Go Back   Tech Support Forum > Security Center > Virus/Trojan/Spyware Help > Inactive Malware Help Topics

User Tag List

Firefox 3.0.4. keeps creating desktop shortcut / google search results open google.at

This is a discussion on Firefox 3.0.4. keeps creating desktop shortcut / google search results open google.at within the Inactive Malware Help Topics forums, part of the Tech Support Forum category. Hi, firefox 3.0.4 acts weird: 1) each time it is started a desktop shortcut for it gets created within a


 
 
Thread Tools Search this Thread
Old 11-23-2008, 02:36 AM   #1
Guest
 
Join Date: Nov 2008
Posts: 2
OS:



Hi,

firefox 3.0.4 acts weird:

1)
each time it is started a desktop shortcut for it gets created within a minute (the shortcut seems to be OK, it does link to firefox.exe at the correct place).

2)
sometimes (not always) clicking on a search result link on google leads to google.at instead of the result's URL.

3)
it shows some "dead" bookmarks which contain no URLS or any other information and cannot be deleted.

Removing/reinstalling firefox and deleting/creating a new firefox profile did not help.

Additional "solved" problem:

Additionally to the above problem I was not able to access my hard discs via "my computer" and got the error message "resycler/boot.com" is not a valid win32 operation".

Windows Search did not find those files/folders. "XP-Suche" (german search tool) did: Suspicious autorun.inf files and "resycler/boot.com" folders in the harddisks roots which I deleted and now the dics are accessible by "my computer" again.

This did not solve the firefox issue however.

Spybot / Ad-Aware / Avira did report until I removed those files and don't show anything now.

gmer+dds log files below.


Any help would be appreciated!

Cheers, Peter

PS: sorry for the english... I live in Austria and speak mostly german :)
kop11 is offline  
Sponsored Links
Advertisement
 
Old 11-23-2008, 02:40 AM   #2
Guest
 
Join Date: Nov 2008
Posts: 2
OS:



DDS (Version 1.0) - NTFSx86
Run by kop at 11:37:37,56 on 23.11.2008
Microsoft Windows XP Professional 5.1.2600.3.1252.49.1031.18.2036.1229 [GMT 1:00]

============== Running Processes ===============

D:\WINDOWS\system32\svchost -k DcomLaunch
svchost.exe
D:\WINDOWS\System32\svchost.exe -k netsvcs
F:\Programme\Intel\WiFi\bin\S24EvMon.exe
svchost.exe
svchost.exe
D:\WINDOWS\System32\WLTRYSVC.EXE
D:\WINDOWS\System32\bcmwltry.exe
F:\Programme\Lavasoft\Ad-Aware\aawservice.exe
D:\WINDOWS\system32\spoolsv.exe
f:\programme\idt\dellxpm09b_6017v022\wdm\stacsv.exe
F:\Programme\Broadcom Corporation\Broadcom USH Host Components\CV\bin\HostControlService.exe
F:\Programme\Broadcom Corporation\Broadcom USH Host Components\CV\bin\HostStorageService.exe
F:\Programme\Avira\AntiVir PersonalEdition Classic\sched.exe
F:\Programme\Dell\Dell ControlPoint\Connection Manager\SMManager.exe
F:\Programme\Avira\AntiVir PersonalEdition Classic\avguard.exe
F:\Programme\Intel\ASF Agent\ASFAgent.exe
F:\Programme\Bonjour\mDNSResponder.exe
F:\Programme\Dell\Dell ControlPoint\DCPButtonSvc.exe
F:\Programme\Dell\Dell ControlPoint\System Manager\DCPSysMgrSvc.exe
F:\Programme\Intel\WiFi\bin\EvtEng.exe
F:\Programme\Dell\OpenManage\Client\Iap.exe
F:\Programme\Java\jre6\bin\jqs.exe
D:\WINDOWS\system32\nvsvc32.exe
D:\WINDOWS\system32\hpzipm12.exe
D:\Programme\Gemeinsame Dateien\Intel\WirelessCommon\RegSrvc.exe
F:\Programme\Wave Systems Corp\Trusted Drive Manager\TdmService.exe
D:\WINDOWS\Explorer.EXE
D:\WINDOWS\system32\wbem\wmiapsrv.exe
D:\WINDOWS\system32\rundll32.exe
D:\WINDOWS\system32\RUNDLL32.EXE
D:\WINDOWS\system32\WLTRAY.exe
F:\Programme\DellTPad\Apoint.exe
F:\Programme\IDT\WDM\sttray.exe
D:\WINDOWS\system32\AESTFltr.exe
F:\Programme\Dell\Dell ControlPoint\Security Manager\BcmDeviceAndTaskStatusService.exe
F:\Programme\DellTPad\ApMsgFwd.exe
F:\Programme\Dell\Dell ControlPoint\Connection Manager\Dell.UCM.exe
F:\Programme\Avira\AntiVir PersonalEdition Classic\avgnt.exe
F:\Programme\DellTPad\Apntex.exe
F:\Programme\DellTPad\HidFind.exe
D:\WINDOWS\system32\ctfmon.exe
D:\Programme\Gemeinsame Dateien\Ahead\lib\NMBgMonitor.exe
F:\programme\TrueCrypt\TrueCrypt.exe
F:\programme\Stickies\stickies.exe
D:\WINDOWS\System32\svchost.exe -k HTTPFilter
D:\WINDOWS\system32\svchost.exe -k imgsvc
F:\programme\Mozilla Firefox\firefox.exe
F:\programme\FlashGet\flashget.exe
F:\programme\WinRAR\WinRAR.exe
D:\WINDOWS\system32\notepad.exe
F:\programme\Mozilla Thunderbird\thunderbird.exe
G:\downloads_flashget\dds.scr

============== Psuedo HJT Report ===============

uInternet Settings,ProxyOverride = *.local
BHO: {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - d:\programme\gemeinsame dateien\adobe\acrobat\activex\AcroIEHelper.dll
BHO: {074C1DC5-9320-4A9A-947D-C042949C6216} - f:\programme\adobe\/Adobe Contribute CS3/contributeieplugin.dll
BHO: {2F364306-AA45-47B5-9F9D-39A8B94E7EF7} - f:\programme\flashget\jccatch.dll
BHO: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - f:\programme\java\jre6\bin\ssv.dll
BHO: {AE7CD045-E861-484f-8273-0445EE161910} - f:\programme\adobe\acrobat 8.0\acrobat\AcroIEFavClient.dll
BHO: {DBC80044-A445-435b-BC74-9C25C1C588A9} - f:\programme\java\jre6\bin\jp2ssv.dll
BHO: {E5A1691B-D188-4419-AD02-90002030B8EE} - f:\programme\flashfxp\IEFlash.dll
BHO: {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - f:\programme\java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
BHO: {F156768E-81EF-470C-9057-481BA8380DBA} - f:\programme\flashget\getflash.dll
TB: {47833539-D0C5-4125-9FA8-0819E2EAAC93} - f:\programme\adobe\acrobat 8.0\acrobat\AcroIEFavClient.dll
TB: {517BDDE4-E3A7-4570-B21E-2B52B6139FC7} - f:\programme\adobe\/Adobe Contribute CS3/contributeieplugin.dll
TB: {47833539-D0C5-4125-9FA8-0819E2EAAC93} - f:\programme\adobe\acrobat 8.0\acrobat\AcroIEFavClient.dll
uRun: [CTFMON.EXE] d:\windows\system32\ctfmon.exe
uRun: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "d:\programme\gemeinsame dateien\ahead\lib\NMBgMonitor.exe"
uRun: [TrueCrypt] "f:\programme\truecrypt\TrueCrypt.exe" /q preferences /a favorites
uRun: [Skype] "f:\programme\skype\phone\Skype.exe" /nosplash /minimized
mRun: [NvCplDaemon] RUNDLL32.EXE d:\windows\system32\NvCpl.dll,NvStartup
mRun: [nwiz] nwiz.exe /installquiet
mRun: [NVHotkey] rundll32.exe nvHotkey.dll,Start
mRun: [NvMediaCenter] RUNDLL32.EXE d:\windows\system32\NvMcTray.dll,NvTaskbarInit
mRun: [Broadcom Wireless Manager UI] d:\windows\system32\WLTRAY.exe
mRun: [Apoint] f:\programme\delltpad\Apoint.exe
mRun: [SysTrayApp] %ProgramFiles%\IDT\WDM\sttray.exe
mRun: [AESTFltr] %SystemRoot%\system32\AESTFltr.exe /NoDlg
mRun: [Flashget] f:\programme\flashget\flashget.exe /min
mRun: [EmbassySecurityCheck] "f:\programme\wave systems corp\embassy security setup\EMBASSYSecurityCheck.exe"
mRun: [USCService] f:\programme\dell\dell controlpoint\security manager\BcmDeviceAndTaskStatusService.exe
mRun: [DellConnectionManager] "f:\programme\dell\dell controlpoint\connection manager\Dell.UCM.exe"
mRun: [<NO NAME>]
mRun: [avgnt] "f:\programme\avira\antivir personaledition classic\avgnt.exe" /min
dRun: [CTFMON.EXE] d:\windows\system32\CTFMON.EXE
StartupFolder: d:\dokume~1\kop\startm~1\progra~1\autost~1\stickies.lnk - f:\programme\stickies\stickies.exe
IE: &Alles mit FlashGet laden - f:\programme\flashget\jc_all.htm
IE: &Mit FlashGet laden - f:\programme\flashget\jc_link.htm
IE: Append to existing PDF - f:\programme\adobe\acrobat 8.0\acrobat\AcroIEFavClient.dll/AcroIEAppend.html
IE: Convert link target to Adobe PDF - f:\programme\adobe\acrobat 8.0\acrobat\AcroIEFavClient.dll/AcroIECapture.html
IE: Convert link target to existing PDF - f:\programme\adobe\acrobat 8.0\acrobat\AcroIEFavClient.dll/AcroIEAppend.html
IE: Convert selected links to Adobe PDF - f:\programme\adobe\acrobat 8.0\acrobat\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
IE: Convert selected links to existing PDF - f:\programme\adobe\acrobat 8.0\acrobat\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
IE: Convert selection to Adobe PDF - f:\programme\adobe\acrobat 8.0\acrobat\AcroIEFavClient.dll/AcroIECapture.html
IE: Convert selection to existing PDF - f:\programme\adobe\acrobat 8.0\acrobat\AcroIEFavClient.dll/AcroIEAppend.html
IE: Convert to Adobe PDF - f:\programme\adobe\acrobat 8.0\acrobat\AcroIEFavClient.dll/AcroIECapture.html
IE: Nach Microsoft E&xel exportieren - f:\progra~1\micros~2\office12\EXCEL.EXE/3000
IE: {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - f:\programme\flashget\FlashGet.exe
IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe
IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - f:\programme\messenger\msmsgs.exe
IE: {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - f:\programme\flashget\FlashGet.exe
IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe
IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - f:\programme\messenger\msmsgs.exe
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - d:\progra~1\gemein~1\skype\SKYPE4~1.DLL
LSA: Authentication Packages = msv1_0 wvauth

============= SERVICES / DRIVERS ===============

R0 PBADRV;PBADRV;d:\windows\system32\drivers\PBADRV.sys
R1 StarPortLite;StarPort Storage Controller (Lite);d:\windows\system32\drivers\StarPortLite.sys
R2 ASFAgent;ASF Agent;f:\programme\intel\asf agent\ASFAgent.exe
R2 buttonsvc32;Dell ControlPoint Button Service;"f:\programme\dell\dell controlpoint\DCPButtonSvc.exe"
R2 Credential Vault Host Control Service;Credential Vault Host Control Service;"f:\programme\broadcom corporation\broadcom ush host components\cv\bin\HostControlService.exe"
R2 Credential Vault Host Storage;Credential Vault Host Storage;"f:\programme\broadcom corporation\broadcom ush host components\cv\bin\HostStorageService.exe"
R2 dcpsysmgrsvc;Dell ControlPoint System Manager;"f:\programme\dell\dell controlpoint\system manager\DCPSysMgrSvc.exe"
R2 SMManager;Smith Micro Connection Manager Service;"f:\programme\dell\dell controlpoint\connection manager\SMManager.exe"
R2 TdmService;TdmService;"f:\programme\wave systems corp\trusted drive manager\TdmService.exe"
R2 WavxDMgr;WavxDMgr;d:\windows\system32\drivers\WavxDMgr.sys
R3 AESTAud;AE Audio Service;d:\windows\system32\drivers\AESTAud.sys
R3 BCMTPM;BCMTPM;d:\windows\system32\drivers\btpmw32.sys
R3 cvusbdrv;Broadcom USH CV;d:\windows\system32\drivers\cvusbdrv.sys
R3 e1yexpress;Intel(R) Gigabit Network Connections Driver;d:\windows\system32\drivers\e1y5132.sys
R3 OA001Afx;Provides a software interface to control audio effects of OA001 camera.;\??\d:\windows\system32\drivers\OA001Afx.sys
R3 OA001Ufd;Creative Camera OA001 Upper Filter Driver;d:\windows\system32\drivers\OA001Ufd.sys
R3 OA001Vid;Creative Camera OA001 Function Driver;d:\windows\system32\drivers\OA001Vid.sys
R3 PCASp50;PCASp50 NDIS Protocol Driver;d:\windows\system32\drivers\PCASp50.sys
S3 AsfAlrt;AsfAlrt Service;\??\d:\windows\system32\drivers\AsfAlrt.sys
S3 HPPLSBULK;HPPLSBULK;d:\windows\system32\drivers\hpplsbulk.sys
S3 SecureStorageService;SecureStorageService;"f:\programme\wave systems corp\secure storage manager\SecureStorageService.exe"

=============== Created Last 30 ================

2008-11-23 10:45 250 a------- d:\windows\gmer.ini
2008-11-22 17:10 <DIR> --d----- d:\dokume~1\kop\anwend~1\stickies
2008-11-22 17:10 <DIR> --d----- f:\programme\Stickies
2008-11-22 16:59 <DIR> --d----- f:\programme\Real Alternative
2008-11-22 15:05 <DIR> --d----- d:\dokume~1\alluse~1\anwend~1\R-Wipe&Clean
2008-11-22 14:03 36 a------- d:\windows\hdd.ini
2008-11-22 14:03 <DIR> --d----- f:\programme\R-Wipe&Clean
2008-11-22 14:03 <DIR> --d----- d:\dokume~1\kop\anwend~1\R-Wipe&Clean
2008-11-22 13:28 <DIR> --d----- f:\programme\Avira
2008-11-22 13:28 <DIR> --d----- d:\dokume~1\alluse~1\anwend~1\Avira
2008-11-22 01:10 <DIR> --d----- f:\programme\Trend Micro
2008-11-21 18:42 <DIR> --d----- d:\dokume~1\kop\anwend~1\trustport
2008-11-21 18:22 <DIR> --d----- f:\programme\TrustPort Antivirus
2008-11-21 18:22 <DIR> --d----- d:\programme\gemeinsame dateien\TrustPort
2008-11-21 16:35 27,672 a------- d:\windows\system32\wuapi.dll.mui
2008-11-21 15:47 <DIR> --d----- f:\programme\xp-suche
2008-11-21 14:37 <DIR> --d----- d:\windows\LastGood.Tmp
2008-11-21 14:37 <DIR> --d----- f:\programme\Panda Security
2008-11-21 10:20 <DIR> --d----- f:\programme\Lavasoft
2008-11-20 16:34 86 a------- d:\windows\wininit.ini
2008-11-20 12:54 <DIR> --d----- f:\programme\Telespree
2008-11-20 12:54 <DIR> --d----- d:\programme\gemeinsame dateien\Telespree
2008-11-20 12:54 <DIR> --d----- f:\programme\AT&T
2008-11-20 12:54 <DIR> --d----- d:\dokume~1\alluse~1\anwend~1\AT&T
2008-11-20 12:52 <DIR> --d----- d:\dokume~1\kop\anwend~1\Intel
2008-11-20 12:52 <DIR> --d----- d:\programme\gemeinsame dateien\Intel
2008-11-20 12:52 <DIR> --d----- d:\dokume~1\alluse~1\anwend~1\Intel
2008-11-20 12:51 0 a------- d:\windows\bcm9E.tmp
2008-11-20 12:40 <DIR> --d----- f:\programme\Microsoft ASP.NET
2008-11-20 12:40 <DIR> --d----- f:\programme\Altiris
2008-11-20 12:02 <DIR> --d----- d:\dokume~1\alluse~1\anwend~1\NTRU Cryptosystems
2008-11-20 11:17 <DIR> --d----- d:\dokume~1\kop\anwend~1\Broadcom
2008-11-20 11:03 <DIR> --d----- f:\programme\NTRU Cryptosystems
2008-11-20 11:02 <DIR> --d----- f:\programme\Dell Inc
2008-11-20 10:59 277,440 a------- d:\windows\system32\drivers\OA001Vid.sys
2008-11-20 10:59 148,056 a------- d:\windows\system32\drivers\OA001Afx.sys
2008-11-20 10:59 144,672 a------- d:\windows\system32\drivers\OA001Ufd.sys
2008-11-20 10:59 57,656 a------- d:\windows\system32\drivers\OA001PC.bmp
2008-11-20 10:59 53,248 a------- d:\windows\system32\OA001Pin.dll
2008-11-20 10:59 32,768 a------- d:\windows\OA001Cfg.exe
2008-11-20 10:59 31,256 a------- d:\windows\system32\OA001Pin.crl
2008-11-20 10:59 24,576 a------- d:\windows\system32\OA001Srv.exe
2008-11-20 10:59 22,951 a------- d:\windows\system32\drivers\OA001PC.jpg
2008-11-20 10:59 5,777 a------- d:\windows\OA001.uns
2008-11-19 09:51 <DIR> --d----- f:\programme\DjVuZone
2008-11-18 22:52 <DIR> --d----- f:\programme\HDCleaner
2008-11-18 19:19 46 a------- d:\windows\system32\DonationCoder_urlsnooper_InstallInfo.dat
2008-11-18 19:19 <DIR> --d----- d:\dokume~1\kop\anwend~1\DonationCoder
2008-11-18 19:18 <DIR> --d----- f:\programme\URLSnooper2
2008-11-18 09:36 <DIR> --d----- f:\programme\AlbumWrap Extractor v1.0
2008-11-17 14:47 69,632 a------- d:\windows\system32\realbap1.dll
2008-11-17 14:47 45,568 a------- d:\windows\system32\realbsf1.dll
2008-11-17 13:30 <DIR> --d----- d:\dokume~1\alluse~1\anwend~1\Vsk5
2008-11-17 13:05 <DIR> --d----- f:\programme\Vsk5
2008-11-12 12:02 455,296 -c------ d:\windows\system32\dllcache\mrxsmb.sys
2008-11-12 12:02 1,106,944 -c------ d:\windows\system32\dllcache\msxml3.dll
2008-11-10 10:00 208,824 a------- d:\windows\system32\drivers\WavxDMgr.sys
2008-11-09 18:09 724,992 a------- d:\windows\system32\TdmNetworkProvider.dll
2008-11-08 11:51 221,184 a------- d:\windows\system32\OEM_Resources.dll
2008-11-08 11:51 1,024,000 a------- d:\windows\system32\wvauth.dll
2008-11-03 00:05 <DIR> --d----- f:\programme\Pinnacle
2008-10-25 20:58 <DIR> --d----- f:\programme\hjsplit

==================== Find3M ====================

2008-11-23 11:33 <DIR> --d----- f:\programme\FlashGet
2008-11-22 16:28 <DIR> --d----- f:\programme\jkdefrag
2008-11-22 15:04 <DIR> --d----- f:\programme\FlashFXP
2008-11-22 13:25 <DIR> --d----- d:\dokume~1\kop\anwend~1\TrueCrypt
2008-11-22 13:18 <DIR> --d----- d:\dokume~1\alluse~1\anwend~1\Spybot - Search & Destroy
2008-11-21 16:28 <DIR> --d----- d:\programme\gemeinsame dateien\Wise Installation Wizard
2008-11-21 01:03 27,649 a------- d:\windows\system32\nvModes.dat
2008-11-20 22:17 <DIR> --d----- d:\dokume~1\kop\anwend~1\tor
2008-11-20 22:16 <DIR> --d----- d:\dokume~1\kop\anwend~1\Vidalia
2008-11-20 22:12 <DIR> --d----- f:\programme\Yahoo!
2008-11-20 12:51 2,682,880 a------- d:\windows\system32\vcredist_x86.exe
2008-11-20 12:51 2,670,592 a------- d:\windows\system32\WLBCGCBPRO731.DLL
2008-11-20 12:51 2,220,032 a------- d:\windows\system32\WLTRAY.EXE
2008-11-20 12:51 1,961,984 a------- d:\windows\system32\BCMWLTRY.EXE
2008-11-20 12:51 286,720 a------- d:\windows\system32\bcmwlu00.exe
2008-11-20 12:51 143,360 a------- d:\windows\system32\preflib.dll
2008-11-20 12:51 69,632 a------- d:\windows\system32\bcmwlpkt.dll
2008-11-20 12:51 65,536 a------- d:\windows\system32\wltrynt.dll
2008-11-20 12:51 24,064 a------- d:\windows\system32\WLTRYSVC.EXE
2008-11-20 12:51 815,104 a------- d:\windows\system32\BCMLogon.dll
2008-11-20 12:51 753,664 a------- d:\windows\system32\bcm1xsup.dll
2008-11-20 12:51 143,360 a------- d:\windows\system32\bcmwlapi.dll
2008-11-20 11:19 411,840 a------- d:\windows\system32\perfh007.dat
2008-11-20 11:19 73,080 a------- d:\windows\system32\perfc007.dat
2008-11-20 11:13 <DIR> --d----- d:\dokume~1\alluse~1\anwend~1\Dell
2008-11-20 11:12 <DIR> --d----- f:\programme\Wave Systems Corp
2008-11-20 11:07 <DIR> --d----- d:\dokume~1\alluse~1\anwend~1\Wave Systems Corp
2008-11-17 12:16 <DIR> --d----- f:\programme\Spybot - Search & Destroy
2008-11-03 00:05 <DIR> --d----- d:\programme\gemeinsame dateien\InstallShield
2008-10-23 13:40 410,976 a------- d:\windows\system32\deploytk.dll
2008-10-19 19:33 <DIR> --d----- d:\dokume~1\alluse~1\anwend~1\Minnetonka Audio Software
2008-10-18 13:45 <DIR> --d----- d:\dokume~1\alluse~1\anwend~1\Media Center Programs
2008-10-18 13:28 <DIR> --d----- f:\programme\THQ
2008-10-18 13:22 <DIR> --d----- d:\dokume~1\kop\anwend~1\Bioshock
2008-10-18 13:08 108,144 a------- d:\windows\system32\CmdLineExt.dll
2008-10-18 12:48 <DIR> --d----- f:\programme\2K Games
2008-10-13 19:23 <DIR> --d----- d:\dokume~1\alluse~1\anwend~1\FlashFXP
2008-10-13 18:45 <DIR> --d----- d:\dokume~1\kop\anwend~1\SanDisk
2008-10-07 20:28 <DIR> --d----- f:\programme\SyncToy 2.0
2008-10-05 10:14 <DIR> --d----- d:\programme\gemeinsame dateien\Apple
2008-10-01 04:28 645,632 a------- d:\windows\system32\SMgina.dll
2008-09-30 16:43 1,286,152 a------- d:\windows\system32\msxml4.dll
2008-09-30 12:36 53,824 a------- d:\windows\hppins01.dat
2008-09-30 12:36 <DIR> --d----- f:\programme\HP
2008-09-30 12:36 <DIR> --d----- d:\programme\gemeinsame dateien\Hewlett-Packard
2008-09-26 19:23 <DIR> --d----- f:\programme\MoRUN.net
2008-09-26 07:33 249,856 a------- d:\windows\system32\wxvault.dll
2008-09-24 20:31 <DIR> --d----- d:\programme\gemeinsame dateien\Ahead
2008-09-24 20:29 <DIR> --d----- f:\programme\Nero
2008-09-24 19:55 <DIR> --d----- f:\programme\MediaMonkey
2008-09-24 18:37 102,400 a------- d:\windows\system32\Internationalization_es.dll
2008-09-24 18:37 102,400 a------- d:\windows\system32\Internationalization_ro.dll
2008-09-24 18:36 102,400 a------- d:\windows\system32\Internationalization_pt-BR.dll
2008-09-24 18:36 98,304 a------- d:\windows\system32\Internationalization_hu.dll
2008-09-24 18:36 94,208 a------- d:\windows\system32\Internationalization_he.dll
2008-09-24 18:36 98,304 a------- d:\windows\system32\Internationalization_tr.dll
2008-09-24 18:36 98,304 a------- d:\windows\system32\Internationalization_fi.dll
2008-09-24 18:32 290,816 a------- d:\windows\system32\wclient14.dll
2008-09-24 18:28 851,968 a------- d:\windows\system32\tcg15.dll
2008-09-19 23:30 <DIR> --d----- d:\dokume~1\alluse~1\anwend~1\ALM
2008-09-19 21:30 <DIR> --d----- d:\dokume~1\kop\anwend~1\DAEMON Tools
2008-09-19 12:26 <DIR> --d----- d:\dokume~1\kop\anwend~1\Toon Boom Animation
2008-09-19 11:53 <DIR> --d----- d:\dokume~1\kop\anwend~1\vlc
2008-09-19 11:33 <DIR> --d----- d:\dokume~1\kop\anwend~1\Mathematica
2008-09-19 11:33 <DIR> --d----- d:\dokume~1\alluse~1\anwend~1\Mathematica
2008-09-19 10:51 <DIR> --d----- d:\dokume~1\alluse~1\anwend~1\Assimilate
2008-09-19 08:51 10,752 a------- d:\windows\system32\Wavx_ESC_Logging.dll
2008-09-18 19:24 <DIR> --d----- d:\dokume~1\kop\anwend~1\Final Draft
2008-09-18 19:24 <DIR> --d----- d:\dokume~1\alluse~1\anwend~1\Final Draft
2008-09-18 15:24 <DIR> --d----- d:\dokume~1\alluse~1\anwend~1\Lavasoft
2008-09-18 14:24 <DIR> --d----- d:\dokume~1\kop\anwend~1\Wave Systems Corp
2008-09-18 13:38 <DIR> --d----- d:\dokume~1\alluse~1\anwend~1\DellUCM
2008-09-18 10:17 86,327 a------- d:\windows\pchealth\helpctr\offlinecache\index.dat
2008-09-17 19:21 21,740 a------- d:\windows\system32\emptyregdb.dat
2008-09-16 09:59 147,456 a------- d:\windows\system32\TCGCSP.dll
2008-09-15 16:24 1,846,528 a------- d:\windows\system32\win32k.sys
2008-09-10 02:13 1,307,648 a------- d:\windows\system32\msxml6.dll
2008-09-04 18:15 1,106,944 a------- d:\windows\system32\msxml3.dll
2008-08-26 08:57 826,368 a------- d:\windows\system32\wininet.dll

============= FINISH: 11:37:51,09 ===============
Attached Files
File Type: txt gmer.txt (53.4 KB, 11 views)
File Type: txt Attach.txt (7.2 KB, 12 views)
kop11 is offline  
 

Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is on
Smilies are on
[IMG] code is on
HTML code is Off
Trackbacks are Off
Pingbacks are Off
Refbacks are Off


Post a Question


» Site Navigation
 > FAQ
  > 10.0.0.2
Powered by vBadvanced CMPS v3.2.3


All times are GMT -7. The time now is 03:44 AM.


Powered by vBulletin® Version 3.8.8
Copyright ©2000 - 2020, vBulletin Solutions, Inc.
vBulletin Security provided by vBSecurity v2.2.2 (Pro) - vBulletin Mods & Addons Copyright © 2020 DragonByte Technologies Ltd.
User Alert System provided by Advanced User Tagging v3.1.0 (Pro) - vBulletin Mods & Addons Copyright © 2020 DragonByte Technologies Ltd.
Copyright 2001 - 2018, Tech Support Forum

Windows 10 - Windows 7 - Windows XP - Windows Vista - Trojan Removal - Spyware Removal - Virus Removal - Networking - Security - Top Web Hosts