Zurück   Trojaner-Board > Malware entfernen > Log-Analyse und Auswertung

Log-Analyse und Auswertung: Virus klaut/löscht Daten; Hardware infiziert?

Windows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML.

Antwort
Alt 21.05.2011, 15:24   #1
diggerderbe
 
Virus klaut/löscht Daten; Hardware infiziert? - Unglücklich

Virus klaut/löscht Daten; Hardware infiziert?



Hallo zusammen,
Ich habe mir am Mittwoch einen Virus per USB eigefangen.
(war leider meine eigene Schuld ich wusste das der Stick verseucht war )

Da alle meine Programme im Programme Ordern am nächsten Tag gelöscht waren,
wusste ich es musste Fremdeinwirkung sein.
Habe sofort neu aufgesetzt.
Das formatieren gestaltet sich als etwas schwiereiger als gedacht.
Beim laden der windows Daten kam regelmäßig ein Bluescreen oder eine "sys" Datei solle fehlen.
Ich bin mir sicher das es nicht an den CDs und DVDs gelegen hat.
( Da die windows xp cd versagte suchte ich nach vergleichbaren CDs und fand 2 weitere XP und eine Windows 7 DVD, da wir mehrer PCs im Haushalt haben, 2 sind verseucht, einer noch nicht)
Mit etwas Geduld und Glück kam ich endlich zur Auswahl der Partitionen und konnte nach etwa 20 Versuchen formatieren und alles lief seinen Gang.
2 Tage später fehlt plötzlich mein ganzer Inhalt des "Video Dateien" Ordners Ordner auf meiner 2 TB externen Festplatte.
Ich merkte nach dem kopieren, (ich wollte 465 GB auf die ander verschieben) dass plötzlich beide Ordner leer waren Quelldatei und Zielordner.
Ich war fassungslos und rief sofort meinen PC Spezi an.
Da konnte etwas ganz und gar nicht stimmen.
Dieser meinte es gibt Viren welche auch nach einem Format C trotzdem bestehen bleiben.
Eine Möglichkein diese zu 100% loszuwerden wäre die Festplatte zu entfernen und eine neue zu kaufen.
Am meisten hoffe ich darauf hier eine andere Lösung zu finden und die zwei vorhanden externen Festplatten nicht völlig auf den Müll geben zu müssen.
Das komische ist das mein Windows nie Fehlermeldungen auswarf also der Virus total unsichtbar auf meinem PC unterwegs ist und war.

So, jetzt auf in den Kampf:
Hier mein Malwarbytesantimalware logfile nach einem quickscan:
Malwarebytes' Anti-Malware 1.50.1.1100
www.malwarebytes.org

Datenbank Version: 6633

Windows 6.1.7600
Internet Explorer 8.0.7600.16385

21.05.2011 15:37:31
mbam-log-2011-05-21 (15-37-31).txt

Art des Suchlaufs: Quick-Scan
Durchsuchte Objekte: 154182
Laufzeit: 2 Minute(n), 1 Sekunde(n)

Infizierte Speicherprozesse: 0
Infizierte Speichermodule: 0
Infizierte Registrierungsschlüssel: 0
Infizierte Registrierungswerte: 0
Infizierte Dateiobjekte der Registrierung: 0
Infizierte Verzeichnisse: 0
Infizierte Dateien: 0

Infizierte Speicherprozesse:
(Keine bösartigen Objekte gefunden)

Infizierte Speichermodule:
(Keine bösartigen Objekte gefunden)

Infizierte Registrierungsschlüssel:
(Keine bösartigen Objekte gefunden)

Infizierte Registrierungswerte:
(Keine bösartigen Objekte gefunden)

Infizierte Dateiobjekte der Registrierung:
(Keine bösartigen Objekte gefunden)

Infizierte Verzeichnisse:
(Keine bösartigen Objekte gefunden)

Infizierte Dateien:
(Keine bösartigen Objekte gefunden)


Jetzt noch OTL:OTL Logfile:
Code:
ATTFilter
OTL logfile created on: 21.05.2011 15:37:00 - Run 2
OTL by OldTimer - Version 3.2.22.3     Folder = C:\Users\***\Downloads
64bit- Ultimate Edition  (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7600.16385)
Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy
 
3,00 Gb Total Physical Memory | 2,00 Gb Available Physical Memory | 51,00% Memory free
6,00 Gb Paging File | 5,00 Gb Available in Paging File | 71,00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 465,66 Gb Total Space | 290,00 Gb Free Space | 62,28% Space Free | Partition Type: NTFS
Drive E: | 100,00 Mb Total Space | 61,64 Mb Free Space | 61,65% Space Free | Partition Type: NTFS
Drive G: | 465,76 Gb Total Space | 256,35 Gb Free Space | 55,04% Space Free | Partition Type: NTFS
Drive I: | 1863,01 Gb Total Space | 1672,95 Gb Free Space | 89,80% Space Free | Partition Type: NTFS
 
Computer Name: ***-PC | User Name: *** | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
 
========== Processes (SafeList) ==========
 
PRC - C:\Users\***\Downloads\OTL.exe (OldTimer Tools)
PRC - C:\Programme\TrueCrypt\TrueCrypt.exe (TrueCrypt Foundation)
PRC - C:\Program Files (x86)\MirandaFusion\miranda32.exe (modified by Miranda Fusion Team)
PRC - C:\Program Files (x86)\SuperFlexible\ExtremeVSS.exe (Super Flexible Software Ltd. & Co. KG)
PRC - C:\Program Files (x86)\AVG\AVG10\avgtray.exe (AVG Technologies CZ, s.r.o.)
PRC - C:\Program Files (x86)\AVG\AVG10\Identity Protection\Agent\Bin\AVGIDSAgent.exe (AVG Technologies CZ, s.r.o.)
PRC - C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation)
PRC - C:\Program Files (x86)\MirandaFusion\fusiontools\mfstart.exe (Miranda Fusion Team)
PRC - C:\Program Files (x86)\AVG\AVG10\Identity Protection\agent\bin\avgidsmonitor.exe ()
PRC - C:\Program Files (x86)\AVG\AVG10\avgwdsvc.exe (AVG Technologies CZ, s.r.o.)
PRC - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe (Malwarebytes Corporation)
PRC - C:\Program Files (x86)\EvJOSoft\Wallpaper Changer\EvJOWall.exe (EvJOSoft)
PRC - C:\Windows\vVX3000.exe (Microsoft Corporation)
 
 
========== Modules (SafeList) ==========
 
MOD - C:\Users\***\Downloads\OTL.exe (OldTimer Tools)
MOD - C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd\comctl32.dll (Microsoft Corporation)
 
 
========== Win32 Services (SafeList) ==========
 
SRV:64bit: - (AMD External Events Utility) -- C:\Windows\SysNative\atiesrxx.exe (AMD)
SRV:64bit: - (UxTuneUp) -- C:\Windows\SysNative\uxtuneup.dll (TuneUp Software)
SRV:64bit: - (MSCamSvc) -- C:\Program Files\Microsoft LifeCam\MSCamS64.exe (Microsoft Corporation)
SRV:64bit: - (AppMgmt) -- C:\Windows\SysNative\appmgmts.dll (Microsoft Corporation)
SRV - (ExtremeVSSService) -- C:\Program Files (x86)\SuperFlexible\ExtremeVSS.exe (Super Flexible Software Ltd. & Co. KG)
SRV - (AVGIDSAgent) -- C:\Program Files (x86)\AVG\AVG10\Identity Protection\Agent\Bin\AVGIDSAgent.exe (AVG Technologies CZ, s.r.o.)
SRV - (TuneUp.UtilitiesSvc) -- C:\Program Files (x86)\TuneUp Utilities 2011\TuneUpUtilitiesService64.exe (TuneUp Software)
SRV - (UxTuneUp) -- C:\Windows\SysWOW64\uxtuneup.dll (TuneUp Software)
SRV - (avgwd) -- C:\Program Files (x86)\AVG\AVG10\avgwdsvc.exe (AVG Technologies CZ, s.r.o.)
SRV - (clr_optimization_v4.0.30319_32) -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe (Microsoft Corporation)
SRV - (clr_optimization_v2.0.50727_32) -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe (Microsoft Corporation)
 
 
========== Driver Services (SafeList) ==========
 
DRV:64bit: - (truecrypt) -- C:\Windows\SysNative\drivers\truecrypt.sys (TrueCrypt Foundation)
DRV:64bit: - (amdkmdag) -- C:\Windows\SysNative\drivers\atikmdag.sys (ATI Technologies Inc.)
DRV:64bit: - (amdkmdap) -- C:\Windows\SysNative\drivers\atikmpag.sys (Advanced Micro Devices, Inc.)
DRV:64bit: - (AVGIDSDriver) -- C:\Windows\SysNative\drivers\AVGIDSDriver.sys (AVG Technologies CZ, s.r.o. )
DRV:64bit: - (Avgtdia) -- C:\Windows\SysNative\drivers\avgtdia.sys (AVG Technologies CZ, s.r.o.)
DRV:64bit: - (Avgrkx64) -- C:\Windows\SysNative\drivers\avgrkx64.sys (AVG Technologies CZ, s.r.o.)
DRV:64bit: - (Avgmfx64) -- C:\Windows\SysNative\drivers\avgmfx64.sys (AVG Technologies CZ, s.r.o.)
DRV:64bit: - (AVGIDSEH) -- C:\Windows\SysNative\drivers\AVGIDSEH.sys (AVG Technologies CZ, s.r.o. )
DRV:64bit: - (AVGIDSFilter) -- C:\Windows\SysNative\drivers\AVGIDSFilter.sys (AVG Technologies CZ, s.r.o. )
DRV:64bit: - (Avgldx64) -- C:\Windows\SysNative\drivers\avgldx64.sys (AVG Technologies CZ, s.r.o.)
DRV:64bit: - (VX3000) -- C:\Windows\SysNative\drivers\VX3000.sys (Microsoft Corporation)
DRV:64bit: - (amdsata) -- C:\Windows\SysNative\drivers\amdsata.sys (Advanced Micro Devices)
DRV:64bit: - (amdxata) -- C:\Windows\SysNative\drivers\amdxata.sys (Advanced Micro Devices)
DRV:64bit: - (amdsbs) -- C:\Windows\SysNative\drivers\amdsbs.sys (AMD Technologies Inc.)
DRV:64bit: - (LSI_SAS2) -- C:\Windows\SysNative\drivers\lsi_sas2.sys (LSI Corporation)
DRV:64bit: - (HpSAMD) -- C:\Windows\SysNative\drivers\HpSAMD.sys (Hewlett-Packard Company)
DRV:64bit: - (stexstor) -- C:\Windows\SysNative\drivers\stexstor.sys (Promise Technology)
DRV:64bit: - (Ntfs) -- C:\Windows\SysNative\wbem\ntfs.mof ()
DRV:64bit: - (yukonw7) -- C:\Windows\SysNative\drivers\yk62x64.sys (Marvell)
DRV:64bit: - (ebdrv) -- C:\Windows\SysNative\drivers\evbda.sys (Broadcom Corporation)
DRV:64bit: - (b06bdrv) -- C:\Windows\SysNative\drivers\bxvbda.sys (Broadcom Corporation)
DRV:64bit: - (b57nd60a) -- C:\Windows\SysNative\drivers\b57nd60a.sys (Broadcom Corporation)
DRV:64bit: - (hcw85cir) -- C:\Windows\SysNative\drivers\hcw85cir.sys (Hauppauge Computer Works, Inc.)
DRV - (TuneUpUtilitiesDrv) -- C:\Program Files (x86)\TuneUp Utilities 2011\TuneUpUtilitiesDriver64.sys (TuneUp Software)
DRV - (ISODrive) -- C:\Program Files (x86)\UltraISO\drivers\ISODrv64.sys (EZB Systems, Inc.)
 
 
========== Standard Registry (SafeList) ==========
 
 
========== Internet Explorer ==========
 
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
 
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://de.msn.com/?ocid=iehp
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = A8 64 63 0B 6A 15 CC 01  [binary data]
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
========== FireFox ==========
 
FF - prefs.js..browser.startup.homepage: "www.facebook.com"
 
 
FF - HKLM\software\mozilla\Firefox\Extensions\\{1E73965B-8B48-48be-9C8D-68B920ABC1C4}: C:\Program Files (x86)\AVG\AVG10\Firefox4\ [2011.05.19 19:11:31 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 4.0.1\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2011.05.18 16:45:22 | 000,000,000 | ---D | M]
 
[2011.05.18 16:45:28 | 000,000,000 | ---D | M] (No name found) -- C:\Users\***\AppData\Roaming\mozilla\Extensions
[2011.05.19 18:35:17 | 000,000,000 | ---D | M] (No name found) -- C:\Users\***\AppData\Roaming\mozilla\Firefox\Profiles\imrr2jgo.default\extensions
[2011.05.18 20:08:11 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\mozilla firefox\extensions
[2011.05.18 17:42:49 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files (x86)\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0025-ABCDEFFEDCBA}
File not found (No name found) -- 
[2011.05.19 19:11:31 | 000,000,000 | ---D | M] (AVG Safe Search) -- C:\PROGRAM FILES (X86)\AVG\AVG10\FIREFOX4
() (No name found) -- C:\USERS\***\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IMRR2JGO.DEFAULT\EXTENSIONS\{D10D0BF8-F5B5-C8B4-A8B2-2B9879E08C5D}.XPI
[2011.04.14 18:40:03 | 000,142,296 | ---- | M] (Mozilla Foundation) -- C:\Program Files (x86)\mozilla firefox\components\browsercomps.dll
[2011.05.18 20:08:06 | 000,001,400 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\amazondotcom-de.xml
[2011.05.18 20:08:06 | 000,001,679 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\bing.xml
[2011.05.18 20:08:06 | 000,000,947 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\eBay-de.xml
[2011.05.18 20:08:06 | 000,006,818 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\leo_ende_de.xml
[2011.05.18 19:52:31 | 000,001,272 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\wikipedia-de.xml
[2011.05.18 20:08:06 | 000,000,903 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\yahoo-de.xml
 
O1 HOSTS File: ([2009.06.10 23:00:26 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O2:64bit: - BHO: (AVG Safe Search) - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files (x86)\AVG\AVG10\avgssiea.dll (AVG Technologies CZ, s.r.o.)
O2 - BHO: (AVG Safe Search) - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files (x86)\AVG\AVG10\avgssie.dll (AVG Technologies CZ, s.r.o.)
O4:64bit: - HKLM..\Run: [VX3000] C:\Windows\vVX3000.exe (Microsoft Corporation)
O4 - HKLM..\Run: [AVG_TRAY] C:\Program Files (x86)\AVG\AVG10\avgtray.exe (AVG Technologies CZ, s.r.o.)
O4 - HKLM..\Run: [LifeCam] C:\Program Files (x86)\Microsoft LifeCam\LifeExp.exe (Microsoft Corporation)
O4 - HKCU..\Run: [EvJOWall] C:\Program Files (x86)\EvJOSoft\Wallpaper Changer\EvJOWall.exe (EvJOSoft)
O4 - HKCU..\Run: [Miranda Fusion] C:\Program Files (x86)\MirandaFusion\fusiontools\mfstart.exe (Miranda Fusion Team)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O9 - Extra Button: Recherchieren - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~2\OFFICE11\REFIEBAR.DLL (Microsoft Corporation)
O13 - gopher Prefix: missing
O13 - gopher Prefix: missing
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_25-windows-i586.cab (Java Plug-in 1.6.0_25)
O16 - DPF: {CAFEEFAC-0016-0000-0025-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_25-windows-i586.cab (Java Plug-in 1.6.0_25)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_25-windows-i586.cab (Java Plug-in 1.6.0_25)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O18:64bit: - Protocol\Handler\http\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\http\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\https\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\https\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\linkscanner {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files (x86)\AVG\AVG10\avgppa.dll (AVG Technologies CZ, s.r.o.)
O18:64bit: - Protocol\Handler\msdaipp - No CLSID value found
O18:64bit: - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\mso-offdap11 {32505114-5902-49B2-880A-1F7738E5A384} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - Reg Error: Key error. File not found
O18 - Protocol\Handler\http\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
O18 - Protocol\Handler\http\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
O18 - Protocol\Handler\https\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
O18 - Protocol\Handler\https\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
O18 - Protocol\Handler\linkscanner {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files (x86)\AVG\AVG10\avgpp.dll (AVG Technologies CZ, s.r.o.)
O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
O18 - Protocol\Handler\mso-offdap11 {32505114-5902-49B2-880A-1F7738E5A384} - C:\PROGRA~2\COMMON~1\MICROS~1\WEBCOM~1\11\OWC11.DLL (Microsoft Corporation)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL (Skype Technologies)
O18:64bit: - Protocol\Filter\text/xml {807553E5-5146-11D5-A672-00B0D022E945} - Reg Error: Key error. File not found
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\SysNative\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: VMApplet - (/pagefile) -  File not found
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (/pagefile) -  File not found
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
O32 - HKLM CDRom: AutoRun - 1
O34 - HKLM BootExecute: (autocheck autochk *) -  File not found
O34 - HKLM BootExecute: (C:\PROGRA~2\AVG\AVG10\avgchsva.exe /sync) -  File not found
O34 - HKLM BootExecute: (C:\PROGRA~2\AVG\AVG10\avgrsa.exe /sync /restart) -  File not found
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
 
========== Files/Folders - Created Within 30 Days ==========
 
[2011.05.21 14:37:07 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Roaming\Malwarebytes
[2011.05.21 14:36:50 | 000,038,224 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\SysWow64\drivers\mbamswissarmy.sys
[2011.05.21 14:36:50 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware
[2011.05.21 14:36:48 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2011.05.21 14:36:45 | 000,024,152 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\SysNative\drivers\mbam.sys
[2011.05.21 14:36:44 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware
[2011.05.21 13:50:39 | 000,000,000 | ---D | C] -- C:\ProgramData\SuperFlexibleSynchronizer
[2011.05.21 13:50:39 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\SuperFlexible
[2011.05.20 21:50:10 | 000,000,000 | ---D | C] -- C:\Windows\pss
[2011.05.20 20:16:07 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Roaming\Xfire
[2011.05.20 20:16:05 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Xfire
[2011.05.20 20:16:04 | 000,000,000 | ---D | C] -- C:\ProgramData\Xfire
[2011.05.20 20:16:04 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Xfire
[2011.05.20 07:20:59 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steamless Counter Strike Source Pack
[2011.05.20 07:12:48 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Steamless CounterStrikeSource Pack
[2011.05.20 06:59:43 | 000,000,000 | ---D | C] -- C:\externe überschuss
[2011.05.19 19:26:13 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Roaming\vlc
[2011.05.19 19:16:07 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
[2011.05.19 19:15:42 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\VideoLAN
[2011.05.19 19:11:32 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG 2011
[2011.05.19 19:11:31 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\drivers\AVG
[2011.05.19 19:10:34 | 000,000,000 | ---D | C] -- C:\ProgramData\AVG10
[2011.05.19 19:10:34 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\drivers\AVG
[2011.05.19 18:46:31 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft LifeCam
[2011.05.19 18:45:51 | 000,000,000 | ---D | C] -- C:\Programme\Microsoft LifeCam
[2011.05.19 18:45:51 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft LifeCam
[2011.05.19 18:45:45 | 001,974,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_42.dll
[2011.05.19 18:45:44 | 001,892,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_42.dll
[2011.05.19 18:41:50 | 000,142,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\poqexec.exe
[2011.05.19 18:41:50 | 000,123,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\poqexec.exe
[2011.05.19 18:18:10 | 000,000,000 | ---D | C] -- C:\Windows\Minidump
[2011.05.19 18:15:42 | 000,000,000 | ---D | C] -- C:\ProgramData\avg8
[2011.05.19 17:52:07 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
[2011.05.19 17:51:59 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\DESIGNER
[2011.05.19 17:51:49 | 000,000,000 | ---D | C] -- C:\Windows\PCHEALTH
[2011.05.19 17:51:49 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft.NET
[2011.05.19 17:51:49 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Office
[2011.05.19 17:50:16 | 000,000,000 | RH-D | C] -- C:\MSOCache
[2011.05.19 16:07:17 | 000,034,624 | ---- | C] (TuneUp Software) -- C:\Windows\SysNative\TURegOpt.exe
[2011.05.19 16:07:12 | 000,036,160 | ---- | C] (TuneUp Software) -- C:\Windows\SysNative\uxtuneup.dll
[2011.05.19 16:07:12 | 000,029,504 | ---- | C] (TuneUp Software) -- C:\Windows\SysWow64\uxtuneup.dll
[2011.05.19 16:07:12 | 000,025,920 | ---- | C] (TuneUp Software) -- C:\Windows\SysNative\authuitu.dll
[2011.05.19 16:07:12 | 000,021,312 | ---- | C] (TuneUp Software) -- C:\Windows\SysWow64\authuitu.dll
[2011.05.19 16:07:09 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TuneUp Utilities 2011
[2011.05.19 16:06:10 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\TuneUp Utilities 2011
[2011.05.19 16:03:57 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\UltraISO
[2011.05.19 16:03:56 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\UltraISO
[2011.05.19 16:03:56 | 000,000,000 | ---D | C] -- C:\Users\***\Documents\My ISO Files
[2011.05.19 16:03:56 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\EZB Systems
[2011.05.19 15:56:37 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Local\ElevatedDiagnostics
[2011.05.19 08:33:00 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Roaming\TuneUp Software
[2011.05.19 08:32:14 | 000,000,000 | ---D | C] -- C:\ProgramData\TuneUp Software
[2011.05.19 08:32:09 | 000,000,000 | -HSD | C] -- C:\ProgramData\{24036256-BFDB-4CD3-BE8A-A3D6160F2E16}
[2011.05.19 08:22:45 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Roaming\EvJOWallpaper
[2011.05.19 08:22:35 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EvJOSoft
[2011.05.19 08:22:34 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\EvJOSoft
[2011.05.19 08:19:37 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
[2011.05.19 08:19:37 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
[2011.05.19 08:16:47 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Roaming\WinRAR
[2011.05.19 08:16:44 | 000,000,000 | ---D | C] -- C:\Programme\WinRAR
[2011.05.19 08:11:29 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Roaming\TrueCrypt
[2011.05.19 08:10:45 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TrueCrypt
[2011.05.19 08:10:40 | 000,230,352 | ---- | C] (TrueCrypt Foundation) -- C:\Windows\SysNative\drivers\truecrypt.sys
[2011.05.19 08:10:11 | 000,000,000 | ---D | C] -- C:\Programme\TrueCrypt
[2011.05.18 21:41:24 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Local\{E2B35344-7280-4850-950E-506A63844081}
[2011.05.18 21:41:10 | 000,000,000 | ---D | C] -- C:\Users\***\Tracing
[2011.05.18 20:11:38 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
[2011.05.18 20:10:50 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Silverlight
[2011.05.18 20:08:56 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Local\Windows Live
[2011.05.18 20:08:52 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Windows Live
[2011.05.18 20:06:34 | 001,942,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dfshim.dll
[2011.05.18 20:06:34 | 001,130,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dfshim.dll
[2011.05.18 20:06:34 | 000,320,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\PresentationHost.exe
[2011.05.18 20:06:34 | 000,295,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\PresentationHost.exe
[2011.05.18 20:06:34 | 000,109,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\PresentationHostProxy.dll
[2011.05.18 20:06:34 | 000,099,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\PresentationHostProxy.dll
[2011.05.18 20:06:34 | 000,049,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\netfxperf.dll
[2011.05.18 20:06:34 | 000,048,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\netfxperf.dll
[2011.05.18 20:02:22 | 000,148,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\t2embed.dll
[2011.05.18 20:02:22 | 000,109,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\t2embed.dll
[2011.05.18 20:02:21 | 001,118,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sbe.dll
[2011.05.18 20:02:21 | 000,961,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\CPFilters.dll
[2011.05.18 20:02:21 | 000,723,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\EncDec.dll
[2011.05.18 20:02:21 | 000,642,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\CPFilters.dll
[2011.05.18 20:02:21 | 000,534,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\EncDec.dll
[2011.05.18 20:02:21 | 000,259,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mpg2splt.ax
[2011.05.18 20:02:20 | 000,850,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\sbe.dll
[2011.05.18 20:02:20 | 000,199,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mpg2splt.ax
[2011.05.18 20:02:19 | 002,870,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\explorer.exe
[2011.05.18 20:02:19 | 002,614,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\explorer.exe
[2011.05.18 20:02:17 | 000,483,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\StructuredQuery.dll
[2011.05.18 20:02:16 | 002,085,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ole32.dll
[2011.05.18 20:02:14 | 005,509,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntoskrnl.exe
[2011.05.18 20:02:13 | 003,957,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ntkrnlpa.exe
[2011.05.18 20:02:13 | 003,901,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ntoskrnl.exe
[2011.05.18 20:02:12 | 000,662,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XpsPrint.dll
[2011.05.18 20:02:12 | 000,442,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XpsPrint.dll
[2011.05.18 20:02:01 | 001,169,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\taskschd.dll
[2011.05.18 20:02:01 | 000,524,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wmicmiplugin.dll
[2011.05.18 20:02:01 | 000,496,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\taskschd.dll
[2011.05.18 20:02:01 | 000,473,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\taskcomp.dll
[2011.05.18 20:02:01 | 000,464,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\taskeng.exe
[2011.05.18 20:02:01 | 000,305,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\taskcomp.dll
[2011.05.18 20:02:01 | 000,285,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\schtasks.exe
[2011.05.18 20:02:01 | 000,179,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\schtasks.exe
[2011.05.18 20:02:00 | 001,837,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3d10warp.dll
[2011.05.18 20:02:00 | 001,170,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3d10warp.dll
[2011.05.18 20:02:00 | 000,902,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d2d1.dll
[2011.05.18 20:02:00 | 000,739,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d2d1.dll
[2011.05.18 20:01:59 | 004,068,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mf.dll
[2011.05.18 20:01:59 | 003,181,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mf.dll
[2011.05.18 20:01:59 | 001,888,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WMVDECOD.DLL
[2011.05.18 20:01:59 | 001,540,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\DWrite.dll
[2011.05.18 20:01:59 | 001,074,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\DWrite.dll
[2011.05.18 20:01:58 | 001,863,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ExplorerFrame.dll
[2011.05.18 20:01:58 | 001,619,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\WMVDECOD.DLL
[2011.05.18 20:01:58 | 001,495,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ExplorerFrame.dll
[2011.05.18 20:01:58 | 000,320,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3d10_1core.dll
[2011.05.18 20:01:58 | 000,265,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\dxgmms1.sys
[2011.05.18 20:01:58 | 000,257,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mfreadwrite.dll
[2011.05.18 20:01:58 | 000,229,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XpsRasterService.dll
[2011.05.18 20:01:58 | 000,218,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3d10_1core.dll
[2011.05.18 20:01:58 | 000,206,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mfps.dll
[2011.05.18 20:01:58 | 000,197,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3d10_1.dll
[2011.05.18 20:01:58 | 000,196,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfreadwrite.dll
[2011.05.18 20:01:58 | 000,161,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3d10_1.dll
[2011.05.18 20:01:58 | 000,144,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cdd.dll
[2011.05.18 20:01:58 | 000,135,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XpsRasterService.dll
[2011.05.18 20:01:44 | 000,703,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msfeeds.dll
[2011.05.18 20:01:44 | 000,599,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msfeeds.dll
[2011.05.18 20:01:44 | 000,256,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iepeers.dll
[2011.05.18 20:01:44 | 000,185,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iepeers.dll
[2011.05.18 20:01:44 | 000,057,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\licmgr10.dll
[2011.05.18 20:01:44 | 000,044,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\licmgr10.dll
[2011.05.18 20:01:43 | 000,482,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\html.iec
[2011.05.18 20:01:43 | 000,386,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\html.iec
[2011.05.18 20:01:43 | 000,247,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieui.dll
[2011.05.18 20:01:43 | 000,176,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieui.dll
[2011.05.18 20:01:43 | 000,097,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mshtmled.dll
[2011.05.18 20:01:43 | 000,067,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmled.dll
[2011.05.18 20:01:43 | 000,012,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msfeedssync.exe
[2011.05.18 20:01:43 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msfeedssync.exe
[2011.05.18 20:01:35 | 000,640,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winload.efi
[2011.05.18 20:01:35 | 000,603,976 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winload.exe
[2011.05.18 20:01:35 | 000,556,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winresume.efi
[2011.05.18 20:01:35 | 000,518,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winresume.exe
[2011.05.18 20:01:35 | 000,020,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\kdusb.dll
[2011.05.18 20:01:35 | 000,019,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\kd1394.dll
[2011.05.18 20:01:35 | 000,017,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\kdcom.dll
[2011.05.18 20:01:33 | 000,552,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msdri.dll
[2011.05.18 20:01:33 | 000,288,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MSNP.ax
[2011.05.18 20:01:33 | 000,204,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\MSNP.ax
[2011.05.18 20:01:12 | 000,267,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\FXSCOVER.exe
[2011.05.18 20:01:10 | 001,739,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntdll.dll
[2011.05.18 20:00:57 | 014,627,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wmp.dll
[2011.05.18 20:00:55 | 011,406,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wmp.dll
[2011.05.18 20:00:53 | 012,625,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wmploc.DLL
[2011.05.18 20:00:52 | 012,625,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wmploc.DLL
[2011.05.18 20:00:52 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Roaming\Miranda Fusion
[2011.05.18 20:00:50 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\MirandaFusion
[2011.05.18 20:00:45 | 000,954,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfc40.dll
[2011.05.18 20:00:45 | 000,954,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfc40u.dll
[2011.05.18 20:00:43 | 000,264,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\upnp.dll
[2011.05.18 20:00:43 | 000,204,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\upnp.dll
[2011.05.18 20:00:42 | 000,100,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\davclnt.dll
[2011.05.18 20:00:42 | 000,080,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\davclnt.dll
[2011.05.18 20:00:42 | 000,062,976 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wscapi.dll
[2011.05.18 20:00:42 | 000,051,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wscapi.dll
[2011.05.18 20:00:42 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\slwga.dll
[2011.05.18 20:00:42 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\slwga.dll
[2011.05.18 20:00:41 | 000,720,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\odbc32.dll
[2011.05.18 20:00:41 | 000,573,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\odbc32.dll
[2011.05.18 20:00:37 | 003,138,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mstscax.dll
[2011.05.18 20:00:37 | 002,690,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mstscax.dll
[2011.05.18 20:00:36 | 001,097,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mstsc.exe
[2011.05.18 20:00:36 | 001,034,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mstsc.exe
[2011.05.18 20:00:35 | 000,367,104 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\SysNative\atmfd.dll
[2011.05.18 20:00:35 | 000,294,912 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\atmfd.dll
[2011.05.18 20:00:35 | 000,046,080 | ---- | C] (Adobe Systems) -- C:\Windows\SysNative\atmlib.dll
[2011.05.18 20:00:35 | 000,034,304 | ---- | C] (Adobe Systems) -- C:\Windows\SysWow64\atmlib.dll
[2011.05.18 20:00:34 | 000,476,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XpsGdiConverter.dll
[2011.05.18 20:00:34 | 000,288,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XpsGdiConverter.dll
[2011.05.18 20:00:33 | 000,356,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dnsapi.dll
[2011.05.18 20:00:33 | 000,030,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dnscacheugc.exe
[2011.05.18 20:00:33 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dnscacheugc.exe
[2011.05.18 20:00:31 | 000,852,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript.dll
[2011.05.18 20:00:31 | 000,716,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\jscript.dll
[2011.05.18 20:00:31 | 000,612,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\vbscript.dll
[2011.05.18 20:00:28 | 001,395,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mfc42.dll
[2011.05.18 20:00:28 | 001,359,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mfc42u.dll
[2011.05.18 20:00:28 | 001,164,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfc42u.dll
[2011.05.18 20:00:28 | 001,137,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfc42.dll
[2011.05.18 20:00:26 | 001,024,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wmpmde.dll
[2011.05.18 20:00:26 | 000,738,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wmpmde.dll
[2011.05.18 20:00:25 | 000,395,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\webio.dll
[2011.05.18 20:00:25 | 000,314,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\webio.dll
[2011.05.18 20:00:24 | 000,633,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\comctl32.dll
[2011.05.18 20:00:24 | 000,214,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winsrv.dll
[2011.05.18 20:00:22 | 000,861,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\oleaut32.dll
[2011.05.18 20:00:20 | 000,031,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\prevhost.exe
[2011.05.18 20:00:20 | 000,031,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\prevhost.exe
[2011.05.18 20:00:19 | 000,112,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\consent.exe
[2011.05.18 20:00:19 | 000,027,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\Diskdump.sys
[2011.05.18 20:00:17 | 000,000,000 | ---D | C] -- C:\Programme\CCleaner
[2011.05.18 19:58:09 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\sscore.dll
[2011.05.18 19:52:31 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Roaming\Opera
[2011.05.18 19:52:28 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Roaming\OCS
[2011.05.18 19:52:01 | 000,000,000 | ---D | C] -- C:\Users\***\Documents\ICQ Lite
[2011.05.18 19:51:43 | 000,000,000 | ---D | C] -- C:\Programme\ICQLite
[2011.05.18 19:51:24 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\ICQLite
[2011.05.18 19:51:16 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Roaming\skypePM
[2011.05.18 19:51:14 | 000,000,000 | ---D | C] -- C:\ProgramData\Skype Extras
[2011.05.18 19:50:32 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Roaming\Skype
[2011.05.18 19:50:08 | 000,000,000 | R--D | C] -- C:\Program Files (x86)\Skype
[2011.05.18 19:50:08 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
[2011.05.18 19:50:08 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Skype
[2011.05.18 19:50:02 | 000,000,000 | ---D | C] -- C:\ProgramData\Skype
[2011.05.18 17:43:03 | 000,000,000 | ---D | C] -- C:\ProgramData\Sun
[2011.05.18 17:43:02 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Java
[2011.05.18 17:42:48 | 000,472,808 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\deployJava1.dll
[2011.05.18 17:42:48 | 000,157,472 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\javaws.exe
[2011.05.18 17:42:48 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\javaw.exe
[2011.05.18 17:42:48 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\java.exe
[2011.05.18 17:42:41 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Java
[2011.05.18 17:37:06 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\JDownloader
[2011.05.18 17:35:00 | 000,000,000 | -H-D | C] -- C:\$AVG
[2011.05.18 17:34:04 | 000,000,000 | ---D | C] -- C:\Windows\Panther
[2011.05.18 17:26:01 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Roaming\ATI
[2011.05.18 17:26:01 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Local\ATI
[2011.05.18 17:26:01 | 000,000,000 | ---D | C] -- C:\ProgramData\ATI
[2011.05.18 17:25:57 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Catalyst Control Center
[2011.05.18 17:25:42 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\ATI Technologies
[2011.05.18 17:08:28 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Roaming\Macromedia
[2011.05.18 17:08:28 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Roaming\Adobe
[2011.05.18 17:03:23 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Roaming\AVG10
[2011.05.18 17:03:00 | 000,000,000 | -H-D | C] -- C:\ProgramData\Common Files
[2011.05.18 17:02:12 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\AVG
[2011.05.18 17:01:23 | 000,000,000 | ---D | C] -- C:\Programme\Common Files\ATI Technologies
[2011.05.18 17:01:23 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\ATI Technologies
[2011.05.18 17:01:01 | 000,000,000 | ---D | C] -- C:\Programme\ATI Technologies
[2011.05.18 17:00:59 | 000,000,000 | ---D | C] -- C:\Programme\ATI
[2011.05.18 17:00:52 | 000,000,000 | ---D | C] -- C:\ProgramData\MFAData
[2011.05.18 16:59:56 | 000,404,640 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
[2011.05.18 16:59:56 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\Macromed
[2011.05.18 16:59:41 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\AMD APP
[2011.05.18 16:59:29 | 000,000,000 | -HSD | C] -- C:\Windows\Installer
[2011.05.18 16:59:27 | 000,000,000 | ---D | C] -- C:\ATI
[2011.05.18 16:45:25 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Roaming\Mozilla
[2011.05.18 16:45:25 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Local\Mozilla
[2011.05.18 16:45:22 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Mozilla Firefox
[2011.05.18 16:42:00 | 000,000,000 | R--D | C] -- C:\Users\***\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
[2011.05.18 16:42:00 | 000,000,000 | R--D | C] -- C:\Users\***\Searches
[2011.05.18 16:42:00 | 000,000,000 | R--D | C] -- C:\Users\***\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
[2011.05.18 16:41:50 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Roaming\Identities
[2011.05.18 16:41:48 | 000,000,000 | R--D | C] -- C:\Users\***\Contacts
[2011.05.18 16:41:47 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Local\VirtualStore
[2011.05.18 16:41:38 | 000,000,000 | -HSD | C] -- C:\Users\***\AppData\Local\Temporary Internet Files
[2011.05.18 16:41:37 | 000,000,000 | --SD | C] -- C:\Users\***\AppData\Roaming\Microsoft
[2011.05.18 16:41:37 | 000,000,000 | R--D | C] -- C:\Users\***\Videos
[2011.05.18 16:41:37 | 000,000,000 | R--D | C] -- C:\Users\***\Saved Games
[2011.05.18 16:41:37 | 000,000,000 | R--D | C] -- C:\Users\***\Pictures
[2011.05.18 16:41:37 | 000,000,000 | R--D | C] -- C:\Users\***\Music
[2011.05.18 16:41:37 | 000,000,000 | R--D | C] -- C:\Users\***\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
[2011.05.18 16:41:37 | 000,000,000 | R--D | C] -- C:\Users\***\Links
[2011.05.18 16:41:37 | 000,000,000 | R--D | C] -- C:\Users\***\Favorites
[2011.05.18 16:41:37 | 000,000,000 | R--D | C] -- C:\Users\***\Downloads
[2011.05.18 16:41:37 | 000,000,000 | R--D | C] -- C:\Users\***\Documents
[2011.05.18 16:41:37 | 000,000,000 | R--D | C] -- C:\Users\***\Desktop
[2011.05.18 16:41:37 | 000,000,000 | R--D | C] -- C:\Users\***\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
[2011.05.18 16:41:37 | 000,000,000 | -HSD | C] -- C:\Users\***\Vorlagen
[2011.05.18 16:41:37 | 000,000,000 | -HSD | C] -- C:\Users\***\AppData\Local\Verlauf
[2011.05.18 16:41:37 | 000,000,000 | -HSD | C] -- C:\Users\***\Startmenü
[2011.05.18 16:41:37 | 000,000,000 | -HSD | C] -- C:\Users\***\SendTo
[2011.05.18 16:41:37 | 000,000,000 | -HSD | C] -- C:\Users\***\Recent
[2011.05.18 16:41:37 | 000,000,000 | -HSD | C] -- C:\Users\***\Netzwerkumgebung
[2011.05.18 16:41:37 | 000,000,000 | -HSD | C] -- C:\Users\***\Lokale Einstellungen
[2011.05.18 16:41:37 | 000,000,000 | -HSD | C] -- C:\Users\***\Documents\Eigene Videos
[2011.05.18 16:41:37 | 000,000,000 | -HSD | C] -- C:\Users\***\Documents\Eigene Musik
[2011.05.18 16:41:37 | 000,000,000 | -HSD | C] -- C:\Users\***\Eigene Dateien
[2011.05.18 16:41:37 | 000,000,000 | -HSD | C] -- C:\Users\***\Documents\Eigene Bilder
[2011.05.18 16:41:37 | 000,000,000 | -HSD | C] -- C:\Users\***\Druckumgebung
[2011.05.18 16:41:37 | 000,000,000 | -HSD | C] -- C:\Users\***\Cookies
[2011.05.18 16:41:37 | 000,000,000 | -HSD | C] -- C:\Users\***\AppData\Local\Anwendungsdaten
[2011.05.18 16:41:37 | 000,000,000 | -HSD | C] -- C:\Users\***\Anwendungsdaten
[2011.05.18 16:41:37 | 000,000,000 | -H-D | C] -- C:\Users\***\AppData
[2011.05.18 16:41:37 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Local\Temp
[2011.05.18 16:41:37 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Local\Microsoft
[2011.05.18 16:41:37 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Roaming\Media Center Programs
[2011.05.18 16:40:12 | 000,000,000 | -HSD | C] -- C:\ProgramData\Vorlagen
[2011.05.18 16:40:12 | 000,000,000 | -HSD | C] -- C:\ProgramData\Startmenü
[2011.05.18 16:40:12 | 000,000,000 | -HSD | C] -- C:\Recovery
[2011.05.18 16:40:12 | 000,000,000 | -HSD | C] -- C:\Programme
[2011.05.18 16:40:12 | 000,000,000 | -HSD | C] -- C:\Programme\Gemeinsame Dateien
[2011.05.18 16:40:12 | 000,000,000 | -HSD | C] -- C:\ProgramData\Favoriten
[2011.05.18 16:40:12 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Eigene Videos
[2011.05.18 16:40:12 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Eigene Musik
[2011.05.18 16:40:12 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Eigene Bilder
[2011.05.18 16:40:12 | 000,000,000 | -HSD | C] -- C:\Dokumente und Einstellungen
[2011.05.18 16:40:12 | 000,000,000 | -HSD | C] -- C:\ProgramData\Dokumente
[2011.05.18 16:40:12 | 000,000,000 | -HSD | C] -- C:\ProgramData\Anwendungsdaten
[2011.05.18 16:37:36 | 000,000,000 | ---D | C] -- C:\Windows\SoftwareDistribution
[2011.05.18 16:35:26 | 000,000,000 | ---D | C] -- C:\Windows\Prefetch
[2011.05.18 16:34:43 | 000,000,000 | -HSD | C] -- C:\System Volume Information
[2011.05.05 01:27:58 | 000,051,712 | ---- | C] (Khronos Group) -- C:\Windows\SysWow64\OpenCL.dll
[2011.05.05 01:27:42 | 012,385,280 | ---- | C] (Advanced Micro Devices Inc.) -- C:\Windows\SysWow64\amdocl.dll
 
========== Files - Modified Within 30 Days ==========
 
[2011.05.21 15:38:33 | 001,498,506 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2011.05.21 15:38:33 | 000,653,928 | ---- | M] () -- C:\Windows\SysNative\perfh007.dat
[2011.05.21 15:38:33 | 000,615,810 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2011.05.21 15:38:33 | 000,129,800 | ---- | M] () -- C:\Windows\SysNative\perfc007.dat
[2011.05.21 15:38:33 | 000,106,190 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2011.05.21 15:34:47 | 000,001,376 | ---- | M] () -- C:\Users\***\Desktop\TrueCrypt.exe - Verknüpfung.lnk
[2011.05.21 15:32:14 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2011.05.21 14:36:50 | 000,001,109 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
[2011.05.21 13:50:48 | 000,001,137 | ---- | M] () -- C:\Users\***\Desktop\Super Flexible File Synchronizer.lnk
[2011.05.21 13:37:52 | 000,003,468 | ---- | M] () -- C:\Users\***\Documents\Frauen haben sex wann sie wollen.mht
[2011.05.21 09:32:59 | 000,017,168 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2011.05.21 09:32:59 | 000,017,168 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2011.05.21 09:30:57 | 115,529,851 | ---- | M] () -- C:\Windows\SysNative\drivers\AVG\incavi.avm
[2011.05.21 09:26:25 | 000,000,056 | -H-- | M] () -- C:\Windows\SysWow64\ezsidmv.dat
[2011.05.20 20:16:05 | 000,000,963 | ---- | M] () -- C:\Users\Public\Desktop\Xfire.lnk
[2011.05.20 07:21:01 | 000,001,254 | ---- | M] () -- C:\Users\***\Desktop\SteamLess Counter Strike Source.lnk
[2011.05.19 21:15:43 | 000,001,278 | ---- | M] () -- C:\Users\***\Desktop\shutdown.lnk
[2011.05.19 19:18:00 | 000,001,223 | ---- | M] () -- C:\Users\***\Desktop\net.lnk
[2011.05.19 19:16:08 | 000,001,066 | ---- | M] () -- C:\Users\Public\Desktop\VLC media player.lnk
[2011.05.19 19:11:32 | 000,000,969 | ---- | M] () -- C:\Users\Public\Desktop\AVG 2011.lnk
[2011.05.19 19:11:31 | 000,000,000 | ---- | M] () -- C:\Windows\SysWow64\drivers\AVG\incavi.avm
[2011.05.19 19:11:31 | 000,000,000 | ---- | M] () -- C:\Windows\SysWow64\drivers\AVG\iavichjw.avm
[2011.05.19 18:25:35 | 000,015,188 | ---- | M] () -- C:\Users\***\Documents\cc_20110519_182532.reg
[2011.05.19 18:18:03 | 000,286,136 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
[2011.05.19 17:53:29 | 000,000,400 | ---- | M] () -- C:\Windows\ODBC.INI
[2011.05.19 17:42:23 | 000,000,000 | -H-- | M] () -- C:\Windows\SysNative\drivers\Msft_User_WpdFs_01_09_00.Wdf
[2011.05.19 17:26:51 | 000,001,482 | ---- | M] () -- C:\Users\***\Desktop\JDownloader - Verknüpfung.lnk
[2011.05.19 16:09:15 | 000,002,209 | ---- | M] () -- C:\Users\Public\Desktop\TuneUp 1-Klick-Wartung.lnk
[2011.05.19 16:09:15 | 000,002,189 | ---- | M] () -- C:\Users\Public\Desktop\TuneUp Utilities 2011.lnk
[2011.05.19 16:03:58 | 000,001,885 | ---- | M] () -- C:\Users\***\Desktop\UltraISO.lnk
[2011.05.19 15:28:52 | 000,000,020 | ---- | M] () -- C:\Windows\SysWow64\SYSTEM
[2011.05.19 08:10:41 | 000,230,352 | ---- | M] (TrueCrypt Foundation) -- C:\Windows\SysNative\drivers\truecrypt.sys
[2011.05.18 20:00:54 | 000,001,280 | ---- | M] () -- C:\Users\***\Desktop\Miranda Fusion.lnk
[2011.05.18 20:00:18 | 000,000,822 | ---- | M] () -- C:\Users\Public\Desktop\CCleaner.lnk
[2011.05.18 19:40:17 | 000,001,255 | ---- | M] () -- C:\Users\***\Desktop\Downloads - Verknüpfung.lnk
[2011.05.18 17:42:42 | 000,472,808 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\deployJava1.dll
[2011.05.18 17:42:42 | 000,157,472 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\javaws.exe
[2011.05.18 17:42:42 | 000,145,184 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\javaw.exe
[2011.05.18 17:42:42 | 000,145,184 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\java.exe
[2011.05.18 17:05:02 | 000,000,000 | ---- | M] () -- C:\Windows\ativpsrm.bin
[2011.05.18 16:59:56 | 000,404,640 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
[2011.05.18 16:40:48 | 000,000,009 | RHS- | M] () -- C:\Windows\installed
[2011.05.18 16:38:13 | 000,057,050 | ---- | M] () -- C:\Windows\SysWow64\license.rtf
[2011.05.18 16:38:13 | 000,057,050 | ---- | M] () -- C:\Windows\SysNative\license.rtf
[2011.05.05 01:28:10 | 000,059,904 | ---- | M] () -- C:\Windows\SysWow64\OVDecode.dll
[2011.05.05 01:27:58 | 000,051,712 | ---- | M] (Khronos Group) -- C:\Windows\SysWow64\OpenCL.dll
[2011.05.05 01:27:42 | 012,385,280 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Windows\SysWow64\amdocl.dll
 
========== Files Created - No Company Name ==========
 
[2011.05.21 15:34:47 | 000,001,376 | ---- | C] () -- C:\Users\***\Desktop\TrueCrypt.exe - Verknüpfung.lnk
[2011.05.21 14:36:50 | 000,001,109 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
[2011.05.21 13:50:48 | 000,001,137 | ---- | C] () -- C:\Users\***\Desktop\Super Flexible File Synchronizer.lnk
[2011.05.21 13:37:52 | 000,003,468 | ---- | C] () -- C:\Users\***\Documents\Frauen haben sex wann sie wollen.mht
[2011.05.21 09:30:57 | 115,529,851 | ---- | C] () -- C:\Windows\SysNative\drivers\AVG\incavi.avm
[2011.05.21 09:26:25 | 000,000,056 | -H-- | C] () -- C:\Windows\SysWow64\ezsidmv.dat
[2011.05.20 20:16:05 | 000,000,963 | ---- | C] () -- C:\Users\Public\Desktop\Xfire.lnk
[2011.05.20 07:21:01 | 000,001,254 | ---- | C] () -- C:\Users\***\Desktop\SteamLess Counter Strike Source.lnk
[2011.05.19 21:14:18 | 000,001,278 | ---- | C] () -- C:\Users\***\Desktop\shutdown.lnk
[2011.05.19 19:17:09 | 000,001,223 | ---- | C] () -- C:\Users\***\Desktop\net.lnk
[2011.05.19 19:16:08 | 000,001,066 | ---- | C] () -- C:\Users\Public\Desktop\VLC media player.lnk
[2011.05.19 19:11:32 | 000,000,969 | ---- | C] () -- C:\Users\Public\Desktop\AVG 2011.lnk
[2011.05.19 19:11:31 | 000,000,000 | ---- | C] () -- C:\Windows\SysWow64\drivers\AVG\incavi.avm
[2011.05.19 19:11:31 | 000,000,000 | ---- | C] () -- C:\Windows\SysWow64\drivers\AVG\iavichjw.avm
[2011.05.19 18:25:34 | 000,015,188 | ---- | C] () -- C:\Users\***\Documents\cc_20110519_182532.reg
[2011.05.19 17:53:29 | 000,000,400 | ---- | C] () -- C:\Windows\ODBC.INI
[2011.05.19 17:42:23 | 000,000,000 | -H-- | C] () -- C:\Windows\SysNative\drivers\Msft_User_WpdFs_01_09_00.Wdf
[2011.05.19 17:26:51 | 000,001,482 | ---- | C] () -- C:\Users\***\Desktop\JDownloader - Verknüpfung.lnk
[2011.05.19 16:07:11 | 000,002,209 | ---- | C] () -- C:\Users\Public\Desktop\TuneUp 1-Klick-Wartung.lnk
[2011.05.19 16:07:11 | 000,002,189 | ---- | C] () -- C:\Users\Public\Desktop\TuneUp Utilities 2011.lnk
[2011.05.19 16:07:09 | 000,002,201 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TuneUp Utilities 2011.lnk
[2011.05.19 16:03:58 | 000,001,885 | ---- | C] () -- C:\Users\***\Desktop\UltraISO.lnk
[2011.05.19 15:28:52 | 000,000,020 | ---- | C] () -- C:\Windows\SysWow64\SYSTEM
[2011.05.18 20:00:54 | 000,001,280 | ---- | C] () -- C:\Users\***\Desktop\Miranda Fusion.lnk
[2011.05.18 20:00:18 | 000,000,822 | ---- | C] () -- C:\Users\Public\Desktop\CCleaner.lnk
[2011.05.18 19:40:17 | 000,001,255 | ---- | C] () -- C:\Users\***\Desktop\Downloads - Verknüpfung.lnk
[2011.05.18 17:38:09 | 000,001,966 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\JDownloader.lnk
[2011.05.18 17:38:09 | 000,001,945 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\JDownloader Deinstallationsprogramm.lnk
[2011.05.18 17:38:08 | 000,001,924 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\JDownloader Update.lnk
[2011.05.18 17:05:02 | 000,000,000 | ---- | C] () -- C:\Windows\ativpsrm.bin
[2011.05.18 16:42:07 | 000,001,405 | ---- | C] () -- C:\Users\***\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer (64-bit).lnk
[2011.05.18 16:42:03 | 000,001,439 | ---- | C] () -- C:\Users\***\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
[2011.05.18 16:40:48 | 000,000,009 | RHS- | C] () -- C:\Windows\installed
[2011.05.18 16:37:59 | 000,001,345 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Media Center.lnk
[2011.05.18 16:37:50 | 000,001,326 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows DVD Maker.lnk
[2011.05.05 01:28:10 | 000,059,904 | ---- | C] () -- C:\Windows\SysWow64\OVDecode.dll
[2011.04.08 13:32:12 | 000,041,872 | ---- | C] () -- C:\Windows\SysWow64\xfcodec.dll
[2011.03.17 19:51:44 | 000,003,929 | ---- | C] () -- C:\Windows\SysWow64\atipblag.dat
[2009.07.14 07:38:36 | 000,067,584 | --S- | C] () -- C:\Windows\bootstat.dat
[2009.07.14 04:35:51 | 000,000,741 | ---- | C] () -- C:\Windows\SysWow64\NOISE.DAT
[2009.07.14 04:34:42 | 000,215,943 | ---- | C] () -- C:\Windows\SysWow64\dssec.dat
[2009.07.14 02:10:29 | 000,043,131 | ---- | C] () -- C:\Windows\mib.bin
[2009.07.14 01:42:10 | 000,064,000 | ---- | C] () -- C:\Windows\SysWow64\BWContextHandler.dll
[2009.07.13 23:03:59 | 000,364,544 | ---- | C] () -- C:\Windows\SysWow64\msjetoledb40.dll
[2009.06.26 17:24:18 | 000,015,498 | ---- | C] () -- C:\Windows\VX3000.ini
[2009.06.10 23:26:10 | 000,673,088 | ---- | C] () -- C:\Windows\SysWow64\mlang.dat

< End of report >
         
--- --- ---

Extras Log von OTLOTL Logfile:
Code:
ATTFilter
OTL Extras logfile created on: 21.05.2011 15:37:00 - Run 2
OTL by OldTimer - Version 3.2.22.3     Folder = C:\Users\diggerderbe\Downloads
64bit- Ultimate Edition  (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7600.16385)
Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy
 
3,00 Gb Total Physical Memory | 2,00 Gb Available Physical Memory | 51,00% Memory free
6,00 Gb Paging File | 5,00 Gb Available in Paging File | 71,00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 465,66 Gb Total Space | 290,00 Gb Free Space | 62,28% Space Free | Partition Type: NTFS
Drive E: | 100,00 Mb Total Space | 61,64 Mb Free Space | 61,65% Space Free | Partition Type: NTFS
Drive G: | 465,76 Gb Total Space | 256,35 Gb Free Space | 55,04% Space Free | Partition Type: NTFS
Drive I: | 1863,01 Gb Total Space | 1672,95 Gb Free Space | 89,80% Space Free | Partition Type: NTFS
 
Computer Name: DIGGERDERBE-PC | User Name: diggerderbe | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
 
========== Extra Registry (SafeList) ==========
 
 
========== File Associations ==========
 
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.url[@ = InternetShortcut] -- C:\Windows\SysNative\rundll32.exe (Microsoft Corporation)
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation)
 
[HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation)
 
========== Shell Spawning ==========
 
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %* File not found
cmdfile [open] -- "%1" %* File not found
comfile [open] -- "%1" %* File not found
exefile [open] -- "%1" %* File not found
helpfile [open] -- Reg Error: Key error.
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [open] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %* File not found
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1" File not found
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l File not found
scrfile [open] -- "%1" /S File not found
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1 File not found
Directory [AddToPlaylistVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
 
========== Security Center Settings ==========
 
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
 
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
 
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = 28 4D B2 76 41 04 CA 01  [binary data]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
 
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
 
========== Firewall Settings ==========
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
 
========== Authorized Applications List ==========
 
 
========== HKEY_LOCAL_MACHINE Uninstall List ==========
 
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{0E3DAF3D-FF69-345A-A99E-1FED304CA083}" = Microsoft .NET Framework 4 Client Profile DEU Language Pack
"{503F672D-6C84-448A-8F8F-4BC35AC83441}" = AMD APP SDK Runtime
"{5DF57DB1-D971-3DA3-B4BB-F6FC7D73A997}" = AMD Drag and Drop Transcoding
"{6965A8D2-465D-4F98-9FAA-0E9E2348F329}" = Microsoft LifeCam
"{9C5A08BF-BB99-4998-81BD-F6CC32483B34}" = Microsoft Corporation
"{D845A5FD-5217-CF61-D3CD-7C0B04EAAA91}" = ccc-utility64
"{DA5E371C-6333-3D8A-93A4-6FD5B20BCC6E}" = Microsoft Visual C++ 2010  x64 Redistributable - 10.0.30319
"{DC7333D1-596A-404D-876D-446E6D27BA20}" = AVG 2011
"{DD99C9BF-5A9C-25B5-EF7D-AA9A0DB12800}" = ATI Catalyst Install Manager
"{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}" = Microsoft .NET Framework 4 Client Profile
"{FF74BAA3-4185-437E-92CC-A442BAF0FE83}" = AVG 2011
"AVG" = AVG 2011
"CCleaner" = CCleaner
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Microsoft .NET Framework 4 Client Profile DEU Language Pack" = Microsoft .NET Framework 4 Client Profile DEU Language Pack
"WinRAR archiver" = WinRAR 4.00 (64-Bit)
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{021C4C4F-C93C-4425-BFFD-C2D16776BFAE}" = Visual C++ 8.0 Runtime Setup Package (x64)
"{0824775C-95D6-4BC8-0DD7-C94301772513}" = CCC Help Polish
"{19A492A0-888F-44A0-9B21-D91700763F62}" = Catalyst Control Center - Branding
"{1EF75528-84BD-BC72-3B92-AEDA72F533B8}" = CCC Help English
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{24036256-BFDB-4CD3-BE8A-A3D6160F2E16}" = TuneUp Utilities 2011
"{2487D2B0-3074-2FAF-5EBD-45E3A49646D1}" = Catalyst Control Center Graphics Previews Common
"{26A24AE4-039D-4CA4-87B4-2F83216025FF}" = Java(TM) 6 Update 25
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4B75AD45-EDE9-E9E5-7667-4A599CA84B62}" = CCC Help German
"{5106320C-CE3D-2C13-DBAB-5C51E157BA9C}" = CCC Help Spanish
"{5335DADB-34BA-4AE8-A519-648D78498846}" = Skype™ 5.3
"{5D4C60AA-84E6-4E1A-8A68-69970D387BE1}" = TuneUp Utilities Language Pack (de-DE)
"{6212AE43-3598-E347-79D9-11BC006BF279}" = CCC Help Italian
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{8768F512-88F2-9BFA-9C6E-C707D06B908B}" = CCC Help Hungarian
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{90110407-6000-11D3-8CFE-0150048383C9}" = Microsoft Office Professional Edition 2003
"{937D6094-AAEE-3D43-FDD5-CAEA2FC704F1}" = Catalyst Control Center InstallProxy
"{9EE02BFF-41F8-915F-71B0-6EAF353F60D0}" = Catalyst Control Center
"{B0B458E0-C8E2-254B-5B44-7DF1FA3FDFD2}" = Catalyst Control Center Localization All
"{B3BC9DB1-0B0A-48B0-B86B-EA77CAA7F800}" = Microsoft Corporation
"{B913D63A-8B4A-9E4B-88D5-8D560F66F888}" = CCC Help French
"{C2A94C7B-F329-C598-B3C3-EEA022252988}" = CCC Help Greek
"{E7163430-93FE-017F-9A56-F5F8612A8C0A}" = CCC Help Portuguese
"{FCDBEA60-79F0-4FAE-BBA8-55A26C609A49}" = Visual Studio 2008 x64 Redistributables
"1489-3350-5074-6281" = JDownloader 0.9
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"EvJO Wallpaper Changer_is1" = EvJO Wallpaper Changer v3.1
"Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware
"MirandaFusion" = Miranda Fusion 3.0.16
"Mozilla Firefox 4.0.1 (x86 de)" = Mozilla Firefox 4.0.1 (x86 de)
"Steamless Counter Strike Source Pack" = Steamless Counter Strike Source Pack
"Super Flexible File Synchronizer_is1" = Super Flexible File Synchronizer 5.46a
"TrueCrypt" = TrueCrypt
"TuneUp Utilities 2011" = TuneUp Utilities 2011
"UltraISO_is1" = UltraISO Premium V9.35
"VLC media player" = VLC media player 1.1.9
"Xfire" = Xfire (remove only)
 
========== Last 10 Event Log Errors ==========
 
[ Application Events ]
Error - 20.05.2011 01:28:20 | Computer Name = diggerderbe-PC | Source = VSS | ID = 8193
Description = 
 
Error - 20.05.2011 01:28:20 | Computer Name = diggerderbe-PC | Source = System Restore | ID = 8193
Description = 
 
Error - 20.05.2011 04:04:49 | Computer Name = diggerderbe-PC | Source = VSS | ID = 13
Description = 
 
Error - 20.05.2011 04:04:49 | Computer Name = diggerderbe-PC | Source = VSS | ID = 12292
Description = 
 
Error - 20.05.2011 04:04:49 | Computer Name = diggerderbe-PC | Source = VSS | ID = 8193
Description = 
 
Error - 20.05.2011 04:04:49 | Computer Name = diggerderbe-PC | Source = System Restore | ID = 8193
Description = 
 
Error - 21.05.2011 03:29:10 | Computer Name = diggerderbe-PC | Source = VSS | ID = 13
Description = 
 
Error - 21.05.2011 03:29:10 | Computer Name = diggerderbe-PC | Source = VSS | ID = 12292
Description = 
 
Error - 21.05.2011 03:29:10 | Computer Name = diggerderbe-PC | Source = VSS | ID = 8193
Description = 
 
Error - 21.05.2011 03:29:10 | Computer Name = diggerderbe-PC | Source = System Restore | ID = 8193
Description = 
 
[ System Events ]
Error - 21.05.2011 03:26:00 | Computer Name = diggerderbe-PC | Source = WMPNetworkSvc | ID = 866300
Description = 
 
Error - 21.05.2011 03:26:01 | Computer Name = diggerderbe-PC | Source = WMPNetworkSvc | ID = 866300
Description = 
 
Error - 21.05.2011 03:26:01 | Computer Name = diggerderbe-PC | Source = Service Control Manager | ID = 7001
Description = Der Dienst "Heimnetzgruppen-Anbieter" ist vom Dienst "Funktionssuchanbieter-Host"
 abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde:   %%1058
 
Error - 21.05.2011 03:26:05 | Computer Name = diggerderbe-PC | Source = WMPNetworkSvc | ID = 866300
Description = 
 
Error - 21.05.2011 09:24:11 | Computer Name = diggerderbe-PC | Source = Ntfs | ID = 262281
Description = Auf dem Volume "G:" konnte der Transaktionsressourcen-Manager aufgrund
 eines nicht wiederholbaren Fehlers nicht gestartet werden. Der Fehlercode ist in
 den Daten enthalten.
 
Error - 21.05.2011 09:30:48 | Computer Name = diggerderbe-PC | Source = Ntfs | ID = 262281
Description = Auf dem Volume "G:" konnte der Transaktionsressourcen-Manager aufgrund
 eines nicht wiederholbaren Fehlers nicht gestartet werden. Der Fehlercode ist in
 den Daten enthalten.
 
Error - 21.05.2011 09:30:57 | Computer Name = diggerderbe-PC | Source = DCOM | ID = 10010
Description = 
 
Error - 21.05.2011 09:31:15 | Computer Name = diggerderbe-PC | Source = DCOM | ID = 10010
Description = 
 
Error - 21.05.2011 09:32:54 | Computer Name = diggerderbe-PC | Source = Service Control Manager | ID = 7001
Description = Der Dienst "Heimnetzgruppen-Anbieter" ist vom Dienst "Funktionssuchanbieter-Host"
 abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde:   %%1058
 
Error - 21.05.2011 09:33:08 | Computer Name = diggerderbe-PC | Source = Service Control Manager | ID = 7001
Description = Der Dienst "Heimnetzgruppen-Anbieter" ist vom Dienst "Funktionssuchanbieter-Host"
 abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde:   %%1058
 
 
< End of report >
         
--- --- ---

Und jetzt bete ich und hoffe ich das es noch eine letzte Möglichkeit gibt meine Hardware zu retten.

Geändert von diggerderbe (21.05.2011 um 15:29 Uhr) Grund: OTL Extras log vergessen

Alt 23.05.2011, 12:19   #2
cosinus
/// Winkelfunktion
/// TB-Süch-Tiger™
 
Virus klaut/löscht Daten; Hardware infiziert? - Standard

Virus klaut/löscht Daten; Hardware infiziert?



Du hast sauber formatiert und neu installiert? Alles von vertrauenswürdigen Medien?
Ausführbare Dateien vom inifzierten System wurden nicht übernommen/ausgeführt auf dem frisch installierten Windows?

Zitat:
Und jetzt bete ich und hoffe ich das es noch eine letzte Möglichkeit gibt meine Hardware zu retten
Wieso Hardware retten? Nach einer Infektion spielt man das System neu auf, dann sind die Infektionen sicher weg.
__________________

__________________

Antwort

Themen zu Virus klaut/löscht Daten; Hardware infiziert?
.dll, 0x00000001, 100%, 64-bit, adobe, autorun, avg, bho, bluescreen, c:\windows\system32\rundll32.exe, daten, entfernen, error, explorer, firefox, fremdeinwirkung, hardware, infiziert, infiziert?, install.exe, klaut, langs, logfile, löscht, microsoft, mozilla, neu, oldtimer, plug-in, programme, quelldatei, registry, searchplugins, shell32.dll, shortcut, software, start menu, stick, stimme, studio, syswow64, usb, viren, virus, virus total, visual studio, webcheck, windows, windows xp




Ähnliche Themen: Virus klaut/löscht Daten; Hardware infiziert?


  1. PC löscht alle Daten von USB-Sticks
    Plagegeister aller Art und deren Bekämpfung - 11.10.2015 (2)
  2. Adw Cleaner zeigt immer noch in Scheduled tasks Daten an die der Cleaner nicht Löscht
    Log-Analyse und Auswertung - 23.08.2015 (5)
  3. PC löscht einfach so Daten?
    Plagegeister aller Art und deren Bekämpfung - 18.03.2015 (1)
  4. Virus der Avira löscht
    Alles rund um Windows - 27.05.2014 (9)
  5. PC zur Datensicherung infiziert - Rettung der Daten
    Log-Analyse und Auswertung - 20.08.2013 (16)
  6. Panasonic BlueRay löscht Daten von externer Festplatte
    Netzwerk und Hardware - 17.04.2013 (2)
  7. Festplatte infiziert! Daten löschen sich!
    Plagegeister aller Art und deren Bekämpfung - 28.09.2012 (5)
  8. FTP Daten durch Trojaner ausgesät? Webseite wurde per FTP mit Code infiziert!
    Log-Analyse und Auswertung - 20.04.2012 (4)
  9. TR/Crypt.ZPACK.Gen2 löscht Pfade und löscht progs und Verknüpfungen
    Plagegeister aller Art und deren Bekämpfung - 06.11.2011 (1)
  10. Festplatte löscht Daten undwideruflich!
    Überwachung, Datenschutz und Spam - 29.05.2011 (1)
  11. Virus hat alles infiziert(muss meine daten retten)
    Plagegeister aller Art und deren Bekämpfung - 15.04.2011 (9)
  12. Klaut Opera Daten?
    Diskussionsforum - 10.03.2010 (10)
  13. infiziert oder altersschwache hardware?
    Log-Analyse und Auswertung - 17.09.2009 (2)
  14. Virus der AntiVir&Co löscht
    Log-Analyse und Auswertung - 14.01.2008 (4)
  15. Virus löscht Dateien?
    Plagegeister aller Art und deren Bekämpfung - 15.11.2006 (4)
  16. virus der mir daten klaut?!
    Log-Analyse und Auswertung - 30.09.2006 (10)
  17. Trojaner? on Board- löscht alle Sys daten - immer wieder
    Plagegeister aller Art und deren Bekämpfung - 12.03.2004 (4)

Zum Thema Virus klaut/löscht Daten; Hardware infiziert? - Hallo zusammen, Ich habe mir am Mittwoch einen Virus per USB eigefangen. (war leider meine eigene Schuld ich wusste das der Stick verseucht war ) Da alle meine Programme im - Virus klaut/löscht Daten; Hardware infiziert?...
Archiv
Du betrachtest: Virus klaut/löscht Daten; Hardware infiziert? auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.