Forum
Tipps
News
Frage stellen
search
Menu-Icon
search

The NTVDM CPU Has Encountered an Illegal Instruction

Hallo. Ich hab da ein kleines Problem und hoffe das mir jemand helfen kann. Hab vor kürzem ein Spiel(WOLFTEAM)ausm Internet heruntergeladen und wenn ich es installieren will kommt diese Meldung:
"C:/Users/Edin/Desktop/WOLFTE-1.exe
The NTDVM CPU has encountered an illegal instruction.
CS0586 IP:019f OP:63 68 61 72 73 Chose Close to terminate the application"
Hab im Internet nachgeschaut und die einen sagen das es ein Virus sein könnte. Aber , wenn ich mit Norton, Kaspersky, SUPERAntySpyware einen Viren test mache, finden die nichts gefährliches.Hier ist eine Logdatei von HijackThis:

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 11:38:56, on 26.06.2011
Platform: Windows 7  (WinNT 6.00.3504)
MSIE: Internet Explorer v8.00 (8.00.7600.16800)
Boot mode: Normal

Running processes:
C:\Windows\system32\taskhost.exe
C:\Windows\system32\taskeng.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Uniblue\DriverScanner\dsmonitor.exe
C:\Program Files\DivX\DivX Update\DivXUpdate.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Program Files\Real\RealPlayer\Update\realsched.exe
C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
C:\Program Files\Sandboxie\SbieCtrl.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
C:\Program Files\TuneUp Utilities 2011\TuneUpUtilitiesApp32.exe
C:\Program Files\Skype\Plugin Manager\skypePM.exe
C:\Program Files\Windows Live\Contacts\wlcomm.exe
C:\Program Files\Hotspot Shield\bin\openvpntray.exe
C:\Windows\system32\wuauclt.exe
C:\Users\Edin\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Edin\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Edin\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Edin\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Edin\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Edin\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Edin\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Edin\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Edin\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Edin\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Windows\system32\rundll32.exe
C:\Users\Edin\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Edin\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Edin\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Users\Edin\Downloads\HiJackThis204.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://search.hotspotshield.com/g/?c=h
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://start.facemoods.com/?a=ddrnw&s={searchTerms}&f=4
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: AF-HSS Toolbar - {f0381dbd-e018-4e07-ae40-d96ab15083f0} - C:\Program Files\AF-HSS\tbAF-H.dll
R3 - URLSearchHook: FCToolbarURLSearchHook Class - {f78bf7a8-cf12-4de7-a6da-c463d1b539a7} - C:\Program Files\Dogpile Bundle Toolbar\Helper.dll
R3 - URLSearchHook: (no name) -  - (no file)
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll
O2 - BHO: Conduit Engine - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files\ConduitEngine\ConduitEngine.dll
O2 - BHO: Increase performance and video formats for your HTML5 <video> - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll
O2 - BHO: Use the DivX Plus Web Player to watch web videos with less interruptions and smoother playback on supported sites - {593DDEC6-7468-4cdd-90E1-42DADAA222E9} - C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MIF5BA~1\Office14\GROOVEEX.DLL
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\MIF5BA~1\Office14\URLREDIR.DLL
O2 - BHO: FCTBPos00Pos - {BFE4B5CB-63F7-4A51-9266-6167655D5B4F} - C:\Program Files\Dogpile Bundle Toolbar\Toolbar.dll
O2 - BHO: LivingPlay - {D9291F9E-7010-4D7A-8DF6-455DEEF8EF51} - C:\Program Files\LivingPlay\lplaytl.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: Microsoft Web Test Recorder 10.0 Helper - {DDA57003-0068-4ed2-9D32-4D1EC707D94D} - c:\Program Files\Microsoft Visual Studio 10.0\Common7\IDE\PrivateAssemblies\Microsoft.VisualStudio.QualityTools.RecorderBarBHO100.dll
O2 - BHO: AF-HSS Toolbar - {f0381dbd-e018-4e07-ae40-d96ab15083f0} - C:\Program Files\AF-HSS\tbAF-H.dll
O2 - BHO: Hotspot Shield Class - {F9E4A054-E9B1-4BC3-83A3-76A1AE736170} - C:\Program Files\Hotspot Shield\HssIE\HssIE.dll
O2 - BHO: Yontoo Layers - {FD72061E-9FDE-484D-A58A-0BAB4151CAD8} - (no file)
O3 - Toolbar: AF-HSS Toolbar - {f0381dbd-e018-4e07-ae40-d96ab15083f0} - C:\Program Files\AF-HSS\tbAF-H.dll
O3 - Toolbar: Conduit Engine - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files\ConduitEngine\ConduitEngine.dll
O3 - Toolbar: Dogpile Bundle Toolbar - {C80BDEB2-8735-44C6-BD55-A1CCD555667A} - C:\Program Files\Dogpile Bundle Toolbar\Toolbar.dll
O4 - HKLM\..\Run: [DivXUpdate] "C:\Program Files\DivX\DivX Update\DivXUpdate.exe" /CHECKNOW
O4 - HKLM\..\Run: [BCSSync] "C:\Program Files\Microsoft Office\Office14\BCSSync.exe" /DelayServices
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Real\RealPlayer\update\realsched.exe"  -osboot
O4 - HKLM\..\Run: [egui] "C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe" /hide /waitservice
O4 - HKCU\..\Run: [SandboxieControl] "C:\Program Files\Sandboxie\SbieCtrl.exe"
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized
O4 - HKCU\..\Run: [SpeedUpMyPC] "C:\Program Files\Uniblue\SpeedUpMyPC\launcher.exe" delay 20000
O4 - HKCU\..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MIF5BA~1\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Se&nd to OneNote - res://C:\PROGRA~1\MIF5BA~1\Office14\ONBttnIE.dll/105
O8 - Extra context menu item: Sothink SWF Catcher - C:\Program Files\Common Files\SourceTec\SWF Catcher\InternetExplorer.htm
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra button: Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra 'Tools' menuitem: Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra button: Sothink SWF Catcher - {E19ADC6E-3909-43E4-9A89-B7B676377EE3} - C:\Program Files\Common Files\SourceTec\SWF Catcher\InternetExplorer.htm
O9 - Extra 'Tools' menuitem: Sothink SWF Catcher - {E19ADC6E-3909-43E4-9A89-B7B676377EE3} - C:\Program Files\Common Files\SourceTec\SWF Catcher\InternetExplorer.htm
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{95CEE229-2BA0-45E8-9DF6-5466D2CD493B}: NameServer = 10.36.40.1
O17 - HKLM\System\CCS\Services\Tcpip\..\{CE8029A7-BDBD-4016-BA5D-17BCC3BF12B2}: NameServer = 10.0.1.2 212.103.128.66
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: Dienst "Bonjour" (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: ESET HTTP Server (EhttpSrv) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
O23 - Service: Hotspot Shield Service (hshld) - Unknown owner - C:\Program Files\Hotspot Shield\bin\openvpnas.exe
O23 - Service: Hotspot Shield Routing Service (HssSrv) - AnchorFree Inc. - C:\Program Files\Hotspot Shield\HssWPR\hsssrv.exe
O23 - Service: Hotspot Shield Tray Service (HssTrayService) - Unknown owner - C:\Program Files\Hotspot Shield\bin\HssTrayService.EXE
O23 - Service: Hotspot Shield Monitoring Service (HssWd) - Unknown owner - C:\Program Files\Hotspot Shield\bin\hsswd.exe
O23 - Service: Sandboxie Service (SbieSvc) - SANDBOXIE L.T.D - C:\Program Files\Sandboxie\SbieSvc.exe
O23 - Service: TuneUp Utilities Service (TuneUp.UtilitiesSvc) - TuneUp Software - C:\Program Files\TuneUp Utilities 2011\TuneUpUtilitiesService32.exe

--
End of file - 10978 bytes

Hoffe das mir jemand helfen kann.
 Grüss

Moderator informieren  


Antworten zu The NTVDM CPU Has Encountered an Illegal Instruction:

Hat dir diese Antwort geholfen?

Danke ButtonHilfreiche Antwort Button

Hallo,

dieses sind erstens Schädlinge:

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://search.hotspotshield.com/g/?c=h
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://start.facemoods.com/?a=ddrnw&s={searchTerms}&f=4
R3 - URLSearchHook: FCToolbarURLSearchHook Class - {f78bf7a8-cf12-4de7-a6da-c463d1b539a7} - C:\Program Files\Dogpile Bundle Toolbar\Helper.dll
R3 - URLSearchHook: (no name) - - (no file)
O2 - BHO: Yontoo Layers - {FD72061E-9FDE-484D-A58A-0BAB4151CAD8} - (no file)

diese sollten mit HJT gefixt werden.

HJT ist aber nicht mehr up to date, deshalb Download von malewarebytes, updaten und einen Vollscan laufen lassen.

Download hier:

http://www.chip.de/downloads/Malwarebytes-Anti-Malware_27322637.html

Desweiteren hast Du Tune Up Utilities benutzt. Damit kann man sein System auf Dauer zerschiessen, wenn man nicht genau weiss, was man mit Tune Up durchführt !!!

und die unnötigen Toolbars bremsen Dein System auch aus.

Gruss A K 

« Letzte Änderung: 26.06.11, 12:11:12 von A K »
Moderator informieren  

Leute, wann hört ihr endlich mal auf Hijackthis zu nutzen? Das Teil bringt bei heutigen Schädlingen rein garnichts mehr, es ist den modernen Schädlingen hoffnungslos unterlegen! Das Fixen von irgendwelchen Toolbareinträgen ist zwar nett gemeint, hat aber mit dem eigentlichen Problem rein garnichts zu tun, ist nur ein netter Nebenkriegsschauplatz!!

 

Zitat
"C:/Users/Edin/Desktop/WOLFTE-1.exe
The NTDVM CPU has encountered an illegal instruction.


Aus welcher Quelle wurde das rutergeladen?
Ich glaub kaum, dass das Spiel irgendwelche 16-Bit-Anwendungen nutzt, "deine" Version tut es aber, sonst würde NTDVM sich nicht melden. => http://de.wikipedia.org/wiki/Virtual_DOS_Machine
Moderator informieren  

Hat dir diese Antwort geholfen?

Danke ButtonHilfreiche Antwort Button
1 Leser hat sich bedankt
Zitat von: cosinus am 26.06.11, 12:26:26
Leute, wann hört ihr endlich mal auf Hijackthis zu nutzen? Das Teil bringt bei heutigen Schädlingen rein garnichts mehr, es ist den modernen Schädlingen hoffnungslos unterlegen!

So habe ich es in meiner Antwort geschrieben  ;)
das es nicht mehr up to date ist !
Moderator informieren  

Hat dir diese Antwort geholfen?

Danke ButtonHilfreiche Antwort Button

Das Spiel hab ich direkt von der AeriaGames HP heruntergeladen, und Malwarebytes lad ich grad herunter. Mal sehen was der Antivir sagt.  

Moderator informieren  

Hat dir diese Antwort geholfen?

Danke ButtonHilfreiche Antwort Button

Soo. Hier ist die Logdatei von Malwarebytes:

Malwarebytes' Anti-Malware 1.51.0.1200
www.malwarebytes.org

Datenbank Version: 6953

Windows 6.1.7600
Internet Explorer 8.0.7600.16385

26.06.2011 13:32:50
mbam-log-2011-06-26 (13-32-45).txt

Art des Suchlaufs: Quick-Scan
Durchsuchte Objekte: 161923
Laufzeit: 4 Minute(n), 59 Sekunde(n)

Infizierte Speicherprozesse: 0
Infizierte Speichermodule: 0
Infizierte Registrierungsschlüssel: 2
Infizierte Registrierungswerte: 0
Infizierte Dateiobjekte der Registrierung: 2
Infizierte Verzeichnisse: 2
Infizierte Dateien: 3

Infizierte Speicherprozesse:
(Keine bösartigen Objekte gefunden)

Infizierte Speichermodule:
(Keine bösartigen Objekte gefunden)

Infizierte Registrierungsschlüssel:
HKEY_CURRENT_USER\Software\DC3_FEXEC (Malware.Trace) -> No action taken.
HKEY_CURRENT_USER\Software\VB and VBA Program Settings\SrvID (Malware.Trace) -> No action taken.

Infizierte Registrierungswerte:
(Keine bösartigen Objekte gefunden)

Infizierte Dateiobjekte der Registrierung:
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoRun (PUM.Hijack.Run) -> Bad: (1) Good: (0) -> No action taken.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System\DisableRegistryTools (PUM.Hijack.Regedit) -> Bad: (1) Good: (0) -> No action taken.

Infizierte Verzeichnisse:
c:\directory\cybergate (Trojan.PWS) -> No action taken.
c:\directory\cybergate\install (Trojan.PWS) -> No action taken.

Infizierte Dateien:
c:\Users\Edin\downloads\Setup.exe (Adware.Agent) -> No action taken.
c:\Users\Edin\AppData\Roaming\cglogs.dat (Malware.Trace) -> No action taken.
c:\Users\Edin\AppData\Roaming\data.dat (Stolen.Data) -> No action taken.
 

Moderator informieren  

Hat dir diese Antwort geholfen?

Danke ButtonHilfreiche Antwort Button

alle infizierten Angaben haben am Ende "no action taken",
also kannst Du alle Angaben löschen und nicht in Quarantäne setzen.

Du solltest aber einen Vollscan durchführen und nicht einen Quickscan !!! ( dauert schon etwas länger )
 

Moderator informieren  

Hat dir diese Antwort geholfen?

Danke ButtonHilfreiche Antwort Button

Danke. Ich hab alle gelöscht, das Spiel gestartet und die Meldung wird immernoch gezeigt. Werd jetzt nen Vollscan durchführen. Mal sehen was kommt :)

Moderator informieren  
Moderator informieren  

Hat dir diese Antwort geholfen?

Danke ButtonHilfreiche Antwort Button

Hier wär dann die Logdatei vom Vollscan:

Malwarebytes' Anti-Malware 1.51.0.1200
www.malwarebytes.org

Datenbank Version: 6953

Windows 6.1.7600
Internet Explorer 8.0.7600.16385

26.06.2011 15:36:49
mbam-log-2011-06-26 (15-36-44).txt

Art des Suchlaufs: Vollständiger Suchlauf (C:\|)
Durchsuchte Objekte: 440540
Laufzeit: 1 Stunde(n), 45 Minute(n), 4 Sekunde(n)

Infizierte Speicherprozesse: 0
Infizierte Speichermodule: 0
Infizierte Registrierungsschlüssel: 0
Infizierte Registrierungswerte: 0
Infizierte Dateiobjekte der Registrierung: 0
Infizierte Verzeichnisse: 0
Infizierte Dateien: 9

Infizierte Speicherprozesse:
(Keine bösartigen Objekte gefunden)

Infizierte Speichermodule:
(Keine bösartigen Objekte gefunden)

Infizierte Registrierungsschlüssel:
(Keine bösartigen Objekte gefunden)

Infizierte Registrierungswerte:
(Keine bösartigen Objekte gefunden)

Infizierte Dateiobjekte der Registrierung:
(Keine bösartigen Objekte gefunden)

Infizierte Verzeichnisse:
(Keine bösartigen Objekte gefunden)

Infizierte Dateien:
c:\Users\Edin\AppData\Local\Google\Chrome\user data\Default\Cache\f_000404 (Trojan.FakeVLC) -> No action taken.
c:\Windows.old\$Recycle.Bin\s-1-5-21-2433347252-820133726-2751198560-1000\$RNOAQ94.exe (RiskWare.Tool.CK) -> No action taken.
c:\Windows.old\program files\windows live\messenger\msimg32.dll (PUP.FunWebProducts) -> No action taken.
c:\Windows.old\program files\windows live\messenger\riched20.dll (PUP.FunWebProducts) -> No action taken.
c:\Windows.old\Users\ghost\AppData\Local\Temp\temp1_fakegen.zip\Fake Gen.exe (Spyware.Passwords) -> No action taken.
c:\Windows.old\Users\ghost\downloads\windows 7 home premium (32 bit)\.iso file\windows 7 activation (reccomended)\windows 7 activation (reccomended).exe (RiskWare.Tool.CK) -> No action taken.
c:\Windows.old\Users\ghost\downloads\windows 7 home premium (32 bit)\extra activation programs\se7en activator v3.exe (RiskWare.Tool.CK) -> No action taken.
c:\Windows.old\Users\ghost\downloads\windows 7 home premium (32 bit)\extra activation programs\windows loader 1.9.5 (reccomended)\windows loader 1.9.5 (reccomended).exe (RiskWare.Tool.CK) -> No action taken.
c:\Windows.old\Users\ghost\downloads\FakeGen\Fake Gen.exe (Spyware.Passwords) -> No action taken.
 

Moderator informieren  

Hat dir diese Antwort geholfen?

Danke ButtonHilfreiche Antwort Button

...und hier die OTL Logfile:

OTL logfile created on: 26.06.2011 15:43:19 - Run 1
OTL by OldTimer - Version 3.2.24.1     Folder = C:\Users\Edin\Downloads
 Ultimate Edition  (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7600.16385)
Locale: 00000807 | Country: Schweiz | Language: DES | Date Format: dd.MM.yyyy
 
3.00 Gb Total Physical Memory | 1.40 Gb Available Physical Memory | 46.55% Memory free
6.00 Gb Paging File | 4.31 Gb Available in Paging File | 71.90% Paging File free
Paging file location(s): C:\pagefile.sys 3070 3070 [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 113.36 Gb Total Space | 10.39 Gb Free Space | 9.17% Space Free | Partition Type: NTFS
Drive D: | 170.08 Gb Total Space | 5.67 Gb Free Space | 3.33% Space Free | Partition Type: NTFS
Computer Name: EDIN-PC | User Name: Edin | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days
 
========== Processes (SafeList) ==========
 
PRC - [2011.06.26 15:41:36 | 000,579,072 | ---- | M] (OldTimer Tools) -- C:\Users\Edin\Downloads\OTL.exe
PRC - [2011.06.03 01:20:38 | 000,129,352 | ---- | M] () -- C:\Programme\Hotspot Shield\bin\openvpntray.exe
PRC - [2011.06.03 01:18:08 | 000,298,824 | ---- | M] () -- C:\Programme\Hotspot Shield\bin\openvpnas.exe
PRC - [2011.06.01 17:25:36 | 000,273,544 | ---- | M] (RealNetworks, Inc.) -- C:\Programme\Real\RealPlayer\Update\realsched.exe
PRC - [2011.05.29 09:11:28 | 000,366,640 | ---- | M] (Malwarebytes Corporation) -- C:\Programme\Malwarebytes' Anti-Malware\mbamservice.exe
PRC - [2011.05.29 09:11:22 | 001,047,656 | ---- | M] (Malwarebytes Corporation) -- C:\Programme\Malwarebytes' Anti-Malware\mbam.exe
PRC - [2011.05.25 02:54:54 | 000,329,544 | ---- | M] () -- C:\Programme\Hotspot Shield\bin\hsswd.exe
PRC - [2011.05.25 01:40:12 | 000,363,336 | ---- | M] (AnchorFree Inc.) -- C:\Programme\Hotspot Shield\HssWPR\hsssrv.exe
PRC - [2011.03.24 13:24:36 | 000,409,320 | ---- | M] (SANDBOXIE L.T.D) -- C:\Programme\Sandboxie\SbieCtrl.exe
PRC - [2011.03.24 13:24:34 | 000,072,936 | ---- | M] (SANDBOXIE L.T.D) -- C:\Programme\Sandboxie\SbieSvc.exe
PRC - [2011.03.21 20:56:16 | 001,230,704 | ---- | M] () -- C:\Programme\DivX\DivX Update\DivXUpdate.exe
PRC - [2011.02.26 07:33:07 | 002,614,784 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
PRC - [2011.01.21 13:30:36 | 000,025,464 | ---- | M] (Uniblue Systems Limited) -- C:\Programme\Uniblue\DriverScanner\dsmonitor.exe
PRC - [2010.11.10 02:54:18 | 004,240,760 | ---- | M] (Microsoft Corporation) -- C:\Programme\Windows Live\Messenger\msnmsgr.exe
PRC - [2010.11.10 01:13:30 | 000,025,456 | ---- | M] (Microsoft Corporation) -- C:\Programme\Windows Live\Contacts\wlcomm.exe
PRC - [2010.09.21 14:03:14 | 001,710,464 | ---- | M] (Microsoft Corp.) -- C:\Programme\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE
PRC - [2010.09.21 14:03:14 | 000,193,408 | ---- | M] (Microsoft Corp.) -- C:\Programme\Common Files\microsoft shared\Windows Live\WLIDSVCM.EXE
PRC - [2010.04.07 21:08:52 | 000,810,120 | ---- | M] (ESET) -- C:\Programme\ESET\ESET NOD32 Antivirus\ekrn.exe
PRC - [2010.04.07 21:08:30 | 002,145,000 | ---- | M] (ESET) -- C:\Programme\ESET\ESET NOD32 Antivirus\egui.exe
PRC - [2009.07.14 03:14:42 | 000,049,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\taskhost.exe
PRC - [2009.07.14 03:14:39 | 000,314,368 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\SndVol.exe
PRC - [2009.03.30 03:25:26 | 043,010,392 | ---- | M] (Microsoft Corporation) -- C:\Programme\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\sqlservr.exe
PRC - [2008.07.10 02:49:44 | 000,098,840 | ---- | M] (Microsoft Corporation) -- C:\Programme\Microsoft SQL Server\90\Shared\sqlwriter.exe
 
 
========== Modules (SafeList) ==========
 
MOD - [2011.06.26 15:41:36 | 000,579,072 | ---- | M] (OldTimer Tools) -- C:\Users\Edin\Downloads\OTL.exe
MOD - [2011.06.15 23:40:39 | 000,653,136 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcr90.dll
MOD - [2011.06.15 23:40:39 | 000,569,680 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcp90.dll
MOD - [2011.06.01 17:26:24 | 000,043,520 | ---- | M] (RealNetworks, Inc.) -- C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Chrome\Hook\rpchrome10browserrecordhelper.dll
MOD - [2010.08.21 07:21:32 | 001,680,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd\comctl32.dll
 
 
========== Win32 Services (SafeList) ==========
 
SRV - [2011.06.16 11:50:45 | 003,435,096 | ---- | M] () [Auto | Running] -- c:\Programme\Common Files\Akamai\netsession_win_e877e12.dll -- (Akamai)
SRV - [2011.06.03 01:20:48 | 000,063,976 | ---- | M] () [On_Demand | Stopped] -- C:\Programme\Hotspot Shield\bin\HssTrayService.exe -- (HssTrayService)
SRV - [2011.06.03 01:18:08 | 000,298,824 | ---- | M] () [Auto | Running] -- C:\Programme\Hotspot Shield\bin\openvpnas.exe -- (hshld)
SRV - [2011.05.29 09:11:28 | 000,366,640 | ---- | M] (Malwarebytes Corporation) [Disabled | Running] -- C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe -- (MBAMService)
SRV - [2011.05.25 02:54:54 | 000,329,544 | ---- | M] () [Auto | Running] -- C:\Program Files\Hotspot Shield\bin\hsswd.exe -- (HssWd)
SRV - [2011.05.25 01:40:12 | 000,363,336 | ---- | M] (AnchorFree Inc.) [Auto | Running] -- C:\Programme\Hotspot Shield\HssWPR\hsssrv.exe -- (HssSrv)
SRV - [2011.05.01 13:41:19 | 001,343,400 | ---- | M] (Microsoft Corporation) [Unknown | Stopped] -- C:\Windows\System32\Wat\WatAdminSvc.exe -- (WatAdminSvc)
SRV - [2011.03.24 13:24:34 | 000,072,936 | ---- | M] (SANDBOXIE L.T.D) [Auto | Running] -- C:\Program Files\Sandboxie\SbieSvc.exe -- (SbieSvc)
SRV - [2010.04.07 21:13:20 | 000,033,560 | ---- | M] (ESET) [On_Demand | Stopped] -- C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe -- (EhttpSrv)
SRV - [2010.04.07 21:08:52 | 000,810,120 | ---- | M] (ESET) [Auto | Running] -- C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe -- (ekrn)
SRV - [2010.03.25 10:25:22 | 030,969,208 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Microsoft Office\Office14\GROOVE.EXE -- (Microsoft SharePoint Workspace Audit Service)
SRV - [2009.07.14 03:16:13 | 000,025,088 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\sensrsvc.dll -- (SensrSvc)
SRV - [2009.07.14 03:16:12 | 001,004,544 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\PeerDistSvc.dll -- (PeerDistSvc)
SRV - [2009.07.14 03:15:41 | 000,680,960 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Programme\Windows Defender\MpSvc.dll -- (WinDefend)
 
 
========== Driver Services (SafeList) ==========
 
DRV - [2011.05.29 09:11:30 | 000,039,984 | ---- | M] (Malwarebytes Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\mbamswissarmy.sys -- (MBAMSwissArmy)
DRV - [2011.05.29 09:11:20 | 000,022,712 | ---- | M] (Malwarebytes Corporation) [File_System | On_Demand | Running] -- C:\Windows\System32\drivers\mbam.sys -- (MBAMProtector)
DRV - [2011.05.19 20:41:54 | 000,387,584 | ---- | M] () [Kernel | System | Running] -- C:\Windows\System32\drivers\csc.sys -- (CSC)
DRV - [2011.03.24 13:24:30 | 000,126,696 | ---- | M] (SANDBOXIE L.T.D) [Kernel | On_Demand | Running] -- C:\Programme\Sandboxie\SbieDrv.sys -- (SbieDrv)
DRV - [2010.09.22 21:19:02 | 000,037,376 | ---- | M] (AnchorFree Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\HssDrv.sys -- (HssDrv)
DRV - [2010.09.22 21:19:02 | 000,032,768 | ---- | M] (AnchorFree Inc) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\taphss.sys -- (taphss)
DRV - [2010.05.10 20:41:30 | 000,067,656 | ---- | M] (SUPERAd Block (Bitte beachten: Unsere Regeln zu Werbeblockern!)er.com and SUPERAntiSpyware.com) [Kernel | System | Running] -- C:\Programme\SUPERAntiSpyware\SASKUTIL.SYS -- (SASKUTIL)
DRV - [2010.04.07 21:09:52 | 000,096,896 | ---- | M] (ESET) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\epfwwfpr.sys -- (epfwwfpr)
DRV - [2010.04.07 21:08:36 | 000,114,984 | ---- | M] (ESET) [Kernel | System | Running] -- C:\Windows\System32\drivers\ehdrv.sys -- (ehdrv)
DRV - [2010.04.07 21:05:14 | 000,134,024 | ---- | M] (ESET) [File_System | Auto | Running] -- C:\Windows\System32\drivers\eamonm.sys -- (eamonm)
DRV - [2010.02.17 20:25:48 | 000,012,872 | ---- | M] (SUPERAd Block (Bitte beachten: Unsere Regeln zu Werbeblockern!)er.com and SUPERAntiSpyware.com) [Kernel | System | Running] -- C:\Programme\SUPERAntiSpyware\sasdifsv.sys -- (SASDIFSV)
DRV - [2009.12.08 21:24:26 | 000,048,128 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- c:\Programme\Microsoft Visual Studio 10.0\Team Tools\Performance Tools\VSPerfDrv100.sys -- (VSPerfDrv100)
DRV - [2009.07.14 03:19:10 | 000,175,824 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\vmbus.sys -- (vmbus)
DRV - [2009.07.14 03:19:10 | 000,040,896 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\system32\DRIVERS\vmstorfl.sys -- (storflt)
DRV - [2009.07.14 03:19:10 | 000,028,224 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\storvsc.sys -- (storvsc)
DRV - [2009.07.14 01:28:47 | 000,005,632 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\vms3cap.sys -- (s3cap)
DRV - [2009.07.14 01:28:45 | 000,017,920 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\VMBusHID.sys -- (VMBusHID)
DRV - [2009.07.14 00:09:17 | 004,194,816 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\atikmdag.sys -- (atikmdag)
DRV - [2009.07.14 00:02:53 | 000,311,296 | ---- | M] (Marvell) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\yk62x86.sys -- (yukonw7)
DRV - [2009.07.14 00:02:46 | 001,096,704 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\athr.sys -- (athr)
DRV - [2009.03.30 03:09:28 | 000,239,336 | ---- | M] (Microsoft Corporation) [File_System | Disabled | Stopped] -- C:\Windows\System32\drivers\RsFx0103.sys -- (RsFx0103)
 
 
========== Standard Registry (SafeList) ==========
 
 
========== Internet Explorer ==========
 
IE - HKLM\..\URLSearchHook: {f0381dbd-e018-4e07-ae40-d96ab15083f0} - C:\Programme\AF-HSS\tbAF-H.dll (Conduit Ltd.)
 
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://ch.msn.com/default.aspx?ocid=iehp
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de-ch
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = B7 97 37 74 EF 07 CC 01  [binary data]
IE - HKCU\..\URLSearchHook: {f0381dbd-e018-4e07-ae40-d96ab15083f0} - C:\Programme\AF-HSS\tbAF-H.dll (Conduit Ltd.)
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local
 
========== FireFox ==========
 
FF - prefs.js..extensions.enabledItems: {ABDE892B-13A8-4d1b-88E6-365A6E755758}:14.0.3
FF - prefs.js..extensions.enabledItems: {e4a8a97b-f2ed-450b-b12d-ee082ba24781}:0.9.5
FF - prefs.js..extensions.enabledItems: {82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}:5.3.0.7280
FF - prefs.js..extensions.enabledItems: [email protected]:11.0.2.579
FF - prefs.js..extensions.enabledItems: [email protected]:11.0.2.579
 
FF - HKLM\software\mozilla\Firefox\Extensions\\[email protected]: C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2011\FFExt\[email protected]
FF - HKLM\software\mozilla\Firefox\Extensions\\[email protected]: C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2011\FFExt\[email protected]
FF - HKLM\software\mozilla\Firefox\Extensions\\{ABDE892B-13A8-4d1b-88E6-365A6E755758}: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext [2011.06.02 08:36:41 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Firefox\Extensions\\{23fcfd51-4958-4f00-80a3-ae97e717ed8b}: C:\Program Files\DivX\DivX Plus Web Player\firefox\html5video [2011.06.15 21:58:34 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Firefox\Extensions\\{6904342A-8307-11DF-A508-4AE2DFD72085}: C:\Program Files\DivX\DivX Plus Web Player\firefox\wpa [2011.06.15 21:58:34 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 4.0.1\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2011.06.03 16:27:51 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 4.0.1\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2011.06.25 15:49:07 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Thunderbird\Extensions\\[email protected]: C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird [2011.06.25 22:50:20 | 000,000,000 | ---D | M]
 
[2011.05.25 12:41:35 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Edin\AppData\Roaming\mozilla\Extensions
[2011.06.22 14:15:27 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Edin\AppData\Roaming\mozilla\Firefox\Profiles\h6ezpky9.default\extensions
 

Moderator informieren  

Hat dir diese Antwort geholfen?

Danke ButtonHilfreiche Antwort Button

[2011.06.02 14:51:32 | 000,000,000 | ---D | M] (Greasemonkey) -- C:\Users\Edin\AppData\Roaming\mozilla\Firefox\Profiles\h6ezpky9.default\extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781}
[2011.06.22 12:55:25 | 000,000,000 | ---D | M] (Yontoo Layers) -- C:\Users\Edin\AppData\Roaming\mozilla\Firefox\Profiles\h6ezpky9.default\extensions\[email protected]
[2011.06.26 11:26:13 | 000,000,000 | ---D | M] (No name found) -- C:\Programme\Mozilla Firefox\extensions
[2011.06.02 08:36:44 | 000,000,000 | ---D | M] (Skype extension) -- C:\Programme\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
[2011.06.25 15:49:10 | 000,000,000 | ---D | M] (Java Console) -- C:\Programme\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA}
[2011.06.22 12:30:58 | 000,000,000 | ---D | M] (afurladvisor) -- C:\Programme\Mozilla Firefox\extensions\[email protected]
[2011.06.02 08:36:44 | 000,000,000 | ---D | M] (Modul zur Link-Untersuchung) -- C:\Programme\Mozilla Firefox\extensions\[email protected]_bak
File not found (No name found) --
File not found (No name found) -- C:\PROGRAM FILES\KASPERSKY LAB\KASPERSKY ANTI-VIRUS 2011\FFEXT\[email protected]
File not found (No name found) -- C:\PROGRAM FILES\KASPERSKY LAB\KASPERSKY ANTI-VIRUS 2011\FFEXT\[email protected]
[2011.06.02 08:36:44 | 000,000,000 | ---D | M] (Skype extension) -- C:\PROGRAM FILES\MOZILLA FIREFOX\EXTENSIONS\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
[2011.06.25 15:49:10 | 000,000,000 | ---D | M] (Java Console) -- C:\PROGRAM FILES\MOZILLA FIREFOX\EXTENSIONS\{CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA}
File not found (No name found) -- C:\PROGRAM FILES\MOZILLA FIREFOX\EXTENSIONS\[email protected]
[2011.06.02 08:36:41 | 000,000,000 | ---D | M] (RealPlayer Browser Record Plugin) -- C:\PROGRAMDATA\REAL\REALPLAYER\BROWSERRECORDPLUGIN\FIREFOX\EXT
[2011.06.22 15:56:56 | 000,000,000 | ---D | M] (LivingPlay TextLinks) -- C:\USERS\EDIN\APPDATA\ROAMING\MOZILLA\EXTENSIONS\{EC8030F7-C20A-464F-9B0E-13A3A9E97384}\[email protected]
() (No name found) -- C:\USERS\EDIN\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\H6EZPKY9.DEFAULT\EXTENSIONS\{BAEBEF65-9289-47C5-8524-C345CC5D860D}.XPI
[2011.06.03 16:27:36 | 000,142,296 | ---- | M] (Mozilla Foundation) -- C:\Programme\Mozilla Firefox\components\browsercomps.dll
[2011.05.04 04:52:23 | 000,476,904 | ---- | M] (Sun Microsystems, Inc.) -- C:\Programme\Mozilla Firefox\plugins\npdeployJava1.dll
[2011.06.03 16:27:46 | 000,001,392 | ---- | M] () -- C:\Programme\Mozilla Firefox\searchplugins\amazondotcom-de.xml
[2011.06.03 16:27:46 | 000,002,252 | ---- | M] () -- C:\Programme\Mozilla Firefox\searchplugins\bing.xml
[2011.06.03 16:27:46 | 000,001,153 | ---- | M] () -- C:\Programme\Mozilla Firefox\searchplugins\eBay-de.xml
[2011.05.19 16:26:05 | 000,002,048 | ---- | M] () -- C:\Programme\Mozilla Firefox\searchplugins\fcmdSrch.xml
[2011.06.03 16:27:46 | 000,006,805 | ---- | M] () -- C:\Programme\Mozilla Firefox\searchplugins\leo_ende_de.xml
[2010.10.21 21:56:38 | 000,001,847 | ---- | M] () -- C:\Programme\Mozilla Firefox\searchplugins\privatesearch.xml
[2011.06.03 16:27:46 | 000,001,178 | ---- | M] () -- C:\Programme\Mozilla Firefox\searchplugins\wikipedia-de.xml
[2011.06.03 16:27:46 | 000,001,105 | ---- | M] () -- C:\Programme\Mozilla Firefox\searchplugins\yahoo-de.xml
 
O1 HOSTS File: ([2009.06.10 23:39:37 | 000,000,824 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O2 - BHO: (RealPlayer Download and Record Plugin for Internet Explorer) - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll (RealPlayer)
O2 - BHO: (Conduit Engine) - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Programme\ConduitEngine\ConduitEngine.dll (Conduit Ltd.)
O2 - BHO: (DivX Plus Web Player HTML5 <video>) - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Programme\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
O2 - BHO: (DivX HiQ) - {593DDEC6-7468-4cdd-90E1-42DADAA222E9} - C:\Programme\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
O2 - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Programme\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
O2 - BHO: (Windows Live ID Sign-in Helper) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Programme\Common Files\microsoft shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
O2 - BHO: (Skype Plug-In) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Programme\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O2 - BHO: (Office Document Cache Handler) - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Programme\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
O2 - BHO: (Dogpile Bundle Toolbar BHO) - {BFE4B5CB-63F7-4A51-9266-6167655D5B4F} - C:\Programme\Dogpile Bundle Toolbar\Toolbar.dll ()
O2 - BHO: (LivingPlay) - {D9291F9E-7010-4D7A-8DF6-455DEEF8EF51} - C:\Programme\LivingPlay\lplaytl.dll ()
O2 - BHO: (Microsoft Web Test Recorder 10.0 Helper) - {DDA57003-0068-4ed2-9D32-4D1EC707D94D} - c:\Programme\Microsoft Visual Studio 10.0\Common7\IDE\PrivateAssemblies\Microsoft.VisualStudio.QualityTools.RecorderBarBHO100.dll (Microsoft Corporation)
O2 - BHO: (AF-HSS Toolbar) - {f0381dbd-e018-4e07-ae40-d96ab15083f0} - C:\Programme\AF-HSS\tbAF-H.dll (Conduit Ltd.)
O2 - BHO: (Hotspot Shield Class) - {F9E4A054-E9B1-4BC3-83A3-76A1AE736170} - C:\Programme\Hotspot Shield\HssIE\HssIE.dll (AnchorFree Inc.)
O3 - HKLM\..\Toolbar: (Conduit Engine) - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Programme\ConduitEngine\ConduitEngine.dll (Conduit Ltd.)
O3 - HKLM\..\Toolbar: (Dogpile Bundle Toolbar) - {C80BDEB2-8735-44C6-BD55-A1CCD555667A} - C:\Programme\Dogpile Bundle Toolbar\Toolbar.dll ()
O3 - HKLM\..\Toolbar: (AF-HSS Toolbar) - {f0381dbd-e018-4e07-ae40-d96ab15083f0} - C:\Programme\AF-HSS\tbAF-H.dll (Conduit Ltd.)
O3 - HKCU\..\Toolbar\WebBrowser: (Dogpile Bundle Toolbar) - {C80BDEB2-8735-44C6-BD55-A1CCD555667A} - C:\Programme\Dogpile Bundle Toolbar\Toolbar.dll ()
O3 - HKCU\..\Toolbar\WebBrowser: (AF-HSS Toolbar) - {F0381DBD-E018-4E07-AE40-D96AB15083F0} - C:\Programme\AF-HSS\tbAF-H.dll (Conduit Ltd.)
O4 - HKLM..\Run: [BCSSync] C:\Program Files\Microsoft Office\Office14\BCSSync.exe (Microsoft Corporation)
O4 - HKLM..\Run: [DivXUpdate] C:\Program Files\DivX\DivX Update\DivXUpdate.exe ()
O4 - HKLM..\Run: [egui] C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe (ESET)
O4 - HKLM..\Run: [TkBellExe] C:\Program Files\Real\RealPlayer\update\realsched.exe (RealNetworks, Inc.)
O4 - HKCU..\Run: [SandboxieControl] C:\Program Files\Sandboxie\SbieCtrl.exe (SANDBOXIE L.T.D)
O4 - HKCU..\Run: [SpeedUpMyPC]  File not found
O4 - HKCU..\Run: [SUPERAntiSpyware] C:\Programme\SUPERAntiSpyware\SUPERAntiSpyware.exe (SUPERAntiSpyware.com)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 28
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0
O8 - Extra context menu item: E&xport to Microsoft Excel - C:\Programme\Microsoft Office\Office14\EXCEL.EXE (Microsoft Corporation)
O8 - Extra context menu item: Se&nd to OneNote - C:\Programme\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation)
O8 - Extra context menu item: Sothink SWF Catcher - C:\Programme\Common Files\SourceTec\SWF Catcher\InternetExplorer.htm ()
O9 - Extra Button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Programme\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Programme\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra Button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Programme\Microsoft Office\Office14\ONBttnIELinkedNotes.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Programme\Microsoft Office\Office14\ONBttnIELinkedNotes.dll (Microsoft Corporation)
O9 - Extra Button: Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Programme\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O9 - Extra 'Tools' menuitem : Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Programme\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O9 - Extra Button: Sothink SWF Catcher - {E19ADC6E-3909-43E4-9A89-B7B676377EE3} - C:\Programme\Common Files\SourceTec\SWF Catcher\InternetExplorer.htm ()
O9 - Extra 'Tools' menuitem : Sothink SWF Catcher - {E19ADC6E-3909-43E4-9A89-B7B676377EE3} - C:\Programme\Common Files\SourceTec\SWF Catcher\InternetExplorer.htm ()
O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Programme\Common Files\microsoft shared\Windows Live\WLIDNSP.DLL (Microsoft Corp.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000008 [] - C:\Programme\Common Files\microsoft shared\Windows Live\WLIDNSP.DLL (Microsoft Corp.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000009 [] - C:\Programme\Bonjour\mdnsNSP.dll (Apple Inc.)
O13 - gopher Prefix: missing
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab (Java Plug-in 1.6.0_26)
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab (MessengerStatsClient Class)
O16 - DPF: {CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab (Java Plug-in 1.6.0_26)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab (Java Plug-in 1.6.0_26)
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (Reg Error: Key error.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 212.103.128.66 213.253.112.8
O18 - Protocol\Handler\livecall {828030A1-22C1-4009-854F-8E305202313F} - C:\Programme\Windows Live\Messenger\msgrapp.dll (Microsoft Corporation)
O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Programme\Common Files\microsoft shared\Help\hxds.dll (Microsoft Corporation)
O18 - Protocol\Handler\msnim {828030A1-22C1-4009-854F-8E305202313F} - C:\Programme\Windows Live\Messenger\msgrapp.dll (Microsoft Corporation)
O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Programme\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O18 - Protocol\Filter\text/xml {807573E5-5146-11D5-A672-00B0D022E945} - C:\Programme\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\System32\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (/pagefile) -  File not found
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
O28 - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Programme\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009.06.10 23:42:20 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O32 - AutoRun File - [2011.05.19 20:32:38 | 000,000,032 | ---- | M] () - D:\autorun.inf -- [ NTFS ]
O33 - MountPoints2\{15930733-79fb-11e0-a851-001fe20429f4}\Shell - "" = AutoRun
O33 - MountPoints2\{15930733-79fb-11e0-a851-001fe20429f4}\Shell\AutoRun\command - "" = J:\USBAutoRun.exe
O34 - HKLM BootExecute: (autocheck autochk *) -  File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
 

Moderator informieren  

Hat dir diese Antwort geholfen?

Danke ButtonHilfreiche Antwort Button

 
========== Files/Folders - Created Within 30 Days ==========
 
[2011.06.26 13:16:13 | 000,000,000 | ---D | C] -- C:\Users\Edin\AppData\Roaming\Malwarebytes
[2011.06.26 13:15:35 | 000,039,984 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbamswissarmy.sys
[2011.06.26 13:15:35 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware
[2011.06.26 13:15:33 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2011.06.26 13:15:30 | 000,022,712 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbam.sys
[2011.06.26 13:15:29 | 000,000,000 | ---D | C] -- C:\Programme\Malwarebytes' Anti-Malware
[2011.06.26 12:03:52 | 000,000,000 | ---D | C] -- C:\Users\Edin\AppData\Local\ESET
[2011.06.26 11:28:01 | 000,000,000 | ---D | C] -- C:\Users\Edin\AppData\Local\{DAA082C6-4DF4-4AB7-85FA-297A9CF50D49}
[2011.06.25 22:50:19 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ESET
[2011.06.25 22:50:18 | 000,000,000 | ---D | C] -- C:\Programme\ESET
[2011.06.25 22:50:18 | 000,000,000 | ---D | C] -- C:\ProgramData\ESET
[2011.06.25 21:55:05 | 000,000,000 | ---D | C] -- C:\Users\Edin\AppData\Roaming\SUPERAntiSpyware.com
[2011.06.25 21:55:05 | 000,000,000 | ---D | C] -- C:\ProgramData\SUPERAntiSpyware.com
[2011.06.25 21:54:22 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SUPERAntiSpyware
[2011.06.25 21:54:14 | 000,000,000 | ---D | C] -- C:\Programme\SUPERAntiSpyware
[2011.06.25 16:35:34 | 000,000,000 | ---D | C] -- C:\Users\Edin\AppData\Roaming\Big Fish Games
[2011.06.25 15:49:34 | 000,000,000 | ---D | C] -- C:\Programme\Common Files\Java
[2011.06.25 11:38:51 | 000,000,000 | ---D | C] -- C:\Users\Edin\Documents\My Cheat Tables
[2011.06.25 11:38:36 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Cheat Engine 6.0
[2011.06.25 11:38:26 | 000,000,000 | ---D | C] -- C:\Users\Edin\AppData\Local\OpenCandy
[2011.06.25 11:38:15 | 000,000,000 | ---D | C] -- C:\Users\Edin\AppData\Roaming\OpenCandy
[2011.06.25 11:38:08 | 000,000,000 | ---D | C] -- C:\Programme\Cheat Engine 6
[2011.06.25 11:26:36 | 000,000,000 | ---D | C] -- C:\Users\Edin\AppData\Local\{4AC36C46-B68E-43F1-A839-0B9D89B56EB2}
[2011.06.24 22:34:23 | 000,000,000 | ---D | C] -- C:\Programme\CenakidCP
[2011.06.24 21:57:49 | 000,000,000 | ---D | C] -- C:\Users\Edin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Alice Greenfingers 2
[2011.06.24 21:57:46 | 000,000,000 | ---D | C] -- C:\Windows\Alice Greenfingers 2
[2011.06.24 21:57:46 | 000,000,000 | ---D | C] -- C:\Programme\Alice Greenfingers 2
[2011.06.24 21:53:42 | 000,000,000 | ---D | C] -- C:\Programme\OXXOGames
[2011.06.24 20:24:02 | 000,000,000 | ---D | C] -- C:\ProgramData\Arcade Lab
[2011.06.24 20:23:46 | 000,000,000 | ---D | C] -- C:\ProgramData\TEMP
[2011.06.24 20:23:36 | 000,000,000 | ---D | C] -- C:\Users\Edin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Acer GameZone
[2011.06.24 20:23:36 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acer GameZone
[2011.06.24 20:23:30 | 000,000,000 | ---D | C] -- C:\Programme\Oberon Media
[2011.06.24 20:23:30 | 000,000,000 | ---D | C] -- C:\Programme\Common Files\Oberon Media
[2011.06.24 20:23:30 | 000,000,000 | ---D | C] -- C:\Programme\Acer GameZone
[2011.06.24 13:20:11 | 000,000,000 | ---D | C] -- C:\Users\Edin\AppData\Local\{726FFDF2-0154-49FE-A479-0D57F7C997A6}
[2011.06.23 15:09:33 | 000,000,000 | ---D | C] -- C:\directory
[2011.06.23 12:11:07 | 000,000,000 | ---D | C] -- C:\Users\Edin\AppData\Local\{66356D7C-8660-408D-87F4-DE2C76BD5467}
[2011.06.22 16:00:15 | 000,000,000 | ---D | C] -- C:\Users\Edin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dogpile Bundle Toolbar
[2011.06.22 15:57:30 | 000,000,000 | ---D | C] -- C:\Programme\Dogpile Bundle Toolbar
[2011.06.22 15:56:45 | 000,000,000 | ---D | C] -- C:\Programme\LivingPlay
[2011.06.22 15:33:03 | 000,000,000 | ---D | C] -- C:\Users\Edin\AppData\Local\{D3393A71-6708-4C9C-98D6-BEF5D7255241}
[2011.06.22 12:55:24 | 000,000,000 | ---D | C] -- C:\Programme\Yontoo Layers Runtime
[2011.06.22 12:55:24 | 000,000,000 | ---D | C] -- C:\ProgramData\Tarma Installer
[2011.06.22 12:33:18 | 000,000,000 | ---D | C] -- C:\Programme\Conduit
[2011.06.22 12:33:13 | 000,000,000 | ---D | C] -- C:\Programme\ConduitEngine
[2011.06.22 12:33:09 | 000,000,000 | ---D | C] -- C:\Programme\AF-HSS
[2011.06.22 12:31:00 | 000,000,000 | ---D | C] -- C:\Hotspot Shield
[2011.06.22 12:30:57 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hotspot Shield
[2011.06.22 12:30:55 | 000,000,000 | ---D | C] -- C:\Programme\Hotspot Shield
[2011.06.22 11:44:15 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon MP270 series
[2011.06.22 11:44:14 | 000,000,000 | -H-D | C] -- C:\Windows\System32\CanonIJ Uninstaller Information
[2011.06.22 11:44:04 | 000,000,000 | -H-D | C] -- C:\ProgramData\CanonBJ
[2011.06.22 11:38:24 | 000,000,000 | ---D | C] -- C:\Users\Edin\AppData\Local\{05502880-9086-450E-AA04-63CCC5EC5442}
[2011.06.21 12:25:27 | 000,000,000 | ---D | C] -- C:\Users\Edin\AppData\Local\{2C06A832-4D72-4E78-8277-7214E0C8CCDA}
[2011.06.20 22:56:43 | 000,000,000 | ---D | C] -- C:\Users\Edin\AppData\Local\assembly
[2011.06.20 20:07:22 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SharePoint
[2011.06.20 20:07:21 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
[2011.06.20 20:05:22 | 000,000,000 | ---D | C] -- C:\Programme\Common Files\DESIGNER
[2011.06.20 20:02:41 | 000,000,000 | ---D | C] -- C:\Programme\Microsoft Visual Studio 8
[2011.06.20 20:01:43 | 000,000,000 | ---D | C] -- C:\Programme\Microsoft Analysis Services
[2011.06.20 20:01:05 | 000,000,000 | ---D | C] -- C:\Users\Edin\AppData\Local\Microsoft Help
 

Moderator informieren  

Hat dir diese Antwort geholfen?

Danke ButtonHilfreiche Antwort Button

[2011.06.20 20:00:54 | 000,000,000 | ---D | C] -- C:\Programme\Microsoft Office
[2011.06.20 20:00:54 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft Help
[2011.06.20 17:09:12 | 000,000,000 | ---D | C] -- C:\Users\Edin\AppData\Local\{BB313738-458D-4CE4-B1EA-FF51EDBCBDBD}
[2011.06.20 13:45:22 | 000,000,000 | ---D | C] -- C:\Users\Edin\AppData\Local\{58DFAC14-FFD8-47F5-8F0D-CA973AFB2A42}
[2011.06.19 22:48:54 | 000,000,000 | ---D | C] -- C:\Users\Edin\AppData\Local\{D6849ABB-E59B-4F10-8EF7-A3AF41A515F0}
[2011.06.19 19:04:59 | 000,000,000 | ---D | C] -- C:\Users\Edin\AppData\Roaming\Microsoft FxCop
[2011.06.19 10:44:19 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SourceTec
[2011.06.19 10:44:18 | 000,000,000 | ---D | C] -- C:\Programme\Common Files\SourceTec
[2011.06.19 10:44:15 | 000,000,000 | ---D | C] -- C:\Programme\SourceTec
[2011.06.19 09:35:25 | 000,000,000 | ---D | C] -- C:\Users\Edin\AppData\Local\{EF8ABF35-E588-4BBA-9A0C-DE4BF25F5C82}
[2011.06.18 12:55:14 | 000,000,000 | ---D | C] -- C:\Users\Edin\AppData\Local\{9E9E6E5E-C5F0-4151-80B5-B49F0BB7140E}
[2011.06.18 00:54:48 | 000,000,000 | ---D | C] -- C:\Users\Edin\AppData\Local\{B2D02053-A08C-4673-9B5A-A3A43A634043}
[2011.06.17 12:15:35 | 000,000,000 | ---D | C] -- C:\Windows\System32\Adobe
[2011.06.17 10:58:08 | 000,000,000 | ---D | C] -- C:\Users\Edin\AppData\Local\{F1BF4BB5-D266-45CC-8764-861163D6AF28}
[2011.06.16 20:59:15 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft Visual Studio
[2011.06.16 20:04:38 | 000,000,000 | ---D | C] -- C:\Windows\System32\RsFx
[2011.06.16 19:59:57 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft SQL Server 2008
[2011.06.16 19:56:10 | 000,000,000 | ---D | C] -- C:\Programme\Microsoft SQL Server
[2011.06.16 19:55:53 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Sync Framework
[2011.06.16 19:55:38 | 000,000,000 | ---D | C] -- C:\Programme\Microsoft Sync Framework
[2011.06.16 19:55:20 | 000,000,000 | ---D | C] -- C:\Programme\Microsoft Synchronization Services
[2011.06.16 19:55:20 | 000,000,000 | ---D | C] -- C:\Programme\Microsoft SQL Server Compact Edition
[2011.06.16 19:54:12 | 000,000,000 | ---D | C] -- C:\ProgramData\PreEmptive Solutions
[2011.06.16 19:51:41 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight 3 SDK
[2011.06.16 19:49:20 | 000,000,000 | ---D | C] -- C:\Programme\Microsoft ASP.NET
[2011.06.16 19:49:11 | 000,000,000 | ---D | C] -- C:\Programme\IIS
[2011.06.16 19:46:49 | 000,000,000 | ---D | C] -- C:\Users\Edin\Documents\Visual Studio 2008
[2011.06.16 19:45:34 | 000,000,000 | ---D | C] -- C:\Users\Edin\Documents\Visual Studio 2010
[2011.06.16 19:32:27 | 000,000,000 | ---D | C] -- C:\Windows\System32\1033
[2011.06.16 19:32:00 | 000,000,000 | ---D | C] -- C:\Windows\symbols
[2011.06.16 19:31:39 | 000,000,000 | ---D | C] -- C:\Programme\Microsoft SDKs
[2011.06.16 19:31:39 | 000,000,000 | ---D | C] -- C:\Programme\Microsoft F#
[2011.06.16 19:31:39 | 000,000,000 | ---D | C] -- C:\Programme\HTML Help Workshop
[2011.06.16 19:31:38 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Visual Studio 2010
[2011.06.16 19:31:38 | 000,000,000 | ---D | C] -- C:\Programme\Microsoft Help Viewer
[2011.06.16 19:31:38 | 000,000,000 | ---D | C] -- C:\Programme\Common Files\Merge Modules
[2011.06.16 19:31:37 | 000,000,000 | ---D | C] -- C:\Programme\Microsoft Visual Studio 10.0
[2011.06.16 19:26:34 | 000,000,000 | ---D | C] -- C:\Programme\Microsoft Visual Studio 9.0
[2011.06.16 19:23:29 | 000,000,000 | ---D | C] -- C:\Users\Edin\Desktop\Visual Basic 2010 Ultimate.exe
[2011.06.16 19:20:22 | 000,000,000 | ---D | C] -- C:\Users\Edin\AppData\Local\{F6589162-938F-47DD-9079-BCDB830F7F7E}
[2011.06.16 10:52:40 | 000,000,000 | ---D | C] -- C:\Users\Edin\AppData\Local\{AFA222A8-7199-48B0-B47A-5887DAF3C2AD}
[2011.06.15 21:58:14 | 000,000,000 | ---D | C] -- C:\Users\Edin\AppData\Roaming\DivX
[2011.06.15 21:57:45 | 000,000,000 | ---D | C] -- C:\Programme\Common Files\PX Storage Engine
[2011.06.15 21:56:51 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DivX Plus
[2011.06.15 21:56:21 | 000,000,000 | ---D | C] -- C:\Programme\Common Files\DivX Shared
[2011.06.15 21:30:31 | 000,000,000 | ---D | C] -- C:\Programme\DivX
[2011.06.15 21:26:22 | 000,000,000 | ---D | C] -- C:\ProgramData\DivX
[2011.06.15 13:46:27 | 000,000,000 | ---D | C] -- C:\Users\Edin\AppData\Local\{05BE4480-EB5F-4E6A-96D9-75F8E87064D5}
[2011.06.15 00:07:54 | 000,000,000 | ---D | C] -- C:\Users\Edin\AppData\Local\{2E188FA1-55F4-4562-8A8E-AC43A8D835D4}
[2011.06.14 12:04:08 | 000,000,000 | ---D | C] -- C:\Users\Edin\AppData\Local\{7EBEEABD-775C-477A-B701-CC54E1BC34B8}
[2011.06.13 17:55:18 | 000,000,000 | ---D | C] -- C:\Users\Edin\AppData\Local\{5C784CC0-65CF-471C-8A70-41EA5B89566C}
[2011.06.13 08:17:02 | 000,000,000 | ---D | C] -- C:\Users\Edin\AppData\Local\{948F5AAF-7E15-4255-BF0B-BD047AC35630}
[2011.06.12 13:44:47 | 000,000,000 | ---D | C] -- C:\Users\Edin\AppData\Local\{BC192237-E8A7-40B0-9001-45D0D2CEDCE7}
[2011.06.11 13:08:32 | 000,000,000 | ---D | C] -- C:\Programme\Common Files\Akamai
[2011.06.11 13:07:27 | 000,000,000 | ---D | C] -- C:\Users\Edin\AppData\Local\{F174A575-131B-4524-9C37-B2FA376AFA5C}
[2011.06.10 22:03:58 | 000,000,000 | ---D | C] -- C:\Users\Edin\AppData\Local\{54C45FE6-3903-4BC8-AE22-EA352DB597DE}
[2011.06.10 10:50:31 | 000,000,000 | ---D | C] -- C:\Users\Edin\Desktop\VCC-AFFILIATE
[2011.06.10 10:03:27 | 000,000,000 | ---D | C] -- C:\Users\Edin\AppData\Local\{CA347C53-A23C-4EF2-BCE3-81644F01129B}
[2011.06.09 22:36:24 | 000,000,000 | ---D | C] -- C:\Users\Edin\Desktop\so zeugs
[2011.06.09 15:08:21 | 000,000,000 | ---D | C] -- C:\Users\Edin\AppData\Local\{5D08414E-1BA8-4944-9845-F471FCE96833}
[2011.06.08 10:32:51 | 000,000,000 | ---D | C] -- C:\Users\Edin\AppData\Local\{FE2AC609-EA63-4E5B-9C28-740EEDFF0A23}
[2011.06.07 17:19:21 | 000,000,000 | ---D | C] -- C:\Users\Edin\AppData\Local\{7CAE4AFB-3CA5-4095-9351-49CCEBE3E146}
[2011.06.06 11:50:21 | 000,000,000 | ---D | C] -- C:\Users\Edin\AppData\Local\{4073D621-3563-4B3F-AF1F-2133AA4F7D99}
[2011.06.05 22:49:10 | 000,000,000 | ---D | C] -- C:\Users\Edin\AppData\Local\{5F699684-F6AA-40FF-94DF-17CB8E828CBB}
[2011.06.05 10:03:01 | 000,000,000 | ---D | C] -- C:\Users\Edin\AppData\Local\{B43CCC93-FE24-4DC9-8F11-D536509E0D05}
[2011.06.05 09:13:32 | 000,000,000 | ---D | C] -- C:\Users\Edin\AppData\Local\{A2E921F0-15AB-468F-9DB2-89FDCED90D83}
[2011.06.04 17:50:41 | 000,000,000 | ---D | C] -- C:\Users\Edin\AppData\Local\ElevatedDiagnostics
[2011.06.04 10:35:01 | 000,000,000 | ---D | C] -- C:\Users\Edin\AppData\Local\{A63AF46E-DF18-4FF1-8C24-E6572B38F5E0}
[2011.06.03 22:34:36 | 000,000,000 | ---D | C] -- C:\Users\Edin\AppData\Local\{99A0EFF3-E419-4153-AD81-4971480ED8A6}
[2011.06.03 21:59:00 | 000,000,000 | ---D | C] -- C:\Users\Edin\Documents\Remote Assistance Logs
[2011.06.03 21:51:03 | 000,000,000 | ---D | C] -- C:\Users\Edin\Documents\Meine empfangenen Dateien
[2011.06.03 10:34:08 | 000,000,000 | ---D | C] -- C:\Users\Edin\AppData\Local\{06DAFFA0-D893-4155-A8B5-ED6243C5D438}
[2011.06.02 18:25:03 | 000,000,000 | ---D | C] -- C:\Users\Edin\AppData\Local\{ADDCE717-87FD-4220-A34F-C2C7D7EDE24A}
[2011.06.02 15:15:37 | 000,000,000 | ---D | C] -- C:\Programme\RAR Password Recovery Magic
[2011.06.02 15:15:37 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RAR Password Recovery Magic
[2011.06.02 13:45:05 | 000,000,000 | ---D | C] -- C:\Users\Edin\AppData\Roaming\Apple Computer
[2011.06.02 13:45:05 | 000,000,000 | ---D | C] -- C:\Users\Edin\AppData\Local\Apple Computer
[2011.06.02 13:44:41 | 000,000,000 | ---D | C] -- C:\Programme\Safari
[2011.06.02 13:44:41 | 000,000,000 | ---D | C] -- C:\ProgramData\Apple Computer
[2011.06.02 13:43:39 | 000,000,000 | ---D | C] -- C:\Programme\Bonjour
[2011.06.02 13:43:11 | 000,000,000 | ---D | C] -- C:\Programme\Common Files\Apple
[2011.06.02 13:42:53 | 000,000,000 | ---D | C] -- C:\Users\Edin\AppData\Local\Apple
[2011.06.02 13:42:43 | 000,000,000 | ---D | C] -- C:\Programme\Apple Software Update
[2011.06.02 13:42:43 | 000,000,000 | ---D | C] -- C:\ProgramData\Apple
[2011.06.02 09:09:15 | 000,000,000 | ---D | C] -- C:\Windows\PIF
[2011.06.02 06:48:51 | 003,073,408 | R--- | C] (EasyBits Media AS) -- C:\Users\Edin\Documents\ezPMUtils.dll
[2011.06.02 06:24:31 | 000,000,000 | ---D | C] -- C:\Users\Edin\AppData\Local\{FDFB7757-1F81-466A-A350-E916BCD3A860}
[2011.06.02 06:24:31 | 000,000,000 | ---D | C] -- C:\Users\Edin\AppData\Local\{4A26EE1B-7569-44F5-A769-A221E6A0C36D}
[2011.06.01 20:46:20 | 000,000,000 | ---D | C] -- C:\Programme\RAR Password * bitte keine illegalen Tipps *er
[2011.06.01 20:42:30 | 000,000,000 | ---D | C] -- C:\Users\Edin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\RAR Password Recovery
[2011.06.01 20:42:30 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RAR Password Recovery
[2011.06.01 20:42:30 | 000,000,000 | ---D | C] -- C:\Programme\Intelore
[2011.06.01 17:25:43 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Real
[2011.06.01 17:25:41 | 000,272,896 | ---- | C] (Progressive Networks) -- C:\Windows\System32\pncrt.dll
[2011.06.01 17:04:25 | 000,000,000 | ---D | C] -- C:\Programme\Common Files\Real
[2011.06.01 16:48:44 | 000,000,000 | ---D | C] -- C:\Programme\BitTorrent
[2011.06.01 16:48:14 | 000,000,000 | ---D | C] -- C:\Users\Edin\AppData\Roaming\BitTorrent
[2011.06.01 13:10:18 | 000,000,000 | ---D | C] -- C:\Windows\Sun
[2011.06.01 12:17:04 | 000,000,000 | ---D | C] -- C:\Users\Edin\AppData\Roaming\skypePM
[2011.06.01 12:17:04 | 000,000,000 | ---D | C] -- C:\ProgramData\Skype Extras
[2011.06.01 12:08:53 | 000,000,000 | ---D | C] -- C:\Users\Edin\AppData\Roaming\Skype
[2011.06.01 12:08:00 | 000,000,000 | ---D | C] -- C:\Programme\Common Files\Skype
[2011.06.01 12:08:00 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
[2011.06.01 12:07:59 | 000,000,000 | R--D | C] -- C:\Programme\Skype
[2011.06.01 12:07:54 | 000,000,000 | ---D | C] -- C:\ProgramData\Skype
[2011.06.01 08:34:03 | 000,000,000 | ---D | C] -- C:\Users\Edin\AppData\Local\{EE51D376-7EA8-4886-A076-407BC93436D8}
[2011.05.30 22:16:57 | 000,000,000 | ---D | C] -- C:\Users\Edin\AppData\Local\{127223A7-7138-441B-BFD2-FE0D1DD330B2}
[2011.05.30 21:04:13 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
 
========== Files - Modified Within 30 Days ==========
 
[2011.06.26 14:53:02 | 000,001,116 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-3173037475-4212121760-2486086343-1001UA.job
[2011.06.26 13:46:28 | 000,759,284 | ---- | M] () -- C:\Windows\System32\perfh007.dat
[2011.06.26 13:46:28 | 000,716,762 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2011.06.26 13:46:28 | 000,171,498 | ---- | M] () -- C:\Windows\System32\perfc007.dat
[2011.06.26 13:46:28 | 000,144,784 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2011.06.26 13:39:18 | 000,000,330 | ---- | M] () -- C:\Windows\tasks\RegistryBooster.job
[2011.06.26 13:39:18 | 000,000,326 | ---- | M] () -- C:\Windows\tasks\DriverScanner.job
[2011.06.26 13:39:18 | 000,000,322 | ---- | M] () -- C:\Windows\tasks\SpeedUpMyPC.job
[2011.06.26 13:39:09 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2011.06.26 13:39:03 | 2415,271,936 | -HS- | M] () -- C:\hiberfil.sys
[2011.06.26 13:15:35 | 000,001,075 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
[2011.06.25 21:54:23 | 000,001,969 | ---- | M] () -- C:\Users\Public\Desktop\SUPERAntiSpyware Free Edition.lnk
[2011.06.25 21:44:12 | 000,008,704 | -H-- | M] () -- C:\Windows\System32\ntvdm.suo
[2011.06.25 21:44:12 | 000,000,971 | ---- | M] () -- C:\Windows\System32\ntvdm.sln
[2011.06.25 21:14:53 | 000,000,156 | -HS- | M] () -- C:\Windows\KLIF.spi
[2011.06.25 20:53:02 | 000,001,064 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-3173037475-4212121760-2486086343-1001Core.job
[2011.06.25 19:10:42 | 000,004,323 | ---- | M] () -- C:\Users\Edin\Desktop\wolfteam_de_installer_20110303.exe
[2011.06.25 16:35:06 | 000,001,984 | ---- | M] () -- C:\Users\Edin\Desktop\Azada.lnk
[2011.06.25 16:35:06 | 000,001,170 | ---- | M] () -- C:\Users\Edin\Desktop\Acer GameZone Online.lnk
[2011.06.25 11:43:54 | 000,001,498 | ---- | M] () -- C:\Windows\Sandboxie.ini
[2011.06.25 11:38:37 | 000,001,035 | ---- | M] () -- C:\Users\Edin\Desktop\Cheat Engine.lnk
[2011.06.24 22:36:13 | 000,002,152 | ---- | M] () -- C:\Users\Edin\Desktop\Alice Greenfingers.lnk
[2011.06.24 21:57:49 | 000,002,017 | ---- | M] () -- C:\Users\Edin\Desktop\Alice Greenfingers 2.lnk
[2011.06.23 21:15:30 | 000,001,114 | ---- | M] () -- C:\Users\Public\Desktop\Hotspot Shield Launch.lnk
[2011.06.23 15:57:27 | 000,027,536 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2011.06.23 15:57:27 | 000,027,536 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2011.06.23 15:44:27 | 000,000,451 | -H-- | M] () -- C:\Users\Edin\AppData\Roaming\Edinlog.dat
[2011.06.23 13:11:37 | 000,030,791 | ---- | M] () -- C:\Users\Edin\Desktop\page4-adresse_hi-hostel-new-york-3.jpg
[2011.06.22 13:46:40 | 000,000,010 | ---- | M] () -- C:\Windows\win.src
[2011.06.22 11:46:18 | 000,002,020 | ---- | M] () -- C:\Users\Edin\Application Data\Microsoft\Internet Explorer\Quick Launch\SpeedUpMyPC.lnk
[2011.06.22 11:46:18 | 000,001,972 | ---- | M] () -- C:\Users\Public\Desktop\SpeedUpMyPC.lnk
[2011.06.21 12:24:24 | 000,406,584 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT
[2011.06.19 18:31:53 | 000,030,243 | ---- | M] () -- C:\Users\Edin\Desktop\Desktop Bilder  Computer  Elektric XP, Desktop Theme - Kopie.jpg
[2011.06.19 10:55:32 | 015,221,064 | ---- | M] () -- C:\Users\Edin\Desktop\super_mario_63.swf
[2011.06.19 10:44:21 | 000,001,258 | ---- | M] () -- C:\Users\Edin\Application Data\Microsoft\Internet Explorer\Quick Launch\Sothink SWF Decompiler.lnk
[2011.06.19 10:44:20 | 000,001,234 | ---- | M] () -- C:\Users\Public\Desktop\Sothink SWF Decompiler.lnk
[2011.06.16 19:51:35 | 000,365,430 | ---- | M] () -- C:\Users\Edin\Desktop\Desktop Bilder  Computer  Elektric XP, Desktop Theme.jpg
[2011.06.15 21:58:39 | 000,002,070 | ---- | M] () -- C:\Users\Public\Desktop\DivX Plus Converter.lnk
[2011.06.15 21:58:39 | 000,001,591 | ---- | M] () -- C:\Users\Edin\Desktop\DivX Movies.lnk
[2011.06.15 21:58:04 | 000,001,090 | ---- | M] () -- C:\Users\Public\Desktop\DivX Plus Player.lnk
[2011.06.15 18:54:46 | 000,002,399 | ---- | M] () -- C:\Users\Edin\Desktop\Google Chrome.lnk
[2011.06.15 00:20:32 | 000,027,318 | ---- | M] () -- C:\Users\Edin\Desktop\o.png
[2011.06.03 16:28:30 | 000,002,006 | ---- | M] () -- 

Moderator informieren  

Hat dir diese Antwort geholfen?

Danke ButtonHilfreiche Antwort Button

C:\Users\Edin\Application Data\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk
[2011.06.03 14:16:26 | 000,002,479 | ---- | M] () -- C:\Users\Public\Desktop\Safari.lnk
[2011.06.02 13:45:26 | 000,088,280 | -H-- | M] () -- C:\Windows\System32\mlfcache.dat
[2011.06.02 13:44:55 | 000,002,503 | ---- | M] () -- C:\Users\Edin\Application Data\Microsoft\Internet Explorer\Quick Launch\Apple Safari.lnk
[2011.06.02 08:41:19 | 000,086,016 | ---- | M] () -- C:\Users\Edin\AppData\Roaming\chrtmp
[2011.06.01 17:26:55 | 000,001,106 | ---- | M] () -- C:\Users\Public\Desktop\RealPlayer.lnk
[2011.06.01 17:25:41 | 000,272,896 | ---- | M] (Progressive Networks) -- C:\Windows\System32\pncrt.dll
[2011.06.01 16:29:17 | 000,002,505 | ---- | M] () -- C:\Users\Public\Desktop\Skype.lnk
[2011.06.01 12:21:55 | 000,000,017 | ---- | M] () -- C:\Users\Edin\AppData\Local\resmon.resmoncfg
[2011.06.01 12:17:10 | 000,000,056 | -H-- | M] () -- C:\Windows\System32\ezsidmv.dat
[2011.05.29 09:11:30 | 000,039,984 | ---- | M] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbamswissarmy.sys
[2011.05.29 09:11:20 | 000,022,712 | ---- | M] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbam.sys
 
========== Files Created - No Company Name ==========
 
[2011.06.26 13:15:35 | 000,001,075 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
[2011.06.25 21:54:23 | 000,001,969 | ---- | C] () -- C:\Users\Public\Desktop\SUPERAntiSpyware Free Edition.lnk
[2011.06.25 21:44:12 | 000,008,704 | -H-- | C] () -- C:\Windows\System32\ntvdm.suo
[2011.06.25 21:44:12 | 000,000,971 | ---- | C] () -- C:\Windows\System32\ntvdm.sln
[2011.06.25 21:14:53 | 000,000,156 | -HS- | C] () -- C:\Windows\KLIF.spi
[2011.06.25 16:35:06 | 000,001,984 | ---- | C] () -- C:\Users\Edin\Desktop\Azada.lnk
[2011.06.25 15:58:19 | 000,004,323 | ---- | C] () -- C:\Users\Edin\Desktop\wolfteam_de_installer_20110303.exe
[2011.06.25 11:38:37 | 000,001,035 | ---- | C] () -- C:\Users\Edin\Desktop\Cheat Engine.lnk
[2011.06.24 21:57:49 | 000,002,017 | ---- | C] () -- C:\Users\Edin\Desktop\Alice Greenfingers 2.lnk
[2011.06.24 20:23:36 | 000,002,152 | ---- | C] () -- C:\Users\Edin\Desktop\Alice Greenfingers.lnk
[2011.06.24 20:23:36 | 000,001,170 | ---- | C] () -- C:\Users\Edin\Desktop\Acer GameZone Online.lnk
[2011.06.23 13:11:37 | 000,030,791 | ---- | C] () -- C:\Users\Edin\Desktop\page4-adresse_hi-hostel-new-york-3.jpg
[2011.06.22 13:46:40 | 000,000,010 | ---- | C] () -- C:\Windows\win.src
[2011.06.22 12:33:39 | 000,001,114 | ---- | C] () -- C:\Users\Public\Desktop\Hotspot Shield Launch.lnk
[2011.06.22 11:46:24 | 000,000,322 | ---- | C] () -- C:\Windows\tasks\SpeedUpMyPC.job
[2011.06.22 11:46:18 | 000,002,020 | ---- | C] () -- C:\Users\Edin\Application Data\Microsoft\Internet Explorer\Quick Launch\SpeedUpMyPC.lnk
[2011.06.22 11:46:18 | 000,001,972 | ---- | C] () -- C:\Users\Public\Desktop\SpeedUpMyPC.lnk
[2011.06.19 18:30:52 | 000,030,243 | ---- | C] () -- C:\Users\Edin\Desktop\Desktop Bilder  Computer  Elektric XP, Desktop Theme - Kopie.jpg
[2011.06.19 10:48:23 | 015,221,064 | ---- | C] () -- C:\Users\Edin\Desktop\super_mario_63.swf
[2011.06.19 10:44:21 | 000,001,258 | ---- | C] () -- C:\Users\Edin\Application Data\Microsoft\Internet Explorer\Quick Launch\Sothink SWF Decompiler.lnk
[2011.06.19 10:44:20 | 000,001,234 | ---- | C] () -- C:\Users\Public\Desktop\Sothink SWF Decompiler.lnk
[2011.06.16 19:47:36 | 000,365,430 | ---- | C] () -- C:\Users\Edin\Desktop\Desktop Bilder  Computer  Elektric XP, Desktop Theme.jpg
[2011.06.15 21:58:39 | 000,001,591 | ---- | C] () -- C:\Users\Edin\Desktop\DivX Movies.lnk
[2011.06.15 21:58:04 | 000,001,090 | ---- | C] () -- C:\Users\Public\Desktop\DivX Plus Player.lnk
[2011.06.15 21:57:15 | 000,002,070 | ---- | C] () -- C:\Users\Public\Desktop\DivX Plus Converter.lnk
[2011.06.15 00:20:32 | 000,027,318 | ---- | C] () -- C:\Users\Edin\Desktop\o.png
[2011.06.03 16:28:08 | 000,001,116 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
[2011.06.02 13:45:26 | 000,088,280 | -H-- | C] () -- C:\Windows\System32\mlfcache.dat
[2011.06.02 13:44:55 | 000,002,503 | ---- | C] () -- C:\Users\Edin\Application Data\Microsoft\Internet Explorer\Quick Launch\Apple Safari.lnk
[2011.06.02 13:44:55 | 000,002,491 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Safari.lnk
[2011.06.02 13:44:55 | 000,002,479 | ---- | C] () -- C:\Users\Public\Desktop\Safari.lnk
[2011.06.02 13:42:44 | 000,002,519 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apple Software Update.lnk
[2011.06.02 09:09:16 | 000,086,016 | ---- | C] () -- C:\Users\Edin\AppData\Roaming\chrtmp
[2011.06.02 09:00:09 | 000,034,308 | -H-- | C] () -- C:\Users\Edin\Desktop\bassmod.dll
[2011.06.01 17:26:55 | 000,001,106 | ---- | C] () -- C:\Users\Public\Desktop\RealPlayer.lnk
[2011.06.01 12:21:55 | 000,000,017 | ---- | C] () -- C:\Users\Edin\AppData\Local\resmon.resmoncfg
[2011.06.01 12:17:10 | 000,000,056 | -H-- | C] () -- C:\Windows\System32\ezsidmv.dat
[2011.06.01 12:08:00 | 000,002,505 | ---- | C] () -- C:\Users\Public\Desktop\Skype.lnk
[2011.05.30 21:13:56 | 000,002,436 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live Messenger.lnk
[2011.05.25 12:41:31 | 000,000,000 | ---- | C] () -- C:\Windows\nsreg.dat
[2011.05.19 20:39:25 | 000,000,824 | ---- | C] () -- C:\ProgramData\cfg
[2011.05.02 13:18:46 | 000,001,498 | ---- | C] () -- C:\Windows\Sandboxie.ini
[2011.05.01 14:04:00 | 000,759,284 | ---- | C] () -- C:\Windows\System32\perfh007.dat
[2011.05.01 14:04:00 | 000,295,922 | ---- | C] () -- C:\Windows\System32\perfi007.dat
[2011.05.01 14:04:00 | 000,171,498 | ---- | C] () -- C:\Windows\System32\perfc007.dat
[2011.05.01 14:04:00 | 000,038,104 | ---- | C] () -- C:\Windows\System32\perfd007.dat
[2011.05.01 12:45:51 | 000,000,000 | ---- | C] () -- C:\Windows\ativpsrm.bin
[2011.05.01 12:45:51 | 000,000,000 | ---- | C] () -- C:\Windows\System32\atiicdxx.dat
[2009.07.14 06:57:37 | 000,067,584 | --S- | C] () -- C:\Windows\bootstat.dat
[2009.07.14 06:33:53 | 000,406,584 | ---- | C] () -- C:\Windows\System32\FNTCACHE.DAT
[2009.07.14 04:05:48 | 000,716,762 | ---- | C] () -- C:\Windows\System32\perfh009.dat
[2009.07.14 04:05:48 | 000,291,294 | ---- | C] () -- C:\Windows\System32\perfi009.dat
[2009.07.14 04:05:48 | 000,144,784 | ---- | C] () -- C:\Windows\System32\perfc009.dat
[2009.07.14 04:05:48 | 000,031,548 | ---- | C] () -- C:\Windows\System32\perfd009.dat
[2009.07.14 04:05:05 | 000,000,741 | ---- | C] () -- C:\Windows\System32\NOISE.DAT
[2009.07.14 04:04:11 | 000,215,943 | ---- | C] () -- C:\Windows\System32\dssec.dat
[2009.07.14 02:19:49 | 000,066,048 | ---- | C] () -- C:\Windows\System32\PrintBrmUi.exe
[2009.07.14 01:55:01 | 000,043,131 | ---- | C] () -- C:\Windows\mib.bin
[2009.07.14 01:51:43 | 000,073,728 | ---- | C] () -- C:\Windows\System32\BthpanContextHandler.dll
[2009.07.14 01:42:10 | 000,064,000 | ---- | C] () -- C:\Windows\System32\BWContextHandler.dll
[2009.07.14 01:15:13 | 000,387,584 | ---- | C] () -- C:\Windows\System32\drivers\csc.sys
[2009.06.10 23:26:10 | 000,673,088 | ---- | C] () -- C:\Windows\System32\mlang.dat
[2005.04.08 04:16:43 | 000,000,451 | -H-- | C] () -- C:\Users\Edin\AppData\Roaming\Edinlog.dat
 

Moderator informieren  

Seiten: [1] 2 3
« Virenprogramm zeigt mir was falsches an !Windows Vista: Windows Vista; Virus? »
 

Schnelle Hilfe: Hier nach ähnlichen Fragen und passenden Tipps suchen!

YoJo (16) *

Datum: 26.06.11, 11:58:55

11465x gelesen, 30 Antworten.

Seiten: [1] 2 3

0 und 1 Gast betrachten dieses Thema.
Fremdwörter? Erklärungen im Lexikon!
Internet
Das Internet, ein aus den Worten "International" und "Network" zusammengesetzter Begriff, ist ein globales Netzwerk (WAN: Wide Area Network), das eine Vielzahl von Comput...

Internet Time
Siehe Swatch Internet Time. ...

Internet-Zugriffsprogramm
Ein Internet-Zugriffsprogramm, auch Browser genannt, stellt Internetseiten für den Benutzer dar. Am bekanntesten ist der Microsoft Internet Explorer, gefolgt vom kos...


Mehr zu The NTVDM CPU Has Encountered an Illegal Instruction

Windows 7 2Windows Vista: ntvdm cpu has encountered an illegal instruction

Hallo!Seit einiger Zeit öffnen sich beim hochfahren zwei Fenster von c:windowssystem32regsvr32.e...

DeinstallierenInstall Problem "...illegal instruction"

Hallo,ich wollte gerade eine Software(Freeware) installieren und geht nicht. Bekam folgende Fehlerme...

Windows XP: probleme mit SSE Instruction Set Teamspeak3

alba,ich hab das problem das ich,obwohl ich Windows XP Professional hab mit 1,02GHz zu 448MB Ram,den...


Ähnliche Fragen: