Alle 10 Minuten "Keine Rückmeldung", im Browser/Desktop, Programme...
Erstmal Hallo Trojaner Board und alle die diesen Thread bemerken, und mir helfen :D
System:
Windows Vista Home Premium
AMD Athlon 64 X2 Dual Core Proessor 5000+ 2.60GHz
2,00 GB RAM
ATI Radeon HD 4300/4500 Series
Nebenbei habe ich ein 64-Bit Motherboard, falls das irgendwas mit meinem Problem zu tun hat, das ich jetzt erkläre.
Also... Ich weiß nicht ungefähr wann es begonnen hat, aber nachdem ich eines Morgens meinen PC einschaltete brauchte es ca. 5-8 Minuten um Hochzufahren...
Nun das ist ja eigentlich nicht mein Problem, aber doch merksam...
Mein eigentliches Problem ist, das wenn ich z.B: im Browser 3 oder mehr Tabs offen habe, Firefox urplötzlich keine Rückmeldung mehr bekommt...
nach ca. 3 Minuten läuft alles wieder und dann nach ca. 10- 15 Minuten das gleiche...
Keine Rückmeldung, 2 Minuten warten, dann geht alles...
Genau das gleiche ist mit meinen Programmen z.B: wenn ich einen Ordner öffne oder meine Systemsteuerung...
Nun denn...
HiJackThis Logfile :
HiJackthis Logfile: Code:
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 09:45:12, on 29.08.2010
Platform: Windows Vista SP2 (WinNT 6.00.1906)
MSIE: Internet Explorer v8.00 (8.00.6001.18943)
Boot mode: Normal
Running processes:
C:\Users\***\AppData\Local\Google\Update\1.2.183.29\GoogleCrashHandler.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\Windows Media Player\wmplayer.exe
C:\Users\***\Desktop\Rescue Equip\HiJackThis\HiJackThis204.exe
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
O1 - Hosts: ::1 localhost
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: AskBar BHO - {201f27d4-3704-41d6-89c1-aa35e39143ed} - C:\Program Files (x86)\AskBarDis\bar\bin\askBar.dll
O2 - BHO: Windows Live Family Safety Browser Helper - {4f3ed5cd-0726-42a9-87f5-d13f3d2976ac} - C:\Program Files (x86)\Windows Live\Family Safety\fssbho.dll
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll
O2 - BHO: Windows Live Anmelde-Hilfsprogramm - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files (x86)\Windows Live\Toolbar\wltcore.dll
O17 - HKLM\System\CCS\Services\Tcpip\..\{D403D69F-AE32-4078-888D-30163CDB18C5}: NameServer = 195.50.140.246 195.50.140.114
O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\Windows\system32\browseui.dll
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: Avira AntiVir Planer (AntiVirSchedulerService) - Avira GmbH - C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
O23 - Service: Avira AntiVir Guard (AntiVirService) - Avira GmbH - C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
O23 - Service: @dfsrres.dll,-101 (DFSR) - Unknown owner - C:\Windows\system32\DFSR.exe (file missing)
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files (x86)\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: nProtect GameGuard Service (npggsvc) - Unknown owner - C:\Windows\system32\GameMon.des.exe (file missing)
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: PnkBstrB - Unknown owner - C:\Windows\system32\PnkBstrB.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SLsvc.exe,-101 (slsvc) - Unknown owner - C:\Windows\system32\SLsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 4900 bytes
--- --- ---
Anti Malwarebytes Logfile :
Malwarebytes' Anti-Malware 1.46
www.malwarebytes.org
Datenbank Version: 4052
Windows 6.0.6002 Service Pack 2
Internet Explorer 8.0.6001.18943
29.08.2010 00:54:04
mbam-log-2010-08-29 (00-54-04).txt
Art des Suchlaufs: Vollständiger Suchlauf (C:\|D:\|E:\|F:\|G:\|H:\|I:\|)
Durchsuchte Objekte: 294002
Laufzeit: 1 Stunde(n), 57 Minute(n), 43 Sekunde(n)
Infizierte Speicherprozesse: 0
Infizierte Speichermodule: 0
Infizierte Registrierungsschlüssel: 0
Infizierte Registrierungswerte: 0
Infizierte Dateiobjekte der Registrierung: 0
Infizierte Verzeichnisse: 0
Infizierte Dateien: 0
Infizierte Speicherprozesse:
(Keine bösartigen Objekte gefunden)
Infizierte Speichermodule:
(Keine bösartigen Objekte gefunden)
Infizierte Registrierungsschlüssel:
(Keine bösartigen Objekte gefunden)
Infizierte Registrierungswerte:
(Keine bösartigen Objekte gefunden)
Infizierte Dateiobjekte der Registrierung:
(Keine bösartigen Objekte gefunden)
Infizierte Verzeichnisse:
(Keine bösartigen Objekte gefunden)
Infizierte Dateien:
(Keine bösartigen Objekte gefunden)
OTL Logfile:OTL Logfile: Code:
OTL logfile created on: 28.08.2010 19:54:08 - Run 1
OTL by OldTimer - Version 3.2.10.0 Folder = C:\Users\Manuel\Desktop
64bit-Windows Vista Home Premium Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18943)
Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy
2,00 Gb Total Physical Memory | 1,00 Gb Available Physical Memory | 46,00% Memory free
4,00 Gb Paging File | 3,00 Gb Available in Paging File | 66,00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 223,88 Gb Total Space | 152,50 Gb Free Space | 68,11% Space Free | Partition Type: NTFS
Drive D: | 9,00 Gb Total Space | 8,89 Gb Free Space | 98,72% Space Free | Partition Type: NTFS
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded
Computer Name: ***-PC
Current User Name: ***
Logged in as Administrator.
Current Boot Mode: Normal
Scan Mode: Current user
Include 64bit Scans
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Standard
========== Processes (SafeList) ==========
PRC - [2010.08.28 19:02:11 | 000,575,488 | ---- | M] (OldTimer Tools) -- C:\Users\Manuel\Desktop\OTL.exe
PRC - [2010.08.27 18:38:06 | 000,134,808 | ---- | M] (Google Inc.) -- C:\Users\Manuel\AppData\Local\Google\Update\1.2.183.29\GoogleCrashHandler.exe
PRC - [2010.08.18 03:58:17 | 000,945,720 | ---- | M] (Google Inc.) -- C:\Users\Manuel\AppData\Local\Google\Chrome\Application\chrome.exe
PRC - [2009.12.27 16:38:39 | 000,103,736 | ---- | M] () -- C:\Windows\SysWOW64\PnkBstrB.exe
PRC - [2009.12.27 16:38:28 | 000,066,872 | ---- | M] () -- C:\Windows\SysWOW64\PnkBstrA.exe
PRC - [2009.07.21 14:34:28 | 000,185,089 | ---- | M] (Avira GmbH) -- C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
PRC - [2009.05.19 11:36:18 | 000,240,512 | ---- | M] (Microsoft Corporation) -- C:\Program Files (x86)\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
PRC - [2009.05.13 16:48:18 | 000,108,289 | ---- | M] (Avira GmbH) -- C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
========== Modules (SafeList) ==========
MOD - [2010.08.28 19:02:11 | 000,575,488 | ---- | M] (OldTimer Tools) -- C:\Users\Manuel\Desktop\OTL.exe
MOD - [2008.01.21 04:50:01 | 000,110,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\msscript.ocx
========== Win32 Services (SafeList) ==========
SRV:64bit: - File not found [Auto | Running] -- C:\Windows\SysNative\PnkBstrB.exe -- (PnkBstrB)
SRV:64bit: - File not found [Auto | Running] -- C:\Windows\SysNative\PnkBstrA.exe -- (PnkBstrA)
SRV:64bit: - File not found [On_Demand | Stopped] -- C:\Windows\SysNative\GameMon.des -- (npggsvc)
SRV:64bit: - [2010.08.04 03:51:20 | 000,203,264 | ---- | M] (AMD) [Auto | Running] -- C:\Windows\SysNative\atiesrxx.exe -- (AMD External Events Utility)
SRV - [2009.12.27 16:38:39 | 000,103,736 | ---- | M] () [Auto | Running] -- C:\Windows\SysWOW64\PnkBstrB.exe -- (PnkBstrB)
SRV - [2009.12.27 16:38:28 | 000,066,872 | ---- | M] () [Auto | Running] -- C:\Windows\SysWOW64\PnkBstrA.exe -- (PnkBstrA)
SRV - [2009.12.04 01:29:00 | 003,377,880 | ---- | M] (INCA Internet Co., Ltd.) [On_Demand | Stopped] -- C:\Windows\SysWow64\GameMon.des -- (npggsvc)
SRV - [2009.08.05 22:48:42 | 000,704,864 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe -- (fsssvc)
SRV - [2009.07.21 14:34:28 | 000,185,089 | ---- | M] (Avira GmbH) [Auto | Running] -- C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe -- (AntiVirService)
SRV - [2009.05.19 11:36:18 | 000,240,512 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files (x86)\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe -- (SeaPort)
SRV - [2009.05.13 16:48:18 | 000,108,289 | ---- | M] (Avira GmbH) [Auto | Running] -- C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe -- (AntiVirSchedulerService)
SRV - [2009.04.02 13:47:04 | 000,234,888 | ---- | M] () [Disabled | Stopped] -- C:\Program Files (x86)\AskBarDis\bar\bin\ASKUpgrade.exe -- (ASKUpgrade)
SRV - [2009.04.02 13:47:02 | 000,464,264 | ---- | M] () [Disabled | Stopped] -- C:\Program Files (x86)\AskBarDis\bar\bin\AskService.exe -- (ASKService)
========== Driver Services (SafeList) ==========
DRV:64bit: - File not found [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\DRIVERS\nwlnkfwd.sys -- (NwlnkFwd)
DRV:64bit: - File not found [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\DRIVERS\nwlnkflt.sys -- (NwlnkFlt)
DRV:64bit: - File not found [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\npptNT2.sys -- (NPPTNT2)
DRV:64bit: - File not found [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\DRIVERS\ipinip.sys -- (IpInIp)
DRV:64bit: - File not found [Kernel | Boot | Stopped] -- C:\Windows\SysNative\DRIVERS\amdide64.sys -- (amdide64)
DRV:64bit: - File not found [Kernel | Boot | Stopped] -- C:\Windows\SysNative\DRIVERS\ahcix64s.sys -- (ahcix64s)
DRV:64bit: - [2010.08.04 04:22:36 | 007,451,648 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\DRIVERS\atikmdag.sys -- (atikmdag)
DRV:64bit: - [2010.08.04 04:22:36 | 007,451,648 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\DRIVERS\atikmdag.sys -- (amdkmdag)
DRV:64bit: - [2010.08.04 03:15:44 | 000,268,288 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\DRIVERS\atikmpag.sys -- (amdkmdap)
DRV:64bit: - [2009.12.08 14:52:10 | 000,074,880 | ---- | M] (Avira GmbH) [File_System | Auto | Running] -- C:\Windows\SysNative\DRIVERS\avgntflt.sys -- (avgntflt)
DRV:64bit: - [2009.11.29 19:14:00 | 000,303,616 | ---- | M] () [Kernel | Auto | Stopped] -- C:\Windows\SysNative\DRIVERS\atksgt.sys -- (atksgt)
DRV:64bit: - [2009.11.29 19:13:59 | 000,035,328 | ---- | M] () [Kernel | Auto | Stopped] -- C:\Windows\SysNative\DRIVERS\lirsgt.sys -- (lirsgt)
DRV:64bit: - [2009.09.23 10:42:58 | 000,033,856 | -H-- | M] (LogMeIn, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\DRIVERS\hamachi.sys -- (hamachi)
DRV:64bit: - [2009.08.05 23:24:16 | 000,061,280 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\DRIVERS\fssfltr.sys -- (fssfltr)
DRV:64bit: - [2009.07.23 22:26:32 | 000,871,408 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\SysNative\Drivers\sptd.sys -- (sptd)
DRV:64bit: - [2008.12.15 11:21:30 | 000,016,400 | ---- | M] (ATI Technologies Inc.) [Kernel | Boot | Running] -- C:\Windows\SysNative\DRIVERS\AtiPcie.sys -- (AtiPcie) ATI PCI Express (3GIO)
DRV:64bit: - [2008.12.10 17:37:52 | 000,184,832 | ---- | M] (Realtek Corporation ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\DRIVERS\Rtlh64.sys -- (RTL8169)
DRV:64bit: - [2008.10.17 11:00:00 | 000,179,768 | ---- | M] (AhnLab, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\Mkd3kfNt.sys -- (Mkd3kfNt)
DRV:64bit: - [2008.10.17 11:00:00 | 000,106,040 | ---- | M] (AhnLab, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\Mkd2Nadr.sys -- (Mkd2Nadr)
DRV:64bit: - [2008.09.01 08:03:01 | 000,316,456 | ---- | M] (Marvell Semiconductor, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\SysNative\drivers\mv64xx.sys -- (mv64xx)
DRV:64bit: - [2008.04.15 11:54:16 | 000,388,120 | ---- | M] (Intel Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\SysNative\drivers\iastor.sys -- (iaStor)
DRV:64bit: - [2008.02.19 22:48:14 | 000,199,176 | ---- | M] (Promise Technology, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\SysNative\drivers\ftt3.sys -- (FTT3)
DRV:64bit: - [2007.10.01 14:41:08 | 000,008,192 | ---- | M] (Philips ) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\SPC520m.sys -- (SPC520m)
DRV:64bit: - [2007.10.01 14:41:04 | 000,579,072 | ---- | M] (Philips ) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\SPC520.sys -- (SPC520)
DRV:64bit: - [2006.11.10 15:08:58 | 000,030,720 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\DRIVERS\ATITool64.sys -- (ATITool)
DRV:64bit: - [2006.09.18 23:36:24 | 000,000,308 | ---- | M] () [File_System | On_Demand | Running] -- C:\Windows\SysNative\Wbem\ntfs.mof -- (Ntfs)
DRV - [2005.01.04 11:43:08 | 000,004,682 | ---- | M] (INCA Internet Co., Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysWOW64\npptNT2.sys -- (NPPTNT2)
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.msn.com/
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page =
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.msn.com/
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://de.msn.com/?ocid=iehp
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 6B 9F A2 C1 28 0A CA 01 [binary data]
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
========== FireFox ==========
FF - prefs.js..browser.search.defaultenginename: "ICQ Search"
FF - prefs.js..browser.search.selectedEngine: "ICQ Search"
FF - prefs.js..browser.startup.homepage: "hxxp://www.google.de/"
FF - prefs.js..extensions.enabledItems: cybersearch@cybernetnews.com:2.0.4
FF - prefs.js..extensions.enabledItems: {D4DD63FA-01E4-46a7-B6B1-EDAB7D6AD389}:0.9.6.5
FF - prefs.js..extensions.enabledItems: {e4a8a97b-f2ed-450b-b12d-ee082ba24781}:0.8.20091209.4
FF - prefs.js..extensions.enabledItems: illimitux@illimitux.net:3.1
FF - prefs.js..extensions.enabledItems: {EEE6C361-6118-11DC-9C72-001320C79847}:1.0.0.8
FF - prefs.js..extensions.enabledItems: {E9A1DEE0-C623-4439-8932-001E7D17607D}:2.1.0.5
FF - prefs.js..extensions.enabledItems: {635abd67-4fe9-1b23-4f01-e679fa7484c1}:1.6.6.20090220
FF - prefs.js..extensions.enabledItems: one@h3j4.com:1.45
FF - prefs.js..keyword.URL: "hxxp://search.sweetim.com/search.asp?src=2&q="
FF - prefs.js..sweetim.toolbar.previous.keyword.URL: "chrome://browser-region/locale/region.properties"
FF - HKLM\software\mozilla\Mozilla Firefox 3.5.7\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2010.07.17 19:27:40 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.5.7\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins [2010.08.27 20:59:25 | 000,000,000 | ---D | M]
[2009.07.21 20:28:38 | 000,000,000 | ---D | M] -- C:\Users\Manuel\AppData\Roaming\mozilla\Extensions
[2010.01.12 00:05:15 | 000,000,000 | ---D | M] -- C:\Users\Manuel\AppData\Roaming\mozilla\Firefox\Profiles\ep9hrrs6.default\extensions
[2009.09.03 10:38:08 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Users\Manuel\AppData\Roaming\mozilla\Firefox\Profiles\ep9hrrs6.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2009.12.02 20:19:17 | 000,000,000 | ---D | M] (Yahoo! Toolbar) -- C:\Users\Manuel\AppData\Roaming\mozilla\Firefox\Profiles\ep9hrrs6.default\extensions\{635abd67-4fe9-1b23-4f01-e679fa7484c1}
[2010.01.12 00:05:09 | 000,000,000 | ---D | M] (Download Statusbar) -- C:\Users\Manuel\AppData\Roaming\mozilla\Firefox\Profiles\ep9hrrs6.default\extensions\{D4DD63FA-01E4-46a7-B6B1-EDAB7D6AD389}
[2009.12.13 17:52:34 | 000,000,000 | ---D | M] (Greasemonkey) -- C:\Users\Manuel\AppData\Roaming\mozilla\Firefox\Profiles\ep9hrrs6.default\extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781}
[2009.12.04 14:24:19 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Manuel\AppData\Roaming\mozilla\Firefox\Profiles\ep9hrrs6.default\extensions\{E9A1DEE0-C623-4439-8932-001E7D17607D}
[2009.09.04 21:33:34 | 000,000,000 | ---D | M] (SweetIM Toolbar for Firefox) -- C:\Users\Manuel\AppData\Roaming\mozilla\Firefox\Profiles\ep9hrrs6.default\extensions\{EEE6C361-6118-11DC-9C72-001320C79847}
[2009.12.02 20:19:50 | 000,000,000 | ---D | M] -- C:\Users\Manuel\AppData\Roaming\mozilla\Firefox\Profiles\ep9hrrs6.default\extensions\cybersearch@cybernetnews.com
[2009.09.14 16:16:49 | 000,000,000 | ---D | M] -- C:\Users\Manuel\AppData\Roaming\mozilla\Firefox\Profiles\ep9hrrs6.default\extensions\illimitux@illimitux.net
[2009.08.21 19:59:54 | 000,000,000 | ---D | M] -- C:\Users\Manuel\AppData\Roaming\mozilla\Firefox\Profiles\ep9hrrs6.default\extensions\one@h3j4.com
[2010.01.06 18:22:31 | 000,000,955 | ---- | M] () -- C:\Users\Manuel\AppData\Roaming\Mozilla\FireFox\Profiles\ep9hrrs6.default\searchplugins\icqplugin.xml
[2009.09.04 21:33:22 | 000,003,915 | ---- | M] () -- C:\Users\Manuel\AppData\Roaming\Mozilla\FireFox\Profiles\ep9hrrs6.default\searchplugins\sweetim.xml
[2010.08.27 20:59:27 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Mozilla Firefox\extensions
[2009.08.06 03:01:41 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\Mozilla Firefox\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}
[2010.08.27 20:59:27 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}
[2010.07.17 05:00:04 | 000,423,656 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files (x86)\Mozilla Firefox\plugins\npdeployJava1.dll
[2009.04.08 04:06:28 | 000,122,880 | ---- | M] (AB) -- C:\Program Files (x86)\Mozilla Firefox\plugins\NPOP7PlugIn.dll
[2009.10.20 18:23:01 | 000,238,776 | ---- | M] (Pando Networks) -- C:\Program Files (x86)\Mozilla Firefox\plugins\npPandoWebInst.dll
[2009.07.15 21:08:31 | 000,001,392 | ---- | M] () -- C:\Program Files (x86)\Mozilla Firefox\searchplugins\amazondotcom-de.xml
[2009.07.15 21:08:31 | 000,002,344 | ---- | M] () -- C:\Program Files (x86)\Mozilla Firefox\searchplugins\eBay-de.xml
[2009.07.15 21:08:31 | 000,006,805 | ---- | M] () -- C:\Program Files (x86)\Mozilla Firefox\searchplugins\leo_ende_de.xml
[2009.09.11 19:35:37 | 000,001,178 | ---- | M] () -- C:\Program Files (x86)\Mozilla Firefox\searchplugins\wikipedia-de.xml
[2009.07.15 21:08:31 | 000,000,801 | ---- | M] () -- C:\Program Files (x86)\Mozilla Firefox\searchplugins\yahoo-de.xml
O1 HOSTS File: ([2006.09.18 23:37:24 | 000,000,761 | ---- | M]) - C:\Windows\SysNative\drivers\etc\Hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O2:64bit: - BHO: (Windows Live Family Safety Browser Helper Class) - {4f3ed5cd-0726-42a9-87f5-d13f3d2976ac} - C:\Programme\Windows Live\Family Safety\fssbho.dll (Microsoft Corporation)
O2 - BHO: (AskBar BHO) - {201f27d4-3704-41d6-89c1-aa35e39143ed} - C:\Program Files (x86)\AskBarDis\bar\bin\askBar.dll (Ask.com)
O2 - BHO: (Windows Live Family Safety Browser Helper Class) - {4f3ed5cd-0726-42a9-87f5-d13f3d2976ac} - C:\Program Files (x86)\Windows Live\Family Safety\fssbho.dll (Microsoft Corporation)
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - No CLSID value found.
O2 - BHO: (Search Helper) - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll (Microsoft Corporation)
O2 - BHO: (Windows Live Toolbar Helper) - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files (x86)\Windows Live\Toolbar\wltcore.dll (Microsoft Corporation)
O3 - HKCU\..\Toolbar\WebBrowser: (&Windows Live Toolbar) - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files (x86)\Windows Live\Toolbar\wltcore.dll (Microsoft Corporation)
O4 - HKLM..\Run: [StartCCC] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutorun = 0
O9 - Extra Button: An OneNote senden - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : An OneNote s&enden - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)
O13 - gopher Prefix: missing
O13 - gopher Prefix: missing
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_21-windows-i586.cab (Java Plug-in 1.6.0_21)
O16 - DPF: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_21-windows-i586.cab (Java Plug-in 1.6.0_21)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_21-windows-i586.cab (Java Plug-in 1.6.0_21)
O18:64bit: - Protocol\Handler\livecall {828030A1-22C1-4009-854F-8E305202313F} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\ms-itss {0A9007C0-4076-11D3-8789-0000F8105754} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\msnim {828030A1-22C1-4009-854F-8E305202313F} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\wlmailhtml {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\Programme\Common Files\Microsoft Shared\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O24 - Desktop WallPaper: C:\Users\Manuel\AppData\Roaming\Microsoft\Windows Photo Gallery\Hintergrundbild der Windows-Fotogalerie.jpg
O24 - Desktop BackupWallPaper: C:\Users\Manuel\AppData\Roaming\Microsoft\Windows Photo Gallery\Hintergrundbild der Windows-Fotogalerie.jpg
O32 - HKLM CDRom: AutoRun - 1
O33 - MountPoints2\{934e0311-7819-11de-b608-00248c453aa8}\Shell - "" = AutoRun
O33 - MountPoints2\{934e0311-7819-11de-b608-00248c453aa8}\Shell\AutoRun\command - "" = J:\Autorun.exe -- File not found
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
========== Files/Folders - Created Within 30 Days ==========
[2010.08.28 19:43:35 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\ERUNT
[2010.08.28 19:02:22 | 000,000,000 | ---D | C] -- C:\Users\Manuel\Desktop\MFTools
[2010.08.28 19:02:09 | 000,575,488 | ---- | C] (OldTimer Tools) -- C:\Users\Manuel\Desktop\OTL.exe
[2010.08.28 17:14:53 | 001,942,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dfshim.dll
[2010.08.28 17:14:53 | 001,130,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dfshim.dll
[2010.08.28 17:14:53 | 000,320,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\PresentationHost.exe
[2010.08.28 17:14:53 | 000,295,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\PresentationHost.exe
[2010.08.28 17:14:53 | 000,109,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\PresentationHostProxy.dll
[2010.08.28 17:14:53 | 000,099,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\PresentationHostProxy.dll
[2010.08.28 17:14:53 | 000,049,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\netfxperf.dll
[2010.08.28 17:14:53 | 000,048,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\netfxperf.dll
[2010.08.28 17:14:21 | 000,294,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\browserchoice.exe
[2010.08.28 17:12:16 | 000,032,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\nshhttp.dll
[2010.08.28 17:12:16 | 000,024,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\nshhttp.dll
[2010.08.28 17:12:14 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\httpapi.dll
[2010.08.28 17:12:14 | 000,030,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\httpapi.dll
[2010.08.28 16:46:25 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft Help
[2010.08.28 15:10:59 | 000,000,000 | ---D | C] -- C:\Users\Manuel\Desktop\EMU´s
[2010.08.28 15:10:51 | 000,000,000 | ---D | C] -- C:\Users\Manuel\Desktop\Musik
[2010.08.28 15:10:38 | 000,000,000 | ---D | C] -- C:\Users\Manuel\Desktop\Bilder
[2010.08.28 15:10:01 | 000,000,000 | ---D | C] -- C:\Users\Manuel\Desktop\HiJackThis Equip
[2010.08.28 14:43:58 | 000,000,000 | ---D | C] -- C:\Users\Manuel\AppData\Roaming\Uniblue
[2010.08.28 14:37:41 | 000,000,000 | ---D | C] -- C:\Users\Manuel\AppData\Roaming\Registry Mechanic
[2010.08.28 11:52:35 | 001,570,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\quartz.dll
[2010.08.28 11:52:34 | 001,314,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\quartz.dll
[2010.08.28 11:52:33 | 000,123,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msvfw32.dll
[2010.08.28 11:52:33 | 000,082,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mciavi32.dll
[2010.08.28 11:52:32 | 000,091,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\avifil32.dll
[2010.08.28 11:52:29 | 000,817,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript.dll
[2010.08.28 11:52:29 | 000,726,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\jscript.dll
[2010.08.28 11:52:23 | 001,927,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\gameux.dll
[2010.08.28 11:52:21 | 001,696,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\gameux.dll
[2010.08.28 11:52:19 | 000,032,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Apphlpdm.dll
[2010.08.28 11:52:19 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Apphlpdm.dll
[2010.08.28 11:52:18 | 004,240,384 | ---- | C] (Microsoft) -- C:\Windows\SysWow64\GameUXLegacyGDFs.dll
[2010.08.28 11:52:17 | 004,240,384 | ---- | C] (Microsoft) -- C:\Windows\SysNative\GameUXLegacyGDFs.dll
[2010.08.28 11:52:12 | 000,366,080 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\SysNative\atmfd.dll
[2010.08.28 11:52:12 | 000,289,792 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\atmfd.dll
[2010.08.28 11:52:12 | 000,048,128 | ---- | C] (Adobe Systems) -- C:\Windows\SysNative\atmlib.dll
[2010.08.28 11:52:12 | 000,034,304 | ---- | C] (Adobe Systems) -- C:\Windows\SysWow64\atmlib.dll
[2010.08.28 11:51:47 | 000,612,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\vbscript.dll
[2010.08.28 11:51:47 | 000,420,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\vbscript.dll
[2010.08.28 11:51:46 | 000,050,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rtutils.dll
[2010.08.28 11:51:46 | 000,036,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\rtutils.dll
[2010.08.28 11:51:32 | 000,081,920 | ---- | C] (Radius Inc.) -- C:\Windows\SysWow64\iccvid.dll
[2010.08.28 11:51:30 | 004,697,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntoskrnl.exe
[2010.08.28 11:51:04 | 000,471,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\secproc_isv.dll
[2010.08.28 11:51:04 | 000,471,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\secproc.dll
[2010.08.28 11:51:03 | 000,539,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\secproc.dll
[2010.08.28 11:51:03 | 000,538,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\secproc_isv.dll
[2010.08.28 11:51:00 | 000,600,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\RMActivate_isv.exe
[2010.08.28 11:51:00 | 000,599,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\RMActivate.exe
[2010.08.28 11:51:00 | 000,409,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\RMActivate_ssp.exe
[2010.08.28 11:50:59 | 000,526,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\RMActivate_isv.exe
[2010.08.28 11:50:59 | 000,413,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\RMActivate_ssp_isv.exe
[2010.08.28 11:50:58 | 000,518,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\RMActivate.exe
[2010.08.28 11:50:58 | 000,347,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\RMActivate_ssp.exe
[2010.08.28 11:50:58 | 000,346,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\RMActivate_ssp_isv.exe
[2010.08.28 11:50:57 | 000,160,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\secproc_ssp_isv.dll
[2010.08.28 11:50:57 | 000,160,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\secproc_ssp.dll
[2010.08.28 11:50:57 | 000,152,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\secproc_ssp_isv.dll
[2010.08.28 11:50:57 | 000,152,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\secproc_ssp.dll
[2010.08.28 11:50:56 | 000,460,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msdrm.dll
[2010.08.28 11:50:56 | 000,332,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msdrm.dll
[2010.08.28 11:47:31 | 000,599,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msfeeds.dll
[2010.08.28 11:47:28 | 000,173,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ie4uinit.exe
[2010.08.28 11:47:28 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msfeedssync.exe
[2010.08.28 11:47:27 | 002,335,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iertutil.dll
[2010.08.28 11:47:27 | 001,469,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\inetcpl.cpl
[2010.08.28 11:47:27 | 000,055,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iernonce.dll
[2010.08.28 11:47:26 | 000,243,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\occache.dll
[2010.08.28 11:47:26 | 000,206,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\occache.dll
[2010.08.28 11:47:26 | 000,184,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iepeers.dll
[2010.08.28 11:47:26 | 000,164,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieui.dll
[2010.08.28 11:47:25 | 001,538,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\inetcpl.cpl
[2010.08.28 11:47:25 | 000,706,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msfeeds.dll
[2010.08.28 11:47:25 | 000,162,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieUnatt.exe
[2010.08.28 11:47:25 | 000,133,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieUnatt.exe
[2010.08.28 11:47:25 | 000,109,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iesysprep.dll
[2010.08.28 11:47:25 | 000,071,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iesetup.dll
[2010.08.28 11:47:24 | 000,252,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iepeers.dll
[2010.08.28 11:47:24 | 000,219,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieui.dll
[2010.08.28 11:47:24 | 000,132,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iesysprep.dll
[2010.08.28 11:47:24 | 000,077,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iesetup.dll
[2010.08.28 11:47:24 | 000,072,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iernonce.dll
[2010.08.28 11:47:24 | 000,070,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ie4uinit.exe
[2010.08.28 11:47:24 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msfeedssync.exe
[2010.08.28 11:46:18 | 000,072,192 | ---- | C] (Fraunhofer Institut Integrierte Schaltungen IIS) -- C:\Windows\SysNative\l3codeca.acm
[2010.08.28 11:46:18 | 000,062,464 | ---- | C] (Fraunhofer Institut Integrierte Schaltungen IIS) -- C:\Windows\SysWow64\l3codeca.acm
[2010.08.28 11:46:17 | 000,220,672 | ---- | C] (Fraunhofer Institut Integrierte Schaltungen IIS) -- C:\Windows\SysWow64\l3codecp.acm
[2010.08.28 11:46:17 | 000,181,760 | ---- | C] (Fraunhofer Institut Integrierte Schaltungen IIS) -- C:\Windows\SysNative\l3codecp.acm
[2010.08.28 11:32:43 | 000,000,000 | ---D | C] -- C:\ProgramData\TEMP
[2010.08.28 11:32:43 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Registry Mechanic
[2010.08.28 11:06:17 | 000,218,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wintrust.dll
[2010.08.28 11:06:17 | 000,172,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wintrust.dll
[2010.08.28 11:06:15 | 000,104,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cabview.dll
[2010.08.28 11:06:15 | 000,098,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\cabview.dll
[2010.08.27 21:06:39 | 000,000,000 | ---D | C] -- C:\Users\Manuel\Desktop\Touhou Music
[2010.08.27 20:59:39 | 000,000,000 | ---D | C] -- C:\ProgramData\Sun
[2010.08.27 20:59:38 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Java
[2010.08.27 20:59:25 | 000,423,656 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\deployJava1.dll
[2010.08.27 20:59:25 | 000,153,376 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\javaws.exe
[2010.08.27 20:59:25 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\javaw.exe
[2010.08.27 20:59:25 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\java.exe
[2010.08.27 20:46:02 | 000,000,000 | ---D | C] -- C:\ProgramData\ATI
[2010.08.27 20:36:15 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\ATI
[2010.08.27 20:27:04 | 000,000,000 | ---D | C] -- C:\ATI
[2010.08.27 18:54:13 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Skype
[2010.08.27 18:54:11 | 000,000,000 | R--D | C] -- C:\Program Files (x86)\Skype
[2010.08.27 18:53:54 | 000,000,000 | ---D | C] -- C:\ProgramData\Skype
[2010.08.04 04:22:36 | 007,451,648 | ---- | C] (ATI Technologies Inc.) -- C:\Windows\SysNative\drivers\atikmdag.sys
[2010.08.04 04:07:12 | 020,817,408 | ---- | C] (Advanced Micro Devices, Inc.) -- C:\Windows\SysNative\atio6axx.dll
[2010.08.04 03:55:00 | 000,143,360 | ---- | C] (Advanced Micro Devices, Inc.) -- C:\Windows\SysNative\atiapfxx.exe
[2010.08.04 03:54:50 | 000,519,680 | ---- | C] (ATI Technologies Inc. ) -- C:\Windows\SysWow64\aticfx32.dll
[2010.08.04 03:54:00 | 000,598,528 | ---- | C] (ATI Technologies Inc. ) -- C:\Windows\SysNative\aticfx64.dll
[2010.08.04 03:52:04 | 000,450,560 | ---- | C] (Advanced Micro Devices, Inc.) -- C:\Windows\SysNative\ATIDEMGX.dll
[2010.08.04 03:51:54 | 000,461,824 | ---- | C] (AMD) -- C:\Windows\SysNative\atieclxx.exe
[2010.08.04 03:51:20 | 000,203,264 | ---- | C] (AMD) -- C:\Windows\SysNative\atiesrxx.exe
[2010.08.04 03:49:50 | 000,356,352 | ---- | C] (ATI Technologies, Inc.) -- C:\Windows\SysWow64\atipdlxx.dll
[2010.08.04 03:49:48 | 015,845,888 | ---- | C] (Advanced Micro Devices, Inc.) -- C:\Windows\SysWow64\atioglxx.dll
[2010.08.04 03:49:40 | 000,278,528 | ---- | C] (ATI Technologies, Inc.) -- C:\Windows\SysWow64\Oemdspif.dll
[2010.08.04 03:49:36 | 000,012,288 | ---- | C] (AMD) -- C:\Windows\SysNative\atimuixx.dll
[2010.08.04 03:49:32 | 000,059,392 | ---- | C] (ATI Technologies, Inc.) -- C:\Windows\SysNative\atiedu64.dll
[2010.08.04 03:49:26 | 000,043,520 | ---- | C] (ATI Technologies, Inc.) -- C:\Windows\SysWow64\ati2edxx.dll
[2010.08.04 03:46:32 | 003,899,392 | ---- | C] (ATI Technologies Inc. ) -- C:\Windows\SysWow64\atidxx32.dll
[2010.08.04 03:37:46 | 004,554,240 | ---- | C] (ATI Technologies Inc. ) -- C:\Windows\SysNative\atidxx64.dll
[2010.08.04 03:28:30 | 003,077,120 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysNative\atiumd6a.dll
[2010.08.04 03:28:26 | 004,021,760 | ---- | C] (ATI Technologies Inc. ) -- C:\Windows\SysWow64\atiumdag.dll
[2010.08.04 03:26:02 | 000,051,200 | ---- | C] (Advanced Micro Devices Inc.) -- C:\Windows\SysNative\aticalrt64.dll
[2010.08.04 03:26:00 | 000,046,080 | ---- | C] (Advanced Micro Devices Inc.) -- C:\Windows\SysWow64\aticalrt.dll
[2010.08.04 03:25:54 | 000,044,544 | ---- | C] (Advanced Micro Devices Inc.) -- C:\Windows\SysNative\aticalcl64.dll
[2010.08.04 03:25:50 | 000,044,032 | ---- | C] (Advanced Micro Devices Inc.) -- C:\Windows\SysWow64\aticalcl.dll
[2010.08.04 03:25:42 | 005,394,432 | ---- | C] (Advanced Micro Devices Inc.) -- C:\Windows\SysNative\aticaldd64.dll
[2010.08.04 03:24:34 | 004,341,248 | ---- | C] (Advanced Micro Devices Inc.) -- C:\Windows\SysWow64\aticaldd.dll
[2010.08.04 03:23:46 | 000,056,832 | ---- | C] (AMD) -- C:\Windows\SysNative\coinst.dll
[2010.08.04 03:21:38 | 003,324,416 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysWow64\atiumdva.dll
[2010.08.04 03:16:14 | 000,337,920 | ---- | C] (Advanced Micro Devices, Inc.) -- C:\Windows\SysNative\atiadlxx.dll
[2010.08.04 03:16:06 | 000,241,664 | ---- | C] (Advanced Micro Devices, Inc.) -- C:\Windows\SysWow64\atiadlxy.dll
[2010.08.04 03:15:58 | 000,014,848 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysNative\atig6pxx.dll
[2010.08.04 03:15:54 | 000,012,800 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysWow64\atiglpxx.dll
[2010.08.04 03:15:54 | 000,012,800 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysNative\atiglpxx.dll
[2010.08.04 03:15:52 | 000,018,432 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysNative\atig6txx.dll
[2010.08.04 03:15:48 | 000,016,896 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysWow64\atigktxx.dll
[2010.08.04 03:15:44 | 000,268,288 | ---- | C] (Advanced Micro Devices, Inc.) -- C:\Windows\SysNative\drivers\atikmpag.sys
[2010.08.04 03:15:08 | 000,039,424 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysNative\atiuxp64.dll
[2010.08.04 03:15:02 | 000,030,208 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysWow64\atiuxpag.dll
[2010.08.04 03:14:56 | 000,036,864 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysNative\atiu9p64.dll
[2010.08.04 03:14:48 | 000,027,648 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysWow64\atiu9pag.dll
[2010.08.04 03:14:12 | 000,053,248 | ---- | C] (ATI Technologies Inc.) -- C:\Windows\SysNative\drivers\ati2erec.dll
[2010.08.04 03:09:28 | 000,054,784 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysNative\atimpc64.dll
[2010.08.04 03:09:28 | 000,054,784 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysNative\amdpcom64.dll
[2010.08.04 03:09:22 | 000,052,736 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysWow64\atimpc32.dll
[2010.08.04 03:09:22 | 000,052,736 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysWow64\amdpcom32.dll
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
========== Files - Modified Within 30 Days ==========
[2010.08.28 19:54:26 | 003,145,728 | -HS- | M] () -- C:\Users\Manuel\NTUSER.DAT
[2010.08.28 19:43:00 | 000,001,122 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1788838440-610687927-2898759701-1000UA.job
[2010.08.28 19:20:57 | 000,618,204 | ---- | M] () -- C:\Windows\SysNative\perfh007.dat
[2010.08.28 19:20:57 | 000,586,980 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2010.08.28 19:20:57 | 000,122,636 | ---- | M] () -- C:\Windows\SysNative\perfc007.dat
[2010.08.28 19:20:57 | 000,101,052 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2010.08.28 19:20:56 | 001,418,806 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2010.08.28 19:12:50 | 000,065,536 | ---- | M] () -- C:\Windows\SysNative\Ikeext.etl
[2010.08.28 19:12:40 | 000,003,616 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
[2010.08.28 19:12:40 | 000,003,616 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
[2010.08.28 19:12:27 | 000,000,006 | -H-- | M] () -- C:\Windows\tasks\SA.DAT
[2010.08.28 19:12:15 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2010.08.28 19:11:52 | 2146,754,560 | -HS- | M] () -- C:\hiberfil.sys
[2010.08.28 19:07:44 | 000,524,288 | -HS- | M] () -- C:\Users\Manuel\NTUSER.DAT{c328fef1-6a85-11db-9fbd-cf3689cba3de}.TMContainer00000000000000000001.regtrans-ms
[2010.08.28 19:07:44 | 000,065,536 | -HS- | M] () -- C:\Users\Manuel\NTUSER.DAT{c328fef1-6a85-11db-9fbd-cf3689cba3de}.TM.blf
[2010.08.28 19:07:41 | 001,625,303 | -H-- | M] () -- C:\Users\Manuel\AppData\Local\IconCache.db
[2010.08.28 19:05:27 | 000,000,813 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
[2010.08.28 19:02:11 | 000,575,488 | ---- | M] (OldTimer Tools) -- C:\Users\Manuel\Desktop\OTL.exe
[2010.08.28 19:01:50 | 000,388,197 | ---- | M] () -- C:\Users\Manuel\Desktop\Load.exe
[2010.08.28 18:43:42 | 000,000,520 | ---- | M] () -- C:\Users\Manuel\Documents\cc_20100828_184335.reg
[2010.08.28 18:43:02 | 000,001,070 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1788838440-610687927-2898759701-1000Core.job
[2010.08.28 18:33:39 | 000,084,888 | ---- | M] () -- C:\Users\Manuel\AppData\Local\GDIPFONTCACHEV1.DAT
[2010.08.28 18:25:31 | 000,323,728 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
[2010.08.28 15:32:38 | 000,000,716 | ---- | M] () -- C:\Users\Manuel\Documents\cc_20100828_153233.reg
[2010.08.28 15:32:24 | 000,003,394 | ---- | M] () -- C:\Users\Manuel\Documents\cc_20100828_153220.reg
[2010.08.28 15:32:10 | 000,002,758 | ---- | M] () -- C:\Users\Manuel\Documents\cc_20100828_153205.reg
[2010.08.28 15:31:46 | 000,051,682 | ---- | M] () -- C:\Users\Manuel\Documents\cc_20100828_152940.reg
[2010.08.28 15:29:29 | 000,467,790 | ---- | M] () -- C:\Users\Manuel\Documents\cc_20100828_152906.reg
[2010.08.27 18:54:17 | 000,001,892 | ---- | M] () -- C:\Users\Public\Desktop\Skype.lnk
[2010.08.04 04:22:36 | 007,451,648 | ---- | M] (ATI Technologies Inc.) -- C:\Windows\SysNative\drivers\atikmdag.sys
[2010.08.04 04:07:12 | 020,817,408 | ---- | M] (Advanced Micro Devices, Inc.) -- C:\Windows\SysNative\atio6axx.dll
[2010.08.04 03:55:18 | 000,071,096 | ---- | M] () -- C:\Windows\SysNative\atiapfxx.blb
[2010.08.04 03:55:00 | 000,143,360 | ---- | M] (Advanced Micro Devices, Inc.) -- C:\Windows\SysNative\atiapfxx.exe
[2010.08.04 03:54:50 | 000,519,680 | ---- | M] (ATI Technologies Inc. ) -- C:\Windows\SysWow64\aticfx32.dll
[2010.08.04 03:54:00 | 000,598,528 | ---- | M] (ATI Technologies Inc. ) -- C:\Windows\SysNative\aticfx64.dll
[2010.08.04 03:52:04 | 000,450,560 | ---- | M] (Advanced Micro Devices, Inc.) -- C:\Windows\SysNative\ATIDEMGX.dll
[2010.08.04 03:51:54 | 000,461,824 | ---- | M] (AMD) -- C:\Windows\SysNative\atieclxx.exe
[2010.08.04 03:51:20 | 000,203,264 | ---- | M] (AMD) -- C:\Windows\SysNative\atiesrxx.exe
[2010.08.04 03:50:14 | 000,120,320 | ---- | M] (AMD) -- C:\Windows\SysNative\atitmm64.dll
[2010.08.04 03:49:56 | 000,421,376 | ---- | M] (ATI Technologies, Inc.) -- C:\Windows\SysNative\atipdl64.dll
[2010.08.04 03:49:50 | 000,356,352 | ---- | M] (ATI Technologies, Inc.) -- C:\Windows\SysWow64\atipdlxx.dll
[2010.08.04 03:49:48 | 015,845,888 | ---- | M] (Advanced Micro Devices, Inc.) -- C:\Windows\SysWow64\atioglxx.dll
[2010.08.04 03:49:40 | 000,278,528 | ---- | M] (ATI Technologies, Inc.) -- C:\Windows\SysWow64\Oemdspif.dll
[2010.08.04 03:49:36 | 000,012,288 | ---- | M] (AMD) -- C:\Windows\SysNative\atimuixx.dll
[2010.08.04 03:49:32 | 000,059,392 | ---- | M] (ATI Technologies, Inc.) -- C:\Windows\SysNative\atiedu64.dll
[2010.08.04 03:49:26 | 000,043,520 | ---- | M] (ATI Technologies, Inc.) -- C:\Windows\SysWow64\ati2edxx.dll
[2010.08.04 03:46:32 | 003,899,392 | ---- | M] (ATI Technologies Inc. ) -- C:\Windows\SysWow64\atidxx32.dll
[2010.08.04 03:37:46 | 004,554,240 | ---- | M] (ATI Technologies Inc. ) -- C:\Windows\SysNative\atidxx64.dll
[2010.08.04 03:28:30 | 003,077,120 | ---- | M] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysNative\atiumd6a.dll
[2010.08.04 03:28:26 | 004,021,760 | ---- | M] (ATI Technologies Inc. ) -- C:\Windows\SysWow64\atiumdag.dll
[2010.08.04 03:26:02 | 000,051,200 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Windows\SysNative\aticalrt64.dll
[2010.08.04 03:26:00 | 000,046,080 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Windows\SysWow64\aticalrt.dll
[2010.08.04 03:25:58 | 000,523,968 | ---- | M] () -- C:\Windows\SysNative\atiumd6a.cap
[2010.08.04 03:25:54 | 000,044,544 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Windows\SysNative\aticalcl64.dll
[2010.08.04 03:25:50 | 000,044,032 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Windows\SysWow64\aticalcl.dll
[2010.08.04 03:25:42 | 005,394,432 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Windows\SysNative\aticaldd64.dll
[2010.08.04 03:24:34 | 004,341,248 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Windows\SysWow64\aticaldd.dll
[2010.08.04 03:23:46 | 000,056,832 | ---- | M] (AMD) -- C:\Windows\SysNative\coinst.dll
[2010.08.04 03:22:34 | 005,167,104 | ---- | M] (ATI Technologies Inc. ) -- C:\Windows\SysNative\atiumd64.dll
[2010.08.04 03:21:38 | 003,324,416 | ---- | M] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysWow64\atiumdva.dll
[2010.08.04 03:21:14 | 000,523,968 | ---- | M] () -- C:\Windows\SysWow64\atiumdva.cap
[2010.08.04 03:16:14 | 000,337,920 | ---- | M] (Advanced Micro Devices, Inc.) -- C:\Windows\SysNative\atiadlxx.dll
[2010.08.04 03:16:06 | 000,241,664 | ---- | M] (Advanced Micro Devices, Inc.) -- C:\Windows\SysWow64\atiadlxy.dll
[2010.08.04 03:15:58 | 000,014,848 | ---- | M] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysNative\atig6pxx.dll
[2010.08.04 03:15:54 | 000,012,800 | ---- | M] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysWow64\atiglpxx.dll
[2010.08.04 03:15:54 | 000,012,800 | ---- | M] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysNative\atiglpxx.dll
[2010.08.04 03:15:52 | 000,018,432 | ---- | M] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysNative\atig6txx.dll
[2010.08.04 03:15:48 | 000,016,896 | ---- | M] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysWow64\atigktxx.dll
[2010.08.04 03:15:44 | 000,268,288 | ---- | M] (Advanced Micro Devices, Inc.) -- C:\Windows\SysNative\drivers\atikmpag.sys
[2010.08.04 03:15:08 | 000,039,424 | ---- | M] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysNative\atiuxp64.dll
[2010.08.04 03:15:02 | 000,030,208 | ---- | M] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysWow64\atiuxpag.dll
[2010.08.04 03:14:56 | 000,036,864 | ---- | M] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysNative\atiu9p64.dll
[2010.08.04 03:14:48 | 000,027,648 | ---- | M] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysWow64\atiu9pag.dll
[2010.08.04 03:14:30 | 000,026,112 | ---- | M] () -- C:\Windows\SysNative\atitmp64.dll
[2010.08.04 03:14:12 | 000,053,248 | ---- | M] (ATI Technologies Inc.) -- C:\Windows\SysNative\drivers\ati2erec.dll
[2010.08.04 03:09:28 | 000,054,784 | ---- | M] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysNative\atimpc64.dll
[2010.08.04 03:09:28 | 000,054,784 | ---- | M] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysNative\amdpcom64.dll
[2010.08.04 03:09:22 | 000,052,736 | ---- | M] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysWow64\atimpc32.dll
[2010.08.04 03:09:22 | 000,052,736 | ---- | M] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysWow64\amdpcom32.dll
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
========== Files Created - No Company Name ==========
[2010.08.28 19:05:27 | 000,000,813 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
[2010.08.28 19:01:50 | 000,388,197 | ---- | C] () -- C:\Users\Manuel\Desktop\Load.exe
[2010.08.28 18:43:40 | 000,000,520 | ---- | C] () -- C:\Users\Manuel\Documents\cc_20100828_184335.reg
[2010.08.28 15:32:34 | 000,000,716 | ---- | C] () -- C:\Users\Manuel\Documents\cc_20100828_153233.reg
[2010.08.28 15:32:21 | 000,003,394 | ---- | C] () -- C:\Users\Manuel\Documents\cc_20100828_153220.reg
[2010.08.28 15:32:07 | 000,002,758 | ---- | C] () -- C:\Users\Manuel\Documents\cc_20100828_153205.reg
[2010.08.28 15:29:43 | 000,051,682 | ---- | C] () -- C:\Users\Manuel\Documents\cc_20100828_152940.reg
[2010.08.28 15:29:17 | 000,467,790 | ---- | C] () -- C:\Users\Manuel\Documents\cc_20100828_152906.reg
[2010.08.28 14:14:58 | 2146,754,560 | -HS- | C] () -- C:\hiberfil.sys
[2010.08.27 18:54:17 | 000,001,892 | ---- | C] () -- C:\Users\Public\Desktop\Skype.lnk
[2010.08.04 03:55:18 | 000,071,096 | ---- | C] () -- C:\Windows\SysNative\atiapfxx.blb
[2010.08.04 03:25:58 | 000,523,968 | ---- | C] () -- C:\Windows\SysNative\atiumd6a.cap
[2010.08.04 03:21:14 | 000,523,968 | ---- | C] () -- C:\Windows\SysWow64\atiumdva.cap
[2010.08.04 03:14:30 | 000,026,112 | ---- | C] () -- C:\Windows\SysNative\atitmp64.dll
[2010.04.02 17:17:34 | 000,179,091 | ---- | C] () -- C:\Windows\SysWow64\xlive.dll.cat
[2010.01.08 04:56:21 | 000,000,209 | ---- | C] () -- C:\Windows\SysWow64\msexcr.ini
[2010.01.03 23:37:41 | 000,328,846 | ---- | C] () -- C:\Users\Manuel\AppData\Local\dd_vcredistMSI1091.txt
[2010.01.03 23:37:40 | 000,014,334 | ---- | C] () -- C:\Users\Manuel\AppData\Local\dd_vcredistUI1091.txt
[2009.12.16 21:10:22 | 000,423,170 | ---- | C] () -- C:\Users\Manuel\AppData\Local\dd_vcredistMSI216F.txt
[2009.12.16 21:10:22 | 000,011,602 | ---- | C] () -- C:\Users\Manuel\AppData\Local\dd_vcredistUI216F.txt
[2009.12.16 21:09:48 | 000,420,762 | ---- | C] () -- C:\Users\Manuel\AppData\Local\dd_vcredistMSI20FC.txt
[2009.12.16 21:09:47 | 000,011,650 | ---- | C] () -- C:\Users\Manuel\AppData\Local\dd_vcredistUI20FC.txt
[2009.11.29 20:09:54 | 000,000,017 | ---- | C] () -- C:\Windows\gfact.ini
[2009.10.26 18:20:57 | 000,000,552 | ---- | C] () -- C:\Users\Manuel\AppData\Local\d3d8caps.dat
[2009.10.25 19:37:09 | 000,120,200 | ---- | C] () -- C:\Windows\SysWow64\DLLDEV32i.dll
[2009.10.25 19:36:46 | 000,006,624 | ---- | C] () -- C:\Windows\mgxoschk.ini
[2009.10.18 21:22:05 | 000,001,155 | ---- | C] () -- C:\Windows\kaillera.ini
[2009.10.14 17:29:22 | 000,333,452 | ---- | C] () -- C:\Users\Manuel\AppData\Local\dd_vcredistMSI3DE8.txt
[2009.10.14 17:29:22 | 000,011,130 | ---- | C] () -- C:\Users\Manuel\AppData\Local\dd_vcredistUI3DE8.txt
[2009.10.09 20:12:52 | 000,178,176 | ---- | C] () -- C:\Windows\SysWow64\unrar.dll
[2009.10.09 20:04:44 | 000,027,648 | ---- | C] () -- C:\Windows\SysWow64\AVSredirect.dll
[2009.10.05 17:10:04 | 000,000,056 | -H-- | C] () -- C:\ProgramData\ezsidmv.dat
[2009.09.11 15:09:18 | 000,117,248 | ---- | C] () -- C:\Windows\SysWow64\EhStorAuthn.dll
[2009.09.11 15:07:29 | 000,368,640 | ---- | C] () -- C:\Windows\SysWow64\msjetoledb40.dll
[2009.08.15 17:51:04 | 001,970,176 | ---- | C] () -- C:\Windows\SysWow64\d3dx9.dll
[2009.07.31 23:10:25 | 000,416,182 | ---- | C] () -- C:\Users\Manuel\AppData\Local\dd_vcredistMSI5EF3.txt
[2009.07.31 23:10:24 | 000,011,370 | ---- | C] () -- C:\Users\Manuel\AppData\Local\dd_vcredistUI5EF3.txt
[2009.07.24 20:51:48 | 000,389,418 | ---- | C] () -- C:\Users\Manuel\AppData\Local\dd_vcredistMSI51ED.txt
[2009.07.24 20:51:47 | 000,016,020 | ---- | C] () -- C:\Users\Manuel\AppData\Local\dd_vcredistUI51ED.txt
[2009.07.24 20:44:35 | 000,425,902 | ---- | C] () -- C:\Users\Manuel\AppData\Local\dd_vcredistMSI4C67.txt
[2009.07.24 20:44:34 | 000,013,148 | ---- | C] () -- C:\Users\Manuel\AppData\Local\dd_vcredistUI4C67.txt
[2009.07.22 17:22:46 | 000,112,632 | ---- | C] () -- C:\Users\Manuel\AppData\Local\dd_depcheckdotnetfx30.txt
[2009.07.22 17:22:41 | 000,132,644 | ---- | C] () -- C:\Users\Manuel\AppData\Local\dd_dotnetfx3install.txt
[2009.07.22 17:22:41 | 000,010,658 | ---- | C] () -- C:\Users\Manuel\AppData\Local\uxeventlog.txt
[2009.07.22 17:22:41 | 000,002,866 | ---- | C] () -- C:\Users\Manuel\AppData\Local\dd_dotnetfx3error.txt
[2009.07.17 03:37:31 | 000,127,488 | ---- | C] () -- C:\Users\Manuel\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2009.04.09 07:01:33 | 000,000,032 | ---- | C] () -- C:\Windows\CD_Start.INI
[2008.01.21 04:50:05 | 000,060,124 | ---- | C] () -- C:\Windows\SysWow64\tcpmon.ini
[2004.09.01 17:49:17 | 003,375,104 | ---- | C] () -- C:\Windows\SysWow64\qt-mt331.dll
========== LOP Check ==========
[2009.10.07 19:12:31 | 000,000,000 | ---D | M] -- C:\Users\Manuel\AppData\Roaming\.bsnes
[2010.01.07 17:13:34 | 000,000,000 | ---D | M] -- C:\Users\Manuel\AppData\Roaming\Any Video Converter
[2009.12.07 21:44:54 | 000,000,000 | ---D | M] -- C:\Users\Manuel\AppData\Roaming\Azureus
[2010.01.03 04:31:01 | 000,000,000 | ---D | M] -- C:\Users\Manuel\AppData\Roaming\Blitware
[2009.07.25 00:23:09 | 000,000,000 | ---D | M] -- C:\Users\Manuel\AppData\Roaming\DAEMON Tools Lite
[2009.10.10 18:10:35 | 000,000,000 | ---D | M] -- C:\Users\Manuel\AppData\Roaming\fltk.org
[2009.12.30 18:59:42 | 000,000,000 | ---D | M] -- C:\Users\Manuel\AppData\Roaming\gtk-2.0
[2010.01.07 02:27:27 | 000,000,000 | -H-D | M] -- C:\Users\Manuel\AppData\Roaming\ijjigame
[2009.10.25 19:40:35 | 000,000,000 | ---D | M] -- C:\Users\Manuel\AppData\Roaming\MAGIX
[2009.08.18 14:38:51 | 000,000,000 | ---D | M] -- C:\Users\Manuel\AppData\Roaming\Notepad++
[2009.12.17 12:13:43 | 000,000,000 | ---D | M] -- C:\Users\Manuel\AppData\Roaming\Publish Providers
[2010.08.28 14:37:41 | 000,000,000 | ---D | M] -- C:\Users\Manuel\AppData\Roaming\Registry Mechanic
[2009.12.16 21:22:44 | 000,000,000 | ---D | M] -- C:\Users\Manuel\AppData\Roaming\Sony
[2009.10.04 18:19:44 | 000,000,000 | ---D | M] -- C:\Users\Manuel\AppData\Roaming\TeamViewer
[2009.10.03 12:47:08 | 000,000,000 | ---D | M] -- C:\Users\Manuel\AppData\Roaming\Teeworlds
[2009.07.23 18:14:51 | 000,000,000 | ---D | M] -- C:\Users\Manuel\AppData\Roaming\Ubisoft
[2010.08.28 14:43:58 | 000,000,000 | ---D | M] -- C:\Users\Manuel\AppData\Roaming\Uniblue
[2009.08.21 02:38:20 | 000,000,000 | ---D | M] -- C:\Users\Manuel\AppData\Roaming\Unity
[2009.07.22 00:15:11 | 000,000,000 | ---D | M] -- C:\Users\Manuel\AppData\Roaming\uTorrent
[2010.01.03 04:31:01 | 000,000,366 | ---- | M] () -- C:\Windows\Tasks\Driver Robot.job
[2010.08.28 19:07:49 | 000,032,562 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT
========== Purity Check ==========
========== Alternate Data Streams ==========
@Alternate Data Stream - 104 bytes -> C:\ProgramData\TEMP:D1B5B4F1
< End of report >
--- --- ---
NOTE:
Ich habe alle 3 Programme (Load, Anti Malwarebytes, OTL) nach der anweisung ausgeführt, doch die oben deutlich aus gedeuteten Symptome verbleiben...
Och hoffe außerdem das diese Log Files gelesen werden können :S
Ich hoffe auf Hilfe und bedanke mich schonmal bei jedem Helfer ::rofl: |
