Trojaner-Board - Beim Spielen (egal ob online/offline) trennt sich das Internet nach einiger Zeit

Hallo,

ich habe ein Problem mit meinem PC [Vista 64bit, Arcor DSL 6000 über Einwahl-DSL-Modem und LAN-Kabel].

Seit ca. 2 Wochen habe ich das Problem, dass beim Spielen mein PC nach einiger Zeit anfängt zu ruckeln. Die Ruckler werden immer schlimmer, bis ich dann irgendwann vom Internet getrennt werde. Bei meiner Internet-Verbindung steht daraufhin die Spezifikation "nur lokal" [Wenn alles in Ordnung ist steht da "Lokal und Internet"]. Meine LAN-Verbindung hat nur eingeschränkte Konnektivität.
Um wieder ins Internet zu können muss ich das LAN-Kabel ziehen und wieder hineinstecken. Nach einiger Zeit im Spiel hab ich dann wieder das gleiche Problem.

Die Spiele sind z.B. Counter Strike Source, Fallout 3, GTA IV.

Ich hoffe jemand kann mir helfen.

Hier ist Teil 1 vom Log:

Code:

Logfile of random's system information tool 1.06 (written by random/random)

Run by lmNt at 2009-07-20 16:30:27

Microsoft® Windows Vista™ Home Premium  Service Pack 1

System drive C: has 9 GB (23%) free of 40 GB

Total RAM: 6133 MB (71% free)
 

Logfile of Trend Micro HijackThis v2.0.2

Scan saved at 16:30:28, on 20.07.2009

Platform: Windows Vista SP1 (WinNT 6.00.1905)

MSIE: Internet Explorer v7.00 (7.00.6001.18248)

Boot mode: Normal
 

Running processes:

C:\Program Files\ASUS\Six Engine\SixEngine.exe

D:\Programme\Spybot - Search & Destroy\TeaTimer.exe

C:\Program Files\ASUS\TurboV\TurboV.exe

C:\Program Files (x86)\Common Files\Real\Update_OB\realsched.exe

D:\Programme\Avira\AntiVir Desktop\avgnt.exe

D:\Programme\SetPoint\SetPoint\x86\SetPoint32.exe

D:\Programme\Mumble\dbus-daemon.exe

C:\Windows\SysWOW64\conime.exe

D:\Programme\Steam\Steam.exe

D:\Programme\Miranda IM\miranda32.exe

C:\Users\lmNt\Desktop\RSIT.exe

D:\Programme\HijiackThis\lmNt.exe
 

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = h**p://go.microsoft.com/fwlink/?LinkId=54896

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = h**p://go.microsoft.com/fwlink/?LinkId=69157

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = h**p://go.microsoft.com/fwlink/?LinkId=69157

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = h**p://go.microsoft.com/fwlink/?LinkId=54896

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = h**p://go.microsoft.com/fwlink/?LinkId=54896

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = h**p://go.microsoft.com/fwlink/?LinkId=69157

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = 

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = 

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = 

O1 - Hosts: ::1 localhost

O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll

O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - D:\PROGRA~1\SPYBOT~1\SDHelper.dll

O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - D:\PROGRA~1\MICROS~1\Office12\GRA8E1~1.DLL

O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre6\bin\ssv.dll

O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll

O3 - Toolbar: &Save Flash - {4064EA35-578D-4073-A834-C96D82CBCF40} - D:\Programme\Save Flash\SaveFlash.dll

O4 - HKLM\..\Run: [JMB36X IDE Setup] C:\Windows\RaidTool\xInsIDE.exe

O4 - HKLM\..\Run: [TurboV] "C:\Program Files\ASUS\TurboV\TurboV.exe"

O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files (x86)\Common Files\Real\Update_OB\realsched.exe"  -osboot

O4 - HKLM\..\Run: [avgnt] "D:\Programme\Avira\AntiVir Desktop\avgnt.exe" /min

O4 - HKCU\..\Run: [SpybotSD TeaTimer] D:\Programme\Spybot - Search & Destroy\TeaTimer.exe

O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOKALER DIENST')

O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOKALER DIENST')

O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETZWERKDIENST')

O4 - Global Startup: Logitech SetPoint.lnk = ?

O8 - Extra context menu item: Nach Microsoft E&xel exportieren - res://D:\PROGRA~1\MICROS~1\Office12\EXCEL.EXE/3000

O9 - Extra button: An OneNote senden - {2670000A-7350-4f3c-8081-5663EE0C6C49} - D:\PROGRA~1\MICROS~1\Office12\ONBttnIE.dll

O9 - Extra 'Tools' menuitem: An OneNote s&enden - {2670000A-7350-4f3c-8081-5663EE0C6C49} - D:\PROGRA~1\MICROS~1\Office12\ONBttnIE.dll

O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - D:\PROGRA~1\MICROS~1\Office12\REFIEBAR.DLL

O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - D:\PROGRA~1\SPYBOT~1\SDHelper.dll

O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - D:\PROGRA~1\SPYBOT~1\SDHelper.dll

O13 - Gopher Prefix: 

O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - h**p://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab

O17 - HKLM\System\CCS\Services\Tcpip\..\{2DDAEFEC-A985-4180-AE5E-868EE1E82E98}: NameServer = 195.50.140.114 195.50.140.252

O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - D:\PROGRA~1\MICROS~1\Office12\GR99D3~1.DLL

O20 - AppInit_DLLs: TeknoGods.dll

O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files (x86)\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe

O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)

O23 - Service: Avira AntiVir Planer (AntiVirSchedulerService) - Avira GmbH - D:\Programme\Avira\AntiVir Desktop\sched.exe

O23 - Service: Avira AntiVir Guard (AntiVirService) - Avira GmbH - D:\Programme\Avira\AntiVir Desktop\avguard.exe

O23 - Service: ASUS System Control Service (AsSysCtrlService) - Unknown owner - C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.00\AsSysCtrlService.exe

O23 - Service: ##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762## (Bonjour Service) - Apple Computer, Inc. - C:\Program Files (x86)\Bonjour\mDNSResponder.exe

O23 - Service: @dfsrres.dll,-101 (DFSR) - Unknown owner - C:\Windows\system32\DFSR.exe (file missing)

O23 - Service: FLEXnet Licensing Service - Acresso Software Inc. - C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe

O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe

O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: Logitech Bluetooth Service (LBTServ) - Logitech, Inc. - C:\Program Files\Common Files\Logishrd\Bluetooth\LBTServ.exe

O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)

O23 - Service: Nero BackItUp Scheduler 3 - Nero AG - D:\Programme\Nero\Nero8\Nero BackItUp\NBService.exe

O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: NMIndexingService - Nero AG - C:\Program Files (x86)\Common Files\Nero\Lib\NMIndexingService.exe

O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)

O23 - Service: PLFlash DeviceIoControl Service - Prolific Technology Inc. - C:\Windows\SysWOW64\IoctlSvc.exe

O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe

O23 - Service: PnkBstrB - Unknown owner - C:\Windows\system32\PnkBstrB.exe

O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)

O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: SBSD Security Center Service (SBSDWSCService) - Safer Networking Ltd. - D:\Programme\Spybot - Search & Destroy\SDWinSec.exe

O23 - Service: ServiceLayer - Nokia. - C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe

O23 - Service: @%SystemRoot%\system32\SLsvc.exe,-101 (slsvc) - Unknown owner - C:\Windows\system32\SLsvc.exe (file missing)

O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)

O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)

O23 - Service: StarWind AE Service (StarWindServiceAE) - Rocket Division Software - D:\Programme\Alcohol 120\StarWind\StarWindServiceAE.exe

O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe

O23 - Service: TunngleService - Tunngle.net GmbH - D:\Programme\Tunngle\TnglCtrl.exe

O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)

O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)

O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)

O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)

O23 - Service: @%ProgramFiles%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
 

--

End of file - 8834 bytes

Weiter im nächsten Post.

Teil2 vom Log:

Code:



======Scheduled tasks folder======
 

C:\Windows\tasks\RtlVistaStart.job

C:\Windows\tasks\User_Feed_Synchronization-{65E99F7E-E553-4501-9BC2-0CAE34D05264}.job
 

======Registry dump======
 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]

Adobe PDF Link Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-02-27 75128]
 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{53707962-6F74-2D53-2644-206D7942484F}]

Spybot-S&D IE Protection - D:\PROGRA~1\SPYBOT~1\SDHelper.dll [2009-01-26 1879896]
 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]

Groove GFS Browser Helper - D:\PROGRA~1\MICROS~1\Office12\GRA8E1~1.DLL [2006-10-27 2210608]
 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]

Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre6\bin\ssv.dll [2009-04-07 320920]
 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]

Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll [2009-04-07 35840]
 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]

{4064EA35-578D-4073-A834-C96D82CBCF40} - &Save Flash - D:\Programme\Save Flash\SaveFlash.dll [2008-01-09 991232]
 

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]

"JMB36X IDE Setup"=C:\Windows\RaidTool\xInsIDE.exe [2008-11-18 36864]

"TurboV"=C:\Program Files\ASUS\TurboV\TurboV.exe [2008-10-21 4040192]

"TkBellExe"=C:\Program Files (x86)\Common Files\Real\Update_OB\realsched.exe [2009-06-24 198160]

"avgnt"=D:\Programme\Avira\AntiVir Desktop\avgnt.exe [2009-03-02 209153]
 

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]

"AdobeBridge"= []

"SpybotSD TeaTimer"=D:\Programme\Spybot - Search & Destroy\TeaTimer.exe [2009-03-05 2260480]
 

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup

Logitech SetPoint.lnk - D:\Programme\SetPoint\SetPoint\SetPoint.exe
 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]

"AppInit_DLLS"="TeknoGods.dll"
 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]

"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=D:\PROGRA~1\MICROS~1\Office12\GRA8E1~1.DLL [2006-10-27 2210608]
 

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]

"EnableLUA"=0

"dontdisplaylastusername"=0

"legalnoticecaption"=

"legalnoticetext"=

"shutdownwithoutlogon"=1

"undockwithoutlogon"=1

"EnableUIADesktopToggle"=0
 

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]

"NoActiveDesktop"=

"ForceActiveDesktopOn"=

"NoActiveDesktopChanges"=
 

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
 

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
 

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{2bc7c29a-31a7-11de-836f-00248c09b3ab}]

shell\AutoRun\command - C:\Windows\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL RuNdLl32.EXE      .\RECYCLER\S-5-3-42-2819952290-8240758988-879315005-3665\jwgkvsq.vmx,ahaezedrn
 

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{458600a8-212d-11de-b2e6-00248c09b3ab}]

shell\AutoRun\command - U:\FalloutLauncher.exe
 

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{576af68a-2151-11de-989a-806e6f6e6963}]

shell\AutoRun\command - E:\.\Bin\Assetup.exe
 

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{81674d28-37c0-11de-8fc7-00248c09b3ab}]

shell\AutoRun\command - C:\Windows\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL RuNdLl32.EXE      .\RECYCLER\S-5-3-42-2819952290-8240758988-879315005-3665\jwgkvsq.vmx,ahaezedrn
 
 

======File associations======
 

.js - edit - "D:\Programme\Dreamweaver\Dreamweaver 8\dreamweaver.exe" "%1"
 

======List of files/folders created in the last 1 months======
 

2009-07-20 16:30:27 ----D---- C:\rsit

2009-07-19 16:31:21 ----D---- C:\Users\***\AppData\Roaming\Malwarebytes

2009-07-19 16:31:16 ----D---- C:\ProgramData\Malwarebytes

2009-07-19 16:02:51 ----A---- C:\Windows\system32\netfxperf.dll

2009-07-19 16:02:48 ----A---- C:\Windows\system32\dfshim.dll

2009-07-19 16:02:44 ----A---- C:\Windows\system32\mscoree.dll

2009-07-19 16:02:42 ----A---- C:\Windows\system32\mscorier.dll

2009-07-19 16:02:41 ----A---- C:\Windows\system32\mscories.dll

2009-07-19 16:00:12 ----A---- C:\Windows\system32\tzres.dll

2009-07-19 15:54:30 ----A---- C:\Windows\system32\mshtml.dll

2009-07-19 15:54:27 ----A---- C:\Windows\system32\urlmon.dll

2009-07-19 15:54:27 ----A---- C:\Windows\system32\ieframe.dll

2009-07-19 15:54:26 ----A---- C:\Windows\system32\wininet.dll

2009-07-19 15:54:26 ----A---- C:\Windows\system32\iertutil.dll

2009-07-19 15:54:25 ----A---- C:\Windows\system32\occache.dll

2009-07-19 15:54:25 ----A---- C:\Windows\system32\mstime.dll

2009-07-19 15:54:25 ----A---- C:\Windows\system32\msfeeds.dll

2009-07-19 15:54:25 ----A---- C:\Windows\system32\jsproxy.dll

2009-07-19 15:54:25 ----A---- C:\Windows\system32\ieUnatt.exe

2009-07-19 15:54:25 ----A---- C:\Windows\system32\ieencode.dll

2009-07-19 15:54:25 ----A---- C:\Windows\system32\iedkcs32.dll

2009-07-19 15:54:25 ----A---- C:\Windows\system32\ieaksie.dll

2009-07-19 15:52:51 ----A---- C:\Windows\system32\WMVCORE.DLL

2009-07-19 15:52:51 ----A---- C:\Windows\system32\mf.dll

2009-07-19 15:52:50 ----A---- C:\Windows\system32\WMNetMgr.dll

2009-07-19 15:52:50 ----A---- C:\Windows\system32\logagent.exe

2009-07-19 15:52:49 ----A---- C:\Windows\system32\t2embed.dll

2009-07-19 15:52:49 ----A---- C:\Windows\system32\fontsub.dll

2009-07-19 15:52:49 ----A---- C:\Windows\system32\dciman32.dll

2009-07-19 15:52:49 ----A---- C:\Windows\system32\atmfd.dll

2009-07-19 15:52:26 ----A---- C:\Windows\system32\kernel32.dll

2009-07-19 15:52:25 ----A---- C:\Windows\system32\secur32.dll

2009-07-19 15:52:25 ----A---- C:\Windows\system32\apilogen.dll

2009-07-19 15:52:25 ----A---- C:\Windows\system32\amxread.dll

2009-07-19 15:52:04 ----A---- C:\Windows\system32\sdohlp.dll

2009-07-19 15:52:04 ----A---- C:\Windows\system32\iasrecst.dll

2009-07-19 15:52:04 ----A---- C:\Windows\system32\iashost.exe

2009-07-19 15:52:04 ----A---- C:\Windows\system32\iasdatastore.dll

2009-07-19 15:52:04 ----A---- C:\Windows\system32\iasads.dll

2009-07-19 15:51:58 ----A---- C:\Windows\system32\msxml6.dll

2009-07-19 15:51:55 ----A---- C:\Windows\system32\wshqos.dll

2009-07-19 15:51:55 ----A---- C:\Windows\system32\traffic.dll

2009-07-19 15:51:55 ----A---- C:\Windows\system32\rpcrt4.dll

2009-07-19 15:51:55 ----A---- C:\Windows\system32\pacerprf.dll

2009-07-19 15:51:52 ----A---- C:\Windows\system32\quartz.dll

2009-07-19 15:51:50 ----A---- C:\Windows\system32\wshext.dll

2009-07-19 15:51:50 ----A---- C:\Windows\system32\wscript.exe

2009-07-19 15:51:50 ----A---- C:\Windows\system32\vbscript.dll

2009-07-19 15:51:50 ----A---- C:\Windows\system32\scrrun.dll

2009-07-19 15:51:50 ----A---- C:\Windows\system32\scrobj.dll

2009-07-19 15:51:50 ----A---- C:\Windows\system32\jscript.dll

2009-07-19 15:51:50 ----A---- C:\Windows\system32\cscript.exe

2009-07-19 15:51:45 ----A---- C:\Windows\system32\explorer.exe

2009-07-19 15:51:45 ----A---- C:\Windows\explorer.exe

2009-07-19 15:51:44 ----A---- C:\Windows\system32\es.dll

2009-07-19 15:51:43 ----A---- C:\Windows\system32\xolehlp.dll

2009-07-19 15:51:43 ----A---- C:\Windows\system32\msdtcprx.dll

2009-07-19 15:51:42 ----A---- C:\Windows\system32\gdi32.dll

2009-07-19 15:51:39 ----A---- C:\Windows\system32\winhttp.dll

2009-07-19 15:51:35 ----A---- C:\Windows\system32\dataclen.dll

2009-07-19 15:51:33 ----A---- C:\Windows\system32\winipsec.dll

2009-07-19 15:51:33 ----A---- C:\Windows\system32\polstore.dll

2009-07-19 15:51:33 ----A---- C:\Windows\system32\FwRemoteSvr.dll

2009-07-19 15:51:32 ----A---- C:\Windows\system32\schannel.dll

2009-07-19 15:51:31 ----A---- C:\Windows\system32\wmpeffects.dll

2009-07-19 15:48:41 ----A---- C:\Windows\system32\inetcomm.dll

2009-07-19 15:48:40 ----A---- C:\Windows\system32\wshrm.dll

2009-07-19 15:46:10 ----A---- C:\Windows\system32\shell32.dll

2009-07-19 15:46:08 ----A---- C:\Windows\system32\netapi32.dll

2009-07-18 18:30:33 ----D---- C:\YouTubeDownload

2009-07-18 18:30:32 ----D---- C:\ConverterOutput

2009-07-18 18:30:28 ----A---- C:\Windows\system32\unicows.dll

2009-07-18 18:30:28 ----A---- C:\Windows\system32\pthreadGC2.dll

2009-07-18 18:30:28 ----A---- C:\Windows\system32\ff_vfw.dll.manifest

2009-07-18 18:30:28 ----A---- C:\Windows\system32\ff_vfw.dll

2009-07-16 16:26:09 ----D---- C:\ProgramData\Avira

2009-07-16 16:24:48 ----D---- C:\ProgramData\Spybot - Search & Destroy

2009-07-14 20:50:16 ----D---- C:\ProgramData\Ubisoft

2009-07-14 20:21:23 ----D---- C:\Program Files (x86)\ElcomSoft

2009-07-14 13:15:52 ----D---- C:\Program Files (x86)\Common Files\Nokia

2009-07-13 02:13:45 ----D---- C:\Users\***\AppData\Roaming\vlc

2009-07-10 00:00:00 ----D---- C:\Users\***\AppData\Roaming\FUEL Demo

2009-07-09 23:59:14 ----A---- C:\Windows\system32\D3DX9_39.dll

2009-06-24 21:23:11 ----D---- C:\Program Files (x86)\Common Files\xing shared

2009-06-24 21:23:03 ----A---- C:\Windows\system32\pndx5032.dll

2009-06-24 21:23:03 ----A---- C:\Windows\system32\pndx5016.dll

2009-06-24 21:22:59 ----D---- C:\Program Files (x86)\Common Files\Real

2009-06-24 21:22:58 ----D---- C:\Users\***\AppData\Roaming\Real

2009-06-23 14:14:25 ----D---- C:\Program Files (x86)\LooksBuilder
 

======List of files/folders modified in the last 1 months======
 

2009-07-20 16:30:28 ----D---- C:\Windows\Prefetch

2009-07-20 16:30:27 ----D---- C:\Windows\Temp

2009-07-20 15:22:43 ----SHD---- C:\System Volume Information

2009-07-20 12:37:37 ----D---- C:\Program Files (x86)\Common Files\Steam

2009-07-20 12:09:53 ----D---- C:\Windows\System32

2009-07-20 12:09:53 ----D---- C:\Windows\inf

2009-07-20 02:03:51 ----D---- C:\Users\***\AppData\Roaming\Skype

2009-07-19 19:55:02 ----D---- C:\Windows

2009-07-19 17:31:52 ----D---- C:\Windows\rescache

2009-07-19 17:21:28 ----D---- C:\Windows\Microsoft.NET

2009-07-19 17:21:27 ----RSD---- C:\Windows\assembly

2009-07-19 17:13:55 ----D---- C:\Windows\SysWOW64

2009-07-19 17:13:55 ----D---- C:\Windows\system32\manifeststore

2009-07-19 17:13:54 ----D---- C:\Windows\AppPatch

2009-07-19 17:13:44 ----D---- C:\Windows\system32\wbem

2009-07-19 17:13:43 ----D---- C:\Windows\system32\de-DE

2009-07-19 17:13:40 ----D---- C:\Windows\system32\migration

2009-07-19 17:13:40 ----D---- C:\Program Files (x86)\Internet Explorer

2009-07-19 17:05:19 ----A---- C:\Windows\NeroDigital.ini

2009-07-19 16:31:17 ----D---- C:\Windows\system32\drivers

2009-07-19 16:31:16 ----HD---- C:\ProgramData

2009-07-19 16:27:15 ----D---- C:\Windows\Debug

2009-07-19 16:15:24 ----D---- C:\Windows\winsxs

2009-07-19 16:15:24 ----D---- C:\Windows\Minidump

2009-07-19 16:12:13 ----SHD---- C:\Windows\Installer

2009-07-19 16:11:07 ----RD---- C:\Program Files (x86)

2009-07-19 15:55:10 ----D---- C:\Windows\SoftwareDistribution

2009-07-18 14:48:19 ----D---- C:\Users\***\AppData\Roaming\dvdcss

2009-07-17 18:59:51 ----D---- C:\Users\***\AppData\Roaming\FileZilla

2009-07-15 00:32:41 ----HD---- C:\Program Files (x86)\InstallShield Installation Information

2009-07-14 20:49:57 ----A---- C:\Windows\system32\PnkBstrB.exe

2009-07-14 20:49:52 ----A---- C:\Windows\system32\PnkBstrA.exe

2009-07-14 20:49:52 ----A---- C:\Windows\system32\pbsvc.exe

2009-07-14 19:50:01 ----D---- C:\Users\***\AppData\Roaming\Miranda

2009-07-14 13:17:58 ----D---- C:\ProgramData\Installations

2009-07-14 13:16:43 ----D---- C:\Program Files (x86)\Nokia

2009-07-14 13:15:52 ----D---- C:\Program Files (x86)\Common Files

2009-07-12 22:03:54 ----D---- C:\ProgramData\Microsoft Help

2009-07-05 10:32:27 ----D---- C:\Users\***\AppData\Roaming\Mumble

2009-07-04 22:00:50 ----D---- C:\Users\***\AppData\Roaming\Adobe

2009-06-26 17:14:58 ----AD---- C:\ProgramData\TEMP

2009-06-24 21:23:06 ----A---- C:\Windows\system32\rmoc3260.dll

2009-06-24 21:23:02 ----A---- C:\Windows\system32\pncrt.dll

2009-06-24 18:51:55 ----D---- C:\ProgramData\Tunngle
 

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
 

R1 AsIO;AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [2007-12-17 14392]

R1 RtlProt;Realtke RtlProt WLAN Utility Protocol Driver; C:\Windows\system32\DRIVERS\rtlprot.sys []

R2 avgntflt;avgntflt; C:\Windows\system32\DRIVERS\avgntflt.sys []

R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys []

R3 ksthunk;Kernel Streaming Thunks; C:\Windows\system32\drivers\ksthunk.sys []

R3 LHidFilt;Logitech SetPoint KMDF HID Filter Driver; C:\Windows\system32\DRIVERS\LHidFilt.Sys []

R3 LMouFilt;Logitech SetPoint KMDF Mouse Filter Driver; C:\Windows\system32\DRIVERS\LMouFilt.Sys []

R3 LUsbFilt;Logitech SetPoint KMDF USB Filter; C:\Windows\System32\Drivers\LUsbFilt.Sys []

R3 MTsensor;ATK0110 ACPI UTILITY; C:\Windows\system32\DRIVERS\ASACPI.sys []

R3 nvlddmkm;nvlddmkm; C:\Windows\system32\DRIVERS\nvlddmkm.sys []

R3 RTL8169;Realtek 8169 NT Driver; C:\Windows\system32\DRIVERS\Rtlh64.sys []

R3 WmiAcpi;Microsoft Windows Management Interface for ACPI; C:\Windows\system32\DRIVERS\wmiacpi.sys []

S3 ahfdya88;ahfdya88; C:\Windows\system32\drivers\ahfdya88.sys []

S3 dot4;MS IEEE-1284.4-Treiber; C:\Windows\system32\DRIVERS\Dot4.sys []

S3 Dot4Print;Druckerklassentreiber für IEEE-1284.4; C:\Windows\system32\DRIVERS\Dot4Prt.sys []

S3 Dot4Scan;Scannerklassentreiber für IEEE-1284.4; C:\Windows\system32\DRIVERS\Dot4Scan.sys []

S3 dot4usb;Dot4USB-Filter Dot4USB Filter; C:\Windows\system32\DRIVERS\dot4usb.sys []

S3 drmkaud;Microsoft Kernel-DRM-Audioentschlüsselung; C:\Windows\system32\drivers\drmkaud.sys []

S3 dump_wmimmc;dump_wmimmc; \??\D:\Games\Rappelz\GameGuard\dump_wmimmc.sys []

S3 ENTECH64;ENTECH64; \??\C:\Windows\system32\DRIVERS\ENTECH64.sys []

S3 hamachi;Hamachi Network Interface; C:\Windows\system32\DRIVERS\hamachi.sys []

S3 HdAudAddService;Microsoft 1.1 UAA-Funktionstreiber für High Definition Audio-Dienst; C:\Windows\system32\drivers\HdAudio.sys []

S3 MSKSSRV;Microsoft Streaming Service Proxy; C:\Windows\system32\drivers\MSKSSRV.sys []

S3 MSPCLOCK;Microsoft Proxy für Streaming Clock; C:\Windows\system32\drivers\MSPCLOCK.sys []

S3 MSPQM;Microsoft Proxy für Streaming Quality Manager; C:\Windows\system32\drivers\MSPQM.sys []

S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink-Konvertierung; C:\Windows\system32\drivers\MSTEE.sys []

S3 nmwcdcx64;Nokia USB Generic; C:\Windows\system32\drivers\ccdcmbox64.sys []

S3 nmwcdx64;Nokia USB Phone Parent; C:\Windows\system32\drivers\ccdcmbx64.sys []

S3 NPPTNT2;NPPTNT2; \??\C:\Windows\system32\npptNT2.sys [2005-01-04 4682]

S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\Windows\system32\DRIVERS\pccsmcfdx64.sys []

S3 RivaTuner64;RivaTuner64; \??\D:\Programme\RivaTuner v2.24\RivaTuner64.sys [2009-04-18 19952]

S3 RTL8187;Realtek RTL8187 Wireless 802.11g 54Mbps USB 2.0 Network Adapter; C:\Windows\system32\DRIVERS\RTL8187.sys []

S3 tap0901t;TAP-Win32 Adapter V9 (Tunngle); C:\Windows\system32\DRIVERS\tap0901t.sys []

S3 upperdev;upperdev; C:\Windows\system32\DRIVERS\usbser_lowerfltx64.sys []

S3 usbser;Nokia USB Serial Port; C:\Windows\system32\drivers\usbser.sys []

S3 UsbserFilt;UsbserFilt; C:\Windows\system32\DRIVERS\usbser_lowerfltx64j.sys []

S3 WpdUsb;WpdUsb; C:\Windows\system32\DRIVERS\wpdusb.sys []

S3 WUDFRd;WUDFRd; C:\Windows\system32\DRIVERS\WUDFRd.sys []

S3 zlportio;zlportio; \??\D:\Games\UltraStar Deluxe\zlportio.sys []
 

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
 

R2 AntiVirSchedulerService;Avira AntiVir Planer; D:\Programme\Avira\AntiVir Desktop\sched.exe [2009-05-13 108289]

R2 AntiVirService;Avira AntiVir Guard; D:\Programme\Avira\AntiVir Desktop\avguard.exe [2009-05-11 185089]

R2 AsSysCtrlService;ASUS System Control Service; C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.00\AsSysCtrlService.exe [2008-08-15 86016]

R2 Bonjour Service;##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762##; C:\Program Files (x86)\Bonjour\mDNSResponder.exe [2006-02-28 229376]

R2 Nero BackItUp Scheduler 3;Nero BackItUp Scheduler 3; D:\Programme\Nero\Nero8\Nero BackItUp\NBService.exe [2008-02-18 877864]

R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe []

R2 PLFlash DeviceIoControl Service;PLFlash DeviceIoControl Service; C:\Windows\SysWOW64\IoctlSvc.exe [2006-12-19 81920]

R2 PnkBstrA;PnkBstrA; C:\Windows\system32\PnkBstrA.exe [2009-07-14 66872]

R2 PnkBstrB;PnkBstrB; C:\Windows\system32\PnkBstrB.exe [2009-07-14 107832]

R2 SBSDWSCService;SBSD Security Center Service; D:\Programme\Spybot - Search & Destroy\SDWinSec.exe [2009-01-26 1153368]

R2 StarWindServiceAE;StarWind AE Service; D:\Programme\Alcohol 120\StarWind\StarWindServiceAE.exe [2007-05-28 275968]

R2 TunngleService;TunngleService; D:\Programme\Tunngle\TnglCtrl.exe [2009-03-25 652536]

R3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2009-07-19 316664]

S3 Adobe LM Service;Adobe LM Service; C:\Program Files (x86)\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe [2009-04-08 72704]

S3 clr_optimization_v2.0.50727_64;Microsoft .NET Framework NGEN v2.0.50727_X64; C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe [2008-07-27 93184]

S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2009-04-09 655624]

S3 IDriverT;InstallDriver Table Manager; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]

S3 LBTServ;Logitech Bluetooth Service; C:\Program Files\Common Files\Logishrd\Bluetooth\LBTServ.exe [2009-02-19 160784]

S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; D:\Programme\Microsoft Office 2007\Office12\GrooveAuditService.exe [2006-10-27 65824]

S3 MSSQL$SONY_MEDIAMGR;MSSQL$SONY_MEDIAMGR; D:\Programme\Sony Vegas\Shared Plug-Ins\Media Manager\MSSQL$SONY_MEDIAMGR\Binn\sqlservr.exe [2002-12-17 7520337]

S3 MSSQLServerADHelper;MSSQLServerADHelper; C:\Program Files (x86)\Microsoft SQL Server\80\Tools\Binn\sqladhlp.exe [2002-12-17 66112]

S3 NMIndexingService;NMIndexingService; C:\Program Files (x86)\Common Files\Nero\Lib\NMIndexingService.exe [2008-02-28 529704]

S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2006-10-26 441136]

S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]

S3 PerfHost;@%systemroot%\sysWow64\perfhost.exe,-2; C:\Windows\SysWow64\perfhost.exe [2008-01-18 19968]

S3 ServiceLayer;ServiceLayer; C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe [2008-04-29 572928]

S3 SQLAgent$SONY_MEDIAMGR;SQLAgent$SONY_MEDIAMGR; D:\Programme\Sony Vegas\Shared Plug-Ins\Media Manager\MSSQL$SONY_MEDIAMGR\Binn\sqlagent.EXE [2002-12-17 311872]

S3 usprserv;User Privilege Service; C:\Windows\System32\svchost.exe [2008-01-18 21504]
 

-----------------EOF-----------------