Verdacht auf schwerwiegenden virus/rootkit
Hallo Hijacker,
ich muss mich leider an euch wenden, da mein Mitbewohner mir scheinbar (unwissentlich) eine Überraschung auf meiner externen Festplatte mitgebracht hat
und ich jetzt begründeten Verdacht habe, mir was ernstes eingefangen zu haben.
Bin normalerweise in solchen Dingen nicht ganz unversiert, aber das hier ist mir zu heiß um es einfach selbst zu versuchen.
Ich poste hier erstmal die Logs, wie in "Neu hier? Bitte abarbeiten... " beschrieben.
Hoffe mal es lässt Rückschlüsse auf den Ernst der Lage zu.
Danke im Vorraus,
mfg stAre.
Log.txt
Code:Logfile of random's system information tool 1.06 (written by random/random) Run by stAre at 2010-03-05 16:09:36 Microsoft Windows XP Professional Service Pack 3 System drive C: has 10 GB (13%) free of 78 GB Total RAM: 2047 MB (78% free) Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 16:09:44, on 05.03.2010 Platform: Windows XP SP3 (WinNT 5.01.2600) MSIE: Internet Explorer v7.00 (7.00.6000.16735) Boot mode: Normal Running processes: C:\WINXP\System32\smss.exe C:\WINXP\system32\winlogon.exe C:\WINXP\system32\services.exe C:\WINXP\system32\lsass.exe C:\WINXP\system32\Ati2evxx.exe C:\WINXP\system32\svchost.exe C:\WINXP\System32\svchost.exe C:\WINXP\system32\Ati2evxx.exe C:\WINXP\system32\spoolsv.exe C:\Programme\Avira\AntiVir Desktop\sched.exe C:\Programme\Avira\AntiVir Desktop\avguard.exe C:\WINXP\system32\PnkBstrA.exe C:\Programme\Creative\SBAudigy2ZS\Surround Mixer\CTSysVol.exe C:\Programme\Avira\AntiVir Desktop\avgnt.exe C:\WINXP\system32\ctfmon.exe C:\WINXP\explorer.exe C:\Down\RSIT.exe C:\Programme\Trend Micro\HijackThis\stAre.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157 R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O4 - HKLM\..\Run: [SBDrvDet] C:\Programme\Creative\SB Drive Det\SBDrvDet.exe /r O4 - HKLM\..\Run: [CTSysVol] C:\Programme\Creative\SBAudigy2ZS\Surround Mixer\CTSysVol.exe /r O4 - HKLM\..\Run: [CTXFIREG] CTxfiReg.exe O4 - HKLM\..\Run: [avgnt] "C:\Programme\Avira\AntiVir Desktop\avgnt.exe" /min O4 - HKCU\..\Run: [ctfmon.exe] C:\WINXP\system32\ctfmon.exe O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINXP\system32\CTFMON.EXE (User 'LOKALER DIENST') O4 - HKUS\S-1-5-19\..\RunOnce: [nltide_2] regsvr32 /s /n /i:U shell32 (User 'LOKALER DIENST') O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINXP\system32\CTFMON.EXE (User 'NETZWERKDIENST') O4 - HKUS\S-1-5-20\..\RunOnce: [nltide_2] regsvr32 /s /n /i:U shell32 (User 'NETZWERKDIENST') O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINXP\system32\CTFMON.EXE (User 'SYSTEM') O4 - HKUS\S-1-5-18\..\RunOnce: [nltide_2] regsvr32 /s /n /i:U shell32 (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINXP\system32\CTFMON.EXE (User 'Default user') O4 - HKUS\.DEFAULT\..\RunOnce: [nltide_2] regsvr32 /s /n /i:U shell32 (User 'Default user') O4 - Startup: Adobe Gamma.lnk = C:\Programme\Gemeinsame Dateien\Adobe\Calibration\Adobe Gamma Loader.exe O4 - Startup: Trillian.lnk = C:\Programme\Trillian\trillian.exe O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINXP\Network Diagnostic\xpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINXP\Network Diagnostic\xpnetdiag.exe O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programme\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programme\Messenger\msmsgs.exe O10 - Unknown file in Winsock LSP: c:\winxp\system32\nwprovau.dll O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://www.update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1224264914937 O23 - Service: Adobe LM Service - Adobe Systems - C:\Programme\Gemeinsame Dateien\Adobe Systems Shared\Service\Adobelmsvc.exe O23 - Service: Avira AntiVir Planer (AntiVirSchedulerService) - Avira GmbH - C:\Programme\Avira\AntiVir Desktop\sched.exe O23 - Service: Avira AntiVir Guard (AntiVirService) - Avira GmbH - C:\Programme\Avira\AntiVir Desktop\avguard.exe O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINXP\system32\Ati2evxx.exe O23 - Service: ATI Smart - Unknown owner - C:\WINXP\system32\ati2sgag.exe O23 - Service: PnkBstrA - Unknown owner - C:\WINXP\system32\PnkBstrA.exe -- End of file - 4674 bytes ======Scheduled tasks folder====== C:\WINXP\tasks\Ad-Aware Update (Weekly).job ======Registry dump====== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{53707962-6F74-2D53-2644-206D7942484F}] Spybot-S&D IE Protection - C:\PROGRA~1\SPYBOT~1\SDHelper.dll [2009-01-26 1879896] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run] "SBDrvDet"=C:\Programme\Creative\SB Drive Det\SBDrvDet.exe [2002-12-03 45056] "CTSysVol"=C:\Programme\Creative\SBAudigy2ZS\Surround Mixer\CTSysVol.exe [2003-09-17 57344] "CTXFIREG"=CTxfiReg.exe [] "avgnt"=C:\Programme\Avira\AntiVir Desktop\avgnt.exe [2009-03-02 209153] [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "ctfmon.exe"=C:\WINXP\system32\ctfmon.exe [2008-04-14 15360] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ctfmon.exe] C:\WINXP\system32\ctfmon.exe [2008-04-14 15360] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CTHelper] C:\WINXP\system32\CTHELPER.EXE [2008-06-27 19456] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite] C:\Programme\DAEMON Tools Lite\daemon.exe [2008-08-08 490952] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IMEKRMIG6.1] C:\WINXP\ime\imkr6_1\IMEKRMIG.EXE [2008-04-14 44032] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IMJPMIG8.1] C:\WINXP\IME\imjp8_1\IMJPMIG.EXE [2008-04-14 208952] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MSPY2002] C:\WINXP\system32\IME\PINTLGNT\ImScInst.exe [2008-04-14 59392] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroFilterCheck] C:\WINXP\system32\NeroCheck.exe [2001-07-09 155648] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NWEReboot] [] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PHIME2002A] C:\WINXP\system32\IME\TINTLGNT\TINTSETP.EXE [2008-04-14 455168] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PHIME2002ASync] C:\WINXP\system32\IME\TINTLGNT\TINTSETP.EXE [2008-04-14 455168] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SB Audigy 2 Startup Menu] C:\Programme\Creative\SBAudigy2ZS\Program\Startup Menu\ChkColor.EXE [] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SpybotSD TeaTimer] C:\Programme\Spybot - Search & Destroy\TeaTimer.exe [2009-03-05 2260480] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\UpdReg] C:\WINXP\UpdReg.EXE [2000-05-11 90112] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services] "Lavasoft Ad-Aware Service"=2 C:\Dokumente und Einstellungen\stAre\Startmenü\Programme\Autostart Adobe Gamma.lnk - C:\Programme\Gemeinsame Dateien\Adobe\Calibration\Adobe Gamma Loader.exe Trillian.lnk - C:\Programme\Trillian\trillian.exe [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\AtiExtEvent] C:\WINXP\system32\Ati2evxx.dll [2008-05-12 139264] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon] C:\WINXP\system32\WgaLogon.dll [2008-03-22 3584] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad] WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINXP\system32\wpdshserviceobj.dll [2008-05-09 133632] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Lavasoft Ad-Aware Service] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Lavasoft Ad-Aware Service] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\nm] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\nm.sys] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System] "dontdisplaylastusername"=0 "legalnoticecaption"= "legalnoticetext"= "shutdownwithoutlogon"=1 "undockwithoutlogon"=1 [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer] "NoDriveTypeAutoRun"=36 "NoDriveAutoRun"=FFFFFFFF [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list] "%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000" "C:\Programme\Trillian\trillian.exe"="C:\Programme\Trillian\trillian.exe:*:Enabled:Trillian" "C:\Games\Battlefield 2\BF2.exe"="C:\Games\Battlefield 2\BF2.exe:*:Enabled:Battlefield 2" "C:\Games\Steam\steamapps\entenkasten\day of defeat source\hl2.exe"="C:\Games\Steam\steamapps\entenkasten\day of defeat source\hl2.exe:*:Enabled:hl2" "C:\Games\Call of Duty 4 - Modern Warfare\iw3mp.exe"="C:\Games\Call of Duty 4 - Modern Warfare\iw3mp.exe:*:Enabled:Call of Duty(R) 4 - Modern Warfare(TM)" "C:\WINXP\system32\PnkBstrA.exe"="C:\WINXP\system32\PnkBstrA.exe:*:Enabled:PnkBstrA" "C:\WINXP\system32\PnkBstrB.exe"="C:\WINXP\system32\PnkBstrB.exe:*:Enabled:PnkBstrB" "C:\Games\Red Alert 3\RA3.exe"="C:\Games\Red Alert 3\RA3.exe:*:Disabled:Command & Conquer™ Red Alert™ 3" "C:\Games\Red Alert 3\rld-ra3k.exe"="C:\Games\Red Alert 3\rld-ra3k.exe:*:Disabled:rld-ra3k.exe" "C:\Programme\mIRC\mirc.exe"="C:\Programme\mIRC\mirc.exe:*:Enabled:mIRC" "C:\Games\Red Alert 3\Data\ra3_1.0.game"="C:\Games\Red Alert 3\Data\ra3_1.0.game:*:Disabled:Command & Conquer™ Red Alert™ 3" "C:\Games\Steam\steamapps\entenkasten\synergy\hl2.exe"="C:\Games\Steam\steamapps\entenkasten\synergy\hl2.exe:*:Enabled:hl2" "C:\Games\Steam\steamapps\entenkasten\half-life 2 deathmatch\hl2.exe"="C:\Games\Steam\steamapps\entenkasten\half-life 2 deathmatch\hl2.exe:*:Enabled:hl2" "C:\Games\Steam\steamapps\entenkasten\counter-strike source\hl2.exe"="C:\Games\Steam\steamapps\entenkasten\counter-strike source\hl2.exe:*:Enabled:hl2" "C:\Games\Delta Force Xtreme\dfxlan.exe"="C:\Games\Delta Force Xtreme\dfxlan.exe:*:Enabled:dfxlan" "C:\Games\CaCG\game.dat"="C:\Games\CaCG\game.dat:*:Enabled:game" "C:\Games\Serious Sam 2\Bin\Sam2.exe"="C:\Games\Serious Sam 2\Bin\Sam2.exe:*:Enabled:Sam2" "C:\Games\Unreal Tournament 3\Binaries\UT3.exe"="C:\Games\Unreal Tournament 3\Binaries\UT3.exe:*:Disabled:UT3" "C:\Games\Steam\steamapps\entenkasten\insurgency\hl2.exe"="C:\Games\Steam\steamapps\entenkasten\insurgency\hl2.exe:*:Enabled:hl2" "C:\Games\Mirror's Edge\Binaries\MirrorsEdge.exe"="C:\Games\Mirror's Edge\Binaries\MirrorsEdge.exe:*:Disabled:Mirror's Edge™" "C:\WINXP\system32\sessmgr.exe"="C:\WINXP\system32\sessmgr.exe:*:Disabled:@xpsp2res.dll,-22019" "C:\Games\Steam\steamapps\entenkasten\eternal-silence\hl2.exe"="C:\Games\Steam\steamapps\entenkasten\eternal-silence\hl2.exe:*:Enabled:hl2" "C:\Games\ANNO 1404\tools\Anno4Web.exe"="C:\Games\ANNO 1404\tools\Anno4Web.exe:*:Disabled:Anno4Web" "C:\Games\RedFaction\RedFaction.exe"="C:\Games\RedFaction\RedFaction.exe:*:Enabled:Red Faction Launcher" "C:\Games\RedFaction\rf.exe"="C:\Games\RedFaction\rf.exe:*:Enabled:Red Faction" [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list] "%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000" "%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019" [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{3cb30e57-1c75-11de-add2-0026540b6f55}] shell\AutoRun\command - C:\WINXP\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL wscript.exe FS6519.dll.vbs [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{44c46619-9f7a-11dd-a61a-000c6e1fc0d5}] shell\AutoRun\command - F:\RECYCLER\S-1-6-21-2434476501-1644491937-600003330-1213\Drivers.exe shell\open\command - F:\RECYCLER\S-1-6-21-2434476501-1644491937-600003330-1213\Drivers.exe [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{44c4661a-9f7a-11dd-a61a-000c6e1fc0d5}] shell\AutoRun\command - J:\RECYCLER\S-1-6-21-2434476501-1644491937-600003330-1213\Drivers.exe shell\open\command - J:\RECYCLER\S-1-6-21-2434476501-1644491937-600003330-1213\Drivers.exe ======List of files/folders created in the last 1 months====== 2010-03-05 15:52:09 ----D---- C:\rsit 2010-03-05 15:36:18 ----D---- C:\Programme\Trend Micro 2010-03-05 15:32:50 ----RASHD---- C:\autorun.inf 2010-02-27 12:24:43 ----HD---- C:\WINXP\system32\GroupPolicy ======List of files/folders modified in the last 1 months====== 2010-03-05 16:09:04 ----D---- C:\Down 2010-03-05 16:08:39 ----D---- C:\Programme\Trillian 2010-03-05 15:52:27 ----A---- C:\WINXP\winamp.ini 2010-03-05 15:52:21 ----D---- C:\WINXP\Prefetch 2010-03-05 15:36:18 ----RD---- C:\Programme 2010-03-05 15:33:00 ----D---- C:\WINXP\Temp 2010-03-05 15:27:35 ----D---- C:\Programme\Mozilla Firefox 2010-03-05 14:27:23 ----D---- C:\WINXP\system32\CatRoot2 2010-03-04 19:30:31 ----A---- C:\WINXP\SchedLgU.Txt 2010-02-27 14:27:18 ----D---- C:\WINXP\security 2010-02-27 12:24:43 ----D---- C:\WINXP\system32 2010-02-21 16:49:43 ----RASH---- C:\boot.ini 2010-02-21 16:49:43 ----A---- C:\WINXP\win.ini 2010-02-21 16:49:43 ----A---- C:\WINXP\system.ini 2010-02-18 17:45:21 ----A---- C:\WINXP\MixBUda.INI 2010-02-14 13:44:55 ----A---- C:\WINXP\NeroDigital.ini 2010-02-08 17:32:17 ----D---- C:\Games ======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R1 AmdK7;AMD K7-Prozessortreiber; C:\WINXP\system32\DRIVERS\amdk7.sys [2008-04-14 41856] R1 avgio;avgio; \??\C:\Programme\Avira\AntiVir Desktop\avgio.sys [] R1 avipbb;avipbb; C:\WINXP\system32\DRIVERS\avipbb.sys [2009-03-30 96104] R1 kbdhid;Tastatur-HID-Treiber; C:\WINXP\system32\DRIVERS\kbdhid.sys [2008-04-14 14720] R1 mbmiodrvr;mbmiodrvr; \??\C:\WINXP\system32\mbmiodrvr.sys [] R1 ssmdrv;ssmdrv; C:\WINXP\system32\DRIVERS\ssmdrv.sys [2009-05-11 28520] R2 atksgt;atksgt; C:\WINXP\system32\DRIVERS\atksgt.sys [2009-07-18 281760] R2 avgntflt;avgntflt; C:\WINXP\system32\DRIVERS\avgntflt.sys [2009-12-07 56816] R2 lirsgt;lirsgt; C:\WINXP\system32\DRIVERS\lirsgt.sys [2009-07-18 25888] R2 NwlnkIpx;NWLink IPX/SPX/NetBIOS-kompatibles Transportprotokoll; C:\WINXP\system32\DRIVERS\nwlnkipx.sys [2008-04-14 88320] R2 NwlnkNb;NWLink-NetBIOS; C:\WINXP\system32\DRIVERS\nwlnknb.sys [2008-04-14 63232] R2 NwlnkSpx;NWLink SPX/SPXII-Protokoll; C:\WINXP\system32\DRIVERS\nwlnkspx.sys [2008-04-14 55936] R2 PfDetNT;PfDetNT; \??\C:\WINXP\system32\drivers\PfModNT.sys [] R3 ati2mtag;ati2mtag; C:\WINXP\system32\DRIVERS\ati2mtag.sys [2008-05-12 3007488] R3 COMMONFX.SYS;COMMONFX.SYS; C:\WINXP\System32\drivers\COMMONFX.SYS [2008-06-27 99352] R3 ctac32k;Creative AC3 Software Decoder; C:\WINXP\System32\drivers\ctac32k.sys [2008-07-07 511000] R3 ctaud2k;Creative Audio Driver (WDM); C:\WINXP\system32\drivers\ctaud2k.sys [2008-07-07 532376] R3 CTAUDFX.SYS;CTAUDFX.SYS; C:\WINXP\System32\drivers\CTAUDFX.SYS [2008-06-27 555032] R3 ctprxy2k;Creative Proxy Driver; C:\WINXP\System32\drivers\ctprxy2k.sys [2008-07-07 14360] R3 CTSBLFX.SYS;CTSBLFX.SYS; C:\WINXP\System32\drivers\CTSBLFX.SYS [2008-06-27 566296] R3 ctsfm2k;Creative SoundFont Management Device Driver; C:\WINXP\System32\drivers\ctsfm2k.sys [2008-07-07 157208] R3 EL90Xbc;3Com 3C90X-BC Family PCI EtherLink Adapter; C:\WINXP\system32\DRIVERS\el90Xbc5.SYS [2002-08-13 74338] R3 emupia;E-mu Plug-in Architecture Driver; C:\WINXP\System32\drivers\emupia2k.sys [2008-07-07 92696] R3 ha10kx2k;Creative Hardware Abstract Layer Driver; C:\WINXP\System32\drivers\ha10kx2k.sys [2008-07-07 797720] R3 hamachi;Hamachi Network Interface; C:\WINXP\system32\DRIVERS\hamachi.sys [2008-11-15 25280] R3 hap16v2k;Creative P16V HAL Driver; C:\WINXP\System32\drivers\hap16v2k.sys [2008-07-07 162840] R3 hidusb;Microsoft HID Class-Treiber; C:\WINXP\system32\DRIVERS\hidusb.sys [2008-04-14 10368] R3 mouhid;Maus-HID-Treiber; C:\WINXP\system32\DRIVERS\mouhid.sys [2008-04-14 12288] R3 ms_mpu401;Microsoft MPU-401 MIDI UART-Treiber; C:\WINXP\system32\drivers\msmpu401.sys [2001-08-17 2944] R3 NVENET;NVIDIA nForce MCP Networking Controller Driver; C:\WINXP\system32\DRIVERS\NVENET.sys [2002-11-27 80896] R3 ossrv;Creative OS Services Driver; C:\WINXP\system32\drivers\ctoss2k.sys [2008-07-07 127512] R3 usbccgp;Microsoft Standard-USB-Haupttreiber; C:\WINXP\system32\DRIVERS\usbccgp.sys [2008-04-14 32128] R3 usbehci;Miniporttreiber für erweiterten Microsoft USB 2.0-Hostcontroller; C:\WINXP\system32\DRIVERS\usbehci.sys [2008-04-14 30208] R3 usbhub;USB2-aktivierter Hub; C:\WINXP\system32\DRIVERS\usbhub.sys [2008-04-14 59520] R3 usbohci;Miniporttreiber für Microsoft USB Open Host-Controller; C:\WINXP\system32\DRIVERS\usbohci.sys [2008-04-14 17152] R3 USBSTOR;USB-Massenspeichertreiber; C:\WINXP\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368] S1 InCDPass;InCDPass; C:\WINXP\system32\drivers\InCDPass.sys [] S1 InCDRm;InCD Reader; C:\WINXP\system32\drivers\InCDRm.sys [] S2 ASInsHelp;ASInsHelp; \??\C:\WINXP\system32\drivers\AsInsHelp32.sys [] S3 ad2avgcm;ad2avgcm; C:\WINXP\system32\drivers\ad2avgcm.sys [] S3 Arp1394;1394-ARP-Clientprotokoll; C:\WINXP\system32\DRIVERS\arp1394.sys [2008-04-14 60800] S3 COMMONFX.DLL;COMMONFX.DLL; C:\WINXP\system32\COMMONFX.DLL [] S3 COMMONFX;COMMONFX; C:\WINXP\system32\drivers\COMMONFX.SYS [2008-06-27 99352] S3 CT20XUT.DLL;CT20XUT.DLL; C:\WINXP\system32\CT20XUT.DLL [] S3 CTAUDFX.DLL;CTAUDFX.DLL; C:\WINXP\system32\CTAUDFX.DLL [] S3 CTAUDFX;CTAUDFX; C:\WINXP\system32\drivers\CTAUDFX.SYS [2008-06-27 555032] S3 ctdvda2k;Creative DVD-Audio Device Driver; C:\WINXP\System32\drivers\ctdvda2k.sys [2008-07-07 347080] S3 CTEAPSFX.DLL;CTEAPSFX.DLL; C:\WINXP\system32\CTEAPSFX.DLL [] S3 CTEDSPFX.DLL;CTEDSPFX.DLL; C:\WINXP\system32\CTEDSPFX.DLL [] S3 CTEDSPIO.DLL;CTEDSPIO.DLL; C:\WINXP\system32\CTEDSPIO.DLL [] S3 CTEDSPSY.DLL;CTEDSPSY.DLL; C:\WINXP\system32\CTEDSPSY.DLL [] S3 CTERFXFX.DLL;CTERFXFX.DLL; C:\WINXP\system32\CTERFXFX.DLL [] S3 CTERFXFX.SYS;CTERFXFX.SYS; C:\WINXP\System32\drivers\CTERFXFX.SYS [2008-06-27 100888] S3 CTERFXFX;CTERFXFX; C:\WINXP\system32\drivers\CTERFXFX.SYS [2008-06-27 100888] S3 CTEXFIFX.DLL;CTEXFIFX.DLL; C:\WINXP\system32\CTEXFIFX.DLL [] S3 CTHWIUT.DLL;CTHWIUT.DLL; C:\WINXP\system32\CTHWIUT.DLL [] S3 CTSBLFX.DLL;CTSBLFX.DLL; C:\WINXP\system32\CTSBLFX.DLL [] S3 CTSBLFX;CTSBLFX; C:\WINXP\system32\drivers\CTSBLFX.SYS [2008-06-27 566296] S3 ENTECH;ENTECH; \??\C:\WINXP\system32\DRIVERS\ENTECH.sys [] S3 hap17v2k;Creative P17V HAL Driver; C:\WINXP\system32\drivers\hap17v2k.sys [2008-07-07 189464] S3 NIC1394;1394-Netzwerktreiber; C:\WINXP\system32\DRIVERS\nic1394.sys [2008-04-14 61824] S3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINXP\system32\DRIVERS\WudfPf.sys [2008-05-09 77568] S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINXP\system32\DRIVERS\wudfrd.sys [2008-05-09 82944] S4 InCDFs;InCD File System; C:\WINXP\system32\drivers\InCDFs.sys [] S4 IntelIde;IntelIde; C:\WINXP\system32\drivers\IntelIde.sys [] ======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R2 AntiVirSchedulerService;Avira AntiVir Planer; C:\Programme\Avira\AntiVir Desktop\sched.exe [2009-05-13 108289] R2 AntiVirService;Avira AntiVir Guard; C:\Programme\Avira\AntiVir Desktop\avguard.exe [2009-07-21 185089] R2 Ati HotKey Poller;Ati HotKey Poller; C:\WINXP\system32\Ati2evxx.exe [2008-05-12 540672] R2 PnkBstrA;PnkBstrA; C:\WINXP\system32\PnkBstrA.exe [2009-08-09 75064] S2 ATI Smart;ATI Smart; C:\WINXP\system32\ati2sgag.exe [2008-05-12 593920] S3 Adobe LM Service;Adobe LM Service; C:\Programme\Gemeinsame Dateien\Adobe Systems Shared\Service\Adobelmsvc.exe [2009-04-27 72704] S3 aspnet_state;ASP.NET State Service; C:\WINXP\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2005-09-23 29896] S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINXP\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2005-09-23 66240] S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:\WINXP\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe [2006-10-20 36864] S3 idsvc;Windows CardSpace; C:\WINXP\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2006-10-30 741376] S3 WMPNetworkSvc;Windows Media Player-Netzwerkfreigabedienst; C:\Programme\Windows Media Player\WMPNetwk.exe [2006-11-03 920576] S3 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINXP\system32\svchost.exe [2008-04-14 14336] S4 Lavasoft Ad-Aware Service;Lavasoft Ad-Aware Service; C:\Programme\Lavasoft\Ad-Aware\AAWService.exe [2009-10-01 1028432] S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\WINXP\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2006-10-30 122880] -----------------EOF-----------------
info.txt
Code:info.txt logfile of random's system information tool 1.06 2010-03-05 15:52:29 ======Uninstall list====== -->"C:\Programme\Creative\SBAudigy2ZS\Program\SETUP.EXE" /S /U /W /L:GER -->C:\Programme\DivX\DivXConverterUninstall.exe /CONVERTER -->MsiExec /X{E4D15328-8C89-484B-B9AA-F5BE9EA6D01C} -->RunDll32 C:\PROGRA~1\GEMEIN~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Programme\InstallShield Installation Information\{236FADD8-58FD-11D6-A285-00A0CC51B2FE}\setup.exe" -l0x7 -->RunDll32 C:\PROGRA~1\GEMEIN~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Programme\InstallShield Installation Information\{236FADD8-58FD-11D6-A285-00A0CC51B2FE}\setup.exe" -l0x7 /remove -->RunDll32 C:\PROGRA~1\GEMEIN~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Programme\InstallShield Installation Information\{5210ED6D-52A9-11D6-A285-00A0CC51B2FE}\setup.exe" -l0x7 -->RunDll32 C:\PROGRA~1\GEMEIN~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Programme\InstallShield Installation Information\{5210ED6D-52A9-11D6-A285-00A0CC51B2FE}\setup.exe" -l0x7 /remove -->RunDll32 C:\PROGRA~1\GEMEIN~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Programme\InstallShield Installation Information\{5CDDF96A-BC34-4D72-9ABA-E1FFF0C39977}\setup.exe" -l0x7 -->RunDll32 C:\PROGRA~1\GEMEIN~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Programme\InstallShield Installation Information\{72A810B1-EE62-455A-A086-E1C9FEDE7F29}\setup.exe" -l0x7 -->RunDll32 C:\PROGRA~1\GEMEIN~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Programme\InstallShield Installation Information\{72A810B1-EE62-455A-A086-E1C9FEDE7F29}\setup.exe" -l0x7 /remove -->RunDll32 C:\PROGRA~1\GEMEIN~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Programme\InstallShield Installation Information\{87499F38-FD69-4A2B-B41A-BAB8DE9B94FE}\setup.exe" -l0x7 -->RunDll32 C:\PROGRA~1\GEMEIN~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Programme\InstallShield Installation Information\{9154ED7C-926E-49CC-B677-0CF3C5267457}\setup.exe" -l0x7 -->RunDll32 C:\PROGRA~1\GEMEIN~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Programme\InstallShield Installation Information\{9154ED7C-926E-49CC-B677-0CF3C5267457}\setup.exe" -l0x7 /remove -->RunDll32 C:\PROGRA~1\GEMEIN~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Programme\InstallShield Installation Information\{9A4D2983-4662-4387-BE3D-4CFC2FA9C100}\setup.exe" -l0x7 -->RunDll32 C:\PROGRA~1\GEMEIN~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Programme\InstallShield Installation Information\{9A4D2983-4662-4387-BE3D-4CFC2FA9C100}\setup.exe" -l0x7 /remove -->RunDll32 C:\PROGRA~1\GEMEIN~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Programme\InstallShield Installation Information\{A1185190-514F-11D6-A285-00A0CC51B2FE}\setup.exe" -l0x7 -->RunDll32 C:\PROGRA~1\GEMEIN~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Programme\InstallShield Installation Information\{A1185190-514F-11D6-A285-00A0CC51B2FE}\setup.exe" -l0x7 /remove -->RunDll32 C:\PROGRA~1\GEMEIN~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Programme\InstallShield Installation Information\{B3549608-69D3-11D7-AB2D-0090271A23A2}\setup.exe" -l0x7 -->RunDll32 C:\PROGRA~1\GEMEIN~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Programme\InstallShield Installation Information\{B3549608-69D3-11D7-AB2D-0090271A23A2}\setup.exe" -l0x7 /remove -->RunDll32 C:\PROGRA~1\GEMEIN~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Programme\InstallShield Installation Information\{DEBD7BF3-5856-11D6-A285-00A0CC51B2FE}\setup.exe" -l0x7 -->RunDll32 C:\PROGRA~1\GEMEIN~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Programme\InstallShield Installation Information\{DEBD7BF3-5856-11D6-A285-00A0CC51B2FE}\setup.exe" -l0x7 /remove -->RunDll32 C:\PROGRA~1\GEMEIN~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Programme\InstallShield Installation Information\{FB2292C6-1F0A-11D7-AB2D-0090271A23A2}\setup.exe" -l0x7 -->RunDll32 C:\PROGRA~1\GEMEIN~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Programme\InstallShield Installation Information\{FB2292C6-1F0A-11D7-AB2D-0090271A23A2}\setup.exe" -l0x7 /remove -->RunDll32 C:\PROGRA~1\GEMEIN~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Programme\InstallShield Installation Information\{FD851F7E-F887-405D-9E1C-488811113EF3}\setup.exe" -l0x7 -->RunDll32 C:\PROGRA~1\GEMEIN~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Programme\InstallShield Installation Information\{FD851F7E-F887-405D-9E1C-488811113EF3}\setup.exe" -l0x7 /remove -->RunDll32 C:\PROGRA~1\GEMEIN~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Programme\InstallShield Installation Information\{7B9AE66C-2A8F-4FB2-85D7-416AFFAE8408}\setup.exe" -l0x7 -->rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WINXP\INF\PCHealth.inf 3DMark05-->RunDll32 C:\PROGRA~1\GEMEIN~1\INSTAL~1\PROFES~1\RunTime\10\01\Intel32\Ctor.dll,LaunchSetup "C:\Programme\InstallShield Installation Information\{2DF7B278-D3B6-40A4-B25C-0E7149F439EA}\setup.exe" -l0x9 -removeonly Ad-Aware-->"C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\{EF63305C-BAD7-4144-9208-D65528260864}\Ad-AwareAE.exe" REMOVE=TRUE MODIFY=FALSE Ad-Aware-->C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\{EF63305C-BAD7-4144-9208-D65528260864}\Ad-AwareAE.exe Adobe Bridge 1.0-->MsiExec.exe /I{B74D4E10-1033-0000-0000-000000000001} Adobe Common File Installer-->MsiExec.exe /I{8EDBA74D-0686-4C99-BFDD-F894678E5B39} Adobe Flash Player 10 Plugin-->C:\WINXP\system32\Macromed\Flash\uninstall_plugin.exe Adobe Flash Player ActiveX-->C:\WINXP\system32\Macromed\Flash\uninstall_activeX.exe Adobe Help Center 1.0-->MsiExec.exe /I{E9787678-1033-0000-8E67-000000000001} Adobe Photoshop CS2-->msiexec /I {236BB7C4-4419-42FD-0409-1E257A25E34D} Adobe Stock Photos 1.0-->MsiExec.exe /I{786C5747-1033-0000-B58E-000000000001} ANNO 1404-->"C:\Programme\InstallShield Installation Information\{3D9CF3CA-3AB0-4A82-9853-D7C43FD1D775}\Setup.exe" -runfromtemp -l0x0009 -removeonly ATI - Software Uninstall Utility-->C:\Programme\ATI Technologies\UninstallAll\AtiCimUn.exe ATI Display Driver-->rundll32 C:\WINXP\system32\atiiiexx.dll,_InfEngUnInstallINFFile_RunDLL@16 -force_restart -flags:0x2010001 -inf_class:DISPLAY -clean Audiosurf No-Steam v0.1-->"C:\Games\Audiosurf\unins000.exe" Avira AntiVir Personal - Free Antivirus-->C:\Programme\Avira\AntiVir Desktop\setup.exe /REMOVE Battlefield 2(TM)-->RunDll32 C:\PROGRA~1\GEMEIN~1\INSTAL~1\PROFES~1\RunTime\10\50\Intel32\Ctor.dll,LaunchSetup "C:\Programme\InstallShield Installation Information\{04858915-9F49-4B2A-AED4-DC49A7DE6A7B}\setup.exe" -l0x9 -removeonly Battlefield Heroes-->"C:\Games\Battlefield Heroes\uninstaller.exe" "C:\Games\Battlefield Heroes\Uninstall.xml" BattlEye Uninstall-->C:\Games\ArmA\BattlEye\UnInstallBE.exe Call of Duty(R) 4 - Modern Warfare(TM)-->C:\Programme\InstallShield Installation Information\{E48469CC-635E-4FD5-A122-1497C286D217}\setup.exe -runfromtemp -l0x0409 Command & Conquer™ Red Alert™ 3 Uprising-->MsiExec.exe /X{DDE59617-F59A-473B-BC4E-C2B81F6CD38D} Command & Conquer™ Red Alert™ 3-->MsiExec.exe /X{296D8550-CB06-48E4-9A8B-E5034FB64715} Counter-Strike: Source-->"C:\Games\Steam\steam.exe" steam://uninstall/240 Creative-Audiokonsole-->RunDll32 C:\PROGRA~1\GEMEIN~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Programme\InstallShield Installation Information\{7B9AE66C-2A8F-4FB2-85D7-416AFFAE8408}\setup.exe" -l0x7 /remove Creative-Systeminformationen-->RunDll32 C:\PROGRA~1\GEMEIN~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Programme\InstallShield Installation Information\{87499F38-FD69-4A2B-B41A-BAB8DE9B94FE}\setup.exe" -l0x7 /remove DataStar-Engine-->C:\WINXP\unin0407.exe -fC:\Programme\GameStar\DSEngine\DeIsL1.isu -cC:\Programme\GameStar\DSEngine\_ISREG32.DLL Day of Defeat: Source-->"C:\Games\Steam\steam.exe" steam://uninstall/300 Delta Force: Xtreme-->RunDll32 C:\PROGRA~1\GEMEIN~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Programme\InstallShield Installation Information\{961C4925-5B53-4127-969D-1CACF2426C05}\setup.exe" -l0x9 DFX 8 for Winamp-->"C:\Programme\Winamp\uninstall_dfx.exe" DivX Codec-->C:\Programme\DivX\DivXCodecUninstall.exe /CODEC DivX Converter-->C:\Programme\DivX\DivXConverterUninstall.exe /CONVERTER DivX Player-->C:\Programme\DivX\DivXPlayerUninstall.exe /PLAYER DivX Plus DirectShow Filters-->C:\Programme\DivX\DivXDSFiltersUninstall.exe /DSFILTERS DivX Plus Web Player-->C:\Programme\DivX\DivXWebPlayerUninstall.exe /PLUGIN Eternal Silence-->"C:\Games\Steam\steam.exe" steam://uninstall/17550 FlatOut2-->MsiExec.exe /I{C884B05A-F5D9-4AE4-9D84-E6BD9F6E7890} Free Audio CD Burner version 1.2-->"C:\Programme\DVDVideoSoft\Free Audio CD Burner\unins000.exe" Free YouTube to MP3 Converter version 3.2-->"C:\Programme\YouTube to MP3 Converter\unins000.exe" Half-Life 2: Deathmatch-->"C:\Games\Steam\steam.exe" steam://uninstall/320 Hamachi 1.0.3.0-->C:\Programme\Hamachi\uninstall.exe HijackThis 2.0.2-->"C:\Programme\Trend Micro\HijackThis\HijackThis.exe" /uninstall Hotfix for Windows Media Format 11 SDK (KB929399)-->"C:\WINXP\$NtUninstallKB929399$\spuninst\spuninst.exe" Hotfix für Windows XP (KB952287)-->"C:\WINXP\$NtUninstallKB952287$\spuninst\spuninst.exe" Insurgency-->"C:\Games\Steam\steam.exe" steam://uninstall/17700 K-Lite Codec Pack 4.6.2 (Full)-->"C:\Programme\K-Lite Codec Pack\unins000.exe" LOGO!Soft Comfort V5.0-->"C:\Programme\Siemens\LOGOComfort_V5\UninstallerData\Deinstallieren.exe" Microsoft .NET Framework 2.0-->C:\WINXP\Microsoft.NET\Framework\v2.0.50727\Microsoft .NET Framework 2.0\install.exe Microsoft .NET Framework 3.0-->C:\WINXP\Microsoft.NET\Framework\v3.0\Microsoft .NET Framework 3.0\setup.exe Microsoft .NET Framework 3.0-->MsiExec.exe /X{15095BF3-A3D7-4DDF-B193-3A496881E003} Microsoft Games for Windows - LIVE Redistributable-->MsiExec.exe /X{929CE49F-1CA7-4CF3-A9A1-6D757443C63F} Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{7299052b-02a4-4627-81f2-1818da5d550d} Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022-->MsiExec.exe /X{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4} Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17-->MsiExec.exe /X{9A25302D-30C0-39D9-BD6F-21E6EC160475} mIRC-->C:\Programme\mIRC\uninstall.exe _?=C:\Programme\mIRC Mirror's Edge™-->MsiExec.exe /X{AEDBD563-24BB-4EE3-8366-A654DAC2D988} MixMeister BPM Analyzer 1.0-->"C:\Programme\MixMeister BPM Analyzer\unins000.exe" Motherboard Monitor 5-->"C:\Programme\Motherboard Monitor 5\unins000.exe" Mozilla Firefox (3.0.18)-->C:\Programme\Mozilla Firefox\uninstall\helper.exe MSXML 6.0 Parser (KB925673)-->MsiExec.exe /I{FE9126DB-5F84-495A-BB46-3C724F1C2D08} Nero 7 Premium-->MsiExec.exe /I{4781569D-5404-1F26-4B2B-6DF444441031} NVIDIA nForce Treiber für Windows 2000/XP-->rundll32.exe C:\WINXP\system32\NVNFINST.DLL,NvUninstallCrush NVIDIA PhysX v8.10.17-->MsiExec.exe /X{E4D15328-8C89-484B-B9AA-F5BE9EA6D01C} OpenAL-->"C:\Programme\OpenAL\oalinst.exe" /U OpenOffice.org 3.0-->MsiExec.exe /I{04B45310-A5FE-4425-BFCA-1A6D8920DE74} oZone3D.Net FurMark v1.4.0-->"C:\Programme\oZone3D\Benchmarks\FurMark_v1.4.0\unins000.exe" PDFCreator-->C:\Programme\PDFCreator\unins000.exe Populous: The Beginning-->C:\WINXP\IsUninst.exe -fC:\Games\Populous\Uninst.isu -c"C:\Games\Populous\uninst.dll" PunkBuster Services-->C:\WINXP\system32\pbsvc.exe -u Red Faction-->RunDll32 C:\PROGRA~1\GEMEIN~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Programme\InstallShield Installation Information\{035B3ABF-89B6-4964-8656-36CBE01F6C85}\setup.exe" anything Serious Sam 2-->C:\Games\Serious Sam 2\Bin\Uninstall.exe Sicherheitsupdate für Windows Internet Explorer 7 (KB938127-v2)-->"C:\WINXP\ie7updates\KB938127-v2-IE7\spuninst\spuninst.exe" Sicherheitsupdate für Windows Internet Explorer 7 (KB956390)-->"C:\WINXP\ie7updates\KB956390-IE7\spuninst\spuninst.exe" Sicherheitsupdate für Windows Media Player 11 (KB954154)-->"C:\WINXP\$NtUninstallKB954154_WM11$\spuninst\spuninst.exe" Sicherheitsupdate für Windows XP (KB923789)-->C:\WINXP\system32\MacroMed\Flash\genuinst.exe C:\WINXP\system32\MacroMed\Flash\KB923789.inf Sicherheitsupdate für Windows XP (KB938464)-->"C:\WINXP\$NtUninstallKB938464$\spuninst\spuninst.exe" Sicherheitsupdate für Windows XP (KB946648)-->"C:\WINXP\$NtUninstallKB946648$\spuninst\spuninst.exe" Sicherheitsupdate für Windows XP (KB950974)-->"C:\WINXP\$NtUninstallKB950974$\spuninst\spuninst.exe" Sicherheitsupdate für Windows XP (KB951066)-->"C:\WINXP\$NtUninstallKB951066$\spuninst\spuninst.exe" Sicherheitsupdate für Windows XP (KB951376-v2)-->"C:\WINXP\$NtUninstallKB951376-v2$\spuninst\spuninst.exe" Sicherheitsupdate für Windows XP (KB951748)-->"C:\WINXP\$NtUninstallKB951748$\spuninst\spuninst.exe" Sicherheitsupdate für Windows XP (KB952954)-->"C:\WINXP\$NtUninstallKB952954$\spuninst\spuninst.exe" Sicherheitsupdate für Windows XP (KB954211)-->"C:\WINXP\$NtUninstallKB954211$\spuninst\spuninst.exe" Sicherheitsupdate für Windows XP (KB956391)-->"C:\WINXP\$NtUninstallKB956391$\spuninst\spuninst.exe" Sicherheitsupdate für Windows XP (KB956803)-->"C:\WINXP\$NtUninstallKB956803$\spuninst\spuninst.exe" Sicherheitsupdate für Windows XP (KB956841)-->"C:\WINXP\$NtUninstallKB956841$\spuninst\spuninst.exe" Sicherheitsupdate für Windows XP (KB957095)-->"C:\WINXP\$NtUninstallKB957095$\spuninst\spuninst.exe" Sicherheitsupdate für Windows XP (KB958644)-->"C:\WINXP\$NtUninstallKB958644$\spuninst\spuninst.exe" Sound Blaster Audigy 2 ZS-->RunDll32 C:\PROGRA~1\GEMEIN~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Programme\InstallShield Installation Information\{9E2514D9-DC24-4634-B348-61F3EF0F1628}\SETUP.EXE" -l0x7 Spybot - Search & Destroy-->"C:\Programme\Spybot - Search & Destroy\unins000.exe" Steam-->MsiExec.exe /X{048298C9-A4D3-490B-9FF9-AB023A9238F3} Synergy-->"C:\Games\Steam\steam.exe" steam://uninstall/17520 Trillian-->C:\Programme\Trillian\trillian.exe /uninstall Uninstall 1.0.0.1-->"C:\Programme\Gemeinsame Dateien\DVDVideoSoft\unins000.exe" Update für Windows XP (KB951072-v2)-->"C:\WINXP\$NtUninstallKB951072-v2$\spuninst\spuninst.exe" Update für Windows XP (KB951978)-->"C:\WINXP\$NtUninstallKB951978$\spuninst\spuninst.exe" VC80CRTRedist - 8.0.50727.4053-->MsiExec.exe /I{5EE7D259-D137-4438-9A5F-42F432EC0421} Visual C++ 2008 x86 Runtime - (v9.0.30729)-->MsiExec.exe /X{F333A33D-125C-32A2-8DCE-5C5D14231E27} Visual C++ 2008 x86 Runtime - v9.0.30729.01-->C:\WINXP\system32\msiexec.exe /x {F333A33D-125C-32A2-8DCE-5C5D14231E27} /qb+ REBOOTPROMPT="" Winamp (remove only)-->"C:\Programme\Winamp\UninstWA.exe" Windows Communication Foundation-->MsiExec.exe /X{491DD792-AD81-429C-9EB4-86DD3D22E333} Windows Presentation Foundation-->MsiExec.exe /X{BAF78226-3200-4DB4-BE33-4D922A799840} Windows Workflow Foundation-->MsiExec.exe /I{7D1B85BD-AA07-48B8-808D-67A4067FC6BD} Windows-Treiberpaket - Advanced Micro Devices (AmdK8) Processor (05/27/2006 1.3.2.0)-->C:\PROGRA~1\DIFX\7B44739871F4D539FA473F57A832EA4B6A59EF06\DPInst.exe /d /u C:\WINXP\system32\DRVSTORE\amdk8_C710CEED791003E4D635992B02471584893356A0\amdk8.inf WinFuture xp-Iso-Builder 3.0.7-->"C:\Programme\xp-Iso-Builder\unins000.exe" WinRAR archiver-->C:\Programme\WinRAR\uninstall.exe Xvid 1.2.1 final uninstall-->"C:\Programme\Xvid\unins000.exe" ======Hosts File====== 127.0.0.1 www.007guard.com 127.0.0.1 007guard.com 127.0.0.1 008i.com 127.0.0.1 www.008k.com 127.0.0.1 008k.com 127.0.0.1 www.00hq.com 127.0.0.1 00hq.com 127.0.0.1 010402.com 127.0.0.1 www.032439.com 127.0.0.1 032439.com ======Security center information====== AV: AntiVir Desktop ======System event log====== Computer Name: STARE-E-0 Event Code: 7035 Message: Der Steuerbefehl "starten" wurde erfolgreich an den Dienst "Kompatibilität für schnelle Benutzerumschaltung" gesendet. Record Number: 5186 Source Name: Service Control Manager Time Written: 20091217235407.000000+060 Event Type: Informationen User: NT-AUTORITÄT\SYSTEM Computer Name: STARE-E-0 Event Code: 7036 Message: Dienst "Terminaldienste" befindet sich jetzt im Status "Ausgeführt". Record Number: 5185 Source Name: Service Control Manager Time Written: 20091217235407.000000+060 Event Type: Informationen User: Computer Name: STARE-E-0 Event Code: 7000 Message: Der Dienst "ASInsHelp" wurde aufgrund folgenden Fehlers nicht gestartet: Das System kann die angegebene Datei nicht finden. Record Number: 5184 Source Name: Service Control Manager Time Written: 20091217235403.000000+060 Event Type: Fehler User: Computer Name: STARE-E-0 Event Code: 17 Message: AVGNTFLT successfully loaded Record Number: 5183 Source Name: avgntflt Time Written: 20091217235352.000000+060 Event Type: Informationen User: Computer Name: STARE-E-0 Event Code: 26 Message: Anwendungspopup: : Machine Check: Regs Record Number: 5182 Source Name: Application Popup Time Written: 20091217235352.000000+060 Event Type: Informationen User: =====Application event log===== Computer Name: STARE-E-0 Event Code: 1800 Message: Der Windows-Sicherheitscenterdienst wurde gestartet. Record Number: 5 Source Name: SecurityCenter Time Written: 20090809154348.000000+120 Event Type: Informationen User: Computer Name: STARE-E-0 Event Code: 105 Message: The service was started. Record Number: 4 Source Name: ATI Smart Time Written: 20090809154332.000000+120 Event Type: Informationen User: Computer Name: STARE-E-0 Event Code: 4096 Message: Der AntiVir Dienst wurde erfolgreich gestartet! Record Number: 3 Source Name: Avira AntiVir Time Written: 20090809151653.000000+120 Event Type: Informationen User: NT-AUTORITÄT\SYSTEM Computer Name: STARE-E-0 Event Code: 1800 Message: Der Windows-Sicherheitscenterdienst wurde gestartet. Record Number: 2 Source Name: SecurityCenter Time Written: 20090809151652.000000+120 Event Type: Informationen User: Computer Name: STARE-E-0 Event Code: 105 Message: The service was started. Record Number: 1 Source Name: ATI Smart Time Written: 20090809151638.000000+120 Event Type: Informationen User: ======Environment variables====== "ComSpec"=%SystemRoot%\system32\cmd.exe "Path"=%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;C:\Programme\ATI Technologies\ATI.ACE\Core-Static;C:\Programme\Gemeinsame Dateien\Adobe\AGL;C:\Programme\Gemeinsame Dateien\DivX Shared\ "windir"=%SystemRoot% "FP_NO_HOST_CHECK"=NO "OS"=Windows_NT "PROCESSOR_ARCHITECTURE"=x86 "PROCESSOR_LEVEL"=6 "PROCESSOR_IDENTIFIER"=x86 Family 6 Model 10 Stepping 0, AuthenticAMD "PROCESSOR_REVISION"=0a00 "NUMBER_OF_PROCESSORS"=1 "PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH "TEMP"=%SystemRoot%\TEMP "TMP"=%SystemRoot%\TEMP -----------------EOF-----------------
hjtscanlist.txt
Code:$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$ º º hjtscanlist v2.0 º º $$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$ Microsoft Windows XP [Version 5.1.2600] C: 05.03.2010 16:10 C:\Down --------- 0 05.03.2010 15:52 C:\rsit --------- 0 05.03.2010 15:36 C:\Programme --------- 0 05.03.2010 15:32 C:\autorun.inf --------- 0 C:\pagefile.sys --------- 21.02.2010 16:49 C:\boot.ini --------- 219 08.02.2010 17:32 C:\Games --------- 0 29.01.2010 00:22 C:\WINXP --------- 0 19.05.2009 20:22 C:\installer_debug.txt --------- 12375 25.12.2008 13:40 C:\PDOXUSRS.NET --------- 13030 07.12.2008 16:17 C:\discZ --------- 0 25.10.2008 15:42 C:\ATI --------- 0 21.10.2008 23:49 C:\mp3 --------- 0 17.10.2008 19:03 C:\Dokumente und Einstellungen --------- 0 17.10.2008 19:03 C:\Postinstall --------- 0 17.10.2008 18:22 C:\NVIDIA --------- 0 17.10.2008 18:14 C:\RECYCLER --------- 0 17.10.2008 17:58 C:\System Volume Information --------- 0 17.10.2008 17:54 C:\MSDOS.SYS --------- 0 17.10.2008 17:54 C:\IO.SYS --------- 0 17.10.2008 17:54 C:\AUTOEXEC.BAT --------- 0 17.10.2008 17:54 C:\CONFIG.SYS --------- 0 14.04.2008 13:00 C:\NTDETECT.COM --------- 47564 14.04.2008 13:00 C:\ntldr --------- 251712 14.04.2008 13:00 C:\bootfont.bin --------- 4952 ---------------------------------------- C:\WINXP 05.03.2010 15:52 C:\WINXP\winamp.ini --------- 155 05.03.2010 14:30 C:\WINXP\{00000001-00000000-00000008-00001102-00000004-20021102}.CDF --------- 4958588 05.03.2010 14:27 C:\WINXP\0.log --------- 0 05.03.2010 14:27 C:\WINXP\WindowsUpdate.log --------- 1472291 05.03.2010 14:26 C:\WINXP\bootstat.dat --------- 2048 04.03.2010 19:30 C:\WINXP\SchedLgU.Txt --------- 32578 21.02.2010 16:49 C:\WINXP\system.ini --------- 227 21.02.2010 16:49 C:\WINXP\win.ini --------- 507 19.02.2010 12:13 C:\WINXP\setupapi.log --------- 289165 18.02.2010 17:45 C:\WINXP\MixBUda.INI --------- 44 14.02.2010 13:44 C:\WINXP\NeroDigital.ini --------- 116 28.12.2009 04:00 C:\WINXP\DirectX.log --------- 503584 03.09.2009 10:23 C:\WINXP\setupact.log --------- 216131 29.05.2009 14:01 C:\WINXP\spupdsvc.log --------- 15464 29.05.2009 01:03 C:\WINXP\wiaservc.log --------- 50 29.05.2009 01:03 C:\WINXP\wiadebug.log --------- 506 28.05.2009 23:27 C:\WINXP\wpd99.drv --------- 59 28.05.2009 23:23 C:\WINXP\KB954550-v5.log --------- 47164 28.05.2009 23:23 C:\WINXP\updspapi.log --------- 20611 28.05.2009 23:15 C:\WINXP\pdf995.ini --------- 28 19.05.2009 21:17 C:\WINXP\iis6.log --------- 234115 19.05.2009 21:17 C:\WINXP\ocmsn.log --------- 9452 19.05.2009 21:17 C:\WINXP\netfxocm.log --------- 28203 19.05.2009 21:17 C:\WINXP\tsoc.log --------- 80032 19.05.2009 21:17 C:\WINXP\tabletoc.log --------- 8094 19.05.2009 21:17 C:\WINXP\ntdtcsetup.log --------- 38053 19.05.2009 21:17 C:\WINXP\ocgen.log --------- 109334 19.05.2009 21:17 C:\WINXP\MedCtrOC.log --------- 11913 19.05.2009 21:17 C:\WINXP\imsins.log --------- 1917 19.05.2009 21:17 C:\WINXP\comsetup.log --------- 63236 19.05.2009 21:17 C:\WINXP\msgsocm.log --------- 8358 19.05.2009 21:17 C:\WINXP\FaxSetup.log --------- 152947 19.05.2009 21:16 C:\WINXP\msmqinst.log --------- 60204 13.04.2009 05:01 C:\WINXP\wmsetup.log --------- 4235 24.02.2009 14:04 C:\WINXP\{00000001-00000000-00000008-00001102-00000004-20021102}.BAK --------- 4958588 14.02.2009 17:12 C:\WINXP\DXError.log --------- 2088 12.11.2008 19:58 C:\WINXP\setupapi.log.0.old --------- 1114229 03.11.2008 19:01 C:\WINXP\Ô --------- 98 03.11.2008 19:00 C:\WINXP\setup.log --------- 90 03.11.2008 18:49 C:\WINXP\SBWIN.INI --------- 75 28.10.2008 20:09 C:\WINXP\WgaNotify.log --------- 5738 28.10.2008 19:54 C:\WINXP\DPINST.LOG --------- 15422 25.10.2008 15:38 C:\WINXP\WININIT.INI --------- 10 24.10.2008 14:10 C:\WINXP\imsins.BAK --------- 1393 24.10.2008 14:10 C:\WINXP\KB958644.log --------- 7393 21.10.2008 13:35 C:\WINXP\CoolPlay.ini --------- 152 21.10.2008 10:10 C:\WINXP\DIFx.log --------- 1559 17.10.2008 19:22 C:\WINXP\KB929399.log --------- 5439 17.10.2008 19:04 C:\WINXP\ntbtlog.txt --------- 127460 17.10.2008 18:49 C:\WINXP\nsreg.dat --------- 0 17.10.2008 18:43 C:\WINXP\KB956390-IE7.log --------- 30751 17.10.2008 18:43 C:\WINXP\KB957095.log --------- 12137 17.10.2008 18:43 C:\WINXP\KB956841.log --------- 13229 17.10.2008 18:43 C:\WINXP\KB956803.log --------- 12775 17.10.2008 18:42 C:\WINXP\KB956391.log --------- 12181 17.10.2008 18:42 C:\WINXP\KB954211.log --------- 12516 17.10.2008 18:42 C:\WINXP\KB954154.log --------- 8944 17.10.2008 18:42 C:\WINXP\KB938464.log --------- 8807 17.10.2008 18:42 C:\WINXP\KB952287.log --------- 11079 17.10.2008 18:41 C:\WINXP\KB951072-v2.log --------- 28935 17.10.2008 18:41 C:\WINXP\KB950974.log --------- 15968 17.10.2008 18:41 C:\WINXP\KB952954.log --------- 15163 17.10.2008 18:41 C:\WINXP\KB946648.log --------- 11094 17.10.2008 18:41 C:\WINXP\KB951066.log --------- 10851 17.10.2008 18:41 C:\WINXP\KB938127-v2-IE7.log --------- 11063 17.10.2008 18:41 C:\WINXP\KB951748.log --------- 15822 17.10.2008 18:41 C:\WINXP\KB951978.log --------- 13041 17.10.2008 18:41 C:\WINXP\KB951376-v2.log --------- 7392 17.10.2008 18:30 C:\WINXP\ativpsrm.bin --------- 0 17.10.2008 18:27 C:\WINXP\Sti_Trace.log --------- 0 17.10.2008 18:05 C:\WINXP\regopt.log --------- 1340 17.10.2008 18:02 C:\WINXP\OEWABLog.txt --------- 829 17.10.2008 18:01 C:\WINXP\setuplog.txt --------- 910937 17.10.2008 17:58 C:\WINXP\REGLOCS.OLD --------- 8192 17.10.2008 17:57 C:\WINXP\setuperr.log --------- 17479 17.10.2008 17:55 C:\WINXP\KB898461.log --------- 8853 17.10.2008 17:55 C:\WINXP\KB942763.log --------- 16683 17.10.2008 17:54 C:\WINXP\KB950759-IE7.log --------- 17324 17.10.2008 17:54 C:\WINXP\KB950760.log --------- 6798 17.10.2008 17:54 C:\WINXP\KB950762.log --------- 7140 17.10.2008 17:54 C:\WINXP\KB951376.log --------- 7443 17.10.2008 17:54 C:\WINXP\KB951698.log --------- 7243 17.10.2008 17:54 C:\WINXP\KB941569.log --------- 7447 17.10.2008 17:54 C:\WINXP\control.ini --------- 0 17.10.2008 17:54 C:\WINXP\WMSysPr9.prx --------- 316640 17.10.2008 17:53 C:\WINXP\ODBCINST.INI --------- 4073 17.10.2008 17:53 C:\WINXP\WindowsShell.Manifest --------- 749 17.10.2008 17:51 C:\WINXP\sessmgr.setup.log --------- 1023 17.10.2008 17:50 C:\WINXP\vb.ini --------- 36 17.10.2008 17:50 C:\WINXP\vbaddin.ini --------- 37 17.10.2008 17:50 C:\WINXP\DtcInstall.log --------- 130 17.10.2008 17:46 C:\WINXP\cmsetacl.log --------- 200 08.05.2008 22:25 C:\WINXP\SET2C.tmp --------- 12431 07.05.2008 07:02 C:\WINXP\SET2A.tmp --------- 12431 24.04.2008 09:11 C:\WINXP\SET2D.tmp --------- 10439 23.04.2008 10:59 C:\WINXP\SET2E.tmp --------- 32215 14.04.2008 17:54 C:\WINXP\SET2B.tmp --------- 12431 14.04.2008 13:00 C:\WINXP\SET3.tmp --------- 1246537 14.04.2008 13:00 C:\WINXP\_default.pif --------- 707 14.04.2008 13:00 C:\WINXP\SET4.tmp --------- 1088840 14.04.2008 13:00 C:\WINXP\desktop.ini --------- 2 14.04.2008 13:00 C:\WINXP\wmprfDEU.prx --------- 34818 14.04.2008 13:00 C:\WINXP\winnt256.bmp --------- 48680 14.04.2008 13:00 C:\WINXP\twain.dll --------- 94800 14.04.2008 13:00 C:\WINXP\twain_32.dll --------- 50688 14.04.2008 13:00 C:\WINXP\twunk_16.exe --------- 49680 14.04.2008 13:00 C:\WINXP\twunk_32.exe --------- 25600 14.04.2008 13:00 C:\WINXP\winnt.bmp --------- 48680 14.04.2008 13:00 C:\WINXP\SET8.tmp --------- 16825 14.04.2008 13:00 C:\WINXP\winhlp32.exe --------- 288768 14.04.2008 13:00 C:\WINXP\hh.exe --------- 10752 14.04.2008 13:00 C:\WINXP\msdfmap.ini --------- 1405 14.04.2008 13:00 C:\WINXP\vmmreg32.dll --------- 18944 14.04.2008 13:00 C:\WINXP\explorer.scf --------- 80 14.04.2008 13:00 C:\WINXP\regedit.exe --------- 153600 14.04.2008 13:00 C:\WINXP\explorer.exe --------- 1036800 14.04.2008 13:00 C:\WINXP\clock.avi --------- 82944 14.04.2008 13:00 C:\WINXP\winhelp.exe --------- 257568 28.03.2008 15:20 C:\WINXP\SET2F.tmp --------- 12431 11.03.2008 09:37 C:\WINXP\atiogl.xml --------- 12610 02.11.2007 11:20 C:\WINXP\SET29.tmp --------- 12123 21.06.2005 12:01 C:\WINXP\CTDCRGER.DLL --------- 11264 17.05.2005 20:16 C:\WINXP\SET30.tmp --------- 9735 03.01.2005 12:18 C:\WINXP\CTDVAUDY.CDF --------- 4958588 30.07.2004 14:46 C:\WINXP\INRESGER.DLL --------- 20480 15.11.2001 15:25 C:\WINXP\CTDV10K2.CDF --------- 3735544 11.05.2000 01:00 C:\WINXP\Updreg.EXE --------- 90112 11.10.1999 02:00 C:\WINXP\Ctregrun.exe --------- 41984 23.03.1999 09:12 C:\WINXP\unin0407.exe --------- 304128 14.01.1999 07:04 C:\WINXP\AC3API.INI --------- 231 23.01.1998 12:22 C:\WINXP\IsUninst.exe --------- 304128 23.05.1996 03:24 C:\WINXP\CTRES.DLL --------- 24976 05.12.1994 04:11 C:\WINXP\CTCCW.DLL --------- 53552 ---------------------------------------- C:\WINXP\System 14.04.2008 13:00 C:\WINXP\System\setup.inf --------- 59167 14.04.2008 13:00 C:\WINXP\System\stdole.tlb --------- 5532 07.06.2005 20:58 C:\WINXP\System\CRLDS3D.DLL --------- 765952 ---------------------------------------- C:\WINXP\System32 05.03.2010 14:27 C:\WINXP\system32\CatRoot2 --------- 0 04.03.2010 19:30 C:\WINXP\system32\DVCState-{00000001-00000000-00000008-00001102-00000004-20021102}.rfx --------- 11564 04.03.2010 19:30 C:\WINXP\system32\BMXCtrlState-{00000001-00000000-00000008-00001102-00000004-20021102}.rfx --------- 32088 04.03.2010 19:30 C:\WINXP\system32\BMXStateBkp-{00000001-00000000-00000008-00001102-00000004-20021102}.rfx --------- 32592 04.03.2010 19:30 C:\WINXP\system32\BMXBkpCtrlState-{00000001-00000000-00000008-00001102-00000004-20021102}.rfx --------- 32088 04.03.2010 19:30 C:\WINXP\system32\BMXState-{00000001-00000000-00000008-00001102-00000004-20021102}.rfx --------- 32592 04.03.2010 18:54 C:\WINXP\system32\wpa.dbl --------- 2206 27.02.2010 12:24 C:\WINXP\system32\GroupPolicy --------- 0 29.01.2010 00:09 C:\WINXP\system32\DirectX --------- 0 13.01.2010 00:23 C:\WINXP\system32\drivers --------- 0 14.11.2009 01:49 C:\WINXP\system32\pxafs.dll --------- 129784 14.11.2009 01:49 C:\WINXP\system32\pxcpya64.exe --------- 66296 14.11.2009 01:49 C:\WINXP\system32\pxcpyi64.exe --------- 120056 14.11.2009 01:49 C:\WINXP\system32\pxdrv.dll --------- 518904 14.11.2009 01:49 C:\WINXP\system32\pxhpinst.exe --------- 72440 14.11.2009 01:49 C:\WINXP\system32\pxinsa64.exe --------- 64760 14.11.2009 01:49 C:\WINXP\system32\pxwave.dll --------- 379640 14.11.2009 01:49 C:\WINXP\system32\pxinsi64.exe --------- 118520 14.11.2009 01:49 C:\WINXP\system32\pxmas.dll --------- 187128 14.11.2009 01:49 C:\WINXP\system32\pxsfs.dll --------- 1628920 14.11.2009 01:49 C:\WINXP\system32\px.dll --------- 551672 14.11.2009 01:49 C:\WINXP\system32\vxblock.dll --------- 88824 14.11.2009 01:47 C:\WINXP\system32\dpl100.dll --------- 90112 14.11.2009 01:47 C:\WINXP\system32\divx_xx0c.dll --------- 856064 14.11.2009 01:47 C:\WINXP\system32\divx_xx11.dll --------- 839680 14.11.2009 01:47 C:\WINXP\system32\divx_xx0a.dll --------- 847872 14.11.2009 01:47 C:\WINXP\system32\divx_xx07.dll --------- 856064 14.11.2009 01:47 C:\WINXP\system32\divx_xx16.dll --------- 843776 14.11.2009 01:47 C:\WINXP\system32\DivX.dll --------- 696320 25.10.2009 10:20 C:\WINXP\system32\perfc009.dat --------- 66376 25.10.2009 10:20 C:\WINXP\system32\perfh009.dat --------- 427592 25.10.2009 10:20 C:\WINXP\system32\perfh007.dat --------- 442770 25.10.2009 10:20 C:\WINXP\system32\perfc007.dat --------- 78360 25.10.2009 10:20 C:\WINXP\system32\PerfStringBackup.INI --------- 1028992 01.10.2009 00:23 C:\WINXP\system32\DRVSTORE --------- 0 04.09.2009 17:44 C:\WINXP\system32\XAPOFX1_3.dll --------- 69464 04.09.2009 17:44 C:\WINXP\system32\XAudio2_5.dll --------- 515416 04.09.2009 17:44 C:\WINXP\system32\xactengine3_5.dll --------- 238936 04.09.2009 17:29 C:\WINXP\system32\d3dx10_42.dll --------- 453456 04.09.2009 17:29 C:\WINXP\system32\d3dx11_42.dll --------- 235344 04.09.2009 17:29 C:\WINXP\system32\D3DCompiler_42.dll --------- 1974616 04.09.2009 17:29 C:\WINXP\system32\d3dcsx_42.dll --------- 5501792 04.09.2009 17:29 C:\WINXP\system32\D3DX9_42.dll --------- 1892184 31.08.2009 21:10 C:\WINXP\system32\PnkBstrB.exe --------- 189640 31.08.2009 21:10 C:\WINXP\system32\PnkBstrB.xtr --------- 189640 09.08.2009 14:11 C:\WINXP\system32\config --------- 0 09.08.2009 13:03 C:\WINXP\system32\PnkBstrA.exe --------- 75064 09.08.2009 13:03 C:\WINXP\system32\pbsvc.exe --------- 794408 23.06.2009 17:09 C:\WINXP\system32\CmdLineExt.dll --------- 98304 29.05.2009 14:00 C:\WINXP\system32\dllcache --------- 0 28.05.2009 23:26 C:\WINXP\system32\pdfmona.dll --------- 249856 28.05.2009 23:26 C:\WINXP\system32\pdf995mon.dll --------- 51716 28.05.2009 23:23 C:\WINXP\system32\CatRoot --------- 0 28.04.2009 14:14 C:\WINXP\system32\FNTCACHE.DAT --------- 122136 16.03.2009 14:18 C:\WINXP\system32\X3DAudio1_6.dll --------- 22360 16.03.2009 14:18 C:\WINXP\system32\xactengine3_4.dll --------- 235352 16.03.2009 14:18 C:\WINXP\system32\XAudio2_4.dll --------- 517448 09.03.2009 15:27 C:\WINXP\system32\d3dx10_41.dll --------- 453456 09.03.2009 15:27 C:\WINXP\system32\D3DCompiler_41.dll --------- 1846632 09.03.2009 15:27 C:\WINXP\system32\D3DX9_41.dll --------- 4178264 09.02.2009 19:56 C:\WINXP\system32\ff_vfw.dll --------- 67584 13.12.2008 20:01 C:\WINXP\system32\xvid.ax --------- 77824 13.12.2008 05:06 C:\WINXP\system32\Autoexec.nt --------- 145 13.12.2008 05:06 C:\WINXP\system32\Config.nt --------- 63 04.12.2008 21:46 C:\WINXP\system32\xvidvfw.dll --------- 180224 04.12.2008 21:42 C:\WINXP\system32\xvidcore.dll --------- 815104 17.11.2008 01:03 C:\WINXP\system32\settings.sfm --------- 1068 17.11.2008 01:03 C:\WINXP\system32\settingsbkup.sfm --------- 1068 12.11.2008 20:00 C:\WINXP\system32\XPSViewer --------- 0 12.11.2008 20:00 C:\WINXP\system32\en-us --------- 0 12.11.2008 19:59 C:\WINXP\system32\spool --------- 0 12.11.2008 19:58 C:\WINXP\system32\xlive --------- 0 04.11.2008 22:44 C:\WINXP\system32\appmgmt --------- 0 03.11.2008 19:38 C:\WINXP\system32\Defaults --------- 0 03.11.2008 19:37 C:\WINXP\system32\ReinstallBackups --------- 0 03.11.2008 19:37 C:\WINXP\system32\wrap_oal.dll --------- 444952 03.11.2008 19:37 C:\WINXP\system32\OpenAL32.dll --------- 109080 03.11.2008 19:37 C:\WINXP\system32\Data --------- 0 03.11.2008 18:50 C:\WINXP\system32\Win9X --------- 0 03.11.2008 18:26 C:\WINXP\system32\d3d9caps.dat --------- 664 27.10.2008 10:04 C:\WINXP\system32\XAudio2_3.dll --------- 514384 27.10.2008 10:04 C:\WINXP\system32\X3DAudio1_5.dll --------- 23376 27.10.2008 10:04 C:\WINXP\system32\xactengine3_3.dll --------- 235856 27.10.2008 10:04 C:\WINXP\system32\XAPOFX1_2.dll --------- 70992 26.10.2008 19:26 C:\WINXP\system32\mui --------- 0 25.10.2008 13:06 C:\WINXP\system32\CCCInstall_200810251406371406.log --------- 16513 21.10.2008 10:10 C:\WINXP\system32\AGEIA --------- 0 19.10.2008 19:37 C:\WINXP\system32\Futuremark --------- 0 17.10.2008 21:54 C:\WINXP\system32\LogFiles --------- 0 17.10.2008 19:03 C:\WINXP\system32\Setup --------- 0 17.10.2008 19:02 C:\WINXP\system32\npp --------- 0 17.10.2008 19:02 C:\WINXP\system32\1031 --------- 0 17.10.2008 18:59 C:\WINXP\system32\ras --------- 0 17.10.2008 18:59 C:\WINXP\system32\icsxml --------- 0 17.10.2008 18:59 C:\WINXP\system32\1033 --------- 0 17.10.2008 18:58 C:\WINXP\system32\3com_dmi --------- 0 17.10.2008 18:58 C:\WINXP\system32\1025 --------- 0 17.10.2008 18:58 C:\WINXP\system32\3076 --------- 0 17.10.2008 18:58 C:\WINXP\system32\1028 --------- 0 17.10.2008 18:58 C:\WINXP\system32\export --------- 0 ---------------------------------------- C:\WINXP\Prefetch 05.03.2010 16:10 C:\WINXP\Prefetch\CMD.EXE-2AAB9DAB.pf --------- 12074 05.03.2010 16:09 C:\WINXP\Prefetch\WMIPRVSE.EXE-2F9046ED.pf --------- 51266 05.03.2010 16:09 C:\WINXP\Prefetch\RSIT.EXE-2FF707E3.pf --------- 34358 05.03.2010 16:09 C:\WINXP\Prefetch\STARE.EXE-342A2833.pf --------- 29968 05.03.2010 16:09 C:\WINXP\Prefetch\WINRAR.EXE-3588DFE8.pf --------- 69858 05.03.2010 16:09 C:\WINXP\Prefetch\VERCLSID.EXE-1C385444.pf --------- 17412 05.03.2010 16:08 C:\WINXP\Prefetch\NOTEPAD.EXE-0815DEA3.pf --------- 19122 05.03.2010 16:00 C:\WINXP\Prefetch\AVWSC.EXE-24612965.pf --------- 33700 05.03.2010 15:38 C:\WINXP\Prefetch\RUNDLL32.EXE-3FAF52DE.pf --------- 12344 05.03.2010 15:36 C:\WINXP\Prefetch\HIJACKTHIS.EXE-39024128.pf --------- 21284 05.03.2010 15:36 C:\WINXP\Prefetch\HJTINSTALL202.EXE-23DD89DD.pf --------- 16814 05.03.2010 15:33 C:\WINXP\Prefetch\IMAPI.EXE-20F8CDD2.pf --------- 44280 05.03.2010 15:33 C:\WINXP\Prefetch\EXPLORER.EXE-0D300D8F.pf --------- 92160 05.03.2010 15:32 C:\WINXP\Prefetch\FINDSTR.EXE-2ED30901.pf --------- 12806 05.03.2010 15:32 C:\WINXP\Prefetch\ATTRIB.EXE-2B6B468D.pf --------- 11318 05.03.2010 15:32 C:\WINXP\Prefetch\FIND.EXE-306D7099.pf --------- 12908 05.03.2010 15:32 C:\WINXP\Prefetch\REGEDIT.EXE-3B104B33.pf --------- 14146 05.03.2010 15:32 C:\WINXP\Prefetch\NIRCMD.EXE-3414C7ED.pf --------- 13942 05.03.2010 15:32 C:\WINXP\Prefetch\PV.EXE-0D8EA334.pf --------- 17072 05.03.2010 15:32 C:\WINXP\Prefetch\CSCRIPT.EXE-312B239A.pf --------- 25644 05.03.2010 15:32 C:\WINXP\Prefetch\NET.EXE-0A19288A.pf --------- 12188 05.03.2010 15:32 C:\WINXP\Prefetch\NET1.EXE-109A9FE8.pf --------- 13648 05.03.2010 15:32 C:\WINXP\Prefetch\FLASH_DISINFECTOR.EXE-0AA15D83.pf --------- 26708 05.03.2010 15:27 C:\WINXP\Prefetch\FIREFOX.EXE-1D57670A.pf --------- 87226 05.03.2010 14:53 C:\WINXP\Prefetch\DFRGNTFS.EXE-2C06A9EE.pf --------- 46312 05.03.2010 14:53 C:\WINXP\Prefetch\DEFRAG.EXE-18BF5EA9.pf --------- 16190 05.03.2010 14:53 C:\WINXP\Prefetch\Layout.ini --------- 463280 05.03.2010 14:31 C:\WINXP\Prefetch\RUNDLL32.EXE-332CDCFD.pf --------- 47930 05.03.2010 14:31 C:\WINXP\Prefetch\WINAMP.EXE-08C38ED9.pf --------- 121862 05.03.2010 14:30 C:\WINXP\Prefetch\TRILLIAN.EXE-302642F0.pf --------- 35634 05.03.2010 14:30 C:\WINXP\Prefetch\CTSYSVOL.EXE-07D0CB59.pf --------- 27306 05.03.2010 14:30 C:\WINXP\Prefetch\CTFMON.EXE-00681DDA.pf --------- 14740 05.03.2010 14:30 C:\WINXP\Prefetch\USERINIT.EXE-3621F122.pf --------- 77942 05.03.2010 14:30 C:\WINXP\Prefetch\AVGNT.EXE-39CD89BF.pf --------- 62714 05.03.2010 14:30 C:\WINXP\Prefetch\SBDRVDET.EXE-22DBA9CA.pf --------- 19002 05.03.2010 14:30 C:\WINXP\Prefetch\ADOBE GAMMA LOADER.EXE-1FD09C3A.pf --------- 10892 05.03.2010 14:29 C:\WINXP\Prefetch\NTOSBOOT-B00DFAAD.pf --------- 1052462 04.03.2010 18:56 C:\WINXP\Prefetch\AVNOTIFY.EXE-31D7686A.pf --------- 49404 04.03.2010 18:56 C:\WINXP\Prefetch\UPDATE.EXE-3398FCD6.pf --------- 46108 04.03.2010 18:55 C:\WINXP\Prefetch\WUAUCLT.EXE-13B6AD34.pf --------- 56068 04.03.2010 18:55 C:\WINXP\Prefetch\ALG.EXE-069F9A25.pf --------- 69462 01.03.2010 01:26 C:\WINXP\Prefetch\GUARDGUI.EXE-147E0160.pf --------- 17920 01.03.2010 01:24 C:\WINXP\Prefetch\AD-AWARE.EXE-2B8B58D1.pf --------- 52820 01.03.2010 01:24 C:\WINXP\Prefetch\AAWSERVICE.EXE-1E1DE6D1.pf --------- 17182 01.03.2010 01:24 C:\WINXP\Prefetch\AD-AWARECOMMAND.EXE-17654BB9.pf --------- 15614 01.03.2010 01:24 C:\WINXP\Prefetch\AD-AWAREADMIN.EXE-1618EEEB.pf --------- 64390 01.03.2010 01:23 C:\WINXP\Prefetch\TASKMGR.EXE-2D2BCF51.pf --------- 19790 28.02.2010 13:49 C:\WINXP\Prefetch\HELPSVC.EXE-09BE1947.pf --------- 83362 27.02.2010 12:24 C:\WINXP\Prefetch\MMC.EXE-38561D94.pf --------- 43138 27.02.2010 12:24 C:\WINXP\Prefetch\RUNDLL32.EXE-24C3CAF1.pf --------- 32944 27.02.2010 12:24 C:\WINXP\Prefetch\RUNDLL32.EXE-35809E3E.pf --------- 12344 27.02.2010 12:23 C:\WINXP\Prefetch\NMINDEXSTORESVR.EXE-1DBCF9FD.pf --------- 31560 27.02.2010 12:23 C:\WINXP\Prefetch\NMBGMONITOR.EXE-0BC10095.pf --------- 12758 27.02.2010 12:16 C:\WINXP\Prefetch\HELPCTR.EXE-31ACF0A2.pf --------- 79122 27.02.2010 12:12 C:\WINXP\Prefetch\AVCENTER.EXE-1D2DB8A2.pf --------- 54698 27.02.2010 03:48 C:\WINXP\Prefetch\NPSWF32_FLASHUTIL.EXE-0271BB04.pf --------- 26186 27.02.2010 03:48 C:\WINXP\Prefetch\FLASHPLAYERUPDATE.EXE-3419294E.pf --------- 29320 27.02.2010 03:48 C:\WINXP\Prefetch\AU_.EXE-1D29548B.pf --------- 21138 27.02.2010 03:48 C:\WINXP\Prefetch\UNINSTALL_PLUGIN.EXE-2223F7D3.pf --------- 13218 26.02.2010 12:23 C:\WINXP\Prefetch\SURMIXER.EXE-20127AF0.pf --------- 46998 26.02.2010 12:21 C:\WINXP\Prefetch\AVSCAN.EXE-25724B6E.pf --------- 46876 21.02.2010 16:46 C:\WINXP\Prefetch\MSCONFIG.EXE-39BC506D.pf --------- 32226 21.02.2010 16:09 C:\WINXP\Prefetch\GAMEOVERLAYUI.EXE-123F7499.pf --------- 38214 21.02.2010 16:09 C:\WINXP\Prefetch\HL2.EXE-1BD76BC2.pf --------- 30304 21.02.2010 16:08 C:\WINXP\Prefetch\STEAM.EXE-396C8651.pf --------- 54076 21.02.2010 15:56 C:\WINXP\Prefetch\STEAMTMP.EXE-10A01D39.pf --------- 20738 20.02.2010 17:59 C:\WINXP\Prefetch\TINTSETP.EXE-303140CA.pf --------- 6234 20.02.2010 17:59 C:\WINXP\Prefetch\IMSCINST.EXE-1F743B0D.pf --------- 6590 20.02.2010 14:26 C:\WINXP\Prefetch\HELPER.EXE-244ABC1F.pf --------- 27124 19.02.2010 14:06 C:\WINXP\Prefetch\LOGON.SCR-17D1138C.pf --------- 6536 19.02.2010 13:25 C:\WINXP\Prefetch\RUNDLL32.EXE-317A01D4.pf --------- 15666 18.02.2010 17:50 C:\WINXP\Prefetch\RUNDLL32.EXE-0C0F985D.pf --------- 21612 18.02.2010 17:45 C:\WINXP\Prefetch\SPKSET.EXE-0866CA31.pf --------- 47756 18.02.2010 17:44 C:\WINXP\Prefetch\DRWTSN32.EXE-30BBC28E.pf --------- 24942 18.02.2010 17:44 C:\WINXP\Prefetch\EAX.EXE-11F1E4A8.pf --------- 36640 18.02.2010 17:44 C:\WINXP\Prefetch\DWWIN.EXE-2B5302A0.pf --------- 77066 18.02.2010 17:44 C:\WINXP\Prefetch\SPKRCAL.EXE-1E928F0D.pf --------- 45358 16.02.2010 13:32 C:\WINXP\Prefetch\FOXITR~1.EXE-347CCC9B.pf --------- 51338 16.02.2010 13:13 C:\WINXP\Prefetch\REFORCE.EXE-07528640.pf --------- 13644 16.02.2010 13:09 C:\WINXP\Prefetch\REFRESHFIX.EXE-38A0AA3B.pf --------- 24954 16.02.2010 13:06 C:\WINXP\Prefetch\8-5_XP32_DD_63030.EXE-2CB55C35.pf --------- 52446 16.02.2010 13:05 C:\WINXP\Prefetch\PATCH103.EXE-18C756B0.pf --------- 13428 15.02.2010 17:54 C:\WINXP\Prefetch\FFMPEG.EXE-03BB1812.pf --------- 47396 15.02.2010 17:51 C:\WINXP\Prefetch\FREEYOUTUBETOMP3CONVERTER.EXE-362C0534.pf --------- 46492 14.02.2010 13:44 C:\WINXP\Prefetch\MPLAYERC.EXE-27FBB82C.pf --------- 120966 08.02.2010 18:57 C:\WINXP\Prefetch\RUNDLL32.EXE-3AE19F5E.pf --------- 16014 08.02.2010 18:57 C:\WINXP\Prefetch\RUNDLL32.EXE-18F31F44.pf --------- 15798 08.02.2010 17:26 C:\WINXP\Prefetch\IEXPLORE.EXE-2CA9778D.pf --------- 68756 08.02.2010 17:23 C:\WINXP\Prefetch\RUNDLL32.EXE-1153C675.pf --------- 17722 06.02.2010 14:57 C:\WINXP\Prefetch\RA3EP1.EXE-1DDE1C60.pf --------- 51716 06.02.2010 14:56 C:\WINXP\Prefetch\RA3EP1_1.0.GAME-126FFC4E.pf --------- 72492 06.02.2010 14:56 C:\WINXP\Prefetch\CACRA3.EXE-07D37A52.pf --------- 25074 03.02.2010 23:50 C:\WINXP\Prefetch\FLATOUT2.EXE-38F09D77.pf --------- 55526 03.02.2010 23:43 C:\WINXP\Prefetch\DUMPREP.EXE-320A42A5.pf --------- 81824 02.02.2010 19:44 C:\WINXP\Prefetch\RUNDLL32.EXE-11D41942.pf --------- 16014 02.02.2010 19:44 C:\WINXP\Prefetch\RUNDLL32.EXE-3BBBD0AC.pf --------- 16112 02.02.2010 19:44 C:\WINXP\Prefetch\RUNDLL32.EXE-0FB36004.pf --------- 16252 02.02.2010 19:43 C:\WINXP\Prefetch\DAMNNF~1.EXE-1DD13C30.pf --------- 19860 02.02.2010 19:40 C:\WINXP\Prefetch\RUNDLL32.EXE-42593455.pf --------- 17024 31.01.2010 15:25 C:\WINXP\Prefetch\CHKDSK.EXE-3B447A12.pf --------- 18262 31.01.2010 15:21 C:\WINXP\Prefetch\RUNDLL32.EXE-26E643F1.pf --------- 14650 29.01.2010 00:44 C:\WINXP\Prefetch\RA3.EXE-2D507BA9.pf --------- 37084 29.01.2010 00:44 C:\WINXP\Prefetch\REDALERT3TRAINER BY QUICKCHEA-3971B31B.pf --------- 78974 29.01.2010 00:44 C:\WINXP\Prefetch\RA3_1.0.GAME-3943713C.pf --------- 70054 29.01.2010 00:40 C:\WINXP\Prefetch\DISPLAY.DLL-094FF474.pf --------- 14718 29.01.2010 00:40 C:\WINXP\Prefetch\MBM5.EXE-0EF2705B.pf --------- 16042 29.01.2010 00:37 C:\WINXP\Prefetch\SETTINGS.DLL-0B34C131.pf --------- 18572 29.01.2010 00:09 C:\WINXP\Prefetch\DXDLLREG.EXE-34AE8E4D.pf --------- 6700 29.01.2010 00:09 C:\WINXP\Prefetch\DXSETUP.EXE-33401730.pf --------- 16824 29.01.2010 00:08 C:\WINXP\Prefetch\DIRECTX_AUG2009_REDIST.EXE-09C6164F.pf --------- 12884 29.01.2010 00:08 C:\WINXP\Prefetch\CACRA3.EXE-08A919B2.pf --------- 12332 28.01.2010 23:59 C:\WINXP\Prefetch\RZR-A4T4.EXE-02068E38.pf --------- 17368 28.01.2010 23:53 C:\WINXP\Prefetch\ATI2SGAG.EXE-32DD5947.pf --------- 16732 28.01.2010 23:50 C:\WINXP\Prefetch\RUNONCE.EXE-254D490F.pf --------- 10946 28.01.2010 23:50 C:\WINXP\Prefetch\SETUP.EXE-2F7EDB1F.pf --------- 23684 28.01.2010 23:50 C:\WINXP\Prefetch\IKERNEL.EXE-092EF074.pf --------- 50392 28.01.2010 23:50 C:\WINXP\Prefetch\716A_111.EXE-0053E9B4.pf --------- 16498 28.01.2010 23:50 C:\WINXP\Prefetch\PXFIRM3.EXE-26DF5CBB.pf --------- 14230 28.01.2010 23:33 C:\WINXP\Prefetch\UNINSTALL.EXE-0293C4BE.pf --------- 12846 28.01.2010 19:36 C:\WINXP\Prefetch\RUNDLL32.EXE-16E45DFE.pf --------- 15906 28.01.2010 19:36 C:\WINXP\Prefetch\RUNDLL32.EXE-103A6E16.pf --------- 17428 28.01.2010 18:22 C:\WINXP\Prefetch\RUNDLL32.EXE-179426A1.pf --------- 19726 27.01.2010 22:28 C:\WINXP\Prefetch\INSTALL_FLASH_PLAYER.EXE-34734FB6.pf --------- 25276 27.01.2010 22:26 C:\WINXP\Prefetch\DXDIAG.EXE-138E5E18.pf --------- 68308 27.01.2010 21:04 C:\WINXP\Prefetch\RUNDLL32.EXE-0DE90602.pf --------- 16658 22.01.2010 14:29 C:\WINXP\Prefetch\AUTORUN.EXE-055703AF.pf --------- 13002 22.01.2010 12:57 C:\WINXP\Prefetch\NERO.EXE-2031B565.pf --------- 58108 13.01.2010 00:21 C:\WINXP\Prefetch\DIVXSM.EXE-06EC95D0.pf --------- 29622 14.11.2009 16:48 C:\WINXP\Prefetch\AVWSC.EXE-3AC95876.pf --------- 30336 ---------------------------------------- C:\WINXP\Tasks 05.03.2010 14:26 C:\WINXP\Tasks\SA.DAT --------- 6 01.03.2010 01:23 C:\WINXP\Tasks\Ad-Aware Update (Weekly).job --------- 456 14.04.2008 13:00 C:\WINXP\Tasks\desktop.ini --------- 65 ---------------------------------------- C:\WINXP\Temp 28.01.2010 23:50 C:\WINXP\Temp\Perflib_Perfdata_c40.dat --------- 16384 14.11.2009 16:55 C:\WINXP\Temp\AVSETUP_4afed248 --------- 0 01.10.2009 00:34 C:\WINXP\Temp\_ISTMP0.DIR --------- 0 01.10.2009 00:34 C:\WINXP\Temp\CRF001 --------- 0 01.10.2009 00:34 C:\WINXP\Temp\CRF000 --------- 0 25.12.2008 13:39 C:\WINXP\Temp\_ISTMP1.DIR --------- 0 03.11.2008 19:01 C:\WINXP\Temp\{E2D27B84-6365-11D6-9BAF-0090271AF8A4} --------- 0 03.11.2008 19:00 C:\WINXP\Temp\{72A810B1-EE62-455A-A086-E1C9FEDE7F29} --------- 0 03.11.2008 19:00 C:\WINXP\Temp\{FB2292C6-1F0A-11D7-AB2D-0090271A23A2} --------- 0 03.11.2008 19:00 C:\WINXP\Temp\{B3549608-69D3-11D7-AB2D-0090271A23A2} --------- 0 03.11.2008 19:00 C:\WINXP\Temp\{FD851F7E-F887-405D-9E1C-488811113EF3} --------- 0 03.11.2008 18:59 C:\WINXP\Temp\{9A4D2983-4662-4387-BE3D-4CFC2FA9C100} --------- 0 03.11.2008 18:59 C:\WINXP\Temp\{5210ED6D-52A9-11D6-A285-00A0CC51B2FE} --------- 0 03.11.2008 18:59 C:\WINXP\Temp\{A1185190-514F-11D6-A285-00A0CC51B2FE} --------- 0 03.11.2008 18:59 C:\WINXP\Temp\{DEBD7BF3-5856-11D6-A285-00A0CC51B2FE} --------- 0 03.11.2008 18:59 C:\WINXP\Temp\{236FADD8-58FD-11D6-A285-00A0CC51B2FE} --------- 0 03.11.2008 18:58 C:\WINXP\Temp\{9154ED7C-926E-49CC-B677-0CF3C5267457} --------- 0 03.11.2008 18:43 C:\WINXP\Temp\{DABD554A-7DA6-4763-BF17-D3CAFB55E5A6} --------- 0 03.11.2008 18:40 C:\WINXP\Temp\{7201B853-5833-11D6-A285-00A0CC51B2FE} --------- 0 03.11.2008 18:40 C:\WINXP\Temp\{435E969D-867E-4364-8E74-3DC8A69C5BDB} --------- 0 03.11.2008 18:39 C:\WINXP\Temp\{9E2514D9-DC24-4634-B348-61F3EF0F1628} --------- 0 18.10.2008 14:38 C:\WINXP\Temp\{587BE58B-682F-4043-B197-2DF526196FEC} --------- 0 18.10.2008 14:11 C:\WINXP\Temp\{169F8893-C1C5-4847-972C-EA1E008112AC} --------- 0 ---------------------------------------- C:\DOKUME~1\stAre\LOKALE~1\Temp 05.03.2010 15:33 C:\DOKUME~1\stAre\LOKALE~1\Temp\WPDNSE --------- 0 05.03.2010 15:32 C:\DOKUME~1\stAre\LOKALE~1\Temp\null --------- 62 04.03.2010 19:12 C:\DOKUME~1\stAre\LOKALE~1\Temp\WHT9.tmp --------- 0 04.03.2010 19:12 C:\DOKUME~1\stAre\LOKALE~1\Temp\WHT9.tmp.html --------- 3011 27.02.2010 12:16 C:\DOKUME~1\stAre\LOKALE~1\Temp\IMT7.xml --------- 798234 27.02.2010 12:16 C:\DOKUME~1\stAre\LOKALE~1\Temp\IMT6.xml --------- 426 27.02.2010 12:16 C:\DOKUME~1\stAre\LOKALE~1\Temp\IMT5.xml --------- 2036 27.02.2010 11:54 C:\DOKUME~1\stAre\LOKALE~1\Temp\~nsu.tmp --------- 0 14.02.2010 14:32 C:\DOKUME~1\stAre\LOKALE~1\Temp\WHT31.tmp --------- 0 14.02.2010 14:32 C:\DOKUME~1\stAre\LOKALE~1\Temp\WHT31.tmp.html --------- 2333 05.02.2010 01:27 C:\DOKUME~1\stAre\LOKALE~1\Temp\plugtmp-6 --------- 0 27.01.2010 23:01 C:\DOKUME~1\stAre\LOKALE~1\Temp\77VrBXKE.mp3.part --------- 0 27.01.2010 23:00 C:\DOKUME~1\stAre\LOKALE~1\Temp\YS7qlGn1.mp3.part --------- 0 27.01.2010 22:27 C:\DOKUME~1\stAre\LOKALE~1\Temp\flourish.mid --------- 24253 23.01.2010 13:06 C:\DOKUME~1\stAre\LOKALE~1\Temp\plugtmp-5 --------- 0 21.01.2010 23:29 C:\DOKUME~1\stAre\LOKALE~1\Temp\~e5.0001 --------- 72192 17.01.2010 01:18 C:\DOKUME~1\stAre\LOKALE~1\Temp\fla2.tmp --------- 37157540 17.01.2010 01:18 C:\DOKUME~1\stAre\LOKALE~1\Temp\plugtmp-4 --------- 0 17.01.2010 01:17 C:\DOKUME~1\stAre\LOKALE~1\Temp\etilqs_Y9UsR3Kb5MN9lY0hJO6x --------- 0 17.01.2010 00:45 C:\DOKUME~1\stAre\LOKALE~1\Temp\plugtmp-3 --------- 0 17.01.2010 00:44 C:\DOKUME~1\stAre\LOKALE~1\Temp\fla1C.tmp --------- 57030411 17.01.2010 00:43 C:\DOKUME~1\stAre\LOKALE~1\Temp\fla1A.tmp --------- 57030411 17.01.2010 00:40 C:\DOKUME~1\stAre\LOKALE~1\Temp\etilqs_0d0ggLWzNqhVDWL19n1B --------- 0 13.01.2010 00:22 C:\DOKUME~1\stAre\LOKALE~1\Temp\Div2A.tmp --------- 0 11.01.2010 01:40 C:\DOKUME~1\stAre\LOKALE~1\Temp\fla9.tmp --------- 31982185 11.01.2010 01:39 C:\DOKUME~1\stAre\LOKALE~1\Temp\plugtmp-2 --------- 0 11.01.2010 01:29 C:\DOKUME~1\stAre\LOKALE~1\Temp\fla7.tmp --------- 41377754 11.01.2010 01:29 C:\DOKUME~1\stAre\LOKALE~1\Temp\plugtmp-1 --------- 0 11.01.2010 01:08 C:\DOKUME~1\stAre\LOKALE~1\Temp\etilqs_PA2QtI5sxErPfRSVUSOj --------- 0 11.01.2010 00:48 C:\DOKUME~1\stAre\LOKALE~1\Temp\plugtmp --------- 0 11.01.2010 00:47 C:\DOKUME~1\stAre\LOKALE~1\Temp\fla38.tmp --------- 85492302 18.09.2006 20:31 C:\DOKUME~1\stAre\LOKALE~1\Temp\Catalyst.bmp --------- 57656 ---------------------------------------- C:\Programme 05.03.2010 16:08 C:\Programme\Trillian --------- 0 05.03.2010 15:36 C:\Programme\Trend Micro --------- 0 05.03.2010 15:27 C:\Programme\Mozilla Firefox --------- 0 13.01.2010 00:23 C:\Programme\DivX --------- 0 13.01.2010 00:22 C:\Programme\Gemeinsame Dateien --------- 0 29.12.2009 16:09 C:\Programme\Spybot - Search & Destroy --------- 0 28.12.2009 02:06 C:\Programme\mIRC --------- 0 28.11.2009 20:03 C:\Programme\InstallShield Installation Information --------- 0 14.11.2009 16:53 C:\Programme\Avira --------- 0 19.10.2009 12:57 C:\Programme\YouTube to MP3 Converter --------- 0 19.10.2009 12:57 C:\Programme\DVDVideoSoft --------- 0 01.10.2009 00:22 C:\Programme\Lavasoft --------- 0 29.05.2009 00:12 C:\Programme\PDFCreator --------- 0 28.05.2009 23:27 C:\Programme\pdf995 --------- 0 19.05.2009 20:21 C:\Programme\Zero G Registry --------- 0 19.05.2009 20:21 C:\Programme\Siemens --------- 0 27.04.2009 21:53 C:\Programme\Adobe --------- 0 07.03.2009 18:36 C:\Programme\Xvid --------- 0 01.03.2009 23:51 C:\Programme\OpenOffice.org 3 --------- 0 26.02.2009 17:55 C:\Programme\OpenAL --------- 0 23.02.2009 17:57 C:\Programme\K-Lite Codec Pack --------- 0 15.01.2009 16:04 C:\Programme\AGEIA Technologies --------- 0 25.12.2008 13:39 C:\Programme\Borland --------- 0 25.12.2008 13:39 C:\Programme\GameStar --------- 0 18.12.2008 21:42 C:\Programme\MixMeister BPM Analyzer --------- 0 26.11.2008 18:22 C:\Programme\Foxit --------- 0 21.11.2008 20:24 C:\Programme\xp-Iso-Builder --------- 0 15.11.2008 00:56 C:\Programme\Hamachi --------- 0 12.11.2008 20:03 C:\Programme\MSBuild --------- 0 12.11.2008 19:59 C:\Programme\Reference Assemblies --------- 0 09.11.2008 14:43 C:\Programme\Nero --------- 0 03.11.2008 18:59 C:\Programme\Creative --------- 0 26.10.2008 19:26 C:\Programme\Internet Explorer --------- 0 25.10.2008 13:06 C:\Programme\ATI Technologies --------- 0 24.10.2008 17:15 C:\Programme\oZone3D --------- 0 24.10.2008 17:13 C:\Programme\RivaTuner v2.11 --------- 0 22.10.2008 15:26 C:\Programme\DAMN NFO Viewer --------- 0 21.10.2008 10:06 C:\Programme\DAEMON Tools Lite --------- 0 20.10.2008 21:43 C:\Programme\WinRAR --------- 0 20.10.2008 18:14 C:\Programme\Motherboard Monitor 5 --------- 0 20.10.2008 18:10 C:\Programme\ASUS --------- 0 20.10.2008 14:52 C:\Programme\DFX --------- 0 20.10.2008 14:52 C:\Programme\Winamp --------- 0 19.10.2008 19:37 C:\Programme\Futuremark --------- 0 17.10.2008 22:28 C:\Programme\MediaPlayerClassic --------- 0 17.10.2008 19:40 C:\Programme\Windows Media Player --------- 0 17.10.2008 19:37 C:\Programme\Windows NT --------- 0 17.10.2008 18:41 C:\Programme\Messenger --------- 0 17.10.2008 17:55 C:\Programme\xerox --------- 0 17.10.2008 17:55 C:\Programme\microsoft frontpage --------- 0 17.10.2008 17:52 C:\Programme\Online-Dienste --------- 0 17.10.2008 17:52 C:\Programme\NetMeeting --------- 0 17.10.2008 17:52 C:\Programme\Outlook Express --------- 0 17.10.2008 17:52 C:\Programme\Movie Maker --------- 0 17.10.2008 17:50 C:\Programme\Windows Media Connect 2 --------- 0 17.10.2008 17:50 C:\Programme\MSN Gaming Zone --------- 0 ---------------------------------------- C:\Dokumente und Einstellungen\All Users\.. stAre LocalService Default User Administrator NetworkService All Users ---------------------------------------- C:\WINXP\system32\drivers\etc\hosts 127.0.0.1 localhost 127.0.0.1 www.007guard.com 127.0.0.1 007guard.com 127.0.0.1 008i.com 127.0.0.1 www.008k.com 127.0.0.1 008k.com 127.0.0.1 www.00hq.com 127.0.0.1 00hq.com 127.0.0.1 010402.com 127.0.0.1 www.032439.com 127.0.0.1 032439.com 127.0.0.1 www.0scan.com 127.0.0.1 0scan.com 127.0.0.1 www.1000gratisproben.com 127.0.0.1 1000gratisproben.com 127.0.0.1 www.1001namen.com 127.0.0.1 1001namen.com 127.0.0.1 100888290cs.com 127.0.0.1 www.100888290cs.com 127.0.0.1 100sexlinks.com 127.0.0.1 www.100sexlinks.com 127.0.0.1 10sek.com 127.0.0.1 www.10sek.com 127.0.0.1 www.1-2005-search.com 127.0.0.1 1-2005-search.com 127.0.0.1 123haustiereundmehr.com 127.0.0.1 www.123haustiereundmehr.com 127.0.0.1 123moviedownload.com 127.0.0.1 www.123moviedownload.com 127.0.0.1 123simsen.com 127.0.0.1 www.123simsen.com 127.0.0.1 123topsearch.com 127.0.0.1 www.123topsearch.com 127.0.0.1 125sms.co.uk 127.0.0.1 www.125sms.co.uk 127.0.0.1 125sms.com 127.0.0.1 www.125sms.com 127.0.0.1 132.com 127.0.0.1 www.132.com 127.0.0.1 1337crew.info 127.0.0.1 www.1337crew.info 127.0.0.1 www.1337-crew.to 127.0.0.1 1337-crew.to 127.0.0.1 136136.net 127.0.0.1 www.136136.net 127.0.0.1 150freesms.de 127.0.0.1 www.150freesms.de 127.0.0.1 163ns.com 127.0.0.1 www.163ns.com 127.0.0.1 171203.com 127.0.0.1 www.17concepts.info 127.0.0.1 17concepts.info 127.0.0.1 17-plus.com 127.0.0.1 1800searchonline.com 127.0.0.1 www.1800searchonline.com 127.0.0.1 www.180searchassistant.com 127.0.0.1 180searchassistant.com 127.0.0.1 180solutions.com 127.0.0.1 www.180solutions.com 127.0.0.1 181.365soft.info 127.0.0.1 www.181.365soft.info 127.0.0.1 1987324.com 127.0.0.1 www.1987324.com 127.0.0.1 www.1-domains-registrations.com 127.0.0.1 1-domains-registrations.com 127.0.0.1 www.1sexparty.com 127.0.0.1 1sexparty.com 127.0.0.1 www.1sms.de 127.0.0.1 1sms.de 127.0.0.1 www.1spybot.com 127.0.0.1 1spybot.com 127.0.0.1 www.1stantivirus.com 127.0.0.1 1stantivirus.com 127.0.0.1 www.1stpagehere.com 127.0.0.1 1stpagehere.com 127.0.0.1 www.1stsearchportal.com 127.0.0.1 1stsearchportal.com 127.0.0.1 2.82211.net 127.0.0.1 2006ooo.com ---------------------------------------- Abbildname PID Sitzungsname Sitz.-Nr. Speichernutzung ========================= ===== ================ ========== =============== System Idle Process 0 Console 0 16 K System 4 Console 0 220 K smss.exe 704 Console 0 396 K csrss.exe 768 Console 0 5.164 K winlogon.exe 812 Console 0 3.636 K services.exe 856 Console 0 4.104 K lsass.exe 868 Console 0 1.660 K ati2evxx.exe 1040 Console 0 3.400 K svchost.exe 1060 Console 0 4.808 K svchost.exe 1132 Console 0 4.320 K svchost.exe 1384 Console 0 24.860 K ati2evxx.exe 1440 Console 0 3.892 K svchost.exe 1500 Console 0 6.044 K svchost.exe 1704 Console 0 4.264 K spoolsv.exe 1824 Console 0 4.912 K sched.exe 1868 Console 0 916 K avguard.exe 560 Console 0 14.864 K PnkBstrA.exe 640 Console 0 2.540 K alg.exe 1968 Console 0 3.588 K CTSysVol.exe 1356 Console 0 5.184 K avgnt.exe 1368 Console 0 1.556 K ctfmon.exe 1804 Console 0 3.820 K explorer.exe 4028 Console 0 36.488 K wmiprvse.exe 2436 Console 0 6.176 K cmd.exe 1420 Console 0 2.448 K tasklist.exe 3028 Console 0 4.288 K ***** Ende des Scans 05.03.2010 um 16:10:40,10 ***
