Zurück   Trojaner-Board > Malware entfernen > Plagegeister aller Art und deren Bekämpfung

Plagegeister aller Art und deren Bekämpfung: System nach Bereinigung wieder sauber?

Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen.

Antwort
Alt 26.01.2010, 20:45   #1
jonny55
 
System nach Bereinigung wieder sauber? - Standard

System nach Bereinigung wieder sauber?



Hallo liebe User,

vor ein paar Tagen führte ich über Malwarebytes einen Komplett-Scan durch. Dieser verlief ohne Fund.

Spybot S&D ließ ich ebenso nochmal durchlaufen, er zeigte auch nichts an.

Der AntiVir Scan zeigte mir allerdings den HTML/Silly.gen mehrfach an. Ich entfernte die betroffenen Dateien.

Nun hab ich von dem HijackThis Tool erfahren und möchte anhand diesem erfahren, ob mein System jetzt wieder sauber ist.
Mir erscheinen die "file missing" Einträge unter Services etwas spanisch und bei den laufenden Prozessen dieses "ISUSPM".

Ich hoffe ihr könnt mir helfen, vielen Dank schonmal.

Hier das Logfile.
Zitat:
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 21:42:46, on 26.01.2010
Platform: Windows Vista SP1 (WinNT 6.00.1905)
MSIE: Internet Explorer v7.00 (7.00.6001.18385)
Boot mode: Normal

Running processes:
C:\ProgramData\Macrovision\FLEXnet Connect\6\ISUSPM.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
X:\Programme\Malwarebytes' Anti-Malware\mbam.exe
X:\Programme\HijackThis\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O1 - Hosts: ::1 localhost
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
O4 - HKLM\..\Run: [JMB36X IDE Setup] C:\Windows\RaidTool\xInsIDE.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [avgnt] "C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe" /min
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "X:\Programme\Acrobat Reader\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\RunOnce: [Uninstall Adobe Download Manager] "C:\Windows\system32\rundll32.exe" "C:\Program Files (x86)\NOS\bin\getPlus_Helper.dll",Uninstall /IE2883E8F-472F-4fb0-9522-AC9BF37916A7 /Get1noarp
O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
O4 - HKCU\..\Run: [ISUSPM] "C:\ProgramData\Macrovision\FLEXnet Connect\6\ISUSPM.exe" -scheduler
O4 - HKCU\..\Run: [ccleaner] "C:\Program Files (x86)\CCleaner\ccleaner.exe" /AUTO
O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files (x86)\Windows Media Player\WMPNSCFG.exe
O8 - Extra context menu item: Nach Microsoft &Excel exportieren - res://X:\PROGRA~1\MICROS~1\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: PokerStars - {3AD14F0C-ED16-4e43-B6D8-661B03F6A1EF} - X:\Spiele\Pokerstars\PokerStarsUpdate.exe
O9 - Extra button: Recherchieren - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - X:\PROGRA~1\MICROS~1\OFFICE11\REFIEBAR.DLL
O13 - Gopher Prefix:
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: Avira AntiVir Planer (AntiVirSchedulerService) - Avira GmbH - C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
O23 - Service: Avira AntiVir Guard (AntiVirService) - Avira GmbH - C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
O23 - Service: @dfsrres.dll,-101 (DFSR) - Unknown owner - C:\Windows\system32\DFSR.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NMSAccessU - Unknown owner - X:\Programme\CDBurnerXP\NMSAccessU.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: ServiceLayer - Nokia. - C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: @%SystemRoot%\system32\SLsvc.exe,-101 (slsvc) - Unknown owner - C:\Windows\system32\SLsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 5756 bytes

Alt 27.01.2010, 12:28   #2
cosinus
/// Winkelfunktion
/// TB-Süch-Tiger™
 
System nach Bereinigung wieder sauber? - Standard

System nach Bereinigung wieder sauber?



Hallo,

Zitat:
Der AntiVir Scan zeigte mir allerdings den HTML/Silly.gen mehrfach an. Ich entfernte die betroffenen Dateien.
Die vollständigen Pfadangaben fehlen, bitte nachreichen, am besten das Log von AntiVir.
Erstell auch Logs mit RSIT und poste diese.
__________________

__________________

Alt 27.01.2010, 18:55   #3
jonny55
 
System nach Bereinigung wieder sauber? - Standard

System nach Bereinigung wieder sauber?



Danke für die Antwort.
Hier die benötigten Logs
AntiVir
Zitat:
X:\pagefile.sys
[WARNUNG] Die Datei konnte nicht geöffnet werden!
[HINWEIS] Bei dieser Datei handelt es sich um eine Windows Systemdatei.
[HINWEIS] Es ist in Ordnung, dass diese Datei für die Suche nicht geöffnet werden kann.

X:\Spiele\PES\CryptLoad_1.1.8_de.rar
[0] Archivtyp: RAR
--> router\FRITZ!Box\nc.exe
[FUND] Enthält Erkennungsmuster des SPR/Tool.NetCat.B-Programmes
[HINWEIS] Eine Sicherungskopie wurde unter dem Namen 4bd57f6c.qua erstellt ( QUARANTÄNE )
[HINWEIS] Die Datei wurde gelöscht.
RSIT
info.txt
Zitat:
info.txt logfile of random's system information tool 1.06 2010-01-27 19:48:27

======Uninstall list======

-->MsiExec /X{5DB65884-C963-4454-AABA-4CA3089281FA}
Adobe Flash Player 10 Plugin-->C:\Windows\SysWOW64\Macromed\Flash\uninstall_plugin.exe
Adobe Flash Player ActiveX-->C:\Windows\SysWOW64\Macromed\Flash\uninstall_activeX.exe
Adobe Reader 9.3 - Deutsch-->MsiExec.exe /I{AC76BA86-7AD7-1031-7B44-A93000000001}
Adobe® Photoshop® Album Starter Edition 3.0-->MsiExec.exe /I{4BDFD2CE-6329-42E4-9801-9B3D1F10D79B}
Avira AntiVir Personal - Free Antivirus-->C:\Program Files (x86)\Avira\AntiVir Desktop\setup.exe /REMOVE
AviSynth 2.5-->"C:\Program Files (x86)\AviSynth 2.5\Uninstall.exe"
AVM FRITZ!Box Dokumentation-->C:\Program Files (x86)\FRITZ!Box\install.exe -d
AVM FRITZ!Box Druckeranschluss-->C:\Program Files (x86)\FRITZ!BoxPrint\install.exe -d
Canon iP4600 series Benutzerregistrierung-->C:\Program Files (x86)\Canon\IJEREG\iP4600 series\UNINST.EXE
Canon Utilities Easy-PhotoPrint EX-->X:\Programme\Canon Drucker\Easy-PhotoPrint EX\uninst.exe uninst.ini
Canon Utilities My Printer-->C:\Program Files\Canon\MyPrinter\uninst.exe uninst.ini
Canon Utilities Solution Menu-->C:\Program Files (x86)\Canon\SolutionMenu\uninst.exe uninst.ini
CCleaner-->"C:\Program Files (x86)\CCleaner\uninst.exe"
CDBurnerXP-->"X:\Programme\CDBurnerXP\unins000.exe"
CD-LabelPrint-->"X:\Programme\Canon Drucker\CD-LabelPrint\Uninstal.exe" Canon.CDLabelPrint.Application
Compatibility Pack für 2007 Office System-->MsiExec.exe /X{90120000-0020-0407-0000-0000000FF1CE}
DualCoreCenter-->"C:\Program Files (x86)\MSI\DualCoreCenter\unins000.exe"
EA Download Manager-->C:\Program Files (x86)\Electronic Arts\EADM\Uninstall.exe
Europa-Lehrmittel Bankwissen com.pact-->C:\Windows\unvise32.exe x:\programme\bankwissencompact\uninstal.log
EVEREST Home Edition v2.20-->"X:\Programme\EVEREST Home Edition\unins000.exe"
Fraps-->"X:\Programme\fraps\uninstall.exe"
Free 3GP Video Converter version 3.1-->"X:\Programme\Free 3GP Video Converter\unins000.exe"
Free Audio CD Burner version 1.2-->"C:\Program Files (x86)\DVDVideoSoft\Free Audio CD Burner\unins000.exe"
Free YouTube to MP3 Converter version 3.2-->"C:\Program Files (x86)\DVDVideoSoft\Free YouTube to MP3 Converter\unins001.exe"
HijackThis 2.0.2-->"X:\Programme\HijackThis\HijackThis.exe" /uninstall
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)-->C:\Windows\SysWOW64\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall /qb+ REBOOTPROMPT=""
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)-->C:\Windows\SysWOW64\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall {08155812-0202-4D5F-A7FF-12A2782DC548} /qb+ REBOOTPROMPT=""
IrfanView (remove only)-->X:\Programme\IrfanView\iv_uninstall.exe
Java(TM) 6 Update 18-->MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F83216010FF}
JMB36X Raid Configurer-->RunDll32 C:\PROGRA~2\COMMON~1\INSTAL~1\PROFES~1\RunTime\11\00\Intel32\Ctor.dll,LaunchSetup "C:\Program Files (x86)\InstallShield Installation Information\{3A1B5D40-41E9-43FA-8C7B-A8667F5586EF}\Setup.exe" -l0x7 -removeonly
K-Lite Codec Pack 4.7.5 (Standard)-->"C:\Program Files (x86)\K-Lite Codec Pack\unins000.exe"
Malwarebytes' Anti-Malware-->"X:\Programme\Malwarebytes' Anti-Malware\unins000.exe"
Matrix-->MsiExec.exe /I{F1F41847-C72D-42EB-B12E-BD107839EBB7}
Microsoft Office Professional Edition 2003-->MsiExec.exe /I{91E30407-6000-11D3-8CFE-0150048383C9}
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053-->MsiExec.exe /X{770657D0-A123-3C07-8E44-1C83EC895118}
Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{837b34e3-7c30-493c-8f6a-2b0f04e2912c}
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148-->MsiExec.exe /X{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17-->MsiExec.exe /X{9A25302D-30C0-39D9-BD6F-21E6EC160475}
Mozilla Firefox (3.6)-->C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe
Mozilla Thunderbird (3.0.1)-->X:\Programme\Mozilla Thunderbird\uninstall\helper.exe
MSXML 4.0 SP2 (KB954430)-->MsiExec.exe /I{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}
MSXML 4.0 SP2 (KB973688)-->MsiExec.exe /I{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}
Need for Speed™ SHIFT-->MsiExec.exe /X{BBF0A67B-5DBA-452F-9D2E-6F168BC226E4}
Nokia Connectivity Cable Driver-->MsiExec.exe /I{52D02A2B-03D2-4E34-A358-DC5D951FD296}
Nokia Lifeblog 2.5-->MsiExec.exe /I{E94603CA-2996-4154-8EE2-A5FCD4BFB500}
Nokia MTP driver-->MsiExec.exe /I{6D3A2A6C-59CD-4A6D-9516-0A34C393ED95}
Nokia NSeries Application Installer-->MsiExec.exe /I{FD349381-D79C-4E5C-8980-015DFFB962D5}
Nokia NSeries Content Copier-->MsiExec.exe /X{F779EC8D-6703-4C4A-817C-37B07898E647}
Nokia NSeries Multimedia Player-->MsiExec.exe /I{FA25FAF6-3097-43C9-BBB2-A77CE8AF1881}
Nokia NSeries Music Manager-->MsiExec.exe /I{F89E5AD8-AE47-49B5-B9F9-C498791E6255}
Nokia NSeries One Touch Access-->MsiExec.exe /I{F4EE8763-EAA8-4BC1-8594-8501F5F00414}
Nokia NSeries System Utilities-->MsiExec.exe /X{96E94E18-54D6-42C1-8FC4-24DACEDC3395}
Nokia Nseries Video Manager-->MsiExec.exe /X{2D21ECE3-8EC1-4315-AE4E-1970FB3AF17A}
Nokia Software Launcher-->MsiExec.exe /I{8287D31D-78FF-4EDA-BB26-A29459E8DA97}
Nokia Software Updater-->MsiExec.exe /X{4C911A61-39EA-41CC-AB3C-FE3BFFDB5F78}
NVIDIA PhysX-->MsiExec.exe /X{5DB65884-C963-4454-AABA-4CA3089281FA}
OpenAL-->"C:\Program Files (x86)\OpenAL\OpenALwEAX.exe" /U
PC Connectivity Solution-->MsiExec.exe /I{6094AB91-4CC8-498E-9DFF-134CC0B159DE}
PokerStars-->"X:\Spiele\Pokerstars\PokerStarsUninstall.exe" /u:PokerStars
Pro Evolution Soccer 2009-->MsiExec.exe /X{A8DB611A-D80E-450D-85F6-3ACDD164BE31}
Realtek 8169 8168 8101E 8102E Ethernet Driver-->C:\Program Files (x86)\InstallShield Installation Information\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}\setup.exe -runfromtemp -l0x0007 -removeonly
Realtek High Definition Audio Driver-->RtlUpd64.exe -r -m
SopCast 3.2.4-->X:\Programme\SopCast\uninst.exe
Spybot - Search & Destroy-->"X:\Programme\Spybot - Search & Destroy\unins000.exe"
Uninstall 1.0.0.1-->"C:\Program Files (x86)\Common Files\DVDVideoSoft\unins000.exe"
Update for Microsoft .NET Framework 3.5 SP1 (KB963707)-->C:\Windows\SysWOW64\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall {B2AE9C82-DC7B-3641-BFC8-87275C4F3607} /qb+ REBOOTPROMPT=""
VISION-Patch 2009 v2.51-->"X:\Spiele\PES\08\unins001.exe"
VLC media player 1.0.0-->X:\Programme\VLC\uninstall.exe
Vodafone Mobile Connect Lite-->MsiExec.exe /X{B5761811-28F3-4257-B537-815C5EEF472C}
Windows Media Player Firefox Plugin-->MsiExec.exe /I{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}
WinRAR-->C:\Program Files (x86)\WinRAR\uninstall.exe

======Security center information======

AS: Windows Defender

======System event log======

Computer Name: Boss-PC
Event Code: 7036
Message: Dienst "Enumeratordienst für tragbare Geräte" befindet sich jetzt im Status "Ausgeführt".
Record Number: 142642
Source Name: Service Control Manager
Time Written: 20090918184537.000000-000
Event Type: Informationen
User:

Computer Name: Boss-PC
Event Code: 7036
Message: Dienst "SSDP-Suche" befindet sich jetzt im Status "Ausgeführt".
Record Number: 142641
Source Name: Service Control Manager
Time Written: 20090918184537.000000-000
Event Type: Informationen
User:

Computer Name: Boss-PC
Event Code: 7036
Message: Dienst "IPsec-Richtlinien-Agent" befindet sich jetzt im Status "Ausgeführt".
Record Number: 142640
Source Name: Service Control Manager
Time Written: 20090918184537.000000-000
Event Type: Informationen
User:

Computer Name: Boss-PC
Event Code: 7036
Message: Dienst "Windows-Zeitgeber" befindet sich jetzt im Status "Ausgeführt".
Record Number: 142639
Source Name: Service Control Manager
Time Written: 20090918184537.000000-000
Event Type: Informationen
User:

Computer Name: Boss-PC
Event Code: 7036
Message: Dienst "Terminaldienste" befindet sich jetzt im Status "Ausgeführt".
Record Number: 142638
Source Name: Service Control Manager
Time Written: 20090918184537.000000-000
Event Type: Informationen
User:

=====Application event log=====

Computer Name: Boss-PC
Event Code: 20224
Message: CoID={E40E00ED-B88A-4FCC-B41F-994032455F70}: Die Verbindung mit dem RAS-Server wurde von Benutzer "Boss-PC\*geändert*" hergestellt.
Record Number: 11194
Source Name: RasClient
Time Written: 20090101132448.000000-000
Event Type: Informationen
User:

Computer Name: Boss-PC
Event Code: 20223
Message: CoID={E40E00ED-B88A-4FCC-B41F-994032455F70}: Der Benutzer "Boss-PC\*geändert*" hat eine Verbindung mit dem RAS-Server hergestellt, verwendet wurde das Gerät: "
Server address/Phone Number = *geändert*
Device = AVM NDIS WAN CAPI-Treiber (1)
Port = ISDN8-1
MediaType = ISDN".
Record Number: 11193
Source Name: RasClient
Time Written: 20090101132448.000000-000
Event Type: Informationen
User:

Computer Name: Boss-PC
Event Code: 20222
Message: CoID={E40E00ED-B88A-4FCC-B41F-994032455F70}: Der Benutzer "Boss-PC\*geändert*" versucht, eine Verbindung zum RAS-Server für die Verbindung mit dem Namen "*geändert*" mit dem folgenden Gerät herzustellen:
Server address/Phone Number = *geändert*
Device = AVM NDIS WAN CAPI-Treiber (1)
Port = ISDN8-0
MediaType = ISDN.
Record Number: 11192
Source Name: RasClient
Time Written: 20090101132445.000000-000
Event Type: Informationen
User:

Computer Name: Boss-PC
Event Code: 20222
Message: CoID={E40E00ED-B88A-4FCC-B41F-994032455F70}: Der Benutzer "Boss-PC\Rob" versucht, eine Verbindung zum RAS-Server für die Verbindung mit dem Namen "*geändert*" mit dem folgenden Gerät herzustellen:
Server address/Phone Number = *geändert*
Device = AVM NDIS WAN CAPI-Treiber (1)
Port = ISDN8-1
MediaType = ISDN.
Record Number: 11191
Source Name: RasClient
Time Written: 20090101132445.000000-000
Event Type: Informationen
User:

Computer Name: Boss-PC
Event Code: 20221
Message: CoID={E40E00ED-B88A-4FCC-B41F-994032455F70}: Der Benutzer "Boss-PC\*geändert*" hat eine Dial-up-Verbindung mit einem all-user-Verbindungsprofil mit dem Namen "*geändert* angewählt. Die Verbindungseinstellungen lauten:
Dial-in User = *geändert*
VpnStrategy =Not Applicable
DataEncryption = Requested
PrerequisiteEntry =
CompartmentsEnabled = No
AutoLogon = No
UseRasCredentials = No
CustomAuthKey =
AuthRestriction Mask = 0x00000228
RasIpv4DefaultGateway = Yes
Ipv4AddressAssignment = By Server
Ipv4DNSServerAssignment = By Server
RasIpv6DefaultGateway = Yes
Ipv6DNSServerAssignment = By Server
IpDnsFlags =
IpNBTEnabled = No
UseFlags = Internet Connection
IpSecFlags = No Pre-shared key
ConnectOnWinlogon = No.
Record Number: 11190
Source Name: RasClient
Time Written: 20090101132445.000000-000
Event Type: Informationen
User:

=====Security event log=====

Computer Name: Boss-PC
Event Code: 4608
Message: Windows wird gestartet.

Dieses Ereignis wird protokolliert, wenn LSASS.EXE gestartet und das Überwachungssubsystem initialisiert wird.
Record Number: 35204
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20090524185541.468463-000
Event Type: Überwachung erfolgreich
User:

Computer Name: Boss-PC
Event Code: 4634
Message: Ein Konto wurde abgemeldet.

Antragsteller:
Sicherheits-ID: S-1-5-7
Kontoname: ANONYMOUS-ANMELDUNG
Kontodomäne: NT-AUTORITÄT
Anmelde-ID: 0x7e7cc

Anmeldetyp: 3

Dieses Ereignis wird generiert, wenn eine Anmeldesitzung zerstört wird. Es kann anhand des Wertes der Anmelde-ID positiv mit einem Anmeldeereignis korreliert werden. Anmelde-IDs sind nur zwischen Neustarts auf demselben Computer eindeutig.
Record Number: 35203
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20090524130859.900000-000
Event Type: Überwachung erfolgreich
User:

Computer Name: Boss-PC
Event Code: 4616
Message: Die Systemzeit wurde geändert.

Antragsteller:
Sicherheits-ID: S-1-5-19
Kontoname: LOKALER DIENST
Kontodomäne: NT-AUTORITÄT
Anmelde-ID: 0x3e5

Prozessinformationen:
Prozess-ID: 0x468
Name: C:\Windows\System32\svchost.exe

Vorherige Zeit: 15:08:59 24.05.2009
Neue Zeit: 15:08:59 24.05.2009

Dieses Ereignis wird generiert, wenn die Systemzeit geändert wird. Es ist normal, dass der mit Systemberechtigung ausgeführte Windows-Zeitdienst die Systemzeit regelmäßig ändert. Andere Änderungen der Systemzeit können darauf hinweisen, dass der Computer manipuliert wird.
Record Number: 35202
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20090524130859.744000-000
Event Type: Überwachung erfolgreich
User:

Computer Name: Boss-PC
Event Code: 1100
Message: Der Ereignisprotokollierungsdienst wurde heruntergefahren.
Record Number: 35201
Source Name: Microsoft-Windows-Eventlog
Time Written: 20090524130859.806400-000
Event Type: Überwachung erfolgreich
User:

Computer Name: Boss-PC
Event Code: 4672
Message: Einer neuen Anmeldung wurden besondere Rechte zugewiesen.

Antragsteller:
Sicherheits-ID: S-1-5-18
Kontoname: SYSTEM
Kontodomäne: NT-AUTORITÄT
Anmelde-ID: 0x3e7

Berechtigungen: SeAssignPrimaryTokenPrivilege
SeTcbPrivilege
SeSecurityPrivilege
SeTakeOwnershipPrivilege
SeLoadDriverPrivilege
SeBackupPrivilege
SeRestorePrivilege
SeDebugPrivilege
SeAuditPrivilege
SeSystemEnvironmentPrivilege
SeImpersonatePrivilege
Record Number: 35200
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20090524130858.247270-000
Event Type: Überwachung erfolgreich
User:

======Environment variables======

"ComSpec"=%SystemRoot%\system32\cmd.exe
"FP_NO_HOST_CHECK"=NO
"OS"=Windows_NT
"Path"=C:\Program Files (x86)\PC Connectivity Solution\;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static
"PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH;.MSC
"PROCESSOR_ARCHITECTURE"=AMD64
"TEMP"=%SystemRoot%\TEMP
"TMP"=%SystemRoot%\TEMP
"USERNAME"=SYSTEM
"windir"=%SystemRoot%
"PROCESSOR_LEVEL"=6
"PROCESSOR_IDENTIFIER"=Intel64 Family 6 Model 23 Stepping 10, GenuineIntel
"PROCESSOR_REVISION"=170a
"NUMBER_OF_PROCESSORS"=2
"TRACE_FORMAT_SEARCH_PATH"=\\NTREL202.ntdev.corp.microsoft.com\34FB5F65-FFEB-4B61-BF0E-A6A76C450FAA\TraceFormat
"DFSTRACINGON"=FALSE

-----------------EOF-----------------
__________________

Geändert von jonny55 (27.01.2010 um 19:42 Uhr)

Alt 27.01.2010, 18:56   #4
jonny55
 
System nach Bereinigung wieder sauber? - Standard

System nach Bereinigung wieder sauber?



hier der zweite Teil

log.txt
Zitat:
Logfile of random's system information tool 1.06 (written by random/random)
Run by Boss at 2010-01-27 19:48:26
Microsoft® Windows Vista™ Home Premium Service Pack 2
System drive C: has 3 GB (8%) free of 30 GB
Total RAM: 4094 MB (72% free)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 19:48:26, on 27.01.2010
Platform: Windows Vista SP2 (WinNT 6.00.1906)
MSIE: Internet Explorer v8.00 (8.00.6001.18882)
Boot mode: Normal

Running processes:
C:\ProgramData\Macrovision\FLEXnet Connect\6\ISUSPM.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
C:\Users\Rob\Desktop\RSIT.exe
X:\Programme\HijackThis\Boss.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O1 - Hosts: ::1 localhost
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [avgnt] "C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe" /min
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "X:\Programme\Acrobat Reader\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKCU\..\Run: [ccleaner] "C:\Program Files (x86)\CCleaner\ccleaner.exe" /AUTO
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOKALER DIENST')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOKALER DIENST')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETZWERKDIENST')
O4 - HKUS\S-1-5-21-1546280565-161491126-443164695-1001\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe (User 'Rob')
O8 - Extra context menu item: Nach Microsoft &Excel exportieren - res://X:\PROGRA~1\MICROS~1\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: Save YouTube Video as MP3 - res://C:\Program Files (x86)\Common Files\DVDVideoSoft\Dll\IEContextMenuY.dll/scriptY2MP3.htm
O9 - Extra button: PokerStars - {3AD14F0C-ED16-4e43-B6D8-661B03F6A1EF} - X:\Spiele\Pokerstars\PokerStarsUpdate.exe
O9 - Extra button: Recherchieren - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - X:\PROGRA~1\MICROS~1\OFFICE11\REFIEBAR.DLL
O13 - Gopher Prefix:
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: Avira AntiVir Planer (AntiVirSchedulerService) - Avira GmbH - C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
O23 - Service: Avira AntiVir Guard (AntiVirService) - Avira GmbH - C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
O23 - Service: @dfsrres.dll,-101 (DFSR) - Unknown owner - C:\Windows\system32\DFSR.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NMSAccessU - Unknown owner - X:\Programme\CDBurnerXP\NMSAccessU.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: ServiceLayer - Nokia. - C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: @%SystemRoot%\system32\SLsvc.exe,-101 (slsvc) - Unknown owner - C:\Windows\system32\SLsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 5878 bytes

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-12-21 75200]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll [2010-01-11 41760]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2010-01-11 246504]
"avgnt"=C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [2009-03-02 209153]
"Adobe Reader Speed Launcher"=X:\Programme\Acrobat Reader\Reader\Reader_sl.exe [2009-12-22 35760]
"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2009-12-11 948672]
""= []

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"ccleaner"=C:\Program Files (x86)\CCleaner\ccleaner.exe [2009-12-21 1803064]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfPf]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfRd]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfUsbccidDriver]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=1
"dontdisplaylastusername"=1
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"EnableUIADesktopToggle"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=
"ForceActiveDesktopOn"=
"NoActiveDesktopChanges"=
"BindDirectlyToPropertySetStorage"=

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

======File associations======

.js - edit - C:\Windows\SysWOW64\Notepad.exe %1
.js - open - C:\Windows\SysWOW64\WScript.exe "%1" %*

======List of files/folders created in the last 1 months======

2010-01-27 19:48:26 ----D---- C:\rsit
2010-01-27 00:51:43 ----A---- C:\Windows\system32\occache.dll
2010-01-27 00:51:43 ----A---- C:\Windows\system32\msfeedsbs.dll
2010-01-27 00:51:43 ----A---- C:\Windows\system32\msfeeds.dll
2010-01-27 00:51:43 ----A---- C:\Windows\system32\jsproxy.dll
2010-01-27 00:51:43 ----A---- C:\Windows\system32\iepeers.dll
2010-01-27 00:51:42 ----A---- C:\Windows\system32\wininet.dll
2010-01-27 00:51:42 ----A---- C:\Windows\system32\urlmon.dll
2010-01-27 00:51:42 ----A---- C:\Windows\system32\ieui.dll
2010-01-27 00:51:42 ----A---- C:\Windows\system32\iesetup.dll
2010-01-27 00:51:42 ----A---- C:\Windows\system32\iernonce.dll
2010-01-27 00:51:42 ----A---- C:\Windows\system32\iedkcs32.dll
2010-01-27 00:51:41 ----A---- C:\Windows\system32\msfeedssync.exe
2010-01-27 00:51:41 ----A---- C:\Windows\system32\iertutil.dll
2010-01-27 00:51:41 ----A---- C:\Windows\system32\ie4uinit.exe
2010-01-27 00:51:40 ----A---- C:\Windows\system32\ieframe.dll
2010-01-27 00:51:39 ----A---- C:\Windows\system32\mshtml.dll
2010-01-27 00:51:38 ----A---- C:\Windows\system32\ieUnatt.exe
2010-01-27 00:51:38 ----A---- C:\Windows\system32\iesysprep.dll
2010-01-27 00:49:52 ----A---- C:\Windows\system32\advpack.dll
2010-01-27 00:49:52 ----A---- C:\Windows\system32\admparse.dll
2010-01-27 00:49:51 ----A---- C:\Windows\system32\wextract.exe
2010-01-27 00:49:51 ----A---- C:\Windows\system32\msls31.dll
2010-01-27 00:49:51 ----A---- C:\Windows\system32\ieakeng.dll
2010-01-27 00:49:51 ----A---- C:\Windows\system32\icardie.dll
2010-01-27 00:49:51 ----A---- C:\Windows\system32\corpol.dll
2010-01-27 00:49:50 ----A---- C:\Windows\system32\pngfilt.dll
2010-01-27 00:49:50 ----A---- C:\Windows\system32\mstime.dll
2010-01-27 00:49:50 ----A---- C:\Windows\system32\imgutil.dll
2010-01-27 00:49:50 ----A---- C:\Windows\system32\ieapfltr.dll
2010-01-27 00:49:50 ----A---- C:\Windows\system32\dxtrans.dll
2010-01-27 00:49:50 ----A---- C:\Windows\system32\dxtmsft.dll
2010-01-27 00:49:49 ----A---- C:\Windows\system32\WinFXDocObj.exe
2010-01-27 00:49:49 ----A---- C:\Windows\system32\webcheck.dll
2010-01-27 00:49:49 ----A---- C:\Windows\system32\msrating.dll
2010-01-27 00:49:49 ----A---- C:\Windows\system32\mshtmled.dll
2010-01-27 00:49:49 ----A---- C:\Windows\system32\licmgr10.dll
2010-01-27 00:49:49 ----A---- C:\Windows\system32\inseng.dll
2010-01-27 00:49:49 ----A---- C:\Windows\system32\ieakui.dll
2010-01-27 00:49:49 ----A---- C:\Windows\system32\ieaksie.dll
2010-01-27 00:49:48 ----A---- C:\Windows\system32\vbscript.dll
2010-01-27 00:49:48 ----A---- C:\Windows\system32\url.dll
2010-01-27 00:49:48 ----A---- C:\Windows\system32\SetIEInstalledDate.exe
2010-01-27 00:49:48 ----A---- C:\Windows\system32\SetDepNx.exe
2010-01-27 00:49:48 ----A---- C:\Windows\system32\RegisterIEPKEYs.exe
2010-01-27 00:49:48 ----A---- C:\Windows\system32\PDMSetup.exe
2010-01-27 00:49:48 ----A---- C:\Windows\system32\mshtmler.dll
2010-01-27 00:49:48 ----A---- C:\Windows\system32\mshta.exe
2010-01-27 00:49:48 ----A---- C:\Windows\system32\jscript.dll
2010-01-27 00:49:48 ----A---- C:\Windows\system32\iexpress.exe
2010-01-27 00:42:36 ----A---- C:\Windows\system32\UIAnimation.dll
2010-01-27 00:42:35 ----A---- C:\Windows\system32\UIRibbonRes.dll
2010-01-27 00:42:35 ----A---- C:\Windows\system32\UIRibbon.dll
2010-01-27 00:42:30 ----A---- C:\Windows\system32\wmp.dll
2010-01-27 00:42:29 ----A---- C:\Windows\system32\unregmp2.exe
2010-01-27 00:42:28 ----A---- C:\Windows\system32\wmploc.DLL
2010-01-27 00:25:41 ----D---- C:\Windows\system32\vi-VN
2010-01-27 00:25:41 ----D---- C:\Windows\system32\eu-ES
2010-01-27 00:25:41 ----D---- C:\Windows\system32\ca-ES
2010-01-27 00:14:54 ----A---- C:\Windows\system32\NlsLexicons0007.dll
2010-01-27 00:14:51 ----A---- C:\Windows\system32\FunctionDiscoveryFolder.dll
2010-01-27 00:14:50 ----A---- C:\Windows\system32\NlsLexicons0009.dll
2010-01-27 00:14:48 ----A---- C:\Windows\system32\SLCExt.dll
2010-01-27 00:14:47 ----A---- C:\Windows\system32\mssrch.dll
2010-01-27 00:14:45 ----A---- C:\Windows\system32\WscEapPr.dll
2010-01-27 00:14:45 ----A---- C:\Windows\system32\wcnwiz2.dll
2010-01-27 00:14:43 ----A---- C:\Windows\system32\tquery.dll
2010-01-27 00:14:42 ----A---- C:\Windows\system32\PresentationNative_v0300.dll
2010-01-27 00:14:41 ----A---- C:\Windows\system32\RMActivate_isv.exe
2010-01-27 00:14:41 ----A---- C:\Windows\system32\RMActivate.exe
2010-01-27 00:14:40 ----A---- C:\Windows\system32\msi.dll
2010-01-27 00:14:39 ----A---- C:\Windows\system32\secproc_isv.dll
2010-01-27 00:14:39 ----A---- C:\Windows\system32\imapi2fs.dll
2010-01-27 00:14:38 ----A---- C:\Windows\system32\icardagt.exe
2010-01-27 00:14:36 ----A---- C:\Windows\system32\spwizui.dll
2010-01-27 00:14:36 ----A---- C:\Windows\system32\AuxiliaryDisplayCpl.dll
2010-01-27 00:14:35 ----A---- C:\Windows\system32\spreview.exe
2010-01-27 00:14:35 ----A---- C:\Windows\system32\spinstall.exe
2010-01-27 00:14:34 ----A---- C:\Windows\system32\secproc.dll
2010-01-27 00:14:34 ----A---- C:\Windows\system32\drmv2clt.dll
2010-01-27 00:14:33 ----A---- C:\Windows\system32\shell32.dll
2010-01-27 00:14:32 ----A---- C:\Windows\system32\SearchIndexer.exe
2010-01-27 00:14:32 ----A---- C:\Windows\system32\p2psvc.dll
2010-01-27 00:14:32 ----A---- C:\Windows\system32\mssvp.dll
2010-01-27 00:14:32 ----A---- C:\Windows\system32\EhStorPwdMgr.dll
2010-01-27 00:14:32 ----A---- C:\Windows\system32\EhStorAuthn.dll
2010-01-27 00:14:31 ----A---- C:\Windows\system32\ntdll.dll
2010-01-27 00:14:31 ----A---- C:\Windows\system32\mssphtb.dll
2010-01-27 00:14:31 ----A---- C:\Windows\system32\mssph.dll
2010-01-27 00:14:31 ----A---- C:\Windows\system32\MSMPEG2VDEC.DLL
2010-01-27 00:14:31 ----A---- C:\Windows\system32\mscoree.dll
2010-01-27 00:14:31 ----A---- C:\Windows\system32\kernel32.dll
2010-01-27 00:14:30 ----A---- C:\Windows\system32\sdohlp.dll
2010-01-27 00:14:30 ----A---- C:\Windows\system32\imapi2.dll
2010-01-27 00:14:29 ----A---- C:\Windows\system32\korwbrkr.dll
2010-01-27 00:14:29 ----A---- C:\Windows\system32\IMJP10K.DLL
2010-01-27 00:14:29 ----A---- C:\Windows\system32\esent.dll
2010-01-27 00:14:29 ----A---- C:\Windows\system32\DevicePairing.dll
2010-01-27 00:14:28 ----A---- C:\Windows\system32\sperror.dll
2010-01-27 00:14:28 ----A---- C:\Windows\system32\SLC.dll
2010-01-27 00:14:28 ----A---- C:\Windows\system32\RMActivate_ssp.exe
2010-01-27 00:14:28 ----A---- C:\Windows\system32\PresentationHostProxy.dll
2010-01-27 00:14:27 ----A---- C:\Windows\system32\RMActivate_ssp_isv.exe
2010-01-27 00:14:27 ----A---- C:\Windows\system32\msshsq.dll
2010-01-27 00:14:26 ----A---- C:\Windows\system32\msjet40.dll
2010-01-27 00:14:26 ----A---- C:\Windows\system32\EhStorAPI.dll
2010-01-27 00:14:25 ----A---- C:\Windows\system32\Query.dll
2010-01-27 00:14:24 ----A---- C:\Windows\system32\user32.dll
2010-01-27 00:14:24 ----A---- C:\Windows\system32\srchadmin.dll
2010-01-27 00:14:24 ----A---- C:\Windows\system32\P2PGraph.dll
2010-01-27 00:14:24 ----A---- C:\Windows\system32\ole32.dll
2010-01-27 00:14:24 ----A---- C:\Windows\system32\msexch40.dll
2010-01-27 00:14:24 ----A---- C:\Windows\system32\IasMigReader.exe
2010-01-27 00:14:24 ----A---- C:\Windows\system32\EhStorShell.dll
2010-01-27 00:14:24 ----A---- C:\Windows\explorer.exe
2010-01-27 00:14:23 ----A---- C:\Windows\system32\riched20.dll
2010-01-27 00:14:23 ----A---- C:\Windows\system32\mmc.exe
2010-01-27 00:14:23 ----A---- C:\Windows\system32\IasMigPlugin.dll
2010-01-27 00:14:23 ----A---- C:\Windows\system32\gdi32.dll
2010-01-27 00:14:23 ----A---- C:\Windows\system32\EncDec.dll
2010-01-27 00:14:23 ----A---- C:\Windows\system32\DevicePairingWizard.exe
2010-01-27 00:14:22 ----A---- C:\Windows\system32\spoolss.dll
2010-01-27 00:14:22 ----A---- C:\Windows\system32\SearchProtocolHost.exe
2010-01-27 00:14:22 ----A---- C:\Windows\system32\SearchFilterHost.exe
2010-01-27 00:14:22 ----A---- C:\Windows\system32\RacEngn.dll
2010-01-27 00:14:22 ----A---- C:\Windows\system32\NaturalLanguage6.dll
2010-01-27 00:14:22 ----A---- C:\Windows\system32\milcore.dll
2010-01-27 00:14:22 ----A---- C:\Windows\system32\Magnify.exe
2010-01-27 00:14:22 ----A---- C:\Windows\system32\fdBth.dll
2010-01-27 00:14:22 ----A---- C:\Windows\system32\CertEnroll.dll
2010-01-27 00:14:22 ----A---- C:\Windows\system32\bcrypt.dll
2010-01-27 00:14:21 ----A---- C:\Windows\system32\msjtes40.dll
2010-01-27 00:14:20 ----A---- C:\Windows\system32\Storprop.dll
2010-01-27 00:14:20 ----A---- C:\Windows\system32\msvcp60.dll
2010-01-27 00:14:20 ----A---- C:\Windows\system32\mstext40.dll
2010-01-27 00:14:20 ----A---- C:\Windows\system32\infocardapi.dll
2010-01-27 00:14:20 ----A---- C:\Windows\system32\gpedit.dll
2010-01-27 00:14:20 ----A---- C:\Windows\system32\es.dll
2010-01-27 00:14:20 ----A---- C:\Windows\system32\advapi32.dll
2010-01-27 00:14:19 ----A---- C:\Windows\system32\WMPhoto.dll
2010-01-27 00:14:19 ----A---- C:\Windows\system32\WebClnt.dll
2010-01-27 00:14:19 ----A---- C:\Windows\system32\msexcl40.dll
2010-01-27 00:14:18 ----A---- C:\Windows\system32\vssapi.dll
2010-01-27 00:14:18 ----A---- C:\Windows\system32\slwmi.dll
2010-01-27 00:14:18 ----A---- C:\Windows\system32\msxbde40.dll
2010-01-27 00:14:18 ----A---- C:\Windows\system32\comsvcs.dll
2010-01-27 00:14:17 ----A---- C:\Windows\system32\DevicePairingProxy.dll
2010-01-27 00:14:17 ----A---- C:\Windows\system32\authui.dll
2010-01-27 00:14:16 ----A---- C:\Windows\system32\msrepl40.dll
2010-01-27 00:14:15 ----A---- C:\Windows\system32\propsys.dll
2010-01-27 00:14:15 ----A---- C:\Windows\system32\PresentationHost.exe
2010-01-27 00:14:15 ----A---- C:\Windows\system32\newdev.dll
2010-01-27 00:14:14 ----A---- C:\Windows\system32\setupapi.dll
2010-01-27 00:14:14 ----A---- C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2010-01-27 00:14:14 ----A---- C:\Windows\system32\mspbde40.dll
2010-01-27 00:14:14 ----A---- C:\Windows\system32\iasrecst.dll
2010-01-27 00:14:14 ----A---- C:\Windows\system32\explorer.exe
2010-01-27 00:14:14 ----A---- C:\Windows\system32\eudcedit.exe
2010-01-27 00:14:14 ----A---- C:\Windows\system32\crypt32.dll
2010-01-27 00:14:13 ----A---- C:\Windows\system32\davclnt.dll
2010-01-27 00:14:13 ----A---- C:\Windows\system32\d3d9.dll
2010-01-27 00:14:11 ----A---- C:\Windows\system32\msltus40.dll
2010-01-27 00:14:10 ----A---- C:\Windows\system32\shlwapi.dll
2010-01-27 00:14:10 ----A---- C:\Windows\system32\msrd3x40.dll
2010-01-27 00:14:10 ----A---- C:\Windows\system32\mfc42.dll
2010-01-27 00:14:09 ----A---- C:\Windows\system32\wevtapi.dll
2010-01-27 00:14:09 ----A---- C:\Windows\system32\photowiz.dll
2010-01-27 00:14:09 ----A---- C:\Windows\system32\nlhtml.dll
2010-01-27 00:14:09 ----A---- C:\Windows\system32\browseui.dll
2010-01-27 00:14:08 ----A---- C:\Windows\system32\win32spl.dll
2010-01-27 00:14:08 ----A---- C:\Windows\system32\quartz.dll
2010-01-27 00:14:07 ----A---- C:\Windows\system32\WcnNetsh.dll
2010-01-27 00:14:07 ----A---- C:\Windows\system32\SLCommDlg.dll
2010-01-27 00:14:07 ----A---- C:\Windows\system32\oleaut32.dll
2010-01-27 00:14:07 ----A---- C:\Windows\system32\netshell.dll
2010-01-27 00:14:06 ----A---- C:\Windows\system32\xmlfilter.dll
2010-01-27 00:14:06 ----A---- C:\Windows\system32\mswstr10.dll
2010-01-27 00:14:06 ----A---- C:\Windows\system32\msvcrt.dll
2010-01-27 00:14:06 ----A---- C:\Windows\system32\msctf.dll
2010-01-27 00:14:06 ----A---- C:\Windows\system32\mfc42u.dll
2010-01-27 00:14:06 ----A---- C:\Windows\system32\apds.dll
2010-01-27 00:14:05 ----A---- C:\Windows\system32\sqlsrv32.dll
2010-01-27 00:14:05 ----A---- C:\Windows\system32\msrd2x40.dll
2010-01-27 00:14:05 ----A---- C:\Windows\system32\eapphost.dll
2010-01-27 00:14:04 ----A---- C:\Windows\system32\propdefs.dll
2010-01-27 00:14:04 ----A---- C:\Windows\system32\odbc32.dll
2010-01-27 00:14:03 ----A---- C:\Windows\system32\WsmSvc.dll
2010-01-27 00:14:03 ----A---- C:\Windows\system32\wevtutil.exe
2010-01-27 00:14:03 ----A---- C:\Windows\system32\shdocvw.dll
2010-01-27 00:14:03 ----A---- C:\Windows\system32\mssitlb.dll
2010-01-27 00:14:03 ----A---- C:\Windows\system32\mmcndmgr.dll
2010-01-27 00:14:03 ----A---- C:\Windows\system32\dbgeng.dll
2010-01-27 00:14:02 ----A---- C:\Windows\system32\usp10.dll
2010-01-27 00:14:01 ----A---- C:\Windows\system32\msctfp.dll
2010-01-27 00:14:01 ----A---- C:\Windows\system32\fdBthProxy.dll
2010-01-27 00:14:01 ----A---- C:\Windows\system32\drvinst.exe
2010-01-27 00:14:01 ----A---- C:\Windows\system32\devmgr.dll
2010-01-27 00:14:00 ----A---- C:\Windows\system32\Wldap32.dll
2010-01-27 00:14:00 ----A---- C:\Windows\system32\wcnwiz.dll
2010-01-27 00:14:00 ----A---- C:\Windows\system32\netlogon.dll
2010-01-27 00:14:00 ----A---- C:\Windows\system32\msscb.dll
2010-01-27 00:14:00 ----A---- C:\Windows\system32\evr.dll
2010-01-27 00:14:00 ----A---- C:\Windows\system32\adsldpc.dll
2010-01-27 00:13:59 ----A---- C:\Windows\system32\WMVSDECD.DLL
2010-01-27 00:13:59 ----A---- C:\Windows\system32\WindowsCodecs.dll
2010-01-27 00:13:59 ----A---- C:\Windows\system32\services.exe
2010-01-27 00:13:59 ----A---- C:\Windows\system32\PhotoMetadataHandler.dll
2010-01-27 00:13:58 ----A---- C:\Windows\system32\wcncsvc.dll
2010-01-27 00:13:58 ----A---- C:\Windows\system32\PortableDeviceApi.dll
2010-01-27 00:13:58 ----A---- C:\Windows\system32\msjter40.dll
2010-01-27 00:13:58 ----A---- C:\Windows\system32\msdtcprx.dll
2010-01-27 00:13:58 ----A---- C:\Windows\system32\msdrm.dll
2010-01-27 00:13:58 ----A---- C:\Windows\system32\mimefilt.dll
2010-01-27 00:13:58 ----A---- C:\Windows\system32\comdlg32.dll
2010-01-27 00:13:58 ----A---- C:\Windows\system32\certcli.dll
2010-01-27 00:13:58 ----A---- C:\Windows\system32\adtschema.dll
2010-01-27 00:13:57 ----A---- C:\Windows\system32\WMNetMgr.dll
2010-01-27 00:13:57 ----A---- C:\Windows\system32\taskeng.exe
2010-01-27 00:13:57 ----A---- C:\Windows\system32\rtffilt.dll
2010-01-27 00:13:57 ----A---- C:\Windows\system32\reg.exe
2010-01-27 00:13:57 ----A---- C:\Windows\system32\mswdat10.dll
2010-01-27 00:13:57 ----A---- C:\Windows\system32\ipsmsnap.dll
2010-01-27 00:13:57 ----A---- C:\Windows\system32\dnsapi.dll
2010-01-27 00:13:57 ----A---- C:\Windows\system32\certutil.exe
2010-01-27 00:13:56 ----A---- C:\Windows\system32\msshooks.dll
2010-01-27 00:13:56 ----A---- C:\Windows\system32\msscntrs.dll
2010-01-27 00:13:55 ----A---- C:\Windows\system32\rsaenh.dll
2010-01-27 00:13:55 ----A---- C:\Windows\system32\msstrc.dll
2010-01-27 00:13:55 ----A---- C:\Windows\system32\msihnd.dll
2010-01-27 00:13:55 ----A---- C:\Windows\system32\MMDevAPI.dll
2010-01-27 00:13:55 ----A---- C:\Windows\system32\inetcomm.dll
2010-01-27 00:13:54 ----A---- C:\Windows\system32\netapi32.dll
2010-01-27 00:13:54 ----A---- C:\Windows\system32\dfshim.dll
2010-01-27 00:13:53 ----A---- C:\Windows\system32\mtxclu.dll
2010-01-27 00:13:53 ----A---- C:\Windows\system32\mscories.dll
2010-01-27 00:13:53 ----A---- C:\Windows\system32\hidserv.dll
2010-01-27 00:13:53 ----A---- C:\Windows\system32\fundisc.dll
2010-01-27 00:13:53 ----A---- C:\Windows\system32\dhcpcsvc6.dll
2010-01-27 00:13:53 ----A---- C:\Windows\system32\cryptsvc.dll
2010-01-27 00:13:52 ----A---- C:\Windows\system32\TsWpfWrp.exe
2010-01-27 00:13:49 ----A---- C:\Windows\system32\shsvcs.dll
2010-01-27 00:13:49 ----A---- C:\Windows\system32\msiexec.exe
2010-01-27 00:13:49 ----A---- C:\Windows\system32\imapi.dll
2010-01-27 00:13:48 ----A---- C:\Windows\system32\wdc.dll
2010-01-27 00:13:48 ----A---- C:\Windows\system32\imm32.dll
2010-01-27 00:13:48 ----A---- C:\Windows\system32\iassdo.dll
2010-01-27 00:13:48 ----A---- C:\Windows\system32\chsbrkr.dll
2010-01-27 00:13:47 ----A---- C:\Windows\system32\spcmsg.dll
2010-01-27 00:13:47 ----A---- C:\Windows\system32\slmgr.vbs
2010-01-27 00:13:47 ----A---- C:\Windows\system32\scrrun.dll
2010-01-27 00:13:47 ----A---- C:\Windows\system32\pnidui.dll
2010-01-27 00:13:47 ----A---- C:\Windows\system32\autofmt.exe
2010-01-27 00:13:46 ----A---- C:\Windows\system32\wmpmde.dll
2010-01-27 00:13:46 ----A---- C:\Windows\system32\pidgenx.dll
2010-01-27 00:13:46 ----A---- C:\Windows\system32\pdh.dll
2010-01-27 00:13:46 ----A---- C:\Windows\system32\dhcpcsvc.dll
2010-01-27 00:13:46 ----A---- C:\Windows\system32\CertEnrollUI.dll
2010-01-27 00:13:46 ----A---- C:\Windows\system32\azroles.dll
2010-01-27 00:13:45 ----A---- C:\Windows\system32\winlogon.exe
2010-01-27 00:13:45 ----A---- C:\Windows\system32\WindowsCodecsExt.dll
2010-01-27 00:13:45 ----A---- C:\Windows\system32\untfs.dll
2010-01-27 00:13:45 ----A---- C:\Windows\system32\SyncCenter.dll
2010-01-27 00:13:45 ----A---- C:\Windows\system32\spp.dll
2010-01-27 00:13:45 ----A---- C:\Windows\system32\sethc.exe
2010-01-27 00:13:45 ----A---- C:\Windows\system32\scrobj.dll
2010-01-27 00:13:45 ----A---- C:\Windows\system32\rtutils.dll
2010-01-27 00:13:45 ----A---- C:\Windows\system32\ncrypt.dll
2010-01-27 00:13:45 ----A---- C:\Windows\system32\msjetoledb40.dll
2010-01-27 00:13:45 ----A---- C:\Windows\system32\iassam.dll
2010-01-27 00:13:45 ----A---- C:\Windows\system32\comuid.dll
2010-01-27 00:13:45 ----A---- C:\Windows\system32\certmgr.dll
2010-01-27 00:13:43 ----A---- C:\Windows\system32\taskcomp.dll
2010-01-27 00:13:43 ----A---- C:\Windows\system32\autochk.exe
2010-01-27 00:13:42 ----A---- C:\Windows\system32\WMVDECOD.DLL
2010-01-27 00:13:42 ----A---- C:\Windows\system32\userenv.dll
2010-01-27 00:13:42 ----A---- C:\Windows\system32\printui.dll
2010-01-27 00:13:42 ----A---- C:\Windows\system32\onex.dll
2010-01-27 00:13:42 ----A---- C:\Windows\system32\iasnap.dll
2010-01-27 00:13:42 ----A---- C:\Windows\system32\cscript.exe
2010-01-27 00:13:42 ----A---- C:\Windows\system32\basecsp.dll
2010-01-27 00:13:42 ----A---- C:\Windows\system32\autoconv.exe
2010-01-27 00:13:42 ----A---- C:\Windows\system32\audiodg.exe
2010-01-27 00:13:41 ----A---- C:\Windows\system32\winmm.dll
2010-01-27 00:13:41 ----A---- C:\Windows\system32\RelMon.dll
2010-01-27 00:13:41 ----A---- C:\Windows\system32\osk.exe
2010-01-27 00:13:41 ----A---- C:\Windows\system32\mswsock.dll
2010-01-27 00:13:40 ----A---- C:\Windows\system32\WinSCard.dll
2010-01-27 00:13:40 ----A---- C:\Windows\system32\WerFaultSecure.exe
2010-01-27 00:13:40 ----A---- C:\Windows\system32\WerFault.exe
2010-01-27 00:13:40 ----A---- C:\Windows\system32\Utilman.exe
2010-01-27 00:13:40 ----A---- C:\Windows\system32\stobject.dll
2010-01-27 00:13:40 ----A---- C:\Windows\system32\SndVol.exe
2010-01-27 00:13:40 ----A---- C:\Windows\system32\secproc_ssp_isv.dll
2010-01-27 00:13:40 ----A---- C:\Windows\system32\secproc_ssp.dll
2010-01-27 00:13:40 ----A---- C:\Windows\system32\rdpencom.dll
2010-01-27 00:13:40 ----A---- C:\Windows\system32\prnntfy.dll
2010-01-27 00:13:40 ----A---- C:\Windows\system32\offfilt.dll
2010-01-27 00:13:40 ----A---- C:\Windows\system32\msnetobj.dll
2010-01-27 00:13:40 ----A---- C:\Windows\system32\msftedit.dll
2010-01-27 00:13:40 ----A---- C:\Windows\system32\mscms.dll
2010-01-27 00:13:40 ----A---- C:\Windows\system32\mfplat.dll
2010-01-27 00:13:40 ----A---- C:\Windows\system32\diskraid.exe
2010-01-27 00:13:40 ----A---- C:\Windows\system32\apphelp.dll
2010-01-27 00:13:40 ----A---- C:\Windows\system32\adsmsext.dll
2010-01-27 00:13:39 ----A---- C:\Windows\system32\wscript.exe
2010-01-27 00:13:39 ----A---- C:\Windows\system32\wscntfy.dll
2010-01-27 00:13:39 ----A---- C:\Windows\system32\ulib.dll
2010-01-27 00:13:39 ----A---- C:\Windows\system32\rastapi.dll
2010-01-27 00:13:39 ----A---- C:\Windows\system32\pnpsetup.dll
2010-01-27 00:13:39 ----A---- C:\Windows\system32\odbccp32.dll
2010-01-27 00:13:39 ----A---- C:\Windows\system32\IPHLPAPI.DLL
2010-01-27 00:13:39 ----A---- C:\Windows\system32\iasdatastore.dll
2010-01-27 00:13:39 ----A---- C:\Windows\system32\fdProxy.dll
2010-01-27 00:13:39 ----A---- C:\Windows\system32\dsound.dll
2010-01-27 00:13:39 ----A---- C:\Windows\system32\cryptui.dll
2010-01-27 00:13:39 ----A---- C:\Windows\system32\AudioEng.dll
2010-01-27 00:13:38 ----A---- C:\Windows\system32\WMVENCOD.DLL
2010-01-27 00:13:38 ----A---- C:\Windows\system32\wlangpui.dll
2010-01-27 00:13:38 ----A---- C:\Windows\system32\vdsdyn.dll
2010-01-27 00:13:38 ----A---- C:\Windows\system32\rasapi32.dll
2010-01-27 00:13:38 ----A---- C:\Windows\system32\ntprint.dll
2010-01-27 00:13:38 ----A---- C:\Windows\system32\logman.exe
2010-01-27 00:13:38 ----A---- C:\Windows\system32\ipsecsnp.dll
2010-01-27 00:13:38 ----A---- C:\Windows\system32\iashlpr.dll
2010-01-27 00:13:38 ----A---- C:\Windows\system32\gpapi.dll
2010-01-27 00:13:38 ----A---- C:\Windows\system32\diskpart.exe
2010-01-27 00:13:37 ----A---- C:\Windows\system32\zipfldr.dll
2010-01-27 00:13:37 ----A---- C:\Windows\system32\wusa.exe
2010-01-27 00:13:37 ----A---- C:\Windows\system32\wshext.dll
2010-01-27 00:13:37 ----A---- C:\Windows\system32\netcenter.dll
2010-01-27 00:13:37 ----A---- C:\Windows\system32\mscorier.dll
2010-01-27 00:13:37 ----A---- C:\Windows\system32\iasrad.dll
2010-01-27 00:13:37 ----A---- C:\Windows\system32\findstr.exe
2010-01-27 00:13:36 ----A---- C:\Windows\system32\wsnmp32.dll
2010-01-27 00:13:36 ----A---- C:\Windows\system32\wer.dll
2010-01-27 00:13:36 ----A---- C:\Windows\system32\tsbyuv.dll
2010-01-27 00:13:36 ----A---- C:\Windows\system32\themecpl.dll
2010-01-27 00:13:36 ----A---- C:\Windows\system32\slcc.dll
2010-01-27 00:13:36 ----A---- C:\Windows\system32\scansetting.dll
2010-01-27 00:13:36 ----A---- C:\Windows\system32\rasdlg.dll
2010-01-27 00:13:36 ----A---- C:\Windows\system32\ntmarta.dll
2010-01-27 00:13:36 ----A---- C:\Windows\system32\msutb.dll
2010-01-27 00:13:36 ----A---- C:\Windows\system32\mstlsapi.dll
2010-01-27 00:13:36 ----A---- C:\Windows\system32\mssprxy.dll
2010-01-27 00:13:36 ----A---- C:\Windows\system32\iassvcs.dll
2010-01-27 00:13:36 ----A---- C:\Windows\system32\iasads.dll
2010-01-27 00:13:35 ----A---- C:\Windows\system32\systemcpl.dll
2010-01-27 00:13:35 ----A---- C:\Windows\system32\sud.dll
2010-01-27 00:13:35 ----A---- C:\Windows\system32\powrprof.dll
2010-01-27 00:13:35 ----A---- C:\Windows\system32\powercpl.dll
2010-01-27 00:13:35 ----A---- C:\Windows\system32\PerfCenterCPL.dll
2010-01-27 00:13:35 ----A---- C:\Windows\system32\newdev.exe
2010-01-27 00:13:35 ----A---- C:\Windows\system32\networkmap.dll
2010-01-27 00:13:35 ----A---- C:\Windows\system32\mstsc.exe
2010-01-27 00:13:35 ----A---- C:\Windows\system32\icardres.dll
2010-01-27 00:13:35 ----A---- C:\Windows\system32\iasacct.dll
2010-01-27 00:13:35 ----A---- C:\Windows\system32\connect.dll
2010-01-27 00:13:35 ----A---- C:\Windows\system32\authz.dll
2010-01-27 00:13:34 ----A---- C:\Windows\system32\wpcao.dll
2010-01-27 00:13:34 ----A---- C:\Windows\system32\wlanpref.dll
2010-01-27 00:13:34 ----A---- C:\Windows\system32\vdsutil.dll
2010-01-27 00:13:34 ----A---- C:\Windows\system32\usercpl.dll
2010-01-27 00:13:34 ----A---- C:\Windows\system32\themeui.dll
2010-01-27 00:13:34 ----A---- C:\Windows\system32\samlib.dll
2010-01-27 00:13:34 ----A---- C:\Windows\system32\rpchttp.dll
2010-01-27 00:13:34 ----A---- C:\Windows\system32\regapi.dll
2010-01-27 00:13:34 ----A---- C:\Windows\system32\qdvd.dll
2010-01-27 00:13:34 ----A---- C:\Windows\system32\pcaui.dll
2010-01-27 00:13:34 ----A---- C:\Windows\system32\msinfo32.exe
2010-01-27 00:13:34 ----A---- C:\Windows\system32\mmci.dll
2010-01-27 00:13:34 ----A---- C:\Windows\system32\autoplay.dll
2010-01-27 00:13:34 ----A---- C:\Windows\system32\accessibilitycpl.dll
2010-01-27 00:13:33 ----A---- C:\Windows\system32\wscisvif.dll
2010-01-27 00:13:33 ----A---- C:\Windows\system32\WMPEncEn.dll
2010-01-27 00:13:33 ----A---- C:\Windows\system32\tapisrv.dll
2010-01-27 00:13:33 ----A---- C:\Windows\system32\scksp.dll
2010-01-27 00:13:33 ----A---- C:\Windows\system32\scesrv.dll
2010-01-27 00:13:33 ----A---- C:\Windows\system32\rekeywiz.exe
2010-01-27 00:13:33 ----A---- C:\Windows\system32\psisdecd.dll
2010-01-27 00:13:33 ----A---- C:\Windows\system32\oleprn.dll
2010-01-27 00:13:33 ----A---- C:\Windows\system32\mpr.dll
2010-01-27 00:13:33 ----A---- C:\Windows\system32\iaspolcy.dll
2010-01-27 00:13:33 ----A---- C:\Windows\system32\feclient.dll
2010-01-27 00:13:33 ----A---- C:\Windows\system32\Faultrep.dll
2010-01-27 00:13:33 ----A---- C:\Windows\system32\dot3msm.dll
2010-01-27 00:13:33 ----A---- C:\Windows\system32\AudioSes.dll
2010-01-27 00:13:32 ----A---- C:\Windows\system32\rasgcw.dll
2010-01-27 00:13:32 ----A---- C:\Windows\system32\qedit.dll
2010-01-27 00:13:32 ----A---- C:\Windows\system32\perfdisk.dll
2010-01-27 00:13:32 ----A---- C:\Windows\system32\ncryptui.dll
2010-01-27 00:13:32 ----A---- C:\Windows\system32\hdwwiz.exe
2010-01-27 00:13:32 ----A---- C:\Windows\system32\dpapimig.exe
2010-01-27 00:13:32 ----A---- C:\Windows\system32\certreq.exe
2010-01-27 00:13:31 ----A---- C:\Windows\system32\whealogr.dll
2010-01-27 00:13:31 ----A---- C:\Windows\system32\TSTheme.exe
2010-01-27 00:13:31 ----A---- C:\Windows\system32\tcpmon.dll
2010-01-27 00:13:31 ----A---- C:\Windows\system32\tcpipcfg.dll
2010-01-27 00:13:31 ----A---- C:\Windows\system32\spwinsat.dll
2010-01-27 00:13:31 ----A---- C:\Windows\system32\SmartcardCredentialProvider.dll
2010-01-27 00:13:31 ----A---- C:\Windows\system32\scecli.dll
2010-01-27 00:13:31 ----A---- C:\Windows\system32\rasplap.dll
2010-01-27 00:13:31 ----A---- C:\Windows\system32\FWPUCLNT.DLL
2010-01-27 00:13:31 ----A---- C:\Windows\system32\fdWSD.dll
2010-01-27 00:13:31 ----A---- C:\Windows\system32\cmmon32.exe
2010-01-27 00:13:30 ----A---- C:\Windows\system32\WMVXENCD.DLL
2010-01-27 00:13:30 ----A---- C:\Windows\system32\wlanui.dll
2010-01-27 00:13:30 ----A---- C:\Windows\system32\wiaaut.dll
2010-01-27 00:13:30 ----A---- C:\Windows\system32\SCardSvr.dll
2010-01-27 00:13:30 ----A---- C:\Windows\system32\rasppp.dll
2010-01-27 00:13:30 ----A---- C:\Windows\system32\raschap.dll
2010-01-27 00:13:30 ----A---- C:\Windows\system32\MSVidCtl.dll
2010-01-27 00:13:30 ----A---- C:\Windows\system32\fontext.dll
2010-01-27 00:13:30 ----A---- C:\Windows\system32\conime.exe
2010-01-27 00:13:30 ----A---- C:\Windows\system32\cmdial32.dll
2010-01-27 00:13:29 ----D---- C:\Program Files (x86)\Common Files\Nokia
2010-01-27 00:13:29 ----A---- C:\Windows\system32\wmdrmsdk.dll
2010-01-27 00:13:29 ----A---- C:\Windows\system32\wlgpclnt.dll
2010-01-27 00:13:29 ----A---- C:\Windows\system32\shwebsvc.dll
2010-01-27 00:13:29 ----A---- C:\Windows\system32\shsetup.dll
2010-01-27 00:13:29 ----A---- C:\Windows\system32\rasmontr.dll
2010-01-27 00:13:29 ----A---- C:\Windows\system32\oobefldr.dll
2010-01-27 00:13:29 ----A---- C:\Windows\system32\netplwiz.dll
2010-01-27 00:13:29 ----A---- C:\Windows\system32\mscandui.dll
2010-01-27 00:13:29 ----A---- C:\Windows\system32\modemui.dll
2010-01-27 00:13:29 ----A---- C:\Windows\system32\dsprop.dll
2010-01-27 00:13:29 ----A---- C:\Windows\system32\dimsroam.dll
2010-01-27 00:13:29 ----A---- C:\Windows\system32\dataclen.dll
2010-01-27 00:13:29 ----A---- C:\Windows\system32\credui.dll
2010-01-27 00:13:29 ----A---- C:\Windows\system32\chtbrkr.dll
2010-01-27 00:13:29 ----A---- C:\Windows\system32\blackbox.dll
2010-01-27 00:13:28 ----A---- C:\Windows\system32\WSDMon.dll
2010-01-27 00:13:28 ----A---- C:\Windows\system32\wscapi.dll
2010-01-27 00:13:28 ----A---- C:\Windows\system32\wpdwcn.dll
2010-01-27 00:13:28 ----A---- C:\Windows\system32\wpcsvc.dll
2010-01-27 00:13:28 ----A---- C:\Windows\system32\wmpeffects.dll
2010-01-27 00:13:28 ----A---- C:\Windows\system32\thawbrkr.dll
2010-01-27 00:13:28 ----A---- C:\Windows\system32\softkbd.dll
2010-01-27 00:13:28 ----A---- C:\Windows\system32\sendmail.dll
2010-01-27 00:13:28 ----A---- C:\Windows\system32\networkexplorer.dll
2010-01-27 00:13:28 ----A---- C:\Windows\system32\msscp.dll
2010-01-27 00:13:28 ----A---- C:\Windows\system32\msimtf.dll
2010-01-27 00:13:28 ----A---- C:\Windows\system32\logagent.exe
2010-01-27 00:13:28 ----A---- C:\Windows\system32\InkEd.dll
2010-01-27 00:13:28 ----A---- C:\Windows\system32\ifmon.dll
2010-01-27 00:13:28 ----A---- C:\Windows\system32\gpresult.exe
2010-01-27 00:13:28 ----A---- C:\Windows\system32\cipher.exe
2010-01-27 00:13:28 ----A---- C:\Windows\system32\AUDIOKSE.dll
2010-01-27 00:13:27 ----A---- C:\Windows\system32\olepro32.dll
2010-01-27 00:13:27 ----A---- C:\Windows\system32\msctfui.dll
2010-01-27 00:13:27 ----A---- C:\Windows\system32\MediaMetadataHandler.dll
2010-01-27 00:13:27 ----A---- C:\Windows\system32\drmmgrtn.dll
2010-01-27 00:13:27 ----A---- C:\Windows\system32\dmsynth.dll
2010-01-27 00:13:26 ----A---- C:\Windows\system32\wshbth.dll
2010-01-27 00:13:26 ----A---- C:\Windows\system32\wmdrmdev.dll
2010-01-27 00:13:26 ----A---- C:\Windows\system32\WMADMOD.DLL
2010-01-27 00:13:26 ----A---- C:\Windows\system32\version.dll
2010-01-27 00:13:26 ----A---- C:\Windows\system32\puiapi.dll
2010-01-27 00:13:26 ----A---- C:\Windows\system32\msisip.dll
2010-01-27 00:13:26 ----A---- C:\Windows\system32\MsCtfMonitor.dll
2010-01-27 00:13:26 ----A---- C:\Windows\system32\mprapi.dll
2010-01-27 00:13:26 ----A---- C:\Windows\system32\input.dll
2010-01-27 00:13:26 ----A---- C:\Windows\system32\fdSSDP.dll
2010-01-27 00:13:26 ----A---- C:\Windows\system32\fc.exe
2010-01-27 00:13:26 ----A---- C:\Windows\system32\ExplorerFrame.dll
2010-01-27 00:13:26 ----A---- C:\Windows\system32\dmusic.dll
2010-01-27 00:13:25 ----A---- C:\Windows\system32\wsdchngr.dll
2010-01-27 00:13:25 ----A---- C:\Windows\system32\wmdrmnet.dll
2010-01-27 00:13:25 ----A---- C:\Windows\system32\tscupgrd.exe
2010-01-27 00:13:25 ----A---- C:\Windows\system32\SMBHelperClass.dll
2010-01-27 00:13:25 ----A---- C:\Windows\system32\rasdial.exe
2010-01-27 00:13:25 ----A---- C:\Windows\system32\rasdiag.dll
2010-01-27 00:13:25 ----A---- C:\Windows\system32\PortableDeviceTypes.dll
2010-01-27 00:13:25 ----A---- C:\Windows\system32\PortableDeviceClassExtension.dll
2010-01-27 00:13:25 ----A---- C:\Windows\system32\msjint40.dll
2010-01-27 00:13:25 ----A---- C:\Windows\system32\MSAC3ENC.DLL
2010-01-27 00:13:25 ----A---- C:\Windows\system32\l2nacp.dll
2010-01-27 00:13:25 ----A---- C:\Windows\system32\ipconfig.exe
2010-01-27 00:13:25 ----A---- C:\Windows\system32\ftp.exe
2010-01-27 00:13:25 ----A---- C:\Windows\system32\fdWCN.dll
2010-01-27 00:13:25 ----A---- C:\Windows\system32\eappcfg.dll
2010-01-27 00:13:25 ----A---- C:\Windows\system32\eapp3hst.dll
2010-01-27 00:13:25 ----A---- C:\Windows\system32\dot3cfg.dll
2010-01-27 00:13:25 ----A---- C:\Windows\system32\cscdll.dll
2010-01-27 00:13:25 ----A---- C:\Windows\system32\cscapi.dll
2010-01-27 00:13:25 ----A---- C:\Windows\system32\CHxReadingStringIME.dll
2010-01-27 00:13:25 ----A---- C:\Windows\system32\bthudtask.exe
2010-01-27 00:13:24 ----A---- C:\Windows\system32\slcinst.dll
2010-01-27 00:13:24 ----A---- C:\Windows\system32\ocsetup.exe
2010-01-27 00:13:24 ----A---- C:\Windows\system32\nslookup.exe
2010-01-27 00:13:24 ----A---- C:\Windows\system32\networkitemfactory.dll
2010-01-27 00:13:24 ----A---- C:\Windows\system32\MSMPEG2ENC.DLL
2010-01-27 00:13:24 ----A---- C:\Windows\system32\mmcico.dll
2010-01-27 00:13:24 ----A---- C:\Windows\system32\hbaapi.dll
2010-01-27 00:13:24 ----A---- C:\Windows\system32\FwRemoteSvr.dll
2010-01-27 00:13:24 ----A---- C:\Windows\system32\fdeploy.dll
2010-01-27 00:13:24 ----A---- C:\Windows\system32\eappgnui.dll
2010-01-27 00:13:23 ----A---- C:\Windows\system32\wmpps.dll
2010-01-27 00:13:23 ----A---- C:\Windows\system32\vdmdbg.dll
2010-01-27 00:13:23 ----A---- C:\Windows\system32\odbcconf.dll
2010-01-27 00:13:23 ----A---- C:\Windows\system32\NcdProp.dll
2010-01-27 00:13:23 ----A---- C:\Windows\system32\gpupdate.exe
2010-01-27 00:13:22 ----A---- C:\Windows\system32\winrnr.dll
2010-01-27 00:13:22 ----A---- C:\Windows\system32\slwga.dll
2010-01-27 00:13:22 ----A---- C:\Windows\system32\midimap.dll
2010-01-27 00:13:21 ----A---- C:\Windows\system32\msimsg.dll
2010-01-27 00:13:21 ----A---- C:\Windows\system32\f3ahvoas.dll
2010-01-27 00:13:09 ----A---- C:\Windows\system32\wdscore.dll
2010-01-27 00:13:04 ----A---- C:\Windows\system32\drvstore.dll
2010-01-27 00:11:40 ----D---- C:\ProgramData\Installations
2010-01-26 22:17:02 ----D---- C:\Windows\Sun
2010-01-24 17:06:26 ----D---- C:\Users\Boss\AppData\Roaming\Malwarebytes
2010-01-24 17:06:22 ----D---- C:\ProgramData\Malwarebytes
2010-01-24 16:53:01 ----A---- C:\Windows\system32\nshhttp.dll
2010-01-24 16:52:59 ----A---- C:\Windows\system32\httpapi.dll
2010-01-24 16:52:16 ----A---- C:\Windows\system32\rastls.dll
2010-01-24 16:52:14 ----A---- C:\Windows\system32\t2embed.dll
2010-01-24 16:52:14 ----A---- C:\Windows\system32\fontsub.dll
2010-01-24 16:52:12 ----A---- C:\Windows\system32\winhttp.dll
2010-01-23 18:40:30 ----D---- C:\ProgramData\Sun
2010-01-23 18:40:30 ----D---- C:\Program Files (x86)\Common Files\Java
2010-01-23 18:40:20 ----A---- C:\Windows\system32\javaws.exe
2010-01-23 18:40:20 ----A---- C:\Windows\system32\javaw.exe
2010-01-23 18:40:20 ----A---- C:\Windows\system32\java.exe

======List of files/folders modified in the last 1 months======

2010-01-27 19:48:25 ----D---- C:\Windows\Temp
2010-01-27 19:46:27 ----D---- C:\Windows\System32
2010-01-27 19:46:27 ----D---- C:\Windows\inf
2010-01-27 01:24:29 ----RD---- C:\Program Files (x86)
2010-01-27 01:15:39 ----D---- C:\Windows\rescache
2010-01-27 01:14:00 ----D---- C:\Windows\winsxs
2010-01-27 01:11:18 ----D---- C:\ProgramData\Spybot - Search & Destroy
2010-01-27 01:02:49 ----D---- C:\Windows
2010-01-27 00:53:23 ----D---- C:\Windows\SysWOW64
2010-01-27 00:53:23 ----D---- C:\Windows\system32\migration
2010-01-27 00:53:23 ----D---- C:\Program Files (x86)\Internet Explorer
2010-01-27 00:53:22 ----D---- C:\Windows\system32\de-DE
2010-01-27 00:53:19 ----D---- C:\Windows\system32\en-US
2010-01-27 00:53:18 ----D---- C:\Windows\PolicyDefinitions
2010-01-27 00:51:51 ----SHD---- C:\Windows\Installer
2010-01-27 00:49:00 ----D---- C:\Windows\Microsoft.NET
2010-01-27 00:48:59 ----RSD---- C:\Windows\assembly
2010-01-27 00:43:40 ----D---- C:\Program Files (x86)\Windows Media Player
2010-01-27 00:43:40 ----D---- C:\Program Files (x86)\Windows Mail
2010-01-27 00:31:12 ----SHD---- C:\Boot
2010-01-27 00:26:31 ----D---- C:\Program Files (x86)\Windows Sidebar
2010-01-27 00:26:31 ----D---- C:\Program Files (x86)\Windows Calendar
2010-01-27 00:26:30 ----D---- C:\Program Files (x86)\Windows Photo Gallery
2010-01-27 00:26:30 ----D---- C:\Program Files (x86)\Common Files\System
2010-01-27 00:26:29 ----D---- C:\Windows\servicing
2010-01-27 00:26:29 ----D---- C:\Windows\ehome
2010-01-27 00:26:19 ----D---- C:\Windows\system32\XPSViewer
2010-01-27 00:26:19 ----D---- C:\Windows\system32\sk-SK
2010-01-27 00:26:19 ----D---- C:\Windows\system32\lv-LV
2010-01-27 00:26:19 ----D---- C:\Windows\system32\ko-KR
2010-01-27 00:26:19 ----D---- C:\Windows\system32\hr-HR
2010-01-27 00:26:19 ----D---- C:\Windows\system32\et-EE
2010-01-27 00:26:19 ----D---- C:\Windows\system32\da-DK
2010-01-27 00:26:17 ----D---- C:\Windows\system32\oobe
2010-01-27 00:26:17 ----D---- C:\Windows\system32\it-IT
2010-01-27 00:26:17 ----D---- C:\Windows\system32\el-GR
2010-01-27 00:26:16 ----D---- C:\Windows\system32\zh-TW
2010-01-27 00:26:16 ----D---- C:\Windows\system32\zh-CN
2010-01-27 00:26:16 ----D---- C:\Windows\system32\uk-UA
2010-01-27 00:26:16 ----D---- C:\Windows\system32\tr-TR
2010-01-27 00:26:16 ----D---- C:\Windows\system32\th-TH
2010-01-27 00:26:16 ----D---- C:\Windows\system32\sv-SE
2010-01-27 00:26:16 ----D---- C:\Windows\system32\sr-Latn-CS
2010-01-27 00:26:16 ----D---- C:\Windows\system32\SLUI
2010-01-27 00:26:16 ----D---- C:\Windows\system32\sl-SI
2010-01-27 00:26:16 ----D---- C:\Windows\system32\setup
2010-01-27 00:26:16 ----D---- C:\Windows\system32\ru-RU
2010-01-27 00:26:16 ----D---- C:\Windows\system32\ro-RO
2010-01-27 00:26:16 ----D---- C:\Windows\system32\pt-PT
2010-01-27 00:26:16 ----D---- C:\Windows\system32\pl-PL
2010-01-27 00:26:16 ----D---- C:\Windows\system32\manifeststore
2010-01-27 00:26:16 ----D---- C:\Windows\system32\ja-JP
2010-01-27 00:26:16 ----D---- C:\Windows\system32\hu-HU
2010-01-27 00:26:16 ----D---- C:\Windows\system32\he-IL
2010-01-27 00:26:16 ----D---- C:\Windows\system32\fr-FR
2010-01-27 00:26:16 ----D---- C:\Windows\system32\fi-FI
2010-01-27 00:26:16 ----D---- C:\Windows\system32\es-ES
2010-01-27 00:26:16 ----D---- C:\Windows\system32\cs-CZ
2010-01-27 00:26:16 ----D---- C:\Windows\system32\bg-BG
2010-01-27 00:26:16 ----D---- C:\Windows\system32\AdvancedInstallers
2010-01-27 00:26:15 ----D---- C:\Windows\system32\wbem
2010-01-27 00:26:15 ----D---- C:\Windows\system32\pt-BR
2010-01-27 00:26:15 ----D---- C:\Windows\system32\nl-NL
2010-01-27 00:26:15 ----D---- C:\Windows\system32\nb-NO
2010-01-27 00:26:15 ----D---- C:\Windows\system32\migwiz
2010-01-27 00:26:15 ----D---- C:\Windows\system32\lt-LT
2010-01-27 00:26:15 ----D---- C:\Windows\system32\ar-SA
2010-01-27 00:26:03 ----D---- C:\Windows\IME
2010-01-27 00:25:45 ----RSD---- C:\Windows\Fonts
2010-01-27 00:25:45 ----D---- C:\Windows\AppPatch
2010-01-27 00:24:29 ----D---- C:\Windows\system32\RTCOM
2010-01-27 00:14:05 ----D---- C:\Program Files (x86)\Nokia
2010-01-27 00:13:29 ----D---- C:\Program Files (x86)\Common Files
2010-01-27 00:11:40 ----HD---- C:\ProgramData
2010-01-25 07:40:55 ----D---- C:\Windows\Prefetch
2010-01-24 22:11:14 ----SHD---- C:\System Volume Information
2010-01-24 22:10:45 ----D---- C:\Windows\Debug
2010-01-24 17:06:23 ----D---- C:\Windows\system32\drivers
2010-01-24 16:27:13 ----D---- C:\Windows\pss
2010-01-23 18:40:19 ----D---- C:\Program Files (x86)\Java
2010-01-21 23:01:44 ----D---- C:\Program Files (x86)\Mozilla Firefox
2010-01-13 21:49:04 ----D---- C:\ProgramData\Adobe
2010-01-13 21:49:04 ----D---- C:\Program Files (x86)\Common Files\Adobe

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 avgntflt;avgntflt; C:\Windows\system32\DRIVERS\avgntflt.sys []
R3 athrusb;Atheros Wireless LAN USB device driver; C:\Windows\system32\DRIVERS\athrxusb.sys []
R3 AtiHdmiService;ATI Function Driver for HDMI Service; C:\Windows\system32\drivers\AtiHdmi.sys []
R3 atikmdag;atikmdag; C:\Windows\system32\DRIVERS\atikmdag.sys []
R3 AVMCOWAN;AVMCOWAN; C:\Windows\system32\DRIVERS\AVMCOWAN.sys []
R3 FPCIBASE;FRITZ!Card PCI; C:\Windows\system32\DRIVERS\fpcibase.sys []
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys []
R3 ksthunk;Kernel Streaming Thunks; C:\Windows\system32\drivers\ksthunk.sys []
R3 RTL8169;Realtek 8169 NT Driver; C:\Windows\system32\DRIVERS\Rtlh64.sys []
S3 drmkaud;Microsoft Kernel-DRM-Audioentschlüsselung; C:\Windows\system32\drivers\drmkaud.sys []
S3 GMSIPCI;GMSIPCI; \??\D:\INSTALL\GMSIPCI.SYS []
S3 HdAudAddService;Microsoft 1.1 UAA-Funktionstreiber für High Definition Audio-Dienst; C:\Windows\system32\drivers\HdAudio.sys []
S3 MSIGreenPower;MSIGreenPower; \??\C:\Program Files (x86)\MSI\DualCoreCenter\Green Power Center\NTGLM7X64.sys [2008-03-12 40248]
S3 MSIGreenPowerRushTop;MSIGreenPowerRushTop; \??\C:\Program Files (x86)\MSI\DualCoreCenter\Green Power Center\RushTop64.sys [2008-04-23 74072]
S3 MSKSSRV;Microsoft Streaming Service Proxy; C:\Windows\system32\drivers\MSKSSRV.sys []
S3 MSPCLOCK;Microsoft Proxy für Streaming Clock; C:\Windows\system32\drivers\MSPCLOCK.sys []
S3 MSPQM;Microsoft Proxy für Streaming Quality Manager; C:\Windows\system32\drivers\MSPQM.sys []
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink-Konvertierung; C:\Windows\system32\drivers\MSTEE.sys []
S3 NWUSBModem;Novatel Wireless USB Modem Driver; C:\Windows\system32\DRIVERS\nwusbmdm.sys []
S3 NWUSBPort;Novatel Wireless USB Status Port Driver; C:\Windows\system32\DRIVERS\nwusbser.sys []
S3 RushTopDevice_J;RushTopDevice_J; \??\C:\Program Files (x86)\MSI\DualCoreCenter\Green Power Center\RushJ64.sys [2008-04-23 30552]
S3 upperdev;upperdev; C:\Windows\system32\DRIVERS\usbser_lowerfltx64.sys []
S3 WpdUsb;WpdUsb; C:\Windows\system32\DRIVERS\wpdusb.sys []
S3 WUDFRd;WUDFRd; C:\Windows\system32\DRIVERS\WUDFRd.sys []
S4 ErrDev;Microsoft Hardware Error Device Driver; C:\Windows\system32\drivers\errdev.sys []
S4 MegaSR;MegaSR; C:\Windows\system32\drivers\megasr.sys []
S4 WmiAcpi;Microsoft Windows Management Interface for ACPI; C:\Windows\system32\drivers\wmiacpi.sys []

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe []
R2 AntiVirSchedulerService;Avira AntiVir Planer; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [2009-05-13 108289]
R2 AntiVirService;Avira AntiVir Guard; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [2009-07-21 185089]
R2 NMSAccessU;NMSAccessU; X:\Programme\CDBurnerXP\NMSAccessU.exe [2008-06-15 71096]
S3 clr_optimization_v2.0.50727_64;Microsoft .NET Framework NGEN v2.0.50727_X64; C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe [2009-03-30 89920]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
S3 PerfHost;@%systemroot%\sysWow64\perfhost.exe,-2; C:\Windows\SysWow64\perfhost.exe [2008-01-21 19968]
S3 ServiceLayer;ServiceLayer; C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe [2007-02-08 212480]

-----------------EOF-----------------
Logfile of random's system information tool 1.06 (written by random/random)
Run by Boss at 2010-01-27 19:48:26
Microsoft® Windows Vista™ Home Premium Service Pack 2
System drive C: has 3 GB (8%) free of 30 GB
Total RAM: 4094 MB (72% free)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 19:48:26, on 27.01.2010
Platform: Windows Vista SP2 (WinNT 6.00.1906)
MSIE: Internet Explorer v8.00 (8.00.6001.18882)
Boot mode: Normal

Running processes:
C:\ProgramData\Macrovision\FLEXnet Connect\6\ISUSPM.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
C:\Users\Rob\Desktop\RSIT.exe
X:\Programme\HijackThis\Boss.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O1 - Hosts: ::1 localhost
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [avgnt] "C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe" /min
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "X:\Programme\Acrobat Reader\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKCU\..\Run: [ccleaner] "C:\Program Files (x86)\CCleaner\ccleaner.exe" /AUTO
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOKALER DIENST')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOKALER DIENST')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETZWERKDIENST')
O4 - HKUS\S-1-5-21-1546280565-161491126-443164695-1001\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe (User 'Rob')
O8 - Extra context menu item: Nach Microsoft &Excel exportieren - res://X:\PROGRA~1\MICROS~1\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: Save YouTube Video as MP3 - res://C:\Program Files (x86)\Common Files\DVDVideoSoft\Dll\IEContextMenuY.dll/scriptY2MP3.htm
O9 - Extra button: PokerStars - {3AD14F0C-ED16-4e43-B6D8-661B03F6A1EF} - X:\Spiele\Pokerstars\PokerStarsUpdate.exe
O9 - Extra button: Recherchieren - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - X:\PROGRA~1\MICROS~1\OFFICE11\REFIEBAR.DLL
O13 - Gopher Prefix:
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: Avira AntiVir Planer (AntiVirSchedulerService) - Avira GmbH - C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
O23 - Service: Avira AntiVir Guard (AntiVirService) - Avira GmbH - C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
O23 - Service: @dfsrres.dll,-101 (DFSR) - Unknown owner - C:\Windows\system32\DFSR.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NMSAccessU - Unknown owner - X:\Programme\CDBurnerXP\NMSAccessU.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: ServiceLayer - Nokia. - C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: @%SystemRoot%\system32\SLsvc.exe,-101 (slsvc) - Unknown owner - C:\Windows\system32\SLsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 5878 bytes

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-12-21 75200]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll [2010-01-11 41760]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2010-01-11 246504]
"avgnt"=C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [2009-03-02 209153]
"Adobe Reader Speed Launcher"=X:\Programme\Acrobat Reader\Reader\Reader_sl.exe [2009-12-22 35760]
"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2009-12-11 948672]
""= []

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"ccleaner"=C:\Program Files (x86)\CCleaner\ccleaner.exe [2009-12-21 1803064]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfPf]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfRd]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfUsbccidDriver]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=1
"dontdisplaylastusername"=1
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"EnableUIADesktopToggle"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=
"ForceActiveDesktopOn"=
"NoActiveDesktopChanges"=
"BindDirectlyToPropertySetStorage"=

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]



Alt 27.01.2010, 18:57   #5
jonny55
 
System nach Bereinigung wieder sauber? - Standard

System nach Bereinigung wieder sauber?



und part 2 der log.txt

Zitat:
======File associations======

.js - edit - C:\Windows\SysWOW64\Notepad.exe %1
.js - open - C:\Windows\SysWOW64\WScript.exe "%1" %*

======List of files/folders created in the last 1 months======

2010-01-27 19:48:26 ----D---- C:\rsit
2010-01-27 00:51:43 ----A---- C:\Windows\system32\occache.dll
2010-01-27 00:51:43 ----A---- C:\Windows\system32\msfeedsbs.dll
2010-01-27 00:51:43 ----A---- C:\Windows\system32\msfeeds.dll
2010-01-27 00:51:43 ----A---- C:\Windows\system32\jsproxy.dll
2010-01-27 00:51:43 ----A---- C:\Windows\system32\iepeers.dll
2010-01-27 00:51:42 ----A---- C:\Windows\system32\wininet.dll
2010-01-27 00:51:42 ----A---- C:\Windows\system32\urlmon.dll
2010-01-27 00:51:42 ----A---- C:\Windows\system32\ieui.dll
2010-01-27 00:51:42 ----A---- C:\Windows\system32\iesetup.dll
2010-01-27 00:51:42 ----A---- C:\Windows\system32\iernonce.dll
2010-01-27 00:51:42 ----A---- C:\Windows\system32\iedkcs32.dll
2010-01-27 00:51:41 ----A---- C:\Windows\system32\msfeedssync.exe
2010-01-27 00:51:41 ----A---- C:\Windows\system32\iertutil.dll
2010-01-27 00:51:41 ----A---- C:\Windows\system32\ie4uinit.exe
2010-01-27 00:51:40 ----A---- C:\Windows\system32\ieframe.dll
2010-01-27 00:51:39 ----A---- C:\Windows\system32\mshtml.dll
2010-01-27 00:51:38 ----A---- C:\Windows\system32\ieUnatt.exe
2010-01-27 00:51:38 ----A---- C:\Windows\system32\iesysprep.dll
2010-01-27 00:49:52 ----A---- C:\Windows\system32\advpack.dll
2010-01-27 00:49:52 ----A---- C:\Windows\system32\admparse.dll
2010-01-27 00:49:51 ----A---- C:\Windows\system32\wextract.exe
2010-01-27 00:49:51 ----A---- C:\Windows\system32\msls31.dll
2010-01-27 00:49:51 ----A---- C:\Windows\system32\ieakeng.dll
2010-01-27 00:49:51 ----A---- C:\Windows\system32\icardie.dll
2010-01-27 00:49:51 ----A---- C:\Windows\system32\corpol.dll
2010-01-27 00:49:50 ----A---- C:\Windows\system32\pngfilt.dll
2010-01-27 00:49:50 ----A---- C:\Windows\system32\mstime.dll
2010-01-27 00:49:50 ----A---- C:\Windows\system32\imgutil.dll
2010-01-27 00:49:50 ----A---- C:\Windows\system32\ieapfltr.dll
2010-01-27 00:49:50 ----A---- C:\Windows\system32\dxtrans.dll
2010-01-27 00:49:50 ----A---- C:\Windows\system32\dxtmsft.dll
2010-01-27 00:49:49 ----A---- C:\Windows\system32\WinFXDocObj.exe
2010-01-27 00:49:49 ----A---- C:\Windows\system32\webcheck.dll
2010-01-27 00:49:49 ----A---- C:\Windows\system32\msrating.dll
2010-01-27 00:49:49 ----A---- C:\Windows\system32\mshtmled.dll
2010-01-27 00:49:49 ----A---- C:\Windows\system32\licmgr10.dll
2010-01-27 00:49:49 ----A---- C:\Windows\system32\inseng.dll
2010-01-27 00:49:49 ----A---- C:\Windows\system32\ieakui.dll
2010-01-27 00:49:49 ----A---- C:\Windows\system32\ieaksie.dll
2010-01-27 00:49:48 ----A---- C:\Windows\system32\vbscript.dll
2010-01-27 00:49:48 ----A---- C:\Windows\system32\url.dll
2010-01-27 00:49:48 ----A---- C:\Windows\system32\SetIEInstalledDate.exe
2010-01-27 00:49:48 ----A---- C:\Windows\system32\SetDepNx.exe
2010-01-27 00:49:48 ----A---- C:\Windows\system32\RegisterIEPKEYs.exe
2010-01-27 00:49:48 ----A---- C:\Windows\system32\PDMSetup.exe
2010-01-27 00:49:48 ----A---- C:\Windows\system32\mshtmler.dll
2010-01-27 00:49:48 ----A---- C:\Windows\system32\mshta.exe
2010-01-27 00:49:48 ----A---- C:\Windows\system32\jscript.dll
2010-01-27 00:49:48 ----A---- C:\Windows\system32\iexpress.exe
2010-01-27 00:42:36 ----A---- C:\Windows\system32\UIAnimation.dll
2010-01-27 00:42:35 ----A---- C:\Windows\system32\UIRibbonRes.dll
2010-01-27 00:42:35 ----A---- C:\Windows\system32\UIRibbon.dll
2010-01-27 00:42:30 ----A---- C:\Windows\system32\wmp.dll
2010-01-27 00:42:29 ----A---- C:\Windows\system32\unregmp2.exe
2010-01-27 00:42:28 ----A---- C:\Windows\system32\wmploc.DLL
2010-01-27 00:25:41 ----D---- C:\Windows\system32\vi-VN
2010-01-27 00:25:41 ----D---- C:\Windows\system32\eu-ES
2010-01-27 00:25:41 ----D---- C:\Windows\system32\ca-ES
2010-01-27 00:14:54 ----A---- C:\Windows\system32\NlsLexicons0007.dll
2010-01-27 00:14:51 ----A---- C:\Windows\system32\FunctionDiscoveryFolder.dll
2010-01-27 00:14:50 ----A---- C:\Windows\system32\NlsLexicons0009.dll
2010-01-27 00:14:48 ----A---- C:\Windows\system32\SLCExt.dll
2010-01-27 00:14:47 ----A---- C:\Windows\system32\mssrch.dll
2010-01-27 00:14:45 ----A---- C:\Windows\system32\WscEapPr.dll
2010-01-27 00:14:45 ----A---- C:\Windows\system32\wcnwiz2.dll
2010-01-27 00:14:43 ----A---- C:\Windows\system32\tquery.dll
2010-01-27 00:14:42 ----A---- C:\Windows\system32\PresentationNative_v0300.dll
2010-01-27 00:14:41 ----A---- C:\Windows\system32\RMActivate_isv.exe
2010-01-27 00:14:41 ----A---- C:\Windows\system32\RMActivate.exe
2010-01-27 00:14:40 ----A---- C:\Windows\system32\msi.dll
2010-01-27 00:14:39 ----A---- C:\Windows\system32\secproc_isv.dll
2010-01-27 00:14:39 ----A---- C:\Windows\system32\imapi2fs.dll
2010-01-27 00:14:38 ----A---- C:\Windows\system32\icardagt.exe
2010-01-27 00:14:36 ----A---- C:\Windows\system32\spwizui.dll
2010-01-27 00:14:36 ----A---- C:\Windows\system32\AuxiliaryDisplayCpl.dll
2010-01-27 00:14:35 ----A---- C:\Windows\system32\spreview.exe
2010-01-27 00:14:35 ----A---- C:\Windows\system32\spinstall.exe
2010-01-27 00:14:34 ----A---- C:\Windows\system32\secproc.dll
2010-01-27 00:14:34 ----A---- C:\Windows\system32\drmv2clt.dll
2010-01-27 00:14:33 ----A---- C:\Windows\system32\shell32.dll
2010-01-27 00:14:32 ----A---- C:\Windows\system32\SearchIndexer.exe
2010-01-27 00:14:32 ----A---- C:\Windows\system32\p2psvc.dll
2010-01-27 00:14:32 ----A---- C:\Windows\system32\mssvp.dll
2010-01-27 00:14:32 ----A---- C:\Windows\system32\EhStorPwdMgr.dll
2010-01-27 00:14:32 ----A---- C:\Windows\system32\EhStorAuthn.dll
2010-01-27 00:14:31 ----A---- C:\Windows\system32\ntdll.dll
2010-01-27 00:14:31 ----A---- C:\Windows\system32\mssphtb.dll
2010-01-27 00:14:31 ----A---- C:\Windows\system32\mssph.dll
2010-01-27 00:14:31 ----A---- C:\Windows\system32\MSMPEG2VDEC.DLL
2010-01-27 00:14:31 ----A---- C:\Windows\system32\mscoree.dll
2010-01-27 00:14:31 ----A---- C:\Windows\system32\kernel32.dll
2010-01-27 00:14:30 ----A---- C:\Windows\system32\sdohlp.dll
2010-01-27 00:14:30 ----A---- C:\Windows\system32\imapi2.dll
2010-01-27 00:14:29 ----A---- C:\Windows\system32\korwbrkr.dll
2010-01-27 00:14:29 ----A---- C:\Windows\system32\IMJP10K.DLL
2010-01-27 00:14:29 ----A---- C:\Windows\system32\esent.dll
2010-01-27 00:14:29 ----A---- C:\Windows\system32\DevicePairing.dll
2010-01-27 00:14:28 ----A---- C:\Windows\system32\sperror.dll
2010-01-27 00:14:28 ----A---- C:\Windows\system32\SLC.dll
2010-01-27 00:14:28 ----A---- C:\Windows\system32\RMActivate_ssp.exe
2010-01-27 00:14:28 ----A---- C:\Windows\system32\PresentationHostProxy.dll
2010-01-27 00:14:27 ----A---- C:\Windows\system32\RMActivate_ssp_isv.exe
2010-01-27 00:14:27 ----A---- C:\Windows\system32\msshsq.dll
2010-01-27 00:14:26 ----A---- C:\Windows\system32\msjet40.dll
2010-01-27 00:14:26 ----A---- C:\Windows\system32\EhStorAPI.dll
2010-01-27 00:14:25 ----A---- C:\Windows\system32\Query.dll
2010-01-27 00:14:24 ----A---- C:\Windows\system32\user32.dll
2010-01-27 00:14:24 ----A---- C:\Windows\system32\srchadmin.dll
2010-01-27 00:14:24 ----A---- C:\Windows\system32\P2PGraph.dll
2010-01-27 00:14:24 ----A---- C:\Windows\system32\ole32.dll
2010-01-27 00:14:24 ----A---- C:\Windows\system32\msexch40.dll
2010-01-27 00:14:24 ----A---- C:\Windows\system32\IasMigReader.exe
2010-01-27 00:14:24 ----A---- C:\Windows\system32\EhStorShell.dll
2010-01-27 00:14:24 ----A---- C:\Windows\explorer.exe
2010-01-27 00:14:23 ----A---- C:\Windows\system32\riched20.dll
2010-01-27 00:14:23 ----A---- C:\Windows\system32\mmc.exe
2010-01-27 00:14:23 ----A---- C:\Windows\system32\IasMigPlugin.dll
2010-01-27 00:14:23 ----A---- C:\Windows\system32\gdi32.dll
2010-01-27 00:14:23 ----A---- C:\Windows\system32\EncDec.dll
2010-01-27 00:14:23 ----A---- C:\Windows\system32\DevicePairingWizard.exe
2010-01-27 00:14:22 ----A---- C:\Windows\system32\spoolss.dll
2010-01-27 00:14:22 ----A---- C:\Windows\system32\SearchProtocolHost.exe
2010-01-27 00:14:22 ----A---- C:\Windows\system32\SearchFilterHost.exe
2010-01-27 00:14:22 ----A---- C:\Windows\system32\RacEngn.dll
2010-01-27 00:14:22 ----A---- C:\Windows\system32\NaturalLanguage6.dll
2010-01-27 00:14:22 ----A---- C:\Windows\system32\milcore.dll
2010-01-27 00:14:22 ----A---- C:\Windows\system32\Magnify.exe
2010-01-27 00:14:22 ----A---- C:\Windows\system32\fdBth.dll
2010-01-27 00:14:22 ----A---- C:\Windows\system32\CertEnroll.dll
2010-01-27 00:14:22 ----A---- C:\Windows\system32\bcrypt.dll
2010-01-27 00:14:21 ----A---- C:\Windows\system32\msjtes40.dll
2010-01-27 00:14:20 ----A---- C:\Windows\system32\Storprop.dll
2010-01-27 00:14:20 ----A---- C:\Windows\system32\msvcp60.dll
2010-01-27 00:14:20 ----A---- C:\Windows\system32\mstext40.dll
2010-01-27 00:14:20 ----A---- C:\Windows\system32\infocardapi.dll
2010-01-27 00:14:20 ----A---- C:\Windows\system32\gpedit.dll
2010-01-27 00:14:20 ----A---- C:\Windows\system32\es.dll
2010-01-27 00:14:20 ----A---- C:\Windows\system32\advapi32.dll
2010-01-27 00:14:19 ----A---- C:\Windows\system32\WMPhoto.dll
2010-01-27 00:14:19 ----A---- C:\Windows\system32\WebClnt.dll
2010-01-27 00:14:19 ----A---- C:\Windows\system32\msexcl40.dll
2010-01-27 00:14:18 ----A---- C:\Windows\system32\vssapi.dll
2010-01-27 00:14:18 ----A---- C:\Windows\system32\slwmi.dll
2010-01-27 00:14:18 ----A---- C:\Windows\system32\msxbde40.dll
2010-01-27 00:14:18 ----A---- C:\Windows\system32\comsvcs.dll
2010-01-27 00:14:17 ----A---- C:\Windows\system32\DevicePairingProxy.dll
2010-01-27 00:14:17 ----A---- C:\Windows\system32\authui.dll
2010-01-27 00:14:16 ----A---- C:\Windows\system32\msrepl40.dll
2010-01-27 00:14:15 ----A---- C:\Windows\system32\propsys.dll
2010-01-27 00:14:15 ----A---- C:\Windows\system32\PresentationHost.exe
2010-01-27 00:14:15 ----A---- C:\Windows\system32\newdev.dll
2010-01-27 00:14:14 ----A---- C:\Windows\system32\setupapi.dll
2010-01-27 00:14:14 ----A---- C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2010-01-27 00:14:14 ----A---- C:\Windows\system32\mspbde40.dll
2010-01-27 00:14:14 ----A---- C:\Windows\system32\iasrecst.dll
2010-01-27 00:14:14 ----A---- C:\Windows\system32\explorer.exe
2010-01-27 00:14:14 ----A---- C:\Windows\system32\eudcedit.exe
2010-01-27 00:14:14 ----A---- C:\Windows\system32\crypt32.dll
2010-01-27 00:14:13 ----A---- C:\Windows\system32\davclnt.dll
2010-01-27 00:14:13 ----A---- C:\Windows\system32\d3d9.dll
2010-01-27 00:14:11 ----A---- C:\Windows\system32\msltus40.dll
2010-01-27 00:14:10 ----A---- C:\Windows\system32\shlwapi.dll
2010-01-27 00:14:10 ----A---- C:\Windows\system32\msrd3x40.dll
2010-01-27 00:14:10 ----A---- C:\Windows\system32\mfc42.dll
2010-01-27 00:14:09 ----A---- C:\Windows\system32\wevtapi.dll
2010-01-27 00:14:09 ----A---- C:\Windows\system32\photowiz.dll
2010-01-27 00:14:09 ----A---- C:\Windows\system32\nlhtml.dll
2010-01-27 00:14:09 ----A---- C:\Windows\system32\browseui.dll
2010-01-27 00:14:08 ----A---- C:\Windows\system32\win32spl.dll
2010-01-27 00:14:08 ----A---- C:\Windows\system32\quartz.dll
2010-01-27 00:14:07 ----A---- C:\Windows\system32\WcnNetsh.dll
2010-01-27 00:14:07 ----A---- C:\Windows\system32\SLCommDlg.dll
2010-01-27 00:14:07 ----A---- C:\Windows\system32\oleaut32.dll
2010-01-27 00:14:07 ----A---- C:\Windows\system32\netshell.dll
2010-01-27 00:14:06 ----A---- C:\Windows\system32\xmlfilter.dll
2010-01-27 00:14:06 ----A---- C:\Windows\system32\mswstr10.dll
2010-01-27 00:14:06 ----A---- C:\Windows\system32\msvcrt.dll
2010-01-27 00:14:06 ----A---- C:\Windows\system32\msctf.dll
2010-01-27 00:14:06 ----A---- C:\Windows\system32\mfc42u.dll
2010-01-27 00:14:06 ----A---- C:\Windows\system32\apds.dll
2010-01-27 00:14:05 ----A---- C:\Windows\system32\sqlsrv32.dll
2010-01-27 00:14:05 ----A---- C:\Windows\system32\msrd2x40.dll
2010-01-27 00:14:05 ----A---- C:\Windows\system32\eapphost.dll
2010-01-27 00:14:04 ----A---- C:\Windows\system32\propdefs.dll
2010-01-27 00:14:04 ----A---- C:\Windows\system32\odbc32.dll
2010-01-27 00:14:03 ----A---- C:\Windows\system32\WsmSvc.dll
2010-01-27 00:14:03 ----A---- C:\Windows\system32\wevtutil.exe
2010-01-27 00:14:03 ----A---- C:\Windows\system32\shdocvw.dll
2010-01-27 00:14:03 ----A---- C:\Windows\system32\mssitlb.dll
2010-01-27 00:14:03 ----A---- C:\Windows\system32\mmcndmgr.dll
2010-01-27 00:14:03 ----A---- C:\Windows\system32\dbgeng.dll
2010-01-27 00:14:02 ----A---- C:\Windows\system32\usp10.dll
2010-01-27 00:14:01 ----A---- C:\Windows\system32\msctfp.dll
2010-01-27 00:14:01 ----A---- C:\Windows\system32\fdBthProxy.dll
2010-01-27 00:14:01 ----A---- C:\Windows\system32\drvinst.exe
2010-01-27 00:14:01 ----A---- C:\Windows\system32\devmgr.dll
2010-01-27 00:14:00 ----A---- C:\Windows\system32\Wldap32.dll
2010-01-27 00:14:00 ----A---- C:\Windows\system32\wcnwiz.dll
2010-01-27 00:14:00 ----A---- C:\Windows\system32\netlogon.dll
2010-01-27 00:14:00 ----A---- C:\Windows\system32\msscb.dll
2010-01-27 00:14:00 ----A---- C:\Windows\system32\evr.dll
2010-01-27 00:14:00 ----A---- C:\Windows\system32\adsldpc.dll
2010-01-27 00:13:59 ----A---- C:\Windows\system32\WMVSDECD.DLL
2010-01-27 00:13:59 ----A---- C:\Windows\system32\WindowsCodecs.dll
2010-01-27 00:13:59 ----A---- C:\Windows\system32\services.exe
2010-01-27 00:13:59 ----A---- C:\Windows\system32\PhotoMetadataHandler.dll
2010-01-27 00:13:58 ----A---- C:\Windows\system32\wcncsvc.dll
2010-01-27 00:13:58 ----A---- C:\Windows\system32\PortableDeviceApi.dll
2010-01-27 00:13:58 ----A---- C:\Windows\system32\msjter40.dll
2010-01-27 00:13:58 ----A---- C:\Windows\system32\msdtcprx.dll
2010-01-27 00:13:58 ----A---- C:\Windows\system32\msdrm.dll
2010-01-27 00:13:58 ----A---- C:\Windows\system32\mimefilt.dll
2010-01-27 00:13:58 ----A---- C:\Windows\system32\comdlg32.dll
2010-01-27 00:13:58 ----A---- C:\Windows\system32\certcli.dll
2010-01-27 00:13:58 ----A---- C:\Windows\system32\adtschema.dll
2010-01-27 00:13:57 ----A---- C:\Windows\system32\WMNetMgr.dll
2010-01-27 00:13:57 ----A---- C:\Windows\system32\taskeng.exe
2010-01-27 00:13:57 ----A---- C:\Windows\system32\rtffilt.dll
2010-01-27 00:13:57 ----A---- C:\Windows\system32\reg.exe
2010-01-27 00:13:57 ----A---- C:\Windows\system32\mswdat10.dll
2010-01-27 00:13:57 ----A---- C:\Windows\system32\ipsmsnap.dll
2010-01-27 00:13:57 ----A---- C:\Windows\system32\dnsapi.dll
2010-01-27 00:13:57 ----A---- C:\Windows\system32\certutil.exe
2010-01-27 00:13:56 ----A---- C:\Windows\system32\msshooks.dll
2010-01-27 00:13:56 ----A---- C:\Windows\system32\msscntrs.dll
2010-01-27 00:13:55 ----A---- C:\Windows\system32\rsaenh.dll
2010-01-27 00:13:55 ----A---- C:\Windows\system32\msstrc.dll
2010-01-27 00:13:55 ----A---- C:\Windows\system32\msihnd.dll
2010-01-27 00:13:55 ----A---- C:\Windows\system32\MMDevAPI.dll
2010-01-27 00:13:55 ----A---- C:\Windows\system32\inetcomm.dll
2010-01-27 00:13:54 ----A---- C:\Windows\system32\netapi32.dll
2010-01-27 00:13:54 ----A---- C:\Windows\system32\dfshim.dll
2010-01-27 00:13:53 ----A---- C:\Windows\system32\mtxclu.dll
2010-01-27 00:13:53 ----A---- C:\Windows\system32\mscories.dll
2010-01-27 00:13:53 ----A---- C:\Windows\system32\hidserv.dll
2010-01-27 00:13:53 ----A---- C:\Windows\system32\fundisc.dll
2010-01-27 00:13:53 ----A---- C:\Windows\system32\dhcpcsvc6.dll
2010-01-27 00:13:53 ----A---- C:\Windows\system32\cryptsvc.dll
2010-01-27 00:13:52 ----A---- C:\Windows\system32\TsWpfWrp.exe
2010-01-27 00:13:49 ----A---- C:\Windows\system32\shsvcs.dll
2010-01-27 00:13:49 ----A---- C:\Windows\system32\msiexec.exe
2010-01-27 00:13:49 ----A---- C:\Windows\system32\imapi.dll
2010-01-27 00:13:48 ----A---- C:\Windows\system32\wdc.dll
2010-01-27 00:13:48 ----A---- C:\Windows\system32\imm32.dll
2010-01-27 00:13:48 ----A---- C:\Windows\system32\iassdo.dll
2010-01-27 00:13:48 ----A---- C:\Windows\system32\chsbrkr.dll
2010-01-27 00:13:47 ----A---- C:\Windows\system32\spcmsg.dll
2010-01-27 00:13:47 ----A---- C:\Windows\system32\slmgr.vbs
2010-01-27 00:13:47 ----A---- C:\Windows\system32\scrrun.dll
2010-01-27 00:13:47 ----A---- C:\Windows\system32\pnidui.dll
2010-01-27 00:13:47 ----A---- C:\Windows\system32\autofmt.exe
2010-01-27 00:13:46 ----A---- C:\Windows\system32\wmpmde.dll
2010-01-27 00:13:46 ----A---- C:\Windows\system32\pidgenx.dll
2010-01-27 00:13:46 ----A---- C:\Windows\system32\pdh.dll
2010-01-27 00:13:46 ----A---- C:\Windows\system32\dhcpcsvc.dll
2010-01-27 00:13:46 ----A---- C:\Windows\system32\CertEnrollUI.dll
2010-01-27 00:13:46 ----A---- C:\Windows\system32\azroles.dll
2010-01-27 00:13:45 ----A---- C:\Windows\system32\winlogon.exe
2010-01-27 00:13:45 ----A---- C:\Windows\system32\WindowsCodecsExt.dll
2010-01-27 00:13:45 ----A---- C:\Windows\system32\untfs.dll
2010-01-27 00:13:45 ----A---- C:\Windows\system32\SyncCenter.dll
2010-01-27 00:13:45 ----A---- C:\Windows\system32\spp.dll
2010-01-27 00:13:45 ----A---- C:\Windows\system32\sethc.exe
2010-01-27 00:13:45 ----A---- C:\Windows\system32\scrobj.dll
2010-01-27 00:13:45 ----A---- C:\Windows\system32\rtutils.dll
2010-01-27 00:13:45 ----A---- C:\Windows\system32\ncrypt.dll
2010-01-27 00:13:45 ----A---- C:\Windows\system32\msjetoledb40.dll
2010-01-27 00:13:45 ----A---- C:\Windows\system32\iassam.dll
2010-01-27 00:13:45 ----A---- C:\Windows\system32\comuid.dll
2010-01-27 00:13:45 ----A---- C:\Windows\system32\certmgr.dll
2010-01-27 00:13:43 ----A---- C:\Windows\system32\taskcomp.dll
2010-01-27 00:13:43 ----A---- C:\Windows\system32\autochk.exe
2010-01-27 00:13:42 ----A---- C:\Windows\system32\WMVDECOD.DLL
2010-01-27 00:13:42 ----A---- C:\Windows\system32\userenv.dll
2010-01-27 00:13:42 ----A---- C:\Windows\system32\printui.dll
2010-01-27 00:13:42 ----A---- C:\Windows\system32\onex.dll
2010-01-27 00:13:42 ----A---- C:\Windows\system32\iasnap.dll
2010-01-27 00:13:42 ----A---- C:\Windows\system32\cscript.exe
2010-01-27 00:13:42 ----A---- C:\Windows\system32\basecsp.dll
2010-01-27 00:13:42 ----A---- C:\Windows\system32\autoconv.exe
2010-01-27 00:13:42 ----A---- C:\Windows\system32\audiodg.exe
2010-01-27 00:13:41 ----A---- C:\Windows\system32\winmm.dll
2010-01-27 00:13:41 ----A---- C:\Windows\system32\RelMon.dll
2010-01-27 00:13:41 ----A---- C:\Windows\system32\osk.exe
2010-01-27 00:13:41 ----A---- C:\Windows\system32\mswsock.dll
2010-01-27 00:13:40 ----A---- C:\Windows\system32\WinSCard.dll
2010-01-27 00:13:40 ----A---- C:\Windows\system32\WerFaultSecure.exe
2010-01-27 00:13:40 ----A---- C:\Windows\system32\WerFault.exe
2010-01-27 00:13:40 ----A---- C:\Windows\system32\Utilman.exe
2010-01-27 00:13:40 ----A---- C:\Windows\system32\stobject.dll
2010-01-27 00:13:40 ----A---- C:\Windows\system32\SndVol.exe
2010-01-27 00:13:40 ----A---- C:\Windows\system32\secproc_ssp_isv.dll
2010-01-27 00:13:40 ----A---- C:\Windows\system32\secproc_ssp.dll
2010-01-27 00:13:40 ----A---- C:\Windows\system32\rdpencom.dll
2010-01-27 00:13:40 ----A---- C:\Windows\system32\prnntfy.dll
2010-01-27 00:13:40 ----A---- C:\Windows\system32\offfilt.dll
2010-01-27 00:13:40 ----A---- C:\Windows\system32\msnetobj.dll
2010-01-27 00:13:40 ----A---- C:\Windows\system32\msftedit.dll
2010-01-27 00:13:40 ----A---- C:\Windows\system32\mscms.dll
2010-01-27 00:13:40 ----A---- C:\Windows\system32\mfplat.dll
2010-01-27 00:13:40 ----A---- C:\Windows\system32\diskraid.exe
2010-01-27 00:13:40 ----A---- C:\Windows\system32\apphelp.dll
2010-01-27 00:13:40 ----A---- C:\Windows\system32\adsmsext.dll
2010-01-27 00:13:39 ----A---- C:\Windows\system32\wscript.exe
2010-01-27 00:13:39 ----A---- C:\Windows\system32\wscntfy.dll
2010-01-27 00:13:39 ----A---- C:\Windows\system32\ulib.dll
2010-01-27 00:13:39 ----A---- C:\Windows\system32\rastapi.dll
2010-01-27 00:13:39 ----A---- C:\Windows\system32\pnpsetup.dll
2010-01-27 00:13:39 ----A---- C:\Windows\system32\odbccp32.dll
2010-01-27 00:13:39 ----A---- C:\Windows\system32\IPHLPAPI.DLL
2010-01-27 00:13:39 ----A---- C:\Windows\system32\iasdatastore.dll
2010-01-27 00:13:39 ----A---- C:\Windows\system32\fdProxy.dll
2010-01-27 00:13:39 ----A---- C:\Windows\system32\dsound.dll
2010-01-27 00:13:39 ----A---- C:\Windows\system32\cryptui.dll
2010-01-27 00:13:39 ----A---- C:\Windows\system32\AudioEng.dll
2010-01-27 00:13:38 ----A---- C:\Windows\system32\WMVENCOD.DLL
2010-01-27 00:13:38 ----A---- C:\Windows\system32\wlangpui.dll
2010-01-27 00:13:38 ----A---- C:\Windows\system32\vdsdyn.dll
2010-01-27 00:13:38 ----A---- C:\Windows\system32\rasapi32.dll
2010-01-27 00:13:38 ----A---- C:\Windows\system32\ntprint.dll
2010-01-27 00:13:38 ----A---- C:\Windows\system32\logman.exe
2010-01-27 00:13:38 ----A---- C:\Windows\system32\ipsecsnp.dll
2010-01-27 00:13:38 ----A---- C:\Windows\system32\iashlpr.dll
2010-01-27 00:13:38 ----A---- C:\Windows\system32\gpapi.dll
2010-01-27 00:13:38 ----A---- C:\Windows\system32\diskpart.exe
2010-01-27 00:13:37 ----A---- C:\Windows\system32\zipfldr.dll
2010-01-27 00:13:37 ----A---- C:\Windows\system32\wusa.exe
2010-01-27 00:13:37 ----A---- C:\Windows\system32\wshext.dll
2010-01-27 00:13:37 ----A---- C:\Windows\system32\netcenter.dll
2010-01-27 00:13:37 ----A---- C:\Windows\system32\mscorier.dll
2010-01-27 00:13:37 ----A---- C:\Windows\system32\iasrad.dll
2010-01-27 00:13:37 ----A---- C:\Windows\system32\findstr.exe
2010-01-27 00:13:36 ----A---- C:\Windows\system32\wsnmp32.dll
2010-01-27 00:13:36 ----A---- C:\Windows\system32\wer.dll
2010-01-27 00:13:36 ----A---- C:\Windows\system32\tsbyuv.dll
2010-01-27 00:13:36 ----A---- C:\Windows\system32\themecpl.dll
2010-01-27 00:13:36 ----A---- C:\Windows\system32\slcc.dll
2010-01-27 00:13:36 ----A---- C:\Windows\system32\scansetting.dll
2010-01-27 00:13:36 ----A---- C:\Windows\system32\rasdlg.dll
2010-01-27 00:13:36 ----A---- C:\Windows\system32\ntmarta.dll
2010-01-27 00:13:36 ----A---- C:\Windows\system32\msutb.dll
2010-01-27 00:13:36 ----A---- C:\Windows\system32\mstlsapi.dll
2010-01-27 00:13:36 ----A---- C:\Windows\system32\mssprxy.dll
2010-01-27 00:13:36 ----A---- C:\Windows\system32\iassvcs.dll
2010-01-27 00:13:36 ----A---- C:\Windows\system32\iasads.dll
2010-01-27 00:13:35 ----A---- C:\Windows\system32\systemcpl.dll
2010-01-27 00:13:35 ----A---- C:\Windows\system32\sud.dll
2010-01-27 00:13:35 ----A---- C:\Windows\system32\powrprof.dll
2010-01-27 00:13:35 ----A---- C:\Windows\system32\powercpl.dll
2010-01-27 00:13:35 ----A---- C:\Windows\system32\PerfCenterCPL.dll
2010-01-27 00:13:35 ----A---- C:\Windows\system32\newdev.exe
2010-01-27 00:13:35 ----A---- C:\Windows\system32\networkmap.dll
2010-01-27 00:13:35 ----A---- C:\Windows\system32\mstsc.exe
2010-01-27 00:13:35 ----A---- C:\Windows\system32\icardres.dll
2010-01-27 00:13:35 ----A---- C:\Windows\system32\iasacct.dll
2010-01-27 00:13:35 ----A---- C:\Windows\system32\connect.dll
2010-01-27 00:13:35 ----A---- C:\Windows\system32\authz.dll
2010-01-27 00:13:34 ----A---- C:\Windows\system32\wpcao.dll
2010-01-27 00:13:34 ----A---- C:\Windows\system32\wlanpref.dll
2010-01-27 00:13:34 ----A---- C:\Windows\system32\vdsutil.dll
2010-01-27 00:13:34 ----A---- C:\Windows\system32\usercpl.dll
2010-01-27 00:13:34 ----A---- C:\Windows\system32\themeui.dll
2010-01-27 00:13:34 ----A---- C:\Windows\system32\samlib.dll
2010-01-27 00:13:34 ----A---- C:\Windows\system32\rpchttp.dll
2010-01-27 00:13:34 ----A---- C:\Windows\system32\regapi.dll
2010-01-27 00:13:34 ----A---- C:\Windows\system32\qdvd.dll
2010-01-27 00:13:34 ----A---- C:\Windows\system32\pcaui.dll
2010-01-27 00:13:34 ----A---- C:\Windows\system32\msinfo32.exe
2010-01-27 00:13:34 ----A---- C:\Windows\system32\mmci.dll
2010-01-27 00:13:34 ----A---- C:\Windows\system32\autoplay.dll
2010-01-27 00:13:34 ----A---- C:\Windows\system32\accessibilitycpl.dll
2010-01-27 00:13:33 ----A---- C:\Windows\system32\wscisvif.dll
2010-01-27 00:13:33 ----A---- C:\Windows\system32\WMPEncEn.dll
2010-01-27 00:13:33 ----A---- C:\Windows\system32\tapisrv.dll
2010-01-27 00:13:33 ----A---- C:\Windows\system32\scksp.dll
2010-01-27 00:13:33 ----A---- C:\Windows\system32\scesrv.dll
2010-01-27 00:13:33 ----A---- C:\Windows\system32\rekeywiz.exe
2010-01-27 00:13:33 ----A---- C:\Windows\system32\psisdecd.dll
2010-01-27 00:13:33 ----A---- C:\Windows\system32\oleprn.dll
2010-01-27 00:13:33 ----A---- C:\Windows\system32\mpr.dll
2010-01-27 00:13:33 ----A---- C:\Windows\system32\iaspolcy.dll
2010-01-27 00:13:33 ----A---- C:\Windows\system32\feclient.dll
2010-01-27 00:13:33 ----A---- C:\Windows\system32\Faultrep.dll
2010-01-27 00:13:33 ----A---- C:\Windows\system32\dot3msm.dll
2010-01-27 00:13:33 ----A---- C:\Windows\system32\AudioSes.dll
2010-01-27 00:13:32 ----A---- C:\Windows\system32\rasgcw.dll
2010-01-27 00:13:32 ----A---- C:\Windows\system32\qedit.dll
2010-01-27 00:13:32 ----A---- C:\Windows\system32\perfdisk.dll
2010-01-27 00:13:32 ----A---- C:\Windows\system32\ncryptui.dll
2010-01-27 00:13:32 ----A---- C:\Windows\system32\hdwwiz.exe
2010-01-27 00:13:32 ----A---- C:\Windows\system32\dpapimig.exe
2010-01-27 00:13:32 ----A---- C:\Windows\system32\certreq.exe
2010-01-27 00:13:31 ----A---- C:\Windows\system32\whealogr.dll
2010-01-27 00:13:31 ----A---- C:\Windows\system32\TSTheme.exe
2010-01-27 00:13:31 ----A---- C:\Windows\system32\tcpmon.dll
2010-01-27 00:13:31 ----A---- C:\Windows\system32\tcpipcfg.dll
2010-01-27 00:13:31 ----A---- C:\Windows\system32\spwinsat.dll
2010-01-27 00:13:31 ----A---- C:\Windows\system32\SmartcardCredentialProvider.dll
2010-01-27 00:13:31 ----A---- C:\Windows\system32\scecli.dll
2010-01-27 00:13:31 ----A---- C:\Windows\system32\rasplap.dll
2010-01-27 00:13:31 ----A---- C:\Windows\system32\FWPUCLNT.DLL
2010-01-27 00:13:31 ----A---- C:\Windows\system32\fdWSD.dll
2010-01-27 00:13:31 ----A---- C:\Windows\system32\cmmon32.exe
2010-01-27 00:13:30 ----A---- C:\Windows\system32\WMVXENCD.DLL
2010-01-27 00:13:30 ----A---- C:\Windows\system32\wlanui.dll
2010-01-27 00:13:30 ----A---- C:\Windows\system32\wiaaut.dll
2010-01-27 00:13:30 ----A---- C:\Windows\system32\SCardSvr.dll
2010-01-27 00:13:30 ----A---- C:\Windows\system32\rasppp.dll
2010-01-27 00:13:30 ----A---- C:\Windows\system32\raschap.dll
2010-01-27 00:13:30 ----A---- C:\Windows\system32\MSVidCtl.dll
2010-01-27 00:13:30 ----A---- C:\Windows\system32\fontext.dll
2010-01-27 00:13:30 ----A---- C:\Windows\system32\conime.exe
2010-01-27 00:13:30 ----A---- C:\Windows\system32\cmdial32.dll
2010-01-27 00:13:29 ----D---- C:\Program Files (x86)\Common Files\Nokia
2010-01-27 00:13:29 ----A---- C:\Windows\system32\wmdrmsdk.dll
2010-01-27 00:13:29 ----A---- C:\Windows\system32\wlgpclnt.dll
2010-01-27 00:13:29 ----A---- C:\Windows\system32\shwebsvc.dll
2010-01-27 00:13:29 ----A---- C:\Windows\system32\shsetup.dll
2010-01-27 00:13:29 ----A---- C:\Windows\system32\rasmontr.dll
2010-01-27 00:13:29 ----A---- C:\Windows\system32\oobefldr.dll
2010-01-27 00:13:29 ----A---- C:\Windows\system32\netplwiz.dll
2010-01-27 00:13:29 ----A---- C:\Windows\system32\mscandui.dll
2010-01-27 00:13:29 ----A---- C:\Windows\system32\modemui.dll
2010-01-27 00:13:29 ----A---- C:\Windows\system32\dsprop.dll
2010-01-27 00:13:29 ----A---- C:\Windows\system32\dimsroam.dll
2010-01-27 00:13:29 ----A---- C:\Windows\system32\dataclen.dll
2010-01-27 00:13:29 ----A---- C:\Windows\system32\credui.dll
2010-01-27 00:13:29 ----A---- C:\Windows\system32\chtbrkr.dll
2010-01-27 00:13:29 ----A---- C:\Windows\system32\blackbox.dll
2010-01-27 00:13:28 ----A---- C:\Windows\system32\WSDMon.dll
2010-01-27 00:13:28 ----A---- C:\Windows\system32\wscapi.dll
2010-01-27 00:13:28 ----A---- C:\Windows\system32\wpdwcn.dll
2010-01-27 00:13:28 ----A---- C:\Windows\system32\wpcsvc.dll
2010-01-27 00:13:28 ----A---- C:\Windows\system32\wmpeffects.dll
2010-01-27 00:13:28 ----A---- C:\Windows\system32\thawbrkr.dll
2010-01-27 00:13:28 ----A---- C:\Windows\system32\softkbd.dll
2010-01-27 00:13:28 ----A---- C:\Windows\system32\sendmail.dll
2010-01-27 00:13:28 ----A---- C:\Windows\system32\networkexplorer.dll
2010-01-27 00:13:28 ----A---- C:\Windows\system32\msscp.dll
2010-01-27 00:13:28 ----A---- C:\Windows\system32\msimtf.dll
2010-01-27 00:13:28 ----A---- C:\Windows\system32\logagent.exe
2010-01-27 00:13:28 ----A---- C:\Windows\system32\InkEd.dll
2010-01-27 00:13:28 ----A---- C:\Windows\system32\ifmon.dll
2010-01-27 00:13:28 ----A---- C:\Windows\system32\gpresult.exe
2010-01-27 00:13:28 ----A---- C:\Windows\system32\cipher.exe
2010-01-27 00:13:28 ----A---- C:\Windows\system32\AUDIOKSE.dll
2010-01-27 00:13:27 ----A---- C:\Windows\system32\olepro32.dll
2010-01-27 00:13:27 ----A---- C:\Windows\system32\msctfui.dll
2010-01-27 00:13:27 ----A---- C:\Windows\system32\MediaMetadataHandler.dll
2010-01-27 00:13:27 ----A---- C:\Windows\system32\drmmgrtn.dll
2010-01-27 00:13:27 ----A---- C:\Windows\system32\dmsynth.dll
2010-01-27 00:13:26 ----A---- C:\Windows\system32\wshbth.dll
2010-01-27 00:13:26 ----A---- C:\Windows\system32\wmdrmdev.dll
2010-01-27 00:13:26 ----A---- C:\Windows\system32\WMADMOD.DLL
2010-01-27 00:13:26 ----A---- C:\Windows\system32\version.dll
2010-01-27 00:13:26 ----A---- C:\Windows\system32\puiapi.dll
2010-01-27 00:13:26 ----A---- C:\Windows\system32\msisip.dll
2010-01-27 00:13:26 ----A---- C:\Windows\system32\MsCtfMonitor.dll
2010-01-27 00:13:26 ----A---- C:\Windows\system32\mprapi.dll
2010-01-27 00:13:26 ----A---- C:\Windows\system32\input.dll
2010-01-27 00:13:26 ----A---- C:\Windows\system32\fdSSDP.dll
2010-01-27 00:13:26 ----A---- C:\Windows\system32\fc.exe
2010-01-27 00:13:26 ----A---- C:\Windows\system32\ExplorerFrame.dll
2010-01-27 00:13:26 ----A---- C:\Windows\system32\dmusic.dll
2010-01-27 00:13:25 ----A---- C:\Windows\system32\wsdchngr.dll
2010-01-27 00:13:25 ----A---- C:\Windows\system32\wmdrmnet.dll
2010-01-27 00:13:25 ----A---- C:\Windows\system32\tscupgrd.exe
2010-01-27 00:13:25 ----A---- C:\Windows\system32\SMBHelperClass.dll
2010-01-27 00:13:25 ----A---- C:\Windows\system32\rasdial.exe
2010-01-27 00:13:25 ----A---- C:\Windows\system32\rasdiag.dll
2010-01-27 00:13:25 ----A---- C:\Windows\system32\PortableDeviceTypes.dll
2010-01-27 00:13:25 ----A---- C:\Windows\system32\PortableDeviceClassExtension.dll
2010-01-27 00:13:25 ----A---- C:\Windows\system32\msjint40.dll
2010-01-27 00:13:25 ----A---- C:\Windows\system32\MSAC3ENC.DLL
2010-01-27 00:13:25 ----A---- C:\Windows\system32\l2nacp.dll
2010-01-27 00:13:25 ----A---- C:\Windows\system32\ipconfig.exe
2010-01-27 00:13:25 ----A---- C:\Windows\system32\ftp.exe
2010-01-27 00:13:25 ----A---- C:\Windows\system32\fdWCN.dll
2010-01-27 00:13:25 ----A---- C:\Windows\system32\eappcfg.dll
2010-01-27 00:13:25 ----A---- C:\Windows\system32\eapp3hst.dll
2010-01-27 00:13:25 ----A---- C:\Windows\system32\dot3cfg.dll
2010-01-27 00:13:25 ----A---- C:\Windows\system32\cscdll.dll
2010-01-27 00:13:25 ----A---- C:\Windows\system32\cscapi.dll
2010-01-27 00:13:25 ----A---- C:\Windows\system32\CHxReadingStringIME.dll
2010-01-27 00:13:25 ----A---- C:\Windows\system32\bthudtask.exe
2010-01-27 00:13:24 ----A---- C:\Windows\system32\slcinst.dll
2010-01-27 00:13:24 ----A---- C:\Windows\system32\ocsetup.exe
2010-01-27 00:13:24 ----A---- C:\Windows\system32\nslookup.exe
2010-01-27 00:13:24 ----A---- C:\Windows\system32\networkitemfactory.dll
2010-01-27 00:13:24 ----A---- C:\Windows\system32\MSMPEG2ENC.DLL
2010-01-27 00:13:24 ----A---- C:\Windows\system32\mmcico.dll
2010-01-27 00:13:24 ----A---- C:\Windows\system32\hbaapi.dll
2010-01-27 00:13:24 ----A---- C:\Windows\system32\FwRemoteSvr.dll
2010-01-27 00:13:24 ----A---- C:\Windows\system32\fdeploy.dll
2010-01-27 00:13:24 ----A---- C:\Windows\system32\eappgnui.dll
2010-01-27 00:13:23 ----A---- C:\Windows\system32\wmpps.dll
2010-01-27 00:13:23 ----A---- C:\Windows\system32\vdmdbg.dll
2010-01-27 00:13:23 ----A---- C:\Windows\system32\odbcconf.dll
2010-01-27 00:13:23 ----A---- C:\Windows\system32\NcdProp.dll
2010-01-27 00:13:23 ----A---- C:\Windows\system32\gpupdate.exe
2010-01-27 00:13:22 ----A---- C:\Windows\system32\winrnr.dll
2010-01-27 00:13:22 ----A---- C:\Windows\system32\slwga.dll
2010-01-27 00:13:22 ----A---- C:\Windows\system32\midimap.dll
2010-01-27 00:13:21 ----A---- C:\Windows\system32\msimsg.dll
2010-01-27 00:13:21 ----A---- C:\Windows\system32\f3ahvoas.dll
2010-01-27 00:13:09 ----A---- C:\Windows\system32\wdscore.dll
2010-01-27 00:13:04 ----A---- C:\Windows\system32\drvstore.dll
2010-01-27 00:11:40 ----D---- C:\ProgramData\Installations
2010-01-26 22:17:02 ----D---- C:\Windows\Sun
2010-01-24 17:06:26 ----D---- C:\Users\Boss\AppData\Roaming\Malwarebytes
2010-01-24 17:06:22 ----D---- C:\ProgramData\Malwarebytes
2010-01-24 16:53:01 ----A---- C:\Windows\system32\nshhttp.dll
2010-01-24 16:52:59 ----A---- C:\Windows\system32\httpapi.dll
2010-01-24 16:52:16 ----A---- C:\Windows\system32\rastls.dll
2010-01-24 16:52:14 ----A---- C:\Windows\system32\t2embed.dll
2010-01-24 16:52:14 ----A---- C:\Windows\system32\fontsub.dll
2010-01-24 16:52:12 ----A---- C:\Windows\system32\winhttp.dll
2010-01-23 18:40:30 ----D---- C:\ProgramData\Sun
2010-01-23 18:40:30 ----D---- C:\Program Files (x86)\Common Files\Java
2010-01-23 18:40:20 ----A---- C:\Windows\system32\javaws.exe
2010-01-23 18:40:20 ----A---- C:\Windows\system32\javaw.exe
2010-01-23 18:40:20 ----A---- C:\Windows\system32\java.exe

======List of files/folders modified in the last 1 months======

2010-01-27 19:48:25 ----D---- C:\Windows\Temp
2010-01-27 19:46:27 ----D---- C:\Windows\System32
2010-01-27 19:46:27 ----D---- C:\Windows\inf
2010-01-27 01:24:29 ----RD---- C:\Program Files (x86)
2010-01-27 01:15:39 ----D---- C:\Windows\rescache
2010-01-27 01:14:00 ----D---- C:\Windows\winsxs
2010-01-27 01:11:18 ----D---- C:\ProgramData\Spybot - Search & Destroy
2010-01-27 01:02:49 ----D---- C:\Windows
2010-01-27 00:53:23 ----D---- C:\Windows\SysWOW64
2010-01-27 00:53:23 ----D---- C:\Windows\system32\migration
2010-01-27 00:53:23 ----D---- C:\Program Files (x86)\Internet Explorer
2010-01-27 00:53:22 ----D---- C:\Windows\system32\de-DE
2010-01-27 00:53:19 ----D---- C:\Windows\system32\en-US
2010-01-27 00:53:18 ----D---- C:\Windows\PolicyDefinitions
2010-01-27 00:51:51 ----SHD---- C:\Windows\Installer
2010-01-27 00:49:00 ----D---- C:\Windows\Microsoft.NET
2010-01-27 00:48:59 ----RSD---- C:\Windows\assembly
2010-01-27 00:43:40 ----D---- C:\Program Files (x86)\Windows Media Player
2010-01-27 00:43:40 ----D---- C:\Program Files (x86)\Windows Mail
2010-01-27 00:31:12 ----SHD---- C:\Boot
2010-01-27 00:26:31 ----D---- C:\Program Files (x86)\Windows Sidebar
2010-01-27 00:26:31 ----D---- C:\Program Files (x86)\Windows Calendar
2010-01-27 00:26:30 ----D---- C:\Program Files (x86)\Windows Photo Gallery
2010-01-27 00:26:30 ----D---- C:\Program Files (x86)\Common Files\System
2010-01-27 00:26:29 ----D---- C:\Windows\servicing
2010-01-27 00:26:29 ----D---- C:\Windows\ehome
2010-01-27 00:26:19 ----D---- C:\Windows\system32\XPSViewer
2010-01-27 00:26:19 ----D---- C:\Windows\system32\sk-SK
2010-01-27 00:26:19 ----D---- C:\Windows\system32\lv-LV
2010-01-27 00:26:19 ----D---- C:\Windows\system32\ko-KR
2010-01-27 00:26:19 ----D---- C:\Windows\system32\hr-HR
2010-01-27 00:26:19 ----D---- C:\Windows\system32\et-EE
2010-01-27 00:26:19 ----D---- C:\Windows\system32\da-DK
2010-01-27 00:26:17 ----D---- C:\Windows\system32\oobe
2010-01-27 00:26:17 ----D---- C:\Windows\system32\it-IT
2010-01-27 00:26:17 ----D---- C:\Windows\system32\el-GR
2010-01-27 00:26:16 ----D---- C:\Windows\system32\zh-TW
2010-01-27 00:26:16 ----D---- C:\Windows\system32\zh-CN
2010-01-27 00:26:16 ----D---- C:\Windows\system32\uk-UA
2010-01-27 00:26:16 ----D---- C:\Windows\system32\tr-TR
2010-01-27 00:26:16 ----D---- C:\Windows\system32\th-TH
2010-01-27 00:26:16 ----D---- C:\Windows\system32\sv-SE
2010-01-27 00:26:16 ----D---- C:\Windows\system32\sr-Latn-CS
2010-01-27 00:26:16 ----D---- C:\Windows\system32\SLUI
2010-01-27 00:26:16 ----D---- C:\Windows\system32\sl-SI
2010-01-27 00:26:16 ----D---- C:\Windows\system32\setup
2010-01-27 00:26:16 ----D---- C:\Windows\system32\ru-RU
2010-01-27 00:26:16 ----D---- C:\Windows\system32\ro-RO
2010-01-27 00:26:16 ----D---- C:\Windows\system32\pt-PT
2010-01-27 00:26:16 ----D---- C:\Windows\system32\pl-PL
2010-01-27 00:26:16 ----D---- C:\Windows\system32\manifeststore
2010-01-27 00:26:16 ----D---- C:\Windows\system32\ja-JP
2010-01-27 00:26:16 ----D---- C:\Windows\system32\hu-HU
2010-01-27 00:26:16 ----D---- C:\Windows\system32\he-IL
2010-01-27 00:26:16 ----D---- C:\Windows\system32\fr-FR
2010-01-27 00:26:16 ----D---- C:\Windows\system32\fi-FI
2010-01-27 00:26:16 ----D---- C:\Windows\system32\es-ES
2010-01-27 00:26:16 ----D---- C:\Windows\system32\cs-CZ
2010-01-27 00:26:16 ----D---- C:\Windows\system32\bg-BG
2010-01-27 00:26:16 ----D---- C:\Windows\system32\AdvancedInstallers
2010-01-27 00:26:15 ----D---- C:\Windows\system32\wbem
2010-01-27 00:26:15 ----D---- C:\Windows\system32\pt-BR
2010-01-27 00:26:15 ----D---- C:\Windows\system32\nl-NL
2010-01-27 00:26:15 ----D---- C:\Windows\system32\nb-NO
2010-01-27 00:26:15 ----D---- C:\Windows\system32\migwiz
2010-01-27 00:26:15 ----D---- C:\Windows\system32\lt-LT
2010-01-27 00:26:15 ----D---- C:\Windows\system32\ar-SA
2010-01-27 00:26:03 ----D---- C:\Windows\IME
2010-01-27 00:25:45 ----RSD---- C:\Windows\Fonts
2010-01-27 00:25:45 ----D---- C:\Windows\AppPatch
2010-01-27 00:24:29 ----D---- C:\Windows\system32\RTCOM
2010-01-27 00:14:05 ----D---- C:\Program Files (x86)\Nokia
2010-01-27 00:13:29 ----D---- C:\Program Files (x86)\Common Files
2010-01-27 00:11:40 ----HD---- C:\ProgramData
2010-01-25 07:40:55 ----D---- C:\Windows\Prefetch
2010-01-24 22:11:14 ----SHD---- C:\System Volume Information
2010-01-24 22:10:45 ----D---- C:\Windows\Debug
2010-01-24 17:06:23 ----D---- C:\Windows\system32\drivers
2010-01-24 16:27:13 ----D---- C:\Windows\pss
2010-01-23 18:40:19 ----D---- C:\Program Files (x86)\Java
2010-01-21 23:01:44 ----D---- C:\Program Files (x86)\Mozilla Firefox
2010-01-13 21:49:04 ----D---- C:\ProgramData\Adobe
2010-01-13 21:49:04 ----D---- C:\Program Files (x86)\Common Files\Adobe

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 avgntflt;avgntflt; C:\Windows\system32\DRIVERS\avgntflt.sys []
R3 athrusb;Atheros Wireless LAN USB device driver; C:\Windows\system32\DRIVERS\athrxusb.sys []
R3 AtiHdmiService;ATI Function Driver for HDMI Service; C:\Windows\system32\drivers\AtiHdmi.sys []
R3 atikmdag;atikmdag; C:\Windows\system32\DRIVERS\atikmdag.sys []
R3 AVMCOWAN;AVMCOWAN; C:\Windows\system32\DRIVERS\AVMCOWAN.sys []
R3 FPCIBASE;FRITZ!Card PCI; C:\Windows\system32\DRIVERS\fpcibase.sys []
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys []
R3 ksthunk;Kernel Streaming Thunks; C:\Windows\system32\drivers\ksthunk.sys []
R3 RTL8169;Realtek 8169 NT Driver; C:\Windows\system32\DRIVERS\Rtlh64.sys []
S3 drmkaud;Microsoft Kernel-DRM-Audioentschlüsselung; C:\Windows\system32\drivers\drmkaud.sys []
S3 GMSIPCI;GMSIPCI; \??\D:\INSTALL\GMSIPCI.SYS []
S3 HdAudAddService;Microsoft 1.1 UAA-Funktionstreiber für High Definition Audio-Dienst; C:\Windows\system32\drivers\HdAudio.sys []
S3 MSIGreenPower;MSIGreenPower; \??\C:\Program Files (x86)\MSI\DualCoreCenter\Green Power Center\NTGLM7X64.sys [2008-03-12 40248]
S3 MSIGreenPowerRushTop;MSIGreenPowerRushTop; \??\C:\Program Files (x86)\MSI\DualCoreCenter\Green Power Center\RushTop64.sys [2008-04-23 74072]
S3 MSKSSRV;Microsoft Streaming Service Proxy; C:\Windows\system32\drivers\MSKSSRV.sys []
S3 MSPCLOCK;Microsoft Proxy für Streaming Clock; C:\Windows\system32\drivers\MSPCLOCK.sys []
S3 MSPQM;Microsoft Proxy für Streaming Quality Manager; C:\Windows\system32\drivers\MSPQM.sys []
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink-Konvertierung; C:\Windows\system32\drivers\MSTEE.sys []
S3 NWUSBModem;Novatel Wireless USB Modem Driver; C:\Windows\system32\DRIVERS\nwusbmdm.sys []
S3 NWUSBPort;Novatel Wireless USB Status Port Driver; C:\Windows\system32\DRIVERS\nwusbser.sys []
S3 RushTopDevice_J;RushTopDevice_J; \??\C:\Program Files (x86)\MSI\DualCoreCenter\Green Power Center\RushJ64.sys [2008-04-23 30552]
S3 upperdev;upperdev; C:\Windows\system32\DRIVERS\usbser_lowerfltx64.sys []
S3 WpdUsb;WpdUsb; C:\Windows\system32\DRIVERS\wpdusb.sys []
S3 WUDFRd;WUDFRd; C:\Windows\system32\DRIVERS\WUDFRd.sys []
S4 ErrDev;Microsoft Hardware Error Device Driver; C:\Windows\system32\drivers\errdev.sys []
S4 MegaSR;MegaSR; C:\Windows\system32\drivers\megasr.sys []
S4 WmiAcpi;Microsoft Windows Management Interface for ACPI; C:\Windows\system32\drivers\wmiacpi.sys []

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe []
R2 AntiVirSchedulerService;Avira AntiVir Planer; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [2009-05-13 108289]
R2 AntiVirService;Avira AntiVir Guard; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [2009-07-21 185089]
R2 NMSAccessU;NMSAccessU; X:\Programme\CDBurnerXP\NMSAccessU.exe [2008-06-15 71096]
S3 clr_optimization_v2.0.50727_64;Microsoft .NET Framework NGEN v2.0.50727_X64; C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe [2009-03-30 89920]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
S3 PerfHost;@%systemroot%\sysWow64\perfhost.exe,-2; C:\Windows\SysWow64\perfhost.exe [2008-01-21 19968]
S3 ServiceLayer;ServiceLayer; C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe [2007-02-08 212480]

-----------------EOF-----------------


Alt 27.01.2010, 19:30   #6
cosinus
/// Winkelfunktion
/// TB-Süch-Tiger™
 
System nach Bereinigung wieder sauber? - Standard

System nach Bereinigung wieder sauber?



Zitat:
X:\Downloads\bluetooth games\Blaue_Spiele\BT Spiele\Worms Forts 3D_k750i_BT.jar
Sieht aus, als hätte AntiVir da in Deinen "Bluetooth" Games rumgewütet
Kannst Du bestätigen, dass die aus einer vertrauenswürdigen Quelle kommen?
__________________
--> System nach Bereinigung wieder sauber?

Alt 27.01.2010, 19:34   #7
jonny55
 
System nach Bereinigung wieder sauber? - Standard

System nach Bereinigung wieder sauber?



Keine Ahnung mehr wo die her sind, das ist praktisch schon goldstaub

sind sonst irgendwelche Probleme anhand der Logs zuerkennen?

Alt 27.01.2010, 19:44   #8
cosinus
/// Winkelfunktion
/// TB-Süch-Tiger™
 
System nach Bereinigung wieder sauber? - Standard

System nach Bereinigung wieder sauber?



Nö, nichts Auffälliges. Malwarebytes hat ja lt. Deiner Aussage auch nichts gefunden.
__________________
"Die Wahrheit ist normalerweise nur eine Entschuldigung für einen Mangel an Fantasie." (Elim Garak)

Das Trojaner-Board unterstützen
Warum Linux besser als Windows ist!

Alt 27.01.2010, 19:55   #9
jonny55
 
System nach Bereinigung wieder sauber? - Standard

System nach Bereinigung wieder sauber?



Okay, vielen Dank für deine Hilfe.

Thema kann dann zu.

Antwort

Themen zu System nach Bereinigung wieder sauber?
adobe, antivir, antivir guard, avg, avira, bho, c:\windows\system32\rundll32.exe, cdburnerxp, desktop, download, excel, explorer, file, firefox, hijack, hijackthis, internet, internet explorer, malwarebytes' anti-malware, mozilla, programdata, programme, prozesse, rundll, silly.gen, software, system, vista, windows, wmp



Ähnliche Themen: System nach Bereinigung wieder sauber?


  1. Wahrscheinlich Ransomware. System wieder sauber nach Erstmaßnahmen?
    Plagegeister aller Art und deren Bekämpfung - 21.09.2015 (5)
  2. Schadsoftware ist nach der Bereinigung von Kaspersky wieder da
    Log-Analyse und Auswertung - 05.09.2015 (15)
  3. Immer wieder Bedrohung von C:\System Volume nach Bereinigung durch Maleware
    Log-Analyse und Auswertung - 16.09.2013 (9)
  4. Sauber nach Bereinigung mit MSSE (Win32/Zbot.gen!AJ) & AVG (Agent.7.BC)
    Plagegeister aller Art und deren Bekämpfung - 27.04.2013 (13)
  5. System-Bereinigung nach GVU-Trojaner
    Plagegeister aller Art und deren Bekämpfung - 20.01.2013 (22)
  6. Vollständige Bereinigung nach dem Trojaner vom System Progressive Protection
    Plagegeister aller Art und deren Bekämpfung - 18.10.2012 (11)
  7. Nicht sicher, ob PC nach "System Fix" Entfernung wieder "sauber"
    Log-Analyse und Auswertung - 07.01.2012 (18)
  8. mediashifting.com: system neu aufgesetzt - unsicher, ob system wieder sauber ist
    Plagegeister aller Art und deren Bekämpfung - 05.01.2012 (7)
  9. System nach Spy.Banker.Gen2 wieder sauber?
    Log-Analyse und Auswertung - 04.12.2011 (33)
  10. System nach Bereinigung des Ukash-Trojaners sauber?
    Log-Analyse und Auswertung - 26.10.2011 (1)
  11. Nach Windows-Wiederherstellung: Angst ob System wieder sauber
    Plagegeister aller Art und deren Bekämpfung - 15.04.2011 (3)
  12. System nach Weiterleitungsfehlern bei der Internetsuche wieder sauber?
    Plagegeister aller Art und deren Bekämpfung - 13.03.2011 (9)
  13. PC nach Bereinigung mit Malwarebytes nun wieder o.k. ?
    Plagegeister aller Art und deren Bekämpfung - 07.02.2011 (15)
  14. System wieder sauber?
    Log-Analyse und Auswertung - 06.01.2011 (3)
  15. Backdoor Trojaner, JAVA Virus? Nach AntiVir Bereinigung und Malewarebites wieder sauber?
    Plagegeister aller Art und deren Bekämpfung - 15.08.2010 (18)
  16. Nach Trojaner-Befall System neu aufgesetzt - Wieder alles sauber?
    Mülltonne - 14.12.2008 (0)
  17. Log nach Virenbefall -System wieder sauber?
    Log-Analyse und Auswertung - 10.05.2007 (1)

Zum Thema System nach Bereinigung wieder sauber? - Hallo liebe User, vor ein paar Tagen führte ich über Malwarebytes einen Komplett-Scan durch. Dieser verlief ohne Fund. Spybot S&D ließ ich ebenso nochmal durchlaufen, er zeigte auch nichts an. - System nach Bereinigung wieder sauber?...
Archiv
Du betrachtest: System nach Bereinigung wieder sauber? auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.