| |
| |||||||
Plagegeister aller Art und deren Bekämpfung: Virus w32.SillyFdc seitdem Startdatei verändert?Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen. |
 |
01.07.2013, 15:35
| #16 |
 |  Virus w32.SillyFdc seitdem Startdatei verändert? Hallo Schrauber, wie mache ich es denn wenn ich aus einer Konsole boote_ Ich habe jetyzt Reatogo gestartet, das Programm Arcdc runtergeladen und ausgefuehrt. Leider bekomme ich eine Error Meldung. Vielleicht kannst du mir es etwas leichter erklaeren LG Saki Ich bekomme folgende Log Datei als Fehlermeldung RCDC Log for debugging and troubleshooting. -------------------------------------------- DEBUG01 - self.systemdrive == X: DEBUG02 - self.desktopLocation == B:\Documents and Settings\Default User\Desktop DEBUG03 - self.CD == X:\RecoveryCD DEBUG04 - CD_I386 == X:\RecoveryCD\I386 DEBUG05 - self.Temp == X:\RecoveryCD\self.Temp DEBUG06 - self.execDir == B:\ARCDC DEBUG07 - self.icoLocation == B:\ARCDC\ARCDC.ico /// START bootdisk directory structure \\\ |
|
01.07.2013, 16:16
| #17 |
| /// the machine /// TB-Ausbilder    | Virus w32.SillyFdc seitdem Startdatei verändert? Nee, ARCDC auf einem anderen Rechner laden, mit dem Tool ne Recovery CD erstellen, von dieser booten. Dann weiter wie beschrieben
__________________
__________________ |
|
01.07.2013, 17:17
| #18 |
| | Virus w32.SillyFdc seitdem Startdatei verändert? Hallo Schrauber,
__________________habe die Aktion durchgeführt. Ich brauch bis jetzt kein Kennwort eingeben und ich kann nichts schreiben. Er zeigt mir 3 Optionen auf englisch die lauten: to set up Windows XP now, press enter to repair a windows xp installation using recovery console pree R to quit set up without installing windows xp press F3 habe ich was verkehrt gemacht? LG Sakis |
|
01.07.2013, 19:14
| #19 |
| /// the machine /// TB-Ausbilder | Virus w32.SillyFdc seitdem Startdatei verändert? R drücken, dann gehts weiter
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
01.07.2013, 19:45
| #20 |
| | Virus w32.SillyFdc seitdem Startdatei verändert? Nach dem Administratorkennwort fragt er nicht, obwohl ich eins habe. Die Befehle nimmt er nicht an. Habe schon viele Varianten des Schreibens ausprobiert. Fehlermeldung the system can not find the file or direktory spezified |
|
01.07.2013, 19:47
| #21 |
| /// the machine /// TB-Ausbilder | Virus w32.SillyFdc seitdem Startdatei verändert? Versuch den mal: cd erdnt\hiv-backup
__________________ --> Virus w32.SillyFdc seitdem Startdatei verändert? |
|
01.07.2013, 20:46
| #22 |
| | Virus w32.SillyFdc seitdem Startdatei verändert? Super hat funktioniert, bin wieder drin. Vielleicht können wir morgen weitermachen? Muss ich für heute noch was dringendes beachten? Lieben Gruß Sakis |
|
02.07.2013, 07:55
| #23 |
| /// the machine /// TB-Ausbilder | Virus w32.SillyFdc seitdem Startdatei verändert? Supi, poste bitte ein frisches FRST Log.
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
02.07.2013, 15:32
| #24 |
| | Virus w32.SillyFdc seitdem Startdatei verändert? Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 02-07-2013 Ran by Admin (administrator) on 02-07-2013 16:23:29 Running from C:\Dokumente und Einstellungen\Admin\Desktop Microsoft Windows XP Home Edition Service Pack 3 (X86) OS Language: German Standard Internet Explorer Version 8 Boot Mode: Normal ==================== Processes (Whitelisted) =================== (ATI Technologies Inc.) C:\WINDOWS\system32\Ati2evxx.exe (Acronis) C:\Programme\Gemeinsame Dateien\Acronis\Schedule2\schedul2.exe (Acronis) C:\Programme\Gemeinsame Dateien\Acronis\CDP\afcdpsrv.exe (Oracle Corporation) C:\Programme\Java\jre7\bin\jqs.exe (Microsoft Corporation) C:\Programme\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe (Symantec Corporation) C:\Programme\Norton Internet Security CBE\Engine\20.4.0.40\ccSvcHst.exe (Secunia) C:\Programme\Secunia\PSI\PSIA.exe (LULU Software) C:\Programme\Soda PDF 5\HelperService.exe (LULU Software) C:\Programme\Soda PDF 5\ConversionService.exe (Microsoft Corporation) C:\Programme\Microsoft SQL Server\90\Shared\sqlbrowser.exe (Microsoft Corporation) C:\Programme\Microsoft SQL Server\90\Shared\sqlwriter.exe (Softwareentwicklung Remus - ArchiCrypt) C:\WINDOWS\system32\STGRAMDiskHandler32.exe (ATI Technologies Inc.) C:\WINDOWS\system32\Ati2evxx.exe (Acronis) C:\Programme\Gemeinsame Dateien\Acronis\SyncAgent\syncagentsrv.exe (Symantec Corporation) C:\Programme\Norton Internet Security CBE\Engine\20.4.0.40\ccSvcHst.exe (TuneUp Software) C:\Programme\TuneUp Utilities 2012\TuneUpUtilitiesService32.exe (TuneUp Software) C:\Programme\TuneUp Utilities 2012\TuneUpUtilitiesApp32.exe (Acronis) C:\Programme\Gemeinsame Dateien\Acronis\Schedule2\schedhlp.exe (Steganos Software GmbH) C:\Programme\Steganos Privacy Suite 2012\fredirstarter.exe (Steganos Software GmbH) C:\Programme\Steganos Privacy Suite 2012\SteganosHotKeyService.exe (Acronis) C:\Programme\Acronis\TrueImageHome\TrueImageMonitor.exe (Acronis) C:\Programme\Acronis\TrueImageHome\TimounterMonitor.exe () C:\Programme\RocketDock\RocketDock.exe (OrdinarySoft) C:\Programme\Vista Start Menu\VistaStartMenu.exe (Microsoft) C:\Programme\AntiBrowserSpy\AntiBrowserSpyBrowserMaske.exe (Steganos Software GmbH) C:\Programme\Steganos Privacy Suite 2012\SteganosBrowserMonitor.exe (Microsoft Corporation) C:\Programme\Windows Desktop Search\WindowsSearch.exe (Secunia) C:\Programme\Secunia\PSI\sua.exe (Mozilla Corporation) C:\Programme\Mozilla Firefox\firefox.exe ==================== Registry (Whitelisted) ================== HKLM\...\Run: [Acronis Scheduler2 Service] "C:\Programme\Gemeinsame Dateien\Acronis\Schedule2\schedhlp.exe" [403688 2012-06-28] (Acronis) HKLM\...\Run: [Media Codec Update Service] C:\Programme\Essentials Codec Pack\update.exe -silent [303104 2007-04-08] (MediaCodec.Org) HKLM\...\Run: [ATIPTA] C:\Programme\ATI Technologies\ATI Control Panel\atiptaxx.exe [339968 2004-05-15] (ATI Technologies, Inc.) HKLM\...\Run: [SSS2012 File Redirection Starter] "C:\Programme\Steganos Privacy Suite 2012\fredirstarter.exe" [17920 2012-10-30] (Steganos Software GmbH) HKLM\...\Run: [SSS2012 HotKeys] "C:\Programme\Steganos Privacy Suite 2012\SteganosHotKeyService.exe" [84480 2012-10-30] (Steganos Software GmbH) HKLM\...\Run: [TrueImageMonitor.exe] "C:\Programme\Acronis\TrueImageHome\TrueImageMonitor.exe" [5993216 2012-06-28] (Acronis) HKLM\...\Run: [AcronisTimounterMonitor] C:\Programme\Acronis\TrueImageHome\TimounterMonitor.exe [1173712 2012-06-28] (Acronis) Winlogon\Notify\AtiExtEvent: Ati2evxx.dll (ATI Technologies Inc.) HKCU\...\Run: [RocketDock] "C:\Programme\RocketDock\RocketDock.exe" [495616 2007-09-02] () HKCU\...\Run: [VistaStartMenu] "C:\Programme\Vista Start Menu\VistaStartMenu.exe" [2145792 2008-10-08] (OrdinarySoft) HKCU\...\Run: [BrowserMask] "C:\Programme\AntiBrowserSpy\AntiBrowserSpyBrowserMaske.exe" -delayed [101280 2011-11-02] (Microsoft) HKCU\...\Run: [SSS2012 Browser Monitor] "C:\Programme\Steganos Privacy Suite 2012\SteganosBrowserMonitor.exe" [69120 2012-10-30] (Steganos Software GmbH) HKCU\...\Run: [StartMenuX] C:\Programme\Start Menu X\StartMenuX.exe [4617536 2013-05-03] (OrdinarySoft) HKCU\...\Run: [Password Depot] "C:\Programme\AceBIT\Password Depot 7\PasswordDepot.exe" -bg [11618952 2013-05-17] (AceBIT GmbH) HKCU\...\Policies\system: [EnableLUA] 1 IMEO\softwareupdate.exe: [Debugger] "C:\Programme\TuneUp Utilities 2012\TUAutoReactivator32.exe" IMEO\tidystartmenu.exe: [Debugger] "C:\Programme\TuneUp Utilities 2012\TUAutoReactivator32.exe" IMEO\unins000.exe: [Debugger] "C:\Programme\TuneUp Utilities 2012\TUAutoReactivator32.exe" BootExecute: autocheck autochk * pgdfgsvc C 1autocheck turegoptsdnclean.exe ==================== Internet (Whitelisted) ==================== HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch HKCU SearchScopes: DefaultScope {D3B2415D-4397-4B32-BC44-7468926C831A} URL = hxxp://search.yahoo.com.anonymize-me.de/?anonymto=687474703A2F2F7365617263682E7961686F6F2E636F6D2F7365617263683F703D7B7365617263685465726D737D2665693D7574662D382666723D6231696537&st={searchT erms}&clid=2d4be040-2347-4cd0-b233-2df7cf41578b&pid=freewarede&k=0 SearchScopes: HKCU - {483830EE-A4CD-4b71-B0A3-3D82E62A6909} URL = SearchScopes: HKCU - {AFBCB7E0-F91A-4951-9F31-58FEE57A25C4} URL = hxxp://nortonsafe.search.ask.com/web?q={SEARCHTERMS}&o=APN10506&l=dis&prt=NIS&chn=retail&geo=DE&ver=20&locale=de_DE&gct=sb&qsrc=2869 SearchScopes: HKCU - {D3B2415D-4397-4B32-BC44-7468926C831A} URL = hxxp://search.yahoo.com.anonymize-me.de/?anonymto=687474703A2F2F7365617263682E7961686F6F2E636F6D2F7365617263683F703D7B7365617263685465726D737D2665693D7574662D382666723D6231696537&st={searchT erms}&clid=2d4be040-2347-4cd0-b233-2df7cf41578b&pid=freewarede&k=0 SearchScopes: HKCU - {DECA3892-BA8F-44b8-A993-A466AD694AE4} URL = hxxp://de.search.yahoo.com.anonymize-me.de/?anonymto=687474703A2F2F64652E7365617263682E7961686F6F2E636F6D2F7365617263683F703D7B7365617263685465726D737D&st={searchTerms}&clid=2d4be040-2347-4cd0-b233-2df7cf41578b&pid=freewarede&k=0 BHO: IE7Pro BHO - {00011268-E188-40DF-A514-835FCD78B1BF} - C:\Programme\IEPro\iepro.dll (IE7Pro.com) BHO: CBAbzockschutz.InitToolbarBHO - {2e250b90-0e7a-42a3-9d65-e39f9f227fa4} - C:\Windows\System32\mscoree.dll (Microsoft Corporation) BHO: Norton Identity Protection - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Programme\Norton Internet Security CBE\Engine\20.4.0.40\coIEPlg.dll (Symantec Corporation) BHO: Norton Vulnerability Protection - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Programme\Norton Internet Security CBE\Engine\20.4.0.40\IPS\IPSBHO.DLL (Symantec Corporation) BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Programme\Java\jre7\bin\ssv.dll (Oracle Corporation) BHO: Password Depot 7 - {9F79B165-70F7-4C46-B1A5-8828E2FF21F9} - "C:\Programme\AceBIT\Password Depot 7\pdIEAddOn32.dll" No File BHO: Soda PDF 5 IE Helper - {C737F472-1193-4281-BF53-A00B67AB3E19} - C:\Programme\Soda PDF 5\PDFIEHelper.dll (LULU Software) BHO: WOT Helper - {C920E44A-7F78-4E64-BDD7-A57026E7FEB7} - C:\Programme\WOT\WOT.dll () BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Programme\Java\jre7\bin\jp2ssv.dll (Oracle Corporation) BHO: SingleInstance Class - {FDAD4DA1-61A2-4FD8-9C17-86F7AC245081} - C:\Programme\Yahoo!\Companion\Installs\cpn0\YTSingleInstance.dll (Yahoo! Inc) Toolbar: HKLM - COMPUTERBILD-Abzockschutz - {353e2a48-6254-4bd3-88f4-3b51a0ca7870} - C:\Windows\System32\mscoree.dll (Microsoft Corporation) Toolbar: HKLM - WOT - {71576546-354D-41c9-AAE8-31F2EC22BF0D} - C:\Programme\WOT\WOT.dll () Toolbar: HKLM - No Name - {8dcb7100-df86-4384-8842-8fa844297b3f} - No File Toolbar: HKLM - Steganos Password Manager Toolbar - {9C65D12D-CF9D-454D-8049-61965D8C6FFF} - C:\Programme\Steganos Privacy Suite 2012\SPMIEToolbar.dll (Steganos Software GmbH) Toolbar: HKLM - Soda PDF 5 IE Toolbar - {F335ABA2-FDB4-4644-92B2-5CC4B0FC91D6} - C:\Programme\Soda PDF 5\PDFIEPlugin.dll (LULU Software) Toolbar: HKLM - No Name - {eec0f710-38b5-4aba-99bf-ec87564a4e13} - No File Toolbar: HKLM - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Programme\Norton Internet Security CBE\Engine\20.4.0.40\coIEPlg.dll (Symantec Corporation) Toolbar: HKCU -&Adresse - {01E04581-4EEE-11D0-BFE9-00AA005B4383} - C:\Windows\System32\browseui.dll (Microsoft Corporation) Toolbar: HKCU -&Links - {F2CF5485-4E02-4F68-819C-B92DE9277049} - C:\WINDOWS\system32\ieframe.dll (Microsoft Corporation) Toolbar: HKCU -WOT - {71576546-354D-41C9-AAE8-31F2EC22BF0D} - C:\Programme\WOT\WOT.dll () Toolbar: HKCU -Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Programme\Norton Internet Security CBE\Engine\20.4.0.40\coIEPlg.dll (Symantec Corporation) DPF: {02BCC737-B171-4746-94C9-0D8A0B2C0089} hxxp://office.microsoft.com/templates/ieawsdc.cab DPF: {05CA9FB0-3E3E-4B36-BF41-0E3A5CAA8CD8} hxxp://download.microsoft.com/download/e/7/3/e7345c16-80aa-4488-ae10-9ac6be844f99/OGAControl.cab DPF: {166B1BCA-3F9C-11CF-8075-444553540000} hxxp://download.macromedia.com/pub/shockwave/cabs/director/sw.cab DPF: {17492023-C23A-453E-A040-C7C580BBF700} hxxp://download.microsoft.com/download/5/b/0/5b0d4654-aa20-495c-b89f-c1c34c691085/LegitCheckControl.cab DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} C:\Programme\Yahoo!\Common\Yinsthelper.dll DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_21-windows-i586.cab DPF: {C7DB51B4-BCF7-4923-8874-7F1A0DC92277} hxxp://office.microsoft.com/officeupdate/content/opuc4.cab DPF: {CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_03-windows-i586.cab DPF: {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_07-windows-i586.cab DPF: {CAFEEFAC-0017-0000-0021-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_21-windows-i586.cab DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_21-windows-i586.cab DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab Handler: ipp - No CLSID Value - Handler: lid - {5C135180-9973-46D9-ABF4-148267CBB8BF} - C:\WINDOWS\System32\msvidctl.dll (Microsoft Corporation) Handler: msdaipp - No CLSID Value - Handler: wot - {C2A44D6B-CB9F-4663-88A6-DF2F26E4D952} - C:\Programme\WOT\WOT.dll () ShellExecuteHooks: Windows Desktop Search Namespace Manager - {56F9679E-7826-4C84-81F3-532071A8BCC5} - C:\Programme\Windows Desktop Search\MSNLNamespaceMgr.dll [304128 2009-05-24] (Microsoft Corporation) Tcpip\Parameters: [DhcpNameServer] 192.168.178.1 FireFox: ======== FF ProfilePath: C:\Dokumente und Einstellungen\Admin\Anwendungsdaten\Mozilla\Firefox\Profiles\mkh8m4lm.default FF Plugin: @adobe.com/FlashPlayer - C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_7_700_224.dll () FF Plugin: @adobe.com/ShockwavePlayer - C:\WINDOWS\system32\Adobe\Director\np32dsw_1202122.dll (Adobe Systems, Inc.) FF Plugin: @google.com/npPicasa3,version=3.0.0 - C:\Programme\Google\Picasa3\npPicasa3.dll (Google, Inc.) FF Plugin: @java.com/JavaPlugin,version=10.21.2 - C:\Programme\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation) FF Plugin: @logitech.com/HarmonyRemote,version=1.0.0 - C:\Programme\Logitech\Harmony Remote Driver\NprtHarmonyPlugin.dll (Logitech Inc.) FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Programme\Microsoft Silverlight\5.1.20125.0\npctrl.dll ( Microsoft Corporation) FF Plugin: @microsoft.com/WPF,version=3.5 - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation) FF Plugin: @nokia.com/EnablerPlugin - C:\Programme\Nokia\Nokia Suite\npNokiaSuiteEnabler.dll ( ) FF Plugin: @real.com/nppl3260;version=6.0.11.3088 - C:\Programme\Real\RealPlayer\Netscape6\nppl3260.dll (RealNetworks, Inc.) FF Plugin: @real.com/nprjplug;version=1.0.2.3146 - C:\Programme\Real\RealPlayer\Netscape6\nprjplug.dll (RealNetworks, Inc.) FF Plugin: @real.com/nprpjplug;version=6.0.11.3006 - C:\Programme\Real\RealPlayer\Netscape6\nprpjplug.dll (RealNetworks, Inc.) FF Plugin: @tools.google.com/Google Update;version=3 - C:\Programme\Google\Update\1.3.21.145\npGoogleUpdate3.dll (Google Inc.) FF Plugin: @tools.google.com/Google Update;version=9 - C:\Programme\Google\Update\1.3.21.145\npGoogleUpdate3.dll (Google Inc.) FF Plugin: @videolan.org/vlc,version=2.0.6 - C:\Programme\VideoLAN\VLC\npvlc.dll (VideoLAN) FF Plugin: Adobe Reader - C:\Programme\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.) FF Plugin HKCU: @tools.google.com/Google Update;version=3 - C:\Dokumente und Einstellungen\Admin\Lokale Einstellungen\Anwendungsdaten\Google\Update\1.3.21.145\npGoogleUpdate3.dll (Google Inc.) FF Plugin HKCU: @tools.google.com/Google Update;version=9 - C:\Dokumente und Einstellungen\Admin\Lokale Einstellungen\Anwendungsdaten\Google\Update\1.3.21.145\npGoogleUpdate3.dll (Google Inc.) FF Plugin HKCU: amazon.com/AmazonMP3DownloaderPlugin - C:\Programme\Amazon\MP3 Downloader\npAmazonMP3DownloaderPlugin101753.dll (Amazon.com, Inc.) FF Extension: No Name - C:\Dokumente und Einstellungen\Admin\Anwendungsdaten\Mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384} FF Extension: Microsoft .NET Framework Assistant - C:\Dokumente und Einstellungen\Admin\Anwendungsdaten\Mozilla\Firefox\Profiles\mkh8m4lm.default\Extensions\{20a82645-c095-46ed-80e3-08825760534b} FF Extension: WOT - C:\Dokumente und Einstellungen\Admin\Anwendungsdaten\Mozilla\Firefox\Profiles\mkh8m4lm.default\Extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7} FF Extension: No Name - C:\Dokumente und Einstellungen\Admin\Anwendungsdaten\Mozilla\Firefox\Profiles\mkh8m4lm.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi FF Extension: No Name - C:\Dokumente und Einstellungen\Admin\Anwendungsdaten\Mozilla\Firefox\Profiles\mkh8m4lm.default\Extensions\{d49175b3-3fd8-43b8-b28e-da5d47f3c398}.xpi FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\ FF Extension: Microsoft .NET Framework Assistant - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\ FF HKLM\...\Firefox\Extensions: [{09F060FA-566D-42D7-BF79-97AB30863433}] C:\Programme\Steganos Privacy Suite 2012\pfplugin FF Extension: <?xml version="1.0" ?><RDF xmlns="hxxp://www.w3.org/1999/02/22-rdf-syntax-ns#" xmlns:em="hxxp://www.mozilla.org/2004/em-rdf#"> <Description about="urn:mozilla:install-manifest"> <em:creator>Steganos GmbH</em:creator> <em:description>Steganos Private Favorites Plugin</em:description> <em:homepageURL>hxxp://www.steganos.com/</em:homepageURL> <em:id>{09F060FA-566D-42D7-BF79-97AB30863433}</em:id> <em:name>Steganos Private Favorites</em:name> <em:version>13.0.3.10053</em:version> <em:targetApplication> <!-- Firefox --> <Description> <em:id>{ec8030f7-c20a-464f-9b0e-13a3a9e97384}</em:id> <em:minVersion>2.0</em:minVersion> <em:maxVersion>20.*</em:maxVersion> </Description> <!-- SeaMonkey --> <Description> <em:id>{92650c4d-4b8e-4d2a-b7eb-24ecf4f6b63a}</em:id> <em:minVersion>2.0</em:minVersion> <em:maxVersion>2.5.*</em:maxVersion> </Description> </em:targetApplication> <em:iconURL>chrome://pfplugin/skin/pfplugin_icon.png</em:iconURL><em:file><Description about="urn:mozilla:extension:file  fplugin.jar"><emackage>content/</emackage><em:skin>skin/</em:skin><em:locale>locale/de-DE/</em:locale><em:locale>locale/en-US/</em:locale><em:locale>locale/fr-FR/</em:locale></Description></em:file></Description></RDF> - C:\Programme\Steganos Privacy Suite 2012\pfplugin FF HKLM\...\Firefox\Extensions: [{00F0643E-B367-4779-B45D-7046EBA37A88}] C:\Programme\Steganos Privacy Suite 2012\spmplugin3 FF Extension: <?xml version="1.0" ?><RDF xmlns="hxxp://www.w3.org/1999/02/22-rdf-syntax-ns#" xmlns:em="hxxp://www.mozilla.org/2004/em-rdf#"> <Description about="urn:mozilla:install-manifest"> <em:creator>Steganos GmbH</em:creator> <em:description>Steganos Password Manager Plugin</em:description> <em:homepageURL>hxxp://www.steganos.com/</em:homepageURL> <em:id>{00F0643E-B367-4779-B45D-7046EBA37A88}</em:id> <em:name>Steganos Password Manager</em:name> <em:version>13.0.3.10053</em:version> <em:targetApplication> <!-- Firefox --> <Description> <em:id>{ec8030f7-c20a-464f-9b0e-13a3a9e97384}</em:id> <em:minVersion>3.0</em:minVersion> <em:maxVersion>20.*</em:maxVersion> </Description> <!-- SeaMonkey --> <Description> <em:id>{92650c4d-4b8e-4d2a-b7eb-24ecf4f6b63a}</em:id> <em:minVersion>2.0</em:minVersion> <em:maxVersion>2.5.*</em:maxVersion> </Description> </em:targetApplication> <em:iconURL>chrome://spmplugin3/skin/spmplugin3_icon.png</em:iconURL><em:file><Description about="urn:mozilla:extension:file:spmplugin3.jar"><em ackage>content/</emackage><em:skin>skin/</em:skin><em:locale>locale/de-DE/</em:locale><em:locale>locale/en-US/</em:locale><em:locale>locale/fr-FR/</em:locale></Description></em:file></Description></RDF> - C:\Programme\Steganos Privacy Suite 2012\spmplugin3 FF HKLM\...\Firefox\Extensions: [FFSodaPDF5Converter@sodapdf.com] C:\Programme\Soda PDF 5\FFSoda5Ext FF Extension: Soda PDF 5 Converter For Firefox - C:\Programme\Soda PDF 5\FFSoda5Ext FF HKLM\...\Firefox\Extensions: [{2D3F3651-74B9-4795-BDEC-6DA2F431CB62}] C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.1.1.2\coFFPlgn\ FF Extension: Norton Toolbar - C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.1.1.2\coFFPlgn\ FF HKLM\...\Firefox\Extensions: [{BBDA0591-3099-440a-AA10-41764D9DB4DB}] C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.1.1.2\IPSFFPlgn\ FF Extension: Norton Vulnerability Protection - C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.1.1.2\IPSFFPlgn\ FF HKLM\...\Firefox\Extensions: [passworddepot@acebit.com] C:\Programme\AceBIT\Password Depot 7\Firefox\ FF Extension: Password Depot Extension - C:\Programme\AceBIT\Password Depot 7\Firefox\ ========================== Services (Whitelisted) ================= R2 AcrSch2Svc; C:\Programme\Gemeinsame Dateien\Acronis\Schedule2\schedul2.exe [821584 2012-06-28] (Acronis) R2 afcdpsrv; C:\Programme\Gemeinsame Dateien\Acronis\CDP\afcdpsrv.exe [3491792 2013-06-28] (Acronis) S2 ATI Smart; C:\WINDOWS\system32\ati2sgag.exe [520192 2006-06-07] () S4 DfSdkS; C:\Programme\Ashampoo\Ashampoo WinOptimizer 2012\DfsdkS.exe [406016 2009-08-24] (mst software GmbH, Germany) S2 gupdate; C:\Programme\Google\Update\GoogleUpdate.exe [116648 2013-02-23] (Google Inc.) S3 gupdatem; C:\Programme\Google\Update\GoogleUpdate.exe [116648 2013-02-23] (Google Inc.) S3 gusvc; C:\Programme\Google\Common\Google Updater\GoogleUpdaterService.exe [136120 2009-12-22] (Google) S3 HRService; C:\Programme\Haufe\iDesk\iDeskService\iDeskService.exe [71208 2007-09-07] () S3 IDriverT; C:\Programme\Gemeinsame Dateien\InstallShield\Driver\1050\Intel 32\IDriverT.exe [73728 2004-10-22] (Macrovision Corporation) S3 MatSvc; C:\Programme\Microsoft Fix it Center\Matsvc.exe [267568 2011-06-13] (Microsoft Corporation) S3 MozillaMaintenance; C:\Programme\Mozilla Maintenance Service\maintenanceservice.exe [117144 2013-05-22] (Mozilla Foundation) R2 MSSQL$SQLEXPRESS; C:\Programme\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe [29293408 2010-12-10] (Microsoft Corporation) S4 MSSQLServerADHelper; C:\Programme\Microsoft SQL Server\90\Shared\sqladhlp90.exe [44384 2010-12-10] (Microsoft Corporation) R2 NIS; C:\Programme\Norton Internet Security CBE\Engine\20.4.0.40\diMaster.dll [556336 2013-05-30] (Symantec Corporation) R2 Secunia PSI Agent; C:\Programme\Secunia\PSI\PSIA.exe [1227800 2013-04-18] (Secunia) R2 Secunia Update Agent; C:\Programme\Secunia\PSI\sua.exe [659992 2013-04-18] (Secunia) S3 ServiceLayer; C:\Programme\PC Connectivity Solution\ServiceLayer.exe [725400 2012-10-03] (Nokia) R2 Soda PDF 5 Helper Service; C:\Programme\Soda PDF 5\HelperService.exe [1237856 2013-01-25] (LULU Software) R2 Soda PDF 5 Service; C:\Programme\Soda PDF 5\ConversionService.exe [877920 2013-01-25] (LULU Software) S4 Sony PC Companion; C:\Programme\Sony\Sony PC Companion\PCCService.exe [155824 2013-02-04] (Avanquest Software) R2 SQLBrowser; C:\Programme\Microsoft SQL Server\90\Shared\sqlbrowser.exe [238944 2010-12-10] (Microsoft Corporation) R2 SQLWriter; C:\Programme\Microsoft SQL Server\90\Shared\sqlwriter.exe [86880 2010-12-10] (Microsoft Corporation) R2 Steganos Volatile Disk; C:\WINDOWS\system32\STGRAMDiskHandler32.exe [349184 2012-10-29] (Softwareentwicklung Remus - ArchiCrypt) R2 syncagentsrv; C:\Programme\Gemeinsame Dateien\Acronis\SyncAgent\syncagentsrv.exe [5924712 2012-06-28] (Acronis) R2 TuneUp.UtilitiesSvc; C:\Programme\TuneUp Utilities 2012\TuneUpUtilitiesService32.exe [1528672 2012-05-29] (TuneUp Software) S3 WMPNetworkSvc; C:\Programme\Windows Media Player\WMPNetwk.exe [920576 2006-11-03] (Microsoft Corporation) S3 AppMgmt; %SystemRoot%\System32\appmgmts.dll [x] R2 JavaQuickStarterService; "C:\Programme\Java\jre7\bin\jqs.exe" -service -config "C:\Programme\Java\jre7\lib\deploy\jqs\jqs.conf" [x] ==================== Drivers (Whitelisted) ==================== R2 acedrv09; C:\WINDOWS\system32\drivers\acedrv09.sys [373568 2007-06-18] (Protect Software GmbH) R2 acehlp09; C:\WINDOWS\system32\drivers\acehlp09.sys [201696 2007-05-30] (Protect Software GmbH) R3 ati2mtag; C:\Windows\System32\DRIVERS\ati2mtag.sys [1580544 2006-06-07] (ATI Technologies Inc.) R3 ATIAVAIW; C:\Windows\System32\DRIVERS\atinavt2.sys [166528 2006-05-03] (ATI Technologies Inc.) S3 atinrvxx; C:\Windows\System32\DRIVERS\atinrvxx.sys [105984 2004-04-14] (ATI Technologies Inc.) R2 atksgt; C:\Windows\System32\DRIVERS\atksgt.sys [278728 2010-08-04] () S3 AVEO; C:\Windows\System32\DRIVERS\AVEOdcnt.sys [281472 2010-03-15] (AVEO Corp) R1 BHDrvx86; C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.1.1.2\Definitions\BASHDefs\20130620.001\BHDrvx86.sys [1002072 2013-05-31] (Symantec Corporation) S3 BrScnUsb; C:\Windows\System32\DRIVERS\BrScnUsb.sys [15295 2004-10-15] (Brother Industries Ltd.) R2 CAPI20; C:\Windows\System32\drivers\capi20.sys [974040 2005-06-29] (DeTeWe Berlin) S3 CCDECODE; C:\Windows\System32\DRIVERS\CCDECODE.sys [17024 2008-04-13] (Microsoft Corporation) R1 ccSet_NIS; C:\Windows\system32\drivers\NIS\1404000.028\ccSetx86.sys [134744 2013-04-16] (Symantec Corporation) R3 ctljystk; C:\Windows\System32\DRIVERS\ctljystk.sys [3712 2001-08-17] (Creative Technology Ltd.) R1 eeCtrl; C:\Programme\Gemeinsame Dateien\Symantec Shared\EENGINE\eeCtrl.sys [376480 2012-08-18] (Symantec Corporation) U3 EraserUtilDrv11220; C:\Programme\Gemeinsame Dateien\Symantec Shared\EENGINE\EraserUtilDrv11220.sys [106656 2012-08-18] (Symantec Corporation) S3 FsUsbExDisk; C:\WINDOWS\system32\FsUsbExDisk.SYS [36608 2010-06-14] () R0 giveio; C:\Windows\System32\giveio.sys [5248 1996-04-03] () R3 IDSxpx86; C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.1.1.2\Definitions\IPSDefs\20130628.001\IDSxpx86.sys [373728 2013-06-19] (Symantec Corporation) R2 lirsgt; C:\Windows\System32\DRIVERS\lirsgt.sys [25416 2010-08-04] () S3 LucentSoftModem; C:\Windows\System32\DRIVERS\LTSM.sys [815819 2002-07-20] (Lucent Technologies) R2 MDC8021X; C:\Windows\System32\DRIVERS\mdc8021x.sys [15781 2007-11-10] (Meetinghouse Data Communications) S3 MPE; C:\Windows\System32\DRIVERS\MPE.sys [15232 2008-04-13] (Microsoft Corporation) S3 MVDCODEC; C:\Windows\System32\DRIVERS\atinmdxx.sys [13824 2004-04-14] (ATI Technologies Inc.) S3 NABTSFEC; C:\Windows\System32\DRIVERS\NABTSFEC.sys [85248 2008-04-13] (Microsoft Corporation) R3 NAVENG; C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.1.1.2\Definitions\VirusDefs\20130702.002\NAVENG.SYS [93272 2013-06-19] (Symantec Corporation) R3 NAVEX15; C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.1.1.2\Definitions\VirusDefs\20130702.002\NAVEX15.SYS [1611992 2013-06-19] (Symantec Corporation) S3 NdisIP; C:\Windows\System32\DRIVERS\NdisIP.sys [10880 2008-04-13] (Microsoft Corporation) S3 PCANDIS5; C:\WINDOWS\System32\PCANDIS5.SYS [17134 2002-05-02] (Printing Communications Assoc., Inc. (PCAUSA)) S3 PRISM_A02; C:\Windows\System32\DRIVERS\PRISMA02.sys [379456 2004-05-20] (Conexant Systems, Inc.) R3 PSI; C:\Windows\System32\DRIVERS\psi_mf_x86.sys [16024 2013-04-18] (Secunia) R3 rtl8139; C:\Windows\System32\DRIVERS\R8139n51.SYS [45568 2002-06-13] (Realtek Semiconductor Corporation) R0 sfdrv01a; C:\Windows\System32\drivers\sfdrv01a.sys [63352 2006-07-05] (Protection Technology (StarForce)) R0 sfvfs02; C:\Windows\System32\drivers\sfvfs02.sys [82296 2007-01-12] (Protection Technology (StarForce)) R1 SLEE_18_DRIVER; C:\WINDOWS\system32\drivers\Sleen18.sys [91112 2012-07-24] (Softwareentwicklung Remus - ArchiCrypt - ) S3 SLIP; C:\Windows\System32\DRIVERS\SLIP.sys [11136 2008-04-13] (Microsoft Corporation) R3 SONYWBMS; C:\Windows\System32\DRIVERS\SonyWBMS.SYS [31586 2002-07-03] (Sony Corporation) R0 speedfan; C:\Windows\System32\speedfan.sys [24184 2012-12-29] (Almico Software) R3 SRTSP; C:\Windows\System32\Drivers\NIS\1404000.028\SRTSP.SYS [603224 2013-05-16] (Symantec Corporation) R1 SRTSPX; C:\Windows\system32\drivers\NIS\1404000.028\SRTSPX.SYS [32344 2013-03-05] (Symantec Corporation) R1 StarOpen; C:\Windows\System32\Drivers\StarOpen.sys [5632 2006-07-24] () R1 STGMFEngine32; C:\WINDOWS\system32\drivers\STGMFEngine32.sys [16384 2012-10-29] (Softwareentwicklung Remus - ArchiCrypt.com) S3 streamip; C:\Windows\System32\DRIVERS\StreamIP.sys [15232 2008-04-13] (Microsoft Corporation) R0 SymDS; C:\Windows\System32\drivers\NIS\1404000.028\SYMDS.SYS [367704 2013-05-21] (Symantec Corporation) R0 SymEFA; C:\Windows\System32\drivers\NIS\1404000.028\SYMEFA.SYS [934488 2013-05-23] (Symantec Corporation) R3 SymEvent; C:\WINDOWS\system32\Drivers\SYMEVENT.SYS [142496 2013-06-20] (Symantec Corporation) R1 SymIRON; C:\Windows\system32\drivers\NIS\1404000.028\Ironx86.SYS [175264 2013-03-05] (Symantec Corporation) R1 SYMTDI; C:\Windows\System32\Drivers\NIS\1404000.028\SYMTDI.SYS [396760 2013-04-25] (Symantec Corporation) R0 tdrpman; C:\Windows\System32\DRIVERS\tdrpman.sys [775232 2013-06-28] (Acronis) R2 tifsfilter; C:\Windows\System32\DRIVERS\tifsfilt.sys [28768 2007-11-10] (Acronis) R3 TuneUpUtilitiesDrv; C:\Programme\TuneUp Utilities 2012\TuneUpUtilitiesDriver32.sys [10064 2012-05-08] (TuneUp Software) S1 UimBus; C:\Windows\System32\DRIVERS\UimBus.sys [34392 2010-01-26] (Windows (R) 2000 DDK provider) S1 Uim_IM; C:\Windows\System32\Drivers\Uim_IM.sys [385544 2010-01-26] (Paragon) S3 ulisa; C:\Windows\System32\Drivers\ulisa.sys [33575 2005-06-29] (DeTeWe Berlin) R3 uscbs109; C:\Windows\System32\DRIVERS\uscbs109.sys [8672 2005-03-22] ( ) R3 uscsc109; C:\Windows\System32\DRIVERS\uscsc109.sys [102336 2005-03-22] ( ) R0 vididr; C:\Windows\System32\DRIVERS\vididr.sys [126880 2013-06-28] (Acronis) R0 vidsflt67; C:\Windows\System32\DRIVERS\vsflt67.sys [86496 2013-06-28] (Acronis) R3 VirtDiskBus; C:\Windows\System32\DRIVERS\VirtDiskBus.sys [63640 2009-07-01] (Bazis) R3 WDM_YAMAHAAC97; C:\Windows\System32\drivers\yacxgc.sys [202880 2002-07-19] (YAMAHA CORPORATION) S3 WSTCODEC; C:\Windows\System32\DRIVERS\WSTCODEC.SYS [19200 2008-04-13] (Microsoft Corporation) S3 catchme; \??\C:\DOKUME~1\Admin\LOKALE~1\Temp\catchme.sys [x] S3 cpuz128; No ImagePath S3 cpuz129; No ImagePath S3 dtwmnic5; system32\DRIVERS\dtwmnic5.sys [x] S3 EraserUtilRebootDrv; \??\C:\Programme\Gemeinsame Dateien\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [x] S4 hpt3xx; No ImagePath S4 IntelIde; No ImagePath S3 SANDRA; No ImagePath U3 TlntSvr; S3 TSMPacket; system32\DRIVERS\tsmpkt.sys [x] ==================== NetSvcs (Whitelisted) =================== ==================== One Month Created Files and Folders ======== 2013-07-02 01:31 - 2013-07-02 01:26 - 03211786 ____A C:\ARCDC.exe 2013-07-01 14:04 - 2013-07-01 14:04 - 00086312 ____A C:\windows-startet-nicht-mehr.html 2013-07-01 14:04 - 2013-07-01 14:04 - 00000000 ____D C:\windows-startet-nicht-mehr_files 2013-07-01 06:07 - 2013-07-01 14:04 - 00273144 ____A C:\OTL.Txt 2013-07-01 00:17 - 2013-07-01 00:17 - 05053696 ____A (Macrovision Corporation) C:\IsoBurner-Setup.exe 2013-06-30 18:03 - 2013-06-30 18:03 - 00031488 ____A C:\ComboFix.txt 2013-06-30 17:38 - 2013-06-30 17:38 - 00000000 RASHD C:\cmdcons 2013-06-30 17:28 - 2011-06-26 08:45 - 00256000 ____A C:\Windows\PEV.exe 2013-06-30 17:28 - 2010-11-07 19:20 - 00208896 ____A C:\Windows\MBR.exe 2013-06-30 17:28 - 2009-04-20 06:56 - 00060416 ____A (NirSoft) C:\Windows\NIRCMD.exe 2013-06-30 17:28 - 2000-08-31 02:00 - 00518144 ____A (SteelWerX) C:\Windows\SWREG.exe 2013-06-30 17:28 - 2000-08-31 02:00 - 00406528 ____A (SteelWerX) C:\Windows\SWSC.exe 2013-06-30 17:28 - 2000-08-31 02:00 - 00212480 ____A (SteelWerX) C:\Windows\SWXCACLS.exe 2013-06-30 17:28 - 2000-08-31 02:00 - 00098816 ____A C:\Windows\sed.exe 2013-06-30 17:28 - 2000-08-31 02:00 - 00080412 ____A C:\Windows\grep.exe 2013-06-30 17:28 - 2000-08-31 02:00 - 00068096 ____A C:\Windows\zip.exe 2013-06-30 17:26 - 2013-06-30 18:03 - 00000000 ____D C:\Qoobox 2013-06-30 17:11 - 2013-06-30 17:11 - 00000000 ____D C:\FRST 2013-06-30 16:14 - 2013-06-30 16:15 - 00002992 ____A C:\AdwCleaner[R23].txt 2013-06-30 12:38 - 2013-06-30 12:38 - 00000000 ____A C:\bcdedit.txt 2013-06-28 16:17 - 2013-06-28 16:17 - 00234752 ____A (Acronis) C:\Windows\System32\Drivers\afcdp.sys 2013-06-28 16:16 - 2013-06-28 16:16 - 00775232 ____A (Acronis) C:\Windows\System32\Drivers\tdrpman.sys 2013-06-28 16:02 - 2013-06-28 16:16 - 00086496 ____A (Acronis) C:\Windows\System32\Drivers\vsflt67.sys 2013-06-28 16:02 - 2013-06-28 16:02 - 00126880 ____A (Acronis) C:\Windows\System32\Drivers\vididr.sys 2013-06-28 16:00 - 2013-06-28 16:00 - 00080416 ____A (Acronis) C:\Windows\System32\Drivers\fltsrv.sys 2013-06-28 14:46 - 2013-06-28 14:46 - 00000056 ____A C:\{DA50139A-AD87-4B8E-9F67-03C2758B09C1} 2013-06-27 09:10 - 2013-06-28 16:17 - 00011709 ____A C:\Windows\setupapi.log 2013-06-25 22:47 - 2013-06-25 22:48 - 00002654 ____A C:\AdwCleaner[R22].txt 2013-06-24 22:31 - 2013-06-24 22:31 - 00002593 ____A C:\AdwCleaner[R21].txt 2013-06-24 17:17 - 2013-06-24 17:17 - 00000000 ____D C:\Windows\ShellNew 2013-06-24 16:31 - 2013-06-24 16:32 - 00002532 ____A C:\AdwCleaner[R20].txt 2013-06-23 22:42 - 2013-06-23 22:43 - 00002471 ____A C:\AdwCleaner[R19].txt 2013-06-23 22:32 - 2009-08-13 18:07 - 00729424 ____A (WeOnlyDo Software) C:\Windows\System32\wodSFTP.dll 2013-06-23 22:32 - 2009-08-13 18:07 - 00672024 ____A (WeOnlyDo! COM) C:\Windows\System32\wodKeys.dll 2013-06-23 21:43 - 2013-06-23 21:44 - 00002410 ____A C:\AdwCleaner[R18].txt 2013-06-23 20:36 - 2013-06-23 20:37 - 00002349 ____A C:\AdwCleaner[R17].txt 2013-06-23 19:00 - 2013-06-23 19:00 - 00002288 ____A C:\AdwCleaner[R16].txt 2013-06-23 18:58 - 2013-06-23 18:59 - 00002227 ____A C:\AdwCleaner[R15].txt 2013-06-23 18:12 - 2013-06-23 18:13 - 00002308 ____A C:\AdwCleaner[R14].txt 2013-06-23 17:06 - 2013-06-23 17:06 - 00002247 ____A C:\AdwCleaner[R13].txt 2013-06-23 16:53 - 2013-06-23 16:54 - 00002044 ____A C:\AdwCleaner[R12].txt 2013-06-23 16:43 - 2013-06-23 16:43 - 00003264 ____A C:\{F33B9D62-C6B9-492C-A909-C6A4234D097E} 2013-06-22 21:57 - 2013-06-22 21:57 - 00002576 ____A C:\{C937ECDE-81D9-4BD0-A300-E7F61656B6D2} 2013-06-20 16:23 - 2013-06-20 16:23 - 00000383 ____A C:\AdwCleaner[R11].txt 2013-06-19 20:31 - 2013-06-20 17:54 - 00142496 ____A (Symantec Corporation) C:\Windows\System32\Drivers\SYMEVENT.SYS 2013-06-19 20:31 - 2013-06-20 17:54 - 00007611 ____A C:\Windows\System32\Drivers\SYMEVENT.CAT 2013-06-19 20:27 - 2013-06-23 11:52 - 00000000 ____D C:\Windows\System32\Drivers\NIS 2013-06-19 18:13 - 2013-06-19 18:13 - 00001923 ____A C:\AdwCleaner[R10].txt 2013-06-17 21:03 - 2013-06-17 21:12 - 00001861 ____A C:\AdwCleaner[R9].txt 2013-06-16 08:29 - 2013-06-16 19:57 - 00065536 ____A C:\Windows\System32\config\Spybot -.evt 2013-06-15 21:53 - 2013-06-15 21:53 - 00001801 ____A C:\AdwCleaner[R8].txt 2013-06-09 22:19 - 2013-06-09 22:19 - 00001398 ____A C:\AdwCleaner[R1].txt 2013-06-09 19:55 - 2013-06-09 19:55 - 00003952 ____A C:\DelFix.txt 2013-06-09 08:21 - 2013-06-24 22:42 - 00000291 ____A C:\Boot.bak 2013-06-09 08:21 - 2004-08-03 23:00 - 00262448 _RASH C:\cmldr 2013-06-09 07:24 - 2013-06-06 20:48 - 00000276 ____A C:\Windows\Tasks\AppleSoftwareUpdate.job 2013-06-08 22:08 - 2013-06-30 17:24 - 00000000 ____D C:\Windows\erdnt 2013-06-08 21:56 - 2013-06-09 19:55 - 00000000 ____D C:\Windows\ERUNT 2013-06-07 22:49 - 2013-06-07 22:49 - 00001741 ____A C:\AdwCleaner[R7].txt 2013-06-07 22:28 - 2013-06-07 22:29 - 00001681 ____A C:\AdwCleaner[R6].txt 2013-06-07 20:15 - 2013-06-07 20:16 - 00001621 ____A C:\AdwCleaner[R5].txt 2013-06-06 18:53 - 2013-06-06 18:53 - 00001561 ____A C:\AdwCleaner[R4].txt 2013-06-05 22:49 - 2013-06-05 22:53 - 00001501 ____A C:\AdwCleaner[R3].txt 2013-06-05 22:30 - 2013-06-05 22:30 - 00000000 ____A C:\Windows\setuperr.log 2013-06-05 22:30 - 2013-06-05 22:30 - 00000000 ____A C:\Windows\setupact.log 2013-06-05 06:56 - 2013-06-05 06:57 - 00001441 ____A C:\AdwCleaner[R2].txt 2013-06-02 09:26 - 2008-04-14 04:22 - 00116736 ___AC (Xerox) C:\Windows\System32\dllcache\xrxwiadr.dll 2013-06-02 09:26 - 2008-04-14 04:22 - 00019456 ___AC () C:\Windows\System32\dllcache\xrxscnui.dll 2013-06-02 09:26 - 2004-08-03 23:29 - 00019455 ___AC (Intel(R) Corporation) C:\Windows\System32\dllcache\wvchntxx.sys 2013-06-02 09:26 - 2001-08-18 04:55 - 00099865 ___AC (Eicon Technology) C:\Windows\System32\dllcache\xlog.exe 2013-06-02 09:26 - 2001-08-18 04:55 - 00027648 ___AC () C:\Windows\System32\dllcache\xrxftplt.exe 2013-06-02 09:26 - 2001-08-18 04:55 - 00004608 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\xrxflnch.exe 2013-06-02 09:26 - 2001-08-18 04:54 - 00023040 ___AC (Xerox Corporation) C:\Windows\System32\dllcache\xrxwbtmp.dll 2013-06-02 09:26 - 2001-08-17 12:11 - 00016970 ___AC (US Robotics MCD (Megahertz)) C:\Windows\System32\dllcache\xem336n5.sys 2013-06-02 09:25 - 2008-04-14 03:52 - 00032000 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\wceusbsh.sys 2013-06-02 09:25 - 2008-04-13 20:36 - 00008832 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\wmiacpi.sys 2013-06-02 09:25 - 2004-08-03 23:31 - 00154624 ___AC (Lucent Technologies) C:\Windows\System32\dllcache\wlluc48.sys 2013-06-02 09:25 - 2004-08-03 23:29 - 00033599 ___AC (Intel(R) Corporation) C:\Windows\System32\dllcache\watv04nt.sys 2013-06-02 09:25 - 2004-08-03 23:29 - 00029311 ___AC (Intel(R) Corporation) C:\Windows\System32\dllcache\watv01nt.sys 2013-06-02 09:25 - 2004-08-03 23:29 - 00023615 ___AC (Intel(R) Corporation) C:\Windows\System32\dllcache\wch7xxnt.sys 2013-06-02 09:25 - 2004-08-03 23:29 - 00019551 ___AC (Intel(R) Corporation) C:\Windows\System32\dllcache\watv02nt.sys 2013-06-02 09:25 - 2004-08-03 23:29 - 00012415 ___AC (Intel(R) Corporation) C:\Windows\System32\dllcache\wadv01nt.sys 2013-06-02 09:25 - 2004-08-03 23:29 - 00012127 ___AC (Intel(R) Corporation) C:\Windows\System32\dllcache\wadv02nt.sys 2013-06-02 09:25 - 2004-08-03 23:29 - 00012063 ___AC (Intel(R) Corporation) C:\Windows\System32\dllcache\wsiintxx.sys 2013-06-02 09:25 - 2004-08-03 23:29 - 00011775 ___AC (Intel(R) Corporation) C:\Windows\System32\dllcache\wadv05nt.sys 2013-06-02 09:25 - 2001-08-18 04:54 - 00087040 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\wiafbdrv.dll 2013-06-02 09:25 - 2001-08-18 04:54 - 00054272 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\wiamsmud.dll 2013-06-02 09:25 - 2001-08-18 04:24 - 00035402 ___AC (Raytheon Corp.) C:\Windows\System32\dllcache\wlandrv2.sys 2013-06-02 09:25 - 2001-08-17 13:28 - 00771581 ___AC (Rockwell) C:\Windows\System32\dllcache\winacisa.sys 2013-06-02 09:25 - 2001-08-17 13:28 - 00701386 ___AC (3Com Corporation) C:\Windows\System32\dllcache\wdhaalba.sys 2013-06-02 09:25 - 2001-08-17 12:13 - 00019528 ___AC (Winbond Electronics Corporation) C:\Windows\System32\dllcache\w840nd.sys 2013-06-02 09:25 - 2001-08-17 12:13 - 00019016 ___AC (Winbond Electronics Corporation) C:\Windows\System32\dllcache\w926nd.sys 2013-06-02 09:25 - 2001-08-17 12:13 - 00016925 ___AC (Winbond Electronics Corporation) C:\Windows\System32\dllcache\w940nd.sys 2013-06-02 09:25 - 2001-08-17 12:10 - 00035871 ___AC (Winbond Electronics Corp.) C:\Windows\System32\dllcache\wbfirdma.sys 2013-06-02 09:24 - 2008-04-14 04:23 - 00082944 ___AC (IBM Corporation) C:\Windows\System32\dllcache\tp4mon.exe 2013-06-02 09:24 - 2008-04-13 20:45 - 00060032 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\usbaudio.sys 2013-06-02 09:24 - 2008-04-13 20:45 - 00020608 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\usbuhci.sys 2013-06-02 09:24 - 2008-04-13 20:45 - 00015104 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\usbscan.sys 2013-06-02 09:24 - 2008-04-13 20:40 - 00149376 ___AC (M-Systems) C:\Windows\System32\dllcache\tffsport.sys 2013-06-02 09:24 - 2008-04-13 20:40 - 00005376 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\viaide.sys 2013-06-02 09:24 - 2004-08-04 01:43 - 00032384 ___AC (KLSI USA, Inc.) C:\Windows\System32\dllcache\usb101et.sys 2013-06-02 09:24 - 2001-08-18 04:54 - 00525568 ___AC (Trident Microsystems Inc.) C:\Windows\System32\dllcache\tridxp.dll 2013-06-02 09:24 - 2001-08-18 04:54 - 00216576 ___AC (UMAX Data Systems Inc.) C:\Windows\System32\dllcache\um34scan.dll 2013-06-02 09:24 - 2001-08-18 04:54 - 00212480 ___AC (UMAX Data Systems Inc.) C:\Windows\System32\dllcache\um54scan.dll 2013-06-02 09:24 - 2001-08-18 04:54 - 00094720 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\umaxud32.dll 2013-06-02 09:24 - 2001-08-18 04:54 - 00069632 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\umaxu12.dll 2013-06-02 09:24 - 2001-08-18 04:54 - 00050688 ___AC (UMAX DATA SYSTEMS INC.) C:\Windows\System32\dllcache\umaxscan.dll 2013-06-02 09:24 - 2001-08-18 04:54 - 00050176 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\umaxp60.dll 2013-06-02 09:24 - 2001-08-18 04:54 - 00047616 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\umaxcam.dll 2013-06-02 09:24 - 2001-08-18 04:54 - 00031744 ___AC (IBM Corporation) C:\Windows\System32\dllcache\tp4.dll 2013-06-02 09:24 - 2001-08-18 04:54 - 00028672 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\umaxu40.dll 2013-06-02 09:24 - 2001-08-18 04:54 - 00027136 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\umaxu22.dll 2013-06-02 09:24 - 2001-08-18 04:52 - 00440576 ___AC (Trident Microsystems Inc.) C:\Windows\System32\dllcache\tridkb.dll 2013-06-02 09:24 - 2001-08-18 04:52 - 00315520 ___AC (Trident Microsystems Inc.) C:\Windows\System32\dllcache\trid3d.dll 2013-06-02 09:24 - 2001-08-18 04:52 - 00172768 ___AC (Number Nine Visual Technology) C:\Windows\System32\dllcache\t2r4disp.dll 2013-06-02 09:24 - 2001-08-18 04:52 - 00081408 ___AC (Trident Microsystems Inc.) C:\Windows\System32\dllcache\tgiul50.dll 2013-06-02 09:24 - 2001-08-18 04:52 - 00043520 ___AC (IBM Corporation) C:\Windows\System32\dllcache\tp4res.dll 2013-06-02 09:24 - 2001-08-18 04:20 - 00004992 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\toside.sys 2013-06-02 09:24 - 2001-08-17 14:02 - 00230912 ___AC (Toshiba Corporation) C:\Windows\System32\dllcache\tosdvd03.sys 2013-06-02 09:24 - 2001-08-17 14:01 - 00241664 ___AC (Toshiba Corporation) C:\Windows\System32\dllcache\tosdvd02.sys 2013-06-02 09:24 - 2001-08-17 13:58 - 00022912 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\umaxpcls.sys 2013-06-02 09:24 - 2001-08-17 13:52 - 00036736 ___AC (Promise Technology, Inc.) C:\Windows\System32\dllcache\ultra.sys 2013-06-02 09:24 - 2001-08-17 13:52 - 00007040 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\tandqic.sys 2013-06-02 09:24 - 2001-08-17 13:49 - 00030464 ___AC (Toshiba Corporation) C:\Windows\System32\dllcache\tbatm155.sys 2013-06-02 09:24 - 2001-08-17 13:49 - 00024576 ___AC (VIA Technologies, Inc.) C:\Windows\System32\dllcache\viairda.sys 2013-06-02 09:24 - 2001-08-17 13:48 - 00011520 ___AC (IBM Corporation) C:\Windows\System32\dllcache\twotrack.sys 2013-06-02 09:24 - 2001-08-17 13:28 - 00794654 ___AC (U.S. Robotics, Inc.) C:\Windows\System32\dllcache\usr1801.sys 2013-06-02 09:24 - 2001-08-17 13:28 - 00794399 ___AC (U.S. Robotics, Inc.) C:\Windows\System32\dllcache\usr1806v.sys 2013-06-02 09:24 - 2001-08-17 13:28 - 00793598 ___AC (U.S. Robotics, Inc.) C:\Windows\System32\dllcache\usr1806.sys 2013-06-02 09:24 - 2001-08-17 13:28 - 00765884 ___AC (U.S. Robotics, Inc.) C:\Windows\System32\dllcache\usrti.sys 2013-06-02 09:24 - 2001-08-17 13:28 - 00687999 ___AC (U.S. Robotics Corporation) C:\Windows\System32\dllcache\usrwdxjs.sys 2013-06-02 09:24 - 2001-08-17 13:28 - 00604253 ___AC (PCTEL, INC.) C:\Windows\System32\dllcache\vmodem.sys 2013-06-02 09:24 - 2001-08-17 13:28 - 00397502 ___AC (PCtel, Inc.) C:\Windows\System32\dllcache\vpctcom.sys 2013-06-02 09:24 - 2001-08-17 13:28 - 00224802 ___AC (U.S. Robotics Corporation) C:\Windows\System32\dllcache\usr1807a.sys 2013-06-02 09:24 - 2001-08-17 13:28 - 00113762 ___AC (U.S. Robotics Corporation) C:\Windows\System32\dllcache\usrpda.sys 2013-06-02 09:24 - 2001-08-17 13:28 - 00064605 ___AC (PCtel, Inc.) C:\Windows\System32\dllcache\vvoice.sys 2013-06-02 09:24 - 2001-08-17 13:28 - 00007556 ___AC (U.S. Robotics Corporation) C:\Windows\System32\dllcache\usroslba.sys 2013-06-02 09:24 - 2001-08-17 12:51 - 00222336 ___AC (Trident Microsystems Inc.) C:\Windows\System32\dllcache\trid3dm.sys 2013-06-02 09:24 - 2001-08-17 12:51 - 00166784 ___AC (Trident Microsystems Inc.) C:\Windows\System32\dllcache\tridxpm.sys 2013-06-02 09:24 - 2001-08-17 12:51 - 00159232 ___AC (Trident Microsystems Inc.) C:\Windows\System32\dllcache\tridkbm.sys 2013-06-02 09:24 - 2001-08-17 12:51 - 00138528 ___AC (Trident Microsystems Inc.) C:\Windows\System32\dllcache\tgiulnt5.sys 2013-06-02 09:24 - 2001-08-17 12:50 - 00036640 ___AC (Number Nine Visual Technology Corp.) C:\Windows\System32\dllcache\t2r4mini.sys 2013-06-02 09:24 - 2001-08-17 12:14 - 00249402 ___AC (Xircom) C:\Windows\System32\dllcache\vinwm.sys 2013-06-02 09:24 - 2001-08-17 12:14 - 00123995 ___AC (Tiger Jet Network) C:\Windows\System32\dllcache\tjisdn.sys 2013-06-02 09:24 - 2001-08-17 12:13 - 00037961 ___AC (TDK Corporation) C:\Windows\System32\dllcache\tdk100b.sys 2013-06-02 09:24 - 2001-08-17 12:13 - 00017129 ___AC (TDK Corporation) C:\Windows\System32\dllcache\tdkcd31.sys 2013-06-02 09:24 - 2001-08-17 12:12 - 00034375 ___AC (Intel Corporation) C:\Windows\System32\dllcache\tpro4.sys 2013-06-02 09:24 - 2001-08-17 12:10 - 00028232 ___AC (TOSHIBA Corporation) C:\Windows\System32\dllcache\tos4mo.sys 2013-06-02 09:23 - 2008-04-13 20:40 - 00007552 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\sonyait.sys 2013-06-02 09:23 - 2008-04-13 20:36 - 00016000 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\smbbatt.sys 2013-06-02 09:23 - 2008-04-13 20:36 - 00006912 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\smbclass.sys 2013-06-02 09:23 - 2004-08-03 23:31 - 00063547 ___AC (Symbol Technologies) C:\Windows\System32\dllcache\sla30nd5.sys 2013-06-02 09:23 - 2004-08-03 23:31 - 00032768 ___AC (SiS Corporation) C:\Windows\System32\dllcache\sisnic.sys 2013-06-02 09:23 - 2001-08-18 04:54 - 00238592 ___AC (Silicon Integrated Systems Corporation) C:\Windows\System32\dllcache\sisgrv.dll 2013-06-02 09:23 - 2001-08-18 04:54 - 00159744 ___AC (Stallion Technologies) C:\Windows\System32\dllcache\stlnprop.dll 2013-06-02 09:23 - 2001-08-18 04:54 - 00114688 ___AC (Sony Corporation) C:\Windows\System32\dllcache\sonypi.dll 2013-06-02 09:23 - 2001-08-18 04:54 - 00110680 ___AC (Perle Systems Ltd.) C:\Windows\System32\dllcache\spdports.dll 2013-06-02 09:23 - 2001-08-18 04:54 - 00099328 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\srusd.dll 2013-06-02 09:23 - 2001-08-18 04:54 - 00094293 ___AC (Perle Systems Ltd. ) C:\Windows\System32\dllcache\sxports.dll 2013-06-02 09:23 - 2001-08-18 04:54 - 00053760 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\sw_wheel.dll 2013-06-02 09:23 - 2001-08-18 04:54 - 00053248 ___AC (Stallion Technologies) C:\Windows\System32\dllcache\stlncoin.dll 2013-06-02 09:23 - 2001-08-18 04:54 - 00045568 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\smb3w.dll 2013-06-02 09:23 - 2001-08-18 04:54 - 00041472 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\sw_effct.dll 2013-06-02 09:23 - 2001-08-18 04:54 - 00033792 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\smb0w.dll 2013-06-02 09:23 - 2001-08-18 04:54 - 00028672 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\sma0w.dll 2013-06-02 09:23 - 2001-08-18 04:54 - 00028160 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\sm91w.dll 2013-06-02 09:23 - 2001-08-18 04:54 - 00024660 ___AC (Perle Systems Ltd.) C:\Windows\System32\dllcache\spxupchk.dll 2013-06-02 09:23 - 2001-08-18 04:54 - 00010240 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\swpidflt.dll 2013-06-02 09:23 - 2001-08-18 04:54 - 00010240 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\swpdflt2.dll 2013-06-02 09:23 - 2001-08-18 04:52 - 00252032 ___AC (Silicon Integrated Systems Corporation) C:\Windows\System32\dllcache\sis300iv.dll 2013-06-02 09:23 - 2001-08-18 04:52 - 00157696 ___AC (Silicon Integrated Systems Corporation) C:\Windows\System32\dllcache\sisv256.dll 2013-06-02 09:23 - 2001-08-18 04:52 - 00150144 ___AC (Silicon Integrated Systems Corporation) C:\Windows\System32\dllcache\sis6306v.dll 2013-06-02 09:23 - 2001-08-18 04:52 - 00147200 ___AC (Silicon Motion Inc.) C:\Windows\System32\dllcache\smidispb.dll 2013-06-02 09:23 - 2001-08-18 04:35 - 00095178 ___AC (SysKonnect GmbH.) C:\Windows\System32\dllcache\sk98xwin.sys 2013-06-02 09:23 - 2001-08-18 04:35 - 00035913 ___AC (SMC) C:\Windows\System32\dllcache\smcirda.sys 2013-06-02 09:23 - 2001-08-18 04:18 - 00287232 ___AC (Stallion Technologies) C:\Windows\System32\dllcache\stlnata.sys 2013-06-02 09:23 - 2001-08-18 04:18 - 00017152 ___AC (SCM Microsystems, Inc.) C:\Windows\System32\dllcache\stcusb.sys 2013-06-02 09:23 - 2001-08-17 14:07 - 00032640 ___AC (LSI Logic) C:\Windows\System32\dllcache\symc8xx.sys 2013-06-02 09:23 - 2001-08-17 14:07 - 00030688 ___AC (LSI Logic) C:\Windows\System32\dllcache\sym_u3.sys 2013-06-02 09:23 - 2001-08-17 14:07 - 00028384 ___AC (LSI Logic) C:\Windows\System32\dllcache\sym_hi.sys 2013-06-02 09:23 - 2001-08-17 14:07 - 00019072 ___AC (Adaptec, Inc.) C:\Windows\System32\dllcache\sparrow.sys 2013-06-02 09:23 - 2001-08-17 14:07 - 00016256 ___AC (Symbios Logic Inc.) C:\Windows\System32\dllcache\symc810.sys 2013-06-02 09:23 - 2001-08-17 14:02 - 00003968 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\swusbflt.sys 2013-06-02 09:23 - 2001-08-17 13:57 - 00006784 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\smbhc.sys 2013-06-02 09:23 - 2001-08-17 13:56 - 00007552 ___AC (Sony Corporation) C:\Windows\System32\dllcache\sonypvu1.sys 2013-06-02 09:23 - 2001-08-17 13:53 - 00009600 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\sonymc.sys 2013-06-02 09:23 - 2001-08-17 13:53 - 00007040 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\snyaitmc.sys 2013-06-02 09:23 - 2001-08-17 13:51 - 00061824 ___AC (Perle Systems Ltd.) C:\Windows\System32\dllcache\speed.sys 2013-06-02 09:23 - 2001-08-17 13:50 - 00103936 ___AC (Perle Systems Ltd. ) C:\Windows\System32\dllcache\sx.sys 2013-06-02 09:23 - 2001-08-17 12:51 - 00058368 ___AC (Silicon Motion Inc.) C:\Windows\System32\dllcache\smiminib.sys 2013-06-02 09:23 - 2001-08-17 12:51 - 00037040 ___AC (Sony Corporation) C:\Windows\System32\dllcache\sonypi.sys 2013-06-02 09:23 - 2001-08-17 12:51 - 00020752 ___AC (Sony Corporation) C:\Windows\System32\dllcache\sonync.sys 2013-06-02 09:23 - 2001-08-17 12:50 - 00104064 ___AC (Silicon Integrated Systems Corporation) C:\Windows\System32\dllcache\sisgrp.sys 2013-06-02 09:23 - 2001-08-17 12:50 - 00101760 ___AC (Silicon Integrated Systems Corporation) C:\Windows\System32\dllcache\sis300ip.sys 2013-06-02 09:23 - 2001-08-17 12:50 - 00068608 ___AC (Silicon Integrated Systems Corporation) C:\Windows\System32\dllcache\sis6306p.sys 2013-06-02 09:23 - 2001-08-17 12:50 - 00050432 ___AC (Silicon Integrated Systems Corporation) C:\Windows\System32\dllcache\sisv.sys 2013-06-02 09:23 - 2001-08-17 12:12 - 00091294 ___AC (SysKonnect, a business unit of Schneider & Koch & Co. Datensysteme GmbH.) C:\Windows\System32\dllcache\skfpwin.sys 2013-06-02 09:23 - 2001-08-17 12:12 - 00025034 ___AC (SMC Networks, Inc.) C:\Windows\System32\dllcache\smcpwr2n.sys 2013-06-02 09:23 - 2001-08-17 12:12 - 00024576 ___AC (SMC Networks, Inc.) C:\Windows\System32\dllcache\smc8000n.sys 2013-06-02 09:23 - 2001-08-17 12:11 - 00048736 ___AC (3Com) C:\Windows\System32\dllcache\srwlnd5.sys 2013-06-02 09:22 - 2008-04-14 04:22 - 00029696 ___AC (Ricoh Co., Ltd.) C:\Windows\System32\dllcache\rw450ext.dll 2013-06-02 09:22 - 2008-04-14 04:22 - 00027648 ___AC (Ricoh Co., Ltd.) C:\Windows\System32\dllcache\rw430ext.dll 2013-06-02 09:22 - 2008-04-14 03:53 - 00079360 ___AC (Comtrol Corporation) C:\Windows\System32\dllcache\rocket.sys 2013-06-02 09:22 - 2008-04-13 20:45 - 00011520 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\scsiscan.sys 2013-06-02 09:22 - 2008-04-13 20:40 - 00043904 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\sbp2port.sys 2013-06-02 09:22 - 2004-08-03 23:31 - 00020992 ___AC (Realtek Semiconductor Corporation) C:\Windows\System32\dllcache\rtl8139.sys 2013-06-02 09:22 - 2001-08-18 04:54 - 00495616 ___AC (Creative Technology Ltd.) C:\Windows\System32\dllcache\sblfx.dll 2013-06-02 09:22 - 2001-08-18 04:54 - 00086097 ___AC () C:\Windows\System32\dllcache\reslog32.dll 2013-06-02 09:22 - 2001-08-18 04:54 - 00083968 ___AC (Ricoh Co., Ltd.) C:\Windows\System32\dllcache\rwia450.dll 2013-06-02 09:22 - 2001-08-18 04:54 - 00081408 ___AC (Ricoh Co., Ltd.) C:\Windows\System32\dllcache\rwia430.dll 2013-06-02 09:22 - 2001-08-18 04:54 - 00041472 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\qvusd.dll 2013-06-02 09:22 - 2001-08-18 04:54 - 00010752 ___AC (Brother Industries, Ltd.) C:\Windows\System32\dllcache\rsmgrstr.dll 2013-06-02 09:22 - 2001-08-18 04:52 - 00386560 ___AC (Trident Microsystems Inc.) C:\Windows\System32\dllcache\sgiul50.dll 2013-06-02 09:22 - 2001-08-18 04:52 - 00245632 ___AC (S3 Graphics, Inc.) C:\Windows\System32\dllcache\s3savmx.dll 2013-06-02 09:22 - 2001-08-18 04:52 - 00210496 ___AC (S3 Incorporated) C:\Windows\System32\dllcache\s3mvirge.dll 2013-06-02 09:22 - 2001-08-18 04:52 - 00198400 ___AC (S3 Incorporated) C:\Windows\System32\dllcache\s3sav4.dll 2013-06-02 09:22 - 2001-08-18 04:52 - 00182272 ___AC (S3 Incorporated) C:\Windows\System32\dllcache\s3mt3d.dll 2013-06-02 09:22 - 2001-08-18 04:52 - 00179264 ___AC (S3 Incorporated) C:\Windows\System32\dllcache\s3sav3d.dll 2013-06-02 09:22 - 2001-08-18 04:52 - 00062496 ___AC (S3 Incorporated) C:\Windows\System32\dllcache\s3mtrio.dll 2013-06-02 09:22 - 2001-08-18 04:35 - 00161888 ___AC (Micro Systemation) C:\Windows\System32\dllcache\sgsmusb.sys 2013-06-02 09:22 - 2001-08-18 04:34 - 00024192 ___AC (OMNIKEY AG) C:\Windows\System32\dllcache\sccmn50m.sys 2013-06-02 09:22 - 2001-08-18 04:34 - 00018176 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\sermouse.sys 2013-06-02 09:22 - 2001-08-18 04:34 - 00017792 ___AC (SCM Microsystems) C:\Windows\System32\dllcache\scr111.sys 2013-06-02 09:22 - 2001-08-18 04:34 - 00016896 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\scmstcs.sys 2013-06-02 09:22 - 2001-08-18 04:34 - 00007040 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\serscan.sys 2013-06-02 09:22 - 2001-08-18 04:33 - 00899658 ___AC (Xircom, Inc.) C:\Windows\System32\dllcache\r2mdkxga.sys 2013-06-02 09:22 - 2001-08-18 04:33 - 00715242 ___AC (Xircom, Inc.) C:\Windows\System32\dllcache\r2mdmkxx.sys 2013-06-02 09:22 - 2001-08-17 13:57 - 00065664 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\s3legacy.sys 2013-06-02 09:22 - 2001-08-17 13:53 - 00006912 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\seaddsmc.sys 2013-06-02 09:22 - 2001-08-17 13:53 - 00003328 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\qv2kux.sys 2013-06-02 09:22 - 2001-08-17 13:52 - 00011648 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\scsiprnt.sys 2013-06-02 09:22 - 2001-08-17 13:51 - 00023936 ___AC (OMNIKEY AG) C:\Windows\System32\dllcache\sccmusbm.sys 2013-06-02 09:22 - 2001-08-17 13:51 - 00019584 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\rasirda.sys 2013-06-02 09:22 - 2001-08-17 12:51 - 00098080 ___AC (Trident Microsystems Inc.) C:\Windows\System32\dllcache\sgiulnt5.sys 2013-06-02 09:22 - 2001-08-17 12:50 - 00166720 ___AC (S3 Incorporated) C:\Windows\System32\dllcache\s3m.sys 2013-06-02 09:22 - 2001-08-17 12:50 - 00077824 ___AC (S3 Incorporated) C:\Windows\System32\dllcache\s3sav4m.sys 2013-06-02 09:22 - 2001-08-17 12:50 - 00075392 ___AC (S3 Graphics, Inc.) C:\Windows\System32\dllcache\s3savmxm.sys 2013-06-02 09:22 - 2001-08-17 12:50 - 00061504 ___AC (S3 Incorporated) C:\Windows\System32\dllcache\s3sav3dm.sys 2013-06-02 09:22 - 2001-08-17 12:50 - 00041216 ___AC (S3 Incorporated) C:\Windows\System32\dllcache\s3mt3d.sys 2013-06-02 09:22 - 2001-08-17 12:19 - 00036480 ___AC (Creative Technology Ltd.) C:\Windows\System32\dllcache\sfmanm.sys 2013-06-02 09:22 - 2001-08-17 12:19 - 00030720 ___AC (Conexant Systems Inc.) C:\Windows\System32\dllcache\rthwcls.sys 2013-06-02 09:22 - 2001-08-17 12:19 - 00003840 ___AC (Conexant Systems Inc.) C:\Windows\System32\dllcache\rpfun.sys 2013-06-02 09:22 - 2001-08-17 12:12 - 00037563 ___AC (RadioLAN) C:\Windows\System32\dllcache\rlnet5.sys 2013-06-02 09:22 - 2001-08-17 12:12 - 00019017 ___AC (Realtek Semiconductor Corporation) C:\Windows\System32\dllcache\rtl8029.sys 2013-06-02 09:22 - 2001-07-21 14:29 - 00018400 ___AC (Micro Systemation) C:\Windows\System32\dllcache\sgsmld.sys 2013-06-02 09:21 - 2008-04-14 04:22 - 00159232 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\ptpusd.dll 2013-06-02 09:21 - 2008-04-14 04:21 - 00259328 ___AC (Microsoft Corp., 3Dlabs Inc. Ltd.) C:\Windows\System32\dllcache\perm3dd.dll 2013-06-02 09:21 - 2008-04-14 04:21 - 00211584 ___AC (Microsoft Corp., 3Dlabs Inc. Ltd.) C:\Windows\System32\dllcache\perm2dll.dll 2013-06-02 09:21 - 2008-04-13 20:44 - 00028032 ___AC (Microsoft Corp., 3Dlabs Inc. Ltd.) C:\Windows\System32\dllcache\perm3.sys 2013-06-02 09:21 - 2008-04-13 20:44 - 00027904 ___AC (Microsoft Corp., 3Dlabs Inc. Ltd.) C:\Windows\System32\dllcache\perm2.sys 2013-06-02 09:21 - 2008-04-13 20:41 - 00017664 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\ppa3.sys 2013-06-02 09:21 - 2008-04-13 20:40 - 00008832 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\powerfil.sys 2013-06-02 09:21 - 2008-04-13 20:40 - 00006016 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\qic157.sys 2013-06-02 09:21 - 2004-08-03 23:31 - 00029502 ___AC (Marconi Communications, Inc.) C:\Windows\System32\dllcache\pca200e.sys 2013-06-02 09:21 - 2004-08-03 23:06 - 00169984 ___AC (Cisco Systems) C:\Windows\System32\dllcache\pcx500.sys 2013-06-02 09:21 - 2001-08-18 04:55 - 00105984 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\phdsext.ax 2013-06-02 09:21 - 2001-08-18 04:55 - 00086016 ___AC (PCtel, Inc.) C:\Windows\System32\dllcache\pctspk.exe 2013-06-02 09:21 - 2001-08-18 04:55 - 00039424 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\ovcoms.exe 2013-06-02 09:21 - 2001-08-18 04:54 - 00121344 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\phvfwext.dll 2013-06-02 09:21 - 2001-08-18 04:54 - 00116736 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\ovcodec2.dll 2013-06-02 09:21 - 2001-08-18 04:54 - 00044544 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\ovui2.dll 2013-06-02 09:21 - 2001-08-18 04:54 - 00043520 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\ovui2rc.dll 2013-06-02 09:21 - 2001-08-18 04:54 - 00035328 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\psisload.dll 2013-06-02 09:21 - 2001-08-18 04:54 - 00020480 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\ovcomc.dll 2013-06-02 09:21 - 2001-08-18 04:54 - 00016896 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\philcam1.dll 2013-06-02 09:21 - 2001-08-18 04:54 - 00005632 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\ptpusb.dll 2013-06-02 09:21 - 2001-08-18 04:32 - 00016384 ___AC (SCM Microsystems, Inc.) C:\Windows\System32\dllcache\pscr.sys 2013-06-02 09:21 - 2001-08-18 04:30 - 00054730 ___AC (Ositech Communications, Inc.) C:\Windows\System32\dllcache\otcsercb.sys 2013-06-02 09:21 - 2001-08-18 04:30 - 00044105 ___AC C:\Windows\System32\dllcache\otceth5.sys 2013-06-02 09:21 - 2001-08-17 14:07 - 00027296 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\perc2.sys 2013-06-02 09:21 - 2001-08-17 14:07 - 00019840 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\philtune.sys 2013-06-02 09:21 - 2001-08-17 14:07 - 00005504 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\perc2hib.sys 2013-06-02 09:21 - 2001-08-17 14:05 - 00351616 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\ovcodek2.sys 2013-06-02 09:21 - 2001-08-17 14:05 - 00048000 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\ovcam2.sys 2013-06-02 09:21 - 2001-08-17 14:05 - 00031872 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\ovce.sys 2013-06-02 09:21 - 2001-08-17 14:05 - 00028032 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\ovcd.sys 2013-06-02 09:21 - 2001-08-17 14:05 - 00025216 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\ovsound2.sys 2013-06-02 09:21 - 2001-08-17 14:05 - 00025088 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\ovca.sys 2013-06-02 09:21 - 2001-08-17 14:04 - 00173696 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\philcam2.sys 2013-06-02 09:21 - 2001-08-17 14:04 - 00092416 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\phildec.sys 2013-06-02 09:21 - 2001-08-17 14:04 - 00075776 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\philcam1.sys 2013-06-02 09:21 - 2001-08-17 13:53 - 00017792 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\ppa.sys 2013-06-02 09:21 - 2001-08-17 13:53 - 00007168 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\pnrmc.sys 2013-06-02 09:21 - 2001-08-17 13:52 - 00049024 ___AC (QLogic Corporation) C:\Windows\System32\dllcache\ql1280.sys 2013-06-02 09:21 - 2001-08-17 13:52 - 00045312 ___AC (QLogic Corporation) C:\Windows\System32\dllcache\ql12160.sys 2013-06-02 09:21 - 2001-08-17 13:52 - 00040448 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\ql1240.sys 2013-06-02 09:21 - 2001-08-17 13:52 - 00040320 ___AC (QLogic Corporation) C:\Windows\System32\dllcache\ql1080.sys 2013-06-02 09:21 - 2001-08-17 13:52 - 00033152 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\ql10wnt.sys 2013-06-02 09:21 - 2001-08-17 13:28 - 00130942 ___AC (PCTEL, INC.) C:\Windows\System32\dllcache\ptserlv.sys 2013-06-02 09:21 - 2001-08-17 13:28 - 00128286 ___AC (PCTEL, INC.) C:\Windows\System32\dllcache\ptserli.sys 2013-06-02 09:21 - 2001-08-17 13:28 - 00112574 ___AC (PCTEL, INC.) C:\Windows\System32\dllcache\ptserlp.sys 2013-06-02 09:21 - 2001-08-17 12:50 - 00198144 ___AC (NVIDIA Corporation) C:\Windows\System32\dllcache\nv3.sys 2013-06-02 09:21 - 2001-08-17 12:20 - 00054528 ___AC (Yamaha Corp.) C:\Windows\System32\dllcache\opl3sax.sys 2013-06-02 09:21 - 2001-08-17 12:12 - 00030495 ___AC (Linksys) C:\Windows\System32\dllcache\pc100nds.sys 2013-06-02 09:21 - 2001-08-17 12:12 - 00027209 ___AC (Ositech Communications, Inc.) C:\Windows\System32\dllcache\otc06x5.sys 2013-06-02 09:21 - 2001-08-17 12:12 - 00026153 ___AC (Linksys) C:\Windows\System32\dllcache\pcmlm56.sys 2013-06-02 09:21 - 2001-08-17 12:11 - 00035328 ___AC (AMD Inc.) C:\Windows\System32\dllcache\pcntpci5.sys 2013-06-02 09:21 - 2001-08-17 12:11 - 00030282 ___AC (AMD Inc.) C:\Windows\System32\dllcache\pcntn5hl.sys 2013-06-02 09:21 - 2001-08-17 12:11 - 00029769 ___AC (AMD Inc.) C:\Windows\System32\dllcache\pcntn5m.sys 2013-06-02 09:20 - 2008-04-13 20:54 - 00028672 ___AC (National Semiconductor Corporation) C:\Windows\System32\dllcache\nscirda.sys 2013-06-02 09:20 - 2008-04-13 20:46 - 00049024 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\mstape.sys 2013-06-02 09:20 - 2004-08-04 01:49 - 00132695 ___AC (802.11b) C:\Windows\System32\dllcache\netwlan5.sys 2013-06-02 09:20 - 2001-08-18 04:54 - 00020480 ___AC (Moxa Technologies Co., Ltd) C:\Windows\System32\dllcache\mxicfg.dll 2013-06-02 09:20 - 2001-08-18 04:54 - 00007168 ___AC (Moxa Technologies Co., Ltd) C:\Windows\System32\dllcache\mxport.dll 2013-06-02 09:20 - 2001-08-18 04:52 - 00123776 ___AC (NVIDIA Corporation) C:\Windows\System32\dllcache\nv3.dll 2013-06-02 09:20 - 2001-08-18 04:52 - 00091488 ___AC (Number Nine Visual Technology Corp.) C:\Windows\System32\dllcache\n9i3disp.dll 2013-06-02 09:20 - 2001-08-18 04:52 - 00060480 ___AC (NeoMagic Corporation) C:\Windows\System32\dllcache\neo20xx.dll 2013-06-02 09:20 - 2001-08-18 04:52 - 00059104 ___AC (Number Nine Visual Technology Corp.) C:\Windows\System32\dllcache\n9i128v2.dll 2013-06-02 09:20 - 2001-08-18 04:52 - 00035392 ___AC (Number Nine Visual Technology Corp.) C:\Windows\System32\dllcache\n9i128.dll 2013-06-02 09:20 - 2001-08-18 04:27 - 00009472 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\ntapm.sys 2013-06-02 09:20 - 2001-08-18 04:26 - 00065406 ___AC (Compaq Computer Corporation) C:\Windows\System32\dllcache\netflx3.sys 2013-06-02 09:20 - 2001-08-18 04:25 - 00130048 ___AC (Compaq Computer Corporation) C:\Windows\System32\dllcache\n100325.sys 2013-06-02 09:20 - 2001-08-18 04:25 - 00076288 ___AC (Moxa Technologies Co., Ltd.) C:\Windows\System32\dllcache\mxport.sys 2013-06-02 09:20 - 2001-08-18 04:25 - 00053279 ___AC (Compaq Computer Corporation) C:\Windows\System32\dllcache\n1000nt5.sys 2013-06-02 09:20 - 2001-08-18 04:25 - 00022144 ___AC (Moxa Technologies Co., Ltd.) C:\Windows\System32\dllcache\mxcard.sys 2013-06-02 09:20 - 2001-08-17 13:53 - 00007552 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\nsmmc.sys 2013-06-02 09:20 - 2001-08-17 13:49 - 00019968 ___AC (Macronix International Co., Ltd. ) C:\Windows\System32\dllcache\mxnic.sys 2013-06-02 09:20 - 2001-08-17 13:49 - 00015872 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\ne2000.sys 2013-06-02 09:20 - 2001-08-17 13:48 - 00012416 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\msriffwv.sys 2013-06-02 09:20 - 2001-08-17 12:50 - 00103296 ___AC (Matrox Graphics Inc) C:\Windows\System32\dllcache\mtxvideo.sys 2013-06-02 09:20 - 2001-08-17 12:50 - 00039264 ___AC (NeoMagic Corporation) C:\Windows\System32\dllcache\neo20xx.sys 2013-06-02 09:20 - 2001-08-17 12:50 - 00033088 ___AC (Number Nine Visual Technology Corp.) C:\Windows\System32\dllcache\n9i128v2.sys 2013-06-02 09:20 - 2001-08-17 12:50 - 00027936 ___AC (Number Nine Visual Technology Corp.) C:\Windows\System32\dllcache\n9i3d.sys 2013-06-02 09:20 - 2001-08-17 12:50 - 00013664 ___AC (Number Nine Visual Technology Corp.) C:\Windows\System32\dllcache\n9i128.sys 2013-06-02 09:20 - 2001-08-17 12:49 - 00051552 ___AC (Kensington Technology Group) C:\Windows\System32\dllcache\ntgrip.sys 2013-06-02 09:20 - 2001-08-17 12:20 - 00126080 ___AC (NeoMagic Corporation) C:\Windows\System32\dllcache\nm5a2wdm.sys 2013-06-02 09:20 - 2001-08-17 12:20 - 00087040 ___AC (NeoMagic Corporation) C:\Windows\System32\dllcache\nm6wdm.sys 2013-06-02 09:20 - 2001-08-17 12:12 - 00032840 ___AC (NETGEAR Corporation.) C:\Windows\System32\dllcache\ngrpci.sys 2013-06-02 09:19 - 2008-04-13 20:54 - 00022016 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\msircomm.sys 2013-06-02 09:19 - 2008-04-13 20:46 - 00051200 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\msdv.sys 2013-06-02 09:19 - 2001-08-17 14:02 - 00035200 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\msgame.sys 2013-06-02 09:19 - 2001-08-17 14:00 - 00002944 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\msmpu401.sys 2013-06-02 09:19 - 2001-08-17 13:52 - 00017280 ___AC (American Megatrends Inc.) C:\Windows\System32\dllcache\mraid35x.sys 2013-06-02 09:19 - 2001-08-17 13:48 - 00006016 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\msfsio.sys 2013-06-02 09:18 - 2008-04-14 04:22 - 00254464 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\kdsusd.dll 2013-06-02 09:18 - 2008-04-14 04:22 - 00048640 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\kdsui.dll 2013-06-02 09:18 - 2008-04-13 20:41 - 00026112 ___AC (Sony Corporation) C:\Windows\System32\dllcache\memstpci.sys 2013-06-02 09:18 - 2008-04-13 20:40 - 00034688 ___AC (Toshiba Corp.) C:\Windows\System32\dllcache\lbrtfdc.sys 2013-06-02 09:18 - 2008-04-13 20:40 - 00007040 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\ltotape.sys 2013-06-02 09:18 - 2004-08-04 01:47 - 00607196 ___AC (LT) C:\Windows\System32\dllcache\ltmdmnt.sys 2013-06-02 09:18 - 2004-08-04 01:47 - 00422016 ___AC (LT) C:\Windows\System32\dllcache\ltmdmntt.sys 2013-06-02 09:18 - 2004-08-03 23:39 - 00020864 ___AC (Logitech Inc.) C:\Windows\System32\dllcache\lwadihid.sys 2013-06-02 09:18 - 2001-08-18 04:53 - 00059904 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\m3092dc.dll 2013-06-02 09:18 - 2001-08-18 04:53 - 00059392 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\m3091dc.dll 2013-06-02 09:18 - 2001-08-18 04:53 - 00047616 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\memgrp.dll 2013-06-02 09:18 - 2001-08-18 04:53 - 00037376 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\kousd.dll 2013-06-02 09:18 - 2001-08-18 04:52 - 00235648 ___AC (Matrox Graphics Inc.) C:\Windows\System32\dllcache\mgaud.dll 2013-06-02 09:18 - 2001-08-18 04:22 - 00320384 ___AC (Matrox Graphics Inc.) C:\Windows\System32\dllcache\mgaum.sys 2013-06-02 09:18 - 2001-08-18 04:21 - 00164970 ___AC (Madge Networks Ltd) C:\Windows\System32\dllcache\mdgndis5.sys 2013-06-02 09:18 - 2001-08-18 04:20 - 00728298 ___AC (Xircom, Inc.) C:\Windows\System32\dllcache\ltck000c.sys 2013-06-02 09:18 - 2001-08-18 04:20 - 00577226 ___AC (LT) C:\Windows\System32\dllcache\ltmdmntl.sys 2013-06-02 09:18 - 2001-08-18 04:19 - 00026506 ___AC (SMSC) C:\Windows\System32\dllcache\lanepic5.sys 2013-06-02 09:18 - 2001-08-18 04:19 - 00016256 ___AC (Litronic Industries) C:\Windows\System32\dllcache\lit220p.sys 2013-06-02 09:18 - 2001-08-17 13:58 - 00008320 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\memcard.sys 2013-06-02 09:18 - 2001-08-17 13:57 - 00016128 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\modemcsa.sys 2013-06-02 09:18 - 2001-08-17 13:53 - 00004992 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\loop.sys 2013-06-02 09:18 - 2001-08-17 13:52 - 00007424 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\mammoth.sys 2013-06-02 09:18 - 2001-08-17 13:52 - 00006528 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\miniqic.sys 2013-06-02 09:18 - 2001-08-17 13:28 - 00797500 ___AC (LT) C:\Windows\System32\dllcache\ltsmt.sys 2013-06-02 09:18 - 2001-08-17 12:49 - 00022848 ___AC (Logitech Inc.) C:\Windows\System32\dllcache\lwusbhid.sys 2013-06-02 09:18 - 2001-08-17 12:19 - 00048768 ___AC (ESS Technology, Inc.) C:\Windows\System32\dllcache\maestro.sys 2013-06-02 09:18 - 2001-08-17 12:12 - 00070730 ___AC (Linksys Group, Inc.) C:\Windows\System32\dllcache\lne100tx.sys 2013-06-02 09:18 - 2001-08-17 12:12 - 00020573 ___AC (The Linksts Group ) C:\Windows\System32\dllcache\lne100.sys 2013-06-02 09:18 - 2001-08-17 12:12 - 00019016 ___AC (Kingston Technology Company ) C:\Windows\System32\dllcache\ktc111.sys 2013-06-02 09:18 - 2001-08-17 12:11 - 00025065 ___AC (D-Link) C:\Windows\System32\dllcache\lmndis3.sys 2013-06-02 09:17 - 2008-04-14 03:57 - 00005504 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\intelide.sys 2013-06-02 09:17 - 2008-04-13 20:54 - 00088192 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\irda.sys 2013-06-02 09:17 - 2001-08-18 04:53 - 00372824 ___AC (Xircom) C:\Windows\System32\dllcache\iconf32.dll 2013-06-02 09:17 - 2001-08-18 04:53 - 00091648 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\icam4com.dll 2013-06-02 09:17 - 2001-08-18 04:53 - 00090200 ___AC (Perle Systems Ltd. ) C:\Windows\System32\dllcache\io8ports.dll 2013-06-02 09:17 - 2001-08-18 04:53 - 00062976 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\icam4ext.dll 2013-06-02 09:17 - 2001-08-18 04:53 - 00045056 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\icam5com.dll 2013-06-02 09:17 - 2001-08-18 04:53 - 00026624 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\icam3ext.dll 2013-06-02 09:17 - 2001-08-18 04:53 - 00020992 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\icam5ext.dll 2013-06-02 09:17 - 2001-08-18 04:51 - 00010240 ___AC (IBM Corporation) C:\Windows\System32\dllcache\ibmsgnet.dll 2013-06-02 09:17 - 2001-08-18 04:18 - 00013440 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\inport.sys 2013-06-02 09:17 - 2001-08-17 14:06 - 00154496 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\icam4usb.sys 2013-06-02 09:17 - 2001-08-17 14:06 - 00100992 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\icam5usb.sys 2013-06-02 09:17 - 2001-08-17 14:06 - 00038528 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\ibmvcap.sys 2013-06-02 09:17 - 2001-08-17 14:05 - 00141056 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\icam3.sys 2013-06-02 09:17 - 2001-08-17 13:52 - 00016000 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\ini910u.sys 2013-06-02 09:17 - 2001-08-17 13:51 - 00018688 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\irsir.sys 2013-06-02 09:17 - 2001-08-17 13:50 - 00038784 ___AC (Perle Systems Ltd. ) C:\Windows\System32\dllcache\io8.sys 2013-06-02 09:17 - 2001-08-17 13:49 - 00026624 ___AC (SigmaTel, Inc.) C:\Windows\System32\dllcache\irstusb.sys 2013-06-02 09:17 - 2001-08-17 13:49 - 00023552 ___AC (MKNet Corporation) C:\Windows\System32\dllcache\irmk7.sys 2013-06-02 09:17 - 2001-08-17 12:12 - 00109085 ___AC (IBM Corporation) C:\Windows\System32\dllcache\ibmtrp.sys 2013-06-02 09:17 - 2001-08-17 12:12 - 00100936 ___AC (IBM Corporation) C:\Windows\System32\dllcache\ibmtok.sys 2013-06-02 09:17 - 2001-08-17 12:12 - 00045632 ___AC (Interphase (R) Corporation a Windows (R) 2000 DDK Driver Provider) C:\Windows\System32\dllcache\ip5515.sys 2013-06-02 09:17 - 2001-08-17 12:11 - 00028700 ___AC (IBM Corp.) C:\Windows\System32\dllcache\ibmexmp.sys 2013-06-02 09:16 - 2008-04-14 04:22 - 00702845 ___AC (Intel(R) Corporation) C:\Windows\System32\dllcache\i81xdnt5.dll 2013-06-02 09:16 - 2008-04-14 03:54 - 00028672 ___AC (Gemplus) C:\Windows\System32\dllcache\grserial.sys 2013-06-02 09:16 - 2008-04-13 20:45 - 00059136 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\gckernel.sys 2013-06-02 09:16 - 2008-04-13 20:41 - 00018560 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\i2omp.sys 2013-06-02 09:16 - 2008-04-13 20:41 - 00008576 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\i2omgmt.sys 2013-06-02 09:16 - 2008-04-13 20:36 - 00020352 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\hidbatt.sys 2013-06-02 09:16 - 2004-08-03 23:29 - 00161020 ___AC (Intel(R) Corporation) C:\Windows\System32\dllcache\i81xnt5.sys 2013-06-02 09:16 - 2001-08-18 04:53 - 00324608 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\hpojwia.dll 2013-06-02 09:16 - 2001-08-18 04:53 - 00165888 ___AC () C:\Windows\System32\dllcache\hpgt53.dll 2013-06-02 09:16 - 2001-08-18 04:53 - 00126976 ___AC (Hewlett Packard) C:\Windows\System32\dllcache\hpgt34tk.dll 2013-06-02 09:16 - 2001-08-18 04:53 - 00123392 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\hpgt21tk.dll 2013-06-02 09:16 - 2001-08-18 04:53 - 00119296 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\hpdigwia.dll 2013-06-02 09:16 - 2001-08-18 04:53 - 00101376 ___AC () C:\Windows\System32\dllcache\hpgt34.dll 2013-06-02 09:16 - 2001-08-18 04:53 - 00093696 ___AC () C:\Windows\System32\dllcache\hpgt42.dll 2013-06-02 09:16 - 2001-08-18 04:53 - 00089088 ___AC () C:\Windows\System32\dllcache\hpgt33.dll 2013-06-02 09:16 - 2001-08-18 04:53 - 00083968 ___AC () C:\Windows\System32\dllcache\hpgt21.dll 2013-06-02 09:16 - 2001-08-18 04:53 - 00068608 ___AC (Avisioin) C:\Windows\System32\dllcache\hpgt53tk.dll 2013-06-02 09:16 - 2001-08-18 04:53 - 00048128 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\hpgt33tk.dll 2013-06-02 09:16 - 2001-08-18 04:53 - 00032768 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\hpgtmcro.dll 2013-06-02 09:16 - 2001-08-18 04:53 - 00031232 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\hpgt42tk.dll 2013-06-02 09:16 - 2001-08-18 04:53 - 00019456 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\hr1w.dll 2013-06-02 09:16 - 2001-08-18 04:53 - 00013312 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\hpsjmcro.dll 2013-06-02 09:16 - 2001-08-18 04:53 - 00009759 ___AC (Conexant) C:\Windows\System32\dllcache\hsf_inst.dll 2013-06-02 09:16 - 2001-08-18 04:52 - 01733120 ___AC (Matrox Graphics Inc.) C:\Windows\System32\dllcache\g400d.dll 2013-06-02 09:16 - 2001-08-18 04:52 - 00470144 ___AC (Matrox Graphics Inc.) C:\Windows\System32\dllcache\g200d.dll 2013-06-02 09:16 - 2001-08-18 04:52 - 00353184 ___AC (Intel Corporation) C:\Windows\System32\dllcache\i740dnt5.dll 2013-06-02 09:16 - 2001-08-18 04:33 - 00908352 ___AC (Conexant) C:\Windows\System32\dllcache\hcf_msft.sys 2013-06-02 09:16 - 2001-08-18 04:33 - 00322432 ___AC (Matrox Graphics Inc.) C:\Windows\System32\dllcache\g400m.sys 2013-06-02 09:16 - 2001-08-18 04:33 - 00320384 ___AC (Matrox Graphics Inc.) C:\Windows\System32\dllcache\g200m.sys 2013-06-02 09:16 - 2001-08-18 04:33 - 00082560 ___AC (Gemplus) C:\Windows\System32\dllcache\grclass.sys 2013-06-02 09:16 - 2001-08-18 04:33 - 00017792 ___AC (Gemplus) C:\Windows\System32\dllcache\gpr400.sys 2013-06-02 09:16 - 2001-08-17 14:07 - 00025952 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\hpn.sys 2013-06-02 09:16 - 2001-08-17 14:02 - 00008576 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\hidgame.sys 2013-06-02 09:16 - 2001-08-17 14:02 - 00002688 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\hidswvd.sys 2013-06-02 09:16 - 2001-08-17 13:52 - 00005760 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\hpt4qic.sys 2013-06-02 09:16 - 2001-08-17 13:28 - 00542879 ___AC (Conexant) C:\Windows\System32\dllcache\hsf_msft.sys 2013-06-02 09:16 - 2001-08-17 13:28 - 00488383 ___AC (Conexant) C:\Windows\System32\dllcache\hsf_v124.sys 2013-06-02 09:16 - 2001-08-17 13:28 - 00391199 ___AC (Conexant) C:\Windows\System32\dllcache\hsf_k56k.sys 2013-06-02 09:16 - 2001-08-17 13:28 - 00289887 ___AC (Conexant) C:\Windows\System32\dllcache\hsf_fall.sys 2013-06-02 09:16 - 2001-08-17 13:28 - 00199711 ___AC (Conexant) C:\Windows\System32\dllcache\hsf_faxx.sys 2013-06-02 09:16 - 2001-08-17 13:28 - 00150239 ___AC (Conexant) C:\Windows\System32\dllcache\hsf_amos.sys 2013-06-02 09:16 - 2001-08-17 13:28 - 00115807 ___AC (Conexant) C:\Windows\System32\dllcache\hsf_fsks.sys 2013-06-02 09:16 - 2001-08-17 13:28 - 00073279 ___AC (Conexant) C:\Windows\System32\dllcache\hsf_spkp.sys 2013-06-02 09:16 - 2001-08-17 13:28 - 00067167 ___AC (Conexant) C:\Windows\System32\dllcache\hsf_bsc2.sys 2013-06-02 09:16 - 2001-08-17 13:28 - 00057471 ___AC (Conexant) C:\Windows\System32\dllcache\hsf_samp.sys 2013-06-02 09:16 - 2001-08-17 13:28 - 00050751 ___AC (Conexant) C:\Windows\System32\dllcache\hsf_tone.sys 2013-06-02 09:16 - 2001-08-17 13:28 - 00044863 ___AC (Conexant) C:\Windows\System32\dllcache\hsf_soar.sys 2013-06-02 09:16 - 2001-08-17 12:49 - 00058592 ___AC (Intel Corporation) C:\Windows\System32\dllcache\i740nt5.sys 2013-06-02 09:16 - 2001-08-17 12:15 - 00454912 ___AC (AVM GmbH) C:\Windows\System32\dllcache\fxusbase.sys 2013-06-02 09:15 - 2004-08-03 23:32 - 00137088 ___AC (ESS Technology, Inc.) C:\Windows\System32\dllcache\essm2e.sys 2013-06-02 09:15 - 2004-08-03 23:31 - 00034173 ___AC (Marconi Communications, Inc.) C:\Windows\System32\dllcache\forehe.sys 2013-06-02 09:15 - 2001-08-18 04:54 - 00062464 ___AC (Equinox Systems Inc.) C:\Windows\System32\dllcache\eqnloop.exe 2013-06-02 09:15 - 2001-08-18 04:54 - 00053760 ___AC (Equinox Systems Inc.) C:\Windows\System32\dllcache\eqndiag.exe 2013-06-02 09:15 - 2001-08-18 04:54 - 00052224 ___AC (Equinox Systems Inc.) C:\Windows\System32\dllcache\eqnlogr.exe 2013-06-02 09:15 - 2001-08-18 04:53 - 00092160 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\fuusd.dll 2013-06-02 09:15 - 2001-08-18 04:53 - 00071680 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\fnfilter.dll 2013-06-02 09:15 - 2001-08-18 04:53 - 00046080 ___AC (SEIKO EPSON CORP.) C:\Windows\System32\dllcache\esunib.dll 2013-06-02 09:15 - 2001-08-18 04:53 - 00046080 ___AC (SEIKO EPSON CORP.) C:\Windows\System32\dllcache\esuni.dll 2013-06-02 09:15 - 2001-08-18 04:53 - 00043008 ___AC (SEIKO EPSON CORP.) C:\Windows\System32\dllcache\esucm.dll 2013-06-02 09:15 - 2001-08-18 04:53 - 00034816 ___AC (SEIKO EPSON CORP.) C:\Windows\System32\dllcache\esuimg.dll 2013-06-02 09:15 - 2001-08-18 04:31 - 00629952 ___AC (Equinox Systems Inc.) C:\Windows\System32\dllcache\eqn.sys 2013-06-02 09:15 - 2001-08-18 04:31 - 00595999 ___AC (ESS Technology, Inc.) C:\Windows\System32\dllcache\es56cvmp.sys 2013-06-02 09:15 - 2001-08-18 04:31 - 00594558 ___AC (ESS Technology, Inc.) C:\Windows\System32\dllcache\es56hpi.sys 2013-06-02 09:15 - 2001-08-18 04:31 - 00347870 ___AC (ESS Technology, Inc.) C:\Windows\System32\dllcache\es56tpi.sys 2013-06-02 09:15 - 2001-08-18 04:30 - 00634198 ___AC (3Com Corporation) C:\Windows\System32\dllcache\el656ct5.sys 2013-06-02 09:15 - 2001-08-18 04:30 - 00455711 ___AC (3Com Corporation) C:\Windows\System32\dllcache\el985n51.sys 2013-06-02 09:15 - 2001-08-18 04:30 - 00241270 ___AC (3Com Corporation) C:\Windows\System32\dllcache\el656se5.sys 2013-06-02 09:15 - 2001-08-18 04:30 - 00176128 ___AC (3Com Corporation) C:\Windows\System32\dllcache\el99xn51.sys 2013-06-02 09:15 - 2001-08-18 04:30 - 00153631 ___AC (3Com Corporation) C:\Windows\System32\dllcache\el90xnd5.sys 2013-06-02 09:15 - 2001-08-18 04:30 - 00044103 ___AC (3Com Corporation) C:\Windows\System32\dllcache\el515.sys 2013-06-02 09:15 - 2001-08-18 04:29 - 00117760 ___AC (Intel Corporation) C:\Windows\System32\dllcache\e100b325.sys 2013-06-02 09:15 - 2001-08-18 04:29 - 00051743 ___AC (Intel Corporation) C:\Windows\System32\dllcache\e1000nt5.sys 2013-06-02 09:15 - 2001-08-18 04:26 - 00023936 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\dot4usb.sys 2013-06-02 09:15 - 2001-08-17 14:07 - 00020192 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\dpti2o.sys 2013-06-02 09:15 - 2001-08-17 13:53 - 00007296 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\elmsmc.sys 2013-06-02 09:15 - 2001-08-17 13:52 - 00007040 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\exabyte2.sys 2013-06-02 09:15 - 2001-08-17 13:50 - 00144896 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\epcfw2k.sys 2013-06-02 09:15 - 2001-08-17 13:50 - 00114944 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\epstw2k.sys 2013-06-02 09:15 - 2001-08-17 13:47 - 00008704 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\dot4scan.sys 2013-06-02 09:15 - 2001-08-17 12:20 - 00334208 ___AC (Yamaha Corp.) C:\Windows\System32\dllcache\ds1wdm.sys 2013-06-02 09:15 - 2001-08-17 12:19 - 00283904 ___AC (Creative Technology Ltd.) C:\Windows\System32\dllcache\emu10k1m.sys 2013-06-02 09:15 - 2001-08-17 12:19 - 00174464 ___AC (ESS Technology, Inc.) C:\Windows\System32\dllcache\es198x.sys 2013-06-02 09:15 - 2001-08-17 12:19 - 00072192 ___AC (ESS Technology Inc.) C:\Windows\System32\dllcache\es1969.sys 2013-06-02 09:15 - 2001-08-17 12:19 - 00063360 ___AC (ESS Technology, Inc.) C:\Windows\System32\dllcache\ess.sys 2013-06-02 09:15 - 2001-08-17 12:19 - 00040704 ___AC (Creative Technology Ltd.) C:\Windows\System32\dllcache\es1371mp.sys 2013-06-02 09:15 - 2001-08-17 12:19 - 00037120 ___AC (Creative Technology Ltd.) C:\Windows\System32\dllcache\es1370mp.sys 2013-06-02 09:15 - 2001-08-17 12:15 - 00455680 ___AC (AVM GmbH) C:\Windows\System32\dllcache\fus2base.sys 2013-06-02 09:15 - 2001-08-17 12:15 - 00455296 ___AC (AVM GmbH) C:\Windows\System32\dllcache\fusbbase.sys 2013-06-02 09:15 - 2001-08-17 12:15 - 00442240 ___AC (AVM GmbH) C:\Windows\System32\dllcache\fpnpbase.sys 2013-06-02 09:15 - 2001-08-17 12:14 - 00444416 ___AC (AVM GmbH) C:\Windows\System32\dllcache\fpcibase.sys 2013-06-02 09:15 - 2001-08-17 12:14 - 00441728 ___AC (AVM GmbH) C:\Windows\System32\dllcache\fpcmbase.sys 2013-06-02 09:15 - 2001-08-17 12:13 - 00027165 ___AC (VIA Technologies, Inc. ) C:\Windows\System32\dllcache\fetnd5.sys 2013-06-02 09:15 - 2001-08-17 12:12 - 00028062 ___AC (National Semiconductor Coproration) C:\Windows\System32\dllcache\dp83820.sys 2013-06-02 09:15 - 2001-08-17 12:12 - 00024618 ___AC (NETGEAR) C:\Windows\System32\dllcache\fa410nd5.sys 2013-06-02 09:15 - 2001-08-17 12:12 - 00019594 ___AC (Intel Corporation) C:\Windows\System32\dllcache\e100isa4.sys 2013-06-02 09:15 - 2001-08-17 12:12 - 00018503 ___AC (Intel Corporation) C:\Windows\System32\dllcache\epro4.sys 2013-06-02 09:15 - 2001-08-17 12:12 - 00016998 ___AC (Intel Corporation) C:\Windows\System32\dllcache\ex10.sys 2013-06-02 09:15 - 2001-08-17 12:12 - 00016074 ___AC (NETGEAR Corp.) C:\Windows\System32\dllcache\fa312nd5.sys 2013-06-02 09:15 - 2001-08-17 12:11 - 00077386 ___AC (3Com Corporation) C:\Windows\System32\dllcache\el656nd5.sys 2013-06-02 09:15 - 2001-08-17 12:11 - 00070174 ___AC (3Com Corporation) |
|
02.07.2013, 15:33
| #25 |
| | Virus w32.SillyFdc seitdem Startdatei verändert? und Teil 2 C:\Windows\System32\dllcache\el98xn5.sys 2013-06-02 09:15 - 2001-08-17 12:11 - 00069194 ___AC (3Com Corporation) C:\Windows\System32\dllcache\el656cd5.sys 2013-06-02 09:15 - 2001-08-17 12:11 - 00066591 ___AC (3Com Corporation) C:\Windows\System32\dllcache\el90xbc5.sys 2013-06-02 09:15 - 2001-08-17 12:11 - 00012362 ___AC (FUJITSU LIMITED) C:\Windows\System32\dllcache\f3ab18xi.sys 2013-06-02 09:15 - 2001-08-17 12:11 - 00011850 ___AC (FUJITSU LIMITED) C:\Windows\System32\dllcache\f3ab18xj.sys 2013-06-02 09:15 - 2001-08-17 12:10 - 00069692 ___AC (3Com Corporation) C:\Windows\System32\dllcache\el575nd5.sys 2013-06-02 09:15 - 2001-08-17 12:10 - 00055999 ___AC (3Com Corporation) C:\Windows\System32\dllcache\el556nd5.sys 2013-06-02 09:15 - 2001-08-17 12:10 - 00026141 ___AC (3Com Corporation) C:\Windows\System32\dllcache\el589nd5.sys 2013-06-02 09:15 - 2001-08-17 12:10 - 00025159 ___AC (3Com Corporation) C:\Windows\System32\dllcache\elnk3.sys 2013-06-02 09:15 - 2001-08-17 12:10 - 00024653 ___AC (3Com Corporation) C:\Windows\System32\dllcache\el574nd4.sys 2013-06-02 09:15 - 2001-08-17 12:10 - 00022090 ___AC (3Com Corporation) C:\Windows\System32\dllcache\fem556n5.sys 2013-06-02 09:15 - 2001-08-17 12:10 - 00019996 ___AC (3Com Corporation) C:\Windows\System32\dllcache\em556n4.sys 2013-06-02 09:14 - 2008-04-14 04:22 - 00252928 ___AC (Comtrol® Corporation) C:\Windows\System32\dllcache\ctmasetp.dll 2013-06-02 09:14 - 2008-04-13 20:40 - 00008320 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\dlttape.sys 2013-06-02 09:14 - 2008-04-13 20:39 - 00206976 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\dot4.sys 2013-06-02 09:14 - 2008-04-13 20:36 - 00013952 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\cmbatt.sys 2013-06-02 09:14 - 2008-04-13 20:36 - 00010240 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\compbatt.sys 2013-06-02 09:14 - 2004-08-03 23:32 - 00048640 ___AC (Crystal Semiconductor Corp.) C:\Windows\System32\dllcache\cwrwdm.sys 2013-06-02 09:14 - 2001-08-18 04:54 - 00626717 ___AC (Digi International Inc.) C:\Windows\System32\dllcache\digiview.exe 2013-06-02 09:14 - 2001-08-18 04:54 - 00236060 ___AC (Eicon Technology) C:\Windows\System32\dllcache\ditrace.exe 2013-06-02 09:14 - 2001-08-18 04:54 - 00024064 ___AC (Creative Technology Ltd.) C:\Windows\System32\dllcache\devldr32.exe 2013-06-02 09:14 - 2001-08-18 04:53 - 00424477 ___AC (Digi International) C:\Windows\System32\dllcache\dgconfig.dll 2013-06-02 09:14 - 2001-08-18 04:53 - 00256512 ___AC (Creative Technology Ltd.) C:\Windows\System32\dllcache\devcon32.dll 2013-06-02 09:14 - 2001-08-18 04:53 - 00229462 ___AC (Digi International Inc.) C:\Windows\System32\dllcache\digifwrk.dll 2013-06-02 09:14 - 2001-08-18 04:53 - 00216576 ___AC (COMPAQ Inc.) C:\Windows\System32\dllcache\cpscan.dll 2013-06-02 09:14 - 2001-08-18 04:53 - 00175104 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\csamsp.dll 2013-06-02 09:14 - 2001-08-18 04:53 - 00159828 ___AC (Digi International Inc.) C:\Windows\System32\dllcache\digihlc.dll 2013-06-02 09:14 - 2001-08-18 04:53 - 00135252 ___AC (Digi International Inc.) C:\Windows\System32\dllcache\digidbp.dll 2013-06-02 09:14 - 2001-08-18 04:53 - 00112128 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\dc260usd.dll 2013-06-02 09:14 - 2001-08-18 04:53 - 00110621 ___AC (Digi International, Inc.) C:\Windows\System32\dllcache\digirlpt.dll 2013-06-02 09:14 - 2001-08-18 04:53 - 00102484 ___AC (Digi International Inc.) C:\Windows\System32\dllcache\digiinf.dll 2013-06-02 09:14 - 2001-08-18 04:53 - 00087552 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\dc240usd.dll 2013-06-02 09:14 - 2001-08-18 04:53 - 00082432 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\dc210usd.dll 2013-06-02 09:14 - 2001-08-18 04:53 - 00065622 ___AC (Digi International Inc.) C:\Windows\System32\dllcache\digiasyn.dll 2013-06-02 09:14 - 2001-08-18 04:53 - 00044032 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\cnusd.dll 2013-06-02 09:14 - 2001-08-18 04:53 - 00041046 ___AC (Digi International Inc.) C:\Windows\System32\dllcache\digiisdn.dll 2013-06-02 09:14 - 2001-08-18 04:53 - 00038985 ___AC (Eicon Technology) C:\Windows\System32\dllcache\disrvsu.dll 2013-06-02 09:14 - 2001-08-18 04:53 - 00037962 ___AC C:\Windows\System32\dllcache\divaprop.dll 2013-06-02 09:14 - 2001-08-18 04:53 - 00031817 ___AC C:\Windows\System32\dllcache\disrvpp.dll 2013-06-02 09:14 - 2001-08-18 04:53 - 00029768 ___AC C:\Windows\System32\dllcache\divasu.dll 2013-06-02 09:14 - 2001-08-18 04:53 - 00029184 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\cyycoins.dll 2013-06-02 09:14 - 2001-08-18 04:53 - 00028672 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\cyyports.dll 2013-06-02 09:14 - 2001-08-18 04:53 - 00028160 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\cyzports.dll 2013-06-02 09:14 - 2001-08-18 04:53 - 00027648 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\cyzcoins.dll 2013-06-02 09:14 - 2001-08-18 04:53 - 00025600 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\dc210_32.dll 2013-06-02 09:14 - 2001-08-18 04:53 - 00006729 ___AC (Eicon Technology) C:\Windows\System32\dllcache\disrvci.dll 2013-06-02 09:14 - 2001-08-18 04:53 - 00006216 ___AC C:\Windows\System32\dllcache\divaci.dll 2013-06-02 09:14 - 2001-08-18 04:53 - 00004096 ___AC (Creative Technology Ltd.) C:\Windows\System32\dllcache\ctwdm32.dll 2013-06-02 09:14 - 2001-08-18 04:52 - 00170880 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\cl546x.dll 2013-06-02 09:14 - 2001-08-18 04:52 - 00111232 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\cl5465.dll 2013-06-02 09:14 - 2001-08-18 04:52 - 00091264 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\cirrus.dll 2013-06-02 09:14 - 2001-08-18 04:26 - 00103524 ___AC (Digi International Inc.) C:\Windows\System32\dllcache\digidxb.sys 2013-06-02 09:14 - 2001-08-18 04:26 - 00090717 ___AC (Digi International Inc.) C:\Windows\System32\dllcache\digifep5.sys 2013-06-02 09:14 - 2001-08-18 04:26 - 00042880 ___AC (Digi International, Inc.) C:\Windows\System32\dllcache\digirlpt.sys 2013-06-02 09:14 - 2001-08-18 04:25 - 00117760 ___AC (Intel Corporation) C:\Windows\System32\dllcache\d100ib5.sys 2013-06-02 09:14 - 2001-08-18 04:25 - 00051072 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\cyyport.sys 2013-06-02 09:14 - 2001-08-18 04:25 - 00050816 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\cyzport.sys 2013-06-02 09:14 - 2001-08-18 04:25 - 00038087 ___AC (Digi International Inc.) C:\Windows\System32\dllcache\digiasyn.sys 2013-06-02 09:14 - 2001-08-18 04:25 - 00029851 ___AC (Digi International Inc.) C:\Windows\System32\dllcache\dgapci.sys 2013-06-02 09:14 - 2001-08-18 04:25 - 00017536 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\cyclad-z.sys 2013-06-02 09:14 - 2001-08-18 04:25 - 00015104 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\cyclom-y.sys 2013-06-02 09:14 - 2001-08-18 04:24 - 00061130 ___AC (Compaq Computer Corp.) C:\Windows\System32\dllcache\cpqtrnd5.sys 2013-06-02 09:14 - 2001-08-18 04:24 - 00022045 ___AC (Compaq Computer Corporation) C:\Windows\System32\dllcache\cpqndis5.sys 2013-06-02 09:14 - 2001-08-18 04:22 - 00020864 ___AC (OMNIKEY AG) C:\Windows\System32\dllcache\cmbp0wdm.sys 2013-06-02 09:14 - 2001-08-18 04:22 - 00006656 ___AC (CMD Technology, Inc.) C:\Windows\System32\dllcache\cmdide.sys 2013-06-02 09:14 - 2001-08-17 13:57 - 00248064 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\cl546xm.sys 2013-06-02 09:14 - 2001-08-17 13:57 - 00045696 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\cirrus.sys 2013-06-02 09:14 - 2001-08-17 13:52 - 00179584 ___AC (Mylex Corporation) C:\Windows\System32\dllcache\dac2w2k.sys 2013-06-02 09:14 - 2001-08-17 13:52 - 00014976 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\cpqarray.sys 2013-06-02 09:14 - 2001-08-17 13:52 - 00014720 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\dac960nt.sys 2013-06-02 09:14 - 2001-08-17 13:52 - 00007424 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\ddsmc.sys 2013-06-02 09:14 - 2001-08-17 13:47 - 00012928 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\dot4prt.sys 2013-06-02 09:14 - 2001-08-17 12:19 - 00111872 ___AC (Crystal Semiconductor Corp.) C:\Windows\System32\dllcache\cwcspud.sys 2013-06-02 09:14 - 2001-08-17 12:19 - 00096256 ___AC (Copyright (C) Creative Technology Ltd. 1994-2001) C:\Windows\System32\dllcache\ctlsb16.sys 2013-06-02 09:14 - 2001-08-17 12:19 - 00093952 ___AC (Crystal Semiconductor Corp.) C:\Windows\System32\dllcache\cwcwdm.sys 2013-06-02 09:14 - 2001-08-17 12:19 - 00072832 ___AC (Crystal Semiconductor Corp.) C:\Windows\System32\dllcache\cwbwdm.sys 2013-06-02 09:14 - 2001-08-17 12:19 - 00042112 ___AC (Conexant Systems Inc.) C:\Windows\System32\dllcache\crtaud.sys 2013-06-02 09:14 - 2001-08-17 12:19 - 00006912 ___AC (Creative Technology Ltd.) C:\Windows\System32\dllcache\ctlfacem.sys 2013-06-02 09:14 - 2001-08-17 12:19 - 00003584 ___AC (Crystal Semiconductor Corp.) C:\Windows\System32\dllcache\cwcosnt5.sys 2013-06-02 09:14 - 2001-08-17 12:19 - 00003072 ___AC (Crystal Semiconductor Corp.) C:\Windows\System32\dllcache\cwbmidi.sys 2013-06-02 09:14 - 2001-08-17 12:19 - 00003072 ___AC (Crystal Semiconductor Corp.) C:\Windows\System32\dllcache\cwbase.sys 2013-06-02 09:14 - 2001-08-17 12:14 - 00952007 ___AC (Eicon Technology) C:\Windows\System32\dllcache\diwan.sys 2013-06-02 09:14 - 2001-08-17 12:14 - 00021606 ___AC (Digi International Inc.) C:\Windows\System32\dllcache\digiisdn.sys 2013-06-02 09:14 - 2001-08-17 12:13 - 00091305 ___AC (Eicon Technology) C:\Windows\System32\dllcache\dimaint.sys 2013-06-02 09:14 - 2001-08-17 12:12 - 00063208 ___AC (Intel Corporation.) C:\Windows\System32\dllcache\dc21x4.sys 2013-06-02 09:14 - 2001-08-17 12:11 - 00039936 ___AC (Conexant Systems, Inc.) C:\Windows\System32\dllcache\cnxt1803.sys 2013-06-02 09:14 - 2001-08-17 12:11 - 00029696 ___AC (CNet Technology, Inc. ) C:\Windows\System32\dllcache\dm9pci5.sys 2013-06-02 09:14 - 2001-08-17 12:11 - 00026698 ___AC (D-Link Corporation) C:\Windows\System32\dllcache\dlh5xnd5.sys 2013-06-02 09:14 - 2001-08-17 12:11 - 00024649 ___AC (D-Link) C:\Windows\System32\dllcache\dfe650d.sys 2013-06-02 09:14 - 2001-08-17 12:11 - 00024648 ___AC (D-Link) C:\Windows\System32\dllcache\dfe650.sys 2013-06-02 09:14 - 2001-08-17 12:11 - 00020928 ___AC (Digital Networks, LLC) C:\Windows\System32\dllcache\defpa.sys 2013-06-02 09:13 - 2008-04-14 04:22 - 00121856 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\camext30.dll 2013-06-02 09:13 - 2008-04-13 20:40 - 00008192 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\changer.sys 2013-06-02 09:13 - 2001-08-18 12:00 - 00187938 ___AC C:\Windows\System32\dllcache\c_20005.nls 2013-06-02 09:13 - 2001-08-18 12:00 - 00186402 ___AC C:\Windows\System32\dllcache\c_20001.nls 2013-06-02 09:13 - 2001-08-18 12:00 - 00185378 ___AC C:\Windows\System32\dllcache\c_20003.nls 2013-06-02 09:13 - 2001-08-18 12:00 - 00180258 ___AC C:\Windows\System32\dllcache\c_20004.nls 2013-06-02 09:13 - 2001-08-18 12:00 - 00173602 ___AC C:\Windows\System32\dllcache\c_20002.nls 2013-06-02 09:13 - 2001-08-18 12:00 - 00066594 ___AC C:\Windows\System32\dllcache\c_864.nls 2013-06-02 09:13 - 2001-08-18 12:00 - 00066594 ___AC C:\Windows\System32\dllcache\c_862.nls 2013-06-02 09:13 - 2001-08-18 12:00 - 00066594 ___AC C:\Windows\System32\dllcache\c_858.nls 2013-06-02 09:13 - 2001-08-18 12:00 - 00066594 ___AC C:\Windows\System32\dllcache\c_720.nls 2013-06-02 09:13 - 2001-08-18 12:00 - 00066082 ___AC C:\Windows\System32\dllcache\c_870.nls 2013-06-02 09:13 - 2001-08-18 12:00 - 00066082 ___AC C:\Windows\System32\dllcache\c_708.nls 2013-06-02 09:13 - 2001-08-18 12:00 - 00066082 ___AC C:\Windows\System32\dllcache\c_28596.nls 2013-06-02 09:13 - 2001-08-18 12:00 - 00066082 ___AC C:\Windows\System32\dllcache\c_21025.nls 2013-06-02 09:13 - 2001-08-18 12:00 - 00066082 ___AC C:\Windows\System32\dllcache\c_20924.nls 2013-06-02 09:13 - 2001-08-18 12:00 - 00066082 ___AC C:\Windows\System32\dllcache\c_20880.nls 2013-06-02 09:13 - 2001-08-18 12:00 - 00066082 ___AC C:\Windows\System32\dllcache\c_20871.nls 2013-06-02 09:13 - 2001-08-18 12:00 - 00066082 ___AC C:\Windows\System32\dllcache\c_20838.nls 2013-06-02 09:13 - 2001-08-18 12:00 - 00066082 ___AC C:\Windows\System32\dllcache\c_20833.nls 2013-06-02 09:13 - 2001-08-18 12:00 - 00066082 ___AC C:\Windows\System32\dllcache\c_20424.nls 2013-06-02 09:13 - 2001-08-18 12:00 - 00066082 ___AC C:\Windows\System32\dllcache\c_20423.nls 2013-06-02 09:13 - 2001-08-18 12:00 - 00066082 ___AC C:\Windows\System32\dllcache\c_20420.nls 2013-06-02 09:13 - 2001-08-18 12:00 - 00066082 ___AC C:\Windows\System32\dllcache\c_20297.nls 2013-06-02 09:13 - 2001-08-18 12:00 - 00066082 ___AC C:\Windows\System32\dllcache\c_20285.nls 2013-06-02 09:13 - 2001-08-18 12:00 - 00066082 ___AC C:\Windows\System32\dllcache\c_20284.nls 2013-06-02 09:13 - 2001-08-18 12:00 - 00066082 ___AC C:\Windows\System32\dllcache\c_20280.nls 2013-06-02 09:13 - 2001-08-18 12:00 - 00066082 ___AC C:\Windows\System32\dllcache\c_20278.nls 2013-06-02 09:13 - 2001-08-18 12:00 - 00066082 ___AC C:\Windows\System32\dllcache\c_20277.nls 2013-06-02 09:13 - 2001-08-18 12:00 - 00066082 ___AC C:\Windows\System32\dllcache\c_20273.nls 2013-06-02 09:13 - 2001-08-18 12:00 - 00066082 ___AC C:\Windows\System32\dllcache\c_20269.nls 2013-06-02 09:13 - 2001-08-18 12:00 - 00066082 ___AC C:\Windows\System32\dllcache\c_20108.nls 2013-06-02 09:13 - 2001-08-18 12:00 - 00066082 ___AC C:\Windows\System32\dllcache\c_20107.nls 2013-06-02 09:13 - 2001-08-18 12:00 - 00066082 ___AC C:\Windows\System32\dllcache\c_20106.nls 2013-06-02 09:13 - 2001-08-18 12:00 - 00066082 ___AC C:\Windows\System32\dllcache\c_20105.nls 2013-06-02 09:13 - 2001-08-18 12:00 - 00066082 ___AC C:\Windows\System32\dllcache\c_1149.nls 2013-06-02 09:13 - 2001-08-18 12:00 - 00066082 ___AC C:\Windows\System32\dllcache\c_1148.nls 2013-06-02 09:13 - 2001-08-18 12:00 - 00066082 ___AC C:\Windows\System32\dllcache\c_1147.nls 2013-06-02 09:13 - 2001-08-18 12:00 - 00066082 ___AC C:\Windows\System32\dllcache\c_1146.nls 2013-06-02 09:13 - 2001-08-18 12:00 - 00066082 ___AC C:\Windows\System32\dllcache\c_1145.nls 2013-06-02 09:13 - 2001-08-18 12:00 - 00066082 ___AC C:\Windows\System32\dllcache\c_1144.nls 2013-06-02 09:13 - 2001-08-18 12:00 - 00066082 ___AC C:\Windows\System32\dllcache\c_1143.nls 2013-06-02 09:13 - 2001-08-18 12:00 - 00066082 ___AC C:\Windows\System32\dllcache\c_1142.nls 2013-06-02 09:13 - 2001-08-18 12:00 - 00066082 ___AC C:\Windows\System32\dllcache\c_1141.nls 2013-06-02 09:13 - 2001-08-18 12:00 - 00066082 ___AC C:\Windows\System32\dllcache\c_1140.nls 2013-06-02 09:13 - 2001-08-18 12:00 - 00066082 ___AC C:\Windows\System32\dllcache\c_1047.nls 2013-06-02 09:13 - 2001-08-18 12:00 - 00066082 ___AC C:\Windows\System32\dllcache\c_10021.nls 2013-06-02 09:13 - 2001-08-18 12:00 - 00066082 ___AC C:\Windows\System32\dllcache\c_10005.nls 2013-06-02 09:13 - 2001-08-18 12:00 - 00066082 ___AC C:\Windows\System32\dllcache\c_10004.nls 2013-06-02 09:13 - 2001-08-18 04:55 - 00244224 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\camext20.ax 2013-06-02 09:13 - 2001-08-18 04:55 - 00116736 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\camext30.ax 2013-06-02 09:13 - 2001-08-18 04:55 - 00073216 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\camexo20.ax 2013-06-02 09:13 - 2001-08-18 04:54 - 00032256 ___AC (Brother Industries, Ltd.) C:\Windows\System32\dllcache\brmfrsmg.exe 2013-06-02 09:13 - 2001-08-18 04:53 - 00236032 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\camext20.dll 2013-06-02 09:13 - 2001-08-18 04:53 - 00103936 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\binlsvc.dll 2013-06-02 09:13 - 2001-08-18 04:53 - 00081920 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\brmfcwia.dll 2013-06-02 09:13 - 2001-08-18 04:53 - 00074240 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\camexo20.dll 2013-06-02 09:13 - 2001-08-18 04:53 - 00041472 ___AC (Brother Industries, Ltd.) C:\Windows\System32\dllcache\brmfusb.dll 2013-06-02 09:13 - 2001-08-18 04:53 - 00032256 ___AC (Eicon Technology Corporation) C:\Windows\System32\dllcache\diapi2NT.dll 2013-06-02 09:13 - 2001-08-18 04:53 - 00029696 ___AC (Brother Industries, Ltd.) C:\Windows\System32\dllcache\brmflpt.dll 2013-06-02 09:13 - 2001-08-18 04:53 - 00019456 ___AC (Brother Industries, Ltd.) C:\Windows\System32\dllcache\brbidiif.dll 2013-06-02 09:13 - 2001-08-18 04:53 - 00015360 ___AC (Brother Industries, Ltd.) C:\Windows\System32\dllcache\brmfbidi.dll 2013-06-02 09:13 - 2001-08-18 04:53 - 00012800 ___AC (Brother Industries, Ltd.) C:\Windows\System32\dllcache\brevif.dll 2013-06-02 09:13 - 2001-08-18 04:53 - 00009728 ___AC (Brother Industries, Ltd.) C:\Windows\System32\dllcache\brserif.dll 2013-06-02 09:13 - 2001-08-18 04:53 - 00009728 ___AC (Brother Industries Ltd.) C:\Windows\System32\dllcache\brcoinst.dll 2013-06-02 09:13 - 2001-08-18 04:53 - 00005120 ___AC (Brother Industries,Ltd.) C:\Windows\System32\dllcache\brscnrsm.dll 2013-06-02 09:13 - 2001-08-18 04:22 - 00980034 ___AC (Xircom) C:\Windows\System32\dllcache\cicap.sys 2013-06-02 09:13 - 2001-08-18 04:22 - 00272640 ___AC (RAVISENT Technologies Inc.) C:\Windows\System32\dllcache\cinemclc.sys 2013-06-02 09:13 - 2001-08-18 04:21 - 00715210 ___AC (Xircom, Inc.) C:\Windows\System32\dllcache\cbmdmkxx.sys 2013-06-02 09:13 - 2001-08-18 04:21 - 00049182 ___AC (Xircom, Inc.) C:\Windows\System32\dllcache\cem56n5.sys 2013-06-02 09:13 - 2001-08-18 04:21 - 00039808 ___AC (Brother Industries Ltd.) C:\Windows\System32\dllcache\brparwdm.sys 2013-06-02 09:13 - 2001-08-18 04:21 - 00027164 ___AC (Xircom, Inc.) C:\Windows\System32\dllcache\ce3n5.sys 2013-06-02 09:13 - 2001-08-18 04:21 - 00022556 ___AC (Xircom, Inc.) C:\Windows\System32\dllcache\cem33n5.sys 2013-06-02 09:13 - 2001-08-18 04:21 - 00022556 ___AC (Xircom, Inc.) C:\Windows\System32\dllcache\cem28n5.sys 2013-06-02 09:13 - 2001-08-18 04:21 - 00021530 ___AC (Xircom, Inc.) C:\Windows\System32\dllcache\ce2n5.sys 2013-06-02 09:13 - 2001-08-18 04:21 - 00014208 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\bulltlp3.sys 2013-06-02 09:13 - 2001-08-17 14:05 - 00314752 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\camdro21.sys 2013-06-02 09:13 - 2001-08-17 14:04 - 00223232 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\camdrv21.sys 2013-06-02 09:13 - 2001-08-17 14:04 - 00171264 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\camdrv30.sys 2013-06-02 09:13 - 2001-08-17 13:52 - 00007680 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\cd20xrnt.sys 2013-06-02 09:13 - 2001-08-17 13:28 - 00871388 ___AC (BCM) C:\Windows\System32\dllcache\bcmdm.sys 2013-06-02 09:13 - 2001-08-17 13:12 - 00060416 ___AC (Brother Industries Ltd.) C:\Windows\System32\dllcache\brserwdm.sys 2013-06-02 09:13 - 2001-08-17 13:12 - 00012160 ___AC (Brother Industries, Ltd.) C:\Windows\System32\dllcache\brfiltlo.sys 2013-06-02 09:13 - 2001-08-17 13:12 - 00011008 ___AC (Brother Industries Ltd.) C:\Windows\System32\dllcache\brusbmdm.sys 2013-06-02 09:13 - 2001-08-17 13:12 - 00010368 ___AC (Brother Industries Ltd.) C:\Windows\System32\dllcache\brusbscn.sys 2013-06-02 09:13 - 2001-08-17 13:12 - 00003968 ___AC (Brother Industries, Ltd.) C:\Windows\System32\dllcache\brfiltup.sys 2013-06-02 09:13 - 2001-08-17 13:12 - 00003168 ___AC (Brother Industries Ltd.) C:\Windows\System32\dllcache\brparimg.sys 2013-06-02 09:13 - 2001-08-17 13:12 - 00002944 ___AC (Brother Industries Ltd.) C:\Windows\System32\dllcache\brfilt.sys 2013-06-02 09:13 - 2001-08-17 12:13 - 00164923 ___AC (Eicon Technology) C:\Windows\System32\dllcache\diapi2.sys 2013-06-02 09:13 - 2001-08-17 12:13 - 00046108 ___AC (Xircom, Inc.) C:\Windows\System32\dllcache\cben5.sys 2013-06-02 09:13 - 2001-08-17 12:12 - 00039680 ___AC (Silicom Ltd.) C:\Windows\System32\dllcache\cb325.sys 2013-06-02 09:13 - 2001-08-17 12:12 - 00037916 ___AC (Fast Ethernet Controller Provider) C:\Windows\System32\dllcache\cb102.sys 2013-06-02 09:13 - 2001-08-17 12:11 - 00031529 ___AC (BreezeCOM) C:\Windows\System32\dllcache\brzwlan.sys 2013-06-02 09:12 - 2008-04-14 03:52 - 00016384 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\battc.sys 2013-06-02 09:12 - 2008-04-13 20:46 - 00048128 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\61883.sys 2013-06-02 09:12 - 2008-04-13 20:46 - 00038912 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\avc.sys 2013-06-02 09:12 - 2008-04-13 20:46 - 00013696 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\avcstrm.sys 2013-06-02 09:12 - 2008-04-13 20:40 - 00012288 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\4mmdat.sys 2013-06-02 09:12 - 2004-08-03 23:32 - 00231552 ___AC (Acer Laboratories Inc.) C:\Windows\System32\dllcache\ac97ali.sys 2013-06-02 09:12 - 2004-08-03 23:32 - 00084480 ___AC (VIA Technologies, Inc.) C:\Windows\System32\dllcache\ac97via.sys 2013-06-02 09:12 - 2004-08-03 23:32 - 00010880 ___AC (Aureal, Inc.) C:\Windows\System32\dllcache\admjoy.sys 2013-06-02 09:12 - 2004-08-03 23:31 - 00036224 ___AC (ADMtek Incorporated.) C:\Windows\System32\dllcache\an983.sys 2013-06-02 09:12 - 2001-08-18 04:55 - 00024576 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\agcgauge.ax 2013-06-02 09:12 - 2001-08-18 04:54 - 00037376 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\atievxx.exe 2013-06-02 09:12 - 2001-08-18 04:53 - 00144384 ___AC (AVM GmbH) C:\Windows\System32\dllcache\avmenum.dll 2013-06-02 09:12 - 2001-08-18 04:53 - 00087552 ___AC (AVM GmbH) C:\Windows\System32\dllcache\avmcoxp.dll 2013-06-02 09:12 - 2001-08-18 04:52 - 00689216 ___AC (3dfx Interactive, Inc.) C:\Windows\System32\dllcache\3dfxvs.dll 2013-06-02 09:12 - 2001-08-18 04:52 - 00462848 ___AC (Aureal Inc.) C:\Windows\System32\dllcache\a3dapi.dll 2013-06-02 09:12 - 2001-08-18 04:52 - 00382592 ___AC (ATI Technologies Inc.) C:\Windows\System32\dllcache\atidrab.dll 2013-06-02 09:12 - 2001-08-18 04:52 - 00342336 ___AC (3Dfx Interactive, Inc.) C:\Windows\System32\dllcache\banshee.dll 2013-06-02 09:12 - 2001-08-18 04:52 - 00268160 ___AC (ATI Technologies Inc.) C:\Windows\System32\dllcache\atidvai.dll 2013-06-02 09:12 - 2001-08-18 04:52 - 00137216 ___AC (ATI Technologies Inc.) C:\Windows\System32\dllcache\atidrae.dll 2013-06-02 09:12 - 2001-08-18 04:52 - 00104832 ___AC (ATI Technologies Inc.) C:\Windows\System32\dllcache\atiraged.dll 2013-06-02 09:12 - 2001-08-18 04:52 - 00098304 ___AC (Aureal Semiconductor) C:\Windows\System32\dllcache\a3d.dll 2013-06-02 09:12 - 2001-08-18 04:52 - 00096128 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\ati.dll 2013-06-02 09:12 - 2001-08-18 04:52 - 00061952 ___AC (Farb-Flachbett-Scanner) C:\Windows\System32\dllcache\acerscad.dll 2013-06-02 09:12 - 2001-08-18 04:52 - 00038400 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\8514a.dll 2013-06-02 09:12 - 2001-08-18 04:20 - 00097440 ___AC (Broadcom Corporation) C:\Windows\System32\dllcache\b57xp32.sys 2013-06-02 09:12 - 2001-08-18 04:19 - 00289920 ___AC (ATI Technologies Inc.) C:\Windows\System32\dllcache\atimpab.sys 2013-06-02 09:12 - 2001-08-18 04:19 - 00281728 ___AC (ATI Technologies Inc.) C:\Windows\System32\dllcache\atimtai.sys 2013-06-02 09:12 - 2001-08-18 04:19 - 00077824 ___AC (ATI Technologies, Inc.) C:\Windows\System32\dllcache\ati.sys 2013-06-02 09:12 - 2001-08-18 04:19 - 00075392 ___AC (ATI Technologies Inc.) C:\Windows\System32\dllcache\atimpae.sys 2013-06-02 09:12 - 2001-08-18 04:19 - 00070784 ___AC (ATI Technologies Inc.) C:\Windows\System32\dllcache\atiragem.sys 2013-06-02 09:12 - 2001-08-17 14:07 - 00101888 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\adpu160m.sys 2013-06-02 09:12 - 2001-08-17 14:07 - 00056960 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\aic78xx.sys 2013-06-02 09:12 - 2001-08-17 14:07 - 00055168 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\aic78u2.sys 2013-06-02 09:12 - 2001-08-17 14:06 - 00011264 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\1394vdbg.sys 2013-06-02 09:12 - 2001-08-17 14:01 - 00036096 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\avcaudio.sys 2013-06-02 09:12 - 2001-08-17 13:53 - 00007424 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\adicvls.sys 2013-06-02 09:12 - 2001-08-17 13:52 - 00026496 ___AC (Advanced System Products, Inc.) C:\Windows\System32\dllcache\asc.sys 2013-06-02 09:12 - 2001-08-17 13:52 - 00023552 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\abp480n5.sys 2013-06-02 09:12 - 2001-08-17 13:52 - 00022400 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\asc3350p.sys 2013-06-02 09:12 - 2001-08-17 13:52 - 00012800 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\aha154x.sys 2013-06-02 09:12 - 2001-08-17 13:52 - 00012032 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\amsint.sys 2013-06-02 09:12 - 2001-08-17 13:51 - 00014848 ___AC (Advanced System Products, Inc.) C:\Windows\System32\dllcache\asc3550.sys 2013-06-02 09:12 - 2001-08-17 13:51 - 00005248 ___AC (Acer Laboratories Inc.) C:\Windows\System32\dllcache\aliide.sys 2013-06-02 09:12 - 2001-08-17 13:49 - 00026624 ___AC (Acer Laboratories Inc.) C:\Windows\System32\dllcache\alifir.sys 2013-06-02 09:12 - 2001-08-17 13:47 - 00006272 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\apmbatt.sys 2013-06-02 09:12 - 2001-08-17 13:28 - 00762780 ___AC (3Com, Inc.) C:\Windows\System32\dllcache\3cwmcru.sys 2013-06-02 09:12 - 2001-08-17 12:49 - 00049920 ___AC C:\Windows\System32\dllcache\atirtcap.sys 2013-06-02 09:12 - 2001-08-17 12:49 - 00046464 ___AC C:\Windows\System32\dllcache\atibt829.sys 2013-06-02 09:12 - 2001-08-17 12:49 - 00026880 ___AC C:\Windows\System32\dllcache\atirtsnd.sys 2013-06-02 09:12 - 2001-08-17 12:49 - 00026624 ___AC C:\Windows\System32\dllcache\ativxbar.sys 2013-06-02 09:12 - 2001-08-17 12:49 - 00023552 ___AC C:\Windows\System32\dllcache\atixbar.sys 2013-06-02 09:12 - 2001-08-17 12:49 - 00019456 ___AC C:\Windows\System32\dllcache\ativttxx.sys 2013-06-02 09:12 - 2001-08-17 12:49 - 00017152 ___AC C:\Windows\System32\dllcache\atitvsnd.sys 2013-06-02 09:12 - 2001-08-17 12:49 - 00017152 ___AC C:\Windows\System32\dllcache\atitunep.sys 2013-06-02 09:12 - 2001-08-17 12:49 - 00010240 ___AC C:\Windows\System32\dllcache\atipcxxx.sys 2013-06-02 09:12 - 2001-08-17 12:49 - 00009472 ___AC C:\Windows\System32\dllcache\ativmdcd.sys 2013-06-02 09:12 - 2001-08-17 12:48 - 00148352 ___AC (3dfx Interactive, Inc.) C:\Windows\System32\dllcache\3dfxvsm.sys 2013-06-02 09:12 - 2001-08-17 12:48 - 00036128 ___AC (3Dfx Interactive, Inc.) C:\Windows\System32\dllcache\banshee.sys 2013-06-02 09:12 - 2001-08-17 12:20 - 00297728 ___AC (Silicon Integrated Systems Corp.) C:\Windows\System32\dllcache\ac97sis.sys 2013-06-02 09:12 - 2001-08-17 12:20 - 00096256 ___AC (Intel Corporation) C:\Windows\System32\dllcache\ac97intc.sys 2013-06-02 09:12 - 2001-08-17 12:19 - 00747392 ___AC (Aureal, Inc.) C:\Windows\System32\dllcache\adm8830.sys 2013-06-02 09:12 - 2001-08-17 12:19 - 00584448 ___AC (Aureal, Inc.) C:\Windows\System32\dllcache\adm8810.sys 2013-06-02 09:12 - 2001-08-17 12:19 - 00553984 ___AC (Aureal, Inc.) C:\Windows\System32\dllcache\adm8820.sys 2013-06-02 09:12 - 2001-08-17 12:19 - 00036992 ___AC (Aztech Systems Ltd) C:\Windows\System32\dllcache\aztw2320.sys 2013-06-02 09:12 - 2001-08-17 12:13 - 00089952 ___AC (AVM GmbH) C:\Windows\System32\dllcache\b1cbase.sys 2013-06-02 09:12 - 2001-08-17 12:13 - 00037568 ___AC (AVM GmbH) C:\Windows\System32\dllcache\avmwan.sys 2013-06-02 09:12 - 2001-08-17 12:12 - 00097354 ___AC (Bay Networks, Inc.) C:\Windows\System32\dllcache\aspndis3.sys 2013-06-02 09:12 - 2001-08-17 12:11 - 00066557 ___AC (Broadcom Corporation) C:\Windows\System32\dllcache\bcm42u.sys 2013-06-02 09:12 - 2001-08-17 12:11 - 00054271 ___AC (Broadcom Corporation) C:\Windows\System32\dllcache\bcm42xx5.sys 2013-06-02 09:12 - 2001-08-17 12:11 - 00046112 ___AC (Adaptec, Inc ) C:\Windows\System32\dllcache\adptsf50.sys 2013-06-02 09:12 - 2001-08-17 12:11 - 00027678 ___AC (Acer Laboratories Inc.) C:\Windows\System32\dllcache\ali5261.sys 2013-06-02 09:12 - 2001-08-17 12:11 - 00026568 ___AC (Broadcom Corporation) C:\Windows\System32\dllcache\bcm4e5.sys 2013-06-02 09:12 - 2001-08-17 12:11 - 00020160 ___AC (ADMtek Incorporated) C:\Windows\System32\dllcache\adm8511.sys 2013-06-02 09:12 - 2001-08-17 12:11 - 00016969 ___AC (AmbiCom, Inc.) C:\Windows\System32\dllcache\amb8002.sys 2013-06-02 09:11 - 2001-08-18 04:52 - 00066048 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\s3legacy.dll ==================== One Month Modified Files and Folders ======== 2013-07-02 16:22 - 2009-02-18 22:49 - 00000396 ___AH C:\Windows\Tasks\User_Feed_Synchronization-{CA3A37EB-1AB4-409F-AA24-F04D753A391F}.job 2013-07-02 16:17 - 2007-11-10 14:35 - 01466142 ____A C:\Windows\WindowsUpdate.log 2013-07-02 01:37 - 2002-08-05 18:45 - 52690944 ____A C:\Windows\System32\config\software.bak 2013-07-02 01:26 - 2013-07-02 01:31 - 03211786 ____A C:\ARCDC.exe 2013-07-02 01:11 - 2002-08-05 16:51 - 00000000 ____D C:\Windows\System32\Restore 2013-07-01 22:55 - 2012-04-11 17:37 - 00000884 ____A C:\Windows\Tasks\Adobe Flash Player Updater.job 2013-07-01 22:52 - 2002-08-05 16:55 - 00031816 ____A C:\Windows\SchedLgU.Txt 2013-07-01 22:51 - 2010-03-21 21:29 - 00001210 ____A C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-638971174-4113303836-1484400983-1005UA.job 2013-07-01 22:41 - 2013-02-23 16:30 - 00001088 ____A C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job 2013-07-01 21:44 - 2013-02-23 16:30 - 00001084 ____A C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job 2013-07-01 21:44 - 2002-08-05 17:48 - 00000159 ____A C:\Windows\wiadebug.log 2013-07-01 21:44 - 2002-08-05 17:48 - 00000050 ____A C:\Windows\wiaservc.log 2013-07-01 21:43 - 2002-08-05 16:53 - 00000006 ___AH C:\Windows\Tasks\SA.DAT 2013-07-01 21:35 - 2002-08-05 18:45 - 09699328 ____A C:\Windows\System32\config\system.bak 2013-07-01 21:35 - 2002-08-05 17:46 - 00262144 ____A C:\Windows\System32\config\SECURITY.bak 2013-07-01 21:35 - 2002-08-05 17:43 - 00001158 ____A C:\Windows\System32\wpa.dbl 2013-07-01 14:04 - 2013-07-01 14:04 - 00086312 ____A C:\windows-startet-nicht-mehr.html 2013-07-01 14:04 - 2013-07-01 14:04 - 00000000 ____D C:\windows-startet-nicht-mehr_files 2013-07-01 14:04 - 2013-07-01 06:07 - 00273144 ____A C:\OTL.Txt 2013-07-01 00:17 - 2013-07-01 00:17 - 05053696 ____A (Macrovision Corporation) C:\IsoBurner-Setup.exe 2013-06-30 18:03 - 2013-06-30 18:03 - 00031488 ____A C:\ComboFix.txt 2013-06-30 18:03 - 2013-06-30 17:26 - 00000000 ____D C:\Qoobox 2013-06-30 17:54 - 2002-08-05 17:43 - 00000227 ____A C:\Windows\system.ini 2013-06-30 17:38 - 2013-06-30 17:38 - 00000000 RASHD C:\cmdcons 2013-06-30 17:38 - 2002-08-05 17:43 - 00000361 _RASH C:\boot.ini 2013-06-30 17:24 - 2013-06-08 22:08 - 00000000 ____D C:\Windows\erdnt 2013-06-30 17:11 - 2013-06-30 17:11 - 00000000 ____D C:\FRST 2013-06-30 16:51 - 2010-03-21 21:29 - 00001158 ____A C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-638971174-4113303836-1484400983-1005Core.job 2013-06-30 16:15 - 2013-06-30 16:14 - 00002992 ____A C:\AdwCleaner[R23].txt 2013-06-30 12:38 - 2013-06-30 12:38 - 00000000 ____A C:\bcdedit.txt 2013-06-30 08:38 - 2010-02-21 11:35 - 00458752 ____A C:\Windows\System32\config\TuneUp.evt 2013-06-30 08:38 - 2008-02-15 18:21 - 00524288 ____A C:\Windows\System32\config\ACEEvent.evt 2013-06-30 08:38 - 2002-08-05 18:45 - 03407872 ____A C:\Windows\System32\config\default.bak 2013-06-30 08:38 - 2002-08-05 17:46 - 00024576 ____A C:\Windows\System32\config\SAM.bak 2013-06-28 16:17 - 2013-06-28 16:17 - 00234752 ____A (Acronis) C:\Windows\System32\Drivers\afcdp.sys 2013-06-28 16:17 - 2013-06-27 09:10 - 00011709 ____A C:\Windows\setupapi.log 2013-06-28 16:16 - 2013-06-28 16:16 - 00775232 ____A (Acronis) C:\Windows\System32\Drivers\tdrpman.sys 2013-06-28 16:16 - 2013-06-28 16:02 - 00086496 ____A (Acronis) C:\Windows\System32\Drivers\vsflt67.sys 2013-06-28 16:16 - 2002-08-05 17:04 - 00000000 ____D C:\Windows\System32\ReinstallBackups 2013-06-28 16:04 - 2007-11-10 18:16 - 00614592 ____A (Acronis) C:\Windows\System32\Drivers\timntr.sys 2013-06-28 16:02 - 2013-06-28 16:02 - 00126880 ____A (Acronis) C:\Windows\System32\Drivers\vididr.sys 2013-06-28 16:01 - 2007-11-10 18:16 - 00177600 ____A (Acronis) C:\Windows\System32\Drivers\snapman.sys 2013-06-28 16:00 - 2013-06-28 16:00 - 00080416 ____A (Acronis) C:\Windows\System32\Drivers\fltsrv.sys 2013-06-28 14:46 - 2013-06-28 14:46 - 00000056 ____A C:\{DA50139A-AD87-4B8E-9F67-03C2758B09C1} 2013-06-25 22:48 - 2013-06-25 22:47 - 00002654 ____A C:\AdwCleaner[R22].txt 2013-06-24 22:42 - 2013-06-09 08:21 - 00000291 ____A C:\Boot.bak 2013-06-24 22:42 - 2002-08-05 17:43 - 00000630 ____A C:\Windows\win.ini 2013-06-24 22:31 - 2013-06-24 22:31 - 00002593 ____A C:\AdwCleaner[R21].txt 2013-06-24 17:18 - 2007-11-10 15:22 - 00000400 ____A C:\Windows\ODBC.INI 2013-06-24 17:18 - 2002-08-05 17:46 - 00004335 ____A C:\Windows\ODBCINST.INI 2013-06-24 17:17 - 2013-06-24 17:17 - 00000000 ____D C:\Windows\ShellNew 2013-06-24 16:32 - 2013-06-24 16:31 - 00002532 ____A C:\AdwCleaner[R20].txt 2013-06-23 22:43 - 2013-06-23 22:42 - 00002471 ____A C:\AdwCleaner[R19].txt 2013-06-23 21:53 - 2002-08-05 17:46 - 00000000 ____D C:\Programme 2013-06-23 21:44 - 2013-06-23 21:43 - 00002410 ____A C:\AdwCleaner[R18].txt 2013-06-23 20:37 - 2013-06-23 20:36 - 00002349 ____A C:\AdwCleaner[R17].txt 2013-06-23 19:00 - 2013-06-23 19:00 - 00002288 ____A C:\AdwCleaner[R16].txt 2013-06-23 18:59 - 2013-06-23 18:58 - 00002227 ____A C:\AdwCleaner[R15].txt 2013-06-23 18:13 - 2013-06-23 18:12 - 00002308 ____A C:\AdwCleaner[R14].txt 2013-06-23 17:06 - 2013-06-23 17:06 - 00002247 ____A C:\AdwCleaner[R13].txt 2013-06-23 16:54 - 2013-06-23 16:53 - 00002044 ____A C:\AdwCleaner[R12].txt 2013-06-23 16:43 - 2013-06-23 16:43 - 00003264 ____A C:\{F33B9D62-C6B9-492C-A909-C6A4234D097E} 2013-06-23 11:52 - 2013-06-19 20:27 - 00000000 ____D C:\Windows\System32\Drivers\NIS 2013-06-22 21:57 - 2013-06-22 21:57 - 00002576 ____A C:\{C937ECDE-81D9-4BD0-A300-E7F61656B6D2} 2013-06-20 17:54 - 2013-06-19 20:31 - 00142496 ____A (Symantec Corporation) C:\Windows\System32\Drivers\SYMEVENT.SYS 2013-06-20 17:54 - 2013-06-19 20:31 - 00007611 ____A C:\Windows\System32\Drivers\SYMEVENT.CAT 2013-06-20 16:23 - 2013-06-20 16:23 - 00000383 ____A C:\AdwCleaner[R11].txt 2013-06-19 18:13 - 2013-06-19 18:13 - 00001923 ____A C:\AdwCleaner[R10].txt 2013-06-17 21:12 - 2013-06-17 21:03 - 00001861 ____A C:\AdwCleaner[R9].txt 2013-06-16 20:03 - 2012-04-11 17:37 - 00692104 ____A (Adobe Systems Incorporated) C:\Windows\System32\FlashPlayerApp.exe 2013-06-16 20:03 - 2011-09-02 20:47 - 00071048 ____A (Adobe Systems Incorporated) C:\Windows\System32\FlashPlayerCPLApp.cpl 2013-06-16 19:57 - 2013-06-16 08:29 - 00065536 ____A C:\Windows\System32\config\Spybot -.evt 2013-06-15 21:53 - 2013-06-15 21:53 - 00001801 ____A C:\AdwCleaner[R8].txt 2013-06-09 22:19 - 2013-06-09 22:19 - 00001398 ____A C:\AdwCleaner[R1].txt 2013-06-09 19:55 - 2013-06-09 19:55 - 00003952 ____A C:\DelFix.txt 2013-06-09 19:55 - 2013-06-08 21:56 - 00000000 ____D C:\Windows\ERUNT 2013-06-07 22:49 - 2013-06-07 22:49 - 00001741 ____A C:\AdwCleaner[R7].txt 2013-06-07 22:29 - 2013-06-07 22:28 - 00001681 ____A C:\AdwCleaner[R6].txt 2013-06-07 20:16 - 2013-06-07 20:15 - 00001621 ____A C:\AdwCleaner[R5].txt 2013-06-06 20:48 - 2013-06-09 07:24 - 00000276 ____A C:\Windows\Tasks\AppleSoftwareUpdate.job 2013-06-06 18:53 - 2013-06-06 18:53 - 00001561 ____A C:\AdwCleaner[R4].txt 2013-06-05 22:53 - 2013-06-05 22:49 - 00001501 ____A C:\AdwCleaner[R3].txt 2013-06-05 22:32 - 2007-11-10 15:13 - 73381792 ____A (Microsoft Corporation) C:\Windows\System32\MRT.exe 2013-06-05 22:30 - 2013-06-05 22:30 - 00000000 ____A C:\Windows\setuperr.log 2013-06-05 22:30 - 2013-06-05 22:30 - 00000000 ____A C:\Windows\setupact.log 2013-06-05 22:29 - 2008-12-17 20:53 - 00000000 ____D C:\Windows\ie8updates 2013-06-05 06:57 - 2013-06-05 06:56 - 00001441 ____A C:\AdwCleaner[R2].txt 2013-06-02 20:35 - 2009-01-16 19:00 - 00000000 ____D C:\Windows\MiniDump 2013-06-02 14:47 - 2002-08-05 17:46 - 00230392 ____A C:\Windows\System32\FNTCACHE.DAT ==================== Bamital & volsnap Check ================= C:\Windows\explorer.exe [2002-08-05 17:43] - [2008-04-14 04:22] - 1036800 ____A (Microsoft Corporation) 418045a93cd87a352098ab7dabe1b53e C:\Windows\System32\winlogon.exe [2002-08-05 17:43] - [2008-04-14 04:23] - 0513024 ____A (Microsoft Corporation) f09a527b422e25c478e38caa0e44417a C:\Windows\System32\svchost.exe [2002-08-05 17:43] - [2008-04-14 04:23] - 0014336 ____A (Microsoft Corporation) 4fbc75b74479c7a6f829e0ca19df3366 C:\Windows\System32\services.exe [2002-08-05 17:43] - [2009-02-09 13:21] - 0111104 ____A (Microsoft Corporation) a3edbe9053889fb24ab22492472b39dc C:\Windows\System32\User32.dll [2002-08-05 17:43] - [2008-04-14 04:22] - 0580096 ____A (Microsoft Corporation) b0050cc5340e3a0760dd8b417ff7aebd C:\Windows\System32\userinit.exe [2002-08-05 17:43] - [2008-04-14 04:23] - 0026624 ____A (Microsoft Corporation) 788f95312e26389d596c0fa55834e106 C:\Windows\System32\Drivers\volsnap.sys [2002-08-05 17:43] - [2008-04-14 03:52] - 0053760 ____A (Microsoft Corporation) a5a712f4e880874a477af790b5186e1d ==================== End Of Log ============================ Hallo Schrauber, willst du von CombiFix auch die Log, denn diesen hat er noch vor dem Absturz gespeichert. LG Sakis |
|
02.07.2013, 16:46
| #26 |
| /// the machine /// TB-Ausbilder | Virus w32.SillyFdc seitdem Startdatei verändert? Ja poste die auch bitte. Logs bitte in Codetags posten.  So funktioniert es:Posten in CODE-Tags Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR, 7Z-Archive zu packen erschwert mir massiv die Arbeit, es sei denn natürlich die Datei wäre ansonsten zu gross für das Forum. Um die Logfiles in eine CODE-Box zu stellen gehe so vor:
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
02.07.2013, 16:51
| #27 |
| | Virus w32.SillyFdc seitdem Startdatei verändert?Code:
ATTFilter ComboFix 13-06-30.01 - Admin 30.06.2013 17:42:25.1.1 - x86
Microsoft Windows XP Home Edition 5.1.2600.3.1252.49.1031.18.1792.395 [GMT 2:00]
ausgeführt von:: c:\dokumente und einstellungen\Admin\Desktop\ComboFix.exe
AV: Norton Internet Security CBE *Disabled/Updated* {E10A9785-9598-4754-B552-92431C1C35F8}
FW: Norton Internet Security CBE *Disabled* {7C21A4C9-F61F-4AC4-B722-A6E19C16F220}
.
.
(((((((((((((((((((((((((((((((((((( Weitere Löschungen ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\dokumente und einstellungen\Admin\Anwendungsdaten\siw_sdk.dll
c:\dokumente und einstellungen\All Users\Anwendungsdaten\TEMP
c:\dokumente und einstellungen\All Users\Anwendungsdaten\TEMP\RAIDTest
C:\menu.lst
c:\windows\EventSystem.log
c:\windows\pi.exe
c:\windows\system32\dllcache\wmpvis.dll
c:\windows\system32\drivers\etc\hosts.ics
c:\windows\system32\muzapp.exe
c:\windows\wininit.ini
.
.
((((((((((((((((((((((( Dateien erstellt von 2013-05-28 bis 2013-06-30 ))))))))))))))))))))))))))))))
.
.
2013-06-30 15:11 . 2013-06-30 15:11 -------- d-----w- C:\FRST
2013-06-28 14:17 . 2013-06-28 14:17 234752 ----a-w- c:\windows\system32\drivers\afcdp.sys
2013-06-28 14:17 . 2013-06-28 14:17 -------- d-----w- c:\dokumente und einstellungen\Admin\Anwendungsdaten\EADDCB4F-6BCA-405B-B26A-BCDBA6FF52E7
2013-06-28 14:16 . 2013-06-28 14:16 775232 ----a-w- c:\windows\system32\drivers\tdrpman.sys
2013-06-28 14:02 . 2013-06-28 14:02 126880 ----a-w- c:\windows\system32\drivers\vididr.sys
2013-06-28 14:02 . 2013-06-28 14:16 86496 ----a-w- c:\windows\system32\drivers\vsflt67.sys
2013-06-28 14:00 . 2013-06-28 14:00 80416 ----a-w- c:\windows\system32\drivers\fltsrv.sys
2013-06-24 15:17 . 2013-06-24 15:17 -------- d-----w- c:\windows\ShellNew
2013-06-23 20:32 . 2009-08-13 16:07 672024 ----a-w- c:\windows\system32\wodKeys.dll
2013-06-23 20:32 . 2009-08-13 16:07 729424 ----a-w- c:\windows\system32\wodSFTP.dll
2013-06-19 18:31 . 2013-06-20 15:54 142496 ----a-w- c:\windows\system32\drivers\SYMEVENT.SYS
2013-06-19 18:31 . 2013-06-19 19:28 -------- d-----w- c:\programme\Gemeinsame Dateien\Symantec Shared
2013-06-19 18:31 . 2013-06-19 18:31 -------- d-----w- c:\programme\Symantec
2013-06-19 18:27 . 2013-06-23 09:52 -------- d-----w- c:\windows\system32\drivers\NIS
2013-06-19 18:27 . 2013-06-19 18:27 -------- d-----w- c:\programme\Norton Internet Security CBE
2013-06-19 16:24 . 2013-06-19 16:24 -------- d-----w- c:\dokumente und einstellungen\All Users\Anwendungsdaten\NortonRnR
2013-06-09 18:30 . 2013-06-09 18:30 -------- d-----w- c:\programme\7-Zip
2013-06-09 18:13 . 2013-06-09 18:13 -------- d-----w- c:\dokumente und einstellungen\Admin\Lokale Einstellungen\Anwendungsdaten\Secunia PSI
2013-06-09 18:12 . 2013-06-09 18:12 -------- d-----w- c:\programme\Secunia
2013-06-09 18:01 . 2013-06-09 18:01 -------- d-----w- c:\dokumente und einstellungen\All Users\Anwendungsdaten\Licenses
2013-06-09 18:01 . 2013-06-23 16:59 -------- d-----w- c:\programme\SpywareBlaster
2013-06-09 05:26 . 2013-06-09 05:26 159744 ----a-w- c:\programme\Mozilla Firefox\plugins\npqtplugin6.dll
2013-06-09 05:26 . 2013-06-09 05:26 159744 ----a-w- c:\programme\Internet Explorer\PLUGINS\npqtplugin6.dll
2013-06-09 05:25 . 2013-06-09 05:25 -------- d-----w- c:\dokumente und einstellungen\All Users\Anwendungsdaten\Apple Computer
2013-06-09 05:24 . 2013-06-09 05:24 -------- d-----w- c:\programme\Gemeinsame Dateien\Apple
2013-06-09 05:24 . 2013-06-09 05:24 -------- d-----w- c:\dokumente und einstellungen\Admin\Lokale Einstellungen\Anwendungsdaten\Apple
2013-06-09 05:23 . 2013-06-09 05:23 -------- d-----w- c:\programme\Apple Software Update
2013-06-09 05:23 . 2013-06-09 05:23 -------- d-----w- c:\dokumente und einstellungen\All Users\Anwendungsdaten\Apple
2013-06-08 19:56 . 2013-06-09 17:55 -------- d-----w- c:\windows\ERUNT
2013-06-02 12:50 . 2013-06-02 12:50 -------- d-sh--w- c:\dokumente und einstellungen\Administrator\PrivacIE
2013-06-02 12:49 . 2013-06-02 12:49 -------- d-----w- c:\dokumente und einstellungen\Administrator\Lokale Einstellungen\Anwendungsdaten\Mozilla
2013-06-02 07:26 . 2008-04-14 02:22 116736 -c--a-w- c:\windows\system32\dllcache\xrxwiadr.dll
2013-06-02 07:26 . 2001-08-18 02:54 23040 -c--a-w- c:\windows\system32\dllcache\xrxwbtmp.dll
2013-06-02 07:26 . 2008-04-14 02:22 19456 -c--a-w- c:\windows\system32\dllcache\xrxscnui.dll
2013-06-02 07:26 . 2001-08-18 02:55 4608 -c--a-w- c:\windows\system32\dllcache\xrxflnch.exe
2013-06-02 07:26 . 2001-08-18 02:55 27648 -c--a-w- c:\windows\system32\dllcache\xrxftplt.exe
2013-06-02 07:26 . 2001-08-18 02:55 99865 -c--a-w- c:\windows\system32\dllcache\xlog.exe
2013-06-02 07:26 . 2001-08-17 10:11 16970 -c--a-w- c:\windows\system32\dllcache\xem336n5.sys
2013-06-02 07:26 . 2004-08-03 21:29 19455 -c--a-w- c:\windows\system32\dllcache\wvchntxx.sys
2013-06-02 07:24 . 2001-08-17 11:28 64605 -c--a-w- c:\windows\system32\dllcache\vvoice.sys
2013-06-02 07:23 . 2001-08-17 12:07 32640 -c--a-w- c:\windows\system32\dllcache\symc8xx.sys
2013-06-02 07:22 . 2001-08-18 02:35 161888 -c--a-w- c:\windows\system32\dllcache\sgsmusb.sys
2013-06-02 07:21 . 2001-08-17 11:52 49024 -c--a-w- c:\windows\system32\dllcache\ql1280.sys
2013-06-02 07:20 . 2001-08-18 02:52 123776 -c--a-w- c:\windows\system32\dllcache\nv3.dll
2013-06-02 07:19 . 2001-08-17 12:00 2944 -c--a-w- c:\windows\system32\dllcache\msmpu401.sys
2013-06-02 07:19 . 2008-04-13 18:54 22016 -c--a-w- c:\windows\system32\dllcache\msircomm.sys
2013-06-02 07:19 . 2001-08-17 12:02 35200 -c--a-w- c:\windows\system32\dllcache\msgame.sys
2013-06-02 07:19 . 2001-08-17 11:48 6016 -c--a-w- c:\windows\system32\dllcache\msfsio.sys
2013-06-02 07:19 . 2008-04-13 18:46 51200 -c--a-w- c:\windows\system32\dllcache\msdv.sys
2013-06-02 07:19 . 2001-08-17 11:52 17280 -c--a-w- c:\windows\system32\dllcache\mraid35x.sys
2013-06-02 07:17 . 2001-08-17 11:49 26624 -c--a-w- c:\windows\system32\dllcache\irstusb.sys
2013-06-02 07:16 . 2004-08-03 21:29 161020 -c--a-w- c:\windows\system32\dllcache\i81xnt5.sys
2013-06-02 07:15 . 2001-08-18 02:53 92160 -c--a-w- c:\windows\system32\dllcache\fuusd.dll
2013-06-02 07:14 . 2008-04-13 18:39 206976 -c--a-w- c:\windows\system32\dllcache\dot4.sys
2013-06-02 07:13 . 2001-08-18 02:22 272640 -c--a-w- c:\windows\system32\dllcache\cinemclc.sys
2013-06-02 07:12 . 2001-08-17 10:11 26568 -c--a-w- c:\windows\system32\dllcache\bcm4e5.sys
2013-06-02 07:11 . 2001-08-18 02:52 66048 -c--a-w- c:\windows\system32\dllcache\s3legacy.dll
2013-06-01 14:53 . 2013-06-01 14:53 -------- d-----w- c:\dokumente und einstellungen\Administrator\Anwendungsdaten\Malwarebytes
2013-06-01 08:17 . 2013-06-01 08:17 -------- d-----w- c:\dokumente und einstellungen\Admin\Anwendungsdaten\Malwarebytes
2013-06-01 08:16 . 2013-06-01 08:16 -------- d-----w- c:\dokumente und einstellungen\All Users\Anwendungsdaten\Malwarebytes
2013-06-01 08:16 . 2013-06-01 08:17 -------- d-----w- c:\programme\Malwarebytes' Anti-Malware
2013-06-01 08:16 . 2013-04-04 12:50 22856 ----a-w- c:\windows\system32\drivers\mbam.sys
2013-06-01 07:11 . 2013-06-01 07:14 -------- d-----w- c:\dokumente und einstellungen\Admin\Anwendungsdaten\StartMenuX
2013-06-01 07:11 . 2013-06-01 07:12 -------- d-----w- c:\programme\Start Menu X
2013-06-01 07:11 . 2013-06-01 07:11 -------- d-----w- c:\dokumente und einstellungen\All Users\Anwendungsdaten\StartMenuX
.
.
.
(((((((((((((((((((((((((((((((((((( Find3M Bericht ))))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-06-28 14:04 . 2007-11-10 16:16 614592 ----a-w- c:\windows\system32\drivers\timntr.sys
2013-06-28 14:01 . 2007-11-10 16:16 177600 ----a-w- c:\windows\system32\drivers\snapman.sys
2013-06-16 18:03 . 2012-04-11 15:37 692104 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2013-06-16 18:03 . 2011-09-02 18:47 71048 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2013-05-07 22:28 . 2002-04-25 19:15 920064 ----a-w- c:\windows\system32\wininet.dll
2013-05-07 22:28 . 2002-08-05 15:43 43520 ----a-w- c:\windows\system32\licmgr10.dll
2013-05-07 22:28 . 2002-08-05 15:43 1469440 ------w- c:\windows\system32\inetcpl.cpl
2013-05-07 21:53 . 2007-11-10 12:30 385024 ----a-w- c:\windows\system32\html.iec
2013-05-06 15:31 . 2013-05-06 15:31 25200 ----a-w- c:\windows\system32\drivers\ggsemc.sys
2013-05-06 15:31 . 2013-05-06 15:31 12400 ----a-w- c:\windows\system32\drivers\ggflt.sys
2013-05-03 05:39 . 2002-08-05 15:43 2195840 ----a-w- c:\windows\system32\ntoskrnl.exe
2013-05-03 05:39 . 2001-08-18 04:28 2072448 ----a-w- c:\windows\system32\ntkrnlpa.exe
2013-05-01 01:59 . 2013-05-01 01:59 94208 ----a-w- c:\windows\system32\QuickTimeVR.qtx
2013-05-01 01:59 . 2013-05-01 01:59 69632 ----a-w- c:\windows\system32\QuickTime.qts
2013-04-18 13:55 . 2013-04-18 13:55 16024 ----a-w- c:\windows\system32\drivers\psi_mf_x86.sys
2013-04-12 14:00 . 2002-08-05 15:43 1876480 ----a-w- c:\windows\system32\win32k.sys
2013-04-04 03:35 . 2013-04-17 13:24 94112 ----a-w- c:\windows\system32\WindowsAccessBridge.dll
2013-04-04 03:22 . 2013-05-09 17:36 144896 ----a-w- c:\windows\system32\javacpl.cpl
2013-04-02 14:09 . 2013-04-02 14:09 4550656 ----a-w- c:\windows\system32\GPhotos.scr
2008-10-25 10:11 . 2008-10-25 10:11 2963456 ----a-w- c:\programme\Gemeinsame DateienDDBACSetup.msi
.
.
(((((((((((((((((((((((((((( Autostartpunkte der Registrierung ))))))))))))))))))))))))))))))))))))))))
.
.
*Hinweis* leere Einträge & legitime Standardeinträge werden nicht angezeigt.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
"{F335ABA2-FDB4-4644-92B2-5CC4B0FC91D6}"= "c:\programme\Soda PDF 5\PDFIEPlugin.dll" [2013-01-25 691040]
.
[HKEY_CLASSES_ROOT\clsid\{f335aba2-fdb4-4644-92b2-5cc4b0fc91d6}]
[HKEY_CLASSES_ROOT\SodaPDF5_IEPlugin.PDFIEConverter.1]
[HKEY_CLASSES_ROOT\TypeLib\{DC275339-6DF9-41FB-AFB8-03BC81FBD9E5}]
[HKEY_CLASSES_ROOT\SodaPDF5_IEPlugin.PDFIEConverter]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt1]
@="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}]
2012-11-13 23:32 129272 ----a-w- c:\dokumente und einstellungen\Admin\Anwendungsdaten\Dropbox\bin\DropboxExt.17.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt2]
@="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}]
2012-11-13 23:32 129272 ----a-w- c:\dokumente und einstellungen\Admin\Anwendungsdaten\Dropbox\bin\DropboxExt.17.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt3]
@="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}]
2012-11-13 23:32 129272 ----a-w- c:\dokumente und einstellungen\Admin\Anwendungsdaten\Dropbox\bin\DropboxExt.17.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt4]
@="{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}]
2012-11-13 23:32 129272 ----a-w- c:\dokumente und einstellungen\Admin\Anwendungsdaten\Dropbox\bin\DropboxExt.17.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RocketDock"="c:\programme\RocketDock\RocketDock.exe" [2007-09-02 495616]
"VistaStartMenu"="c:\programme\Vista Start Menu\VistaStartMenu.exe" [2008-10-08 2145792]
"BrowserMask"="c:\programme\AntiBrowserSpy\AntiBrowserSpyBrowserMaske.exe" [2011-11-02 101280]
"SSS2012 Browser Monitor"="c:\programme\Steganos Privacy Suite 2012\SteganosBrowserMonitor.exe" [2012-10-30 69120]
"StartMenuX"="c:\programme\Start Menu X\StartMenuX.exe" [2013-05-03 4617536]
"Password Depot"="c:\programme\AceBIT\Password Depot 7\PasswordDepot.exe" [2013-05-17 11618952]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Acronis Scheduler2 Service"="c:\programme\Gemeinsame Dateien\Acronis\Schedule2\schedhlp.exe" [2012-06-28 403688]
"Media Codec Update Service"="c:\programme\Essentials Codec Pack\update.exe" [2007-04-08 303104]
"ATIPTA"="c:\programme\ATI Technologies\ATI Control Panel\atiptaxx.exe" [2004-05-15 339968]
"SSS2012 File Redirection Starter"="c:\programme\Steganos Privacy Suite 2012\fredirstarter.exe" [2012-10-30 17920]
"SSS2012 HotKeys"="c:\programme\Steganos Privacy Suite 2012\SteganosHotKeyService.exe" [2012-10-30 84480]
"TrueImageMonitor.exe"="c:\programme\Acronis\TrueImageHome\TrueImageMonitor.exe" [2012-06-28 5993216]
"AcronisTimounterMonitor"="c:\programme\Acronis\TrueImageHome\TimounterMonitor.exe" [2012-06-28 1173712]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\System32\CTFMON.EXE" [2008-04-14 15360]
"DWQueuedReporting"="c:\progra~1\GEMEIN~1\MICROS~1\DW\dwtrig20.exe" [2007-03-13 39264]
.
c:\dokumente und einstellungen\All Users\Startmenü\Programme\Autostart\
Windows Search.lnk - c:\programme\Windows Desktop Search\WindowsSearch.exe /startup [2007-2-5 123904]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"EnableLinkedConnections"= 1 (0x1)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\explorer]
"NoResolveTrack"= 0 (0x0)
"NoFileAssociate"= 0 (0x0)
.
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer]
"TaskbarNoNotification"= 0 (0x0)
.
[hkey_local_machine\software\microsoft\windows\currentversion\explorer\ShellExecuteHooks]
"{56F9679E-7826-4C84-81F3-532071A8BCC5}"= "c:\programme\Windows Desktop Search\MSNLNamespaceMgr.dll" [2009-05-24 304128]
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
BootExecute REG_MULTI_SZ autocheck autochk *\0pgdfgsvc C 1\0autocheck turegopt\0\0sdnclean.exe
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
@="Driver"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfSvc]
@="Service"
.
[HKLM\~\startupfolder\C:^Dokumente und Einstellungen^Admin^Startmenü^Programme^Autostart^DSL-Manager.lnk]
backup=c:\windows\pss\DSL-Manager.lnkStartup
.
[HKLM\~\startupfolder\C:^Dokumente und Einstellungen^Admin^Startmenü^Programme^Autostart^OpenOffice.org 2.0.lnk]
backup=c:\windows\pss\OpenOffice.org 2.0.lnkStartup
.
[HKLM\~\startupfolder\C:^Dokumente und Einstellungen^Admin^Startmenü^Programme^Autostart^WISO Bewerbung-Reminder.lnk]
backup=c:\windows\pss\WISO Bewerbung-Reminder.lnkStartup
.
[HKLM\~\startupfolder\C:^Dokumente und Einstellungen^All Users^Startmenü^Programme^Autostart^CAPIControl.lnk]
backup=c:\windows\pss\CAPIControl.lnkCommon Startup
.
[HKLM\~\startupfolder\C:^Dokumente und Einstellungen^All Users^Startmenü^Programme^Autostart^HomeNet Control.lnk]
backup=c:\windows\pss\HomeNet Control.lnkCommon Startup
.
[HKLM\~\startupfolder\C:^Dokumente und Einstellungen^All Users^Startmenü^Programme^Autostart^Microsoft Office.lnk]
backup=c:\windows\pss\Microsoft Office.lnkCommon Startup
.
[HKLM\~\startupfolder\C:^Dokumente und Einstellungen^All Users^Startmenü^Programme^Autostart^Sinus 1054 data WLAN Manager.lnk]
backup=c:\windows\pss\Sinus 1054 data WLAN Manager.lnkCommon Startup
.
[HKLM\~\startupfolder\C:^Dokumente und Einstellungen^All Users^Startmenü^Programme^Autostart^VAIO Action Setup (Server).lnk]
backup=c:\windows\pss\VAIO Action Setup (Server).lnkCommon Startup
.
[HKLM\~\startupfolder\C:^Dokumente und Einstellungen^All Users^Startmenü^Programme^Autostart^Windows-Desktopsuche.lnk]
backup=c:\windows\pss\Windows-Desktopsuche.lnkCommon Startup
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NokiaMServer]
c:\programme\Gemeinsame Dateien\Nokia\MPlatform\NokiaMServer [X]
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
2013-05-11 10:37 958576 ----a-w- c:\programme\Gemeinsame Dateien\Adobe\ARM\1.0\AdobeARM.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BluetoothAuthenticationAgent]
2008-04-14 02:23 110592 ------w- c:\windows\system32\bthprops.cpl
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CamAppSTI.exe]
2009-01-04 14:26 28672 ----a-w- c:\programme\AVEO USB2.0 PC Camera\CamAppSTI.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ControlCenter3]
2007-01-26 14:58 65536 ------w- c:\programme\Brother\ControlCenter3\BrCtrCen.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IndexSearch]
2007-01-29 20:10 46632 ----a-w- c:\programme\ScanSoft\PaperPort\IndexSearch.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ISP]
2002-05-21 07:04 1040896 ----a-w- c:\programme\Sony\ISPselector\ISPselector.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LexwareInfoService]
2011-07-31 13:07 189808 ----a-w- c:\programme\Gemeinsame Dateien\Lexware\Update Manager\LxUpdateManager.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroFilterCheck]
2006-01-12 14:40 155648 ----a-w- c:\windows\system32\NeroCheck.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PaperPort PTD]
2007-01-29 20:12 30248 ----a-w- c:\programme\ScanSoft\PaperPort\pptd40nt.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PDF Converter Registry Controller]
2004-08-18 00:49 98304 ----a-w- c:\programme\ScanSoft\PDFConverter 2.0 Professional\PDFConv\registrycontroller.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
2013-05-01 01:59 421888 ----a-w- c:\programme\QuickTime\QTTask.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SSBkgdUpdate]
2006-10-25 08:03 210472 ----a-w- c:\programme\Gemeinsame Dateien\ScanSoft Shared\SSBkgdUpdate\SSBkgdUpdate.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TkBellExe]
2007-12-27 13:26 185896 ----a-w- c:\programme\Gemeinsame Dateien\Real\Update_OB\realsched.exe
.
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run-]
"NBJ"="c:\programme\Ahead\Nero BackItUp\NBJ.exe"
"NokiaSuite.exe"=c:\programme\Nokia\Nokia Suite\NokiaSuite.exe -tray
"Sony PC Companion"="c:\programme\Sony\Sony PC Companion\PCCompanion.exe" /Background
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-]
"BrMfcWnd"=c:\programme\Brother\Brmfcmon\BrMfcWnd.exe /AUTORUN
"PPort11reminder"="c:\programme\ScanSoft\PaperPort\Ereg\Ereg.exe" -r "c:\dokumente und einstellungen\All Users\Anwendungsdaten\ScanSoft\PaperPort\11\Config\Ereg\Ereg.ini
"SSBkgdUpdate"="c:\programme\Gemeinsame Dateien\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe" -Embedding -boot
"KernelFaultCheck"=%systemroot%\system32\dumprep 0 -k
"QuickTime Task"="c:\programme\QuickTime\QTTask.exe" -atboottime
"APSDaemon"="c:\programme\Gemeinsame Dateien\Apple\Apple Application Support\APSDaemon.exe"
"ATICCC"="c:\programme\ATI Technologies\ATI.ACE\cli.exe" runtime -Delay
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Programme\\IEPro\\MiniDM.exe"=
"c:\\Dokumente und Einstellungen\\Admin\\Anwendungsdaten\\Dropbox\\bin\\Dropbox.exe"=
"c:\\Programme\\Sony Ericsson\\Update Engine\\Sony Ericsson Update Engine.exe"=
"c:\\Programme\\Gemeinsame Dateien\\Apple\\Apple Application Support\\WebKit2WebProcess.exe"=
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\IcmpSettings]
"AllowInboundEchoRequest"= 1 (0x1)
.
R0 fltsrv;Acronis Storage Filter Management;c:\windows\system32\drivers\fltsrv.sys [28.06.2013 16:00 80416]
R0 sfdrv01a;StarForce Protection Environment Driver (version 1.x.a);c:\windows\system32\drivers\sfdrv01a.sys [05.07.2006 14:46 63352]
R0 SymDS;Symantec Data Store;c:\windows\system32\drivers\NIS\1404000.028\symds.sys [20.06.2013 17:54 367704]
R0 SymEFA;Symantec Extended File Attributes;c:\windows\system32\drivers\NIS\1404000.028\symefa.sys [20.06.2013 17:54 934488]
R0 vididr;Acronis Virtual Disk;c:\windows\system32\drivers\vididr.sys [28.06.2013 16:02 126880]
R0 vidsflt67;Acronis Disk Storage Filter (67);c:\windows\system32\drivers\vsflt67.sys [28.06.2013 16:02 86496]
R1 BHDrvx86;BHDrvx86;c:\dokumente und einstellungen\All Users\Anwendungsdaten\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.1.1.2\Definitions\BASHDefs\20130620.001\BHDrvx86.sys [25.06.2013 16:22 1002072]
R1 ccSet_NIS;Norton Internet Security CBE Settings Manager;c:\windows\system32\drivers\NIS\1404000.028\ccsetx86.sys [20.06.2013 17:54 134744]
R1 SLEE_18_DRIVER;Steganos Live Encryption Engine 18 [Driver];c:\windows\system32\drivers\SleeN18.sys [24.07.2012 11:39 91112]
R1 STGMFEngine32;Steganos RAM Disk Engine [Driver];c:\windows\system32\drivers\STGMFEngine32.sys [29.10.2012 17:46 16384]
R1 SymIRON;Symantec Iron Driver;c:\windows\system32\drivers\NIS\1404000.028\ironx86.sys [20.06.2013 17:54 175264]
R2 acedrv09;acedrv09;c:\windows\system32\drivers\acedrv09.sys [18.06.2007 15:10 373568]
R2 acehlp09;acehlp09;c:\windows\system32\drivers\acehlp09.sys [30.05.2007 18:54 201696]
R2 afcdpsrv;Acronis Nonstop Backup Service;c:\programme\Gemeinsame Dateien\Acronis\CDP\afcdpsrv.exe [28.06.2013 16:17 3491792]
R2 CAPI20;Eumex 620 LAN;c:\windows\system32\drivers\Capi20.sys [29.06.2005 14:25 974040]
R2 NIS;Norton Internet Security CBE;c:\programme\Norton Internet Security CBE\Engine\20.4.0.40\ccsvchst.exe [20.06.2013 17:54 144368]
R2 Secunia PSI Agent;Secunia PSI Agent;c:\programme\Secunia\PSI\PSIA.exe --start-service --> c:\programme\Secunia\PSI\PSIA.exe --start-service [?]
R2 Soda PDF 5 Helper Service;Soda PDF 5 Helper Service;c:\programme\Soda PDF 5\HelperService.exe [25.01.2013 17:42 1237856]
R2 Soda PDF 5 Service;Soda PDF 5 Service;c:\programme\Soda PDF 5\ConversionService.exe [25.01.2013 17:42 877920]
R2 Steganos Volatile Disk;Steganos Volatile Disk;c:\windows\system32\STGRAMDiskHandler32.exe [29.10.2012 17:46 349184]
R2 syncagentsrv;Acronis Sync Agent Service;c:\programme\Gemeinsame Dateien\Acronis\SyncAgent\syncagentsrv.exe [28.06.2012 20:48 5924712]
R2 TuneUp.UtilitiesSvc;TuneUp Utilities Service;c:\programme\TuneUp Utilities 2012\TuneUpUtilitiesService32.exe [29.05.2012 14:09 1528672]
R3 afcdp;afcdp;c:\windows\system32\drivers\afcdp.sys [28.06.2013 16:17 234752]
R3 EraserUtilRebootDrv;EraserUtilRebootDrv;c:\programme\Gemeinsame Dateien\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [22.06.2013 22:08 106656]
R3 IDSxpx86;IDSxpx86;c:\dokumente und einstellungen\All Users\Anwendungsdaten\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.1.1.2\Definitions\IPSDefs\20130628.001\IDSXpx86.sys [28.06.2013 22:57 373728]
R3 PSI;PSI;c:\windows\system32\drivers\psi_mf_x86.sys [18.04.2013 15:55 16024]
R3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv;c:\programme\TuneUp Utilities 2012\TuneUpUtilitiesDriver32.sys [08.05.2012 16:21 10064]
R3 uscbs109;uscbs109;c:\windows\system32\drivers\uscbs109.sys [22.03.2005 01:00 8672]
R3 uscsc109;uscsc109;c:\windows\system32\drivers\uscsc109.sys [22.03.2005 01:00 102336]
R3 VirtDiskBus;Virtual disk Enumerator;c:\windows\system32\drivers\VirtDiskBus.sys [20.06.2009 20:08 63640]
S2 Secunia Update Agent;Secunia Update Agent;c:\programme\Secunia\PSI\sua.exe --start-service --> c:\programme\Secunia\PSI\sua.exe --start-service [?]
S3 AVEO;USB PC Camera;c:\windows\system32\drivers\AVEOdcnt.sys [01.08.2010 08:31 281472]
S3 cpuz128;cpuz128; [x]
S3 cpuz129;cpuz129; [x]
S3 dtwmnic5;Telekom T-Eumex 520PC;c:\windows\system32\DRIVERS\dtwmnic5.sys --> c:\windows\system32\DRIVERS\dtwmnic5.sys [?]
S3 FsUsbExDisk;FsUsbExDisk;c:\windows\system32\FsUsbExDisk.Sys [26.12.2010 18:08 36608]
S3 ggflt;SEMC USB Flash Driver Filter;c:\windows\system32\drivers\ggflt.sys [06.05.2013 17:31 12400]
S3 HRService;Haufe iDesk-Service in c:\programme\Haufe\iDesk\iDeskService\Zope;c:\programme\Haufe\iDesk\iDeskService\ideskservice.exe [07.09.2007 04:17 71208]
S3 LucentSoftModem;Lucent Technologies Soft Modem;c:\windows\system32\drivers\LTSM.sys [31.07.2002 21:33 815819]
S3 MatSvc;Microsoft Automated Troubleshooting Service;c:\programme\Microsoft Fix it Center\Matsvc.exe [13.06.2011 23:09 267568]
S3 TSMPacket;DSL-Manager Service;c:\windows\system32\DRIVERS\tsmpkt.sys --> c:\windows\system32\DRIVERS\tsmpkt.sys [?]
S3 ulisa;Telekom ISDN-Adapter (USB);c:\windows\system32\drivers\ulisa.sys [29.06.2005 14:25 33575]
S4 DfSdkS;Defragmentation-Service;c:\programme\Ashampoo\Ashampoo WinOptimizer 2012\DfSdkS.exe [14.03.2012 19:59 406016]
S4 Sony PC Companion;Sony PC Companion;c:\programme\Sony\Sony PC Companion\PCCService.exe [06.05.2013 17:13 155824]
.
Inhalt des "geplante Tasks" Ordners
.
2013-06-30 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2012-04-11 18:03]
.
2013-06-06 c:\windows\Tasks\AppleSoftwareUpdate.job
- c:\programme\Apple Software Update\SoftwareUpdate.exe [2011-06-01 15:57]
.
2013-06-30 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\programme\Google\Update\GoogleUpdate.exe [2013-02-23 14:30]
.
2013-06-30 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\programme\Google\Update\GoogleUpdate.exe [2013-02-23 14:30]
.
2013-06-30 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-638971174-4113303836-1484400983-1005Core.job
- c:\dokumente und einstellungen\Admin\Lokale Einstellungen\Anwendungsdaten\Google\Update\GoogleUpdate.exe [2010-03-21 19:29]
.
2013-06-30 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-638971174-4113303836-1484400983-1005UA.job
- c:\dokumente und einstellungen\Admin\Lokale Einstellungen\Anwendungsdaten\Google\Update\GoogleUpdate.exe [2010-03-21 19:29]
.
2013-06-30 c:\windows\Tasks\User_Feed_Synchronization-{CA3A37EB-1AB4-409F-AA24-F04D753A391F}.job
- c:\windows\system32\msfeedssync.exe [2006-10-17 03:31]
.
.
------- Zusätzlicher Suchlauf -------
.
uStart Page = hxxp://www.google.com
uSearchURL,(Default) = hxxp://de.search.yahoo.com/search?fr=mcafee&p=%s
IE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.scr/200
IE: Free YouTube Download - c:\dokumente und einstellungen\Admin\Anwendungsdaten\DVDVideoSoftIEHelpers\youtubedownload.htm
IE: Free YouTube to Mp3 Converter - c:\dokumente und einstellungen\Admin\Anwendungsdaten\DVDVideoSoftIEHelpers\youtubetomp3.htm
IE: PDF in Word öffnen (PDF Converter 2.0) - c:\programme\ScanSoft\PDFConverter 2.0 Professional\PDFConv\IEShellExt.dll /500
IE: {{AEF9B8DB-0DEF-4c0b-8209-661C9E82B8C3}
Trusted Zone: internet
Trusted Zone: mcafee.com
Trusted Zone: sony-europe.com
Trusted Zone: sonystyle-europe.com
Trusted Zone: vaio-link.com
TCP: DhcpNameServer = 192.168.178.1
DPF: Microsoft XML Parser for Java - file:///C:/WINDOWS/Java/classes/xmldso.cab
FF - ProfilePath - c:\dokumente und einstellungen\Admin\Anwendungsdaten\Mozilla\Firefox\Profiles\mkh8m4lm.default\
FF - ExtSQL: 2013-05-09 20:34; FFSodaPDF5Converter@sodapdf.com; c:\programme\Soda PDF 5\FFSoda5Ext
FF - ExtSQL: 2013-06-02 20:43; {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}; c:\dokumente und einstellungen\Admin\Anwendungsdaten\Mozilla\Firefox\Profiles\mkh8m4lm.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
FF - ExtSQL: 2013-06-19 20:31; {2D3F3651-74B9-4795-BDEC-6DA2F431CB62}; c:\dokumente und einstellungen\All Users\Anwendungsdaten\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.1.1.2\coFFPlgn
FF - ExtSQL: 2013-06-19 20:32; {BBDA0591-3099-440a-AA10-41764D9DB4DB}; c:\dokumente und einstellungen\All Users\Anwendungsdaten\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.1.1.2\IPSFFPlgn
FF - ExtSQL: 2013-06-23 22:32; passworddepot@acebit.com; c:\programme\AceBIT\Password Depot 7\Firefox
FF - ExtSQL: !HIDDEN! 2009-11-13 17:52; {20a82645-c095-46ed-80e3-08825760534b}; c:\windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
.
- - - - Entfernte verwaiste Registrierungseinträge - - - -
.
ShellIconOverlayIdentifiers- - (no file)
ShellIconOverlayIdentifiers- - (no file)
ShellIconOverlayIdentifiers- - (no file)
c:\dokumente und einstellungen\Default User\Startmenü\Programme\Autostart\DSL-Manager.lnk - c:\programme\DSL-Manager\DslMgr.exe
.
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, hxxp://www.gmer.net
Rootkit scan 2013-06-30 17:54
Windows 5.1.2600 Service Pack 3 NTFS
.
Scanne versteckte Prozesse...
.
Scanne versteckte Autostarteinträge...
.
Scanne versteckte Dateien...
.
Scan erfolgreich abgeschlossen
versteckte Dateien: 0
.
**************************************************************************
.
[HKEY_LOCAL_MACHINE\System\ControlSet004\Services\NIS]
"ImagePath"="\"c:\programme\Norton Internet Security CBE\Engine\20.4.0.40\ccSvcHst.exe\" /s \"NIS\" /m \"c:\programme\Norton Internet Security CBE\Engine\20.4.0.40\diMaster.dll\" /prefetch:1"
.
--------------------- Gesperrte Registrierungsschluessel ---------------------
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\WINDOWS\\system32\\Macromed\\Flash\\FlashUtil32_11_7_700_224_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\WINDOWS\\system32\\Macromed\\Flash\\FlashUtil32_11_7_700_224_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
--------------------- Durch laufende Prozesse gestartete DLLs ---------------------
.
- - - - - - - > 'winlogon.exe'(1072)
c:\windows\system32\Ati2evxx.dll
.
Zeit der Fertigstellung: 2013-06-30 18:03:26
ComboFix-quarantined-files.txt 2013-06-30 16:03
.
Vor Suchlauf: 26 Verzeichnis(se), 13.432.885.248 Bytes frei
Nach Suchlauf: 28 Verzeichnis(se), 13.673.947.136 Bytes frei
.
WindowsXP-KB310994-SP2-Home-BootDisk-DEU.exe
[boot loader]
timeout=2
default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS
[operating systems]
c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons
UnsupportedDebug="do not select this" /debug
multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP Home Edition" /FASTDETECT /NoExecute=AlwaysOff
c:\grldr="sichere Bank 2010"
.
- - End Of File - - 5FA8A7E63AB02D3DC76AACEF580D9648
8F558EB6672622401DA993E1E865C861
|
|
02.07.2013, 18:13
| #28 |
| /// the machine /// TB-Ausbilder | Virus w32.SillyFdc seitdem Startdatei verändert? Downloade Dir bitte  AdwCleaner auf deinen Desktop.
Beende bitte Deine Schutzsoftware um eventuelle Konflikte zu vermeiden.
ESET Online Scanner
Downloade Dir bitte  SecurityCheck und:
und ein frisches FRST Log bitte. Noch Probleme?
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
02.07.2013, 19:51
| #29 |
| | Virus w32.SillyFdc seitdem Startdatei verändert? Uhh das wird eine längere Aktion Also Schritt 1 ADW Cleaner Code:
ATTFilter # AdwCleaner v2.302 - Datei am 02/07/2013 um 20:49:18 erstellt
# Aktualisiert am 06/06/2013 von Xplode
# Betriebssystem : Microsoft Windows XP Service Pack 3 (32 bits)
# Benutzer : Admin - SAKI
# Bootmodus : Normal
# Ausgeführt unter : C:\Dokumente und Einstellungen\Admin\Desktop\adwcleaner.exe
# Option [Suche]
**** [Dienste] ****
***** [Dateien / Ordner] *****
***** [Registrierungsdatenbank] *****
Schlüssel Gefunden : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{AFBCB7E0-F91A-4951-9F31-58FEE57A25C4}
Schlüssel Gefunden : HKU\S-1-5-21-638971174-4113303836-1484400983-1005\Software\Microsoft\Internet Explorer\SearchScopes\{AFBCB7E0-F91A-4951-9F31-58FEE57A25C4}
***** [Internet Browser] *****
-\\ Internet Explorer v8.0.6001.18702
[OK] Die Registrierungsdatenbank ist sauber.
-\\ Mozilla Firefox v21.0 (de)
Datei : C:\Dokumente und Einstellungen\Admin\Anwendungsdaten\Mozilla\Firefox\Profiles\2kjr34rc.tarnfox\prefs.js
[OK] Die Datei ist sauber.
Datei : C:\Dokumente und Einstellungen\Admin\Anwendungsdaten\Mozilla\Firefox\Profiles\mkh8m4lm.default\prefs.js
[OK] Die Datei ist sauber.
Datei : C:\Dokumente und Einstellungen\Administrator\Anwendungsdaten\Mozilla\Firefox\Profiles\6tosogm0.default\prefs.js
[OK] Die Datei ist sauber.
-\\ Google Chrome v27.0.1453.116
Datei : C:\Dokumente und Einstellungen\Admin\Lokale Einstellungen\Anwendungsdaten\Google\Chrome\User Data\Default\Preferences
[OK] Die Datei ist sauber.
*************************
AdwCleaner[R10].txt - [1923 octets] - [19/06/2013 18:13:00]
AdwCleaner[R11].txt - [383 octets] - [20/06/2013 16:23:22]
AdwCleaner[R12].txt - [2044 octets] - [23/06/2013 16:53:31]
AdwCleaner[R13].txt - [2247 octets] - [23/06/2013 17:06:19]
AdwCleaner[R14].txt - [2308 octets] - [23/06/2013 18:12:58]
AdwCleaner[R15].txt - [2227 octets] - [23/06/2013 18:58:47]
AdwCleaner[R16].txt - [2288 octets] - [23/06/2013 19:00:25]
AdwCleaner[R17].txt - [2349 octets] - [23/06/2013 20:36:49]
AdwCleaner[R18].txt - [2410 octets] - [23/06/2013 21:43:39]
AdwCleaner[R19].txt - [2471 octets] - [23/06/2013 22:42:52]
AdwCleaner[R1].txt - [1398 octets] - [09/06/2013 22:19:04]
AdwCleaner[R20].txt - [2532 octets] - [24/06/2013 16:31:39]
AdwCleaner[R21].txt - [2593 octets] - [24/06/2013 22:31:38]
AdwCleaner[R22].txt - [2654 octets] - [25/06/2013 22:47:39]
AdwCleaner[R23].txt - [2992 octets] - [30/06/2013 16:14:11]
AdwCleaner[R24].txt - [2442 octets] - [02/07/2013 20:49:18]
AdwCleaner[R2].txt - [1441 octets] - [05/06/2013 06:56:33]
AdwCleaner[R3].txt - [1501 octets] - [05/06/2013 22:49:16]
AdwCleaner[R4].txt - [1561 octets] - [06/06/2013 18:53:13]
AdwCleaner[R5].txt - [1621 octets] - [07/06/2013 20:15:47]
AdwCleaner[R6].txt - [1681 octets] - [07/06/2013 22:28:42]
AdwCleaner[R7].txt - [1741 octets] - [07/06/2013 22:49:06]
AdwCleaner[R8].txt - [1801 octets] - [15/06/2013 21:53:03]
AdwCleaner[R9].txt - [1861 octets] - [17/06/2013 21:03:21]
########## EOF - C:\AdwCleaner[R24].txt - [2983 octets] ##########
Code:
ATTFilter # AdwCleaner v2.302 - Datei am 02/07/2013 um 20:52:01 erstellt
# Aktualisiert am 06/06/2013 von Xplode
# Betriebssystem : Microsoft Windows XP Service Pack 3 (32 bits)
# Benutzer : Admin - SAKI
# Bootmodus : Normal
# Ausgeführt unter : C:\Dokumente und Einstellungen\Admin\Desktop\adwcleaner.exe
# Option [Löschen]
**** [Dienste] ****
***** [Dateien / Ordner] *****
***** [Registrierungsdatenbank] *****
Schlüssel Gelöscht : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{AFBCB7E0-F91A-4951-9F31-58FEE57A25C4}
***** [Internet Browser] *****
-\\ Internet Explorer v8.0.6001.18702
[OK] Die Registrierungsdatenbank ist sauber.
-\\ Mozilla Firefox v21.0 (de)
Datei : C:\Dokumente und Einstellungen\Admin\Anwendungsdaten\Mozilla\Firefox\Profiles\2kjr34rc.tarnfox\prefs.js
[OK] Die Datei ist sauber.
Datei : C:\Dokumente und Einstellungen\Admin\Anwendungsdaten\Mozilla\Firefox\Profiles\mkh8m4lm.default\prefs.js
[OK] Die Datei ist sauber.
Datei : C:\Dokumente und Einstellungen\Administrator\Anwendungsdaten\Mozilla\Firefox\Profiles\6tosogm0.default\prefs.js
[OK] Die Datei ist sauber.
-\\ Google Chrome v27.0.1453.116
Datei : C:\Dokumente und Einstellungen\Admin\Lokale Einstellungen\Anwendungsdaten\Google\Chrome\User Data\Default\Preferences
[OK] Die Datei ist sauber.
*************************
AdwCleaner[R10].txt - [1923 octets] - [19/06/2013 18:13:00]
AdwCleaner[R11].txt - [383 octets] - [20/06/2013 16:23:22]
AdwCleaner[R12].txt - [2044 octets] - [23/06/2013 16:53:31]
AdwCleaner[R13].txt - [2247 octets] - [23/06/2013 17:06:19]
AdwCleaner[R14].txt - [2308 octets] - [23/06/2013 18:12:58]
AdwCleaner[R15].txt - [2227 octets] - [23/06/2013 18:58:47]
AdwCleaner[R16].txt - [2288 octets] - [23/06/2013 19:00:25]
AdwCleaner[R17].txt - [2349 octets] - [23/06/2013 20:36:49]
AdwCleaner[R18].txt - [2410 octets] - [23/06/2013 21:43:39]
AdwCleaner[R19].txt - [2471 octets] - [23/06/2013 22:42:52]
AdwCleaner[R1].txt - [1398 octets] - [09/06/2013 22:19:04]
AdwCleaner[R20].txt - [2532 octets] - [24/06/2013 16:31:39]
AdwCleaner[R21].txt - [2593 octets] - [24/06/2013 22:31:38]
AdwCleaner[R22].txt - [2654 octets] - [25/06/2013 22:47:39]
AdwCleaner[R23].txt - [2992 octets] - [30/06/2013 16:14:11]
AdwCleaner[R24].txt - [3053 octets] - [02/07/2013 20:49:18]
AdwCleaner[R2].txt - [1441 octets] - [05/06/2013 06:56:33]
AdwCleaner[R3].txt - [1501 octets] - [05/06/2013 22:49:16]
AdwCleaner[R4].txt - [1561 octets] - [06/06/2013 18:53:13]
AdwCleaner[R5].txt - [1621 octets] - [07/06/2013 20:15:47]
AdwCleaner[R6].txt - [1681 octets] - [07/06/2013 22:28:42]
AdwCleaner[R7].txt - [1741 octets] - [07/06/2013 22:49:06]
AdwCleaner[R8].txt - [1801 octets] - [15/06/2013 21:53:03]
AdwCleaner[R9].txt - [1861 octets] - [17/06/2013 21:03:21]
AdwCleaner[S1].txt - [2824 octets] - [02/07/2013 20:52:01]
########## EOF - C:\AdwCleaner[S1].txt - [2884 octets] ##########
Code:
ATTFilter ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 4.9.4 (05.06.2013:1)
OS: Microsoft Windows XP x86
Ran by Admin on 02.07.2013 at 21:08:07,10
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
~~~ Services
~~~ Registry Values
~~~ Registry Keys
~~~ Files
~~~ Folders
~~~ FireFox
Emptied folder: C:\Dokumente und Einstellungen\Admin\Anwendungsdaten\mozilla\firefox\profiles\mkh8m4lm.default\minidumps [4 files]
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 02.07.2013 at 21:14:54,37
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Code:
ATTFilter ESETSmartInstaller@High as downloader log:
all ok
esets_scanner_update returned -1 esets_gle=1
# version=8
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.6920
# api_version=3.0.2
# EOSSerial=85f3ec99dc2e7248a0f973b176c828e8
# engine=14241
# end=finished
# remove_checked=false
# archives_checked=true
# unwanted_checked=false
# unsafe_checked=false
# antistealth_checked=true
# utc_time=2013-07-03 01:06:12
# local_time=2013-07-03 03:06:12 (+0100, Westeuropäische Sommerzeit)
# country="Germany"
# lang=1033
# osver=5.1.2600 NT Service Pack 3
# compatibility_mode=3591 16777213 83 93 38626 135410157 0 0
# scanned=131805
# found=0
# cleaned=0
# scan_time=20201
Code:
ATTFilter esults of screen317's Security Check version 0.99.68 Windows XP Service Pack 3 x86 Internet Explorer 8 Out of date! ``````````````Antivirus/Firewall Check:`````````````` Norton Internet Security CBE `````````Anti-malware/Other Utilities Check:````````` SpywareBlaster 5.0 AntiBrowserSpy Secunia PSI (3.0.0.7009) Malwarebytes Anti-Malware Version 1.75.0.1300 TuneUp Utilities 2012 TuneUp Utilities Language Pack (de-DE) Java 7 Update 21 Java(TM) 6 Update 3 Java(TM) 6 Update 7 Java version out of Date! Adobe Flash Player 11.7.700.224 Adobe Reader 9 Adobe Reader XI Mozilla Firefox 21.0 Firefox out of Date! ````````Process Check: objlist.exe by Laurent```````` Norton ccSvcHst.exe `````````````````System Health check````````````````` Total Fragmentation on Drive C:: ````````````````````End of Log`````````````````````` FRST Logfile: FRST Logfile: FRST Logfile: Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 02-07-2013
Ran by Admin (administrator) on 03-07-2013 06:40:28
Running from C:\Dokumente und Einstellungen\Admin\Desktop
Microsoft Windows XP Home Edition Service Pack 3 (X86) OS Language: German Standard
Internet Explorer Version 8
Boot Mode: Normal
==================== Processes (Whitelisted) ===================
(ATI Technologies Inc.) C:\WINDOWS\system32\Ati2evxx.exe
(Acronis) C:\Programme\Gemeinsame Dateien\Acronis\Schedule2\schedul2.exe
(Acronis) C:\Programme\Gemeinsame Dateien\Acronis\CDP\afcdpsrv.exe
(ATI Technologies Inc.) C:\WINDOWS\system32\Ati2evxx.exe
(Oracle Corporation) C:\Programme\Java\jre7\bin\jqs.exe
(Microsoft Corporation) C:\Programme\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe
(Symantec Corporation) C:\Programme\Norton Internet Security CBE\Engine\20.4.0.40\ccSvcHst.exe
(Secunia) C:\Programme\Secunia\PSI\PSIA.exe
(Symantec Corporation) C:\Programme\Norton Internet Security CBE\Engine\20.4.0.40\ccSvcHst.exe
(LULU Software) C:\Programme\Soda PDF 5\HelperService.exe
(LULU Software) C:\Programme\Soda PDF 5\ConversionService.exe
(Microsoft Corporation) C:\Programme\Microsoft SQL Server\90\Shared\sqlbrowser.exe
(Microsoft Corporation) C:\Programme\Microsoft SQL Server\90\Shared\sqlwriter.exe
(Softwareentwicklung Remus - ArchiCrypt) C:\WINDOWS\system32\STGRAMDiskHandler32.exe
(Acronis) C:\Programme\Gemeinsame Dateien\Acronis\SyncAgent\syncagentsrv.exe
(TuneUp Software) C:\Programme\TuneUp Utilities 2012\TuneUpUtilitiesService32.exe
(Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
(TuneUp Software) C:\Programme\TuneUp Utilities 2012\TuneUpUtilitiesApp32.exe
(Acronis) C:\Programme\Gemeinsame Dateien\Acronis\Schedule2\schedhlp.exe
(Steganos Software GmbH) C:\Programme\Steganos Privacy Suite 2012\fredirstarter.exe
(Steganos Software GmbH) C:\Programme\Steganos Privacy Suite 2012\SteganosHotKeyService.exe
(Acronis) C:\Programme\Acronis\TrueImageHome\TrueImageMonitor.exe
(Acronis) C:\Programme\Acronis\TrueImageHome\TimounterMonitor.exe
() C:\Programme\RocketDock\RocketDock.exe
(OrdinarySoft) C:\Programme\Vista Start Menu\VistaStartMenu.exe
(Microsoft) C:\Programme\AntiBrowserSpy\AntiBrowserSpyBrowserMaske.exe
(Steganos Software GmbH) C:\Programme\Steganos Privacy Suite 2012\SteganosBrowserMonitor.exe
(Microsoft Corporation) C:\Programme\Windows Desktop Search\WindowsSearch.exe
(Secunia) C:\Programme\Secunia\PSI\sua.exe
(Mozilla Corporation) C:\Programme\Mozilla Firefox\firefox.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [Acronis Scheduler2 Service] "C:\Programme\Gemeinsame Dateien\Acronis\Schedule2\schedhlp.exe" [403688 2012-06-28] (Acronis)
HKLM\...\Run: [Media Codec Update Service] C:\Programme\Essentials Codec Pack\update.exe -silent [303104 2007-04-08] (MediaCodec.Org)
HKLM\...\Run: [ATIPTA] C:\Programme\ATI Technologies\ATI Control Panel\atiptaxx.exe [339968 2004-05-15] (ATI Technologies, Inc.)
HKLM\...\Run: [SSS2012 File Redirection Starter] "C:\Programme\Steganos Privacy Suite 2012\fredirstarter.exe" [17920 2012-10-30] (Steganos Software GmbH)
HKLM\...\Run: [SSS2012 HotKeys] "C:\Programme\Steganos Privacy Suite 2012\SteganosHotKeyService.exe" [84480 2012-10-30] (Steganos Software GmbH)
HKLM\...\Run: [TrueImageMonitor.exe] "C:\Programme\Acronis\TrueImageHome\TrueImageMonitor.exe" [5993216 2012-06-28] (Acronis)
HKLM\...\Run: [AcronisTimounterMonitor] C:\Programme\Acronis\TrueImageHome\TimounterMonitor.exe [1173712 2012-06-28] (Acronis)
Winlogon\Notify\AtiExtEvent: Ati2evxx.dll (ATI Technologies Inc.)
HKCU\...\Run: [RocketDock] "C:\Programme\RocketDock\RocketDock.exe" [495616 2007-09-02] ()
HKCU\...\Run: [VistaStartMenu] "C:\Programme\Vista Start Menu\VistaStartMenu.exe" [2145792 2008-10-08] (OrdinarySoft)
HKCU\...\Run: [BrowserMask] "C:\Programme\AntiBrowserSpy\AntiBrowserSpyBrowserMaske.exe" -delayed [101280 2011-11-02] (Microsoft)
HKCU\...\Run: [SSS2012 Browser Monitor] "C:\Programme\Steganos Privacy Suite 2012\SteganosBrowserMonitor.exe" [69120 2012-10-30] (Steganos Software GmbH)
HKCU\...\Run: [StartMenuX] C:\Programme\Start Menu X\StartMenuX.exe [4617536 2013-05-03] (OrdinarySoft)
HKCU\...\Run: [Password Depot] "C:\Programme\AceBIT\Password Depot 7\PasswordDepot.exe" -bg [11618952 2013-05-17] (AceBIT GmbH)
HKCU\...\Policies\system: [EnableLUA] 1
HKCU\...\Policies\system: [DisableRegistryTools] 0
HKCU\...\Policies\system: [DisableTaskMgr] 0
IMEO\softwareupdate.exe: [Debugger] "C:\Programme\TuneUp Utilities 2012\TUAutoReactivator32.exe"
IMEO\tidystartmenu.exe: [Debugger] "C:\Programme\TuneUp Utilities 2012\TUAutoReactivator32.exe"
IMEO\unins000.exe: [Debugger] "C:\Programme\TuneUp Utilities 2012\TUAutoReactivator32.exe"
BootExecute: autocheck autochk * pgdfgsvc C 1autocheck turegoptsdnclean.exe
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
SearchScopes: HKCU - {483830EE-A4CD-4b71-B0A3-3D82E62A6909} URL =
SearchScopes: HKCU - {D3B2415D-4397-4B32-BC44-7468926C831A} URL = hxxp://search.yahoo.com.anonymize-me.de/?anonymto=687474703A2F2F7365617263682E7961686F6F2E636F6D2F7365617263683F703D7B7365617263685465726D737D2665693D7574662D382666723D6231696537&st={searchTerms}&clid=2d4be040-2347-4cd0-b233-2df7cf41578b&pid=freewarede&k=0
SearchScopes: HKCU - {DECA3892-BA8F-44b8-A993-A466AD694AE4} URL = hxxp://de.search.yahoo.com.anonymize-me.de/?anonymto=687474703A2F2F64652E7365617263682E7961686F6F2E636F6D2F7365617263683F703D7B7365617263685465726D737D&st={searchTerms}&clid=2d4be040-2347-4cd0-b233-2df7cf41578b&pid=freewarede&k=0
BHO: IE7Pro BHO - {00011268-E188-40DF-A514-835FCD78B1BF} - C:\Programme\IEPro\iepro.dll (IE7Pro.com)
BHO: CBAbzockschutz.InitToolbarBHO - {2e250b90-0e7a-42a3-9d65-e39f9f227fa4} - C:\Windows\System32\mscoree.dll (Microsoft Corporation)
BHO: Norton Identity Protection - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Programme\Norton Internet Security CBE\Engine\20.4.0.40\coIEPlg.dll (Symantec Corporation)
BHO: Norton Vulnerability Protection - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Programme\Norton Internet Security CBE\Engine\20.4.0.40\IPS\IPSBHO.DLL (Symantec Corporation)
BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Programme\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Password Depot 7 - {9F79B165-70F7-4C46-B1A5-8828E2FF21F9} - "C:\Programme\AceBIT\Password Depot 7\pdIEAddOn32.dll" No File
BHO: Soda PDF 5 IE Helper - {C737F472-1193-4281-BF53-A00B67AB3E19} - C:\Programme\Soda PDF 5\PDFIEHelper.dll (LULU Software)
BHO: WOT Helper - {C920E44A-7F78-4E64-BDD7-A57026E7FEB7} - C:\Programme\WOT\WOT.dll ()
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Programme\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO: SingleInstance Class - {FDAD4DA1-61A2-4FD8-9C17-86F7AC245081} - C:\Programme\Yahoo!\Companion\Installs\cpn0\YTSingleInstance.dll (Yahoo! Inc)
Toolbar: HKLM - COMPUTERBILD-Abzockschutz - {353e2a48-6254-4bd3-88f4-3b51a0ca7870} - C:\Windows\System32\mscoree.dll (Microsoft Corporation)
Toolbar: HKLM - WOT - {71576546-354D-41c9-AAE8-31F2EC22BF0D} - C:\Programme\WOT\WOT.dll ()
Toolbar: HKLM - No Name - {8dcb7100-df86-4384-8842-8fa844297b3f} - No File
Toolbar: HKLM - Steganos Password Manager Toolbar - {9C65D12D-CF9D-454D-8049-61965D8C6FFF} - C:\Programme\Steganos Privacy Suite 2012\SPMIEToolbar.dll (Steganos Software GmbH)
Toolbar: HKLM - Soda PDF 5 IE Toolbar - {F335ABA2-FDB4-4644-92B2-5CC4B0FC91D6} - C:\Programme\Soda PDF 5\PDFIEPlugin.dll (LULU Software)
Toolbar: HKLM - No Name - {eec0f710-38b5-4aba-99bf-ec87564a4e13} - No File
Toolbar: HKLM - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Programme\Norton Internet Security CBE\Engine\20.4.0.40\coIEPlg.dll (Symantec Corporation)
Toolbar: HKCU -&Adresse - {01E04581-4EEE-11D0-BFE9-00AA005B4383} - C:\Windows\System32\browseui.dll (Microsoft Corporation)
Toolbar: HKCU -&Links - {F2CF5485-4E02-4F68-819C-B92DE9277049} - C:\WINDOWS\system32\ieframe.dll (Microsoft Corporation)
Toolbar: HKCU -WOT - {71576546-354D-41C9-AAE8-31F2EC22BF0D} - C:\Programme\WOT\WOT.dll ()
Toolbar: HKCU -Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Programme\Norton Internet Security CBE\Engine\20.4.0.40\coIEPlg.dll (Symantec Corporation)
DPF: {02BCC737-B171-4746-94C9-0D8A0B2C0089} hxxp://office.microsoft.com/templates/ieawsdc.cab
DPF: {05CA9FB0-3E3E-4B36-BF41-0E3A5CAA8CD8} hxxp://download.microsoft.com/download/e/7/3/e7345c16-80aa-4488-ae10-9ac6be844f99/OGAControl.cab
DPF: {166B1BCA-3F9C-11CF-8075-444553540000} hxxp://download.macromedia.com/pub/shockwave/cabs/director/sw.cab
DPF: {17492023-C23A-453E-A040-C7C580BBF700} hxxp://download.microsoft.com/download/5/b/0/5b0d4654-aa20-495c-b89f-c1c34c691085/LegitCheckControl.cab
DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} C:\Programme\Yahoo!\Common\Yinsthelper.dll
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_21-windows-i586.cab
DPF: {C7DB51B4-BCF7-4923-8874-7F1A0DC92277} hxxp://office.microsoft.com/officeupdate/content/opuc4.cab
DPF: {CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_03-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_07-windows-i586.cab
DPF: {CAFEEFAC-0017-0000-0021-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_21-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_21-windows-i586.cab
DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
Handler: ipp - No CLSID Value -
Handler: lid - {5C135180-9973-46D9-ABF4-148267CBB8BF} - C:\WINDOWS\System32\msvidctl.dll (Microsoft Corporation)
Handler: msdaipp - No CLSID Value -
Handler: wot - {C2A44D6B-CB9F-4663-88A6-DF2F26E4D952} - C:\Programme\WOT\WOT.dll ()
ShellExecuteHooks: Windows Desktop Search Namespace Manager - {56F9679E-7826-4C84-81F3-532071A8BCC5} - C:\Programme\Windows Desktop Search\MSNLNamespaceMgr.dll [304128 2009-05-24] (Microsoft Corporation)
Tcpip\Parameters: [DhcpNameServer] 192.168.178.1
FireFox:
========
FF ProfilePath: C:\Dokumente und Einstellungen\Admin\Anwendungsdaten\Mozilla\Firefox\Profiles\mkh8m4lm.default
FF Plugin: @adobe.com/FlashPlayer - C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_7_700_224.dll ()
FF Plugin: @adobe.com/ShockwavePlayer - C:\WINDOWS\system32\Adobe\Director\np32dsw_1202122.dll (Adobe Systems, Inc.)
FF Plugin: @google.com/npPicasa3,version=3.0.0 - C:\Programme\Google\Picasa3\npPicasa3.dll (Google, Inc.)
FF Plugin: @java.com/JavaPlugin,version=10.21.2 - C:\Programme\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @logitech.com/HarmonyRemote,version=1.0.0 - C:\Programme\Logitech\Harmony Remote Driver\NprtHarmonyPlugin.dll (Logitech Inc.)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Programme\Microsoft Silverlight\5.1.20125.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF Plugin: @nokia.com/EnablerPlugin - C:\Programme\Nokia\Nokia Suite\npNokiaSuiteEnabler.dll ( )
FF Plugin: @real.com/nppl3260;version=6.0.11.3088 - C:\Programme\Real\RealPlayer\Netscape6\nppl3260.dll (RealNetworks, Inc.)
FF Plugin: @real.com/nprjplug;version=1.0.2.3146 - C:\Programme\Real\RealPlayer\Netscape6\nprjplug.dll (RealNetworks, Inc.)
FF Plugin: @real.com/nprpjplug;version=6.0.11.3006 - C:\Programme\Real\RealPlayer\Netscape6\nprpjplug.dll (RealNetworks, Inc.)
FF Plugin: @tools.google.com/Google Update;version=3 - C:\Programme\Google\Update\1.3.21.145\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 - C:\Programme\Google\Update\1.3.21.145\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @videolan.org/vlc,version=2.0.6 - C:\Programme\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: Adobe Reader - C:\Programme\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=3 - C:\Dokumente und Einstellungen\Admin\Lokale Einstellungen\Anwendungsdaten\Google\Update\1.3.21.145\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=9 - C:\Dokumente und Einstellungen\Admin\Lokale Einstellungen\Anwendungsdaten\Google\Update\1.3.21.145\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: amazon.com/AmazonMP3DownloaderPlugin - C:\Programme\Amazon\MP3 Downloader\npAmazonMP3DownloaderPlugin101753.dll (Amazon.com, Inc.)
FF Extension: No Name - C:\Dokumente und Einstellungen\Admin\Anwendungsdaten\Mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}
FF Extension: Microsoft .NET Framework Assistant - C:\Dokumente und Einstellungen\Admin\Anwendungsdaten\Mozilla\Firefox\Profiles\mkh8m4lm.default\Extensions\{20a82645-c095-46ed-80e3-08825760534b}
FF Extension: WOT - C:\Dokumente und Einstellungen\Admin\Anwendungsdaten\Mozilla\Firefox\Profiles\mkh8m4lm.default\Extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7}
FF Extension: No Name - C:\Dokumente und Einstellungen\Admin\Anwendungsdaten\Mozilla\Firefox\Profiles\mkh8m4lm.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
FF Extension: No Name - C:\Dokumente und Einstellungen\Admin\Anwendungsdaten\Mozilla\Firefox\Profiles\mkh8m4lm.default\Extensions\{d49175b3-3fd8-43b8-b28e-da5d47f3c398}.xpi
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
FF Extension: Microsoft .NET Framework Assistant - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
FF HKLM\...\Firefox\Extensions: [{09F060FA-566D-42D7-BF79-97AB30863433}] C:\Programme\Steganos Privacy Suite 2012\pfplugin
FF Extension: <?xml version="1.0" ?><RDF xmlns="hxxp://www.w3.org/1999/02/22-rdf-syntax-ns#" xmlns:em="hxxp://www.mozilla.org/2004/em-rdf#">
<Description about="urn:mozilla:install-manifest">
<em:creator>Steganos GmbH</em:creator>
<em:description>Steganos Private Favorites Plugin</em:description>
<em:homepageURL>hxxp://www.steganos.com/</em:homepageURL>
<em:id>{09F060FA-566D-42D7-BF79-97AB30863433}</em:id>
<em:name>Steganos Private Favorites</em:name>
<em:version>13.0.3.10053</em:version>
<em:targetApplication>
<!-- Firefox -->
<Description>
<em:id>{ec8030f7-c20a-464f-9b0e-13a3a9e97384}</em:id>
<em:minVersion>2.0</em:minVersion>
<em:maxVersion>20.*</em:maxVersion>
</Description>
<!-- SeaMonkey -->
<Description>
<em:id>{92650c4d-4b8e-4d2a-b7eb-24ecf4f6b63a}</em:id>
<em:minVersion>2.0</em:minVersion>
<em:maxVersion>2.5.*</em:maxVersion>
</Description>
</em:targetApplication>
<em:iconURL>chrome://pfplugin/skin/pfplugin_icon.png</em:iconURL><em:file><Description about="urn:mozilla:extension:file:pfplugin.jar"><em:package>content/</em:package><em:skin>skin/</em:skin><em:locale>locale/de-DE/</em:locale><em:locale>locale/en-US/</em:locale><em:locale>locale/fr-FR/</em:locale></Description></em:file></Description>
</RDF> - C:\Programme\Steganos Privacy Suite 2012\pfplugin
FF HKLM\...\Firefox\Extensions: [{00F0643E-B367-4779-B45D-7046EBA37A88}] C:\Programme\Steganos Privacy Suite 2012\spmplugin3
FF Extension: <?xml version="1.0" ?><RDF xmlns="hxxp://www.w3.org/1999/02/22-rdf-syntax-ns#" xmlns:em="hxxp://www.mozilla.org/2004/em-rdf#">
<Description about="urn:mozilla:install-manifest">
<em:creator>Steganos GmbH</em:creator>
<em:description>Steganos Password Manager Plugin</em:description>
<em:homepageURL>hxxp://www.steganos.com/</em:homepageURL>
<em:id>{00F0643E-B367-4779-B45D-7046EBA37A88}</em:id>
<em:name>Steganos Password Manager</em:name>
<em:version>13.0.3.10053</em:version>
<em:targetApplication>
<!-- Firefox -->
<Description>
<em:id>{ec8030f7-c20a-464f-9b0e-13a3a9e97384}</em:id>
<em:minVersion>3.0</em:minVersion>
<em:maxVersion>20.*</em:maxVersion>
</Description>
<!-- SeaMonkey -->
<Description>
<em:id>{92650c4d-4b8e-4d2a-b7eb-24ecf4f6b63a}</em:id>
<em:minVersion>2.0</em:minVersion>
<em:maxVersion>2.5.*</em:maxVersion>
</Description>
</em:targetApplication>
<em:iconURL>chrome://spmplugin3/skin/spmplugin3_icon.png</em:iconURL><em:file><Description about="urn:mozilla:extension:file:spmplugin3.jar"><em:package>content/</em:package><em:skin>skin/</em:skin><em:locale>locale/de-DE/</em:locale><em:locale>locale/en-US/</em:locale><em:locale>locale/fr-FR/</em:locale></Description></em:file></Description>
</RDF> - C:\Programme\Steganos Privacy Suite 2012\spmplugin3
FF HKLM\...\Firefox\Extensions: [FFSodaPDF5Converter@sodapdf.com] C:\Programme\Soda PDF 5\FFSoda5Ext
FF Extension: Soda PDF 5 Converter For Firefox - C:\Programme\Soda PDF 5\FFSoda5Ext
FF HKLM\...\Firefox\Extensions: [{2D3F3651-74B9-4795-BDEC-6DA2F431CB62}] C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.1.1.2\coFFPlgn\
FF Extension: Norton Toolbar - C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.1.1.2\coFFPlgn\
FF HKLM\...\Firefox\Extensions: [{BBDA0591-3099-440a-AA10-41764D9DB4DB}] C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.1.1.2\IPSFFPlgn\
FF Extension: Norton Vulnerability Protection - C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.1.1.2\IPSFFPlgn\
FF HKLM\...\Firefox\Extensions: [passworddepot@acebit.com] C:\Programme\AceBIT\Password Depot 7\Firefox\
FF Extension: Password Depot Extension - C:\Programme\AceBIT\Password Depot 7\Firefox\
========================== Services (Whitelisted) =================
R2 AcrSch2Svc; C:\Programme\Gemeinsame Dateien\Acronis\Schedule2\schedul2.exe [821584 2012-06-28] (Acronis)
R2 afcdpsrv; C:\Programme\Gemeinsame Dateien\Acronis\CDP\afcdpsrv.exe [3491792 2013-06-28] (Acronis)
S2 ATI Smart; C:\WINDOWS\system32\ati2sgag.exe [520192 2006-06-07] ()
S4 DfSdkS; C:\Programme\Ashampoo\Ashampoo WinOptimizer 2012\DfsdkS.exe [406016 2009-08-24] (mst software GmbH, Germany)
S2 gupdate; C:\Programme\Google\Update\GoogleUpdate.exe [116648 2013-02-23] (Google Inc.)
S3 gupdatem; C:\Programme\Google\Update\GoogleUpdate.exe [116648 2013-02-23] (Google Inc.)
S3 gusvc; C:\Programme\Google\Common\Google Updater\GoogleUpdaterService.exe [136120 2009-12-22] (Google)
S3 HRService; C:\Programme\Haufe\iDesk\iDeskService\iDeskService.exe [71208 2007-09-07] ()
S3 IDriverT; C:\Programme\Gemeinsame Dateien\InstallShield\Driver\1050\Intel 32\IDriverT.exe [73728 2004-10-22] (Macrovision Corporation)
S3 MatSvc; C:\Programme\Microsoft Fix it Center\Matsvc.exe [267568 2011-06-13] (Microsoft Corporation)
S3 MozillaMaintenance; C:\Programme\Mozilla Maintenance Service\maintenanceservice.exe [117144 2013-05-22] (Mozilla Foundation)
R2 MSSQL$SQLEXPRESS; C:\Programme\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe [29293408 2010-12-10] (Microsoft Corporation)
S4 MSSQLServerADHelper; C:\Programme\Microsoft SQL Server\90\Shared\sqladhlp90.exe [44384 2010-12-10] (Microsoft Corporation)
R2 NIS; C:\Programme\Norton Internet Security CBE\Engine\20.4.0.40\diMaster.dll [556336 2013-05-30] (Symantec Corporation)
R2 Secunia PSI Agent; C:\Programme\Secunia\PSI\PSIA.exe [1227800 2013-04-18] (Secunia)
R2 Secunia Update Agent; C:\Programme\Secunia\PSI\sua.exe [659992 2013-04-18] (Secunia)
S3 ServiceLayer; C:\Programme\PC Connectivity Solution\ServiceLayer.exe [725400 2012-10-03] (Nokia)
R2 Soda PDF 5 Helper Service; C:\Programme\Soda PDF 5\HelperService.exe [1237856 2013-01-25] (LULU Software)
R2 Soda PDF 5 Service; C:\Programme\Soda PDF 5\ConversionService.exe [877920 2013-01-25] (LULU Software)
S4 Sony PC Companion; C:\Programme\Sony\Sony PC Companion\PCCService.exe [155824 2013-02-04] (Avanquest Software)
R2 SQLBrowser; C:\Programme\Microsoft SQL Server\90\Shared\sqlbrowser.exe [238944 2010-12-10] (Microsoft Corporation)
R2 SQLWriter; C:\Programme\Microsoft SQL Server\90\Shared\sqlwriter.exe [86880 2010-12-10] (Microsoft Corporation)
R2 Steganos Volatile Disk; C:\WINDOWS\system32\STGRAMDiskHandler32.exe [349184 2012-10-29] (Softwareentwicklung Remus - ArchiCrypt)
R2 syncagentsrv; C:\Programme\Gemeinsame Dateien\Acronis\SyncAgent\syncagentsrv.exe [5924712 2012-06-28] (Acronis)
R2 TuneUp.UtilitiesSvc; C:\Programme\TuneUp Utilities 2012\TuneUpUtilitiesService32.exe [1528672 2012-05-29] (TuneUp Software)
S3 WMPNetworkSvc; C:\Programme\Windows Media Player\WMPNetwk.exe [920576 2006-11-03] (Microsoft Corporation)
S3 AppMgmt; %SystemRoot%\System32\appmgmts.dll [x]
R2 JavaQuickStarterService; "C:\Programme\Java\jre7\bin\jqs.exe" -service -config "C:\Programme\Java\jre7\lib\deploy\jqs\jqs.conf" [x]
==================== Drivers (Whitelisted) ====================
R2 acedrv09; C:\WINDOWS\system32\drivers\acedrv09.sys [373568 2007-06-18] (Protect Software GmbH)
R2 acehlp09; C:\WINDOWS\system32\drivers\acehlp09.sys [201696 2007-05-30] (Protect Software GmbH)
R3 ati2mtag; C:\Windows\System32\DRIVERS\ati2mtag.sys [1580544 2006-06-07] (ATI Technologies Inc.)
R3 ATIAVAIW; C:\Windows\System32\DRIVERS\atinavt2.sys [166528 2006-05-03] (ATI Technologies Inc.)
S3 atinrvxx; C:\Windows\System32\DRIVERS\atinrvxx.sys [105984 2004-04-14] (ATI Technologies Inc.)
R2 atksgt; C:\Windows\System32\DRIVERS\atksgt.sys [278728 2010-08-04] ()
S3 AVEO; C:\Windows\System32\DRIVERS\AVEOdcnt.sys [281472 2010-03-15] (AVEO Corp)
R1 BHDrvx86; C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.1.1.2\Definitions\BASHDefs\20130702.001\BHDrvx86.sys [1002072 2013-05-31] (Symantec Corporation)
R3 BrScnUsb; C:\Windows\System32\DRIVERS\BrScnUsb.sys [15295 2004-10-15] (Brother Industries Ltd.)
R2 CAPI20; C:\Windows\System32\drivers\capi20.sys [974040 2005-06-29] (DeTeWe Berlin)
S3 CCDECODE; C:\Windows\System32\DRIVERS\CCDECODE.sys [17024 2008-04-13] (Microsoft Corporation)
R1 ccSet_NIS; C:\Windows\system32\drivers\NIS\1404000.028\ccSetx86.sys [134744 2013-04-16] (Symantec Corporation)
R3 ctljystk; C:\Windows\System32\DRIVERS\ctljystk.sys [3712 2001-08-17] (Creative Technology Ltd.)
R1 eeCtrl; C:\Programme\Gemeinsame Dateien\Symantec Shared\EENGINE\eeCtrl.sys [376480 2012-08-18] (Symantec Corporation)
R3 EraserUtilRebootDrv; C:\Programme\Gemeinsame Dateien\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [106656 2012-08-18] (Symantec Corporation)
S3 FsUsbExDisk; C:\WINDOWS\system32\FsUsbExDisk.SYS [36608 2010-06-14] ()
R0 giveio; C:\Windows\System32\giveio.sys [5248 1996-04-03] ()
R3 IDSxpx86; C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.1.1.2\Definitions\IPSDefs\20130702.001\IDSxpx86.sys [373728 2013-06-19] (Symantec Corporation)
R2 lirsgt; C:\Windows\System32\DRIVERS\lirsgt.sys [25416 2010-08-04] ()
S3 LucentSoftModem; C:\Windows\System32\DRIVERS\LTSM.sys [815819 2002-07-20] (Lucent Technologies)
R2 MDC8021X; C:\Windows\System32\DRIVERS\mdc8021x.sys [15781 2007-11-10] (Meetinghouse Data Communications)
S3 MPE; C:\Windows\System32\DRIVERS\MPE.sys [15232 2008-04-13] (Microsoft Corporation)
S3 MVDCODEC; C:\Windows\System32\DRIVERS\atinmdxx.sys [13824 2004-04-14] (ATI Technologies Inc.)
S3 NABTSFEC; C:\Windows\System32\DRIVERS\NABTSFEC.sys [85248 2008-04-13] (Microsoft Corporation)
R3 NAVENG; C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.1.1.2\Definitions\VirusDefs\20130702.016\NAVENG.SYS [93272 2013-06-19] (Symantec Corporation)
R3 NAVEX15; C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.1.1.2\Definitions\VirusDefs\20130702.016\NAVEX15.SYS [1611992 2013-06-19] (Symantec Corporation)
S3 NdisIP; C:\Windows\System32\DRIVERS\NdisIP.sys [10880 2008-04-13] (Microsoft Corporation)
S3 PCANDIS5; C:\WINDOWS\System32\PCANDIS5.SYS [17134 2002-05-02] (Printing Communications Assoc., Inc. (PCAUSA))
S3 PRISM_A02; C:\Windows\System32\DRIVERS\PRISMA02.sys [379456 2004-05-20] (Conexant Systems, Inc.)
R3 PSI; C:\Windows\System32\DRIVERS\psi_mf_x86.sys [16024 2013-04-18] (Secunia)
R3 rtl8139; C:\Windows\System32\DRIVERS\R8139n51.SYS [45568 2002-06-13] (Realtek Semiconductor Corporation)
R0 sfdrv01a; C:\Windows\System32\drivers\sfdrv01a.sys [63352 2006-07-05] (Protection Technology (StarForce))
R0 sfvfs02; C:\Windows\System32\drivers\sfvfs02.sys [82296 2007-01-12] (Protection Technology (StarForce))
R1 SLEE_18_DRIVER; C:\WINDOWS\system32\drivers\Sleen18.sys [91112 2012-07-24] (Softwareentwicklung Remus - ArchiCrypt - )
S3 SLIP; C:\Windows\System32\DRIVERS\SLIP.sys [11136 2008-04-13] (Microsoft Corporation)
R3 SONYWBMS; C:\Windows\System32\DRIVERS\SonyWBMS.SYS [31586 2002-07-03] (Sony Corporation)
R0 speedfan; C:\Windows\System32\speedfan.sys [24184 2012-12-29] (Almico Software)
R3 SRTSP; C:\Windows\System32\Drivers\NIS\1404000.028\SRTSP.SYS [603224 2013-05-16] (Symantec Corporation)
R1 SRTSPX; C:\Windows\system32\drivers\NIS\1404000.028\SRTSPX.SYS [32344 2013-03-05] (Symantec Corporation)
R1 StarOpen; C:\Windows\System32\Drivers\StarOpen.sys [5632 2006-07-24] ()
R1 STGMFEngine32; C:\WINDOWS\system32\drivers\STGMFEngine32.sys [16384 2012-10-29] (Softwareentwicklung Remus - ArchiCrypt.com)
S3 streamip; C:\Windows\System32\DRIVERS\StreamIP.sys [15232 2008-04-13] (Microsoft Corporation)
R0 SymDS; C:\Windows\System32\drivers\NIS\1404000.028\SYMDS.SYS [367704 2013-05-21] (Symantec Corporation)
R0 SymEFA; C:\Windows\System32\drivers\NIS\1404000.028\SYMEFA.SYS [934488 2013-05-23] (Symantec Corporation)
R3 SymEvent; C:\WINDOWS\system32\Drivers\SYMEVENT.SYS [142496 2013-06-20] (Symantec Corporation)
R1 SymIRON; C:\Windows\system32\drivers\NIS\1404000.028\Ironx86.SYS [175264 2013-03-05] (Symantec Corporation)
R1 SYMTDI; C:\Windows\System32\Drivers\NIS\1404000.028\SYMTDI.SYS [396760 2013-04-25] (Symantec Corporation)
R0 tdrpman; C:\Windows\System32\DRIVERS\tdrpman.sys [775232 2013-06-28] (Acronis)
R2 tifsfilter; C:\Windows\System32\DRIVERS\tifsfilt.sys [28768 2007-11-10] (Acronis)
R3 TuneUpUtilitiesDrv; C:\Programme\TuneUp Utilities 2012\TuneUpUtilitiesDriver32.sys [10064 2012-05-08] (TuneUp Software)
S1 UimBus; C:\Windows\System32\DRIVERS\UimBus.sys [34392 2010-01-26] (Windows (R) 2000 DDK provider)
S1 Uim_IM; C:\Windows\System32\Drivers\Uim_IM.sys [385544 2010-01-26] (Paragon)
S3 ulisa; C:\Windows\System32\Drivers\ulisa.sys [33575 2005-06-29] (DeTeWe Berlin)
R3 uscbs109; C:\Windows\System32\DRIVERS\uscbs109.sys [8672 2005-03-22] ( )
R3 uscsc109; C:\Windows\System32\DRIVERS\uscsc109.sys [102336 2005-03-22] ( )
R0 vididr; C:\Windows\System32\DRIVERS\vididr.sys [126880 2013-06-28] (Acronis)
R0 vidsflt67; C:\Windows\System32\DRIVERS\vsflt67.sys [86496 2013-06-28] (Acronis)
R3 VirtDiskBus; C:\Windows\System32\DRIVERS\VirtDiskBus.sys [63640 2009-07-01] (Bazis)
R3 WDM_YAMAHAAC97; C:\Windows\System32\drivers\yacxgc.sys [202880 2002-07-19] (YAMAHA CORPORATION)
S3 WSTCODEC; C:\Windows\System32\DRIVERS\WSTCODEC.SYS [19200 2008-04-13] (Microsoft Corporation)
S3 catchme; \??\C:\DOKUME~1\Admin\LOKALE~1\Temp\catchme.sys [x]
S3 cpuz128; No ImagePath
S3 cpuz129; No ImagePath
S3 dtwmnic5; system32\DRIVERS\dtwmnic5.sys [x]
S4 hpt3xx; No ImagePath
S4 IntelIde; No ImagePath
S3 SANDRA; No ImagePath
U3 TlntSvr;
S3 TSMPacket; system32\DRIVERS\tsmpkt.sys [x]
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2013-07-02 21:07 - 2013-07-02 21:07 - 00000000 ____D C:\JRT
2013-07-02 21:00 - 2013-07-02 21:00 - 00002897 ____A C:\AdwCleaner[R25].txt
2013-07-02 20:52 - 2013-07-02 20:52 - 00002953 ____A C:\AdwCleaner[S1].txt
2013-07-02 20:49 - 2013-07-02 20:49 - 00003053 ____A C:\AdwCleaner[R24].txt
2013-07-02 01:31 - 2013-07-02 01:26 - 03211786 ____A C:\ARCDC.exe
2013-07-01 14:04 - 2013-07-01 14:04 - 00086312 ____A C:\windows-startet-nicht-mehr.html
2013-07-01 14:04 - 2013-07-01 14:04 - 00000000 ____D C:\windows-startet-nicht-mehr_files
2013-07-01 06:07 - 2013-07-01 14:04 - 00273144 ____A C:\OTL.Txt
2013-07-01 00:17 - 2013-07-01 00:17 - 05053696 ____A (Macrovision Corporation) C:\IsoBurner-Setup.exe
2013-06-30 18:03 - 2013-06-30 18:03 - 00031488 ____A C:\ComboFix.txt
2013-06-30 17:38 - 2013-06-30 17:38 - 00000000 RASHD C:\cmdcons
2013-06-30 17:28 - 2011-06-26 08:45 - 00256000 ____A C:\Windows\PEV.exe
2013-06-30 17:28 - 2010-11-07 19:20 - 00208896 ____A C:\Windows\MBR.exe
2013-06-30 17:28 - 2009-04-20 06:56 - 00060416 ____A (NirSoft) C:\Windows\NIRCMD.exe
2013-06-30 17:28 - 2000-08-31 02:00 - 00518144 ____A (SteelWerX) C:\Windows\SWREG.exe
2013-06-30 17:28 - 2000-08-31 02:00 - 00406528 ____A (SteelWerX) C:\Windows\SWSC.exe
2013-06-30 17:28 - 2000-08-31 02:00 - 00212480 ____A (SteelWerX) C:\Windows\SWXCACLS.exe
2013-06-30 17:28 - 2000-08-31 02:00 - 00098816 ____A C:\Windows\sed.exe
2013-06-30 17:28 - 2000-08-31 02:00 - 00080412 ____A C:\Windows\grep.exe
2013-06-30 17:28 - 2000-08-31 02:00 - 00068096 ____A C:\Windows\zip.exe
2013-06-30 17:26 - 2013-06-30 18:03 - 00000000 ____D C:\Qoobox
2013-06-30 17:11 - 2013-06-30 17:11 - 00000000 ____D C:\FRST
2013-06-30 16:14 - 2013-06-30 16:15 - 00002992 ____A C:\AdwCleaner[R23].txt
2013-06-30 12:38 - 2013-06-30 12:38 - 00000000 ____A C:\bcdedit.txt
2013-06-28 16:17 - 2013-06-28 16:17 - 00234752 ____A (Acronis) C:\Windows\System32\Drivers\afcdp.sys
2013-06-28 16:16 - 2013-06-28 16:16 - 00775232 ____A (Acronis) C:\Windows\System32\Drivers\tdrpman.sys
2013-06-28 16:02 - 2013-06-28 16:16 - 00086496 ____A (Acronis) C:\Windows\System32\Drivers\vsflt67.sys
2013-06-28 16:02 - 2013-06-28 16:02 - 00126880 ____A (Acronis) C:\Windows\System32\Drivers\vididr.sys
2013-06-28 16:00 - 2013-06-28 16:00 - 00080416 ____A (Acronis) C:\Windows\System32\Drivers\fltsrv.sys
2013-06-28 14:46 - 2013-06-28 14:46 - 00000056 ____A C:\{DA50139A-AD87-4B8E-9F67-03C2758B09C1}
2013-06-27 09:10 - 2013-07-03 06:12 - 00014229 ____A C:\Windows\setupapi.log
2013-06-25 22:47 - 2013-06-25 22:48 - 00002654 ____A C:\AdwCleaner[R22].txt
2013-06-24 22:31 - 2013-06-24 22:31 - 00002593 ____A C:\AdwCleaner[R21].txt
2013-06-24 17:17 - 2013-06-24 17:17 - 00000000 ____D C:\Windows\ShellNew
2013-06-24 16:31 - 2013-06-24 16:32 - 00002532 ____A C:\AdwCleaner[R20].txt
2013-06-23 22:42 - 2013-06-23 22:43 - 00002471 ____A C:\AdwCleaner[R19].txt
2013-06-23 22:32 - 2009-08-13 18:07 - 00729424 ____A (WeOnlyDo Software) C:\Windows\System32\wodSFTP.dll
2013-06-23 22:32 - 2009-08-13 18:07 - 00672024 ____A (WeOnlyDo! COM) C:\Windows\System32\wodKeys.dll
2013-06-23 21:43 - 2013-06-23 21:44 - 00002410 ____A C:\AdwCleaner[R18].txt
2013-06-23 20:36 - 2013-06-23 20:37 - 00002349 ____A C:\AdwCleaner[R17].txt
2013-06-23 19:00 - 2013-06-23 19:00 - 00002288 ____A C:\AdwCleaner[R16].txt
2013-06-23 18:58 - 2013-06-23 18:59 - 00002227 ____A C:\AdwCleaner[R15].txt
2013-06-23 18:12 - 2013-06-23 18:13 - 00002308 ____A C:\AdwCleaner[R14].txt
2013-06-23 17:06 - 2013-06-23 17:06 - 00002247 ____A C:\AdwCleaner[R13].txt
2013-06-23 16:53 - 2013-06-23 16:54 - 00002044 ____A C:\AdwCleaner[R12].txt
2013-06-23 16:43 - 2013-06-23 16:43 - 00003264 ____A C:\{F33B9D62-C6B9-492C-A909-C6A4234D097E}
2013-06-22 21:57 - 2013-06-22 21:57 - 00002576 ____A C:\{C937ECDE-81D9-4BD0-A300-E7F61656B6D2}
2013-06-20 16:23 - 2013-06-20 16:23 - 00000383 ____A C:\AdwCleaner[R11].txt
2013-06-19 20:31 - 2013-06-20 17:54 - 00142496 ____A (Symantec Corporation) C:\Windows\System32\Drivers\SYMEVENT.SYS
2013-06-19 20:31 - 2013-06-20 17:54 - 00007611 ____A C:\Windows\System32\Drivers\SYMEVENT.CAT
2013-06-19 20:27 - 2013-06-23 11:52 - 00000000 ____D C:\Windows\System32\Drivers\NIS
2013-06-19 18:13 - 2013-06-19 18:13 - 00001923 ____A C:\AdwCleaner[R10].txt
2013-06-17 21:03 - 2013-06-17 21:12 - 00001861 ____A C:\AdwCleaner[R9].txt
2013-06-16 08:29 - 2013-06-16 19:57 - 00065536 ____A C:\Windows\System32\config\Spybot -.evt
2013-06-15 21:53 - 2013-06-15 21:53 - 00001801 ____A C:\AdwCleaner[R8].txt
2013-06-09 22:19 - 2013-06-09 22:19 - 00001398 ____A C:\AdwCleaner[R1].txt
2013-06-09 19:55 - 2013-06-09 19:55 - 00003952 ____A C:\DelFix.txt
2013-06-09 08:21 - 2013-06-24 22:42 - 00000291 ____A C:\Boot.bak
2013-06-09 08:21 - 2004-08-03 23:00 - 00262448 _RASH C:\cmldr
2013-06-09 07:24 - 2013-06-06 20:48 - 00000276 ____A C:\Windows\Tasks\AppleSoftwareUpdate.job
2013-06-08 22:08 - 2013-06-30 17:24 - 00000000 ____D C:\Windows\erdnt
2013-06-08 21:56 - 2013-06-09 19:55 - 00000000 ____D C:\Windows\ERUNT
2013-06-07 22:49 - 2013-06-07 22:49 - 00001741 ____A C:\AdwCleaner[R7].txt
2013-06-07 22:28 - 2013-06-07 22:29 - 00001681 ____A C:\AdwCleaner[R6].txt
2013-06-07 20:15 - 2013-06-07 20:16 - 00001621 ____A C:\AdwCleaner[R5].txt
2013-06-06 18:53 - 2013-06-06 18:53 - 00001561 ____A C:\AdwCleaner[R4].txt
2013-06-05 22:49 - 2013-06-05 22:53 - 00001501 ____A C:\AdwCleaner[R3].txt
2013-06-05 22:30 - 2013-06-05 22:30 - 00000000 ____A C:\Windows\setuperr.log
2013-06-05 22:30 - 2013-06-05 22:30 - 00000000 ____A C:\Windows\setupact.log
2013-06-05 06:56 - 2013-06-05 06:57 - 00001441 ____A C:\AdwCleaner[R2].txt
==================== One Month Modified Files and Folders ========
2013-07-03 06:42 - 2009-02-18 22:49 - 00000396 ___AH C:\Windows\Tasks\User_Feed_Synchronization-{CA3A37EB-1AB4-409F-AA24-F04D753A391F}.job
2013-07-03 06:41 - 2013-02-23 16:30 - 00001088 ____A C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-07-03 06:39 - 2007-11-10 14:35 - 01479345 ____A C:\Windows\WindowsUpdate.log
2013-07-03 06:38 - 2002-08-05 17:43 - 00000361 __ASH C:\boot.ini
2013-07-03 06:35 - 2002-08-05 17:48 - 00000159 ____A C:\Windows\wiadebug.log
2013-07-03 06:35 - 2002-08-05 17:48 - 00000050 ____A C:\Windows\wiaservc.log
2013-07-03 06:34 - 2013-02-23 16:30 - 00001084 ____A C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-07-03 06:34 - 2002-08-05 16:53 - 00000006 ___AH C:\Windows\Tasks\SA.DAT
2013-07-03 06:32 - 2010-02-21 11:35 - 00458752 ____A C:\Windows\System32\config\TuneUp.evt
2013-07-03 06:32 - 2002-08-05 16:55 - 00031856 ____A C:\Windows\SchedLgU.Txt
2013-07-03 06:23 - 2002-08-05 17:46 - 00000000 ____D C:\Programme
2013-07-03 06:12 - 2013-06-27 09:10 - 00014229 ____A C:\Windows\setupapi.log
2013-07-03 05:55 - 2012-04-11 17:37 - 00000884 ____A C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-07-03 05:51 - 2010-03-21 21:29 - 00001210 ____A C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-638971174-4113303836-1484400983-1005UA.job
2013-07-02 21:07 - 2013-07-02 21:07 - 00000000 ____D C:\JRT
2013-07-02 21:00 - 2013-07-02 21:00 - 00002897 ____A C:\AdwCleaner[R25].txt
2013-07-02 20:52 - 2013-07-02 20:52 - 00002953 ____A C:\AdwCleaner[S1].txt
2013-07-02 20:49 - 2013-07-02 20:49 - 00003053 ____A C:\AdwCleaner[R24].txt
2013-07-02 18:31 - 2008-10-26 09:06 - 00000981 ____A C:\Windows\wiso.ini
2013-07-02 16:51 - 2010-03-21 21:29 - 00001158 ____A C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-638971174-4113303836-1484400983-1005Core.job
2013-07-02 01:37 - 2002-08-05 18:45 - 52690944 ____A C:\Windows\System32\config\software.bak
2013-07-02 01:26 - 2013-07-02 01:31 - 03211786 ____A C:\ARCDC.exe
2013-07-02 01:11 - 2002-08-05 16:51 - 00000000 ____D C:\Windows\System32\Restore
2013-07-01 21:35 - 2002-08-05 18:45 - 09699328 ____A C:\Windows\System32\config\system.bak
2013-07-01 21:35 - 2002-08-05 17:46 - 00262144 ____A C:\Windows\System32\config\SECURITY.bak
2013-07-01 21:35 - 2002-08-05 17:43 - 00001158 ____A C:\Windows\System32\wpa.dbl
2013-07-01 14:04 - 2013-07-01 14:04 - 00086312 ____A C:\windows-startet-nicht-mehr.html
2013-07-01 14:04 - 2013-07-01 14:04 - 00000000 ____D C:\windows-startet-nicht-mehr_files
2013-07-01 14:04 - 2013-07-01 06:07 - 00273144 ____A C:\OTL.Txt
2013-07-01 00:17 - 2013-07-01 00:17 - 05053696 ____A (Macrovision Corporation) C:\IsoBurner-Setup.exe
2013-06-30 18:03 - 2013-06-30 18:03 - 00031488 ____A C:\ComboFix.txt
2013-06-30 18:03 - 2013-06-30 17:26 - 00000000 ____D C:\Qoobox
2013-06-30 17:54 - 2002-08-05 17:43 - 00000227 ____A C:\Windows\system.ini
2013-06-30 17:38 - 2013-06-30 17:38 - 00000000 RASHD C:\cmdcons
2013-06-30 17:24 - 2013-06-08 22:08 - 00000000 ____D C:\Windows\erdnt
2013-06-30 17:11 - 2013-06-30 17:11 - 00000000 ____D C:\FRST
2013-06-30 16:15 - 2013-06-30 16:14 - 00002992 ____A C:\AdwCleaner[R23].txt
2013-06-30 12:38 - 2013-06-30 12:38 - 00000000 ____A C:\bcdedit.txt
2013-06-30 08:38 - 2008-02-15 18:21 - 00524288 ____A C:\Windows\System32\config\ACEEvent.evt
2013-06-30 08:38 - 2002-08-05 18:45 - 03407872 ____A C:\Windows\System32\config\default.bak
2013-06-30 08:38 - 2002-08-05 17:46 - 00024576 ____A C:\Windows\System32\config\SAM.bak
2013-06-28 16:17 - 2013-06-28 16:17 - 00234752 ____A (Acronis) C:\Windows\System32\Drivers\afcdp.sys
2013-06-28 16:16 - 2013-06-28 16:16 - 00775232 ____A (Acronis) C:\Windows\System32\Drivers\tdrpman.sys
2013-06-28 16:16 - 2013-06-28 16:02 - 00086496 ____A (Acronis) C:\Windows\System32\Drivers\vsflt67.sys
2013-06-28 16:16 - 2002-08-05 17:04 - 00000000 ____D C:\Windows\System32\ReinstallBackups
2013-06-28 16:04 - 2007-11-10 18:16 - 00614592 ____A (Acronis) C:\Windows\System32\Drivers\timntr.sys
2013-06-28 16:02 - 2013-06-28 16:02 - 00126880 ____A (Acronis) C:\Windows\System32\Drivers\vididr.sys
2013-06-28 16:01 - 2007-11-10 18:16 - 00177600 ____A (Acronis) C:\Windows\System32\Drivers\snapman.sys
2013-06-28 16:00 - 2013-06-28 16:00 - 00080416 ____A (Acronis) C:\Windows\System32\Drivers\fltsrv.sys
2013-06-28 14:46 - 2013-06-28 14:46 - 00000056 ____A C:\{DA50139A-AD87-4B8E-9F67-03C2758B09C1}
2013-06-25 22:48 - 2013-06-25 22:47 - 00002654 ____A C:\AdwCleaner[R22].txt
2013-06-24 22:42 - 2013-06-09 08:21 - 00000291 ____A C:\Boot.bak
2013-06-24 22:42 - 2002-08-05 17:43 - 00000630 ____A C:\Windows\win.ini
2013-06-24 22:31 - 2013-06-24 22:31 - 00002593 ____A C:\AdwCleaner[R21].txt
2013-06-24 17:18 - 2007-11-10 15:22 - 00000400 ____A C:\Windows\ODBC.INI
2013-06-24 17:18 - 2002-08-05 17:46 - 00004335 ____A C:\Windows\ODBCINST.INI
2013-06-24 17:17 - 2013-06-24 17:17 - 00000000 ____D C:\Windows\ShellNew
2013-06-24 16:32 - 2013-06-24 16:31 - 00002532 ____A C:\AdwCleaner[R20].txt
2013-06-23 22:43 - 2013-06-23 22:42 - 00002471 ____A C:\AdwCleaner[R19].txt
2013-06-23 21:44 - 2013-06-23 21:43 - 00002410 ____A C:\AdwCleaner[R18].txt
2013-06-23 20:37 - 2013-06-23 20:36 - 00002349 ____A C:\AdwCleaner[R17].txt
2013-06-23 19:00 - 2013-06-23 19:00 - 00002288 ____A C:\AdwCleaner[R16].txt
2013-06-23 18:59 - 2013-06-23 18:58 - 00002227 ____A C:\AdwCleaner[R15].txt
2013-06-23 18:13 - 2013-06-23 18:12 - 00002308 ____A C:\AdwCleaner[R14].txt
2013-06-23 17:06 - 2013-06-23 17:06 - 00002247 ____A C:\AdwCleaner[R13].txt
2013-06-23 16:54 - 2013-06-23 16:53 - 00002044 ____A C:\AdwCleaner[R12].txt
2013-06-23 16:43 - 2013-06-23 16:43 - 00003264 ____A C:\{F33B9D62-C6B9-492C-A909-C6A4234D097E}
2013-06-23 11:52 - 2013-06-19 20:27 - 00000000 ____D C:\Windows\System32\Drivers\NIS
2013-06-22 21:57 - 2013-06-22 21:57 - 00002576 ____A C:\{C937ECDE-81D9-4BD0-A300-E7F61656B6D2}
2013-06-20 17:54 - 2013-06-19 20:31 - 00142496 ____A (Symantec Corporation) C:\Windows\System32\Drivers\SYMEVENT.SYS
2013-06-20 17:54 - 2013-06-19 20:31 - 00007611 ____A C:\Windows\System32\Drivers\SYMEVENT.CAT
2013-06-20 16:23 - 2013-06-20 16:23 - 00000383 ____A C:\AdwCleaner[R11].txt
2013-06-19 18:13 - 2013-06-19 18:13 - 00001923 ____A C:\AdwCleaner[R10].txt
2013-06-17 21:12 - 2013-06-17 21:03 - 00001861 ____A C:\AdwCleaner[R9].txt
2013-06-16 20:03 - 2012-04-11 17:37 - 00692104 ____A (Adobe Systems Incorporated) C:\Windows\System32\FlashPlayerApp.exe
2013-06-16 20:03 - 2011-09-02 20:47 - 00071048 ____A (Adobe Systems Incorporated) C:\Windows\System32\FlashPlayerCPLApp.cpl
2013-06-16 19:57 - 2013-06-16 08:29 - 00065536 ____A C:\Windows\System32\config\Spybot -.evt
2013-06-15 21:53 - 2013-06-15 21:53 - 00001801 ____A C:\AdwCleaner[R8].txt
2013-06-09 22:19 - 2013-06-09 22:19 - 00001398 ____A C:\AdwCleaner[R1].txt
2013-06-09 19:55 - 2013-06-09 19:55 - 00003952 ____A C:\DelFix.txt
2013-06-09 19:55 - 2013-06-08 21:56 - 00000000 ____D C:\Windows\ERUNT
2013-06-07 22:49 - 2013-06-07 22:49 - 00001741 ____A C:\AdwCleaner[R7].txt
2013-06-07 22:29 - 2013-06-07 22:28 - 00001681 ____A C:\AdwCleaner[R6].txt
2013-06-07 20:16 - 2013-06-07 20:15 - 00001621 ____A C:\AdwCleaner[R5].txt
2013-06-06 20:48 - 2013-06-09 07:24 - 00000276 ____A C:\Windows\Tasks\AppleSoftwareUpdate.job
2013-06-06 18:53 - 2013-06-06 18:53 - 00001561 ____A C:\AdwCleaner[R4].txt
2013-06-05 22:53 - 2013-06-05 22:49 - 00001501 ____A C:\AdwCleaner[R3].txt
2013-06-05 22:32 - 2007-11-10 15:13 - 73381792 ____A (Microsoft Corporation) C:\Windows\System32\MRT.exe
2013-06-05 22:30 - 2013-06-05 22:30 - 00000000 ____A C:\Windows\setuperr.log
2013-06-05 22:30 - 2013-06-05 22:30 - 00000000 ____A C:\Windows\setupact.log
2013-06-05 22:29 - 2008-12-17 20:53 - 00000000 ____D C:\Windows\ie8updates
2013-06-05 06:57 - 2013-06-05 06:56 - 00001441 ____A C:\AdwCleaner[R2].txt
==================== Bamital & volsnap Check =================
C:\Windows\explorer.exe
[2002-08-05 17:43] - [2008-04-14 04:22] - 1036800 ____A (Microsoft Corporation) 418045a93cd87a352098ab7dabe1b53e
C:\Windows\System32\winlogon.exe
[2002-08-05 17:43] - [2008-04-14 04:23] - 0513024 ____A (Microsoft Corporation) f09a527b422e25c478e38caa0e44417a
C:\Windows\System32\svchost.exe
[2002-08-05 17:43] - [2008-04-14 04:23] - 0014336 ____A (Microsoft Corporation) 4fbc75b74479c7a6f829e0ca19df3366
C:\Windows\System32\services.exe
[2002-08-05 17:43] - [2009-02-09 13:21] - 0111104 ____A (Microsoft Corporation) a3edbe9053889fb24ab22492472b39dc
C:\Windows\System32\User32.dll
[2002-08-05 17:43] - [2008-04-14 04:22] - 0580096 ____A (Microsoft Corporation) b0050cc5340e3a0760dd8b417ff7aebd
C:\Windows\System32\userinit.exe
[2002-08-05 17:43] - [2008-04-14 04:23] - 0026624 ____A (Microsoft Corporation) 788f95312e26389d596c0fa55834e106
C:\Windows\System32\Drivers\volsnap.sys
[2002-08-05 17:43] - [2008-04-14 03:52] - 0053760 ____A (Microsoft Corporation) a5a712f4e880874a477af790b5186e1d
==================== End Of Log ============================
--- --- --- --- --- --- Hallo Schrauber, habe immer noch das Problem, dass sich die Wiederherstellungskonsole nicht deaktivieren lässt. Das Kästchen um ankreutzen ist verblasst. Und ich habe immer noch beim Starten von Windows xp zusätzliche Einträge ich mach mal eine Kopie vom Boot.ini Lieben Gruß Sakis Code:
ATTFilter [boot loader]
timeout=6
default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS
[operating systems]
C:\CMDCONS\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons
UnsupportedDebug="do not select this" /debug
multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP Home Edition" /FASTDETECT /NoExecute=AlwaysOff
c:\grldr="sichere Bank 2010
|
|
03.07.2013, 07:32
| #30 |
| /// the machine /// TB-Ausbilder | Virus w32.SillyFdc seitdem Startdatei verändert? Windows Repair (All In One) - Download - Filepony Installieren und laufen lassen, alle Schritte durchführen, alle Boxen anhaken am Schluss und laufen lassen.
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
| Themen zu Virus w32.SillyFdc seitdem Startdatei verändert? |
| aktiviert, datei, debugger, eintrag, ellung, entfern, entfernt, installiere, namens, norton, not, seitdem, starte, this, versuch, verändert, virus, wiederherstellung, windows |
