|
Internet Explorer öffnet sich immer + Werbung Hallo Community, ich habe seit vorgestern folgendes Problem... Bestimmt 2 Mal in der Stunde öffnet sich mein internet explorer ein paar mal und zeigt mir irgendwelche Webseiten an (meist Werbung enthalten!) Hab Bitdefender 2010 auf meinem PC als Antivirus Programm. Bisher noch nichts gefunden,dass dieses Problem lösen könnte. Hatte bis vor ner Woche noch Windows 7 drauf. Aufgrundessen,dass ich neue Recovery Disks bekommen habe,hab ich mir direkt wieder Vista aufgespielt und nun.. joa :heulen: habe keine Lust wieder zu formatieren. )= hoffe ihr könnt mir helfen.. hier ebend meine HiJackThis Auswertung... Zitat:
Zitat:
Danke schonmal im Vorraus. Mit freundlichen Grüßen |
Hallo :hallo: Bitte als Vista 64 bit Nutzer alle folgenden Programme per Rechtsklick -> Ausführen als Administrator starten: Die schnellste und sicherste Methode ist das Neuaufsetzen wenn Du jedoch doch bereinigen möchtest geht es hier entlang: 1. Malwarebytes - Lasse Malwarebytes laufen, wenn die Setup NICHT starten möchte benenn es um zu blubb.exe. Wenn es durch ist per Vollständiger Scan bitte das Log posten. 2. Superantispyware - Lasse SASW laufen, poste danach alle Funde. 3. Avira Antivir in den Einstellungen nochmal "Rennen" lassen: Agressive Einstellungen von Avira AntiVir Log von dem Avira Scan. 4. http://www.trojaner-board.de/74908-a...t-scanner.html bitte ebenfalls laufen lassen, Log hier her. 5. http://www.trojaner-board.de/74910-a...tion-tool.html Logs posten (Beide Logfiles bitte hier herein posten). |
Zitat:
SuperSpyware hat 147 Funde aber alle entfernt..hab keine Ahnung wo die Log ist. Habe kein Antivir drauf sondern Bitdenfener. Log: nichts gefunden? |
[CODE]Logfile of random's system information tool 1.06 (written by random/random) Run by takedown at 2009-10-13 01:04:13 Microsoft® Windows Vista™ Home Premium Service Pack 2 System drive C: has 780 GB (83%) free of 939 GB Total RAM: 4094 MB (60% free) Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 01:04:14, on 13.10.2009 Platform: Windows Vista SP2 (WinNT 6.00.1906) MSIE: Internet Explorer v8.00 (8.00.6001.18813) Boot mode: Normal Running processes: C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAAnotif.exe C:\Program Files (x86)\QIP 2005 psYNovA-Edition\qip.exe C:\Program Files (x86)\FirefoxPreloader\FirefoxPreloader.exe C:\Program Files (x86)\Java\jre6\bin\jusched.exe C:\Program Files\Logitech\Logitech WebCam Software\LWS.exe C:\Program Files (x86)\iTunes\iTunesHelper.exe C:\Program Files (x86)\Common Files\Logishrd\LQCVFX\COCIManager.exe C:\Windows\SysWOW64\conime.exe C:\Program Files (x86)\Mozilla Firefox\firefox.exe C:\Users\takedown\Desktop\RSIT.exe C:\Program Files (x86)\Trend Micro\HijackThis\takedown.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.com R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157 R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = O1 - Hosts: ::1 localhost O2 - BHO: Windows Live Anmelde-Hilfsprogramm - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll O3 - Toolbar: BitDefender Toolbar - {381FFDE8-2394-4f90-B10D-FC6124A40F8C} - "C:\Program Files\BitDefender\BitDefender 2010\Antispam32\IEToolbar.dll" (file missing) O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Java\jre6\bin\jusched.exe" O4 - HKLM\..\Run: [LogitechQuickCamRibbon] "C:\Program Files\Logitech\Logitech WebCam Software\LWS.exe" /hide O4 - HKLM\..\Run: [WinampAgent] "C:\Program Files (x86)\Winamp\winampa.exe" O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe" O4 - HKLM\..\Run: [UnlockerAssistant] "C:\Program Files (x86)\Unlocker\UnlockerAssistant.exe" O4 - HKLM\..\Run: [Malwarebytes Anti-Malware (reboot)] "C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe" /runcleanupscript O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun O4 - HKCU\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter O4 - HKCU\..\Run: [Logitech Vid] "C:\Program Files (x86)\Logitech\Logitech Vid\vid.exe" -bootmode O4 - HKCU\..\Run: [Steam] "c:\program files (x86)\steam\steam.exe" -silent O4 - HKCU\..\Run: [SystemUp HARDDISK GUARD] "C:\Program Files (x86)\zoneLINK\SystemUp 2009\Harddisk\hdtray.exe" O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files (x86)\Windows Media Player\WMPNSCFG.exe O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe O4 - HKCU\..\Run: [SUPERAntiSpyware] C:\Program Files (x86)\SUPERAntiSpyware\SUPERAntiSpyware.exe O4 - HKCU\..\Run: [QIP2005] C:\Program Files (x86)\QIP 2005 psYNovA-Edition\qip.exe O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOKALER DIENST') O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOKALER DIENST') O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETZWERKDIENST') O4 - Startup: Seesmic Desktop.lnk = C:\Program Files (x86)\Seesmic Desktop\Seesmic Desktop.exe O4 - Global Startup: Firefox Preloader.lnk = C:\Program Files (x86)\FirefoxPreloader\FirefoxPreloader.exe O9 - Extra button: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files (x86)\ICQ6.5\ICQ.exe O9 - Extra 'Tools' menuitem: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files (x86)\ICQ6.5\ICQ.exe O13 - Gopher Prefix: O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab O20 - Winlogon Notify: !SASWinLogon - C:\Program Files (x86)\SUPERAntiSpyware\SASWINLO.dll O23 - Service: a-squared Free Service (a2free) - Emsi Software GmbH - C:\Program Files (x86)\a-squared Free\a2service.exe O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing) O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing) O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe O23 - Service: BitDefender Arrakis Server (Arrakis3) - BitDefender S.R.L. http://www.bitdefender.com - C:\Program Files\Common Files\BitDefender\BitDefender Arrakis Server\bin\arrakis3.exe O23 - Service: ASP.NET-Zustandsdienst (aspnet_state) - Unknown owner - C:\Windows\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe (file missing) O23 - Service: Bonjour-Dienst (Bonjour Service) - Apple Inc. - C:\Program Files (x86)\Bonjour\mDNSResponder.exe O23 - Service: @dfsrres.dll,-101 (DFSR) - Unknown owner - C:\Windows\system32\DFSR.exe (file missing) O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTMon.exe O23 - Service: iPod-Dienst (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: BitDefender Desktop Update Service (LIVESRV) - BitDefender S.R.L. - C:\Program Files\Common Files\BitDefender\BitDefender Update Service\livesrv.exe O23 - Service: Process Monitor (LVPrcS64) - Logitech Inc. - C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing) O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing) O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\SLsvc.exe,-101 (slsvc) - Unknown owner - C:\Windows\system32\SLsvc.exe (file missing) O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing) O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing) O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe O23 - Service: SystemUp HardDisk Service (SysUpHDService) - zoneLink - C:\Program Files (x86)\Common Files\SystemUp Harddisk\hdservice.exe O23 - Service: @%SystemRoot%\System32\TuneUpDefragService.exe,-1 (TuneUp.Defrag) - Unknown owner - C:\Windows\System32\TuneUpDefragService.exe (file missing) O23 - Service: @%SystemRoot%\System32\TUProgSt.exe,-1 (TuneUp.ProgramStatisticsSvc) - Unknown owner - C:\Windows\System32\TUProgSt.exe (file missing) O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing) O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing) O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing) O23 - Service: BitDefender Virus Shield (VSSERV) - BitDefender S.R.L. - C:\Program Files\BitDefender\BitDefender 2010\vsserv.exe O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing) O23 - Service: @%ProgramFiles%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing) -- End of file - 9022 bytes ======Scheduled tasks folder====== C:\Windows\tasks\1-Klick-Wartung.job C:\Windows\tasks\User_Feed_Synchronization-{A09EDBE1-C9EA-4417-BF7A-30CB8E6826C2}.job ======Registry dump====== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}] Windows Live Anmelde-Hilfsprogramm - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-01-22 408448] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}] Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll [2009-10-06 41760] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar] {381FFDE8-2394-4f90-B10D-FC6124A40F8C} - BitDefender Toolbar - C:\Program Files\BitDefender\BitDefender 2010\Antispam32\IEToolbar.dll [2009-10-11 128832] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run] "SunJavaUpdateSched"=C:\Program Files (x86)\Java\jre6\bin\jusched.exe [2009-10-06 149280] "LogitechQuickCamRibbon"=C:\Program Files\Logitech\Logitech WebCam Software\LWS.exe [2009-05-08 2780432] "WinampAgent"=C:\Program Files (x86)\Winamp\winampa.exe [2009-07-01 37888] "StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2009-08-13 98304] "QuickTime Task"=C:\Program Files (x86)\QuickTime\QTTask.exe [2009-09-05 417792] "iTunesHelper"=C:\Program Files (x86)\iTunes\iTunesHelper.exe [2009-09-21 305440] "UnlockerAssistant"=C:\Program Files (x86)\Unlocker\UnlockerAssistant.exe [] "Malwarebytes Anti-Malware (reboot)"=C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe [2009-09-10 1312080] [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2009-04-11 1555968] "WindowsWelcomeCenter"=oobefldr.dll,ShowWelcomeCenter [] "Logitech Vid"=C:\Program Files (x86)\Logitech\Logitech Vid\vid.exe [2009-06-02 5451536] "Steam"=c:\program files (x86)\steam\steam.exe [2009-10-07 1217784] "SystemUp HARDDISK GUARD"=C:\Program Files (x86)\zoneLINK\SystemUp 2009\Harddisk\hdtray.exe [2009-06-03 1723272] "WMPNSCFG"=C:\Program Files (x86)\Windows Media Player\WMPNSCFG.exe [] "ehTray.exe"=C:\Windows\ehome\ehTray.exe [2008-01-21 138240] "SUPERAntiSpyware"=C:\Program Files (x86)\SUPERAntiSpyware\SUPERAntiSpyware.exe [2009-09-15 1998576] "QIP2005"=C:\Program Files (x86)\QIP 2005 psYNovA-Edition\qip.exe [2009-08-13 3276288] C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup Firefox Preloader.lnk - C:\Program Files (x86)\FirefoxPreloader\FirefoxPreloader.exe C:\Users\takedown\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup Seesmic Desktop.lnk - C:\Program Files (x86)\Seesmic Desktop\Seesmic Desktop.exe [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\!SASWinLogon] C:\Program Files (x86)\SUPERAntiSpyware\SASWINLO.dll [2009-09-03 548352] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks] "{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA}"=C:\Program Files (x86)\SUPERAntiSpyware\SASSEH.DLL [2008-05-13 77824] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfPf] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfRd] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfSvc] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfUsbccidDriver] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System] "EnableLUA"=0 "dontdisplaylastusername"=0 "legalnoticecaption"= "legalnoticetext"= "shutdownwithoutlogon"=1 "undockwithoutlogon"=1 "EnableUIADesktopToggle"=0 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer] "NoActiveDesktop"= "ForceActiveDesktopOn"= "BindDirectlyToPropertySetStorage"= "NoActiveDesktopChanges"= [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list] [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list] ======File associations====== .js - edit - C:\Windows\SysWOW64\Notepad.exe %1 .js - open - C:\Windows\SysWOW64\WScript.exe "%1" %* |
[CODE]======List of files/folders created in the last 1 months====== 2009-10-13 01:04:13 ----D---- C:\rsit 2009-10-12 18:17:42 ----D---- C:\ProgramData\SUPERAntiSpyware.com 2009-10-12 18:17:34 ----D---- C:\Users\takedown\AppData\Roaming\SUPERAntiSpyware.com 2009-10-12 18:17:34 ----D---- C:\Program Files (x86)\SUPERAntiSpyware 2009-10-12 18:16:55 ----D---- C:\Program Files (x86)\Common Files\Wise Installation Wizard 2009-10-12 18:07:21 ----D---- C:\Users\takedown\AppData\Roaming\Malwarebytes 2009-10-12 18:07:15 ----D---- C:\ProgramData\Malwarebytes 2009-10-12 18:07:15 ----D---- C:\Program Files (x86)\Malwarebytes' Anti-Malware 2009-10-12 05:27:33 ----D---- C:\Program Files (x86)\a-squared Free 2009-10-12 04:57:10 ----D---- C:\Users\takedown\AppData\Roaming\UseNeXT 2009-10-12 04:57:08 ----D---- C:\Program Files (x86)\UseNeXT 2009-10-12 04:13:33 ----D---- C:\Program Files (x86)\Trend Micro 2009-10-11 18:00:52 ----D---- C:\Users\takedown\AppData\Roaming\Desktopicon 2009-10-11 18:00:51 ----D---- C:\Program Files (x86)\Unlocker 2009-10-11 14:27:56 ----A---- C:\Windows\ntbtlog.txt 2009-10-11 14:23:28 ----D---- C:\Users\takedown\AppData\Roaming\BitDefender 2009-10-11 14:22:52 ----D---- C:\ProgramData\BitDefender 2009-10-11 14:13:09 ----D---- C:\Program Files (x86)\Common Files\BitDefender 2009-10-11 14:01:28 ----D---- C:\Windows\system32\URTTEMP 2009-10-11 00:51:43 ----D---- C:\Windows\Sun 2009-10-10 20:31:14 ----D---- C:\Users\takedown\AppData\Roaming\Sincell 2009-10-10 20:30:44 ----D---- C:\ProgramData\Sincell 2009-10-10 15:46:42 ----A---- C:\Windows\system32\uxtuneup.dll 2009-10-10 15:46:42 ----A---- C:\Windows\system32\authuitu.dll 2009-10-10 15:43:35 ----D---- C:\Users\takedown\AppData\Roaming\TuneUp Software 2009-10-10 15:43:21 ----D---- C:\ProgramData\TuneUp Software 2009-10-10 15:43:21 ----D---- C:\Program Files (x86)\TuneUp Utilities 2009 2009-10-10 15:43:07 ----SHD---- C:\ProgramData\{55A29068-F2CE-456C-9148-C869879E2357} 2009-10-10 15:25:58 ----D---- C:\Users\takedown\AppData\Roaming\FileZilla 2009-10-10 15:25:49 ----D---- C:\Program Files (x86)\FileZilla FTP Client 2009-10-10 15:20:42 ----A---- C:\Windows\system32\commdlg.dll 2009-10-09 20:19:56 ----D---- C:\Users\takedown\AppData\Roaming\ICQ 2009-10-09 20:19:29 ----D---- C:\Program Files (x86)\ICQ6.5 2009-10-09 00:00:18 ----D---- C:\ProgramData\IsolatedStorage 2009-10-08 23:27:04 ----D---- C:\Users\takedown\AppData\Roaming\vlc 2009-10-08 02:54:18 ----A---- C:\Windows\system32\XAudio2_5.dll 2009-10-08 02:54:18 ----A---- C:\Windows\system32\xactengine3_5.dll 2009-10-08 02:54:17 ----A---- C:\Windows\system32\d3dx11_42.dll 2009-10-08 02:54:17 ----A---- C:\Windows\system32\d3dcsx_42.dll 2009-10-08 02:54:17 ----A---- C:\Windows\system32\D3DCompiler_42.dll 2009-10-08 02:54:16 ----A---- C:\Windows\system32\D3DX9_42.dll 2009-10-08 02:54:16 ----A---- C:\Windows\system32\d3dx10_42.dll 2009-10-08 02:54:13 ----A---- C:\Windows\system32\XAPOFX1_3.dll 2009-10-08 02:54:10 ----A---- C:\Windows\system32\XAudio2_3.dll 2009-10-08 02:54:10 ----A---- C:\Windows\system32\XAPOFX1_2.dll 2009-10-08 02:54:09 ----A---- C:\Windows\system32\xactengine3_3.dll 2009-10-08 02:54:09 ----A---- C:\Windows\system32\X3DAudio1_5.dll 2009-10-08 02:54:08 ----A---- C:\Windows\system32\XAudio2_2.dll 2009-10-08 02:54:08 ----A---- C:\Windows\system32\XAPOFX1_1.dll 2009-10-08 02:54:08 ----A---- C:\Windows\system32\xactengine3_2.dll 2009-10-07 22:09:23 ----A---- C:\Windows\system32\d3dx10_41.dll 2009-10-07 22:09:23 ----A---- C:\Windows\system32\D3DCompiler_41.dll 2009-10-07 22:09:20 ----A---- C:\Windows\system32\D3DX9_41.dll 2009-10-07 22:09:16 ----A---- C:\Windows\system32\XAudio2_4.dll 2009-10-07 22:09:13 ----A---- C:\Windows\system32\xactengine3_4.dll 2009-10-07 22:09:11 ----A---- C:\Windows\system32\X3DAudio1_6.dll 2009-10-07 22:09:09 ----A---- C:\Windows\system32\d3dx10_40.dll 2009-10-07 22:09:09 ----A---- C:\Windows\system32\D3DCompiler_40.dll 2009-10-07 22:09:05 ----A---- C:\Windows\system32\D3DX9_40.dll 2009-10-07 22:08:50 ----A---- C:\Windows\system32\D3DCompiler_39.dll 2009-10-07 22:08:49 ----A---- C:\Windows\system32\d3dx10_39.dll 2009-10-07 22:08:47 ----A---- C:\Windows\system32\D3DX9_39.dll 2009-10-07 22:08:43 ----A---- C:\Windows\system32\XAudio2_1.dll 2009-10-07 22:08:43 ----A---- C:\Windows\system32\XAPOFX1_0.dll 2009-10-07 22:08:41 ----A---- C:\Windows\system32\xactengine3_1.dll 2009-10-07 22:08:40 ----A---- C:\Windows\system32\X3DAudio1_4.dll 2009-10-07 22:08:38 ----A---- C:\Windows\system32\d3dx10_38.dll 2009-10-07 22:08:38 ----A---- C:\Windows\system32\D3DCompiler_38.dll 2009-10-07 22:08:36 ----A---- C:\Windows\system32\D3DX9_38.dll 2009-10-07 22:08:34 ----A---- C:\Windows\system32\XAudio2_0.dll 2009-10-07 22:08:32 ----A---- C:\Windows\system32\xactengine3_0.dll 2009-10-07 22:08:31 ----A---- C:\Windows\system32\X3DAudio1_3.dll 2009-10-07 22:08:22 ----A---- C:\Windows\system32\xactengine2_10.dll 2009-10-07 22:08:19 ----A---- C:\Windows\system32\d3dx10_36.dll 2009-10-07 22:08:19 ----A---- C:\Windows\system32\D3DCompiler_36.dll 2009-10-07 22:08:17 ----A---- C:\Windows\system32\d3dx9_36.dll 2009-10-07 22:08:16 ----A---- C:\Windows\system32\xactengine2_9.dll 2009-10-07 22:08:14 ----A---- C:\Windows\system32\d3dx10_35.dll 2009-10-07 22:08:14 ----A---- C:\Windows\system32\D3DCompiler_35.dll 2009-10-07 22:08:12 ----A---- C:\Windows\system32\d3dx9_35.dll 2009-10-07 22:08:05 ----A---- C:\Windows\system32\xactengine2_8.dll 2009-10-07 22:08:04 ----A---- C:\Windows\system32\X3DAudio1_2.dll 2009-10-07 22:08:01 ----A---- C:\Windows\system32\d3dx10_34.dll 2009-10-07 22:08:01 ----A---- C:\Windows\system32\D3DCompiler_34.dll 2009-10-07 22:07:58 ----A---- C:\Windows\system32\d3dx9_34.dll 2009-10-07 22:07:54 ----A---- C:\Windows\system32\xactengine2_7.dll 2009-10-07 22:07:52 ----A---- C:\Windows\system32\d3dx10_33.dll 2009-10-07 22:07:52 ----A---- C:\Windows\system32\D3DCompiler_33.dll 2009-10-07 22:07:50 ----A---- C:\Windows\system32\d3dx9_33.dll 2009-10-07 22:07:45 ----A---- C:\Windows\system32\xactengine2_6.dll 2009-10-07 22:07:40 ----A---- C:\Windows\system32\xactengine2_5.dll 2009-10-07 22:07:39 ----A---- C:\Windows\system32\d3dx10.dll 2009-10-07 22:07:31 ----A---- C:\Windows\system32\d3dx9_32.dll 2009-10-07 22:07:26 ----A---- C:\Windows\system32\xactengine2_4.dll 2009-10-07 22:07:26 ----A---- C:\Windows\system32\x3daudio1_1.dll 2009-10-07 22:07:20 ----A---- C:\Windows\system32\d3dx9_31.dll 2009-10-07 22:07:16 ----A---- C:\Windows\system32\xactengine2_3.dll 2009-10-07 22:07:14 ----A---- C:\Windows\system32\xinput1_2.dll 2009-10-07 22:07:11 ----A---- C:\Windows\system32\xactengine2_2.dll 2009-10-07 22:07:08 ----A---- C:\Windows\system32\xinput1_1.dll 2009-10-07 22:07:04 ----A---- C:\Windows\system32\xactengine2_1.dll 2009-10-07 22:06:37 ----A---- C:\Windows\system32\d3dx9_30.dll 2009-10-07 22:06:27 ----A---- C:\Windows\system32\xactengine2_0.dll 2009-10-07 22:06:27 ----A---- C:\Windows\system32\x3daudio1_0.dll 2009-10-07 22:06:24 ----A---- C:\Windows\system32\d3dx9_29.dll 2009-10-07 22:06:17 ----A---- C:\Windows\system32\d3dx9_28.dll 2009-10-07 22:06:11 ----A---- C:\Windows\system32\d3dx9_27.dll 2009-10-07 22:06:08 ----A---- C:\Windows\system32\d3dx9_26.dll 2009-10-07 22:06:06 ----A---- C:\Windows\system32\d3dx9_25.dll 2009-10-07 22:05:47 ----A---- C:\Windows\system32\d3dx9_24.dll 2009-10-07 22:04:13 ----D---- C:\Program Files (x86)\CAPCOM 2009-10-07 22:03:19 ----A---- C:\Windows\system32\D3DX9_37.dll 2009-10-07 22:03:19 ----A---- C:\Windows\system32\d3dx10_37.dll 2009-10-07 22:03:19 ----A---- C:\Windows\system32\D3DCompiler_37.dll 2009-10-07 22:03:18 ----A---- C:\Windows\system32\xinput1_3.dll 2009-10-07 22:02:37 ----D---- C:\Windows\system32\xlive 2009-10-07 22:02:37 ----D---- C:\Program Files (x86)\Microsoft Games for Windows - LIVE 2009-10-07 20:27:21 ----D---- C:\Users\takedown\AppData\Roaming\com.seesmic.desktop.client.D89F32799270693BEF34AAA36E9B2632B59240FA.1 2009-10-07 20:27:21 ----D---- C:\ProgramData\Adobe 2009-10-07 20:27:19 ----D---- C:\Program Files (x86)\Seesmic Desktop 2009-10-07 20:27:17 ----D---- C:\Program Files (x86)\Common Files\Adobe AIR 2009-10-07 18:11:08 ----D---- C:\Windows\system32\Samsung_USB_Drivers 2009-10-07 18:11:04 ----D---- C:\Program Files (x86)\Samsung 2009-10-07 05:49:15 ----D---- C:\Users\takedown\AppData\Roaming\WinRAR 2009-10-07 05:18:47 ----D---- C:\Windows\pss 2009-10-07 05:12:53 ----A---- C:\Windows\RtlExUpd.dll 2009-10-07 05:12:49 ----D---- C:\Program Files (x86)\Common Files\InstallShield 2009-10-07 05:08:14 ----A---- C:\Windows\DIFxAPI.dll 2009-10-07 05:08:02 ----HD---- C:\Program Files (x86)\Temp 2009-10-07 05:04:34 ----A---- C:\Windows\system32\difxapi.dll 2009-10-07 05:02:27 ----D---- C:\Program Files (x86)\Realtek 2009-10-07 05:01:35 ----D---- C:\ProgramData\Ralink 2009-10-07 05:01:00 ----D---- C:\ProgramData\Ralink Driver 2009-10-07 05:00:57 ----A---- C:\Windows\system32\RAIHV.dll 2009-10-07 05:00:57 ----A---- C:\Windows\system32\RAEXTUI.dll 2009-10-07 05:00:56 ----D---- C:\Program Files (x86)\Ralink 2009-10-07 05:00:56 ----A---- C:\Windows\system32\RaCertMgr.dll 2009-10-07 04:57:22 ----D---- C:\ProgramData\InstallShield 2009-10-07 04:52:23 ----D---- C:\Program Files (x86)\Driver-Soft 2009-10-07 03:23:50 ----D---- C:\Windows\PCHEALTH 2009-10-07 03:10:51 ----D---- C:\Program Files (x86)\MSXML 4.0 2009-10-07 03:10:40 ----SD---- C:\Windows\system32\Microsoft 2009-10-07 03:07:29 ----HD---- C:\Config.Msi 2009-10-07 01:52:46 ----D---- C:\Program Files (x86)\FirefoxPreloader 2009-10-07 01:52:46 ----A---- C:\Windows\system32\regclass.dll 2009-10-07 01:48:10 ----D---- C:\Program Files (x86)\Microsoft Silverlight 2009-10-07 01:47:53 ----D---- C:\Program Files (x86)\Microsoft CAPICOM 2.1.0.2 2009-10-07 01:37:52 ----A---- C:\Windows\system32\PerfStringBackup.INI 2009-10-07 01:28:59 ----A---- C:\Windows\system32\PresentationHostProxy.dll 2009-10-07 01:28:59 ----A---- C:\Windows\system32\mscoree.dll 2009-10-07 01:28:59 ----A---- C:\Windows\system32\dfshim.dll 2009-10-07 01:28:58 ----A---- C:\Windows\system32\PresentationHost.exe 2009-10-07 01:28:51 ----D---- C:\ProgramData\Last.fm 2009-10-07 01:28:29 ----D---- C:\Program Files (x86)\Last.fm 2009-10-07 01:21:00 ----D---- C:\Users\takedown\AppData\Roaming\ATI 2009-10-07 01:21:00 ----D---- C:\ProgramData\ATI 2009-10-07 01:13:37 ----D---- C:\Users\takedown\AppData\Roaming\Apple Computer 2009-10-07 01:13:22 ----A---- C:\Windows\system32\GEARAspi.dll 2009-10-07 01:12:53 ----D---- C:\ProgramData\{0DD0EEEE-2A7C-411C-9243-1AE62F445FC3} 2009-10-07 01:12:53 ----D---- C:\Program Files (x86)\iTunes 2009-10-07 01:10:50 ----D---- C:\Program Files (x86)\Bonjour 2009-10-07 01:10:05 ----D---- C:\Program Files (x86)\Razer 2009-10-07 01:10:04 ----HD---- C:\Program Files (x86)\InstallShield Installation Information 2009-10-07 01:09:43 ----D---- C:\Program Files (x86)\QuickTime 2009-10-07 01:09:42 ----D---- C:\ProgramData\Apple Computer 2009-10-07 01:08:34 ----D---- C:\Program Files (x86)\Apple Software Update 2009-10-07 01:05:30 ----D---- C:\ProgramData\Apple 2009-10-07 01:05:30 ----D---- C:\Program Files (x86)\Common Files\Apple 2009-10-07 00:46:43 ----D---- C:\Program Files (x86)\Microsoft 2009-10-07 00:46:17 ----D---- C:\Program Files (x86)\Windows Live SkyDrive 2009-10-07 00:46:01 ----D---- C:\Program Files (x86)\Windows Live 2009-10-07 00:43:50 ----D---- C:\Program Files (x86)\T4E 2009-10-07 00:42:21 ----D---- C:\Program Files (x86)\Common Files\Windows Live 2009-10-07 00:40:20 ----D---- C:\Program Files (x86)\SpeedFan 2009-10-07 00:34:46 ----D---- C:\Program Files (x86)\zoneLINK 2009-10-07 00:34:46 ----D---- C:\Program Files (x86)\Common Files\SystemUp Harddisk 2009-10-07 00:33:36 ----D---- C:\Program Files (x86)\ATI Technologies 2009-10-07 00:31:59 ----D---- C:\ATI 2009-10-07 00:30:10 ----D---- C:\Program Files (x86)\Common Files\PX Storage Engine 2009-10-07 00:30:09 ----D---- C:\Users\takedown\AppData\Roaming\Winamp 2009-10-07 00:30:09 ----D---- C:\Program Files (x86)\Winamp 2009-10-07 00:29:44 ----D---- C:\Users\takedown\AppData\Roaming\teamspeak2 2009-10-07 00:29:38 ----D---- C:\Program Files (x86)\Teamspeak2_RC2 2009-10-07 00:29:09 ----A---- C:\Windows\system32\jscript.dll 2009-10-07 00:29:07 ----D---- C:\Program Files (x86)\VideoLAN 2009-10-07 00:14:04 ----D---- C:\Program Files (x86)\QIP 2005 psYNovA-Edition 2009-10-07 00:13:45 ----A---- C:\Windows\system32\occache.dll 2009-10-07 00:13:45 ----A---- C:\Windows\system32\jsproxy.dll 2009-10-07 00:13:45 ----A---- C:\Windows\system32\iepeers.dll 2009-10-07 00:13:44 ----A---- C:\Windows\system32\wininet.dll 2009-10-07 00:13:44 ----A---- C:\Windows\system32\msfeedsbs.dll 2009-10-07 00:13:44 ----A---- C:\Windows\system32\msfeeds.dll 2009-10-07 00:13:44 ----A---- C:\Windows\system32\ieui.dll 2009-10-07 00:13:44 ----A---- C:\Windows\system32\iernonce.dll 2009-10-07 00:13:43 ----A---- C:\Windows\system32\urlmon.dll 2009-10-07 00:13:43 ----A---- C:\Windows\system32\msfeedssync.exe 2009-10-07 00:13:43 ----A---- C:\Windows\system32\iesetup.dll 2009-10-07 00:13:43 ----A---- C:\Windows\system32\iedkcs32.dll 2009-10-07 00:13:43 ----A---- C:\Windows\system32\ie4uinit.exe 2009-10-07 00:13:40 ----A---- C:\Windows\system32\iertutil.dll 2009-10-07 00:13:39 ----A---- C:\Windows\system32\ieframe.dll 2009-10-07 00:13:37 ----A---- C:\Windows\system32\mshtml.dll 2009-10-07 00:13:37 ----A---- C:\Windows\system32\ieUnatt.exe 2009-10-07 00:13:37 ----A---- C:\Windows\system32\iesysprep.dll 2009-10-07 00:12:03 ----D---- C:\Program Files (x86)\Steam 2009-10-07 00:12:03 ----D---- C:\Program Files (x86)\Common Files\Steam 2009-10-07 00:12:02 ----A---- C:\Windows\system32\advpack.dll 2009-10-07 00:12:02 ----A---- C:\Windows\system32\admparse.dll 2009-10-07 00:12:01 ----A---- C:\Windows\system32\ieakeng.dll 2009-10-07 00:12:01 ----A---- C:\Windows\system32\icardie.dll 2009-10-07 00:12:01 ----A---- C:\Windows\system32\corpol.dll 2009-10-07 00:12:00 ----A---- C:\Windows\system32\wextract.exe 2009-10-07 00:12:00 ----A---- C:\Windows\system32\pngfilt.dll 2009-10-07 00:12:00 ----A---- C:\Windows\system32\msls31.dll 2009-10-07 00:12:00 ----A---- C:\Windows\system32\ieapfltr.dll 2009-10-07 00:11:59 ----A---- C:\Windows\system32\mstime.dll 2009-10-07 00:11:59 ----A---- C:\Windows\system32\imgutil.dll 2009-10-07 00:11:59 ----A---- C:\Windows\system32\dxtrans.dll 2009-10-07 00:11:59 ----A---- C:\Windows\system32\dxtmsft.dll 2009-10-07 00:11:58 ----A---- C:\Windows\system32\WinFXDocObj.exe 2009-10-07 00:11:58 ----A---- C:\Windows\system32\webcheck.dll 2009-10-07 00:11:58 ----A---- C:\Windows\system32\msrating.dll 2009-10-07 00:11:58 ----A---- C:\Windows\system32\mshtmled.dll 2009-10-07 00:11:58 ----A---- C:\Windows\system32\licmgr10.dll 2009-10-07 00:11:58 ----A---- C:\Windows\system32\inseng.dll 2009-10-07 00:11:58 ----A---- C:\Windows\system32\ieakui.dll 2009-10-07 00:11:58 ----A---- C:\Windows\system32\ieaksie.dll 2009-10-07 00:11:57 ----A---- C:\Windows\system32\vbscript.dll 2009-10-07 00:11:57 ----A---- C:\Windows\system32\url.dll 2009-10-07 00:11:57 ----A---- C:\Windows\system32\mshtmler.dll 2009-10-07 00:11:57 ----A---- C:\Windows\system32\mshta.exe 2009-10-07 00:11:57 ----A---- C:\Windows\system32\iexpress.exe 2009-10-07 00:11:56 ----A---- C:\Windows\system32\SetIEInstalledDate.exe 2009-10-07 00:11:56 ----A---- C:\Windows\system32\SetDepNx.exe 2009-10-07 00:11:56 ----A---- C:\Windows\system32\RegisterIEPKEYs.exe 2009-10-07 00:11:56 ----A---- C:\Windows\system32\PDMSetup.exe 2009-10-07 00:11:19 ----D---- C:\Windows\system32\RTCOM 2009-10-07 00:11:02 ----D---- C:\Program Files (x86)\Logitech 2009-10-07 00:10:54 ----D---- C:\ProgramData\LogiShrd 2009-10-07 00:10:54 ----D---- C:\Program Files (x86)\Common Files\LogiShrd 2009-10-07 00:09:32 ----A---- C:\Windows\system32\tzres.dll 2009-10-07 00:04:44 ----A---- C:\Windows\system32\GameUXLegacyGDFs.dll 2009-10-07 00:04:44 ----A---- C:\Windows\system32\Apphlpdm.dll 2009-10-07 00:04:39 ----A---- C:\Windows\system32\kerberos.dll 2009-10-07 00:04:38 ----A---- C:\Windows\system32\wdigest.dll 2009-10-07 00:04:38 ----A---- C:\Windows\system32\secur32.dll 2009-10-07 00:04:38 ----A---- C:\Windows\system32\schannel.dll 2009-10-07 00:04:38 ----A---- C:\Windows\system32\msv1_0.dll 2009-10-07 00:04:35 ----A---- C:\Windows\system32\mstscax.dll 2009-10-07 00:04:33 ----A---- C:\Windows\system32\rpcrt4.dll 2009-10-07 00:04:31 ----A---- C:\Windows\system32\localspl.dll 2009-10-07 00:03:44 ----A---- C:\Windows\system32\netiohlp.dll 2009-10-07 00:03:43 ----A---- C:\Windows\system32\TCPSVCS.EXE 2009-10-07 00:03:43 ----A---- C:\Windows\system32\ROUTE.EXE 2009-10-07 00:03:43 ----A---- C:\Windows\system32\NETSTAT.EXE 2009-10-07 00:03:43 ----A---- C:\Windows\system32\netevent.dll 2009-10-07 00:03:43 ----A---- C:\Windows\system32\MRINFO.EXE 2009-10-07 00:03:43 ----A---- C:\Windows\system32\HOSTNAME.EXE 2009-10-07 00:03:43 ----A---- C:\Windows\system32\finger.exe 2009-10-07 00:03:43 ----A---- C:\Windows\system32\ARP.EXE 2009-10-07 00:03:27 ----A---- C:\Windows\system32\t2embed.dll 2009-10-07 00:03:26 ----A---- C:\Windows\system32\fontsub.dll 2009-10-07 00:03:26 ----A---- C:\Windows\system32\dciman32.dll 2009-10-07 00:03:26 ----A---- C:\Windows\system32\atmfd.dll 2009-10-07 00:00:38 ----A---- C:\Windows\system32\avifil32.dll 2009-10-07 00:00:28 ----A---- C:\Windows\system32\wmp.dll 2009-10-07 00:00:27 ----A---- C:\Windows\system32\wmpdxm.dll 2009-10-07 00:00:26 ----A---- C:\Windows\system32\dxmasf.dll 2009-10-07 00:00:25 ----A---- C:\Windows\system32\wmploc.DLL 2009-10-07 00:00:25 ----A---- C:\Windows\system32\spwmp.dll 2009-10-07 00:00:21 ----A---- C:\Windows\system32\WMVCORE.DLL 2009-10-07 00:00:20 ----A---- C:\Windows\system32\mf.dll 2009-10-07 00:00:17 ----A---- C:\Windows\system32\wlansec.dll 2009-10-07 00:00:17 ----A---- C:\Windows\system32\wlanmsm.dll 2009-10-07 00:00:17 ----A---- C:\Windows\system32\wlanapi.dll 2009-10-07 00:00:17 ----A---- C:\Windows\system32\L2SecHC.dll 2009-10-07 00:00:15 ----A---- C:\Windows\system32\atl.dll 2009-10-06 23:59:50 ----D---- C:\Users\takedown\AppData\Roaming\Macromedia 2009-10-06 23:59:50 ----D---- C:\Users\takedown\AppData\Roaming\Adobe 2009-10-06 23:59:45 ----D---- C:\Windows\system32\Macromed 2009-10-06 23:59:22 ----A---- C:\Windows\system32\javaws.exe 2009-10-06 23:59:22 ----A---- C:\Windows\system32\javaw.exe 2009-10-06 23:59:22 ----A---- C:\Windows\system32\java.exe 2009-10-06 23:59:22 ----A---- C:\Windows\system32\deploytk.dll 2009-10-06 23:59:13 ----D---- C:\Program Files (x86)\Java 2009-10-06 23:55:34 ----SHD---- C:\Windows\Installer 2009-10-06 23:54:52 ----D---- C:\Program Files (x86)\Intel 2009-10-06 23:54:52 ----A---- C:\Windows\system32\CSVer.dll 2009-10-06 23:54:46 ----D---- C:\Intel 2009-10-06 23:52:31 ----D---- C:\Users\takedown\AppData\Roaming\Mozilla 2009-10-06 23:52:28 ----D---- C:\Program Files (x86)\Mozilla Firefox 2009-10-06 23:49:20 ----A---- C:\Windows\system32\wups.dll 2009-10-06 23:49:20 ----A---- C:\Windows\system32\wudriver.dll 2009-10-06 23:49:20 ----A---- C:\Windows\system32\wuapi.dll 2009-10-06 23:49:14 ----A---- C:\Windows\system32\wuwebv.dll 2009-10-06 23:49:14 ----A---- C:\Windows\system32\wuapp.exe 2009-10-06 23:47:10 ----D---- C:\Users\takedown\AppData\Roaming\WinBatch 2009-10-06 23:09:41 ----D---- C:\Users\takedown\AppData\Roaming\Identities 2009-10-06 23:09:36 ----SD---- C:\Users\takedown\AppData\Roaming\Microsoft 2009-10-06 23:09:36 ----D---- C:\Users\takedown\AppData\Roaming\Media Center Programs 2009-10-06 23:08:01 ----SHD---- C:\Programme 2009-10-06 23:08:01 ----SHD---- C:\ProgramData\Vorlagen 2009-10-06 23:08:01 ----SHD---- C:\ProgramData\Startmenü 2009-10-06 23:08:01 ----SHD---- C:\ProgramData\Favoriten 2009-10-06 23:08:01 ----SHD---- C:\ProgramData\Dokumente 2009-10-06 23:08:01 ----SHD---- C:\ProgramData\Anwendungsdaten 2009-10-06 23:08:01 ----SHD---- C:\Dokumente und Einstellungen 2009-10-06 23:07:44 ----D---- C:\Windows\Debug 2009-10-06 23:01:47 ----D---- C:\Windows\Panther 2009-10-06 23:01:34 ----RAS---- C:\BOOTSECT.BAK 2009-10-06 23:01:33 ----SHD---- C:\Boot 2009-10-06 22:05:02 ----D---- C:\Windows\SoftwareDistribution 2009-10-06 22:02:24 ----D---- C:\Windows\Prefetch 2009-10-06 22:02:23 ----SHD---- C:\System Volume Information |
Code: ======List of files/folders modified in the last 1 months====== |
Code: info.txt logfile of random's system information tool 1.06 2009-10-13 01:04:17 |
Öhhh, dann lass Bitdefender laufen, und versuche das Log zu posten. SASW Log findest du bei Preferences -> Statistik/Logs -> View Logs -> Log aufrufen, kopieren + posten. Falls du dir nicht sicher bist folge den Schritten in der Superantispyware Anleitung. Bitte lass Gmer rennen wie in Anleitung beschrieben und poste das Log. |
Code: =====Security event log===== |
Super Antispyware: Code: SUPERAntiSpyware Scan LogBidefender hat nichts gefunden ... |
Zitat:
|
GMER 1.0.15.15125 - http://www.gmer.net Rootkit scan 2009-10-13 01:36:42 Windows 6.0.6002 Service Pack 2 Running: hqeme70f.exe ---- Files - GMER 1.0.15 ---- File C:\Users\takedown\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\VZDIDB0J\atom[1].txt 984 bytes ---- EOF - GMER 1.0.15 ---- ___________ SUPERAntiSpyware Scan Log http://www.superantispyware.com Generated 10/12/2009 at 06:41 PM Application Version : 4.29.1002 Core Rules Database Version : 4161 Trace Rules Database Version: 2085 Scan type : Quick Scan Total Scan Time : 00:20:12 Memory items scanned : 687 Memory threats detected : 0 Registry items scanned : 392 Registry threats detected : 0 File items scanned : 23424 File threats detected : 147 Adware.Tracking Cookie C:\Users\takedown\AppData\Roaming\Microsoft\Windows\Cookies\takedown@shop.zanox[2].txt C:\Users\takedown\AppData\Roaming\Microsoft\Windows\Cookies\takedown@rm.yieldmanager[2].txt C:\Users\takedown\AppData\Roaming\Microsoft\Windows\Cookies\takedown@www.pornhost[1].txt C:\Users\takedown\AppData\Roaming\Microsoft\Windows\Cookies\takedown@www.teenporntale[1].txt C:\Users\takedown\AppData\Roaming\Microsoft\Windows\Cookies\takedown@www.filthyadserver[1].txt C:\Users\takedown\AppData\Roaming\Microsoft\Windows\Cookies\takedown@www.teeniesmile[1].txt C:\Users\takedown\AppData\Roaming\Microsoft\Windows\Cookies\takedown@zedo[2].txt C:\Users\takedown\AppData\Roaming\Microsoft\Windows\Cookies\takedown@voyeurteentube[1].txt C:\Users\takedown\AppData\Roaming\Microsoft\Windows\Cookies\takedown@www.googleadservices[1].txt C:\Users\takedown\AppData\Roaming\Microsoft\Windows\Cookies\takedown@adtech[2].txt C:\Users\takedown\AppData\Roaming\Microsoft\Windows\Cookies\takedown@www.zanox-affiliate[2].txt C:\Users\takedown\AppData\Roaming\Microsoft\Windows\Cookies\takedown@www.xxxmofo[2].txt C:\Users\takedown\AppData\Roaming\Microsoft\Windows\Cookies\takedown@babesteenagers[1].txt C:\Users\takedown\AppData\Roaming\Microsoft\Windows\Cookies\takedown@www.thepornxxx[2].txt C:\Users\takedown\AppData\Roaming\Microsoft\Windows\Cookies\takedown@porn-plus[1].txt C:\Users\takedown\AppData\Roaming\Microsoft\Windows\Cookies\takedown@ad2.doublepimp[1].txt C:\Users\takedown\AppData\Roaming\Microsoft\Windows\Cookies\takedown@server.iad.liveperson[1].txt C:\Users\takedown\AppData\Roaming\Microsoft\Windows\Cookies\takedown@www.yourmomhassex[1].txt C:\Users\takedown\AppData\Roaming\Microsoft\Windows\Cookies\takedown@mediaplex[1].txt C:\Users\takedown\AppData\Roaming\Microsoft\Windows\Cookies\takedown@www.garateens[2].txt C:\Users\takedown\AppData\Roaming\Microsoft\Windows\Cookies\takedown@www.homemadefuckers[1].txt C:\Users\takedown\AppData\Roaming\Microsoft\Windows\Cookies\takedown@a3.adserver01[1].txt C:\Users\takedown\AppData\Roaming\Microsoft\Windows\Cookies\takedown@the-sex[1].txt C:\Users\takedown\AppData\Roaming\Microsoft\Windows\Cookies\takedown@www.mothersextube[1].txt C:\Users\takedown\AppData\Roaming\Microsoft\Windows\Cookies\takedown@adultadworld[1].txt C:\Users\takedown\AppData\Roaming\Microsoft\Windows\Cookies\takedown@eas.apm.emediate[2].txt C:\Users\takedown\AppData\Roaming\Microsoft\Windows\Cookies\takedown@interclick[2].txt C:\Users\takedown\AppData\Roaming\Microsoft\Windows\Cookies\takedown@galleries.adult-empire[2].txt C:\Users\takedown\AppData\Roaming\Microsoft\Windows\Cookies\takedown@ad.zanox[2].txt C:\Users\takedown\AppData\Roaming\Microsoft\Windows\Cookies\takedown@a9.adserver01[1].txt C:\Users\takedown\AppData\Roaming\Microsoft\Windows\Cookies\takedown@www.firstsextube[1].txt C:\Users\takedown\AppData\Roaming\Microsoft\Windows\Cookies\takedown@media.brandreachsys[2].txt C:\Users\takedown\AppData\Roaming\Microsoft\Windows\Cookies\takedown@www.abysspornstars[1].txt C:\Users\takedown\AppData\Roaming\Microsoft\Windows\Cookies\takedown@sexlist[1].txt C:\Users\takedown\AppData\Roaming\Microsoft\Windows\Cookies\takedown@yourmomhassex[1].txt C:\Users\takedown\AppData\Roaming\Microsoft\Windows\Cookies\takedown@tribalfusion[1].txt C:\Users\takedown\AppData\Roaming\Microsoft\Windows\Cookies\takedown@content.yieldmanager[1].txt C:\Users\takedown\AppData\Roaming\Microsoft\Windows\Cookies\takedown@www.fullsexmovies[2].txt C:\Users\takedown\AppData\Roaming\Microsoft\Windows\Cookies\takedown@unitymedia[2].txt C:\Users\takedown\AppData\Roaming\Microsoft\Windows\Cookies\takedown@www.teeniepornotube[1].txt C:\Users\takedown\AppData\Roaming\Microsoft\Windows\Cookies\takedown@18pornmovies[1].txt C:\Users\takedown\AppData\Roaming\Microsoft\Windows\Cookies\takedown@xxx.sxvalue[1].txt C:\Users\takedown\AppData\Roaming\Microsoft\Windows\Cookies\takedown@www.candysteens[2].txt C:\Users\takedown\AppData\Roaming\Microsoft\Windows\Cookies\takedown@tracking.3gnet[1].txt C:\Users\takedown\AppData\Roaming\Microsoft\Windows\Cookies\takedown@doubleclick[2].txt C:\Users\takedown\AppData\Roaming\Microsoft\Windows\Cookies\takedown@ads.right-ads[2].txt C:\Users\takedown\AppData\Roaming\Microsoft\Windows\Cookies\takedown@a2.adserver01[1].txt C:\Users\takedown\AppData\Roaming\Microsoft\Windows\Cookies\takedown@apmebf[2].txt C:\Users\takedown\AppData\Roaming\Microsoft\Windows\Cookies\takedown@tele2de.112.2o7[1].txt C:\Users\takedown\AppData\Roaming\Microsoft\Windows\Cookies\takedown@cdn.at.atwola[2].txt C:\Users\takedown\AppData\Roaming\Microsoft\Windows\Cookies\takedown@teeniepornotube[1].txt C:\Users\takedown\AppData\Roaming\Microsoft\Windows\Cookies\takedown@lucidmedia[2].txt C:\Users\takedown\AppData\Roaming\Microsoft\Windows\Cookies\takedown@ad.adition[2].txt C:\Users\takedown\AppData\Roaming\Microsoft\Windows\Cookies\takedown@www.free-good-porn[1].txt C:\Users\takedown\AppData\Roaming\Microsoft\Windows\Cookies\takedown@ad.yieldmanager[1].txt C:\Users\takedown\AppData\Roaming\Microsoft\Windows\Cookies\takedown@adbrite[2].txt C:\Users\takedown\AppData\Roaming\Microsoft\Windows\Cookies\takedown@www.traffictrack[2].txt C:\Users\takedown\AppData\Roaming\Microsoft\Windows\Cookies\takedown@media.ohost[2].txt C:\Users\takedown\AppData\Roaming\Microsoft\Windows\Cookies\takedown@zbox.zanox[2].txt C:\Users\takedown\AppData\Roaming\Microsoft\Windows\Cookies\takedown@www.18pornmovies[2].txt C:\Users\takedown\AppData\Roaming\Microsoft\Windows\Cookies\takedown@kontera[2].txt C:\Users\takedown\AppData\Roaming\Microsoft\Windows\Cookies\takedown@at.atwola[2].txt C:\Users\takedown\AppData\Roaming\Microsoft\Windows\Cookies\takedown@abyssteens[1].txt C:\Users\takedown\AppData\Roaming\Microsoft\Windows\Cookies\takedown@toplist[2].txt C:\Users\takedown\AppData\Roaming\Microsoft\Windows\Cookies\takedown@www.pornflvs[1].txt C:\Users\takedown\AppData\Roaming\Microsoft\Windows\Cookies\takedown@homemadefuckers[2].txt C:\Users\takedown\AppData\Roaming\Microsoft\Windows\Cookies\takedown@www.allfuckvids[1].txt C:\Users\takedown\AppData\Roaming\Microsoft\Windows\Cookies\takedown@clickbank[1].txt C:\Users\takedown\AppData\Roaming\Microsoft\Windows\Cookies\takedown@media6degrees[2].txt C:\Users\takedown\AppData\Roaming\Microsoft\Windows\Cookies\takedown@smartadserver[2].txt C:\Users\takedown\AppData\Roaming\Microsoft\Windows\Cookies\takedown@ads.crakmedia[1].txt C:\Users\takedown\AppData\Roaming\Microsoft\Windows\Cookies\takedown@rts.pgmediaserve[1].txt C:\Users\takedown\AppData\Roaming\Microsoft\Windows\Cookies\takedown@candysteens[2].txt C:\Users\takedown\AppData\Roaming\Microsoft\Windows\Cookies\takedown@12finder[1].txt C:\Users\takedown\AppData\Roaming\Microsoft\Windows\Cookies\takedown@webmasterplan[1].txt C:\Users\takedown\AppData\Roaming\Microsoft\Windows\Cookies\takedown@tracking.mindshare[1].txt C:\Users\takedown\AppData\Roaming\Microsoft\Windows\Cookies\takedown@ads.heias[1].txt C:\Users\takedown\AppData\Roaming\Microsoft\Windows\Cookies\takedown@im.banner.t-online[1].txt C:\Users\takedown\AppData\Roaming\Microsoft\Windows\Cookies\takedown@statcounter[1].txt C:\Users\takedown\AppData\Roaming\Microsoft\Windows\Cookies\takedown@bestmaturepornsite[1].txt C:\Users\takedown\AppData\Roaming\Microsoft\Windows\Cookies\takedown@adviva[2].txt C:\Users\takedown\AppData\Roaming\Microsoft\Windows\Cookies\takedown@www.adultadvertising[1].txt C:\Users\takedown\AppData\Roaming\Microsoft\Windows\Cookies\takedown@www.etracker[1].txt C:\Users\takedown\AppData\Roaming\Microsoft\Windows\Cookies\takedown@streamsexclips[1].txt C:\Users\takedown\AppData\Roaming\Microsoft\Windows\Cookies\takedown@ero-advertising[2].txt C:\Users\takedown\AppData\Roaming\Microsoft\Windows\Cookies\takedown@adsrv1.admediate[1].txt C:\Users\takedown\AppData\Roaming\Microsoft\Windows\Cookies\takedown@rambler[1].txt C:\Users\takedown\AppData\Roaming\Microsoft\Windows\Cookies\takedown@xiti[1].txt C:\Users\takedown\AppData\Roaming\Microsoft\Windows\Cookies\takedown@serving-sys[1].txt C:\Users\takedown\AppData\Roaming\Microsoft\Windows\Cookies\takedown@traffictrack[2].txt C:\Users\takedown\AppData\Roaming\Microsoft\Windows\Cookies\takedown@atdmt[2].txt C:\Users\takedown\AppData\Roaming\Microsoft\Windows\Cookies\takedown@counter.surfcounters[1].txt C:\Users\takedown\AppData\Roaming\Microsoft\Windows\Cookies\takedown@imrworldwide[2].txt C:\Users\takedown\AppData\Roaming\Microsoft\Windows\Cookies\takedown@tto2.traffictrack[2].txt C:\Users\takedown\AppData\Roaming\Microsoft\Windows\Cookies\takedown@www.greatteengirl[2].txt C:\Users\takedown\AppData\Roaming\Microsoft\Windows\Cookies\takedown@bs.serving-sys[1].txt C:\Users\takedown\AppData\Roaming\Microsoft\Windows\Cookies\takedown@adprotraffic[1].txt C:\Users\takedown\AppData\Roaming\Microsoft\Windows\Cookies\takedown@counter15.sextracker[1].txt C:\Users\takedown\AppData\Roaming\Microsoft\Windows\Cookies\takedown@msnportal.112.2o7[1].txt C:\Users\takedown\AppData\Roaming\Microsoft\Windows\Cookies\takedown@tacoda[1].txt C:\Users\takedown\AppData\Roaming\Microsoft\Windows\Cookies\takedown@pornhost[2].txt C:\Users\takedown\AppData\Roaming\Microsoft\Windows\Cookies\takedown@adultfriendfinder[2].txt C:\Users\takedown\AppData\Roaming\Microsoft\Windows\Cookies\takedown@xxxcounter[1].txt C:\Users\takedown\AppData\Roaming\Microsoft\Windows\Cookies\takedown@tradedoubler[1].txt C:\Users\takedown\AppData\Roaming\Microsoft\Windows\Cookies\takedown@server.iad.liveperson[3].txt C:\Users\takedown\AppData\Roaming\Microsoft\Windows\Cookies\takedown@go.dynamic-tracking[2].txt C:\Users\takedown\AppData\Roaming\Microsoft\Windows\Cookies\takedown@sextracker[1].txt C:\Users\takedown\AppData\Roaming\Microsoft\Windows\Cookies\takedown@www.fpctraffic[1].txt C:\Users\takedown\AppData\Roaming\Microsoft\Windows\Cookies\takedown@advertising[1].txt C:\Users\takedown\AppData\Roaming\Microsoft\Windows\Cookies\takedown@trafficholder[2].txt C:\Users\takedown\AppData\Roaming\Microsoft\Windows\Cookies\takedown@tracking.quisma[2].txt C:\Users\takedown\AppData\Roaming\Microsoft\Windows\Cookies\takedown@ad.performance-netzwerk[1].txt C:\Users\takedown\AppData\Roaming\Microsoft\Windows\Cookies\takedown@teeniesmile[1].txt C:\Users\takedown\AppData\Roaming\Microsoft\Windows\Cookies\takedown@adfarm1.adition[1].txt C:\Users\takedown\AppData\Roaming\Microsoft\Windows\Cookies\takedown@de.sitestat[2].txt C:\Users\takedown\AppData\Roaming\Microsoft\Windows\Cookies\takedown@ad.adnet[1].txt C:\Users\takedown\AppData\Roaming\Microsoft\Windows\Cookies\takedown@microsoftwindows.112.2o7[1].txt C:\Users\takedown\AppData\Roaming\Microsoft\Windows\Cookies\takedown@zanox[2].txt C:\Users\takedown\AppData\Roaming\Microsoft\Windows\Cookies\takedown@de.sitestat[3].txt C:\Users\takedown\AppData\Roaming\Microsoft\Windows\Cookies\takedown@tsprotraffic[1].txt C:\Users\takedown\AppData\Roaming\Microsoft\Windows\Cookies\takedown@content.yieldmanager[3].txt C:\Users\takedown\AppData\Roaming\Microsoft\Windows\Cookies\takedown@msnonecare.112.2o7[1].txt C:\Users\takedown\AppData\Roaming\Microsoft\Windows\Cookies\takedown@atwola[1].txt C:\Users\takedown\AppData\Roaming\Microsoft\Windows\Cookies\takedown@zanox-affiliate[2].txt C:\Users\takedown\AppData\Roaming\Microsoft\Windows\Cookies\takedown@www.tiniporn[1].txt C:\Users\takedown\AppData\Roaming\Microsoft\Windows\Cookies\takedown@euros4click[2].txt C:\Users\takedown\AppData\Roaming\Microsoft\Windows\Cookies\takedown@go.trafficshop[1].txt C:\Users\takedown\AppData\Roaming\Microsoft\Windows\Cookies\takedown@www.usenext[2].txt C:\Users\takedown\AppData\Roaming\Microsoft\Windows\Cookies\takedown@www.candysteens[1].txt C:\Users\takedown\AppData\Roaming\Microsoft\Windows\Cookies\takedown@pornteensmovies[1].txt C:\Users\takedown\AppData\Roaming\Microsoft\Windows\Cookies\takedown@www.hardteentube[1].txt C:\Users\takedown\AppData\Roaming\Microsoft\Windows\Cookies\takedown@xxxmofo[1].txt C:\Users\takedown\AppData\Roaming\Microsoft\Windows\Cookies\takedown@de.sitestat[1].txt C:\Users\takedown\AppData\Roaming\Microsoft\Windows\Cookies\takedown@www.sexodirectory[1].txt C:\Users\takedown\AppData\Roaming\Microsoft\Windows\Cookies\takedown@ads.stileproject[1].txt C:\Users\takedown\AppData\Roaming\Microsoft\Windows\Cookies\takedown@www.pornosmile[1].txt C:\Users\takedown\AppData\Roaming\Microsoft\Windows\Cookies\takedown@ads.glispa[2].txt C:\Users\takedown\AppData\Roaming\Microsoft\Windows\Cookies\takedown@ad.trackbar[1].txt C:\Users\takedown\AppData\Roaming\Microsoft\Windows\Cookies\takedown@babesteenagers[3].txt C:\Users\takedown\AppData\Roaming\Microsoft\Windows\Cookies\takedown@ads.easyad[1].txt C:\Users\takedown\AppData\Roaming\Microsoft\Windows\Cookies\takedown@specificclick[1].txt C:\Users\takedown\AppData\Roaming\Microsoft\Windows\Cookies\takedown@fullsexmovies[2].txt C:\Users\takedown\AppData\Roaming\Microsoft\Windows\Cookies\takedown@xm.xtendmedia[1].txt C:\Users\takedown\AppData\Roaming\Microsoft\Windows\Cookies\takedown@forum.usenext[1].txt C:\Users\takedown\AppData\Roaming\Microsoft\Windows\Cookies\takedown@adserving.favorit-network[2].txt C:\Users\takedown\AppData\Roaming\Microsoft\Windows\Cookies\takedown@adsrv.admediate[2].txt C:\Windows\SysWOW64\config\systemprofile\AppData\Roaming\Microsoft\Windows\Cookies\system@2o7[1].txt |
Wir lassen eh noch etliche Scans laufen *gg* aber erst Morgen - da ich nun ins Bett gehe. Oder möchtest Du für mich schon liebenswerterweise vorarbeiten? :) |
Was wäre es denn Ihrer Meinung nach? Also bzgl. der Vorarbeit? :P Ansonsten wünsche ich Ihnen eine gute Nacht ;) |
Du kannst mich ruhig duzen ;) 1.) Kaspersky - Onlinescanner Dieser Scanner entfernt die Funde nicht, gibt aber einen guten Überblick über die vorhandene Malware. ---> hier herunterladen => Kaspersky Online Scanner => Hinweise zu älteren Versionen beachten! => Voraussetzung: Internet Explorer 6.0 oder höher => die nötigen ActiveX-Steuerelemente installieren => Update der Signaturen => Weiter => Scan-Einstellungen => Standard wählen => OK => Link "Arbeitsplatz" anklicken => Scan beginnt automatisch => Untersuchung wurde abgeschlossen => Protokoll speichern als => Dateityp auf .txt umstellen => auf dem Desktop als Kaspersky.txt speichern => Log hier posten => Deinstallation => Systemsteuerung => Software => Kaspersky Online Scanner entfernen 2.) Überprüfe den Rechner mit PrevXCSI. Poste ein Screenshot falls etwas gefunden werden sollte oder poste Namen und Pfade. 3.) Panda Active Scan Folgende Seite führt dich durch die Installation: PandaActiveScan2.0 InstallationKannst du beruhigt die Nacht oder heute im Verlaufe des Tages abarbeiten. Mach dir kein Stress, lies alles sorgfältig :) |
| Alle Zeitangaben in WEZ +1. Es ist jetzt 20:26 Uhr. |
Copyright ©2000-2025, Trojaner-Board