name = Aike-PC | Source = Disk | ID = 262151
Description = Fehlerhafter Block bei Gerät \Device\Harddisk0\DR0.
Error - 06.09.2010 10:11:18 | Computer Name = Aike-PC | Source = Disk | ID = 262151
Description = Fehlerhafter Block bei Gerät \Device\Harddisk0\DR0.
Error - 06.09.2010 10:11:19 | Computer Name = Aike-PC | Source = Disk | ID = 262151
Description = Fehlerhafter Block bei Gerät \Device\Harddisk0\DR0.
Error - 06.09.2010 10:11:20 | Computer Name = Aike-PC | Source = Disk | ID = 262151
Description = Fehlerhafter Block bei Gerät \Device\Harddisk0\DR0.
Error - 06.09.2010 10:11:21 | Computer Name = Aike-PC | Source = Disk | ID = 262151
Description = Fehlerhafter Block bei Gerät \Device\Harddisk0\DR0.
< End of report >
|
|
06.09.2010, 15:30
| #7 | |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Rechner verseucht ? macht was er willZitat:
  Die (Be)nutzung von Cracks, Serials und Keygens ist illegal, somit gibt es im Trojaner-Board keinen weiteren Support mehr. Für Dich geht es hier weiter => Neuaufsetzen des Systems Bitte auch alle Passwörter abändern (für E-Mail-Konten, StudiVZ, Ebay...einfach alles!) da nicht selten in dieser dubiosen Software auch Keylogger und Backdoorfunktionen stecken. Danach nie wieder sowas anrühren!
__________________ Logfiles bitte immer in CODE-Tags posten  |
|
| Themen zu Rechner verseucht ? macht was er will |
| antivir, buchstaben, center, einfach, gesuch, gesucht, mediaplayer, plattmachen, programme, programmen, rechner, rechner verseucht, rießen, runter, spyware, taschenrechner, verseucht, windows, windows 7, öffnet |
Rechner verseucht ? macht was er will
Linear-Darstellung
