| freeman8080 | 19.10.2008 15:18 |
Ok hab genau das gemacht wie du gesagt hattest: Code:
ComboFix 08-10-18.03 - freeman 2008-10-19 0:52:11.2 - NTFSx86
Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.1125 [GMT 2:00]
ausgeführt von:: C:\Documents and Settings\freeman\Desktop\ComboFix.exe
Benutzte Befehlsschalter :: C:\Documents and Settings\freeman\Desktop\cfscript.txt.txt
* Neuer Wiederherstellungspunkt wurde erstellt
FILE ::
C:\DOCUME~1\freeman\LOCALS~1\Temp\RGI69.tmp
.
((((((((((((((((((((((( Dateien erstellt von 2008-09-18 bis 2008-10-18 ))))))))))))))))))))))))))))))
.
2008-11-01 09:24 . 2008-04-14 01:15 59,136 --a------ C:\WINDOWS\system32\drivers\GcKernel.sys
2008-11-01 09:24 . 2008-04-14 01:15 59,136 --a--c--- C:\WINDOWS\system32\dllcache\gckernel.sys
2008-11-01 09:24 . 2001-08-17 23:36 10,240 --a------ C:\WINDOWS\system32\SWPIDFLT.DLL
2008-11-01 09:24 . 2001-08-17 23:36 10,240 --a--c--- C:\WINDOWS\system32\dllcache\swpidflt.dll
2008-11-01 09:24 . 2001-08-17 15:02 2,688 --a------ C:\WINDOWS\system32\drivers\HIDSwvd.sys
2008-11-01 09:24 . 2001-08-17 15:02 2,688 --a--c--- C:\WINDOWS\system32\dllcache\hidswvd.sys
2008-11-01 08:45 . 2008-11-01 08:45 <DIR> d-------- C:\Program Files\SimBin
2008-11-01 05:03 . 2008-10-19 00:19 <DIR> d--h----- C:\WINDOWS\$hf_mig$
2008-11-01 04:54 . 2008-11-01 04:54 2,467 --a------ C:\ads_err.dbf
2008-11-01 03:19 . 2008-11-01 03:19 244 --ah----- C:\sqmnoopt01.sqm
2008-11-01 03:19 . 2008-11-01 03:19 232 --ah----- C:\sqmdata01.sqm
2008-11-01 02:26 . 2008-11-01 02:26 <DIR> d-------- C:\Program Files\Messenger Plus! Live
2008-11-01 02:18 . 2008-08-14 12:11 2,189,184 -----c--- C:\WINDOWS\system32\dllcache\ntoskrnl.exe
2008-11-01 02:18 . 2008-08-14 12:09 2,145,280 -----c--- C:\WINDOWS\system32\dllcache\ntkrnlmp.exe
2008-11-01 02:18 . 2008-08-14 11:33 2,066,048 -----c--- C:\WINDOWS\system32\dllcache\ntkrnlpa.exe
2008-11-01 02:18 . 2008-08-14 11:33 2,023,936 -----c--- C:\WINDOWS\system32\dllcache\ntkrpamp.exe
2008-11-01 02:16 . 2008-11-01 02:16 268 --ah----- C:\sqmdata11.sqm
2008-11-01 02:16 . 2008-11-01 02:16 244 --ah----- C:\sqmnoopt11.sqm
2008-11-01 02:16 . 2008-11-01 02:16 172 --ah----- C:\sqmnoopt12.sqm
2008-11-01 02:16 . 2008-11-01 02:16 172 --ah----- C:\sqmdata12.sqm
2008-11-01 01:42 . 2008-11-01 07:24 <DIR> d-------- C:\Program Files\DAEMON Tools Lite
2008-11-01 01:41 . 2008-11-01 01:41 172 --ah----- C:\sqmnoopt10.sqm
2008-11-01 01:41 . 2008-11-01 01:41 172 --ah----- C:\sqmdata10.sqm
2008-11-01 01:40 . 2008-11-01 01:40 268 --ah----- C:\sqmdata09.sqm
2008-11-01 01:40 . 2008-11-01 01:40 244 --ah----- C:\sqmnoopt09.sqm
2008-11-01 01:33 . 2008-11-01 01:33 <DIR> d-------- C:\Documents and Settings\freeman\Application Data\DAEMON Tools
2008-11-01 01:33 . 2008-11-01 01:33 717,296 --a------ C:\WINDOWS\system32\drivers\sptd.sys
2008-11-01 01:17 . 2008-11-01 01:17 21,840 --a------ C:\WINDOWS\system32\SIntfNT.dll
2008-11-01 01:17 . 2008-11-01 01:17 17,212 --a------ C:\WINDOWS\system32\SIntf32.dll
2008-11-01 01:17 . 2008-11-01 01:17 12,067 --a------ C:\WINDOWS\system32\SIntf16.dll
2008-11-01 01:15 . 2008-11-01 01:15 204 --a------ C:\WINDOWS\SIERRA.INI
2008-11-01 01:13 . 2008-11-01 01:13 <DIR> d-------- C:\Program Files\Windows Media Connect 2
2008-11-01 01:10 . 2008-11-01 01:12 <DIR> d-------- C:\WINDOWS\system32\drivers\UMDF
2008-11-01 00:40 . 2008-11-01 00:40 244 --ah----- C:\sqmnoopt07.sqm
2008-11-01 00:40 . 2008-11-01 00:40 232 --ah----- C:\sqmdata07.sqm
2008-11-01 00:40 . 2008-11-01 00:40 172 --ah----- C:\sqmnoopt08.sqm
2008-11-01 00:40 . 2008-11-01 00:40 148 --ah----- C:\sqmdata08.sqm
2008-11-01 00:36 . 2008-11-01 00:36 172 --ah----- C:\sqmnoopt06.sqm
2008-11-01 00:36 . 2008-11-01 00:36 172 --ah----- C:\sqmdata06.sqm
2008-11-01 00:34 . 2008-06-10 03:32 73,728 --a------ C:\WINDOWS\system32\javacpl.cpl
2008-11-01 00:34 . 2008-11-01 00:34 268 --ah----- C:\sqmdata05.sqm
2008-11-01 00:34 . 2008-11-01 00:34 244 --ah----- C:\sqmnoopt05.sqm
2008-11-01 00:33 . 2008-11-01 00:34 <DIR> d-------- C:\Program Files\Java
2008-11-01 00:33 . 2008-11-01 00:33 <DIR> d-------- C:\Program Files\Common Files\Java
2008-11-01 00:27 . 2008-11-01 00:27 63,548 --a------ C:\WINDOWS\BricoPackUninst.cmd
2008-11-01 00:26 . 2008-11-01 00:26 3,932,214 --a------ C:\WINDOWS\BricoPack Wallpaper.bmp
2008-11-01 00:25 . 2008-11-01 00:25 <DIR> d-------- C:\WINDOWS\BricoPacks
2008-11-01 00:25 . 2008-11-01 00:27 6,118 --a------ C:\WINDOWS\BricoPackFoldersDelete.cmd
2008-11-01 00:22 . 2008-11-01 00:22 268 --ah----- C:\sqmdata00.sqm
2008-11-01 00:22 . 2008-11-01 00:22 244 --ah----- C:\sqmnoopt00.sqm
2008-10-10 12:49 . 2008-10-10 12:49 <DIR> d-------- C:\Documents and Settings\freeman\Application Data\Leadertech
2008-10-09 22:53 . 2008-06-13 13:05 272,128 --------- C:\WINDOWS\system32\drivers\bthport.sys
2008-10-09 22:53 . 2008-06-13 13:05 272,128 -----c--- C:\WINDOWS\system32\dllcache\bthport.sys
2008-10-09 22:52 . 2008-04-14 05:42 221,184 --a------ C:\WINDOWS\system32\wmpns.dll
2008-10-09 22:22 . 2008-10-09 22:22 <DIR> d-------- C:\Documents and Settings\freeman\Application Data\Canneverbe_Limited
2008-10-09 22:21 . 2008-10-09 22:21 <DIR> d-------- C:\Program Files\CDBurnerXP
2008-10-09 21:40 . 2008-10-09 21:40 <DIR> d-------- C:\WINDOWS\PES 2008 Reality Edition
2008-10-09 21:07 . 2008-10-09 21:09 <DIR> d-------- C:\Program Files\Winamp
2008-10-09 21:07 . 2008-10-09 21:11 <DIR> d-------- C:\Documents and Settings\freeman\Application Data\Winamp
2008-10-09 20:02 . 2008-10-09 20:02 <DIR> d-------- C:\Documents and Settings\freeman\Application Data\Sierra Entertainment
2008-10-09 20:01 . 2008-10-09 20:01 <DIR> d-------- C:\WINDOWS\85EBB28365AF4C539EBE7C0A232762F7.TMP
2008-10-09 19:52 . 2008-10-09 19:52 <DIR> d-------- C:\Documents and Settings\freeman\Application Data\InstallShield
2008-10-09 19:07 . 2008-11-01 02:17 <DIR> d-------- C:\Program Files\media Verlagsgesellschaft mbH
2008-10-09 18:43 . 2008-10-09 18:43 <DIR> d-------- C:\Program Files\GameSpy
2008-10-09 18:42 . 2008-10-09 18:42 <DIR> d-------- C:\WINDOWS\system32\URTTEMP
2008-10-09 18:26 . 2008-10-09 18:26 22,328 --a------ C:\Documents and Settings\freeman\Application Data\PnkBstrK.sys
2008-10-09 18:25 . 2008-11-01 01:10 <DIR> d-------- C:\WINDOWS\system32\LogFiles
2008-10-09 18:03 . 2008-10-09 18:03 <DIR> d-------- C:\Program Files\Electronic Arts
2008-10-09 15:19 . 2008-10-09 15:19 <DIR> dr-h----- C:\Documents and Settings\freeman\Application Data\SecuROM
2008-10-09 15:19 . 2008-10-09 15:19 107,888 --a------ C:\WINDOWS\system32\CmdLineExt.dll
2008-10-09 15:01 . 2008-10-09 22:23 <DIR> d-------- C:\Documents and Settings\freeman\Application Data\DivX
2008-10-09 15:00 . 2008-10-09 15:01 <DIR> d-------- C:\Program Files\DivX
2008-10-09 14:34 . 2008-10-09 14:34 <DIR> d--h----- C:\WINDOWS\PIF
2008-10-09 14:31 . 2008-10-09 14:31 <DIR> d-------- C:\WINDOWS\system32\AGEIA
2008-10-09 14:31 . 2008-10-09 20:00 <DIR> d-------- C:\Program Files\Common Files\Wise Installation Wizard
2008-10-09 14:31 . 2008-10-09 14:31 <DIR> d-------- C:\Program Files\AGEIA Technologies
2008-10-01 04:28 . 2008-10-01 04:28 268 --ah----- C:\sqmdata02.sqm
2008-10-01 04:28 . 2008-10-01 04:28 244 --ah----- C:\sqmnoopt02.sqm
2008-10-01 04:13 . 2008-10-01 04:13 <DIR> d-------- C:\Program Files\K-Lite Codec Pack
2008-10-01 04:13 . 2008-07-04 08:34 860,160 --a------ C:\WINDOWS\system32\lameACM.acm
2008-10-01 04:13 . 2008-01-10 14:15 755,027 --a------ C:\WINDOWS\system32\xvidcore.dll
2008-10-01 04:13 . 2004-01-25 18:18 217,088 --a------ C:\WINDOWS\system32\yv12vfw.dll
2008-10-01 04:13 . 2007-09-04 18:56 164,352 --a------ C:\WINDOWS\system32\unrar.dll
2008-10-01 04:13 . 2008-01-10 14:16 159,839 --a------ C:\WINDOWS\system32\xvidvfw.dll
2008-10-01 04:13 . 2007-09-21 02:52 118,784 --a------ C:\WINDOWS\system32\ac3acm.acm
2008-10-01 04:13 . 2008-06-12 20:36 7,680 --a------ C:\WINDOWS\system32\ff_vfw.dll
2008-10-01 04:13 . 2007-07-10 18:10 547 --a------ C:\WINDOWS\system32\ff_vfw.dll.manifest
2008-10-01 04:13 . 2007-10-03 17:03 414 --a------ C:\WINDOWS\system32\lame_acm.xml
2008-10-01 04:13 . 2008-07-30 21:09 38 --a------ C:\WINDOWS\avisplitter.ini
2008-10-01 04:00 . 2008-11-01 01:05 825 --a------ C:\WINDOWS\system\CmiCnfg.ini
.
(((((((((((((((((((((((((((((((((((( Find3M Bericht ))))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2008-11-01 00:21 --------- d-----w C:\Program Files\Windows Live
2008-11-01 00:16 --------- d-----w C:\Documents and Settings\All Users\Application Data\McAfee
2008-11-01 00:11 --------- d-----w C:\Program Files\Common Files\BitDefender
2008-10-31 22:44 --------- d-----w C:\Program Files\Realtek AC97
2008-10-31 22:27 218,624 ----a-w C:\WINDOWS\system32\uxtheme.dll
2008-10-01 01:49 --------- d-----w C:\Documents and Settings\freeman\Application Data\ATI
2008-10-01 01:49 --------- d-----w C:\Documents and Settings\All Users\Application Data\ATI
2008-10-01 01:47 --------- d-----w C:\Program Files\Common Files\InstallShield
2008-10-01 01:47 --------- d-----w C:\Program Files\ATI Technologies
2008-10-01 01:40 --------- d-----w C:\Program Files\Reference Assemblies
2008-10-01 01:40 --------- d-----w C:\Program Files\MSBuild
2008-10-01 01:17 --------- d-----w C:\Program Files\microsoft frontpage
2008-10-01 00:59 --------- d--h--w C:\Program Files\InstallShield Installation Information
2008-10-01 00:59 --------- d-----w C:\Program Files\C-Media 3D Audio
2008-10-01 00:46 --------- d-----w C:\Program Files\BitDefender
2008-09-24 08:40 4,122,368 ----a-r C:\WINDOWS\system32\drivers\alcxwdm.sys
2008-09-16 00:14 9,464 ------w C:\WINDOWS\system32\drivers\cdralw2k.sys
2008-09-16 00:14 9,336 ------w C:\WINDOWS\system32\drivers\cdr4_xp.sys
2008-09-16 00:14 524,288 ----a-w C:\WINDOWS\system32\DivXsm.exe
2008-09-16 00:14 43,528 ------w C:\WINDOWS\system32\drivers\PxHelp20.sys
2008-09-16 00:14 3,596,288 ----a-w C:\WINDOWS\system32\qt-dx331.dll
2008-09-16 00:14 129,784 ------w C:\WINDOWS\system32\pxafs.dll
2008-09-16 00:14 120,056 ------w C:\WINDOWS\system32\pxcpyi64.exe
2008-09-16 00:14 118,520 ------w C:\WINDOWS\system32\pxinsi64.exe
2008-09-16 00:12 81,920 ----a-w C:\WINDOWS\system32\dpl100.dll
2008-09-16 00:12 593,920 ----a-w C:\WINDOWS\system32\dpuGUI11.dll
2008-09-16 00:12 57,344 ----a-w C:\WINDOWS\system32\dpv11.dll
2008-09-16 00:12 53,248 ----a-w C:\WINDOWS\system32\dpuGUI10.dll
2008-09-16 00:12 344,064 ----a-w C:\WINDOWS\system32\dpus11.dll
2008-09-16 00:12 294,912 ----a-w C:\WINDOWS\system32\dpu11.dll
2008-09-16 00:12 294,912 ----a-w C:\WINDOWS\system32\dpu10.dll
2008-09-16 00:12 200,704 ----a-w C:\WINDOWS\system32\ssldivx.dll
2008-09-16 00:12 196,608 ----a-w C:\WINDOWS\system32\dtu100.dll
2008-09-16 00:12 1,044,480 ----a-w C:\WINDOWS\system32\libdivx.dll
2008-09-16 00:11 823,296 ----a-w C:\WINDOWS\system32\divx_xx0c.dll
2008-09-16 00:11 823,296 ----a-w C:\WINDOWS\system32\divx_xx07.dll
2008-09-16 00:11 815,104 ----a-w C:\WINDOWS\system32\divx_xx0a.dll
2008-09-16 00:11 802,816 ----a-w C:\WINDOWS\system32\divx_xx11.dll
2008-09-16 00:11 683,520 ----a-w C:\WINDOWS\system32\DivX.dll
2008-09-16 00:11 161,096 ----a-w C:\WINDOWS\system32\DivXCodecVersionChecker.exe
2008-09-16 00:11 12,288 ----a-w C:\WINDOWS\system32\DivXWMPExtType.dll
2008-09-15 12:12 1,846,400 ----a-w C:\WINDOWS\system32\win32k.sys
2008-09-08 10:41 333,824 ----a-w C:\WINDOWS\system32\drivers\srv.sys
2008-08-21 04:52 3,299,840 ----a-w C:\WINDOWS\system32\drivers\ati2mtag.sys
2008-08-21 02:19 425,984 ----a-w C:\WINDOWS\system32\ATIDEMGX.dll
2008-08-21 02:18 314,880 ----a-w C:\WINDOWS\system32\ati2dvag.dll
2008-08-21 02:08 184,320 ----a-w C:\WINDOWS\system32\atipdlxx.dll
2008-08-21 02:08 143,360 ----a-w C:\WINDOWS\system32\Oemdspif.dll
2008-08-21 02:07 43,520 ----a-w C:\WINDOWS\system32\ati2edxx.dll
2008-08-21 02:07 26,112 ----a-w C:\WINDOWS\system32\Ati2mdxx.exe
2008-08-21 02:07 143,360 ----a-w C:\WINDOWS\system32\ati2evxx.dll
2008-08-21 02:05 573,440 ----a-w C:\WINDOWS\system32\ati2evxx.exe
2008-08-21 02:04 53,248 ----a-w C:\WINDOWS\system32\ATIDDC.DLL
2008-08-21 02:01 10,084,352 ----a-w C:\WINDOWS\system32\atioglxx.dll
2008-08-21 01:55 4,094,560 ----a-w C:\WINDOWS\system32\ati3duag.dll
2008-08-21 01:50 307,200 ----a-w C:\WINDOWS\system32\atiiiexx.dll
2008-08-21 01:38 2,377,856 ----a-w C:\WINDOWS\system32\ativvaxx.dll
2008-08-21 01:23 48,640 ----a-w C:\WINDOWS\system32\amdpcom32.dll
2008-08-21 01:19 380,928 ----a-w C:\WINDOWS\system32\atikvmag.dll
2008-08-21 01:18 37,376 ----a-w C:\WINDOWS\system32\atiadlxx.dll
2008-08-21 01:18 17,408 ----a-w C:\WINDOWS\system32\atitvo32.dll
2008-08-21 01:17 53,248 ----a-w C:\WINDOWS\system32\drivers\ati2erec.dll
2008-08-21 01:17 253,952 ----a-w C:\WINDOWS\system32\atiok3x2.dll
2008-08-21 01:11 561,152 ----a-w C:\WINDOWS\system32\ati2cqag.dll
2008-08-20 19:05 593,920 ------w C:\WINDOWS\system32\ati2sgag.exe
2008-08-20 05:30 666,112 ----a-w C:\WINDOWS\system32\wininet.dll
2008-08-14 10:09 2,145,280 ----a-w C:\WINDOWS\system32\ntoskrnl.exe
2008-08-14 09:33 2,023,936 ----a-w C:\WINDOWS\system32\ntkrnlpa.exe
2008-08-05 21:14 90,112 ----a-w C:\WINDOWS\system32\ATIBRTMON.EXE
2008-08-03 09:33 1,614,848 ----a-w C:\WINDOWS\system32\sfcfiles.dll
2008-07-31 08:41 68,616 ----a-w C:\WINDOWS\system32\XAPOFX1_1.dll
2008-07-31 08:41 238,088 ----a-w C:\WINDOWS\system32\xactengine3_2.dll
2008-07-31 08:40 509,448 ----a-w C:\WINDOWS\system32\XAudio2_2.dll
2008-07-18 21:10 94,920 ----a-w C:\WINDOWS\system32\cdm.dll
2008-07-18 21:10 68,808 ----a-w C:\WINDOWS\system32\wuauclt.exe
2008-07-18 21:10 45,768 ----a-w C:\WINDOWS\system32\wups2.dll
2008-07-18 21:10 36,552 ----a-w C:\WINDOWS\system32\wups.dll
2008-07-18 21:09 563,912 ----a-w C:\WINDOWS\system32\wuapi.dll
2008-07-18 21:09 325,832 ----a-w C:\WINDOWS\system32\wucltui.dll
2008-07-18 21:09 205,000 ----a-w C:\WINDOWS\system32\wuweb.dll
2008-07-18 21:09 1,811,656 ----a-w C:\WINDOWS\system32\wuaueng.dll
.
------- Sigcheck -------
2008-04-14 05:42 975872 561a50497324f378e30f55d09b4e1258 C:\WINDOWS\explorer.exe
2008-04-14 05:42 975872 561a50497324f378e30f55d09b4e1258 C:\WINDOWS\system32\dllcache\explorer.exe
2008-07-18 23:10 68808 136896c2cdc3f689876e0d44485153ea C:\WINDOWS\system32\wuauclt.exe
2008-07-18 23:10 68808 136896c2cdc3f689876e0d44485153ea C:\WINDOWS\system32\dllcache\wuauclt.exe
.
((((((((((((((((((((((((((((( snapshot@2008-10-19_ 0.23.49,43 )))))))))))))))))))))))))))))))))))))))))
.
- 2008-10-09 20:51:56 95,864 ----a-w C:\WINDOWS\system32\FNTCACHE.DAT
+ 2008-10-18 22:26:18 95,864 ----a-w C:\WINDOWS\system32\FNTCACHE.DAT
- 2008-06-23 15:09:27 3,067,392 ------w C:\WINDOWS\system32\mshtml.dll
+ 2008-08-20 05:30:53 3,067,904 ----a-w C:\WINDOWS\system32\mshtml.dll
- 2002-12-31 23:05:27 71,250 ----a-w C:\WINDOWS\system32\perfc009.dat
+ 2008-10-18 22:30:40 71,250 ----a-w C:\WINDOWS\system32\perfc009.dat
- 2002-12-31 23:05:27 441,184 ----a-w C:\WINDOWS\system32\perfh009.dat
+ 2008-10-18 22:30:40 441,184 ----a-w C:\WINDOWS\system32\perfh009.dat
- 2008-06-26 08:15:29 1,499,136 ------w C:\WINDOWS\system32\shdocvw.dll
+ 2008-08-20 05:30:51 1,499,136 ----a-w C:\WINDOWS\system32\shdocvw.dll
- 2008-06-26 08:15:30 619,520 ------w C:\WINDOWS\system32\urlmon.dll
+ 2008-08-20 05:30:52 619,520 ----a-w C:\WINDOWS\system32\urlmon.dll
.
(((((((((((((((((((((((((((( Autostartpunkte der Registrierung ))))))))))))))))))))))))))))))))))))))))
.
.
*Hinweis* leere Einträge & legitime Standardeinträge werden nicht angezeigt.
REGEDIT4
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="C:\WINDOWS\system32\ctfmon.exe" [2008-04-14 15360]
"Steam"="D:\Steam\Steam.exe" [2008-10-01 1410296]
"msnmsgr"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe" [2007-10-18 5724184]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"="C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2008-08-01 61440]
"SunJavaUpdateSched"="C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe" [2008-06-10 144784]
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="C:\WINDOWS\system32\CTFMON.EXE" [2008-04-14 15360]
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"nltide_3"="advpack.dll" [2008-04-14 C:\WINDOWS\system32\advpack.dll]
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"%windir%\\system32\\sessmgr.exe"=
"C:\\Program Files\\Java\\jre1.6.0_07\\launch4j-tmp\\JDownloader.exe"=
"C:\\WINDOWS\\system32\\java.exe"=
"C:\\Program Files\\Electronic Arts\\Crytek\\Crysis\\Bin32\\Crysis.exe"=
"C:\\Program Files\\Electronic Arts\\Crytek\\Crysis\\Bin32\\CrysisDedicatedServer.exe"=
"D:\\Sierra Entertainment\\Empire Earth III\\EE3.exe"=
"D:\\PES 2008 Reality Edition\\PES2008.exe"=
"D:\\Empire Earth\\Empire Earth.exe"=
"C:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"=
"C:\\Program Files\\Windows Live\\Messenger\\livecall.exe"=
R2 NMSAccessU;NMSAccessU;C:\Program Files\CDBurnerXP\NMSAccessU.exe [2008-06-15 71096]
R3 PRISM_A00;PRISM 802.11g Driver;C:\WINDOWS\system32\DRIVERS\PRISMA00.sys [2004-01-16 380736]
*Newly Created Service* - USNJSVC
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{EB986EA8-F050-77E2-4B8D-C154BF542FEB}]
C:\WINDOWS\system32\winupd.exe
.
**************************************************************************
catchme 0.3.1361 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-10-19 00:56:20
Windows 5.1.2600 Service Pack 3 NTFS
Scanne versteckte Prozesse...
Scanne versteckte Autostarteinträge...
Scanne versteckte Dateien...
Scan erfolgreich abgeschlossen
versteckte Dateien: 0
**************************************************************************
.
Zeit der Fertigstellung: 2008-10-19 0:56:50
ComboFix-quarantined-files.txt 2008-10-18 22:56:47
ComboFix2.txt 2008-10-18 22:24:04
Vor Suchlauf: 16.773.468.160 bytes free
Nach Suchlauf: 16,762,580,992 bytes free
258 --- E O F --- 2008-10-18 22:19:56
|
