| |
| |||||||
Plagegeister aller Art und deren Bekämpfung: Virus Win32/Alureon.h verhindert WindowsupdateWindows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen. |
 |
14.08.2010, 11:25
| #1 |
| |  Virus Win32/Alureon.h verhindert Windowsupdate Hallo Leute Ich hoffe, dass ich hier Hilfe/Unterstützung bei meinem Problem erhalte. Habe seit 26.Juni nicht mehr updaten können mit der Fehlermeldung "80072EFE". Firefox verlinkte auf irgendwelche dubiose Seiten. Dies habe ich ihm (hoffentlich) ausgetrieben, indem ich die Host-Datei geleert habe. Ich habe mit McAfee Internet Security versucht den Übeltäter zu lokalisieren --> kein Erfolg, der sagt alles in Ordnung. Daraufhin habe ich mit Microsoft Security Essentials einen neuen Versuch gestartet und siehe da, das Tool sagt, erkanntes Element Virus:Win32/Alureon.H Kann mir jemand helfen, wie ich den wieder los werde und mein Update wieder funktioniert? Für Eure Hilfe schon mal danke im voraus. |
|
14.08.2010, 12:39
| #2 |
| | Virus Win32/Alureon.h verhindert Windowsupdate otl.txt
__________________OTL logfile created on: 14.08.2010 13:17:47 - Run 1 OTL by OldTimer - Version 3.2.9.1 Folder = D:\Eigene Dateien\Download\### DownThemAll ###\AntiVirensoftware An unknown product (Version = 6.1.7600) - Type = NTWorkstation Internet Explorer (Version = 8.0.7600.16385) Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy 3,00 Gb Total Physical Memory | 3,00 Gb Available Physical Memory | 74,00% Memory free 6,00 Gb Paging File | 6,00 Gb Available in Paging File | 88,00% Paging File free Paging file location(s): [Binary data over 100 bytes] %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files Drive C: | 19,53 Gb Total Space | 5,31 Gb Free Space | 27,20% Space Free | Partition Type: NTFS Drive D: | 80,00 Gb Total Space | 36,36 Gb Free Space | 45,45% Space Free | Partition Type: NTFS Drive E: | 97,65 Gb Total Space | 12,02 Gb Free Space | 12,30% Space Free | Partition Type: NTFS Drive F: | 115,69 Gb Total Space | 40,52 Gb Free Space | 35,03% Space Free | Partition Type: NTFS Drive G: | 385,76 Gb Total Space | 89,79 Gb Free Space | 23,28% Space Free | Partition Type: NTFS H: Drive not present or media not loaded I: Drive not present or media not loaded Computer Name: CINDY Current User Name: ** Logged in as Administrator. Current Boot Mode: SafeMode with Networking Scan Mode: Current user Company Name Whitelist: Off Skip Microsoft Files: Off File Age = 360 Days Output = Minimal ========== Processes (SafeList) ========== PRC - D:\Eigene Dateien\Download\### DownThemAll ###\AntiVirensoftware\OTL.exe (OldTimer Tools) PRC - C:\Programme\Common Files\McAfee\SystemCore\mfefire.exe (McAfee, Inc.) PRC - C:\Programme\Common Files\McAfee\SystemCore\mfevtps.exe (McAfee, Inc.) PRC - F:\Programme\Mozilla Firefox\firefox.exe (Mozilla Corporation) PRC - c:\Programme\McAfee.com\Agent\mcagent.exe (McAfee, Inc.) PRC - C:\Programme\Microsoft Security Essentials\MsMpEng.exe (Microsoft Corporation) PRC - C:\Programme\Common Files\McAfee\McSvcHost\McSvHost.exe (McAfee, Inc.) PRC - C:\Windows\explorer.exe (Microsoft Corporation) ========== Modules (SafeList) ========== MOD - D:\Eigene Dateien\Download\### DownThemAll ###\AntiVirensoftware\OTL.exe (OldTimer Tools) MOD - C:\Windows\System32\sspicli.dll (Microsoft Corporation) MOD - C:\Windows\System32\sechost.dll (Microsoft Corporation) MOD - C:\Windows\System32\samcli.dll (Microsoft Corporation) MOD - C:\Windows\System32\profapi.dll (Microsoft Corporation) MOD - C:\Windows\System32\netutils.dll (Microsoft Corporation) MOD - C:\Windows\System32\KernelBase.dll (Microsoft Corporation) MOD - C:\Windows\System32\devobj.dll (Microsoft Corporation) MOD - C:\Windows\System32\cryptbase.dll (Microsoft Corporation) MOD - C:\Windows\System32\cfgmgr32.dll (Microsoft Corporation) MOD - C:\Windows\System32\msscript.ocx (Microsoft Corporation) MOD - C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16385_none_421189da2b7fabfc\comctl32.dll (Microsoft Corporation) ========== Win32 Services (SafeList) ========== SRV - (TuneUp.Defrag) -- F:\Programme\TuneUp Utilities 2010\TuneUpDefragService.exe (TuneUp Software) SRV - (TuneUp.UtilitiesSvc) -- F:\Programme\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe (TuneUp Software) SRV - (UxTuneUp) -- C:\Windows\System32\uxtuneup.dll (TuneUp Software) SRV - (mfefire) -- C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe (McAfee, Inc.) SRV - (McShield) -- C:\Program Files\Common Files\McAfee\SystemCore\\mcshield.exe () SRV - (mfevtp) -- C:\Programme\Common Files\McAfee\SystemCore\mfevtps.exe (McAfee, Inc.) SRV - (McAfee SiteAdvisor Service) -- C:\Program Files\McAfee\SiteAdvisor\McSACore.exe (McAfee, Inc.) SRV - (MsMpSvc) -- C:\Program Files\Microsoft Security Essentials\MsMpEng.exe (Microsoft Corporation) SRV - (clr_optimization_v4.0.30319_32) -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe (Microsoft Corporation) SRV - (McODS) -- C:\Program Files\McAfee\VirusScan\mcods.exe (McAfee, Inc.) SRV - (TuneUp.ProgramStatisticsSvc) -- C:\Windows\System32\TUProgSt.exe (TuneUp Software) SRV - (MSK80Service) -- C:\Program Files\Common Files\Mcafee\McSvcHost\McSvHost.exe (McAfee, Inc.) SRV - (McProxy) -- C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe (McAfee, Inc.) SRV - (McNASvc) -- C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe (McAfee, Inc.) SRV - (McNaiAnn) -- C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe (McAfee, Inc.) SRV - (mcmscsvc) -- C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe (McAfee, Inc.) SRV - (McMPFSvc) -- C:\Program Files\Common Files\Mcafee\McSvcHost\McSvHost.exe (McAfee, Inc.) SRV - (Nero BackItUp Scheduler 4.0) -- C:\Programme\Common Files\Nero\Nero BackItUp 4\NBService.exe (Nero AG) SRV - (IGDCTRL) -- E:\Programme\FritzDSL\IGDCTRL.EXE (AVM Berlin) SRV - (LBTServ) -- C:\Programme\Common Files\Logishrd\Bluetooth\LBTServ.exe (Logitech, Inc.) SRV - (WwanSvc) -- C:\Windows\System32\wwansvc.dll (Microsoft Corporation) SRV - (WbioSrvc) -- C:\Windows\System32\wbiosrvc.dll (Microsoft Corporation) SRV - (Power) -- C:\Windows\System32\umpo.dll (Microsoft Corporation) SRV - (Themes) -- C:\Windows\System32\themeservice.dll (Microsoft Corporation) SRV - (sppuinotify) -- C:\Windows\System32\sppuinotify.dll (Microsoft Corporation) SRV - (StorSvc) -- C:\Windows\System32\StorSvc.dll (Microsoft Corporation) SRV - (RpcEptMapper) -- C:\Windows\System32\RpcEpMap.dll (Microsoft Corporation) SRV - (SensrSvc) -- C:\Windows\System32\sensrsvc.dll (Microsoft Corporation) SRV - (PeerDistSvc) -- C:\Windows\System32\PeerDistSvc.dll (Microsoft Corporation) SRV - (PNRPsvc) -- C:\Windows\System32\pnrpsvc.dll (Microsoft Corporation) SRV - (p2pimsvc) -- C:\Windows\System32\pnrpsvc.dll (Microsoft Corporation) SRV - (HomeGroupProvider) -- C:\Windows\System32\provsvc.dll (Microsoft Corporation) SRV - (PNRPAutoReg) -- C:\Windows\System32\pnrpauto.dll (Microsoft Corporation) SRV - (WinDefend) -- C:\Programme\Windows Defender\MpSvc.dll (Microsoft Corporation) SRV - (HomeGroupListener) -- C:\Windows\System32\ListSvc.dll (Microsoft Corporation) SRV - (FontCache) -- C:\Windows\System32\FntCache.dll (Microsoft Corporation) SRV - (Dhcp) -- C:\Windows\System32\dhcpcore.dll (Microsoft Corporation) SRV - (defragsvc) -- C:\Windows\System32\defragsvc.dll (Microsoft Corporation) SRV - (BDESVC) -- C:\Windows\System32\bdesvc.dll (Microsoft Corporation) SRV - (AxInstSV) ActiveX-Installer (AxInstSV) -- C:\Windows\System32\AxInstSv.dll (Microsoft Corporation) SRV - (AppIDSvc) -- C:\Windows\System32\appidsvc.dll (Microsoft Corporation) SRV - (sppsvc) -- C:\Windows\System32\sppsvc.exe (Microsoft Corporation) SRV - (SBSDWSCService) -- F:\Programme\Spybot - Search & Destroy\SDWinSec.exe (Safer Networking Ltd.) SRV - (ServiceLayer) -- C:\Program Files\PC Connectivity Solution\ServiceLayer.exe (Nokia.) SRV - (Microsoft Office Groove Audit Service) -- F:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe (Microsoft Corporation) SRV - (dlbk_device) -- C:\Windows\System32\dlbkcoms.exe ( ) SRV - (Brother XP spl Service) -- C:\Windows\System32\BRSVC01A.EXE (brother Industries Ltd) ========== Driver Services (SafeList) ========== DRV - (yamwkptu) -- C:\Windows\System32\drivers\yamwkptu.sys File not found DRV - (MpKslc0ad873c) -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{5EDE7D02-3762-441E-A836-19DA00D2AAE8}\MpKslc0ad873c.sys File not found DRV - (mfehidk) -- C:\Windows\system32\drivers\mfehidk.sys (McAfee, Inc.) DRV - (mfefirek) -- C:\Windows\System32\drivers\mfefirek.sys (McAfee, Inc.) DRV - (mfewfpk) -- C:\Windows\System32\drivers\mfewfpk.sys (McAfee, Inc.) DRV - (mfeavfk) -- C:\Windows\System32\drivers\mfeavfk.sys (McAfee, Inc.) DRV - (mfeapfk) -- C:\Windows\System32\drivers\mfeapfk.sys (McAfee, Inc.) DRV - (mferkdet) -- C:\Windows\System32\drivers\mferkdet.sys (McAfee, Inc.) DRV - (mfenlfk) -- C:\Windows\System32\drivers\mfenlfk.sys (McAfee, Inc.) DRV - (cfwids) -- C:\Windows\System32\drivers\cfwids.sys (McAfee, Inc.) DRV - (mfebopk) -- C:\Windows\System32\drivers\mfebopk.sys (McAfee, Inc.) DRV - (nvlddmkm) -- C:\Windows\System32\drivers\nvlddmkm.sys (NVIDIA Corporation) DRV - (MpFilter) -- C:\Windows\System32\drivers\MpFilter.sys (Microsoft Corporation) DRV - (MpNWMon) -- C:\Windows\System32\drivers\MpNWMon.sys (Microsoft Corporation) DRV - (RTL8167) -- C:\Windows\System32\drivers\Rt86win7.sys (Realtek ) DRV - (atksgt) -- C:\Windows\System32\drivers\atksgt.sys () DRV - (lirsgt) -- C:\Windows\System32\drivers\lirsgt.sys () DRV - (gdrv) -- C:\Windows\gdrv.sys (Windows (R) 2000 DDK provider) DRV - (sptd) -- C:\Windows\System32\Drivers\sptd.sys (Duplex Secure Ltd.) DRV - (KSecPkg) -- C:\Windows\System32\Drivers\ksecpkg.sys (Microsoft Corporation) DRV - (IntcAzAudAddService) Service for Realtek HD Audio (WDM) -- C:\Windows\System32\drivers\RTKVHDA.sys (Realtek Semiconductor Corp.) DRV - (TuneUpUtilitiesDrv) -- F:\Programme\TuneUp Utilities 2010\TuneUpUtilitiesDriver32.sys (TuneUp Software) DRV - ({95808DC4-FA4A-4C74-92FE-5B863F82066B}) -- e:\Programme\CyberLink\PowerDVD\000.fcl (CyberLink Corp.) DRV - (cmdide) -- C:\Windows\system32\DRIVERS\cmdide.sys (CMD Technology, Inc.) DRV - (adpahci) -- C:\Windows\system32\DRIVERS\adpahci.sys (Adaptec, Inc.) DRV - (adp94xx) -- C:\Windows\system32\DRIVERS\adp94xx.sys (Adaptec, Inc.) DRV - (amdsbs) -- C:\Windows\system32\DRIVERS\amdsbs.sys (AMD Technologies Inc.) DRV - (adpu320) -- C:\Windows\system32\DRIVERS\adpu320.sys (Adaptec, Inc.) DRV - (arcsas) -- C:\Windows\system32\DRIVERS\arcsas.sys (Adaptec, Inc.) DRV - (amdsata) -- C:\Windows\system32\DRIVERS\amdsata.sys (Advanced Micro Devices) DRV - (arc) -- C:\Windows\system32\DRIVERS\arc.sys (Adaptec, Inc.) DRV - (amdxata) -- C:\Windows\system32\DRIVERS\amdxata.sys (Advanced Micro Devices) DRV - (aliide) -- C:\Windows\system32\DRIVERS\aliide.sys (Acer Laboratories Inc.) DRV - (nvstor) -- C:\Windows\system32\DRIVERS\nvstor.sys (NVIDIA Corporation) DRV - (nvraid) -- C:\Windows\system32\DRIVERS\nvraid.sys (NVIDIA Corporation) DRV - (nfrd960) -- C:\Windows\system32\DRIVERS\nfrd960.sys (IBM Corporation) DRV - (LSI_SAS) -- C:\Windows\system32\DRIVERS\lsi_sas.sys (LSI Corporation) DRV - (iaStorV) -- C:\Windows\system32\DRIVERS\iaStorV.sys (Intel Corporation) DRV - (MegaSR) -- C:\Windows\system32\DRIVERS\MegaSR.sys (LSI Corporation, Inc.) DRV - (LSI_SCSI) -- C:\Windows\system32\DRIVERS\lsi_scsi.sys (LSI Corporation) DRV - (LSI_FC) -- C:\Windows\system32\DRIVERS\lsi_fc.sys (LSI Corporation) DRV - (LSI_SAS2) -- C:\Windows\system32\DRIVERS\lsi_sas2.sys (LSI Corporation) DRV - (iirsp) -- C:\Windows\system32\DRIVERS\iirsp.sys (Intel Corp./ICP vortex GmbH) DRV - (megasas) -- C:\Windows\system32\DRIVERS\megasas.sys (LSI Corporation) DRV - (hwpolicy) -- C:\Windows\System32\drivers\hwpolicy.sys (Microsoft Corporation) DRV - (elxstor) -- C:\Windows\system32\DRIVERS\elxstor.sys (Emulex) DRV - (aic78xx) -- C:\Windows\system32\DRIVERS\djsvs.sys (Adaptec, Inc.) DRV - (HpSAMD) -- C:\Windows\system32\DRIVERS\HpSAMD.sys (Hewlett-Packard Company) DRV - (FsDepends) -- C:\Windows\System32\drivers\fsdepends.sys (Microsoft Corporation) DRV - (vsmraid) -- C:\Windows\system32\DRIVERS\vsmraid.sys (VIA Technologies Inc.,Ltd) DRV - (vmbus) -- C:\Windows\system32\DRIVERS\vmbus.sys (Microsoft Corporation) DRV - (vhdmp) -- C:\Windows\system32\DRIVERS\vhdmp.sys (Microsoft Corporation) DRV - (storflt) -- C:\Windows\system32\DRIVERS\vmstorfl.sys (Microsoft Corporation) DRV - (vdrvroot) -- C:\Windows\system32\DRIVERS\vdrvroot.sys (Microsoft Corporation) DRV - (storvsc) -- C:\Windows\system32\DRIVERS\storvsc.sys (Microsoft Corporation) DRV - (WIMMount) -- C:\Windows\System32\drivers\wimmount.sys (Microsoft Corporation) DRV - (viaide) -- C:\Windows\system32\DRIVERS\viaide.sys (VIA Technologies, Inc.) DRV - (ql2300) -- C:\Windows\system32\DRIVERS\ql2300.sys (QLogic Corporation) DRV - (rdyboost) -- C:\Windows\System32\drivers\rdyboost.sys (Microsoft Corporation) DRV - (ql40xx) -- C:\Windows\system32\DRIVERS\ql40xx.sys (QLogic Corporation) DRV - (SiSRaid4) -- C:\Windows\system32\DRIVERS\sisraid4.sys (Silicon Integrated Systems) DRV - (pcw) -- C:\Windows\System32\drivers\pcw.sys (Microsoft Corporation) DRV - (SiSRaid2) -- C:\Windows\system32\DRIVERS\SiSRaid2.sys (Silicon Integrated Systems Corp.) DRV - (stexstor) -- C:\Windows\system32\DRIVERS\stexstor.sys (Promise Technology) DRV - (CNG) -- C:\Windows\System32\Drivers\cng.sys (Microsoft Corporation) DRV - (Brserid) Brother MFC Serial Port Interface Driver (WDM) -- C:\Windows\System32\Drivers\Brserid.sys (Brother Industries Ltd.) DRV - (BrSerIb) Brother MFC-Seriellschnittstellentreiber (WDM) -- C:\Windows\System32\drivers\BrSerIb.sys (Brother Industries Ltd.) DRV - (WSDPrintDevice) -- C:\Windows\System32\drivers\WSDPrint.sys (Microsoft Corporation) DRV - (rdpbus) -- C:\Windows\System32\drivers\rdpbus.sys (Microsoft Corporation) DRV - (RDPREFMP) -- C:\Windows\System32\drivers\RDPREFMP.sys (Microsoft Corporation) DRV - (RasAgileVpn) WAN Miniport (IKEv2) -- C:\Windows\System32\drivers\agilevpn.sys (Microsoft Corporation) DRV - (WfpLwf) -- C:\Windows\System32\drivers\wfplwf.sys (Microsoft Corporation) DRV - (NdisCap) -- C:\Windows\System32\drivers\ndiscap.sys (Microsoft Corporation) DRV - (vwifibus) -- C:\Windows\System32\drivers\vwifibus.sys (Microsoft Corporation) DRV - (1394ohci) -- C:\Windows\system32\DRIVERS\1394ohci.sys (Microsoft Corporation) DRV - (UmPass) -- C:\Windows\system32\DRIVERS\umpass.sys (Microsoft Corporation) DRV - (mshidkmdf) -- C:\Windows\System32\drivers\mshidkmdf.sys (Microsoft Corporation) DRV - (MTConfig) -- C:\Windows\system32\DRIVERS\MTConfig.sys (Microsoft Corporation) DRV - (CompositeBus) -- C:\Windows\System32\drivers\CompositeBus.sys (Microsoft Corporation) DRV - (AppID) -- C:\Windows\system32\drivers\appid.sys (Microsoft Corporation) DRV - (scfilter) -- C:\Windows\System32\drivers\scfilter.sys (Microsoft Corporation) DRV - (s3cap) -- C:\Windows\system32\DRIVERS\vms3cap.sys (Microsoft Corporation) DRV - (VMBusHID) -- C:\Windows\system32\DRIVERS\VMBusHID.sys (Microsoft Corporation) DRV - (discache) -- C:\Windows\System32\drivers\discache.sys () DRV - (HidBatt) -- C:\Windows\system32\DRIVERS\HidBatt.sys (Microsoft Corporation) DRV - (AcpiPmi) -- C:\Windows\system32\DRIVERS\acpipmi.sys (Microsoft Corporation) DRV - (AmdPPM) -- C:\Windows\system32\DRIVERS\amdppm.sys (Microsoft Corporation) DRV - (hcw85cir) -- C:\Windows\system32\drivers\hcw85cir.sys (Hauppauge Computer Works, Inc.) DRV - (BrUsbMdm) -- C:\Windows\System32\Drivers\BrUsbMdm.sys (Brother Industries Ltd.) DRV - (BrUsbSIb) Brother MFC-Seriell-USB-Treiber (WDM) -- C:\Windows\System32\drivers\BrUsbSIb.sys (Brother Industries Ltd.) DRV - (BrUsbSer) -- C:\Windows\System32\Drivers\BrUsbSer.sys (Brother Industries Ltd.) DRV - (BrSerWdm) -- C:\Windows\System32\Drivers\BrSerWdm.sys (Brother Industries Ltd.) DRV - (BrFiltLo) -- C:\Windows\system32\DRIVERS\BrFiltLo.sys (Brother Industries, Ltd.) DRV - (BrFiltUp) -- C:\Windows\system32\DRIVERS\BrFiltUp.sys (Brother Industries, Ltd.) DRV - (b57nd60x) -- C:\Windows\System32\drivers\b57nd60x.sys (Broadcom Corporation) DRV - (ebdrv) -- C:\Windows\system32\DRIVERS\evbdx.sys (Broadcom Corporation) DRV - (b06bdrv) -- C:\Windows\system32\DRIVERS\bxvbdx.sys (Broadcom Corporation) DRV - (LMouFilt) -- C:\Windows\System32\drivers\LMouFilt.Sys (Logitech, Inc.) DRV - (LHidFilt) -- C:\Windows\System32\drivers\LHidFilt.Sys (Logitech, Inc.) DRV - (LHidEqd) -- C:\Windows\System32\drivers\LHidEqd.sys (Logitech, Inc.) DRV - (LEqdUsb) -- C:\Windows\System32\drivers\LEqdUsb.sys (Logitech, Inc.) DRV - (L8042Kbd) -- C:\Windows\System32\drivers\L8042Kbd.sys (Logitech, Inc.) DRV - (CLBUDFR) -- C:\Windows\System32\drivers\CLBUDFR.sys (CyberLink Corporation.) DRV - (CLBStor) -- C:\Windows\System32\drivers\CLBStor.sys (Cyberlink Co.,Ltd.) DRV - (Uim_IM) -- C:\Windows\System32\drivers\Uim_IM.sys (Paragon) DRV - (hotcore3) -- C:\Windows\system32\DRIVERS\hotcore3.sys (Paragon Software Group) DRV - (UimBus) -- C:\Windows\System32\drivers\UimBus.sys (Windows (R) 2000 DDK provider) DRV - (pccsmcfd) -- C:\Windows\System32\drivers\pccsmcfd.sys (Nokia) DRV - (nmwcdsa) -- C:\Windows\System32\drivers\nmwcdsa.sys (Nokia) DRV - (nmwcdsacm) -- C:\Windows\System32\drivers\nmwcdsacm.sys (Nokia) DRV - (nmwcdsacj) -- C:\Windows\System32\drivers\nmwcdsacj.sys (Nokia) DRV - (nmwcdsac) -- C:\Windows\System32\drivers\nmwcdsac.sys (Nokia) DRV - (JRAID) -- C:\Windows\system32\DRIVERS\jraid.sys (JMicron Technology Corp.) DRV - (JGOGO) -- C:\Windows\system32\DRIVERS\JGOGO.sys (JMicron ) DRV - (ElbyCDIO) -- C:\Windows\System32\drivers\ElbyCDIO.sys (Elaborate Bytes AG) DRV - (ElbyDelay) -- C:\Windows\System32\drivers\ElbyDelay.sys (Elaborate Bytes AG) ========== Standard Registry (SafeList) ========== ========== Internet Explorer ========== IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://de.msn.com/?ocid=iehp IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 44 9F 5E 39 37 7C CA 01 [binary data] IE - HKCU\..\URLSearchHook: {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\Programme\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.) IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local ========== FireFox ========== FF - prefs.js..browser.search.defaultenginename: "Secure Search" FF - prefs.js..browser.search.selectedEngine: "Secure Search" FF - prefs.js..browser.startup.homepage: "about:blank" FF - prefs.js..extensions.enabledItems: {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}:1.2.1 FF - prefs.js..extensions.enabledItems: {DDC359D1-844A-42a7-9AA1-88A850A938A8}:1.1.10 FF - prefs.js..extensions.enabledItems: {B7082FAA-CB62-4872-9106-E42DD88EDE45}:3.1 FF - prefs.js..extensions.enabledItems: {a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7}:20100503 FF - prefs.js..extensions.enabledItems: personas@christopher.beard:1.5.3 FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}:6.0.20 FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}:6.0.21 FF - prefs.js..extensions.enabledItems: info@djzig.com:1.1.7 FF - prefs.js..extensions.enabledItems: {07b2a769-ed19-4483-87ce-c643914c81bb}:3.0.0.91 FF - prefs.js..keyword.URL: "hxxp://de.search.yahoo.com/search?fr=mcafee&p=" FF - HKLM\software\mozilla\Firefox\Extensions\\{B7082FAA-CB62-4872-9106-E42DD88EDE45}: C:\Program Files\McAfee\SiteAdvisor [2010.06.30 10:57:51 | 000,000,000 | ---D | M] FF - HKLM\software\mozilla\Mozilla Firefox 3.5.6\extensions\\Components: F:\Programme\Mozilla Firefox\components [2010.08.13 17:35:39 | 000,000,000 | ---D | M] FF - HKLM\software\mozilla\Mozilla Firefox 3.5.6\extensions\\Plugins: F:\Programme\Mozilla Firefox\plugins [2010.06.30 09:09:45 | 000,000,000 | ---D | M] [2009.12.16 20:01:57 | 000,000,000 | ---D | M] -- C:\Users\**\AppData\Roaming\mozilla\Extensions [2009.12.16 20:01:57 | 000,000,000 | ---D | M] (No name found) -- C:\Users\**\AppData\Roaming\mozilla\Extensions\{3550f703-e582-4d05-9a08-453d09bdfdc6} [2010.08.13 17:55:37 | 000,000,000 | ---D | M] -- C:\Users\**\AppData\Roaming\mozilla\Firefox\Profiles\3zh3p6d4.default\extensions [2010.05.29 09:55:25 | 000,000,000 | ---D | M] (Vista-aero) -- C:\Users\**\AppData\Roaming\mozilla\Firefox\Profiles\3zh3p6d4.default\extensions\{07b2a769-ed19-4483-87ce-c643914c81bb} [2010.04.29 17:43:06 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Users\**\AppData\Roaming\mozilla\Firefox\Profiles\3zh3p6d4.default\extensions\{20a82645-c095-46ed-80e3-08825760534b} [2010.05.15 11:20:43 | 000,000,000 | ---D | M] (WOT) -- C:\Users\**\AppData\Roaming\mozilla\Firefox\Profiles\3zh3p6d4.default\extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7} [2010.07.11 19:23:44 | 000,000,000 | ---D | M] (Adblock Plus) -- C:\Users\**\AppData\Roaming\mozilla\Firefox\Profiles\3zh3p6d4.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d} [2010.06.28 09:09:28 | 000,000,000 | ---D | M] (DownThemAll!) -- C:\Users\**\AppData\Roaming\mozilla\Firefox\Profiles\3zh3p6d4.default\extensions\{DDC359D1-844A-42a7-9AA1-88A850A938A8} [2010.06.28 09:09:24 | 000,000,000 | ---D | M] -- C:\Users\**\AppData\Roaming\mozilla\Firefox\Profiles\3zh3p6d4.default\extensions\info@djzig.com [2010.04.17 08:48:29 | 000,000,000 | ---D | M] -- C:\Users\**\AppData\Roaming\mozilla\Firefox\Profiles\3zh3p6d4.default\extensions\personas@christopher.beard [2010.05.29 09:55:25 | 000,000,000 | ---D | M] (No name found) -- C:\Users\**\AppData\Roaming\mozilla\Firefox\Profiles\3zh3p6d4.default\extensions\{07b2a769-ed19-4483-87ce-c643914c81bb}\chrome\mozapps\extensions O1 HOSTS File: ([2010.08.09 21:50:34 | 000,001,001 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts O2 - BHO: (McAfee Phishing Filter) - {27B4851A-3207-45A2-B947-BE8AFE6163AB} - c:\Programme\McAfee\MSK\mskapbho.dll () O2 - BHO: (Spybot-S&D IE Protection) - {53707962-6F74-2D53-2644-206D7942484F} - F:\Programme\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited) O2 - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - F:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation) O2 - BHO: (scriptproxy) - {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - C:\Programme\Common Files\McAfee\SystemCore\ScriptSn.20100807103108.dll (McAfee, Inc.) O2 - BHO: (McAfee SiteAdvisor BHO) - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - c:\Programme\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.) O3 - HKLM\..\Toolbar: (McAfee SiteAdvisor Toolbar) - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\Programme\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.) O4 - HKLM..\Run: [BrMfcWnd] C:\Program Files\Brother\Brmfcmon\BrMfcWnd.exe (Brother Industries, Ltd.) O4 - HKLM..\Run: [ControlCenter3] C:\Program Files\Brother\ControlCenter3\brctrcen.exe (Brother Industries, Ltd.) O4 - HKLM..\Run: [IndexSearch] C:\Program Files\ScanSoft\PaperPort\IndexSearch.exe (Nuance Communications, Inc.) O4 - HKLM..\Run: [Kernel and Hardware Abstraction Layer] C:\Windows\KHALMNPR.Exe (Logitech, Inc.) O4 - HKLM..\Run: [ Malwarebytes Anti-Malware (reboot)] F:\Programme\Malwarebytes' Anti-Malware\mbam.exe (Malwarebytes Corporation) O4 - HKLM..\Run: [mcui_exe] C:\Program Files\McAfee.com\Agent\mcagent.exe (McAfee, Inc.) O4 - HKLM..\Run: [PaperPort PTD] C:\Program Files\ScanSoft\PaperPort\pptd40nt.exe (Nuance Communications, Inc.) O4 - HKLM..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe (Realtek Semiconductor) O4 - HKCU..\Run: [SpybotSD TeaTimer] F:\Programme\Spybot - Search & Destroy\TeaTimer.exe (Safer-Networking Ltd.) O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 0 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0 O9 - Extra Button: An OneNote senden - {2670000A-7350-4f3c-8081-5663EE0C6C49} - F:\Program Files\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation) O9 - Extra 'Tools' menuitem : An OneNote s&enden - {2670000A-7350-4f3c-8081-5663EE0C6C49} - F:\Program Files\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation) O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - F:\Program Files\Microsoft Office\Office12\REFIEBAR.DLL (Microsoft Corporation) O9 - Extra 'Tools' menuitem : Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - F:\Programme\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited) O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - E:\Programme\FritzDSL\\sarah.dll () O10 - Protocol_Catalog9\Catalog_Entries\000000000001 - E:\Programme\FritzDSL\sarah.dll (AVM Berlin) O10 - Protocol_Catalog9\Catalog_Entries\000000000002 - E:\Programme\FritzDSL\sarah.dll (AVM Berlin) O10 - Protocol_Catalog9\Catalog_Entries\000000000003 - E:\Programme\FritzDSL\sarah.dll (AVM Berlin) O10 - Protocol_Catalog9\Catalog_Entries\000000000026 - E:\Programme\FritzDSL\sarah.dll (AVM Berlin) O13 - gopher Prefix: missing O15 - HKCU\..Trusted Domains: microsoft.com ([update] http in Vertrauenswürdige Sites) O15 - HKCU\..Trusted Domains: microsoft.com ([windowsupdate] http in Vertrauenswürdige Sites) O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_21-windows-i586.cab (Java Plug-in 1.6.0_21) O16 - DPF: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_21-windows-i586.cab (Java Plug-in 1.6.0_21) O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_21-windows-i586.cab (Java Plug-in 1.6.0_21) O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 19.168.2.1 O18 - Protocol\Handler\dssrequest {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Programme\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.) O18 - Protocol\Handler\grooveLocalGWS {88FED34C-F0CA-4636-A375-3CB6248B04CD} - F:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll (Microsoft Corporation) O18 - Protocol\Handler\http\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\http\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\https\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\https\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Programme\Common Files\microsoft shared\Help\hxds.dll (Microsoft Corporation) O18 - Protocol\Handler\sacore {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Programme\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.) O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\Programme\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation) O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation) O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\System32\SystemPropertiesPerformance.exe (Microsoft Corporation) O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found O20 - Winlogon\Notify\LBTWlgn: DllName - c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll - c:\Programme\Common Files\Logishrd\Bluetooth\LBTWLgn.dll (Logitech, Inc.) O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found. O24 - Desktop Components:0 (Die derzeitige Homepage) - About:Home O28 - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - F:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation) O30 - LSA: Security Packages - (pku2u) - C:\Windows\System32\pku2u.dll (Microsoft Corporation) O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2009.06.10 23:42:20 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ] O33 - MountPoints2\{c6209029-e828-11de-809b-806e6f6e6963}\Shell - "" = AutoRun O33 - MountPoints2\{c6209029-e828-11de-809b-806e6f6e6963}\Shell\AutoRun\command - "" = H:\Run.exe -- File not found O33 - MountPoints2\{f233183a-f7b7-11de-ab1c-001a4d931331}\Shell - "" = AutoRun O33 - MountPoints2\{f233183a-f7b7-11de-ab1c-001a4d931331}\Shell\AutoRun\command - "" = Z:\setup.exe -- File not found O34 - HKLM BootExecute: (autocheck autochk *) - File not found O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* ========== Files/Folders - Created Within 360 Days ========== [2010.08.14 01:23:05 | 000,032,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\jvhhzaav.sys [2010.08.13 17:54:38 | 000,000,000 | ---D | C] -- C:\Programme\Common Files\Java [2010.08.13 17:54:12 | 000,153,376 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\System32\javaws.exe [2010.08.13 17:54:12 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\System32\javaw.exe [2010.08.13 17:54:12 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\System32\java.exe [2010.08.09 22:10:48 | 000,000,000 | ---D | C] -- C:\Users\**\AppData\Roaming\Malwarebytes [2010.08.09 22:10:41 | 000,038,224 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbamswissarmy.sys [2010.08.09 22:10:39 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes [2010.08.09 22:10:38 | 000,020,952 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbam.sys [2010.08.09 22:02:28 | 000,032,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\metklpwg.sys [2010.08.09 21:53:15 | 000,000,000 | ---D | C] -- D:\alte Hosts [2010.08.08 14:33:51 | 000,032,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\yxqhubnp.sys [2010.08.08 14:16:59 | 000,000,000 | ---D | C] -- C:\ProgramData\Hitman Pro [2010.08.08 14:16:52 | 000,000,000 | ---D | C] -- C:\Programme\Hitman Pro 3.5 [2010.08.07 19:24:43 | 000,000,000 | ---D | C] -- C:\Programme\Trend Micro [2010.08.07 15:59:01 | 000,032,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\fowtkgjs.sys [2010.08.07 11:20:06 | 000,032,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\pcrnmilm.sys [2010.08.07 10:33:09 | 000,000,000 | ---D | C] -- C:\Windows\Sun [2010.08.07 10:31:07 | 000,009,344 | ---- | C] (McAfee, Inc.) -- C:\Windows\System32\drivers\mfeclnk.sys [2010.08.07 10:30:28 | 000,160,720 | ---- | C] (McAfee, Inc.) -- C:\Windows\System32\drivers\mfewfpk.sys [2010.08.07 10:30:28 | 000,083,496 | ---- | C] (McAfee, Inc.) -- C:\Windows\System32\drivers\mferkdet.sys [2010.08.07 10:30:28 | 000,064,304 | ---- | C] (McAfee, Inc.) -- C:\Windows\System32\drivers\mfenlfk.sys [2010.08.07 10:30:27 | 000,385,880 | ---- | C] (McAfee, Inc.) -- C:\Windows\System32\drivers\mfehidk.sys [2010.08.07 10:30:27 | 000,312,616 | ---- | C] (McAfee, Inc.) -- C:\Windows\System32\drivers\mfefirek.sys [2010.08.07 10:30:27 | 000,152,320 | ---- | C] (McAfee, Inc.) -- C:\Windows\System32\drivers\mfeavfk.sys [2010.08.07 10:30:27 | 000,095,568 | ---- | C] (McAfee, Inc.) -- C:\Windows\System32\drivers\mfeapfk.sys [2010.08.07 10:30:27 | 000,055,456 | ---- | C] (McAfee, Inc.) -- C:\Windows\System32\drivers\cfwids.sys [2010.08.07 10:30:27 | 000,051,688 | ---- | C] (McAfee, Inc.) -- C:\Windows\System32\drivers\mfebopk.sys [2010.08.05 23:52:47 | 000,032,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\wrmkogkw.sys [2010.08.05 19:54:19 | 000,032,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\xiwsrxof.sys [2010.08.05 18:51:32 | 000,000,000 | ---D | C] -- C:\Programme\Microsoft Security Essentials [2010.08.05 18:49:47 | 000,000,000 | ---D | C] -- C:\Windows\pss [2010.07.26 19:08:49 | 000,000,000 | ---D | C] -- C:\Programme\Misc. Support Library (Spybot - Search & Destroy) [2010.07.26 19:08:47 | 000,000,000 | ---D | C] -- C:\Programme\TeaTimer (Spybot - Search & Destroy) [2010.07.26 19:08:47 | 000,000,000 | ---D | C] -- C:\Programme\SDHelper (Spybot - Search & Destroy) [2010.07.26 19:08:46 | 000,000,000 | ---D | C] -- C:\Programme\File Scanner Library (Spybot - Search & Destroy) [2010.07.26 05:35:10 | 000,032,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\nxczndhi.sys [2010.07.25 17:08:22 | 000,000,000 | ---D | C] -- C:\Windows\System32\MpEngineStore [2010.07.25 17:04:18 | 000,000,000 | ---D | C] -- C:\ProgramData\Spybot - Search & Destroy [2010.07.25 17:04:17 | 000,000,000 | ---D | C] -- C:\Programme\Spybot - Search & Destroy [2010.07.12 21:23:22 | 000,000,000 | ---D | C] -- D:\LightScribe [2010.06.30 10:08:30 | 000,000,000 | ---D | C] -- C:\Programme\ArtMoney [2010.06.26 23:30:45 | 000,000,000 | ---D | C] -- C:\Programme\Microsoft.NET [2010.06.26 23:30:12 | 000,295,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PresentationHost.exe [2010.06.26 23:30:12 | 000,099,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PresentationHostProxy.dll [2010.06.26 23:30:12 | 000,049,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\netfxperf.dll [2010.06.26 15:38:55 | 000,641,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\CPFilters.dll [2010.06.26 15:38:54 | 000,417,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msdri.dll [2010.06.26 15:38:54 | 000,204,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MSNP.ax [2010.06.26 15:38:54 | 000,199,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mpg2splt.ax [2010.06.11 15:54:06 | 002,326,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\win32k.sys [2010.06.11 15:54:04 | 000,067,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\asycfilt.dll [2010.06.11 15:54:01 | 000,606,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mstime.dll [2010.06.11 15:54:01 | 000,381,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iedkcs32.dll [2010.06.11 15:54:00 | 000,064,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeedsbs.dll [2010.06.11 15:54:00 | 000,048,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jsproxy.dll [2010.06.11 15:53:56 | 000,293,888 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\System32\atmfd.dll [2010.06.11 15:53:56 | 000,034,304 | ---- | C] (Adobe Systems) -- C:\Windows\System32\atmlib.dll [2010.06.03 17:29:39 | 000,000,000 | ---D | C] -- C:\Users\**\AppData\Roaming\Summer Athletics 2008 [2010.06.03 17:26:59 | 000,000,000 | ---D | C] -- C:\CompChecker [2010.06.03 17:07:47 | 000,000,000 | ---D | C] -- C:\Users\**\AppData\Roaming\DivX [2010.05.27 16:02:15 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\tzres.dll [2010.05.20 02:13:47 | 000,000,000 | ---D | C] -- C:\Users\**\AppData\Roaming\Tiuwd [2010.05.14 11:31:43 | 000,000,000 | ---D | C] -- C:\Users\**\AppData\Roaming\gtk-2.0 [2010.05.14 11:31:39 | 000,000,000 | ---D | C] -- C:\Users\**\.thumbnails [2010.05.14 11:29:01 | 000,000,000 | ---D | C] -- C:\Users\**\.gimp-2.4 [2010.05.09 18:54:17 | 000,000,000 | ---D | C] -- C:\Programme\Brother [2010.05.09 16:04:06 | 000,057,344 | ---- | C] (brother Industries Ltd) -- C:\Windows\System32\BRSVC01A.EXE [2010.05.09 16:04:06 | 000,045,056 | ---- | C] (brother Industries Ltd) -- C:\Windows\System32\BRSS01A.EXE [2010.05.09 15:41:27 | 000,196,608 | ---- | C] (brother) -- C:\Windows\System32\Pdrvinst.dll [2010.05.06 21:55:04 | 000,000,000 | ---D | C] -- C:\Users\**\AppData\Roaming\PC-FAX TX [2010.05.06 21:52:08 | 000,073,216 | ---- | C] (Brother Industries,Ltd.) -- C:\Windows\System32\BrWiaNCp.dll [2010.05.06 21:52:08 | 000,072,192 | ---- | C] (Brother Industries, Ltd.) -- C:\Windows\System32\BrNetSti.dll [2010.05.06 21:52:08 | 000,046,592 | ---- | C] (Brother Industries,Ltd) -- C:\Windows\System32\Brnsplg.dll [2010.05.06 21:05:06 | 000,126,976 | ---- | C] (Brother Industries, Ltd.) -- C:\Windows\System32\BrfxD05b.dll [2010.05.06 21:05:05 | 000,005,632 | ---- | C] (Brother Industries Ltd.) -- C:\Windows\System32\BrDctF2L.dll [2010.05.06 21:05:04 | 000,176,128 | ---- | C] (Brother Industries, Ltd.) -- C:\Windows\System32\BroSNMP.dll [2010.05.06 21:05:04 | 000,073,728 | ---- | C] (Brother Industries Ltd.) -- C:\Windows\System32\BrDctF2.dll [2010.05.06 21:05:04 | 000,003,072 | ---- | C] (Brother Industries Ltd.) -- C:\Windows\System32\BrDctF2S.dll [2010.05.06 20:41:42 | 000,000,000 | ---D | C] -- C:\Users\**\Brother [2010.05.06 19:52:05 | 000,000,000 | R--D | C] -- D:\Scanned Documents [2010.05.06 19:51:57 | 000,000,000 | ---D | C] -- D:\Fax [2010.05.05 18:56:49 | 000,000,000 | RHSD | C] -- C:\Users\**\AppData\Roaming\Brother [2010.05.05 17:58:55 | 000,000,000 | ---D | C] -- C:\Users\**\AppData\Roaming\Zeon [2010.05.05 17:58:48 | 000,000,000 | ---D | C] -- D:\Eigene PaperPort-Dokumente [2010.05.05 17:58:47 | 000,000,000 | ---D | C] -- C:\Users\**\AppData\Roaming\ScanSoft [2010.05.05 17:54:58 | 000,000,000 | ---D | C] -- C:\Users\**\AppData\Local\Scansoft [2010.05.05 17:48:15 | 000,000,000 | ---D | C] -- C:\Programme\Reallusion [2010.05.05 17:48:07 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\Reallusion [2010.05.05 17:46:54 | 000,000,000 | ---D | C] -- C:\Users\**\AppData\Roaming\Reallusion [2010.05.05 17:35:41 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\BrFaxRx [2010.05.05 17:35:32 | 000,073,728 | ---- | C] (Brother Industories Ltd. P&S Company) -- C:\Windows\System32\BRCrypt.dll [2010.05.05 17:35:28 | 000,118,784 | ---- | C] (Brother Industries,LTD.) -- C:\Windows\System32\BrMfNt.dll [2010.05.05 17:35:02 | 001,534,464 | ---- | C] (Brother Industries, Ltd.) -- C:\Windows\System32\BrWia09b.dll [2010.05.05 17:35:02 | 000,053,760 | ---- | C] (Brother Industries, Ltd.) -- C:\Windows\System32\BrUsi09a.dll [2010.05.05 17:34:57 | 000,167,936 | ---- | C] (brother) -- C:\Windows\System32\NSSearch.dll [2010.05.05 17:34:00 | 000,000,000 | ---D | C] -- C:\Programme\Nuance [2010.05.05 17:33:27 | 000,000,000 | ---D | C] -- C:\ProgramData\InstallShield [2010.05.05 17:32:50 | 000,000,000 | ---D | C] -- C:\Programme\Common Files\ScanSoft Shared [2010.05.05 17:32:44 | 000,000,000 | ---D | C] -- C:\Programme\ScanSoft [2010.05.05 17:32:44 | 000,000,000 | ---D | C] -- C:\ProgramData\ScanSoft [2010.05.05 17:31:51 | 000,000,000 | ---D | C] -- C:\ProgramData\Brother [2010.04.30 15:11:13 | 000,000,000 | ---D | C] -- D:\Eigene Dateien [2010.04.28 19:49:44 | 001,037,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\lsasrv.dll [2010.04.28 19:49:44 | 000,133,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\ksecpkg.sys [2010.04.25 09:39:57 | 000,000,000 | ---D | C] -- C:\ProgramData\Symantec [2010.04.25 09:39:57 | 000,000,000 | ---D | C] -- C:\ProgramData\Norton [2010.04.25 09:39:55 | 000,000,000 | ---D | C] -- C:\ProgramData\NortonInstaller [2010.04.20 20:14:18 | 000,423,656 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\System32\deployJava1.dll [2010.04.17 08:39:46 | 003,954,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ntkrnlpa.exe [2010.04.17 08:39:46 | 003,899,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ntoskrnl.exe [2010.04.17 08:39:44 | 000,427,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\vbscript.dll [2010.04.08 18:55:35 | 000,000,000 | ---D | C] -- C:\Programme\Common Files\Adobe [2010.04.03 22:55:32 | 015,227,496 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvoglv32.dll [2010.04.03 22:55:32 | 011,647,592 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvcompiler.dll [2010.04.03 22:55:32 | 011,573,800 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\drivers\nvlddmkm.sys [2010.04.03 22:55:32 | 009,386,600 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvd3dum.dll [2010.04.03 22:55:32 | 004,029,544 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvcuda.dll [2010.04.03 22:55:32 | 002,907,752 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvencodemft.dll [2010.04.03 22:55:32 | 002,646,632 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvcuvenc.dll [2010.04.03 22:55:32 | 002,009,704 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvcuvid.dll [2010.04.03 22:55:32 | 000,316,008 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvdecodemft.dll [2010.04.03 22:55:32 | 000,227,944 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvcod1914.dll [2010.04.03 22:55:32 | 000,227,944 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvcod.dll [2010.04.03 22:55:32 | 000,056,424 | ---- | C] (Khronos Group) -- C:\Windows\System32\OpenCL.dll [2010.04.03 22:55:32 | 000,010,920 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\drivers\nvBridge.kmd [2010.04.03 18:27:00 | 013,683,816 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvcpl.dll [2010.04.03 18:27:00 | 000,985,704 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvsvc.dll [2010.04.03 18:27:00 | 000,110,696 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvmctray.dll [2010.04.03 09:37:17 | 000,000,000 | ---D | C] -- C:\ProgramData\Sun [2010.04.03 09:31:11 | 000,000,000 | ---D | C] -- C:\Windows\System32\Adobe [2010.03.28 10:22:23 | 000,293,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\browserchoice.exe [2010.03.25 21:30:22 | 000,151,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\MpFilter.sys [2010.03.25 21:30:22 | 000,042,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\MpNWMon.sys [2010.03.18 13:16:28 | 000,771,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msvcr100_clr0400.dll [2010.03.14 18:44:54 | 000,000,000 | ---D | C] -- C:\Programme\Common Files\PX Storage Engine [2010.03.14 18:44:42 | 000,000,000 | ---D | C] -- C:\Programme\Common Files\DivX Shared [2010.03.12 17:36:09 | 000,679,936 | ---- | C] (Generated by JEDI) -- C:\Windows\System32\D3DX81ab.dll [2010.03.10 10:54:23 | 000,000,000 | ---D | C] -- D:\Bioshock [2010.03.10 10:54:23 | 000,000,000 | ---D | C] -- C:\Users\**\AppData\Roaming\Bioshock [2010.03.10 10:53:31 | 000,000,000 | RH-D | C] -- C:\Users\**\AppData\Roaming\SecuROM [2010.03.10 10:34:47 | 000,108,144 | ---- | C] (Sony DADC Austria AG.) -- C:\Windows\System32\CmdLineExt.dll [2010.03.10 10:29:56 | 000,000,000 | ---D | C] -- C:\Users\**\AppData\Roaming\InstallShield Installation Information [2010.03.06 16:54:56 | 000,000,000 | ---D | C] -- C:\Users\**\AppData\Roaming\InstallShield [2010.03.04 13:42:58 | 000,277,536 | ---- | C] (Realtek ) -- C:\Windows\System32\drivers\Rt86win7.sys [2010.02.26 19:23:02 | 000,000,000 | ---D | C] -- C:\Windows\rescache [2010.02.26 18:51:46 | 000,716,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jscript.dll [2010.02.26 18:51:44 | 000,465,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\psisdecd.dll [2010.02.22 10:56:14 | 000,000,000 | ---D | C] -- C:\Users\**\AppData\Roaming\Nuha [2010.02.20 13:04:49 | 000,000,000 | ---D | C] -- C:\Programme\NVIDIA Corporation [2010.02.12 20:54:04 | 000,000,000 | ---D | C] -- C:\Programme\Java [2010.02.11 19:00:52 | 001,328,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\quartz.dll [2010.02.11 19:00:52 | 000,091,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\avifil32.dll [2010.02.11 19:00:52 | 000,084,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mciavi32.dll [2010.02.11 19:00:49 | 000,369,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\secproc.dll [2010.02.11 19:00:49 | 000,365,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\secproc_isv.dll [2010.02.11 19:00:49 | 000,324,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\RMActivate_isv.exe [2010.02.11 19:00:49 | 000,320,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\RMActivate.exe [2010.02.11 19:00:49 | 000,280,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\RMActivate_ssp.exe [2010.02.11 19:00:49 | 000,277,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\RMActivate_ssp_isv.exe [2010.02.11 19:00:49 | 000,085,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\secproc_ssp_isv.dll [2010.02.11 19:00:49 | 000,085,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\secproc_ssp.dll [2010.02.06 13:42:22 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\STALKER-STCS [2010.02.06 13:14:47 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\City Interactive [2010.02.06 13:01:47 | 001,846,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DCompiler_41.dll [2010.02.06 13:01:47 | 000,453,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx10_41.dll [2010.02.06 13:01:46 | 004,379,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DX9_40.dll [2010.02.06 13:01:46 | 004,178,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DX9_41.dll [2010.02.06 13:01:46 | 002,036,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DCompiler_40.dll [2010.02.06 13:01:46 | 000,517,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAudio2_4.dll [2010.02.06 13:01:46 | 000,514,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAudio2_3.dll [2010.02.06 13:01:46 | 000,452,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx10_40.dll [2010.02.06 13:01:46 | 000,235,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine3_3.dll [2010.02.06 13:01:46 | 000,235,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine3_4.dll [2010.02.06 13:01:46 | 000,070,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAPOFX1_2.dll [2010.02.06 13:01:46 | 000,069,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAPOFX1_3.dll [2010.02.06 13:01:46 | 000,023,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\X3DAudio1_5.dll [2010.02.06 13:01:46 | 000,022,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\X3DAudio1_6.dll [2010.02.06 13:01:45 | 003,851,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DX9_39.dll [2010.02.06 13:01:45 | 001,493,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DCompiler_39.dll [2010.02.06 13:01:45 | 000,509,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAudio2_2.dll [2010.02.06 13:01:45 | 000,507,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAudio2_1.dll [2010.02.06 13:01:45 | 000,467,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx10_39.dll [2010.02.06 13:01:45 | 000,238,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine3_2.dll [2010.02.06 13:01:45 | 000,068,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAPOFX1_1.dll [2010.02.06 13:01:45 | 000,065,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAPOFX1_0.dll [2010.02.06 13:01:44 | 003,850,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DX9_38.dll [2010.02.06 13:01:44 | 001,491,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DCompiler_38.dll [2010.02.06 13:01:44 | 001,420,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DCompiler_37.dll [2010.02.06 13:01:44 | 000,479,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAudio2_0.dll [2010.02.06 13:01:44 | 000,467,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx10_38.dll [2010.02.06 13:01:44 | 000,462,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx10_37.dll [2010.02.06 13:01:44 | 000,238,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine3_1.dll [2010.02.06 13:01:44 | 000,238,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine3_0.dll [2010.02.06 13:01:44 | 000,025,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\X3DAudio1_4.dll [2010.02.06 13:01:44 | 000,025,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\X3DAudio1_3.dll [2010.02.06 13:01:43 | 003,786,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DX9_37.dll [2010.02.06 13:01:43 | 003,734,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_36.dll [2010.02.06 13:01:43 | 001,374,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DCompiler_36.dll [2010.02.06 13:01:43 | 000,444,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx10_36.dll [2010.02.06 13:01:43 | 000,267,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine2_10.dll [2010.02.06 13:01:43 | 000,267,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine2_9.dll [2010.02.06 13:01:42 | 003,727,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_35.dll [2010.02.06 13:01:42 | 003,497,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_34.dll [2010.02.06 13:01:42 | 001,358,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DCompiler_35.dll [2010.02.06 13:01:42 | 001,124,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DCompiler_34.dll [2010.02.06 13:01:42 | 000,444,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx10_35.dll [2010.02.06 13:01:42 | 000,443,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx10_34.dll [2010.02.06 13:01:42 | 000,266,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine2_8.dll [2010.02.06 13:01:42 | 000,081,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xinput1_3.dll [2010.02.06 13:01:42 | 000,017,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\X3DAudio1_2.dll [2010.02.06 13:01:41 | 003,495,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_33.dll [2010.02.06 13:01:41 | 001,123,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DCompiler_33.dll [2010.02.06 13:01:41 | 000,443,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx10_33.dll [2010.02.06 13:01:41 | 000,440,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx10.dll [2010.02.06 13:01:41 | 000,261,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine2_7.dll [2010.02.06 13:01:41 | 000,255,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine2_6.dll [2010.02.06 13:01:41 | 000,251,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine2_5.dll [2010.02.06 13:01:40 | 000,237,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine2_4.dll [2010.02.06 13:01:40 | 000,236,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine2_3.dll [2010.02.06 13:01:40 | 000,230,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine2_2.dll [2010.02.06 13:01:40 | 000,062,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xinput1_2.dll [2010.02.06 13:01:40 | 000,062,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xinput1_1.dll [2010.02.06 13:01:40 | 000,015,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\x3daudio1_1.dll [2010.02.06 13:01:39 | 000,229,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine2_1.dll [2010.02.06 13:01:35 | 002,332,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_29.dll [2010.02.06 13:01:35 | 002,323,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_28.dll [2010.02.06 13:01:35 | 000,230,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine2_0.dll [2010.02.06 13:01:35 | 000,014,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\x3daudio1_0.dll [2010.02.06 13:01:34 | 002,337,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_25.dll [2010.02.06 13:01:34 | 002,319,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_27.dll [2010.02.06 13:01:34 | 002,297,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_26.dll [2010.02.06 13:01:34 | 002,222,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_24.dll [2010.01.27 20:06:03 | 000,000,000 | ---D | C] -- D:\Smart Label Printer [2010.01.27 20:03:47 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\Smart Label Printer [2010.01.27 20:03:46 | 000,000,000 | ---D | C] -- C:\Users\**\AppData\Local\Smart Label Printer [2010.01.27 20:02:34 | 000,000,000 | ---D | C] -- C:\Users\**\AppData\Local\Downloaded Installations [2010.01.27 19:53:11 | 000,000,000 | ---D | C] -- C:\Users\**\AppData\Roaming\Smart Label Printer [2010.01.27 19:53:11 | 000,000,000 | ---D | C] -- C:\ProgramData\Smart Label Printer [2010.01.27 19:38:13 | 002,614,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\explorer.exe [2010.01.22 22:38:05 | 000,000,000 | ---D | C] -- D:\CyberLink [2010.01.22 22:36:12 | 000,000,000 | ---D | C] -- C:\Users\**\AppData\Local\Power2Go [2010.01.22 22:23:57 | 000,115,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MSINET.OCX [2010.01.22 22:23:57 | 000,102,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\Vb6stkit.dll [2010.01.22 22:23:57 | 000,102,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\VB6KO.DLL [2010.01.22 22:23:57 | 000,059,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wbemdisp.tlb [2010.01.22 22:23:57 | 000,016,384 | ---- | C] (CST) -- C:\Windows\System32\lgfwunis.exe [2010.01.22 22:22:06 | 000,029,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msxml3a.dll [2010.01.22 22:20:04 | 000,154,368 | ---- | C] (CyberLink Corporation.) -- C:\Windows\System32\drivers\CLBUDFR.sys [2010.01.22 22:20:04 | 000,010,368 | ---- | C] (Cyberlink Co.,Ltd.) -- C:\Windows\System32\drivers\CLBStor.sys [2010.01.22 22:18:56 | 000,000,000 | ---D | C] -- C:\Users\**\AppData\Roaming\CyberLink [2010.01.22 22:18:55 | 000,000,000 | ---D | C] -- C:\Users\**\AppData\Local\Cyberlink [2010.01.22 22:18:48 | 000,000,000 | ---D | C] -- C:\Programme\Cyberlink [2010.01.22 22:16:04 | 000,000,000 | ---D | C] -- C:\ProgramData\CyberLink [2010.01.22 22:15:17 | 000,000,000 | ---D | C] -- C:\ProgramData\Temp [2010.01.22 22:11:27 | 000,000,000 | ---D | C] -- D:\Nero Collections [2010.01.22 22:10:47 | 000,000,000 | ---D | C] -- C:\Users\**\AppData\Roaming\dvdcss [2010.01.22 22:06:22 | 000,000,000 | ---D | C] -- C:\Users\**\AppData\Roaming\Logitech [2010.01.22 22:06:17 | 000,000,000 | ---D | C] -- C:\Users\**\AppData\Roaming\Leadertech [2010.01.22 22:04:03 | 000,301,656 | ---- | C] (Broadcom Corporation.) -- C:\Windows\System32\BtCoreIf.dll [2010.01.22 22:03:55 | 000,170,512 | ---- | C] (Logitech, Inc.) -- C:\Windows\System32\kemutb.dll [2010.01.22 22:03:55 | 000,145,936 | ---- | C] (Logitech, Inc.) -- C:\Windows\System32\KemUtil.dll [2010.01.22 22:03:55 | 000,117,264 | ---- | C] (Logitech, Inc.) -- C:\Windows\System32\KemWnd.dll [2010.01.22 22:03:55 | 000,084,496 | ---- | C] (Logitech, Inc.) -- C:\Windows\System32\KemXML.dll [2010.01.22 22:03:21 | 000,000,000 | ---D | C] -- C:\ProgramData\Logitech [2010.01.22 22:03:12 | 000,000,000 | ---D | C] -- C:\Programme\Common Files\Logishrd [2010.01.22 22:02:54 | 000,000,000 | ---D | C] -- C:\ProgramData\LogiShrd [2010.01.14 19:06:18 | 000,108,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\t2embed.dll [2010.01.14 19:06:18 | 000,070,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\fontsub.dll [2010.01.12 13:03:34 | 000,182,888 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvcod189.dll [2010.01.05 19:57:31 | 000,000,000 | ---D | C] -- C:\ProgramData\Droppix [2010.01.05 19:50:32 | 000,000,000 | ---D | C] -- C:\ProgramData\LightScribe [2010.01.05 19:49:49 | 000,000,000 | ---D | C] -- C:\Programme\Common Files\LightScribe [2010.01.05 18:19:17 | 000,030,536 | ---- | C] (TuneUp Software) -- C:\Windows\System32\TURegOpt.exe [2010.01.05 17:11:30 | 000,040,496 | ---- | C] (Paragon Software Group) -- C:\Windows\System32\drivers\hotcore3.sys [2010.01.05 16:16:16 | 001,628,920 | ---- | C] (Sonic Solutions) -- C:\Windows\System32\pxsfs.dll [2010.01.05 16:16:16 | 000,551,672 | ---- | C] (Sonic Solutions) -- C:\Windows\System32\px.dll [2010.01.05 16:16:16 | 000,518,904 | ---- | C] (Sonic Solutions) -- C:\Windows\System32\pxdrv.dll [2010.01.05 16:16:16 | 000,379,640 | ---- | C] (Sonic Solutions) -- C:\Windows\System32\pxwave.dll [2010.01.05 16:16:16 | 000,187,128 | ---- | C] (Sonic Solutions) -- C:\Windows\System32\pxmas.dll [2010.01.05 16:16:16 | 000,129,784 | ---- | C] (Sonic Solutions) -- C:\Windows\System32\pxafs.dll [2010.01.05 16:16:16 | 000,088,824 | ---- | C] (Sonic Solutions) -- C:\Windows\System32\vxblock.dll [2010.01.05 16:16:16 | 000,072,440 | ---- | C] (Sonic Solutions) -- C:\Windows\System32\pxhpinst.exe [2010.01.05 16:16:16 | 000,066,296 | ---- | C] (Sonic Solutions) -- C:\Windows\System32\pxcpya64.exe [2010.01.05 16:16:16 | 000,064,760 | ---- | C] (Sonic Solutions) -- C:\Windows\System32\pxinsa64.exe [2010.01.05 16:16:14 | 000,000,000 | ---D | C] -- C:\Users\**\AppData\Roaming\WinAmp [2010.01.03 14:54:05 | 000,000,000 | ---D | C] -- C:\Users\**\AppData\Roaming\FRITZ! [2010.01.03 14:54:05 | 000,000,000 | ---D | C] -- C:\Users\**\AppData\Local\FRITZ! [2010.01.03 13:32:37 | 000,000,000 | ---D | C] -- C:\Programme\Common Files\DESIGNER [2010.01.03 13:32:12 | 000,000,000 | ---D | C] -- C:\Windows\PCHEALTH [2010.01.03 12:57:02 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\DAEMON Tools Images [2010.01.02 20:05:46 | 000,000,000 | ---D | C] -- C:\Users\**\AppData\Local\Microsoft Games [2010.01.02 19:33:06 | 000,603,904 | ---- | C] (TuneUp Software) -- C:\Windows\System32\TUProgSt.exe [2010.01.02 19:33:05 | 000,030,024 | ---- | C] (TuneUp Software) -- C:\Windows\System32\uxtuneup.dll [2010.01.02 19:33:05 | 000,021,320 | ---- | C] (TuneUp Software) -- C:\Windows\System32\authuitu.dll [2010.01.02 19:33:04 | 000,362,240 | ---- | C] (TuneUp Software) -- C:\Windows\System32\TuneUpDefragService.exe [2010.01.02 19:32:49 | 000,000,000 | ---D | C] -- C:\ProgramData\TuneUp Software [2010.01.02 19:30:44 | 000,000,000 | -HSD | C] -- C:\ProgramData\{55A29068-F2CE-456C-9148-C869879E2357} [2010.01.02 18:13:26 | 000,032,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msonpmon.dll [2010.01.02 18:12:20 | 000,000,000 | ---D | C] -- C:\Programme\Microsoft Works [2010.01.02 18:09:31 | 000,000,000 | ---D | C] -- C:\Users\**\AppData\Local\Microsoft Help [2010.01.02 18:09:27 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft Help [2010.01.02 18:02:39 | 000,000,000 | ---D | C] -- C:\Users\**\AppData\Roaming\DAEMON Tools Lite [2010.01.02 18:02:36 | 000,000,000 | ---D | C] -- C:\ProgramData\DAEMON Tools Lite [2010.01.02 17:57:57 | 000,691,696 | ---- | C] (Duplex Secure Ltd.) -- C:\Windows\System32\drivers\sptd.sys [2010.01.01 18:18:16 | 000,000,000 | ---D | C] -- C:\Programme\Microsoft Games [2009.12.29 21:42:16 | 000,000,000 | ---D | C] -- C:\Programme\Common Files\AVM [2009.12.29 21:41:01 | 000,000,000 | ---D | C] -- C:\Programme\Common Files\Wise Installation Wizard [2009.12.29 20:48:06 | 000,000,000 | -H-D | C] -- C:\Temp [2009.12.29 20:13:48 | 000,000,000 | ---D | C] -- C:\ProgramData\PC Suite [2009.12.29 20:13:47 | 000,000,000 | ---D | C] -- C:\Users\**\AppData\Roaming\PC Suite [2009.12.29 20:12:38 | 000,000,000 | ---D | C] -- C:\Users\**\AppData\Roaming\Samsung [2009.12.29 20:12:30 | 000,000,000 | ---D | C] -- C:\Programme\Common Files\PCSuite [2009.12.29 20:12:25 | 000,000,000 | ---D | C] -- C:\Programme\DIFX [2009.12.29 20:12:24 | 000,018,816 | ---- | C] (Nokia) -- C:\Windows\System32\drivers\pccsmcfd.sys [2009.12.29 20:12:22 | 000,000,000 | ---D | C] -- C:\Windows\System32\DRVSTORE [2009.12.29 20:12:19 | 000,000,000 | ---D | C] -- C:\Programme\PC Connectivity Solution [2009.12.29 20:12:12 | 000,090,624 | ---- | C] (Nokia) -- C:\Windows\System32\nmwcdcls.dll [2009.12.29 20:10:22 | 000,000,000 | ---D | C] -- C:\Users\**\Samsung [2009.12.29 20:08:45 | 000,000,000 | ---D | C] -- C:\ProgramData\Installations [2009.12.22 19:45:35 | 000,000,000 | ---D | C] -- C:\Users\**\AppData\Local\Apps [2009.12.22 18:28:52 | 000,000,000 | ---D | C] -- D:\MP3 Collector [2009.12.21 14:03:03 | 000,000,000 | ---D | C] -- C:\Users\**\AppData\Local\Nero [2009.12.21 14:02:53 | 000,000,000 | ---D | C] -- C:\Users\**\AppData\Roaming\Nero [2009.12.21 13:51:44 | 000,000,000 | ---D | C] -- C:\Users\**\AppData\Roaming\WinRAR [2009.12.21 13:47:54 | 000,000,000 | -HSD | C] -- C:\Users\**\UserData [2009.12.21 13:42:14 | 003,426,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_32.dll [2009.12.21 13:42:14 | 002,414,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_31.dll [2009.12.21 13:34:05 | 000,000,000 | ---D | C] -- C:\Programme\Hewlett-Packard [2009.12.21 13:33:17 | 000,000,000 | ---D | C] -- C:\lj631ge [2009.12.19 20:57:39 | 000,000,000 | ---D | C] -- C:\Users\**\AppData\Local\Diagnostics [2009.12.19 20:55:36 | 000,000,000 | ---D | C] -- C:\Programme\MSXML 4.0 [2009.12.19 12:36:14 | 000,000,000 | ---D | C] -- C:\Users\**\AppData\Local\Adobe [2009.12.16 22:28:21 | 000,000,000 | ---D | C] -- C:\Windows\System32\RTCOM [2009.12.16 22:28:11 | 001,783,056 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\System32\WavesLib.dll [2009.12.16 22:28:11 | 000,345,328 | ---- | C] (SRS Labs, Inc.) -- C:\Windows\System32\SRSTSXT.dll [2009.12.16 22:28:11 | 000,185,584 | ---- | C] (SRS Labs, Inc.) -- C:\Windows\System32\SRSTSHD.dll [2009.12.16 22:28:11 | 000,173,296 | ---- | C] (SRS Labs, Inc.) -- C:\Windows\System32\SRSHP360.dll [2009.12.16 22:28:11 | 000,140,528 | ---- | C] (SRS Labs, Inc.) -- C:\Windows\System32\SRSWOW.dll [2009.12.16 22:28:10 | 002,975,904 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\System32\drivers\RTKVHDA.sys [2009.12.16 22:28:10 | 001,539,104 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\System32\RtkPgExt.dll [2009.12.16 22:28:10 | 000,551,456 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\System32\RTSndMgr.cpl [2009.12.16 22:28:10 | 000,367,136 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\System32\RtkApoApi.dll [2009.12.16 22:28:10 | 000,056,864 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\System32\RtkCoInst.dll [2009.12.16 22:28:09 | 002,796,576 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\System32\RtkAPO.dll [2009.12.16 22:28:09 | 000,348,160 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\System32\RTEEP32A.dll [2009.12.16 22:28:09 | 000,290,304 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\System32\RP3DHT32.dll [2009.12.16 22:28:09 | 000,290,304 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\System32\RP3DAA32.dll [2009.12.16 22:28:09 | 000,165,376 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\System32\RTEED32A.dll [2009.12.16 22:28:09 | 000,073,216 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\System32\RTEEL32A.dll [2009.12.16 22:28:09 | 000,068,696 | ---- | C] (Creative Technology Ltd.) -- C:\Windows\System32\MBWrp32.dll [2009.12.16 22:28:09 | 000,059,392 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\System32\RTEEG32A.dll [2009.12.16 22:28:08 | 001,938,704 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\System32\MaxxAudioEQ.dll [2009.12.16 22:28:08 | 000,531,032 | ---- | C] (Creative Technology Ltd.) -- C:\Windows\System32\MBAPO32.dll [2009.12.16 22:28:08 | 000,311,568 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\System32\MaxxAudioAPO20.dll [2009.12.16 22:28:08 | 000,132,368 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\System32\MaxxAudioAPO.dll [2009.12.16 22:28:08 | 000,053,848 | ---- | C] (Creative Technology Ltd.) -- C:\Windows\System32\MBppld32.dll [2009.12.16 22:28:08 | 000,050,776 | ---- | C] (Creative Technology Ltd.) -- C:\Windows\System32\MBPPCn32.dll [2009.12.16 22:28:07 | 000,297,376 | ---- | C] (Fortemedia Corporation) -- C:\Windows\System32\FMAPO.dll [2009.12.16 22:28:07 | 000,146,336 | ---- | C] (Andrea Electronics Corporation) -- C:\Windows\System32\AERTACap.dll [2009.12.16 22:28:07 | 000,096,160 | ---- | C] (Andrea Electronics Corporation) -- C:\Windows\System32\AERTARen.dll [2009.12.16 22:28:07 | 000,000,000 | ---D | C] -- C:\Programme\Realtek [2009.12.16 22:28:04 | 000,838,176 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\RtlExUpd.dll [2009.12.16 22:10:05 | 000,000,000 | -H-D | C] -- C:\Programme\Temp [2009.12.16 22:05:49 | 000,000,000 | ---D | C] -- C:\ProgramData\NVIDIA [2009.12.16 22:05:20 | 000,600,680 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvuninst.exe [2009.12.16 21:43:07 | 000,000,000 | ---D | C] -- C:\Users\**\AppData\Roaming\TuneUp Software [2009.12.16 21:42:40 | 000,000,000 | ---D | C] -- C:\Users\**\AppData\Roaming\vlc [2009.12.16 21:32:45 | 000,000,000 | ---D | C] -- C:\ProgramData\Nero [2009.12.16 21:32:44 | 000,000,000 | ---D | C] -- C:\Programme\Common Files\Nero [2009.12.16 21:31:15 | 002,388,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_30.dll [2009.12.16 21:11:45 | 000,000,000 | ---D | C] -- C:\Users\**\AppData\Roaming\Macromedia [2009.12.16 21:11:39 | 000,000,000 | ---D | C] -- C:\Windows\System32\Macromed [2009.12.16 21:02:16 | 000,000,000 | ---D | C] -- C:\ProgramData\Adobe [2009.12.16 20:59:27 | 000,030,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mdimon.dll [2009.12.16 20:58:40 | 000,000,000 | ---D | C] -- C:\Programme\Microsoft Visual Studio [2009.12.16 20:42:16 | 000,000,000 | ---D | C] -- C:\ProgramData\SiteAdvisor [2009.12.16 20:40:42 | 000,000,000 | ---D | C] -- C:\Programme\Common Files\McAfee [2009.12.16 20:40:41 | 000,000,000 | ---D | C] -- C:\Programme\McAfee.com [2009.12.16 20:40:39 | 000,000,000 | ---D | C] -- C:\Programme\McAfee [2009.12.16 20:30:55 | 000,000,000 | -HSD | C] -- C:\Windows\Installer [2009.12.16 20:20:12 | 000,000,000 | -HSD | C] -- C:\Users\**\PrivacIE [2009.12.16 20:20:11 | 000,000,000 | -HSD | C] -- C:\Users\**\IECompatCache Geändert von n8mare (14.08.2010 um 12:49 Uhr) |
|
14.08.2010, 12:40
| #3 |
| | Virus Win32/Alureon.h verhindert Windowsupdate [2009.12.16 20:07:56 | 000,319,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\DIFxAPI.dll
__________________[2009.12.16 20:02:02 | 000,000,000 | ---D | C] -- C:\ProgramData\McAfee [2009.12.16 20:01:48 | 000,000,000 | ---D | C] -- C:\Users\**\AppData\Roaming\Thunderbird [2009.12.16 20:01:48 | 000,000,000 | ---D | C] -- C:\Users\**\AppData\Local\Thunderbird [2009.12.16 19:54:14 | 000,143,360 | ---- | C] (JMicron Technology Corp.) -- C:\Windows\System32\JMRaidAPI.dll [2009.12.16 19:54:13 | 001,953,792 | ---- | C] (Gigabyte Technology Corp.) -- C:\Windows\System32\JMRaidSetup.exe [2009.12.16 19:54:08 | 000,044,928 | ---- | C] (JMicron Technology Corp.) -- C:\Windows\System32\drivers\jraid.sys [2009.12.16 19:54:08 | 000,006,912 | ---- | C] (JMicron ) -- C:\Windows\System32\drivers\JGOGO.sys [2009.12.16 19:54:02 | 000,319,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\Difx54f2.rra [2009.12.16 19:54:02 | 000,000,000 | ---D | C] -- C:\Windows\JM [2009.12.16 19:53:49 | 000,000,000 | -H-D | C] -- C:\Programme\InstallShield Installation Information [2009.12.16 19:53:31 | 000,000,000 | ---D | C] -- C:\Programme\Common Files\InstallShield [2009.12.16 19:51:20 | 000,000,000 | ---D | C] -- C:\Programme\Intel [2009.12.16 19:51:18 | 000,000,000 | ---D | C] -- C:\Intel [2009.12.16 19:50:43 | 012,625,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wmploc.DLL [2009.12.16 19:50:43 | 001,320,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\CertEnroll.dll [2009.12.16 19:50:43 | 000,507,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\winload.exe [2009.12.16 19:50:43 | 000,442,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\winresume.exe [2009.12.16 19:50:08 | 000,015,600 | ---- | C] (Windows (R) 2000 DDK provider) -- C:\Windows\gdrv.sys [2009.12.13 23:20:33 | 000,000,000 | -HSD | C] -- C:\Users\**\IETldCache [2009.12.13 23:16:08 | 000,195,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MpSigStub.exe [2009.12.13 23:15:56 | 000,000,000 | ---D | C] -- C:\Users\**\AppData\Local\Apple Computer [2009.12.13 23:15:56 | 000,000,000 | ---D | C] -- C:\Users\**\AppData\Roaming\Adobe [2009.12.13 23:15:55 | 000,000,000 | ---D | C] -- C:\Users\**\AppData\Local\Mozilla [2009.12.13 23:15:53 | 000,000,000 | ---D | C] -- C:\Users\**\AppData\Roaming\Mozilla [2009.12.13 23:15:16 | 000,000,000 | ---D | C] -- C:\Users\**\AppData\Local\MigWiz [2009.12.13 23:03:11 | 000,000,000 | ---D | C] -- C:\Users\**\AppData\Local\ElevatedDiagnostics [2009.12.13 22:58:53 | 000,000,000 | R--D | C] -- C:\Users\**\Searches [2009.12.13 22:58:44 | 000,000,000 | ---D | C] -- C:\Users\**\AppData\Roaming\Identities [2009.12.13 22:58:43 | 000,000,000 | R--D | C] -- C:\Users\**\Contacts [2009.12.13 22:58:42 | 000,000,000 | -HSD | C] -- D:\$RECYCLE.BIN [2009.12.13 22:58:36 | 000,000,000 | ---D | C] -- C:\Users\**\AppData\Local\VirtualStore [2009.12.13 22:58:35 | 000,000,000 | --SD | C] -- C:\Users\**\AppData\Roaming\Microsoft [2009.12.13 22:58:35 | 000,000,000 | R--D | C] -- C:\Users\**\Videos [2009.12.13 22:58:35 | 000,000,000 | R--D | C] -- C:\Users\**\Saved Games [2009.12.13 22:58:35 | 000,000,000 | R--D | C] -- C:\Users\**\Pictures [2009.12.13 22:58:35 | 000,000,000 | R--D | C] -- C:\Users\**\Music [2009.12.13 22:58:35 | 000,000,000 | R--D | C] -- C:\Users\**\Links [2009.12.13 22:58:35 | 000,000,000 | R--D | C] -- C:\Users\**\Favorites [2009.12.13 22:58:35 | 000,000,000 | R--D | C] -- C:\Users\**\Downloads [2009.12.13 22:58:35 | 000,000,000 | R--D | C] -- C:\Users\**\Documents [2009.12.13 22:58:35 | 000,000,000 | R--D | C] -- C:\Users\**\Desktop [2009.12.13 22:58:35 | 000,000,000 | -HSD | C] -- C:\Users\**\Vorlagen [2009.12.13 22:58:35 | 000,000,000 | -HSD | C] -- C:\Users\**\AppData\Local\Verlauf [2009.12.13 22:58:35 | 000,000,000 | -HSD | C] -- C:\Users\**\AppData\Local\Temporary Internet Files [2009.12.13 22:58:35 | 000,000,000 | -HSD | C] -- C:\Users\**\Startmenü [2009.12.13 22:58:35 | 000,000,000 | -HSD | C] -- C:\Users\**\SendTo [2009.12.13 22:58:35 | 000,000,000 | -HSD | C] -- C:\Users\**\Recent [2009.12.13 22:58:35 | 000,000,000 | -HSD | C] -- C:\Users\**\Netzwerkumgebung [2009.12.13 22:58:35 | 000,000,000 | -HSD | C] -- C:\Users\**\Lokale Einstellungen [2009.12.13 22:58:35 | 000,000,000 | -HSD | C] -- C:\Users\**\Eigene Dateien [2009.12.13 22:58:35 | 000,000,000 | -HSD | C] -- C:\Users\**\Cookies [2009.12.13 22:58:35 | 000,000,000 | -HSD | C] -- C:\Users\**\AppData\Local\Anwendungsdaten [2009.12.13 22:58:35 | 000,000,000 | -HSD | C] -- C:\Users\**\Anwendungsdaten [2009.12.13 22:58:35 | 000,000,000 | -H-D | C] -- C:\Users\**\Druckumgebung [2009.12.13 22:58:35 | 000,000,000 | -H-D | C] -- C:\Users\**\AppData [2009.12.13 22:58:35 | 000,000,000 | ---D | C] -- C:\Users\**\AppData\Local\Temp [2009.12.13 22:58:35 | 000,000,000 | ---D | C] -- C:\Users\**\AppData\Local\Microsoft [2009.12.13 22:58:35 | 000,000,000 | ---D | C] -- C:\Users\**\AppData\Roaming\Media Center Programs [2009.12.13 22:58:21 | 000,000,000 | -HSD | C] -- C:\ProgramData\Vorlagen [2009.12.13 22:58:21 | 000,000,000 | -HSD | C] -- C:\ProgramData\Startmenü [2009.12.13 22:58:21 | 000,000,000 | -HSD | C] -- C:\Recovery [2009.12.13 22:58:21 | 000,000,000 | -HSD | C] -- C:\Programme [2009.12.13 22:58:21 | 000,000,000 | -HSD | C] -- C:\Programme\Gemeinsame Dateien [2009.12.13 22:58:21 | 000,000,000 | -HSD | C] -- C:\ProgramData\Favoriten [2009.12.13 22:58:21 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Eigene Videos [2009.12.13 22:58:21 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Eigene Musik [2009.12.13 22:58:21 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Eigene Bilder [2009.12.13 22:58:21 | 000,000,000 | -HSD | C] -- C:\Dokumente und Einstellungen [2009.12.13 22:58:21 | 000,000,000 | -HSD | C] -- C:\ProgramData\Dokumente [2009.12.13 22:58:21 | 000,000,000 | -HSD | C] -- C:\ProgramData\Anwendungsdaten [2009.12.13 22:50:43 | 000,000,000 | ---D | C] -- C:\Windows\SoftwareDistribution [2009.12.13 22:48:12 | 000,000,000 | ---D | C] -- C:\Windows\Prefetch [2009.12.13 22:47:56 | 000,000,000 | -HSD | C] -- C:\System Volume Information [2009.12.13 22:47:11 | 000,000,000 | ---D | C] -- C:\Windows\Panther [2009.12.13 22:47:04 | 000,000,000 | -HSD | C] -- C:\Boot [2009.11.14 02:47:32 | 000,090,112 | ---- | C] (DivX, Inc.) -- C:\Windows\System32\dpl100.dll [2009.11.14 02:47:28 | 000,856,064 | ---- | C] (DivX, Inc.) -- C:\Windows\System32\divx_xx0c.dll [2009.11.14 02:47:28 | 000,856,064 | ---- | C] (DivX, Inc.) -- C:\Windows\System32\divx_xx07.dll [2009.11.14 02:47:28 | 000,847,872 | ---- | C] (DivX, Inc.) -- C:\Windows\System32\divx_xx0a.dll [2009.11.14 02:47:28 | 000,843,776 | ---- | C] (DivX, Inc.) -- C:\Windows\System32\divx_xx16.dll [2009.11.14 02:47:28 | 000,839,680 | ---- | C] (DivX, Inc.) -- C:\Windows\System32\divx_xx11.dll [2009.11.14 02:47:28 | 000,696,320 | ---- | C] (DivX, Inc.) -- C:\Windows\System32\DivX.dll [2009.09.28 00:12:22 | 001,296,488 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvapi.dll [2009.09.28 00:12:22 | 000,795,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dpinst.exe [2009.09.28 00:12:22 | 000,600,680 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvudisp.exe [2009.09.28 00:12:22 | 000,170,600 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvcod167.dll [2009.09.27 18:47:30 | 002,173,544 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvcplui.exe [2009.09.27 18:47:30 | 000,420,456 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvcpl.cpl [2009.09.27 18:47:00 | 004,033,128 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvvitvs.dll [2009.09.27 18:47:00 | 003,553,896 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvgames.dll [2009.09.27 18:47:00 | 003,172,968 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvwss.dll [2009.09.27 18:47:00 | 001,309,288 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvsvs.dll [2009.09.27 18:47:00 | 001,292,904 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvmobls.dll [2009.09.27 18:47:00 | 000,195,176 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvmccss.dll [2009.09.27 18:47:00 | 000,150,120 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvshext.dll [2009.09.27 18:46:00 | 004,942,440 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvdisps.dll [2009.08.26 17:47:04 | 000,028,160 | ---- | C] (Seiko Instruments Inc.) -- C:\Windows\System32\SlpLm.DLL [2007.03.21 14:41:30 | 000,073,728 | ---- | C] ( ) -- C:\Windows\System32\dlbkcu.dll [2007.01.30 15:47:52 | 000,643,072 | ---- | C] ( ) -- C:\Windows\System32\dlbkpmui.dll [2007.01.30 15:46:00 | 001,224,704 | ---- | C] ( ) -- C:\Windows\System32\dlbkserv.dll [2007.01.30 15:38:18 | 000,421,888 | ---- | C] ( ) -- C:\Windows\System32\dlbkcomm.dll [2007.01.30 15:36:30 | 000,585,728 | ---- | C] ( ) -- C:\Windows\System32\dlbklmpm.dll [2007.01.30 15:35:00 | 000,397,312 | ---- | C] ( ) -- C:\Windows\System32\dlbkiesc.dll [2007.01.30 15:32:06 | 000,094,208 | ---- | C] ( ) -- C:\Windows\System32\dlbkpplc.dll [2007.01.30 15:31:08 | 000,684,032 | ---- | C] ( ) -- C:\Windows\System32\dlbkcomc.dll [2007.01.30 15:30:30 | 000,163,840 | ---- | C] ( ) -- C:\Windows\System32\dlbkprox.dll [2007.01.30 15:22:32 | 000,413,696 | ---- | C] ( ) -- C:\Windows\System32\dlbkinpa.dll [2007.01.30 15:21:46 | 000,995,328 | ---- | C] ( ) -- C:\Windows\System32\dlbkusb1.dll [2007.01.30 15:17:02 | 000,696,320 | ---- | C] ( ) -- C:\Windows\System32\dlbkhbn3.dll ========== Files - Modified Within 360 Days ========== [2010.08.14 13:18:55 | 007,340,032 | ---- | M] () -- C:\Users\**\NTUSER.DAT [2010.08.14 12:56:50 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat [2010.08.14 12:55:26 | 002,033,402 | -H-- | M] () -- C:\Users\**\AppData\Local\IconCache.db [2010.08.14 12:38:04 | 000,014,640 | ---- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 [2010.08.14 12:38:04 | 000,014,640 | ---- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 [2010.08.14 12:30:27 | 000,000,006 | -H-- | M] () -- C:\Windows\tasks\SA.DAT [2010.08.14 01:23:05 | 000,032,256 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\jvhhzaav.sys [2010.08.13 20:54:37 | 001,498,506 | ---- | M] () -- C:\Windows\System32\PerfStringBackup.INI [2010.08.13 20:54:37 | 000,653,928 | ---- | M] () -- C:\Windows\System32\perfh007.dat [2010.08.13 20:54:37 | 000,615,810 | ---- | M] () -- C:\Windows\System32\perfh009.dat [2010.08.13 20:54:37 | 000,129,800 | ---- | M] () -- C:\Windows\System32\perfc007.dat [2010.08.13 20:54:37 | 000,106,190 | ---- | M] () -- C:\Windows\System32\perfc009.dat [2010.08.13 17:44:29 | 000,026,624 | ---- | M] () -- D:\Virus Win32.doc [2010.08.13 16:54:57 | 000,016,968 | ---- | M] () -- C:\Windows\System32\drivers\hitmanpro35.sys [2010.08.11 05:58:16 | 000,001,425 | ---- | M] () -- C:\Users\**\Desktop\Malwarebytes' Anti-Malware - Verknüpfung.lnk [2010.08.09 22:10:44 | 000,000,658 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk [2010.08.09 22:02:28 | 000,032,256 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\metklpwg.sys [2010.08.09 21:50:34 | 000,001,001 | ---- | M] () -- C:\Windows\System32\drivers\etc\hosts [2010.08.08 14:33:51 | 000,032,256 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\yxqhubnp.sys [2010.08.08 14:18:12 | 000,001,960 | ---- | M] () -- C:\Users\Public\Desktop\Hitman Pro 3.5.lnk [2010.08.08 11:37:44 | 000,000,911 | ---- | M] () -- C:\Users\**\Desktop\Spybot - Search & Destroy.lnk [2010.08.07 19:37:08 | 188,111,374 | ---- | M] () -- D:\07082010.reg [2010.08.07 19:24:43 | 000,002,039 | ---- | M] () -- C:\Users\**\Desktop\HijackThis.lnk [2010.08.07 15:59:01 | 000,032,256 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\fowtkgjs.sys [2010.08.07 11:20:06 | 000,032,256 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\pcrnmilm.sys [2010.08.05 23:52:47 | 000,032,256 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\wrmkogkw.sys [2010.08.05 19:54:19 | 000,032,256 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\xiwsrxof.sys [2010.08.05 18:51:33 | 000,001,029 | ---- | M] () -- C:\Users\Public\Desktop\Microsoft Security Essentials.lnk [2010.08.05 18:16:29 | 000,002,490 | ---- | M] () -- D:\cc_20100805_181611.reg [2010.07.26 20:14:10 | 000,001,263 | ---- | M] () -- C:\Users\**\Desktop\### DownThemAll ### - Verknüpfung.lnk [2010.07.26 05:35:10 | 000,032,256 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\nxczndhi.sys [2010.07.25 17:06:31 | 000,000,648 | ---- | M] () -- C:\Users\Public\Desktop\CloneDVD2.lnk [2010.07.17 05:00:12 | 000,153,376 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\System32\javaws.exe [2010.07.17 05:00:12 | 000,145,184 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\System32\javaw.exe [2010.07.17 05:00:10 | 000,145,184 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\System32\java.exe [2010.07.17 05:00:04 | 000,423,656 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\System32\deployJava1.dll [2010.07.09 17:40:50 | 000,001,181 | ---- | M] () -- C:\Users\**\Desktop\audiograbber.exe - Verknüpfung.lnk [2010.07.05 09:10:25 | 000,000,161 | ---- | M] () -- C:\Windows\brpcfx.ini [2010.07.01 17:29:53 | 000,524,288 | -HS- | M] () -- C:\Users\**\NTUSER.DAT{13c9153f-8505-11df-b214-806e6f6e6963}.TMContainer00000000000000000002.regtrans-ms [2010.07.01 17:29:53 | 000,524,288 | -HS- | M] () -- C:\Users\**\NTUSER.DAT{13c9153f-8505-11df-b214-806e6f6e6963}.TMContainer00000000000000000001.regtrans-ms [2010.07.01 17:29:53 | 000,065,536 | -HS- | M] () -- C:\Users\**\NTUSER.DAT{13c9153f-8505-11df-b214-806e6f6e6963}.TM.blf [2010.07.01 13:39:33 | 003,670,016 | -HS- | M] () -- C:\Users\**\NTUSER.DAT_tureg_old [2010.06.30 13:26:10 | 000,000,670 | ---- | M] () -- C:\Users\**\Desktop\JDownloader.lnk [2010.06.30 11:09:41 | 000,001,030 | ---- | M] () -- C:\Users\Public\Desktop\TuneUp 1-Klick-Wartung.lnk [2010.06.30 11:09:41 | 000,000,984 | ---- | M] () -- C:\Users\Public\Desktop\TuneUp Utilities.lnk [2010.06.30 09:09:45 | 000,001,733 | ---- | M] () -- C:\Users\Public\Desktop\Adobe Reader 9.lnk [2010.06.26 15:33:39 | 000,418,864 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT [2010.06.04 16:58:30 | 000,000,669 | ---- | M] () -- C:\Users\**\Desktop\ANSTOSS 2007.lnk [2010.06.03 17:03:42 | 000,000,771 | ---- | M] () -- C:\Users\**\Desktop\Summer Athletics.lnk [2010.05.28 22:53:14 | 000,025,643 | ---- | M] () -- C:\Windows\System32\TUProgSt_20100528-205314.dmp [2010.05.27 09:24:13 | 000,034,304 | ---- | M] (Adobe Systems) -- C:\Windows\System32\atmlib.dll [2010.05.27 05:49:37 | 000,293,888 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\System32\atmfd.dll [2010.05.25 19:37:57 | 000,350,863 | ---- | M] () -- D:\bestellschein_freiumschlag.pdf [2010.05.21 07:14:50 | 000,048,128 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\jsproxy.dll [2010.05.15 12:33:39 | 000,000,858 | ---- | M] () -- C:\Users\**\Desktop\LaLa - Verknüpfung.lnk [2010.05.14 12:10:31 | 000,001,466 | ---- | M] () -- C:\Users\**\.recently-used.xbel [2010.05.10 13:38:06 | 000,030,536 | ---- | M] (TuneUp Software) -- C:\Windows\System32\TURegOpt.exe [2010.05.10 13:31:28 | 000,021,320 | ---- | M] (TuneUp Software) -- C:\Windows\System32\authuitu.dll [2010.05.10 13:31:16 | 000,030,024 | ---- | M] (TuneUp Software) -- C:\Windows\System32\uxtuneup.dll [2010.05.09 18:55:06 | 000,000,315 | ---- | M] () -- C:\Windows\Brpfx04a.ini [2010.05.09 18:55:04 | 000,000,425 | ---- | M] () -- C:\Windows\BRWMARK.INI [2010.05.09 18:55:04 | 000,000,027 | ---- | M] () -- C:\Windows\BRPP2KA.INI [2010.05.09 18:54:46 | 000,000,050 | ---- | M] () -- C:\Windows\System32\bridf08b.dat [2010.05.09 16:04:06 | 000,000,184 | ---- | M] () -- C:\Windows\System32\brsvc01a.bsi [2010.05.09 16:04:06 | 000,000,030 | ---- | M] () -- C:\Windows\System32\brss01a.ini [2010.05.09 15:41:35 | 000,000,000 | ---- | M] () -- C:\Windows\brmx2001.ini [2010.05.09 15:40:07 | 000,000,074 | ---- | M] () -- C:\Windows\Brownie.ini [2010.05.09 13:53:35 | 000,016,546 | ---- | M] () -- D:\cc_20100509_135325.reg [2010.05.09 13:52:52 | 000,001,019 | ---- | M] () -- C:\Users\**\Desktop\CCleaner.exe - Verknüpfung.lnk [2010.05.09 11:14:55 | 000,641,536 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\CPFilters.dll [2010.05.09 11:14:50 | 000,417,792 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msdri.dll [2010.05.09 11:13:30 | 000,204,288 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\MSNP.ax [2010.05.09 11:13:30 | 000,199,680 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mpg2splt.ax [2010.05.09 09:26:16 | 000,182,056 | ---- | M] () -- D:\cc_20100509_092603.reg [2010.05.06 21:08:29 | 000,114,376 | ---- | M] () -- C:\Users\**\AppData\Local\GDIPFONTCACHEV1.DAT [2010.05.06 21:05:25 | 000,000,066 | ---- | M] () -- C:\Windows\Brfaxrx.ini [2010.05.06 14:41:55 | 000,606,208 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mstime.dll [2010.05.06 14:41:53 | 000,064,512 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msfeedsbs.dll [2010.05.06 14:41:49 | 000,381,440 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\iedkcs32.dll [2010.05.05 18:00:40 | 000,000,035 | -H-- | M] () -- D:\maxdesk.ini2 [2010.05.05 17:59:26 | 000,000,276 | -H-- | M] () -- D:\PP11Thumbs.ptn [2010.05.05 17:51:52 | 000,000,000 | RHS- | M] () -- C:\Windows\FFSSET.BIN [2010.05.01 16:49:25 | 002,326,528 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\win32k.sys [2010.04.29 12:19:24 | 000,038,224 | ---- | M] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbamswissarmy.sys [2010.04.29 12:19:14 | 000,020,952 | ---- | M] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbam.sys [2010.04.27 17:16:24 | 000,385,880 | ---- | M] (McAfee, Inc.) -- C:\Windows\System32\drivers\mfehidk.sys [2010.04.27 17:16:24 | 000,312,616 | ---- | M] (McAfee, Inc.) -- C:\Windows\System32\drivers\mfefirek.sys [2010.04.27 17:16:24 | 000,160,720 | ---- | M] (McAfee, Inc.) -- C:\Windows\System32\drivers\mfewfpk.sys [2010.04.27 17:16:24 | 000,152,320 | ---- | M] (McAfee, Inc.) -- C:\Windows\System32\drivers\mfeavfk.sys [2010.04.27 17:16:24 | 000,095,568 | ---- | M] (McAfee, Inc.) -- C:\Windows\System32\drivers\mfeapfk.sys [2010.04.27 17:16:24 | 000,083,496 | ---- | M] (McAfee, Inc.) -- C:\Windows\System32\drivers\mferkdet.sys [2010.04.27 17:16:24 | 000,064,304 | ---- | M] (McAfee, Inc.) -- C:\Windows\System32\drivers\mfenlfk.sys [2010.04.27 17:16:24 | 000,055,456 | ---- | M] (McAfee, Inc.) -- C:\Windows\System32\drivers\cfwids.sys [2010.04.27 17:16:24 | 000,051,688 | ---- | M] (McAfee, Inc.) -- C:\Windows\System32\drivers\mfebopk.sys [2010.04.27 17:16:24 | 000,009,344 | ---- | M] (McAfee, Inc.) -- C:\Windows\System32\drivers\mfeclnk.sys [2010.04.23 09:13:36 | 000,002,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\tzres.dll [2010.04.03 22:55:32 | 015,227,496 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvoglv32.dll [2010.04.03 22:55:32 | 011,647,592 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvcompiler.dll [2010.04.03 22:55:32 | 011,573,800 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\drivers\nvlddmkm.sys [2010.04.03 22:55:32 | 009,386,600 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvd3dum.dll [2010.04.03 22:55:32 | 004,503,144 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvwgf2um.dll [2010.04.03 22:55:32 | 004,029,544 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvcuda.dll [2010.04.03 22:55:32 | 002,907,752 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvencodemft.dll [2010.04.03 22:55:32 | 002,646,632 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvcuvenc.dll [2010.04.03 22:55:32 | 002,009,704 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvcuvid.dll [2010.04.03 22:55:32 | 001,296,488 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvapi.dll [2010.04.03 22:55:32 | 000,600,680 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvuninst.exe [2010.04.03 22:55:32 | 000,600,680 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvudisp.exe [2010.04.03 22:55:32 | 000,316,008 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvdecodemft.dll [2010.04.03 22:55:32 | 000,227,944 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvcod1914.dll [2010.04.03 22:55:32 | 000,227,944 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvcod.dll [2010.04.03 22:55:32 | 000,056,424 | ---- | M] (Khronos Group) -- C:\Windows\System32\OpenCL.dll [2010.04.03 22:55:32 | 000,010,920 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\drivers\nvBridge.kmd [2010.04.03 22:55:32 | 000,007,772 | ---- | M] () -- C:\Windows\System32\nvinfo.pb [2010.04.03 18:27:00 | 013,683,816 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvcpl.dll [2010.04.03 18:27:00 | 000,985,704 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvsvc.dll [2010.04.03 18:27:00 | 000,110,696 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvmctray.dll [2010.04.03 18:26:56 | 000,276,196 | ---- | M] () -- C:\Windows\System32\NvApps.xml [2010.04.03 18:26:56 | 000,066,714 | ---- | M] () -- C:\Windows\System32\NvwsApps.xml [2010.03.25 21:30:22 | 000,151,216 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\MpFilter.sys [2010.03.25 21:30:22 | 000,042,368 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\MpNWMon.sys [2010.03.18 13:16:28 | 000,771,424 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msvcr100_clr0400.dll [2010.03.11 10:50:16 | 000,000,889 | ---- | M] () -- C:\Users\**\Desktop\Bioshock-MCE.lnk [2010.03.10 10:34:47 | 000,108,144 | ---- | M] (Sony DADC Austria AG.) -- C:\Windows\System32\CmdLineExt.dll [2010.03.08 23:33:56 | 000,427,520 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\vbscript.dll [2010.03.06 17:04:53 | 000,000,751 | ---- | M] () -- C:\Users\Public\Desktop\Dark Messiah.lnk [2010.03.05 09:42:42 | 000,067,584 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\asycfilt.dll [2010.03.04 13:42:58 | 000,277,536 | ---- | M] (Realtek ) -- C:\Windows\System32\drivers\Rt86win7.sys [2010.02.27 14:07:48 | 003,954,568 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ntkrnlpa.exe [2010.02.27 14:07:48 | 003,899,280 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ntoskrnl.exe [2010.02.11 09:10:14 | 000,293,376 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\browserchoice.exe [2010.02.07 18:40:05 | 000,001,259 | ---- | M] () -- C:\Users\**\Desktop\MP3Collector.exe - Verknüpfung.lnk [2010.02.06 15:59:17 | 000,281,760 | ---- | M] () -- C:\Windows\System32\drivers\atksgt.sys [2010.02.06 15:59:17 | 000,025,888 | ---- | M] () -- C:\Windows\System32\drivers\lirsgt.sys [2010.02.03 12:24:36 | 000,094,208 | ---- | M] (Realtek Semiconductor Corporation) -- C:\Windows\System32\RTNUninst32.dll [2010.01.22 23:04:45 | 000,000,872 | ---- | M] () -- C:\Users\Public\Desktop\CyberLink PowerDVD.lnk [2010.01.22 22:25:18 | 000,000,262 | ---- | M] () -- C:\Windows\lgfwup.ini [2010.01.22 22:20:17 | 000,000,245 | ---- | M] () -- C:\Windows\System32\APREG.url [2010.01.22 22:14:11 | 000,000,029 | ---- | M] () -- C:\Users\**\AppData\Roaming\default.rss [2010.01.22 22:11:27 | 000,000,000 | ---- | M] () -- C:\Users\**\AppData\Roaming\downloads.m3u [2010.01.22 22:05:15 | 000,000,000 | ---- | M] () -- C:\Windows\System32\drivers\Msft_Kernel_LHidFilt_01005.Wdf [2010.01.22 22:05:14 | 000,000,000 | ---- | M] () -- C:\Windows\System32\drivers\Msft_Kernel_LMouFilt_01005.Wdf [2010.01.22 22:05:02 | 000,000,000 | ---- | M] () -- C:\Windows\System32\drivers\Msft_Kernel_LHidEqd_01005.Wdf [2010.01.22 22:04:51 | 000,000,000 | ---- | M] () -- C:\Windows\System32\drivers\Msft_Kernel_LEqdUsb_01005.Wdf [2010.01.19 01:29:31 | 000,365,568 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\secproc_isv.dll [2010.01.19 01:29:31 | 000,085,504 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\secproc_ssp_isv.dll [2010.01.19 01:29:31 | 000,085,504 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\secproc_ssp.dll [2010.01.19 01:29:30 | 000,369,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\secproc.dll [2010.01.19 01:28:33 | 000,324,608 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\RMActivate_isv.exe [2010.01.19 01:28:33 | 000,277,504 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\RMActivate_ssp_isv.exe [2010.01.19 01:28:30 | 000,320,512 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\RMActivate.exe [2010.01.19 01:28:30 | 000,280,064 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\RMActivate_ssp.exe [2010.01.12 13:03:34 | 000,182,888 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvcod189.dll [2010.01.05 19:49:53 | 000,002,007 | ---- | M] () -- C:\Users\Public\Desktop\LightScribe.lnk [2010.01.05 18:59:29 | 000,015,600 | ---- | M] (Windows (R) 2000 DDK provider) -- C:\Windows\gdrv.sys [2010.01.05 17:11:30 | 000,002,042 | ---- | M] () -- C:\Users\Public\Desktop\Paragon Festplatten Manager™ 2009 Suite.lnk [2010.01.05 16:16:26 | 000,000,654 | ---- | M] () -- C:\Users\Public\Desktop\Winamp.lnk [2010.01.03 16:02:26 | 000,000,776 | ---- | M] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk [2010.01.03 13:34:40 | 000,000,499 | ---- | M] () -- C:\Windows\win.ini [2010.01.03 12:41:10 | 000,002,517 | ---- | M] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\FRITZ!DSL Startcenter.lnk [2010.01.02 19:33:06 | 000,603,904 | ---- | M] (TuneUp Software) -- C:\Windows\System32\TUProgSt.exe [2010.01.02 19:33:04 | 000,362,240 | ---- | M] (TuneUp Software) -- C:\Windows\System32\TuneUpDefragService.exe [2010.01.02 19:32:59 | 000,001,517 | ---- | M] () -- C:\Users\Public\Desktop\TuneUp 1-Click Maintenance.lnk [2010.01.02 19:32:57 | 000,001,441 | ---- | M] () -- C:\Users\Public\Desktop\TuneUp Utilities 2009.lnk [2010.01.02 19:29:44 | 000,000,677 | ---- | M] () -- C:\Users\Public\Desktop\IrfanView.lnk [2010.01.02 17:57:57 | 000,691,696 | ---- | M] (Duplex Secure Ltd.) -- C:\Windows\System32\drivers\sptd.sys [2010.01.02 17:32:55 | 000,000,725 | ---- | M] () -- C:\Users\Public\Desktop\WinRAR.lnk [2009.12.29 14:28:10 | 000,007,603 | ---- | M] () -- C:\Users\**\AppData\Local\resmon.resmoncfg [2009.12.21 13:36:16 | 000,000,148 | ---- | M] () -- C:\Windows\System32\AddPort.ini [2009.12.19 11:02:48 | 001,328,640 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\quartz.dll [2009.12.19 11:02:40 | 000,084,480 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mciavi32.dll [2009.12.19 11:02:01 | 000,091,648 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\avifil32.dll [2009.12.16 22:28:35 | 000,000,087 | RH-- | M] () -- C:\Windows\ctfile.rfc [2009.12.16 21:08:52 | 000,000,000 | ---- | M] () -- C:\Windows\System32\drivers\Msft_User_WpdFs_01_09_00.Wdf [2009.12.16 20:59:30 | 000,000,400 | ---- | M] () -- C:\Windows\ODBC.INI [2009.12.16 20:07:56 | 000,319,456 | ---- | M] (Microsoft Corporation) -- C:\Windows\DIFxAPI.dll [2009.12.13 23:23:18 | 000,524,288 | -HS- | M] () -- C:\Users\**\NTUSER.DAT{6cced2f1-6e01-11de-8bed-001e0bcd1824}.TMContainer00000000000000000002.regtrans-ms [2009.12.13 23:23:18 | 000,524,288 | -HS- | M] () -- C:\Users\**\NTUSER.DAT{6cced2f1-6e01-11de-8bed-001e0bcd1824}.TMContainer00000000000000000001.regtrans-ms [2009.12.13 23:23:18 | 000,065,536 | -HS- | M] () -- C:\Users\**\NTUSER.DAT{6cced2f1-6e01-11de-8bed-001e0bcd1824}.TM.blf [2009.12.13 22:58:35 | 000,000,020 | -HS- | M] () -- C:\Users\**\ntuser.ini [2009.12.13 22:53:42 | 000,054,699 | ---- | M] () -- C:\Windows\System32\license.rtf [2009.12.13 22:47:05 | 000,008,192 | RHS- | M] () -- C:\BOOTSECT.BAK [2009.12.13 11:30:50 | 000,465,408 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\psisdecd.dll [2009.12.11 09:44:02 | 000,133,720 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\ksecpkg.sys [2009.12.11 09:38:58 | 001,037,312 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\lsasrv.dll [2009.12.10 20:31:10 | 001,539,104 | ---- | M] (Realtek Semiconductor Corp.) -- C:\Windows\System32\RtkPgExt.dll [2009.12.10 20:31:10 | 000,551,456 | ---- | M] (Realtek Semiconductor Corp.) -- C:\Windows\System32\RTSndMgr.cpl [2009.12.10 20:31:04 | 000,367,136 | ---- | M] (Realtek Semiconductor Corp.) -- C:\Windows\System32\RtkApoApi.dll [2009.12.10 20:31:04 | 000,056,864 | ---- | M] (Realtek Semiconductor Corp.) -- C:\Windows\System32\RtkCoInst.dll [2009.12.10 20:30:58 | 002,796,576 | ---- | M] (Realtek Semiconductor Corp.) -- C:\Windows\System32\RtkAPO.dll [2009.12.10 18:33:34 | 002,975,904 | ---- | M] (Realtek Semiconductor Corp.) -- C:\Windows\System32\drivers\RTKVHDA.sys [2009.12.04 19:26:12 | 000,297,376 | ---- | M] (Fortemedia Corporation) -- C:\Windows\System32\FMAPO.dll [2009.12.04 16:43:54 | 000,132,368 | ---- | M] (Waves Audio Ltd.) -- C:\Windows\System32\MaxxAudioAPO.dll [2009.12.03 09:27:28 | 000,080,416 | ---- | M] () -- C:\Windows\System32\RtNicProp32.dll [2009.12.02 10:17:14 | 000,716,800 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\jscript.dll [2009.11.25 12:47:34 | 000,295,264 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\PresentationHost.exe [2009.11.25 12:47:34 | 000,099,176 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\PresentationHostProxy.dll [2009.11.25 12:47:34 | 000,049,472 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\netfxperf.dll [2009.11.24 18:40:20 | 000,838,176 | ---- | M] (Realtek Semiconductor Corp.) -- C:\Windows\RtlExUpd.dll [2009.11.24 10:55:08 | 000,345,328 | ---- | M] (SRS Labs, Inc.) -- C:\Windows\System32\SRSTSXT.dll [2009.11.24 10:55:08 | 000,185,584 | ---- | M] (SRS Labs, Inc.) -- C:\Windows\System32\SRSTSHD.dll [2009.11.24 10:55:08 | 000,173,296 | ---- | M] (SRS Labs, Inc.) -- C:\Windows\System32\SRSHP360.dll [2009.11.24 10:55:08 | 000,140,528 | ---- | M] (SRS Labs, Inc.) -- C:\Windows\System32\SRSWOW.dll [2009.11.18 19:42:48 | 001,938,704 | ---- | M] (Waves Audio Ltd.) -- C:\Windows\System32\MaxxAudioEQ.dll [2009.11.18 19:42:48 | 001,783,056 | ---- | M] (Waves Audio Ltd.) -- C:\Windows\System32\WavesLib.dll [2009.11.18 19:42:48 | 000,311,568 | ---- | M] (Waves Audio Ltd.) -- C:\Windows\System32\MaxxAudioAPO20.dll [2009.11.18 08:13:00 | 000,531,032 | ---- | M] (Creative Technology Ltd.) -- C:\Windows\System32\MBAPO32.dll [2009.11.18 08:13:00 | 000,050,776 | ---- | M] (Creative Technology Ltd.) -- C:\Windows\System32\MBPPCn32.dll [2009.11.18 08:12:00 | 000,068,696 | ---- | M] (Creative Technology Ltd.) -- C:\Windows\System32\MBWrp32.dll [2009.11.18 08:12:00 | 000,053,848 | ---- | M] (Creative Technology Ltd.) -- C:\Windows\System32\MBppld32.dll [2009.11.17 19:13:36 | 000,096,160 | ---- | M] (Andrea Electronics Corporation) -- C:\Windows\System32\AERTARen.dll [2009.11.17 19:10:14 | 000,146,336 | ---- | M] (Andrea Electronics Corporation) -- C:\Windows\System32\AERTACap.dll [2009.11.14 02:49:00 | 001,628,920 | ---- | M] (Sonic Solutions) -- C:\Windows\System32\pxsfs.dll [2009.11.14 02:49:00 | 000,551,672 | ---- | M] (Sonic Solutions) -- C:\Windows\System32\px.dll [2009.11.14 02:49:00 | 000,518,904 | ---- | M] (Sonic Solutions) -- C:\Windows\System32\pxdrv.dll [2009.11.14 02:49:00 | 000,379,640 | ---- | M] (Sonic Solutions) -- C:\Windows\System32\pxwave.dll [2009.11.14 02:49:00 | 000,187,128 | ---- | M] (Sonic Solutions) -- C:\Windows\System32\pxmas.dll [2009.11.14 02:49:00 | 000,129,784 | ---- | M] (Sonic Solutions) -- C:\Windows\System32\pxafs.dll [2009.11.14 02:49:00 | 000,088,824 | ---- | M] (Sonic Solutions) -- C:\Windows\System32\vxblock.dll [2009.11.14 02:49:00 | 000,072,440 | ---- | M] (Sonic Solutions) -- C:\Windows\System32\pxhpinst.exe [2009.11.14 02:49:00 | 000,066,296 | ---- | M] (Sonic Solutions) -- C:\Windows\System32\pxcpya64.exe [2009.11.14 02:49:00 | 000,064,760 | ---- | M] (Sonic Solutions) -- C:\Windows\System32\pxinsa64.exe [2009.11.14 02:47:32 | 000,090,112 | ---- | M] (DivX, Inc.) -- C:\Windows\System32\dpl100.dll [2009.11.14 02:47:28 | 000,856,064 | ---- | M] (DivX, Inc.) -- C:\Windows\System32\divx_xx0c.dll [2009.11.14 02:47:28 | 000,856,064 | ---- | M] (DivX, Inc.) -- C:\Windows\System32\divx_xx07.dll [2009.11.14 02:47:28 | 000,847,872 | ---- | M] (DivX, Inc.) -- C:\Windows\System32\divx_xx0a.dll [2009.11.14 02:47:28 | 000,843,776 | ---- | M] (DivX, Inc.) -- C:\Windows\System32\divx_xx16.dll [2009.11.14 02:47:28 | 000,839,680 | ---- | M] (DivX, Inc.) -- C:\Windows\System32\divx_xx11.dll [2009.11.14 02:47:28 | 000,696,320 | ---- | M] (DivX, Inc.) -- C:\Windows\System32\DivX.dll [2009.11.13 16:16:02 | 000,348,160 | ---- | M] (Dolby Laboratories, Inc.) -- C:\Windows\System32\RTEEP32A.dll [2009.11.13 16:16:02 | 000,165,376 | ---- | M] (Dolby Laboratories, Inc.) -- C:\Windows\System32\RTEED32A.dll [2009.11.13 16:16:02 | 000,073,216 | ---- | M] (Dolby Laboratories, Inc.) -- C:\Windows\System32\RTEEL32A.dll [2009.11.13 16:16:02 | 000,059,392 | ---- | M] (Dolby Laboratories, Inc.) -- C:\Windows\System32\RTEEG32A.dll [2009.11.03 14:07:06 | 001,970,176 | ---- | M] () -- C:\Windows\System32\d3dx9.dll [2009.11.03 14:07:06 | 000,679,936 | ---- | M] (Generated by JEDI) -- C:\Windows\System32\D3DX81ab.dll [2009.11.02 21:42:06 | 000,195,456 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\MpSigStub.exe [2009.10.31 07:45:39 | 002,614,272 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe [2009.10.19 16:10:20 | 000,108,544 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\t2embed.dll [2009.10.19 16:10:06 | 000,070,656 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\fontsub.dll [2009.09.28 00:12:22 | 000,795,104 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dpinst.exe [2009.09.28 00:12:22 | 000,170,600 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvcod167.dll [2009.09.28 00:12:22 | 000,014,646 | ---- | M] () -- C:\Windows\System32\nvdisp.nvu [2009.09.27 18:47:30 | 002,173,544 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvcplui.exe [2009.09.27 18:47:30 | 000,420,456 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvcpl.cpl [2009.09.27 18:47:00 | 004,033,128 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvvitvs.dll [2009.09.27 18:47:00 | 003,553,896 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvgames.dll [2009.09.27 18:47:00 | 003,172,968 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvwss.dll [2009.09.27 18:47:00 | 001,309,288 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvsvs.dll [2009.09.27 18:47:00 | 001,292,904 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvmobls.dll [2009.09.27 18:47:00 | 000,195,176 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvmccss.dll [2009.09.27 18:47:00 | 000,150,120 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvshext.dll [2009.09.27 18:46:00 | 004,942,440 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvdisps.dll [2009.09.03 09:04:15 | 001,320,960 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\CertEnroll.dll [2009.08.29 08:54:52 | 012,625,408 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wmploc.DLL [2009.08.26 17:47:04 | 000,028,160 | ---- | M] (Seiko Instruments Inc.) -- C:\Windows\System32\SlpLm.DLL ========== Files Created - No Company Name ========== [2010.08.13 17:44:28 | 000,026,624 | ---- | C] () -- D:\Virus Win32.doc [2010.08.11 05:58:16 | 000,001,425 | ---- | C] () -- C:\Users\**\Desktop\Malwarebytes' Anti-Malware - Verknüpfung.lnk [2010.08.09 22:10:44 | 000,000,658 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk [2010.08.08 14:18:36 | 000,016,968 | ---- | C] () -- C:\Windows\System32\drivers\hitmanpro35.sys [2010.08.08 14:16:56 | 000,001,960 | ---- | C] () -- C:\Users\Public\Desktop\Hitman Pro 3.5.lnk [2010.08.07 19:37:04 | 188,111,374 | ---- | C] () -- D:\07082010.reg [2010.08.07 19:24:43 | 000,002,039 | ---- | C] () -- C:\Users\**\Desktop\HijackThis.lnk [2010.08.05 19:03:25 | 000,002,517 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\FRITZ!DSL Startcenter.lnk [2010.08.05 18:51:33 | 000,001,029 | ---- | C] () -- C:\Users\Public\Desktop\Microsoft Security Essentials.lnk [2010.08.05 18:16:14 | 000,002,490 | ---- | C] () -- D:\cc_20100805_181611.reg [2010.07.26 20:14:13 | 000,001,263 | ---- | C] () -- C:\Users\**\Desktop\### DownThemAll ### - Verknüpfung.lnk [2010.07.25 17:04:18 | 000,000,911 | ---- | C] () -- C:\Users\**\Desktop\Spybot - Search & Destroy.lnk [2010.07.25 09:32:26 | 000,000,648 | ---- | C] () -- C:\Users\Public\Desktop\CloneDVD2.lnk [2010.07.09 17:40:50 | 000,001,181 | ---- | C] () -- C:\Users\**\Desktop\audiograbber.exe - Verknüpfung.lnk [2010.07.01 13:40:22 | 000,524,288 | -HS- | C] () -- C:\Users\**\NTUSER.DAT{13c9153f-8505-11df-b214-806e6f6e6963}.TMContainer00000000000000000002.regtrans-ms [2010.07.01 13:40:22 | 000,524,288 | -HS- | C] () -- C:\Users\**\NTUSER.DAT{13c9153f-8505-11df-b214-806e6f6e6963}.TMContainer00000000000000000001.regtrans-ms [2010.07.01 13:40:22 | 000,065,536 | -HS- | C] () -- C:\Users\**\NTUSER.DAT{13c9153f-8505-11df-b214-806e6f6e6963}.TM.blf [2010.07.01 13:39:23 | 000,000,000 | -HS- | C] () -- C:\Users\**\NTUSER.DAT_tureg_new.LOG2 [2010.07.01 13:39:23 | 000,000,000 | -HS- | C] () -- C:\Users\**\NTUSER.DAT_tureg_new.LOG1 [2010.06.30 12:41:39 | 000,000,577 | ---- | C] () -- C:\Users\**\artmoney.txt [2010.06.30 11:09:41 | 000,001,030 | ---- | C] () -- C:\Users\Public\Desktop\TuneUp 1-Klick-Wartung.lnk [2010.06.04 16:58:30 | 000,000,669 | ---- | C] () -- C:\Users\**\Desktop\ANSTOSS 2007.lnk [2010.06.03 17:03:42 | 000,000,771 | ---- | C] () -- C:\Users\**\Desktop\Summer Athletics.lnk [2010.05.28 22:53:14 | 000,025,643 | ---- | C] () -- C:\Windows\System32\TUProgSt_20100528-205314.dmp [2010.05.25 19:37:50 | 000,350,863 | ---- | C] () -- D:\bestellschein_freiumschlag.pdf [2010.05.14 12:10:31 | 000,001,466 | ---- | C] () -- C:\Users\**\.recently-used.xbel [2010.05.09 16:04:06 | 000,000,184 | ---- | C] () -- C:\Windows\System32\brsvc01a.bsi [2010.05.09 16:04:06 | 000,000,030 | ---- | C] () -- C:\Windows\System32\brss01a.ini [2010.05.09 15:41:35 | 000,000,000 | ---- | C] () -- C:\Windows\brmx2001.ini [2010.05.09 15:40:07 | 000,000,074 | ---- | C] () -- C:\Windows\Brownie.ini [2010.05.09 13:53:27 | 000,016,546 | ---- | C] () -- D:\cc_20100509_135325.reg [2010.05.09 13:52:52 | 000,001,019 | ---- | C] () -- C:\Users\**\Desktop\CCleaner.exe - Verknüpfung.lnk [2010.05.09 09:26:07 | 000,182,056 | ---- | C] () -- D:\cc_20100509_092603.reg [2010.05.06 21:05:06 | 000,000,066 | ---- | C] () -- C:\Windows\Brfaxrx.ini [2010.05.06 21:05:06 | 000,000,000 | ---- | C] () -- C:\Windows\brdfxspd.dat [2010.05.05 18:00:40 | 000,000,035 | -H-- | C] () -- D:\maxdesk.ini2 [2010.05.05 17:59:26 | 000,000,276 | -H-- | C] () -- D:\PP11Thumbs.ptn [2010.05.05 17:51:52 | 000,000,000 | RHS- | C] () -- C:\Windows\FFSSET.BIN [2010.05.05 17:45:22 | 000,000,315 | ---- | C] () -- C:\Windows\Brpfx04a.ini [2010.05.05 17:45:22 | 000,000,161 | ---- | C] () -- C:\Windows\brpcfx.ini [2010.05.05 17:42:38 | 000,000,425 | ---- | C] () -- C:\Windows\BRWMARK.INI [2010.05.05 17:42:38 | 000,000,027 | ---- | C] () -- C:\Windows\BRPP2KA.INI [2010.05.05 17:35:41 | 000,000,050 | ---- | C] () -- C:\Windows\System32\bridf08b.dat [2010.05.05 17:35:28 | 000,106,496 | ---- | C] () -- C:\Windows\System32\BrMuSNMP.dll [2010.05.05 17:33:29 | 000,031,864 | ---- | C] () -- C:\Windows\maxlink.ini [2010.04.08 18:55:42 | 000,001,733 | ---- | C] () -- C:\Users\Public\Desktop\Adobe Reader 9.lnk [2010.04.03 22:55:32 | 000,007,772 | ---- | C] () -- C:\Windows\System32\nvinfo.pb [2010.04.03 18:26:56 | 000,276,196 | ---- | C] () -- C:\Windows\System32\NvApps.xml [2010.04.03 18:26:56 | 000,066,714 | ---- | C] () -- C:\Windows\System32\NvwsApps.xml [2010.03.12 17:36:09 | 001,970,176 | ---- | C] () -- C:\Windows\System32\d3dx9.dll [2010.03.11 11:48:30 | 000,000,889 | ---- | C] () -- C:\Users\**\Desktop\Bioshock-MCE.lnk [2010.03.06 17:04:53 | 000,000,751 | ---- | C] () -- C:\Users\Public\Desktop\Dark Messiah.lnk [2010.02.12 20:54:40 | 000,000,670 | ---- | C] () -- C:\Users\**\Desktop\JDownloader.lnk [2010.02.07 18:40:05 | 000,001,259 | ---- | C] () -- C:\Users\**\Desktop\MP3Collector.exe - Verknüpfung.lnk [2010.02.06 15:59:17 | 000,281,760 | ---- | C] () -- C:\Windows\System32\drivers\atksgt.sys [2010.02.06 15:59:17 | 000,025,888 | ---- | C] () -- C:\Windows\System32\drivers\lirsgt.sys [2010.01.22 23:04:45 | 000,000,872 | ---- | C] () -- C:\Users\Public\Desktop\CyberLink PowerDVD.lnk [2010.01.22 22:24:41 | 000,000,262 | ---- | C] () -- C:\Windows\lgfwup.ini [2010.01.22 22:20:17 | 000,000,245 | ---- | C] () -- C:\Windows\System32\APREG.url [2010.01.22 22:11:27 | 000,000,000 | ---- | C] () -- C:\Users\**\AppData\Roaming\downloads.m3u [2010.01.22 22:05:15 | 000,000,000 | ---- | C] () -- C:\Windows\System32\drivers\Msft_Kernel_LHidFilt_01005.Wdf [2010.01.22 22:05:14 | 000,000,000 | ---- | C] () -- C:\Windows\System32\drivers\Msft_Kernel_LMouFilt_01005.Wdf [2010.01.22 22:05:02 | 000,000,000 | ---- | C] () -- C:\Windows\System32\drivers\Msft_Kernel_LHidEqd_01005.Wdf [2010.01.22 22:04:51 | 000,000,000 | ---- | C] () -- C:\Windows\System32\drivers\Msft_Kernel_LEqdUsb_01005.Wdf [2010.01.05 19:49:53 | 000,002,007 | ---- | C] () -- C:\Users\Public\Desktop\LightScribe.lnk [2010.01.05 18:19:15 | 000,000,984 | ---- | C] () -- C:\Users\Public\Desktop\TuneUp Utilities.lnk [2010.01.05 17:11:30 | 000,002,042 | ---- | C] () -- C:\Users\Public\Desktop\Paragon Festplatten Manager™ 2009 Suite.lnk [2010.01.05 16:16:26 | 000,000,654 | ---- | C] () -- C:\Users\Public\Desktop\Winamp.lnk [2010.01.03 16:02:26 | 000,000,776 | ---- | C] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk [2010.01.02 19:32:59 | 000,001,517 | ---- | C] () -- C:\Users\Public\Desktop\TuneUp 1-Click Maintenance.lnk [2010.01.02 19:32:57 | 000,001,441 | ---- | C] () -- C:\Users\Public\Desktop\TuneUp Utilities 2009.lnk [2010.01.02 19:29:44 | 000,000,677 | ---- | C] () -- C:\Users\Public\Desktop\IrfanView.lnk [2009.12.29 23:10:23 | 000,055,022 | ---- | C] () -- C:\Users\**\DesktopStCenter.txt [2009.12.29 12:32:36 | 000,007,603 | ---- | C] () -- C:\Users\**\AppData\Local\resmon.resmoncfg [2009.12.22 19:18:25 | 000,000,858 | ---- | C] () -- C:\Users\**\Desktop\LaLa - Verknüpfung.lnk [2009.12.21 14:03:04 | 000,000,029 | ---- | C] () -- C:\Users\**\AppData\Roaming\default.rss [2009.12.21 13:51:07 | 000,000,725 | ---- | C] () -- C:\Users\Public\Desktop\WinRAR.lnk [2009.12.21 13:36:16 | 000,000,148 | ---- | C] () -- C:\Windows\System32\AddPort.ini [2009.12.16 22:28:35 | 000,146,432 | ---- | C] () -- C:\Windows\System32\APOMngr.DLL [2009.12.16 22:28:35 | 000,072,704 | ---- | C] () -- C:\Windows\System32\CmdRtr.DLL [2009.12.16 22:28:35 | 000,000,087 | RH-- | C] () -- C:\Windows\ctfile.rfc [2009.12.16 21:08:52 | 000,000,000 | ---- | C] () -- C:\Windows\System32\drivers\Msft_User_WpdFs_01_09_00.Wdf [2009.12.16 20:59:29 | 000,000,400 | ---- | C] () -- C:\Windows\ODBC.INI [2009.12.13 22:58:35 | 007,340,032 | ---- | C] () -- C:\Users\**\NTUSER.DAT [2009.12.13 22:58:35 | 003,670,016 | -HS- | C] () -- C:\Users\**\NTUSER.DAT_tureg_old [2009.12.13 22:58:35 | 000,524,288 | -HS- | C] () -- C:\Users\**\NTUSER.DAT{6cced2f1-6e01-11de-8bed-001e0bcd1824}.TMContainer00000000000000000002.regtrans-ms [2009.12.13 22:58:35 | 000,524,288 | -HS- | C] () -- C:\Users\**\NTUSER.DAT{6cced2f1-6e01-11de-8bed-001e0bcd1824}.TMContainer00000000000000000001.regtrans-ms [2009.12.13 22:58:35 | 000,262,144 | -HS- | C] () -- C:\Users\**\ntuser.dat.LOG1 [2009.12.13 22:58:35 | 000,065,536 | -HS- | C] () -- C:\Users\**\NTUSER.DAT{6cced2f1-6e01-11de-8bed-001e0bcd1824}.TM.blf [2009.12.13 22:58:35 | 000,000,020 | -HS- | C] () -- C:\Users\**\ntuser.ini [2009.12.13 22:58:35 | 000,000,000 | -HS- | C] () -- C:\Users\**\ntuser.dat.LOG2 [2009.12.13 22:47:05 | 000,008,192 | RHS- | C] () -- C:\BOOTSECT.BAK [2009.12.13 22:47:04 | 000,383,562 | RHS- | C] () -- C:\bootmgr [2009.12.03 09:27:28 | 000,080,416 | ---- | C] () -- C:\Windows\System32\RtNicProp32.dll [2009.09.28 00:12:22 | 000,014,646 | ---- | C] () -- C:\Windows\System32\nvdisp.nvu [2009.07.14 01:51:43 | 000,073,728 | ---- | C] () -- C:\Windows\System32\BthpanContextHandler.dll [2009.07.14 01:42:10 | 000,064,000 | ---- | C] () -- C:\Windows\System32\BWContextHandler.dll [2009.07.14 01:24:05 | 000,032,256 | ---- | C] () -- C:\Windows\System32\drivers\discache.sys [2007.06.22 04:59:38 | 000,090,112 | ---- | C] () -- C:\Windows\System32\dlbkcur.dll [2007.03.21 14:41:20 | 000,413,696 | ---- | C] () -- C:\Windows\System32\dlbkutil.dll [2007.02.22 23:32:00 | 000,344,064 | ---- | C] () -- C:\Windows\System32\dlbkcoin.dll [2007.02.07 23:58:00 | 000,039,899 | ---- | C] () -- C:\Windows\System32\rtsicis.ini [2006.02.18 09:16:04 | 000,036,864 | ---- | C] () -- C:\Windows\System32\SlpApi42.dll [2005.12.16 20:15:44 | 000,040,960 | ---- | C] () -- C:\Windows\System32\dlbkvs.dll [2005.09.13 22:27:08 | 000,061,440 | ---- | C] () -- C:\Windows\System32\dlbkcnv5.dll [2005.09.13 22:27:08 | 000,061,440 | ---- | C] () -- C:\Windows\System32\dlbkcnv4.dll [2005.02.05 16:29:17 | 000,286,208 | ---- | C] () -- C:\Windows\System32\CNCS232.DLL [2001.07.07 05:00:00 | 000,003,399 | ---- | C] () -- C:\Windows\System32\hptcpmon.ini < End of report > |
|
14.08.2010, 12:41
| #4 |
| | Virus Win32/Alureon.h verhindert Windowsupdate [2009.12.16 20:07:56 | 000,319,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\DIFxAPI.dll [2009.12.16 20:02:02 | 000,000,000 | ---D | C] -- C:\ProgramData\McAfee [2009.12.16 20:01:48 | 000,000,000 | ---D | C] -- C:\Users\**\AppData\Roaming\Thunderbird [2009.12.16 20:01:48 | 000,000,000 | ---D | C] -- C:\Users\**\AppData\Local\Thunderbird [2009.12.16 19:54:14 | 000,143,360 | ---- | C] (JMicron Technology Corp.) -- C:\Windows\System32\JMRaidAPI.dll [2009.12.16 19:54:13 | 001,953,792 | ---- | C] (Gigabyte Technology Corp.) -- C:\Windows\System32\JMRaidSetup.exe [2009.12.16 19:54:08 | 000,044,928 | ---- | C] (JMicron Technology Corp.) -- C:\Windows\System32\drivers\jraid.sys [2009.12.16 19:54:08 | 000,006,912 | ---- | C] (JMicron ) -- C:\Windows\System32\drivers\JGOGO.sys [2009.12.16 19:54:02 | 000,319,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\Difx54f2.rra [2009.12.16 19:54:02 | 000,000,000 | ---D | C] -- C:\Windows\JM [2009.12.16 19:53:49 | 000,000,000 | -H-D | C] -- C:\Programme\InstallShield Installation Information [2009.12.16 19:53:31 | 000,000,000 | ---D | C] -- C:\Programme\Common Files\InstallShield [2009.12.16 19:51:20 | 000,000,000 | ---D | C] -- C:\Programme\Intel [2009.12.16 19:51:18 | 000,000,000 | ---D | C] -- C:\Intel [2009.12.16 19:50:43 | 012,625,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wmploc.DLL [2009.12.16 19:50:43 | 001,320,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\CertEnroll.dll [2009.12.16 19:50:43 | 000,507,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\winload.exe [2009.12.16 19:50:43 | 000,442,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\winresume.exe [2009.12.16 19:50:08 | 000,015,600 | ---- | C] (Windows (R) 2000 DDK provider) -- C:\Windows\gdrv.sys [2009.12.13 23:20:33 | 000,000,000 | -HSD | C] -- C:\Users\**\IETldCache [2009.12.13 23:16:08 | 000,195,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MpSigStub.exe [2009.12.13 23:15:56 | 000,000,000 | ---D | C] -- C:\Users\**\AppData\Local\Apple Computer [2009.12.13 23:15:56 | 000,000,000 | ---D | C] -- C:\Users\**\AppData\Roaming\Adobe [2009.12.13 23:15:55 | 000,000,000 | ---D | C] -- C:\Users\**\AppData\Local\Mozilla [2009.12.13 23:15:53 | 000,000,000 | ---D | C] -- C:\Users\**\AppData\Roaming\Mozilla [2009.12.13 23:15:16 | 000,000,000 | ---D | C] -- C:\Users\**\AppData\Local\MigWiz [2009.12.13 23:03:11 | 000,000,000 | ---D | C] -- C:\Users\**\AppData\Local\ElevatedDiagnostics [2009.12.13 22:58:53 | 000,000,000 | R--D | C] -- C:\Users\**\Searches [2009.12.13 22:58:44 | 000,000,000 | ---D | C] -- C:\Users\**\AppData\Roaming\Identities [2009.12.13 22:58:43 | 000,000,000 | R--D | C] -- C:\Users\**\Contacts [2009.12.13 22:58:42 | 000,000,000 | -HSD | C] -- D:\$RECYCLE.BIN [2009.12.13 22:58:36 | 000,000,000 | ---D | C] -- C:\Users\**\AppData\Local\VirtualStore [2009.12.13 22:58:35 | 000,000,000 | --SD | C] -- C:\Users\**\AppData\Roaming\Microsoft [2009.12.13 22:58:35 | 000,000,000 | R--D | C] -- C:\Users\**\Videos [2009.12.13 22:58:35 | 000,000,000 | R--D | C] -- C:\Users\**\Saved Games [2009.12.13 22:58:35 | 000,000,000 | R--D | C] -- C:\Users\**\Pictures [2009.12.13 22:58:35 | 000,000,000 | R--D | C] -- C:\Users\**\Music [2009.12.13 22:58:35 | 000,000,000 | R--D | C] -- C:\Users\**\Links [2009.12.13 22:58:35 | 000,000,000 | R--D | C] -- C:\Users\**\Favorites [2009.12.13 22:58:35 | 000,000,000 | R--D | C] -- C:\Users\**\Downloads [2009.12.13 22:58:35 | 000,000,000 | R--D | C] -- C:\Users\**\Documents [2009.12.13 22:58:35 | 000,000,000 | R--D | C] -- C:\Users\**\Desktop [2009.12.13 22:58:35 | 000,000,000 | -HSD | C] -- C:\Users\**\Vorlagen [2009.12.13 22:58:35 | 000,000,000 | -HSD | C] -- C:\Users\**\AppData\Local\Verlauf [2009.12.13 22:58:35 | 000,000,000 | -HSD | C] -- C:\Users\**\AppData\Local\Temporary Internet Files [2009.12.13 22:58:35 | 000,000,000 | -HSD | C] -- C:\Users\**\Startmenü [2009.12.13 22:58:35 | 000,000,000 | -HSD | C] -- C:\Users\**\SendTo [2009.12.13 22:58:35 | 000,000,000 | -HSD | C] -- C:\Users\**\Recent [2009.12.13 22:58:35 | 000,000,000 | -HSD | C] -- C:\Users\**\Netzwerkumgebung [2009.12.13 22:58:35 | 000,000,000 | -HSD | C] -- C:\Users\**\Lokale Einstellungen [2009.12.13 22:58:35 | 000,000,000 | -HSD | C] -- C:\Users\**\Eigene Dateien [2009.12.13 22:58:35 | 000,000,000 | -HSD | C] -- C:\Users\**\Cookies [2009.12.13 22:58:35 | 000,000,000 | -HSD | C] -- C:\Users\**\AppData\Local\Anwendungsdaten [2009.12.13 22:58:35 | 000,000,000 | -HSD | C] -- C:\Users\**\Anwendungsdaten [2009.12.13 22:58:35 | 000,000,000 | -H-D | C] -- C:\Users\**\Druckumgebung [2009.12.13 22:58:35 | 000,000,000 | -H-D | C] -- C:\Users\**\AppData [2009.12.13 22:58:35 | 000,000,000 | ---D | C] -- C:\Users\**\AppData\Local\Temp [2009.12.13 22:58:35 | 000,000,000 | ---D | C] -- C:\Users\**\AppData\Local\Microsoft [2009.12.13 22:58:35 | 000,000,000 | ---D | C] -- C:\Users\**\AppData\Roaming\Media Center Programs [2009.12.13 22:58:21 | 000,000,000 | -HSD | C] -- C:\ProgramData\Vorlagen [2009.12.13 22:58:21 | 000,000,000 | -HSD | C] -- C:\ProgramData\Startmenü [2009.12.13 22:58:21 | 000,000,000 | -HSD | C] -- C:\Recovery [2009.12.13 22:58:21 | 000,000,000 | -HSD | C] -- C:\Programme [2009.12.13 22:58:21 | 000,000,000 | -HSD | C] -- C:\Programme\Gemeinsame Dateien [2009.12.13 22:58:21 | 000,000,000 | -HSD | C] -- C:\ProgramData\Favoriten [2009.12.13 22:58:21 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Eigene Videos [2009.12.13 22:58:21 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Eigene Musik [2009.12.13 22:58:21 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Eigene Bilder [2009.12.13 22:58:21 | 000,000,000 | -HSD | C] -- C:\Dokumente und Einstellungen [2009.12.13 22:58:21 | 000,000,000 | -HSD | C] -- C:\ProgramData\Dokumente [2009.12.13 22:58:21 | 000,000,000 | -HSD | C] -- C:\ProgramData\Anwendungsdaten [2009.12.13 22:50:43 | 000,000,000 | ---D | C] -- C:\Windows\SoftwareDistribution [2009.12.13 22:48:12 | 000,000,000 | ---D | C] -- C:\Windows\Prefetch [2009.12.13 22:47:56 | 000,000,000 | -HSD | C] -- C:\System Volume Information [2009.12.13 22:47:11 | 000,000,000 | ---D | C] -- C:\Windows\Panther [2009.12.13 22:47:04 | 000,000,000 | -HSD | C] -- C:\Boot [2009.11.14 02:47:32 | 000,090,112 | ---- | C] (DivX, Inc.) -- C:\Windows\System32\dpl100.dll [2009.11.14 02:47:28 | 000,856,064 | ---- | C] (DivX, Inc.) -- C:\Windows\System32\divx_xx0c.dll [2009.11.14 02:47:28 | 000,856,064 | ---- | C] (DivX, Inc.) -- C:\Windows\System32\divx_xx07.dll [2009.11.14 02:47:28 | 000,847,872 | ---- | C] (DivX, Inc.) -- C:\Windows\System32\divx_xx0a.dll [2009.11.14 02:47:28 | 000,843,776 | ---- | C] (DivX, Inc.) -- C:\Windows\System32\divx_xx16.dll [2009.11.14 02:47:28 | 000,839,680 | ---- | C] (DivX, Inc.) -- C:\Windows\System32\divx_xx11.dll [2009.11.14 02:47:28 | 000,696,320 | ---- | C] (DivX, Inc.) -- C:\Windows\System32\DivX.dll [2009.09.28 00:12:22 | 001,296,488 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvapi.dll [2009.09.28 00:12:22 | 000,795,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dpinst.exe [2009.09.28 00:12:22 | 000,600,680 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvudisp.exe [2009.09.28 00:12:22 | 000,170,600 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvcod167.dll [2009.09.27 18:47:30 | 002,173,544 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvcplui.exe [2009.09.27 18:47:30 | 000,420,456 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvcpl.cpl [2009.09.27 18:47:00 | 004,033,128 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvvitvs.dll [2009.09.27 18:47:00 | 003,553,896 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvgames.dll [2009.09.27 18:47:00 | 003,172,968 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvwss.dll [2009.09.27 18:47:00 | 001,309,288 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvsvs.dll [2009.09.27 18:47:00 | 001,292,904 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvmobls.dll [2009.09.27 18:47:00 | 000,195,176 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvmccss.dll [2009.09.27 18:47:00 | 000,150,120 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvshext.dll [2009.09.27 18:46:00 | 004,942,440 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvdisps.dll [2009.08.26 17:47:04 | 000,028,160 | ---- | C] (Seiko Instruments Inc.) -- C:\Windows\System32\SlpLm.DLL [2007.03.21 14:41:30 | 000,073,728 | ---- | C] ( ) -- C:\Windows\System32\dlbkcu.dll [2007.01.30 15:47:52 | 000,643,072 | ---- | C] ( ) -- C:\Windows\System32\dlbkpmui.dll [2007.01.30 15:46:00 | 001,224,704 | ---- | C] ( ) -- C:\Windows\System32\dlbkserv.dll [2007.01.30 15:38:18 | 000,421,888 | ---- | C] ( ) -- C:\Windows\System32\dlbkcomm.dll [2007.01.30 15:36:30 | 000,585,728 | ---- | C] ( ) -- C:\Windows\System32\dlbklmpm.dll [2007.01.30 15:35:00 | 000,397,312 | ---- | C] ( ) -- C:\Windows\System32\dlbkiesc.dll [2007.01.30 15:32:06 | 000,094,208 | ---- | C] ( ) -- C:\Windows\System32\dlbkpplc.dll [2007.01.30 15:31:08 | 000,684,032 | ---- | C] ( ) -- C:\Windows\System32\dlbkcomc.dll [2007.01.30 15:30:30 | 000,163,840 | ---- | C] ( ) -- C:\Windows\System32\dlbkprox.dll [2007.01.30 15:22:32 | 000,413,696 | ---- | C] ( ) -- C:\Windows\System32\dlbkinpa.dll [2007.01.30 15:21:46 | 000,995,328 | ---- | C] ( ) -- C:\Windows\System32\dlbkusb1.dll [2007.01.30 15:17:02 | 000,696,320 | ---- | C] ( ) -- C:\Windows\System32\dlbkhbn3.dll ========== Files - Modified Within 360 Days ========== [2010.08.14 13:18:55 | 007,340,032 | ---- | M] () -- C:\Users\**\NTUSER.DAT [2010.08.14 12:56:50 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat [2010.08.14 12:55:26 | 002,033,402 | -H-- | M] () -- C:\Users\**\AppData\Local\IconCache.db [2010.08.14 12:38:04 | 000,014,640 | ---- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 [2010.08.14 12:38:04 | 000,014,640 | ---- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 [2010.08.14 12:30:27 | 000,000,006 | -H-- | M] () -- C:\Windows\tasks\SA.DAT [2010.08.14 01:23:05 | 000,032,256 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\jvhhzaav.sys [2010.08.13 20:54:37 | 001,498,506 | ---- | M] () -- C:\Windows\System32\PerfStringBackup.INI [2010.08.13 20:54:37 | 000,653,928 | ---- | M] () -- C:\Windows\System32\perfh007.dat [2010.08.13 20:54:37 | 000,615,810 | ---- | M] () -- C:\Windows\System32\perfh009.dat [2010.08.13 20:54:37 | 000,129,800 | ---- | M] () -- C:\Windows\System32\perfc007.dat [2010.08.13 20:54:37 | 000,106,190 | ---- | M] () -- C:\Windows\System32\perfc009.dat [2010.08.13 17:44:29 | 000,026,624 | ---- | M] () -- D:\Virus Win32.doc [2010.08.13 16:54:57 | 000,016,968 | ---- | M] () -- C:\Windows\System32\drivers\hitmanpro35.sys [2010.08.11 05:58:16 | 000,001,425 | ---- | M] () -- C:\Users\**\Desktop\Malwarebytes' Anti-Malware - Verknüpfung.lnk [2010.08.09 22:10:44 | 000,000,658 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk [2010.08.09 22:02:28 | 000,032,256 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\metklpwg.sys [2010.08.09 21:50:34 | 000,001,001 | ---- | M] () -- C:\Windows\System32\drivers\etc\hosts [2010.08.08 14:33:51 | 000,032,256 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\yxqhubnp.sys [2010.08.08 14:18:12 | 000,001,960 | ---- | M] () -- C:\Users\Public\Desktop\Hitman Pro 3.5.lnk [2010.08.08 11:37:44 | 000,000,911 | ---- | M] () -- C:\Users\**\Desktop\Spybot - Search & Destroy.lnk [2010.08.07 19:37:08 | 188,111,374 | ---- | M] () -- D:\07082010.reg [2010.08.07 19:24:43 | 000,002,039 | ---- | M] () -- C:\Users\**\Desktop\HijackThis.lnk [2010.08.07 15:59:01 | 000,032,256 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\fowtkgjs.sys [2010.08.07 11:20:06 | 000,032,256 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\pcrnmilm.sys [2010.08.05 23:52:47 | 000,032,256 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\wrmkogkw.sys [2010.08.05 19:54:19 | 000,032,256 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\xiwsrxof.sys [2010.08.05 18:51:33 | 000,001,029 | ---- | M] () -- C:\Users\Public\Desktop\Microsoft Security Essentials.lnk [2010.08.05 18:16:29 | 000,002,490 | ---- | M] () -- D:\cc_20100805_181611.reg [2010.07.26 20:14:10 | 000,001,263 | ---- | M] () -- C:\Users\**\Desktop\### DownThemAll ### - Verknüpfung.lnk [2010.07.26 05:35:10 | 000,032,256 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\nxczndhi.sys [2010.07.25 17:06:31 | 000,000,648 | ---- | M] () -- C:\Users\Public\Desktop\CloneDVD2.lnk [2010.07.17 05:00:12 | 000,153,376 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\System32\javaws.exe [2010.07.17 05:00:12 | 000,145,184 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\System32\javaw.exe [2010.07.17 05:00:10 | 000,145,184 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\System32\java.exe [2010.07.17 05:00:04 | 000,423,656 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\System32\deployJava1.dll [2010.07.09 17:40:50 | 000,001,181 | ---- | M] () -- C:\Users\**\Desktop\audiograbber.exe - Verknüpfung.lnk [2010.07.05 09:10:25 | 000,000,161 | ---- | M] () -- C:\Windows\brpcfx.ini [2010.07.01 17:29:53 | 000,524,288 | -HS- | M] () -- C:\Users\**\NTUSER.DAT{13c9153f-8505-11df-b214-806e6f6e6963}.TMContainer00000000000000000002.regtrans-ms [2010.07.01 17:29:53 | 000,524,288 | -HS- | M] () -- C:\Users\**\NTUSER.DAT{13c9153f-8505-11df-b214-806e6f6e6963}.TMContainer00000000000000000001.regtrans-ms [2010.07.01 17:29:53 | 000,065,536 | -HS- | M] () -- C:\Users\**\NTUSER.DAT{13c9153f-8505-11df-b214-806e6f6e6963}.TM.blf [2010.07.01 13:39:33 | 003,670,016 | -HS- | M] () -- C:\Users\**\NTUSER.DAT_tureg_old [2010.06.30 13:26:10 | 000,000,670 | ---- | M] () -- C:\Users\**\Desktop\JDownloader.lnk [2010.06.30 11:09:41 | 000,001,030 | ---- | M] () -- C:\Users\Public\Desktop\TuneUp 1-Klick-Wartung.lnk [2010.06.30 11:09:41 | 000,000,984 | ---- | M] () -- C:\Users\Public\Desktop\TuneUp Utilities.lnk [2010.06.30 09:09:45 | 000,001,733 | ---- | M] () -- C:\Users\Public\Desktop\Adobe Reader 9.lnk [2010.06.26 15:33:39 | 000,418,864 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT [2010.06.04 16:58:30 | 000,000,669 | ---- | M] () -- C:\Users\**\Desktop\ANSTOSS 2007.lnk [2010.06.03 17:03:42 | 000,000,771 | ---- | M] () -- C:\Users\**\Desktop\Summer Athletics.lnk [2010.05.28 22:53:14 | 000,025,643 | ---- | M] () -- C:\Windows\System32\TUProgSt_20100528-205314.dmp [2010.05.27 09:24:13 | 000,034,304 | ---- | M] (Adobe Systems) -- C:\Windows\System32\atmlib.dll [2010.05.27 05:49:37 | 000,293,888 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\System32\atmfd.dll [2010.05.25 19:37:57 | 000,350,863 | ---- | M] () -- D:\bestellschein_freiumschlag.pdf [2010.05.21 07:14:50 | 000,048,128 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\jsproxy.dll [2010.05.15 12:33:39 | 000,000,858 | ---- | M] () -- C:\Users\**\Desktop\LaLa - Verknüpfung.lnk [2010.05.14 12:10:31 | 000,001,466 | ---- | M] () -- C:\Users\**\.recently-used.xbel [2010.05.10 13:38:06 | 000,030,536 | ---- | M] (TuneUp Software) -- C:\Windows\System32\TURegOpt.exe [2010.05.10 13:31:28 | 000,021,320 | ---- | M] (TuneUp Software) -- C:\Windows\System32\authuitu.dll [2010.05.10 13:31:16 | 000,030,024 | ---- | M] (TuneUp Software) -- C:\Windows\System32\uxtuneup.dll [2010.05.09 18:55:06 | 000,000,315 | ---- | M] () -- C:\Windows\Brpfx04a.ini [2010.05.09 18:55:04 | 000,000,425 | ---- | M] () -- C:\Windows\BRWMARK.INI [2010.05.09 18:55:04 | 000,000,027 | ---- | M] () -- C:\Windows\BRPP2KA.INI [2010.05.09 18:54:46 | 000,000,050 | ---- | M] () -- C:\Windows\System32\bridf08b.dat [2010.05.09 16:04:06 | 000,000,184 | ---- | M] () -- C:\Windows\System32\brsvc01a.bsi [2010.05.09 16:04:06 | 000,000,030 | ---- | M] () -- C:\Windows\System32\brss01a.ini [2010.05.09 15:41:35 | 000,000,000 | ---- | M] () -- C:\Windows\brmx2001.ini [2010.05.09 15:40:07 | 000,000,074 | ---- | M] () -- C:\Windows\Brownie.ini [2010.05.09 13:53:35 | 000,016,546 | ---- | M] () -- D:\cc_20100509_135325.reg [2010.05.09 13:52:52 | 000,001,019 | ---- | M] () -- C:\Users\**\Desktop\CCleaner.exe - Verknüpfung.lnk [2010.05.09 11:14:55 | 000,641,536 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\CPFilters.dll [2010.05.09 11:14:50 | 000,417,792 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msdri.dll [2010.05.09 11:13:30 | 000,204,288 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\MSNP.ax [2010.05.09 11:13:30 | 000,199,680 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mpg2splt.ax [2010.05.09 09:26:16 | 000,182,056 | ---- | M] () -- D:\cc_20100509_092603.reg [2010.05.06 21:08:29 | 000,114,376 | ---- | M] () -- C:\Users\**\AppData\Local\GDIPFONTCACHEV1.DAT [2010.05.06 21:05:25 | 000,000,066 | ---- | M] () -- C:\Windows\Brfaxrx.ini [2010.05.06 14:41:55 | 000,606,208 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mstime.dll [2010.05.06 14:41:53 | 000,064,512 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msfeedsbs.dll [2010.05.06 14:41:49 | 000,381,440 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\iedkcs32.dll [2010.05.05 18:00:40 | 000,000,035 | -H-- | M] () -- D:\maxdesk.ini2 [2010.05.05 17:59:26 | 000,000,276 | -H-- | M] () -- D:\PP11Thumbs.ptn [2010.05.05 17:51:52 | 000,000,000 | RHS- | M] () -- C:\Windows\FFSSET.BIN [2010.05.01 16:49:25 | 002,326,528 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\win32k.sys [2010.04.29 12:19:24 | 000,038,224 | ---- | M] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbamswissarmy.sys [2010.04.29 12:19:14 | 000,020,952 | ---- | M] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbam.sys [2010.04.27 17:16:24 | 000,385,880 | ---- | M] (McAfee, Inc.) -- C:\Windows\System32\drivers\mfehidk.sys [2010.04.27 17:16:24 | 000,312,616 | ---- | M] (McAfee, Inc.) -- C:\Windows\System32\drivers\mfefirek.sys [2010.04.27 17:16:24 | 000,160,720 | ---- | M] (McAfee, Inc.) -- C:\Windows\System32\drivers\mfewfpk.sys [2010.04.27 17:16:24 | 000,152,320 | ---- | M] (McAfee, Inc.) -- C:\Windows\System32\drivers\mfeavfk.sys [2010.04.27 17:16:24 | 000,095,568 | ---- | M] (McAfee, Inc.) -- C:\Windows\System32\drivers\mfeapfk.sys [2010.04.27 17:16:24 | 000,083,496 | ---- | M] (McAfee, Inc.) -- C:\Windows\System32\drivers\mferkdet.sys [2010.04.27 17:16:24 | 000,064,304 | ---- | M] (McAfee, Inc.) -- C:\Windows\System32\drivers\mfenlfk.sys [2010.04.27 17:16:24 | 000,055,456 | ---- | M] (McAfee, Inc.) -- C:\Windows\System32\drivers\cfwids.sys [2010.04.27 17:16:24 | 000,051,688 | ---- | M] (McAfee, Inc.) -- C:\Windows\System32\drivers\mfebopk.sys [2010.04.27 17:16:24 | 000,009,344 | ---- | M] (McAfee, Inc.) -- C:\Windows\System32\drivers\mfeclnk.sys [2010.04.23 09:13:36 | 000,002,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\tzres.dll [2010.04.03 22:55:32 | 015,227,496 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvoglv32.dll [2010.04.03 22:55:32 | 011,647,592 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvcompiler.dll [2010.04.03 22:55:32 | 011,573,800 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\drivers\nvlddmkm.sys [2010.04.03 22:55:32 | 009,386,600 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvd3dum.dll [2010.04.03 22:55:32 | 004,503,144 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvwgf2um.dll [2010.04.03 22:55:32 | 004,029,544 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvcuda.dll [2010.04.03 22:55:32 | 002,907,752 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvencodemft.dll [2010.04.03 22:55:32 | 002,646,632 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvcuvenc.dll [2010.04.03 22:55:32 | 002,009,704 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvcuvid.dll [2010.04.03 22:55:32 | 001,296,488 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvapi.dll [2010.04.03 22:55:32 | 000,600,680 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvuninst.exe [2010.04.03 22:55:32 | 000,600,680 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvudisp.exe [2010.04.03 22:55:32 | 000,316,008 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvdecodemft.dll [2010.04.03 22:55:32 | 000,227,944 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvcod1914.dll [2010.04.03 22:55:32 | 000,227,944 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvcod.dll [2010.04.03 22:55:32 | 000,056,424 | ---- | M] (Khronos Group) -- C:\Windows\System32\OpenCL.dll [2010.04.03 22:55:32 | 000,010,920 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\drivers\nvBridge.kmd [2010.04.03 22:55:32 | 000,007,772 | ---- | M] () -- C:\Windows\System32\nvinfo.pb [2010.04.03 18:27:00 | 013,683,816 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvcpl.dll [2010.04.03 18:27:00 | 000,985,704 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvsvc.dll [2010.04.03 18:27:00 | 000,110,696 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvmctray.dll [2010.04.03 18:26:56 | 000,276,196 | ---- | M] () -- C:\Windows\System32\NvApps.xml [2010.04.03 18:26:56 | 000,066,714 | ---- | M] () -- C:\Windows\System32\NvwsApps.xml [2010.03.25 21:30:22 | 000,151,216 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\MpFilter.sys [2010.03.25 21:30:22 | 000,042,368 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\MpNWMon.sys [2010.03.18 13:16:28 | 000,771,424 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msvcr100_clr0400.dll [2010.03.11 10:50:16 | 000,000,889 | ---- | M] () -- C:\Users\**\Desktop\Bioshock-MCE.lnk [2010.03.10 10:34:47 | 000,108,144 | ---- | M] (Sony DADC Austria AG.) -- C:\Windows\System32\CmdLineExt.dll [2010.03.08 23:33:56 | 000,427,520 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\vbscript.dll [2010.03.06 17:04:53 | 000,000,751 | ---- | M] () -- C:\Users\Public\Desktop\Dark Messiah.lnk [2010.03.05 09:42:42 | 000,067,584 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\asycfilt.dll [2010.03.04 13:42:58 | 000,277,536 | ---- | M] (Realtek ) -- C:\Windows\System32\drivers\Rt86win7.sys [2010.02.27 14:07:48 | 003,954,568 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ntkrnlpa.exe [2010.02.27 14:07:48 | 003,899,280 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ntoskrnl.exe [2010.02.11 09:10:14 | 000,293,376 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\browserchoice.exe [2010.02.07 18:40:05 | 000,001,259 | ---- | M] () -- C:\Users\**\Desktop\MP3Collector.exe - Verknüpfung.lnk [2010.02.06 15:59:17 | 000,281,760 | ---- | M] () -- C:\Windows\System32\drivers\atksgt.sys [2010.02.06 15:59:17 | 000,025,888 | ---- | M] () -- C:\Windows\System32\drivers\lirsgt.sys [2010.02.03 12:24:36 | 000,094,208 | ---- | M] (Realtek Semiconductor Corporation) -- C:\Windows\System32\RTNUninst32.dll [2010.01.22 23:04:45 | 000,000,872 | ---- | M] () -- C:\Users\Public\Desktop\CyberLink PowerDVD.lnk [2010.01.22 22:25:18 | 000,000,262 | ---- | M] () -- C:\Windows\lgfwup.ini [2010.01.22 22:20:17 | 000,000,245 | ---- | M] () -- C:\Windows\System32\APREG.url [2010.01.22 22:14:11 | 000,000,029 | ---- | M] () -- C:\Users\**\AppData\Roaming\default.rss [2010.01.22 22:11:27 | 000,000,000 | ---- | M] () -- C:\Users\**\AppData\Roaming\downloads.m3u [2010.01.22 22:05:15 | 000,000,000 | ---- | M] () -- C:\Windows\System32\drivers\Msft_Kernel_LHidFilt_01005.Wdf [2010.01.22 22:05:14 | 000,000,000 | ---- | M] () -- C:\Windows\System32\drivers\Msft_Kernel_LMouFilt_01005.Wdf [2010.01.22 22:05:02 | 000,000,000 | ---- | M] () -- C:\Windows\System32\drivers\Msft_Kernel_LHidEqd_01005.Wdf [2010.01.22 22:04:51 | 000,000,000 | ---- | M] () -- C:\Windows\System32\drivers\Msft_Kernel_LEqdUsb_01005.Wdf [2010.01.19 01:29:31 | 000,365,568 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\secproc_isv.dll [2010.01.19 01:29:31 | 000,085,504 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\secproc_ssp_isv.dll [2010.01.19 01:29:31 | 000,085,504 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\secproc_ssp.dll [2010.01.19 01:29:30 | 000,369,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\secproc.dll [2010.01.19 01:28:33 | 000,324,608 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\RMActivate_isv.exe [2010.01.19 01:28:33 | 000,277,504 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\RMActivate_ssp_isv.exe [2010.01.19 01:28:30 | 000,320,512 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\RMActivate.exe [2010.01.19 01:28:30 | 000,280,064 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\RMActivate_ssp.exe [2010.01.12 13:03:34 | 000,182,888 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvcod189.dll [2010.01.05 19:49:53 | 000,002,007 | ---- | M] () -- C:\Users\Public\Desktop\LightScribe.lnk [2010.01.05 18:59:29 | 000,015,600 | ---- | M] (Windows (R) 2000 DDK provider) -- C:\Windows\gdrv.sys [2010.01.05 17:11:30 | 000,002,042 | ---- | M] () -- C:\Users\Public\Desktop\Paragon Festplatten Manager™ 2009 Suite.lnk [2010.01.05 16:16:26 | 000,000,654 | ---- | M] () -- C:\Users\Public\Desktop\Winamp.lnk [2010.01.03 16:02:26 | 000,000,776 | ---- | M] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk [2010.01.03 13:34:40 | 000,000,499 | ---- | M] () -- C:\Windows\win.ini [2010.01.03 12:41:10 | 000,002,517 | ---- | M] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\FRITZ!DSL Startcenter.lnk [2010.01.02 19:33:06 | 000,603,904 | ---- | M] (TuneUp Software) -- C:\Windows\System32\TUProgSt.exe [2010.01.02 19:33:04 | 000,362,240 | ---- | M] (TuneUp Software) -- C:\Windows\System32\TuneUpDefragService.exe [2010.01.02 19:32:59 | 000,001,517 | ---- | M] () -- C:\Users\Public\Desktop\TuneUp 1-Click Maintenance.lnk [2010.01.02 19:32:57 | 000,001,441 | ---- | M] () -- C:\Users\Public\Desktop\TuneUp Utilities 2009.lnk [2010.01.02 19:29:44 | 000,000,677 | ---- | M] () -- C:\Users\Public\Desktop\IrfanView.lnk [2010.01.02 17:57:57 | 000,691,696 | ---- | M] (Duplex Secure Ltd.) -- C:\Windows\System32\drivers\sptd.sys [2010.01.02 17:32:55 | 000,000,725 | ---- | M] () -- C:\Users\Public\Desktop\WinRAR.lnk [2009.12.29 14:28:10 | 000,007,603 | ---- | M] () -- C:\Users\**\AppData\Local\resmon.resmoncfg [2009.12.21 13:36:16 | 000,000,148 | ---- | M] () -- C:\Windows\System32\AddPort.ini [2009.12.19 11:02:48 | 001,328,640 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\quartz.dll [2009.12.19 11:02:40 | 000,084,480 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mciavi32.dll [2009.12.19 11:02:01 | 000,091,648 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\avifil32.dll [2009.12.16 22:28:35 | 000,000,087 | RH-- | M] () -- C:\Windows\ctfile.rfc [2009.12.16 21:08:52 | 000,000,000 | ---- | M] () -- C:\Windows\System32\drivers\Msft_User_WpdFs_01_09_00.Wdf [2009.12.16 20:59:30 | 000,000,400 | ---- | M] () -- C:\Windows\ODBC.INI [2009.12.16 20:07:56 | 000,319,456 | ---- | M] (Microsoft Corporation) -- C:\Windows\DIFxAPI.dll [2009.12.13 23:23:18 | 000,524,288 | -HS- | M] () -- C:\Users\**\NTUSER.DAT{6cced2f1-6e01-11de-8bed-001e0bcd1824}.TMContainer00000000000000000002.regtrans-ms [2009.12.13 23:23:18 | 000,524,288 | -HS- | M] () -- C:\Users\**\NTUSER.DAT{6cced2f1-6e01-11de-8bed-001e0bcd1824}.TMContainer00000000000000000001.regtrans-ms [2009.12.13 23:23:18 | 000,065,536 | -HS- | M] () -- C:\Users\**\NTUSER.DAT{6cced2f1-6e01-11de-8bed-001e0bcd1824}.TM.blf [2009.12.13 22:58:35 | 000,000,020 | -HS- | M] () -- C:\Users\**\ntuser.ini [2009.12.13 22:53:42 | 000,054,699 | ---- | M] () -- C:\Windows\System32\license.rtf [2009.12.13 22:47:05 | 000,008,192 | RHS- | M] () -- C:\BOOTSECT.BAK [2009.12.13 11:30:50 | 000,465,408 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\psisdecd.dll [2009.12.11 09:44:02 | 000,133,720 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\ksecpkg.sys [2009.12.11 09:38:58 | 001,037,312 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\lsasrv.dll [2009.12.10 20:31:10 | 001,539,104 | ---- | M] (Realtek Semiconductor Corp.) -- C:\Windows\System32\RtkPgExt.dll [2009.12.10 20:31:10 | 000,551,456 | ---- | M] (Realtek Semiconductor Corp.) -- C:\Windows\System32\RTSndMgr.cpl [2009.12.10 20:31:04 | 000,367,136 | ---- | M] (Realtek Semiconductor Corp.) -- C:\Windows\System32\RtkApoApi.dll [2009.12.10 20:31:04 | 000,056,864 | ---- | M] (Realtek Semiconductor Corp.) -- C:\Windows\System32\RtkCoInst.dll [2009.12.10 20:30:58 | 002,796,576 | ---- | M] (Realtek Semiconductor Corp.) -- C:\Windows\System32\RtkAPO.dll [2009.12.10 18:33:34 | 002,975,904 | ---- | M] (Realtek Semiconductor Corp.) -- C:\Windows\System32\drivers\RTKVHDA.sys [2009.12.04 19:26:12 | 000,297,376 | ---- | M] (Fortemedia Corporation) -- C:\Windows\System32\FMAPO.dll [2009.12.04 16:43:54 | 000,132,368 | ---- | M] (Waves Audio Ltd.) -- C:\Windows\System32\MaxxAudioAPO.dll [2009.12.03 09:27:28 | 000,080,416 | ---- | M] () -- C:\Windows\System32\RtNicProp32.dll [2009.12.02 10:17:14 | 000,716,800 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\jscript.dll [2009.11.25 12:47:34 | 000,295,264 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\PresentationHost.exe [2009.11.25 12:47:34 | 000,099,176 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\PresentationHostProxy.dll [2009.11.25 12:47:34 | 000,049,472 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\netfxperf.dll [2009.11.24 18:40:20 | 000,838,176 | ---- | M] (Realtek Semiconductor Corp.) -- C:\Windows\RtlExUpd.dll [2009.11.24 10:55:08 | 000,345,328 | ---- | M] (SRS Labs, Inc.) -- C:\Windows\System32\SRSTSXT.dll [2009.11.24 10:55:08 | 000,185,584 | ---- | M] (SRS Labs, Inc.) -- C:\Windows\System32\SRSTSHD.dll [2009.11.24 10:55:08 | 000,173,296 | ---- | M] (SRS Labs, Inc.) -- C:\Windows\System32\SRSHP360.dll [2009.11.24 10:55:08 | 000,140,528 | ---- | M] (SRS Labs, Inc.) -- C:\Windows\System32\SRSWOW.dll [2009.11.18 19:42:48 | 001,938,704 | ---- | M] (Waves Audio Ltd.) -- C:\Windows\System32\MaxxAudioEQ.dll [2009.11.18 19:42:48 | 001,783,056 | ---- | M] (Waves Audio Ltd.) -- C:\Windows\System32\WavesLib.dll [2009.11.18 19:42:48 | 000,311,568 | ---- | M] (Waves Audio Ltd.) -- C:\Windows\System32\MaxxAudioAPO20.dll [2009.11.18 08:13:00 | 000,531,032 | ---- | M] (Creative Technology Ltd.) -- C:\Windows\System32\MBAPO32.dll [2009.11.18 08:13:00 | 000,050,776 | ---- | M] (Creative Technology Ltd.) -- C:\Windows\System32\MBPPCn32.dll [2009.11.18 08:12:00 | 000,068,696 | ---- | M] (Creative Technology Ltd.) -- C:\Windows\System32\MBWrp32.dll [2009.11.18 08:12:00 | 000,053,848 | ---- | M] (Creative Technology Ltd.) -- C:\Windows\System32\MBppld32.dll [2009.11.17 19:13:36 | 000,096,160 | ---- | M] (Andrea Electronics Corporation) -- C:\Windows\System32\AERTARen.dll [2009.11.17 19:10:14 | 000,146,336 | ---- | M] (Andrea Electronics Corporation) -- C:\Windows\System32\AERTACap.dll [2009.11.14 02:49:00 | 001,628,920 | ---- | M] (Sonic Solutions) -- C:\Windows\System32\pxsfs.dll [2009.11.14 02:49:00 | 000,551,672 | ---- | M] (Sonic Solutions) -- C:\Windows\System32\px.dll [2009.11.14 02:49:00 | 000,518,904 | ---- | M] (Sonic Solutions) -- C:\Windows\System32\pxdrv.dll [2009.11.14 02:49:00 | 000,379,640 | ---- | M] (Sonic Solutions) -- C:\Windows\System32\pxwave.dll [2009.11.14 02:49:00 | 000,187,128 | ---- | M] (Sonic Solutions) -- C:\Windows\System32\pxmas.dll [2009.11.14 02:49:00 | 000,129,784 | ---- | M] (Sonic Solutions) -- C:\Windows\System32\pxafs.dll [2009.11.14 02:49:00 | 000,088,824 | ---- | M] (Sonic Solutions) -- C:\Windows\System32\vxblock.dll [2009.11.14 02:49:00 | 000,072,440 | ---- | M] (Sonic Solutions) -- C:\Windows\System32\pxhpinst.exe [2009.11.14 02:49:00 | 000,066,296 | ---- | M] (Sonic Solutions) -- C:\Windows\System32\pxcpya64.exe [2009.11.14 02:49:00 | 000,064,760 | ---- | M] (Sonic Solutions) -- C:\Windows\System32\pxinsa64.exe [2009.11.14 02:47:32 | 000,090,112 | ---- | M] (DivX, Inc.) -- C:\Windows\System32\dpl100.dll [2009.11.14 02:47:28 | 000,856,064 | ---- | M] (DivX, Inc.) -- C:\Windows\System32\divx_xx0c.dll [2009.11.14 02:47:28 | 000,856,064 | ---- | M] (DivX, Inc.) -- C:\Windows\System32\divx_xx07.dll [2009.11.14 02:47:28 | 000,847,872 | ---- | M] (DivX, Inc.) -- C:\Windows\System32\divx_xx0a.dll [2009.11.14 02:47:28 | 000,843,776 | ---- | M] (DivX, Inc.) -- C:\Windows\System32\divx_xx16.dll [2009.11.14 02:47:28 | 000,839,680 | ---- | M] (DivX, Inc.) -- C:\Windows\System32\divx_xx11.dll [2009.11.14 02:47:28 | 000,696,320 | ---- | M] (DivX, Inc.) -- C:\Windows\System32\DivX.dll [2009.11.13 16:16:02 | 000,348,160 | ---- | M] (Dolby Laboratories, Inc.) -- C:\Windows\System32\RTEEP32A.dll [2009.11.13 16:16:02 | 000,165,376 | ---- | M] (Dolby Laboratories, Inc.) -- C:\Windows\System32\RTEED32A.dll [2009.11.13 16:16:02 | 000,073,216 | ---- | M] (Dolby Laboratories, Inc.) -- C:\Windows\System32\RTEEL32A.dll [2009.11.13 16:16:02 | 000,059,392 | ---- | M] (Dolby Laboratories, Inc.) -- C:\Windows\System32\RTEEG32A.dll [2009.11.03 14:07:06 | 001,970,176 | ---- | M] () -- C:\Windows\System32\d3dx9.dll [2009.11.03 14:07:06 | 000,679,936 | ---- | M] (Generated by JEDI) -- C:\Windows\System32\D3DX81ab.dll [2009.11.02 21:42:06 | 000,195,456 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\MpSigStub.exe [2009.10.31 07:45:39 | 002,614,272 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe [2009.10.19 16:10:20 | 000,108,544 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\t2embed.dll [2009.10.19 16:10:06 | 000,070,656 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\fontsub.dll [2009.09.28 00:12:22 | 000,795,104 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dpinst.exe [2009.09.28 00:12:22 | 000,170,600 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvcod167.dll [2009.09.28 00:12:22 | 000,014,646 | ---- | M] () -- C:\Windows\System32\nvdisp.nvu [2009.09.27 18:47:30 | 002,173,544 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvcplui.exe [2009.09.27 18:47:30 | 000,420,456 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvcpl.cpl [2009.09.27 18:47:00 | 004,033,128 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvvitvs.dll [2009.09.27 18:47:00 | 003,553,896 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvgames.dll [2009.09.27 18:47:00 | 003,172,968 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvwss.dll [2009.09.27 18:47:00 | 001,309,288 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvsvs.dll [2009.09.27 18:47:00 | 001,292,904 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvmobls.dll [2009.09.27 18:47:00 | 000,195,176 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvmccss.dll [2009.09.27 18:47:00 | 000,150,120 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvshext.dll [2009.09.27 18:46:00 | 004,942,440 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvdisps.dll [2009.09.03 09:04:15 | 001,320,960 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\CertEnroll.dll [2009.08.29 08:54:52 | 012,625,408 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wmploc.DLL [2009.08.26 17:47:04 | 000,028,160 | ---- | M] (Seiko Instruments Inc.) -- C:\Windows\System32\SlpLm.DLL ========== Files Created - No Company Name ========== [2010.08.13 17:44:28 | 000,026,624 | ---- | C] () -- D:\Virus Win32.doc [2010.08.11 05:58:16 | 000,001,425 | ---- | C] () -- C:\Users\**\Desktop\Malwarebytes' Anti-Malware - Verknüpfung.lnk [2010.08.09 22:10:44 | 000,000,658 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk [2010.08.08 14:18:36 | 000,016,968 | ---- | C] () -- C:\Windows\System32\drivers\hitmanpro35.sys [2010.08.08 14:16:56 | 000,001,960 | ---- | C] () -- C:\Users\Public\Desktop\Hitman Pro 3.5.lnk [2010.08.07 19:37:04 | 188,111,374 | ---- | C] () -- D:\07082010.reg [2010.08.07 19:24:43 | 000,002,039 | ---- | C] () -- C:\Users\**\Desktop\HijackThis.lnk [2010.08.05 19:03:25 | 000,002,517 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\FRITZ!DSL Startcenter.lnk [2010.08.05 18:51:33 | 000,001,029 | ---- | C] () -- C:\Users\Public\Desktop\Microsoft Security Essentials.lnk [2010.08.05 18:16:14 | 000,002,490 | ---- | C] () -- D:\cc_20100805_181611.reg [2010.07.26 20:14:13 | 000,001,263 | ---- | C] () -- C:\Users\**\Desktop\### DownThemAll ### - Verknüpfung.lnk [2010.07.25 17:04:18 | 000,000,911 | ---- | C] () -- C:\Users\**\Desktop\Spybot - Search & Destroy.lnk [2010.07.25 09:32:26 | 000,000,648 | ---- | C] () -- C:\Users\Public\Desktop\CloneDVD2.lnk [2010.07.09 17:40:50 | 000,001,181 | ---- | C] () -- C:\Users\**\Desktop\audiograbber.exe - Verknüpfung.lnk [2010.07.01 13:40:22 | 000,524,288 | -HS- | C] () -- C:\Users\**\NTUSER.DAT{13c9153f-8505-11df-b214-806e6f6e6963}.TMContainer00000000000000000002.regtrans-ms [2010.07.01 13:40:22 | 000,524,288 | -HS- | C] () -- C:\Users\**\NTUSER.DAT{13c9153f-8505-11df-b214-806e6f6e6963}.TMContainer00000000000000000001.regtrans-ms [2010.07.01 13:40:22 | 000,065,536 | -HS- | C] () -- C:\Users\**\NTUSER.DAT{13c9153f-8505-11df-b214-806e6f6e6963}.TM.blf [2010.07.01 13:39:23 | 000,000,000 | -HS- | C] () -- C:\Users\**\NTUSER.DAT_tureg_new.LOG2 [2010.07.01 13:39:23 | 000,000,000 | -HS- | C] () -- C:\Users\**\NTUSER.DAT_tureg_new.LOG1 [2010.06.30 12:41:39 | 000,000,577 | ---- | C] () -- C:\Users\**\artmoney.txt [2010.06.30 11:09:41 | 000,001,030 | ---- | C] () -- C:\Users\Public\Desktop\TuneUp 1-Klick-Wartung.lnk [2010.06.04 16:58:30 | 000,000,669 | ---- | C] () -- C:\Users\**\Desktop\ANSTOSS 2007.lnk [2010.06.03 17:03:42 | 000,000,771 | ---- | C] () -- C:\Users\**\Desktop\Summer Athletics.lnk [2010.05.28 22:53:14 | 000,025,643 | ---- | C] () -- C:\Windows\System32\TUProgSt_20100528-205314.dmp [2010.05.25 19:37:50 | 000,350,863 | ---- | C] () -- D:\bestellschein_freiumschlag.pdf [2010.05.14 12:10:31 | 000,001,466 | ---- | C] () -- C:\Users\**\.recently-used.xbel [2010.05.09 16:04:06 | 000,000,184 | ---- | C] () -- C:\Windows\System32\brsvc01a.bsi [2010.05.09 16:04:06 | 000,000,030 | ---- | C] () -- C:\Windows\System32\brss01a.ini [2010.05.09 15:41:35 | 000,000,000 | ---- | C] () -- C:\Windows\brmx2001.ini [2010.05.09 15:40:07 | 000,000,074 | ---- | C] () -- C:\Windows\Brownie.ini [2010.05.09 13:53:27 | 000,016,546 | ---- | C] () -- D:\cc_20100509_135325.reg [2010.05.09 13:52:52 | 000,001,019 | ---- | C] () -- C:\Users\**\Desktop\CCleaner.exe - Verknüpfung.lnk [2010.05.09 09:26:07 | 000,182,056 | ---- | C] () -- D:\cc_20100509_092603.reg [2010.05.06 21:05:06 | 000,000,066 | ---- | C] () -- C:\Windows\Brfaxrx.ini [2010.05.06 21:05:06 | 000,000,000 | ---- | C] () -- C:\Windows\brdfxspd.dat [2010.05.05 18:00:40 | 000,000,035 | -H-- | C] () -- D:\maxdesk.ini2 [2010.05.05 17:59:26 | 000,000,276 | -H-- | C] () -- D:\PP11Thumbs.ptn [2010.05.05 17:51:52 | 000,000,000 | RHS- | C] () -- C:\Windows\FFSSET.BIN [2010.05.05 17:45:22 | 000,000,315 | ---- | C] () -- C:\Windows\Brpfx04a.ini [2010.05.05 17:45:22 | 000,000,161 | ---- | C] () -- C:\Windows\brpcfx.ini [2010.05.05 17:42:38 | 000,000,425 | ---- | C] () -- C:\Windows\BRWMARK.INI [2010.05.05 17:42:38 | 000,000,027 | ---- | C] () -- C:\Windows\BRPP2KA.INI [2010.05.05 17:35:41 | 000,000,050 | ---- | C] () -- C:\Windows\System32\bridf08b.dat [2010.05.05 17:35:28 | 000,106,496 | ---- | C] () -- C:\Windows\System32\BrMuSNMP.dll [2010.05.05 17:33:29 | 000,031,864 | ---- | C] () -- C:\Windows\maxlink.ini [2010.04.08 18:55:42 | 000,001,733 | ---- | C] () -- C:\Users\Public\Desktop\Adobe Reader 9.lnk [2010.04.03 22:55:32 | 000,007,772 | ---- | C] () -- C:\Windows\System32\nvinfo.pb [2010.04.03 18:26:56 | 000,276,196 | ---- | C] () -- C:\Windows\System32\NvApps.xml [2010.04.03 18:26:56 | 000,066,714 | ---- | C] () -- C:\Windows\System32\NvwsApps.xml [2010.03.12 17:36:09 | 001,970,176 | ---- | C] () -- C:\Windows\System32\d3dx9.dll [2010.03.11 11:48:30 | 000,000,889 | ---- | C] () -- C:\Users\**\Desktop\Bioshock-MCE.lnk [2010.03.06 17:04:53 | 000,000,751 | ---- | C] () -- C:\Users\Public\Desktop\Dark Messiah.lnk [2010.02.12 20:54:40 | 000,000,670 | ---- | C] () -- C:\Users\**\Desktop\JDownloader.lnk [2010.02.07 18:40:05 | 000,001,259 | ---- | C] () -- C:\Users\**\Desktop\MP3Collector.exe - Verknüpfung.lnk [2010.02.06 15:59:17 | 000,281,760 | ---- | C] () -- C:\Windows\System32\drivers\atksgt.sys [2010.02.06 15:59:17 | 000,025,888 | ---- | C] () -- C:\Windows\System32\drivers\lirsgt.sys [2010.01.22 23:04:45 | 000,000,872 | ---- | C] () -- C:\Users\Public\Desktop\CyberLink PowerDVD.lnk [2010.01.22 22:24:41 | 000,000,262 | ---- | C] () -- C:\Windows\lgfwup.ini [2010.01.22 22:20:17 | 000,000,245 | ---- | C] () -- C:\Windows\System32\APREG.url [2010.01.22 22:11:27 | 000,000,000 | ---- | C] () -- C:\Users\**\AppData\Roaming\downloads.m3u [2010.01.22 22:05:15 | 000,000,000 | ---- | C] () -- C:\Windows\System32\drivers\Msft_Kernel_LHidFilt_01005.Wdf [2010.01.22 22:05:14 | 000,000,000 | ---- | C] () -- C:\Windows\System32\drivers\Msft_Kernel_LMouFilt_01005.Wdf [2010.01.22 22:05:02 | 000,000,000 | ---- | C] () -- C:\Windows\System32\drivers\Msft_Kernel_LHidEqd_01005.Wdf [2010.01.22 22:04:51 | 000,000,000 | ---- | C] () -- C:\Windows\System32\drivers\Msft_Kernel_LEqdUsb_01005.Wdf [2010.01.05 19:49:53 | 000,002,007 | ---- | C] () -- C:\Users\Public\Desktop\LightScribe.lnk [2010.01.05 18:19:15 | 000,000,984 | ---- | C] () -- C:\Users\Public\Desktop\TuneUp Utilities.lnk [2010.01.05 17:11:30 | 000,002,042 | ---- | C] () -- C:\Users\Public\Desktop\Paragon Festplatten Manager™ 2009 Suite.lnk [2010.01.05 16:16:26 | 000,000,654 | ---- | C] () -- C:\Users\Public\Desktop\Winamp.lnk [2010.01.03 16:02:26 | 000,000,776 | ---- | C] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk [2010.01.02 19:32:59 | 000,001,517 | ---- | C] () -- C:\Users\Public\Desktop\TuneUp 1-Click Maintenance.lnk [2010.01.02 19:32:57 | 000,001,441 | ---- | C] () -- C:\Users\Public\Desktop\TuneUp Utilities 2009.lnk [2010.01.02 19:29:44 | 000,000,677 | ---- | C] () -- C:\Users\Public\Desktop\IrfanView.lnk [2009.12.29 23:10:23 | 000,055,022 | ---- | C] () -- C:\Users\**\DesktopStCenter.txt [2009.12.29 12:32:36 | 000,007,603 | ---- | C] () -- C:\Users\**\AppData\Local\resmon.resmoncfg [2009.12.22 19:18:25 | 000,000,858 | ---- | C] () -- C:\Users\**\Desktop\LaLa - Verknüpfung.lnk [2009.12.21 14:03:04 | 000,000,029 | ---- | C] () -- C:\Users\**\AppData\Roaming\default.rss [2009.12.21 13:51:07 | 000,000,725 | ---- | C] () -- C:\Users\Public\Desktop\WinRAR.lnk [2009.12.21 13:36:16 | 000,000,148 | ---- | C] () -- C:\Windows\System32\AddPort.ini [2009.12.16 22:28:35 | 000,146,432 | ---- | C] () -- C:\Windows\System32\APOMngr.DLL [2009.12.16 22:28:35 | 000,072,704 | ---- | C] () -- C:\Windows\System32\CmdRtr.DLL [2009.12.16 22:28:35 | 000,000,087 | RH-- | C] () -- C:\Windows\ctfile.rfc [2009.12.16 21:08:52 | 000,000,000 | ---- | C] () -- C:\Windows\System32\drivers\Msft_User_WpdFs_01_09_00.Wdf [2009.12.16 20:59:29 | 000,000,400 | ---- | C] () -- C:\Windows\ODBC.INI [2009.12.13 22:58:35 | 007,340,032 | ---- | C] () -- C:\Users\**\NTUSER.DAT [2009.12.13 22:58:35 | 003,670,016 | -HS- | C] () -- C:\Users\**\NTUSER.DAT_tureg_old [2009.12.13 22:58:35 | 000,524,288 | -HS- | C] () -- C:\Users\**\NTUSER.DAT{6cced2f1-6e01-11de-8bed-001e0bcd1824}.TMContainer00000000000000000002.regtrans-ms [2009.12.13 22:58:35 | 000,524,288 | -HS- | C] () -- C:\Users\**\NTUSER.DAT{6cced2f1-6e01-11de-8bed-001e0bcd1824}.TMContainer00000000000000000001.regtrans-ms [2009.12.13 22:58:35 | 000,262,144 | -HS- | C] () -- C:\Users\**\ntuser.dat.LOG1 [2009.12.13 22:58:35 | 000,065,536 | -HS- | C] () -- C:\Users\**\NTUSER.DAT{6cced2f1-6e01-11de-8bed-001e0bcd1824}.TM.blf [2009.12.13 22:58:35 | 000,000,020 | -HS- | C] () -- C:\Users\**\ntuser.ini [2009.12.13 22:58:35 | 000,000,000 | -HS- | C] () -- C:\Users\**\ntuser.dat.LOG2 [2009.12.13 22:47:05 | 000,008,192 | RHS- | C] () -- C:\BOOTSECT.BAK [2009.12.13 22:47:04 | 000,383,562 | RHS- | C] () -- C:\bootmgr [2009.12.03 09:27:28 | 000,080,416 | ---- | C] () -- C:\Windows\System32\RtNicProp32.dll [2009.09.28 00:12:22 | 000,014,646 | ---- | C] () -- C:\Windows\System32\nvdisp.nvu [2009.07.14 01:51:43 | 000,073,728 | ---- | C] () -- C:\Windows\System32\BthpanContextHandler.dll [2009.07.14 01:42:10 | 000,064,000 | ---- | C] () -- C:\Windows\System32\BWContextHandler.dll [2009.07.14 01:24:05 | 000,032,256 | ---- | C] () -- C:\Windows\System32\drivers\discache.sys [2007.06.22 04:59:38 | 000,090,112 | ---- | C] () -- C:\Windows\System32\dlbkcur.dll [2007.03.21 14:41:20 | 000,413,696 | ---- | C] () -- C:\Windows\System32\dlbkutil.dll [2007.02.22 23:32:00 | 000,344,064 | ---- | C] () -- C:\Windows\System32\dlbkcoin.dll [2007.02.07 23:58:00 | 000,039,899 | ---- | C] () -- C:\Windows\System32\rtsicis.ini [2006.02.18 09:16:04 | 000,036,864 | ---- | C] () -- C:\Windows\System32\SlpApi42.dll [2005.12.16 20:15:44 | 000,040,960 | ---- | C] () -- C:\Windows\System32\dlbkvs.dll [2005.09.13 22:27:08 | 000,061,440 | ---- | C] () -- C:\Windows\System32\dlbkcnv5.dll [2005.09.13 22:27:08 | 000,061,440 | ---- | C] () -- C:\Windows\System32\dlbkcnv4.dll [2005.02.05 16:29:17 | 000,286,208 | ---- | C] () -- C:\Windows\System32\CNCS232.DLL [2001.07.07 05:00:00 | 000,003,399 | ---- | C] () -- C:\Windows\System32\hptcpmon.ini < End of report > |
|
14.08.2010, 12:43
| #5 |
| | Virus Win32/Alureon.h verhindert Windowsupdate OTL EXTRAS Logfile: Code:
ATTFilter OTL Extras logfile created on: 14.08.2010 13:17:47 - Run 1
OTL by OldTimer - Version 3.2.9.1 Folder = D:\Eigene Dateien\Download\### DownThemAll ###\AntiVirensoftware
An unknown product (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7600.16385)
Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy
3,00 Gb Total Physical Memory | 3,00 Gb Available Physical Memory | 74,00% Memory free
6,00 Gb Paging File | 6,00 Gb Available in Paging File | 88,00% Paging File free
Paging file location(s): [Binary data over 100 bytes]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 19,53 Gb Total Space | 5,31 Gb Free Space | 27,20% Space Free | Partition Type: NTFS
Drive D: | 80,00 Gb Total Space | 36,36 Gb Free Space | 45,45% Space Free | Partition Type: NTFS
Drive E: | 97,65 Gb Total Space | 12,02 Gb Free Space | 12,30% Space Free | Partition Type: NTFS
Drive F: | 115,69 Gb Total Space | 40,52 Gb Free Space | 35,03% Space Free | Partition Type: NTFS
Drive G: | 385,76 Gb Total Space | 89,79 Gb Free Space | 23,28% Space Free | Partition Type: NTFS
H: Drive not present or media not loaded
I: Drive not present or media not loaded
Computer Name: CINDY
Current User Name: **
Logged in as Administrator.
Current Boot Mode: SafeMode with Networking
Scan Mode: Current user
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 360 Days
Output = Minimal
========== Extra Registry (SafeList) ==========
========== File Associations ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\System32\control.exe (Microsoft Corporation)
.hlp [@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation)
[HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- F:\Programme\Mozilla Firefox\firefox.exe (Mozilla Corporation)
========== Shell Spawning ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
htmlfile [edit] -- "F:\Program Files\Microsoft Office\Office12\msohtmed.exe" %1 (Microsoft Corporation)
htmlfile [print] -- "F:\Program Files\Microsoft Office\Office12\msohtmed.exe" /p %1 (Microsoft Corporation)
http [open] -- "E:\Programme\Mozilla Firefox\firefox.exe" -requestPending -osint -url "%1" File not found
https [open] -- "E:\Programme\Mozilla Firefox\firefox.exe" -requestPending -osint -url "%1" File not found
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation)
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [Browse with &IrfanView] -- "F:\Programme\IrfanView\i_view32.exe" "%1 /thumbs" (Irfan Skiljan)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [OneNote.Open] -- F:\PROGRA~2\MICROS~1\Office12\ONENOTE.EXE "%L" (Microsoft Corporation)
Directory [Winamp.Bookmark] -- "F:\Programme\WinAmp\winamp.exe" /BOOKMARK "%1" (Nullsoft)
Directory [Winamp.Enqueue] -- "F:\Programme\WinAmp\winamp.exe" /ADD "%1" (Nullsoft)
Directory [Winamp.Play] -- "F:\Programme\WinAmp\winamp.exe" "%1" (Nullsoft)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
========== Security Center Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 0
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = Reg Error: Unknown registry data type -- File not found
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
"DefaultOutboundAction" = 0
"DefaultInboundAction" = 1
"DisableUnicastResponsesToMulticastBroadcast" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
"DefaultOutboundAction" = 0
"DefaultInboundAction" = 1
========== Authorized Applications List ==========
========== HKEY_LOCAL_MACHINE Uninstall List ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{02570AE0-BEE0-4A6C-BE3F-D806E9F2EA17}" = ScanSoft PaperPort 11
"{0C826C5B-B131-423A-A229-C71B3CACCD6A}" = CDDRV_Installer
"{18143CE1-430E-4FF3-A44F-811FD2910929}" = LightScribe Template Designs - Mythology Pack 1
"{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}" = CyberLink Blu-ray Disc Suite
"{212748BB-0DA5-46DE-82A1-403736DC9F27}" = MSVC80_x86
"{22D90DD2-8654-4E8A-B2F1-B6B86A2BF390}" = CyberLink UDF Reader 5.0
"{26A24AE4-039D-4CA4-87B4-2F83216015FF}" = Java(TM) 6 Update 21
"{272F534A-29A8-40D4-8E0C-2A9A596F808D}" = LightScribe Template Designs - Tribal Pack 1
"{2B7A459D-4768-4072-BC7A-30FBC3C3D58D}" = Paragon Festplatten Manager™ 2009 Suite
"{2BC2781A-F7F6-452E-95EB-018A522F1B2C}" = PaperPort Image Printer
"{2CDB2DCD-1153-4ED4-9D0A-606231CEFE9A}" = LightScribe Template Designs - Art Pack 1
"{2D2D8FE2-605C-4D3C-B706-36E981E7EEF0}" = CyberLink BD Advisor 2.0
"{3101CB58-3482-4D21-AF1A-7057FC935355}" = KhalInstallWrapper
"{33CF58F5-48D8-4575-83D6-96F574E4D83A}" = Nero DriveSpeed
"{34610DE0-3C13-42CA-8E32-01FFA38AB6E8}" = PC Connectivity Solution
"{359CFC0A-BEB1-440D-95BA-CF63A86DA34F}" = Nero Recode
"{368BA326-73AD-4351-84ED-3C0A7A52CC53}" = Nero Rescue Agent
"{3A1B5D40-41E9-43FA-8C7B-A8667F5586EF}" = Gigabyte Raid Configurer
"{3C3901C5-3455-3E0A-A214-0B093A5070A6}" = Microsoft .NET Framework 4 Client Profile
"{3D3E663D-4E7E-4577-A560-7ECDDD45548A}" = PVSonyDll
"{40BF1E83-20EB-11D8-97C5-0009C5020658}" = CyberLink Power2Go
"{43E39830-1826-415D-8BAE-86845787B54B}" = Nero Vision
"{48D082B9-18F6-4426-AFAC-8B6A3E7021B1}" = Brother MFL-Pro Suite MFC-490CW
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4ECA4128-8B48-44A0-90E8-B93C6A69CE4B}" = LightScribe Template Designs - Music Pack 1
"{51F959A5-F537-44E7-976F-88B4F56E13DD}" = Smart Label Printer 6.9.2
"{55A29068-F2CE-456C-9148-C869879E2357}" = TuneUp Utilities 2009
"{56C049BE-79E9-4502-BEA7-9754A3E60F9B}" = neroxml
"{595A3116-40BB-4E0F-A2E8-D7951DA56270}" = NeroExpress
"{5EE7D259-D137-4438-9A5F-42F432EC0421}" = VC80CRTRedist - 8.0.50727.4053
"{6179550A-3E7C-499E-BCC9-9E8113E0A285}" = LG Tool Kit
"{62AC81F6-BDD3-4110-9D36-3E9EAAB40999}" = Nero CoverDesigner
"{6811CAA0-BF12-11D4-9EA1-0050BAE317E1}" = CyberLink PowerDVD
"{6AFCA4E1-9B78-3640-8F72-A7BF33448200}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{74A929E2-FBD8-4736-A84E-2ABBB2ABADF2}" = AVM FRITZ!DSL
"{7748AC8C-18E3-43BB-959B-088FAEA16FB2}" = Nero StartSmart
"{7829DB6F-A066-4E40-8912-CB07887C20BB}" = Nero BurnRights
"{7B63B2922B174135AFC0E1377DD81EC2}" = DivX Codec
"{7E84FAC8-C518-40F9-9807-7455301D6D25}" = SamsungConnectivityCableDriver
"{7EACD74C-147F-478C-9389-F9F52EE3C88A}" = LightScribe System Software
"{7EE873AF-46BB-4B5D-BA6F-CFE4B0566E22}" = TuneUp Utilities Language Pack (de-DE)
"{7FD71A9E-C4D3-42ED-A998-CDA8290C39A3}" = LightScribe Template Labeler
"{80E158EA-7181-40FE-A701-301CE6BE64AB}" = CyberLink MediaShow
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{84ED5482-CFB0-4DD9-BF18-489FFDACD18A}" = Microsoft Antimalware Service DE-DE Language Pack
"{869200DB-287A-4DC0-B02B-2B6787FBCD4C}" = Nero DiscSpeed
"{8ADFC4160D694100B5B8A22DE9DCABD9}" = DivX Player
"{90120000-0015-0407-0000-0000000FF1CE}" = Microsoft Office Access MUI (German) 2007
"{90120000-0016-0407-0000-0000000FF1CE}" = Microsoft Office Excel MUI (German) 2007
"{90120000-0018-0407-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (German) 2007
"{90120000-0019-0407-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (German) 2007
"{90120000-001A-0407-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (German) 2007
"{90120000-001B-0407-0000-0000000FF1CE}" = Microsoft Office Word MUI (German) 2007
"{90120000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2007
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-040C-0000-0000000FF1CE}" = Microsoft Office Proof (French) 2007
"{90120000-001F-0410-0000-0000000FF1CE}" = Microsoft Office Proof (Italian) 2007
"{90120000-002C-0407-0000-0000000FF1CE}" = Microsoft Office Proofing (German) 2007
"{90120000-0030-0000-0000-0000000FF1CE}" = Microsoft Office Enterprise 2007
"{90120000-0044-0407-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (German) 2007
"{90120000-006E-0407-0000-0000000FF1CE}" = Microsoft Office Shared MUI (German) 2007
"{90120000-00A1-0407-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (German) 2007
"{90120000-00BA-0407-0000-0000000FF1CE}" = Microsoft Office Groove MUI (German) 2007
"{9B2E8AF3-0BF6-4822-BF21-32D493319042}" = Component Checker
"{9E82B934-9A25-445B-B8DF-8012808074AC}" = Nero PhotoSnap
"{A209525B-3377-43F4-B886-32F6B6E7356F}" = Nero WaveEditor
"{A498D9EB-927B-459B-85D6-DD6EF8C2C564}" = erLT
"{A8E2EF8F-73EF-4DD8-BB38-31FCCAF50103}" = Dark Messiah
"{A8E7BE25-785A-45A6-ADA5-E263B6A3358E}" = HP Install Network Printer Wizard
"{A8F2089B-1F79-4BF6-B385-A2C2B0B9A74D}" = ImagXpress
"{AB6F6C80-1C35-4672-BDEF-F26FF214C409}" = Samsung PC Studio 7
"{AC76BA86-7AD7-1031-7B44-A93000000001}" = Adobe Reader 9.3.3 - Deutsch
"{B13A7C41581B411290FBC0395694E2A9}" = DivX Converter
"{B1ADF008-E898-4FE2-8A1F-690D9A06ACAF}" = DolbyFiles
"{B2EC4A38-B545-4A00-8214-13FE0E915E6D}" = Advertising Center
"{B4092C6D-E886-4CB2-BA68-FE5A88D31DE6}_is1" = Spybot - Search & Destroy
"{B5ECA6E5-C943-4A40-936B-8E16D5B233ED}" = LightScribe Template Designs - Grab Bag Pack 1
"{B7050CBDB2504B34BC2A9CA0A692CC29}" = DivX Plus Web Player
"{B78120A0-CF84-4366-A393-4D0A59BC546C}" = Menu Templates - Starter Kit
"{B7A0CE06-068E-11D6-97FD-0050BACBF861}" = CyberLink PowerProducer
"{BD5CA0DA-71AD-43DA-B19E-6EEE0C9ADC9A}" = Nero ControlCenter
"{C59C179C-668D-49A9-B6EA-0121CCFC1243}" = CyberLink LabelPrint
"{C5A7CB6C-E76D-408F-BA0E-85605420FE9D}" = SoundTrax
"{D025A639-B9C9-417D-8531-208859000AF8}" = NeroBurningROM
"{D1C70CF7-F2F3-4A15-ADE5-5DF1BA0739E1}" = LightScribe Template Designs - Bonus Pack 1
"{D3742F82-1C1A-4DCC-ABBD-0E7C3C0185CC}" = TuneUp Utilities
"{D9DCF92E-72EB-412D-AC71-3B01276E5F8B}" = Nero ShowTime
"{DE72186D-A4A5-4504-839C-B14FC3432DA1}" = LightScribe Template Designs - Fantasy Pack 1
"{E35A1183-F6D8-4DCA-A111-296AFFA00A5C}" = LightScribe Template Designs - Tattoo Pack 1
"{E498385E-1C51-459A-B45F-1721E37AA1A0}" = Movie Templates - Starter Kit
"{E62A1F01-07B7-4541-A835-EE5B0BF064C2}" = Microsoft Antimalware
"{E8A80433-302B-4FF1-815D-FCC8EAC482FF}" = Nero Installer
"{EF98A02A-1748-4762-9B7D-5ED1600520D5}" = Microsoft Security Essentials
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F1861F30-3419-44DB-B2A1-C274825698B3}" = Nero Disc Copy Gadget
"{F29B21BD-CAA6-445F-8EF7-A7E2B9D8B14E}" = Logitech SetPoint
"{F333A33D-125C-32A2-8DCE-5C5D14231E27}" = Visual C++ 2008 x86 Runtime - (v9.0.30729)
"{F333A33D-125C-32A2-8DCE-5C5D14231E27}.vc_x86runtime_30729_01" = Visual C++ 2008 x86 Runtime - v9.0.30729.01
"{F4933D9F-89CC-4CA9-B5B0-CF32968890C7}" = BookScan&Whiteboard Suite
"{F59205C8-E5FB-43F5-AAB2-16C1760D4F59}" = FaceFilter Studio Brother Edition
"{F750C986-5310-3A5A-95F8-4EC71C8AC01C}" = Microsoft .NET Framework 4 Client Profile DEU Language Pack
"{FA031DA5-05D0-4937-BD2B-DCEC47A2506B}_is1" = ANSTOSS 2007
"{fb3a7c8d-28a4-40c0-b0c6-cb8b566f6afd}" = Nero 9
"{FBCDFD61-7DCF-4E71-9226-873BA0053139}" = Nero InfoTool
"504244733D18C8F63FF584AEB290E3904E791693" = Windows-Treiberpaket - Nokia pccsmcfd (08/22/2008 7.0.0.0)
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"Adobe Shockwave Player" = Adobe Shockwave Player 11.5
"CloneDVD2" = CloneDVD2
"DivX Plus DirectShow Filters" = DivX Plus DirectShow Filters
"ENTERPRISE" = Microsoft Office Enterprise 2007
"HijackThis" = HijackThis 2.0.2
"HitmanPro35" = Hitman Pro 3.5
"InstallShield_{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}" = CyberLink Blu-ray Disc Suite
"InstallShield_{40BF1E83-20EB-11D8-97C5-0009C5020658}" = CyberLink Power2Go
"InstallShield_{80E158EA-7181-40FE-A701-301CE6BE64AB}" = CyberLink MediaShow
"InstallShield_{B7A0CE06-068E-11D6-97FD-0050BACBF861}" = CyberLink PowerProducer
"IrfanView" = IrfanView (remove only)
"Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Microsoft .NET Framework 4 Client Profile DEU Language Pack" = Microsoft .NET Framework 4 Client Profile DEU Language Pack
"Microsoft Security Essentials" = Microsoft Security Essentials
"Mozilla Firefox (3.5.6)" = Mozilla Firefox (3.5.6)
"MSC" = McAfee Internet Security
"Nannoid_is1" = Nannoid 1.0
"NVIDIA Display Control Panel" = NVIDIA Display Control Panel
"NVIDIA Drivers" = NVIDIA Drivers
"S.T.A.L.K.E.R. - Clear Sky_is1" = S.T.A.L.K.E.R. - Clear Sky [v1.0003]
"Samsung PC Studio 7" = Samsung PC Studio 7
"Spybot - Search & Destroy_is1" = Spybot - Search & Destroy 1.4
"Summer Athletics_is1" = Summer Athletics
"TuneUp Utilities" = TuneUp Utilities
"Winamp" = Winamp
"Wolfschanze II_is1" = Wolfschanze II (1.0)
========== HKEY_CURRENT_USER Uninstall List ==========
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{E280923D-C5D9-4728-8C79-AC9A0DC75875}" = BioShock
"Mozilla Firefox (3.5.6)" = Mozilla Firefox (3.5.6)
"Mozilla Firefox (3.6.3)" = Mozilla Firefox (3.6.3)
"Mozilla Thunderbird (3.0.6)" = Mozilla Thunderbird (3.0.6)
========== Last 10 Event Log Errors ==========
[ Application Events ]
Error - 10.08.2010 15:10:32 | Computer Name = Cindy | Source = Brother BrLog | ID = 1001
Description = STI BrtSTI: [2010/08/10 21:10:32.495]: [00002380]: GetDeviceIpAddress:
GetAddressByName [MFC490-WLAN] Error
Error - 10.08.2010 15:11:07 | Computer Name = Cindy | Source = Brother BrLog | ID = 1001
Description = STI BrtSTI: [2010/08/10 21:11:07.720]: [00002380]: GetDeviceIpAddress:
GetAddressByName [MFC490-WLAN] Error
Error - 10.08.2010 15:11:42 | Computer Name = Cindy | Source = Brother BrLog | ID = 1001
Description = STI BrtSTI: [2010/08/10 21:11:42.945]: [00002380]: GetDeviceIpAddress:
GetAddressByName [MFC490-WLAN] Error
Error - 10.08.2010 15:12:18 | Computer Name = Cindy | Source = Brother BrLog | ID = 1001
Description = STI BrtSTI: [2010/08/10 21:12:18.170]: [00002380]: GetDeviceIpAddress:
GetAddressByName [MFC490-WLAN] Error
Error - 10.08.2010 15:12:53 | Computer Name = Cindy | Source = Brother BrLog | ID = 1001
Description = STI BrtSTI: [2010/08/10 21:12:53.395]: [00002380]: GetDeviceIpAddress:
GetAddressByName [MFC490-WLAN] Error
Error - 10.08.2010 15:13:28 | Computer Name = Cindy | Source = Brother BrLog | ID = 1001
Description = STI BrtSTI: [2010/08/10 21:13:28.620]: [00002380]: GetDeviceIpAddress:
GetAddressByName [MFC490-WLAN] Error
Error - 10.08.2010 15:14:03 | Computer Name = Cindy | Source = Brother BrLog | ID = 1001
Description = STI BrtSTI: [2010/08/10 21:14:03.844]: [00002380]: GetDeviceIpAddress:
GetAddressByName [MFC490-WLAN] Error
Error - 10.08.2010 15:14:39 | Computer Name = Cindy | Source = Brother BrLog | ID = 1001
Description = STI BrtSTI: [2010/08/10 21:14:39.069]: [00002380]: GetDeviceIpAddress:
GetAddressByName [MFC490-WLAN] Error
Error - 10.08.2010 15:15:14 | Computer Name = Cindy | Source = Brother BrLog | ID = 1001
Description = STI BrtSTI: [2010/08/10 21:15:14.294]: [00002380]: GetDeviceIpAddress:
GetAddressByName [MFC490-WLAN] Error
Error - 10.08.2010 15:15:49 | Computer Name = Cindy | Source = Brother BrLog | ID = 1001
Description = STI BrtSTI: [2010/08/10 21:15:49.519]: [00002380]: GetDeviceIpAddress:
GetAddressByName [MFC490-WLAN] Error
[ OSession Events ]
Error - 30.06.2010 06:12:11 | Computer Name = Cindy | Source = Microsoft Office 12 Sessions | ID = 7001
Description = ID: 0, Application Name: Microsoft Office Word, Application Version:
12.0.6425.1000, Microsoft Office Version: 12.0.6425.1000. This session lasted 3564
seconds with 60 seconds of active time. This session ended with a crash.
[ System Events ]
Error - 14.08.2010 06:57:25 | Computer Name = Cindy | Source = Service Control Manager | ID = 7001
Description = Der Dienst "Computerbrowser" ist vom Dienst "Server" abhängig, der
aufgrund folgenden Fehlers nicht gestartet wurde: %%1068
Error - 14.08.2010 06:57:25 | Computer Name = Cindy | Source = Service Control Manager | ID = 7001
Description = Der Dienst "Computerbrowser" ist vom Dienst "Server" abhängig, der
aufgrund folgenden Fehlers nicht gestartet wurde: %%1068
Error - 14.08.2010 06:57:25 | Computer Name = Cindy | Source = Service Control Manager | ID = 7001
Description = Der Dienst "Computerbrowser" ist vom Dienst "Server" abhängig, der
aufgrund folgenden Fehlers nicht gestartet wurde: %%1068
Error - 14.08.2010 06:57:25 | Computer Name = Cindy | Source = Service Control Manager | ID = 7001
Description = Der Dienst "Computerbrowser" ist vom Dienst "Server" abhängig, der
aufgrund folgenden Fehlers nicht gestartet wurde: %%1068
Error - 14.08.2010 06:57:28 | Computer Name = Cindy | Source = DCOM | ID = 10005
Description =
Error - 14.08.2010 06:57:27 | Computer Name = Cindy | Source = Service Control Manager | ID = 7001
Description = Der Dienst "Computerbrowser" ist vom Dienst "Server" abhängig, der
aufgrund folgenden Fehlers nicht gestartet wurde: %%1068
Error - 14.08.2010 06:57:27 | Computer Name = Cindy | Source = Service Control Manager | ID = 7001
Description = Der Dienst "Computerbrowser" ist vom Dienst "Server" abhängig, der
aufgrund folgenden Fehlers nicht gestartet wurde: %%1068
Error - 14.08.2010 06:57:27 | Computer Name = Cindy | Source = Service Control Manager | ID = 7001
Description = Der Dienst "Computerbrowser" ist vom Dienst "Server" abhängig, der
aufgrund folgenden Fehlers nicht gestartet wurde: %%1068
Error - 14.08.2010 07:00:57 | Computer Name = Cindy | Source = DCOM | ID = 10005
Description =
Error - 14.08.2010 07:01:27 | Computer Name = Cindy | Source = DCOM | ID = 10005
Description =
[ TuneUp Events ]
Error - 09.08.2010 16:10:49 | Computer Name = Cindy | Source = TuneUp Program Statistics | ID = 131840
Description = SQL Error: near "anti": syntax error; when executing SQL: INSERT INTO
ActiveApps (Started, Exe, ProcID, Resumed) VALUES ('2010-08-09 22:10:49', '\device\harddiskvolume3\programme\malwarebytes'
anti-malware\mbam.exe','1300',0)
Error - 09.08.2010 16:11:44 | Computer Name = Cindy | Source = TuneUp Program Statistics | ID = 131840
Description = SQL Error: near "anti": syntax error; when executing SQL: INSERT INTO
ActiveApps (Started, Exe, ProcID, Resumed) VALUES ('2010-08-09 22:11:44', '\device\harddiskvolume3\programme\malwarebytes'
anti-malware\mbam.exe','1816',0)
Error - 10.08.2010 13:23:40 | Computer Name = Cindy | Source = TuneUp.UtilitiesSvc | ID = 300
Description =
Error - 10.08.2010 13:25:37 | Computer Name = Cindy | Source = TuneUp Program Statistics | ID = 131840
Description = SQL Error: near "anti": syntax error; when executing SQL: INSERT INTO
ActiveApps (Started, Exe, ProcID, Resumed) VALUES ('2010-08-10 19:25:37', '\device\harddiskvolume3\programme\malwarebytes'
anti-malware\mbam.exe','5684',0)
Error - 13.08.2010 10:54:41 | Computer Name = Cindy | Source = TuneUp.UtilitiesSvc | ID = 300
Description =
Error - 13.08.2010 10:57:25 | Computer Name = Cindy | Source = TuneUp Program Statistics | ID = 131840
Description = SQL Error: near "anti": syntax error; when executing SQL: INSERT INTO
ActiveApps (Started, Exe, ProcID, Resumed) VALUES ('2010-08-13 16:57:25', '\device\harddiskvolume3\programme\malwarebytes'
anti-malware\mbam.exe','5076',0)
Error - 13.08.2010 11:11:34 | Computer Name = Cindy | Source = TuneUp.UtilitiesSvc | ID = 300
Description =
Error - 13.08.2010 11:12:26 | Computer Name = Cindy | Source = TuneUp Program Statistics | ID = 131840
Description = SQL Error: near "anti": syntax error; when executing SQL: INSERT INTO
ActiveApps (Started, Exe, ProcID, Resumed) VALUES ('2010-08-13 17:12:26', '\device\harddiskvolume3\programme\malwarebytes'
anti-malware\mbam.exe','5684',0)
Error - 13.08.2010 14:48:18 | Computer Name = Cindy | Source = TuneUp.UtilitiesSvc | ID = 300
Description =
Error - 14.08.2010 05:59:05 | Computer Name = Cindy | Source = TuneUp.UtilitiesSvc | ID = 300
Description =
< End of report >
|
|
14.08.2010, 12:45
| #6 |
| | Virus Win32/Alureon.h verhindert Windowsupdate und mbam.log Malwarebytes' Anti-Malware 1.46 Malwarebytes Datenbank Version: 4424 Windows 6.1.7600 Internet Explorer 8.0.7600.16385 13.08.2010 19:29:26 mbam-log-2010-08-13 (19-29-26).txt Art des Suchlaufs: Vollständiger Suchlauf (C:\|D:\|E:\|F:\|G:\|) Durchsuchte Objekte: 401704 Laufzeit: 2 Stunde(n), 16 Minute(n), 56 Sekunde(n) Infizierte Speicherprozesse: 0 Infizierte Speichermodule: 0 Infizierte Registrierungsschlüssel: 0 Infizierte Registrierungswerte: 0 Infizierte Dateiobjekte der Registrierung: 0 Infizierte Verzeichnisse: 0 Infizierte Dateien: 0 Infizierte Speicherprozesse: (Keine bösartigen Objekte gefunden) Infizierte Speichermodule: (Keine bösartigen Objekte gefunden) Infizierte Registrierungsschlüssel: (Keine bösartigen Objekte gefunden) Infizierte Registrierungswerte: (Keine bösartigen Objekte gefunden) Infizierte Dateiobjekte der Registrierung: (Keine bösartigen Objekte gefunden) Infizierte Verzeichnisse: (Keine bösartigen Objekte gefunden) Infizierte Dateien: (Keine bösartigen Objekte gefunden) |
|
| Themen zu Virus Win32/Alureon.h verhindert Windowsupdate |
| essen, fehlermeldung, firefox, funktioniert, geleert, gestartet, hoffe, interne, internet, mcafee, microsoft, microsoft security, microsoft security essentials, neue, neuen, nicht mehr, problem, security, seite, tool, update, updaten, verhindert, versucht, virus, win, windowsupdate |
Linear-Darstellung
