Zurück   Trojaner-Board > Malware entfernen > Antiviren-, Firewall- und andere Schutzprogramme

Antiviren-, Firewall- und andere Schutzprogramme: Rechner verseucht ? macht was er will

Windows 7 Sämtliche Fragen zur Bedienung von Firewalls, Anti-Viren Programmen, Anti Malware und Anti Trojaner Software sind hier richtig. Dies ist ein Diskussionsforum für Sicherheitslösungen für Windows Rechner. Benötigst du Hilfe beim Trojaner entfernen oder weil du dir einen Virus eingefangen hast, erstelle ein Thema in den oberen Bereinigungsforen.

Antwort
Alt 06.09.2010, 08:11   #1
Aike
 
Rechner verseucht ? macht was er will - Standard

Rechner verseucht ? macht was er will



Hi erstmal.
Ich habe ein rießen problem.
Mein Rechner macht was er will.
Habe Windows 7 64bit.
Avira Antivir und Spyware Doctor.
Also ich beschreib mal das problem.
Er öffnet z.b den Taschenrechner einfach,öffnet den Windows Mediaplayer,stellt groß/klein Buchstaben einfach um,
fährt den Rechner selber runter !
schreibt selber Buchstaben wenn ich schreiben will.
Habe mit vielen programmen schon gesucht ob verseucht ist,aber zu finden ist nichts. was kann ich machen
(auser plattmachen)

Alt 06.09.2010, 14:19   #2
Aike
 
Rechner verseucht ? macht was er will - Standard

Rechner verseucht ? macht was er will



HiJackthis Logfile:
Code:
ATTFilter
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 14:16:21, on 06.09.2010
Platform: Unknown Windows (WinNT 6.01.3504)
MSIE: Internet Explorer v8.00 (8.00.7600.16385)
Boot mode: Normal

Running processes:
C:\Windows\Domino.exe
C:\Program Files (x86)\Analog Devices\SoundMAX\SoundMAX.exe
C:\Program Files (x86)\uTorrent\uTorrent.exe
C:\Program Files (x86)\ICQ7.2\ICQ.exe
C:\Program Files (x86)\IncrediMail\Bin\IncMail.exe
C:\Program Files (x86)\Samsung\Samsung PC Studio 7\PCSuite.exe
C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe
C:\Program Files (x86)\Analog Devices\Core\smax4pnp.exe
C:\Program Files (x86)\SlySoft\CloneCD\CloneCDTray.exe
C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe
C:\Program Files (x86)\IncrediMail\Bin\ImApp.exe
C:\Program Files (x86)\Lavasoft\Ad-Aware\AAWTray.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
C:\Program Files (x86)\Internet Explorer\iexplore.exe
C:\Program Files (x86)\Internet Explorer\iexplore.exe
C:\program files (x86)\avira\antivir desktop\avcenter.exe
C:\Program Files (x86)\Internet Explorer\iexplore.exe
C:\Users\Aike\Desktop\HiJackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://google.de/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = 
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = 
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = 
R3 - URLSearchHook: ICQToolBar - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Program Files (x86)\ICQ6Toolbar\ICQToolBar.dll
R3 - URLSearchHook: (no name) -  - (no file)
R3 - URLSearchHook: DVDVideoSoftTB Toolbar - {872b5b88-9db5-4310-bdd0-ac189557e5f5} - C:\Program Files (x86)\DVDVideoSoftTB\tbDVDV.dll
F2 - REG:system.ini: UserInit=C:\WINDOWS\SYSWOW64\userinit.exe,
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Browser Defender BHO - {2A0F3D1B-0909-4FF4-B272-609CCE6054E7} - C:\Program Files (x86)\Spyware Doctor\BDT\PCTBrowserDefender.dll
O2 - BHO: DVDVideoSoftTB Toolbar - {872b5b88-9db5-4310-bdd0-ac189557e5f5} - C:\Program Files (x86)\DVDVideoSoftTB\tbDVDV.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
O3 - Toolbar: PC Tools Browser Guard - {472734EA-242A-422B-ADF8-83D1E48CC825} - C:\Program Files (x86)\Spyware Doctor\BDT\PCTBrowserDefender.dll
O3 - Toolbar: ICQToolBar - {855F3B16-6D32-4FE6-8A56-BBB695989046} - C:\Program Files (x86)\ICQ6Toolbar\ICQToolBar.dll
O3 - Toolbar: DVDVideoSoftTB Toolbar - {872b5b88-9db5-4310-bdd0-ac189557e5f5} - C:\Program Files (x86)\DVDVideoSoftTB\tbDVDV.dll
O4 - HKLM\..\Run: [avgnt] "C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe" /min
O4 - HKLM\..\Run: [VirtualCloneDrive] "C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe" /s
O4 - HKLM\..\Run: [SoundMAXPnP] C:\Program Files (x86)\Analog Devices\Core\smax4pnp.exe
O4 - HKLM\..\Run: [MSIAfterburner] "C:\Program Files (x86)\MSI Afterburner\MSIAfterburnerWrapper.exe" /s
O4 - HKLM\..\Run: [CloneCDTray] "C:\Program Files (x86)\SlySoft\CloneCD\CloneCDTray.exe" /s
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [uTorrent] "C:\Program Files (x86)\uTorrent\uTorrent.exe"
O4 - HKCU\..\Run: [ICQ] "C:\Program Files (x86)\ICQ7.2\ICQ.exe" silent loginmode=4
O4 - HKCU\..\Run: [IncrediMail] C:\Program Files (x86)\IncrediMail\bin\IncMail.exe /c
O4 - HKCU\..\Run: [S60 PC Suite Tray] "C:\Program Files (x86)\Samsung\Samsung PC Studio 7\PCSuite.exe" -onlytray
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOKALER DIENST')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOKALER DIENST')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETZWERKDIENST')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETZWERKDIENST')
O4 - HKUS\S-1-5-18\..\Run: [Samsung.PCSync] "C:\Program Files (x86)\Samsung\Samsung PC Studio 7\PcSync2.exe" /NoDialog (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [Samsung.PCSync] "C:\Program Files (x86)\Samsung\Samsung PC Studio 7\PcSync2.exe" /NoDialog (User 'Default user')
O8 - Extra context menu item: Free YouTube to Mp3 Converter - C:\Users\Aike\AppData\Roaming\DVDVideoSoftIEHelpers\youtubetomp3.htm
O9 - Extra button: ICQ7.2 - {72EFBFE4-C74F-4187-AEFD-73EA3BE968D6} - C:\Program Files (x86)\ICQ7.2\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ7.2 - {72EFBFE4-C74F-4187-AEFD-73EA3BE968D6} - C:\Program Files (x86)\ICQ7.2\ICQ.exe
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\Windows\bdoscandel.exe
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\Windows\bdoscandel.exe
O9 - Extra button: Klicke hier um das Projekt xp-AntiSpy zu unterstützen - {0e921e80-267a-42aa-aee4-60b9a1222a44} - C:\Program Files (x86)\xp-AntiSpy\sponsoring\sponsor.html (HKCU)
O9 - Extra 'Tools' menuitem: Unterstützung für xp-AntiSpy - {0e921e80-267a-42aa-aee4-60b9a1222a44} - C:\Program Files (x86)\xp-AntiSpy\sponsoring\sponsor.html (HKCU)
O10 - Unknown file in Winsock LSP: c:\program files\nvidia corporation\networkaccessmanager\bin32\nvlsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\nvidia corporation\networkaccessmanager\bin32\nvlsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\nvidia corporation\networkaccessmanager\bin32\nvlsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\nvidia corporation\networkaccessmanager\bin32\nvlsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\nvidia corporation\networkaccessmanager\bin32\nvlsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\nvidia corporation\networkaccessmanager\bin32\nvlsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\nvidia corporation\networkaccessmanager\bin32\nvlsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\nvidia corporation\networkaccessmanager\bin32\nvlsp.dll
O13 - Gopher Prefix: 
O16 - DPF: {1E54D648-B804-468d-BC78-4AFFED8E262F} (System Requirements Lab) - hxxp://www.nvidia.com/content/DriverDownload/srl/3.0.0.4/srl_bin/sysreqlab_nvd.cab
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - hxxp://download.bitdefender.com/resources/scanner/sources/de/scan8/oscan8.cab
O16 - DPF: {74DBCB52-F298-4110-951D-AD2FF67BC8AB} (NVIDIA Smart Scan) - hxxp://www.nvidia.com/content/DriverDownload/nforce/NvidiaSmartScan.cab
O16 - DPF: {C1FDEE68-98D5-4F42-A4DD-D0BECF5077EB} (EPUImageControl Class) - hxxp://tools.ebayimg.com/eps/wl/activex/eBay_Enhanced_Picture_Control_v1-0-31-0.cab
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: Avira AntiVir Planer (AntiVirSchedulerService) - Avira GmbH - C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
O23 - Service: Avira AntiVir Guard (AntiVirService) - Avira GmbH - C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
O23 - Service: Browser Defender Update Service - Threat Expert Ltd. - C:\Program Files (x86)\Spyware Doctor\BDT\BDTUpdateService.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: ForceWare Intelligent Application Manager (IAM) - Unknown owner - C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcAppFlt.exe
O23 - Service: ICQ Service - Unknown owner - C:\Program Files (x86)\ICQ6Toolbar\ICQ Service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Lavasoft Ad-Aware Service - Lavasoft - C:\Program Files (x86)\Lavasoft\Ad-Aware\AAWService.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: Nero BackItUp Scheduler 4.0 - Nero AG - C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: ForceWare IP service (nSvcIp) - Unknown owner - C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcIp.exe
O23 - Service: Performance Service (nTuneService) - NVIDIA - C:\Program Files (x86)\NVIDIA Corporation\nTune\nTuneService.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: PC Tools Auxiliary Service (sdAuxService) - PC Tools - C:\Program Files (x86)\Spyware Doctor\pctsAuxs.exe
O23 - Service: PC Tools Security Service (sdCoreService) - PC Tools - C:\Program Files (x86)\Spyware Doctor\pctsSvc.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 11559 bytes
         
--- --- ---
__________________


Alt 06.09.2010, 14:37   #3
cosinus
/// Winkelfunktion
/// TB-Süch-Tiger™
 
Rechner verseucht ? macht was er will - Standard

Rechner verseucht ? macht was er will



Hallo und

Eine Bereinigung ist mitunter mit viel Arbeit für Dich verbunden.
  • Bitte arbeite alle Schritte der Reihe nach ab.
  • Lies die Anleitungen sorgfältig. Sollte es Probleme geben, bitte stoppen und hier so gut es geht beschreiben.
  • Nur Scanns durchführen zu denen Du von einem Helfer aufgefordert wirst.
  • Bitte kein Crossposting ( posten in mehreren Foren).
  • Installiere oder Deinstalliere während der Bereinigung keine Software ausser Du wurdest dazu aufgefordert.
  • Lese Dir die Anleitung zuerst vollständig durch. Sollte etwas unklar sein, frage bevor Du beginnst.
  • Poste die Logfiles direkt in deinen Thread. Nicht anhängen ausser ich fordere Dich dazu auf. Erschwert mir nämlich das auswerten.

Hinweis: Ich kann Dir niemals eine Garantie geben, dass ich auch alles finde. Eine Formatierung ist meist der Schnellere und immer der sicherste Weg.
Solltest Du Dich für eine Bereinigung entscheiden, arbeite solange mit, bis dir jemand vom Team sagt, dass Du clean bist.

Vista und Win7 User
Alle Tools mit Rechtsklick "als Administrator ausführen" starten.



Bitte routinemäßig einen Vollscan mit Malwarebytes machen und Log posten.
Denk daran, dass Malwarebytes vor jedem Scan manuell aktualisiert werden muss!

Danach OTL:

Systemscan mit OTL

Lade Dir bitte OTL von Oldtimer herunter und speichere es auf Deinem Desktop
  • Doppelklick auf die OTL.exe
  • Vista User: Rechtsklick auf die OTL.exe und "als Administrator ausführen" wählen
  • Oben findest Du ein Kästchen mit Output. Wähle bitte Minimal Output
  • Unter Extra Registry, wähle bitte Use SafeList
  • Klicke nun auf Run Scan links oben
  • Wenn der Scan beendet wurde werden 2 Logfiles erstellt
  • Poste die Logfiles hier in den Thread.
__________________
__________________

Alt 06.09.2010, 16:15   #4
Aike
 
Rechner verseucht ? macht was er will - Standard

Rechner verseucht ? macht was er will



Malwarebytes' Anti-Malware 1.46
www.malwarebytes.org

Datenbank Version: 4554

Windows 6.1.7600
Internet Explorer 8.0.7600.16385

06.09.2010 16:13:26
mbam-log-2010-09-06 (16-13-26).txt

Art des Suchlaufs: Vollständiger Suchlauf (C:\|D:\|F:\|G:\|H:\|I:\|J:\|L:\|M:\|)
Durchsuchte Objekte: 309906
Laufzeit: 52 Minute(n), 38 Sekunde(n)

Infizierte Speicherprozesse: 0
Infizierte Speichermodule: 0
Infizierte Registrierungsschlüssel: 1
Infizierte Registrierungswerte: 0
Infizierte Dateiobjekte der Registrierung: 0
Infizierte Verzeichnisse: 0
Infizierte Dateien: 3

Infizierte Speicherprozesse:
(Keine bösartigen Objekte gefunden)

Infizierte Speichermodule:
(Keine bösartigen Objekte gefunden)

Infizierte Registrierungsschlüssel:
HKEY_CURRENT_USER\SOFTWARE\XBV6RD5SZF (Trojan.FakeAlert) -> Quarantined and deleted successfully.

Infizierte Registrierungswerte:
(Keine bösartigen Objekte gefunden)

Infizierte Dateiobjekte der Registrierung:
(Keine bösartigen Objekte gefunden)

Infizierte Verzeichnisse:
(Keine bösartigen Objekte gefunden)

Infizierte Dateien:
D:\Spiele Björn\Cracks\cod4 crack & serial\rzr-cod4.exe (Trojan.Agent.CK) -> Quarantined and deleted successfully.
J:\OO.DiskRecovery.v6.0.6298.German.Incl.Keymaker-ZWT\00 DiskRecovery v6.0.629\keygen.exe (Backdoor.RBot) -> Quarantined and deleted successfully.
J:\Spiele Björn\Cracks\cod4 crack & serial\rzr-cod4.exe (Trojan.Agent.CK) -> Quarantined and deleted successfully.

Alt 06.09.2010, 16:23   #5
Aike
 
Rechner verseucht ? macht was er will - Standard

Rechner verseucht ? macht was er will



OTL Logfile:
Code:
ATTFilter
OTL logfile created on: 06.09.2010 16:17:37 - Run 1
OTL by OldTimer - Version 3.2.11.0     Folder = C:\Users\Aike\Desktop
64bit- Ultimate Edition  (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7600.16385)
Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy
 
5,00 Gb Total Physical Memory | 2,00 Gb Available Physical Memory | 45,00% Memory free
10,00 Gb Paging File | 7,00 Gb Available in Paging File | 71,00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 244,14 Gb Total Space | 143,20 Gb Free Space | 58,66% Space Free | Partition Type: NTFS
Drive D: | 465,76 Gb Total Space | 370,01 Gb Free Space | 79,44% Space Free | Partition Type: NTFS
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded
Drive J: | 221,62 Gb Total Space | 110,93 Gb Free Space | 50,05% Space Free | Partition Type: NTFS
Drive L: | 488,28 Gb Total Space | 157,25 Gb Free Space | 32,20% Space Free | Partition Type: NTFS
Drive M: | 443,23 Gb Total Space | 359,45 Gb Free Space | 81,10% Space Free | Partition Type: NTFS
 
Computer Name: AIKE-PC
Current User Name: Aike
Logged in as Administrator.
 
Current Boot Mode: Normal
Scan Mode: Current user
Include 64bit Scans
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Minimal
 
========== Processes (SafeList) ==========
 
PRC - C:\Users\Aike\Desktop\OTL.exe (OldTimer Tools)
PRC - C:\Program Files (x86)\IncrediMail\Bin\IncMail.exe (IncrediMail, Ltd.)
PRC - C:\Program Files (x86)\IncrediMail\Bin\ImApp.exe (IncrediMail, Ltd.)
PRC - C:\Program Files (x86)\ICQ7.2\ICQ.exe (ICQ, LLC.)
PRC - C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation)
PRC - C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe (Mozilla Corporation)
PRC - C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe ()
PRC - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe (Malwarebytes Corporation)
PRC - C:\Program Files (x86)\Avira\AntiVir Desktop\setup.exe (Avira GmbH)
PRC - C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe (Avira GmbH)
PRC - C:\Program Files (x86)\ICQ6Toolbar\ICQ Service.exe ()
PRC - C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe (Avira GmbH)
PRC - C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe (Avira GmbH)
PRC - C:\program files (x86)\avira\antivir desktop\avcenter.exe (Avira GmbH)
PRC - C:\Program Files (x86)\Spyware Doctor\BDT\BDTUpdateService.exe (Threat Expert Ltd.)
PRC - C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe (Nero AG)
PRC - C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe (Elaborate Bytes AG)
PRC - C:\Program Files (x86)\Analog Devices\Core\smax4pnp.exe (Analog Devices, Inc.)
PRC - C:\Program Files (x86)\Analog Devices\SoundMAX\SoundMAX.exe (Analog Devices, Inc.)
PRC - C:\Program Files (x86)\SlySoft\CloneCD\CloneCDTray.exe (SlySoft, Inc.)
PRC - C:\Program Files (x86)\Samsung\Samsung PC Studio 7\PCSuite.exe ()
PRC - C:\Windows\Domino.exe ()
 
 
========== Modules (SafeList) ==========
 
MOD - C:\Users\Aike\Desktop\OTL.exe (OldTimer Tools)
MOD - C:\Windows\SysWOW64\msscript.ocx (Microsoft Corporation)
MOD - C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16385_none_421189da2b7fabfc\comctl32.dll (Microsoft Corporation)
 
 
========== Win32 Services (SafeList) ==========
 
SRV:64bit: - (UmRdpService) -- C:\Windows\SysNative\umrdp.dll (Microsoft Corporation)
SRV:64bit: - (PeerDistSvc) -- C:\Windows\SysNative\PeerDistSvc.dll (Microsoft Corporation)
SRV:64bit: - (CscService) -- C:\Windows\SysNative\cscsvc.dll (Microsoft Corporation)
SRV:64bit: - (AppMgmt) -- C:\Windows\SysNative\appmgmts.dll (Microsoft Corporation)
SRV:64bit: - (AEADIFilters) -- C:\Windows\SysNative\AEADISRV.EXE (Andrea Electronics Corporation)
SRV - (Lavasoft Ad-Aware Service) -- C:\Program Files (x86)\Lavasoft\Ad-Aware\AAWService.exe (Lavasoft)
SRV - (AntiVirService) -- C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe (Avira GmbH)
SRV - (ICQ Service) -- C:\Program Files (x86)\ICQ6Toolbar\ICQ Service.exe ()
SRV - (AntiVirSchedulerService) -- C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe (Avira GmbH)
SRV - (Browser Defender Update Service) -- C:\Program Files (x86)\Spyware Doctor\BDT\BDTUpdateService.exe (Threat Expert Ltd.)
SRV - (sdCoreService) -- C:\Program Files (x86)\Spyware Doctor\pctsSvc.exe (PC Tools)
SRV - (nTuneService) -- C:\Program Files (x86)\NVIDIA Corporation\nTune\nTuneService.exe (NVIDIA)
SRV - (sdAuxService) -- C:\Program Files (x86)\Spyware Doctor\pctsAuxs.exe (PC Tools)
SRV - (nSvcIp) -- C:\Programme\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcIp.exe ()
SRV - (ForceWare Intelligent Application Manager (IAM)) ForceWare Intelligent Application Manager (IAM) -- C:\Programme\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcAppFlt.exe ()
SRV - (SandraAgentSrv) -- C:\Programme\SiSoftware\SiSoftware Sandra Lite 2010.SP2\RpcAgentSrv.exe (SiSoftware)
SRV - (Nero BackItUp Scheduler 4.0) -- C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe (Nero AG)
SRV - (ServiceLayer) -- C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe (Nokia.)
 
 
========== Driver Services (SafeList) ==========
 
DRV:64bit: - (Lbd) -- C:\Windows\SysNative\drivers\Lbd.sys (Lavasoft AB)
DRV:64bit: - (avipbb) -- C:\Windows\SysNative\drivers\avipbb.sys (Avira GmbH)
DRV:64bit: - (avgntflt) -- C:\Windows\SysNative\drivers\avgntflt.sys (Avira GmbH)
DRV:64bit: - (ElbyCDIO) -- C:\Windows\SysNative\drivers\ElbyCDIO.sys (Elaborate Bytes AG)
DRV:64bit: - (PCTCore) -- C:\Windows\SysNative\drivers\PCTCore64.sys (PC Tools)
DRV:64bit: - (nvoclk64) -- C:\Windows\SysNative\drivers\nvoclk64.sys (NVIDIA Corp.)
DRV:64bit: - (VClone) -- C:\Windows\SysNative\drivers\VClone.sys (Elaborate Bytes AG)
DRV:64bit: - (NVNET) -- C:\Windows\SysNative\drivers\nvmf6264.sys (NVIDIA Corporation)
DRV:64bit: - (amdsata) -- C:\Windows\SysNative\drivers\amdsata.sys (Advanced Micro Devices)
DRV:64bit: - (amdxata) -- C:\Windows\SysNative\drivers\amdxata.sys (Advanced Micro Devices)
DRV:64bit: - (amdsbs) -- C:\Windows\SysNative\drivers\amdsbs.sys (AMD Technologies Inc.)
DRV:64bit: - (LSI_SAS2) -- C:\Windows\SysNative\drivers\lsi_sas2.sys (LSI Corporation)
DRV:64bit: - (HpSAMD) -- C:\Windows\SysNative\drivers\HpSAMD.sys (Hewlett-Packard Company)
DRV:64bit: - (vmbus) -- C:\Windows\SysNative\drivers\vmbus.sys (Microsoft Corporation)
DRV:64bit: - (storflt) -- C:\Windows\SysNative\drivers\vmstorfl.sys (Microsoft Corporation)
DRV:64bit: - (storvsc) -- C:\Windows\SysNative\drivers\storvsc.sys (Microsoft Corporation)
DRV:64bit: - (stexstor) -- C:\Windows\SysNative\drivers\stexstor.sys (Promise Technology)
DRV:64bit: - (s3cap) -- C:\Windows\SysNative\drivers\vms3cap.sys (Microsoft Corporation)
DRV:64bit: - (VMBusHID) -- C:\Windows\SysNative\drivers\VMBusHID.sys (Microsoft Corporation)
DRV:64bit: - (CSC) -- C:\Windows\SysNative\drivers\csc.sys (Microsoft Corporation)
DRV:64bit: - (athr) -- C:\Windows\SysNative\drivers\athrx.sys (Atheros Communications, Inc.)
DRV:64bit: - (Ntfs) -- C:\Windows\SysNative\wbem\ntfs.mof ()
DRV:64bit: - (NVENETFD) -- C:\Windows\SysNative\drivers\nvm62x64.sys (NVIDIA Corporation)
DRV:64bit: - (yukonw7) -- C:\Windows\SysNative\drivers\yk62x64.sys (Marvell)
DRV:64bit: - (ebdrv) -- C:\Windows\SysNative\drivers\evbda.sys (Broadcom Corporation)
DRV:64bit: - (b06bdrv) -- C:\Windows\SysNative\drivers\bxvbda.sys (Broadcom Corporation)
DRV:64bit: - (b57nd60a) -- C:\Windows\SysNative\drivers\b57nd60a.sys (Broadcom Corporation)
DRV:64bit: - (hcw85cir) -- C:\Windows\SysNative\drivers\hcw85cir.sys (Hauppauge Computer Works, Inc.)
DRV:64bit: - (ADIHdAudAddService) -- C:\Windows\SysNative\drivers\ADIHdAud.sys (Analog Devices, Inc.)
DRV:64bit: - (MTsensor) -- C:\Windows\SysNative\drivers\ASACPI.sys ()
DRV:64bit: - (USBModem) -- C:\Windows\SysNative\drivers\lgx64modem.sys (LG Electronics Inc.)
DRV:64bit: - (UsbDiag) -- C:\Windows\SysNative\drivers\lgx64diag.sys (LG Electronics Inc.)
DRV:64bit: - (usbbus) -- C:\Windows\SysNative\drivers\lgx64bus.sys (LG Electronics Inc.)
DRV:64bit: - (pccsmcfd) -- C:\Windows\SysNative\drivers\pccsmcfdx64.sys (Nokia)
DRV:64bit: - (nmwcdsax64) -- C:\Windows\SysNative\drivers\nmwcdsax64.sys (Nokia)
DRV:64bit: - (nmwcdsacjx64) -- C:\Windows\SysNative\drivers\nmwcdsacjx64.sys (Nokia)
DRV:64bit: - (nmwcdsacx64) -- C:\Windows\SysNative\drivers\nmwcdsacx64.sys (Nokia)
DRV:64bit: - (ZSMC301b) Vimicro USB PC Camera (ZC0301PL) -- C:\Windows\SysNative\drivers\usbVM31b.sys (Vimicro Corporation)
DRV:64bit: - (ElbyCDFL) -- C:\Windows\SysNative\drivers\ElbyCDFL.sys (SlySoft, Inc.)
DRV - (RTCore64) -- C:\Program Files (x86)\MSI Afterburner\RTCore64.sys ()
DRV - (SANDRA) -- C:\Programme\SiSoftware\SiSoftware Sandra Lite 2010.SP2\WNt500x64\sandra.sys (SiSoftware)
DRV - (ElbyCDFL) -- C:\Windows\SysWOW64\drivers\ElbyCDFL.sys (SlySoft, Inc.)
 
 
========== Standard Registry (SafeList) ==========
 
 
========== Internet Explorer ==========
 
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\..\URLSearchHook:  - Reg Error: Key error. File not found
IE - HKLM\..\URLSearchHook: {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Program Files (x86)\ICQ6Toolbar\ICQToolBar.dll (ICQ)
IE - HKLM\..\URLSearchHook: {872b5b88-9db5-4310-bdd0-ac189557e5f5} - C:\Program Files (x86)\DVDVideoSoftTB\tbDVDV.dll (Conduit Ltd.)
 
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = hxxp://google.de/
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://de.msn.com/?ocid=iehp
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = A0 84 47 9E 9E 43 CB 01  [binary data]
IE - HKCU\..\URLSearchHook:  - Reg Error: Key error. File not found
IE - HKCU\..\URLSearchHook: {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Program Files (x86)\ICQ6Toolbar\ICQToolBar.dll (ICQ)
IE - HKCU\..\URLSearchHook: {872b5b88-9db5-4310-bdd0-ac189557e5f5} - C:\Program Files (x86)\DVDVideoSoftTB\tbDVDV.dll (Conduit Ltd.)
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
========== FireFox ==========
 
FF - prefs.js..browser.search.defaultenginename: "MyStart Search"
FF - prefs.js..browser.search.selectedEngine: "MyStart Search"
FF - prefs.js..browser.startup.homepage: "hxxp://google.de"
FF - prefs.js..extensions.enabledItems: {ACAA314B-EEBA-48e4-AD47-84E31C44796C}:1.0.1
FF - prefs.js..extensions.enabledItems: {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}:1.2.2
FF - prefs.js..keyword.URL: "hxxp://mystart.incredimail.com/?loc=ff_address_bar_im2_test_v2&search="
 
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.8\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2010.08.24 17:12:54 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.8\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins [2010.01.31 09:04:26 | 000,000,000 | ---D | M]
 
[2010.08.24 17:13:07 | 000,000,000 | ---D | M] -- C:\Users\Aike\AppData\Roaming\mozilla\Extensions
[2010.09.05 21:58:48 | 000,000,000 | ---D | M] -- C:\Users\Aike\AppData\Roaming\mozilla\Firefox\Profiles\98hm4j65.default\extensions
[2010.08.29 12:13:35 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Aike\AppData\Roaming\mozilla\Firefox\Profiles\98hm4j65.default\extensions\{872b5b88-9db5-4310-bdd0-ac189557e5f5}
[2010.08.25 19:47:30 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Aike\AppData\Roaming\mozilla\Firefox\Profiles\98hm4j65.default\extensions\{ACAA314B-EEBA-48e4-AD47-84E31C44796C}
[2010.08.29 12:13:33 | 000,000,000 | ---D | M] (Adblock Plus) -- C:\Users\Aike\AppData\Roaming\mozilla\Firefox\Profiles\98hm4j65.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}
[2010.09.06 09:41:39 | 000,000,950 | ---- | M] () -- C:\Users\Aike\AppData\Roaming\Mozilla\FireFox\Profiles\98hm4j65.default\searchplugins\icqplugin-1.xml
[2010.09.02 08:16:51 | 000,001,056 | ---- | M] () -- C:\Users\Aike\AppData\Roaming\Mozilla\FireFox\Profiles\98hm4j65.default\searchplugins\icqplugin.xml
[2010.09.06 09:39:49 | 000,002,149 | ---- | M] () -- C:\Users\Aike\AppData\Roaming\Mozilla\FireFox\Profiles\98hm4j65.default\searchplugins\MyStart Search.xml
[2010.09.05 21:58:48 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\mozilla firefox\extensions
[2010.08.24 17:55:02 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files (x86)\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}
[2010.08.24 17:54:52 | 000,423,656 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files (x86)\mozilla firefox\plugins\npdeployJava1.dll
[2010.07.23 02:48:56 | 000,001,392 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\amazondotcom-de.xml
[2010.07.23 02:48:56 | 000,002,344 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\eBay-de.xml
[2010.07.23 02:48:56 | 000,006,805 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\leo_ende_de.xml
[2010.07.23 02:48:56 | 000,001,178 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\wikipedia-de.xml
[2010.07.23 02:48:56 | 000,001,105 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\yahoo-de.xml
 
O1 HOSTS File: ([2010.09.01 23:55:38 | 000,000,998 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 im.adtech.de
O1 - Hosts: 127.0.0.1 adserver.adtech.de
O1 - Hosts: 127.0.0.1 adtech.de
O1 - Hosts: 127.0.0.1 atwola.com
O1 - Hosts: 127.0.0.1 adserver.71i.de
O1 - Hosts: 127.0.0.1 adicqserver.71i.de
O1 - Hosts: 127.0.0.1 71i.de
O2 - BHO: (PC Tools Browser Guard BHO) - {2A0F3D1B-0909-4FF4-B272-609CCE6054E7} - C:\Program Files (x86)\Spyware Doctor\BDT\PCTBrowserDefender.dll (Threat Expert Ltd.)
O2 - BHO: (DVDVideoSoftTB Toolbar) - {872b5b88-9db5-4310-bdd0-ac189557e5f5} - C:\Program Files (x86)\DVDVideoSoftTB\tbDVDV.dll (Conduit Ltd.)
O3 - HKLM\..\Toolbar: (PC Tools Browser Guard) - {472734EA-242A-422B-ADF8-83D1E48CC825} - C:\Program Files (x86)\Spyware Doctor\BDT\PCTBrowserDefender.dll (Threat Expert Ltd.)
O3 - HKLM\..\Toolbar: (ICQToolBar) - {855F3B16-6D32-4FE6-8A56-BBB695989046} - C:\Program Files (x86)\ICQ6Toolbar\ICQToolBar.dll (ICQ)
O3 - HKLM\..\Toolbar: (DVDVideoSoftTB Toolbar) - {872b5b88-9db5-4310-bdd0-ac189557e5f5} - C:\Program Files (x86)\DVDVideoSoftTB\tbDVDV.dll (Conduit Ltd.)
O3 - HKCU\..\Toolbar\WebBrowser: (PC Tools Browser Guard) - {472734EA-242A-422B-ADF8-83D1E48CC825} - C:\Program Files (x86)\Spyware Doctor\BDT\PCTBrowserDefender.dll (Threat Expert Ltd.)
O3 - HKCU\..\Toolbar\WebBrowser: (DVDVideoSoftTB Toolbar) - {872B5B88-9DB5-4310-BDD0-AC189557E5F5} - C:\Program Files (x86)\DVDVideoSoftTB\tbDVDV.dll (Conduit Ltd.)
O4:64bit: - HKLM..\Run: [Domino] C:\Windows\Domino.exe ()
O4:64bit: - HKLM..\Run: [SoundMAX] C:\Program Files (x86)\Analog Devices\SoundMAX\soundmax.exe (Analog Devices, Inc.)
O4 - HKLM..\Run: [avgnt] C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe (Avira GmbH)
O4 - HKLM..\Run: [CloneCDTray] C:\Program Files (x86)\SlySoft\CloneCD\CloneCDTray.exe (SlySoft, Inc.)
O4 - HKLM..\Run: [ Malwarebytes Anti-Malware  (reboot)] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe (Malwarebytes Corporation)
O4 - HKLM..\Run: [MSIAfterburner] C:\Program Files (x86)\MSI Afterburner\MSIAfterburnerWrapper.exe ()
O4 - HKLM..\Run: [SoundMAXPnP] C:\Program Files (x86)\Analog Devices\Core\smax4pnp.exe (Analog Devices, Inc.)
O4 - HKLM..\Run: [VirtualCloneDrive] C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe (Elaborate Bytes AG)
O4 - HKCU..\Run: [ICQ] C:\Program Files (x86)\ICQ7.2\ICQ.exe (ICQ, LLC.)
O4 - HKCU..\Run: [IncrediMail] C:\Program Files (x86)\IncrediMail\bin\IncMail.exe (IncrediMail, Ltd.)
O4 - HKCU..\Run: [S60 PC Suite Tray] C:\Program Files (x86)\Samsung\Samsung PC Studio 7\PCSuite.exe ()
O4 - HKCU..\Run: [uTorrent] C:\Program Files (x86)\uTorrent\uTorrent.exe (BitTorrent, Inc.)
O4 - HKLM..\RunOnce: [Malwarebytes' Anti-Malware] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O8:64bit: - Extra context menu item: Free YouTube to Mp3 Converter - C:\Users\Aike\AppData\Roaming\DVDVideoSoftIEHelpers\youtubetomp3.htm ()
O8 - Extra context menu item: Free YouTube to Mp3 Converter - C:\Users\Aike\AppData\Roaming\DVDVideoSoftIEHelpers\youtubetomp3.htm ()
O9 - Extra Button: ICQ7.2 - {72EFBFE4-C74F-4187-AEFD-73EA3BE968D6} - C:\Program Files (x86)\ICQ7.2\ICQ.exe (ICQ, LLC.)
O9 - Extra 'Tools' menuitem : ICQ7.2 - {72EFBFE4-C74F-4187-AEFD-73EA3BE968D6} - C:\Program Files (x86)\ICQ7.2\ICQ.exe (ICQ, LLC.)
O10:64bit: - Protocol_Catalog9\Catalog_Entries\000000000001 - C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nvLsp.dll (NVIDIA)
O10:64bit: - Protocol_Catalog9\Catalog_Entries\000000000002 - C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nvLsp.dll (NVIDIA)
O10:64bit: - Protocol_Catalog9\Catalog_Entries\000000000003 - C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nvLsp.dll (NVIDIA)
O10:64bit: - Protocol_Catalog9\Catalog_Entries\000000000004 - C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nvLsp.dll (NVIDIA)
O10:64bit: - Protocol_Catalog9\Catalog_Entries\000000000005 - C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nvLsp.dll (NVIDIA)
O10:64bit: - Protocol_Catalog9\Catalog_Entries\000000000006 - C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nvLsp.dll (NVIDIA)
O10:64bit: - Protocol_Catalog9\Catalog_Entries\000000000017 - C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nvLsp.dll (NVIDIA)
O10:64bit: - Protocol_Catalog9\Catalog_Entries\000000000018 - C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nvLsp.dll (NVIDIA)
O10 - Protocol_Catalog9\Catalog_Entries\000000000001 - C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nvLsp.dll (NVIDIA)
O10 - Protocol_Catalog9\Catalog_Entries\000000000002 - C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nvLsp.dll (NVIDIA)
O10 - Protocol_Catalog9\Catalog_Entries\000000000003 - C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nvLsp.dll (NVIDIA)
O10 - Protocol_Catalog9\Catalog_Entries\000000000004 - C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nvLsp.dll (NVIDIA)
O10 - Protocol_Catalog9\Catalog_Entries\000000000005 - C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nvLsp.dll (NVIDIA)
O10 - Protocol_Catalog9\Catalog_Entries\000000000006 - C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nvLsp.dll (NVIDIA)
O10 - Protocol_Catalog9\Catalog_Entries\000000000017 - C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nvLsp.dll (NVIDIA)
O10 - Protocol_Catalog9\Catalog_Entries\000000000018 - C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nvLsp.dll (NVIDIA)
O13 - gopher Prefix: missing
O13 - gopher Prefix: missing
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_21-windows-i586.cab (Java Plug-in 1.6.0_21)
O16 - DPF: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_21-windows-i586.cab (Java Plug-in 1.6.0_21)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_21-windows-i586.cab (Reg Error: Key error.)
O16 - DPF: {1E54D648-B804-468d-BC78-4AFFED8E262F} hxxp://www.nvidia.com/content/DriverDownload/srl/3.0.0.4/srl_bin/sysreqlab_nvd.cab (System Requirements Lab Class)
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} hxxp://download.bitdefender.com/resources/scanner/sources/de/scan8/oscan8.cab (BDSCANONLINE Control)
O16 - DPF: {74DBCB52-F298-4110-951D-AD2FF67BC8AB} hxxp://www.nvidia.com/content/DriverDownload/nforce/NvidiaSmartScan.cab (NVIDIA Smart Scan)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_21-windows-i586.cab (Java Plug-in 1.6.0_21)
O16 - DPF: {C1FDEE68-98D5-4F42-A4DD-D0BECF5077EB} hxxp://tools.ebayimg.com/eps/wl/activex/eBay_Enhanced_Picture_Control_v1-0-31-0.cab (EPUImageControl Class)
O16 - DPF: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_21-windows-i586.cab (Java Plug-in 1.6.0_21)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_21-windows-i586.cab (Java Plug-in 1.6.0_21)
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (Reg Error: Key error.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\SysNative\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: VMApplet - (/pagefile) -  File not found
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\SysWow64\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (/pagefile) -  File not found
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009.08.31 17:23:58 | 000,000,000 | ---- | M] () - J:\AUTOEXEC.BAT -- [ NTFS ]
O33 - MountPoints2\{d6e5dfcf-af95-11df-9b04-002618249447}\Shell - "" = AutoRun
O33 - MountPoints2\{d6e5dfcf-af95-11df-9b04-002618249447}\Shell\AutoRun\command - "" = K:\setup.exe -- File not found
O34 - HKLM BootExecute: (autocheck autochk *) -  File not found
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
 
========== Files/Folders - Created Within 30 Days ==========
 
[2010.09.06 16:16:14 | 000,574,976 | ---- | C] (OldTimer Tools) -- C:\Users\Aike\Desktop\OTL.exe
[2010.09.06 15:16:52 | 000,000,000 | ---D | C] -- C:\Users\Aike\AppData\Roaming\Malwarebytes
[2010.09.06 15:16:47 | 000,038,224 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\SysWow64\drivers\mbamswissarmy.sys
[2010.09.06 15:16:46 | 000,024,664 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\SysNative\drivers\mbam.sys
[2010.09.06 15:16:46 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware
[2010.09.06 15:16:46 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2010.09.06 15:15:57 | 006,153,648 | ---- | C] (Malwarebytes Corporation                                    ) -- C:\Users\Aike\Desktop\mbam-setup.exe
[2010.09.06 11:29:27 | 000,000,000 | ---D | C] -- C:\Programme\Fighters
[2010.09.06 10:14:58 | 000,069,152 | ---- | C] (Lavasoft AB) -- C:\Windows\SysNative\drivers\Lbd.sys
[2010.09.06 10:07:27 | 000,000,000 | ---D | C] -- C:\Users\Aike\AppData\Local\Sunbelt Software
[2010.09.06 10:04:15 | 000,000,000 | -H-D | C] -- C:\ProgramData\{ECC164E0-3133-4C70-A831-F08DB2940F70}
[2010.09.06 10:04:11 | 000,000,000 | ---D | C] -- C:\ProgramData\Lavasoft
[2010.09.06 10:04:11 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Lavasoft
[2010.09.06 08:23:12 | 000,000,000 | ---D | C] -- C:\Windows\BDOSCAN8
[2010.09.05 22:42:51 | 012,402,120 | ---- | C] (Microsoft Corporation) -- C:\Users\Aike\Desktop\windows-kb890830-x64-v3.10.exe
[2010.09.05 17:11:09 | 000,000,000 | ---D | C] -- C:\Users\Aike\Desktop\Mono & Nikitaman
[2010.09.05 15:23:55 | 000,000,000 | ---D | C] -- C:\Users\Aike\Desktop\Polterabend
[2010.09.05 01:32:00 | 000,000,000 | ---D | C] -- C:\Users\Aike\Desktop\Hochzeit Nicole
[2010.09.02 20:41:42 | 000,000,000 | ---D | C] -- C:\ProgramData\SlySoft
[2010.09.02 20:41:30 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\SlySoft
[2010.09.02 18:08:30 | 000,000,000 | ---D | C] -- C:\Users\Aike\Desktop\The Dome 55
[2010.09.02 14:04:32 | 000,000,000 | ---D | C] -- C:\Users\Aike\AppData\Roaming\Multimedia Player
[2010.09.02 00:24:09 | 000,295,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\PresentationHost.exe
[2010.09.02 00:24:09 | 000,099,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\PresentationHostProxy.dll
[2010.09.02 00:24:08 | 001,942,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dfshim.dll
[2010.09.02 00:24:08 | 001,130,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dfshim.dll
[2010.09.02 00:24:08 | 000,320,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\PresentationHost.exe
[2010.09.02 00:24:08 | 000,109,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\PresentationHostProxy.dll
[2010.09.02 00:24:08 | 000,049,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\netfxperf.dll
[2010.09.02 00:24:08 | 000,048,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\netfxperf.dll
[2010.09.02 00:23:59 | 000,294,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\browserchoice.exe
[2010.09.01 23:45:46 | 000,289,144 | ---- | C] (S!Ri) -- C:\Windows\SysWow64\VCCLSID.exe
[2010.09.01 23:45:46 | 000,288,417 | ---- | C] (S!Ri) -- C:\Windows\SysWow64\SrchSTS.exe
[2010.09.01 23:45:46 | 000,135,168 | ---- | C] (SteelWerX) -- C:\Windows\SysWow64\swreg.exe
[2010.09.01 23:45:46 | 000,087,552 | ---- | C] (S!Ri.URZ) -- C:\Windows\SysWow64\VACFix.exe
[2010.09.01 23:45:46 | 000,082,944 | ---- | C] (S!Ri.URZ) -- C:\Windows\SysWow64\IEDFix.exe
[2010.09.01 23:45:46 | 000,082,944 | ---- | C] (S!Ri.URZ) -- C:\Windows\SysWow64\IEDFix.C.exe
[2010.09.01 23:45:46 | 000,082,432 | ---- | C] (S!Ri.URZ) -- C:\Windows\SysWow64\404Fix.exe
[2010.09.01 23:45:46 | 000,080,384 | ---- | C] (S!Ri.URZ) -- C:\Windows\SysWow64\o4Patch.exe
[2010.09.01 23:45:46 | 000,079,360 | ---- | C] (SteelWerX) -- C:\Windows\SysWow64\swxcacls.exe
[2010.09.01 23:45:46 | 000,078,336 | ---- | C] (S!Ri.URZ) -- C:\Windows\SysWow64\Agent.OMZ.Fix.exe
[2010.09.01 23:45:46 | 000,053,248 | ---- | C] (hxxp://www.beyondlogic.org) -- C:\Windows\SysWow64\Process.exe
[2010.09.01 21:35:37 | 000,366,080 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\SysNative\atmfd.dll
[2010.09.01 21:35:37 | 000,293,888 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\atmfd.dll
[2010.09.01 21:35:37 | 000,100,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\fontsub.dll
[2010.09.01 21:35:37 | 000,070,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\fontsub.dll
[2010.09.01 21:35:37 | 000,046,080 | ---- | C] (Adobe Systems) -- C:\Windows\SysNative\atmlib.dll
[2010.09.01 21:35:37 | 000,034,304 | ---- | C] (Adobe Systems) -- C:\Windows\SysWow64\atmlib.dll
[2010.09.01 21:35:29 | 001,736,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntdll.dll
[2010.09.01 21:35:29 | 000,612,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\vbscript.dll
[2010.09.01 21:35:29 | 000,427,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\vbscript.dll
[2010.09.01 21:35:26 | 014,629,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wmp.dll
[2010.09.01 21:35:26 | 011,406,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wmp.dll
[2010.09.01 21:35:25 | 001,975,296 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\CertEnroll.dll
[2010.09.01 21:35:25 | 001,320,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\CertEnroll.dll
[2010.09.01 21:35:24 | 012,625,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wmploc.DLL
[2010.09.01 21:35:24 | 012,625,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wmploc.DLL
[2010.09.01 21:35:23 | 000,424,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\secproc.dll
[2010.09.01 21:35:23 | 000,422,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\secproc_isv.dll
[2010.09.01 21:35:23 | 000,369,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\secproc.dll
[2010.09.01 21:35:23 | 000,365,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\secproc_isv.dll
[2010.09.01 21:35:23 | 000,357,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\RMActivate_isv.exe
[2010.09.01 21:35:23 | 000,356,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\RMActivate.exe
[2010.09.01 21:35:23 | 000,305,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\RMActivate_ssp_isv.exe
[2010.09.01 21:35:22 | 000,324,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\RMActivate_isv.exe
[2010.09.01 21:35:22 | 000,320,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\RMActivate.exe
[2010.09.01 21:35:22 | 000,306,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\RMActivate_ssp.exe
[2010.09.01 21:35:22 | 000,280,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\RMActivate_ssp.exe
[2010.09.01 21:35:22 | 000,277,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\RMActivate_ssp_isv.exe
[2010.09.01 21:35:22 | 000,121,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\secproc_ssp_isv.dll
[2010.09.01 21:35:22 | 000,121,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\secproc_ssp.dll
[2010.09.01 21:35:22 | 000,085,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\secproc_ssp_isv.dll
[2010.09.01 21:35:22 | 000,085,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\secproc_ssp.dll
[2010.09.01 21:35:09 | 000,148,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\t2embed.dll
[2010.09.01 21:35:09 | 000,108,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\t2embed.dll
[2010.09.01 21:35:03 | 005,507,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntoskrnl.exe
[2010.09.01 21:35:03 | 003,955,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ntkrnlpa.exe
[2010.09.01 21:35:03 | 003,899,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ntoskrnl.exe
[2010.09.01 21:35:02 | 000,243,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wow64.dll
[2010.09.01 21:35:02 | 000,025,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\setup16.exe
[2010.09.01 21:35:01 | 000,861,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\oleaut32.dll
[2010.09.01 21:35:01 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ntvdm64.dll
[2010.09.01 21:35:01 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\instnm.exe
[2010.09.01 21:35:01 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wow32.dll
[2010.09.01 21:35:01 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\user.exe
[2010.09.01 21:34:54 | 000,256,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iepeers.dll
[2010.09.01 21:34:54 | 000,247,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieui.dll
[2010.09.01 21:34:54 | 000,185,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iepeers.dll
[2010.09.01 21:34:54 | 000,176,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieui.dll
[2010.09.01 21:34:54 | 000,012,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msfeedssync.exe
[2010.09.01 21:34:54 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msfeedssync.exe
[2010.09.01 21:34:52 | 000,082,944 | ---- | C] (Radius Inc.) -- C:\Windows\SysWow64\iccvid.dll
[2010.09.01 21:34:51 | 002,870,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\explorer.exe
[2010.09.01 21:34:51 | 002,614,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\explorer.exe
[2010.09.01 21:34:51 | 000,389,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winlogon.exe
[2010.09.01 21:34:31 | 000,052,224 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rtutils.dll
[2010.09.01 21:34:31 | 000,037,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\rtutils.dll
[2010.09.01 21:34:29 | 001,572,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\quartz.dll
[2010.09.01 21:34:29 | 001,328,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\quartz.dll
[2010.09.01 21:34:29 | 000,091,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\avifil32.dll
[2010.09.01 21:34:29 | 000,084,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mciavi32.dll
[2010.09.01 21:34:24 | 000,144,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cdd.dll
[2010.09.01 21:34:23 | 000,961,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\CPFilters.dll
[2010.09.01 21:34:23 | 000,641,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\CPFilters.dll
[2010.09.01 21:34:22 | 000,613,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\psisdecd.dll
[2010.09.01 21:34:22 | 000,552,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msdri.dll
[2010.09.01 21:34:22 | 000,465,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\psisdecd.dll
[2010.09.01 21:34:22 | 000,288,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MSNP.ax
[2010.09.01 21:34:22 | 000,258,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mpg2splt.ax
[2010.09.01 21:34:22 | 000,204,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\MSNP.ax
[2010.09.01 21:34:22 | 000,199,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mpg2splt.ax
[2010.09.01 21:34:17 | 001,446,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\lsasrv.dll
[2010.09.01 21:34:16 | 000,046,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msasn1.dll
[2010.09.01 21:34:15 | 000,852,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript.dll
[2010.09.01 21:34:15 | 000,716,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\jscript.dll
[2010.09.01 21:24:28 | 000,220,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wintrust.dll
[2010.09.01 21:24:28 | 000,172,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wintrust.dll
[2010.09.01 21:24:28 | 000,139,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cabview.dll
[2010.09.01 21:24:28 | 000,132,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\cabview.dll
[2010.08.29 19:53:44 | 000,000,000 | ---D | C] -- C:\Users\Aike\AppData\Local\NVIDIA Corporation
[2010.08.29 19:13:29 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\MSI Kombustor (DX11)
[2010.08.29 19:05:19 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\MSI Afterburner
[2010.08.28 23:00:19 | 000,000,000 | RH-D | C] -- C:\Users\Aike\AppData\Roaming\SecuROM
[2010.08.28 14:11:20 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Conduit
[2010.08.28 14:11:19 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\DVDVideoSoftTB
[2010.08.28 12:37:39 | 000,000,000 | ---D | C] -- C:\Users\Aike\Desktop\Neuer Ordner
[2010.08.28 10:30:04 | 000,000,000 | ---D | C] -- C:\Windows\Minidump
[2010.08.27 18:01:52 | 000,000,000 | ---D | C] -- C:\Users\Aike\Desktop\GodMode.{ED7BA470-8E54-465E-825C-99712043E01C}
[2010.08.27 17:18:46 | 000,000,000 | ---D | C] -- C:\Users\Aike\AppData\Roaming\Avira
[2010.08.26 22:17:47 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\City Interactive
[2010.08.26 22:16:25 | 002,605,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_40.dll
[2010.08.26 22:16:25 | 002,036,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_40.dll
[2010.08.26 22:16:25 | 000,519,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_40.dll
[2010.08.26 22:16:25 | 000,452,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_40.dll
[2010.08.26 22:16:22 | 005,631,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DX9_40.dll
[2010.08.26 22:16:22 | 004,379,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_40.dll
[2010.08.26 22:09:57 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\City Interactive
[2010.08.26 20:13:16 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\SIW
[2010.08.26 17:21:05 | 000,021,480 | ---- | C] (Windows (R) Win 7 DDK provider) -- C:\Windows\SysNative\drivers\cpuz134_x64.sys
[2010.08.26 17:21:04 | 000,000,000 | ---D | C] -- C:\Programme\CPUID
[2010.08.26 11:30:19 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\RHEM4
[2010.08.25 22:30:18 | 000,527,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_7.dll
[2010.08.25 22:30:18 | 000,518,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_7.dll
[2010.08.25 22:30:18 | 000,077,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAPOFX1_5.dll
[2010.08.25 22:30:18 | 000,074,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAPOFX1_5.dll
[2010.08.25 22:30:17 | 002,526,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_43.dll
[2010.08.25 22:30:17 | 002,106,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_43.dll
[2010.08.25 22:30:17 | 000,239,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_7.dll
[2010.08.25 22:30:17 | 000,176,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_7.dll
[2010.08.25 22:30:16 | 001,907,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dcsx_43.dll
[2010.08.25 22:30:16 | 001,868,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dcsx_43.dll
[2010.08.25 22:30:16 | 000,276,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx11_43.dll
[2010.08.25 22:30:16 | 000,248,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx11_43.dll
[2010.08.25 22:30:15 | 000,511,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_43.dll
[2010.08.25 22:30:15 | 000,470,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_43.dll
[2010.08.25 22:30:14 | 002,401,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DX9_43.dll
[2010.08.25 22:30:14 | 001,998,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_43.dll
[2010.08.25 22:30:14 | 000,530,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_6.dll
[2010.08.25 22:30:14 | 000,528,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_6.dll
[2010.08.25 22:30:14 | 000,078,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAPOFX1_4.dll
[2010.08.25 22:30:14 | 000,074,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAPOFX1_4.dll
[2010.08.25 22:30:13 | 000,238,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_6.dll
[2010.08.25 22:30:13 | 000,176,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_6.dll
[2010.08.25 22:30:13 | 000,024,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\X3DAudio1_7.dll
[2010.08.25 22:30:13 | 000,022,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\X3DAudio1_7.dll
[2010.08.25 22:30:12 | 000,517,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_5.dll
[2010.08.25 22:30:12 | 000,515,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_5.dll
[2010.08.25 22:30:12 | 000,238,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_5.dll
[2010.08.25 22:30:12 | 000,176,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_5.dll
[2010.08.25 22:30:11 | 002,582,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_42.dll
[2010.08.25 22:30:11 | 001,974,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_42.dll
[2010.08.25 22:30:10 | 005,554,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dcsx_42.dll
[2010.08.25 22:30:10 | 005,501,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dcsx_42.dll
[2010.08.25 22:30:09 | 000,523,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_42.dll
[2010.08.25 22:30:09 | 000,453,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_42.dll
[2010.08.25 22:30:09 | 000,285,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx11_42.dll
[2010.08.25 22:30:09 | 000,235,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx11_42.dll
[2010.08.25 22:30:08 | 002,475,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DX9_42.dll
[2010.08.25 22:30:08 | 001,892,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_42.dll
[2010.08.25 22:30:07 | 002,430,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_41.dll
[2010.08.25 22:30:07 | 001,846,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_41.dll
[2010.08.25 22:30:07 | 000,520,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_41.dll
[2010.08.25 22:30:07 | 000,453,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_41.dll
[2010.08.25 22:30:06 | 005,425,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DX9_41.dll
[2010.08.25 22:30:06 | 004,178,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_41.dll
[2010.08.25 22:30:06 | 000,521,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_4.dll
[2010.08.25 22:30:06 | 000,517,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_4.dll
[2010.08.25 22:30:06 | 000,073,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAPOFX1_3.dll
[2010.08.25 22:30:06 | 000,069,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAPOFX1_3.dll
[2010.08.25 22:30:05 | 000,235,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_4.dll
[2010.08.25 22:30:05 | 000,174,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_4.dll
[2010.08.25 22:30:05 | 000,024,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\X3DAudio1_6.dll
[2010.08.25 22:30:05 | 000,022,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\X3DAudio1_6.dll
[2010.08.25 22:30:02 | 000,518,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_3.dll
[2010.08.25 22:30:02 | 000,514,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_3.dll
[2010.08.25 22:30:02 | 000,074,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAPOFX1_2.dll
[2010.08.25 22:30:02 | 000,070,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAPOFX1_2.dll
[2010.08.25 22:30:01 | 000,235,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_3.dll
[2010.08.25 22:30:01 | 000,175,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_3.dll
[2010.08.25 22:30:01 | 000,025,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\X3DAudio1_5.dll
[2010.08.25 22:30:01 | 000,023,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\X3DAudio1_5.dll
[2010.08.25 22:29:46 | 003,727,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_35.dll
[2010.08.25 22:24:59 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\directx
[2010.08.25 22:24:44 | 000,000,000 | ---D | C] -- C:\Programme\SiSoftware
[2010.08.25 21:51:15 | 000,000,000 | -HSD | C] -- C:\Config.Msi
[2010.08.25 21:28:15 | 000,032,768 | ---- | C] (*) -- C:\Windows\SysWow64\chipxum.dll
[2010.08.25 21:28:14 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\CHIP System-Check-Tool
[2010.08.25 19:57:06 | 000,000,000 | ---D | C] -- C:\Sounds
[2010.08.25 19:55:18 | 000,033,792 | ---- | C] (LG Electronics Inc.) -- C:\Windows\SysNative\drivers\lgx64modem.sys
[2010.08.25 19:55:18 | 000,027,136 | ---- | C] (LG Electronics Inc.) -- C:\Windows\SysNative\drivers\lgx64diag.sys
[2010.08.25 19:55:18 | 000,017,920 | ---- | C] (LG Electronics Inc.) -- C:\Windows\SysNative\drivers\lgx64bus.sys
[2010.08.25 19:55:17 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\LG Electronics
[2010.08.25 19:51:54 | 000,419,240 | ---- | C] (VideoSoft) -- C:\Windows\SysWow64\Vsflex7L.ocx
[2010.08.25 19:51:53 | 001,164,728 | ---- | C] (NuMedia Soft, Inc.) -- C:\Windows\SysWow64\NMSDVDXU.dll
[2010.08.25 19:51:53 | 000,630,784 | ---- | C] (ComponentOne) -- C:\Windows\SysWow64\vsflex8u.ocx
[2010.08.25 19:51:53 | 000,244,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Msflxgrd.ocx
[2010.08.25 19:51:48 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\LG PC Suite II
[2010.08.25 19:51:48 | 000,000,000 | ---D | C] -- C:\Users\Aike\AppData\Roaming\LG Electronics
[2010.08.25 19:50:50 | 000,000,000 | ---D | C] -- C:\Users\Aike\AppData\Roaming\InstallShield
[2010.08.25 19:47:30 | 000,000,000 | ---D | C] -- C:\Users\Aike\AppData\Roaming\DVDVideoSoftIEHelpers
[2010.08.25 19:47:19 | 000,000,000 | ---D | C] -- C:\Users\Aike\Documents\DVDVideoSoft
[2010.08.25 19:46:48 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\DVDVideoSoft
[2010.08.25 19:46:48 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\DVDVideoSoft
[2010.08.25 18:03:06 | 000,000,000 | ---D | C] -- C:\Users\Aike\Documents\ICQ
[2010.08.25 12:55:26 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\ICQ-Banner-Remover
[2010.08.25 12:50:28 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\ICQ6Toolbar
[2010.08.25 12:50:24 | 000,000,000 | ---D | C] -- C:\ProgramData\ICQ
[2010.08.25 12:49:23 | 000,000,000 | ---D | C] -- C:\Users\Aike\AppData\Roaming\ICQ
[2010.08.25 12:49:22 | 000,000,000 | ---D | C] -- C:\Users\Aike\AppData\Local\AOL
[2010.08.25 12:49:16 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\ICQ7.2
[2010.08.25 08:08:43 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\uTorrent
[2010.08.25 08:08:20 | 000,000,000 | ---D | C] -- C:\Users\Aike\AppData\Roaming\uTorrent
[2010.08.24 23:26:35 | 000,000,000 | ---D | C] -- C:\Users\Aike\AppData\Roaming\Nero
[2010.08.24 23:03:12 | 000,000,000 | ---D | C] -- C:\Users\Aike\AppData\Local\Threat Expert
[2010.08.24 23:02:57 | 000,000,000 | ---D | C] -- C:\Windows\pss
[2010.08.24 23:02:47 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Futuremark Shared
[2010.08.24 23:02:03 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Futuremark
[2010.08.24 22:31:37 | 000,000,000 | ---D | C] -- C:\Users\Aike\AppData\Roaming\Media Player Classic
[2010.08.24 22:29:50 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Nero
[2010.08.24 22:28:58 | 000,000,000 | ---D | C] -- C:\ProgramData\Nero
[2010.08.24 22:28:56 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Nero
[2010.08.24 22:12:43 | 000,000,000 | ---D | C] -- C:\ProgramData\PC Suite
[2010.08.24 22:12:42 | 000,000,000 | ---D | C] -- C:\Users\Aike\AppData\Roaming\PC Suite
[2010.08.24 22:10:40 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Elaborate Bytes
[2010.08.24 21:43:06 | 000,000,000 | ---D | C] -- C:\Users\Aike\AppData\Roaming\Samsung
[2010.08.24 21:42:30 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\MSXML 4.0
[2010.08.24 21:42:27 | 000,000,000 | ---D | C] -- C:\Programme\DIFX
[2010.08.24 21:42:24 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\DRVSTORE
[2010.08.24 21:42:04 | 000,066,560 | ---- | C] (Nokia) -- C:\Windows\SysNative\nmwcdclsx64.dll
[2010.08.24 21:42:04 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Samsung
[2010.08.24 21:41:09 | 000,000,000 | ---D | C] -- C:\ProgramData\Installations
[2010.08.24 21:36:05 | 000,000,000 | ---D | C] -- C:\Users\Aike\AppData\Local\ElevatedDiagnostics
[2010.08.24 21:34:24 | 000,116,568 | ---- | C] (Avira GmbH) -- C:\Windows\SysNative\drivers\avipbb.sys
[2010.08.24 21:34:23 | 000,081,072 | ---- | C] (Avira GmbH) -- C:\Windows\SysNative\drivers\avgntflt.sys
[2010.08.24 21:34:23 | 000,051,992 | ---- | C] (AVIRA GmbH) -- C:\Windows\SysWow64\drivers\avgntdd.sys
[2010.08.24 21:34:23 | 000,017,016 | ---- | C] (AVIRA GmbH) -- C:\Windows\SysWow64\drivers\avgntmgr.sys
[2010.08.24 21:34:22 | 000,000,000 | ---D | C] -- C:\ProgramData\Avira
[2010.08.24 21:34:22 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Avira
[2010.08.24 20:47:03 | 000,962,612 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfc42d.dll
[2010.08.24 20:47:03 | 000,434,252 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\MSVCRTD.DLL
[2010.08.24 20:46:54 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\ASUS
[2010.08.24 20:46:20 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\InstallShield
[2010.08.24 20:08:06 | 000,000,000 | -H-D | C] -- C:\Users\Aike\Desktop\[Originaldateien]
[2010.08.24 19:07:50 | 000,149,456 | ---- | C] (PC Tools) -- C:\Windows\SGDetectionTool.dll
[2010.08.24 19:07:49 | 001,652,688 | ---- | C] (Threat Expert Ltd.) -- C:\Windows\PCTBDCore.dll
[2010.08.24 19:07:49 | 001,640,400 | ---- | C] (Threat Expert Ltd.) -- C:\Windows\PCTBDCore.dll.old
[2010.08.24 19:07:49 | 000,165,840 | ---- | C] (Threat Expert Ltd.) -- C:\Windows\PCTBDRes.dll
[2010.08.24 19:04:59 | 000,306,648 | ---- | C] (PC Tools) -- C:\Windows\SysNative\drivers\pctgntdi64.sys
[2010.08.24 19:04:59 | 000,132,048 | ---- | C] (PC Tools) -- C:\Windows\SysNative\drivers\pctwfpfilter64.sys
[2010.08.24 19:04:55 | 000,218,056 | ---- | C] (PC Tools) -- C:\Windows\SysNative\drivers\PCTCore64.sys
[2010.08.24 19:04:51 | 000,092,896 | ---- | C] (PC Tools) -- C:\Windows\SysNative\drivers\pctplsg64.sys
[2010.08.24 19:04:41 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Spyware Doctor
[2010.08.24 19:04:41 | 000,000,000 | ---D | C] -- C:\Users\Aike\AppData\Roaming\PC Tools
[2010.08.24 19:04:41 | 000,000,000 | ---D | C] -- C:\ProgramData\PC Tools
[2010.08.24 19:04:41 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\PC Tools
[2010.08.24 19:04:30 | 000,000,000 | ---D | C] -- C:\ProgramData\TEMP
[2010.08.24 19:03:13 | 000,000,000 | ---D | C] -- C:\Users\Aike\AppData\Roaming\ACD Systems
[2010.08.24 19:03:13 | 000,000,000 | ---D | C] -- C:\Users\Aike\AppData\Local\ACD Systems
[2010.08.24 19:02:36 | 000,000,000 | ---D | C] -- C:\ProgramData\ACD Systems
[2010.08.24 19:02:32 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\ACD Systems
[2010.08.24 19:02:32 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\ACD Systems
[2010.08.24 19:01:02 | 000,000,000 | ---D | C] -- C:\Users\Aike\AppData\Local\Downloaded Installations
[2010.08.24 18:59:57 | 000,000,000 | ---D | C] -- C:\Users\Aike\AppData\Roaming\WinRAR
[2010.08.24 18:28:49 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\PhotoMail Maker
[2010.08.24 18:28:49 | 000,000,000 | ---D | C] -- C:\ProgramData\PhotoMail
[2010.08.24 18:28:14 | 000,839,680 | ---- | C] (hxxp://www.mp3dev.org/) -- C:\Windows\SysWow64\lameACM.acm
[2010.08.24 18:28:13 | 000,217,088 | ---- | C] (www.helixcommunity.org) -- C:\Windows\SysWow64\yv12vfw.dll
[2010.08.24 18:28:13 | 000,118,784 | ---- | C] (fccHandler) -- C:\Windows\SysWow64\ac3acm.acm
[2010.08.24 18:28:12 | 000,000,000 | ---D | C] -- C:\Users\Aike\AppData\Local\IM
[2010.08.24 18:28:05 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\K-Lite Codec Pack
[2010.08.24 18:28:03 | 000,000,000 | ---D | C] -- C:\ProgramData\IncrediMail
[2010.08.24 18:28:03 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\IncrediMail
[2010.08.24 18:28:03 | 000,000,000 | ---D | C] -- C:\ProgramData\IM
[2010.08.24 18:26:42 | 000,000,000 | ---D | C] -- C:\Users\Aike\AppData\Roaming\Macromedia
[2010.08.24 17:56:39 | 000,000,000 | ---D | C] -- C:\ProgramData\Adobe
[2010.08.24 17:56:37 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Adobe
[2010.08.24 17:56:37 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Adobe
[2010.08.24 17:55:13 | 000,000,000 | ---D | C] -- C:\ProgramData\Sun
[2010.08.24 17:55:12 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Java
[2010.08.24 17:55:01 | 000,423,656 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\deployJava1.dll
[2010.08.24 17:55:01 | 000,153,376 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\javaws.exe
[2010.08.24 17:55:01 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\javaw.exe
[2010.08.24 17:55:01 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\java.exe
[2010.08.24 17:54:50 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Java
[2010.08.24 17:54:19 | 000,000,000 | ---D | C] -- C:\Users\Aike\AppData\Local\Adobe
[2010.08.24 17:54:09 | 000,000,000 | ---D | C] -- C:\ProgramData\McAfee
[2010.08.24 17:49:32 | 000,000,000 | ---D | C] -- C:\Windows\Panther
[2010.08.24 17:48:24 | 000,000,000 | ---D | C] -- C:\Users\Aike\AppData\Roaming\Adobe
[2010.08.24 17:46:54 | 000,000,000 | ---D | C] -- C:\Users\Aike\AppData\Local\NeoSmart_Technologies
[2010.08.24 17:45:32 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\NeoSmart Technologies
[2010.08.24 17:44:26 | 000,000,000 | ---D | C] -- C:\Programme\WinRAR
[2010.08.24 17:33:21 | 000,468,480 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\SysNative\deployJava1.dll
[2010.08.24 17:33:21 | 000,183,296 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\SysNative\javaws.exe
[2010.08.24 17:33:21 | 000,165,888 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\SysNative\javaw.exe
[2010.08.24 17:33:21 | 000,165,888 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\SysNative\java.exe
[2010.08.24 17:33:07 | 000,000,000 | ---D | C] -- C:\Programme\Java
[2010.08.24 17:32:52 | 000,000,000 | ---D | C] -- C:\ProgramData\NVIDIA Corporation
[2010.08.24 17:28:56 | 000,000,000 | -H-D | C] -- C:\Program Files (x86)\InstallShield Installation Information
[2010.08.24 17:28:53 | 000,000,000 | ---D | C] -- C:\Programme\NVIDIA Corporation
[2010.08.24 17:26:43 | 000,000,000 | ---D | C] -- C:\ProgramData\NVIDIA
[2010.08.24 17:26:36 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\NVIDIA Corporation
[2010.08.24 17:26:20 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\Macromed
[2010.08.24 17:26:14 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\AGEIA Technologies
[2010.08.24 17:26:14 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\AGEIA
[2010.08.24 17:26:09 | 000,000,000 | -HSD | C] -- C:\Windows\Installer
[2010.08.24 17:26:07 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Wise Installation Wizard
[2010.08.24 17:26:00 | 004,223,008 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\NVStWiz.exe
[2010.08.24 17:25:37 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\SystemRequirementsLab
[2010.08.24 17:25:17 | 000,704,000 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\cohelper.dll
[2010.08.24 17:24:45 | 000,660,072 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\NVUNINST.EXE
[2010.08.24 17:24:31 | 000,000,000 | ---D | C] -- C:\NVIDIA
[2010.08.24 17:23:17 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\xp-AntiSpy
[2010.08.24 17:16:18 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\WinRAR
[2010.08.24 17:13:01 | 000,000,000 | ---D | C] -- C:\Users\Aike\AppData\Roaming\Mozilla
[2010.08.24 17:13:01 | 000,000,000 | ---D | C] -- C:\Users\Aike\AppData\Local\Mozilla
[2010.08.24 17:12:51 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Mozilla Firefox
[2010.08.24 17:06:37 | 000,000,000 | R--D | C] -- C:\Users\Aike\Searches
[2010.08.24 17:06:29 | 000,000,000 | ---D | C] -- C:\Users\Aike\AppData\Roaming\Identities
[2010.08.24 17:06:27 | 000,000,000 | R--D | C] -- C:\Users\Aike\Contacts
[2010.08.24 17:06:25 | 000,000,000 | ---D | C] -- C:\Users\Aike\AppData\Local\VirtualStore
[2010.08.24 17:06:17 | 000,000,000 | --SD | C] -- C:\Users\Aike\AppData\Roaming\Microsoft
[2010.08.24 17:06:17 | 000,000,000 | R--D | C] -- C:\Users\Aike\Videos
[2010.08.24 17:06:17 | 000,000,000 | R--D | C] -- C:\Users\Aike\Saved Games
[2010.08.24 17:06:17 | 000,000,000 | R--D | C] -- C:\Users\Aike\Pictures
[2010.08.24 17:06:17 | 000,000,000 | R--D | C] -- C:\Users\Aike\Music
[2010.08.24 17:06:17 | 000,000,000 | R--D | C] -- C:\Users\Aike\Links
[2010.08.24 17:06:17 | 000,000,000 | R--D | C] -- C:\Users\Aike\Favorites
[2010.08.24 17:06:17 | 000,000,000 | R--D | C] -- C:\Users\Aike\Downloads
[2010.08.24 17:06:17 | 000,000,000 | R--D | C] -- C:\Users\Aike\Documents
[2010.08.24 17:06:17 | 000,000,000 | R--D | C] -- C:\Users\Aike\Desktop
[2010.08.24 17:06:17 | 000,000,000 | -HSD | C] -- C:\Users\Aike\Vorlagen
[2010.08.24 17:06:17 | 000,000,000 | -HSD | C] -- C:\Users\Aike\AppData\Local\Verlauf
[2010.08.24 17:06:17 | 000,000,000 | -HSD | C] -- C:\Users\Aike\AppData\Local\Temporary Internet Files
[2010.08.24 17:06:17 | 000,000,000 | -HSD | C] -- C:\Users\Aike\Startmenü
[2010.08.24 17:06:17 | 000,000,000 | -HSD | C] -- C:\Users\Aike\SendTo
[2010.08.24 17:06:17 | 000,000,000 | -HSD | C] -- C:\Users\Aike\Recent
[2010.08.24 17:06:17 | 000,000,000 | -HSD | C] -- C:\Users\Aike\Netzwerkumgebung
[2010.08.24 17:06:17 | 000,000,000 | -HSD | C] -- C:\Users\Aike\Lokale Einstellungen
[2010.08.24 17:06:17 | 000,000,000 | -HSD | C] -- C:\Users\Aike\Documents\Eigene Videos
[2010.08.24 17:06:17 | 000,000,000 | -HSD | C] -- C:\Users\Aike\Documents\Eigene Musik
[2010.08.24 17:06:17 | 000,000,000 | -HSD | C] -- C:\Users\Aike\Eigene Dateien
[2010.08.24 17:06:17 | 000,000,000 | -HSD | C] -- C:\Users\Aike\Documents\Eigene Bilder
[2010.08.24 17:06:17 | 000,000,000 | -HSD | C] -- C:\Users\Aike\Druckumgebung
[2010.08.24 17:06:17 | 000,000,000 | -HSD | C] -- C:\Users\Aike\Cookies
[2010.08.24 17:06:17 | 000,000,000 | -HSD | C] -- C:\Users\Aike\AppData\Local\Anwendungsdaten
[2010.08.24 17:06:17 | 000,000,000 | -HSD | C] -- C:\Users\Aike\Anwendungsdaten
[2010.08.24 17:06:17 | 000,000,000 | -H-D | C] -- C:\Users\Aike\AppData
[2010.08.24 17:06:17 | 000,000,000 | ---D | C] -- C:\Users\Aike\AppData\Local\Temp
[2010.08.24 17:06:17 | 000,000,000 | ---D | C] -- C:\Users\Aike\AppData\Local\Microsoft
[2010.08.24 17:06:17 | 000,000,000 | ---D | C] -- C:\Users\Aike\AppData\Roaming\Media Center Programs
[2010.08.24 17:04:56 | 000,000,000 | -HSD | C] -- C:\ProgramData\Vorlagen
[2010.08.24 17:04:56 | 000,000,000 | -HSD | C] -- C:\ProgramData\Startmenü
[2010.08.24 17:04:56 | 000,000,000 | -HSD | C] -- C:\Recovery
[2010.08.24 17:04:56 | 000,000,000 | -HSD | C] -- C:\Programme
[2010.08.24 17:04:56 | 000,000,000 | -HSD | C] -- C:\Programme\Gemeinsame Dateien
[2010.08.24 17:04:56 | 000,000,000 | -HSD | C] -- C:\ProgramData\Favoriten
[2010.08.24 17:04:56 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Eigene Videos
[2010.08.24 17:04:56 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Eigene Musik
[2010.08.24 17:04:56 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Eigene Bilder
[2010.08.24 17:04:56 | 000,000,000 | -HSD | C] -- C:\Dokumente und Einstellungen
[2010.08.24 17:04:56 | 000,000,000 | -HSD | C] -- C:\ProgramData\Dokumente
[2010.08.24 17:04:56 | 000,000,000 | -HSD | C] -- C:\ProgramData\Anwendungsdaten
[2010.08.24 16:53:46 | 000,000,000 | ---D | C] -- C:\Windows\SoftwareDistribution
[2010.08.24 16:51:39 | 000,000,000 | ---D | C] -- C:\Windows\Prefetch
[2010.08.24 16:50:52 | 000,000,000 | -HSD | C] -- C:\System Volume Information
[7 C:\ProgramData\*.tmp files -> C:\ProgramData\*.tmp -> ]
[7 C:\ProgramData\*.tmp files -> C:\ProgramData\*.tmp -> ]
 
========== Files - Modified Within 30 Days ==========
 
[2010.09.06 16:17:42 | 002,359,296 | -HS- | M] () -- C:\Users\Aike\ntuser.dat
[2010.09.06 16:16:15 | 000,574,976 | ---- | M] (OldTimer Tools) -- C:\Users\Aike\Desktop\OTL.exe
[2010.09.06 15:16:50 | 000,001,016 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
[2010.09.06 15:16:10 | 006,153,648 | ---- | M] (Malwarebytes Corporation                                    ) -- C:\Users\Aike\Desktop\mbam-setup.exe
[2010.09.06 13:59:45 | 000,016,944 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2010.09.06 13:59:45 | 000,016,944 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2010.09.06 13:51:57 | 000,000,006 | -H-- | M] () -- C:\Windows\tasks\SA.DAT
[2010.09.06 13:51:50 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2010.09.06 13:51:47 | 4025,294,848 | -HS- | M] () -- C:\hiberfil.sys
[2010.09.06 11:51:51 | 001,891,360 | -H-- | M] () -- C:\Users\Aike\AppData\Local\IconCache.db
[2010.09.06 10:04:14 | 000,001,157 | ---- | M] () -- C:\Users\Public\Desktop\Ad-Aware.lnk
[2010.09.05 22:42:51 | 012,402,120 | ---- | M] (Microsoft Corporation) -- C:\Users\Aike\Desktop\windows-kb890830-x64-v3.10.exe
[2010.09.05 18:49:18 | 000,643,628 | ---- | M] () -- C:\Windows\SysNative\perfh007.dat
[2010.09.05 18:49:18 | 000,606,992 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2010.09.05 18:49:18 | 000,126,188 | ---- | M] () -- C:\Windows\SysNative\perfc007.dat
[2010.09.05 18:49:18 | 000,103,370 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2010.09.05 18:49:17 | 001,472,002 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2010.09.03 18:10:38 | 122,919,637 | ---- | M] () -- C:\Users\Aike\Desktop\02_va_-_tunnel_trance_force_vol.54_cd2.mp3
[2010.09.03 18:10:26 | 121,161,492 | ---- | M] () -- C:\Users\Aike\Desktop\01_va_-_tunnel_trance_force_vol.54_cd1.mp3
[2010.09.02 20:45:46 | 1787,428,864 | ---- | M] () -- C:\Users\Aike\Desktop\Windows XP.iso
[2010.09.02 20:42:19 | 000,000,030 | ---- | M] () -- C:\Users\Aike\Desktop\Windows XP.dvd
[2010.09.02 20:41:34 | 000,001,120 | ---- | M] () -- C:\Users\Public\Desktop\CloneCD.lnk
[2010.09.02 08:02:07 | 000,274,464 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
[2010.09.01 23:55:40 | 000,001,992 | ---- | M] () -- C:\Windows\SysWow64\tmp.reg
[2010.09.01 23:55:38 | 000,000,998 | ---- | M] () -- C:\Windows\SysNative\drivers\etc\hosts
[2010.08.29 11:15:22 | 000,524,288 | -HS- | M] () -- C:\Users\Aike\ntuser.dat{e90d2a48-b34d-11df-9bc6-002618249447}.TMContainer00000000000000000002.regtrans-ms
[2010.08.29 11:15:22 | 000,524,288 | -HS- | M] () -- C:\Users\Aike\ntuser.dat{e90d2a48-b34d-11df-9bc6-002618249447}.TMContainer00000000000000000001.regtrans-ms
[2010.08.29 11:15:22 | 000,065,536 | -HS- | M] () -- C:\Users\Aike\ntuser.dat{e90d2a48-b34d-11df-9bc6-002618249447}.TM.blf
[2010.08.28 22:28:45 | 000,002,228 | ---- | M] () -- C:\Users\Public\Desktop\Sniper Ghost Warrior.lnk
[2010.08.28 19:42:23 | 000,165,799 | ---- | M] () -- C:\Users\Aike\Desktop\DSCF5596.jpg
[2010.08.28 19:42:01 | 000,154,755 | ---- | M] () -- C:\Users\Aike\Desktop\DSCF5594.jpg
[2010.08.28 19:41:42 | 000,158,566 | ---- | M] () -- C:\Users\Aike\Desktop\DSCF5597.jpg
[2010.08.28 19:41:21 | 000,201,492 | ---- | M] () -- C:\Users\Aike\Desktop\DSCF5595.jpg
[2010.08.28 10:29:56 | 307,653,441 | ---- | M] () -- C:\Windows\MEMORY.DMP
[2010.08.26 22:14:11 | 000,001,964 | ---- | M] () -- C:\Users\Aike\Desktop\Terrorist Takedown 3.lnk
[2010.08.26 20:13:22 | 000,000,935 | ---- | M] () -- C:\Users\Aike\Desktop\SIW.lnk
[2010.08.26 17:21:05 | 000,000,869 | ---- | M] () -- C:\Users\Public\Desktop\CPUID CPU-Z.lnk
[2010.08.25 22:24:57 | 000,001,174 | ---- | M] () -- C:\Users\Public\Desktop\SiSoftware Sandra Lite 2010.SP2.lnk
[2010.08.25 20:54:01 | 000,007,642 | ---- | M] () -- C:\Users\Aike\AppData\Local\Resmon.ResmonCfg
[2010.08.25 19:52:01 | 000,001,744 | ---- | M] () -- C:\Users\Public\Desktop\LG PC Suite II.lnk
[2010.08.24 23:49:27 | 000,031,972 | ---- | M] () -- C:\Users\Aike\Documents\3dmark.3dr
[2010.08.24 23:03:09 | 000,002,052 | ---- | M] () -- C:\Users\Public\Desktop\3DMark03.lnk
[2010.08.24 22:52:07 | 000,004,767 | ---- | M] () -- C:\Windows\Irremote.ini
[2010.08.24 22:30:18 | 000,002,722 | ---- | M] () -- C:\Users\Public\Desktop\Nero StartSmart.lnk
[2010.08.24 19:02:40 | 000,000,252 | ---- | M] () -- C:\Windows\system.ini
[2010.08.24 17:54:52 | 000,423,656 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\deployJava1.dll
[2010.08.24 17:54:52 | 000,153,376 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\javaws.exe
[2010.08.24 17:54:52 | 000,145,184 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\javaw.exe
[2010.08.24 17:54:52 | 000,145,184 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\java.exe
[2010.08.24 17:45:40 | 000,057,560 | ---- | M] () -- C:\Users\Aike\AppData\Local\GDIPFONTCACHEV1.DAT
[2010.08.24 17:33:09 | 000,468,480 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\SysNative\deployJava1.dll
[2010.08.24 17:33:09 | 000,183,296 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\SysNative\javaws.exe
[2010.08.24 17:33:09 | 000,165,888 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\SysNative\javaw.exe
[2010.08.24 17:33:09 | 000,165,888 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\SysNative\java.exe
[2010.08.24 17:07:05 | 000,524,288 | -HS- | M] () -- C:\Users\Aike\NTUSER.DAT{016888bd-6c6f-11de-8d1d-001e0bcde3ec}.TMContainer00000000000000000002.regtrans-ms
[2010.08.24 17:07:05 | 000,524,288 | -HS- | M] () -- C:\Users\Aike\NTUSER.DAT{016888bd-6c6f-11de-8d1d-001e0bcde3ec}.TMContainer00000000000000000001.regtrans-ms
[2010.08.24 17:07:05 | 000,065,536 | -HS- | M] () -- C:\Users\Aike\NTUSER.DAT{016888bd-6c6f-11de-8d1d-001e0bcde3ec}.TM.blf
[2010.08.24 17:06:17 | 000,000,020 | -HS- | M] () -- C:\Users\Aike\ntuser.ini
[2010.08.24 16:58:57 | 000,057,050 | ---- | M] () -- C:\Windows\SysWow64\license.rtf
[2010.08.24 16:58:57 | 000,057,050 | ---- | M] () -- C:\Windows\SysNative\license.rtf
[2010.08.24 16:53:16 | 000,000,000 | -H-- | M] () -- C:\Windows\SysNative\drivers\Msft_User_WpdFs_01_09_00.Wdf
[2010.08.12 14:15:20 | 000,069,152 | ---- | M] (Lavasoft AB) -- C:\Windows\SysNative\drivers\Lbd.sys
[7 C:\ProgramData\*.tmp files -> C:\ProgramData\*.tmp -> ]
[7 C:\ProgramData\*.tmp files -> C:\ProgramData\*.tmp -> ]
 
========== Files Created - No Company Name ==========
 
[2010.09.06 15:16:50 | 000,001,016 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
[2010.09.06 10:04:14 | 000,001,157 | ---- | C] () -- C:\Users\Public\Desktop\Ad-Aware.lnk
[2010.09.03 16:50:43 | 122,919,637 | ---- | C] () -- C:\Users\Aike\Desktop\02_va_-_tunnel_trance_force_vol.54_cd2.mp3
[2010.09.03 16:50:22 | 121,161,492 | ---- | C] () -- C:\Users\Aike\Desktop\01_va_-_tunnel_trance_force_vol.54_cd1.mp3
[2010.09.02 20:42:19 | 1787,428,864 | ---- | C] () -- C:\Users\Aike\Desktop\Windows XP.iso
[2010.09.02 20:42:17 | 000,000,030 | ---- | C] () -- C:\Users\Aike\Desktop\Windows XP.dvd
[2010.09.02 20:41:34 | 000,001,120 | ---- | C] () -- C:\Users\Public\Desktop\CloneCD.lnk
[2010.09.01 23:46:14 | 000,001,992 | ---- | C] () -- C:\Windows\SysWow64\tmp.reg
[2010.09.01 23:45:46 | 000,075,776 | ---- | C] () -- C:\Windows\SysWow64\WS2Fix.exe
[2010.09.01 23:45:46 | 000,051,200 | ---- | C] () -- C:\Windows\SysWow64\dumphive.exe
[2010.09.01 23:45:46 | 000,040,960 | ---- | C] () -- C:\Windows\SysWow64\swsc.exe
[2010.08.29 11:15:22 | 000,524,288 | -HS- | C] () -- C:\Users\Aike\ntuser.dat{e90d2a48-b34d-11df-9bc6-002618249447}.TMContainer00000000000000000002.regtrans-ms
[2010.08.29 11:15:22 | 000,524,288 | -HS- | C] () -- C:\Users\Aike\ntuser.dat{e90d2a48-b34d-11df-9bc6-002618249447}.TMContainer00000000000000000001.regtrans-ms
[2010.08.29 11:15:22 | 000,065,536 | -HS- | C] () -- C:\Users\Aike\ntuser.dat{e90d2a48-b34d-11df-9bc6-002618249447}.TM.blf
[2010.08.29 10:23:28 | 000,002,228 | ---- | C] () -- C:\Users\Public\Desktop\Sniper Ghost Warrior.lnk
[2010.08.28 19:40:55 | 000,165,799 | ---- | C] () -- C:\Users\Aike\Desktop\DSCF5596.jpg
[2010.08.28 19:40:54 | 000,201,492 | ---- | C] () -- C:\Users\Aike\Desktop\DSCF5595.jpg
[2010.08.28 19:40:54 | 000,158,566 | ---- | C] () -- C:\Users\Aike\Desktop\DSCF5597.jpg
[2010.08.28 19:40:54 | 000,154,755 | ---- | C] () -- C:\Users\Aike\Desktop\DSCF5594.jpg
[2010.08.28 10:29:56 | 307,653,441 | ---- | C] () -- C:\Windows\MEMORY.DMP
[2010.08.26 22:14:11 | 000,001,964 | ---- | C] () -- C:\Users\Aike\Desktop\Terrorist Takedown 3.lnk
[2010.08.26 20:13:22 | 000,000,935 | ---- | C] () -- C:\Users\Aike\Desktop\SIW.lnk
[2010.08.26 17:21:05 | 000,000,869 | ---- | C] () -- C:\Users\Public\Desktop\CPUID CPU-Z.lnk
[2010.08.25 22:24:57 | 000,001,174 | ---- | C] () -- C:\Users\Public\Desktop\SiSoftware Sandra Lite 2010.SP2.lnk
[2010.08.25 22:24:47 | 012,861,440 | ---- | C] () -- C:\ProgramData\sandra.mda
[2010.08.25 21:28:15 | 000,077,824 | ---- | C] () -- C:\Windows\SysWow64\DriveInfo.dll
[2010.08.25 20:54:01 | 000,007,642 | ---- | C] () -- C:\Users\Aike\AppData\Local\Resmon.ResmonCfg
[2010.08.25 19:52:01 | 000,001,744 | ---- | C] () -- C:\Users\Public\Desktop\LG PC Suite II.lnk
[2010.08.24 23:49:19 | 000,031,972 | ---- | C] () -- C:\Users\Aike\Documents\3dmark.3dr
[2010.08.24 23:03:09 | 000,002,052 | ---- | C] () -- C:\Users\Public\Desktop\3DMark03.lnk
[2010.08.24 22:52:07 | 000,004,767 | ---- | C] () -- C:\Windows\Irremote.ini
[2010.08.24 22:30:18 | 000,002,722 | ---- | C] () -- C:\Users\Public\Desktop\Nero StartSmart.lnk
[2010.08.24 20:46:57 | 000,024,576 | ---- | C] () -- C:\Windows\SysWow64\AsIO.dll
[2010.08.24 20:46:57 | 000,013,368 | ---- | C] () -- C:\Windows\SysWow64\drivers\AsIO.sys
[2010.08.24 20:46:54 | 000,011,832 | ---- | C] () -- C:\Windows\SysWow64\drivers\AsInsHelp64.sys
[2010.08.24 20:46:54 | 000,010,216 | ---- | C] () -- C:\Windows\SysWow64\drivers\AsInsHelp32.sys
[2010.08.24 20:46:19 | 000,015,416 | ---- | C] () -- C:\Windows\SysNative\drivers\ASACPI.sys
[2010.08.24 19:07:50 | 000,767,952 | ---- | C] () -- C:\Windows\BDTSupport.dll.old
[2010.08.24 19:07:50 | 000,767,952 | ---- | C] () -- C:\Windows\BDTSupport.dll
[2010.08.24 19:07:50 | 000,000,882 | ---- | C] () -- C:\Windows\RegSDImport.xml
[2010.08.24 19:07:50 | 000,000,879 | ---- | C] () -- C:\Windows\RegISSImport.xml
[2010.08.24 19:07:50 | 000,000,131 | ---- | C] () -- C:\Windows\IDB.zip
[2010.08.24 19:07:49 | 001,152,444 | ---- | C] () -- C:\Windows\UDB.zip
[2010.08.24 19:04:59 | 000,007,357 | ---- | C] () -- C:\Windows\SysNative\drivers\pctgntdi64.cat
[2010.08.24 19:04:55 | 000,007,353 | ---- | C] () -- C:\Windows\SysNative\drivers\pctcore64.cat
[2010.08.24 19:04:51 | 000,007,353 | ---- | C] () -- C:\Windows\SysNative\drivers\pctplsg64.cat
[2010.08.24 18:28:15 | 000,178,176 | ---- | C] () -- C:\Windows\SysWow64\unrar.dll
[2010.08.24 18:28:15 | 000,000,038 | ---- | C] () -- C:\Windows\avisplitter.ini
[2010.08.24 18:28:14 | 000,000,414 | ---- | C] () -- C:\Windows\SysWow64\lame_acm.xml
[2010.08.24 18:28:13 | 000,881,664 | ---- | C] () -- C:\Windows\SysWow64\xvidcore.dll
[2010.08.24 18:28:13 | 000,205,824 | ---- | C] () -- C:\Windows\SysWow64\xvidvfw.dll
[2010.08.24 18:28:08 | 000,000,547 | ---- | C] () -- C:\Windows\SysWow64\ff_vfw.dll.manifest
[2010.08.24 18:28:07 | 000,085,504 | ---- | C] () -- C:\Windows\SysWow64\ff_vfw.dll
[2010.08.24 17:31:46 | 000,012,264 | ---- | C] () -- C:\Windows\SysNative\nvinfo.pb
[2010.08.24 17:25:17 | 000,006,136 | ---- | C] () -- C:\Windows\SysNative\drivers\nvphy.bin
[2010.08.24 17:06:17 | 002,359,296 | -HS- | C] () -- C:\Users\Aike\ntuser.dat
[2010.08.24 17:06:17 | 000,524,288 | -HS- | C] () -- C:\Users\Aike\NTUSER.DAT{016888bd-6c6f-11de-8d1d-001e0bcde3ec}.TMContainer00000000000000000002.regtrans-ms
[2010.08.24 17:06:17 | 000,524,288 | -HS- | C] () -- C:\Users\Aike\NTUSER.DAT{016888bd-6c6f-11de-8d1d-001e0bcde3ec}.TMContainer00000000000000000001.regtrans-ms
[2010.08.24 17:06:17 | 000,262,144 | -HS- | C] () -- C:\Users\Aike\ntuser.dat.LOG1
[2010.08.24 17:06:17 | 000,065,536 | -HS- | C] () -- C:\Users\Aike\NTUSER.DAT{016888bd-6c6f-11de-8d1d-001e0bcde3ec}.TM.blf
[2010.08.24 17:06:17 | 000,000,020 | -HS- | C] () -- C:\Users\Aike\ntuser.ini
[2010.08.24 17:06:17 | 000,000,000 | -HS- | C] () -- C:\Users\Aike\ntuser.dat.LOG2
[2010.08.24 16:53:16 | 000,000,000 | -H-- | C] () -- C:\Windows\SysNative\drivers\Msft_User_WpdFs_01_09_00.Wdf
[2010.08.24 16:50:52 | 4025,294,848 | -HS- | C] () -- C:\hiberfil.sys
[2010.01.30 19:13:39 | 000,000,057 | ---- | C] () -- C:\Windows\wininit.ini
[2009.07.14 01:42:10 | 000,064,000 | ---- | C] () -- C:\Windows\SysWow64\BWContextHandler.dll
[2009.07.13 23:03:59 | 000,364,544 | ---- | C] () -- C:\Windows\SysWow64\msjetoledb40.dll
[2009.01.05 14:44:10 | 000,000,483 | ---- | C] () -- C:\Windows\bdoscandellang.ini
[2008.10.07 09:13:30 | 000,197,912 | ---- | C] () -- C:\Windows\SysWow64\physxcudart_20.dll
[2008.10.07 09:13:22 | 000,058,648 | ---- | C] () -- C:\Windows\SysWow64\AgCPanelTraditionalChinese.dll
[2008.10.07 09:13:20 | 000,058,648 | ---- | C] () -- C:\Windows\SysWow64\AgCPanelSwedish.dll
[2008.10.07 09:13:20 | 000,058,648 | ---- | C] () -- C:\Windows\SysWow64\AgCPanelSpanish.dll
[2008.10.07 09:13:20 | 000,058,648 | ---- | C] () -- C:\Windows\SysWow64\AgCPanelSimplifiedChinese.dll
[2008.10.07 09:13:20 | 000,058,648 | ---- | C] () -- C:\Windows\SysWow64\AgCPanelPortugese.dll
[2008.10.07 09:13:20 | 000,058,648 | ---- | C] () -- C:\Windows\SysWow64\AgCPanelKorean.dll
[2008.10.07 09:13:20 | 000,058,648 | ---- | C] () -- C:\Windows\SysWow64\AgCPanelJapanese.dll
[2008.10.07 09:13:20 | 000,058,648 | ---- | C] () -- C:\Windows\SysWow64\AgCPanelGerman.dll
[2008.10.07 09:13:20 | 000,058,648 | ---- | C] () -- C:\Windows\SysWow64\AgCPanelFrench.dll
 
========== Alternate Data Streams ==========
 
@Alternate Data Stream - 203 bytes -> C:\ProgramData\TEMP:DFC5A2B2
@Alternate Data Stream - 115 bytes -> C:\ProgramData\TEMP:A8ADE5D8
< End of report >
         
--- --- ---


Alt 06.09.2010, 16:27   #6
Aike
 
Rechner verseucht ? macht was er will - Standard

Rechner verseucht ? macht was er will



OTL EXTRAS Logfile:
Code:
ATTFilter
OTL Extras logfile created on: 06.09.2010 16:17:37 - Run 1
OTL by OldTimer - Version 3.2.11.0     Folder = C:\Users\Aike\Desktop
64bit- Ultimate Edition  (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7600.16385)
Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy
 
5,00 Gb Total Physical Memory | 2,00 Gb Available Physical Memory | 45,00% Memory free
10,00 Gb Paging File | 7,00 Gb Available in Paging File | 71,00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 244,14 Gb Total Space | 143,20 Gb Free Space | 58,66% Space Free | Partition Type: NTFS
Drive D: | 465,76 Gb Total Space | 370,01 Gb Free Space | 79,44% Space Free | Partition Type: NTFS
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded
Drive J: | 221,62 Gb Total Space | 110,93 Gb Free Space | 50,05% Space Free | Partition Type: NTFS
Drive L: | 488,28 Gb Total Space | 157,25 Gb Free Space | 32,20% Space Free | Partition Type: NTFS
Drive M: | 443,23 Gb Total Space | 359,45 Gb Free Space | 81,10% Space Free | Partition Type: NTFS
 
Computer Name: AIKE-PC
Current User Name: Aike
Logged in as Administrator.
 
Current Boot Mode: Normal
Scan Mode: Current user
Include 64bit Scans
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Minimal
 
========== Extra Registry (SafeList) ==========
 
 
========== File Associations ==========
 
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation)
 
[HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation)
 
========== Shell Spawning ==========
 
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %* File not found
cmdfile [open] -- "%1" %* File not found
comfile [open] -- "%1" %* File not found
exefile [open] -- "%1" %* File not found
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- Reg Error: Key error.
htmlfile [print] -- rundll32.exe %windir%\system32\mshtml.dll,PrintHTML "%1" File not found
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %* File not found
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1" File not found
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation)
scrfile [open] -- "%1" /S File not found
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1 File not found
Directory [ACDSee 11.0.Browse] -- "C:\Program Files (x86)\ACD Systems\ACDSee\11.0\ACDSeeQV11.exe" "%1" (ACD Systems)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- Reg Error: Key error.
htmlfile [print] -- rundll32.exe %windir%\system32\mshtml.dll,PrintHTML "%1"
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation)
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [ACDSee 11.0.Browse] -- "C:\Program Files (x86)\ACD Systems\ACDSee\11.0\ACDSeeQV11.exe" "%1" (ACD Systems)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
 
========== Security Center Settings ==========
 
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
 
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
 
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = 28 4D B2 76 41 04 CA 01  [binary data]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
 
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
 
========== Authorized Applications List ==========
 
 
========== HKEY_LOCAL_MACHINE Uninstall List ==========
 
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{26A24AE4-039D-4CA4-87B4-2F86416021FF}" = Java(TM) 6 Update 21 (64-bit)
"{68660049-8D48-427C-9FF7-139D8340CDC0}" = MSVC80_x64
"{7CFA46E3-CC2F-4355-82AE-6012DC3633FD}" = NVIDIA ForceWare Network Access Manager
"{8220EEFE-38CD-377E-8595-13398D740ACE}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17
"{C3113E55-7BCB-4de3-8EBF-60E6CE6B2296}_is1" = SiSoftware Sandra Lite 2010.SP2
"BC15EA930074932BB2C4B4493C9FD4EA95087D1A" = Windows-Treiberpaket - Nokia pccsmcfd  (10/12/2007 6.85.4.0)
"CPUID CPU-Z_is1" = CPUID CPU-Z 1.55
"NVIDIA Drivers" = NVIDIA Drivers
"WinRAR archiver" = WinRAR archiver
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{02627EE5-EACA-4742-A9CC-E687631773E4}" = Nero ShowTime
"{086A7D8C-0A38-4C7F-819A-620275550D5C}" = Nero Burning ROM Help
"{0A35B15C-9CCD-4C0C-BD5B-34ABF8C95813}_is1" = ICQ 7.2 Build #3143 Banner Remover 1.0
"{14DCD95A-EBA3-4BF0-B7EF-533852E99BE6}" = LG PC Suite II
"{1ADE1AA0-7F82-4BB1-B1BD-727DE438057B}" = Cool & Quiet
"{1C00C7C5-E615-4139-B817-7F4003DE68C0}" = Nero PhotoSnap Help
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{20400DBD-E6DB-45B8-9B6B-1DD7033818EC}" = Nero InfoTool Help
"{212748BB-0DA5-46DE-82A1-403736DC9F27}" = MSVC80_x86
"{2348B586-C9AE-46CE-936C-A68E9426E214}" = Nero StartSmart Help
"{26A24AE4-039D-4CA4-87B4-2F83216021FF}" = Java(TM) 6 Update 21
"{300578F9-9EFF-4B93-9AB1-C0E5707EF463}" = ACDSee Foto-Manager 2009
"{33CF58F5-48D8-4575-83D6-96F574E4D83A}" = Nero DriveSpeed
"{359CFC0A-BEB1-440D-95BA-CF63A86DA34F}" = Nero Recode
"{368BA326-73AD-4351-84ED-3C0A7A52CC53}" = Nero Rescue Agent
"{43E39830-1826-415D-8BAE-86845787B54B}" = Nero Vision
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{56C049BE-79E9-4502-BEA7-9754A3E60F9B}" = neroxml
"{595A3116-40BB-4E0F-A2E8-D7951DA56270}" = NeroExpress
"{5D9BE3C1-8BA4-4E7E-82FD-9F74FA6815D1}" = Nero Vision Help
"{5E08ECD1-C98E-4711-BF65-8FD736B3F969}" = Nero RescueAgent Help
"{60C731FB-C951-41CE-AD41-8E54C8594609}" = Nero Disc Copy Gadget Help
"{62AC81F6-BDD3-4110-9D36-3E9EAAB40999}" = Nero CoverDesigner
"{6CF47FD1-3CF8-4206-BA24-A2B1E43D8CCA}" = IncrediMail
"{716E0306-8318-4364-8B8F-0CC4E9376BAC}" = MSXML 4.0 SP2 Parser and SDK
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{72EFBFE4-C74F-4187-AEFD-73EA3BE968D6}" = ICQ7.2
"{75AE8014-1184-4BC0-B279-C879540719EE}" = PhotoMail Maker
"{7748AC8C-18E3-43BB-959B-088FAEA16FB2}" = Nero StartSmart
"{77E33D87-255E-413E-9C8D-EED2A7F9BEBF}" = Nero Live Help
"{7829DB6F-A066-4E40-8912-CB07887C20BB}" = Nero BurnRights
"{7C7F30F4-94E7-4AA8-8941-90C4A80C68BF}" = NVIDIA Performance
"{7E84FAC8-C518-40F9-9807-7455301D6D25}" = SamsungConnectivityCableDriver
"{83202942-84B3-4C50-8622-B8C0AA2D2885}" = Nero Express Help
"{85243696-5E58-4357-9CF8-3498C609941D}" = NeroLiveGadget Help
"{869200DB-287A-4DC0-B02B-2B6787FBCD4C}" = Nero DiscSpeed
"{98A67610-A3B5-4098-A423-3708040026D3}" = "Nero SoundTrax Help
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9E82B934-9A25-445B-B8DF-8012808074AC}" = Nero PhotoSnap
"{9E9FDDE6-2C26-492A-85A0-05646B3F2795}" = NeroLiveGadget
"{A209525B-3377-43F4-B886-32F6B6E7356F}" = Nero WaveEditor
"{A8F2089B-1F79-4BF6-B385-A2C2B0B9A74D}" = ImagXpress
"{AB67580-257C-45FF-B8F4-C8C30682091A}_is1" = SIW version 2010.07.14
"{AB6F6C80-1C35-4672-BDEF-F26FF214C409}" = Samsung PC Studio 7
"{AC599724-5755-48C1-ABE7-ABB857652930}" = PC Connectivity Solution
"{AC76BA86-7AD7-1031-7B44-A93000000001}" = Adobe Reader 9.3.4 - Deutsch
"{AD6BC5CC-2EF0-49C4-B33D-CDC8B2C4DC80}" = Nero Recode Help
"{B1ADF008-E898-4FE2-8A1F-690D9A06ACAF}" = DolbyFiles
"{b29aa9fe-341c-45f3-818e-71733775a728}" = Nero 9
"{B2EC4A38-B545-4A00-8214-13FE0E915E6D}" = Advertising Center
"{B78120A0-CF84-4366-A393-4D0A59BC546C}" = Menu Templates - Starter Kit
"{B83FC356-B7C0-441F-8A4D-D71E088E7974}" = NVIDIA PhysX
"{BD5CA0DA-71AD-43DA-B19E-6EEE0C9ADC9A}" = Nero ControlCenter
"{BEE64C14-BEF1-4610-8A68-A16EAA47B882}" = Futuremark SystemInfo
"{C3ABE126-2BB2-4246-BFE1-6797679B3579}" = LG USB Modem driver
"{C5A7CB6C-E76D-408F-BA0E-85605420FE9D}" = SoundTrax
"{CC019E3F-59D2-4486-8D4B-878105B62A71}" = Nero DiscSpeed Help
"{CE96F5A5-584D-4F8F-AA3E-9BAED413DB72}" = Nero CoverDesigner Help
"{D025A639-B9C9-417D-8531-208859000AF8}" = NeroBurningROM
"{D9DCF92E-72EB-412D-AC71-3B01276E5F8B}" = Nero ShowTime
"{DED53B0B-B67C-4244-AE6A-D6FD3C28D1EF}" = Ad-Aware
"{DF6A95F5-ADC1-406A-BDC6-2AA7CC0182AA}" = Nero Live
"{E498385E-1C51-459A-B45F-1721E37AA1A0}" = Movie Templates - Starter Kit
"{E5C7D048-F9B4-4219-B323-8BDB01A2563D}" = Nero DriveSpeed Help
"{E8A80433-302B-4FF1-815D-FCC8EAC482FF}" = Nero Installer
"{EF5B1E83-1403-4F0E-A8E6-C169DF0CCE8C}" = LG PC Suite II
"{F0A37341-D692-11D4-A984-009027EC0A9C}" = SoundMAX
"{F1861F30-3419-44DB-B2A1-C274825698B3}" = Nero Disc Copy Gadget
"{F333A33D-125C-32A2-8DCE-5C5D14231E27}" = Visual C++ 2008 x86 Runtime - (v9.0.30729)
"{F333A33D-125C-32A2-8DCE-5C5D14231E27}.vc_x86runtime_30729_01" = Visual C++ 2008 x86 Runtime - v9.0.30729.01
"{F4041DCE-3FE1-4E18-8A9E-9DE65231EE36}" = Nero ControlCenter
"{F6BDD7C5-89ED-4569-9318-469AA9732572}" = Nero BurnRights Help
"{FBCDFD61-7DCF-4E71-9226-873BA0053139}" = Nero InfoTool
"{FF35F637-72B9-43BE-A281-06EB2854393A}" = 3DMark03
"Ad-Aware" = Ad-Aware
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"Afterburner" = MSI Afterburner 1.6.1
"Avira AntiVir Desktop" = Avira AntiVir Personal - Free Antivirus
"Browser Defender_is1" = Browser Defender 2.0.6.15
"CHIP System-Check-Tool_is1" = CHIP System-Check-Tool 1.1.9.15
"CloneCD" = CloneCD
"Code of Honor 3/DE-German_is1" = Code of Honor 3
"DVDVideoSoftTB Toolbar" = DVDVideoSoftTB Toolbar
"EasyBCD" = EasyBCD 2.0
"EPSON Scanner" = EPSON Scan
"Free Audio CD Burner_is1" = Free Audio CD Burner version 1.4
"Free YouTube to MP3 Converter_is1" = Free YouTube to MP3 Converter version 3.8
"HijackThis" = HijackThis 2.0.2
"Host OpenAL (ADI)" = Host OpenAL (ADI)
"ICQToolbar" = ICQ Toolbar
"IncrediMail" = IncrediMail 2.0
"InstallShield_{7C7F30F4-94E7-4AA8-8941-90C4A80C68BF}" = NVIDIA Performance
"InstallShield_{7CFA46E3-CC2F-4355-82AE-6012DC3633FD}" = NVIDIA ForceWare Network Access Manager
"KLiteCodecPack_is1" = K-Lite Codec Pack 5.4.4 (Full)
"Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware
"Mozilla Firefox (3.6.8)" = Mozilla Firefox (3.6.8)
"PhotoMail" = PhotoMail Maker
"RHEM4" = RHEM4
"Samsung PC Studio 7" = Samsung PC Studio 7
"Sniper Ghost Warrior_is1" = Sniper Ghost Warrior
"Spyware Doctor" = Spyware Doctor 7.0
"SystemRequirementsLab" = System Requirements Lab
"Terrorist Takedown 3/EN-English_is1" = Terrorist Takedown 3
"uTorrent" = µTorrent
"VirtualCloneDrive" = VirtualCloneDrive
"WinRAR archiver" = WinRAR
"xp-AntiSpy" = xp-AntiSpy 3.97-9
 
========== Last 10 Event Log Errors ==========
 
[ Application Events ]
Error - 05.09.2010 05:41:10 | Computer Name = Aike-PC | Source = Customer Experience Improvement Program | ID = 1008
Description = 
 
Error - 05.09.2010 06:23:00 | Computer Name = Aike-PC | Source = Application Error | ID = 1000
Description = Name der fehlerhaften Anwendung: pctsSvc.exe, Version: 7.0.0.95, Zeitstempel:
 0x4af380db  Name des fehlerhaften Moduls: SDAVgate.dll, Version: 7.0.3.28, Zeitstempel:
 0x4b04d8c3  Ausnahmecode: 0xc0000006  Fehleroffset: 0x000bcb9a  ID des fehlerhaften Prozesses:
 0x904  Startzeit der fehlerhaften Anwendung: 0x01cb4cdb86f188a0  Pfad der fehlerhaften
 Anwendung: C:\Program Files (x86)\Spyware Doctor\pctsSvc.exe  Pfad des fehlerhaften
 Moduls: C:\Program Files (x86)\Spyware Doctor\avengine\SDAVgate.dll  Berichtskennung:
 8edf6a10-b8d7-11df-853e-002618249447
 
Error - 05.09.2010 06:23:00 | Computer Name = Aike-PC | Source = Application Error | ID = 1005
Description = Aus einem der folgenden Gründe kann nicht auf die Datei "L:\found.000\dir0002.chk\1998
 - Sensationell\08 - Mach's gut.mp3" zugegriffen werden:  Es besteht ein Problem mit
 der Netzwerkverbindung, dem Datenträger mit der gespeicherten Datei bzw. den auf
 dem Computer installierten  Speichertreibern, oder der Datenträger fehlt.  Das Programm
 PC Tools Security Service wurde wegen dieses Fehlers geschlossen.    Programm: PC Tools
 Security Service  Datei: L:\found.000\dir0002.chk\1998 - Sensationell\08 - Mach's
 gut.mp3    Der Fehlerwert ist im Abschnitt "Zusätzliche Dateien" aufgelistet.  Benutzeraktion
1.
 Öffnen Sie die Datei erneut.  Diese Situation ist eventuell ein temporäres Problem,
 das selbstständig behoben wird, wenn das Programm erneut ausgeführt wird.  2.  Wenn
 Sie weiterhin nicht auf die Datei zugreifen können und   - diese sich im Netzwerk 
befindet,   dann sollte der Netzwerkadministrator überprüfen, dass kein Netzwerkproblem
 besteht und dass eine Verbindung mit dem Server hergestellt werden kann.   - diese
 sich auf einem Wechseldatenträger, wie z. B. einer Diskette oder einer CD, befindet,
 überprüfen Sie, ob der Datenträger richtig in den Computer eingelegt ist.  3. Überprüfen
 und reparieren Sie das Dateisystem, indem Sie CHKDSK ausführen. Klicken Sie dazu
 im Menü "Start" auf "Ausführen", geben Sie CMD ein, und klicken Sie auf "OK". Geben
 Sie an der Eingabeaufforderung CHKDSK /F ein, und drücken Sie die EINGABETASTE.
4.
 Stellen Sie die Datei von einer Sicherungskopie wieder her, wenn das Problem weiterhin
 besteht.  5. Überprüfen Sie, ob andere Dateien auf demselben Datenträger geöffnet
 werden können. Falls dies nicht möglich ist, ist der Datenträger eventuell beschädigt.
   Wenden Sie sich an den Administrator oder den Hersteller der Computerhardware, 
um weitere Unterstützung zu erhalten, wenn es sich um eine Festplatte handelt.    Zusätzliche
 Daten  Fehlerwert: C000009C  Datenträgertyp: 3
 
Error - 05.09.2010 10:18:02 | Computer Name = Aike-PC | Source = Application Error | ID = 1000
Description = Name der fehlerhaften Anwendung: pctsSvc.exe, Version: 7.0.0.95, Zeitstempel:
 0x4af380db  Name des fehlerhaften Moduls: SDAVgate.dll, Version: 7.0.3.28, Zeitstempel:
 0x4b04d8c3  Ausnahmecode: 0xc0000006  Fehleroffset: 0x000bcb9a  ID des fehlerhaften Prozesses:
 0x858  Startzeit der fehlerhaften Anwendung: 0x01cb4cfa5d5343c0  Pfad der fehlerhaften
 Anwendung: C:\Program Files (x86)\Spyware Doctor\pctsSvc.exe  Pfad des fehlerhaften
 Moduls: C:\Program Files (x86)\Spyware Doctor\avengine\SDAVgate.dll  Berichtskennung:
 6400d2e0-b8f8-11df-9f4b-002618249447
 
Error - 05.09.2010 10:18:02 | Computer Name = Aike-PC | Source = Application Error | ID = 1005
Description = Aus einem der folgenden Gründe kann nicht auf die Datei "L:\found.000\dir0002.chk\1998
 - Sensationell\08 - Mach's gut.mp3" zugegriffen werden:  Es besteht ein Problem mit
 der Netzwerkverbindung, dem Datenträger mit der gespeicherten Datei bzw. den auf
 dem Computer installierten  Speichertreibern, oder der Datenträger fehlt.  Das Programm
 PC Tools Security Service wurde wegen dieses Fehlers geschlossen.    Programm: PC Tools
 Security Service  Datei: L:\found.000\dir0002.chk\1998 - Sensationell\08 - Mach's
 gut.mp3    Der Fehlerwert ist im Abschnitt "Zusätzliche Dateien" aufgelistet.  Benutzeraktion
1.
 Öffnen Sie die Datei erneut.  Diese Situation ist eventuell ein temporäres Problem,
 das selbstständig behoben wird, wenn das Programm erneut ausgeführt wird.  2.  Wenn
 Sie weiterhin nicht auf die Datei zugreifen können und   - diese sich im Netzwerk 
befindet,   dann sollte der Netzwerkadministrator überprüfen, dass kein Netzwerkproblem
 besteht und dass eine Verbindung mit dem Server hergestellt werden kann.   - diese
 sich auf einem Wechseldatenträger, wie z. B. einer Diskette oder einer CD, befindet,
 überprüfen Sie, ob der Datenträger richtig in den Computer eingelegt ist.  3. Überprüfen
 und reparieren Sie das Dateisystem, indem Sie CHKDSK ausführen. Klicken Sie dazu
 im Menü "Start" auf "Ausführen", geben Sie CMD ein, und klicken Sie auf "OK". Geben
 Sie an der Eingabeaufforderung CHKDSK /F ein, und drücken Sie die EINGABETASTE.
4.
 Stellen Sie die Datei von einer Sicherungskopie wieder her, wenn das Problem weiterhin
 besteht.  5. Überprüfen Sie, ob andere Dateien auf demselben Datenträger geöffnet
 werden können. Falls dies nicht möglich ist, ist der Datenträger eventuell beschädigt.
   Wenden Sie sich an den Administrator oder den Hersteller der Computerhardware, 
um weitere Unterstützung zu erhalten, wenn es sich um eine Festplatte handelt.    Zusätzliche
 Daten  Fehlerwert: C000009C  Datenträgertyp: 3
 
Error - 06.09.2010 02:20:36 | Computer Name = Aike-PC | Source = Customer Experience Improvement Program | ID = 1008
Description = 
 
Error - 06.09.2010 04:07:19 | Computer Name = Aike-PC | Source = Lavasoft Ad-Aware Service | ID = 0
Description = 
 
Error - 06.09.2010 04:59:36 | Computer Name = Aike-PC | Source = Lavasoft Ad-Aware Service | ID = 0
Description = 
 
Error - 06.09.2010 09:08:39 | Computer Name = Aike-PC | Source = SideBySide | ID = 16842785
Description = Fehler beim Generieren des Aktivierungskontextes für "C:\Program Files
 (x86)\Samsung\Samsung PC Studio 7\TIS_VistaPIM.dll".  Die abhängige Assemblierung
 "Microsoft.VC80.DebugCRT,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0""
 konnte nicht gefunden werden.  Verwenden Sie für eine detaillierte Diagnose das Programm
 "sxstrace.exe".
 
Error - 06.09.2010 09:08:55 | Computer Name = Aike-PC | Source = SideBySide | ID = 16842832
Description = Fehler beim Generieren des Aktivierungskontexts für "C:\Program Files
 (x86)\Nero\Nero 9\Nero PhotoSnap\PhotoSnapViewer.exe.Manifest". Fehler in  Manifest-
 oder Richtliniendatei "" in Zeile .  Eine für die Anwendung erforderliche Komponentenversion
 steht in Konflikt mit  einer anderen, bereits aktiven Komponentenversion.  In Konflikt
 stehende Komponenten:.  Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16385_none_fa645303170382f6.manifest.
Komponente
 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16385_none_421189da2b7fabfc.manifest.
 
[ System Events ]
Error - 06.09.2010 10:11:12 | Computer Name = Aike-PC | Source = Disk | ID = 262151
Description = Fehlerhafter Block bei Gerät \Device\Harddisk0\DR0.
 
Error - 06.09.2010 10:11:13 | Computer Name = Aike-PC | Source = Disk | ID = 262151
Description = Fehlerhafter Block bei Gerät \Device\Harddisk0\DR0.
 
Error - 06.09.2010 10:11:14 | Computer Name = Aike-PC | Source = Disk | ID = 262151
Description = Fehlerhafter Block bei Gerät \Device\Harddisk0\DR0.
 
Error - 06.09.2010 10:11:15 | Computer Name = Aike-PC | Source = Disk | ID = 262151
Description = Fehlerhafter Block bei Gerät \Device\Harddisk0\DR0.
 
Error - 06.09.2010 10:11:16 | Computer Name = Aike-PC | Source = Disk | ID = 262151
Description = Fehlerhafter Block bei Gerät \Device\Harddisk0\DR0.
 
Error - 06.09.2010 10:11:17 | Computer Name = Aike-PC | Source = Disk | ID = 262151
Description = Fehlerhafter Block bei Gerät \Device\Harddisk0\DR0.
 
Error - 06.09.2010 10:11:18 | Computer Name = Aike-PC | Source = Disk | ID = 262151
Description = Fehlerhafter Block bei Gerät \Device\Harddisk0\DR0.
 
Error - 06.09.2010 10:11:19 | Computer Name = Aike-PC | Source = Disk | ID = 262151
Description = Fehlerhafter Block bei Gerät \Device\Harddisk0\DR0.
 
Error - 06.09.2010 10:11:20 | Computer Name = Aike-PC | Source = Disk | ID = 262151
Description = Fehlerhafter Block bei Gerät \Device\Harddisk0\DR0.
 
Error - 06.09.2010 10:11:21 | Computer Name = Aike-PC | Source = Disk | ID = 262151
Description = Fehlerhafter Block bei Gerät \Device\Harddisk0\DR0.
 
 
< End of report >
         
--- --- ---

Alt 06.09.2010, 16:30   #7
cosinus
/// Winkelfunktion
/// TB-Süch-Tiger™
 
Rechner verseucht ? macht was er will - Standard

Rechner verseucht ? macht was er will



Zitat:
D:\Spiele Björn\Cracks\cod4 crack & serial\rzr-cod4.exe (Trojan.Agent.CK) -> Quarantined and deleted successfully.
J:\OO.DiskRecovery.v6.0.6298.German.Incl.Keymaker-ZWT\00 DiskRecovery v6.0.629\keygen.exe (Backdoor.RBot) -> Quarantined and deleted successfully.
J:\Spiele Björn\Cracks\cod4 crack & serial\rzr-cod4.exe (Trojan.Agent.CK) -> Quarantined and deleted successfully.
Selber schuld!

Die (Be)nutzung von Cracks, Serials und Keygens ist illegal, somit gibt es im Trojaner-Board keinen weiteren Support mehr.

Für Dich geht es hier weiter => Neuaufsetzen des Systems
Bitte auch alle Passwörter abändern (für E-Mail-Konten, StudiVZ, Ebay...einfach alles!) da nicht selten in dieser dubiosen Software auch Keylogger und Backdoorfunktionen stecken.

Danach nie wieder sowas anrühren!
__________________
"Die Wahrheit ist normalerweise nur eine Entschuldigung für einen Mangel an Fantasie." (Elim Garak)

Das Trojaner-Board unterstützen
Warum Linux besser als Windows ist!

Antwort

Themen zu Rechner verseucht ? macht was er will
antivir, buchstaben, center, einfach, gesuch, gesucht, mediaplayer, plattmachen, programme, programmen, rechner, rechner verseucht, rießen, runter, spyware, taschenrechner, verseucht, windows, windows 7, öffnet



Ähnliche Themen: Rechner verseucht ? macht was er will


  1. Ist mei Rechner verseucht?
    Plagegeister aller Art und deren Bekämpfung - 30.10.2015 (13)
  2. Glaube, mein Rechner ist verseucht.
    Plagegeister aller Art und deren Bekämpfung - 03.06.2015 (11)
  3. DHL Paketankündigung - Link angeklickt - Rechner verseucht?
    Log-Analyse und Auswertung - 27.05.2015 (17)
  4. Neuer Rechner, direkt verseucht
    Plagegeister aller Art und deren Bekämpfung - 26.01.2015 (3)
  5. Rechner scheint verseucht!
    Plagegeister aller Art und deren Bekämpfung - 11.06.2014 (13)
  6. Rechner verseucht?
    Log-Analyse und Auswertung - 21.04.2011 (9)
  7. Rechner verseucht, werde den Trojaner nicht los.
    Plagegeister aller Art und deren Bekämpfung - 18.03.2011 (14)
  8. Rechner verseucht, AntiVir scheitert
    Plagegeister aller Art und deren Bekämpfung - 16.03.2011 (12)
  9. Rechner noch verseucht?
    Plagegeister aller Art und deren Bekämpfung - 13.01.2010 (46)
  10. Hilfe mein Rechner ist verseucht!!!
    Mülltonne - 31.10.2008 (0)
  11. Rechner verseucht???
    Log-Analyse und Auswertung - 16.08.2007 (18)
  12. Ist mein Rechner verseucht?
    Log-Analyse und Auswertung - 18.03.2007 (6)
  13. Rechner ist vollkommen verseucht
    Log-Analyse und Auswertung - 09.04.2006 (3)
  14. Mein Rechner ist verseucht, brauche Hilfe ...
    Log-Analyse und Auswertung - 28.06.2005 (12)
  15. Bitte um Hilfe - Rechner total verseucht!
    Log-Analyse und Auswertung - 02.06.2005 (11)
  16. Hilfe - Rechner verseucht
    Plagegeister aller Art und deren Bekämpfung - 10.05.2005 (3)
  17. hilfe mein rechner ist verseucht
    Plagegeister aller Art und deren Bekämpfung - 08.11.2003 (2)

Zum Thema Rechner verseucht ? macht was er will - Hi erstmal. Ich habe ein rießen problem. Mein Rechner macht was er will. Habe Windows 7 64bit. Avira Antivir und Spyware Doctor. Also ich beschreib mal das problem. Er öffnet - Rechner verseucht ? macht was er will...
Archiv
Du betrachtest: Rechner verseucht ? macht was er will auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.