Zurück   Trojaner-Board > Malware entfernen > Plagegeister aller Art und deren Bekämpfung

Plagegeister aller Art und deren Bekämpfung: mit Trojaner TR/Dropper.Gen infiziert

Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen.

Antwort
Alt 08.03.2010, 00:27   #1
Gerald77
 
mit Trojaner TR/Dropper.Gen infiziert - Standard

mit Trojaner TR/Dropper.Gen infiziert



Hallo,

seit mehreren Tagen meldet mir Antivir immer wieder:

In der Datei 'C:\System Volume Information\_restore{31A75684-23E8-41FF-9544-A231DFF25460}\RP6\A0001574.exe'
wurde ein Virus oder unerwünschtes Programm 'TR/Dropper.Gen' [trojan] gefunden.

Was vielleicht noch erwähnenswert ist: Ich hatte vorher XP Home als Betriebssystem, konnte aber aber SP2 nicht installieren obwohl noch das originale Betriebssystem drauf war. Vor langer Zeit hat die Installation von Sp2 zwar funktioniert, hat aber große Probleme verursacht, weshalb ich es wieder löschte. Erneut installieren wollte ich es, weil sonst der ipod-Touch nicht erkannt wird. Nachdem das nicht funktioniert hat habe ich XP-Prof mit Service Pack 3 drüberinstalliert und dann hat alles funktioniert, nicht nur der ipod, auch der PC ging wieder besser. Bei der Installation dürfte ich mir aber irgendwie diesen Trojaner eingehandelt haben. Wenn noch jemand weitere Probleme erkennt wäre ich dankbar, weil der schnellste ist der PC nicht mehr, aber damit muss man wahrscheinlich nach 7 Jahren Dauereinsatz leben?



CCleaner habe ich ausgeführt.

Hier der Anti-Malware-Bericht: (6 Stunden Scanzeit ist nicht normal oder?)

Malwarebytes' Anti-Malware 1.44
Datenbank Version: 3831
Windows 5.1.2600 Service Pack 3
Internet Explorer 8.0.6001.18702

07.03.2010 23:36:07
mbam-log-2010-03-07 (23-36-07).txt

Scan-Methode: Vollständiger Scan (C:\|)
Durchsuchte Objekte: 203207
Laufzeit: 5 hour(s), 59 minute(s), 40 second(s)

Infizierte Speicherprozesse: 0
Infizierte Speichermodule: 0
Infizierte Registrierungsschlüssel: 0
Infizierte Registrierungswerte: 0
Infizierte Dateiobjekte der Registrierung: 0
Infizierte Verzeichnisse: 0
Infizierte Dateien: 4

Infizierte Speicherprozesse:
(Keine bösartigen Objekte gefunden)

Infizierte Speichermodule:
(Keine bösartigen Objekte gefunden)

Infizierte Registrierungsschlüssel:
(Keine bösartigen Objekte gefunden)

Infizierte Registrierungswerte:
(Keine bösartigen Objekte gefunden)

Infizierte Dateiobjekte der Registrierung:
(Keine bösartigen Objekte gefunden)

Infizierte Verzeichnisse:
(Keine bösartigen Objekte gefunden)

Infizierte Dateien:
C:\Programme\SoftwareRevenue.org\4search.exe (Adware.ActiveSearch) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{31A75684-23E8-41FF-9544-A231DFF25460}\RP6\A0001573.exe (Rogue.Installer) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{31A75684-23E8-41FF-9544-A231DFF25460}\RP6\A0001574.exe (Rogue.Installer) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{31A75684-23E8-41FF-9544-A231DFF25460}\RP6\A0001575.exe (Application.FindKey) -> Quarantined and deleted successfully.


Und hier RSIT:

log.txt:

Logfile of random's system information tool 1.06 (written by random/random)
Run by Owner at 2010-03-08 00:00:52
Microsoft Windows XP Professional Service Pack 3
System drive C: has 31 GB (27%) free of 114 GB
Total RAM: 511 MB (57% free)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 00:03:21, on 08.03.2010
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Avira\AntiVir Desktop\sched.exe
C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\Program Files\Medion Home CinemaXL\PowerCinema\PCMService.exe
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\system32\RUNDLL32.EXE
C:\Program Files\Avira\AntiVir Desktop\avguard.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\PROGRA~2\COMMON~1\X10\Common\x10nets.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\WINDOWS\ALCFDRTM.EXE
C:\WINDOWS\explorer.exe
C:\Documents and Settings\Owner\Desktop\RSIT.exe
C:\Program Files\trend micro\Owner.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir Desktop\avgnt.exe" /min
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [WinampAgent] "C:\Program Files\Winamp\Winampa.exe"
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [PCMService] C:\Program Files\Medion Home CinemaXL\PowerCinema\PCMService.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [ Malwarebytes Anti-Malware (reboot)] "C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe" /runcleanupscript
O4 - HKLM\..\RunOnce: [Uninstall Adobe Download Manager] "C:\WINDOWS\system32\rundll32.exe" "C:\Program Files\NOS\bin\getPlus_Helper.dll",Uninstall /IE2883E8F-472F-4fb0-9522-AC9BF37916A7 /Get1noarp
O4 - HKLM\..\RunOnce: [Malwarebytes' Anti-Malware] C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe /install /silent
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NVMCTRAY.DLL,NvTaskbarInit
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized
O4 - HKCU\..\RunOnce: [FlashPlayerUpdate] C:\WINDOWS\system32\Macromed\Flash\NPSWF32_FlashUtil.exe -p
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [_nltide_3] rundll32 advpack.dll,LaunchINFSectionEx nLite.inf,C,,4,N (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [_nltide_3] rundll32 advpack.dll,LaunchINFSectionEx nLite.inf,C,,4,N (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\RunOnce: [_nltide_3] rundll32 advpack.dll,LaunchINFSectionEx nLite.inf,C,,4,N (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - HKUS\.DEFAULT\..\RunOnce: [_nltide_3] rundll32 advpack.dll,LaunchINFSectionEx nLite.inf,C,,4,N (User 'Default user')
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O13 - Gopher Prefix:
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O20 - Winlogon Notify: RailNotification - C:\WINDOWS\
O23 - Service: Avira AntiVir Planer (AntiVirSchedulerService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\sched.exe
O23 - Service: Avira AntiVir Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\avguard.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: Bonjour-Dienst (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: iPod-Dienst (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: NVIDIA Driver Helper Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: X10 Device Network Service (x10nets) - X10 - C:\PROGRA~2\COMMON~1\X10\Common\x10nets.exe

--
End of file - 5996 bytes

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-12-21 75200]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"avgnt"=C:\Program Files\Avira\AntiVir Desktop\avgnt.exe [2009-03-02 209153]
"QuickTime Task"=C:\Program Files\QuickTime\QTTask.exe [2009-11-10 417792]
"iTunesHelper"=C:\Program Files\iTunes\iTunesHelper.exe [2010-02-15 141608]
"WinampAgent"=C:\Program Files\Winamp\Winampa.exe [2003-04-17 12288]
"SoundMan"=C:\WINDOWS\SOUNDMAN.EXE [2003-01-20 47104]
"NvCplDaemon"=C:\WINDOWS\system32\NvCpl.dll [2003-07-28 4841472]
"nwiz"=nwiz.exe /install []
"PCMService"=C:\Program Files\Medion Home CinemaXL\PowerCinema\PCMService.exe [2003-02-17 57344]
"Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2009-12-22 35760]
"Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2009-12-11 948672]
" Malwarebytes Anti-Malware (reboot)"=C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe [2010-01-07 1394000]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"Uninstall Adobe Download Manager"=C:\Program Files\NOS\bin\getPlus_Helper.dll [2010-02-19 67360]
"Malwarebytes' Anti-Malware"=C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe [2010-01-07 429392]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
"NvMediaCenter"=C:\WINDOWS\system32\NVMCTRAY.DLL [2003-07-28 49152]
"Skype"=C:\Program Files\Skype\Phone\Skype.exe [2010-02-22 26101032]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"FlashPlayerUpdate"=C:\WINDOWS\system32\Macromed\Flash\NPSWF32_FlashUtil.exe [2009-07-18 257440]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\RailNotification]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
C:\WINDOWS\system32\WgaLogon.dll [2009-12-12 239496]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2009-12-12 133632]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\Bonjour\mDNSResponder.exe"="C:\Program Files\Bonjour\mDNSResponder.exe:*:Enabled:Bonjour"
"C:\Program Files\iTunes\iTunes.exe"="C:\Program Files\iTunes\iTunes.exe:*:Enabled:iTunes"
"C:\Program Files\eMule\emule.exe"="C:\Program Files\eMule\emule.exe:*:Enabled:eMule"
"C:\Program Files\uTorrent\uTorrent.exe"="C:\Program Files\uTorrent\uTorrent.exe:*:Enabled:µTorrent"
"C:\Program Files\Opera\opera.exe"="C:\Program Files\Opera\opera.exe:*:Enabled:Opera Internet Browser"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"
"C:\Program Files\Skype\Plugin Manager\skypePM.exe"="C:\Program Files\Skype\Plugin Manager\skypePM.exe:*:Enabled:Skype Extras Manager"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\F]
shell\AutoRun\command - F:\LaunchU3.exe -a

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\H]
shell\AutoRun\command - H:\LaunchU3.exe -a

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{3232c556-568f-11de-ae36-0008541aa728}]
shell\AutoRun\command - F:\LaunchU3.exe -a

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{e5b9d6f8-4704-11de-ae34-0008541aa728}]
shell\AutoRun\command - H:\LaunchU3.exe -a


======List of files/folders created in the last 1 months======

2010-03-08 00:01:08 ----D---- C:\Program Files\trend micro
2010-03-08 00:00:52 ----D---- C:\rsit
2010-03-07 11:02:32 ----D---- C:\Documents and Settings\Owner\Application Data\Malwarebytes
2010-03-07 11:02:23 ----D---- C:\Documents and Settings\All Users\Application Data\Malwarebytes
2010-03-07 11:02:22 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
2010-03-07 10:49:05 ----D---- C:\Program Files\CCleaner
2010-03-06 21:44:49 ----D---- C:\Documents and Settings\Owner\Application Data\dvdcss
2010-03-06 10:00:33 ----D---- C:\Documents and Settings\All Users\Application Data\Adobe
2010-03-06 09:59:23 ----D---- C:\Program Files\Common Files\Adobe
2010-03-06 09:59:23 ----D---- C:\Program Files\Adobe
2010-03-06 09:56:03 ----D---- C:\Program Files\NOS
2010-03-06 09:56:03 ----D---- C:\Documents and Settings\All Users\Application Data\NOS
2010-03-04 17:19:40 ----D---- C:\Documents and Settings\Owner\Application Data\skypePM
2010-03-04 17:12:41 ----D---- C:\Documents and Settings\Owner\Application Data\Skype
2010-03-04 17:09:33 ----D---- C:\Program Files\Common Files\Skype
2010-03-04 17:09:28 ----RD---- C:\Program Files\Skype
2010-03-04 17:09:12 ----D---- C:\Documents and Settings\All Users\Application Data\Skype
2010-03-03 06:25:14 ----A---- C:\WINDOWS\system32\hidserv.dll
2010-03-01 14:29:25 ----D---- C:\Program Files\WinRAR
2010-03-01 12:49:44 ----A---- C:\WINDOWS\ALCFDRTM.EXE
2010-02-28 21:21:09 ----D---- C:\Documents and Settings\Owner\Application Data\vlc
2010-02-28 21:18:14 ----D---- C:\Program Files\VideoLAN
2010-02-28 21:07:17 ----D---- C:\Documents and Settings\Owner\Application Data\Opera
2010-02-28 21:07:01 ----D---- C:\Program Files\Opera
2010-02-28 20:03:16 ----D---- C:\Documents and Settings\Owner\Application Data\Adobe
2010-02-28 20:02:16 ----D---- C:\Program Files\uTorrent
2010-02-28 20:00:57 ----D---- C:\Documents and Settings\Owner\Application Data\uTorrent
2010-02-28 18:57:55 ----D---- C:\Program Files\eMule
2010-02-28 16:52:28 ----D---- C:\Documents and Settings\Owner\Application Data\U3
2010-02-28 16:09:23 ----A---- C:\WINDOWS\Unwise.exe
2010-02-28 16:09:22 ----D---- C:\Program Files\X10 Hardware
2010-02-28 16:09:22 ----D---- C:\Program Files\Common Files\X10
2010-02-28 16:06:28 ----N---- C:\WINDOWS\system32\vxblock.dll
2010-02-28 16:06:28 ----N---- C:\WINDOWS\system32\pxwave.dll
2010-02-28 16:06:28 ----N---- C:\WINDOWS\system32\pxmas.dll
2010-02-28 16:06:28 ----N---- C:\WINDOWS\system32\pxhpinst.exe
2010-02-28 16:06:28 ----N---- C:\WINDOWS\system32\pxdrv.dll
2010-02-28 16:06:28 ----N---- C:\WINDOWS\system32\px.dll
2010-02-28 16:06:21 ----N---- C:\WINDOWS\system32\px.ini
2010-02-28 16:03:19 ----D---- C:\Documents and Settings\All Users\Application Data\CyberLink
2010-02-28 16:03:07 ----D---- C:\Program Files\CyberLink
2010-02-28 16:02:32 ----A---- C:\WINDOWS\system32\LMRTREND.dll
2010-02-28 16:02:08 ----A---- C:\WINDOWS\system32\dxtmsft3.dll
2010-02-28 16:02:01 ----A---- C:\WINDOWS\system32\unam4ie.exe
2010-02-28 16:01:53 ----A---- C:\WINDOWS\system32\vidx16.dll
2010-02-28 16:01:52 ----A---- C:\WINDOWS\system32\qcut.dll
2010-02-28 16:01:45 ----A---- C:\WINDOWS\system32\w95inf32.dll
2010-02-28 16:01:45 ----A---- C:\WINDOWS\system32\w95inf16.dll
2010-02-28 16:00:51 ----A---- C:\WINDOWS\IsUn0407.exe
2010-02-28 16:00:30 ----D---- C:\Program Files\Medion Home CinemaXL
2010-02-28 15:58:05 ----D---- C:\WINDOWS\nview
2010-02-28 15:53:21 ----RA---- C:\WINDOWS\system32\Prop7134.dll
2010-02-28 15:53:21 ----RA---- C:\WINDOWS\system32\34TvCtrl.dll
2010-02-28 15:53:21 ----RA---- C:\WINDOWS\system32\34dialog.dll
2010-02-28 15:53:21 ----RA---- C:\WINDOWS\system32\34dd.dll
2010-02-28 15:53:21 ----RA---- C:\WINDOWS\system32\34com.dll
2010-02-28 15:53:21 ----RA---- C:\WINDOWS\system32\34api.dll
2010-02-28 15:53:19 ----A---- C:\WINDOWS\system32\vfwwdm32.dll
2010-02-28 15:52:14 ----RA---- C:\WINDOWS\system32\Audio3D.dll
2010-02-28 15:52:14 ----RA---- C:\WINDOWS\system32\a3d.dll
2010-02-28 15:52:10 ----RA---- C:\WINDOWS\SOUNDMAN.EXE
2010-02-28 15:38:34 ----HD---- C:\Program Files\InstallShield Installation Information
2010-02-28 15:38:34 ----D---- C:\Program Files\PCLinq2 High-Speed USB Bridge Cable
2010-02-28 15:38:03 ----D---- C:\Program Files\Common Files\InstallShield
2010-02-28 15:25:30 ----A---- C:\WINDOWS\winamp.ini
2010-02-28 15:25:13 ----D---- C:\Program Files\Winamp
2010-02-28 14:58:21 ----D---- C:\Documents and Settings\Owner\Application Data\Macromedia
2010-02-28 14:32:49 ----D---- C:\Program Files\Mozilla Firefox
2010-02-28 13:40:53 ----D---- C:\Documents and Settings\Owner\Application Data\Thunderbird
2010-02-28 12:45:31 ----A---- C:\WINDOWS\system32\h323log.txt
2010-02-28 12:39:59 ----A---- C:\WINDOWS\system32\ksuser.dll
2010-02-28 12:38:56 ----A---- C:\WINDOWS\system32\usbui.dll
2010-02-28 12:33:57 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2010-02-28 12:33:55 ----D---- C:\Program Files\Common Files\ODBC
2010-02-28 12:33:55 ----A---- C:\WINDOWS\ODBCINST.INI
2010-02-28 12:33:50 ----D---- C:\Program Files\Common Files\SpeechEngines
2010-02-28 12:33:49 ----D---- C:\Program Files\Common Files\Microsoft Shared
2010-02-28 12:33:49 ----D---- C:\Program Files\Common Files
2010-02-28 12:33:41 ----RA---- C:\WINDOWS\system32\kbdtuq.dll
2010-02-28 12:33:41 ----RA---- C:\WINDOWS\system32\kbdtuf.dll
2010-02-28 12:33:41 ----RA---- C:\WINDOWS\system32\kbdazel.dll
2010-02-28 12:33:39 ----RA---- C:\WINDOWS\system32\kbdtat.dll
2010-02-28 12:33:39 ----RA---- C:\WINDOWS\system32\kbdmon.dll
2010-02-28 12:33:39 ----RA---- C:\WINDOWS\system32\kbdkyr.dll
2010-02-28 12:33:39 ----RA---- C:\WINDOWS\system32\kbdaze.dll
2010-02-28 12:33:38 ----RA---- C:\WINDOWS\system32\kbdycc.dll
2010-02-28 12:33:38 ----RA---- C:\WINDOWS\system32\kbduzb.dll
2010-02-28 12:33:38 ----RA---- C:\WINDOWS\system32\kbdur.dll
2010-02-28 12:33:38 ----RA---- C:\WINDOWS\system32\kbdru1.dll
2010-02-28 12:33:38 ----RA---- C:\WINDOWS\system32\kbdru.dll
2010-02-28 12:33:38 ----RA---- C:\WINDOWS\system32\kbdkaz.dll
2010-02-28 12:33:38 ----RA---- C:\WINDOWS\system32\kbdbu.dll
2010-02-28 12:33:38 ----RA---- C:\WINDOWS\system32\kbdblr.dll
2010-02-28 12:33:35 ----RA---- C:\WINDOWS\system32\kbdhept.dll
2010-02-28 12:33:35 ----RA---- C:\WINDOWS\system32\kbdhela3.dll
2010-02-28 12:33:35 ----RA---- C:\WINDOWS\system32\kbdhela2.dll
2010-02-28 12:33:35 ----RA---- C:\WINDOWS\system32\kbdhe319.dll
2010-02-28 12:33:35 ----RA---- C:\WINDOWS\system32\kbdhe220.dll
2010-02-28 12:33:35 ----RA---- C:\WINDOWS\system32\kbdhe.dll
2010-02-28 12:33:35 ----RA---- C:\WINDOWS\system32\kbdgkl.dll
2010-02-28 12:33:33 ----RA---- C:\WINDOWS\system32\kbdlv1.dll
2010-02-28 12:33:33 ----RA---- C:\WINDOWS\system32\kbdlv.dll
2010-02-28 12:33:33 ----RA---- C:\WINDOWS\system32\kbdlt1.dll
2010-02-28 12:33:33 ----RA---- C:\WINDOWS\system32\kbdlt.dll
2010-02-28 12:33:33 ----RA---- C:\WINDOWS\system32\kbdest.dll
2010-02-28 12:33:31 ----RA---- C:\WINDOWS\system32\kbdsl1.dll
2010-02-28 12:33:31 ----RA---- C:\WINDOWS\system32\kbdsl.dll
2010-02-28 12:33:31 ----RA---- C:\WINDOWS\system32\kbdro.dll
2010-02-28 12:33:31 ----RA---- C:\WINDOWS\system32\kbdpl1.dll
2010-02-28 12:33:31 ----RA---- C:\WINDOWS\system32\kbdpl.dll
2010-02-28 12:33:31 ----RA---- C:\WINDOWS\system32\kbdhu1.dll
2010-02-28 12:33:31 ----RA---- C:\WINDOWS\system32\kbdhu.dll
2010-02-28 12:33:31 ----RA---- C:\WINDOWS\system32\kbdcz2.dll
2010-02-28 12:33:31 ----RA---- C:\WINDOWS\system32\kbdcz1.dll
2010-02-28 12:33:31 ----RA---- C:\WINDOWS\system32\kbdcz.dll
2010-02-28 12:33:31 ----RA---- C:\WINDOWS\system32\kbdcr.dll
2010-02-28 12:33:30 ----RA---- C:\WINDOWS\system32\kbdycl.dll
2010-02-28 12:33:30 ----RA---- C:\WINDOWS\system32\KBDAL.DLL
2010-02-28 12:33:22 ----A---- C:\WINDOWS\system32\spxcoins.dll
2010-02-28 12:33:22 ----A---- C:\WINDOWS\system32\irclass.dll
2010-02-28 12:33:22 ----A---- C:\WINDOWS\system32\EqnClass.Dll
2010-02-28 12:33:22 ----A---- C:\WINDOWS\system32\dgsetup.dll
2010-02-28 12:33:22 ----A---- C:\WINDOWS\system32\dgrpsetu.dll
2010-02-28 12:33:19 ----N---- C:\WINDOWS\system32\CONFIG.TMP
2010-02-28 12:33:19 ----A---- C:\WINDOWS\TASKMAN.EXE
2010-02-28 12:33:18 ----A---- C:\WINDOWS\system32\batt.dll
2010-02-28 12:33:18 ----A---- C:\WINDOWS\NOTEPAD.EXE
2010-02-28 12:33:17 ----A---- C:\WINDOWS\system32\storprop.dll
2010-02-28 12:32:56 ----ASH---- C:\Documents and Settings\All Users\Application Data\desktop.ini
2010-02-28 12:32:22 ----SD---- C:\Documents and Settings\All Users\Application Data\Microsoft
2010-02-28 12:32:11 ----D---- C:\Documents and Settings\Owner\Application Data\Apple Computer
2010-02-28 12:31:47 ----A---- C:\pmtimer.exe
2010-02-28 12:31:47 ----A---- C:\mute.exe
2010-02-28 12:31:47 ----A---- C:\makePNF.exe
2010-02-28 12:31:47 ----A---- C:\DSPdsblr.exe
2010-02-28 12:31:47 ----A---- C:\DPsFnshr.ini
2010-02-28 12:31:47 ----A---- C:\DPsFnshr.exe
2010-02-28 12:31:47 ----A---- C:\devcon.exe
2010-02-28 12:31:42 ----A---- C:\WINDOWS\system32\GEARAspi.dll
2010-02-28 12:31:07 ----A---- C:\DriverPack_WLAN_wnt5_x86-32.ini
2010-02-28 12:30:55 ----A---- C:\DriverPack_MassStorage_wnt5_x86-32.ini
2010-02-28 12:30:43 ----A---- C:\WINDOWS\system32\RtNicProp32.dll
2010-02-28 12:30:36 ----D---- C:\D
2010-02-28 12:30:36 ----A---- C:\DriverPack_LAN_Network_wnt5_x86-32.ini
2010-02-28 12:30:18 ----D---- C:\Documents and Settings
2010-02-28 12:30:16 ----D---- C:\Program Files\iPod
2010-02-28 12:29:58 ----D---- C:\Program Files\iTunes
2010-02-28 12:29:58 ----D---- C:\Documents and Settings\All Users\Application Data\{755AC846-7372-4AC8-8550-C52491DAA8BD}
2010-02-28 12:29:26 ----D---- C:\Program Files\Bonjour
2010-02-28 12:28:37 ----D---- C:\Program Files\QuickTime
2010-02-28 12:28:33 ----D---- C:\Documents and Settings\All Users\Application Data\Apple Computer
2010-02-28 12:28:02 ----D---- C:\Program Files\Apple Software Update
2010-02-28 12:27:48 ----A---- C:\WINDOWS\system32\usbaaplrc.dll
2010-02-28 12:26:44 ----D---- C:\Program Files\Common Files\Apple
2010-02-28 12:26:44 ----D---- C:\Documents and Settings\All Users\Application Data\Apple
2010-02-28 12:24:33 ----D---- C:\WINDOWS\WBEM
2010-02-28 12:24:33 ----D---- C:\WINDOWS\system32\scripting
2010-02-28 12:24:33 ----D---- C:\WINDOWS\system32\en-US
2010-02-28 12:24:33 ----D---- C:\WINDOWS\system32\en
2010-02-28 12:24:33 ----D---- C:\WINDOWS\Network Diagnostic
2010-02-28 12:24:33 ----D---- C:\WINDOWS\L2Schemas
2010-02-28 12:22:04 ----D---- C:\Documents and Settings\Owner\Application Data\Mozilla
2010-02-28 12:16:05 ----D---- C:\Program Files\Avira
2010-02-28 12:16:05 ----D---- C:\Documents and Settings\All Users\Application Data\Avira
2010-02-28 12:05:43 ----HD---- C:\Program Files\Uninstall Information
2010-02-28 12:04:16 ----ASH---- C:\Documents and Settings\Owner\Application Data\desktop.ini
2010-02-28 12:04:14 ----SD---- C:\Documents and Settings\Owner\Application Data\Microsoft
2010-02-28 12:03:43 ----N---- C:\WINDOWS\SchedLgU.Txt
2010-02-28 12:01:15 ----D---- C:\Program Files\Microsoft CAPICOM 2.1.0.2
2010-02-28 12:00:49 ----A---- C:\WINDOWS\control.ini
2010-02-28 12:00:22 ----A---- C:\WINDOWS\system32\mapi32.dll
2010-02-28 12:00:13 ----D---- C:\WINDOWS\system32\dllcache
2010-02-28 11:58:28 ----RAH---- C:\WINDOWS\system32\logonui.exe.manifest
2010-02-28 11:58:23 ----RAH---- C:\WINDOWS\system32\cdplayer.exe.manifest
2010-02-28 11:58:04 ----HD---- C:\Program Files\WindowsUpdate
2010-02-28 11:57:35 ----D---- C:\Program Files\Windows Media Connect 2
2010-02-28 11:57:14 ----A---- C:\WINDOWS\system32\atrace.dll
2010-02-28 11:57:13 ----A---- C:\WINDOWS\system32\desktop.ini
2010-02-28 11:57:13 ----A---- C:\WINDOWS\desktop.ini
2010-02-28 11:57:08 ----A---- C:\WINDOWS\system32\icfgnt5.dll
2010-02-28 11:57:05 ----D---- C:\Program Files\Common Files\MSSoap
2010-02-28 11:56:50 ----A---- C:\WINDOWS\system32\wuweb.dll
2010-02-28 11:56:50 ----A---- C:\WINDOWS\system32\wucltui.dll
2010-02-28 11:56:50 ----A---- C:\WINDOWS\system32\wuauserv.dll
2010-02-28 11:56:50 ----A---- C:\WINDOWS\system32\wuaueng1.dll
2010-02-28 11:56:50 ----A---- C:\WINDOWS\system32\wuaueng.dll
2010-02-28 11:56:49 ----A---- C:\WINDOWS\system32\wups.dll
2010-02-28 11:56:49 ----A---- C:\WINDOWS\system32\wuauclt1.exe
2010-02-28 11:56:49 ----A---- C:\WINDOWS\system32\wuauclt.exe
2010-02-28 11:56:49 ----A---- C:\WINDOWS\system32\wuapi.dll
2010-02-28 11:56:49 ----A---- C:\WINDOWS\system32\bitsprx4.dll
2010-02-28 11:56:49 ----A---- C:\WINDOWS\system32\bitsprx3.dll
2010-02-28 11:56:49 ----A---- C:\WINDOWS\system32\bitsprx2.dll
2010-02-28 11:56:48 ----A---- C:\WINDOWS\system32\qmgrprxy.dll
2010-02-28 11:56:48 ----A---- C:\WINDOWS\system32\qmgr.dll
2010-02-28 11:56:47 ----A---- C:\WINDOWS\system32\safrslv.dll
2010-02-28 11:56:47 ----A---- C:\WINDOWS\system32\safrdm.dll
2010-02-28 11:56:47 ----A---- C:\WINDOWS\system32\safrcdlg.dll
2010-02-28 11:56:47 ----A---- C:\WINDOWS\system32\racpldlg.dll
2010-02-28 11:56:42 ----A---- C:\WINDOWS\system32\fltMc.exe
2010-02-28 11:56:42 ----A---- C:\WINDOWS\system32\fltlib.dll
2010-02-28 11:56:41 ----A---- C:\WINDOWS\system32\srsvc.dll
2010-02-28 11:56:41 ----A---- C:\WINDOWS\system32\srrstr.dll
2010-02-28 11:56:41 ----A---- C:\WINDOWS\system32\srclient.dll
2010-02-28 11:56:40 ----A---- C:\WINDOWS\system32\schedsvc.dll
2010-02-28 11:56:40 ----A---- C:\WINDOWS\system32\mstinit.exe
2010-02-28 11:56:40 ----A---- C:\WINDOWS\system32\mstask.dll
2010-02-28 11:56:39 ----A---- C:\WINDOWS\system32\icwphbk.dll
2010-02-28 11:56:39 ----A---- C:\WINDOWS\system32\icwdial.dll
2010-02-28 11:56:38 ----A---- C:\WINDOWS\system32\isign32.dll
2010-02-28 11:56:38 ----A---- C:\WINDOWS\system32\inetcfg.dll
2010-02-28 11:56:30 ----D---- C:\Program Files\Common Files\System
2010-02-28 11:55:54 ----D---- C:\Documents and Settings\All Users\Application Data\Windows Genuine Advantage
2010-02-28 11:55:02 ----D---- C:\Program Files\ComPlus Applications
2010-02-28 11:54:58 ----A---- C:\WINDOWS\vbaddin.ini
2010-02-28 11:54:58 ----A---- C:\WINDOWS\vb.ini
2010-02-28 11:53:18 ----D---- C:\Program Files\Windows Media Player
2010-02-28 11:52:40 ----A---- C:\WINDOWS\system32\zlib1.dll
2010-02-28 11:52:39 ----A---- C:\WINDOWS\system32\wrap_oal.dll
2010-02-28 11:52:38 ----A---- C:\WINDOWS\system32\vb40032.dll
2010-02-28 11:52:37 ----A---- C:\WINDOWS\system32\ssleay32.dll
2010-02-28 11:52:37 ----A---- C:\WINDOWS\system32\openal32.dll
2010-02-28 11:52:36 ----N---- C:\WINDOWS\system32\msvcr70.dll
2010-02-28 11:52:36 ----A---- C:\WINDOWS\system32\msvcr71.dll
2010-02-28 11:52:36 ----A---- C:\WINDOWS\system32\msvcp71.dll
2010-02-28 11:52:36 ----A---- C:\WINDOWS\system32\msvcp70.dll
2010-02-28 11:52:35 ----A---- C:\WINDOWS\system32\msvci70.dll
2010-02-28 11:52:35 ----A---- C:\WINDOWS\system32\msstkprp.dll
2010-02-28 11:52:35 ----A---- C:\WINDOWS\system32\msstdfmt.dll
2010-02-28 11:52:32 ----A---- C:\WINDOWS\system32\mfc71u.dll
2010-02-28 11:52:32 ----A---- C:\WINDOWS\system32\mfc71KOR.dll
2010-02-28 11:52:32 ----A---- C:\WINDOWS\system32\mfc71JPN.dll
2010-02-28 11:52:32 ----A---- C:\WINDOWS\system32\mfc71ITA.dll
2010-02-28 11:52:32 ----A---- C:\WINDOWS\system32\mfc71FRA.dll
2010-02-28 11:52:31 ----A---- C:\WINDOWS\system32\mfc71ESP.dll
2010-02-28 11:52:31 ----A---- C:\WINDOWS\system32\mfc71ENU.dll
2010-02-28 11:52:31 ----A---- C:\WINDOWS\system32\mfc71DEU.dll
2010-02-28 11:52:31 ----A---- C:\WINDOWS\system32\mfc71CHT.dll
2010-02-28 11:52:31 ----A---- C:\WINDOWS\system32\mfc71CHS.dll
2010-02-28 11:52:30 ----A---- C:\WINDOWS\system32\mfc71.dll
2010-02-28 11:52:30 ----A---- C:\WINDOWS\system32\mfc70u.dll
2010-02-28 11:52:30 ----A---- C:\WINDOWS\system32\mfc70KOR.dll
2010-02-28 11:52:30 ----A---- C:\WINDOWS\system32\mfc70JPN.dll
2010-02-28 11:52:30 ----A---- C:\WINDOWS\system32\mfc70ITA.dll
2010-02-28 11:52:29 ----A---- C:\WINDOWS\system32\mfc70FRA.dll
2010-02-28 11:52:29 ----A---- C:\WINDOWS\system32\mfc70ESP.dll
2010-02-28 11:52:29 ----A---- C:\WINDOWS\system32\mfc70ENU.dll
2010-02-28 11:52:29 ----A---- C:\WINDOWS\system32\mfc70DEU.dll
2010-02-28 11:52:29 ----A---- C:\WINDOWS\system32\mfc70CHT.dll
2010-02-28 11:52:29 ----A---- C:\WINDOWS\system32\mfc70CHS.dll
2010-02-28 11:52:28 ----A---- C:\WINDOWS\system32\mfc70.dll
2010-02-28 11:52:28 ----A---- C:\WINDOWS\system32\libssl32.dll
2010-02-28 11:52:28 ----A---- C:\WINDOWS\system32\libpng13.dll
2010-02-28 11:52:27 ----A---- C:\WINDOWS\system32\libmmd.dll
2010-02-28 11:52:27 ----A---- C:\WINDOWS\system32\libintl3.dll
2010-02-28 11:52:27 ----A---- C:\WINDOWS\system32\libiconv2.dll
2010-02-28 11:52:26 ----A---- C:\WINDOWS\system32\libeay32.dll
2010-02-28 11:52:26 ----A---- C:\WINDOWS\system32\cygwinb19.dll
2010-02-28 11:52:25 ----A---- C:\WINDOWS\system32\cygwin1.dll
2010-02-28 11:52:24 ----A---- C:\WINDOWS\system32\AutoItX3.dll
2010-02-28 11:52:24 ----A---- C:\WINDOWS\system32\atl71.dll
2010-02-28 11:52:23 ----A---- C:\WINDOWS\system32\atl70.dll
2010-02-28 11:52:21 ----A---- C:\WINDOWS\system32\xpsshhdr.dll
2010-02-28 11:52:21 ----A---- C:\WINDOWS\system32\prntvpt.dll
2010-02-28 11:52:20 ----A---- C:\WINDOWS\system32\xpssvcs.dll
2010-02-28 11:52:06 ----D---- C:\WINDOWS\BitLockerDiscoveryVolumeContents
2010-02-28 11:52:05 ----D---- C:\WINDOWS\system32\DRM
2010-02-28 11:52:05 ----A---- C:\WINDOWS\system32\SecProc_ssp_isv.dll
2010-02-28 11:52:05 ----A---- C:\WINDOWS\system32\SecProc_ssp.dll
2010-02-28 11:52:05 ----A---- C:\WINDOWS\system32\RmActivate_ssp_isv.exe
2010-02-28 11:52:04 ----A---- C:\WINDOWS\system32\RmActivate_ssp.exe
2010-02-28 11:52:04 ----A---- C:\WINDOWS\system32\RmActivate_isv.exe
2010-02-28 11:52:03 ----A---- C:\WINDOWS\system32\SecProc_isv.dll
2010-02-28 11:52:03 ----A---- C:\WINDOWS\system32\RmActivate.exe
2010-02-28 11:52:02 ----A---- C:\WINDOWS\system32\SecProc.dll
2010-02-28 11:52:02 ----A---- C:\WINDOWS\system32\msdrm.dll
2010-02-28 11:52:01 ----A---- C:\WINDOWS\system32\WgaTray.exe
2010-02-28 11:52:00 ----A---- C:\WINDOWS\system32\winUsbCoinstaller.dll
2010-02-28 11:52:00 ----A---- C:\WINDOWS\system32\WgaLogon.dll
2010-02-28 11:51:59 ----A---- C:\WINDOWS\system32\WdfCoInstaller01007.dll
2010-02-28 11:51:58 ----A---- C:\WINDOWS\system32\WUDFUpdate_01007.dll
2010-02-28 11:51:57 ----A---- C:\WINDOWS\system32\imapi2fs.dll
2010-02-28 11:51:56 ----A---- C:\WINDOWS\system32\imapi2.dll
2010-02-28 11:51:53 ----A---- C:\WINDOWS\system32\msxml4r.dll
2010-02-28 11:51:53 ----A---- C:\WINDOWS\system32\msxml4.dll
2010-02-28 11:51:52 ----D---- C:\Program Files\MSXML 4.0
2010-02-28 11:51:37 ----A---- C:\WINDOWS\system32\xinput9_1_0.dll
2010-02-28 11:51:37 ----A---- C:\WINDOWS\system32\xinput1_3.dll
2010-02-28 11:51:36 ----A---- C:\WINDOWS\system32\xinput1_2.dll
2010-02-28 11:51:36 ----A---- C:\WINDOWS\system32\xinput1_1.dll
2010-02-28 11:51:36 ----A---- C:\WINDOWS\system32\XAudio2_5.dll
2010-02-28 11:51:35 ----A---- C:\WINDOWS\system32\XAudio2_4.dll
2010-02-28 11:51:35 ----A---- C:\WINDOWS\system32\XAudio2_3.dll
2010-02-28 11:51:34 ----A---- C:\WINDOWS\system32\XAudio2_2.dll
2010-02-28 11:51:34 ----A---- C:\WINDOWS\system32\XAudio2_1.dll
2010-02-28 11:51:33 ----A---- C:\WINDOWS\system32\XAudio2_0.dll
2010-02-28 11:51:33 ----A---- C:\WINDOWS\system32\XAPOFX1_3.dll
2010-02-28 11:51:33 ----A---- C:\WINDOWS\system32\XAPOFX1_2.dll
2010-02-28 11:51:32 ----A---- C:\WINDOWS\system32\XAPOFX1_1.dll
2010-02-28 11:51:32 ----A---- C:\WINDOWS\system32\XAPOFX1_0.dll
2010-02-28 11:51:32 ----A---- C:\WINDOWS\system32\xactengine3_5.dll
2010-02-28 11:51:32 ----A---- C:\WINDOWS\system32\xactengine3_4.dll
2010-02-28 11:51:31 ----A---- C:\WINDOWS\system32\xactengine3_3.dll
2010-02-28 11:51:31 ----A---- C:\WINDOWS\system32\xactengine3_2.dll
2010-02-28 11:51:31 ----A---- C:\WINDOWS\system32\xactengine3_1.dll
2010-02-28 11:51:31 ----A---- C:\WINDOWS\system32\xactengine3_0.dll
2010-02-28 11:51:30 ----A---- C:\WINDOWS\system32\xactengine2_9.dll
2010-02-28 11:51:30 ----A---- C:\WINDOWS\system32\xactengine2_8.dll
2010-02-28 11:51:30 ----A---- C:\WINDOWS\system32\xactengine2_7.dll
2010-02-28 11:51:30 ----A---- C:\WINDOWS\system32\xactengine2_6.dll
2010-02-28 11:51:30 ----A---- C:\WINDOWS\system32\xactengine2_5.dll
2010-02-28 11:51:29 ----A---- C:\WINDOWS\system32\xactengine2_4.dll
2010-02-28 11:51:29 ----A---- C:\WINDOWS\system32\xactengine2_3.dll
2010-02-28 11:51:29 ----A---- C:\WINDOWS\system32\xactengine2_2.dll
2010-02-28 11:51:29 ----A---- C:\WINDOWS\system32\xactengine2_10.dll
2010-02-28 11:51:29 ----A---- C:\WINDOWS\system32\xactengine2_1.dll
2010-02-28 11:51:28 ----A---- C:\WINDOWS\system32\xactengine2_0.dll
2010-02-28 11:51:28 ----A---- C:\WINDOWS\system32\X3DAudio1_6.dll
2010-02-28 11:51:28 ----A---- C:\WINDOWS\system32\X3DAudio1_5.dll
2010-02-28 11:51:28 ----A---- C:\WINDOWS\system32\X3DAudio1_4.dll
2010-02-28 11:51:27 ----A---- C:\WINDOWS\system32\X3DAudio1_3.dll
2010-02-28 11:51:27 ----A---- C:\WINDOWS\system32\X3DAudio1_2.dll
2010-02-28 11:51:27 ----A---- C:\WINDOWS\system32\x3daudio1_1.dll
2010-02-28 11:51:27 ----A---- C:\WINDOWS\system32\x3daudio1_0.dll
2010-02-28 11:51:26 ----A---- C:\WINDOWS\system32\D3DX9_42.dll
2010-02-28 11:51:25 ----A---- C:\WINDOWS\system32\D3DX9_41.dll
2010-02-28 11:51:24 ----A---- C:\WINDOWS\system32\D3DX9_40.dll
2010-02-28 11:51:23 ----A---- C:\WINDOWS\system32\D3DX9_39.dll
2010-02-28 11:51:22 ----A---- C:\WINDOWS\system32\D3DX9_38.dll
2010-02-28 11:51:21 ----A---- C:\WINDOWS\system32\D3DX9_37.dll
2010-02-28 11:51:20 ----A---- C:\WINDOWS\system32\d3dx9_36.dll
2010-02-28 11:51:19 ----A---- C:\WINDOWS\system32\d3dx9_35.dll
2010-02-28 11:51:18 ----A---- C:\WINDOWS\system32\d3dx9_34.dll
2010-02-28 11:51:17 ----A---- C:\WINDOWS\system32\d3dx9_33.dll
2010-02-28 11:51:16 ----A---- C:\WINDOWS\system32\d3dx9_32.dll
2010-02-28 11:51:15 ----A---- C:\WINDOWS\system32\d3dx9_31.dll
2010-02-28 11:51:15 ----A---- C:\WINDOWS\system32\d3dx9_30.dll
2010-02-28 11:51:14 ----A---- C:\WINDOWS\system32\d3dx9_29.dll
2010-02-28 11:51:13 ----A---- C:\WINDOWS\system32\d3dx9_28.dll
2010-02-28 11:51:12 ----A---- C:\WINDOWS\system32\d3dx9_27.dll
2010-02-28 11:51:11 ----A---- C:\WINDOWS\system32\d3dx9_26.dll
2010-02-28 11:51:10 ----A---- C:\WINDOWS\system32\d3dx9_25.dll
2010-02-28 11:51:10 ----A---- C:\WINDOWS\system32\d3dx9_24.dll
2010-02-28 11:51:09 ----A---- C:\WINDOWS\system32\d3dx11_42.dll
2010-02-28 11:51:09 ----A---- C:\WINDOWS\system32\d3dx10_42.dll
2010-02-28 11:51:09 ----A---- C:\WINDOWS\system32\d3dx10_41.dll
2010-02-28 11:51:09 ----A---- C:\WINDOWS\system32\d3dx10_40.dll
2010-02-28 11:51:08 ----A---- C:\WINDOWS\system32\d3dx10_39.dll
2010-02-28 11:51:08 ----A---- C:\WINDOWS\system32\d3dx10_38.dll
2010-02-28 11:51:08 ----A---- C:\WINDOWS\system32\d3dx10_37.dll
2010-02-28 11:51:07 ----A---- C:\WINDOWS\system32\d3dx10_36.dll
2010-02-28 11:51:07 ----A---- C:\WINDOWS\system32\d3dx10_35.dll
2010-02-28 11:51:07 ----A---- C:\WINDOWS\system32\d3dx10_34.dll
2010-02-28 11:51:06 ----A---- C:\WINDOWS\system32\d3dx10_33.dll
2010-02-28 11:51:04 ----A---- C:\WINDOWS\system32\d3dcsx_42.dll
2010-02-28 11:51:04 ----A---- C:\WINDOWS\system32\D3DCompiler_42.dll
2010-02-28 11:51:03 ----A---- C:\WINDOWS\system32\D3DCompiler_41.dll
2010-02-28 11:51:02 ----A---- C:\WINDOWS\system32\D3DCompiler_40.dll
2010-02-28 11:51:02 ----A---- C:\WINDOWS\system32\D3DCompiler_39.dll
2010-02-28 11:51:01 ----A---- C:\WINDOWS\system32\D3DCompiler_38.dll
2010-02-28 11:51:01 ----A---- C:\WINDOWS\system32\D3DCompiler_37.dll
2010-02-28 11:51:00 ----A---- C:\WINDOWS\system32\D3DCompiler_36.dll
2010-02-28 11:51:00 ----A---- C:\WINDOWS\system32\D3DCompiler_35.dll
2010-02-28 11:50:59 ----A---- C:\WINDOWS\system32\D3DCompiler_34.dll
2010-02-28 11:50:58 ----A---- C:\WINDOWS\system32\D3DCompiler_33.dll
2010-02-28 11:50:43 ----D---- C:\Program Files\Microsoft Silverlight
2010-02-28 11:50:43 ----A---- C:\WINDOWS\system32\muweb.dll
2010-02-28 11:50:42 ----A---- C:\WINDOWS\system32\spupdsvc.exe
2010-02-28 11:50:42 ----A---- C:\WINDOWS\system32\mucltui.dll.mui
2010-02-28 11:50:42 ----A---- C:\WINDOWS\system32\mucltui.dll
2010-02-28 11:50:42 ----A---- C:\WINDOWS\system32\MicrosoftUpdateCatalogWebControl.dll
2010-02-28 11:50:22 ----A---- C:\WINDOWS\system32\netfxperf.dll
2010-02-28 11:50:17 ----D---- C:\Program Files\Internet Explorer
2010-02-28 11:50:17 ----A---- C:\WINDOWS\system32\mscories.dll
2010-02-28 11:50:17 ----A---- C:\WINDOWS\system32\mscorier.dll
2010-02-28 11:50:16 ----A---- C:\WINDOWS\system32\mscoree.dll
2010-02-28 11:49:53 ----A---- C:\WINDOWS\system32\write.exe
2010-02-28 11:49:46 ----A---- C:\WINDOWS\system32\sndvol32.exe
2010-02-28 11:49:39 ----A---- C:\WINDOWS\system32\getuname.dll
2010-02-28 11:49:38 ----A---- C:\WINDOWS\system32\charmap.exe
2010-02-28 11:49:38 ----A---- C:\WINDOWS\system32\calc.exe
2010-02-28 11:49:35 ----A---- C:\WINDOWS\system32\rdpshell.exe
2010-02-28 11:49:35 ----A---- C:\WINDOWS\system32\rdpinit.exe
2010-02-28 11:49:34 ----A---- C:\WINDOWS\system32\wksprtps.dll
2010-02-28 11:49:34 ----A---- C:\WINDOWS\system32\winlogonnotification.dll
2010-02-28 11:49:34 ----A---- C:\WINDOWS\system32\tspubwmi.dll
2010-02-28 11:49:33 ----A---- C:\WINDOWS\system32\wksprt.exe
2010-02-28 11:49:33 ----A---- C:\WINDOWS\system32\tswbprxy.exe
2010-02-28 11:49:33 ----A---- C:\WINDOWS\system32\reset.exe
2010-02-28 11:49:33 ----A---- C:\WINDOWS\system32\MsRdpWebAccess.dll
2010-02-28 11:49:32 ----A---- C:\WINDOWS\system32\usrlogon.cmd
2010-02-28 11:49:32 ----A---- C:\WINDOWS\system32\tsshutdn.exe
2010-02-28 11:49:32 ----A---- C:\WINDOWS\system32\tslabels.ini
2010-02-28 11:49:32 ----A---- C:\WINDOWS\system32\tskill.exe
2010-02-28 11:49:32 ----A---- C:\WINDOWS\system32\tsdiscon.exe
2010-02-28 11:49:32 ----A---- C:\WINDOWS\system32\tscon.exe
2010-02-28 11:49:32 ----A---- C:\WINDOWS\system32\shadow.exe
2010-02-28 11:49:32 ----A---- C:\WINDOWS\system32\rwinsta.exe
2010-02-28 11:49:32 ----A---- C:\WINDOWS\system32\regini.exe
2010-02-28 11:49:32 ----A---- C:\WINDOWS\system32\rdpcfgex.dll
2010-02-28 11:49:31 ----A---- C:\WINDOWS\system32\qwinsta.exe
2010-02-28 11:49:31 ----A---- C:\WINDOWS\system32\qappsrv.exe
2010-02-28 11:49:31 ----A---- C:\WINDOWS\system32\msg.exe
2010-02-28 11:49:31 ----A---- C:\WINDOWS\system32\msdtcprf.ini
2010-02-28 11:49:31 ----A---- C:\WINDOWS\system32\logoff.exe
2010-02-28 11:49:31 ----A---- C:\WINDOWS\system32\cdmodem.dll
2010-02-28 11:49:23 ----A---- C:\WINDOWS\system32\wmimgmt.msc
2010-02-28 11:49:22 ----D---- C:\Program Files\Windows NT
2010-02-28 11:49:22 ----A---- C:\WINDOWS\system32\mplay32.exe
2010-02-28 11:49:22 ----A---- C:\WINDOWS\system32\clipbrd.exe
2010-02-28 11:49:22 ----A---- C:\WINDOWS\system32\accwiz.exe
2010-02-28 11:49:20 ----A---- C:\WINDOWS\system32\tsgqec.dll
2010-02-28 11:49:20 ----A---- C:\WINDOWS\system32\tscfgwmi.dll
2010-02-28 11:49:20 ----A---- C:\WINDOWS\system32\rhttpaa.dll
2010-02-28 11:49:20 ----A---- C:\WINDOWS\system32\aaclient.dll
2010-02-28 11:49:19 ----A---- C:\WINDOWS\system32\mstscax.dll
2010-02-28 11:49:18 ----A---- C:\WINDOWS\system32\sessmgr.exe
2010-02-28 11:49:18 ----A---- C:\WINDOWS\system32\remotepg.dll
2010-02-28 11:49:18 ----A---- C:\WINDOWS\system32\rdshost.exe
2010-02-28 11:49:18 ----A---- C:\WINDOWS\system32\rdsaddin.exe
2010-02-28 11:49:18 ----A---- C:\WINDOWS\system32\rdchost.dll
2010-02-28 11:49:18 ----A---- C:\WINDOWS\system32\mstsc.exe
2010-02-28 11:49:17 ----A---- C:\WINDOWS\system32\termsrv.dll
2010-02-28 11:49:17 ----A---- C:\WINDOWS\system32\rdpwsx.dll
2010-02-28 11:49:17 ----A---- C:\WINDOWS\system32\rdpsnd.dll
2010-02-28 11:49:17 ----A---- C:\WINDOWS\system32\rdpclip.exe
2010-02-28 11:49:17 ----A---- C:\WINDOWS\system32\qprocess.exe
2010-02-28 11:49:17 ----A---- C:\WINDOWS\system32\icaapi.dll
2010-02-28 11:49:17 ----A---- C:\WINDOWS\system32\cfgbkend.dll
2010-02-28 11:49:16 ----A---- C:\WINDOWS\system32\mtxoci.dll
2010-02-28 11:49:16 ----A---- C:\WINDOWS\system32\msdtcuiu.dll
2010-02-28 11:49:16 ----A---- C:\WINDOWS\system32\msdtctm.dll
2010-02-28 11:49:16 ----A---- C:\WINDOWS\system32\msdtcprx.dll
2010-02-28 11:49:15 ----A---- C:\WINDOWS\system32\xolehlp.dll
2010-02-28 11:49:15 ----A---- C:\WINDOWS\system32\msdtclog.dll
2010-02-28 11:49:15 ----A---- C:\WINDOWS\system32\msdtc.exe
2010-02-28 11:49:14 ----A---- C:\WINDOWS\system32\mtxlegih.dll
2010-02-28 11:49:14 ----A---- C:\WINDOWS\system32\mtxex.dll
2010-02-28 11:49:14 ----A---- C:\WINDOWS\system32\mtxdm.dll
2010-02-28 11:49:14 ----A---- C:\WINDOWS\system32\dcomcnfg.exe
2010-02-28 11:49:14 ----A---- C:\WINDOWS\system32\colbact.dll
2010-02-28 11:49:13 ----A---- C:\WINDOWS\system32\stclient.dll
2010-02-28 11:49:13 ----A---- C:\WINDOWS\system32\comrepl.dll
2010-02-28 11:49:13 ----A---- C:\WINDOWS\system32\comaddin.dll
2010-02-28 11:49:13 ----A---- C:\WINDOWS\system32\clbcatex.dll
2010-02-28 11:49:13 ----A---- C:\WINDOWS\system32\catsrvps.dll
2010-02-28 11:49:12 ----A---- C:\WINDOWS\system32\catsrvut.dll
2010-02-28 11:49:12 ----A---- C:\WINDOWS\system32\catsrv.dll
2010-02-28 11:49:11 ----A---- C:\WINDOWS\system32\comuid.dll
2010-02-28 11:49:11 ----A---- C:\WINDOWS\system32\comsvcs.dll
2010-02-28 11:49:11 ----A---- C:\WINDOWS\system32\comsnap.dll
2010-02-28 11:49:11 ----A---- C:\WINDOWS\system32\clbcatq.dll
2010-02-28 11:49:01 ----A---- C:\WINDOWS\system32\servdeps.dll
2010-02-28 11:49:01 ----A---- C:\WINDOWS\system32\mmfutil.dll
2010-02-28 11:49:01 ----A---- C:\WINDOWS\system32\licwmi.dll
2010-02-28 11:49:01 ----A---- C:\WINDOWS\system32\cmprops.dll
2010-02-28 10:17:33 ----D---- C:\WINDOWS\system32\CatRoot_bak
2010-02-28 09:10:19 ----D---- C:\89c5a245170d083f88d5
2010-02-28 08:57:05 ----D---- C:\WINDOWS\system32\SoftwareDistribution
2010-02-28 08:02:49 ----D---- C:\WINDOWS\ServicePackFiles
2010-02-28 07:50:16 ----HDC---- C:\WINDOWS\$NtServicePackUninstall$
2010-02-28 05:53:15 ----D---- C:\WINDOWS\Prefetch
2010-02-27 18:45:36 ----SHD---- C:\Config.Msi

======List of files/folders modified in the last 1 months======

2010-03-08 00:01:08 ----RD---- C:\Program Files
2010-03-07 23:36:28 ----D---- C:\WINDOWS\system32\DRIVERS
2010-03-07 20:53:07 ----D---- C:\Program Files\Mozilla Thunderbird
2010-03-07 10:53:02 ----D---- C:\WINDOWS\Debug
2010-03-07 10:53:02 ----D---- C:\WINDOWS
2010-03-07 10:52:57 ----D---- C:\WINDOWS\TEMP
2010-03-06 10:01:52 ----SHD---- C:\WINDOWS\Installer
2010-03-06 09:58:47 ----D---- C:\WINDOWS\SYSTEM32
2010-03-01 19:27:16 ----D---- C:\WINDOWS\system32\CatRoot2
2010-02-28 16:16:07 ----HD---- C:\WINDOWS\INF
2010-02-28 16:08:31 ----D---- C:\WINDOWS\system32\CatRoot
2010-02-28 16:02:01 ----D---- C:\WINDOWS\HELP
2010-02-28 15:52:13 ----D---- C:\WINDOWS\SYSTEM
2010-02-28 15:04:21 ----AD---- C:\Programme
2010-02-28 12:33:46 ----A---- C:\WINDOWS\system.ini
2010-02-28 12:33:43 ----RSD---- C:\WINDOWS\FONTS
2010-02-28 12:31:42 ----DC---- C:\WINDOWS\system32\DRVSTORE
2010-02-28 12:28:44 ----SD---- C:\WINDOWS\Offline Web Pages
2010-02-28 12:28:43 ----D---- C:\WINDOWS\system32\usmt
2010-02-28 12:28:43 ----D---- C:\WINDOWS\AppPatch
2010-02-28 12:28:40 ----D---- C:\WINDOWS\MEDIA
2010-02-28 12:28:39 ----SD---- C:\WINDOWS\Downloaded Program Files
2010-02-28 12:28:18 ----D---- C:\WINDOWS\system32\Setup
2010-02-28 12:28:01 ----D---- C:\WINDOWS\peernet
2010-02-28 12:28:01 ----D---- C:\WINDOWS\ime
2010-02-28 12:27:33 ----D---- C:\WINDOWS\system32\npp
2010-02-28 12:27:29 ----D---- C:\WINDOWS\mui
2010-02-28 12:27:25 ----D---- C:\WINDOWS\msagent
2010-02-28 12:26:53 ----D---- C:\WINDOWS\EHome
2010-02-28 12:26:09 ----D---- C:\WINDOWS\twain_32
2010-02-28 12:26:00 ----D---- C:\WINDOWS\system32\ras
2010-02-28 12:25:50 ----D---- C:\WINDOWS\system32\icsxml
2010-02-28 12:25:24 ----D---- C:\WINDOWS\system32\1033
2010-02-28 12:24:33 ----D---- C:\WINDOWS\system32\mui
2010-02-28 12:24:22 ----D---- C:\WINDOWS\system32\VITrans
2010-02-28 12:24:22 ----D---- C:\WINDOWS\system32\VIRepair
2010-02-28 12:24:22 ----D---- C:\WINDOWS\system32\URTTEMP
2010-02-28 12:24:14 ----D---- C:\WINDOWS\system32\NtmsData
2010-02-28 12:24:12 ----D---- C:\WINDOWS\system32\MAGIX
2010-02-28 12:24:01 ----D---- C:\WINDOWS\system32\custom matrices
2010-02-28 12:23:51 ----D---- C:\WINDOWS\system32\C2MP
2010-02-28 12:23:50 ----D---- C:\WINDOWS\system32\1031
2010-02-28 12:23:48 ----HD---- C:\WINDOWS\ShellNew
2010-02-28 12:23:37 ----D---- C:\WINDOWS\repair
2010-02-28 12:23:37 ----D---- C:\WINDOWS\pss
2010-02-28 12:23:33 ----D---- C:\WINDOWS\Minidump
2010-02-28 12:23:30 ----D---- C:\WINDOWS\Logs
2010-02-28 12:23:30 ----D---- C:\WINDOWS\licht am ende des sargs dir
2010-02-28 12:23:14 ----HDC---- C:\WINDOWS\$NtUninstallKB913446$
2010-02-28 12:23:14 ----HDC---- C:\WINDOWS\$NtUninstallKB912919$
2010-02-28 12:23:14 ----HDC---- C:\WINDOWS\$NtUninstallKB911927$
2010-02-28 12:23:14 ----HDC---- C:\WINDOWS\$NtUninstallKB911565$
2010-02-28 12:23:14 ----HDC---- C:\WINDOWS\$NtUninstallKB911564$
2010-02-28 12:23:14 ----HDC---- C:\WINDOWS\$NtUninstallKB910437$
2010-02-28 12:23:14 ----HDC---- C:\WINDOWS\$NtUninstallKB908519$
2010-02-28 12:23:14 ----HDC---- C:\WINDOWS\$NtUninstallKB905915-IE6SP1-20051122.175908$
2010-02-28 12:23:14 ----HDC---- C:\WINDOWS\$NtUninstallKB905915$
2010-02-28 12:23:13 ----HDC---- C:\WINDOWS\$NtUninstallKB905749$
2010-02-28 12:23:13 ----HDC---- C:\WINDOWS\$NtUninstallKB905495$
2010-02-28 12:23:13 ----HDC---- C:\WINDOWS\$NtUninstallKB905414$
2010-02-28 12:23:13 ----HDC---- C:\WINDOWS\$NtUninstallKB904706$
2010-02-28 12:23:13 ----HDC---- C:\WINDOWS\$NtUninstallKB902400$
2010-02-28 12:23:13 ----HDC---- C:\WINDOWS\$NtUninstallKB901214$
2010-02-28 12:23:13 ----HDC---- C:\WINDOWS\$NtUninstallKB901017$
2010-02-28 12:23:13 ----HDC---- C:\WINDOWS\$NtUninstallKB900725$
2010-02-28 12:23:13 ----HDC---- C:\WINDOWS\$NtUninstallKB899591$
2010-02-28 12:23:13 ----HDC---- C:\WINDOWS\$NtUninstallKB899587$
2010-02-28 12:23:13 ----HDC---- C:\WINDOWS\$NtUninstallKB896428$
2010-02-28 12:23:13 ----HDC---- C:\WINDOWS\$NtUninstallKB896424$
2010-02-28 12:23:13 ----HDC---- C:\WINDOWS\$NtUninstallKB896423$
2010-02-28 12:23:13 ----HDC---- C:\WINDOWS\$NtUninstallKB896422$
2010-02-28 12:23:13 ----HDC---- C:\WINDOWS\$NtUninstallKB896358$
2010-02-28 12:23:13 ----HDC---- C:\WINDOWS\$NtUninstallKB893756$
2010-02-28 12:23:13 ----HDC---- C:\WINDOWS\$NtUninstallKB891781$
2010-02-28 12:23:13 ----HDC---- C:\WINDOWS\$NtUninstallKB890859$
2010-02-28 12:23:13 ----HDC---- C:\WINDOWS\$NtUninstallKB890046$
2010-02-28 12:23:13 ----HDC---- C:\WINDOWS\$NtUninstallKB888302$
2010-02-28 12:23:13 ----HDC---- C:\WINDOWS\$NtUninstallKB888113$
2010-02-28 12:23:13 ----HDC---- C:\WINDOWS\$NtUninstallKB887742$
2010-02-28 12:23:13 ----HDC---- C:\WINDOWS\$NtUninstallKB887472$
2010-02-28 12:23:13 ----HDC---- C:\WINDOWS\$NtUninstallKB886185$
2010-02-28 12:23:13 ----HDC---- C:\WINDOWS\$NtUninstallKB885836$
2010-02-28 12:23:13 ----HDC---- C:\WINDOWS\$NtUninstallKB885835$
2010-02-28 12:23:12 ----HDC---- C:\WINDOWS\$NtUninstallKB885250$
2010-02-28 12:23:12 ----HDC---- C:\WINDOWS\$NtUninstallKB873339$
2010-02-28 12:23:12 ----HDC---- C:\WINDOWS\$NtUninstallKB842773$
2010-02-28 12:23:12 ----HDC---- C:\WINDOWS\$NtUninstallKB835732$
2010-02-28 12:23:12 ----HDC---- C:\WINDOWS\$NtUninstallKB835409$
2010-02-28 12:22:59 ----HDC---- C:\WINDOWS\$MSI31Uninstall_KB893803v2$
2010-02-28 12:14:26 ----SHD---- C:\RECYCLER
2010-02-28 12:04:51 ----D---- C:\WINDOWS\SoftwareDistribution
2010-02-28 12:04:00 ----SHD---- C:\System Volume Information
2010-02-28 12:04:00 ----D---- C:\WINDOWS\system32\Restore
2010-02-28 12:03:46 ----SD---- C:\WINDOWS\TASKS
2010-02-28 12:03:13 ----D---- C:\WINDOWS\system32\config
2010-02-28 12:01:38 ----D---- C:\WINDOWS\security
2010-02-28 12:00:43 ----A---- C:\WINDOWS\win.ini
2010-02-28 12:00:05 ----D---- C:\WINDOWS\Registration
2010-02-28 11:59:47 ----D---- C:\WINDOWS\system32\ias
2010-02-28 11:58:33 ----RD---- C:\WINDOWS\WEB
2010-02-28 11:57:26 ----D---- C:\WINDOWS\srchasst
2010-02-28 11:56:48 ----D---- C:\WINDOWS\system32\bits
2010-02-28 11:55:16 ----D---- C:\WINDOWS\system32\Com
2010-02-28 11:54:47 ----D---- C:\WINDOWS\system32\MsDtc
2010-02-28 11:53:20 ----RSD---- C:\WINDOWS\assembly
2010-02-28 11:51:54 ----D---- C:\WINDOWS\WinSxS
2010-02-28 11:49:53 ----D---- C:\WINDOWS\CURSORS
2010-02-28 11:49:36 ----D---- C:\WINDOWS\system32\wbem
2010-02-28 11:48:56 ----D---- C:\WINDOWS\system32\spool
2010-02-28 11:46:31 ----SH---- C:\boot.ini
2010-02-28 07:56:32 ----D---- C:\WINDOWS\system32\ReinstallBackups

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 avgio;avgio; \??\C:\Program Files\Avira\AntiVir Desktop\avgio.sys []
R1 avipbb;avipbb; C:\WINDOWS\system32\DRIVERS\avipbb.sys [2009-03-30 96104]
R1 intelppm;Intel Processor Driver; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-14 36352]
R1 ssmdrv;ssmdrv; C:\WINDOWS\system32\DRIVERS\ssmdrv.sys [2009-05-11 28520]
R2 avgntflt;avgntflt; C:\WINDOWS\system32\DRIVERS\avgntflt.sys [2010-03-01 56816]
R2 rspndr;Link-Layer Topology Discovery Responder; C:\WINDOWS\system32\DRIVERS\rspndr.sys [2009-12-12 62848]
R3 ALCXWDM;Service for Realtek AC97 Audio (WDM); C:\WINDOWS\system32\drivers\ALCXWDM.SYS [2003-01-28 697084]
R3 Arp1394;1394 ARP Client Protocol; C:\WINDOWS\system32\DRIVERS\arp1394.sys [2009-12-12 60800]
R3 Cap7134;MEDION (7134) WDM Video Capture; C:\WINDOWS\system32\DRIVERS\Cap7134.sys [2002-11-04 422976]
R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys [2009-05-18 26600]
R3 hidusb;Microsoft HID Class Driver; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-14 10368]
R3 mouhid;Mouse HID Driver; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2009-12-12 12160]
R3 ms_mpu401;Microsoft MPU-401 MIDI UART Driver; C:\WINDOWS\system32\drivers\msmpu401.sys [2001-08-17 2944]
R3 NIC1394;1394 Net Driver; C:\WINDOWS\system32\DRIVERS\nic1394.sys [2009-12-12 61824]
R3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2003-07-28 1341339]
R3 pfc;Padus ASPI Shell; C:\WINDOWS\system32\drivers\pfc.sys [2002-04-19 13780]
R3 PhTVTune;MEDION TV-TUNER 7134 MK2/3; C:\WINDOWS\system32\DRIVERS\PhTVTune.sys [2002-11-04 27520]
R3 RTL8023xp;Realtek 10/100/1000 PCI NIC Family NDIS XP Driver; C:\WINDOWS\system32\DRIVERS\Rtnicxp.sys [2009-03-25 130432]
R3 SISNICXP;SiS PCI Fast Ethernet Adapter Driver for NDIS51; C:\WINDOWS\system32\DRIVERS\sisnicxp.sys [2006-02-14 32768]
R3 usbaudio;USB Audio Driver (WDM); C:\WINDOWS\system32\drivers\usbaudio.sys [2008-04-13 60032]
R3 usbccgp;Microsoft USB Generic Parent Driver; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-22 32384]
R3 usbehci;Microsoft USB 2.0 Enhanced Host Controller Miniport Driver; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2009-12-12 30464]
R3 usbhub;USB2 Enabled Hub; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2008-04-14 59520]
R3 usbohci;Microsoft USB Open Host Controller Miniport Driver; C:\WINDOWS\system32\DRIVERS\usbohci.sys [2009-12-12 17152]
S1 DumpDrv;Crash Dump Driver; C:\WINDOWS\system32\drivers\DumpDrv.sys [2009-12-12 9472]
S3 CCDECODE;Closed Caption Decoder; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-13 17024]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-13 5504]
S3 NABTSFEC;NABTS/FEC VBI Codec; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-13 85248]
S3 NdisIP;Microsoft TV/Video Connection; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-13 10880]
S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-13 11136]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-13 15232]
S3 USBAAPL;Apple Mobile USB Driver; C:\WINDOWS\System32\Drivers\usbaapl.sys [2009-08-28 40448]
S3 USBSTOR;USB Mass Storage Driver; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
S3 WSTCODEC;World Standard Teletext Codec; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-13 19200]
S3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2009-12-12 77568]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2009-12-12 82944]
S4 exFat;exFat; C:\WINDOWS\system32\drivers\exFat.sys [2009-12-12 133632]
S4 IntelIde;IntelIde; C:\WINDOWS\system32\drivers\IntelIde.sys []

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AntiVirSchedulerService;Avira AntiVir Planer; C:\Program Files\Avira\AntiVir Desktop\sched.exe [2009-05-13 108289]
R2 AntiVirService;Avira AntiVir Guard; C:\Program Files\Avira\AntiVir Desktop\avguard.exe [2009-07-21 185089]
R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe [2009-08-28 144672]
R2 Bonjour Service;Bonjour-Dienst; C:\Program Files\Bonjour\mDNSResponder.exe [2008-12-12 238888]
R2 NVSvc;NVIDIA Driver Helper Service; C:\WINDOWS\system32\nvsvc32.exe [2003-07-28 77824]
R3 iPod Service;iPod-Dienst; C:\Program Files\iPod\bin\iPodService.exe [2010-02-15 545576]
R3 x10nets;X10 Device Network Service; C:\PROGRA~2\COMMON~1\X10\Common\x10nets.exe [2001-11-12 20480]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\aspnet_state.exe [2007-02-17 32768]
S3 getPlusHelper;getPlus(R) Helper; C:\WINDOWS\System32\svchost.exe [2009-12-12 14848]
S3 WMPNetworkSvc;Windows Media Player Network Sharing Service; C:\Program Files\Windows Media Player\WMPNetwk.exe [2009-12-12 913408]
S3 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2009-12-12 14848]

-----------------EOF-----------------


info.txt:

info.txt logfile of random's system information tool 1.06 2010-03-08 00:03:28

======Uninstall list======

-->RunDll32 C:\PROGRA~2\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{82F248C6-D392-11D5-9EA2-0050BAE317E1}\setup.exe" -uninst
-->rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WINDOWS\INF\PCHealth.inf
µTorrent-->"C:\Program Files\uTorrent\uTorrent.exe" /UNINSTALL
Adobe Download Manager-->"C:\WINDOWS\system32\rundll32.exe" "C:\Program Files\NOS\bin\getPlus_Helper.dll",Uninstall /IE2883E8F-472F-4fb0-9522-AC9BF37916A7 /Get1
Adobe Flash Player 10 Plugin-->C:\WINDOWS\system32\Macromed\Flash\uninstall_plugin.exe
Adobe Reader 9.3 - Deutsch-->MsiExec.exe /I{AC76BA86-7AD7-1031-7B44-A93000000001}
Apple Application Support-->MsiExec.exe /I{3FA365DF-2D68-45ED-8F83-8C8A33E65143}
Apple Mobile Device Support-->MsiExec.exe /I{AADEA55D-C834-4BCB-98A3-4B8D1C18F4EE}
Apple Software Update-->MsiExec.exe /I{6956856F-B6B3-4BE0-BA0B-8F495BE32033}
Avira AntiVir Personal - Free Antivirus-->C:\Program Files\Avira\AntiVir Desktop\setup.exe /REMOVE
Bonjour-->MsiExec.exe /I{07287123-B8AC-41CE-8346-3D777245C35B}
CCleaner-->"C:\Program Files\CCleaner\uninst.exe"
eMule-->"C:\Program Files\eMule\Uninstall.exe"
HijackThis 2.0.2-->"C:\Program Files\trend micro\HijackThis.exe" /uninstall
iTunes-->MsiExec.exe /I{81063354-9060-42B2-A000-1EBE96778AA9}
Malwarebytes' Anti-Malware-->"C:\Program Files\Malwarebytes' Anti-Malware\unins000.exe"
Medi@Show-->C:\WINDOWS\IsUn0407.exe -f"C:\Program Files\Medion Home CinemaXL\MediaShow\Uninst.isu"
Microsoft Silverlight-->rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\MSSlight.inf,DefaultUninstall
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17-->MsiExec.exe /X{9A25302D-30C0-39D9-BD6F-21E6EC160475}
Mozilla Firefox (3.6)-->C:\Program Files\Mozilla Firefox\uninstall\helper.exe
MSXML 4.0 SP3 Parser (KB973685)-->MsiExec.exe /I{859DFA95-E4A6-48CD-B88E-A3E483E89B44}
NVIDIA Windows 2000/XP Display Drivers-->rundll32.exe C:\WINDOWS\system32\nvinstnt.dll,NvUninstallNT4 nv4_disp.inf
Opera 10.10-->MsiExec.exe /X{FB8148DD-C575-4B0A-9F6C-0CFC46937930}
PCLinq2 High-Speed USB Bridge Cable-->RunDll32 C:\PROGRA~2\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{95381165-5D16-4CD4-9162-57799A3F3AB5}\Setup.exe" -l0x7
PowerCinema 2.0-->RunDll32 C:\PROGRA~2\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{2637C347-9DAD-11D6-9EA2-00055D0CA761}\setup.exe" -uninstall
PowerCinema-->RunDll32 C:\PROGRA~2\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{6B103F43-069C-11D6-9EA2-0050BAE317E1}\Setup.exe" -uninst
PowerDirector Pro-->RunDll32 C:\PROGRA~2\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{CB099890-1D5F-11D5-9EA9-0050BAE317E1}\setup.exe" -uninstall
PowerDVD-->RunDll32 C:\PROGRA~2\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{6811CAA0-BF12-11D4-9EA1-0050BAE317E1}\setup.exe" -uninstall
QuickTime-->MsiExec.exe /I{1451DE6B-ABE1-4F62-BE9A-B363A17588A2}
Security Update for CAPICOM (KB931906)-->MsiExec.exe /I{0EFDF2F9-836D-4EB7-A32D-038BD3F1FB2A}
Security Update for CAPICOM (KB931906)-->MsiExec.exe /X{0EFDF2F9-836D-4EB7-A32D-038BD3F1FB2A}
SiS 900 PCI Fast Ethernet Adapter Driver-->C:\WINDOWS\SiS\900\Uninst.exe
Skype Toolbars-->MsiExec.exe /I{981029E0-7FC9-4CF3-AB39-6F133621921A}
Skype™ 4.2-->MsiExec.exe /X{D103C4BA-F905-437A-8049-DB24763BBE36}
VideoLive Mail 4.0-->C:\WINDOWS\IsUn0407.exe -f"C:\Program Files\Medion Home CinemaXL\VideoLiveMail\Uninst.isu"
VLC media player 1.0.5-->C:\Program Files\VideoLAN\VLC\uninstall.exe
Winamp (nur entfernen)-->"C:\Program Files\Winamp\deinstwa.exe"
Windows Rights Management Client Backwards Compatibility SP2-->MsiExec.exe /X{EC905264-BCFE-423B-9C42-C3A106266790}
Windows Rights Management Client with Service Pack 2-->MsiExec.exe /X{BDCF27CA-BFC4-4F49-8D24-A925C9505AB8}
WinRAR Archivierer-->C:\Program Files\WinRAR\uninstall.exe
X10 Hardware(TM)-->C:\WINDOWS\UNWISE.EXE C:\PROGRA~2\X10HAR~1\Install.log

Securitycenter WMI appears to be broken

======System event log======

Computer Name: SCHNATZ-A1AC99B
Event Code: 1002
Message: The IP address lease 84.114.20.239 for the Network Card with network address 0008541AA728 has been
denied by the DHCP server 195.34.134.99 (The DHCP Server sent a DHCPNACK message).

Record Number: 94
Source Name: Dhcp
Time Written: 20100228182202.000000+060
Event Type: error
User:

Computer Name: SCHNATZ-A1AC99B
Event Code: 1003
Message: Your computer was not able to renew its address from the network (from the
DHCP Server) for the Network Card with network address 0008541AA728. The following
error occurred:
The operation was canceled by the user.
.
Your computer will continue to try and obtain an address on its own from
the network address (DHCP) server.

Record Number: 93
Source Name: Dhcp
Time Written: 20100228182202.000000+060
Event Type: warning
User:

Computer Name: SCHNATZ-A1AC99B
Event Code: 1002
Message: The IP address lease 84.114.20.239 for the Network Card with network address 0008541AA728 has been
denied by the DHCP server 195.34.134.211 (The DHCP Server sent a DHCPNACK message).

Record Number: 14
Source Name: Dhcp
Time Written: 20100228120344.000000+060
Event Type: error
User:

Computer Name: SCHNATZ-A1AC99B
Event Code: 1003
Message: Your computer was not able to renew its address from the network (from the
DHCP Server) for the Network Card with network address 0008541AA728. The following
error occurred:
The operation was canceled by the user.
.
Your computer will continue to try and obtain an address on its own from
the network address (DHCP) server.

Record Number: 13
Source Name: Dhcp
Time Written: 20100228120339.000000+060
Event Type: warning
User:

Computer Name: SCHNATZ-A1AC99B
Event Code: 20
Message: Printer Driver Microsoft XPS Document Writer for Windows NT x86 Version-3 was added or updated. Files:- mxdwdrv.dll, unidrvui.dll, mxdwdui.gpd, unidrv.hlp, mxdwdui.dll, mxdwdui.ini, stddtype.gdl, stdnames.gpd, stdschem.gdl, stdschmx.gdl, unidrv.dll, unires.dll, XpsSvcs.dll.

Record Number: 6
Source Name: Print
Time Written: 20100228115533.000000+060
Event Type: warning
User: NT AUTHORITY\SYSTEM

=====Application event log=====

Computer Name: SCHNATZ-A1AC99B
Event Code: 5603
Message: A provider, Rsop Planning Mode Provider, has been registered in the WMI namespace, root\RSOP, but did not specify the HostingModel property. This provider will be run using the LocalSystem account. This account is privileged and the provider may cause a security violation if it does not correctly impersonate user requests. Ensure that provider has been reviewed for security behavior and update the HostingModel property of the provider registration to an account with the least privileges possible for the required functionality.

Record Number: 15
Source Name: WinMgmt
Time Written: 20100228115427.000000+060
Event Type: warning
User: NT AUTHORITY\SYSTEM

Computer Name: SCHNATZ-A1AC99B
Event Code: 5603
Message: A provider, Rsop Planning Mode Provider, has been registered in the WMI namespace, root\RSOP, but did not specify the HostingModel property. This provider will be run using the LocalSystem account. This account is privileged and the provider may cause a security violation if it does not correctly impersonate user requests. Ensure that provider has been reviewed for security behavior and update the HostingModel property of the provider registration to an account with the least privileges possible for the required functionality.

Record Number: 14
Source Name: WinMgmt
Time Written: 20100228115427.000000+060
Event Type: warning
User: NT AUTHORITY\SYSTEM

Computer Name: SCHNATZ-A1AC99B
Event Code: 63
Message: A provider, CmdTriggerConsumer, has been registered in the WMI namespace, Root\cimv2, to use the LocalSystem account. This account is privileged and the provider may cause a security violation if it does not correctly impersonate user requests.

Record Number: 13
Source Name: WinMgmt
Time Written: 20100228115426.000000+060
Event Type: warning
User: NT AUTHORITY\SYSTEM

Computer Name: SCHNATZ-A1AC99B
Event Code: 63
Message: A provider, CmdTriggerConsumer, has been registered in the WMI namespace, Root\cimv2, to use the LocalSystem account. This account is privileged and the provider may cause a security violation if it does not correctly impersonate user requests.

Record Number: 12
Source Name: WinMgmt
Time Written: 20100228115426.000000+060
Event Type: warning
User: NT AUTHORITY\SYSTEM

Computer Name: SCHNATZ-A1AC99B
Event Code: 63
Message: A provider, HiPerfCooker_v1, has been registered in the WMI namespace, Root\WMI, to use the LocalSystem account. This account is privileged and the provider may cause a security violation if it does not correctly impersonate user requests.

Record Number: 11
Source Name: WinMgmt
Time Written: 20100228115422.000000+060
Event Type: warning
User: NT AUTHORITY\SYSTEM

======Environment variables======

"ComSpec"=%SystemRoot%\system32\cmd.exe
"Path"=%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;C:\Program Files\QuickTime\QTSystem\
"windir"=%SystemRoot%
"FP_NO_HOST_CHECK"=NO
"OS"=Windows_NT
"PROCESSOR_ARCHITECTURE"=x86
"PROCESSOR_LEVEL"=15
"PROCESSOR_IDENTIFIER"=x86 Family 15 Model 2 Stepping 7, GenuineIntel
"PROCESSOR_REVISION"=0207
"NUMBER_OF_PROCESSORS"=1
"PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH
"TEMP"=%SystemRoot%\TEMP
"TMP"=%SystemRoot%\TEMP
"CLASSPATH"=.;C:\Program Files\QuickTime\QTSystem\QTJava.zip
"QTJAVA"=C:\Program Files\QuickTime\QTSystem\QTJava.zip

-----------------EOF-----------------



lg
Gerald

Alt 09.03.2010, 08:50   #2
Gerald77
 
mit Trojaner TR/Dropper.Gen infiziert - Standard

mit Trojaner TR/Dropper.Gen infiziert



hab ich irgendwas falsch gemacht oder warum werde ich ignoriert?

mittlerweile meldet antivir:

In der Datei 'C:\System Volume Information\_restore{31A75684-23E8-41FF-9544-A231DFF25460}\RP13\A0001896.exe'
wurde ein Virus oder unerwünschtes Programm 'TR/Trash.Gen' [trojan] gefunden.
Ausgeführte Aktion: Zugriff verweigern

Es gibt ja nicht mal einen Ordner System Volume Information auf C.
__________________


Antwort

Themen zu mit Trojaner TR/Dropper.Gen infiziert
antivir, antivir guard, application.findkey, avgntflt.sys, avira, bho, bonjour, browser, continue, converter, desktop, entfernen, flash player, hijack, hijackthis, hkus\s-1-5-18, home, install.exe, installation, internet browser, logfile, malwarebytes' anti-malware, mozilla, msiexec.exe, opera.exe, programm, realtek, registry, required, server, skype.exe, system, trojaner, usb, usb 2.0, virus, windows xp, wuauclt



Ähnliche Themen: mit Trojaner TR/Dropper.Gen infiziert


  1. (mehrere) Trojanermeldung(en) AVG (Win8.1) : "Trojaner: Dropper.Generic2.ANGG.dropper"
    Log-Analyse und Auswertung - 11.07.2014 (3)
  2. BKA Trojaner und GEMA Trojaner haben mein System infiziert!
    Log-Analyse und Auswertung - 23.03.2012 (4)
  3. Infiziert mit TR/Dropper.Gen - Hilfe!
    Log-Analyse und Auswertung - 09.12.2011 (34)
  4. Trojaner: 'TR/Dropper.Gen'
    Plagegeister aller Art und deren Bekämpfung - 07.12.2011 (5)
  5. System infiziert. USB-Stick und Datensicherung auch infiziert?
    Plagegeister aller Art und deren Bekämpfung - 05.07.2011 (2)
  6. Trojaner auf dem PC. tr.dropper.gen?
    Log-Analyse und Auswertung - 18.05.2011 (4)
  7. Antivir findet mehrfach Trojan.Dropper.Gen, Rechner infiziert?
    Plagegeister aller Art und deren Bekämpfung - 21.03.2011 (3)
  8. TR/Dropper.Gen - bin ich infiziert?
    Plagegeister aller Art und deren Bekämpfung - 08.03.2011 (5)
  9. mit den Trojanischen Pferd TR/Dropper. Gen infiziert! Wie kann ich es löschen?
    Plagegeister aller Art und deren Bekämpfung - 17.08.2010 (28)
  10. Trojaner: Generic18.VII,Trojaner: Dropper.Generic2.XRU... k. Windows Update m. ,OTL & Malw Log anbei
    Plagegeister aller Art und deren Bekämpfung - 10.07.2010 (31)
  11. Trojaner TR/ Dropper.Gen u. Trojaner TR/ Dropper.Gen2 entfernt, dennoch überlastung
    Plagegeister aller Art und deren Bekämpfung - 14.05.2010 (9)
  12. Mit Trojaner (Worm.KoobFace) über Facebook infiziert/Trojaner verschwunden?
    Plagegeister aller Art und deren Bekämpfung - 14.11.2009 (1)
  13. TR/Dropper.Gen? Infiziert?
    Log-Analyse und Auswertung - 10.04.2009 (1)
  14. Laptop wahrscheinlich mit TR/Dropper infiziert
    Log-Analyse und Auswertung - 02.02.2009 (21)
  15. Bin infiziert mit Dropper.Gen
    Log-Analyse und Auswertung - 25.01.2009 (21)
  16. Trojaner Dropper GEN
    Plagegeister aller Art und deren Bekämpfung - 31.03.2008 (1)
  17. ntkrnlpa.exe infiziert von "Trojan-Dropper.Win32.Agent.bwf"
    Plagegeister aller Art und deren Bekämpfung - 17.09.2007 (6)

Zum Thema mit Trojaner TR/Dropper.Gen infiziert - Hallo, seit mehreren Tagen meldet mir Antivir immer wieder: In der Datei 'C:\System Volume Information\_restore{31A75684-23E8-41FF-9544-A231DFF25460}\RP6\A0001574.exe' wurde ein Virus oder unerwünschtes Programm 'TR/Dropper.Gen' [trojan] gefunden. Was vielleicht noch erwähnenswert ist: Ich - mit Trojaner TR/Dropper.Gen infiziert...
Archiv
Du betrachtest: mit Trojaner TR/Dropper.Gen infiziert auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.