WIN XP home - TR/Rogue.8240432 A0000018.exe - auch nach Neuinstallation nicht weg

mb82 · 04.02.2014, 19:22

Hallo liebes Forum,

ich hoffe ihr könnt mir bei meinem speziellen Trojaner helfen. Mein Rechner hat diverse Virenwarnungen angezeigt, nachdem ich Tools von Cnet.de installiert habe (die ich als sicher eingestuft hatte). Da der PC vorher schon immer langsamer wurde (vielleicht lags auch an einem anderen Trojaner) habe ich mir überlegt Neuinstallation.

Doch nach Recovery Festplatte (Recovery Tool vom Hersteller) mit kompletten plattmachen der HDD ist der TR/Rogue.8240432 immer noch da und wird im System Volume in der Datei A0000018.exe gefunden.

MalwareBytes findet nichts. Avira Suite (Kaufversion) schlägt immer an. GMER stürzt nach 5 Minuten Scan ab und der Rechner bootet neu - deshalb gibt es von GMER auch nur eine abgespeckte Log-Version (Virenscanner war zum Scan aus).

Irgendwelche Ideen? Ich installiere gerne noch mal neu, aber wie bekomme ich das Biest aus dem MBR?

Anbei die Log-Files:

MWB

Code:

ATTFilter

Malwarebytes Anti-Malware 1.75.0.1300
www.malwarebytes.org

Datenbank Version: v2014.02.03.04

Windows XP Service Pack 3 x86 NTFS
Internet Explorer 8.0.6001.18702
Marco :: MARCOIDEAS10E [Administrator]

03.02.2014 18:19:15
mbam-log-2014-02-03 (18-19-15).txt

Art des Suchlaufs: Vollständiger Suchlauf (C:\|)
Aktivierte Suchlaufeinstellungen: Speicher | Autostart | Registrierung | Dateisystem | Heuristiks/Extra | HeuristiKs/Shuriken | PUP | PUM
Deaktivierte Suchlaufeinstellungen: P2P
Durchsuchte Objekte: 230814
Laufzeit: 43 Minute(n), 33 Sekunde(n)

Infizierte Speicherprozesse: 0
(Keine bösartigen Objekte gefunden)

Infizierte Speichermodule: 0
(Keine bösartigen Objekte gefunden)

Infizierte Registrierungsschlüssel: 0
(Keine bösartigen Objekte gefunden)

Infizierte Registrierungswerte: 0
(Keine bösartigen Objekte gefunden)

Infizierte Dateiobjekte der Registrierung: 0
(Keine bösartigen Objekte gefunden)

Infizierte Verzeichnisse: 0
(Keine bösartigen Objekte gefunden)

Infizierte Dateien: 0
(Keine bösartigen Objekte gefunden)

(Ende)

AVScan

Code:

ATTFilter

Exportierte Ereignisse:

04.02.2014 13:56 [System-Scanner] Malware gefunden
      Die Datei 'C:\System Volume 
      Information\_restore{2347FEDD-22E3-4128-B499-B9C92361E063}\RP1\A0000018.exe'
      enthielt einen Virus oder unerwünschtes Programm 'TR/Rogue.8240432' [trojan].
      Durchgeführte Aktion(en):
      Die Datei wurde ins Quarantäneverzeichnis unter dem Namen '556347bf.qua' 
      verschoben!

04.02.2014 13:21 [Updater] Update erfolgreich durchgeführt
      Update von Avira Antivirus Suite auf Computer MARCOIDEAS10E (192.168.1.51) 
      erfolgreich durchgeführt.
      Folgende Dateien wurden von "hxxp://89.105.213.21/update" aktualisiert:
      webcat1.dat
      webcat4.dat

04.02.2014 13:20 [Planer] Auftrag gestartet
      Auftrag "Automatisches Update"
      wurde erfolgreich gestartet.

03.02.2014 22:34 [Planer] Auftrag gestartet
      Auftrag "Automatisches Update"
      wurde erfolgreich gestartet.

03.02.2014 19:24 [Updater] Update erfolgreich durchgeführt
      Update von Avira Antivirus Suite auf Computer MARCOIDEAS10E (192.168.1.51) 
      erfolgreich durchgeführt.
      Folgende Dateien wurden von "hxxp://80.190.148.72/update" aktualisiert:
      webcat1.dat
      webcat3.dat
      webcat4.dat
      vbase031.vdf 7.11.128.222
      aevdf.dat 7.11.128.222

03.02.2014 19:23 [Planer] Auftrag gestartet
      Auftrag "Automatisches Update"
      wurde erfolgreich gestartet.

03.02.2014 18:38 [Echtzeit-Scanner] Malware gefunden
      In der Datei 'C:\System Volume 
      Information\_restore{2347FEDD-22E3-4128-B499-B9C92361E063}\RP1\A0000018.exe'
      wurde ein Virus oder unerwünschtes Programm 'TR/Rogue.8240432' [trojan] 
      gefunden.
      Ausgeführte Aktion: Zugriff verweigern

03.02.2014 17:17 [Browser-Schutz] Dienst gestartet
      Der Dienst wurde gestartet.
      Dienst Version:	14.00.02.254
      Engine Version:	8.2.12.180
      VDF Version:	7.11.128.196 

03.02.2014 17:17 [Email-Schutz] Dienst gestartet
      Der Dienst wurde gestartet.
      Dienst Version:	14.0.2.250
      Engine Version:	7.11.128.196
      VDF Version:	7.11.128.196 

03.02.2014 17:17 [Echtzeit-Scanner] Dienst gestartet
      Der Dienst wurde gestartet.
      Dienst Version:	14.0.1.519
      Engine Version:	
      VDF Version:	

03.02.2014 17:17 [Hilfsdienst] Dienst gestartet
      Der Dienst wurde gestartet.
      Dienst Version:	14.0.2.254
      Engine Version:	8.2.12.180
      VDF Version:	7.11.128.196

03.02.2014 17:17 [ProActiv] ProActiv aktiviert
      ProActiv wurde aktiviert.

03.02.2014 17:15 [Planer] Dienst gestartet
      Der Dienst wurde gestartet.
      Dienst Version 14.0.2.180

03.02.2014 17:14 [Email-Schutz] Dienst gestoppt
      Der Dienst wurde gestoppt.

03.02.2014 17:14 [Planer] Dienst gestoppt
      Der Dienst wurde gestoppt.

03.02.2014 17:14 [Echtzeit-Scanner] Dienst gestoppt
      Der Dienst wurde gestoppt.

03.02.2014 17:14 [Browser-Schutz] Dienst gestoppt
      Der Dienst wurde gestoppt.

03.02.2014 17:02 [System-Scanner] Suche
      Suchlauf beendet [Der Suchlauf wurde vollständig durchgeführt.].
      Anzahl Dateien:	113307
      Anzahl Verzeichnisse:	3997
      Anzahl Malware:	0
      Anzahl Warnungen:	0

03.02.2014 16:34 [System-Scanner] Suche
      Suchlauf beendet [Der Suchlauf wurde vollständig durchgeführt.].
      Anzahl Dateien:	1508
      Anzahl Verzeichnisse:	0
      Anzahl Malware:	0
      Anzahl Warnungen:	0

03.02.2014 16:32 [Planer] Auftrag gestartet
      Auftrag "scan_after_installation"
      wurde erfolgreich gestartet.

03.02.2014 16:32 [Updater] Update erfolgreich durchgeführt
      Update von Avira Antivirus Suite auf Computer MARCOIDEAS10E (192.168.1.51) 
      erfolgreich durchgeführt.
      Folgende Dateien wurden von "hxxp://80.190.148.73/update" aktualisiert:
      webcat0.dat
      webcat1.dat
      webcat2.dat
      webcat3.dat
      webcat4.dat
      vbase008.vdf 7.11.126.50
      vbase009.vdf 7.11.128.174
      vbase010.vdf 7.11.128.175
      vbase011.vdf 7.11.128.176
      vbase012.vdf 7.11.128.177
      vbase013.vdf 7.11.128.178
      vbase014.vdf 7.11.128.179
      vbase015.vdf 7.11.128.180
      vbase016.vdf 7.11.128.181
      vbase017.vdf 7.11.128.182
      vbase018.vdf 7.11.128.183
      vbase019.vdf 7.11.128.184
      vbase020.vdf 7.11.128.185
      vbase021.vdf 7.11.128.186
      vbase022.vdf 7.11.128.187
      vbase023.vdf 7.11.128.188
      vbase024.vdf 7.11.128.189
      vbase025.vdf 7.11.128.190
      vbase026.vdf 7.11.128.191
      vbase027.vdf 7.11.128.192
      vbase028.vdf 7.11.128.193
      vbase029.vdf 7.11.128.194
      vbase030.vdf 7.11.128.195
      vbase031.vdf 7.11.128.196
      aevdf.dat 7.11.128.196
      aecore.dll 8.1.33.0
      aegen.dll 8.1.7.22
      aeheur.dll 8.1.4.882
      aepack.dll 8.3.3.12
      aescn.dll 8.1.10.6
      aescript.dll 8.1.4.182
      aesbx.dll 8.2.20.6
      aeexp.dll 8.4.1.176
      aeset.dat 8.2.12.180
      avlode.rdf 13.0.1.70

03.02.2014 16:32 [Planer] Auftrag gestartet
      Auftrag "AVImmediateUpdateJobEx"
      wurde erfolgreich gestartet.

03.02.2014 16:31 [Planer] Auftrag gestartet
      Auftrag "AVImmediateUpdateJobEx"
      wurde erfolgreich gestartet.

03.02.2014 16:30 [Planer] Auftrag gestartet
      Auftrag "update_after_installation"
      wurde erfolgreich gestartet.

03.02.2014 16:29 [Browser-Schutz] Dienst gestartet
      Der Dienst wurde gestartet.
      Dienst Version:	14.00.02.254
      Engine Version:	8.2.12.158
      VDF Version:	7.11.118.130 

03.02.2014 16:29 [Email-Schutz] Dienst gestartet
      Der Dienst wurde gestartet.
      Dienst Version:	14.0.2.250
      Engine Version:	7.11.118.130
      VDF Version:	7.11.118.130 

03.02.2014 16:29 [Echtzeit-Scanner] Dienst gestartet
      Der Dienst wurde gestartet.
      Dienst Version:	14.0.1.519
      Engine Version:	
      VDF Version:	

03.02.2014 16:29 [Hilfsdienst] Dienst gestartet
      Der Dienst wurde gestartet.
      Dienst Version:	14.0.2.254
      Engine Version:	8.2.12.158
      VDF Version:	7.11.118.130

03.02.2014 16:29 [ProActiv] ProActiv aktiviert
      ProActiv wurde aktiviert.

03.02.2014 16:28 [Echtzeit-Scanner] Dienst gestoppt
      Der Dienst wurde gestoppt.

03.02.2014 16:28 [Browser-Schutz] Dienst gestoppt
      Der Dienst wurde gestoppt.

03.02.2014 16:28 [Email-Schutz] Dienst gestoppt
      Der Dienst wurde gestoppt.

03.02.2014 16:27 [Planer] Auftrag gestartet
      Auftrag "AVRunFact"
      wurde erfolgreich gestartet.

03.02.2014 16:27 [Email-Schutz] Dienst gestartet
      Der Dienst wurde gestartet.
      Dienst Version:	14.0.2.250
      Engine Version:	7.11.118.130
      VDF Version:	7.11.118.130 

03.02.2014 16:27 [Browser-Schutz] Dienst gestartet
      Der Dienst wurde gestartet.
      Dienst Version:	14.00.02.254
      Engine Version:	8.2.12.158
      VDF Version:	7.11.118.130 

03.02.2014 16:27 [Echtzeit-Scanner] Dienst gestartet
      Der Dienst wurde gestartet.
      Dienst Version:	14.0.1.519
      Engine Version:	
      VDF Version:	

03.02.2014 16:27 [Hilfsdienst] Dienst gestartet
      Der Dienst wurde gestartet.
      Dienst Version:	14.0.2.254
      Engine Version:	8.2.12.158
      VDF Version:	7.11.118.130

03.02.2014 16:26 [Planer] Dienst gestartet
      Der Dienst wurde gestartet.
      Dienst Version 14.0.2.180

03.02.2014 16:26 [ProActiv] ProActiv aktiviert
      ProActiv wurde aktiviert.

mb82 · 04.02.2014, 19:28

Hier der restliche Teil der Logs

FRST

FRST Logfile:

Code:

ATTFilter

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 03-02-2014
Ran by Marco (administrator) on MARCOIDEAS10E on 04-02-2014 13:51:28
Running from C:\Dokumente und Einstellungen\Marco\Eigene Dateien\Downloads
Microsoft Windows XP Home Edition Service Pack 3 (X86) OS Language: German Standard
Internet Explorer Version 8
Boot Mode: Normal



==================== Processes (Whitelisted) ===================

(Broadcom Corporation.) C:\Programme\Lenovo\Bluetooth Software\bin\btwdins.exe
(Avira Operations GmbH & Co. KG) C:\Programme\Avira\AntiVir Desktop\sched.exe
(Synaptics, Inc.) C:\Programme\Synaptics\SynTP\SynTPEnh.exe
(Lenovo(Beijing)Limited) C:\Program Files\Lenovo\Energy Management\utility.exe
(Lenovo (Beijing) Limited) C:\Program Files\Lenovo\Energy Management\Energy Management.exe
(Realtek Semiconductor Corp.) C:\WINDOWS\RTHDCPL.exe
(Intel Corporation) C:\WINDOWS\system32\igfxtray.exe
(Intel Corporation) C:\WINDOWS\system32\hkcmd.exe
(Intel Corporation) C:\WINDOWS\system32\igfxpers.exe
(Lenovo Group Limited) C:\Programme\Gemeinsame Dateien\Lenovo\Scheduler\scheduler_proxy.exe
(Avira Operations GmbH & Co. KG) C:\Programme\Avira\AntiVir Desktop\avgnt.exe
(Broadcom Corporation.) C:\Programme\Lenovo\Bluetooth Software\BTTray.exe
(Avira Operations GmbH & Co. KG) C:\Programme\Avira\AntiVir Desktop\avguard.exe
(Intel Corporation) C:\WINDOWS\system32\igfxsrvc.exe
(DeviceVM) C:\QSTART.SYS\DVMExportService.exe
(Lenovo Group Limited) C:\Programme\Gemeinsame Dateien\Lenovo\tvt_reg_monitor_svc.exe
(Broadcom Corporation.) C:\Programme\Lenovo\Bluetooth Software\BTStackServer.exe
(Lenovo Group Limited) C:\Programme\Gemeinsame Dateien\Lenovo\Scheduler\tvtsched.exe
(Lenovo Group Limited) C:\Programme\Lenovo\System Update\SUService.exe
(Avira Operations GmbH & Co. KG) C:\Programme\Avira\AntiVir Desktop\avshadow.exe
(Avira Operations GmbH & Co. KG) C:\Programme\Avira\AntiVir Desktop\avmailc.exe
(Avira Operations GmbH & Co. KG) C:\Programme\Avira\AntiVir Desktop\avwebgrd.exe
(Google) C:\Programme\Google\Drive\googledrivesync.exe
(Google) C:\Programme\Google\Drive\googledrivesync.exe
(shbox.de) C:\Programme\FreePDF_XP\fpassist.exe
(Avira Operations GmbH & Co. KG) C:\Programme\Avira\AntiVir Desktop\avscan.exe
(Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
(Mozilla Corporation) C:\Programme\Mozilla Firefox\firefox.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [SynTPEnh] - C:\Programme\Synaptics\SynTP\SynTPEnh.exe [1146880 2008-05-23] (Synaptics, Inc.)
HKLM\...\Run: [EnergyUtility] - C:\Program Files\Lenovo\Energy Management\utility.exe [4456448 2008-07-09] (Lenovo(Beijing)Limited)
HKLM\...\Run: [Energy Management] - C:\Program Files\Lenovo\Energy Management\Energy Management.exe [1283984 2008-08-28] (Lenovo (Beijing) Limited)
HKLM\...\Run: [RTHDCPL] - C:\WINDOWS\RTHDCPL.EXE [16805888 2008-07-29] (Realtek Semiconductor Corp.)
HKLM\...\Run: [Alcmtr] - C:\WINDOWS\ALCMTR.EXE [57344 2008-06-19] (Realtek Semiconductor Corp.)
HKLM\...\Run: [AzMixerSel] - C:\Programme\Realtek\Audio\InstallShield\AzMixerSel.exe [53248 2006-07-17] (Realtek Semiconductor Corp.)
HKLM\...\Run: [TVT Scheduler Proxy] - c:\Programme\Gemeinsame Dateien\Lenovo\Scheduler\scheduler_proxy.exe [487424 2008-03-04] (Lenovo Group Limited)
HKLM\...\Run: [avgnt] - C:\Programme\Avira\AntiVir Desktop\avgnt.exe [684600 2013-12-09] (Avira Operations GmbH & Co. KG)
HKLM\...\Run: [Adobe ARM] - C:\Programme\Gemeinsame Dateien\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-12-21] (Adobe Systems Incorporated)
HKLM\...\Run: [FreePDF Assistant] - C:\Programme\FreePDF_XP\fpassist.exe [374784 2014-01-09] (shbox.de)
HKLM\...\RunOnce: [ Malwarebytes Anti-Malware ] - C:\Programme\Malwarebytes' Anti-Malware\mbamgui.exe /install /silent [532040 2013-04-04] (Malwarebytes Corporation)
Startup: C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Autostart\BTTray.lnk
ShortcutTarget: BTTray.lnk -> C:\Programme\Lenovo\Bluetooth Software\BTTray.exe (Broadcom Corporation.)
Startup: C:\Dokumente und Einstellungen\Marco\Startmenü\Programme\Autostart\Dropbox.lnk
ShortcutTarget: Dropbox.lnk -> C:\Dokumente und Einstellungen\Marco\Anwendungsdaten\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://lenovo.live.com
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKCU\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://www.lenovo.com/welcome/thinkpad
SearchScopes: HKCU - DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://search.live.com/results.aspx?q={searchTerms}&FORM=LENIE
SearchScopes: HKCU - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://search.live.com/results.aspx?q={searchTerms}&FORM=LENIE
BHO: No Name - {7E853D72-626A-48EC-A868-BA8D5E23E045} -  No File
BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Programme\Windows Live Toolbar\msntb.dll (Microsoft Corporation)
Toolbar: HKLM - Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Programme\Windows Live Toolbar\msntb.dll (Microsoft Corporation)
Toolbar: HKCU - Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Programme\Windows Live Toolbar\msntb.dll (Microsoft Corporation)
Handler: http\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler: http\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler: https\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler: https\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler: ipp\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\Programme\Windows Live\Messenger\msgrapp.8.5.1302.1018.dll (Microsoft Corporation)
Handler: msdaipp\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler: msdaipp\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\Programme\Windows Live\Messenger\msgrapp.8.5.1302.1018.dll (Microsoft Corporation)
Winsock: Catalog9 01 C:\Programme\Avira\AntiVir Desktop\avsda.dll [257608] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 02 C:\Programme\Avira\AntiVir Desktop\avsda.dll [257608] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 18 C:\Programme\Avira\AntiVir Desktop\avsda.dll [257608] (Avira Operations GmbH & Co. KG)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.100

FireFox:
========
FF ProfilePath: C:\Dokumente und Einstellungen\Marco\Anwendungsdaten\Mozilla\Firefox\Profiles\q38mgbpt.default
FF Plugin: @microsoft.com/WPF,version=3.5 - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 - C:\Programme\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 - C:\Programme\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: Adobe Reader - C:\Programme\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF SearchPlugin: C:\Programme\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Programme\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Programme\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Programme\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
FF Extension: Microsoft .NET Framework Assistant - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\ []

========================== Services (Whitelisted) =================

R2 AntiVirMailService; C:\Programme\Avira\AntiVir Desktop\avmailc.exe [896056 2013-12-09] (Avira Operations GmbH & Co. KG)
R2 AntiVirSchedulerService; C:\Programme\Avira\AntiVir Desktop\sched.exe [440376 2013-12-09] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Programme\Avira\AntiVir Desktop\avguard.exe [440376 2013-12-09] (Avira Operations GmbH & Co. KG)
R2 AntiVirWebService; C:\Programme\Avira\AntiVir Desktop\AVWEBGRD.EXE [1011768 2013-12-09] (Avira Operations GmbH & Co. KG)
R2 btwdins; C:\Programme\Lenovo\Bluetooth Software\bin\btwdins.exe [346720 2008-06-23] (Broadcom Corporation.)
S2 gupdate; C:\Programme\Google\Update\GoogleUpdate.exe [116648 2014-02-03] (Google Inc.)
S3 gupdatem; C:\Programme\Google\Update\GoogleUpdate.exe [116648 2014-02-03] (Google Inc.)
R2 MDES; C:\QSTART.SYS\DVMExportService.exe [307200 2008-10-28] (DeviceVM)
S3 MozillaMaintenance; C:\Programme\Mozilla Maintenance Service\maintenanceservice.exe [119408 2013-12-05] (Mozilla Foundation)
R2 SUService; c:\programme\lenovo\system update\suservice.exe [32768 2008-09-02] (Lenovo Group Limited)
R2 ThinkVantage Registry Monitor Service; c:\Programme\Gemeinsame Dateien\Lenovo\tvt_reg_monitor_svc.exe [644408 2007-09-26] (Lenovo Group Limited)
R2 TVT Scheduler; c:\Programme\Gemeinsame Dateien\Lenovo\Scheduler\tvtsched.exe [1122304 2008-03-04] (Lenovo Group Limited)
S3 usnjsvc; C:\Programme\Windows Live\Messenger\usnsvc.exe [98328 2007-10-18] (Microsoft Corporation)
S3 WLSetupSvc; C:\Programme\Windows Live\installer\WLSetupSvc.exe [266240 2007-10-25] (Microsoft Corporation)

==================== Drivers (Whitelisted) ====================

S4 abp480n5; C:\WINDOWS\system32\DRIVERS\ABP480N5.SYS [23552 2001-08-17] (Microsoft Corporation)
R3 ACPIVPC; C:\WINDOWS\System32\DRIVERS\AcpiVpc.sys [9472 2008-01-11] (Lenovo Corporation)
R2 avgntflt; C:\WINDOWS\System32\DRIVERS\avgntflt.sys [90400 2013-12-09] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\WINDOWS\System32\DRIVERS\avipbb.sys [135648 2013-12-09] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\WINDOWS\System32\DRIVERS\avkmgr.sys [37352 2013-12-09] (Avira Operations GmbH & Co. KG)
R3 BCM43XX; C:\WINDOWS\System32\DRIVERS\bcmwl5.sys [1286144 2008-02-20] (Broadcom Corporation)
R3 BTKRNL; C:\WINDOWS\System32\DRIVERS\btkrnl.sys [991400 2008-06-23] (Broadcom Corporation.)
R3 BTWUSB; C:\WINDOWS\System32\Drivers\btwusb.sys [47272 2008-06-11] (Broadcom Corporation.)
S3 CCDECODE; C:\WINDOWS\System32\DRIVERS\CCDECODE.sys [17024 2008-04-14] (Microsoft Corporation)
S3 NdisIP; C:\WINDOWS\System32\DRIVERS\NdisIP.sys [10880 2008-04-14] (Microsoft Corporation)
R2 PMEM; C:\WINDOWS\system32\drivers\PMEMNT.SYS [7012 2006-04-23] (Microsoft Corporation)
S3 Rasirda; C:\WINDOWS\System32\DRIVERS\rasirda.sys [19584 2001-08-17] (Microsoft Corporation)
R3 RSUSBSTOR; C:\WINDOWS\System32\Drivers\RTS5121.sys [157696 2008-07-23] (Realtek Semiconductor Corp.)
R1 ssmdrv; C:\WINDOWS\System32\DRIVERS\ssmdrv.sys [28520 2013-12-09] (Avira GmbH)
S3 Rts516xIR; system32\DRIVERS\Rts516xIR.sys [X]
S3 USBCCID; system32\DRIVERS\Rts5161ccid.sys [X]
U1 WS2IFSL; 

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-02-04 13:51 - 2014-02-04 13:51 - 00000000 ____D () C:\FRST
2014-02-04 13:49 - 2014-02-04 13:49 - 00000000 _____ () C:\Dokumente und Einstellungen\Marco\defogger_reenable
2014-02-04 13:38 - 2014-02-04 13:39 - 00006538 _____ () C:\WINDOWS\KB2345886.log
2014-02-04 13:34 - 2014-02-04 13:34 - 00000000 __SHD () C:\Dokumente und Einstellungen\LocalService\IETldCache
2014-02-04 13:34 - 2014-02-04 13:34 - 00000000 ____D () C:\Dokumente und Einstellungen\LocalService\Anwendungsdaten\Adobe
2014-02-04 13:31 - 2014-02-04 13:38 - 00000000 ____D () C:\WINDOWS\LastGood
2014-02-03 19:17 - 2014-02-03 19:17 - 00000012 ____H () C:\dvmexp.idx
2014-02-03 17:58 - 2014-02-03 17:58 - 00000000 ____D () C:\Programme\Malwarebytes' Anti-Malware
2014-02-03 17:58 - 2014-02-03 17:58 - 00000000 ____D () C:\Dokumente und Einstellungen\Marco\Anwendungsdaten\Malwarebytes
2014-02-03 17:58 - 2014-02-03 17:58 - 00000000 ____D () C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Malwarebytes' Anti-Malware
2014-02-03 17:58 - 2014-02-03 17:58 - 00000000 ____D () C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Malwarebytes
2014-02-03 17:58 - 2013-04-04 14:50 - 00022856 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbam.sys
2014-02-03 17:51 - 2014-02-03 17:51 - 00000000 ____D () C:\Programme\Dropbox
2014-02-03 17:51 - 2014-02-03 17:51 - 00000000 ____D () C:\Dokumente und Einstellungen\Marco\Startmenü\Programme\Dropbox
2014-02-03 17:51 - 2014-02-03 17:51 - 00000000 ____D () C:\Dokumente und Einstellungen\Marco\Anwendungsdaten\DropboxMaster
2014-02-03 17:50 - 2014-02-03 17:52 - 00000000 ____D () C:\Dokumente und Einstellungen\Marco\Anwendungsdaten\Dropbox
2014-02-03 17:47 - 2014-02-03 17:47 - 00000000 ____D () C:\Programme\FreePDF_XP
2014-02-03 17:47 - 2014-02-03 17:47 - 00000000 ____D () C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\FreePDF
2014-02-03 17:47 - 2014-02-03 17:47 - 00000000 ____D () C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\FreePDF
2014-02-03 17:47 - 2012-06-21 07:25 - 00094208 _____ () C:\WINDOWS\system32\redmon32.dll
2014-02-03 17:47 - 2012-06-21 07:25 - 00039936 _____ () C:\WINDOWS\system32\unredmon.exe
2014-02-03 17:47 - 2012-06-21 07:25 - 00028435 _____ () C:\WINDOWS\system32\redmon.chm
2014-02-03 17:44 - 2014-02-03 17:44 - 00000000 ____D () C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Ghostscript
2014-02-03 17:43 - 2014-02-03 17:43 - 00000000 ____D () C:\Programme\gs
2014-02-03 17:41 - 2014-02-03 17:41 - 00001804 _____ () C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Adobe Reader XI.lnk
2014-02-03 17:41 - 2014-02-03 17:41 - 00001721 _____ () C:\Dokumente und Einstellungen\All Users\Desktop\Adobe Reader XI.lnk
2014-02-03 17:41 - 2014-02-03 17:41 - 00000000 ____D () C:\Programme\Gemeinsame Dateien\Adobe
2014-02-03 17:41 - 2014-02-03 17:41 - 00000000 ____D () C:\Programme\Adobe
2014-02-03 17:28 - 2014-02-03 17:28 - 00000000 ____D () C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Google Drive
2014-02-03 17:27 - 2014-02-04 13:32 - 00001088 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2014-02-03 17:27 - 2014-02-03 17:32 - 00001084 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2014-02-03 17:27 - 2014-02-03 17:28 - 00000000 ____D () C:\Programme\Google
2014-02-03 17:27 - 2014-02-03 17:28 - 00000000 ____D () C:\Dokumente und Einstellungen\Marco\Lokale Einstellungen\Anwendungsdaten\Google
2014-02-03 17:18 - 2014-02-03 17:18 - 00000104 _____ () C:\Dokumente und Einstellungen\Marco\Desktop\Arbeitsplatz.lnk
2014-02-03 17:16 - 2014-02-03 17:16 - 00000000 ___HD () C:\dvmexp
2014-02-03 16:35 - 2014-02-03 16:35 - 00000000 ____D () C:\WINDOWS\system32\NtmsData
2014-02-03 16:30 - 2014-02-03 16:30 - 00012328 _____ () C:\Dokumente und Einstellungen\Marco\Lokale Einstellungen\Anwendungsdaten\GDIPFONTCACHEV1.DAT
2014-02-03 16:27 - 2014-02-03 16:27 - 00000000 ____D () C:\Dokumente und Einstellungen\Marco\Anwendungsdaten\Avira
2014-02-03 16:25 - 2014-02-03 16:25 - 00000000 ____D () C:\Programme\Avira
2014-02-03 16:25 - 2014-02-03 16:25 - 00000000 ____D () C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Avira
2014-02-03 16:25 - 2014-02-03 16:25 - 00000000 ____D () C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Avira
2014-02-03 16:25 - 2013-12-09 11:37 - 00135648 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avipbb.sys
2014-02-03 16:25 - 2013-12-09 11:37 - 00090400 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avgntflt.sys
2014-02-03 16:25 - 2013-12-09 11:37 - 00037352 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avkmgr.sys
2014-02-03 16:25 - 2013-12-09 11:37 - 00028520 _____ (Avira GmbH) C:\WINDOWS\system32\Drivers\ssmdrv.sys
2014-02-03 16:04 - 2007-02-09 17:31 - 00004608 _____ () C:\WINDOWS\system32\Thumbs.db
2014-02-03 16:04 - 2005-05-23 14:34 - 00007710 ____C () C:\WINDOWS\system32\dllcache\OEMBIOS.CAT
2014-02-03 13:03 - 2014-02-03 13:03 - 00000000 ____D () C:\Dokumente und Einstellungen\Marco\Lokale Einstellungen\Anwendungsdaten\Mozilla
2014-02-03 13:03 - 2014-02-03 13:03 - 00000000 ____D () C:\Dokumente und Einstellungen\Marco\Anwendungsdaten\Mozilla
2014-02-03 13:02 - 2014-02-03 13:02 - 00000709 _____ () C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Mozilla Firefox.lnk
2014-02-03 13:02 - 2014-02-03 13:02 - 00000703 _____ () C:\Dokumente und Einstellungen\All Users\Desktop\Mozilla Firefox.lnk
2014-02-03 13:02 - 2014-02-03 13:02 - 00000000 ____D () C:\WINDOWS\system32\XPSViewer
2014-02-03 13:02 - 2014-02-03 13:02 - 00000000 ____D () C:\Programme\Reference Assemblies
2014-02-03 13:02 - 2014-02-03 13:02 - 00000000 ____D () C:\Programme\MSBuild
2014-02-03 13:02 - 2014-02-03 13:02 - 00000000 ____D () C:\Programme\Mozilla Maintenance Service
2014-02-03 13:02 - 2014-02-03 13:02 - 00000000 ____D () C:\Programme\Mozilla Firefox
2014-02-03 13:02 - 2014-02-03 13:02 - 00000000 ____D () C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Mozilla
2014-02-03 13:01 - 2014-02-03 13:02 - 00000000 ____D () C:\75cdcbcda7d32626c760c52bc544
2014-02-03 13:01 - 2008-07-06 13:06 - 01676288 ____N (Microsoft Corporation) C:\WINDOWS\system32\xpssvcs.dll
2014-02-03 13:01 - 2008-07-06 13:06 - 01676288 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\xpssvcs.dll
2014-02-03 13:01 - 2008-07-06 13:06 - 00575488 ____N (Microsoft Corporation) C:\WINDOWS\system32\xpsshhdr.dll
2014-02-03 13:01 - 2008-07-06 13:06 - 00575488 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\xpsshhdr.dll
2014-02-03 13:01 - 2008-07-06 13:06 - 00117760 ____N (Microsoft Corporation) C:\WINDOWS\system32\prntvpt.dll
2014-02-03 13:01 - 2008-07-06 13:06 - 00089088 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\filterpipelineprintproc.dll
2014-02-03 13:01 - 2008-07-06 11:50 - 00597504 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\printfilterpipelinesvc.exe
2014-02-03 12:55 - 2014-02-03 12:55 - 00000000 ____D () C:\Dokumente und Einstellungen\Marco\Anwendungsdaten\Macromedia
2014-02-03 12:54 - 2014-02-03 12:54 - 00000000 __SHD () C:\Dokumente und Einstellungen\Marco\IECompatCache
2014-02-03 12:53 - 2014-02-03 12:53 - 00000000 __SHD () C:\Dokumente und Einstellungen\Marco\PrivacIE
2014-02-03 12:29 - 2014-02-03 12:29 - 00000000 __SHD () C:\Dokumente und Einstellungen\Marco\IETldCache
2014-02-03 11:52 - 2014-02-03 11:52 - 00106317 _____ () C:\WINDOWS\KB951376-v2.log
2014-02-03 11:52 - 2014-02-03 11:52 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB952954$
2014-02-03 11:52 - 2014-02-03 11:52 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB951376-v2$
2014-02-03 11:52 - 2014-02-03 11:52 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2868626$
2014-02-03 11:51 - 2014-02-03 11:51 - 00114681 _____ () C:\WINDOWS\KB2898785-IE8.log
2014-02-03 11:51 - 2014-02-03 11:51 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB959426$
2014-02-03 11:50 - 2014-02-03 11:51 - 00115518 _____ () C:\WINDOWS\KB2862772-IE8.log
2014-02-03 11:50 - 2014-02-03 11:50 - 00119167 _____ () C:\WINDOWS\KB2744842-IE8.log
2014-02-03 11:50 - 2013-10-29 08:57 - 00522240 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\jsdbgui.dll
2014-02-03 11:49 - 2014-02-03 11:50 - 00122192 _____ () C:\WINDOWS\KB2618444-IE8.log
2014-02-03 11:49 - 2014-02-03 11:49 - 00133429 _____ () C:\WINDOWS\KB982381-IE8.log
2014-02-03 11:49 - 2014-02-03 11:49 - 00110620 _____ () C:\WINDOWS\KB2598845-IE8.log
2014-02-03 11:49 - 2014-02-03 11:49 - 00109979 _____ () C:\WINDOWS\KB2467659.log
2014-02-03 11:49 - 2014-02-03 11:49 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2467659$
2014-02-03 11:49 - 2014-02-03 11:49 - 00000000 ____D () C:\WINDOWS\ie8updates
2014-02-03 11:49 - 2013-10-29 08:57 - 00743424 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\iedvtool.dll
2014-02-03 11:49 - 2013-10-29 08:57 - 00247808 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ieproxy.dll
2014-02-03 11:49 - 2013-10-29 08:57 - 00012800 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\xpshims.dll
2014-02-03 11:49 - 2011-08-16 11:45 - 00006144 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\iecompat.dll
2014-02-03 11:47 - 2014-02-03 11:49 - 00133696 _____ () C:\WINDOWS\ie8.log
2014-02-03 11:47 - 2014-02-03 11:48 - 00000000 __HDC () C:\WINDOWS\ie8
2014-02-03 11:42 - 2014-02-03 11:51 - 00146238 _____ () C:\WINDOWS\ie8_main.log
2014-02-03 11:41 - 2014-02-03 11:42 - 00055043 _____ () C:\WINDOWS\KB946648.log
2014-02-03 11:41 - 2014-02-03 11:41 - 00055278 _____ () C:\WINDOWS\KB2387149.log
2014-02-03 11:41 - 2014-02-03 11:41 - 00052456 _____ () C:\WINDOWS\KB2659262.log
2014-02-03 11:41 - 2014-02-03 11:41 - 00051719 _____ () C:\WINDOWS\KB2564958.log
2014-02-03 11:41 - 2014-02-03 11:41 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB960859$
2014-02-03 11:41 - 2014-02-03 11:41 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB946648$
2014-02-03 11:41 - 2014-02-03 11:41 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2712808$
2014-02-03 11:41 - 2014-02-03 11:41 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2659262$
2014-02-03 11:41 - 2014-02-03 11:41 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2564958$
2014-02-03 11:41 - 2014-02-03 11:41 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2479943$
2014-02-03 11:41 - 2014-02-03 11:41 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2387149$
2014-02-03 11:40 - 2014-02-03 11:40 - 00053866 _____ () C:\WINDOWS\KB2536276-v2.log
2014-02-03 11:40 - 2014-02-03 11:40 - 00051067 _____ () C:\WINDOWS\KB2834886.log
2014-02-03 11:40 - 2014-02-03 11:40 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2834886$
2014-02-03 11:40 - 2014-02-03 11:40 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2758857$
2014-02-03 11:40 - 2014-02-03 11:40 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2585542$
2014-02-03 11:40 - 2014-02-03 11:40 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2544893-v2$
2014-02-03 11:40 - 2014-02-03 11:40 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2536276-v2$
2014-02-03 11:40 - 2014-02-03 11:40 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2478971$
2014-02-03 11:39 - 2014-02-03 11:39 - 00054473 _____ () C:\WINDOWS\KB955759.log
2014-02-03 11:39 - 2014-02-03 11:39 - 00051968 _____ () C:\WINDOWS\KB975558.log
2014-02-03 11:39 - 2014-02-03 11:39 - 00051426 _____ () C:\WINDOWS\KB2296011.log
2014-02-03 11:39 - 2014-02-03 11:39 - 00050792 _____ () C:\WINDOWS\KB2900986.log
2014-02-03 11:39 - 2014-02-03 11:39 - 00050718 _____ () C:\WINDOWS\KB2378111.log
2014-02-03 11:39 - 2014-02-03 11:39 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB975558_WM8$
2014-02-03 11:39 - 2014-02-03 11:39 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB974318$
2014-02-03 11:39 - 2014-02-03 11:39 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB955759$
2014-02-03 11:39 - 2014-02-03 11:39 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB951978$
2014-02-03 11:39 - 2014-02-03 11:39 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2900986$
2014-02-03 11:39 - 2014-02-03 11:39 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2847311$
2014-02-03 11:39 - 2014-02-03 11:39 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2691442$
2014-02-03 11:39 - 2014-02-03 11:39 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2631813$
2014-02-03 11:39 - 2014-02-03 11:39 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2378111_WM9$
2014-02-03 11:39 - 2014-02-03 11:39 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2296011$
2014-02-03 11:39 - 2014-02-03 11:39 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2115168$
2014-02-03 11:38 - 2014-02-03 11:38 - 00052114 _____ () C:\WINDOWS\KB2229593.log
2014-02-03 11:38 - 2014-02-03 11:38 - 00050879 _____ () C:\WINDOWS\KB2686509.log
2014-02-03 11:38 - 2014-02-03 11:38 - 00050781 _____ () C:\WINDOWS\KB2485663.log
2014-02-03 11:38 - 2014-02-03 11:38 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB975713$
2014-02-03 11:38 - 2014-02-03 11:38 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB969059$
2014-02-03 11:38 - 2014-02-03 11:38 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB950974$
2014-02-03 11:38 - 2014-02-03 11:38 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2898715$
2014-02-03 11:38 - 2014-02-03 11:38 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2802968$
2014-02-03 11:38 - 2014-02-03 11:38 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2686509$
2014-02-03 11:38 - 2014-02-03 11:38 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2655992$
2014-02-03 11:38 - 2014-02-03 11:38 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2598479$
2014-02-03 11:38 - 2014-02-03 11:38 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2485663$
2014-02-03 11:38 - 2014-02-03 11:38 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2481109$
2014-02-03 11:38 - 2014-02-03 11:38 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2443105$
2014-02-03 11:38 - 2014-02-03 11:38 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2229593$
2014-02-03 11:37 - 2014-02-03 11:37 - 00048993 _____ () C:\WINDOWS\KB2862335.log
2014-02-03 11:37 - 2014-02-03 11:37 - 00047095 _____ () C:\WINDOWS\KB954155.log
2014-02-03 11:37 - 2014-02-03 11:37 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB982132$
2014-02-03 11:37 - 2014-02-03 11:37 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB978338$
2014-02-03 11:37 - 2014-02-03 11:37 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB974112$
2014-02-03 11:37 - 2014-02-03 11:37 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB972270$
2014-02-03 11:37 - 2014-02-03 11:37 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB971657$
2014-02-03 11:37 - 2014-02-03 11:37 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB954155_WM9$
2014-02-03 11:37 - 2014-02-03 11:37 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2862335$
2014-02-03 11:37 - 2014-02-03 11:37 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2845187$
2014-02-03 11:37 - 2014-02-03 11:37 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2780091$
2014-02-03 11:37 - 2014-02-03 11:37 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2510581$
2014-02-03 11:37 - 2014-02-03 11:37 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2507938$
2014-02-03 11:36 - 2014-02-03 11:37 - 00052317 _____ () C:\WINDOWS\KB956572.log
2014-02-03 11:36 - 2014-02-03 11:36 - 00046889 _____ () C:\WINDOWS\KB956844.log
2014-02-03 11:36 - 2014-02-03 11:36 - 00046053 _____ () C:\WINDOWS\KB973869.log
2014-02-03 11:36 - 2014-02-03 11:36 - 00045229 _____ () C:\WINDOWS\KB2904266.log
2014-02-03 11:36 - 2014-02-03 11:36 - 00006732 _____ () C:\WINDOWS\system32\TZLog.log
2014-02-03 11:36 - 2014-02-03 11:36 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB979687$
2014-02-03 11:36 - 2014-02-03 11:36 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB975025$
2014-02-03 11:36 - 2014-02-03 11:36 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB973869$
2014-02-03 11:36 - 2014-02-03 11:36 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB956844$
2014-02-03 11:36 - 2014-02-03 11:36 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB956572$
2014-02-03 11:36 - 2014-02-03 11:36 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2904266$
2014-02-03 11:36 - 2014-02-03 11:36 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2876217$
2014-02-03 11:36 - 2014-02-03 11:36 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2864063$
2014-02-03 11:36 - 2014-02-03 11:36 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2483185$
2014-02-03 11:36 - 2014-02-03 11:36 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2347290$
2014-02-03 11:35 - 2014-02-03 11:35 - 00043050 _____ () C:\WINDOWS\KB2592799.log
2014-02-03 11:35 - 2014-02-03 11:35 - 00042871 _____ () C:\WINDOWS\KB2535512.log
2014-02-03 11:35 - 2014-02-03 11:35 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB977816$
2014-02-03 11:35 - 2014-02-03 11:35 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB975560$
2014-02-03 11:35 - 2014-02-03 11:35 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB974571$
2014-02-03 11:35 - 2014-02-03 11:35 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB973507$
2014-02-03 11:35 - 2014-02-03 11:35 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB952004$
2014-02-03 11:35 - 2014-02-03 11:35 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2862152$
2014-02-03 11:35 - 2014-02-03 11:35 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2850869$
2014-02-03 11:35 - 2014-02-03 11:35 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2770660$
2014-02-03 11:35 - 2014-02-03 11:35 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2719985$
2014-02-03 11:35 - 2014-02-03 11:35 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2592799$
2014-02-03 11:35 - 2014-02-03 11:35 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2535512$
2014-02-03 11:34 - 2014-02-03 11:35 - 00042394 _____ () C:\WINDOWS\KB950762.log
2014-02-03 11:34 - 2014-02-03 11:34 - 00042155 _____ () C:\WINDOWS\KB2807986.log
2014-02-03 11:34 - 2014-02-03 11:34 - 00041624 _____ () C:\WINDOWS\KB2570947.log
2014-02-03 11:34 - 2014-02-03 11:34 - 00041569 _____ () C:\WINDOWS\KB952287.log
2014-02-03 11:34 - 2014-02-03 11:34 - 00041454 _____ () C:\WINDOWS\KB2868038.log
2014-02-03 11:34 - 2014-02-03 11:34 - 00041158 _____ () C:\WINDOWS\KB2603381.log
2014-02-03 11:34 - 2014-02-03 11:34 - 00036819 _____ () C:\WINDOWS\KB978695.log
2014-02-03 11:34 - 2014-02-03 11:34 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB978695_WM9$
2014-02-03 11:34 - 2014-02-03 11:34 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB952287$
2014-02-03 11:34 - 2014-02-03 11:34 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB950762$
2014-02-03 11:34 - 2014-02-03 11:34 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2876331$
2014-02-03 11:34 - 2014-02-03 11:34 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2868038$
2014-02-03 11:34 - 2014-02-03 11:34 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2859537$
2014-02-03 11:34 - 2014-02-03 11:34 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2820917$
2014-02-03 11:34 - 2014-02-03 11:34 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2807986$
2014-02-03 11:34 - 2014-02-03 11:34 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2603381$
2014-02-03 11:34 - 2014-02-03 11:34 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2570947$
2014-02-03 11:33 - 2014-02-03 11:34 - 00042203 _____ () C:\WINDOWS\KB973904.log
2014-02-03 11:33 - 2014-02-03 11:33 - 00026087 _____ () C:\WINDOWS\KB976002-v5.log
2014-02-03 11:33 - 2014-02-03 11:33 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB974392$
2014-02-03 11:33 - 2014-02-03 11:33 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB973904$
2014-02-03 11:33 - 2014-02-03 11:33 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB973540_WM9$
2014-02-03 11:33 - 2014-02-03 11:33 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB971029$
2014-02-03 11:33 - 2014-02-03 11:33 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2893294$
2014-02-03 11:33 - 2014-02-03 11:33 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2757638$
2014-02-03 11:33 - 2014-02-03 11:33 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2749655$
2014-02-03 11:33 - 2014-02-03 11:33 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2653956$
2014-02-03 11:33 - 2014-02-03 11:33 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2508429$
2014-02-03 11:33 - 2014-02-03 11:33 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2419632$
2014-02-03 11:32 - 2014-02-03 11:33 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2506212$
2014-02-03 11:32 - 2014-02-03 11:32 - 00033733 _____ () C:\WINDOWS\KB2698365.log
2014-02-03 11:32 - 2014-02-03 11:32 - 00028723 _____ () C:\WINDOWS\KB952069.log
2014-02-03 11:32 - 2014-02-03 11:32 - 00025342 _____ () C:\WINDOWS\KB2803821-v2.log
2014-02-03 11:32 - 2014-02-03 11:32 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB979482$
2014-02-03 11:32 - 2014-02-03 11:32 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB979309$
2014-02-03 11:32 - 2014-02-03 11:32 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB978542$
2014-02-03 11:32 - 2014-02-03 11:32 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB977914$
2014-02-03 11:32 - 2014-02-03 11:32 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB952069_WM9$
2014-02-03 11:32 - 2014-02-03 11:32 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2893984$
2014-02-03 11:32 - 2014-02-03 11:32 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2892075$
2014-02-03 11:32 - 2014-02-03 11:32 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2803821-v2_WM9$
2014-02-03 11:32 - 2014-02-03 11:32 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2727528$
2014-02-03 11:32 - 2014-02-03 11:32 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2705219-v2$
2014-02-03 11:32 - 2014-02-03 11:32 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2698365$
2014-02-03 11:32 - 2014-02-03 11:32 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2619339$
2014-02-03 11:31 - 2014-02-03 11:31 - 00032162 _____ () C:\WINDOWS\KB2723135-v2.log
2014-02-03 11:31 - 2014-02-03 11:31 - 00031528 _____ () C:\WINDOWS\KB981997.log
2014-02-03 11:31 - 2014-02-03 11:31 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB981997$
2014-02-03 11:31 - 2014-02-03 11:31 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB978706$
2014-02-03 11:31 - 2014-02-03 11:31 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB973815$
2014-02-03 11:31 - 2014-02-03 11:31 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB960803$
2014-02-03 11:31 - 2014-02-03 11:31 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2862330$
2014-02-03 11:31 - 2014-02-03 11:31 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2813345$
2014-02-03 11:31 - 2014-02-03 11:31 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2723135-v2$
2014-02-03 11:31 - 2014-02-03 11:31 - 00000000 ____D () C:\WINDOWS\ie7updates
2014-02-03 11:30 - 2014-02-03 11:30 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2676562$
2014-02-03 11:30 - 2014-02-03 11:30 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2509553$
2014-02-03 11:28 - 2014-02-03 11:30 - 00000000 ____D () C:\WINDOWS\system32\MRT
2014-02-03 11:28 - 2014-02-03 11:28 - 00020910 _____ () C:\WINDOWS\KB2393802.log
2014-02-03 11:28 - 2014-02-03 11:28 - 00019275 _____ () C:\WINDOWS\KB923561.log
2014-02-03 11:28 - 2014-02-03 11:28 - 00017569 _____ () C:\WINDOWS\KB2566454.log
2014-02-03 11:28 - 2014-02-03 11:28 - 00017362 _____ () C:\WINDOWS\KB2661637.log
2014-02-03 11:28 - 2014-02-03 11:28 - 00015166 _____ () C:\WINDOWS\KB2914368.log
2014-02-03 11:28 - 2014-02-03 11:28 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB982665$
2014-02-03 11:28 - 2014-02-03 11:28 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB923561$
2014-02-03 11:28 - 2014-02-03 11:28 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2914368$
2014-02-03 11:28 - 2014-02-03 11:28 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2661637$
2014-02-03 11:28 - 2014-02-03 11:28 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2620712$
2014-02-03 11:28 - 2014-02-03 11:28 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2566454$
2014-02-03 11:28 - 2014-02-03 11:28 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2478960$
2014-02-03 11:28 - 2014-02-03 11:28 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2393802$
2014-02-03 11:28 - 2014-01-06 16:20 - 83425928 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2014-02-03 11:27 - 2014-02-03 11:27 - 00014732 _____ () C:\WINDOWS\KB2423089.log
2014-02-03 11:27 - 2014-02-03 11:27 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB975467$
2014-02-03 11:27 - 2014-02-03 11:27 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB968389$
2014-02-03 11:27 - 2014-02-03 11:27 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2584146$
2014-02-03 11:27 - 2014-02-03 11:27 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2423089$
2014-02-03 11:16 - 2014-02-03 11:52 - 00118941 _____ () C:\WINDOWS\KB952954.log
2014-02-03 11:16 - 2014-02-03 11:52 - 00117397 _____ () C:\WINDOWS\KB2868626.log
2014-02-03 11:16 - 2014-02-03 11:51 - 00118200 _____ () C:\WINDOWS\KB959426.log
2014-02-03 11:16 - 2014-02-03 11:41 - 00067303 _____ () C:\WINDOWS\KB2712808.log
2014-02-03 11:16 - 2014-02-03 11:41 - 00066858 _____ () C:\WINDOWS\KB2479943.log
2014-02-03 11:16 - 2014-02-03 11:41 - 00066776 _____ () C:\WINDOWS\KB960859.log
2014-02-03 11:16 - 2010-09-18 07:52 - 00954368 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mfc40.dll
2014-02-03 11:16 - 2010-09-18 07:52 - 00953856 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mfc40u.dll
2014-02-03 11:16 - 2008-06-14 18:32 - 00273024 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys
2014-02-03 11:16 - 2008-06-14 18:32 - 00273024 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\bthport.sys
2014-02-03 11:15 - 2014-02-03 11:40 - 00066314 _____ () C:\WINDOWS\KB2585542.log
2014-02-03 11:15 - 2014-02-03 11:40 - 00066282 _____ () C:\WINDOWS\KB2478971.log
2014-02-03 11:15 - 2014-02-03 11:40 - 00065719 _____ () C:\WINDOWS\KB2758857.log
2014-02-03 11:15 - 2014-02-03 11:40 - 00065284 _____ () C:\WINDOWS\KB2631813.log
2014-02-03 11:15 - 2014-02-03 11:39 - 00065768 _____ () C:\WINDOWS\KB2691442.log
2014-02-03 11:15 - 2010-08-23 17:11 - 00617472 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\comctl32.dll
2014-02-03 11:14 - 2014-02-03 11:40 - 00065084 _____ () C:\WINDOWS\KB2544893-v2.log
2014-02-03 11:14 - 2014-02-03 11:39 - 00064679 _____ () C:\WINDOWS\KB2115168.log
2014-02-03 11:14 - 2014-02-03 11:39 - 00064446 _____ () C:\WINDOWS\KB974318.log
2014-02-03 11:14 - 2014-02-03 11:39 - 00061916 _____ () C:\WINDOWS\KB2847311.log
2014-02-03 11:14 - 2014-02-03 11:38 - 00064298 _____ () C:\WINDOWS\KB2655992.log
2014-02-03 11:14 - 2014-02-03 11:38 - 00063529 _____ () C:\WINDOWS\KB2802968.log
2014-02-03 11:14 - 2014-02-03 11:38 - 00061281 _____ () C:\WINDOWS\KB2898715.log
2014-02-03 11:14 - 2014-02-03 11:37 - 00061996 _____ () C:\WINDOWS\KB2780091.log
2014-02-03 11:14 - 2013-07-03 03:12 - 00025088 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\hidparse.sys
2014-02-03 11:14 - 2013-07-03 02:59 - 00014976 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\usbscan.sys
2014-02-03 11:14 - 2011-07-15 14:29 - 00456320 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mrxsmb.sys
2014-02-03 11:14 - 2009-11-21 16:54 - 00471552 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\aclayers.dll
2014-02-03 11:13 - 2014-02-03 11:39 - 00063918 _____ () C:\WINDOWS\KB951978.log
2014-02-03 11:13 - 2014-02-03 11:39 - 00062493 _____ () C:\WINDOWS\KB969059.log
2014-02-03 11:13 - 2014-02-03 11:38 - 00063215 _____ () C:\WINDOWS\KB2481109.log
2014-02-03 11:13 - 2014-02-03 11:38 - 00062621 _____ () C:\WINDOWS\KB950974.log
2014-02-03 11:13 - 2014-02-03 11:38 - 00062581 _____ () C:\WINDOWS\KB2443105.log
2014-02-03 11:13 - 2014-02-03 11:38 - 00062163 _____ () C:\WINDOWS\KB2598479.log
2014-02-03 11:13 - 2014-02-03 11:38 - 00061707 _____ () C:\WINDOWS\KB975713.log
2014-02-03 11:13 - 2014-02-03 11:37 - 00061062 _____ () C:\WINDOWS\KB2507938.log
2014-02-03 11:13 - 2014-02-03 11:37 - 00061058 _____ () C:\WINDOWS\KB982132.log
2014-02-03 11:13 - 2014-02-03 11:37 - 00060834 _____ () C:\WINDOWS\KB978338.log
2014-02-03 11:13 - 2010-06-14 15:31 - 00744448 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\helpsvc.exe
2014-02-03 11:12 - 2014-02-03 11:37 - 00062750 _____ () C:\WINDOWS\KB2510581.log
2014-02-03 11:12 - 2014-02-03 11:37 - 00060499 _____ () C:\WINDOWS\KB971657.log
2014-02-03 11:12 - 2014-02-03 11:37 - 00059782 _____ () C:\WINDOWS\KB974112.log
2014-02-03 11:12 - 2014-02-03 11:37 - 00058089 _____ () C:\WINDOWS\KB2845187.log
2014-02-03 11:12 - 2014-02-03 11:36 - 00055032 _____ () C:\WINDOWS\KB2876217.log
2014-02-03 11:12 - 2010-08-27 09:01 - 00119808 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\t2embed.dll
2014-02-03 11:12 - 2009-10-15 17:28 - 00081920 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fontsub.dll
2014-02-03 11:12 - 2009-06-21 22:45 - 00153088 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\triedit.dll
2014-02-03 11:12 - 2009-03-06 15:19 - 00286720 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\pdh.dll
2014-02-03 11:12 - 2009-02-09 12:21 - 00111104 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\services.exe
2014-02-03 11:12 - 2009-02-09 11:51 - 00678400 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\advapi32.dll
2014-02-03 11:12 - 2009-02-09 11:51 - 00473600 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fastprox.dll
2014-02-03 11:12 - 2009-02-09 11:51 - 00453120 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wmiprvsd.dll
2014-02-03 11:12 - 2009-02-09 11:51 - 00401408 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\rpcss.dll
2014-02-03 11:12 - 2009-02-06 11:39 - 00035328 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\sc.exe
2014-02-03 11:12 - 2009-02-06 11:10 - 00227840 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wmiprvse.exe
2014-02-03 11:11 - 2014-02-03 11:36 - 00057652 _____ () C:\WINDOWS\KB979687.log
2014-02-03 11:11 - 2014-02-03 11:36 - 00057550 _____ () C:\WINDOWS\KB2483185.log
2014-02-03 11:11 - 2014-02-03 11:36 - 00053928 _____ () C:\WINDOWS\KB2864063.log
2014-02-03 11:11 - 2014-02-03 11:35 - 00049776 _____ () C:\WINDOWS\KB2850869.log
2014-02-03 11:11 - 2014-02-03 11:34 - 00050503 _____ () C:\WINDOWS\KB2859537.log
2014-02-03 11:11 - 2014-02-03 11:34 - 00049558 _____ () C:\WINDOWS\KB2876331.log
2014-02-03 11:11 - 2014-02-03 11:33 - 00050432 _____ () C:\WINDOWS\KB2757638.log
2014-02-03 11:11 - 2013-07-17 01:58 - 00123008 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\usbvideo.sys
2014-02-03 11:11 - 2013-07-17 01:58 - 00060160 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\usbaudio.sys
2014-02-03 11:11 - 2013-02-12 01:32 - 00012928 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\usb8023x.sys
2014-02-03 11:11 - 2013-02-12 01:32 - 00012928 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\usb8023.sys
2014-02-03 11:10 - 2014-02-03 11:36 - 00055401 _____ () C:\WINDOWS\KB2719985.log
2014-02-03 11:10 - 2014-02-03 11:36 - 00054844 _____ () C:\WINDOWS\KB975025.log
2014-02-03 11:10 - 2014-02-03 11:35 - 00050261 _____ () C:\WINDOWS\KB2862152.log
2014-02-03 11:10 - 2014-02-03 11:34 - 00051046 _____ () C:\WINDOWS\KB2820917.log
2014-02-03 11:10 - 2014-02-03 11:33 - 00048250 _____ () C:\WINDOWS\KB2893294.log
2014-02-03 11:10 - 2014-02-03 11:33 - 00043625 _____ () C:\WINDOWS\KB2749655.log
2014-02-03 11:10 - 2014-02-03 11:32 - 00040259 _____ () C:\WINDOWS\KB2893984.log
2014-02-03 11:10 - 2014-02-03 11:32 - 00039257 _____ () C:\WINDOWS\KB2892075.log
2014-02-03 11:10 - 2010-02-12 11:03 - 00293376 ____N (Microsoft Corporation) C:\WINDOWS\system32\browserchoice.exe
2014-02-03 11:10 - 2009-07-27 23:24 - 00128512 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\dhtmled.ocx
2014-02-03 11:10 - 2008-05-08 15:02 - 00203136 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\rmcast.sys
2014-02-03 11:10 - 2008-05-01 15:34 - 00331776 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msadce.dll
2014-02-03 11:09 - 2014-02-03 11:35 - 00055101 _____ () C:\WINDOWS\KB952004.log
2014-02-03 11:09 - 2014-02-03 11:35 - 00051692 _____ () C:\WINDOWS\KB974571.log
2014-02-03 11:09 - 2014-02-03 11:33 - 00044686 _____ () C:\WINDOWS\KB2508429.log
2014-02-03 11:09 - 2014-02-03 11:33 - 00042813 _____ () C:\WINDOWS\KB971029.log
2014-02-03 11:09 - 2014-02-03 11:32 - 00042579 _____ () C:\WINDOWS\KB977914.log
2014-02-03 11:09 - 2011-04-21 14:37 - 00105472 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mup.sys
2014-02-03 11:08 - 2014-02-03 11:35 - 00051084 _____ () C:\WINDOWS\KB973507.log
2014-02-03 11:08 - 2014-02-03 11:35 - 00050462 _____ () C:\WINDOWS\KB977816.log
2014-02-03 11:08 - 2014-02-03 11:33 - 00050653 _____ () C:\WINDOWS\KB2419632.log
2014-02-03 11:08 - 2014-02-03 11:33 - 00043042 _____ () C:\WINDOWS\KB2653956.log
2014-02-03 11:08 - 2014-02-03 11:33 - 00042559 _____ () C:\WINDOWS\KB974392.log
2014-02-03 11:08 - 2014-02-03 11:33 - 00041668 _____ () C:\WINDOWS\KB2506212.log
2014-02-03 11:07 - 2014-02-03 11:32 - 00040173 _____ () C:\WINDOWS\KB2705219-v2.log
2014-02-03 11:07 - 2014-02-03 11:32 - 00039467 _____ () C:\WINDOWS\KB2619339.log
2014-02-03 11:07 - 2014-02-03 11:32 - 00038627 _____ () C:\WINDOWS\KB2727528.log
2014-02-03 11:07 - 2014-02-03 11:32 - 00038532 _____ () C:\WINDOWS\KB979482.log
2014-02-03 11:07 - 2014-02-03 11:31 - 00104155 _____ () C:\WINDOWS\KB2898785-IE7.log
2014-02-03 11:07 - 2014-02-03 11:31 - 00028907 _____ () C:\WINDOWS\KB2813345.log
2014-02-03 11:07 - 2013-08-09 01:55 - 00032384 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\usbccgp.sys
2014-02-03 11:07 - 2013-08-09 01:55 - 00005376 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\usbd.sys
2014-02-03 11:07 - 2012-07-04 15:05 - 00139784 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\rdpwd.sys
2014-02-03 11:07 - 2012-05-28 19:16 - 00536576 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msado15.dll
2014-02-03 11:06 - 2014-02-03 11:32 - 00038155 _____ () C:\WINDOWS\KB978542.log
2014-02-03 11:06 - 2014-02-03 11:31 - 00038235 _____ () C:\WINDOWS\KB978706.log
2014-02-03 11:06 - 2014-02-03 11:31 - 00028731 _____ () C:\WINDOWS\KB2509553.log
2014-02-03 11:06 - 2014-02-03 11:31 - 00027403 _____ () C:\WINDOWS\KB960803.log
2014-02-03 11:06 - 2014-02-03 11:30 - 00030046 _____ () C:\WINDOWS\KB2676562.log
2014-02-03 11:06 - 2014-02-03 11:28 - 00024980 _____ () C:\WINDOWS\KB982665.log
2014-02-03 11:06 - 2013-07-04 08:33 - 02195840 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ntoskrnl.exe
2014-02-03 11:06 - 2013-07-04 08:33 - 02152448 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ntkrnlmp.exe
2014-02-03 11:06 - 2013-07-04 08:33 - 02072448 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ntkrnlpa.exe
2014-02-03 11:06 - 2013-07-04 08:33 - 02031104 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ntkrpamp.exe
2014-02-03 11:06 - 2010-12-09 16:15 - 00743936 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ntdll.dll
2014-02-03 11:06 - 2010-06-18 14:36 - 03558912 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\moviemk.exe
2014-02-03 11:05 - 2014-02-03 11:31 - 00026504 _____ () C:\WINDOWS\KB973815.log
2014-02-03 11:05 - 2014-02-03 11:28 - 00023952 _____ () C:\WINDOWS\KB2620712.log
2014-02-03 11:05 - 2010-07-16 13:01 - 00220160 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wordpad.exe
2014-02-03 11:05 - 2009-11-21 16:54 - 01206508 ____C () C:\WINDOWS\system32\dllcache\sysmain.sdb
2014-02-03 11:04 - 2012-01-11 20:06 - 00003072 ____N () C:\WINDOWS\system32\iacenc.dll
2014-02-03 11:04 - 2012-01-11 20:06 - 00003072 ____C () C:\WINDOWS\system32\dllcache\iacenc.dll
2014-02-03 11:04 - 2011-07-08 15:02 - 00010496 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ndistapi.sys
2014-02-03 11:03 - 2014-02-03 11:32 - 00037244 _____ () C:\WINDOWS\KB979309.log
2014-02-03 11:03 - 2013-11-27 21:21 - 00040960 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ndproxy.sys
2014-02-03 11:02 - 2014-02-03 11:27 - 00023262 _____ () C:\WINDOWS\KB2584146.log
2014-02-03 11:01 - 2014-02-03 11:27 - 00024700 _____ () C:\WINDOWS\KB968389.log
2014-02-03 11:01 - 2014-02-03 11:27 - 00024063 _____ () C:\WINDOWS\KB975467.log
2014-02-03 11:01 - 2010-10-11 15:59 - 00045568 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wab.exe
2014-02-03 11:00 - 2014-02-03 11:00 - 00000000 ____D () C:\WINDOWS\system32\PreInstall
2014-02-03 10:59 - 2014-02-03 11:00 - 00008472 _____ () C:\WINDOWS\KB898461.log
2014-02-03 10:59 - 2014-02-03 10:59 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB898461$
2014-02-03 10:23 - 2014-02-03 12:55 - 00000000 ____D () C:\Dokumente und Einstellungen\Marco\Anwendungsdaten\Adobe
2014-02-03 10:20 - 2012-06-02 15:19 - 00015896 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll.mui
2014-02-03 10:20 - 2012-06-02 15:18 - 00275696 _____ (Microsoft Corporation) C:\WINDOWS\system32\mucltui.dll
2014-02-03 10:20 - 2012-06-02 15:18 - 00214256 _____ (Microsoft Corporation) C:\WINDOWS\system32\muweb.dll
2014-02-03 10:20 - 2012-06-02 15:18 - 00018160 _____ (Microsoft Corporation) C:\WINDOWS\system32\mucltui.dll.mui
2014-02-03 09:09 - 2014-02-04 13:52 - 00000246 _____ () C:\WINDOWS\Tasks\Auf Updates für Windows Live Toolbar prüfen.job
2014-02-03 09:09 - 2014-02-04 13:49 - 00000000 ____D () C:\Dokumente und Einstellungen\Marco
2014-02-03 09:09 - 2014-02-03 17:52 - 00000000 ___RD () C:\Dokumente und Einstellungen\Marco\Startmenü\Programme\Autostart
2014-02-03 09:09 - 2014-02-03 17:51 - 00000000 ___RD () C:\Dokumente und Einstellungen\Marco\Startmenü\Programme
2014-02-03 09:09 - 2014-02-03 17:43 - 00000000 ____D () C:\Dokumente und Einstellungen\Marco\Lokale Einstellungen\Anwendungsdaten\Adobe
2014-02-03 09:09 - 2014-02-03 17:14 - 00000190 ___SH () C:\Dokumente und Einstellungen\Marco\ntuser.ini
2014-02-03 09:09 - 2014-02-03 12:29 - 00000790 _____ () C:\Dokumente und Einstellungen\Marco\Startmenü\Programme\Internet Explorer.lnk
2014-02-03 09:09 - 2014-02-03 12:29 - 00000000 ___RD () C:\Dokumente und Einstellungen\Marco\Eigene Dateien\Eigene Musik
2014-02-03 09:09 - 2014-02-03 12:29 - 00000000 ___RD () C:\Dokumente und Einstellungen\Marco\Eigene Dateien\Eigene Bilder
2014-02-03 09:09 - 2014-02-03 11:41 - 00000138 _____ () C:\Dokumente und Einstellungen\Marco\Lokale Einstellungen\Anwendungsdaten\fusioncache.dat
2014-02-03 09:09 - 2014-02-03 09:09 - 00000779 _____ () C:\Dokumente und Einstellungen\Marco\Startmenü\Programme\Windows Media Player.lnk
2014-02-03 09:09 - 2014-02-03 09:09 - 00000725 _____ () C:\Dokumente und Einstellungen\Marco\Startmenü\Programme\Outlook Express.lnk
2014-02-03 09:09 - 2014-02-03 09:09 - 00000050 _____ () C:\WINDOWS\system32\Drivers\Lenovo_4068_4WG.MRK
2014-02-03 09:09 - 2014-02-03 09:09 - 00000000 __SHD () C:\Dokumente und Einstellungen\Marco\Lokale Einstellungen\Verlauf
2014-02-03 09:09 - 2014-02-03 09:09 - 00000000 ____D () C:\Programme\Windows Live Toolbar
2014-02-03 09:09 - 2014-02-03 07:28 - 00001949 _____ () C:\Dokumente und Einstellungen\Marco\Startmenü\Programme\Symantec Install NIS    (Norton Internet Security).lnk
2014-02-03 09:09 - 2014-02-03 07:21 - 00000000 ___RD () C:\Dokumente und Einstellungen\Marco\Startmenü\Programme\Zubehör
2014-02-03 09:09 - 2014-02-03 07:16 - 00000000 ____D () C:\Dokumente und Einstellungen\Marco\Anwendungsdaten\InstallShield
2014-02-03 09:09 - 2014-02-03 07:15 - 00000000 ____D () C:\Dokumente und Einstellungen\Marco\Eigene Dateien\Bluetooth-Exchange-Ordner
2014-02-03 09:09 - 2014-02-03 07:15 - 00000000 ____D () C:\Dokumente und Einstellungen\Marco\Bluetooth Software
2014-02-03 09:09 - 2008-07-21 06:56 - 00000000 ___RD () C:\Dokumente und Einstellungen\Marco\Startmenü
2014-02-03 09:09 - 2008-07-21 06:56 - 00000000 ___HD () C:\Dokumente und Einstellungen\Marco\Netzwerkumgebung
2014-02-03 09:09 - 2008-07-21 06:56 - 00000000 ___HD () C:\Dokumente und Einstellungen\Marco\Druckumgebung
2014-02-03 09:09 - 2008-07-21 06:02 - 00001599 _____ () C:\Dokumente und Einstellungen\Marco\Startmenü\Programme\Remoteunterstützung.lnk
2014-02-03 09:08 - 2014-02-03 07:33 - 00000190 ___SH () C:\Dokumente und Einstellungen\Default User\ntuser.ini
2014-02-03 09:08 - 2014-02-03 07:28 - 00001949 _____ () C:\Dokumente und Einstellungen\Default User\Startmenü\Programme\Symantec Install NIS    (Norton Internet Security).lnk
2014-02-03 09:08 - 2014-02-03 07:28 - 00001943 _____ () C:\Dokumente und Einstellungen\Default User\Desktop\Symantec Install NIS    (Norton Internet Security).lnk
2014-02-03 09:08 - 2014-02-03 07:25 - 00000000 ____D () C:\Dokumente und Einstellungen\Default User\Lokale Einstellungen\Anwendungsdaten\Adobe
2014-02-03 09:08 - 2014-02-03 07:21 - 00000790 _____ () C:\Dokumente und Einstellungen\Default User\Startmenü\Programme\Internet Explorer.lnk
2014-02-03 09:08 - 2014-02-03 07:21 - 00000000 ___RD () C:\Dokumente und Einstellungen\Default User\Eigene Dateien\Eigene Musik
2014-02-03 09:08 - 2014-02-03 07:21 - 00000000 ___RD () C:\Dokumente und Einstellungen\Default User\Eigene Dateien\Eigene Bilder
2014-02-03 09:08 - 2014-02-03 07:16 - 00000000 ____D () C:\Dokumente und Einstellungen\Default User\Anwendungsdaten\InstallShield
2014-02-03 09:08 - 2014-02-03 07:15 - 00000000 ____D () C:\Dokumente und Einstellungen\Default User\Eigene Dateien\Bluetooth-Exchange-Ordner
2014-02-03 09:08 - 2014-02-03 07:15 - 00000000 ____D () C:\Dokumente und Einstellungen\Default User\Bluetooth Software
2014-02-03 09:08 - 2008-07-21 06:15 - 00000141 _____ () C:\Dokumente und Einstellungen\Default User\Lokale Einstellungen\Anwendungsdaten\fusioncache.dat
2014-02-03 09:08 - 2008-07-21 06:06 - 00000718 _____ () C:\Dokumente und Einstellungen\Default User\Startmenü\Programme\Outlook Express.lnk
2014-02-03 09:06 - 2006-04-23 06:33 - 00007012 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\PMEMNT.SYS
2014-02-03 07:35 - 2014-02-03 07:35 - 00008192 _____ () C:\WINDOWS\REGLOCS.OLD
2014-02-03 07:32 - 2014-02-03 07:32 - 00000061 _____ () C:\WINDOWS\smscfg.ini
2014-02-03 07:31 - 2014-02-03 07:31 - 00000000 ___HD () C:\QSTART.SYS
2014-02-03 07:31 - 2014-02-03 07:31 - 00000000 ___HD () C:\QSTART.000
2014-02-03 07:31 - 2014-02-03 07:31 - 00000000 ____D () C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Lenovo Quick Start
2014-02-03 07:30 - 2014-02-03 07:30 - 00030049 _____ () C:\WINDOWS\DirectX.log
2014-02-03 07:30 - 2014-02-03 07:30 - 00006240 _____ () C:\WINDOWS\DPINST.LOG
2014-02-03 07:30 - 2014-02-03 07:30 - 00001942 _____ () C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Windows Live Fotogalerie.lnk
2014-02-03 07:30 - 2014-02-03 07:30 - 00000000 ____D () C:\Programme\Downloaded Installations
2014-02-03 07:30 - 2006-11-29 13:06 - 03426072 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_32.dll
2014-02-03 07:29 - 2014-02-03 07:30 - 00000000 ____D () C:\Programme\Windows Live
2014-02-03 07:29 - 2014-02-03 07:30 - 00000000 ____D () C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Windows Live
2014-02-03 07:28 - 2014-02-03 07:28 - 00000000 ____D () C:\Programme\Microsoft SQL Server Compact Edition
2014-02-03 07:28 - 2012-06-02 15:19 - 00045080 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups2.dll
2014-02-03 07:28 - 2012-06-02 15:19 - 00023576 _____ (Microsoft Corporation) C:\WINDOWS\system32\wucltui.dll.mui
2014-02-03 07:28 - 2012-06-02 15:19 - 00018456 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll.mui
2014-02-03 07:28 - 2012-06-02 15:19 - 00015896 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaucpl.cpl.mui
2014-02-03 07:28 - 2008-08-22 07:28 - 00006656 ___SH () C:\WINDOWS\Thumbs.db
2014-02-03 07:28 - 2008-08-22 03:02 - 01843256 _____ () C:\WINDOWS\IdeaPad Default.bmp
2014-02-03 07:28 - 2008-08-13 06:41 - 00148792 _____ () C:\WINDOWS\desktopset.exe
2014-02-03 07:24 - 2014-02-03 17:41 - 00000000 ____D () C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Adobe
2014-02-03 07:24 - 2014-02-03 07:24 - 00000047 _____ () C:\WINDOWS\system32\Drivers\IBM_4068_4WG.MRK
2014-02-03 07:23 - 2014-02-03 07:23 - 00000000 ____D () C:\WINDOWS\system32\(null)
2014-02-03 07:23 - 2014-02-03 07:23 - 00000000 ____D () C:\Programme\Gemeinsame Dateien\Lenovo
2014-02-03 07:23 - 2014-02-03 07:23 - 00000000 ____D () C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\ThinkVantage
2014-02-03 07:23 - 2014-02-03 07:23 - 00000000 ____D () C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\PC-Doctor 5 für Windows
2014-02-03 07:23 - 2014-02-03 07:23 - 00000000 ____D () C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\PC-Doctor
2014-02-03 07:23 - 2007-02-19 06:56 - 00021376 _____ (Lenovo (United States) Inc.) C:\WINDOWS\system32\Drivers\psadd.sys
2014-02-03 07:22 - 2014-02-03 07:23 - 00000000 ____D () C:\Programme\PCDR5
2014-02-03 07:22 - 2014-02-03 07:22 - 00940794 _____ () C:\WINDOWS\system32\LoopyMusic.wav
2014-02-03 07:22 - 2014-02-03 07:22 - 00146650 _____ () C:\WINDOWS\system32\BuzzingBee.wav
2014-02-03 07:21 - 2014-02-03 13:10 - 00015460 _____ () C:\WINDOWS\spupdsvc.log
2014-02-03 07:21 - 2014-02-03 07:21 - 00000000 ____D () C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\USB2.0 Card Reader Software
2014-02-03 07:21 - 2008-07-23 03:03 - 00157696 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\Drivers\RTS5121.sys
2014-02-03 07:21 - 2008-06-27 04:39 - 06184960 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTS5121icon.dll
2014-02-03 07:21 - 2008-06-27 04:20 - 00266240 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\rts5121.dll
2014-02-03 07:21 - 2008-02-15 05:49 - 00192512 _____ (Intel Corporation) C:\WINDOWS\system32\igfxres.dll
2014-02-03 07:18 - 2014-02-03 07:18 - 00000000 ____D () C:\WINDOWS\system32\Lang
2014-02-03 07:18 - 2008-02-28 08:00 - 00920088 _____ (Intel® Corporation) C:\WINDOWS\system32\igxpun.exe
2014-02-03 07:18 - 2008-02-28 08:00 - 00530968 _____ (Intel Corporation) C:\WINDOWS\system32\igfxcfg.exe
2014-02-03 07:18 - 2008-02-28 08:00 - 00256536 _____ (Intel Corporation) C:\WINDOWS\system32\igfxsrvc.exe
2014-02-03 07:18 - 2008-02-28 08:00 - 00170520 _____ (Intel Corporation) C:\WINDOWS\system32\igfxzoom.exe
2014-02-03 07:18 - 2008-02-28 08:00 - 00170520 _____ (Intel Corporation) C:\WINDOWS\system32\igfxext.exe
2014-02-03 07:18 - 2008-02-28 08:00 - 00166424 _____ (Intel Corporation) C:\WINDOWS\system32\hkcmd.exe
2014-02-03 07:18 - 2008-02-28 08:00 - 00141848 _____ (Intel Corporation) C:\WINDOWS\system32\igfxtray.exe
2014-02-03 07:18 - 2008-02-28 08:00 - 00137752 _____ (Intel Corporation) C:\WINDOWS\system32\igfxpers.exe
2014-02-03 07:18 - 2008-02-15 08:09 - 00027024 _____ () C:\WINDOWS\system32\igxpxs32.vp
2014-02-03 07:18 - 2008-02-15 06:21 - 00147456 _____ () C:\WINDOWS\system32\igfxCoIn_v4926.dll
2014-02-03 07:18 - 2008-02-15 06:12 - 05854752 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\igxpmp32.sys
2014-02-03 07:18 - 2008-02-15 06:12 - 02643968 _____ (Intel Corporation) C:\WINDOWS\system32\igxpdx32.dll
2014-02-03 07:18 - 2008-02-15 06:12 - 01670144 _____ (Intel Corporation) C:\WINDOWS\system32\igxpdv32.dll
2014-02-03 07:18 - 2008-02-15 06:12 - 00151040 _____ (Intel Corporation) C:\WINDOWS\system32\igxpgd32.dll
2014-02-03 07:18 - 2008-02-15 06:12 - 00057344 _____ (Intel Corporation) C:\WINDOWS\system32\igxprd32.dll
2014-02-03 07:18 - 2008-02-15 06:01 - 00294912 _____ (Intel Corporation) C:\WINDOWS\system32\igldev32.dll
2014-02-03 07:18 - 2008-02-15 06:00 - 02334720 _____ (Intel Corporation) C:\WINDOWS\system32\iglicd32.dll
2014-02-03 07:18 - 2008-02-15 05:49 - 00192512 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrell.lrc
2014-02-03 07:18 - 2008-02-15 05:49 - 00192512 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrdeu.lrc
2014-02-03 07:18 - 2008-02-15 05:49 - 00188416 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrnld.lrc
2014-02-03 07:18 - 2008-02-15 05:49 - 00188416 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrita.lrc
2014-02-03 07:18 - 2008-02-15 05:49 - 00188416 _____ (Intel Corporation) C:\WINDOWS\system32\igfxresp.lrc
2014-02-03 07:18 - 2008-02-15 05:49 - 00184320 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrfra.lrc
2014-02-03 07:18 - 2008-02-15 05:49 - 00180224 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrrus.lrc
2014-02-03 07:18 - 2008-02-15 05:49 - 00180224 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrptg.lrc
2014-02-03 07:18 - 2008-02-15 05:49 - 00180224 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrptb.lrc
2014-02-03 07:18 - 2008-02-15 05:49 - 00180224 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrplk.lrc
2014-02-03 07:18 - 2008-02-15 05:49 - 00180224 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrhun.lrc
2014-02-03 07:18 - 2008-02-15 05:49 - 00176128 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrsky.lrc
2014-02-03 07:18 - 2008-02-15 05:49 - 00176128 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrnor.lrc
2014-02-03 07:18 - 2008-02-15 05:49 - 00176128 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrfin.lrc
2014-02-03 07:18 - 2008-02-15 05:49 - 00176128 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrcsy.lrc
2014-02-03 07:18 - 2008-02-15 05:49 - 00172032 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrtrk.lrc
2014-02-03 07:18 - 2008-02-15 05:49 - 00172032 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrsve.lrc
2014-02-03 07:18 - 2008-02-15 05:49 - 00172032 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrslv.lrc
2014-02-03 07:18 - 2008-02-15 05:49 - 00172032 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrdan.lrc
2014-02-03 07:18 - 2008-02-15 05:49 - 00163840 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrtha.lrc
2014-02-03 07:18 - 2008-02-15 05:49 - 00159744 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrara.lrc
2014-02-03 07:18 - 2008-02-15 05:49 - 00155648 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrheb.lrc
2014-02-03 07:18 - 2008-02-15 05:49 - 00131072 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrjpn.lrc
2014-02-03 07:18 - 2008-02-15 05:49 - 00126976 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrkor.lrc
2014-02-03 07:18 - 2008-02-15 05:49 - 00110592 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrcht.lrc
2014-02-03 07:18 - 2008-02-15 05:49 - 00110592 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrchs.lrc
2014-02-03 07:18 - 2008-02-15 05:46 - 00204800 _____ (Intel Corporation) C:\WINDOWS\system32\igfxpph.dll
2014-02-03 07:18 - 2008-02-15 05:46 - 00135168 _____ (Intel Corporation) C:\WINDOWS\system32\igfxdo.dll
2014-02-03 07:18 - 2008-02-15 05:46 - 00122880 _____ (Intel Corporation) C:\WINDOWS\system32\igfxcpl.cpl
2014-02-03 07:18 - 2008-02-15 05:46 - 00048128 _____ (Intel Corporation) C:\WINDOWS\system32\igfxsrvc.dll
2014-02-03 07:18 - 2008-02-15 05:46 - 00024576 _____ (Intel Corporation) C:\WINDOWS\system32\igfxexps.dll
2014-02-03 07:18 - 2008-02-15 05:45 - 03293184 _____ (Intel Corporation) C:\WINDOWS\system32\igfxress.dll
2014-02-03 07:18 - 2008-02-15 05:45 - 00208896 _____ (Intel Corporation) C:\WINDOWS\system32\igfxdev.dll
2014-02-03 07:18 - 2008-02-15 05:45 - 00172032 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrenu.lrc
2014-02-03 07:18 - 2008-02-15 05:45 - 00102400 _____ (Intel Corporation) C:\WINDOWS\system32\hccutils.dll
2014-02-03 07:18 - 2008-02-15 05:38 - 00002096 _____ () C:\WINDOWS\system32\igxpxk32.vp
2014-02-03 07:18 - 2006-11-10 01:25 - 00319456 _____ (Microsoft Corporation) C:\WINDOWS\system32\difxapi.dll
2014-02-03 07:17 - 2014-02-03 07:17 - 00000000 ____D () C:\Programme\Broadcom
2014-02-03 07:17 - 2008-07-15 08:20 - 00069632 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\ChCfg.exe
2014-02-03 07:17 - 2008-06-19 20:43 - 00176640 ____C (Broadcom Corporation) C:\WINDOWS\system32\dllcache\b57xp32.sys
2014-02-03 07:17 - 2008-06-19 20:43 - 00176640 _____ (Broadcom Corporation) C:\WINDOWS\system32\Drivers\b57xp32.sys
2014-02-03 07:17 - 2008-04-14 00:47 - 00083072 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wdmaud.sys
2014-02-03 07:17 - 2008-04-14 00:47 - 00083072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wdmaud.sys
2014-02-03 07:17 - 2008-04-14 00:15 - 00056576 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\swmidi.sys
2014-02-03 07:17 - 2008-04-14 00:15 - 00056576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\swmidi.sys
2014-02-03 07:17 - 2008-04-14 00:15 - 00052864 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\dmusic.sys
2014-02-03 07:17 - 2008-04-14 00:15 - 00052864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\DMusic.sys
2014-02-03 07:17 - 2008-04-14 00:15 - 00006272 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\splitter.sys
2014-02-03 07:17 - 2008-04-14 00:15 - 00006272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\splitter.sys
2014-02-03 07:17 - 2008-04-13 22:09 - 00142592 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\aec.sys
2014-02-03 07:17 - 2008-04-13 22:09 - 00142592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\aec.sys
2014-02-03 07:17 - 2008-02-20 17:46 - 01286144 _____ (Broadcom Corporation) C:\WINDOWS\system32\Drivers\BCMWL5.SYS
2014-02-03 07:17 - 2007-11-14 08:18 - 00000553 _____ () C:\WINDOWS\USetup.iss
2014-02-03 07:16 - 2014-02-03 07:28 - 00000000 ___HD () C:\Programme\InstallShield Installation Information
2014-02-03 07:16 - 2014-02-03 07:21 - 00000000 ____D () C:\Programme\Realtek
2014-02-03 07:16 - 2014-02-03 07:17 - 00000538 _____ () C:\RHDSetup.log
2014-02-03 07:16 - 2014-02-03 07:17 - 00000000 ____D () C:\WINDOWS\system32\RTCOM
2014-02-03 07:16 - 2014-02-03 07:16 - 00319488 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\HideWin.exe
2014-02-03 07:16 - 2014-02-03 07:16 - 00000000 ____D () C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Lenovo
2014-02-03 07:16 - 2008-07-31 14:35 - 04751872 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\Drivers\RtkHDAud.sys
2014-02-03 07:16 - 2008-07-29 08:42 - 00528384 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\RtlExUpd.dll
2014-02-03 07:16 - 2008-07-29 07:31 - 16805888 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\RTHDCPL.exe
2014-02-03 07:16 - 2008-07-15 06:47 - 01196032 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\RtlUpd.exe
2014-02-03 07:16 - 2008-06-19 09:42 - 02808832 _____ (RealTek Semicoductor Corp.) C:\WINDOWS\alcwzrd.exe
2014-02-03 07:16 - 2008-06-19 09:27 - 09715200 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\RTLCPL.exe
2014-02-03 07:16 - 2008-06-19 09:24 - 00278528 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\ALSndMgr.cpl
2014-02-03 07:16 - 2008-06-19 09:20 - 00057344 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\Alcmtr.exe
2014-02-03 07:16 - 2008-06-18 11:01 - 00077824 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\SoundMan.exe
2014-02-03 07:16 - 2008-04-14 00:49 - 00146048 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\portcls.sys
2014-02-03 07:16 - 2008-04-14 00:49 - 00146048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\portcls.sys
2014-02-03 07:16 - 2008-04-14 00:45 - 00060800 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\sysaudio.sys
2014-02-03 07:16 - 2008-04-14 00:45 - 00060800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sysaudio.sys
2014-02-03 07:16 - 2008-04-14 00:15 - 00172416 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kmixer.sys
2014-02-03 07:16 - 2008-04-14 00:15 - 00172416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\kmixer.sys
2014-02-03 07:16 - 2008-04-14 00:15 - 00060160 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\drmk.sys
2014-02-03 07:16 - 2008-04-14 00:15 - 00060160 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\drmk.sys
2014-02-03 07:16 - 2008-04-14 00:15 - 00002944 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\drmkaud.sys
2014-02-03 07:16 - 2008-04-14 00:15 - 00002944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\drmkaud.sys
2014-02-03 07:16 - 2008-03-13 07:52 - 00266240 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTSndMgr.cpl
2014-02-03 07:16 - 2008-01-11 14:58 - 00009472 _____ (Lenovo Corporation) C:\WINDOWS\system32\Drivers\AcpiVpc.sys
2014-02-03 07:16 - 2007-11-20 11:15 - 01826816 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\SkyTel.exe
2014-02-03 07:16 - 2007-06-28 09:44 - 02165760 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\MicCal.exe
2014-02-03 07:15 - 2014-02-03 07:15 - 00000000 ____D () C:\Programme\Intel
2014-02-03 07:15 - 2014-02-03 07:15 - 00000000 ____D () C:\Intel
2014-02-03 07:15 - 2008-03-26 04:15 - 00053248 _____ (Windows XP Bundled build C-Centric Single User) C:\WINDOWS\system32\CSVer.dll
2014-02-03 07:14 - 2014-02-03 07:23 - 00000000 ____D () C:\Programme\Lenovo
2014-02-03 07:14 - 2014-02-03 07:14 - 00000322 _____ () C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Bluetooth-Umgebung.lnk
2014-02-03 07:14 - 2014-02-03 07:14 - 00000322 _____ () C:\Dokumente und Einstellungen\All Users\Startmenü\Bluetooth-Umgebung.lnk
2014-02-03 07:14 - 2008-06-23 05:23 - 00991400 _____ (Broadcom Corporation.) C:\WINDOWS\system32\Drivers\btkrnl.sys
2014-02-03 07:14 - 2008-06-11 07:14 - 00089896 _____ (Broadcom Corporation.) C:\WINDOWS\system32\Drivers\btwsecfl.sys
2014-02-03 07:14 - 2008-06-11 07:14 - 00047272 _____ (Broadcom Corporation.) C:\WINDOWS\system32\Drivers\btwusb.sys
2014-02-03 07:14 - 2007-09-20 04:59 - 00106557 _____ (Broadcom Corporation.) C:\WINDOWS\system32\btw_ci.dll
2014-02-03 07:13 - 2014-02-03 11:52 - 00100413 _____ () C:\WINDOWS\updspapi.log
2014-02-03 07:13 - 2014-02-03 07:22 - 00000000 ____D () C:\WINDOWS\system32\ReinstallBackups
2014-02-03 07:13 - 2014-02-03 07:18 - 00065536 _____ () C:\WINDOWS\system32\config\Internet.evt
2014-02-03 07:13 - 2014-02-03 07:16 - 00000000 ____D () C:\Programme\Gemeinsame Dateien\InstallShield
2014-02-03 07:13 - 2014-02-03 07:13 - 00000651 _____ () C:\WINDOWS\SynInst.log
2014-02-03 07:13 - 2014-02-03 07:13 - 00000000 ____D () C:\Programme\Synaptics
2014-02-03 07:13 - 2008-05-23 03:53 - 00110592 _____ (Synaptics, Inc.) C:\WINDOWS\system32\SynTPCo4.dll
2014-02-03 07:13 - 2008-05-23 03:35 - 00147456 _____ (Synaptics, Inc.) C:\WINDOWS\system32\SynTPAPI.dll
2014-02-03 07:13 - 2008-05-23 03:24 - 00200704 _____ (Synaptics, Inc.) C:\WINDOWS\system32\SynCtrl.dll
2014-02-03 07:13 - 2008-05-23 03:23 - 00163840 _____ (Synaptics, Inc.) C:\WINDOWS\system32\SynCOM.dll
2014-02-03 07:13 - 2008-05-23 03:21 - 00225280 _____ (Synaptics, Inc.) C:\WINDOWS\system32\Drivers\SynTP.sys
2014-02-03 07:12 - 2014-02-03 07:13 - 00000000 __HDC () C:\WINDOWS\ie7
2014-02-03 07:11 - 2014-02-04 13:38 - 00000000 ___HD () C:\WINDOWS\$hf_mig$
2014-02-03 07:11 - 2014-02-03 17:47 - 00385939 _____ () C:\WINDOWS\setupapi.log
2014-02-03 07:11 - 2014-02-03 07:13 - 00035205 _____ () C:\WINDOWS\ie7.log
2014-02-03 07:11 - 2014-02-03 07:13 - 00015815 _____ () C:\WINDOWS\ie7_main.log
2014-02-03 07:11 - 2014-02-03 07:11 - 00004512 _____ () C:\WINDOWS\KB949764.log
2014-02-03 07:11 - 2014-02-03 07:11 - 00004500 _____ () C:\WINDOWS\IDNMitigationAPIs.log
2014-02-03 07:11 - 2014-02-03 07:11 - 00003122 _____ () C:\WINDOWS\NLSDownlevelMapping.log
2014-02-03 07:11 - 2014-02-03 07:11 - 00002331 _____ () C:\WINDOWS\KB928388.log
2014-02-03 07:11 - 2014-02-03 07:11 - 00001937 _____ () C:\WINDOWS\KB915865.log
2014-02-03 07:11 - 2014-02-03 07:11 - 00000000 __HDC () C:\WINDOWS\$NtServicePackUninstallNLSDownlevelMapping$
2014-02-03 07:11 - 2014-02-03 07:11 - 00000000 __HDC () C:\WINDOWS\$NtServicePackUninstallIDNMitigationAPIs$
2014-02-03 07:11 - 2009-01-07 18:20 - 00026144 _____ (Microsoft Corporation) C:\WINDOWS\system32\spupdsvc.exe
2014-02-03 07:11 - 2009-01-07 18:20 - 00018464 ____N (Microsoft Corporation) C:\WINDOWS\system32\spmsg.dll
2014-02-03 07:07 - 2014-02-03 09:08 - 00000000 ____D () C:\Dokumente und Einstellungen\Administrator
2014-02-03 07:06 - 2013-08-09 01:55 - 00032384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbccgp.sys
2014-02-03 07:06 - 2013-07-17 01:58 - 00123008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbvideo.sys
2014-02-03 07:06 - 2008-04-14 07:53 - 00129536 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ksproxy.ax
2014-02-03 07:06 - 2008-04-14 07:53 - 00129536 _____ (Microsoft Corporation) C:\WINDOWS\system32\ksproxy.ax
2014-02-03 07:06 - 2008-04-14 07:53 - 00091648 _____ (Microsoft Corporation) C:\WINDOWS\system32\kswdmcap.ax
2014-02-03 07:06 - 2008-04-14 07:53 - 00061952 _____ (Microsoft Corporation) C:\WINDOWS\system32\kstvtune.ax
2014-02-03 07:06 - 2008-04-14 07:53 - 00043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\ksxbar.ax
2014-02-03 07:06 - 2008-04-14 07:53 - 00028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\vidcap.ax
2014-02-03 07:06 - 2008-04-14 07:53 - 00020992 _____ (Microsoft Corporation) C:\WINDOWS\system32\dshowext.ax
2014-02-03 07:06 - 2008-04-14 07:53 - 00016384 _____ (Microsoft Corporation) C:\WINDOWS\system32\ipsink.ax
2014-02-03 07:06 - 2008-04-14 07:52 - 00054272 _____ (Microsoft Corporation) C:\WINDOWS\system32\vfwwdm32.dll
2014-02-03 07:06 - 2008-04-14 07:52 - 00004096 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ksuser.dll
2014-02-03 07:06 - 2008-04-14 07:52 - 00004096 _____ (Microsoft Corporation) C:\WINDOWS\system32\ksuser.dll
2014-02-03 07:06 - 2008-04-14 00:16 - 00085248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\NABTSFEC.sys
2014-02-03 07:06 - 2008-04-14 00:16 - 00019200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WSTCODEC.SYS
2014-02-03 07:06 - 2008-04-14 00:16 - 00017024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\CCDECODE.sys
2014-02-03 07:06 - 2008-04-14 00:16 - 00015232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\StreamIP.sys
2014-02-03 07:06 - 2008-04-14 00:16 - 00011136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\SLIP.sys
2014-02-03 07:06 - 2008-04-14 00:16 - 00010880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\NdisIP.sys
2014-02-03 07:06 - 2008-04-14 00:15 - 00026368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBSTOR.SYS
2014-02-03 07:06 - 2008-04-14 00:09 - 00007552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\MSKSSRV.sys
2014-02-03 07:06 - 2008-04-14 00:09 - 00005504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\MSTEE.sys
2014-02-03 07:06 - 2008-04-14 00:09 - 00005376 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\MSPCLOCK.sys
2014-02-03 07:06 - 2008-04-14 00:09 - 00004992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\MSPQM.sys

==================== One Month Modified Files and Folders =======

2014-02-04 13:52 - 2014-02-03 09:09 - 00000246 _____ () C:\WINDOWS\Tasks\Auf Updates für Windows Live Toolbar prüfen.job
2014-02-04 13:51 - 2014-02-04 13:51 - 00000000 ____D () C:\FRST
2014-02-04 13:49 - 2014-02-04 13:49 - 00000000 _____ () C:\Dokumente und Einstellungen\Marco\defogger_reenable
2014-02-04 13:49 - 2014-02-03 09:09 - 00000000 ____D () C:\Dokumente und Einstellungen\Marco
2014-02-04 13:43 - 2008-07-21 06:01 - 01621869 _____ () C:\WINDOWS\WindowsUpdate.log
2014-02-04 13:39 - 2014-02-04 13:38 - 00006538 _____ () C:\WINDOWS\KB2345886.log
2014-02-04 13:38 - 2014-02-04 13:31 - 00000000 ____D () C:\WINDOWS\LastGood
2014-02-04 13:38 - 2014-02-03 07:11 - 00000000 ___HD () C:\WINDOWS\$hf_mig$
2014-02-04 13:34 - 2014-02-04 13:34 - 00000000 __SHD () C:\Dokumente und Einstellungen\LocalService\IETldCache
2014-02-04 13:34 - 2014-02-04 13:34 - 00000000 ____D () C:\Dokumente und Einstellungen\LocalService\Anwendungsdaten\Adobe
2014-02-04 13:34 - 2008-07-21 06:05 - 00000000 __SHD () C:\Dokumente und Einstellungen\LocalService
2014-02-04 13:32 - 2014-02-03 17:27 - 00001088 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2014-02-03 19:17 - 2014-02-03 19:17 - 00000012 ____H () C:\dvmexp.idx
2014-02-03 17:58 - 2014-02-03 17:58 - 00000000 ____D () C:\Programme\Malwarebytes' Anti-Malware
2014-02-03 17:58 - 2014-02-03 17:58 - 00000000 ____D () C:\Dokumente und Einstellungen\Marco\Anwendungsdaten\Malwarebytes
2014-02-03 17:58 - 2014-02-03 17:58 - 00000000 ____D () C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Malwarebytes' Anti-Malware
2014-02-03 17:58 - 2014-02-03 17:58 - 00000000 ____D () C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Malwarebytes
2014-02-03 17:58 - 2008-07-21 06:56 - 00000000 ___RD () C:\Programme
2014-02-03 17:58 - 2008-07-21 06:56 - 00000000 ___RD () C:\Dokumente und Einstellungen\All Users\Startmenü\Programme
2014-02-03 17:52 - 2014-02-03 17:50 - 00000000 ____D () C:\Dokumente und Einstellungen\Marco\Anwendungsdaten\Dropbox
2014-02-03 17:52 - 2014-02-03 09:09 - 00000000 ___RD () C:\Dokumente und Einstellungen\Marco\Startmenü\Programme\Autostart
2014-02-03 17:51 - 2014-02-03 17:51 - 00000000 ____D () C:\Programme\Dropbox
2014-02-03 17:51 - 2014-02-03 17:51 - 00000000 ____D () C:\Dokumente und Einstellungen\Marco\Startmenü\Programme\Dropbox
2014-02-03 17:51 - 2014-02-03 17:51 - 00000000 ____D () C:\Dokumente und Einstellungen\Marco\Anwendungsdaten\DropboxMaster
2014-02-03 17:51 - 2014-02-03 09:09 - 00000000 ___RD () C:\Dokumente und Einstellungen\Marco\Startmenü\Programme
2014-02-03 17:51 - 2008-07-21 06:59 - 00000346 _____ () C:\WINDOWS\wiadebug.log
2014-02-03 17:47 - 2014-02-03 17:47 - 00000000 ____D () C:\Programme\FreePDF_XP
2014-02-03 17:47 - 2014-02-03 17:47 - 00000000 ____D () C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\FreePDF
2014-02-03 17:47 - 2014-02-03 17:47 - 00000000 ____D () C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\FreePDF
2014-02-03 17:47 - 2014-02-03 07:11 - 00385939 _____ () C:\WINDOWS\setupapi.log
2014-02-03 17:47 - 2008-07-21 06:01 - 00000000 ____D () C:\Programme\Outlook Express
2014-02-03 17:44 - 2014-02-03 17:44 - 00000000 ____D () C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Ghostscript
2014-02-03 17:43 - 2014-02-03 17:43 - 00000000 ____D () C:\Programme\gs
2014-02-03 17:43 - 2014-02-03 09:09 - 00000000 ____D () C:\Dokumente und Einstellungen\Marco\Lokale Einstellungen\Anwendungsdaten\Adobe
2014-02-03 17:41 - 2014-02-03 17:41 - 00001804 _____ () C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Adobe Reader XI.lnk
2014-02-03 17:41 - 2014-02-03 17:41 - 00001721 _____ () C:\Dokumente und Einstellungen\All Users\Desktop\Adobe Reader XI.lnk
2014-02-03 17:41 - 2014-02-03 17:41 - 00000000 ____D () C:\Programme\Gemeinsame Dateien\Adobe
2014-02-03 17:41 - 2014-02-03 17:41 - 00000000 ____D () C:\Programme\Adobe
2014-02-03 17:41 - 2014-02-03 07:24 - 00000000 ____D () C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Adobe
2014-02-03 17:32 - 2014-02-03 17:27 - 00001084 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2014-02-03 17:28 - 2014-02-03 17:28 - 00000000 ____D () C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Google Drive
2014-02-03 17:28 - 2014-02-03 17:27 - 00000000 ____D () C:\Programme\Google
2014-02-03 17:28 - 2014-02-03 17:27 - 00000000 ____D () C:\Dokumente und Einstellungen\Marco\Lokale Einstellungen\Anwendungsdaten\Google
2014-02-03 17:20 - 2008-07-21 06:56 - 01069904 _____ () C:\WINDOWS\system32\PerfStringBackup.INI
2014-02-03 17:18 - 2014-02-03 17:18 - 00000104 _____ () C:\Dokumente und Einstellungen\Marco\Desktop\Arbeitsplatz.lnk
2014-02-03 17:16 - 2014-02-03 17:16 - 00000000 ___HD () C:\dvmexp
2014-02-03 17:15 - 2008-07-21 06:59 - 00000050 _____ () C:\WINDOWS\wiaservc.log
2014-02-03 17:15 - 2008-07-21 06:05 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT
2014-02-03 17:14 - 2014-02-03 09:09 - 00000190 ___SH () C:\Dokumente und Einstellungen\Marco\ntuser.ini
2014-02-03 17:14 - 2008-07-21 06:05 - 00004792 _____ () C:\WINDOWS\SchedLgU.Txt
2014-02-03 16:35 - 2014-02-03 16:35 - 00000000 ____D () C:\WINDOWS\system32\NtmsData
2014-02-03 16:35 - 2008-07-21 07:52 - 00000000 ____D () C:\WINDOWS\repair
2014-02-03 16:35 - 2008-07-21 06:00 - 00000000 ____D () C:\WINDOWS\Registration
2014-02-03 16:30 - 2014-02-03 16:30 - 00012328 _____ () C:\Dokumente und Einstellungen\Marco\Lokale Einstellungen\Anwendungsdaten\GDIPFONTCACHEV1.DAT
2014-02-03 16:27 - 2014-02-03 16:27 - 00000000 ____D () C:\Dokumente und Einstellungen\Marco\Anwendungsdaten\Avira
2014-02-03 16:25 - 2014-02-03 16:25 - 00000000 ____D () C:\Programme\Avira
2014-02-03 16:25 - 2014-02-03 16:25 - 00000000 ____D () C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Avira
2014-02-03 16:25 - 2014-02-03 16:25 - 00000000 ____D () C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Avira
2014-02-03 16:20 - 2008-07-21 06:56 - 00000000 ____D () C:\Programme\Gemeinsame Dateien\Microsoft Shared
2014-02-03 13:23 - 2008-07-21 06:06 - 00000000 ____D () C:\WINDOWS\Microsoft.NET
2014-02-03 13:10 - 2014-02-03 07:21 - 00015460 _____ () C:\WINDOWS\spupdsvc.log
2014-02-03 13:09 - 2008-07-21 06:56 - 00093480 _____ () C:\WINDOWS\system32\FNTCACHE.DAT
2014-02-03 13:03 - 2014-02-03 13:03 - 00000000 ____D () C:\Dokumente und Einstellungen\Marco\Lokale Einstellungen\Anwendungsdaten\Mozilla
2014-02-03 13:03 - 2014-02-03 13:03 - 00000000 ____D () C:\Dokumente und Einstellungen\Marco\Anwendungsdaten\Mozilla
2014-02-03 13:02 - 2014-02-03 13:02 - 00000709 _____ () C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Mozilla Firefox.lnk
2014-02-03 13:02 - 2014-02-03 13:02 - 00000703 _____ () C:\Dokumente und Einstellungen\All Users\Desktop\Mozilla Firefox.lnk
2014-02-03 13:02 - 2014-02-03 13:02 - 00000000 ____D () C:\WINDOWS\system32\XPSViewer
2014-02-03 13:02 - 2014-02-03 13:02 - 00000000 ____D () C:\Programme\Reference Assemblies
2014-02-03 13:02 - 2014-02-03 13:02 - 00000000 ____D () C:\Programme\MSBuild
2014-02-03 13:02 - 2014-02-03 13:02 - 00000000 ____D () C:\Programme\Mozilla Maintenance Service
2014-02-03 13:02 - 2014-02-03 13:02 - 00000000 ____D () C:\Programme\Mozilla Firefox
2014-02-03 13:02 - 2014-02-03 13:02 - 00000000 ____D () C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Mozilla
2014-02-03 13:02 - 2014-02-03 13:01 - 00000000 ____D () C:\75cdcbcda7d32626c760c52bc544
2014-02-03 13:01 - 2008-07-21 07:52 - 00000000 ____D () C:\WINDOWS\system32\spool
2014-02-03 12:55 - 2014-02-03 12:55 - 00000000 ____D () C:\Dokumente und Einstellungen\Marco\Anwendungsdaten\Macromedia
2014-02-03 12:55 - 2014-02-03 10:23 - 00000000 ____D () C:\Dokumente und Einstellungen\Marco\Anwendungsdaten\Adobe
2014-02-03 12:54 - 2014-02-03 12:54 - 00000000 __SHD () C:\Dokumente und Einstellungen\Marco\IECompatCache
2014-02-03 12:53 - 2014-02-03 12:53 - 00000000 __SHD () C:\Dokumente und Einstellungen\Marco\PrivacIE
2014-02-03 12:29 - 2014-02-03 12:29 - 00000000 __SHD () C:\Dokumente und Einstellungen\Marco\IETldCache
2014-02-03 12:29 - 2014-02-03 09:09 - 00000790 _____ () C:\Dokumente und Einstellungen\Marco\Startmenü\Programme\Internet Explorer.lnk
2014-02-03 12:29 - 2014-02-03 09:09 - 00000000 ___RD () C:\Dokumente und Einstellungen\Marco\Eigene Dateien\Eigene Musik
2014-02-03 12:29 - 2014-02-03 09:09 - 00000000 ___RD () C:\Dokumente und Einstellungen\Marco\Eigene Dateien\Eigene Bilder
2014-02-03 12:29 - 2008-07-21 06:05 - 00000000 __SHD () C:\Dokumente und Einstellungen\LocalService\Lokale Einstellungen\Verlauf
2014-02-03 12:28 - 2008-07-21 07:52 - 00000000 ____D () C:\WINDOWS\system32\de-de
2014-02-03 12:28 - 2008-07-21 07:52 - 00000000 ____D () C:\WINDOWS\security
2014-02-03 12:28 - 2008-07-21 07:52 - 00000000 ____D () C:\WINDOWS\Media
2014-02-03 12:28 - 2008-07-21 07:52 - 00000000 ____D () C:\WINDOWS\Help
2014-02-03 11:52 - 2014-02-03 11:52 - 00106317 _____ () C:\WINDOWS\KB951376-v2.log
2014-02-03 11:52 - 2014-02-03 11:52 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB952954$
2014-02-03 11:52 - 2014-02-03 11:52 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB951376-v2$
2014-02-03 11:52 - 2014-02-03 11:52 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2868626$
2014-02-03 11:52 - 2014-02-03 11:16 - 00118941 _____ () C:\WINDOWS\KB952954.log
2014-02-03 11:52 - 2014-02-03 11:16 - 00117397 _____ () C:\WINDOWS\KB2868626.log
2014-02-03 11:52 - 2014-02-03 07:13 - 00100413 _____ () C:\WINDOWS\updspapi.log
2014-02-03 11:52 - 2008-07-21 06:56 - 00870994 _____ () C:\WINDOWS\FaxSetup.log
2014-02-03 11:52 - 2008-07-21 06:56 - 00425609 _____ () C:\WINDOWS\ocgen.log
2014-02-03 11:52 - 2008-07-21 06:56 - 00340743 _____ () C:\WINDOWS\tsoc.log
2014-02-03 11:52 - 2008-07-21 06:56 - 00305236 _____ () C:\WINDOWS\comsetup.log
2014-02-03 11:52 - 2008-07-21 06:56 - 00182911 _____ () C:\WINDOWS\ntdtcsetup.log
2014-02-03 11:52 - 2008-07-21 06:56 - 00138513 _____ () C:\WINDOWS\iis6.log
2014-02-03 11:52 - 2008-07-21 06:56 - 00048423 _____ () C:\WINDOWS\ocmsn.log
2014-02-03 11:52 - 2008-07-21 06:56 - 00043822 _____ () C:\WINDOWS\msgsocm.log
2014-02-03 11:52 - 2008-07-21 06:56 - 00001355 _____ () C:\WINDOWS\imsins.log
2014-02-03 11:52 - 2008-07-21 06:56 - 00001355 _____ () C:\WINDOWS\imsins.BAK
2014-02-03 11:51 - 2014-02-03 11:51 - 00114681 _____ () C:\WINDOWS\KB2898785-IE8.log
2014-02-03 11:51 - 2014-02-03 11:51 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB959426$
2014-02-03 11:51 - 2014-02-03 11:50 - 00115518 _____ () C:\WINDOWS\KB2862772-IE8.log
2014-02-03 11:51 - 2014-02-03 11:42 - 00146238 _____ () C:\WINDOWS\ie8_main.log
2014-02-03 11:51 - 2014-02-03 11:16 - 00118200 _____ () C:\WINDOWS\KB959426.log
2014-02-03 11:50 - 2014-02-03 11:50 - 00119167 _____ () C:\WINDOWS\KB2744842-IE8.log
2014-02-03 11:50 - 2014-02-03 11:49 - 00122192 _____ () C:\WINDOWS\KB2618444-IE8.log
2014-02-03 11:49 - 2014-02-03 11:49 - 00133429 _____ () C:\WINDOWS\KB982381-IE8.log
2014-02-03 11:49 - 2014-02-03 11:49 - 00110620 _____ () C:\WINDOWS\KB2598845-IE8.log
2014-02-03 11:49 - 2014-02-03 11:49 - 00109979 _____ () C:\WINDOWS\KB2467659.log
2014-02-03 11:49 - 2014-02-03 11:49 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2467659$
2014-02-03 11:49 - 2014-02-03 11:49 - 00000000 ____D () C:\WINDOWS\ie8updates
2014-02-03 11:49 - 2014-02-03 11:47 - 00133696 _____ () C:\WINDOWS\ie8.log
2014-02-03 11:48 - 2014-02-03 11:47 - 00000000 __HDC () C:\WINDOWS\ie8
2014-02-03 11:42 - 2014-02-03 11:41 - 00055043 _____ () C:\WINDOWS\KB946648.log
2014-02-03 11:42 - 2008-07-21 06:00 - 00000000 ____D () C:\Programme\Messenger
2014-02-03 11:41 - 2014-02-03 11:41 - 00055278 _____ () C:\WINDOWS\KB2387149.log
2014-02-03 11:41 - 2014-02-03 11:41 - 00052456 _____ () C:\WINDOWS\KB2659262.log
2014-02-03 11:41 - 2014-02-03 11:41 - 00051719 _____ () C:\WINDOWS\KB2564958.log
2014-02-03 11:41 - 2014-02-03 11:41 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB960859$
2014-02-03 11:41 - 2014-02-03 11:41 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB946648$
2014-02-03 11:41 - 2014-02-03 11:41 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2712808$
2014-02-03 11:41 - 2014-02-03 11:41 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2659262$
2014-02-03 11:41 - 2014-02-03 11:41 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2564958$
2014-02-03 11:41 - 2014-02-03 11:41 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2479943$
2014-02-03 11:41 - 2014-02-03 11:41 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2387149$
2014-02-03 11:41 - 2014-02-03 11:16 - 00067303 _____ () C:\WINDOWS\KB2712808.log
2014-02-03 11:41 - 2014-02-03 11:16 - 00066858 _____ () C:\WINDOWS\KB2479943.log
2014-02-03 11:41 - 2014-02-03 11:16 - 00066776 _____ () C:\WINDOWS\KB960859.log
2014-02-03 11:41 - 2014-02-03 09:09 - 00000138 _____ () C:\Dokumente und Einstellungen\Marco\Lokale Einstellungen\Anwendungsdaten\fusioncache.dat
2014-02-03 11:40 - 2014-02-03 11:40 - 00053866 _____ () C:\WINDOWS\KB2536276-v2.log
2014-02-03 11:40 - 2014-02-03 11:40 - 00051067 _____ () C:\WINDOWS\KB2834886.log
2014-02-03 11:40 - 2014-02-03 11:40 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2834886$
2014-02-03 11:40 - 2014-02-03 11:40 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2758857$
2014-02-03 11:40 - 2014-02-03 11:40 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2585542$
2014-02-03 11:40 - 2014-02-03 11:40 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2544893-v2$
2014-02-03 11:40 - 2014-02-03 11:40 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2536276-v2$
2014-02-03 11:40 - 2014-02-03 11:40 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2478971$
2014-02-03 11:40 - 2014-02-03 11:15 - 00066314 _____ () C:\WINDOWS\KB2585542.log
2014-02-03 11:40 - 2014-02-03 11:15 - 00066282 _____ () C:\WINDOWS\KB2478971.log
2014-02-03 11:40 - 2014-02-03 11:15 - 00065719 _____ () C:\WINDOWS\KB2758857.log
2014-02-03 11:40 - 2014-02-03 11:15 - 00065284 _____ () C:\WINDOWS\KB2631813.log
2014-02-03 11:40 - 2014-02-03 11:14 - 00065084 _____ () C:\WINDOWS\KB2544893-v2.log
2014-02-03 11:39 - 2014-02-03 11:39 - 00054473 _____ () C:\WINDOWS\KB955759.log
2014-02-03 11:39 - 2014-02-03 11:39 - 00051968 _____ () C:\WINDOWS\KB975558.log
2014-02-03 11:39 - 2014-02-03 11:39 - 00051426 _____ () C:\WINDOWS\KB2296011.log
2014-02-03 11:39 - 2014-02-03 11:39 - 00050792 _____ () C:\WINDOWS\KB2900986.log
2014-02-03 11:39 - 2014-02-03 11:39 - 00050718 _____ () C:\WINDOWS\KB2378111.log
2014-02-03 11:39 - 2014-02-03 11:39 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB975558_WM8$
2014-02-03 11:39 - 2014-02-03 11:39 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB974318$
2014-02-03 11:39 - 2014-02-03 11:39 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB955759$
2014-02-03 11:39 - 2014-02-03 11:39 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB951978$
2014-02-03 11:39 - 2014-02-03 11:39 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2900986$
2014-02-03 11:39 - 2014-02-03 11:39 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2847311$
2014-02-03 11:39 - 2014-02-03 11:39 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2691442$
2014-02-03 11:39 - 2014-02-03 11:39 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2631813$
2014-02-03 11:39 - 2014-02-03 11:39 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2378111_WM9$
2014-02-03 11:39 - 2014-02-03 11:39 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2296011$
2014-02-03 11:39 - 2014-02-03 11:39 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2115168$
2014-02-03 11:39 - 2014-02-03 11:15 - 00065768 _____ () C:\WINDOWS\KB2691442.log
2014-02-03 11:39 - 2014-02-03 11:14 - 00064679 _____ () C:\WINDOWS\KB2115168.log
2014-02-03 11:39 - 2014-02-03 11:14 - 00064446 _____ () C:\WINDOWS\KB974318.log
2014-02-03 11:39 - 2014-02-03 11:14 - 00061916 _____ () C:\WINDOWS\KB2847311.log
2014-02-03 11:39 - 2014-02-03 11:13 - 00063918 _____ () C:\WINDOWS\KB951978.log
2014-02-03 11:39 - 2014-02-03 11:13 - 00062493 _____ () C:\WINDOWS\KB969059.log
2014-02-03 11:39 - 2008-07-21 06:00 - 00001403 _____ () C:\WINDOWS\wmsetup.log
2014-02-03 11:38 - 2014-02-03 11:38 - 00052114 _____ () C:\WINDOWS\KB2229593.log
2014-02-03 11:38 - 2014-02-03 11:38 - 00050879 _____ () C:\WINDOWS\KB2686509.log
2014-02-03 11:38 - 2014-02-03 11:38 - 00050781 _____ () C:\WINDOWS\KB2485663.log
2014-02-03 11:38 - 2014-02-03 11:38 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB975713$
2014-02-03 11:38 - 2014-02-03 11:38 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB969059$
2014-02-03 11:38 - 2014-02-03 11:38 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB950974$
2014-02-03 11:38 - 2014-02-03 11:38 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2898715$
2014-02-03 11:38 - 2014-02-03 11:38 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2802968$
2014-02-03 11:38 - 2014-02-03 11:38 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2686509$
2014-02-03 11:38 - 2014-02-03 11:38 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2655992$
2014-02-03 11:38 - 2014-02-03 11:38 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2598479$
2014-02-03 11:38 - 2014-02-03 11:38 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2485663$
2014-02-03 11:38 - 2014-02-03 11:38 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2481109$
2014-02-03 11:38 - 2014-02-03 11:38 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2443105$
2014-02-03 11:38 - 2014-02-03 11:38 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2229593$
2014-02-03 11:38 - 2014-02-03 11:14 - 00064298 _____ () C:\WINDOWS\KB2655992.log
2014-02-03 11:38 - 2014-02-03 11:14 - 00063529 _____ () C:\WINDOWS\KB2802968.log
2014-02-03 11:38 - 2014-02-03 11:14 - 00061281 _____ () C:\WINDOWS\KB2898715.log
2014-02-03 11:38 - 2014-02-03 11:13 - 00063215 _____ () C:\WINDOWS\KB2481109.log
2014-02-03 11:38 - 2014-02-03 11:13 - 00062621 _____ () C:\WINDOWS\KB950974.log
2014-02-03 11:38 - 2014-02-03 11:13 - 00062581 _____ () C:\WINDOWS\KB2443105.log
2014-02-03 11:38 - 2014-02-03 11:13 - 00062163 _____ () C:\WINDOWS\KB2598479.log
2014-02-03 11:38 - 2014-02-03 11:13 - 00061707 _____ () C:\WINDOWS\KB975713.log
2014-02-03 11:37 - 2014-02-03 11:37 - 00048993 _____ () C:\WINDOWS\KB2862335.log
2014-02-03 11:37 - 2014-02-03 11:37 - 00047095 _____ () C:\WINDOWS\KB954155.log
2014-02-03 11:37 - 2014-02-03 11:37 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB982132$
2014-02-03 11:37 - 2014-02-03 11:37 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB978338$
2014-02-03 11:37 - 2014-02-03 11:37 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB974112$
2014-02-03 11:37 - 2014-02-03 11:37 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB972270$
2014-02-03 11:37 - 2014-02-03 11:37 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB971657$
2014-02-03 11:37 - 2014-02-03 11:37 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB954155_WM9$
2014-02-03 11:37 - 2014-02-03 11:37 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2862335$
2014-02-03 11:37 - 2014-02-03 11:37 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2845187$
2014-02-03 11:37 - 2014-02-03 11:37 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2780091$
2014-02-03 11:37 - 2014-02-03 11:37 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2510581$
2014-02-03 11:37 - 2014-02-03 11:37 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2507938$
2014-02-03 11:37 - 2014-02-03 11:36 - 00052317 _____ () C:\WINDOWS\KB956572.log
2014-02-03 11:37 - 2014-02-03 11:14 - 00061996 _____ () C:\WINDOWS\KB2780091.log
2014-02-03 11:37 - 2014-02-03 11:13 - 00061062 _____ () C:\WINDOWS\KB2507938.log
2014-02-03 11:37 - 2014-02-03 11:13 - 00061058 _____ () C:\WINDOWS\KB982132.log
2014-02-03 11:37 - 2014-02-03 11:13 - 00060834 _____ () C:\WINDOWS\KB978338.log
2014-02-03 11:37 - 2014-02-03 11:12 - 00062750 _____ () C:\WINDOWS\KB2510581.log
2014-02-03 11:37 - 2014-02-03 11:12 - 00060499 _____ () C:\WINDOWS\KB971657.log
2014-02-03 11:37 - 2014-02-03 11:12 - 00059782 _____ () C:\WINDOWS\KB974112.log
2014-02-03 11:37 - 2014-02-03 11:12 - 00058089 _____ () C:\WINDOWS\KB2845187.log
2014-02-03 11:36 - 2014-02-03 11:36 - 00046889 _____ () C:\WINDOWS\KB956844.log
2014-02-03 11:36 - 2014-02-03 11:36 - 00046053 _____ () C:\WINDOWS\KB973869.log
2014-02-03 11:36 - 2014-02-03 11:36 - 00045229 _____ () C:\WINDOWS\KB2904266.log
2014-02-03 11:36 - 2014-02-03 11:36 - 00006732 _____ () C:\WINDOWS\system32\TZLog.log
2014-02-03 11:36 - 2014-02-03 11:36 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB979687$
2014-02-03 11:36 - 2014-02-03 11:36 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB975025$
2014-02-03 11:36 - 2014-02-03 11:36 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB973869$
2014-02-03 11:36 - 2014-02-03 11:36 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB956844$
2014-02-03 11:36 - 2014-02-03 11:36 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB956572$
2014-02-03 11:36 - 2014-02-03 11:36 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2904266$
2014-02-03 11:36 - 2014-02-03 11:36 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2876217$
2014-02-03 11:36 - 2014-02-03 11:36 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2864063$
2014-02-03 11:36 - 2014-02-03 11:36 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2483185$
2014-02-03 11:36 - 2014-02-03 11:36 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2347290$
2014-02-03 11:36 - 2014-02-03 11:12 - 00055032 _____ () C:\WINDOWS\KB2876217.log
2014-02-03 11:36 - 2014-02-03 11:11 - 00057652 _____ () C:\WINDOWS\KB979687.log
2014-02-03 11:36 - 2014-02-03 11:11 - 00057550 _____ () C:\WINDOWS\KB2483185.log
2014-02-03 11:36 - 2014-02-03 11:11 - 00053928 _____ () C:\WINDOWS\KB2864063.log
2014-02-03 11:36 - 2014-02-03 11:10 - 00055401 _____ () C:\WINDOWS\KB2719985.log
2014-02-03 11:36 - 2014-02-03 11:10 - 00054844 _____ () C:\WINDOWS\KB975025.log
2014-02-03 11:35 - 2014-02-03 11:35 - 00043050 _____ () C:\WINDOWS\KB2592799.log
2014-02-03 11:35 - 2014-02-03 11:35 - 00042871 _____ () C:\WINDOWS\KB2535512.log
2014-02-03 11:35 - 2014-02-03 11:35 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB977816$
2014-02-03 11:35 - 2014-02-03 11:35 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB975560$
2014-02-03 11:35 - 2014-02-03 11:35 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB974571$
2014-02-03 11:35 - 2014-02-03 11:35 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB973507$
2014-02-03 11:35 - 2014-02-03 11:35 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB952004$
2014-02-03 11:35 - 2014-02-03 11:35 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2862152$
2014-02-03 11:35 - 2014-02-03 11:35 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2850869$
2014-02-03 11:35 - 2014-02-03 11:35 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2770660$
2014-02-03 11:35 - 2014-02-03 11:35 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2719985$
2014-02-03 11:35 - 2014-02-03 11:35 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2592799$
2014-02-03 11:35 - 2014-02-03 11:35 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2535512$
2014-02-03 11:35 - 2014-02-03 11:34 - 00042394 _____ () C:\WINDOWS\KB950762.log
2014-02-03 11:35 - 2014-02-03 11:11 - 00049776 _____ () C:\WINDOWS\KB2850869.log
2014-02-03 11:35 - 2014-02-03 11:10 - 00050261 _____ () C:\WINDOWS\KB2862152.log
2014-02-03 11:35 - 2014-02-03 11:09 - 00055101 _____ () C:\WINDOWS\KB952004.log
2014-02-03 11:35 - 2014-02-03 11:09 - 00051692 _____ () C:\WINDOWS\KB974571.log
2014-02-03 11:35 - 2014-02-03 11:08 - 00051084 _____ () C:\WINDOWS\KB973507.log
2014-02-03 11:35 - 2014-02-03 11:08 - 00050462 _____ () C:\WINDOWS\KB977816.log
2014-02-03 11:34 - 2014-02-03 11:34 - 00042155 _____ () C:\WINDOWS\KB2807986.log
2014-02-03 11:34 - 2014-02-03 11:34 - 00041624 _____ () C:\WINDOWS\KB2570947.log
2014-02-03 11:34 - 2014-02-03 11:34 - 00041569 _____ () C:\WINDOWS\KB952287.log
2014-02-03 11:34 - 2014-02-03 11:34 - 00041454 _____ () C:\WINDOWS\KB2868038.log
2014-02-03 11:34 - 2014-02-03 11:34 - 00041158 _____ () C:\WINDOWS\KB2603381.log
2014-02-03 11:34 - 2014-02-03 11:34 - 00036819 _____ () C:\WINDOWS\KB978695.log
2014-02-03 11:34 - 2014-02-03 11:34 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB978695_WM9$
2014-02-03 11:34 - 2014-02-03 11:34 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB952287$
2014-02-03 11:34 - 2014-02-03 11:34 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB950762$
2014-02-03 11:34 - 2014-02-03 11:34 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2876331$
2014-02-03 11:34 - 2014-02-03 11:34 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2868038$
2014-02-03 11:34 - 2014-02-03 11:34 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2859537$
2014-02-03 11:34 - 2014-02-03 11:34 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2820917$
2014-02-03 11:34 - 2014-02-03 11:34 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2807986$
2014-02-03 11:34 - 2014-02-03 11:34 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2603381$
2014-02-03 11:34 - 2014-02-03 11:34 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2570947$
2014-02-03 11:34 - 2014-02-03 11:33 - 00042203 _____ () C:\WINDOWS\KB973904.log
2014-02-03 11:34 - 2014-02-03 11:11 - 00050503 _____ () C:\WINDOWS\KB2859537.log
2014-02-03 11:34 - 2014-02-03 11:11 - 00049558 _____ () C:\WINDOWS\KB2876331.log
2014-02-03 11:34 - 2014-02-03 11:10 - 00051046 _____ () C:\WINDOWS\KB2820917.log
2014-02-03 11:33 - 2014-02-03 11:33 - 00026087 _____ () C:\WINDOWS\KB976002-v5.log
2014-02-03 11:33 - 2014-02-03 11:33 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB974392$
2014-02-03 11:33 - 2014-02-03 11:33 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB973904$
2014-02-03 11:33 - 2014-02-03 11:33 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB973540_WM9$
2014-02-03 11:33 - 2014-02-03 11:33 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB971029$
2014-02-03 11:33 - 2014-02-03 11:33 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2893294$
2014-02-03 11:33 - 2014-02-03 11:33 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2757638$
2014-02-03 11:33 - 2014-02-03 11:33 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2749655$
2014-02-03 11:33 - 2014-02-03 11:33 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2653956$
2014-02-03 11:33 - 2014-02-03 11:33 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2508429$
2014-02-03 11:33 - 2014-02-03 11:33 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2419632$
2014-02-03 11:33 - 2014-02-03 11:32 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2506212$
2014-02-03 11:33 - 2014-02-03 11:11 - 00050432 _____ () C:\WINDOWS\KB2757638.log
2014-02-03 11:33 - 2014-02-03 11:10 - 00048250 _____ () C:\WINDOWS\KB2893294.log
2014-02-03 11:33 - 2014-02-03 11:10 - 00043625 _____ () C:\WINDOWS\KB2749655.log
2014-02-03 11:33 - 2014-02-03 11:09 - 00044686 _____ () C:\WINDOWS\KB2508429.log
2014-02-03 11:33 - 2014-02-03 11:09 - 00042813 _____ () C:\WINDOWS\KB971029.log
2014-02-03 11:33 - 2014-02-03 11:08 - 00050653 _____ () C:\WINDOWS\KB2419632.log
2014-02-03 11:33 - 2014-02-03 11:08 - 00043042 _____ () C:\WINDOWS\KB2653956.log
2014-02-03 11:33 - 2014-02-03 11:08 - 00042559 _____ () C:\WINDOWS\KB974392.log
2014-02-03 11:33 - 2014-02-03 11:08 - 00041668 _____ () C:\WINDOWS\KB2506212.log
2014-02-03 11:32 - 2014-02-03 11:32 - 00033733 _____ () C:\WINDOWS\KB2698365.log
2014-02-03 11:32 - 2014-02-03 11:32 - 00028723 _____ () C:\WINDOWS\KB952069.log
2014-02-03 11:32 - 2014-02-03 11:32 - 00025342 _____ () C:\WINDOWS\KB2803821-v2.log
2014-02-03 11:32 - 2014-02-03 11:32 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB979482$
2014-02-03 11:32 - 2014-02-03 11:32 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB979309$
2014-02-03 11:32 - 2014-02-03 11:32 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB978542$
2014-02-03 11:32 - 2014-02-03 11:32 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB977914$
2014-02-03 11:32 - 2014-02-03 11:32 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB952069_WM9$
2014-02-03 11:32 - 2014-02-03 11:32 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2893984$
2014-02-03 11:32 - 2014-02-03 11:32 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2892075$
2014-02-03 11:32 - 2014-02-03 11:32 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2803821-v2_WM9$
2014-02-03 11:32 - 2014-02-03 11:32 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2727528$
2014-02-03 11:32 - 2014-02-03 11:32 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2705219-v2$
2014-02-03 11:32 - 2014-02-03 11:32 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2698365$
2014-02-03 11:32 - 2014-02-03 11:32 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2619339$
2014-02-03 11:32 - 2014-02-03 11:10 - 00040259 _____ () C:\WINDOWS\KB2893984.log
2014-02-03 11:32 - 2014-02-03 11:10 - 00039257 _____ () C:\WINDOWS\KB2892075.log
2014-02-03 11:32 - 2014-02-03 11:09 - 00042579 _____ () C:\WINDOWS\KB977914.log
2014-02-03 11:32 - 2014-02-03 11:07 - 00040173 _____ () C:\WINDOWS\KB2705219-v2.log
2014-02-03 11:32 - 2014-02-03 11:07 - 00039467 _____ () C:\WINDOWS\KB2619339.log
2014-02-03 11:32 - 2014-02-03 11:07 - 00038627 _____ () C:\WINDOWS\KB2727528.log
2014-02-03 11:32 - 2014-02-03 11:07 - 00038532 _____ () C:\WINDOWS\KB979482.log
2014-02-03 11:32 - 2014-02-03 11:06 - 00038155 _____ () C:\WINDOWS\KB978542.log
2014-02-03 11:32 - 2014-02-03 11:03 - 00037244 _____ () C:\WINDOWS\KB979309.log
2014-02-03 11:31 - 2014-02-03 11:31 - 00032162 _____ () C:\WINDOWS\KB2723135-v2.log
2014-02-03 11:31 - 2014-02-03 11:31 - 00031528 _____ () C:\WINDOWS\KB981997.log
2014-02-03 11:31 - 2014-02-03 11:31 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB981997$
2014-02-03 11:31 - 2014-02-03 11:31 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB978706$
2014-02-03 11:31 - 2014-02-03 11:31 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB973815$
2014-02-03 11:31 - 2014-02-03 11:31 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB960803$
2014-02-03 11:31 - 2014-02-03 11:31 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2862330$
2014-02-03 11:31 - 2014-02-03 11:31 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2813345$
2014-02-03 11:31 - 2014-02-03 11:31 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2723135-v2$
2014-02-03 11:31 - 2014-02-03 11:31 - 00000000 ____D () C:\WINDOWS\ie7updates
2014-02-03 11:31 - 2014-02-03 11:07 - 00104155 _____ () C:\WINDOWS\KB2898785-IE7.log
2014-02-03 11:31 - 2014-02-03 11:07 - 00028907 _____ () C:\WINDOWS\KB2813345.log
2014-02-03 11:31 - 2014-02-03 11:06 - 00038235 _____ () C:\WINDOWS\KB978706.log
2014-02-03 11:31 - 2014-02-03 11:06 - 00028731 _____ () C:\WINDOWS\KB2509553.log
2014-02-03 11:31 - 2014-02-03 11:06 - 00027403 _____ () C:\WINDOWS\KB960803.log
2014-02-03 11:31 - 2014-02-03 11:05 - 00026504 _____ () C:\WINDOWS\KB973815.log
2014-02-03 11:31 - 2008-07-21 06:01 - 00000000 ____D () C:\Programme\Movie Maker
2014-02-03 11:30 - 2014-02-03 11:30 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2676562$
2014-02-03 11:30 - 2014-02-03 11:30 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2509553$
2014-02-03 11:30 - 2014-02-03 11:28 - 00000000 ____D () C:\WINDOWS\system32\MRT
2014-02-03 11:30 - 2014-02-03 11:06 - 00030046 _____ () C:\WINDOWS\KB2676562.log
2014-02-03 11:28 - 2014-02-03 11:28 - 00020910 _____ () C:\WINDOWS\KB2393802.log
2014-02-03 11:28 - 2014-02-03 11:28 - 00019275 _____ () C:\WINDOWS\KB923561.log
2014-02-03 11:28 - 2014-02-03 11:28 - 00017569 _____ () C:\WINDOWS\KB2566454.log
2014-02-03 11:28 - 2014-02-03 11:28 - 00017362 _____ () C:\WINDOWS\KB2661637.log
2014-02-03 11:28 - 2014-02-03 11:28 - 00015166 _____ () C:\WINDOWS\KB2914368.log
2014-02-03 11:28 - 2014-02-03 11:28 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB982665$
2014-02-03 11:28 - 2014-02-03 11:28 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB923561$
2014-02-03 11:28 - 2014-02-03 11:28 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2914368$
2014-02-03 11:28 - 2014-02-03 11:28 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2661637$
2014-02-03 11:28 - 2014-02-03 11:28 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2620712$
2014-02-03 11:28 - 2014-02-03 11:28 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2566454$
2014-02-03 11:28 - 2014-02-03 11:28 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2478960$
2014-02-03 11:28 - 2014-02-03 11:28 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2393802$
2014-02-03 11:28 - 2014-02-03 11:06 - 00024980 _____ () C:\WINDOWS\KB982665.log
2014-02-03 11:28 - 2014-02-03 11:05 - 00023952 _____ () C:\WINDOWS\KB2620712.log
2014-02-03 11:27 - 2014-02-03 11:27 - 00014732 _____ () C:\WINDOWS\KB2423089.log
2014-02-03 11:27 - 2014-02-03 11:27 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB975467$
2014-02-03 11:27 - 2014-02-03 11:27 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB968389$
2014-02-03 11:27 - 2014-02-03 11:27 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2584146$
2014-02-03 11:27 - 2014-02-03 11:27 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2423089$
2014-02-03 11:27 - 2014-02-03 11:02 - 00023262 _____ () C:\WINDOWS\KB2584146.log
2014-02-03 11:27 - 2014-02-03 11:01 - 00024700 _____ () C:\WINDOWS\KB968389.log
2014-02-03 11:27 - 2014-02-03 11:01 - 00024063 _____ () C:\WINDOWS\KB975467.log
2014-02-03 11:00 - 2014-02-03 11:00 - 00000000 ____D () C:\WINDOWS\system32\PreInstall
2014-02-03 11:00 - 2014-02-03 10:59 - 00008472 _____ () C:\WINDOWS\KB898461.log
2014-02-03 10:59 - 2014-02-03 10:59 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB898461$
2014-02-03 09:10 - 2008-07-21 17:01 - 00000000 ____D () C:\SWTOOLS
2014-02-03 09:10 - 2008-07-21 15:45 - 00000000 ____D () C:\I386
2014-02-03 09:09 - 2014-02-03 09:09 - 00000779 _____ () C:\Dokumente und Einstellungen\Marco\Startmenü\Programme\Windows Media Player.lnk
2014-02-03 09:09 - 2014-02-03 09:09 - 00000725 _____ () C:\Dokumente und Einstellungen\Marco\Startmenü\Programme\Outlook Express.lnk
2014-02-03 09:09 - 2014-02-03 09:09 - 00000050 _____ () C:\WINDOWS\system32\Drivers\Lenovo_4068_4WG.MRK
2014-02-03 09:09 - 2014-02-03 09:09 - 00000000 __SHD () C:\Dokumente und Einstellungen\Marco\Lokale Einstellungen\Verlauf
2014-02-03 09:09 - 2014-02-03 09:09 - 00000000 ____D () C:\Programme\Windows Live Toolbar
2014-02-03 09:09 - 2008-07-21 06:56 - 00000000 ___RD () C:\Dokumente und Einstellungen\Default User\Startmenü\Programme
2014-02-03 09:09 - 2008-07-21 06:01 - 00000000 ____D () C:\WINDOWS\system32\Restore
2014-02-03 09:08 - 2014-02-03 07:07 - 00000000 ____D () C:\Dokumente und Einstellungen\Administrator
2014-02-03 09:08 - 2008-07-21 15:51 - 00000211 __RSH () C:\boot.ini
2014-02-03 09:08 - 2008-07-21 06:56 - 00214550 _____ () C:\WINDOWS\setupact.log
2014-02-03 08:36 - 2008-07-21 15:51 - 00002278 _____ () C:\WINDOWS\system32\wpa.dbl
2014-02-03 08:36 - 2008-07-21 06:00 - 00004541 _____ () C:\WINDOWS\sessmgr.setup.log
2014-02-03 08:36 - 2008-07-21 06:00 - 00000626 _____ () C:\WINDOWS\DtcInstall.log
2014-02-03 08:35 - 2008-07-21 06:56 - 00005208 _____ () C:\WINDOWS\system32\pid.PNF
2014-02-03 08:35 - 2008-07-21 06:56 - 00004118 _____ () C:\WINDOWS\regopt.log
2014-02-03 07:35 - 2014-02-03 07:35 - 00008192 _____ () C:\WINDOWS\REGLOCS.OLD
2014-02-03 07:35 - 2008-07-21 15:51 - 00000231 _____ () C:\WINDOWS\system.ini
2014-02-03 07:33 - 2014-02-03 09:08 - 00000190 ___SH () C:\Dokumente und Einstellungen\Default User\ntuser.ini
2014-02-03 07:33 - 2008-07-21 06:56 - 00000000 __SHD () C:\Dokumente und Einstellungen\Default User\Lokale Einstellungen\Verlauf
2014-02-03 07:33 - 2008-07-21 06:05 - 00000000 ___HD () C:\Dokumente und Einstellungen\NetworkService\Lokale Einstellungen\Verlauf
2014-02-03 07:32 - 2014-02-03 07:32 - 00000061 _____ () C:\WINDOWS\smscfg.ini
2014-02-03 07:32 - 2008-07-21 06:02 - 00000000 __SHD () C:\Dokumente und Einstellungen\All Users\DRM
2014-02-03 07:31 - 2014-02-03 07:31 - 00000000 ___HD () C:\QSTART.SYS
2014-02-03 07:31 - 2014-02-03 07:31 - 00000000 ___HD () C:\QSTART.000
2014-02-03 07:31 - 2014-02-03 07:31 - 00000000 ____D () C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Lenovo Quick Start
2014-02-03 07:31 - 2008-09-10 15:15 - 00000061 _____ () C:\splash.idx
2014-02-03 07:30 - 2014-02-03 07:30 - 00030049 _____ () C:\WINDOWS\DirectX.log
2014-02-03 07:30 - 2014-02-03 07:30 - 00006240 _____ () C:\WINDOWS\DPINST.LOG
2014-02-03 07:30 - 2014-02-03 07:30 - 00001942 _____ () C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Windows Live Fotogalerie.lnk
2014-02-03 07:30 - 2014-02-03 07:30 - 00000000 ____D () C:\Programme\Downloaded Installations
2014-02-03 07:30 - 2014-02-03 07:29 - 00000000 ____D () C:\Programme\Windows Live
2014-02-03 07:30 - 2014-02-03 07:29 - 00000000 ____D () C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Windows Live
2014-02-03 07:30 - 2008-07-21 06:01 - 00000000 ____D () C:\WINDOWS\system32\DirectX
2014-02-03 07:28 - 2014-02-03 09:09 - 00001949 _____ () C:\Dokumente und Einstellungen\Marco\Startmenü\Programme\Symantec Install NIS    (Norton Internet Security).lnk
2014-02-03 07:28 - 2014-02-03 09:08 - 00001949 _____ () C:\Dokumente und Einstellungen\Default User\Startmenü\Programme\Symantec Install NIS    (Norton Internet Security).lnk
2014-02-03 07:28 - 2014-02-03 09:08 - 00001943 _____ () C:\Dokumente und Einstellungen\Default User\Desktop\Symantec Install NIS    (Norton Internet Security).lnk
2014-02-03 07:28 - 2014-02-03 07:28 - 00000000 ____D () C:\Programme\Microsoft SQL Server Compact Edition
2014-02-03 07:28 - 2014-02-03 07:16 - 00000000 ___HD () C:\Programme\InstallShield Installation Information
2014-02-03 07:25 - 2014-02-03 09:08 - 00000000 ____D () C:\Dokumente und Einstellungen\Default User\Lokale Einstellungen\Anwendungsdaten\Adobe
2014-02-03 07:24 - 2014-02-03 07:24 - 00000047 _____ () C:\WINDOWS\system32\Drivers\IBM_4068_4WG.MRK
2014-02-03 07:23 - 2014-02-03 07:23 - 00000000 ____D () C:\WINDOWS\system32\(null)
2014-02-03 07:23 - 2014-02-03 07:23 - 00000000 ____D () C:\Programme\Gemeinsame Dateien\Lenovo
2014-02-03 07:23 - 2014-02-03 07:23 - 00000000 ____D () C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\ThinkVantage
2014-02-03 07:23 - 2014-02-03 07:23 - 00000000 ____D () C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\PC-Doctor 5 für Windows
2014-02-03 07:23 - 2014-02-03 07:23 - 00000000 ____D () C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\PC-Doctor
2014-02-03 07:23 - 2014-02-03 07:22 - 00000000 ____D () C:\Programme\PCDR5
2014-02-03 07:23 - 2014-02-03 07:14 - 00000000 ____D () C:\Programme\Lenovo
2014-02-03 07:22 - 2014-02-03 07:22 - 00940794 _____ () C:\WINDOWS\system32\LoopyMusic.wav
2014-02-03 07:22 - 2014-02-03 07:22 - 00146650 _____ () C:\WINDOWS\system32\BuzzingBee.wav
2014-02-03 07:22 - 2014-02-03 07:13 - 00000000 ____D () C:\WINDOWS\system32\ReinstallBackups
2014-02-03 07:21 - 2014-02-03 09:09 - 00000000 ___RD () C:\Dokumente und Einstellungen\Marco\Startmenü\Programme\Zubehör
2014-02-03 07:21 - 2014-02-03 09:08 - 00000790 _____ () C:\Dokumente und Einstellungen\Default User\Startmenü\Programme\Internet Explorer.lnk
2014-02-03 07:21 - 2014-02-03 09:08 - 00000000 ___RD () C:\Dokumente und Einstellungen\Default User\Eigene Dateien\Eigene Musik
2014-02-03 07:21 - 2014-02-03 09:08 - 00000000 ___RD () C:\Dokumente und Einstellungen\Default User\Eigene Dateien\Eigene Bilder
2014-02-03 07:21 - 2014-02-03 07:21 - 00000000 ____D () C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\USB2.0 Card Reader Software
2014-02-03 07:21 - 2014-02-03 07:16 - 00000000 ____D () C:\Programme\Realtek
2014-02-03 07:21 - 2008-07-21 06:01 - 00000000 ___RD () C:\Dokumente und Einstellungen\Default User\Startmenü\Programme\Zubehör
2014-02-03 07:18 - 2014-02-03 07:18 - 00000000 ____D () C:\WINDOWS\system32\Lang
2014-02-03 07:18 - 2014-02-03 07:13 - 00065536 _____ () C:\WINDOWS\system32\config\Internet.evt
2014-02-03 07:17 - 2014-02-03 07:17 - 00000000 ____D () C:\Programme\Broadcom
2014-02-03 07:17 - 2014-02-03 07:16 - 00000538 _____ () C:\RHDSetup.log
2014-02-03 07:17 - 2014-02-03 07:16 - 00000000 ____D () C:\WINDOWS\system32\RTCOM
2014-02-03 07:16 - 2014-02-03 09:09 - 00000000 ____D () C:\Dokumente und Einstellungen\Marco\Anwendungsdaten\InstallShield
2014-02-03 07:16 - 2014-02-03 09:08 - 00000000 ____D () C:\Dokumente und Einstellungen\Default User\Anwendungsdaten\InstallShield
2014-02-03 07:16 - 2014-02-03 07:16 - 00319488 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\HideWin.exe
2014-02-03 07:16 - 2014-02-03 07:16 - 00000000 ____D () C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Lenovo
2014-02-03 07:16 - 2014-02-03 07:13 - 00000000 ____D () C:\Programme\Gemeinsame Dateien\InstallShield
2014-02-03 07:15 - 2014-02-03 09:09 - 00000000 ____D () C:\Dokumente und Einstellungen\Marco\Eigene Dateien\Bluetooth-Exchange-Ordner
2014-02-03 07:15 - 2014-02-03 09:09 - 00000000 ____D () C:\Dokumente und Einstellungen\Marco\Bluetooth Software
2014-02-03 07:15 - 2014-02-03 09:08 - 00000000 ____D () C:\Dokumente und Einstellungen\Default User\Eigene Dateien\Bluetooth-Exchange-Ordner
2014-02-03 07:15 - 2014-02-03 09:08 - 00000000 ____D () C:\Dokumente und Einstellungen\Default User\Bluetooth Software
2014-02-03 07:15 - 2014-02-03 07:15 - 00000000 ____D () C:\Programme\Intel
2014-02-03 07:15 - 2014-02-03 07:15 - 00000000 ____D () C:\Intel
2014-02-03 07:14 - 2014-02-03 07:14 - 00000322 _____ () C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Bluetooth-Umgebung.lnk
2014-02-03 07:14 - 2014-02-03 07:14 - 00000322 _____ () C:\Dokumente und Einstellungen\All Users\Startmenü\Bluetooth-Umgebung.lnk
2014-02-03 07:14 - 2008-07-21 06:56 - 00000000 ___RD () C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Autostart
2014-02-03 07:14 - 2008-07-21 06:56 - 00000000 ___RD () C:\Dokumente und Einstellungen\All Users\Startmenü
2014-02-03 07:13 - 2014-02-03 07:13 - 00000651 _____ () C:\WINDOWS\SynInst.log
2014-02-03 07:13 - 2014-02-03 07:13 - 00000000 ____D () C:\Programme\Synaptics
2014-02-03 07:13 - 2014-02-03 07:12 - 00000000 __HDC () C:\WINDOWS\ie7
2014-02-03 07:13 - 2014-02-03 07:11 - 00035205 _____ () C:\WINDOWS\ie7.log
2014-02-03 07:13 - 2014-02-03 07:11 - 00015815 _____ () C:\WINDOWS\ie7_main.log
2014-02-03 07:11 - 2014-02-03 07:11 - 00004512 _____ () C:\WINDOWS\KB949764.log
2014-02-03 07:11 - 2014-02-03 07:11 - 00004500 _____ () C:\WINDOWS\IDNMitigationAPIs.log
2014-02-03 07:11 - 2014-02-03 07:11 - 00003122 _____ () C:\WINDOWS\NLSDownlevelMapping.log
2014-02-03 07:11 - 2014-02-03 07:11 - 00002331 _____ () C:\WINDOWS\KB928388.log
2014-02-03 07:11 - 2014-02-03 07:11 - 00001937 _____ () C:\WINDOWS\KB915865.log
2014-02-03 07:11 - 2014-02-03 07:11 - 00000000 __HDC () C:\WINDOWS\$NtServicePackUninstallNLSDownlevelMapping$
2014-02-03 07:11 - 2014-02-03 07:11 - 00000000 __HDC () C:\WINDOWS\$NtServicePackUninstallIDNMitigationAPIs$
2014-02-03 07:07 - 2008-07-21 06:56 - 01215661 _____ () C:\WINDOWS\setupapi.log.0.old
2014-02-03 07:06 - 2008-07-21 05:59 - 00000000 ___RD () C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Zubehör
2014-01-06 16:20 - 2014-02-03 11:28 - 83425928 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe

Some content of TEMP:
====================
C:\Dokumente und Einstellungen\Marco\Lokale Einstellungen\Temp\avgnt.exe
C:\Dokumente und Einstellungen\Marco\Lokale Einstellungen\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmplqu2r2.dll


==================== Bamital & volsnap Check =================

C:\WINDOWS\explorer.exe
[2008-07-21 15:50] - [2008-04-14 13:00] - 1036800 ____A (Microsoft Corporation) 418045a93cd87a352098ab7dabe1b53e 

C:\WINDOWS\system32\winlogon.exe
[2008-07-21 15:51] - [2008-04-14 13:00] - 0513024 ____A (Microsoft Corporation) f09a527b422e25c478e38caa0e44417a 

C:\WINDOWS\system32\svchost.exe
[2008-07-21 15:51] - [2008-04-14 13:00] - 0014336 ____A (Microsoft Corporation) 4fbc75b74479c7a6f829e0ca19df3366 

C:\WINDOWS\system32\services.exe
[2008-07-21 15:51] - [2009-02-09 12:21] - 0111104 ____A (Microsoft Corporation) a3edbe9053889fb24ab22492472b39dc 

C:\WINDOWS\system32\User32.dll
[2008-07-21 15:51] - [2008-04-14 13:00] - 0580096 ____A (Microsoft Corporation) b0050cc5340e3a0760dd8b417ff7aebd 

C:\WINDOWS\system32\userinit.exe
[2008-07-21 15:51] - [2008-04-14 13:00] - 0026624 ____A (Microsoft Corporation) 788f95312e26389d596c0fa55834e106 

C:\WINDOWS\system32\rpcss.dll
[2008-07-21 15:51] - [2009-02-09 11:51] - 0401408 ____A (Microsoft Corporation) 3127afbf2c1ed0ab14a1bbb7aaecb85b 

 ATTENTION ======> If the system is having audio adware rpcss.dll is patched. Google the MD5, if the MD5 is unique the file is infected.
C:\WINDOWS\system32\Drivers\volsnap.sys
[2008-07-21 15:51] - [2008-04-14 13:00] - 0053760 ____A (Microsoft Corporation) a5a712f4e880874a477af790b5186e1d 


==================== End Of Log ============================

--- --- ---

mb82 · 04.02.2014, 19:31

FRST Addition

FRST Logfile:

Code:

ATTFilter

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 03-02-2014
Ran by Marco (administrator) on MARCOIDEAS10E on 04-02-2014 13:51:28
Running from C:\Dokumente und Einstellungen\Marco\Eigene Dateien\Downloads
Microsoft Windows XP Home Edition Service Pack 3 (X86) OS Language: German Standard
Internet Explorer Version 8
Boot Mode: Normal



==================== Processes (Whitelisted) ===================

(Broadcom Corporation.) C:\Programme\Lenovo\Bluetooth Software\bin\btwdins.exe
(Avira Operations GmbH & Co. KG) C:\Programme\Avira\AntiVir Desktop\sched.exe
(Synaptics, Inc.) C:\Programme\Synaptics\SynTP\SynTPEnh.exe
(Lenovo(Beijing)Limited) C:\Program Files\Lenovo\Energy Management\utility.exe
(Lenovo (Beijing) Limited) C:\Program Files\Lenovo\Energy Management\Energy Management.exe
(Realtek Semiconductor Corp.) C:\WINDOWS\RTHDCPL.exe
(Intel Corporation) C:\WINDOWS\system32\igfxtray.exe
(Intel Corporation) C:\WINDOWS\system32\hkcmd.exe
(Intel Corporation) C:\WINDOWS\system32\igfxpers.exe
(Lenovo Group Limited) C:\Programme\Gemeinsame Dateien\Lenovo\Scheduler\scheduler_proxy.exe
(Avira Operations GmbH & Co. KG) C:\Programme\Avira\AntiVir Desktop\avgnt.exe
(Broadcom Corporation.) C:\Programme\Lenovo\Bluetooth Software\BTTray.exe
(Avira Operations GmbH & Co. KG) C:\Programme\Avira\AntiVir Desktop\avguard.exe
(Intel Corporation) C:\WINDOWS\system32\igfxsrvc.exe
(DeviceVM) C:\QSTART.SYS\DVMExportService.exe
(Lenovo Group Limited) C:\Programme\Gemeinsame Dateien\Lenovo\tvt_reg_monitor_svc.exe
(Broadcom Corporation.) C:\Programme\Lenovo\Bluetooth Software\BTStackServer.exe
(Lenovo Group Limited) C:\Programme\Gemeinsame Dateien\Lenovo\Scheduler\tvtsched.exe
(Lenovo Group Limited) C:\Programme\Lenovo\System Update\SUService.exe
(Avira Operations GmbH & Co. KG) C:\Programme\Avira\AntiVir Desktop\avshadow.exe
(Avira Operations GmbH & Co. KG) C:\Programme\Avira\AntiVir Desktop\avmailc.exe
(Avira Operations GmbH & Co. KG) C:\Programme\Avira\AntiVir Desktop\avwebgrd.exe
(Google) C:\Programme\Google\Drive\googledrivesync.exe
(Google) C:\Programme\Google\Drive\googledrivesync.exe
(shbox.de) C:\Programme\FreePDF_XP\fpassist.exe
(Avira Operations GmbH & Co. KG) C:\Programme\Avira\AntiVir Desktop\avscan.exe
(Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
(Mozilla Corporation) C:\Programme\Mozilla Firefox\firefox.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [SynTPEnh] - C:\Programme\Synaptics\SynTP\SynTPEnh.exe [1146880 2008-05-23] (Synaptics, Inc.)
HKLM\...\Run: [EnergyUtility] - C:\Program Files\Lenovo\Energy Management\utility.exe [4456448 2008-07-09] (Lenovo(Beijing)Limited)
HKLM\...\Run: [Energy Management] - C:\Program Files\Lenovo\Energy Management\Energy Management.exe [1283984 2008-08-28] (Lenovo (Beijing) Limited)
HKLM\...\Run: [RTHDCPL] - C:\WINDOWS\RTHDCPL.EXE [16805888 2008-07-29] (Realtek Semiconductor Corp.)
HKLM\...\Run: [Alcmtr] - C:\WINDOWS\ALCMTR.EXE [57344 2008-06-19] (Realtek Semiconductor Corp.)
HKLM\...\Run: [AzMixerSel] - C:\Programme\Realtek\Audio\InstallShield\AzMixerSel.exe [53248 2006-07-17] (Realtek Semiconductor Corp.)
HKLM\...\Run: [TVT Scheduler Proxy] - c:\Programme\Gemeinsame Dateien\Lenovo\Scheduler\scheduler_proxy.exe [487424 2008-03-04] (Lenovo Group Limited)
HKLM\...\Run: [avgnt] - C:\Programme\Avira\AntiVir Desktop\avgnt.exe [684600 2013-12-09] (Avira Operations GmbH & Co. KG)
HKLM\...\Run: [Adobe ARM] - C:\Programme\Gemeinsame Dateien\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-12-21] (Adobe Systems Incorporated)
HKLM\...\Run: [FreePDF Assistant] - C:\Programme\FreePDF_XP\fpassist.exe [374784 2014-01-09] (shbox.de)
HKLM\...\RunOnce: [ Malwarebytes Anti-Malware ] - C:\Programme\Malwarebytes' Anti-Malware\mbamgui.exe /install /silent [532040 2013-04-04] (Malwarebytes Corporation)
Startup: C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Autostart\BTTray.lnk
ShortcutTarget: BTTray.lnk -> C:\Programme\Lenovo\Bluetooth Software\BTTray.exe (Broadcom Corporation.)
Startup: C:\Dokumente und Einstellungen\Marco\Startmenü\Programme\Autostart\Dropbox.lnk
ShortcutTarget: Dropbox.lnk -> C:\Dokumente und Einstellungen\Marco\Anwendungsdaten\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)



==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://lenovo.live.com
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKCU\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://www.lenovo.com/welcome/thinkpad
SearchScopes: HKCU - DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://search.live.com/results.aspx?q={searchTerms}&FORM=LENIE
SearchScopes: HKCU - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://search.live.com/results.aspx?q={searchTerms}&FORM=LENIE
BHO: No Name - {7E853D72-626A-48EC-A868-BA8D5E23E045} -  No File
BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Programme\Windows Live Toolbar\msntb.dll (Microsoft Corporation)
Toolbar: HKLM - Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Programme\Windows Live Toolbar\msntb.dll (Microsoft Corporation)
Toolbar: HKCU - Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Programme\Windows Live Toolbar\msntb.dll (Microsoft Corporation)
Handler: http\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler: http\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler: https\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler: https\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler: ipp\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\Programme\Windows Live\Messenger\msgrapp.8.5.1302.1018.dll (Microsoft Corporation)
Handler: msdaipp\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler: msdaipp\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\Programme\Windows Live\Messenger\msgrapp.8.5.1302.1018.dll (Microsoft Corporation)
Winsock: Catalog9 01 C:\Programme\Avira\AntiVir Desktop\avsda.dll [257608] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 02 C:\Programme\Avira\AntiVir Desktop\avsda.dll [257608] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 18 C:\Programme\Avira\AntiVir Desktop\avsda.dll [257608] (Avira Operations GmbH & Co. KG)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.100

FireFox:
========
FF ProfilePath: C:\Dokumente und Einstellungen\Marco\Anwendungsdaten\Mozilla\Firefox\Profiles\q38mgbpt.default
FF Plugin: @microsoft.com/WPF,version=3.5 - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 - C:\Programme\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 - C:\Programme\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: Adobe Reader - C:\Programme\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF SearchPlugin: C:\Programme\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Programme\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Programme\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Programme\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
FF Extension: Microsoft .NET Framework Assistant - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\ []

========================== Services (Whitelisted) =================

R2 AntiVirMailService; C:\Programme\Avira\AntiVir Desktop\avmailc.exe [896056 2013-12-09] (Avira Operations GmbH & Co. KG)
R2 AntiVirSchedulerService; C:\Programme\Avira\AntiVir Desktop\sched.exe [440376 2013-12-09] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Programme\Avira\AntiVir Desktop\avguard.exe [440376 2013-12-09] (Avira Operations GmbH & Co. KG)
R2 AntiVirWebService; C:\Programme\Avira\AntiVir Desktop\AVWEBGRD.EXE [1011768 2013-12-09] (Avira Operations GmbH & Co. KG)
R2 btwdins; C:\Programme\Lenovo\Bluetooth Software\bin\btwdins.exe [346720 2008-06-23] (Broadcom Corporation.)
S2 gupdate; C:\Programme\Google\Update\GoogleUpdate.exe [116648 2014-02-03] (Google Inc.)
S3 gupdatem; C:\Programme\Google\Update\GoogleUpdate.exe [116648 2014-02-03] (Google Inc.)
R2 MDES; C:\QSTART.SYS\DVMExportService.exe [307200 2008-10-28] (DeviceVM)
S3 MozillaMaintenance; C:\Programme\Mozilla Maintenance Service\maintenanceservice.exe [119408 2013-12-05] (Mozilla Foundation)
R2 SUService; c:\programme\lenovo\system update\suservice.exe [32768 2008-09-02] (Lenovo Group Limited)
R2 ThinkVantage Registry Monitor Service; c:\Programme\Gemeinsame Dateien\Lenovo\tvt_reg_monitor_svc.exe [644408 2007-09-26] (Lenovo Group Limited)
R2 TVT Scheduler; c:\Programme\Gemeinsame Dateien\Lenovo\Scheduler\tvtsched.exe [1122304 2008-03-04] (Lenovo Group Limited)
S3 usnjsvc; C:\Programme\Windows Live\Messenger\usnsvc.exe [98328 2007-10-18] (Microsoft Corporation)
S3 WLSetupSvc; C:\Programme\Windows Live\installer\WLSetupSvc.exe [266240 2007-10-25] (Microsoft Corporation)

==================== Drivers (Whitelisted) ====================

S4 abp480n5; C:\WINDOWS\system32\DRIVERS\ABP480N5.SYS [23552 2001-08-17] (Microsoft Corporation)
R3 ACPIVPC; C:\WINDOWS\System32\DRIVERS\AcpiVpc.sys [9472 2008-01-11] (Lenovo Corporation)
R2 avgntflt; C:\WINDOWS\System32\DRIVERS\avgntflt.sys [90400 2013-12-09] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\WINDOWS\System32\DRIVERS\avipbb.sys [135648 2013-12-09] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\WINDOWS\System32\DRIVERS\avkmgr.sys [37352 2013-12-09] (Avira Operations GmbH & Co. KG)
R3 BCM43XX; C:\WINDOWS\System32\DRIVERS\bcmwl5.sys [1286144 2008-02-20] (Broadcom Corporation)
R3 BTKRNL; C:\WINDOWS\System32\DRIVERS\btkrnl.sys [991400 2008-06-23] (Broadcom Corporation.)
R3 BTWUSB; C:\WINDOWS\System32\Drivers\btwusb.sys [47272 2008-06-11] (Broadcom Corporation.)
S3 CCDECODE; C:\WINDOWS\System32\DRIVERS\CCDECODE.sys [17024 2008-04-14] (Microsoft Corporation)
S3 NdisIP; C:\WINDOWS\System32\DRIVERS\NdisIP.sys [10880 2008-04-14] (Microsoft Corporation)
R2 PMEM; C:\WINDOWS\system32\drivers\PMEMNT.SYS [7012 2006-04-23] (Microsoft Corporation)
S3 Rasirda; C:\WINDOWS\System32\DRIVERS\rasirda.sys [19584 2001-08-17] (Microsoft Corporation)
R3 RSUSBSTOR; C:\WINDOWS\System32\Drivers\RTS5121.sys [157696 2008-07-23] (Realtek Semiconductor Corp.)
R1 ssmdrv; C:\WINDOWS\System32\DRIVERS\ssmdrv.sys [28520 2013-12-09] (Avira GmbH)
S3 Rts516xIR; system32\DRIVERS\Rts516xIR.sys [X]
S3 USBCCID; system32\DRIVERS\Rts5161ccid.sys [X]
U1 WS2IFSL; 

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-02-04 13:51 - 2014-02-04 13:51 - 00000000 ____D () C:\FRST
2014-02-04 13:49 - 2014-02-04 13:49 - 00000000 _____ () C:\Dokumente und Einstellungen\Marco\defogger_reenable
2014-02-04 13:38 - 2014-02-04 13:39 - 00006538 _____ () C:\WINDOWS\KB2345886.log
2014-02-04 13:34 - 2014-02-04 13:34 - 00000000 __SHD () C:\Dokumente und Einstellungen\LocalService\IETldCache
2014-02-04 13:34 - 2014-02-04 13:34 - 00000000 ____D () C:\Dokumente und Einstellungen\LocalService\Anwendungsdaten\Adobe
2014-02-04 13:31 - 2014-02-04 13:38 - 00000000 ____D () C:\WINDOWS\LastGood
2014-02-03 19:17 - 2014-02-03 19:17 - 00000012 ____H () C:\dvmexp.idx
2014-02-03 17:58 - 2014-02-03 17:58 - 00000000 ____D () C:\Programme\Malwarebytes' Anti-Malware
2014-02-03 17:58 - 2014-02-03 17:58 - 00000000 ____D () C:\Dokumente und Einstellungen\Marco\Anwendungsdaten\Malwarebytes
2014-02-03 17:58 - 2014-02-03 17:58 - 00000000 ____D () C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Malwarebytes' Anti-Malware
2014-02-03 17:58 - 2014-02-03 17:58 - 00000000 ____D () C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Malwarebytes
2014-02-03 17:58 - 2013-04-04 14:50 - 00022856 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbam.sys
2014-02-03 17:51 - 2014-02-03 17:51 - 00000000 ____D () C:\Programme\Dropbox
2014-02-03 17:51 - 2014-02-03 17:51 - 00000000 ____D () C:\Dokumente und Einstellungen\Marco\Startmenü\Programme\Dropbox
2014-02-03 17:51 - 2014-02-03 17:51 - 00000000 ____D () C:\Dokumente und Einstellungen\Marco\Anwendungsdaten\DropboxMaster
2014-02-03 17:50 - 2014-02-03 17:52 - 00000000 ____D () C:\Dokumente und Einstellungen\Marco\Anwendungsdaten\Dropbox
2014-02-03 17:47 - 2014-02-03 17:47 - 00000000 ____D () C:\Programme\FreePDF_XP
2014-02-03 17:47 - 2014-02-03 17:47 - 00000000 ____D () C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\FreePDF
2014-02-03 17:47 - 2014-02-03 17:47 - 00000000 ____D () C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\FreePDF
2014-02-03 17:47 - 2012-06-21 07:25 - 00094208 _____ () C:\WINDOWS\system32\redmon32.dll
2014-02-03 17:47 - 2012-06-21 07:25 - 00039936 _____ () C:\WINDOWS\system32\unredmon.exe
2014-02-03 17:47 - 2012-06-21 07:25 - 00028435 _____ () C:\WINDOWS\system32\redmon.chm
2014-02-03 17:44 - 2014-02-03 17:44 - 00000000 ____D () C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Ghostscript
2014-02-03 17:43 - 2014-02-03 17:43 - 00000000 ____D () C:\Programme\gs
2014-02-03 17:41 - 2014-02-03 17:41 - 00001804 _____ () C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Adobe Reader XI.lnk
2014-02-03 17:41 - 2014-02-03 17:41 - 00001721 _____ () C:\Dokumente und Einstellungen\All Users\Desktop\Adobe Reader XI.lnk
2014-02-03 17:41 - 2014-02-03 17:41 - 00000000 ____D () C:\Programme\Gemeinsame Dateien\Adobe
2014-02-03 17:41 - 2014-02-03 17:41 - 00000000 ____D () C:\Programme\Adobe
2014-02-03 17:28 - 2014-02-03 17:28 - 00000000 ____D () C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Google Drive
2014-02-03 17:27 - 2014-02-04 13:32 - 00001088 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2014-02-03 17:27 - 2014-02-03 17:32 - 00001084 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2014-02-03 17:27 - 2014-02-03 17:28 - 00000000 ____D () C:\Programme\Google
2014-02-03 17:27 - 2014-02-03 17:28 - 00000000 ____D () C:\Dokumente und Einstellungen\Marco\Lokale Einstellungen\Anwendungsdaten\Google
2014-02-03 17:18 - 2014-02-03 17:18 - 00000104 _____ () C:\Dokumente und Einstellungen\Marco\Desktop\Arbeitsplatz.lnk
2014-02-03 17:16 - 2014-02-03 17:16 - 00000000 ___HD () C:\dvmexp
2014-02-03 16:35 - 2014-02-03 16:35 - 00000000 ____D () C:\WINDOWS\system32\NtmsData
2014-02-03 16:30 - 2014-02-03 16:30 - 00012328 _____ () C:\Dokumente und Einstellungen\Marco\Lokale Einstellungen\Anwendungsdaten\GDIPFONTCACHEV1.DAT
2014-02-03 16:27 - 2014-02-03 16:27 - 00000000 ____D () C:\Dokumente und Einstellungen\Marco\Anwendungsdaten\Avira
2014-02-03 16:25 - 2014-02-03 16:25 - 00000000 ____D () C:\Programme\Avira
2014-02-03 16:25 - 2014-02-03 16:25 - 00000000 ____D () C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Avira
2014-02-03 16:25 - 2014-02-03 16:25 - 00000000 ____D () C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Avira
2014-02-03 16:25 - 2013-12-09 11:37 - 00135648 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avipbb.sys
2014-02-03 16:25 - 2013-12-09 11:37 - 00090400 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avgntflt.sys
2014-02-03 16:25 - 2013-12-09 11:37 - 00037352 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avkmgr.sys
2014-02-03 16:25 - 2013-12-09 11:37 - 00028520 _____ (Avira GmbH) C:\WINDOWS\system32\Drivers\ssmdrv.sys
2014-02-03 16:04 - 2007-02-09 17:31 - 00004608 _____ () C:\WINDOWS\system32\Thumbs.db
2014-02-03 16:04 - 2005-05-23 14:34 - 00007710 ____C () C:\WINDOWS\system32\dllcache\OEMBIOS.CAT
2014-02-03 13:03 - 2014-02-03 13:03 - 00000000 ____D () C:\Dokumente und Einstellungen\Marco\Lokale Einstellungen\Anwendungsdaten\Mozilla
2014-02-03 13:03 - 2014-02-03 13:03 - 00000000 ____D () C:\Dokumente und Einstellungen\Marco\Anwendungsdaten\Mozilla
2014-02-03 13:02 - 2014-02-03 13:02 - 00000709 _____ () C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Mozilla Firefox.lnk
2014-02-03 13:02 - 2014-02-03 13:02 - 00000703 _____ () C:\Dokumente und Einstellungen\All Users\Desktop\Mozilla Firefox.lnk
2014-02-03 13:02 - 2014-02-03 13:02 - 00000000 ____D () C:\WINDOWS\system32\XPSViewer
2014-02-03 13:02 - 2014-02-03 13:02 - 00000000 ____D () C:\Programme\Reference Assemblies
2014-02-03 13:02 - 2014-02-03 13:02 - 00000000 ____D () C:\Programme\MSBuild
2014-02-03 13:02 - 2014-02-03 13:02 - 00000000 ____D () C:\Programme\Mozilla Maintenance Service
2014-02-03 13:02 - 2014-02-03 13:02 - 00000000 ____D () C:\Programme\Mozilla Firefox
2014-02-03 13:02 - 2014-02-03 13:02 - 00000000 ____D () C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Mozilla
2014-02-03 13:01 - 2014-02-03 13:02 - 00000000 ____D () C:\75cdcbcda7d32626c760c52bc544
2014-02-03 13:01 - 2008-07-06 13:06 - 01676288 ____N (Microsoft Corporation) C:\WINDOWS\system32\xpssvcs.dll
2014-02-03 13:01 - 2008-07-06 13:06 - 01676288 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\xpssvcs.dll
2014-02-03 13:01 - 2008-07-06 13:06 - 00575488 ____N (Microsoft Corporation) C:\WINDOWS\system32\xpsshhdr.dll
2014-02-03 13:01 - 2008-07-06 13:06 - 00575488 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\xpsshhdr.dll
2014-02-03 13:01 - 2008-07-06 13:06 - 00117760 ____N (Microsoft Corporation) C:\WINDOWS\system32\prntvpt.dll
2014-02-03 13:01 - 2008-07-06 13:06 - 00089088 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\filterpipelineprintproc.dll
2014-02-03 13:01 - 2008-07-06 11:50 - 00597504 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\printfilterpipelinesvc.exe
2014-02-03 12:55 - 2014-02-03 12:55 - 00000000 ____D () C:\Dokumente und Einstellungen\Marco\Anwendungsdaten\Macromedia
2014-02-03 12:54 - 2014-02-03 12:54 - 00000000 __SHD () C:\Dokumente und Einstellungen\Marco\IECompatCache
2014-02-03 12:53 - 2014-02-03 12:53 - 00000000 __SHD () C:\Dokumente und Einstellungen\Marco\PrivacIE
2014-02-03 12:29 - 2014-02-03 12:29 - 00000000 __SHD () C:\Dokumente und Einstellungen\Marco\IETldCache
2014-02-03 11:52 - 2014-02-03 11:52 - 00106317 _____ () C:\WINDOWS\KB951376-v2.log
2014-02-03 11:52 - 2014-02-03 11:52 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB952954$
2014-02-03 11:52 - 2014-02-03 11:52 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB951376-v2$
2014-02-03 11:52 - 2014-02-03 11:52 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2868626$
2014-02-03 11:51 - 2014-02-03 11:51 - 00114681 _____ () C:\WINDOWS\KB2898785-IE8.log
2014-02-03 11:51 - 2014-02-03 11:51 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB959426$
2014-02-03 11:50 - 2014-02-03 11:51 - 00115518 _____ () C:\WINDOWS\KB2862772-IE8.log
2014-02-03 11:50 - 2014-02-03 11:50 - 00119167 _____ () C:\WINDOWS\KB2744842-IE8.log
2014-02-03 11:50 - 2013-10-29 08:57 - 00522240 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\jsdbgui.dll
2014-02-03 11:49 - 2014-02-03 11:50 - 00122192 _____ () C:\WINDOWS\KB2618444-IE8.log
2014-02-03 11:49 - 2014-02-03 11:49 - 00133429 _____ () C:\WINDOWS\KB982381-IE8.log
2014-02-03 11:49 - 2014-02-03 11:49 - 00110620 _____ () C:\WINDOWS\KB2598845-IE8.log
2014-02-03 11:49 - 2014-02-03 11:49 - 00109979 _____ () C:\WINDOWS\KB2467659.log
2014-02-03 11:49 - 2014-02-03 11:49 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2467659$
2014-02-03 11:49 - 2014-02-03 11:49 - 00000000 ____D () C:\WINDOWS\ie8updates
2014-02-03 11:49 - 2013-10-29 08:57 - 00743424 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\iedvtool.dll
2014-02-03 11:49 - 2013-10-29 08:57 - 00247808 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ieproxy.dll
2014-02-03 11:49 - 2013-10-29 08:57 - 00012800 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\xpshims.dll
2014-02-03 11:49 - 2011-08-16 11:45 - 00006144 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\iecompat.dll
2014-02-03 11:47 - 2014-02-03 11:49 - 00133696 _____ () C:\WINDOWS\ie8.log
2014-02-03 11:47 - 2014-02-03 11:48 - 00000000 __HDC () C:\WINDOWS\ie8
2014-02-03 11:42 - 2014-02-03 11:51 - 00146238 _____ () C:\WINDOWS\ie8_main.log
2014-02-03 11:41 - 2014-02-03 11:42 - 00055043 _____ () C:\WINDOWS\KB946648.log
2014-02-03 11:41 - 2014-02-03 11:41 - 00055278 _____ () C:\WINDOWS\KB2387149.log
2014-02-03 11:41 - 2014-02-03 11:41 - 00052456 _____ () C:\WINDOWS\KB2659262.log
2014-02-03 11:41 - 2014-02-03 11:41 - 00051719 _____ () C:\WINDOWS\KB2564958.log
2014-02-03 11:41 - 2014-02-03 11:41 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB960859$
2014-02-03 11:41 - 2014-02-03 11:41 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB946648$
2014-02-03 11:41 - 2014-02-03 11:41 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2712808$
2014-02-03 11:41 - 2014-02-03 11:41 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2659262$
2014-02-03 11:41 - 2014-02-03 11:41 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2564958$
2014-02-03 11:41 - 2014-02-03 11:41 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2479943$
2014-02-03 11:41 - 2014-02-03 11:41 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2387149$
2014-02-03 11:40 - 2014-02-03 11:40 - 00053866 _____ () C:\WINDOWS\KB2536276-v2.log
2014-02-03 11:40 - 2014-02-03 11:40 - 00051067 _____ () C:\WINDOWS\KB2834886.log
2014-02-03 11:40 - 2014-02-03 11:40 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2834886$
2014-02-03 11:40 - 2014-02-03 11:40 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2758857$
2014-02-03 11:40 - 2014-02-03 11:40 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2585542$
2014-02-03 11:40 - 2014-02-03 11:40 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2544893-v2$
2014-02-03 11:40 - 2014-02-03 11:40 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2536276-v2$
2014-02-03 11:40 - 2014-02-03 11:40 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2478971$
2014-02-03 11:39 - 2014-02-03 11:39 - 00054473 _____ () C:\WINDOWS\KB955759.log
2014-02-03 11:39 - 2014-02-03 11:39 - 00051968 _____ () C:\WINDOWS\KB975558.log
2014-02-03 11:39 - 2014-02-03 11:39 - 00051426 _____ () C:\WINDOWS\KB2296011.log
2014-02-03 11:39 - 2014-02-03 11:39 - 00050792 _____ () C:\WINDOWS\KB2900986.log
2014-02-03 11:39 - 2014-02-03 11:39 - 00050718 _____ () C:\WINDOWS\KB2378111.log
2014-02-03 11:39 - 2014-02-03 11:39 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB975558_WM8$
2014-02-03 11:39 - 2014-02-03 11:39 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB974318$
2014-02-03 11:39 - 2014-02-03 11:39 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB955759$
2014-02-03 11:39 - 2014-02-03 11:39 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB951978$
2014-02-03 11:39 - 2014-02-03 11:39 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2900986$
2014-02-03 11:39 - 2014-02-03 11:39 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2847311$
2014-02-03 11:39 - 2014-02-03 11:39 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2691442$
2014-02-03 11:39 - 2014-02-03 11:39 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2631813$
2014-02-03 11:39 - 2014-02-03 11:39 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2378111_WM9$
2014-02-03 11:39 - 2014-02-03 11:39 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2296011$
2014-02-03 11:39 - 2014-02-03 11:39 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2115168$
2014-02-03 11:38 - 2014-02-03 11:38 - 00052114 _____ () C:\WINDOWS\KB2229593.log
2014-02-03 11:38 - 2014-02-03 11:38 - 00050879 _____ () C:\WINDOWS\KB2686509.log
2014-02-03 11:38 - 2014-02-03 11:38 - 00050781 _____ () C:\WINDOWS\KB2485663.log
2014-02-03 11:38 - 2014-02-03 11:38 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB975713$
2014-02-03 11:38 - 2014-02-03 11:38 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB969059$
2014-02-03 11:38 - 2014-02-03 11:38 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB950974$
2014-02-03 11:38 - 2014-02-03 11:38 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2898715$
2014-02-03 11:38 - 2014-02-03 11:38 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2802968$
2014-02-03 11:38 - 2014-02-03 11:38 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2686509$
2014-02-03 11:38 - 2014-02-03 11:38 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2655992$
2014-02-03 11:38 - 2014-02-03 11:38 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2598479$
2014-02-03 11:38 - 2014-02-03 11:38 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2485663$
2014-02-03 11:38 - 2014-02-03 11:38 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2481109$
2014-02-03 11:38 - 2014-02-03 11:38 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2443105$
2014-02-03 11:38 - 2014-02-03 11:38 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2229593$
2014-02-03 11:37 - 2014-02-03 11:37 - 00048993 _____ () C:\WINDOWS\KB2862335.log
2014-02-03 11:37 - 2014-02-03 11:37 - 00047095 _____ () C:\WINDOWS\KB954155.log
2014-02-03 11:37 - 2014-02-03 11:37 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB982132$
2014-02-03 11:37 - 2014-02-03 11:37 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB978338$
2014-02-03 11:37 - 2014-02-03 11:37 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB974112$
2014-02-03 11:37 - 2014-02-03 11:37 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB972270$
2014-02-03 11:37 - 2014-02-03 11:37 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB971657$
2014-02-03 11:37 - 2014-02-03 11:37 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB954155_WM9$
2014-02-03 11:37 - 2014-02-03 11:37 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2862335$
2014-02-03 11:37 - 2014-02-03 11:37 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2845187$
2014-02-03 11:37 - 2014-02-03 11:37 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2780091$
2014-02-03 11:37 - 2014-02-03 11:37 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2510581$
2014-02-03 11:37 - 2014-02-03 11:37 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2507938$
2014-02-03 11:36 - 2014-02-03 11:37 - 00052317 _____ () C:\WINDOWS\KB956572.log
2014-02-03 11:36 - 2014-02-03 11:36 - 00046889 _____ () C:\WINDOWS\KB956844.log
2014-02-03 11:36 - 2014-02-03 11:36 - 00046053 _____ () C:\WINDOWS\KB973869.log
2014-02-03 11:36 - 2014-02-03 11:36 - 00045229 _____ () C:\WINDOWS\KB2904266.log
2014-02-03 11:36 - 2014-02-03 11:36 - 00006732 _____ () C:\WINDOWS\system32\TZLog.log
2014-02-03 11:36 - 2014-02-03 11:36 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB979687$
2014-02-03 11:36 - 2014-02-03 11:36 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB975025$
2014-02-03 11:36 - 2014-02-03 11:36 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB973869$
2014-02-03 11:36 - 2014-02-03 11:36 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB956844$
2014-02-03 11:36 - 2014-02-03 11:36 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB956572$
2014-02-03 11:36 - 2014-02-03 11:36 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2904266$
2014-02-03 11:36 - 2014-02-03 11:36 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2876217$
2014-02-03 11:36 - 2014-02-03 11:36 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2864063$
2014-02-03 11:36 - 2014-02-03 11:36 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2483185$
2014-02-03 11:36 - 2014-02-03 11:36 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2347290$
2014-02-03 11:35 - 2014-02-03 11:35 - 00043050 _____ () C:\WINDOWS\KB2592799.log
2014-02-03 11:35 - 2014-02-03 11:35 - 00042871 _____ () C:\WINDOWS\KB2535512.log
2014-02-03 11:35 - 2014-02-03 11:35 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB977816$
2014-02-03 11:35 - 2014-02-03 11:35 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB975560$
2014-02-03 11:35 - 2014-02-03 11:35 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB974571$
2014-02-03 11:35 - 2014-02-03 11:35 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB973507$
2014-02-03 11:35 - 2014-02-03 11:35 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB952004$
2014-02-03 11:35 - 2014-02-03 11:35 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2862152$
2014-02-03 11:35 - 2014-02-03 11:35 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2850869$
2014-02-03 11:35 - 2014-02-03 11:35 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2770660$
2014-02-03 11:35 - 2014-02-03 11:35 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2719985$
2014-02-03 11:35 - 2014-02-03 11:35 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2592799$
2014-02-03 11:35 - 2014-02-03 11:35 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2535512$
2014-02-03 11:34 - 2014-02-03 11:35 - 00042394 _____ () C:\WINDOWS\KB950762.log
2014-02-03 11:34 - 2014-02-03 11:34 - 00042155 _____ () C:\WINDOWS\KB2807986.log
2014-02-03 11:34 - 2014-02-03 11:34 - 00041624 _____ () C:\WINDOWS\KB2570947.log
2014-02-03 11:34 - 2014-02-03 11:34 - 00041569 _____ () C:\WINDOWS\KB952287.log
2014-02-03 11:34 - 2014-02-03 11:34 - 00041454 _____ () C:\WINDOWS\KB2868038.log
2014-02-03 11:34 - 2014-02-03 11:34 - 00041158 _____ () C:\WINDOWS\KB2603381.log
2014-02-03 11:34 - 2014-02-03 11:34 - 00036819 _____ () C:\WINDOWS\KB978695.log
2014-02-03 11:34 - 2014-02-03 11:34 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB978695_WM9$
2014-02-03 11:34 - 2014-02-03 11:34 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB952287$
2014-02-03 11:34 - 2014-02-03 11:34 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB950762$
2014-02-03 11:34 - 2014-02-03 11:34 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2876331$
2014-02-03 11:34 - 2014-02-03 11:34 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2868038$
2014-02-03 11:34 - 2014-02-03 11:34 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2859537$
2014-02-03 11:34 - 2014-02-03 11:34 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2820917$
2014-02-03 11:34 - 2014-02-03 11:34 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2807986$
2014-02-03 11:34 - 2014-02-03 11:34 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2603381$
2014-02-03 11:34 - 2014-02-03 11:34 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2570947$
2014-02-03 11:33 - 2014-02-03 11:34 - 00042203 _____ () C:\WINDOWS\KB973904.log
2014-02-03 11:33 - 2014-02-03 11:33 - 00026087 _____ () C:\WINDOWS\KB976002-v5.log
2014-02-03 11:33 - 2014-02-03 11:33 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB974392$
2014-02-03 11:33 - 2014-02-03 11:33 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB973904$
2014-02-03 11:33 - 2014-02-03 11:33 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB973540_WM9$
2014-02-03 11:33 - 2014-02-03 11:33 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB971029$
2014-02-03 11:33 - 2014-02-03 11:33 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2893294$
2014-02-03 11:33 - 2014-02-03 11:33 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2757638$
2014-02-03 11:33 - 2014-02-03 11:33 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2749655$
2014-02-03 11:33 - 2014-02-03 11:33 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2653956$
2014-02-03 11:33 - 2014-02-03 11:33 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2508429$
2014-02-03 11:33 - 2014-02-03 11:33 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2419632$
2014-02-03 11:32 - 2014-02-03 11:33 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2506212$
2014-02-03 11:32 - 2014-02-03 11:32 - 00033733 _____ () C:\WINDOWS\KB2698365.log
2014-02-03 11:32 - 2014-02-03 11:32 - 00028723 _____ () C:\WINDOWS\KB952069.log
2014-02-03 11:32 - 2014-02-03 11:32 - 00025342 _____ () C:\WINDOWS\KB2803821-v2.log
2014-02-03 11:32 - 2014-02-03 11:32 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB979482$
2014-02-03 11:32 - 2014-02-03 11:32 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB979309$
2014-02-03 11:32 - 2014-02-03 11:32 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB978542$
2014-02-03 11:32 - 2014-02-03 11:32 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB977914$
2014-02-03 11:32 - 2014-02-03 11:32 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB952069_WM9$
2014-02-03 11:32 - 2014-02-03 11:32 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2893984$
2014-02-03 11:32 - 2014-02-03 11:32 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2892075$
2014-02-03 11:32 - 2014-02-03 11:32 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2803821-v2_WM9$
2014-02-03 11:32 - 2014-02-03 11:32 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2727528$
2014-02-03 11:32 - 2014-02-03 11:32 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2705219-v2$
2014-02-03 11:32 - 2014-02-03 11:32 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2698365$
2014-02-03 11:32 - 2014-02-03 11:32 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2619339$
2014-02-03 11:31 - 2014-02-03 11:31 - 00032162 _____ () C:\WINDOWS\KB2723135-v2.log
2014-02-03 11:31 - 2014-02-03 11:31 - 00031528 _____ () C:\WINDOWS\KB981997.log
2014-02-03 11:31 - 2014-02-03 11:31 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB981997$
2014-02-03 11:31 - 2014-02-03 11:31 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB978706$
2014-02-03 11:31 - 2014-02-03 11:31 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB973815$
2014-02-03 11:31 - 2014-02-03 11:31 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB960803$
2014-02-03 11:31 - 2014-02-03 11:31 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2862330$
2014-02-03 11:31 - 2014-02-03 11:31 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2813345$
2014-02-03 11:31 - 2014-02-03 11:31 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2723135-v2$
2014-02-03 11:31 - 2014-02-03 11:31 - 00000000 ____D () C:\WINDOWS\ie7updates
2014-02-03 11:30 - 2014-02-03 11:30 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2676562$
2014-02-03 11:30 - 2014-02-03 11:30 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2509553$
2014-02-03 11:28 - 2014-02-03 11:30 - 00000000 ____D () C:\WINDOWS\system32\MRT
2014-02-03 11:28 - 2014-02-03 11:28 - 00020910 _____ () C:\WINDOWS\KB2393802.log
2014-02-03 11:28 - 2014-02-03 11:28 - 00019275 _____ () C:\WINDOWS\KB923561.log
2014-02-03 11:28 - 2014-02-03 11:28 - 00017569 _____ () C:\WINDOWS\KB2566454.log
2014-02-03 11:28 - 2014-02-03 11:28 - 00017362 _____ () C:\WINDOWS\KB2661637.log
2014-02-03 11:28 - 2014-02-03 11:28 - 00015166 _____ () C:\WINDOWS\KB2914368.log
2014-02-03 11:28 - 2014-02-03 11:28 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB982665$
2014-02-03 11:28 - 2014-02-03 11:28 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB923561$
2014-02-03 11:28 - 2014-02-03 11:28 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2914368$
2014-02-03 11:28 - 2014-02-03 11:28 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2661637$
2014-02-03 11:28 - 2014-02-03 11:28 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2620712$
2014-02-03 11:28 - 2014-02-03 11:28 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2566454$
2014-02-03 11:28 - 2014-02-03 11:28 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2478960$
2014-02-03 11:28 - 2014-02-03 11:28 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2393802$
2014-02-03 11:28 - 2014-01-06 16:20 - 83425928 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2014-02-03 11:27 - 2014-02-03 11:27 - 00014732 _____ () C:\WINDOWS\KB2423089.log
2014-02-03 11:27 - 2014-02-03 11:27 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB975467$
2014-02-03 11:27 - 2014-02-03 11:27 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB968389$
2014-02-03 11:27 - 2014-02-03 11:27 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2584146$
2014-02-03 11:27 - 2014-02-03 11:27 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2423089$
2014-02-03 11:16 - 2014-02-03 11:52 - 00118941 _____ () C:\WINDOWS\KB952954.log
2014-02-03 11:16 - 2014-02-03 11:52 - 00117397 _____ () C:\WINDOWS\KB2868626.log
2014-02-03 11:16 - 2014-02-03 11:51 - 00118200 _____ () C:\WINDOWS\KB959426.log
2014-02-03 11:16 - 2014-02-03 11:41 - 00067303 _____ () C:\WINDOWS\KB2712808.log
2014-02-03 11:16 - 2014-02-03 11:41 - 00066858 _____ () C:\WINDOWS\KB2479943.log
2014-02-03 11:16 - 2014-02-03 11:41 - 00066776 _____ () C:\WINDOWS\KB960859.log
2014-02-03 11:16 - 2010-09-18 07:52 - 00954368 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mfc40.dll
2014-02-03 11:16 - 2010-09-18 07:52 - 00953856 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mfc40u.dll
2014-02-03 11:16 - 2008-06-14 18:32 - 00273024 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys
2014-02-03 11:16 - 2008-06-14 18:32 - 00273024 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\bthport.sys
2014-02-03 11:15 - 2014-02-03 11:40 - 00066314 _____ () C:\WINDOWS\KB2585542.log
2014-02-03 11:15 - 2014-02-03 11:40 - 00066282 _____ () C:\WINDOWS\KB2478971.log
2014-02-03 11:15 - 2014-02-03 11:40 - 00065719 _____ () C:\WINDOWS\KB2758857.log
2014-02-03 11:15 - 2014-02-03 11:40 - 00065284 _____ () C:\WINDOWS\KB2631813.log
2014-02-03 11:15 - 2014-02-03 11:39 - 00065768 _____ () C:\WINDOWS\KB2691442.log
2014-02-03 11:15 - 2010-08-23 17:11 - 00617472 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\comctl32.dll
2014-02-03 11:14 - 2014-02-03 11:40 - 00065084 _____ () C:\WINDOWS\KB2544893-v2.log
2014-02-03 11:14 - 2014-02-03 11:39 - 00064679 _____ () C:\WINDOWS\KB2115168.log
2014-02-03 11:14 - 2014-02-03 11:39 - 00064446 _____ () C:\WINDOWS\KB974318.log
2014-02-03 11:14 - 2014-02-03 11:39 - 00061916 _____ () C:\WINDOWS\KB2847311.log
2014-02-03 11:14 - 2014-02-03 11:38 - 00064298 _____ () C:\WINDOWS\KB2655992.log
2014-02-03 11:14 - 2014-02-03 11:38 - 00063529 _____ () C:\WINDOWS\KB2802968.log
2014-02-03 11:14 - 2014-02-03 11:38 - 00061281 _____ () C:\WINDOWS\KB2898715.log
2014-02-03 11:14 - 2014-02-03 11:37 - 00061996 _____ () C:\WINDOWS\KB2780091.log
2014-02-03 11:14 - 2013-07-03 03:12 - 00025088 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\hidparse.sys
2014-02-03 11:14 - 2013-07-03 02:59 - 00014976 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\usbscan.sys
2014-02-03 11:14 - 2011-07-15 14:29 - 00456320 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mrxsmb.sys
2014-02-03 11:14 - 2009-11-21 16:54 - 00471552 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\aclayers.dll
2014-02-03 11:13 - 2014-02-03 11:39 - 00063918 _____ () C:\WINDOWS\KB951978.log
2014-02-03 11:13 - 2014-02-03 11:39 - 00062493 _____ () C:\WINDOWS\KB969059.log
2014-02-03 11:13 - 2014-02-03 11:38 - 00063215 _____ () C:\WINDOWS\KB2481109.log
2014-02-03 11:13 - 2014-02-03 11:38 - 00062621 _____ () C:\WINDOWS\KB950974.log
2014-02-03 11:13 - 2014-02-03 11:38 - 00062581 _____ () C:\WINDOWS\KB2443105.log
2014-02-03 11:13 - 2014-02-03 11:38 - 00062163 _____ () C:\WINDOWS\KB2598479.log
2014-02-03 11:13 - 2014-02-03 11:38 - 00061707 _____ () C:\WINDOWS\KB975713.log
2014-02-03 11:13 - 2014-02-03 11:37 - 00061062 _____ () C:\WINDOWS\KB2507938.log
2014-02-03 11:13 - 2014-02-03 11:37 - 00061058 _____ () C:\WINDOWS\KB982132.log
2014-02-03 11:13 - 2014-02-03 11:37 - 00060834 _____ () C:\WINDOWS\KB978338.log
2014-02-03 11:13 - 2010-06-14 15:31 - 00744448 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\helpsvc.exe
2014-02-03 11:12 - 2014-02-03 11:37 - 00062750 _____ () C:\WINDOWS\KB2510581.log
2014-02-03 11:12 - 2014-02-03 11:37 - 00060499 _____ () C:\WINDOWS\KB971657.log
2014-02-03 11:12 - 2014-02-03 11:37 - 00059782 _____ () C:\WINDOWS\KB974112.log
2014-02-03 11:12 - 2014-02-03 11:37 - 00058089 _____ () C:\WINDOWS\KB2845187.log
2014-02-03 11:12 - 2014-02-03 11:36 - 00055032 _____ () C:\WINDOWS\KB2876217.log
2014-02-03 11:12 - 2010-08-27 09:01 - 00119808 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\t2embed.dll
2014-02-03 11:12 - 2009-10-15 17:28 - 00081920 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fontsub.dll
2014-02-03 11:12 - 2009-06-21 22:45 - 00153088 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\triedit.dll
2014-02-03 11:12 - 2009-03-06 15:19 - 00286720 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\pdh.dll
2014-02-03 11:12 - 2009-02-09 12:21 - 00111104 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\services.exe
2014-02-03 11:12 - 2009-02-09 11:51 - 00678400 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\advapi32.dll
2014-02-03 11:12 - 2009-02-09 11:51 - 00473600 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fastprox.dll
2014-02-03 11:12 - 2009-02-09 11:51 - 00453120 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wmiprvsd.dll
2014-02-03 11:12 - 2009-02-09 11:51 - 00401408 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\rpcss.dll
2014-02-03 11:12 - 2009-02-06 11:39 - 00035328 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\sc.exe
2014-02-03 11:12 - 2009-02-06 11:10 - 00227840 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wmiprvse.exe
2014-02-03 11:11 - 2014-02-03 11:36 - 00057652 _____ () C:\WINDOWS\KB979687.log
2014-02-03 11:11 - 2014-02-03 11:36 - 00057550 _____ () C:\WINDOWS\KB2483185.log
2014-02-03 11:11 - 2014-02-03 11:36 - 00053928 _____ () C:\WINDOWS\KB2864063.log
2014-02-03 11:11 - 2014-02-03 11:35 - 00049776 _____ () C:\WINDOWS\KB2850869.log
2014-02-03 11:11 - 2014-02-03 11:34 - 00050503 _____ () C:\WINDOWS\KB2859537.log
2014-02-03 11:11 - 2014-02-03 11:34 - 00049558 _____ () C:\WINDOWS\KB2876331.log
2014-02-03 11:11 - 2014-02-03 11:33 - 00050432 _____ () C:\WINDOWS\KB2757638.log
2014-02-03 11:11 - 2013-07-17 01:58 - 00123008 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\usbvideo.sys
2014-02-03 11:11 - 2013-07-17 01:58 - 00060160 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\usbaudio.sys
2014-02-03 11:11 - 2013-02-12 01:32 - 00012928 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\usb8023x.sys
2014-02-03 11:11 - 2013-02-12 01:32 - 00012928 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\usb8023.sys
2014-02-03 11:10 - 2014-02-03 11:36 - 00055401 _____ () C:\WINDOWS\KB2719985.log
2014-02-03 11:10 - 2014-02-03 11:36 - 00054844 _____ () C:\WINDOWS\KB975025.log
2014-02-03 11:10 - 2014-02-03 11:35 - 00050261 _____ () C:\WINDOWS\KB2862152.log
2014-02-03 11:10 - 2014-02-03 11:34 - 00051046 _____ () C:\WINDOWS\KB2820917.log
2014-02-03 11:10 - 2014-02-03 11:33 - 00048250 _____ () C:\WINDOWS\KB2893294.log
2014-02-03 11:10 - 2014-02-03 11:33 - 00043625 _____ () C:\WINDOWS\KB2749655.log
2014-02-03 11:10 - 2014-02-03 11:32 - 00040259 _____ () C:\WINDOWS\KB2893984.log
2014-02-03 11:10 - 2014-02-03 11:32 - 00039257 _____ () C:\WINDOWS\KB2892075.log
2014-02-03 11:10 - 2010-02-12 11:03 - 00293376 ____N (Microsoft Corporation) C:\WINDOWS\system32\browserchoice.exe
2014-02-03 11:10 - 2009-07-27 23:24 - 00128512 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\dhtmled.ocx
2014-02-03 11:10 - 2008-05-08 15:02 - 00203136 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\rmcast.sys
2014-02-03 11:10 - 2008-05-01 15:34 - 00331776 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msadce.dll
2014-02-03 11:09 - 2014-02-03 11:35 - 00055101 _____ () C:\WINDOWS\KB952004.log
2014-02-03 11:09 - 2014-02-03 11:35 - 00051692 _____ () C:\WINDOWS\KB974571.log
2014-02-03 11:09 - 2014-02-03 11:33 - 00044686 _____ () C:\WINDOWS\KB2508429.log
2014-02-03 11:09 - 2014-02-03 11:33 - 00042813 _____ () C:\WINDOWS\KB971029.log
2014-02-03 11:09 - 2014-02-03 11:32 - 00042579 _____ () C:\WINDOWS\KB977914.log
2014-02-03 11:09 - 2011-04-21 14:37 - 00105472 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mup.sys
2014-02-03 11:08 - 2014-02-03 11:35 - 00051084 _____ () C:\WINDOWS\KB973507.log
2014-02-03 11:08 - 2014-02-03 11:35 - 00050462 _____ () C:\WINDOWS\KB977816.log
2014-02-03 11:08 - 2014-02-03 11:33 - 00050653 _____ () C:\WINDOWS\KB2419632.log
2014-02-03 11:08 - 2014-02-03 11:33 - 00043042 _____ () C:\WINDOWS\KB2653956.log
2014-02-03 11:08 - 2014-02-03 11:33 - 00042559 _____ () C:\WINDOWS\KB974392.log
2014-02-03 11:08 - 2014-02-03 11:33 - 00041668 _____ () C:\WINDOWS\KB2506212.log
2014-02-03 11:07 - 2014-02-03 11:32 - 00040173 _____ () C:\WINDOWS\KB2705219-v2.log
2014-02-03 11:07 - 2014-02-03 11:32 - 00039467 _____ () C:\WINDOWS\KB2619339.log
2014-02-03 11:07 - 2014-02-03 11:32 - 00038627 _____ () C:\WINDOWS\KB2727528.log
2014-02-03 11:07 - 2014-02-03 11:32 - 00038532 _____ () C:\WINDOWS\KB979482.log
2014-02-03 11:07 - 2014-02-03 11:31 - 00104155 _____ () C:\WINDOWS\KB2898785-IE7.log
2014-02-03 11:07 - 2014-02-03 11:31 - 00028907 _____ () C:\WINDOWS\KB2813345.log
2014-02-03 11:07 - 2013-08-09 01:55 - 00032384 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\usbccgp.sys
2014-02-03 11:07 - 2013-08-09 01:55 - 00005376 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\usbd.sys
2014-02-03 11:07 - 2012-07-04 15:05 - 00139784 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\rdpwd.sys
2014-02-03 11:07 - 2012-05-28 19:16 - 00536576 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msado15.dll
2014-02-03 11:06 - 2014-02-03 11:32 - 00038155 _____ () C:\WINDOWS\KB978542.log
2014-02-03 11:06 - 2014-02-03 11:31 - 00038235 _____ () C:\WINDOWS\KB978706.log
2014-02-03 11:06 - 2014-02-03 11:31 - 00028731 _____ () C:\WINDOWS\KB2509553.log
2014-02-03 11:06 - 2014-02-03 11:31 - 00027403 _____ () C:\WINDOWS\KB960803.log
2014-02-03 11:06 - 2014-02-03 11:30 - 00030046 _____ () C:\WINDOWS\KB2676562.log
2014-02-03 11:06 - 2014-02-03 11:28 - 00024980 _____ () C:\WINDOWS\KB982665.log
2014-02-03 11:06 - 2013-07-04 08:33 - 02195840 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ntoskrnl.exe
2014-02-03 11:06 - 2013-07-04 08:33 - 02152448 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ntkrnlmp.exe
2014-02-03 11:06 - 2013-07-04 08:33 - 02072448 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ntkrnlpa.exe
2014-02-03 11:06 - 2013-07-04 08:33 - 02031104 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ntkrpamp.exe
2014-02-03 11:06 - 2010-12-09 16:15 - 00743936 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ntdll.dll
2014-02-03 11:06 - 2010-06-18 14:36 - 03558912 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\moviemk.exe
2014-02-03 11:05 - 2014-02-03 11:31 - 00026504 _____ () C:\WINDOWS\KB973815.log
2014-02-03 11:05 - 2014-02-03 11:28 - 00023952 _____ () C:\WINDOWS\KB2620712.log
2014-02-03 11:05 - 2010-07-16 13:01 - 00220160 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wordpad.exe
2014-02-03 11:05 - 2009-11-21 16:54 - 01206508 ____C () C:\WINDOWS\system32\dllcache\sysmain.sdb
2014-02-03 11:04 - 2012-01-11 20:06 - 00003072 ____N () C:\WINDOWS\system32\iacenc.dll
2014-02-03 11:04 - 2012-01-11 20:06 - 00003072 ____C () C:\WINDOWS\system32\dllcache\iacenc.dll
2014-02-03 11:04 - 2011-07-08 15:02 - 00010496 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ndistapi.sys
2014-02-03 11:03 - 2014-02-03 11:32 - 00037244 _____ () C:\WINDOWS\KB979309.log
2014-02-03 11:03 - 2013-11-27 21:21 - 00040960 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ndproxy.sys
2014-02-03 11:02 - 2014-02-03 11:27 - 00023262 _____ () C:\WINDOWS\KB2584146.log
2014-02-03 11:01 - 2014-02-03 11:27 - 00024700 _____ () C:\WINDOWS\KB968389.log
2014-02-03 11:01 - 2014-02-03 11:27 - 00024063 _____ () C:\WINDOWS\KB975467.log
2014-02-03 11:01 - 2010-10-11 15:59 - 00045568 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wab.exe
2014-02-03 11:00 - 2014-02-03 11:00 - 00000000 ____D () C:\WINDOWS\system32\PreInstall
2014-02-03 10:59 - 2014-02-03 11:00 - 00008472 _____ () C:\WINDOWS\KB898461.log
2014-02-03 10:59 - 2014-02-03 10:59 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB898461$
2014-02-03 10:23 - 2014-02-03 12:55 - 00000000 ____D () C:\Dokumente und Einstellungen\Marco\Anwendungsdaten\Adobe
2014-02-03 10:20 - 2012-06-02 15:19 - 00015896 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll.mui
2014-02-03 10:20 - 2012-06-02 15:18 - 00275696 _____ (Microsoft Corporation) C:\WINDOWS\system32\mucltui.dll
2014-02-03 10:20 - 2012-06-02 15:18 - 00214256 _____ (Microsoft Corporation) C:\WINDOWS\system32\muweb.dll
2014-02-03 10:20 - 2012-06-02 15:18 - 00018160 _____ (Microsoft Corporation) C:\WINDOWS\system32\mucltui.dll.mui
2014-02-03 09:09 - 2014-02-04 13:52 - 00000246 _____ () C:\WINDOWS\Tasks\Auf Updates für Windows Live Toolbar prüfen.job
2014-02-03 09:09 - 2014-02-04 13:49 - 00000000 ____D () C:\Dokumente und Einstellungen\Marco
2014-02-03 09:09 - 2014-02-03 17:52 - 00000000 ___RD () C:\Dokumente und Einstellungen\Marco\Startmenü\Programme\Autostart
2014-02-03 09:09 - 2014-02-03 17:51 - 00000000 ___RD () C:\Dokumente und Einstellungen\Marco\Startmenü\Programme
2014-02-03 09:09 - 2014-02-03 17:43 - 00000000 ____D () C:\Dokumente und Einstellungen\Marco\Lokale Einstellungen\Anwendungsdaten\Adobe
2014-02-03 09:09 - 2014-02-03 17:14 - 00000190 ___SH () C:\Dokumente und Einstellungen\Marco\ntuser.ini
2014-02-03 09:09 - 2014-02-03 12:29 - 00000790 _____ () C:\Dokumente und Einstellungen\Marco\Startmenü\Programme\Internet Explorer.lnk
2014-02-03 09:09 - 2014-02-03 12:29 - 00000000 ___RD () C:\Dokumente und Einstellungen\Marco\Eigene Dateien\Eigene Musik
2014-02-03 09:09 - 2014-02-03 12:29 - 00000000 ___RD () C:\Dokumente und Einstellungen\Marco\Eigene Dateien\Eigene Bilder
2014-02-03 09:09 - 2014-02-03 11:41 - 00000138 _____ () C:\Dokumente und Einstellungen\Marco\Lokale Einstellungen\Anwendungsdaten\fusioncache.dat
2014-02-03 09:09 - 2014-02-03 09:09 - 00000779 _____ () C:\Dokumente und Einstellungen\Marco\Startmenü\Programme\Windows Media Player.lnk
2014-02-03 09:09 - 2014-02-03 09:09 - 00000725 _____ () C:\Dokumente und Einstellungen\Marco\Startmenü\Programme\Outlook Express.lnk
2014-02-03 09:09 - 2014-02-03 09:09 - 00000050 _____ () C:\WINDOWS\system32\Drivers\Lenovo_4068_4WG.MRK
2014-02-03 09:09 - 2014-02-03 09:09 - 00000000 __SHD () C:\Dokumente und Einstellungen\Marco\Lokale Einstellungen\Verlauf
2014-02-03 09:09 - 2014-02-03 09:09 - 00000000 ____D () C:\Programme\Windows Live Toolbar
2014-02-03 09:09 - 2014-02-03 07:28 - 00001949 _____ () C:\Dokumente und Einstellungen\Marco\Startmenü\Programme\Symantec Install NIS    (Norton Internet Security).lnk
2014-02-03 09:09 - 2014-02-03 07:21 - 00000000 ___RD () C:\Dokumente und Einstellungen\Marco\Startmenü\Programme\Zubehör
2014-02-03 09:09 - 2014-02-03 07:16 - 00000000 ____D () C:\Dokumente und Einstellungen\Marco\Anwendungsdaten\InstallShield
2014-02-03 09:09 - 2014-02-03 07:15 - 00000000 ____D () C:\Dokumente und Einstellungen\Marco\Eigene Dateien\Bluetooth-Exchange-Ordner
2014-02-03 09:09 - 2014-02-03 07:15 - 00000000 ____D () C:\Dokumente und Einstellungen\Marco\Bluetooth Software
2014-02-03 09:09 - 2008-07-21 06:56 - 00000000 ___RD () C:\Dokumente und Einstellungen\Marco\Startmenü
2014-02-03 09:09 - 2008-07-21 06:56 - 00000000 ___HD () C:\Dokumente und Einstellungen\Marco\Netzwerkumgebung
2014-02-03 09:09 - 2008-07-21 06:56 - 00000000 ___HD () C:\Dokumente und Einstellungen\Marco\Druckumgebung
2014-02-03 09:09 - 2008-07-21 06:02 - 00001599 _____ () C:\Dokumente und Einstellungen\Marco\Startmenü\Programme\Remoteunterstützung.lnk
2014-02-03 09:08 - 2014-02-03 07:33 - 00000190 ___SH () C:\Dokumente und Einstellungen\Default User\ntuser.ini
2014-02-03 09:08 - 2014-02-03 07:28 - 00001949 _____ () C:\Dokumente und Einstellungen\Default User\Startmenü\Programme\Symantec Install NIS    (Norton Internet Security).lnk
2014-02-03 09:08 - 2014-02-03 07:28 - 00001943 _____ () C:\Dokumente und Einstellungen\Default User\Desktop\Symantec Install NIS    (Norton Internet Security).lnk
2014-02-03 09:08 - 2014-02-03 07:25 - 00000000 ____D () C:\Dokumente und Einstellungen\Default User\Lokale Einstellungen\Anwendungsdaten\Adobe
2014-02-03 09:08 - 2014-02-03 07:21 - 00000790 _____ () C:\Dokumente und Einstellungen\Default User\Startmenü\Programme\Internet Explorer.lnk
2014-02-03 09:08 - 2014-02-03 07:21 - 00000000 ___RD () C:\Dokumente und Einstellungen\Default User\Eigene Dateien\Eigene Musik
2014-02-03 09:08 - 2014-02-03 07:21 - 00000000 ___RD () C:\Dokumente und Einstellungen\Default User\Eigene Dateien\Eigene Bilder
2014-02-03 09:08 - 2014-02-03 07:16 - 00000000 ____D () C:\Dokumente und Einstellungen\Default User\Anwendungsdaten\InstallShield
2014-02-03 09:08 - 2014-02-03 07:15 - 00000000 ____D () C:\Dokumente und Einstellungen\Default User\Eigene Dateien\Bluetooth-Exchange-Ordner
2014-02-03 09:08 - 2014-02-03 07:15 - 00000000 ____D () C:\Dokumente und Einstellungen\Default User\Bluetooth Software
2014-02-03 09:08 - 2008-07-21 06:15 - 00000141 _____ () C:\Dokumente und Einstellungen\Default User\Lokale Einstellungen\Anwendungsdaten\fusioncache.dat
2014-02-03 09:08 - 2008-07-21 06:06 - 00000718 _____ () C:\Dokumente und Einstellungen\Default User\Startmenü\Programme\Outlook Express.lnk
2014-02-03 09:06 - 2006-04-23 06:33 - 00007012 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\PMEMNT.SYS
2014-02-03 07:35 - 2014-02-03 07:35 - 00008192 _____ () C:\WINDOWS\REGLOCS.OLD
2014-02-03 07:32 - 2014-02-03 07:32 - 00000061 _____ () C:\WINDOWS\smscfg.ini
2014-02-03 07:31 - 2014-02-03 07:31 - 00000000 ___HD () C:\QSTART.SYS
2014-02-03 07:31 - 2014-02-03 07:31 - 00000000 ___HD () C:\QSTART.000
2014-02-03 07:31 - 2014-02-03 07:31 - 00000000 ____D () C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Lenovo Quick Start
2014-02-03 07:30 - 2014-02-03 07:30 - 00030049 _____ () C:\WINDOWS\DirectX.log
2014-02-03 07:30 - 2014-02-03 07:30 - 00006240 _____ () C:\WINDOWS\DPINST.LOG
2014-02-03 07:30 - 2014-02-03 07:30 - 00001942 _____ () C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Windows Live Fotogalerie.lnk
2014-02-03 07:30 - 2014-02-03 07:30 - 00000000 ____D () C:\Programme\Downloaded Installations
2014-02-03 07:30 - 2006-11-29 13:06 - 03426072 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_32.dll
2014-02-03 07:29 - 2014-02-03 07:30 - 00000000 ____D () C:\Programme\Windows Live
2014-02-03 07:29 - 2014-02-03 07:30 - 00000000 ____D () C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Windows Live
2014-02-03 07:28 - 2014-02-03 07:28 - 00000000 ____D () C:\Programme\Microsoft SQL Server Compact Edition
2014-02-03 07:28 - 2012-06-02 15:19 - 00045080 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups2.dll
2014-02-03 07:28 - 2012-06-02 15:19 - 00023576 _____ (Microsoft Corporation) C:\WINDOWS\system32\wucltui.dll.mui
2014-02-03 07:28 - 2012-06-02 15:19 - 00018456 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll.mui
2014-02-03 07:28 - 2012-06-02 15:19 - 00015896 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaucpl.cpl.mui
2014-02-03 07:28 - 2008-08-22 07:28 - 00006656 ___SH () C:\WINDOWS\Thumbs.db
2014-02-03 07:28 - 2008-08-22 03:02 - 01843256 _____ () C:\WINDOWS\IdeaPad Default.bmp
2014-02-03 07:28 - 2008-08-13 06:41 - 00148792 _____ () C:\WINDOWS\desktopset.exe
2014-02-03 07:24 - 2014-02-03 17:41 - 00000000 ____D () C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Adobe
2014-02-03 07:24 - 2014-02-03 07:24 - 00000047 _____ () C:\WINDOWS\system32\Drivers\IBM_4068_4WG.MRK
2014-02-03 07:23 - 2014-02-03 07:23 - 00000000 ____D () C:\WINDOWS\system32\(null)
2014-02-03 07:23 - 2014-02-03 07:23 - 00000000 ____D () C:\Programme\Gemeinsame Dateien\Lenovo
2014-02-03 07:23 - 2014-02-03 07:23 - 00000000 ____D () C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\ThinkVantage
2014-02-03 07:23 - 2014-02-03 07:23 - 00000000 ____D () C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\PC-Doctor 5 für Windows
2014-02-03 07:23 - 2014-02-03 07:23 - 00000000 ____D () C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\PC-Doctor
2014-02-03 07:23 - 2007-02-19 06:56 - 00021376 _____ (Lenovo (United States) Inc.) C:\WINDOWS\system32\Drivers\psadd.sys
2014-02-03 07:22 - 2014-02-03 07:23 - 00000000 ____D () C:\Programme\PCDR5
2014-02-03 07:22 - 2014-02-03 07:22 - 00940794 _____ () C:\WINDOWS\system32\LoopyMusic.wav
2014-02-03 07:22 - 2014-02-03 07:22 - 00146650 _____ () C:\WINDOWS\system32\BuzzingBee.wav
2014-02-03 07:21 - 2014-02-03 13:10 - 00015460 _____ () C:\WINDOWS\spupdsvc.log
2014-02-03 07:21 - 2014-02-03 07:21 - 00000000 ____D () C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\USB2.0 Card Reader Software
2014-02-03 07:21 - 2008-07-23 03:03 - 00157696 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\Drivers\RTS5121.sys
2014-02-03 07:21 - 2008-06-27 04:39 - 06184960 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTS5121icon.dll
2014-02-03 07:21 - 2008-06-27 04:20 - 00266240 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\rts5121.dll
2014-02-03 07:21 - 2008-02-15 05:49 - 00192512 _____ (Intel Corporation) C:\WINDOWS\system32\igfxres.dll
2014-02-03 07:18 - 2014-02-03 07:18 - 00000000 ____D () C:\WINDOWS\system32\Lang
2014-02-03 07:18 - 2008-02-28 08:00 - 00920088 _____ (Intel® Corporation) C:\WINDOWS\system32\igxpun.exe
2014-02-03 07:18 - 2008-02-28 08:00 - 00530968 _____ (Intel Corporation) C:\WINDOWS\system32\igfxcfg.exe
2014-02-03 07:18 - 2008-02-28 08:00 - 00256536 _____ (Intel Corporation) C:\WINDOWS\system32\igfxsrvc.exe
2014-02-03 07:18 - 2008-02-28 08:00 - 00170520 _____ (Intel Corporation) C:\WINDOWS\system32\igfxzoom.exe
2014-02-03 07:18 - 2008-02-28 08:00 - 00170520 _____ (Intel Corporation) C:\WINDOWS\system32\igfxext.exe
2014-02-03 07:18 - 2008-02-28 08:00 - 00166424 _____ (Intel Corporation) C:\WINDOWS\system32\hkcmd.exe
2014-02-03 07:18 - 2008-02-28 08:00 - 00141848 _____ (Intel Corporation) C:\WINDOWS\system32\igfxtray.exe
2014-02-03 07:18 - 2008-02-28 08:00 - 00137752 _____ (Intel Corporation) C:\WINDOWS\system32\igfxpers.exe
2014-02-03 07:18 - 2008-02-15 08:09 - 00027024 _____ () C:\WINDOWS\system32\igxpxs32.vp
2014-02-03 07:18 - 2008-02-15 06:21 - 00147456 _____ () C:\WINDOWS\system32\igfxCoIn_v4926.dll
2014-02-03 07:18 - 2008-02-15 06:12 - 05854752 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\igxpmp32.sys
2014-02-03 07:18 - 2008-02-15 06:12 - 02643968 _____ (Intel Corporation) C:\WINDOWS\system32\igxpdx32.dll
2014-02-03 07:18 - 2008-02-15 06:12 - 01670144 _____ (Intel Corporation) C:\WINDOWS\system32\igxpdv32.dll
2014-02-03 07:18 - 2008-02-15 06:12 - 00151040 _____ (Intel Corporation) C:\WINDOWS\system32\igxpgd32.dll
2014-02-03 07:18 - 2008-02-15 06:12 - 00057344 _____ (Intel Corporation) C:\WINDOWS\system32\igxprd32.dll
2014-02-03 07:18 - 2008-02-15 06:01 - 00294912 _____ (Intel Corporation) C:\WINDOWS\system32\igldev32.dll
2014-02-03 07:18 - 2008-02-15 06:00 - 02334720 _____ (Intel Corporation) C:\WINDOWS\system32\iglicd32.dll
2014-02-03 07:18 - 2008-02-15 05:49 - 00192512 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrell.lrc
2014-02-03 07:18 - 2008-02-15 05:49 - 00192512 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrdeu.lrc
2014-02-03 07:18 - 2008-02-15 05:49 - 00188416 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrnld.lrc
2014-02-03 07:18 - 2008-02-15 05:49 - 00188416 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrita.lrc
2014-02-03 07:18 - 2008-02-15 05:49 - 00188416 _____ (Intel Corporation) C:\WINDOWS\system32\igfxresp.lrc
2014-02-03 07:18 - 2008-02-15 05:49 - 00184320 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrfra.lrc
2014-02-03 07:18 - 2008-02-15 05:49 - 00180224 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrrus.lrc
2014-02-03 07:18 - 2008-02-15 05:49 - 00180224 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrptg.lrc
2014-02-03 07:18 - 2008-02-15 05:49 - 00180224 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrptb.lrc
2014-02-03 07:18 - 2008-02-15 05:49 - 00180224 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrplk.lrc
2014-02-03 07:18 - 2008-02-15 05:49 - 00180224 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrhun.lrc
2014-02-03 07:18 - 2008-02-15 05:49 - 00176128 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrsky.lrc
2014-02-03 07:18 - 2008-02-15 05:49 - 00176128 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrnor.lrc
2014-02-03 07:18 - 2008-02-15 05:49 - 00176128 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrfin.lrc
2014-02-03 07:18 - 2008-02-15 05:49 - 00176128 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrcsy.lrc
2014-02-03 07:18 - 2008-02-15 05:49 - 00172032 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrtrk.lrc
2014-02-03 07:18 - 2008-02-15 05:49 - 00172032 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrsve.lrc
2014-02-03 07:18 - 2008-02-15 05:49 - 00172032 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrslv.lrc
2014-02-03 07:18 - 2008-02-15 05:49 - 00172032 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrdan.lrc
2014-02-03 07:18 - 2008-02-15 05:49 - 00163840 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrtha.lrc
2014-02-03 07:18 - 2008-02-15 05:49 - 00159744 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrara.lrc
2014-02-03 07:18 - 2008-02-15 05:49 - 00155648 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrheb.lrc
2014-02-03 07:18 - 2008-02-15 05:49 - 00131072 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrjpn.lrc
2014-02-03 07:18 - 2008-02-15 05:49 - 00126976 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrkor.lrc
2014-02-03 07:18 - 2008-02-15 05:49 - 00110592 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrcht.lrc
2014-02-03 07:18 - 2008-02-15 05:49 - 00110592 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrchs.lrc
2014-02-03 07:18 - 2008-02-15 05:46 - 00204800 _____ (Intel Corporation) C:\WINDOWS\system32\igfxpph.dll
2014-02-03 07:18 - 2008-02-15 05:46 - 00135168 _____ (Intel Corporation) C:\WINDOWS\system32\igfxdo.dll
2014-02-03 07:18 - 2008-02-15 05:46 - 00122880 _____ (Intel Corporation) C:\WINDOWS\system32\igfxcpl.cpl
2014-02-03 07:18 - 2008-02-15 05:46 - 00048128 _____ (Intel Corporation) C:\WINDOWS\system32\igfxsrvc.dll
2014-02-03 07:18 - 2008-02-15 05:46 - 00024576 _____ (Intel Corporation) C:\WINDOWS\system32\igfxexps.dll
2014-02-03 07:18 - 2008-02-15 05:45 - 03293184 _____ (Intel Corporation) C:\WINDOWS\system32\igfxress.dll
2014-02-03 07:18 - 2008-02-15 05:45 - 00208896 _____ (Intel Corporation) C:\WINDOWS\system32\igfxdev.dll
2014-02-03 07:18 - 2008-02-15 05:45 - 00172032 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrenu.lrc
2014-02-03 07:18 - 2008-02-15 05:45 - 00102400 _____ (Intel Corporation) C:\WINDOWS\system32\hccutils.dll
2014-02-03 07:18 - 2008-02-15 05:38 - 00002096 _____ () C:\WINDOWS\system32\igxpxk32.vp
2014-02-03 07:18 - 2006-11-10 01:25 - 00319456 _____ (Microsoft Corporation) C:\WINDOWS\system32\difxapi.dll
2014-02-03 07:17 - 2014-02-03 07:17 - 00000000 ____D () C:\Programme\Broadcom
2014-02-03 07:17 - 2008-07-15 08:20 - 00069632 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\ChCfg.exe
2014-02-03 07:17 - 2008-06-19 20:43 - 00176640 ____C (Broadcom Corporation) C:\WINDOWS\system32\dllcache\b57xp32.sys
2014-02-03 07:17 - 2008-06-19 20:43 - 00176640 _____ (Broadcom Corporation) C:\WINDOWS\system32\Drivers\b57xp32.sys
2014-02-03 07:17 - 2008-04-14 00:47 - 00083072 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wdmaud.sys
2014-02-03 07:17 - 2008-04-14 00:47 - 00083072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wdmaud.sys
2014-02-03 07:17 - 2008-04-14 00:15 - 00056576 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\swmidi.sys
2014-02-03 07:17 - 2008-04-14 00:15 - 00056576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\swmidi.sys
2014-02-03 07:17 - 2008-04-14 00:15 - 00052864 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\dmusic.sys
2014-02-03 07:17 - 2008-04-14 00:15 - 00052864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\DMusic.sys
2014-02-03 07:17 - 2008-04-14 00:15 - 00006272 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\splitter.sys
2014-02-03 07:17 - 2008-04-14 00:15 - 00006272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\splitter.sys
2014-02-03 07:17 - 2008-04-13 22:09 - 00142592 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\aec.sys
2014-02-03 07:17 - 2008-04-13 22:09 - 00142592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\aec.sys
2014-02-03 07:17 - 2008-02-20 17:46 - 01286144 _____ (Broadcom Corporation) C:\WINDOWS\system32\Drivers\BCMWL5.SYS
2014-02-03 07:17 - 2007-11-14 08:18 - 00000553 _____ () C:\WINDOWS\USetup.iss
2014-02-03 07:16 - 2014-02-03 07:28 - 00000000 ___HD () C:\Programme\InstallShield Installation Information
2014-02-03 07:16 - 2014-02-03 07:21 - 00000000 ____D () C:\Programme\Realtek
2014-02-03 07:16 - 2014-02-03 07:17 - 00000538 _____ () C:\RHDSetup.log
2014-02-03 07:16 - 2014-02-03 07:17 - 00000000 ____D () C:\WINDOWS\system32\RTCOM
2014-02-03 07:16 - 2014-02-03 07:16 - 00319488 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\HideWin.exe
2014-02-03 07:16 - 2014-02-03 07:16 - 00000000 ____D () C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Lenovo
2014-02-03 07:16 - 2008-07-31 14:35 - 04751872 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\Drivers\RtkHDAud.sys
2014-02-03 07:16 - 2008-07-29 08:42 - 00528384 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\RtlExUpd.dll
2014-02-03 07:16 - 2008-07-29 07:31 - 16805888 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\RTHDCPL.exe
2014-02-03 07:16 - 2008-07-15 06:47 - 01196032 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\RtlUpd.exe
2014-02-03 07:16 - 2008-06-19 09:42 - 02808832 _____ (RealTek Semicoductor Corp.) C:\WINDOWS\alcwzrd.exe
2014-02-03 07:16 - 2008-06-19 09:27 - 09715200 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\RTLCPL.exe
2014-02-03 07:16 - 2008-06-19 09:24 - 00278528 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\ALSndMgr.cpl
2014-02-03 07:16 - 2008-06-19 09:20 - 00057344 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\Alcmtr.exe
2014-02-03 07:16 - 2008-06-18 11:01 - 00077824 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\SoundMan.exe
2014-02-03 07:16 - 2008-04-14 00:49 - 00146048 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\portcls.sys
2014-02-03 07:16 - 2008-04-14 00:49 - 00146048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\portcls.sys
2014-02-03 07:16 - 2008-04-14 00:45 - 00060800 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\sysaudio.sys
2014-02-03 07:16 - 2008-04-14 00:45 - 00060800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sysaudio.sys
2014-02-03 07:16 - 2008-04-14 00:15 - 00172416 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kmixer.sys
2014-02-03 07:16 - 2008-04-14 00:15 - 00172416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\kmixer.sys
2014-02-03 07:16 - 2008-04-14 00:15 - 00060160 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\drmk.sys
2014-02-03 07:16 - 2008-04-14 00:15 - 00060160 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\drmk.sys
2014-02-03 07:16 - 2008-04-14 00:15 - 00002944 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\drmkaud.sys
2014-02-03 07:16 - 2008-04-14 00:15 - 00002944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\drmkaud.sys
2014-02-03 07:16 - 2008-03-13 07:52 - 00266240 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTSndMgr.cpl
2014-02-03 07:16 - 2008-01-11 14:58 - 00009472 _____ (Lenovo Corporation) C:\WINDOWS\system32\Drivers\AcpiVpc.sys
2014-02-03 07:16 - 2007-11-20 11:15 - 01826816 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\SkyTel.exe
2014-02-03 07:16 - 2007-06-28 09:44 - 02165760 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\MicCal.exe
2014-02-03 07:15 - 2014-02-03 07:15 - 00000000 ____D () C:\Programme\Intel
2014-02-03 07:15 - 2014-02-03 07:15 - 00000000 ____D () C:\Intel
2014-02-03 07:15 - 2008-03-26 04:15 - 00053248 _____ (Windows XP Bundled build C-Centric Single User) C:\WINDOWS\system32\CSVer.dll
2014-02-03 07:14 - 2014-02-03 07:23 - 00000000 ____D () C:\Programme\Lenovo
2014-02-03 07:14 - 2014-02-03 07:14 - 00000322 _____ () C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Bluetooth-Umgebung.lnk
2014-02-03 07:14 - 2014-02-03 07:14 - 00000322 _____ () C:\Dokumente und Einstellungen\All Users\Startmenü\Bluetooth-Umgebung.lnk
2014-02-03 07:14 - 2008-06-23 05:23 - 00991400 _____ (Broadcom Corporation.) C:\WINDOWS\system32\Drivers\btkrnl.sys
2014-02-03 07:14 - 2008-06-11 07:14 - 00089896 _____ (Broadcom Corporation.) C:\WINDOWS\system32\Drivers\btwsecfl.sys
2014-02-03 07:14 - 2008-06-11 07:14 - 00047272 _____ (Broadcom Corporation.) C:\WINDOWS\system32\Drivers\btwusb.sys
2014-02-03 07:14 - 2007-09-20 04:59 - 00106557 _____ (Broadcom Corporation.) C:\WINDOWS\system32\btw_ci.dll
2014-02-03 07:13 - 2014-02-03 11:52 - 00100413 _____ () C:\WINDOWS\updspapi.log
2014-02-03 07:13 - 2014-02-03 07:22 - 00000000 ____D () C:\WINDOWS\system32\ReinstallBackups
2014-02-03 07:13 - 2014-02-03 07:18 - 00065536 _____ () C:\WINDOWS\system32\config\Internet.evt
2014-02-03 07:13 - 2014-02-03 07:16 - 00000000 ____D () C:\Programme\Gemeinsame Dateien\InstallShield
2014-02-03 07:13 - 2014-02-03 07:13 - 00000651 _____ () C:\WINDOWS\SynInst.log
2014-02-03 07:13 - 2014-02-03 07:13 - 00000000 ____D () C:\Programme\Synaptics
2014-02-03 07:13 - 2008-05-23 03:53 - 00110592 _____ (Synaptics, Inc.) C:\WINDOWS\system32\SynTPCo4.dll
2014-02-03 07:13 - 2008-05-23 03:35 - 00147456 _____ (Synaptics, Inc.) C:\WINDOWS\system32\SynTPAPI.dll
2014-02-03 07:13 - 2008-05-23 03:24 - 00200704 _____ (Synaptics, Inc.) C:\WINDOWS\system32\SynCtrl.dll
2014-02-03 07:13 - 2008-05-23 03:23 - 00163840 _____ (Synaptics, Inc.) C:\WINDOWS\system32\SynCOM.dll
2014-02-03 07:13 - 2008-05-23 03:21 - 00225280 _____ (Synaptics, Inc.) C:\WINDOWS\system32\Drivers\SynTP.sys
2014-02-03 07:12 - 2014-02-03 07:13 - 00000000 __HDC () C:\WINDOWS\ie7
2014-02-03 07:11 - 2014-02-04 13:38 - 00000000 ___HD () C:\WINDOWS\$hf_mig$
2014-02-03 07:11 - 2014-02-03 17:47 - 00385939 _____ () C:\WINDOWS\setupapi.log
2014-02-03 07:11 - 2014-02-03 07:13 - 00035205 _____ () C:\WINDOWS\ie7.log
2014-02-03 07:11 - 2014-02-03 07:13 - 00015815 _____ () C:\WINDOWS\ie7_main.log
2014-02-03 07:11 - 2014-02-03 07:11 - 00004512 _____ () C:\WINDOWS\KB949764.log
2014-02-03 07:11 - 2014-02-03 07:11 - 00004500 _____ () C:\WINDOWS\IDNMitigationAPIs.log
2014-02-03 07:11 - 2014-02-03 07:11 - 00003122 _____ () C:\WINDOWS\NLSDownlevelMapping.log
2014-02-03 07:11 - 2014-02-03 07:11 - 00002331 _____ () C:\WINDOWS\KB928388.log
2014-02-03 07:11 - 2014-02-03 07:11 - 00001937 _____ () C:\WINDOWS\KB915865.log
2014-02-03 07:11 - 2014-02-03 07:11 - 00000000 __HDC () C:\WINDOWS\$NtServicePackUninstallNLSDownlevelMapping$
2014-02-03 07:11 - 2014-02-03 07:11 - 00000000 __HDC () C:\WINDOWS\$NtServicePackUninstallIDNMitigationAPIs$
2014-02-03 07:11 - 2009-01-07 18:20 - 00026144 _____ (Microsoft Corporation) C:\WINDOWS\system32\spupdsvc.exe
2014-02-03 07:11 - 2009-01-07 18:20 - 00018464 ____N (Microsoft Corporation) C:\WINDOWS\system32\spmsg.dll
2014-02-03 07:07 - 2014-02-03 09:08 - 00000000 ____D () C:\Dokumente und Einstellungen\Administrator
2014-02-03 07:06 - 2013-08-09 01:55 - 00032384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbccgp.sys
2014-02-03 07:06 - 2013-07-17 01:58 - 00123008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbvideo.sys
2014-02-03 07:06 - 2008-04-14 07:53 - 00129536 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ksproxy.ax
2014-02-03 07:06 - 2008-04-14 07:53 - 00129536 _____ (Microsoft Corporation) C:\WINDOWS\system32\ksproxy.ax
2014-02-03 07:06 - 2008-04-14 07:53 - 00091648 _____ (Microsoft Corporation) C:\WINDOWS\system32\kswdmcap.ax
2014-02-03 07:06 - 2008-04-14 07:53 - 00061952 _____ (Microsoft Corporation) C:\WINDOWS\system32\kstvtune.ax
2014-02-03 07:06 - 2008-04-14 07:53 - 00043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\ksxbar.ax
2014-02-03 07:06 - 2008-04-14 07:53 - 00028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\vidcap.ax
2014-02-03 07:06 - 2008-04-14 07:53 - 00020992 _____ (Microsoft Corporation) C:\WINDOWS\system32\dshowext.ax
2014-02-03 07:06 - 2008-04-14 07:53 - 00016384 _____ (Microsoft Corporation) C:\WINDOWS\system32\ipsink.ax
2014-02-03 07:06 - 2008-04-14 07:52 - 00054272 _____ (Microsoft Corporation) C:\WINDOWS\system32\vfwwdm32.dll
2014-02-03 07:06 - 2008-04-14 07:52 - 00004096 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ksuser.dll
2014-02-03 07:06 - 2008-04-14 07:52 - 00004096 _____ (Microsoft Corporation) C:\WINDOWS\system32\ksuser.dll
2014-02-03 07:06 - 2008-04-14 00:16 - 00085248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\NABTSFEC.sys
2014-02-03 07:06 - 2008-04-14 00:16 - 00019200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WSTCODEC.SYS
2014-02-03 07:06 - 2008-04-14 00:16 - 00017024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\CCDECODE.sys
2014-02-03 07:06 - 2008-04-14 00:16 - 00015232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\StreamIP.sys
2014-02-03 07:06 - 2008-04-14 00:16 - 00011136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\SLIP.sys
2014-02-03 07:06 - 2008-04-14 00:16 - 00010880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\NdisIP.sys
2014-02-03 07:06 - 2008-04-14 00:15 - 00026368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBSTOR.SYS
2014-02-03 07:06 - 2008-04-14 00:09 - 00007552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\MSKSSRV.sys
2014-02-03 07:06 - 2008-04-14 00:09 - 00005504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\MSTEE.sys
2014-02-03 07:06 - 2008-04-14 00:09 - 00005376 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\MSPCLOCK.sys
2014-02-03 07:06 - 2008-04-14 00:09 - 00004992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\MSPQM.sys

==================== One Month Modified Files and Folders =======

2014-02-04 13:52 - 2014-02-03 09:09 - 00000246 _____ () C:\WINDOWS\Tasks\Auf Updates für Windows Live Toolbar prüfen.job
2014-02-04 13:51 - 2014-02-04 13:51 - 00000000 ____D () C:\FRST
2014-02-04 13:49 - 2014-02-04 13:49 - 00000000 _____ () C:\Dokumente und Einstellungen\Marco\defogger_reenable
2014-02-04 13:49 - 2014-02-03 09:09 - 00000000 ____D () C:\Dokumente und Einstellungen\Marco
2014-02-04 13:43 - 2008-07-21 06:01 - 01621869 _____ () C:\WINDOWS\WindowsUpdate.log
2014-02-04 13:39 - 2014-02-04 13:38 - 00006538 _____ () C:\WINDOWS\KB2345886.log
2014-02-04 13:38 - 2014-02-04 13:31 - 00000000 ____D () C:\WINDOWS\LastGood
2014-02-04 13:38 - 2014-02-03 07:11 - 00000000 ___HD () C:\WINDOWS\$hf_mig$
2014-02-04 13:34 - 2014-02-04 13:34 - 00000000 __SHD () C:\Dokumente und Einstellungen\LocalService\IETldCache
2014-02-04 13:34 - 2014-02-04 13:34 - 00000000 ____D () C:\Dokumente und Einstellungen\LocalService\Anwendungsdaten\Adobe
2014-02-04 13:34 - 2008-07-21 06:05 - 00000000 __SHD () C:\Dokumente und Einstellungen\LocalService
2014-02-04 13:32 - 2014-02-03 17:27 - 00001088 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2014-02-03 19:17 - 2014-02-03 19:17 - 00000012 ____H () C:\dvmexp.idx
2014-02-03 17:58 - 2014-02-03 17:58 - 00000000 ____D () C:\Programme\Malwarebytes' Anti-Malware
2014-02-03 17:58 - 2014-02-03 17:58 - 00000000 ____D () C:\Dokumente und Einstellungen\Marco\Anwendungsdaten\Malwarebytes
2014-02-03 17:58 - 2014-02-03 17:58 - 00000000 ____D () C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Malwarebytes' Anti-Malware
2014-02-03 17:58 - 2014-02-03 17:58 - 00000000 ____D () C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Malwarebytes
2014-02-03 17:58 - 2008-07-21 06:56 - 00000000 ___RD () C:\Programme
2014-02-03 17:58 - 2008-07-21 06:56 - 00000000 ___RD () C:\Dokumente und Einstellungen\All Users\Startmenü\Programme
2014-02-03 17:52 - 2014-02-03 17:50 - 00000000 ____D () C:\Dokumente und Einstellungen\Marco\Anwendungsdaten\Dropbox
2014-02-03 17:52 - 2014-02-03 09:09 - 00000000 ___RD () C:\Dokumente und Einstellungen\Marco\Startmenü\Programme\Autostart
2014-02-03 17:51 - 2014-02-03 17:51 - 00000000 ____D () C:\Programme\Dropbox
2014-02-03 17:51 - 2014-02-03 17:51 - 00000000 ____D () C:\Dokumente und Einstellungen\Marco\Startmenü\Programme\Dropbox
2014-02-03 17:51 - 2014-02-03 17:51 - 00000000 ____D () C:\Dokumente und Einstellungen\Marco\Anwendungsdaten\DropboxMaster
2014-02-03 17:51 - 2014-02-03 09:09 - 00000000 ___RD () C:\Dokumente und Einstellungen\Marco\Startmenü\Programme
2014-02-03 17:51 - 2008-07-21 06:59 - 00000346 _____ () C:\WINDOWS\wiadebug.log
2014-02-03 17:47 - 2014-02-03 17:47 - 00000000 ____D () C:\Programme\FreePDF_XP
2014-02-03 17:47 - 2014-02-03 17:47 - 00000000 ____D () C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\FreePDF
2014-02-03 17:47 - 2014-02-03 17:47 - 00000000 ____D () C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\FreePDF
2014-02-03 17:47 - 2014-02-03 07:11 - 00385939 _____ () C:\WINDOWS\setupapi.log
2014-02-03 17:47 - 2008-07-21 06:01 - 00000000 ____D () C:\Programme\Outlook Express
2014-02-03 17:44 - 2014-02-03 17:44 - 00000000 ____D () C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Ghostscript
2014-02-03 17:43 - 2014-02-03 17:43 - 00000000 ____D () C:\Programme\gs
2014-02-03 17:43 - 2014-02-03 09:09 - 00000000 ____D () C:\Dokumente und Einstellungen\Marco\Lokale Einstellungen\Anwendungsdaten\Adobe
2014-02-03 17:41 - 2014-02-03 17:41 - 00001804 _____ () C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Adobe Reader XI.lnk
2014-02-03 17:41 - 2014-02-03 17:41 - 00001721 _____ () C:\Dokumente und Einstellungen\All Users\Desktop\Adobe Reader XI.lnk
2014-02-03 17:41 - 2014-02-03 17:41 - 00000000 ____D () C:\Programme\Gemeinsame Dateien\Adobe
2014-02-03 17:41 - 2014-02-03 17:41 - 00000000 ____D () C:\Programme\Adobe
2014-02-03 17:41 - 2014-02-03 07:24 - 00000000 ____D () C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Adobe
2014-02-03 17:32 - 2014-02-03 17:27 - 00001084 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2014-02-03 17:28 - 2014-02-03 17:28 - 00000000 ____D () C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Google Drive
2014-02-03 17:28 - 2014-02-03 17:27 - 00000000 ____D () C:\Programme\Google
2014-02-03 17:28 - 2014-02-03 17:27 - 00000000 ____D () C:\Dokumente und Einstellungen\Marco\Lokale Einstellungen\Anwendungsdaten\Google
2014-02-03 17:20 - 2008-07-21 06:56 - 01069904 _____ () C:\WINDOWS\system32\PerfStringBackup.INI
2014-02-03 17:18 - 2014-02-03 17:18 - 00000104 _____ () C:\Dokumente und Einstellungen\Marco\Desktop\Arbeitsplatz.lnk
2014-02-03 17:16 - 2014-02-03 17:16 - 00000000 ___HD () C:\dvmexp
2014-02-03 17:15 - 2008-07-21 06:59 - 00000050 _____ () C:\WINDOWS\wiaservc.log
2014-02-03 17:15 - 2008-07-21 06:05 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT
2014-02-03 17:14 - 2014-02-03 09:09 - 00000190 ___SH () C:\Dokumente und Einstellungen\Marco\ntuser.ini
2014-02-03 17:14 - 2008-07-21 06:05 - 00004792 _____ () C:\WINDOWS\SchedLgU.Txt
2014-02-03 16:35 - 2014-02-03 16:35 - 00000000 ____D () C:\WINDOWS\system32\NtmsData
2014-02-03 16:35 - 2008-07-21 07:52 - 00000000 ____D () C:\WINDOWS\repair
2014-02-03 16:35 - 2008-07-21 06:00 - 00000000 ____D () C:\WINDOWS\Registration
2014-02-03 16:30 - 2014-02-03 16:30 - 00012328 _____ () C:\Dokumente und Einstellungen\Marco\Lokale Einstellungen\Anwendungsdaten\GDIPFONTCACHEV1.DAT
2014-02-03 16:27 - 2014-02-03 16:27 - 00000000 ____D () C:\Dokumente und Einstellungen\Marco\Anwendungsdaten\Avira
2014-02-03 16:25 - 2014-02-03 16:25 - 00000000 ____D () C:\Programme\Avira
2014-02-03 16:25 - 2014-02-03 16:25 - 00000000 ____D () C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Avira
2014-02-03 16:25 - 2014-02-03 16:25 - 00000000 ____D () C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Avira
2014-02-03 16:20 - 2008-07-21 06:56 - 00000000 ____D () C:\Programme\Gemeinsame Dateien\Microsoft Shared
2014-02-03 13:23 - 2008-07-21 06:06 - 00000000 ____D () C:\WINDOWS\Microsoft.NET
2014-02-03 13:10 - 2014-02-03 07:21 - 00015460 _____ () C:\WINDOWS\spupdsvc.log
2014-02-03 13:09 - 2008-07-21 06:56 - 00093480 _____ () C:\WINDOWS\system32\FNTCACHE.DAT
2014-02-03 13:03 - 2014-02-03 13:03 - 00000000 ____D () C:\Dokumente und Einstellungen\Marco\Lokale Einstellungen\Anwendungsdaten\Mozilla
2014-02-03 13:03 - 2014-02-03 13:03 - 00000000 ____D () C:\Dokumente und Einstellungen\Marco\Anwendungsdaten\Mozilla
2014-02-03 13:02 - 2014-02-03 13:02 - 00000709 _____ () C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Mozilla Firefox.lnk
2014-02-03 13:02 - 2014-02-03 13:02 - 00000703 _____ () C:\Dokumente und Einstellungen\All Users\Desktop\Mozilla Firefox.lnk
2014-02-03 13:02 - 2014-02-03 13:02 - 00000000 ____D () C:\WINDOWS\system32\XPSViewer
2014-02-03 13:02 - 2014-02-03 13:02 - 00000000 ____D () C:\Programme\Reference Assemblies
2014-02-03 13:02 - 2014-02-03 13:02 - 00000000 ____D () C:\Programme\MSBuild
2014-02-03 13:02 - 2014-02-03 13:02 - 00000000 ____D () C:\Programme\Mozilla Maintenance Service
2014-02-03 13:02 - 2014-02-03 13:02 - 00000000 ____D () C:\Programme\Mozilla Firefox
2014-02-03 13:02 - 2014-02-03 13:02 - 00000000 ____D () C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Mozilla
2014-02-03 13:02 - 2014-02-03 13:01 - 00000000 ____D () C:\75cdcbcda7d32626c760c52bc544
2014-02-03 13:01 - 2008-07-21 07:52 - 00000000 ____D () C:\WINDOWS\system32\spool
2014-02-03 12:55 - 2014-02-03 12:55 - 00000000 ____D () C:\Dokumente und Einstellungen\Marco\Anwendungsdaten\Macromedia
2014-02-03 12:55 - 2014-02-03 10:23 - 00000000 ____D () C:\Dokumente und Einstellungen\Marco\Anwendungsdaten\Adobe
2014-02-03 12:54 - 2014-02-03 12:54 - 00000000 __SHD () C:\Dokumente und Einstellungen\Marco\IECompatCache
2014-02-03 12:53 - 2014-02-03 12:53 - 00000000 __SHD () C:\Dokumente und Einstellungen\Marco\PrivacIE
2014-02-03 12:29 - 2014-02-03 12:29 - 00000000 __SHD () C:\Dokumente und Einstellungen\Marco\IETldCache
2014-02-03 12:29 - 2014-02-03 09:09 - 00000790 _____ () C:\Dokumente und Einstellungen\Marco\Startmenü\Programme\Internet Explorer.lnk
2014-02-03 12:29 - 2014-02-03 09:09 - 00000000 ___RD () C:\Dokumente und Einstellungen\Marco\Eigene Dateien\Eigene Musik
2014-02-03 12:29 - 2014-02-03 09:09 - 00000000 ___RD () C:\Dokumente und Einstellungen\Marco\Eigene Dateien\Eigene Bilder
2014-02-03 12:29 - 2008-07-21 06:05 - 00000000 __SHD () C:\Dokumente und Einstellungen\LocalService\Lokale Einstellungen\Verlauf
2014-02-03 12:28 - 2008-07-21 07:52 - 00000000 ____D () C:\WINDOWS\system32\de-de
2014-02-03 12:28 - 2008-07-21 07:52 - 00000000 ____D () C:\WINDOWS\security
2014-02-03 12:28 - 2008-07-21 07:52 - 00000000 ____D () C:\WINDOWS\Media
2014-02-03 12:28 - 2008-07-21 07:52 - 00000000 ____D () C:\WINDOWS\Help
2014-02-03 11:52 - 2014-02-03 11:52 - 00106317 _____ () C:\WINDOWS\KB951376-v2.log
2014-02-03 11:52 - 2014-02-03 11:52 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB952954$
2014-02-03 11:52 - 2014-02-03 11:52 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB951376-v2$
2014-02-03 11:52 - 2014-02-03 11:52 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2868626$
2014-02-03 11:52 - 2014-02-03 11:16 - 00118941 _____ () C:\WINDOWS\KB952954.log
2014-02-03 11:52 - 2014-02-03 11:16 - 00117397 _____ () C:\WINDOWS\KB2868626.log
2014-02-03 11:52 - 2014-02-03 07:13 - 00100413 _____ () C:\WINDOWS\updspapi.log
2014-02-03 11:52 - 2008-07-21 06:56 - 00870994 _____ () C:\WINDOWS\FaxSetup.log
2014-02-03 11:52 - 2008-07-21 06:56 - 00425609 _____ () C:\WINDOWS\ocgen.log
2014-02-03 11:52 - 2008-07-21 06:56 - 00340743 _____ () C:\WINDOWS\tsoc.log
2014-02-03 11:52 - 2008-07-21 06:56 - 00305236 _____ () C:\WINDOWS\comsetup.log
2014-02-03 11:52 - 2008-07-21 06:56 - 00182911 _____ () C:\WINDOWS\ntdtcsetup.log
2014-02-03 11:52 - 2008-07-21 06:56 - 00138513 _____ () C:\WINDOWS\iis6.log
2014-02-03 11:52 - 2008-07-21 06:56 - 00048423 _____ () C:\WINDOWS\ocmsn.log
2014-02-03 11:52 - 2008-07-21 06:56 - 00043822 _____ () C:\WINDOWS\msgsocm.log
2014-02-03 11:52 - 2008-07-21 06:56 - 00001355 _____ () C:\WINDOWS\imsins.log
2014-02-03 11:52 - 2008-07-21 06:56 - 00001355 _____ () C:\WINDOWS\imsins.BAK
2014-02-03 11:51 - 2014-02-03 11:51 - 00114681 _____ () C:\WINDOWS\KB2898785-IE8.log
2014-02-03 11:51 - 2014-02-03 11:51 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB959426$
2014-02-03 11:51 - 2014-02-03 11:50 - 00115518 _____ () C:\WINDOWS\KB2862772-IE8.log
2014-02-03 11:51 - 2014-02-03 11:42 - 00146238 _____ () C:\WINDOWS\ie8_main.log
2014-02-03 11:51 - 2014-02-03 11:16 - 00118200 _____ () C:\WINDOWS\KB959426.log
2014-02-03 11:50 - 2014-02-03 11:50 - 00119167 _____ () C:\WINDOWS\KB2744842-IE8.log
2014-02-03 11:50 - 2014-02-03 11:49 - 00122192 _____ () C:\WINDOWS\KB2618444-IE8.log
2014-02-03 11:49 - 2014-02-03 11:49 - 00133429 _____ () C:\WINDOWS\KB982381-IE8.log
2014-02-03 11:49 - 2014-02-03 11:49 - 00110620 _____ () C:\WINDOWS\KB2598845-IE8.log
2014-02-03 11:49 - 2014-02-03 11:49 - 00109979 _____ () C:\WINDOWS\KB2467659.log
2014-02-03 11:49 - 2014-02-03 11:49 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2467659$
2014-02-03 11:49 - 2014-02-03 11:49 - 00000000 ____D () C:\WINDOWS\ie8updates
2014-02-03 11:49 - 2014-02-03 11:47 - 00133696 _____ () C:\WINDOWS\ie8.log
2014-02-03 11:48 - 2014-02-03 11:47 - 00000000 __HDC () C:\WINDOWS\ie8
2014-02-03 11:42 - 2014-02-03 11:41 - 00055043 _____ () C:\WINDOWS\KB946648.log
2014-02-03 11:42 - 2008-07-21 06:00 - 00000000 ____D () C:\Programme\Messenger
2014-02-03 11:41 - 2014-02-03 11:41 - 00055278 _____ () C:\WINDOWS\KB2387149.log
2014-02-03 11:41 - 2014-02-03 11:41 - 00052456 _____ () C:\WINDOWS\KB2659262.log
2014-02-03 11:41 - 2014-02-03 11:41 - 00051719 _____ () C:\WINDOWS\KB2564958.log
2014-02-03 11:41 - 2014-02-03 11:41 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB960859$
2014-02-03 11:41 - 2014-02-03 11:41 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB946648$
2014-02-03 11:41 - 2014-02-03 11:41 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2712808$
2014-02-03 11:41 - 2014-02-03 11:41 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2659262$
2014-02-03 11:41 - 2014-02-03 11:41 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2564958$
2014-02-03 11:41 - 2014-02-03 11:41 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2479943$
2014-02-03 11:41 - 2014-02-03 11:41 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2387149$
2014-02-03 11:41 - 2014-02-03 11:16 - 00067303 _____ () C:\WINDOWS\KB2712808.log
2014-02-03 11:41 - 2014-02-03 11:16 - 00066858 _____ () C:\WINDOWS\KB2479943.log
2014-02-03 11:41 - 2014-02-03 11:16 - 00066776 _____ () C:\WINDOWS\KB960859.log
2014-02-03 11:41 - 2014-02-03 09:09 - 00000138 _____ () C:\Dokumente und Einstellungen\Marco\Lokale Einstellungen\Anwendungsdaten\fusioncache.dat
2014-02-03 11:40 - 2014-02-03 11:40 - 00053866 _____ () C:\WINDOWS\KB2536276-v2.log
2014-02-03 11:40 - 2014-02-03 11:40 - 00051067 _____ () C:\WINDOWS\KB2834886.log
2014-02-03 11:40 - 2014-02-03 11:40 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2834886$
2014-02-03 11:40 - 2014-02-03 11:40 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2758857$
2014-02-03 11:40 - 2014-02-03 11:40 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2585542$
2014-02-03 11:40 - 2014-02-03 11:40 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2544893-v2$
2014-02-03 11:40 - 2014-02-03 11:40 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2536276-v2$
2014-02-03 11:40 - 2014-02-03 11:40 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2478971$
2014-02-03 11:40 - 2014-02-03 11:15 - 00066314 _____ () C:\WINDOWS\KB2585542.log
2014-02-03 11:40 - 2014-02-03 11:15 - 00066282 _____ () C:\WINDOWS\KB2478971.log
2014-02-03 11:40 - 2014-02-03 11:15 - 00065719 _____ () C:\WINDOWS\KB2758857.log
2014-02-03 11:40 - 2014-02-03 11:15 - 00065284 _____ () C:\WINDOWS\KB2631813.log
2014-02-03 11:40 - 2014-02-03 11:14 - 00065084 _____ () C:\WINDOWS\KB2544893-v2.log
2014-02-03 11:39 - 2014-02-03 11:39 - 00054473 _____ () C:\WINDOWS\KB955759.log
2014-02-03 11:39 - 2014-02-03 11:39 - 00051968 _____ () C:\WINDOWS\KB975558.log
2014-02-03 11:39 - 2014-02-03 11:39 - 00051426 _____ () C:\WINDOWS\KB2296011.log
2014-02-03 11:39 - 2014-02-03 11:39 - 00050792 _____ () C:\WINDOWS\KB2900986.log
2014-02-03 11:39 - 2014-02-03 11:39 - 00050718 _____ () C:\WINDOWS\KB2378111.log
2014-02-03 11:39 - 2014-02-03 11:39 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB975558_WM8$
2014-02-03 11:39 - 2014-02-03 11:39 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB974318$
2014-02-03 11:39 - 2014-02-03 11:39 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB955759$
2014-02-03 11:39 - 2014-02-03 11:39 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB951978$
2014-02-03 11:39 - 2014-02-03 11:39 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2900986$
2014-02-03 11:39 - 2014-02-03 11:39 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2847311$
2014-02-03 11:39 - 2014-02-03 11:39 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2691442$
2014-02-03 11:39 - 2014-02-03 11:39 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2631813$
2014-02-03 11:39 - 2014-02-03 11:39 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2378111_WM9$
2014-02-03 11:39 - 2014-02-03 11:39 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2296011$
2014-02-03 11:39 - 2014-02-03 11:39 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2115168$
2014-02-03 11:39 - 2014-02-03 11:15 - 00065768 _____ () C:\WINDOWS\KB2691442.log
2014-02-03 11:39 - 2014-02-03 11:14 - 00064679 _____ () C:\WINDOWS\KB2115168.log
2014-02-03 11:39 - 2014-02-03 11:14 - 00064446 _____ () C:\WINDOWS\KB974318.log
2014-02-03 11:39 - 2014-02-03 11:14 - 00061916 _____ () C:\WINDOWS\KB2847311.log
2014-02-03 11:39 - 2014-02-03 11:13 - 00063918 _____ () C:\WINDOWS\KB951978.log
2014-02-03 11:39 - 2014-02-03 11:13 - 00062493 _____ () C:\WINDOWS\KB969059.log
2014-02-03 11:39 - 2008-07-21 06:00 - 00001403 _____ () C:\WINDOWS\wmsetup.log
2014-02-03 11:38 - 2014-02-03 11:38 - 00052114 _____ () C:\WINDOWS\KB2229593.log
2014-02-03 11:38 - 2014-02-03 11:38 - 00050879 _____ () C:\WINDOWS\KB2686509.log
2014-02-03 11:38 - 2014-02-03 11:38 - 00050781 _____ () C:\WINDOWS\KB2485663.log
2014-02-03 11:38 - 2014-02-03 11:38 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB975713$
2014-02-03 11:38 - 2014-02-03 11:38 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB969059$
2014-02-03 11:38 - 2014-02-03 11:38 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB950974$
2014-02-03 11:38 - 2014-02-03 11:38 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2898715$
2014-02-03 11:38 - 2014-02-03 11:38 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2802968$
2014-02-03 11:38 - 2014-02-03 11:38 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2686509$
2014-02-03 11:38 - 2014-02-03 11:38 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2655992$
2014-02-03 11:38 - 2014-02-03 11:38 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2598479$
2014-02-03 11:38 - 2014-02-03 11:38 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2485663$
2014-02-03 11:38 - 2014-02-03 11:38 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2481109$
2014-02-03 11:38 - 2014-02-03 11:38 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2443105$
2014-02-03 11:38 - 2014-02-03 11:38 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2229593$
2014-02-03 11:38 - 2014-02-03 11:14 - 00064298 _____ () C:\WINDOWS\KB2655992.log
2014-02-03 11:38 - 2014-02-03 11:14 - 00063529 _____ () C:\WINDOWS\KB2802968.log
2014-02-03 11:38 - 2014-02-03 11:14 - 00061281 _____ () C:\WINDOWS\KB2898715.log
2014-02-03 11:38 - 2014-02-03 11:13 - 00063215 _____ () C:\WINDOWS\KB2481109.log
2014-02-03 11:38 - 2014-02-03 11:13 - 00062621 _____ () C:\WINDOWS\KB950974.log
2014-02-03 11:38 - 2014-02-03 11:13 - 00062581 _____ () C:\WINDOWS\KB2443105.log
2014-02-03 11:38 - 2014-02-03 11:13 - 00062163 _____ () C:\WINDOWS\KB2598479.log
2014-02-03 11:38 - 2014-02-03 11:13 - 00061707 _____ () C:\WINDOWS\KB975713.log
2014-02-03 11:37 - 2014-02-03 11:37 - 00048993 _____ () C:\WINDOWS\KB2862335.log
2014-02-03 11:37 - 2014-02-03 11:37 - 00047095 _____ () C:\WINDOWS\KB954155.log
2014-02-03 11:37 - 2014-02-03 11:37 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB982132$
2014-02-03 11:37 - 2014-02-03 11:37 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB978338$
2014-02-03 11:37 - 2014-02-03 11:37 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB974112$
2014-02-03 11:37 - 2014-02-03 11:37 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB972270$
2014-02-03 11:37 - 2014-02-03 11:37 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB971657$
2014-02-03 11:37 - 2014-02-03 11:37 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB954155_WM9$
2014-02-03 11:37 - 2014-02-03 11:37 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2862335$
2014-02-03 11:37 - 2014-02-03 11:37 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2845187$
2014-02-03 11:37 - 2014-02-03 11:37 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2780091$
2014-02-03 11:37 - 2014-02-03 11:37 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2510581$
2014-02-03 11:37 - 2014-02-03 11:37 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2507938$
2014-02-03 11:37 - 2014-02-03 11:36 - 00052317 _____ () C:\WINDOWS\KB956572.log
2014-02-03 11:37 - 2014-02-03 11:14 - 00061996 _____ () C:\WINDOWS\KB2780091.log
2014-02-03 11:37 - 2014-02-03 11:13 - 00061062 _____ () C:\WINDOWS\KB2507938.log
2014-02-03 11:37 - 2014-02-03 11:13 - 00061058 _____ () C:\WINDOWS\KB982132.log
2014-02-03 11:37 - 2014-02-03 11:13 - 00060834 _____ () C:\WINDOWS\KB978338.log
2014-02-03 11:37 - 2014-02-03 11:12 - 00062750 _____ () C:\WINDOWS\KB2510581.log
2014-02-03 11:37 - 2014-02-03 11:12 - 00060499 _____ () C:\WINDOWS\KB971657.log
2014-02-03 11:37 - 2014-02-03 11:12 - 00059782 _____ () C:\WINDOWS\KB974112.log
2014-02-03 11:37 - 2014-02-03 11:12 - 00058089 _____ () C:\WINDOWS\KB2845187.log
2014-02-03 11:36 - 2014-02-03 11:36 - 00046889 _____ () C:\WINDOWS\KB956844.log
2014-02-03 11:36 - 2014-02-03 11:36 - 00046053 _____ () C:\WINDOWS\KB973869.log
2014-02-03 11:36 - 2014-02-03 11:36 - 00045229 _____ () C:\WINDOWS\KB2904266.log
2014-02-03 11:36 - 2014-02-03 11:36 - 00006732 _____ () C:\WINDOWS\system32\TZLog.log
2014-02-03 11:36 - 2014-02-03 11:36 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB979687$
2014-02-03 11:36 - 2014-02-03 11:36 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB975025$
2014-02-03 11:36 - 2014-02-03 11:36 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB973869$
2014-02-03 11:36 - 2014-02-03 11:36 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB956844$
2014-02-03 11:36 - 2014-02-03 11:36 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB956572$
2014-02-03 11:36 - 2014-02-03 11:36 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2904266$
2014-02-03 11:36 - 2014-02-03 11:36 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2876217$
2014-02-03 11:36 - 2014-02-03 11:36 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2864063$
2014-02-03 11:36 - 2014-02-03 11:36 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2483185$
2014-02-03 11:36 - 2014-02-03 11:36 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2347290$
2014-02-03 11:36 - 2014-02-03 11:12 - 00055032 _____ () C:\WINDOWS\KB2876217.log
2014-02-03 11:36 - 2014-02-03 11:11 - 00057652 _____ () C:\WINDOWS\KB979687.log
2014-02-03 11:36 - 2014-02-03 11:11 - 00057550 _____ () C:\WINDOWS\KB2483185.log
2014-02-03 11:36 - 2014-02-03 11:11 - 00053928 _____ () C:\WINDOWS\KB2864063.log
2014-02-03 11:36 - 2014-02-03 11:10 - 00055401 _____ () C:\WINDOWS\KB2719985.log
2014-02-03 11:36 - 2014-02-03 11:10 - 00054844 _____ () C:\WINDOWS\KB975025.log
2014-02-03 11:35 - 2014-02-03 11:35 - 00043050 _____ () C:\WINDOWS\KB2592799.log
2014-02-03 11:35 - 2014-02-03 11:35 - 00042871 _____ () C:\WINDOWS\KB2535512.log
2014-02-03 11:35 - 2014-02-03 11:35 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB977816$
2014-02-03 11:35 - 2014-02-03 11:35 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB975560$
2014-02-03 11:35 - 2014-02-03 11:35 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB974571$
2014-02-03 11:35 - 2014-02-03 11:35 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB973507$
2014-02-03 11:35 - 2014-02-03 11:35 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB952004$
2014-02-03 11:35 - 2014-02-03 11:35 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2862152$
2014-02-03 11:35 - 2014-02-03 11:35 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2850869$
2014-02-03 11:35 - 2014-02-03 11:35 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2770660$
2014-02-03 11:35 - 2014-02-03 11:35 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2719985$
2014-02-03 11:35 - 2014-02-03 11:35 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2592799$
2014-02-03 11:35 - 2014-02-03 11:35 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2535512$
2014-02-03 11:35 - 2014-02-03 11:34 - 00042394 _____ () C:\WINDOWS\KB950762.log
2014-02-03 11:35 - 2014-02-03 11:11 - 00049776 _____ () C:\WINDOWS\KB2850869.log
2014-02-03 11:35 - 2014-02-03 11:10 - 00050261 _____ () C:\WINDOWS\KB2862152.log
2014-02-03 11:35 - 2014-02-03 11:09 - 00055101 _____ () C:\WINDOWS\KB952004.log
2014-02-03 11:35 - 2014-02-03 11:09 - 00051692 _____ () C:\WINDOWS\KB974571.log
2014-02-03 11:35 - 2014-02-03 11:08 - 00051084 _____ () C:\WINDOWS\KB973507.log
2014-02-03 11:35 - 2014-02-03 11:08 - 00050462 _____ () C:\WINDOWS\KB977816.log
2014-02-03 11:34 - 2014-02-03 11:34 - 00042155 _____ () C:\WINDOWS\KB2807986.log
2014-02-03 11:34 - 2014-02-03 11:34 - 00041624 _____ () C:\WINDOWS\KB2570947.log
2014-02-03 11:34 - 2014-02-03 11:34 - 00041569 _____ () C:\WINDOWS\KB952287.log
2014-02-03 11:34 - 2014-02-03 11:34 - 00041454 _____ () C:\WINDOWS\KB2868038.log
2014-02-03 11:34 - 2014-02-03 11:34 - 00041158 _____ () C:\WINDOWS\KB2603381.log
2014-02-03 11:34 - 2014-02-03 11:34 - 00036819 _____ () C:\WINDOWS\KB978695.log
2014-02-03 11:34 - 2014-02-03 11:34 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB978695_WM9$
2014-02-03 11:34 - 2014-02-03 11:34 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB952287$
2014-02-03 11:34 - 2014-02-03 11:34 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB950762$
2014-02-03 11:34 - 2014-02-03 11:34 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2876331$
2014-02-03 11:34 - 2014-02-03 11:34 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2868038$
2014-02-03 11:34 - 2014-02-03 11:34 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2859537$
2014-02-03 11:34 - 2014-02-03 11:34 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2820917$
2014-02-03 11:34 - 2014-02-03 11:34 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2807986$
2014-02-03 11:34 - 2014-02-03 11:34 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2603381$
2014-02-03 11:34 - 2014-02-03 11:34 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2570947$
2014-02-03 11:34 - 2014-02-03 11:33 - 00042203 _____ () C:\WINDOWS\KB973904.log
2014-02-03 11:34 - 2014-02-03 11:11 - 00050503 _____ () C:\WINDOWS\KB2859537.log
2014-02-03 11:34 - 2014-02-03 11:11 - 00049558 _____ () C:\WINDOWS\KB2876331.log
2014-02-03 11:34 - 2014-02-03 11:10 - 00051046 _____ () C:\WINDOWS\KB2820917.log
2014-02-03 11:33 - 2014-02-03 11:33 - 00026087 _____ () C:\WINDOWS\KB976002-v5.log
2014-02-03 11:33 - 2014-02-03 11:33 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB974392$
2014-02-03 11:33 - 2014-02-03 11:33 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB973904$
2014-02-03 11:33 - 2014-02-03 11:33 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB973540_WM9$
2014-02-03 11:33 - 2014-02-03 11:33 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB971029$
2014-02-03 11:33 - 2014-02-03 11:33 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2893294$
2014-02-03 11:33 - 2014-02-03 11:33 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2757638$
2014-02-03 11:33 - 2014-02-03 11:33 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2749655$
2014-02-03 11:33 - 2014-02-03 11:33 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2653956$
2014-02-03 11:33 - 2014-02-03 11:33 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2508429$
2014-02-03 11:33 - 2014-02-03 11:33 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2419632$
2014-02-03 11:33 - 2014-02-03 11:32 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2506212$
2014-02-03 11:33 - 2014-02-03 11:11 - 00050432 _____ () C:\WINDOWS\KB2757638.log
2014-02-03 11:33 - 2014-02-03 11:10 - 00048250 _____ () C:\WINDOWS\KB2893294.log
2014-02-03 11:33 - 2014-02-03 11:10 - 00043625 _____ () C:\WINDOWS\KB2749655.log
2014-02-03 11:33 - 2014-02-03 11:09 - 00044686 _____ () C:\WINDOWS\KB2508429.log
2014-02-03 11:33 - 2014-02-03 11:09 - 00042813 _____ () C:\WINDOWS\KB971029.log
2014-02-03 11:33 - 2014-02-03 11:08 - 00050653 _____ () C:\WINDOWS\KB2419632.log
2014-02-03 11:33 - 2014-02-03 11:08 - 00043042 _____ () C:\WINDOWS\KB2653956.log
2014-02-03 11:33 - 2014-02-03 11:08 - 00042559 _____ () C:\WINDOWS\KB974392.log
2014-02-03 11:33 - 2014-02-03 11:08 - 00041668 _____ () C:\WINDOWS\KB2506212.log
2014-02-03 11:32 - 2014-02-03 11:32 - 00033733 _____ () C:\WINDOWS\KB2698365.log
2014-02-03 11:32 - 2014-02-03 11:32 - 00028723 _____ () C:\WINDOWS\KB952069.log
2014-02-03 11:32 - 2014-02-03 11:32 - 00025342 _____ () C:\WINDOWS\KB2803821-v2.log
2014-02-03 11:32 - 2014-02-03 11:32 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB979482$
2014-02-03 11:32 - 2014-02-03 11:32 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB979309$
2014-02-03 11:32 - 2014-02-03 11:32 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB978542$
2014-02-03 11:32 - 2014-02-03 11:32 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB977914$
2014-02-03 11:32 - 2014-02-03 11:32 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB952069_WM9$
2014-02-03 11:32 - 2014-02-03 11:32 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2893984$
2014-02-03 11:32 - 2014-02-03 11:32 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2892075$
2014-02-03 11:32 - 2014-02-03 11:32 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2803821-v2_WM9$
2014-02-03 11:32 - 2014-02-03 11:32 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2727528$
2014-02-03 11:32 - 2014-02-03 11:32 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2705219-v2$
2014-02-03 11:32 - 2014-02-03 11:32 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2698365$
2014-02-03 11:32 - 2014-02-03 11:32 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2619339$
2014-02-03 11:32 - 2014-02-03 11:10 - 00040259 _____ () C:\WINDOWS\KB2893984.log
2014-02-03 11:32 - 2014-02-03 11:10 - 00039257 _____ () C:\WINDOWS\KB2892075.log
2014-02-03 11:32 - 2014-02-03 11:09 - 00042579 _____ () C:\WINDOWS\KB977914.log
2014-02-03 11:32 - 2014-02-03 11:07 - 00040173 _____ () C:\WINDOWS\KB2705219-v2.log
2014-02-03 11:32 - 2014-02-03 11:07 - 00039467 _____ () C:\WINDOWS\KB2619339.log
2014-02-03 11:32 - 2014-02-03 11:07 - 00038627 _____ () C:\WINDOWS\KB2727528.log
2014-02-03 11:32 - 2014-02-03 11:07 - 00038532 _____ () C:\WINDOWS\KB979482.log
2014-02-03 11:32 - 2014-02-03 11:06 - 00038155 _____ () C:\WINDOWS\KB978542.log
2014-02-03 11:32 - 2014-02-03 11:03 - 00037244 _____ () C:\WINDOWS\KB979309.log
2014-02-03 11:31 - 2014-02-03 11:31 - 00032162 _____ () C:\WINDOWS\KB2723135-v2.log
2014-02-03 11:31 - 2014-02-03 11:31 - 00031528 _____ () C:\WINDOWS\KB981997.log
2014-02-03 11:31 - 2014-02-03 11:31 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB981997$
2014-02-03 11:31 - 2014-02-03 11:31 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB978706$
2014-02-03 11:31 - 2014-02-03 11:31 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB973815$
2014-02-03 11:31 - 2014-02-03 11:31 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB960803$
2014-02-03 11:31 - 2014-02-03 11:31 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2862330$
2014-02-03 11:31 - 2014-02-03 11:31 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2813345$
2014-02-03 11:31 - 2014-02-03 11:31 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2723135-v2$
2014-02-03 11:31 - 2014-02-03 11:31 - 00000000 ____D () C:\WINDOWS\ie7updates
2014-02-03 11:31 - 2014-02-03 11:07 - 00104155 _____ () C:\WINDOWS\KB2898785-IE7.log
2014-02-03 11:31 - 2014-02-03 11:07 - 00028907 _____ () C:\WINDOWS\KB2813345.log
2014-02-03 11:31 - 2014-02-03 11:06 - 00038235 _____ () C:\WINDOWS\KB978706.log
2014-02-03 11:31 - 2014-02-03 11:06 - 00028731 _____ () C:\WINDOWS\KB2509553.log
2014-02-03 11:31 - 2014-02-03 11:06 - 00027403 _____ () C:\WINDOWS\KB960803.log
2014-02-03 11:31 - 2014-02-03 11:05 - 00026504 _____ () C:\WINDOWS\KB973815.log
2014-02-03 11:31 - 2008-07-21 06:01 - 00000000 ____D () C:\Programme\Movie Maker
2014-02-03 11:30 - 2014-02-03 11:30 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2676562$
2014-02-03 11:30 - 2014-02-03 11:30 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2509553$
2014-02-03 11:30 - 2014-02-03 11:28 - 00000000 ____D () C:\WINDOWS\system32\MRT
2014-02-03 11:30 - 2014-02-03 11:06 - 00030046 _____ () C:\WINDOWS\KB2676562.log
2014-02-03 11:28 - 2014-02-03 11:28 - 00020910 _____ () C:\WINDOWS\KB2393802.log
2014-02-03 11:28 - 2014-02-03 11:28 - 00019275 _____ () C:\WINDOWS\KB923561.log
2014-02-03 11:28 - 2014-02-03 11:28 - 00017569 _____ () C:\WINDOWS\KB2566454.log
2014-02-03 11:28 - 2014-02-03 11:28 - 00017362 _____ () C:\WINDOWS\KB2661637.log
2014-02-03 11:28 - 2014-02-03 11:28 - 00015166 _____ () C:\WINDOWS\KB2914368.log
2014-02-03 11:28 - 2014-02-03 11:28 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB982665$
2014-02-03 11:28 - 2014-02-03 11:28 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB923561$
2014-02-03 11:28 - 2014-02-03 11:28 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2914368$
2014-02-03 11:28 - 2014-02-03 11:28 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2661637$
2014-02-03 11:28 - 2014-02-03 11:28 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2620712$
2014-02-03 11:28 - 2014-02-03 11:28 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2566454$
2014-02-03 11:28 - 2014-02-03 11:28 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2478960$
2014-02-03 11:28 - 2014-02-03 11:28 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2393802$
2014-02-03 11:28 - 2014-02-03 11:06 - 00024980 _____ () C:\WINDOWS\KB982665.log
2014-02-03 11:28 - 2014-02-03 11:05 - 00023952 _____ () C:\WINDOWS\KB2620712.log
2014-02-03 11:27 - 2014-02-03 11:27 - 00014732 _____ () C:\WINDOWS\KB2423089.log
2014-02-03 11:27 - 2014-02-03 11:27 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB975467$
2014-02-03 11:27 - 2014-02-03 11:27 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB968389$
2014-02-03 11:27 - 2014-02-03 11:27 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2584146$
2014-02-03 11:27 - 2014-02-03 11:27 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2423089$
2014-02-03 11:27 - 2014-02-03 11:02 - 00023262 _____ () C:\WINDOWS\KB2584146.log
2014-02-03 11:27 - 2014-02-03 11:01 - 00024700 _____ () C:\WINDOWS\KB968389.log
2014-02-03 11:27 - 2014-02-03 11:01 - 00024063 _____ () C:\WINDOWS\KB975467.log
2014-02-03 11:00 - 2014-02-03 11:00 - 00000000 ____D () C:\WINDOWS\system32\PreInstall
2014-02-03 11:00 - 2014-02-03 10:59 - 00008472 _____ () C:\WINDOWS\KB898461.log
2014-02-03 10:59 - 2014-02-03 10:59 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB898461$
2014-02-03 09:10 - 2008-07-21 17:01 - 00000000 ____D () C:\SWTOOLS
2014-02-03 09:10 - 2008-07-21 15:45 - 00000000 ____D () C:\I386
2014-02-03 09:09 - 2014-02-03 09:09 - 00000779 _____ () C:\Dokumente und Einstellungen\Marco\Startmenü\Programme\Windows Media Player.lnk
2014-02-03 09:09 - 2014-02-03 09:09 - 00000725 _____ () C:\Dokumente und Einstellungen\Marco\Startmenü\Programme\Outlook Express.lnk
2014-02-03 09:09 - 2014-02-03 09:09 - 00000050 _____ () C:\WINDOWS\system32\Drivers\Lenovo_4068_4WG.MRK
2014-02-03 09:09 - 2014-02-03 09:09 - 00000000 __SHD () C:\Dokumente und Einstellungen\Marco\Lokale Einstellungen\Verlauf
2014-02-03 09:09 - 2014-02-03 09:09 - 00000000 ____D () C:\Programme\Windows Live Toolbar
2014-02-03 09:09 - 2008-07-21 06:56 - 00000000 ___RD () C:\Dokumente und Einstellungen\Default User\Startmenü\Programme
2014-02-03 09:09 - 2008-07-21 06:01 - 00000000 ____D () C:\WINDOWS\system32\Restore
2014-02-03 09:08 - 2014-02-03 07:07 - 00000000 ____D () C:\Dokumente und Einstellungen\Administrator
2014-02-03 09:08 - 2008-07-21 15:51 - 00000211 __RSH () C:\boot.ini
2014-02-03 09:08 - 2008-07-21 06:56 - 00214550 _____ () C:\WINDOWS\setupact.log
2014-02-03 08:36 - 2008-07-21 15:51 - 00002278 _____ () C:\WINDOWS\system32\wpa.dbl
2014-02-03 08:36 - 2008-07-21 06:00 - 00004541 _____ () C:\WINDOWS\sessmgr.setup.log
2014-02-03 08:36 - 2008-07-21 06:00 - 00000626 _____ () C:\WINDOWS\DtcInstall.log
2014-02-03 08:35 - 2008-07-21 06:56 - 00005208 _____ () C:\WINDOWS\system32\pid.PNF
2014-02-03 08:35 - 2008-07-21 06:56 - 00004118 _____ () C:\WINDOWS\regopt.log
2014-02-03 07:35 - 2014-02-03 07:35 - 00008192 _____ () C:\WINDOWS\REGLOCS.OLD
2014-02-03 07:35 - 2008-07-21 15:51 - 00000231 _____ () C:\WINDOWS\system.ini
2014-02-03 07:33 - 2014-02-03 09:08 - 00000190 ___SH () C:\Dokumente und Einstellungen\Default User\ntuser.ini
2014-02-03 07:33 - 2008-07-21 06:56 - 00000000 __SHD () C:\Dokumente und Einstellungen\Default User\Lokale Einstellungen\Verlauf
2014-02-03 07:33 - 2008-07-21 06:05 - 00000000 ___HD () C:\Dokumente und Einstellungen\NetworkService\Lokale Einstellungen\Verlauf
2014-02-03 07:32 - 2014-02-03 07:32 - 00000061 _____ () C:\WINDOWS\smscfg.ini
2014-02-03 07:32 - 2008-07-21 06:02 - 00000000 __SHD () C:\Dokumente und Einstellungen\All Users\DRM
2014-02-03 07:31 - 2014-02-03 07:31 - 00000000 ___HD () C:\QSTART.SYS
2014-02-03 07:31 - 2014-02-03 07:31 - 00000000 ___HD () C:\QSTART.000
2014-02-03 07:31 - 2014-02-03 07:31 - 00000000 ____D () C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Lenovo Quick Start
2014-02-03 07:31 - 2008-09-10 15:15 - 00000061 _____ () C:\splash.idx
2014-02-03 07:30 - 2014-02-03 07:30 - 00030049 _____ () C:\WINDOWS\DirectX.log
2014-02-03 07:30 - 2014-02-03 07:30 - 00006240 _____ () C:\WINDOWS\DPINST.LOG
2014-02-03 07:30 - 2014-02-03 07:30 - 00001942 _____ () C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Windows Live Fotogalerie.lnk
2014-02-03 07:30 - 2014-02-03 07:30 - 00000000 ____D () C:\Programme\Downloaded Installations
2014-02-03 07:30 - 2014-02-03 07:29 - 00000000 ____D () C:\Programme\Windows Live
2014-02-03 07:30 - 2014-02-03 07:29 - 00000000 ____D () C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Windows Live
2014-02-03 07:30 - 2008-07-21 06:01 - 00000000 ____D () C:\WINDOWS\system32\DirectX
2014-02-03 07:28 - 2014-02-03 09:09 - 00001949 _____ () C:\Dokumente und Einstellungen\Marco\Startmenü\Programme\Symantec Install NIS    (Norton Internet Security).lnk
2014-02-03 07:28 - 2014-02-03 09:08 - 00001949 _____ () C:\Dokumente und Einstellungen\Default User\Startmenü\Programme\Symantec Install NIS    (Norton Internet Security).lnk
2014-02-03 07:28 - 2014-02-03 09:08 - 00001943 _____ () C:\Dokumente und Einstellungen\Default User\Desktop\Symantec Install NIS    (Norton Internet Security).lnk
2014-02-03 07:28 - 2014-02-03 07:28 - 00000000 ____D () C:\Programme\Microsoft SQL Server Compact Edition
2014-02-03 07:28 - 2014-02-03 07:16 - 00000000 ___HD () C:\Programme\InstallShield Installation Information
2014-02-03 07:25 - 2014-02-03 09:08 - 00000000 ____D () C:\Dokumente und Einstellungen\Default User\Lokale Einstellungen\Anwendungsdaten\Adobe
2014-02-03 07:24 - 2014-02-03 07:24 - 00000047 _____ () C:\WINDOWS\system32\Drivers\IBM_4068_4WG.MRK
2014-02-03 07:23 - 2014-02-03 07:23 - 00000000 ____D () C:\WINDOWS\system32\(null)
2014-02-03 07:23 - 2014-02-03 07:23 - 00000000 ____D () C:\Programme\Gemeinsame Dateien\Lenovo
2014-02-03 07:23 - 2014-02-03 07:23 - 00000000 ____D () C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\ThinkVantage
2014-02-03 07:23 - 2014-02-03 07:23 - 00000000 ____D () C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\PC-Doctor 5 für Windows
2014-02-03 07:23 - 2014-02-03 07:23 - 00000000 ____D () C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\PC-Doctor
2014-02-03 07:23 - 2014-02-03 07:22 - 00000000 ____D () C:\Programme\PCDR5
2014-02-03 07:23 - 2014-02-03 07:14 - 00000000 ____D () C:\Programme\Lenovo
2014-02-03 07:22 - 2014-02-03 07:22 - 00940794 _____ () C:\WINDOWS\system32\LoopyMusic.wav
2014-02-03 07:22 - 2014-02-03 07:22 - 00146650 _____ () C:\WINDOWS\system32\BuzzingBee.wav
2014-02-03 07:22 - 2014-02-03 07:13 - 00000000 ____D () C:\WINDOWS\system32\ReinstallBackups
2014-02-03 07:21 - 2014-02-03 09:09 - 00000000 ___RD () C:\Dokumente und Einstellungen\Marco\Startmenü\Programme\Zubehör
2014-02-03 07:21 - 2014-02-03 09:08 - 00000790 _____ () C:\Dokumente und Einstellungen\Default User\Startmenü\Programme\Internet Explorer.lnk
2014-02-03 07:21 - 2014-02-03 09:08 - 00000000 ___RD () C:\Dokumente und Einstellungen\Default User\Eigene Dateien\Eigene Musik
2014-02-03 07:21 - 2014-02-03 09:08 - 00000000 ___RD () C:\Dokumente und Einstellungen\Default User\Eigene Dateien\Eigene Bilder
2014-02-03 07:21 - 2014-02-03 07:21 - 00000000 ____D () C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\USB2.0 Card Reader Software
2014-02-03 07:21 - 2014-02-03 07:16 - 00000000 ____D () C:\Programme\Realtek
2014-02-03 07:21 - 2008-07-21 06:01 - 00000000 ___RD () C:\Dokumente und Einstellungen\Default User\Startmenü\Programme\Zubehör
2014-02-03 07:18 - 2014-02-03 07:18 - 00000000 ____D () C:\WINDOWS\system32\Lang
2014-02-03 07:18 - 2014-02-03 07:13 - 00065536 _____ () C:\WINDOWS\system32\config\Internet.evt
2014-02-03 07:17 - 2014-02-03 07:17 - 00000000 ____D () C:\Programme\Broadcom
2014-02-03 07:17 - 2014-02-03 07:16 - 00000538 _____ () C:\RHDSetup.log
2014-02-03 07:17 - 2014-02-03 07:16 - 00000000 ____D () C:\WINDOWS\system32\RTCOM
2014-02-03 07:16 - 2014-02-03 09:09 - 00000000 ____D () C:\Dokumente und Einstellungen\Marco\Anwendungsdaten\InstallShield
2014-02-03 07:16 - 2014-02-03 09:08 - 00000000 ____D () C:\Dokumente und Einstellungen\Default User\Anwendungsdaten\InstallShield
2014-02-03 07:16 - 2014-02-03 07:16 - 00319488 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\HideWin.exe
2014-02-03 07:16 - 2014-02-03 07:16 - 00000000 ____D () C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Lenovo
2014-02-03 07:16 - 2014-02-03 07:13 - 00000000 ____D () C:\Programme\Gemeinsame Dateien\InstallShield
2014-02-03 07:15 - 2014-02-03 09:09 - 00000000 ____D () C:\Dokumente und Einstellungen\Marco\Eigene Dateien\Bluetooth-Exchange-Ordner
2014-02-03 07:15 - 2014-02-03 09:09 - 00000000 ____D () C:\Dokumente und Einstellungen\Marco\Bluetooth Software
2014-02-03 07:15 - 2014-02-03 09:08 - 00000000 ____D () C:\Dokumente und Einstellungen\Default User\Eigene Dateien\Bluetooth-Exchange-Ordner
2014-02-03 07:15 - 2014-02-03 09:08 - 00000000 ____D () C:\Dokumente und Einstellungen\Default User\Bluetooth Software
2014-02-03 07:15 - 2014-02-03 07:15 - 00000000 ____D () C:\Programme\Intel
2014-02-03 07:15 - 2014-02-03 07:15 - 00000000 ____D () C:\Intel
2014-02-03 07:14 - 2014-02-03 07:14 - 00000322 _____ () C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Bluetooth-Umgebung.lnk
2014-02-03 07:14 - 2014-02-03 07:14 - 00000322 _____ () C:\Dokumente und Einstellungen\All Users\Startmenü\Bluetooth-Umgebung.lnk
2014-02-03 07:14 - 2008-07-21 06:56 - 00000000 ___RD () C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Autostart
2014-02-03 07:14 - 2008-07-21 06:56 - 00000000 ___RD () C:\Dokumente und Einstellungen\All Users\Startmenü
2014-02-03 07:13 - 2014-02-03 07:13 - 00000651 _____ () C:\WINDOWS\SynInst.log
2014-02-03 07:13 - 2014-02-03 07:13 - 00000000 ____D () C:\Programme\Synaptics
2014-02-03 07:13 - 2014-02-03 07:12 - 00000000 __HDC () C:\WINDOWS\ie7
2014-02-03 07:13 - 2014-02-03 07:11 - 00035205 _____ () C:\WINDOWS\ie7.log
2014-02-03 07:13 - 2014-02-03 07:11 - 00015815 _____ () C:\WINDOWS\ie7_main.log
2014-02-03 07:11 - 2014-02-03 07:11 - 00004512 _____ () C:\WINDOWS\KB949764.log
2014-02-03 07:11 - 2014-02-03 07:11 - 00004500 _____ () C:\WINDOWS\IDNMitigationAPIs.log
2014-02-03 07:11 - 2014-02-03 07:11 - 00003122 _____ () C:\WINDOWS\NLSDownlevelMapping.log
2014-02-03 07:11 - 2014-02-03 07:11 - 00002331 _____ () C:\WINDOWS\KB928388.log
2014-02-03 07:11 - 2014-02-03 07:11 - 00001937 _____ () C:\WINDOWS\KB915865.log
2014-02-03 07:11 - 2014-02-03 07:11 - 00000000 __HDC () C:\WINDOWS\$NtServicePackUninstallNLSDownlevelMapping$
2014-02-03 07:11 - 2014-02-03 07:11 - 00000000 __HDC () C:\WINDOWS\$NtServicePackUninstallIDNMitigationAPIs$
2014-02-03 07:07 - 2008-07-21 06:56 - 01215661 _____ () C:\WINDOWS\setupapi.log.0.old
2014-02-03 07:06 - 2008-07-21 05:59 - 00000000 ___RD () C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Zubehör
2014-01-06 16:20 - 2014-02-03 11:28 - 83425928 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe

Some content of TEMP:
====================
C:\Dokumente und Einstellungen\Marco\Lokale Einstellungen\Temp\avgnt.exe
C:\Dokumente und Einstellungen\Marco\Lokale Einstellungen\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmplqu2r2.dll


==================== Bamital & volsnap Check =================

C:\WINDOWS\explorer.exe
[2008-07-21 15:50] - [2008-04-14 13:00] - 1036800 ____A (Microsoft Corporation) 418045a93cd87a352098ab7dabe1b53e 

C:\WINDOWS\system32\winlogon.exe
[2008-07-21 15:51] - [2008-04-14 13:00] - 0513024 ____A (Microsoft Corporation) f09a527b422e25c478e38caa0e44417a 

C:\WINDOWS\system32\svchost.exe
[2008-07-21 15:51] - [2008-04-14 13:00] - 0014336 ____A (Microsoft Corporation) 4fbc75b74479c7a6f829e0ca19df3366 

C:\WINDOWS\system32\services.exe
[2008-07-21 15:51] - [2009-02-09 12:21] - 0111104 ____A (Microsoft Corporation) a3edbe9053889fb24ab22492472b39dc 

C:\WINDOWS\system32\User32.dll
[2008-07-21 15:51] - [2008-04-14 13:00] - 0580096 ____A (Microsoft Corporation) b0050cc5340e3a0760dd8b417ff7aebd 

C:\WINDOWS\system32\userinit.exe
[2008-07-21 15:51] - [2008-04-14 13:00] - 0026624 ____A (Microsoft Corporation) 788f95312e26389d596c0fa55834e106 

C:\WINDOWS\system32\rpcss.dll
[2008-07-21 15:51] - [2009-02-09 11:51] - 0401408 ____A (Microsoft Corporation) 3127afbf2c1ed0ab14a1bbb7aaecb85b 

 ATTENTION ======> If the system is having audio adware rpcss.dll is patched. Google the MD5, if the MD5 is unique the file is infected.
C:\WINDOWS\system32\Drivers\volsnap.sys
[2008-07-21 15:51] - [2008-04-14 13:00] - 0053760 ____A (Microsoft Corporation) a5a712f4e880874a477af790b5186e1d 


==================== End Of Log ============================

--- --- ---
[/CODE]

mb82 · 04.02.2014, 19:32

Und der Teilauszug von GMER (bis zum Absturz)

Code:

ATTFilter

GMER 2.1.19357 - hxxp://www.gmer.net
Rootkit scan 2014-02-04 14:32:58
Windows 5.1.2600 Service Pack 3 \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP1T0L0-5 HITACHI_HTS543216L9SA00 rev.FB2ZC48C 149,05GB
Running: Gmer-19357.exe; Driver: C:\DOKUME~1\Marco\LOKALE~1\Temp\kgrcafog.sys


---- System - GMER 2.1 ----

SSDT      BA79D414                                                       ZwClose
SSDT      BA79D3CE                                                       ZwCreateKey
SSDT      BA79D41E                                                       ZwCreateSection
SSDT      BA79D3F6                                                       ZwCreateSymbolicLinkObject
SSDT      BA79D3C4                                                       ZwCreateThread
SSDT      BA79D3D3                                                       ZwDeleteKey
SSDT      BA79D3DD                                                       ZwDeleteValueKey
SSDT      BA79D40F                                                       ZwDuplicateObject
SSDT      BA79D3FB                                                       ZwLoadDriver
SSDT      BA79D3E2                                                       ZwLoadKey
SSDT      BA79D3B0                                                       ZwOpenProcess
SSDT      BA79D3F1                                                       ZwOpenSection
SSDT      BA79D3B5                                                       ZwOpenThread
SSDT      BA79D437                                                       ZwQueryValueKey
SSDT      BA79D3EC                                                       ZwReplaceKey
SSDT      BA79D428                                                       ZwRequestWaitReplyPort
SSDT      BA79D3E7                                                       ZwRestoreKey
SSDT      BA79D423                                                       ZwSetContextThread
SSDT      BA79D42D                                                       ZwSetSecurityObject
SSDT      BA79D400                                                       ZwSetSystemInformation
SSDT      BA79D3D8                                                       ZwSetValueKey
SSDT      BA79D432                                                       ZwSystemDebugControl
SSDT      BA79D3BF                                                       ZwTerminateProcess
SSDT      BA79D3BA                                                       ZwWriteVirtualMemory
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwAcceptConnectPort [0x805A4664]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwAccessCheck [0x805F13EA]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwAccessCheckAndAuditAlarm [0x805F4C20]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwAccessCheckByType [0x805F141C]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwAccessCheckByTypeAndAuditAlarm [0x805F4C5A]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwAccessCheckByTypeResultList [0x805F1452]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwAccessCheckByTypeResultListAndAuditAlarm [0x805F4C9E]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwAccessCheckByTypeResultListAndAuditAlarmByHandle [0x805F4CE2]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwAddAtom [0x80615E80]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwAddBootEntry [0x806170E4]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwAdjustGroupsToken [0x805EC7E8]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwAdjustPrivilegesToken [0x805EC440]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwAlertResumeThread [0x805D4C0C]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwAlertThread [0x805D4BBC]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwAllocateLocallyUniqueId [0x806164A6]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwAllocateUserPhysicalPages [0x805B5FEA]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwAllocateUuids [0x80615AC2]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwAllocateVirtualMemory [0x805A8AEE]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwAreMappedFilesTheSame [0x805B05FE]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwAssignProcessToJobObject [0x805D66D0]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwCallbackReturn [0x805018E8]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwCancelDeviceWakeupRequest [0x805C86A4]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwCancelIoFile [0x80576B04]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwCancelTimer [0x80538D88]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwClearEvent [0x8060F090]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwCloseObjectAuditAlarm [0x805F515A]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwCompactKeys [0x80623E3A]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwCompareTokens [0x805F966E]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwCompleteConnectPort [0x805A4D52]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwCompressKey [0x8062408E]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwConnectPort [0x805A4604]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwContinue [0x80544F98]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwCreateDebugObject [0x80642BD6]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwCreateDirectoryObject [0x805BE514]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwCreateEvent [0x8060F0E0]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwCreateEventPair [0x8061742A]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwCreateFile [0x805790A2]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwCreateIoCompletion [0x80578A80]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwCreateJobObject [0x805D5694]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwCreateJobSet [0x805D53CC]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwCreateMailslotFile [0x805791B0]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwCreateMutant [0x80617822]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwCreateNamedPipeFile [0x805790DC]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwCreatePagingFile [0x805ABA22]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwCreatePort [0x805A5120]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwCreateProcess [0x805D1280]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwCreateProcessEx [0x805D11CA]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwCreateProfile [0x80617C42]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwCreateSemaphore [0x806151E0]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwCreateTimer [0x806170F2]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwCreateToken [0x805F9A16]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwCreateWaitablePort [0x805A5144]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwDebugActiveProcess [0x80643CB2]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwDebugContinue [0x80643E02]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwDelayExecution [0x80616B04]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwDeleteAtom [0x80616336]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwDeleteFile [0x80576C4A]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwDeleteObjectAuditAlarm [0x805F5266]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwDeviceIoControlFile [0x80579268]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwDisplayString [0x8061315E]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwDuplicateToken [0x805ED696]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwEnumerateKey [0x80624AB6]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwEnumerateSystemEnvironmentValuesEx [0x80616BA6]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwEnumerateValueKey [0x80624D20]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwExtendSection [0x805B3D0A]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwFilterToken [0x805ED842]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwFindAtom [0x806160EA]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwFlushBuffersFile [0x80576D16]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwFlushInstructionCache [0x805B687E]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwFlushKey [0x80624F8A]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwFlushVirtualMemory [0x805AC750]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwFlushWriteBuffer [0x805B6820]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwFreeUserPhysicalPages [0x805B638C]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwFreeVirtualMemory [0x805B2FE6]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwFsControlFile [0x8057929C]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwGetContextThread [0x805D2A3A]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwGetDevicePowerState [0x805C86C6]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwGetPlugPlayEvent [0x8059914E]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwGetWriteWatch [0x80521292]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwImpersonateAnonymousToken [0x805F9362]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwImpersonateClientOfPort [0x805A51AE]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwImpersonateThread [0x805D7890]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwInitializeRegistry [0x806223AC]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwInitiatePowerAction [0x805C849E]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwIsProcessInJob [0x805D5290]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwIsSystemResumeAutomatic [0x805C86B2]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwListenPort [0x805A53BA]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwLoadKey2 [0x8062609A]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwLockFile [0x805792D0]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwLockProductActivationKeys [0x80613750]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwLockRegistryKey [0x8062413A]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwLockVirtualMemory [0x805B6986]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwMakePermanentObject [0x805BE30A]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwMakeTemporaryObject [0x805BC608]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwMapUserPhysicalPages [0x805B544A]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwMapUserPhysicalPagesScatter [0x805B599A]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwMapViewOfSection [0x805B206E]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwNotifyChangeDirectoryFile [0x80579EE8]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwNotifyChangeKey [0x80626458]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwNotifyChangeMultipleKeys [0x8062508C]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwOpenDirectoryObject [0x805BE5E6]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwOpenEvent [0x8060F1E0]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwOpenEventPair [0x80617502]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwOpenFile [0x8057A1A0]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwOpenIoCompletion [0x80578B58]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwOpenJobObject [0x805D581A]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwOpenKey [0x80625648]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwOpenMutant [0x806178FA]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwOpenObjectAuditAlarm [0x805F4D28]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwOpenProcessToken [0x805EE030]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwOpenProcessTokenEx [0x805EDC94]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwOpenSemaphore [0x806152DA]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwOpenSymbolicLinkObject [0x805C3C14]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwOpenThreadToken [0x805EE04E]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwOpenThreadTokenEx [0x805EDE04]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwOpenTimer [0x80617214]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwPlugPlayControl [0x80645EA4]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwPowerInformation [0x805C9534]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwPrivilegeCheck [0x805F8414]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwPrivilegeObjectAuditAlarm [0x805F403A]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwPrivilegedServiceAuditAlarm [0x805F4226]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwProtectVirtualMemory [0x805B8452]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwPulseEvent [0x8060F298]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwQueryAttributesFile [0x80576EF4]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwQueryDebugFilterState [0x8053FD7E]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwQueryDefaultLocale [0x80610E8A]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwQueryDefaultUILanguage [0x80611AEA]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwQueryDirectoryFile [0x80579E82]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwQueryDirectoryObject [0x805BE686]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwQueryEaFile [0x8057A1D0]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwQueryEvent [0x8060F360]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwQueryFullAttributesFile [0x80577048]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwQueryInformationAtom [0x8061635E]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwQueryInformationFile [0x8057AA3C]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwQueryInformationJobObject [0x805D5CEC]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwQueryInformationPort [0x805A5418]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwQueryInformationProcess [0x805CCFDA]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwQueryInformationThread [0x805CBC08]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwQueryInformationToken [0x805EE12E]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwQueryInstallUILanguage [0x80611288]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwQueryIntervalProfile [0x806180C4]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwQueryIoCompletion [0x80578C00]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwQueryKey [0x8062598A]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwQueryMultipleValueKey [0x806233B8]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwQueryMutant [0x806179A2]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwQueryObject [0x805C5300]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwQueryOpenSubKeys [0x80623A64]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwQueryPerformanceCounter [0x80618152]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwQueryQuotaInformationFile [0x8057B81E]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwQuerySection [0x805B8614]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwQuerySecurityObject [0x805C00CE]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwQuerySemaphore [0x80615392]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwQuerySymbolicLinkObject [0x805C3CB4]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwQuerySystemEnvironmentValue [0x80616BC2]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwQuerySystemEnvironmentValueEx [0x80616B98]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwQuerySystemInformation [0x80611B6A]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwQuerySystemTime [0x8061332A]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwQueryTimer [0x806172CC]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwQueryTimerResolution [0x806133BC]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwQueryVirtualMemory [0x805B8CA2]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwQueryVolumeInformationFile [0x8057BD08]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwQueueApcThread [0x805D2786]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwRaiseException [0x80544FE0]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwRaiseHardError [0x80615004]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwReadFile [0x8057C4A8]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwReadFileScatter [0x8057CA12]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwReadRequestData [0x805A5EA0]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwReadVirtualMemory [0x805B42F6]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwRegisterThreadTerminatePort [0x805D18A0]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwReleaseMutant [0x80617ADA]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwReleaseSemaphore [0x806154C2]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwRemoveIoCompletion [0x80578EF8]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwRemoveProcessDebug [0x80643D82]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwRenameKey [0x80623C8C]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwReplyPort [0x805A5520]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwReplyWaitReceivePort [0x805A64E8]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwReplyWaitReceivePortEx [0x805A5EF0]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwReplyWaitReplyPort [0x805A580A]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwRequestDeviceWakeup [0x805C8636]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwRequestPort [0x805A2A7E]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwRequestWakeupLatency [0x805C8444]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwResetEvent [0x8060F472]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwResetWriteWatch [0x8052177A]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwResumeProcess [0x805D4B66]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwResumeThread [0x805D4A48]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwSaveKey [0x80625D46]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwSaveKeyEx [0x80625E2C]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwSaveMergedKeys [0x80625F54]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwSecureConnectPort [0x805A3D98]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwSetDebugFilterState [0x80646A3A]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwSetDefaultHardErrorPort [0x80614EAE]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwSetDefaultLocale [0x80610FDA]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwSetDefaultUILanguage [0x8061184C]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwSetEaFile [0x8057A6E4]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwSetEvent [0x8060F532]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwSetEventBoostPriority [0x8060F5FC]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwSetHighEventPair [0x806177BE]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwSetHighWaitLowEventPair [0x806176EE]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwSetInformationDebugObject [0x8064374C]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwSetInformationFile [0x8057B02E]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwSetInformationJobObject [0x805D69FA]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwSetInformationKey [0x80622F84]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwSetInformationObject [0x805C4876]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwSetInformationProcess [0x805CDED0]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwSetInformationThread [0x805CC154]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwSetInformationToken [0x805FA790]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwSetIntervalProfile [0x80617C26]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwSetIoCompletion [0x80578E96]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwSetLdtEntries [0x805D3992]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwSetLowEventPair [0x8061775A]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwSetLowWaitHighEventPair [0x80617682]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwSetQuotaInformationFile [0x8057B7FC]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwSetSystemEnvironmentValue [0x80616E46]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwSetSystemPowerState [0x80653E18]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwSetSystemTime [0x80614632]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwSetThreadExecutionState [0x805C8358]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwSetTimer [0x80538F18]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwSetTimerResolution [0x80613B04]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwSetUuidSeed [0x80615978]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwSetVolumeInformationFile [0x8057C112]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwShutdownSystem [0x80613122]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwSignalAndWaitForSingleObject [0x80526870]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwStartProfile [0x80617E70]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwStopProfile [0x8061801A]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwSuspendProcess [0x805D4B10]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwSuspendThread [0x805D4982]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwTerminateJobObject [0x805D758E]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwTerminateThread [0x805D2502]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwTestAlert [0x805D4CD0]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwTraceEvent [0x805352A6]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwTranslateFilePath [0x80616BB4]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwUnloadDriver [0x80584306]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwUnloadKey [0x80622B06]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwUnloadKeyEx [0x80622D28]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwUnlockFile [0x80579674]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwUnlockVirtualMemory [0x805B6F14]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwUnmapViewOfSection [0x805B2E7C]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwVdmControl [0x805FBB48]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwWaitForDebugEvent [0x806434B4]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwWaitForMultipleObjects [0x805C0818]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwWaitForSingleObject [0x805C072E]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwWaitHighEventPair [0x8061761E]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwWaitLowEventPair [0x806175BA]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwWriteFile [0x8057CF10]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwWriteFileGather [0x8057D4F4]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwWriteRequestData [0x805A5EC8]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwYieldExecution [0x80504BF8]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwCreateKeyedEvent [0x80618696]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwOpenKeyedEvent [0x80618780]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwReleaseKeyedEvent [0x80618832]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwWaitForKeyedEvent [0x80618A8E]
SSDT      \WINDOWS\system32\ntkrnlpa.exe                                 ZwQueryPortInformationProcess [0x805CB988]

INT 0x00  \WINDOWS\system32\ntkrnlpa.exe                                 80542360
INT 0x01  \WINDOWS\system32\ntkrnlpa.exe                                 805424DC
INT 0x03  \WINDOWS\system32\ntkrnlpa.exe                                 805428F0
INT 0x04  \WINDOWS\system32\ntkrnlpa.exe                                 80542A70
INT 0x05  \WINDOWS\system32\ntkrnlpa.exe                                 80542BD0
INT 0x06  \WINDOWS\system32\ntkrnlpa.exe                                 80542D44
INT 0x07  \WINDOWS\system32\ntkrnlpa.exe                                 805433BC
INT 0x09  \WINDOWS\system32\ntkrnlpa.exe                                 805437C0
INT 0x0A  \WINDOWS\system32\ntkrnlpa.exe                                 805438E0
INT 0x0B  \WINDOWS\system32\ntkrnlpa.exe                                 80543A20
INT 0x0C  \WINDOWS\system32\ntkrnlpa.exe                                 80543C80
INT 0x0D  \WINDOWS\system32\ntkrnlpa.exe                                 80543F6C
INT 0x0E  \WINDOWS\system32\ntkrnlpa.exe                                 8054468C
INT 0x0F  \WINDOWS\system32\ntkrnlpa.exe                                 8054490C
INT 0x10  \WINDOWS\system32\ntkrnlpa.exe                                 80544A2C
INT 0x11  \WINDOWS\system32\ntkrnlpa.exe                                 80544B68
INT 0x12  \WINDOWS\system32\ntkrnlpa.exe                                 8054490C
INT 0x13  \WINDOWS\system32\ntkrnlpa.exe                                 80544CD0
INT 0x14  \WINDOWS\system32\ntkrnlpa.exe                                 8054490C
INT 0x15  \WINDOWS\system32\ntkrnlpa.exe                                 8054490C
INT 0x16  \WINDOWS\system32\ntkrnlpa.exe                                 8054490C
INT 0x17  \WINDOWS\system32\ntkrnlpa.exe                                 8054490C
INT 0x18  \WINDOWS\system32\ntkrnlpa.exe                                 8054490C
INT 0x19  \WINDOWS\system32\ntkrnlpa.exe                                 8054490C
INT 0x1A  \WINDOWS\system32\ntkrnlpa.exe                                 8054490C
INT 0x1B  \WINDOWS\system32\ntkrnlpa.exe                                 8054490C
INT 0x1C  \WINDOWS\system32\ntkrnlpa.exe                                 8054490C
INT 0x1D  \WINDOWS\system32\ntkrnlpa.exe                                 8054490C
INT 0x1E  \WINDOWS\system32\ntkrnlpa.exe                                 8054490C
INT 0x1F  \WINDOWS\system32\hal.dll                                      806E810C
INT 0x2A  \WINDOWS\system32\ntkrnlpa.exe                                 80541B8E
INT 0x2B  \WINDOWS\system32\ntkrnlpa.exe                                 80541C90
INT 0x2C  \WINDOWS\system32\ntkrnlpa.exe                                 80541E40
INT 0x2D  \WINDOWS\system32\ntkrnlpa.exe                                 805427CC
INT 0x2E  \WINDOWS\system32\ntkrnlpa.exe                                 80541611
INT 0x2F  \WINDOWS\system32\ntkrnlpa.exe                                 8054490C
INT 0x30  \WINDOWS\system32\ntkrnlpa.exe                                 80540CD0
INT 0x31  \WINDOWS\system32\ntkrnlpa.exe                                 80540CDA
INT 0x32  \WINDOWS\system32\ntkrnlpa.exe                                 80540CE4
INT 0x33  \WINDOWS\system32\ntkrnlpa.exe                                 80540CEE
INT 0x34  \WINDOWS\system32\ntkrnlpa.exe                                 80540CF8
INT 0x35  \WINDOWS\system32\ntkrnlpa.exe                                 80540D02
INT 0x36  \WINDOWS\system32\ntkrnlpa.exe                                 80540D0C
INT 0x37  \WINDOWS\system32\hal.dll                                      806E7864
INT 0x38  \WINDOWS\system32\ntkrnlpa.exe                                 80540D20
INT 0x39  \WINDOWS\system32\ntkrnlpa.exe                                 80540D2A
INT 0x3A  \WINDOWS\system32\ntkrnlpa.exe                                 80540D34
INT 0x3B  \WINDOWS\system32\ntkrnlpa.exe                                 80540D3E
INT 0x3C  \WINDOWS\system32\ntkrnlpa.exe                                 80540D48
INT 0x3D  \WINDOWS\system32\hal.dll                                      806E8E2C
INT 0x3E  \WINDOWS\system32\ntkrnlpa.exe                                 80540D5C
INT 0x3F  \WINDOWS\system32\ntkrnlpa.exe                                 80540D66
INT 0x40  \WINDOWS\system32\ntkrnlpa.exe                                 80540D70
INT 0x41  \WINDOWS\system32\hal.dll                                      806E8C88
INT 0x42  \WINDOWS\system32\ntkrnlpa.exe                                 80540D84
INT 0x43  \WINDOWS\system32\ntkrnlpa.exe                                 80540D8E
INT 0x44  \WINDOWS\system32\ntkrnlpa.exe                                 80540D98
INT 0x45  \WINDOWS\system32\ntkrnlpa.exe                                 80540DA2
INT 0x46  \WINDOWS\system32\ntkrnlpa.exe                                 80540DAC
INT 0x47  \WINDOWS\system32\ntkrnlpa.exe                                 80540DB6
INT 0x48  \WINDOWS\system32\ntkrnlpa.exe                                 80540DC0
INT 0x49  \WINDOWS\system32\ntkrnlpa.exe                                 80540DCA
INT 0x4A  \WINDOWS\system32\ntkrnlpa.exe                                 80540DD4
INT 0x4B  \WINDOWS\system32\ntkrnlpa.exe                                 80540DDE
INT 0x4C  \WINDOWS\system32\ntkrnlpa.exe                                 80540DE8
INT 0x4D  \WINDOWS\system32\ntkrnlpa.exe                                 80540DF2
INT 0x4E  \WINDOWS\system32\ntkrnlpa.exe                                 80540DFC
INT 0x4F  \WINDOWS\system32\ntkrnlpa.exe                                 80540E06
INT 0x50  \WINDOWS\system32\hal.dll                                      806E793C
INT 0x51  \WINDOWS\system32\ntkrnlpa.exe                                 80540E1A
INT 0x52  \WINDOWS\system32\ntkrnlpa.exe                                 80540E24
INT 0x53  \WINDOWS\system32\ntkrnlpa.exe                                 80540E2E
INT 0x54  \WINDOWS\system32\ntkrnlpa.exe                                 80540E38
INT 0x55  \WINDOWS\system32\ntkrnlpa.exe                                 80540E42
INT 0x56  \WINDOWS\system32\ntkrnlpa.exe                                 80540E4C
INT 0x57  \WINDOWS\system32\ntkrnlpa.exe                                 80540E56
INT 0x58  \WINDOWS\system32\ntkrnlpa.exe                                 80540E60
INT 0x59  \WINDOWS\system32\ntkrnlpa.exe                                 80540E6A
INT 0x5A  \WINDOWS\system32\ntkrnlpa.exe                                 80540E74
INT 0x5B  \WINDOWS\system32\ntkrnlpa.exe                                 80540E7E
INT 0x5C  \WINDOWS\system32\ntkrnlpa.exe                                 80540E88
INT 0x5D  \WINDOWS\system32\ntkrnlpa.exe                                 80540E92
INT 0x5E  \WINDOWS\system32\ntkrnlpa.exe                                 80540E9C
INT 0x5F  \WINDOWS\system32\ntkrnlpa.exe                                 80540EA6
INT 0x60  \WINDOWS\system32\ntkrnlpa.exe                                 80540EB0
INT 0x61  \WINDOWS\system32\ntkrnlpa.exe                                 80540EBA
INT 0x62  atapi.sys                                                      B9F1767E
INT 0x63  NDIS.sys                                                       B9E27E10
INT 0x64  \WINDOWS\system32\ntkrnlpa.exe                                 80540ED8
INT 0x65  \WINDOWS\system32\ntkrnlpa.exe                                 80540EE2
INT 0x66  \WINDOWS\system32\ntkrnlpa.exe                                 80540EEC
INT 0x67  \WINDOWS\system32\ntkrnlpa.exe                                 80540EF6
INT 0x68  \WINDOWS\system32\ntkrnlpa.exe                                 80540F00
INT 0x69  \WINDOWS\system32\ntkrnlpa.exe                                 80540F0A
INT 0x6A  \WINDOWS\system32\ntkrnlpa.exe                                 80540F14
INT 0x6B  \WINDOWS\system32\ntkrnlpa.exe                                 80540F1E
INT 0x6C  \WINDOWS\system32\ntkrnlpa.exe                                 80540F28
INT 0x6D  \WINDOWS\system32\ntkrnlpa.exe                                 80540F32
INT 0x6E  \WINDOWS\system32\ntkrnlpa.exe                                 80540F3C
INT 0x6F  \WINDOWS\system32\ntkrnlpa.exe                                 80540F46
INT 0x70  \WINDOWS\system32\ntkrnlpa.exe                                 80540F50
INT 0x71  \WINDOWS\system32\ntkrnlpa.exe                                 80540F5A
INT 0x72  \WINDOWS\system32\ntkrnlpa.exe                                 80540F64
INT 0x73  \SystemRoot\system32\DRIVERS\VIDEOPRT.SYS                      B97F3CB8
INT 0x73  \SystemRoot\system32\DRIVERS\USBPORT.SYS                       B9657ED2
INT 0x73  NDIS.sys                                                       B9E27E10
INT 0x73  \SystemRoot\system32\DRIVERS\VIDEOPRT.SYS                      B97F3CB8
INT 0x74  \WINDOWS\system32\ntkrnlpa.exe                                 80540F78
INT 0x75  \WINDOWS\system32\ntkrnlpa.exe                                 80540F82
INT 0x76  \WINDOWS\system32\ntkrnlpa.exe                                 80540F8C
INT 0x77  \WINDOWS\system32\ntkrnlpa.exe                                 80540F96
INT 0x78  \WINDOWS\system32\ntkrnlpa.exe                                 80540FA0
INT 0x79  \WINDOWS\system32\ntkrnlpa.exe                                 80540FAA
INT 0x7A  \WINDOWS\system32\ntkrnlpa.exe                                 80540FB4
INT 0x7B  \WINDOWS\system32\ntkrnlpa.exe                                 80540FBE
INT 0x7C  \WINDOWS\system32\ntkrnlpa.exe                                 80540FC8
INT 0x7D  \WINDOWS\system32\ntkrnlpa.exe                                 80540FD2
INT 0x7E  \WINDOWS\system32\ntkrnlpa.exe                                 80540FDC
INT 0x7F  \WINDOWS\system32\ntkrnlpa.exe                                 80540FE6
INT 0x80  \WINDOWS\system32\ntkrnlpa.exe                                 80540FF0
INT 0x81  \WINDOWS\system32\ntkrnlpa.exe                                 80540FFA
INT 0x82  \WINDOWS\system32\ntkrnlpa.exe                                 80541004
INT 0x83  \WINDOWS\system32\ntkrnlpa.exe                                 8054100E
INT 0x84  \WINDOWS\system32\ntkrnlpa.exe                                 80541018
INT 0x85  \WINDOWS\system32\ntkrnlpa.exe                                 80541022
INT 0x86  \WINDOWS\system32\ntkrnlpa.exe                                 8054102C
INT 0x87  \WINDOWS\system32\ntkrnlpa.exe                                 80541036
INT 0x88  \WINDOWS\system32\ntkrnlpa.exe                                 80541040
INT 0x89  \WINDOWS\system32\ntkrnlpa.exe                                 8054104A
INT 0x8A  \WINDOWS\system32\ntkrnlpa.exe                                 80541054
INT 0x8B  \WINDOWS\system32\ntkrnlpa.exe                                 8054105E
INT 0x8C  \WINDOWS\system32\ntkrnlpa.exe                                 80541068
INT 0x8D  \WINDOWS\system32\ntkrnlpa.exe                                 80541072
INT 0x8E  \WINDOWS\system32\ntkrnlpa.exe                                 8054107C
INT 0x8F  \WINDOWS\system32\ntkrnlpa.exe                                 80541086
INT 0x90  \WINDOWS\system32\ntkrnlpa.exe                                 80541090
INT 0x91  \WINDOWS\system32\ntkrnlpa.exe                                 8054109A
INT 0x92  \WINDOWS\system32\ntkrnlpa.exe                                 805410A4
INT 0x93  \SystemRoot\system32\DRIVERS\i8042prt.sys                      BA148495
INT 0x94  \SystemRoot\system32\DRIVERS\HDAudBus.sys                      B97CCDFC
INT 0x95  \WINDOWS\system32\ntkrnlpa.exe                                 805410C2
INT 0x96  \WINDOWS\system32\ntkrnlpa.exe                                 805410CC
INT 0x97  \WINDOWS\system32\ntkrnlpa.exe                                 805410D6
INT 0x98  \WINDOWS\system32\ntkrnlpa.exe                                 805410E0
INT 0x99  \WINDOWS\system32\ntkrnlpa.exe                                 805410EA
INT 0x9A  \WINDOWS\system32\ntkrnlpa.exe                                 805410F4
INT 0x9B  \WINDOWS\system32\ntkrnlpa.exe                                 805410FE
INT 0x9C  \WINDOWS\system32\ntkrnlpa.exe                                 80541108
INT 0x9D  \WINDOWS\system32\ntkrnlpa.exe                                 80541112
INT 0x9E  \WINDOWS\system32\ntkrnlpa.exe                                 8054111C
INT 0x9F  \WINDOWS\system32\ntkrnlpa.exe                                 80541126
INT 0xA0  \WINDOWS\system32\ntkrnlpa.exe                                 80541130
INT 0xA1  \WINDOWS\system32\ntkrnlpa.exe                                 8054113A
INT 0xA2  \WINDOWS\system32\ntkrnlpa.exe                                 80541144
INT 0xA3  \SystemRoot\system32\DRIVERS\i8042prt.sys                      BA14FC90
INT 0xA4  \SystemRoot\system32\DRIVERS\USBPORT.SYS                       B9657ED2
INT 0xA5  \WINDOWS\system32\ntkrnlpa.exe                                 80541162
INT 0xA6  \WINDOWS\system32\ntkrnlpa.exe                                 8054116C
INT 0xA7  \WINDOWS\system32\ntkrnlpa.exe                                 80541176
INT 0xA8  \WINDOWS\system32\ntkrnlpa.exe                                 80541180
INT 0xA9  \WINDOWS\system32\ntkrnlpa.exe                                 8054118A
INT 0xAA  \WINDOWS\system32\ntkrnlpa.exe                                 80541194
INT 0xAB  \WINDOWS\system32\ntkrnlpa.exe                                 8054119E
INT 0xAC  \WINDOWS\system32\ntkrnlpa.exe                                 805411A8
INT 0xAD  \WINDOWS\system32\ntkrnlpa.exe                                 805411B2
INT 0xAE  \WINDOWS\system32\ntkrnlpa.exe                                 805411BC
INT 0xAF  \WINDOWS\system32\ntkrnlpa.exe                                 805411C6
INT 0xB0  \WINDOWS\system32\ntkrnlpa.exe                                 805411D0
INT 0xB1  ACPI.sys                                                       B9F8331E
INT 0xB2  \WINDOWS\system32\ntkrnlpa.exe                                 805411E4
INT 0xB3  \WINDOWS\system32\ntkrnlpa.exe                                 805411EE
INT 0xB4  atapi.sys                                                      B9F1767E
INT 0xB4  atapi.sys                                                      B9F1767E
INT 0xB4  \SystemRoot\system32\DRIVERS\USBPORT.SYS                       B9657ED2
INT 0xB4  atapi.sys                                                      B9F1767E
INT 0xB5  \WINDOWS\system32\ntkrnlpa.exe                                 80541202
INT 0xB6  \WINDOWS\system32\ntkrnlpa.exe                                 8054120C
INT 0xB7  \WINDOWS\system32\ntkrnlpa.exe                                 80541216
INT 0xB8  \WINDOWS\system32\ntkrnlpa.exe                                 80541220
INT 0xB9  \WINDOWS\system32\ntkrnlpa.exe                                 8054122A
INT 0xBA  \WINDOWS\system32\ntkrnlpa.exe                                 80541234
INT 0xBB  \WINDOWS\system32\ntkrnlpa.exe                                 8054123E
INT 0xBC  \WINDOWS\system32\ntkrnlpa.exe                                 80541248
INT 0xBD  \WINDOWS\system32\ntkrnlpa.exe                                 80541252
INT 0xBE  \WINDOWS\system32\ntkrnlpa.exe                                 8054125C
INT 0xBF  \WINDOWS\system32\ntkrnlpa.exe                                 80541266
INT 0xC0  \WINDOWS\system32\ntkrnlpa.exe                                 80541270
INT 0xC1  \WINDOWS\system32\hal.dll                                      806E7AC0
INT 0xC2  \WINDOWS\system32\ntkrnlpa.exe                                 80541284
INT 0xC3  \WINDOWS\system32\ntkrnlpa.exe                                 8054128E
INT 0xC4  \WINDOWS\system32\ntkrnlpa.exe                                 80541298
INT 0xC5  \WINDOWS\system32\ntkrnlpa.exe                                 805412A2
INT 0xC6  \WINDOWS\system32\ntkrnlpa.exe                                 805412AC
INT 0xC7  \WINDOWS\system32\ntkrnlpa.exe                                 805412B6
INT 0xC8  \WINDOWS\system32\ntkrnlpa.exe                                 805412C0
INT 0xC9  \WINDOWS\system32\ntkrnlpa.exe                                 805412CA
INT 0xCA  \WINDOWS\system32\ntkrnlpa.exe                                 805412D4
INT 0xCB  \WINDOWS\system32\ntkrnlpa.exe                                 805412DE
INT 0xCC  \WINDOWS\system32\ntkrnlpa.exe                                 805412E8
INT 0xCD  \WINDOWS\system32\ntkrnlpa.exe                                 805412F2
INT 0xCE  \WINDOWS\system32\ntkrnlpa.exe                                 805412FC
INT 0xCF  \WINDOWS\system32\ntkrnlpa.exe                                 80541306
INT 0xD0  \WINDOWS\system32\ntkrnlpa.exe                                 80541310
INT 0xD1  \WINDOWS\system32\hal.dll                                      806E72A0
INT 0xD2  \WINDOWS\system32\ntkrnlpa.exe                                 80541324
INT 0xD3  \WINDOWS\system32\ntkrnlpa.exe                                 8054132E
INT 0xD4  \WINDOWS\system32\ntkrnlpa.exe                                 80541338
INT 0xD5  \WINDOWS\system32\ntkrnlpa.exe                                 80541342
INT 0xD6  \WINDOWS\system32\ntkrnlpa.exe                                 8054134C
INT 0xD7  \WINDOWS\system32\ntkrnlpa.exe                                 80541356
INT 0xD8  \WINDOWS\system32\ntkrnlpa.exe                                 80541360
INT 0xD9  \WINDOWS\system32\ntkrnlpa.exe                                 8054136A
INT 0xDA  \WINDOWS\system32\ntkrnlpa.exe                                 80541374
INT 0xDB  \WINDOWS\system32\ntkrnlpa.exe                                 8054137E
INT 0xDC  \WINDOWS\system32\ntkrnlpa.exe                                 80541388
INT 0xDD  \WINDOWS\system32\ntkrnlpa.exe                                 80541392
INT 0xDE  \WINDOWS\system32\ntkrnlpa.exe                                 8054139C
INT 0xDF  \WINDOWS\system32\ntkrnlpa.exe                                 805413A6
INT 0xE0  \WINDOWS\system32\ntkrnlpa.exe                                 805413B0
INT 0xE1  \WINDOWS\system32\hal.dll                                      806E8048
INT 0xE2  \WINDOWS\system32\ntkrnlpa.exe                                 805413C4
INT 0xE3  \WINDOWS\system32\hal.dll                                      806E7DAC
INT 0xE4  \WINDOWS\system32\ntkrnlpa.exe                                 805413D8
INT 0xE5  \WINDOWS\system32\ntkrnlpa.exe                                 805413E2
INT 0xE6  \WINDOWS\system32\ntkrnlpa.exe                                 805413EC
INT 0xE7  \WINDOWS\system32\ntkrnlpa.exe                                 805413F6
INT 0xE8  \WINDOWS\system32\ntkrnlpa.exe                                 80541400
INT 0xE9  \WINDOWS\system32\ntkrnlpa.exe                                 8054140A
INT 0xEA  \WINDOWS\system32\ntkrnlpa.exe                                 80541414
INT 0xEB  \WINDOWS\system32\ntkrnlpa.exe                                 8054141E
INT 0xEC  \WINDOWS\system32\ntkrnlpa.exe                                 80541428
INT 0xED  \WINDOWS\system32\ntkrnlpa.exe                                 80541432
INT 0xEE  \WINDOWS\system32\ntkrnlpa.exe                                 80541439
INT 0xEF  \WINDOWS\system32\ntkrnlpa.exe                                 80541440
INT 0xF0  \WINDOWS\system32\ntkrnlpa.exe                                 80541447
INT 0xF1  \WINDOWS\system32\ntkrnlpa.exe                                 8054144E
INT 0xF2  \WINDOWS\system32\ntkrnlpa.exe                                 80541455
INT 0xF3  \WINDOWS\system32\ntkrnlpa.exe                                 8054145C
INT 0xF4  \WINDOWS\system32\ntkrnlpa.exe                                 80541463
INT 0xF5  \WINDOWS\system32\ntkrnlpa.exe                                 8054146A
INT 0xF6  \WINDOWS\system32\ntkrnlpa.exe                                 80541471
INT 0xF7  \WINDOWS\system32\ntkrnlpa.exe                                 80541478
INT 0xF8  \WINDOWS\system32\ntkrnlpa.exe                                 8054147F
INT 0xF9  \WINDOWS\system32\ntkrnlpa.exe                                 80541486
INT 0xFA  \WINDOWS\system32\ntkrnlpa.exe                                 8054148D
INT 0xFB  \WINDOWS\system32\ntkrnlpa.exe                                 80541494
INT 0xFC  \WINDOWS\system32\ntkrnlpa.exe                                 8054149B
INT 0xFD  \WINDOWS\system32\hal.dll                                      806E85A8
INT 0xFE  \WINDOWS\system32\hal.dll                                      806E8748
INT 0xFF  \WINDOWS\system32\ntkrnlpa.exe                                 805414B0

SYSENTER  \WINDOWS\system32\ntkrnlpa.exe                                 805416E0

---- Kernel code sections - GMER 2.1 ----

.text     ntkrnlpa.exe!ZwCallbackReturn + 2CEC                           805045D4 4 Bytes  [14, D4, 79, BA] {ADC AL, 0xd4; JNS 0xffffffbe}
.text     ntkrnlpa.exe!ZwCallbackReturn + 2D2C                           80504614 4 Bytes  [CE, D3, 79, BA] {INTO ; SAR [ECX-0x46], CL}
.text     ntkrnlpa.exe!ZwCallbackReturn + 2D50                           80504638 4 Bytes  [1E, D4, 79, BA]
.text     ntkrnlpa.exe!ZwCallbackReturn + 2D58                           80504640 8 Bytes  [F6, D3, 79, BA, C4, D3, 79, ...]
.text     ntkrnlpa.exe!ZwCallbackReturn + 2D84                           8050466C 4 Bytes  [D3, D3, 79, BA] {RCL EBX, CL; JNS 0xffffffbe}
.text     ...                                                            
.text     ntkrnlpa.exe!KeReleaseInStackQueuedSpinLockFromDpcLevel + C7E  805418E6 1 Byte  [06]
.text     ntkrnlpa.exe!KiDispatchInterrupt + 2BE                         80545D9E 18 Bytes  [E0, 25, 7F, FF, FF, FF, 0F, ...]
.text     ntkrnlpa.exe!KiDispatchInterrupt + 2D6                         80545DB6 1 Byte  [00]
.text     ntkrnlpa.exe!RtlPrefetchMemoryNonTemporal                      805467A4 1 Byte  [90]
.text     hal.dll!HalBeginSystemInterrupt + 972                          806E98DA 3 Bytes  [01, 0E, 38]
.text     hal.dll!HalBeginSystemInterrupt + 976                          806E98DE 1 Byte  [2C]
.text     hal.dll!HalBeginSystemInterrupt + 976                          806E98DE 4 Bytes  [2C, 00, 05, 0E]
.text     hal.dll!HalBeginSystemInterrupt + 97C                          806E98E4 4 Bytes  [03, 81, 80, 5E]
.text     hal.dll!HalBeginSystemInterrupt + 982                          806E98EA 1 Byte  [03]
.text     ...

mb82 · 08.02.2014, 17:46

Jemand eine Idee?

VG,

Marco

**Da GuRu** · 07.09.2014, 14:40

Hallo,

leider wurde Dein Thema aus (technischen Gründen) übersehen. Da mehrere Antworten in Deinem Thema vorhanden waren, wurde es versehentlich als 'bereits in Arbeit' eingestuft.

Dies bitten wir zu entschuldigen.

Wir versuchen jedem Hilfesuchenden binnen kurzer Zeit zu antworten und Lösungen für das Problem anzubieten.

Bitte erstelle ggf. ein neues Thema, damit sich ein Teammitglied deinem Problem annehmen kann.

Für alle Hilfesuchenden! Was muss ich vor der Eröffnung eines Themas beachten?

Vielen Dank für Dein Verständnis.

WIN XP home - TR/Rogue.8240432 A0000018.exe - auch nach Neuinstallation nicht weg

Log-Analyse und Auswertung: WIN XP home - TR/Rogue.8240432 A0000018.exe - auch nach Neuinstallation nicht weg