| |
| |||||||
Plagegeister aller Art und deren Bekämpfung: Internet Explorer öffnet ständig werbung ohne zutuhnWindows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen. |
 |
04.07.2010, 17:10
| #1 |
 |  Internet Explorer öffnet ständig werbung ohne zutuhn Hab mich schon ein wenig belesen und mit HijackThis gescannt. Bis jetzt ist das hier rausgekommen. Hoffe ihr könnt mir helfen. Benutze Avira und das konnte nichts feststellen. Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 17:59:03, on 04.07.2010 Platform: Windows XP SP3 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP3 (6.00.2900.5512) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\Programme\Avira\AntiVir Desktop\sched.exe C:\WINDOWS\Explorer.EXE C:\Programme\Avira\AntiVir Desktop\avgnt.exe C:\Programme\Gemeinsame Dateien\Java\Java Update\jusched.exe C:\WINDOWS\RTHDCPL.EXE C:\WINDOWS\system32\RUNDLL32.EXE C:\WINDOWS\system32\ctfmon.exe C:\WINDOWS\Tgifid.exe C:\Programme\Avira\AntiVir Desktop\avguard.exe C:\Programme\ICQ6Toolbar\ICQ Service.exe C:\Programme\Java\jre6\bin\jqs.exe C:\WINDOWS\system32\nvsvc32.exe C:\Programme\Avira\AntiVir Desktop\avshadow.exe C:\WINDOWS\system32\wscntfy.exe C:\Programme\Mozilla Firefox\firefox.exe C:\Dokumente und Einstellungen\Robert\Eigene Dateien\Downloads\HiJackThis204.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://start.icq.com/ R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = hxxp://www.dvdvideosoft.com/r/de_AfterInstallA.htm R3 - URLSearchHook: ICQToolBar - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Programme\ICQ6Toolbar\ICQToolBar.dll R3 - URLSearchHook: (no name) - - (no file) O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Programme\Gemeinsame Dateien\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Programme\Java\jre6\bin\jp2ssv.dll O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Programme\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll O3 - Toolbar: ICQToolBar - {855F3B16-6D32-4FE6-8A56-BBB695989046} - C:\Programme\ICQ6Toolbar\ICQToolBar.dll O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup O4 - HKLM\..\Run: [nwiz] nwiz.exe /install O4 - HKLM\..\Run: [avgnt] "C:\Programme\Avira\AntiVir Desktop\avgnt.exe" /min O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Programme\Gemeinsame Dateien\Java\Java Update\jusched.exe" O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Programme\Adobe\Reader 9.0\Reader\Reader_sl.exe" O4 - HKLM\..\Run: [Adobe ARM] "C:\Programme\Gemeinsame Dateien\Adobe\ARM\1.0\AdobeARM.exe" O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [MSMSGS] "C:\Programme\Messenger\msmsgs.exe" /background O4 - HKCU\..\Run: [VO3N0SLJ2I] C:\WINDOWS\Tgifid.exe O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOKALER DIENST') O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETZWERKDIENST') O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user') O9 - Extra button: ICQ7.2 - {72EFBFE4-C74F-4187-AEFD-73EA3BE968D6} - C:\Programme\ICQ7.2\ICQ.exe O9 - Extra 'Tools' menuitem: ICQ7.2 - {72EFBFE4-C74F-4187-AEFD-73EA3BE968D6} - C:\Programme\ICQ7.2\ICQ.exe O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programme\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programme\Messenger\msmsgs.exe O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll O23 - Service: Avira AntiVir Planer (AntiVirSchedulerService) - Avira GmbH - C:\Programme\Avira\AntiVir Desktop\sched.exe O23 - Service: Avira AntiVir Guard (AntiVirService) - Avira GmbH - C:\Programme\Avira\AntiVir Desktop\avguard.exe O23 - Service: ICQ Service - Unknown owner - C:\Programme\ICQ6Toolbar\ICQ Service.exe O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Programme\Java\jre6\bin\jqs.exe O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe -- End of file - 4847 bytes |
|
04.07.2010, 17:33
| #2 |
| /// Malware-holic   | Internet Explorer öffnet ständig werbung ohne zutuhn ootl:
__________________Systemscan mit OTL download otl: http://filepony.de/download-otl/ Doppelklick auf die OTL.exe (user von Windows 7 und Vista: Rechtsklick als Administrator ausführen) 1. Oben findest Du ein Kästchen mit Output. Wähle bitte Minimal Output 2. Hake an "scan all users" 3. Unter "Extra Registry wähle: "Use Safelist" "LOP Check" "Purity Check" 4. Kopiere in die Textbox: netsvcs msconfig safebootminimal safebootnetwork activex drivers32 %ALLUSERSPROFILE%\Application Data\*. %ALLUSERSPROFILE%\Application Data\*.exe /s %APPDATA%\*. %APPDATA%\*.exe /s %SYSTEMDRIVE%\*.exe /md5start userinit.exe eventlog.dll scecli.dll netlogon.dll cngaudit.dll ws2ifsl.sys sceclt.dll ntelogon.dll logevent.dll iaStor.sys nvstor.sys atapi.sys IdeChnDr.sys viasraid.sys AGP440.sys vaxscsi.sys nvatabus.sys viamraid.sys nvata.sys nvgts.sys iastorv.sys ViPrt.sys eNetHook.dll ahcix86.sys KR10N.sys nvstor32.sys ahcix86s.sys /md5stop %systemroot%\system32\drivers\*.sys /lockedfiles %systemroot%\System32\config\*.sav %systemroot%\*. /mp /s %systemroot%\system32\*.dll /lockedfiles CREATERESTOREPOINT 5. Klicke "Scan" 6. 2 reporte werden erstellt: OTL.Txt Extras.Txt falls sie zu groß sind, aufteilen |
|
04.07.2010, 18:19
| #3 |
| | Internet Explorer öffnet ständig werbung ohne zutuhn Extras:
__________________{\rtf1\ansi\ansicpg1252\deff0\deflang1031{\fonttbl{\f0\fswiss\fcharset0 Arial;}} {\*\generator Msftedit 5.41.15.1515;}\viewkind4\uc1\pard\f0\fs20OTL EXTRAS Logfile: Code:
ATTFilter OTL Extras logfile created on: 04.07.2010 19:23:37 - Run 1\par
OTL by OldTimer - Version 3.2.7.0 Folder = C:\\Dokumente und Einstellungen\\Robert\\Eigene Dateien\\Downloads\par
Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation\par
Internet Explorer (Version = 6.0.2900.5512)\par
Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy\par
\par
1,00 Gb Total Physical Memory | 1,00 Gb Available Physical Memory | 49,00% Memory free\par
3,00 Gb Paging File | 3,00 Gb Available in Paging File | 80,00% Paging File free\par
Paging file location(s): c:\\pagefile.sys 2046 8000 [binary data]\par
\par
%SystemDrive% = C: | %SystemRoot% = C:\\WINDOWS | %ProgramFiles% = C:\\Programme\par
Drive C: | 465,75 Gb Total Space | 454,93 Gb Free Space | 97,68% Space Free | Partition Type: NTFS\par
D: Drive not present or media not loaded\par
E: Drive not present or media not loaded\par
F: Drive not present or media not loaded\par
G: Drive not present or media not loaded\par
H: Drive not present or media not loaded\par
I: Drive not present or media not loaded\par
\par
Computer Name: SCHORSCH\par
Current User Name: Robert\par
Logged in as Administrator.\par
\par
Current Boot Mode: Normal\par
Scan Mode: All users\par
Company Name Whitelist: Off\par
Skip Microsoft Files: Off\par
File Age = 30 Days\par
Output = Minimal\par
\par
========== Extra Registry (SafeList) ==========\par
\par
\par
========== File Associations ==========\par
\par
[HKEY_LOCAL_MACHINE\\SOFTWARE\\Classes\\<extension>]\par
\par
[HKEY_USERS\\S-1-5-21-1123561945-884357618-725345543-1003\\SOFTWARE\\Classes\\<extension>]\par
.html [@ = FirefoxHTML] -- C:\\Programme\\Mozilla Firefox\\firefox.exe (Mozilla Corporation)\par
\par
========== Shell Spawning ==========\par
\par
[HKEY_LOCAL_MACHINE\\SOFTWARE\\Classes\\<key>\\shell\\[command]\\command]\par
batfile [open] -- "%1" %*\par
cmdfile [open] -- "%1" %*\par
comfile [open] -- "%1" %*\par
exefile [open] -- "%1" %*\par
htmlfile [edit] -- Reg Error: Key error.\par
piffile [open] -- "%1" %*\par
regfile [merge] -- Reg Error: Key error.\par
scrfile [config] -- "%1"\par
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation)\par
scrfile [open] -- "%1" /S\par
txtfile [edit] -- Reg Error: Key error.\par
Unknown [openas] -- %SystemRoot%\\system32\\rundll32.exe %SystemRoot%\\system32\\shell32.dll,OpenAs_RunDLL %1\par
Directory [find] -- %SystemRoot%\\Explorer.exe (Microsoft Corporation)\par
Folder [open] -- %SystemRoot%\\Explorer.exe /idlist,%I,%L (Microsoft Corporation)\par
Folder [explore] -- %SystemRoot%\\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)\par
Drive [find] -- %SystemRoot%\\Explorer.exe (Microsoft Corporation)\par
\par
========== Security Center Settings ==========\par
\par
[HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Security Center]\par
"FirstRunDisabled" = 1\par
"AntiVirusDisableNotify" = 0\par
"FirewallDisableNotify" = 0\par
"UpdatesDisableNotify" = 0\par
"AntiVirusOverride" = 0\par
"FirewallOverride" = 0\par
\par
[HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Security Center\\Monitoring]\par
\par
[HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Security Center\\Monitoring\\AhnlabAntiVirus]\par
\par
[HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Security Center\\Monitoring\\ComputerAssociatesAntiVirus]\par
\par
[HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Security Center\\Monitoring\\KasperskyAntiVirus]\par
\par
[HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Security Center\\Monitoring\\McAfeeAntiVirus]\par
\par
[HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Security Center\\Monitoring\\McAfeeFirewall]\par
\par
[HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Security Center\\Monitoring\\PandaAntiVirus]\par
\par
[HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Security Center\\Monitoring\\PandaFirewall]\par
\par
[HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Security Center\\Monitoring\\SophosAntiVirus]\par
\par
[HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Security Center\\Monitoring\\SymantecAntiVirus]\par
\par
[HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Security Center\\Monitoring\\SymantecFirewall]\par
\par
[HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Security Center\\Monitoring\\TinyFirewall]\par
\par
[HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Security Center\\Monitoring\\TrendAntiVirus]\par
\par
[HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Security Center\\Monitoring\\TrendFirewall]\par
\par
[HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Security Center\\Monitoring\\ZoneLabsFirewall]\par
\par
[HKEY_LOCAL_MACHINE\\SYSTEM\\CurrentControlSet\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\DomainProfile]\par
\par
[HKEY_LOCAL_MACHINE\\SYSTEM\\CurrentControlSet\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\StandardProfile]\par
"EnableFirewall" = 1\par
"DoNotAllowExceptions" = 0\par
"DisableNotifications" = 0\par
\par
========== Authorized Applications List ==========\par
\par
[HKEY_LOCAL_MACHINE\\SYSTEM\\CurrentControlSet\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\DomainProfile\\AuthorizedApplications\\List]\par
"C:\\Programme\\ICQ7.2\\ICQ.exe" = C:\\Programme\\ICQ7.2\\ICQ.exe:*:Enabled:ICQ7.2 -- (ICQ, LLC.)\par
"C:\\Programme\\ICQ7.2\\aolload.exe" = C:\\Programme\\ICQ7.2\\aolload.exe:*:Enabled:aolload.exe -- (AOL LLC)\par
\par
[HKEY_LOCAL_MACHINE\\SYSTEM\\CurrentControlSet\\Services\\SharedAccess\\Parameters\\FirewallPolicy\\StandardProfile\\AuthorizedApplications\\List]\par
"C:\\Programme\\Infogrames\\Tactical Ops\\System\\TacticalOps.exe" = C:\\Programme\\Infogrames\\Tactical Ops\\System\\TacticalOps.exe:*:Disabled:TacticalOps -- ()\par
"C:\\Programme\\ICQ7.2\\ICQ.exe" = C:\\Programme\\ICQ7.2\\ICQ.exe:*:Enabled:ICQ7.2 -- (ICQ, LLC.)\par
"C:\\Programme\\ICQ7.2\\aolload.exe" = C:\\Programme\\ICQ7.2\\aolload.exe:*:Enabled:aolload.exe -- (AOL LLC)\par
\par
\par
========== HKEY_LOCAL_MACHINE Uninstall List ==========\par
\par
[HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Uninstall]\par
"\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989\}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148\par
"\{26A24AE4-039D-4CA4-87B4-2F83216020FF\}" = Java(TM) 6 Update 20\par
"\{350C97B3-3D7C-4EE8-BAA9-00BCB3D54227\}" = WebFldrs XP\par
"\{4A03706F-666A-4037-7777-5F2748764D10\}" = Java Auto Updater\par
"\{72EFBFE4-C74F-4187-AEFD-73EA3BE968D6\}" = ICQ7.2\par
"\{9A25302D-30C0-39D9-BD6F-21E6EC160475\}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17\par
"\{AC76BA86-7AD7-1031-7B44-A93000000001\}" = Adobe Reader 9.3.3 - Deutsch\par
"\{C9BED750-1211-4480-B1A5-718A3BE15525\}" = REALTEK GbE & FE Ethernet PCI-E NIC Driver\par
"\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC\}" = Realtek High Definition Audio Driver\par
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX\par
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin\par
"Avira AntiVir Desktop" = Avira AntiVir Personal - Free Antivirus\par
"Free Audio CD Burner_is1" = Free Audio CD Burner version 1.2\par
"Free YouTube to MP3 Converter_is1" = Free YouTube to MP3 Converter version 3.2\par
"ICQToolbar" = ICQ Toolbar\par
"Mozilla Firefox (3.5.10)" = Mozilla Firefox (3.5.10)\par
"NVIDIA Drivers" = NVIDIA Drivers\par
"Tactical Ops" = Tactical Ops\par
"Uninstall_is1" = Uninstall 1.0.0.1\par
"WinGimp-2.0_is1" = GIMP 2.6.7\par
\par
========== Last 10 Event Log Errors ==========\par
\par
[ Application Events ]\par
Error - 03.07.2010 17:08:53 | Computer Name = SCHORSCH | Source = crypt32 | ID = 131080\par
Description = Der automatische Aktualisierungsabruf der Drittanbieterstammlisten-Sequenznummer\par
von <hxxp://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txt>\par
ist fehlgeschlagen mit dem Fehler: Dieser Vorgang wurde wegen Zeit\'fcberschreitung\par
zur\'fcckgegeben. .\par
\par
Error - 04.07.2010 03:58:14 | Computer Name = SCHORSCH | Source = crypt32 | ID = 131080\par
Description = Der automatische Aktualisierungsabruf der Drittanbieterstammlisten-Sequenznummer\par
von <hxxp://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txt>\par
ist fehlgeschlagen mit dem Fehler: Dieser Vorgang wurde wegen Zeit\'fcberschreitung\par
zur\'fcckgegeben. .\par
\par
Error - 04.07.2010 04:12:04 | Computer Name = SCHORSCH | Source = Application Error | ID = 1000\par
Description = Fehlgeschlagene Anwendung utherverse.exe, Version 0.0.0.0, fehlgeschlagenes\par
Modul shell32.dll, Version 6.0.2900.5622, Fehleradresse 0x002d6f74.\par
\par
Error - 04.07.2010 06:24:14 | Computer Name = SCHORSCH | Source = crypt32 | ID = 131080\par
Description = Der automatische Aktualisierungsabruf der Drittanbieterstammlisten-Sequenznummer\par
von <hxxp://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txt>\par
ist fehlgeschlagen mit dem Fehler: Dieser Vorgang wurde wegen Zeit\'fcberschreitung\par
zur\'fcckgegeben. .\par
\par
Error - 04.07.2010 07:31:15 | Computer Name = SCHORSCH | Source = crypt32 | ID = 131080\par
Description = Der automatische Aktualisierungsabruf der Drittanbieterstammlisten-Sequenznummer\par
von <hxxp://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txt>\par
ist fehlgeschlagen mit dem Fehler: Dieser Vorgang wurde wegen Zeit\'fcberschreitung\par
zur\'fcckgegeben. .\par
\par
Error - 04.07.2010 08:00:28 | Computer Name = SCHORSCH | Source = crypt32 | ID = 131080\par
Description = Der automatische Aktualisierungsabruf der Drittanbieterstammlisten-Sequenznummer\par
von <hxxp://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txt>\par
ist fehlgeschlagen mit dem Fehler: Dieser Vorgang wurde wegen Zeit\'fcberschreitung\par
zur\'fcckgegeben. .\par
\par
Error - 04.07.2010 08:04:58 | Computer Name = SCHORSCH | Source = crypt32 | ID = 131080\par
Description = Der automatische Aktualisierungsabruf der Drittanbieterstammlisten-Sequenznummer\par
von <hxxp://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txt>\par
ist fehlgeschlagen mit dem Fehler: Dieser Vorgang wurde wegen Zeit\'fcberschreitung\par
zur\'fcckgegeben. .\par
\par
Error - 04.07.2010 08:13:23 | Computer Name = SCHORSCH | Source = crypt32 | ID = 131080\par
Description = Der automatische Aktualisierungsabruf der Drittanbieterstammlisten-Sequenznummer\par
von <hxxp://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txt>\par
ist fehlgeschlagen mit dem Fehler: Dieser Vorgang wurde wegen Zeit\'fcberschreitung\par
zur\'fcckgegeben. .\par
\par
Error - 04.07.2010 08:53:26 | Computer Name = SCHORSCH | Source = crypt32 | ID = 131080\par
Description = Der automatische Aktualisierungsabruf der Drittanbieterstammlisten-Sequenznummer\par
von <hxxp://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txt>\par
ist fehlgeschlagen mit dem Fehler: Dieser Vorgang wurde wegen Zeit\'fcberschreitung\par
zur\'fcckgegeben. .\par
\par
Error - 04.07.2010 10:59:04 | Computer Name = SCHORSCH | Source = crypt32 | ID = 131080\par
Description = Der automatische Aktualisierungsabruf der Drittanbieterstammlisten-Sequenznummer\par
von <hxxp://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txt>\par
ist fehlgeschlagen mit dem Fehler: Dieser Vorgang wurde wegen Zeit\'fcberschreitung\par
zur\'fcckgegeben. .\par
\par
[ System Events ]\par
Error - 03.07.2010 16:18:07 | Computer Name = SCHORSCH | Source = nv | ID = 11141134\par
Description = Unknown error on CMDre 00000000 00000868 02580320 00000002 00000000\par
\par
Error - 03.07.2010 16:18:07 | Computer Name = SCHORSCH | Source = nv | ID = 11141134\par
Description = Unknown error on CMDre 00000000 00000080 00000000 00000002 00000000\par
\par
Error - 03.07.2010 16:19:16 | Computer Name = SCHORSCH | Source = nv | ID = 11141134\par
Description = Unknown error on CMDre 00000000 00000868 03000400 00000002 00000000\par
\par
Error - 03.07.2010 16:19:16 | Computer Name = SCHORSCH | Source = nv | ID = 11141134\par
Description = Unknown error on CMDre 00000000 00000080 00000000 00000002 00000000\par
\par
Error - 03.07.2010 16:19:17 | Computer Name = SCHORSCH | Source = nv | ID = 11141134\par
Description = Unknown error on CMDre 00000000 00000868 02580320 00000002 00000000\par
\par
Error - 03.07.2010 16:19:17 | Computer Name = SCHORSCH | Source = nv | ID = 11141134\par
Description = Unknown error on CMDre 00000000 00000080 00000000 00000002 00000000\par
\par
Error - 03.07.2010 16:23:49 | Computer Name = SCHORSCH | Source = nv | ID = 11141134\par
Description = Unknown error on CMDre 00000000 00000868 03000400 00000002 00000000\par
\par
Error - 03.07.2010 16:23:49 | Computer Name = SCHORSCH | Source = nv | ID = 11141134\par
Description = Unknown error on CMDre 00000000 00000080 00000000 00000002 00000000\par
\par
Error - 03.07.2010 17:05:02 | Computer Name = SCHORSCH | Source = nv | ID = 11141134\par
Description = Unknown error on CMDre 00000000 00000868 03000400 00000002 00000000\par
\par
Error - 03.07.2010 17:05:02 | Computer Name = SCHORSCH | Source = nv | ID = 11141134\par
Description = Unknown error on CMDre 00000000 00000080 00000000 00000002 00000000\par
\par
\par
< End of report >
\par } Geändert von suncruiser (04.07.2010 um 18:45 Uhr) |
|
04.07.2010, 18:46
| #4 |
| | Internet Explorer öffnet ständig werbung ohne zutuhn Text einfügen und absenden klappt ja nich wirklich reibungslos.....Überschreite ständig die 30sec. OTL Teil I {\rtf1\ansi\ansicpg1252\deff0\deflang1031{\fonttbl{\f0\fswiss\fcharset0 Arial;}} {\*\generator Msftedit 5.41.15.1515;}\viewkind4\uc1\pard\f0\fs20 OTL logfile created on: 04.07.2010 19:23:37 - Run 1\par OTL by OldTimer - Version 3.2.7.0 Folder = C:\\Dokumente und Einstellungen\\Robert\\Eigene Dateien\\Downloads\par Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation\par Internet Explorer (Version = 6.0.2900.5512)\par Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy\par \par 1,00 Gb Total Physical Memory | 1,00 Gb Available Physical Memory | 49,00% Memory free\par 3,00 Gb Paging File | 3,00 Gb Available in Paging File | 80,00% Paging File free\par Paging file location(s): c:\\pagefile.sys 2046 8000 [binary data]\par \par %SystemDrive% = C: | %SystemRoot% = C:\\WINDOWS | %ProgramFiles% = C:\\Programme\par Drive C: | 465,75 Gb Total Space | 454,93 Gb Free Space | 97,68% Space Free | Partition Type: NTFS\par D: Drive not present or media not loaded\par E: Drive not present or media not loaded\par F: Drive not present or media not loaded\par G: Drive not present or media not loaded\par H: Drive not present or media not loaded\par I: Drive not present or media not loaded\par \par Computer Name: SCHORSCH\par Current User Name: Robert\par Logged in as Administrator.\par \par Current Boot Mode: Normal\par Scan Mode: All users\par Company Name Whitelist: Off\par Skip Microsoft Files: Off\par File Age = 30 Days\par Output = Minimal\par \par ========== Processes (SafeList) ==========\par \par PRC - C:\\Dokumente und Einstellungen\\Robert\\Eigene Dateien\\Downloads\\OTL.exe (OldTimer Tools)\par PRC - C:\\WINDOWS\\Tgifid.exe ()\par PRC - C:\\Programme\\Mozilla Firefox\\firefox.exe (Mozilla Corporation)\par PRC - C:\\Programme\\ICQ7.2\\ICQ.exe (ICQ, LLC.)\par PRC - C:\\Programme\\Avira\\AntiVir Desktop\\avguard.exe (Avira GmbH)\par PRC - C:\\Programme\\ICQ6Toolbar\\ICQ Service.exe ()\par PRC - C:\\Programme\\Avira\\AntiVir Desktop\\avgnt.exe (Avira GmbH)\par PRC - C:\\Programme\\Avira\\AntiVir Desktop\\sched.exe (Avira GmbH)\par PRC - C:\\Programme\\Gemeinsame Dateien\\Java\\Java Update\\jusched.exe (Sun Microsystems, Inc.)\par PRC - C:\\Programme\\Avira\\AntiVir Desktop\\avshadow.exe (Avira GmbH)\par PRC - C:\\WINDOWS\\explorer.exe (Microsoft Corporation)\par \par \par ========== Modules (SafeList) ==========\par \par MOD - C:\\Dokumente und Einstellungen\\Robert\\Eigene Dateien\\Downloads\\OTL.exe (OldTimer Tools)\par MOD - C:\\WINDOWS\\system32\\msscript.ocx (Microsoft Corporation)\par \par \par ========== Win32 Services (SafeList) ==========\par \par SRV - (SSHNAS) -- C:\\WINDOWS\\system32\\sshnas21.dll ()\par SRV - (AntiVirService) -- C:\\Programme\\Avira\\AntiVir Desktop\\avguard.exe (Avira GmbH)\par SRV - (ICQ Service) -- C:\\Programme\\ICQ6Toolbar\\ICQ Service.exe ()\par SRV - (AntiVirSchedulerService) -- C:\\Programme\\Avira\\AntiVir Desktop\\sched.exe (Avira GmbH)\par \par \par ========== Driver Services (SafeList) ==========\par \par DRV - (avipbb) -- C:\\WINDOWS\\system32\\drivers\\avipbb.sys (Avira GmbH)\par DRV - (avgntflt) -- C:\\WINDOWS\\system32\\drivers\\avgntflt.sys (Avira GmbH)\par DRV - (avgio) -- C:\\Programme\\Avira\\AntiVir Desktop\\avgio.sys (Avira GmbH)\par DRV - (ssmdrv) -- C:\\WINDOWS\\system32\\drivers\\ssmdrv.sys (Avira GmbH)\par DRV - (IntcAzAudAddService) Service for Realtek HD Audio (WDM) -- C:\\WINDOWS\\system32\\drivers\\RtkHDAud.sys (Realtek Semiconductor Corp.)\par DRV - (HDAudBus) -- C:\\WINDOWS\\system32\\drivers\\hdaudbus.sys (Windows (R) Server 2003 DDK provider)\par DRV - (nv) -- C:\\WINDOWS\\system32\\drivers\\nv4_mini.sys (NVIDIA Corporation)\par DRV - (RTLE8023xp) -- C:\\WINDOWS\\system32\\drivers\\Rtenicxp.sys (Realtek Semiconductor Corporation )\par DRV - (NVHDA) -- C:\\WINDOWS\\system32\\drivers\\nvhda32.sys (NVIDIA Corporation)\par DRV - (nvsmu) -- C:\\WINDOWS\\system32\\drivers\\nvsmu.sys (NVIDIA Corporation)\par DRV - (BIOS) -- C:\\WINDOWS\\system32\\drivers\\BIOS.sys (BIOSTAR Group)\par \par \par ========== Standard Registry (SafeList) ==========\par \par \par ========== Internet Explorer ==========\par \par IE - HKLM\\SOFTWARE\\Microsoft\\Internet Explorer\\Main,Local Page = %SystemRoot%\\system32\\blank.htm\par \par \par IE - HKU\\.DEFAULT\\Software\\Microsoft\\Windows\\CurrentVersion\\Internet Settings: "ProxyEnable" = 0\par \par IE - HKU\\S-1-5-18\\Software\\Microsoft\\Windows\\CurrentVersion\\Internet Settings: "ProxyEnable" = 0\par \par \par \par IE - HKU\\S-1-5-21-1123561945-884357618-725345543-1003\\SOFTWARE\\Microsoft\\Internet Explorer\\Main,Start Page = hxxp://start.icq.com/\par IE - HKU\\S-1-5-21-1123561945-884357618-725345543-1003\\..\\URLSearchHook: - Reg Error: Key error. File not found\par IE - HKU\\S-1-5-21-1123561945-884357618-725345543-1003\\..\\URLSearchHook: \{855F3B16-6D32-4fe6-8A56-BBB695989046\} - C:\\Programme\\ICQ6Toolbar\\ICQToolBar.dll (ICQ)\par IE - HKU\\S-1-5-21-1123561945-884357618-725345543-1003\\Software\\Microsoft\\Windows\\CurrentVersion\\Internet Settings: "ProxyEnable" = 0\par \par ========== FireFox ==========\par \par FF - prefs.js..browser.search.defaultenginename: "ICQ Search"\par FF - prefs.js..browser.search.selectedEngine: "Google"\par FF - prefs.js..browser.startup.homepage: "hxxp://google.de/"\par FF - prefs.js..extensions.enabledItems: \{800b5000-a755-47e1-992b-48a1c1357f07\}:2.0.0.4\par FF - prefs.js..extensions.enabledItems: \{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA\}:6.0.20\par FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0\par FF - prefs.js..keyword.URL: "hxxp://search.icq.com/search/afe_results.php?ch_id=afex&tb_ver=2.0.0.4&q="\par \par FF - HKLM\\software\\mozilla\\Mozilla Firefox 3.5.10\\extensions\\\\Components: C:\\Programme\\Mozilla Firefox\\components [2010.06.27 12:49:07 | 000,000,000 | ---D | M]\par FF - HKLM\\software\\mozilla\\Mozilla Firefox 3.5.10\\extensions\\\\Plugins: C:\\Programme\\Mozilla Firefox\\plugins [2010.06.30 21:30:10 | 000,000,000 | ---D | M]\par \par [2010.06.25 13:10:21 | 000,000,000 | ---D | M] -- C:\\Dokumente und Einstellungen\\Robert\\Anwendungsdaten\\Mozilla\\Extensions\par [2010.07.03 18:33:28 | 000,000,000 | ---D | M] -- C:\\Dokumente und Einstellungen\\Robert\\Anwendungsdaten\\Mozilla\\Firefox\\Profiles\\yojnk6bd.default\\extensions\par [2010.06.25 15:02:34 | 000,000,000 | ---D | M] (No name found) -- C:\\Dokumente und Einstellungen\\Robert\\Anwendungsdaten\\Mozilla\\Firefox\\Profiles\\yojnk6bd.default\\extensions\\\{800b5000-a755-47e1-992b-48a1c1357f07\}\par [2010.06.30 21:26:27 | 000,000,000 | ---D | M] (No name found) -- C:\\Dokumente und Einstellungen\\Robert\\Anwendungsdaten\\Mozilla\\Firefox\\Profiles\\yojnk6bd.default\\extensions\\\{E2883E8F-472F-4fb0-9522-AC9BF37916A7\}\par [2010.06.30 21:26:27 | 000,000,000 | ---D | M] -- C:\\Dokumente und Einstellungen\\Robert\\Anwendungsdaten\\Mozilla\\Firefox\\Profiles\\yojnk6bd.default\\extensions\\staged-xpis\par [2010.06.25 15:02:34 | 000,000,168 | ---- | M] () -- C:\\Dokumente und Einstellungen\\Robert\\Anwendungsdaten\\Mozilla\\Firefox\\Profiles\\yojnk6bd.default\\searchplugins\\icqplugin.gif\par [2010.06.25 15:02:34 | 000,000,618 | ---- | M] () -- C:\\Dokumente und Einstellungen\\Robert\\Anwendungsdaten\\Mozilla\\Firefox\\Profiles\\yojnk6bd.default\\searchplugins\\icqplugin.src\par [2010.07.02 17:42:24 | 000,001,069 | ---- | M] () -- C:\\Dokumente und Einstellungen\\Robert\\Anwendungsdaten\\Mozilla\\Firefox\\Profiles\\yojnk6bd.default\\searchplugins\\icqplugin.xml\par [2010.07.03 18:33:28 | 000,000,000 | ---D | M] -- C:\\Programme\\Mozilla Firefox\\extensions\par [2010.06.25 15:06:54 | 000,000,000 | ---D | M] (Java Console) -- C:\\Programme\\Mozilla Firefox\\extensions\\\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA\}\par [2010.06.25 15:06:48 | 000,411,368 | ---- | M] (Sun Microsystems, Inc.) -- C:\\Programme\\Mozilla Firefox\\plugins\\npdeployJava1.dll\par [2010.06.27 12:49:04 | 000,001,392 | ---- | M] () -- C:\\Programme\\Mozilla Firefox\\searchplugins\\amazondotcom-de.xml\par [2010.06.27 12:49:04 | 000,002,344 | ---- | M] () -- C:\\Programme\\Mozilla Firefox\\searchplugins\\eBay-de.xml\par [2010.06.27 12:49:04 | 000,006,805 | ---- | M] () -- C:\\Programme\\Mozilla Firefox\\searchplugins\\leo_ende_de.xml\par [2010.06.27 12:49:04 | 000,001,178 | ---- | M] () -- C:\\Programme\\Mozilla Firefox\\searchplugins\\wikipedia-de.xml\par [2010.06.27 12:49:04 | 000,000,801 | ---- | M] () -- C:\\Programme\\Mozilla Firefox\\searchplugins\\yahoo-de.xml\par \par O1 HOSTS File: ([2001.08.18 12:00:00 | 000,000,820 | ---- | M]) - C:\\WINDOWS\\system32\\drivers\\etc\\hosts\par O1 - Hosts: 127.0.0.1 localhost\par O2 - BHO: (Adobe PDF Link Helper) - \{18DF081C-E8AD-4283-A596-FA578C2EBDC3\} - C:\\Programme\\Gemeinsame Dateien\\Adobe\\Acrobat\\ActiveX\\AcroIEHelperShim.dll (Adobe Systems Incorporated)\par O3 - HKLM\\..\\Toolbar: (ICQToolBar) - \{855F3B16-6D32-4FE6-8A56-BBB695989046\} - C:\\Programme\\ICQ6Toolbar\\ICQToolBar.dll (ICQ)\par O3 - HKU\\S-1-5-21-1123561945-884357618-725345543-1003\\..\\Toolbar\\WebBrowser: (no name) - \{D4027C7F-154A-4066-A1AD-4243D8127440\} - No CLSID value found.\par O4 - HKLM..\\Run: [Adobe ARM] C:\\Programme\\Gemeinsame Dateien\\Adobe\\ARM\\1.0\\AdobeARM.exe (Adobe Systems Incorporated)\par O4 - HKLM..\\Run: [Alcmtr] C:\\WINDOWS\\Alcmtr.exe (Realtek Semiconductor Corp.)\par O4 - HKLM..\\Run: [avgnt] C:\\Programme\\Avira\\AntiVir Desktop\\avgnt.exe (Avira GmbH)\par O4 - HKLM..\\Run: [KernelFaultCheck] File not found\par O4 - HKLM..\\Run: [NvCplDaemon] C:\\WINDOWS\\System32\\NvCpl.DLL (NVIDIA Corporation)\par O4 - HKLM..\\Run: [NvMediaCenter] C:\\WINDOWS\\System32\\NvMcTray.DLL (NVIDIA Corporation)\par O4 - HKLM..\\Run: [nwiz] C:\\WINDOWS\\System32\\nwiz.exe ()\par O4 - HKLM..\\Run: [SunJavaUpdateSched] C:\\Programme\\Gemeinsame Dateien\\Java\\Java Update\\jusched.exe (Sun Microsystems, Inc.)\par O4 - HKU\\S-1-5-21-1123561945-884357618-725345543-1003..\\Run: [VO3N0SLJ2I] C:\\WINDOWS\\Tgifid.exe ()\par O6 - HKLM\\SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\policies\\Explorer: HonorAutoRunSetting = 1\par O7 - HKU\\.DEFAULT\\SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\policies\\Explorer: NoDriveTypeAutoRun = 145\par O7 - HKU\\S-1-5-18\\SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\policies\\Explorer: NoDriveTypeAutoRun = 145\par O7 - HKU\\S-1-5-19\\SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\policies\\Explorer: NoDriveTypeAutoRun = 145\par O7 - HKU\\S-1-5-20\\SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\policies\\Explorer: NoDriveTypeAutoRun = 145\par O7 - HKU\\S-1-5-21-1123561945-884357618-725345543-1003\\SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\policies\\Explorer: NoDriveTypeAutoRun = 145\par O9 - Extra Button: ICQ7.2 - \{72EFBFE4-C74F-4187-AEFD-73EA3BE968D6\} - C:\\Programme\\ICQ7.2\\ICQ.exe (ICQ, LLC.)\par O9 - Extra 'Tools' menuitem : ICQ7.2 - \{72EFBFE4-C74F-4187-AEFD-73EA3BE968D6\} - C:\\Programme\\ICQ7.2\\ICQ.exe (ICQ, LLC.)\par O16 - DPF: \{8AD9C840-044E-11D1-B3E9-00805F499D93\} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab (Java Plug-in 1.6.0_20)\par O16 - DPF: \{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA\} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab (Java Plug-in 1.6.0_20)\par O16 - DPF: \{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA\} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab (Java Plug-in 1.6.0_20)\par O16 - DPF: \{D27CDB6E-AE6D-11CF-96B8-444553540000\} hxxp://fpdownload.macromedia.com/pub/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object)\par O17 - HKLM\\System\\CCS\\Services\\Tcpip\\Parameters: DhcpNameServer = 192.168.2.1\par O18 - Protocol\\Handler\\http\\0x00000001 \{E1D2BF42-A96B-11d1-9C6B-0000F875AC61\} - C:\\Programme\\Gemeinsame Dateien\\System\\Ole DB\\MSDAIPP.DLL (Microsoft Corporation)\par O18 - Protocol\\Handler\\http\\oledb \{E1D2BF40-A96B-11d1-9C6B-0000F875AC61\} - C:\\Programme\\Gemeinsame Dateien\\System\\Ole DB\\MSDAIPP.DLL (Microsoft Corporation)\par O18 - Protocol\\Handler\\https\\0x00000001 \{E1D2BF42-A96B-11d1-9C6B-0000F875AC61\} - C:\\Programme\\Gemeinsame Dateien\\System\\Ole DB\\MSDAIPP.DLL (Microsoft Corporation)\par O18 - Protocol\\Handler\\https\\oledb \{E1D2BF40-A96B-11d1-9C6B-0000F875AC61\} - C:\\Programme\\Gemeinsame Dateien\\System\\Ole DB\\MSDAIPP.DLL (Microsoft Corporation)\par O18 - Protocol\\Handler\\ipp\\0x00000001 \{E1D2BF42-A96B-11d1-9C6B-0000F875AC61\} - C:\\Programme\\Gemeinsame Dateien\\System\\Ole DB\\MSDAIPP.DLL (Microsoft Corporation)\par O18 - Protocol\\Handler\\msdaipp\\0x00000001 \{E1D2BF42-A96B-11d1-9C6B-0000F875AC61\} - C:\\Programme\\Gemeinsame Dateien\\System\\Ole DB\\MSDAIPP.DLL (Microsoft Corporation)\par O18 - Protocol\\Handler\\msdaipp\\oledb \{E1D2BF40-A96B-11d1-9C6B-0000F875AC61\} - C:\\Programme\\Gemeinsame Dateien\\System\\Ole DB\\MSDAIPP.DLL (Microsoft Corporation)\par O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\\WINDOWS\\explorer.exe (Microsoft Corporation)\par O24 - Desktop Components:0 (Die derzeitige Homepage) - About:Home\par O24 - Desktop WallPaper: C:\\WINDOWS\\Web\\Wallpaper\\Gr\'fcne Idylle.bmp\par O24 - Desktop BackupWallPaper: C:\\WINDOWS\\Web\\Wallpaper\\Gr\'fcne Idylle.bmp\par O32 - HKLM CDRom: AutoRun - 1\par O32 - AutoRun File - [2010.06.25 12:53:14 | 000,000,000 | ---- | M] () - C:\\AUTOEXEC.BAT -- [ NTFS ]\par O34 - HKLM BootExecute: (autocheck autochk *) - File not found\par O35 - HKLM\\..comfile [open] -- "%1" %*\par O35 - HKLM\\..exefile [open] -- "%1" %*\par O37 - HKLM\\...com [@ = comfile] -- "%1" %*\par O37 - HKLM\\...exe [@ = exefile] -- "%1" %*\par \par NetSvcs: 6to4 - File not found\par NetSvcs: Ias - C:\\WINDOWS\\system32\\ias [2010.07.04 15:43:56 | 000,000,000 | ---D | M]\par NetSvcs: Iprip - File not found\par NetSvcs: Irmon - File not found\par NetSvcs: NWCWorkstation - File not found\par NetSvcs: Nwsapagent - File not found\par NetSvcs: WmdmPmSp - File not found\par \par \par SafeBootMin: Base - Driver Group\par SafeBootMin: Boot Bus Extender - Driver Group\par SafeBootMin: Boot file system - Driver Group\par SafeBootMin: File system - Driver Group\par SafeBootMin: Filter - Driver Group\par SafeBootMin: PCI Configuration - Driver Group\par SafeBootMin: PNP Filter - Driver Group\par SafeBootMin: Primary disk - Driver Group\par SafeBootMin: SCSI Class - Driver Group\par SafeBootMin: sermouse.sys - Driver\par SafeBootMin: System Bus Extender - Driver Group\par SafeBootMin: vga.sys - Driver\par SafeBootMin: \{36FC9E60-C465-11CF-8056-444553540000\} - Universal Serial Bus controllers\par SafeBootMin: \{4D36E965-E325-11CE-BFC1-08002BE10318\} - CD-ROM Drive\par SafeBootMin: \{4D36E967-E325-11CE-BFC1-08002BE10318\} - DiskDrive\par SafeBootMin: \{4D36E969-E325-11CE-BFC1-08002BE10318\} - Standard floppy disk controller\par SafeBootMin: \{4D36E96A-E325-11CE-BFC1-08002BE10318\} - Hdc\par SafeBootMin: \{4D36E96B-E325-11CE-BFC1-08002BE10318\} - Keyboard\par SafeBootMin: \{4D36E96F-E325-11CE-BFC1-08002BE10318\} - Mouse\par SafeBootMin: \{4D36E977-E325-11CE-BFC1-08002BE10318\} - PCMCIA Adapters\par SafeBootMin: \{4D36E97B-E325-11CE-BFC1-08002BE10318\} - SCSIAdapter\par SafeBootMin: \{4D36E97D-E325-11CE-BFC1-08002BE10318\} - System\par SafeBootMin: \{4D36E980-E325-11CE-BFC1-08002BE10318\} - Floppy disk drive\par SafeBootMin: \{71A27CDD-812A-11D0-BEC7-08002BE2092F\} - Volume\par SafeBootMin: \{745A17A0-74D3-11D0-B6FE-00A0C90F57DA\} - Human Interface Devices\par \par SafeBootNet: Base - Driver Group\par SafeBootNet: Boot Bus Extender - Driver Group\par SafeBootNet: Boot file system - Driver Group\par SafeBootNet: File system - Driver Group\par SafeBootNet: Filter - Driver Group\par SafeBootNet: NDIS Wrapper - Driver Group\par SafeBootNet: NetBIOSGroup - Driver Group\par SafeBootNet: NetDDEGroup - Driver Group\par SafeBootNet: Network - Driver Group\par SafeBootNet: NetworkProvider - Driver Group\par SafeBootNet: PCI Configuration - Driver Group\par SafeBootNet: PNP Filter - Driver Group\par SafeBootNet: PNP_TDI - Driver Group\par SafeBootNet: Primary disk - Driver Group\par SafeBootNet: SCSI Class - Driver Group\par SafeBootNet: sermouse.sys - Driver\par SafeBootNet: Streams Drivers - Driver Group\par SafeBootNet: System Bus Extender - Driver Group\par SafeBootNet: TDI - Driver Group\par SafeBootNet: vga.sys - Driver\par SafeBootNet: \{36FC9E60-C465-11CF-8056-444553540000\} - Universal Serial Bus controllers\par SafeBootNet: \{4D36E965-E325-11CE-BFC1-08002BE10318\} - CD-ROM Drive\par SafeBootNet: \{4D36E967-E325-11CE-BFC1-08002BE10318\} - DiskDrive\par SafeBootNet: \{4D36E969-E325-11CE-BFC1-08002BE10318\} - Standard floppy disk controller\par SafeBootNet: \{4D36E96A-E325-11CE-BFC1-08002BE10318\} - Hdc\par SafeBootNet: \{4D36E96B-E325-11CE-BFC1-08002BE10318\} - Keyboard\par SafeBootNet: \{4D36E96F-E325-11CE-BFC1-08002BE10318\} - Mouse\par SafeBootNet: \{4D36E972-E325-11CE-BFC1-08002BE10318\} - Net\par SafeBootNet: \{4D36E973-E325-11CE-BFC1-08002BE10318\} - NetClient\par SafeBootNet: \{4D36E974-E325-11CE-BFC1-08002BE10318\} - NetService\par SafeBootNet: \{4D36E975-E325-11CE-BFC1-08002BE10318\} - NetTrans\par SafeBootNet: \{4D36E977-E325-11CE-BFC1-08002BE10318\} - PCMCIA Adapters\par SafeBootNet: \{4D36E97B-E325-11CE-BFC1-08002BE10318\} - SCSIAdapter\par SafeBootNet: \{4D36E97D-E325-11CE-BFC1-08002BE10318\} - System\par SafeBootNet: \{4D36E980-E325-11CE-BFC1-08002BE10318\} - Floppy disk drive\par SafeBootNet: \{71A27CDD-812A-11D0-BEC7-08002BE2092F\} - Volume\par SafeBootNet: \{745A17A0-74D3-11D0-B6FE-00A0C90F57DA\} - Human Interface Devices\par \par ActiveX: \{08B0E5C0-4FCB-11CF-AAA5-00401C608500\} - Java (Sun)\par ActiveX: \{10072CEC-8CC1-11D1-986E-00A0C955B42F\} - Vektorgrafik-Rendering (VML)\par ActiveX: \{2179C5D3-EBFF-11CF-B6FD-00AA00B4E220\} - NetShow\par ActiveX: \{22d6f312-b0f6-11d0-94ab-0080c74c7e95\} - Microsoft Windows Media Player 6.4\par ActiveX: \{283807B5-2C60-11D0-A31D-00AA00B92C03\} - DirectAnimation\par ActiveX: \{2C7339CF-2B09-4501-B3F3-F3508C9228ED\} - %SystemRoot%\\system32\\regsvr32.exe /s /n /i:/UserInstall %SystemRoot%\\system32\\themeui.dll\par ActiveX: \{36f8ec70-c29a-11d1-b5c7-0000f8051515\} - Dynamic HTML-Datenbindung f\'fcr Java\par ActiveX: \{3af36230-a269-11d1-b5bf-0000f8051515\} - Offlinebrowsingpaket\par ActiveX: \{3bf42070-b3b1-11d1-b5c5-0000f8051515\} - Uniscribe\par ActiveX: \{4278c270-a269-11d1-b5bf-0000f8051515\} - Erweitertes Authoring\par ActiveX: \{44BBA840-CC51-11CF-AAFA-00AA00B6015C\} - "%ProgramFiles%\\Outlook Express\\setup50.exe" /APP:OE /CALLER:WINNT /user /install\par ActiveX: \{44BBA842-CC51-11CF-AAFA-00AA00B6015B\} - rundll32.exe advpack.dll,LaunchINFSection C:\\WINDOWS\\INF\\msnetmtg.inf,NetMtg.Install.PerUser.NT\par ActiveX: \{44BBA848-CC51-11CF-AAFA-00AA00B6015C\} - DirectShow\par ActiveX: \{44BBA855-CC51-11CF-AAFA-00AA00B6015F\} - DirectDrawEx\par ActiveX: \{45ea75a0-a269-11d1-b5bf-0000f8051515\} - Internet Explorer-Hilfe\par ActiveX: \{4f216970-c90c-11d1-b5c7-0000f8051515\} - DirectAnimation Java Classes\par ActiveX: \{4f645220-306d-11d2-995d-00c04f98bbc9\} - Microsoft Windows Script 5.7\par ActiveX: \{5945c046-1e7d-11d1-bc44-00c04fd912be\} - rundll32.exe advpack.dll,LaunchINFSection C:\\WINDOWS\\INF\\msmsgs.inf,BLC.QuietInstall.PerUser\par ActiveX: \{5A8D6EE0-3E18-11D0-821E-444553540000\} - ICW\par ActiveX: \{5fd399c0-a70a-11d1-9948-00c04f98bbc9\} - Internet Explorer Setup Tools\par ActiveX: \{630b1da0-b465-11d1-9948-00c04f98bbc9\} - Browsererweiterungen\par ActiveX: \{6BF52A52-394A-11d3-B153-00C04F79FAA6\} - Microsoft Windows Media Player\par ActiveX: \{6fab99d0-bab8-11d1-994a-00c04f98bbc9\} - Zugang zu MSN Site\par ActiveX: \{7790769C-0471-11d2-AF11-00C04FA35D02\} - "%ProgramFiles%\\Outlook Express\\setup50.exe" /APP:WAB /CALLER:WINNT /user /install\par ActiveX: \{89820200-ECBD-11cf-8B85-00AA005B4340\} - regsvr32.exe /s /n /i:U shell32.dll\par ActiveX: \{89820200-ECBD-11cf-8B85-00AA005B4383\} - %SystemRoot%\\system32\\ie4uinit.exe\par ActiveX: \{9381D8F2-0288-11D0-9501-00AA00B911A5\} - Dynamic HTML-Datenbindung\par ActiveX: \{ACC563BC-4266-43f0-B6ED-9D38C4202C7E\} - \par ActiveX: \{C9E9A340-D1F1-11D0-821E-444553540600\} - Internet Explorer-Hauptschriftarten\par ActiveX: \{CC2A9BA0-3BDD-11D0-821E-444553540000\} - Taskplaner\par ActiveX: \{CDD7975E-60F8-41d5-8149-19E51D6F71D0\} - Windows Movie Maker v2.1\par ActiveX: \{D27CDB6E-AE6D-11cf-96B8-444553540000\} - Macromedia Shockwave Flash\par ActiveX: \{de5aed00-a4bf-11d1-9948-00c04f98bbc9\} - HTML-Hilfe\par ActiveX: \{E92B03AB-B707-11d2-9CBD-0000F87A369E\} - Active Directory Service Interface\par ActiveX: >\{22d6f312-b0f6-11d0-94ab-0080c74c7e95\} - C:\\WINDOWS\\inf\\unregmp2.exe /ShowWMP\par ActiveX: >\{26923b43-4d38-484f-9b9e-de460746276c\} - %systemroot%\\system32\\shmgrate.exe OCInstallUserConfigIE\par ActiveX: >\{60B49E34-C7CC-11D0-8953-00A0C90347FF\}MICROS - RunDLL32 IEDKCS32.DLL,BrandIE4 SIGNUP\par ActiveX: >\{881dd1c5-3dcf-431b-b061-f3f88e8be88a\} - %systemroot%\\system32\\shmgrate.exe OCInstallUserConfigOE\par \par Drivers32: msacm.iac2 - C:\\WINDOWS\\system32\\iac25_32.ax (Intel Corporation)\par Drivers32: msacm.l3acm - C:\\WINDOWS\\system32\\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)\par Drivers32: msacm.sl_anet - C:\\WINDOWS\\System32\\sl_anet.acm (Sipro Lab Telecom Inc.)\par Drivers32: msacm.trspch - C:\\WINDOWS\\System32\\tssoft32.acm (DSP GROUP, INC.)\par Drivers32: vidc.cvid - C:\\WINDOWS\\System32\\iccvid.dll (Radius Inc.)\par Drivers32: vidc.iv31 - C:\\WINDOWS\\System32\\ir32_32.dll ()\par Drivers32: vidc.iv32 - C:\\WINDOWS\\System32\\ir32_32.dll ()\par Drivers32: vidc.iv41 - C:\\WINDOWS\\System32\\ir41_32.ax (Intel Corporation)\par Drivers32: vidc.iv50 - C:\\WINDOWS\\System32\\ir50_32.dll (Intel Corporation)\par \par CREATERESTOREPOINT\par Restore point Set: OTL Restore Point (16902109354000384)\par \par ========== Files/Folders - Created Within 30 Days ==========\par \par [2010.07.04 17:57:33 | 000,000,000 | ---D | C] -- C:\\WINDOWS\\pss\par [2010.07.04 17:50:20 | 000,000,000 | ---D | C] -- C:\\VundoFix Backups\par [2010.07.04 13:59:41 | 000,000,000 | ---D | C] -- C:\\WINDOWS\\Prefetch\par [2010.07.04 13:58:22 | 000,156,672 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\winzm.ime\par [2010.07.04 13:58:22 | 000,156,672 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\winsp.ime\par [2010.07.04 13:58:22 | 000,156,672 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\winpy.ime\par [2010.07.04 13:58:22 | 000,065,536 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\winime.ime\par [2010.07.04 13:58:21 | 000,079,360 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\winar30.ime\par [2010.07.04 13:58:21 | 000,072,704 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\wingb.ime\par [2010.07.04 13:58:21 | 000,041,600 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\weitekp9.dll\par [2010.07.04 13:58:21 | 000,031,360 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\weitekp9.sys\par [2010.07.04 13:58:20 | 000,363,008 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\w3svc.dll\par [2010.07.04 13:58:20 | 000,076,288 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\wam51.dll\par [2010.07.04 13:58:20 | 000,074,240 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\w3ext.dll\par [2010.07.04 13:58:20 | 000,053,248 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\wamreg51.dll\par [2010.07.04 13:58:20 | 000,009,216 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\wamps51.dll\par [2010.07.04 13:58:20 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\w3svapi.dll\par [2010.07.04 13:58:19 | 000,426,041 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\voicepad.dll\par [2010.07.04 13:58:19 | 000,086,073 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\voicesub.dll\par [2010.07.04 13:58:19 | 000,048,256 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\w32.dll\par [2010.07.04 13:58:19 | 000,004,608 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\w3ctrs51.dll\par [2010.07.04 13:58:17 | 000,103,936 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\uihelper.dll\par [2010.07.04 13:58:17 | 000,076,288 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\uniime.dll\par [2010.07.04 13:58:17 | 000,065,024 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\unicdime.ime\par [2010.07.04 13:58:17 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\tsprof.exe\par [2010.07.04 13:58:16 | 000,571,392 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\tintlgnt.ime\par [2010.07.04 13:58:16 | 000,455,168 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\tintsetp.exe\par [2010.07.04 13:58:16 | 000,044,032 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\tintlphr.exe\par [2010.07.04 13:58:16 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\tools.dll\par [2010.07.04 13:58:16 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\tmigrate.dll\par [2010.07.04 13:58:15 | 000,185,344 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\thawbrkr.dll\par [2010.07.04 13:58:15 | 000,021,896 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\tdipx.sys\par [2010.07.04 13:58:15 | 000,019,464 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\tdspx.sys\par [2010.07.04 13:58:15 | 000,013,192 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\tdasync.sys\par [2010.07.04 13:58:14 | 000,046,592 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\svcext51.dll\par [2010.07.04 13:58:14 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\status.dll\par [2010.07.04 13:58:13 | 000,101,376 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\srusbusd.dll\par [2010.07.04 13:58:13 | 000,046,592 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\sspifilt.dll\par [2010.07.04 13:58:13 | 000,045,568 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\ssinc51.dll\par [2010.07.04 13:58:12 | 000,143,422 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\softkey.dll\par [2010.07.04 13:58:12 | 000,039,936 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\snmpthrd.dll\par [2010.07.04 13:58:12 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\snmpstup.dll\par [2010.07.04 13:58:12 | 000,008,704 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\snmptrap.exe\par [2010.07.04 13:58:12 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\EXCH_snprfdll.dll\par [2010.07.04 13:58:11 | 000,465,408 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\smtpsvc.dll\par [2010.07.04 13:58:11 | 000,358,400 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\snmpincl.dll\par [2010.07.04 13:58:11 | 000,259,072 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\snmpcl.dll\par [2010.07.04 13:58:11 | 000,188,416 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\snmpsmir.dll\par [2010.07.04 13:58:11 | 000,033,280 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\snmp.exe\par [2010.07.04 13:58:11 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\EXCH_smtpctrs.dll\par [2010.07.04 13:58:11 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\snmpmib.dll\par [2010.07.04 13:58:10 | 000,236,544 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\smi2smir.exe\par [2010.07.04 13:58:10 | 000,038,912 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\sm9aw.dll\par [2010.07.04 13:58:10 | 000,031,744 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\smb6w.dll\par [2010.07.04 13:58:10 | 000,031,744 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\sma3w.dll\par [2010.07.04 13:58:10 | 000,026,624 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\sm93w.dll\par [2010.07.04 13:58:10 | 000,026,624 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\sm92w.dll\par [2010.07.04 13:58:10 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\sm90w.dll\par [2010.07.04 13:58:10 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\sm8dw.dll\par [2010.07.04 13:58:10 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\smierrsm.dll\par [2010.07.04 13:58:10 | 000,010,752 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\smtpapi.dll\par [2010.07.04 13:58:10 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\smimsgif.dll\par [2010.07.04 13:58:10 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\smierrsy.dll\par [2010.07.04 13:58:09 | 000,030,208 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\sm87w.dll\par [2010.07.04 13:58:09 | 000,030,208 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\sm81w.dll\par [2010.07.04 13:58:09 | 000,029,184 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\sm8cw.dll\par [2010.07.04 13:58:09 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\sm8aw.dll\par [2010.07.04 13:58:09 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\sm89w.dll\par [2010.07.04 13:58:09 | 000,025,088 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\sm59w.dll\par [2010.07.04 13:58:09 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\simptcp.dll\par [2010.07.04 13:58:07 | 000,221,696 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\seo.dll\par [2010.07.04 13:58:07 | 000,057,856 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\EXCH_scripto.dll\par [2010.07.04 13:58:07 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\EXCH_seos.dll\par [2010.07.04 13:58:06 | 000,081,408 | ---- | C] (Ricoh Co., Ltd.) -- C:\\WINDOWS\\System32\\dllcache\\rwia330.dll\par [2010.07.04 13:58:06 | 000,081,408 | ---- | C] (Ricoh Co., Ltd.) -- C:\\WINDOWS\\System32\\dllcache\\rwia001.dll\par [2010.07.04 13:58:06 | 000,029,184 | ---- | C] (Ricoh Co., Ltd.) -- C:\\WINDOWS\\System32\\dllcache\\rw330ext.dll\par [2010.07.04 13:58:06 | 000,027,648 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\rw001ext.dll\par [2010.07.04 13:58:06 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\rwnh.dll\par [2010.07.04 13:58:06 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\rpcref.dll\par [2010.07.04 13:58:05 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\romanime.ime\par [2010.07.04 13:58:05 | 000,023,040 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\EXCH_regtrace.exe\par [2010.07.04 13:58:05 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\register.exe\par [2010.07.04 13:58:04 | 000,077,824 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\quick.ime\par [2010.07.04 13:58:04 | 000,020,736 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\ramdisk.sys\par [2010.07.04 13:58:04 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\quser.exe\par [2010.07.04 13:58:04 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\query.exe\par [2010.07.04 13:58:03 | 000,131,584 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\pmxviceo.dll\par [2010.07.04 13:58:03 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\pmxmcro.dll\par [2010.07.04 13:58:03 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\pwsdata.dll\par [2010.07.04 13:58:02 | 000,482,304 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\pintlgnt.ime\par [2010.07.04 13:58:02 | 000,079,360 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\phon.ime\par [2010.07.04 13:58:02 | 000,070,144 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\pintlphr.exe\par [2010.07.04 13:58:02 | 000,067,584 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\pmigrate.dll\par [2010.07.04 13:58:02 | 000,053,760 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\pintlcsd.dll\par [2010.07.04 13:58:02 | 000,020,992 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\permchk.dll\par [2010.07.04 13:58:02 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\pmxgl.dll\par [2010.07.04 13:58:01 | 000,036,927 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\padrs411.dll\par [2010.07.04 13:58:01 | 000,031,744 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\pagecnt.dll\par [2010.07.04 13:58:01 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\padrs404.dll\par [2010.07.04 13:58:01 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\padrs804.dll\par [2010.07.04 13:58:01 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\padrs412.dll\par [2010.07.04 13:57:59 | 000,045,056 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\nsepm.dll\par [2010.07.04 13:57:59 | 000,038,912 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\EXCH_ntfsdrv.dll\par [2010.07.04 13:57:58 | 000,053,248 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\nextlink.dll\par [2010.07.04 13:57:57 | 000,229,439 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\multibox.dll\par [2010.07.04 13:57:57 | 000,119,808 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\mtstocom.exe\par [2010.07.04 13:57:55 | 001,875,968 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\msir3jp.lex\par [2010.07.04 13:57:55 | 000,098,304 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\msir3jp.dll\par [2010.07.04 13:57:50 | 000,092,416 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\mga.sys\par [2010.07.04 13:57:50 | 000,092,032 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\mga.dll\par [2010.07.04 13:57:50 | 000,086,016 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\metada51.dll\par [2010.07.04 13:57:50 | 000,026,624 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\mdsync.dll\par [2010.07.04 13:57:50 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\migregdb.exe\par [2010.07.04 13:57:49 | 000,065,536 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\EXCH_mailmsg.dll\par [2010.07.04 13:57:49 | 000,037,888 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\md5filt.dll\par [2010.07.04 13:57:49 | 000,019,968 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\lprmon.dll\par [2010.07.04 13:57:48 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\lmmib2.dll\par [2010.07.04 13:57:48 | 000,023,040 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\lpdsvc.dll\par [2010.07.04 13:57:48 | 000,022,016 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\logscrpt.dll\par [2010.07.04 13:57:48 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\lonsint.dll\par [2010.07.04 13:57:47 | 000,070,656 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\korwbrkr.dll\par [2010.07.04 13:57:47 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\kbdvntc.dll\par [2010.07.04 13:57:47 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\kbdusa.dll\par [2010.07.04 13:57:47 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\kbdurdu.dll\par [2010.07.04 13:57:46 | 000,009,216 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\kbdnecat.dll\par [2010.07.04 13:57:46 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\kbdnecnt.dll\par [2010.07.04 13:57:46 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\kbdnec95.dll\par [2010.07.04 13:57:46 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\kbdlk41a.dll\par [2010.07.04 13:57:46 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\kbdth3.dll\par [2010.07.04 13:57:46 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\kbdth2.dll\par [2010.07.04 13:57:46 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\kbdlk41j.dll\par [2010.07.04 13:57:46 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\kbdth1.dll\par [2010.07.04 13:57:46 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\kbdth0.dll\par [2010.07.04 13:57:46 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\kbdsyr2.dll\par [2010.07.04 13:57:46 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\kbdsyr1.dll\par [2010.07.04 13:57:46 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\kbdintel.dll\par [2010.07.04 13:57:45 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\kbdibm02.dll\par [2010.07.04 13:57:45 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\kbdinpun.dll\par [2010.07.04 13:57:45 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\kbdintam.dll\par [2010.07.04 13:57:45 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\kbdinmar.dll\par [2010.07.04 13:57:45 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\kbdinkan.dll\par [2010.07.04 13:57:45 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\kbdinhin.dll\par [2010.07.04 13:57:45 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\kbdinguj.dll\par [2010.07.04 13:57:45 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\kbdindev.dll\par [2010.07.04 13:57:45 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\kbdheb.dll\par [2010.07.04 13:57:45 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\kbdfa.dll\par [2010.07.04 13:57:45 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\kbddiv2.dll\par [2010.07.04 13:57:45 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\kbddiv1.dll\par [2010.07.04 13:57:45 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\kbdgeo.dll\par [2010.07.04 13:57:44 | 000,018,432 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\jupiw.dll\par [2010.07.04 13:57:44 | 000,009,216 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\iwrps.dll\par [2010.07.04 13:57:44 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\kbdax2.dll\par [2010.07.04 13:57:44 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\kbd106n.dll\par [2010.07.04 13:57:44 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\kbd101a.dll\par [2010.07.04 13:57:44 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\kbd101.dll\par [2010.07.04 13:57:44 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\kbda3.dll\par [2010.07.04 13:57:44 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\kbda2.dll\par [2010.07.04 13:57:44 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\kbda1.dll\par [2010.07.04 13:57:44 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\kbdarmw.dll\par [2010.07.04 13:57:44 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\kbdarme.dll\par [2010.07.04 13:57:43 | 000,036,864 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\iprip.dll\par [2010.07.04 13:57:43 | 000,026,624 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\iscomlog.dll\par [2010.07.04 13:57:43 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\isapips.dll\par [2010.07.04 13:57:42 | 000,471,102 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\imskdic.dll\par [2010.07.04 13:57:42 | 000,315,455 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\imskf.dll\par [2010.07.04 13:57:42 | 000,257,024 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\infocomm.dll\par [2010.07.04 13:57:42 | 000,102,456 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\imlang.dll\par [2010.07.04 13:57:42 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\inetin51.exe\par [2010.07.04 13:57:42 | 000,008,704 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\infoctrs.dll\par [2010.07.04 13:57:41 | 000,307,257 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\imjpdct.exe\par [2010.07.04 13:57:41 | 000,274,489 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\imjputyc.dll\par [2010.07.04 13:57:41 | 000,262,200 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\imjputy.exe\par [2010.07.04 13:57:41 | 000,233,527 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\imjprw.exe\par [2010.07.04 13:57:41 | 000,208,952 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\imjpmig.exe\par [2010.07.04 13:57:41 | 000,155,705 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\imjpdsvr.exe\par [2010.07.04 13:57:41 | 000,081,976 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\imjpdct.dll\par [2010.07.04 13:57:41 | 000,059,904 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\imkrinst.exe\par [2010.07.04 13:57:41 | 000,057,398 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\imjpdadm.exe\par [2010.07.04 13:57:41 | 000,045,109 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\imjpuex.exe\par [2010.07.04 13:57:40 | 000,811,064 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\imjp81k.dll\par [2010.07.04 13:57:40 | 000,716,856 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\imjpcus.dll\par [2010.07.04 13:57:40 | 000,368,696 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\imjpcic.dll\par [2010.07.04 13:57:40 | 000,340,023 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\imjp81.ime\par [2010.07.04 13:57:40 | 000,311,359 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\imepadsv.exe\par [2010.07.04 13:57:40 | 000,106,496 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\imekrcic.dll\par [2010.07.04 13:57:40 | 000,102,463 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\imepadsm.dll\par [2010.07.04 13:57:40 | 000,086,016 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\imekrmbx.dll\par [2010.07.04 13:57:40 | 000,044,032 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\imekrmig.exe\par [2010.07.04 13:57:39 | 000,145,408 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\iische51.dll\par [2010.07.04 13:57:39 | 000,094,720 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\imekr61.ime\par [2010.07.04 13:57:39 | 000,079,872 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\iislog51.dll\par [2010.07.04 13:57:39 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\iisclex4.dll\par [2010.07.04 13:57:39 | 000,025,088 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\iisadmin.dll\par [2010.07.04 13:57:39 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\iiscrmap.dll\par [2010.07.04 13:57:39 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\iisfecnv.dll\par [2010.07.04 13:57:39 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\iissync.exe\par [2010.07.04 13:57:39 | 000,003,584 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\iismui.dll\par [2010.07.04 13:57:36 | 010,129,408 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\hwxkor.dll\par [2010.07.04 13:57:30 | 010,096,640 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\hwxcht.dll\par [2010.07.04 13:57:30 | 000,268,288 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\httpext.dll\par [2010.07.04 13:57:30 | 000,061,952 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\httpod51.dll\par [2010.07.04 13:57:30 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\httpmb51.dll\par [2010.07.04 13:57:29 | 000,039,936 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\hostmib.dll\par [2010.07.04 13:57:29 | 000,036,864 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\hanjadic.dll\par [2010.07.04 13:57:29 | 000,032,256 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\gzip.dll\par [2010.07.04 13:57:28 | 000,400,896 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\fxsxp32.dll\par [2010.07.04 13:57:28 | 000,397,312 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\fxstiff.dll\par [2010.07.04 13:57:28 | 000,268,800 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\fxssvc.exe\par [2010.07.04 13:57:28 | 000,246,272 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\fxst30.dll\par [2010.07.04 13:57:28 | 000,195,584 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\fxswzrd.dll\par [2010.07.04 13:57:28 | 000,155,648 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\fxsui.dll\par [2010.07.04 13:57:27 | 000,563,200 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\fxsst.dll\par [2010.07.04 13:57:27 | 000,285,184 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\fxscomex.dll\par [2010.07.04 13:57:27 | 000,235,520 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\fxscover.exe\par [2010.07.04 13:57:27 | 000,142,848 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\fxsclnt.exe\par [2010.07.04 13:57:27 | 000,139,264 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\fxsclntr.dll\par [2010.07.04 13:57:27 | 000,072,192 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\fxscom.dll\par [2010.07.04 13:57:27 | 000,064,000 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\fxsevent.dll\par [2010.07.04 13:57:27 | 000,031,744 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\fxsroute.dll\par [2010.07.04 13:57:27 | 000,026,624 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\fxsdrv.dll\par [2010.07.04 13:57:27 | 000,023,552 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\fxsmon.dll\par [2010.07.04 13:57:27 | 000,023,552 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\fxsext32.dll\par [2010.07.04 13:57:27 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\fxssend.exe\par [2010.07.04 13:57:27 | 000,008,704 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\fxsperf.dll\par [2010.07.04 13:57:27 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\fxsres.dll\par [2010.07.04 13:57:26 | 000,451,584 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\fxsapi.dll\par [2010.07.04 13:57:26 | 000,125,952 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\ftpsv251.dll\par [2010.07.04 13:57:26 | 000,112,640 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\fxscfgwz.dll\par [2010.07.04 13:57:26 | 000,024,632 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\fpadmcgi.exe\par [2010.07.04 13:57:26 | 000,020,541 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\fpadmdll.dll\par [2010.07.04 13:57:26 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\ftpctrs2.dll\par [2010.07.04 13:57:26 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\ftpmib.dll\par [2010.07.04 13:57:26 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\ftlx041e.dll\par [2010.07.04 13:57:25 | 000,043,520 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\EXCH_fcachdll.dll\par [2010.07.04 13:57:25 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\flattemp.exe\par [2010.07.04 13:57:25 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\exstrace.dll\par [2010.07.04 13:57:25 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\f3ahvoas.dll\par [2010.07.04 13:57:24 | 000,108,032 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\evntagnt.dll\par [2010.07.04 13:57:24 | 000,094,208 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\evntwin.exe\par [2010.07.04 13:57:24 | 000,057,856 | ---- | C] (SEIKO EPSON CORP.) -- C:\\WINDOWS\\System32\\dllcache\\esuimgd.dll\par [2010.07.04 13:57:24 | 000,045,568 | ---- | C] (SEIKO EPSON CORP.) -- C:\\WINDOWS\\System32\\dllcache\\esunid.dll\par [2010.07.04 13:57:24 | 000,031,744 | ---- | C] (SEIKO EPSON CORP.) -- C:\\WINDOWS\\System32\\dllcache\\esucmd.dll\par [2010.07.04 13:57:24 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\evntcmd.exe\par [2010.07.04 13:57:24 | 000,025,856 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\et4000.sys\par [2010.07.04 13:57:20 | 000,078,848 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\dayi.ime\par [2010.07.04 13:57:19 | 000,042,496 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\davcdata.exe\par [2010.07.04 13:57:18 | 000,057,399 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\cplexe.exe\par [2010.07.04 13:57:18 | 000,056,832 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\convlog.exe\par [2010.07.04 13:57:18 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\controt.dll\par [2010.07.04 13:57:18 | 000,020,480 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\counters.dll\par [2010.07.04 13:57:18 | 000,019,968 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\cprofile.exe\par [2010.07.04 13:57:17 | 000,480,256 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\cintsetp.exe\par [2010.07.04 13:57:17 | 000,198,656 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\cintime.dll\par [2010.07.04 13:57:17 | 000,024,064 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\compfilt.dll\par [2010.07.04 13:57:17 | 000,021,504 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\cintlgnt.ime\par [2010.07.04 13:57:16 | 001,677,824 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\chsbrkr.dll\par [2010.07.04 13:57:16 | 000,838,144 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\chtbrkr.dll\par [2010.07.04 13:57:16 | 000,097,792 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\chtmbx.dll\par [2010.07.04 13:57:16 | 000,056,320 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\chtskdic.dll\par [2010.07.04 13:57:15 | 000,078,336 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\chajei.ime\par [2010.07.04 13:57:15 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\chgport.exe\par [2010.07.04 13:57:15 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\chgusr.exe\par [2010.07.04 13:57:15 | 000,013,824 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\chglogon.exe\par [2010.07.04 13:57:15 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\change.exe\par [2010.07.04 13:57:14 | 000,218,112 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\c_g18030.dll\par [2010.07.04 13:57:14 | 000,054,528 | ---- | C] (Philips Semiconductors GmbH) -- C:\\WINDOWS\\System32\\dllcache\\cap7146.sys\par [2010.07.04 13:57:14 | 000,010,752 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\c_iscii.dll\par [2010.07.04 13:57:14 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\c_is2022.dll\par [2010.07.04 13:57:09 | 000,045,568 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\browscap.dll\par [2010.07.04 13:57:08 | 000,374,784 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\asp51.dll\par [2010.07.04 13:57:08 | 000,029,184 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\asptxn.dll\par [2010.07.04 13:57:08 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\aspperf.dll\par [2010.07.04 13:57:08 | 000,009,216 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\authfilt.dll\par [2010.07.04 13:57:07 | 000,334,848 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\aqueue.dll\par [2010.07.04 13:57:07 | 000,110,080 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\appconf.dll\par [2010.07.04 13:57:07 | 000,046,592 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\EXCH_aqadmin.dll\par [2010.07.04 13:57:07 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\agt0804.dll\par [2010.07.04 13:57:07 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\agt0412.dll\par [2010.07.04 13:57:06 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\agt0411.dll\par [2010.07.04 13:57:06 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\agt040d.dll\par [2010.07.04 13:57:06 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\agt0404.dll\par [2010.07.04 13:57:06 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\agt0401.dll\par [2010.07.04 13:57:06 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\EXCH_adsiisex.dll\par [2010.07.04 13:57:05 | 000,050,176 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\adrot.dll\par [2010.07.04 13:57:05 | 000,029,696 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\admexs.dll\par [2010.07.04 13:57:05 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\admxprox.dll\par [2010.07.04 13:57:03 | 000,032,827 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\tcptest.exe\par [2010.07.04 13:57:03 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\tcptsat.dll\par [2010.07.04 13:57:03 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\wamregps.dll\par [2010.07.04 13:57:02 | 002,134,528 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\smtpsnap.dll\par [2010.07.04 13:57:02 | 000,189,952 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\smtpadm.dll\par [2010.07.04 13:57:02 | 000,020,536 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\shtml.dll\par [2010.07.04 13:57:02 | 000,016,437 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\shtml.exe\par [2010.07.04 13:57:02 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\staxmem.dll\par [2010.07.04 13:56:59 | 000,078,336 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\logui.ocx\par [2010.07.04 13:56:58 | 000,847,360 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\inetmgr.dll\par [2010.07.04 13:56:58 | 000,172,032 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\iisui.dll\par [2010.07.04 13:56:58 | 000,133,632 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\iisrtl.dll\par [2010.07.04 13:56:58 | 000,068,608 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\isatq.dll\par [2010.07.04 13:56:58 | 000,019,968 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\inetsloc.dll\par [2010.07.04 13:56:58 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\infoadmn.dll\par [2010.07.04 13:56:58 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\inetmgr.exe\par [2010.07.04 13:56:57 | 000,598,071 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\fpmmc.dll\par [2010.07.04 13:56:57 | 000,217,088 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\fpmmcsat.dll\par [2010.07.04 13:56:57 | 000,068,608 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\iisext51.dll\par [2010.07.04 13:56:57 | 000,064,512 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\iismap.dll\par [2010.07.04 13:56:57 | 000,030,720 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\iisrstas.exe\par [2010.07.04 13:56:57 | 000,020,541 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\fpexedll.dll\par [2010.07.04 13:56:57 | 000,020,538 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\fpremadm.exe\par [2010.07.04 13:56:57 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\iisreset.exe\par [2010.07.04 13:56:57 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\ftpsapi2.dll\par [2010.07.04 13:56:57 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\iisrstap.dll\par [2010.07.04 13:56:56 | 000,876,653 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\fp4awel.dll\par [2010.07.04 13:56:56 | 000,188,494 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\fpcount.exe\par [2010.07.04 13:56:56 | 000,184,435 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\fp4amsft.dll\par [2010.07.04 13:56:56 | 000,147,513 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\fp4apws.dll\par [2010.07.04 13:56:56 | 000,109,328 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\fp98swin.exe\par [2010.07.04 13:56:56 | 000,102,509 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\fp4atxt.dll\par [2010.07.04 13:56:56 | 000,082,035 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\fp4anscp.dll\par [2010.07.04 13:56:56 | 000,049,212 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\fp4awebs.dll\par [2010.07.04 13:56:56 | 000,049,210 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\fp4areg.dll\par [2010.07.04 13:56:56 | 000,041,020 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\fp4avnb.dll\par [2010.07.04 13:56:56 | 000,032,826 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\fp4avss.dll\par [2010.07.04 13:56:56 | 000,014,608 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\fp98sadm.exe\par [2010.07.04 13:56:55 | 000,282,624 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\certwiz.ocx\par [2010.07.04 13:56:55 | 000,188,480 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\cfgwiz.exe\par [2010.07.04 13:56:55 | 000,096,768 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\certmap.ocx\par [2010.07.04 13:56:55 | 000,077,312 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\cnfgprts.ocx\par [2010.07.04 13:56:55 | 000,047,104 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\coadmin.dll\par [2010.07.04 13:56:55 | 000,016,439 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\author.exe\par [2010.07.04 13:56:54 | 000,290,816 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\adsiis51.dll\par [2010.07.04 13:56:54 | 000,043,520 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\admwprox.dll\par [2010.07.04 13:56:54 | 000,020,540 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\author.dll\par [2010.07.04 13:56:54 | 000,016,439 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\admin.exe\par [2010.07.04 13:56:53 | 000,020,540 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\admin.dll\par [2010.07.04 13:49:00 | 000,024,661 | ---- | C] (Perle Systems Ltd.) -- C:\\WINDOWS\\System32\\spxcoins.dll\par [2010.07.04 13:49:00 | 000,024,661 | ---- | C] (Perle Systems Ltd.) -- C:\\WINDOWS\\System32\\dllcache\\spxcoins.dll\par [2010.07.04 13:49:00 | 000,013,824 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\irclass.dll\par [2010.07.04 13:49:00 | 000,013,824 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\irclass.dll\par [2010.07.04 13:31:09 | 000,000,000 | ---D | C] -- C:\\WINDOWS\\System32\\LogFiles\par [2010.07.04 10:14:18 | 000,000,000 | ---D | C] -- C:\\WINDOWS\\System32\\appmgmt\par [2010.07.03 23:01:40 | 000,000,000 | ---D | C] -- C:\\Dokumente und Einstellungen\\Robert\\Anwendungsdaten\\Utherverse\par [2010.07.03 22:58:13 | 000,000,000 | ---D | C] -- C:\\Dokumente und Einstellungen\\Robert\\Startmen\'b3\par [2010.07.03 22:50:40 | 000,000,000 | ---D | C] -- C:\\Programme\\Utherverse Digital Inc\par [2010.07.01 15:48:59 | 000,000,000 | ---D | C] -- C:\\WINDOWS\\System32\\NtmsData\par [2010.07.01 15:26:58 | 000,000,000 | ---D | C] -- C:\\Dokumente und Einstellungen\\Robert\\Anwendungsdaten\\gtk-2.0\par [2010.06.30 21:28:23 | 000,000,000 | ---D | C] -- C:\\Dokumente und Einstellungen\\Robert\\Lokale Einstellungen\\Anwendungsdaten\\Adobe\par [2010.06.30 21:27:58 | 000,000,000 | ---D | C] -- C:\\Dokumente und Einstellungen\\All Users\\Anwendungsdaten\\Adobe\par [2010.06.30 21:27:50 | 000,000,000 | ---D | C] -- C:\\Programme\\Gemeinsame Dateien\\Adobe\par [2010.06.30 21:27:50 | 000,000,000 | ---D | C] -- C:\\Programme\\Adobe\par [2010.06.30 00:18:14 | 000,000,000 | ---D | C] -- C:\\WINDOWS\\System32\\KB905474\par [2010.06.29 16:54:59 | 000,000,000 | ---D | C] -- C:\\e711cd94357417b49e56e2f1ac14a4c8\par [2010.06.29 16:48:18 | 000,293,376 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\browserchoice.exe\par [2010.06.29 16:44:10 | 000,000,000 | ---D | C] -- C:\\WINDOWS\\System32\\PreInstall\par [2010.06.29 16:44:09 | 000,026,488 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\spupdsvc.exe\par [2010.06.29 16:44:09 | 000,018,808 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\spmsg.dll\par [2010.06.29 16:44:08 | 000,000,000 | -H-D | C] -- C:\\WINDOWS\\$hf_mig$\par [2010.06.29 10:59:07 | 000,000,000 | ---D | C] -- C:\\WINDOWS\\System32\\SoftwareDistribution\par [2010.06.27 17:55:28 | 000,000,000 | ---D | C] -- C:\\Dokumente und Einstellungen\\Robert\\Lokale Einstellungen\\Anwendungsdaten\\Identities\par [2010.06.27 11:21:04 | 000,000,000 | ---D | C] -- C:\\Dokumente und Einstellungen\\Robert\\Eigene Dateien\\ICQ\par [2010.06.25 17:44:49 | 000,000,000 | ---D | C] -- C:\\Dokumente und Einstellungen\\Robert\\.thumbnails\par [2010.06.25 17:44:35 | 000,000,000 | ---D | C] -- C:\\Dokumente und Einstellungen\\Robert\\.gimp-2.6\par [2010.06.25 17:44:34 | 000,000,000 | ---D | C] -- C:\\Dokumente und Einstellungen\\Robert\\Eigene Dateien\\gegl-0.0\par [2010.06.25 15:07:11 | 000,000,000 | ---D | C] -- C:\\WINDOWS\\Sun\par [2010.06.25 15:07:07 | 000,000,000 | ---D | C] -- C:\\Dokumente und Einstellungen\\All Users\\Anwendungsdaten\\Sun\par [2010.06.25 15:07:06 | 000,000,000 | ---D | C] -- C:\\Programme\\Gemeinsame Dateien\\Java\par [2010.06.25 15:06:53 | 000,411,368 | ---- | C] (Sun Microsystems, Inc.) -- C:\\WINDOWS\\System32\\deployJava1.dll\par [2010.06.25 15:06:53 | 000,153,376 | ---- | C] (Sun Microsystems, Inc.) -- C:\\WINDOWS\\System32\\javaws.exe\par [2010.06.25 15:06:53 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\\WINDOWS\\System32\\javaw.exe\par [2010.06.25 15:06:53 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\\WINDOWS\\System32\\java.exe\par [2010.06.25 15:06:53 | 000,073,728 | ---- | C] (Sun Microsystems, Inc.) -- C:\\WINDOWS\\System32\\javacpl.cpl\par [2010.06.25 15:06:46 | 000,000,000 | ---D | C] -- C:\\Programme\\Java\par [2010.06.25 15:06:11 | 000,000,000 | ---D | C] -- C:\\Dokumente und Einstellungen\\Robert\\Anwendungsdaten\\Sun\par [2010.06.25 15:02:33 | 000,000,000 | ---D | C] -- C:\\Programme\\ICQ6Toolbar\par [2010.06.25 15:02:30 | 000,000,000 | ---D | C] -- C:\\Dokumente und Einstellungen\\All Users\\Anwendungsdaten\\ICQ\par [2010.06.25 15:02:14 | 000,000,000 | ---D | C] -- C:\\Dokumente und Einstellungen\\Robert\\Anwendungsdaten\\ICQ\par [2010.06.25 15:02:14 | 000,000,000 | ---D | C] -- C:\\Dokumente und Einstellungen\\Robert\\Lokale Einstellungen\\Anwendungsdaten\\AOL\par [2010.06.25 15:02:09 | 000,000,000 | ---D | C] -- C:\\Programme\\ICQ7.2\par [2010.06.25 15:00:06 | 000,000,000 | ---D | C] -- C:\\WINDOWS\\Minidump\par [2010.06.25 14:37:48 | 000,000,000 | R-SD | C] -- C:\\WINDOWS\\Fonts\par [2010.06.25 14:37:48 | 000,000,000 | RHSD | C] -- C:\\WINDOWS\\System32\\dllcache\par [2010.06.25 14:37:48 | 000,000,000 | R--D | C] -- C:\\WINDOWS\\Web\par [2010.06.25 14:37:48 | 000,000,000 | -H-D | C] -- C:\\WINDOWS\\inf\par [2010.06.25 14:37:48 | 000,000,000 | ---D | C] -- C:\\WINDOWS\\WinSxS\par [2010.06.25 14:37:48 | 000,000,000 | ---D | C] -- C:\\WINDOWS\\System32\\wins\par [2010.06.25 14:37:48 | 000,000,000 | ---D | C] -- C:\\WINDOWS\par [2010.06.25 14:37:48 | 000,000,000 | ---D | C] -- C:\\WINDOWS\\System32\\wbem\par [2010.06.25 14:37:48 | 000,000,000 | ---D | C] -- C:\\WINDOWS\\System32\\usmt\par [2010.06.25 14:37:48 | 000,000,000 | ---D | C] -- C:\\WINDOWS\\twain_32\par [2010.06.25 14:37:48 | 000,000,000 | ---D | C] -- C:\\WINDOWS\\Temp\par [2010.06.25 14:37:48 | 000,000,000 | ---D | C] -- C:\\WINDOWS\\system32\par [2010.06.25 14:37:48 | 000,000,000 | ---D | C] -- C:\\WINDOWS\\system\par [2010.06.25 14:37:48 | 000,000,000 | ---D | C] -- C:\\WINDOWS\\System32\\spool\par [2010.06.25 14:37:48 | 000,000,000 | ---D | C] -- C:\\WINDOWS\\System32\\ShellExt\par [2010.06.25 14:37:48 | 000,000,000 | ---D | C] -- C:\\WINDOWS\\System32\\Setup\par [2010.06.25 14:37:48 | 000,000,000 | ---D | C] -- C:\\WINDOWS\\security\par [2010.06.25 14:37:48 | 000,000,000 | ---D | C] -- C:\\WINDOWS\\Resources\par [2010.06.25 14:37:48 | 000,000,000 | ---D | C] -- C:\\WINDOWS\\repair\par [2010.06.25 14:37:48 | 000,000,000 | ---D | C] -- C:\\WINDOWS\\System32\\ras\par [2010.06.25 14:37:48 | 000,000,000 | ---D | C] -- C:\\WINDOWS\\Provisioning\par [2010.06.25 14:37:48 | 000,000,000 | ---D | C] -- C:\\WINDOWS\\PeerNet\par [2010.06.25 14:37:48 | 000,000,000 | ---D | C] -- C:\\WINDOWS\\pchealth\par [2010.06.25 14:37:48 | 000,000,000 | ---D | C] -- C:\\WINDOWS\\System32\\oobe\par [2010.06.25 14:37:48 | 000,000,000 | ---D | C] -- C:\\WINDOWS\\System32\\npp\par [2010.06.25 14:37:48 | 000,000,000 | ---D | C] -- C:\\WINDOWS\\Network Diagnostic\par [2010.06.25 14:37:48 | 000,000,000 | ---D | C] -- C:\\WINDOWS\\System32\\mui\par [2010.06.25 14:37:48 | 000,000,000 | ---D | C] -- C:\\WINDOWS\\mui\par [2010.06.25 14:37:48 | 000,000,000 | ---D | C] -- C:\\WINDOWS\\msapps\par [2010.06.25 14:37:48 | 000,000,000 | ---D | C] -- C:\\WINDOWS\\msagent\par [2010.06.25 14:37:48 | 000,000,000 | ---D | C] -- C:\\WINDOWS\\Media\par [2010.06.25 14:37:48 | 000,000,000 | ---D | C] -- C:\\WINDOWS\\L2Schemas\par [2010.06.25 14:37:48 | 000,000,000 | ---D | C] -- C:\\WINDOWS\\java\par [2010.06.25 14:37:48 | 000,000,000 | ---D | C] -- C:\\WINDOWS\\System32\\inetsrv\par [2010.06.25 14:37:48 | 000,000,000 | ---D | C] -- C:\\WINDOWS\\System32\\IME\par [2010.06.25 14:37:48 | 000,000,000 | ---D | C] -- C:\\WINDOWS\\ime\par [2010.06.25 14:37:48 | 000,000,000 | ---D | C] -- C:\\WINDOWS\\System32\\icsxml\par [2010.06.25 14:37:48 | 000,000,000 | ---D | C] -- C:\\WINDOWS\\System32\\ias\par [2010.06.25 14:37:48 | 000,000,000 | ---D | C] -- C:\\WINDOWS\\Help\par [2010.06.25 14:37:48 | 000,000,000 | ---D | C] -- C:\\WINDOWS\\System32\\export\par [2010.06.25 14:37:48 | 000,000,000 | ---D | C] -- C:\\WINDOWS\\System32\\drivers\\etc\par [2010.06.25 14:37:48 | 000,000,000 | ---D | C] -- C:\\WINDOWS\\ehome\par [2010.06.25 14:37:48 | 000,000,000 | ---D | C] -- C:\\WINDOWS\\System32\\drivers\par [2010.06.25 14:37:48 | 000,000,000 | ---D | C] -- C:\\WINDOWS\\Driver Cache\par [2010.06.25 14:37:48 | 000,000,000 | ---D | C] -- C:\\WINDOWS\\System32\\drivers\\disdn\par [2010.06.25 14:37:48 | 000,000,000 | ---D | C] -- C:\\WINDOWS\\System32\\dhcp\par [2010.06.25 14:37:48 | 000,000,000 | ---D | C] -- C:\\WINDOWS\\System32\\de-de\par [2010.06.25 14:37:48 | 000,000,000 | ---D | C] -- C:\\WINDOWS\\Debug\par [2010.06.25 14:37:48 | 000,000,000 | ---D | C] -- C:\\WINDOWS\\System32\\de\par [2010.06.25 14:37:48 | 000,000,000 | ---D | C] -- C:\\WINDOWS\\Cursors\par [2010.06.25 14:37:48 | 000,000,000 | ---D | C] -- C:\\WINDOWS\\Connection Wizard\par [2010.06.25 14:37:48 | 000,000,000 | ---D | C] -- C:\\WINDOWS\\System32\\config\par [2010.06.25 14:37:48 | 000,000,000 | ---D | C] -- C:\\WINDOWS\\Config\par [2010.06.25 14:37:48 | 000,000,000 | ---D | C] -- C:\\WINDOWS\\AppPatch\par [2010.06.25 14:37:48 | 000,000,000 | ---D | C] -- C:\\WINDOWS\\addins\par [2010.06.25 14:37:48 | 000,000,000 | ---D | C] -- C:\\WINDOWS\\System32\\3com_dmi\par [2010.06.25 14:37:48 | 000,000,000 | ---D | C] -- C:\\WINDOWS\\System32\\3076\par [2010.06.25 14:37:48 | 000,000,000 | ---D | C] -- C:\\WINDOWS\\System32\\2052\par [2010.06.25 14:37:48 | 000,000,000 | ---D | C] -- C:\\WINDOWS\\System32\\1054\par [2010.06.25 14:37:48 | 000,000,000 | ---D | C] -- C:\\WINDOWS\\System32\\1042\par [2010.06.25 14:37:48 | 000,000,000 | ---D | C] -- C:\\WINDOWS\\System32\\1041\par [2010.06.25 14:37:48 | 000,000,000 | ---D | C] -- C:\\WINDOWS\\System32\\1037\par [2010.06.25 14:37:48 | 000,000,000 | ---D | C] -- C:\\WINDOWS\\System32\\1033\par [2010.06.25 14:37:48 | 000,000,000 | ---D | C] -- C:\\WINDOWS\\System32\\1031\par [2010.06.25 14:37:48 | 000,000,000 | ---D | C] -- C:\\WINDOWS\\System32\\1028\par [2010.06.25 14:37:48 | 000,000,000 | ---D | C] -- C:\\WINDOWS\\System32\\1025\par [2010.06.25 14:37:36 | 000,000,000 | ---D | C] -- C:\\Dokumente und Einstellungen\\Robert\\Anwendungsdaten\\Macromedia\par [2010.06.25 14:37:36 | 000,000,000 | ---D | C] -- C:\\Dokumente und Einstellungen\\Robert\\Anwendungsdaten\\Adobe\par [2010.06.25 14:11:00 | 016,871,432 | ---- | C] ( ) -- C:\\Dokumente und Einstellungen\\Robert\\Eigene Dateien\\gimp-2.6.7-i686-setup.exe\par [2010.06.25 14:10:55 | 011,008,060 | ---- | C] (DVDVideoSoft Limited. ) -- C:\\Dokumente und Einstellungen\\Robert\\Eigene Dateien\\FreeYouTubeToMp3Converter.exe\par [2010.06.25 14:10:45 | 101,418,769 | ---- | C] (ATARI, Inc.) -- C:\\Dokumente und Einstellungen\\Robert\\Eigene Dateien\\TACOPS_3.4.EXE\par [2010.06.25 13:44:44 | 000,000,000 | -HSD | C] -- C:\\WINDOWS\\Installer\par [2010.06.25 13:44:44 | 000,000,000 | ---D | C] -- C:\\Programme\\Gemeinsame Dateien\\ODBC\par [2010.06.25 13:44:43 | 000,077,824 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\spcommon.dll\par [2010.06.25 13:44:43 | 000,065,536 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\spcplui.dll\par [2010.06.25 13:44:42 | 000,774,144 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\spttseng.dll\par [2010.06.25 13:44:41 | 000,741,376 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\sapi.dll\par [2010.06.25 13:44:41 | 000,159,744 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\sapi.cpl\par [2010.06.25 13:44:41 | 000,036,864 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\sapisvr.exe\par [2010.06.25 13:44:41 | 000,000,000 | R--D | C] -- C:\\Programme\par [2010.06.25 13:44:41 | 000,000,000 | ---D | C] -- C:\\Programme\\Gemeinsame Dateien\\SpeechEngines\par [2010.06.25 13:44:41 | 000,000,000 | ---D | C] -- C:\\Programme\\Gemeinsame Dateien\\Microsoft Shared\par [2010.06.25 13:44:41 | 000,000,000 | ---D | C] -- C:\\Programme\\Gemeinsame Dateien\par [2010.06.25 13:44:39 | 000,022,016 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\agt0408.dll\par [2010.06.25 13:44:39 | 000,019,968 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\agt040e.dll\par [2010.06.25 13:44:39 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\agt041f.dll\par [2010.06.25 13:44:39 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\agt0419.dll\par [2010.06.25 13:44:39 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\agt0415.dll\par [2010.06.25 13:44:39 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\agt0405.dll\par [2010.06.25 13:44:31 | 000,176,157 | ---- | C] (Digi International, Inc.) -- C:\\WINDOWS\\System32\\dllcache\\dgrpsetu.dll\par [2010.06.25 13:44:31 | 000,176,157 | ---- | C] (Digi International, Inc.) -- C:\\WINDOWS\\System32\\dgrpsetu.dll\par [2010.06.25 13:44:31 | 000,103,936 | ---- | C] (Equinox Systems Inc.) -- C:\\WINDOWS\\System32\\EqnClass.Dll\par [2010.06.25 13:44:31 | 000,103,936 | ---- | C] (Equinox Systems Inc.) -- C:\\WINDOWS\\System32\\dllcache\\eqnclass.dll\par [2010.06.25 13:44:31 | 000,013,600 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System\\WFWNET.DRV\par [2010.06.25 13:44:31 | 000,004,048 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System\\TIMER.DRV\par [2010.06.25 13:44:31 | 000,003,360 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System\\SYSTEM.DRV\par [2010.06.25 13:44:31 | 000,002,176 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System\\VGA.DRV\par [2010.06.25 13:44:30 | 000,070,368 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System\\AVICAP.DLL\par [2010.06.25 13:44:30 | 000,002,032 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System\\MOUSE.DRV\par [2010.06.25 13:44:30 | 000,002,000 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System\\KEYBOARD.DRV\par [2010.06.25 13:44:30 | 000,001,744 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System\\SOUND.DRV\par [2010.06.25 13:44:29 | 000,146,944 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System\\WINSPOOL.DRV\par [2010.06.25 13:44:29 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\irenum.sys\par [2010.06.25 13:44:27 | 000,076,288 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\storprop.dll\par [2010.06.25 13:44:20 | 000,000,000 | R--D | C] -- C:\\Dokumente und Einstellungen\\All Users\\Startmen\'fc\par [2010.06.25 13:44:20 | 000,000,000 | R--D | C] -- C:\\Dokumente und Einstellungen\\All Users\\Dokumente\par [2010.06.25 13:44:20 | 000,000,000 | -H-D | C] -- C:\\Dokumente und Einstellungen\\All Users\\Vorlagen\par [2010.06.25 13:44:20 | 000,000,000 | ---D | C] -- C:\\Dokumente und Einstellungen\\All Users\\Favoriten\par [2010.06.25 13:44:20 | 000,000,000 | ---D | C] -- C:\\Dokumente und Einstellungen\\All Users\\Desktop\par [2010.06.25 13:42:32 | 000,000,000 | ---D | C] -- C:\\WINDOWS\\System32\\CatRoot2\par [2010.06.25 13:42:32 | 000,000,000 | ---D | C] -- C:\\WINDOWS\\System32\\CatRoot\par [2010.06.25 13:42:26 | 000,000,000 | --SD | C] -- C:\\Dokumente und Einstellungen\\All Users\\Anwendungsdaten\\Microsoft\par [2010.06.25 13:42:26 | 000,000,000 | RH-D | C] -- C:\\Dokumente und Einstellungen\\All Users\\Anwendungsdaten\par [2010.06.25 13:42:08 | 000,000,000 | ---D | C] -- C:\\Dokumente und Einstellungen\par [2010.06.25 13:42:07 | 000,000,000 | -HSD | C] -- C:\\System Volume Information\par [2010.06.25 13:36:43 | 000,000,000 | ---D | C] -- C:\\Dokumente und Einstellungen\\Robert\\Anwendungsdaten\\Avira\par [2010.06.25 13:20:07 | 000,000,000 | ---D | C] -- C:\\Dokumente und Einstellungen\\Robert\\Eigene Dateien\\pdf\par [2010.06.25 13:19:29 | 000,000,000 | -HSD | C] -- C:\\RECYCLER\par [2010.06.25 13:18:49 | 000,000,000 | ---D | C] -- C:\\Programme\\GIMP-2.0\par [2010.06.25 13:15:43 | 000,028,520 | ---- | C] (Avira GmbH) -- C:\\WINDOWS\\System32\\drivers\\ssmdrv.sys\par [2010.06.25 13:15:42 | 000,124,784 | ---- | C] (Avira GmbH) -- C:\\WINDOWS\\System32\\drivers\\avipbb.sys\par [2010.06.25 13:15:42 | 000,060,936 | ---- | C] (Avira GmbH) -- C:\\WINDOWS\\System32\\drivers\\avgntflt.sys\par [2010.06.25 13:15:42 | 000,045,416 | ---- | C] (Avira GmbH) -- C:\\WINDOWS\\System32\\drivers\\avgntdd.sys\par [2010.06.25 13:15:42 | 000,022,360 | ---- | C] (Avira GmbH) -- C:\\WINDOWS\\System32\\drivers\\avgntmgr.sys\par [2010.06.25 13:15:42 | 000,000,000 | ---D | C] -- C:\\Programme\\Avira\par [2010.06.25 13:15:42 | 000,000,000 | ---D | C] -- C:\\Dokumente und Einstellungen\\All Users\\Anwendungsdaten\\Avira\par [2010.06.25 13:12:55 | 000,000,000 | ---D | C] -- C:\\Dokumente und Einstellungen\\Robert\\Eigene Dateien\\Downloads\par [2010.06.25 13:10:16 | 000,000,000 | ---D | C] -- C:\\Dokumente und Einstellungen\\Robert\\Lokale Einstellungen\\Anwendungsdaten\\Mozilla\par [2010.06.25 13:10:16 | 000,000,000 | ---D | C] -- C:\\Dokumente und Einstellungen\\Robert\\Anwendungsdaten\\Mozilla\par [2010.06.25 13:10:08 | 000,000,000 | ---D | C] -- C:\\Programme\\Mozilla Firefox\par [2010.06.25 13:08:05 | 000,000,000 | ---D | C] -- C:\\Dokumente und Einstellungen\\Robert\\Eigene Dateien\\DVDVideoSoft\par [2010.06.25 13:08:01 | 000,000,000 | ---D | C] -- C:\\Programme\\Gemeinsame Dateien\\DVDVideoSoft\par [2010.06.25 13:08:01 | 000,000,000 | ---D | C] -- C:\\Programme\\DVDVideoSoft\par [2010.06.25 13:03:32 | 000,000,000 | ---D | C] -- C:\\Programme\\Infogrames\par [2010.06.25 13:03:21 | 000,328,704 | ---- | C] (InstallShield Software Corporation ) -- C:\\WINDOWS\\IsUn0407.exe\par [2010.06.25 13:02:25 | 000,000,000 | ---D | C] -- C:\\WINDOWS\\System32\\Lang\par [2010.06.25 13:01:10 | 000,000,000 | ---D | C] -- C:\\WINDOWS\\System32\\ReinstallBackups\par [2010.06.25 13:01:03 | 000,069,632 | ---- | C] (Realtek Semiconductor Corp.) -- C:\\WINDOWS\\System32\\ChCfg.exe\par [2010.06.25 13:00:59 | 000,000,000 | ---D | C] -- C:\\WINDOWS\\System32\\RTCOM\par [2010.06.25 13:00:54 | 009,715,200 | ---- | C] (Realtek Semiconductor Corp.) -- C:\\WINDOWS\\RTLCPL.exe\par [2010.06.25 13:00:54 | 001,826,816 | ---- | C] (Realtek Semiconductor Corp.) -- C:\\WINDOWS\\SkyTel.exe\par [2010.06.25 13:00:54 | 001,196,032 | ---- | C] (Realtek Semiconductor Corp.) -- C:\\WINDOWS\\RtlUpd.exe\par [2010.06.25 13:00:54 | 000,266,240 | ---- | C] (Realtek Semiconductor Corp.) -- C:\\WINDOWS\\System32\\RTSndMgr.cpl\par [2010.06.25 13:00:54 | 000,077,824 | ---- | C] (Realtek Semiconductor Corp.) -- C:\\WINDOWS\\SoundMan.exe\par [2010.06.25 13:00:53 | 004,755,968 | ---- | C] (Realtek Semiconductor Corp.) -- C:\\WINDOWS\\System32\\drivers\\RtkHDAud.sys\par [2010.06.25 13:00:53 | 002,808,832 | ---- | C] (RealTek Semicoductor Corp.) -- C:\\WINDOWS\\alcwzrd.exe\par [2010.06.25 13:00:53 | 002,165,760 | ---- | C] (Realtek Semiconductor Corp.) -- C:\\WINDOWS\\MicCal.exe\par [2010.06.25 13:00:53 | 000,278,528 | ---- | C] (Realtek Semiconductor Corp.) -- C:\\WINDOWS\\System32\\ALSndMgr.cpl\par [2010.06.25 13:00:53 | 000,057,344 | ---- | C] (Realtek Semiconductor Corp.) -- C:\\WINDOWS\\Alcmtr.exe\par [2010.06.25 13:00:51 | 000,528,384 | ---- | C] (Realtek Semiconductor Corp.) -- C:\\WINDOWS\\RtlExUpd.dll\par [2010.06.25 13:00:51 | 000,319,488 | ---- | C] (Realtek Semiconductor Corp.) -- C:\\WINDOWS\\HideWin.exe\par [2010.06.25 13:00:10 | 000,129,536 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\ksproxy.ax\par [2010.06.25 13:00:10 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\ksuser.dll\par [2010.06.25 12:59:53 | 000,105,856 | ---- | C] (Realtek Semiconductor Corporation ) -- C:\\WINDOWS\\System32\\drivers\\Rtenicxp.sys\par [2010.06.25 12:59:52 | 000,000,000 | -H-D | C] -- C:\\Programme\\InstallShield Installation Information\par [2010.06.25 12:59:52 | 000,000,000 | ---D | C] -- C:\\Programme\\Realtek\par [2010.06.25 12:59:52 | 000,000,000 | ---D | C] -- C:\\WINDOWS\\OPTIONS\par [2010.06.25 12:59:50 | 000,000,000 | ---D | C] -- C:\\Dokumente und Einstellungen\\Robert\\Anwendungsdaten\\InstallShield\par [2010.06.25 12:59:38 | 000,442,368 | ---- | C] (NVIDIA Corporation) -- C:\\WINDOWS\\System32\\nvudisp.exe\par [2010.06.25 12:59:38 | 000,000,000 | ---D | C] -- C:\\WINDOWS\\nview\par [2010.06.25 12:59:33 | 000,000,000 | ---D | C] -- C:\\Programme\\Gemeinsame Dateien\\InstallShield\par [2010.06.25 12:59:03 | 000,356,352 | ---- | C] (NVIDIA Corporation) -- C:\\WINDOWS\\System32\\nvusmu.exe\par [2010.06.25 12:59:02 | 000,442,368 | ---- | C] (NVIDIA Corporation) -- C:\\WINDOWS\\System32\\nvusmb.exe\par [2010.06.25 12:58:59 | 000,442,368 | ---- | C] (NVIDIA Corporation) -- C:\\WINDOWS\\System32\\NVUNINST.EXE\par [2010.06.25 12:58:31 | 000,013,696 | R--- | C] (BIOSTAR Group) -- C:\\WINDOWS\\System32\\drivers\\BIOS.sys\par [2010.06.25 12:57:03 | 000,000,000 | ---D | C] -- C:\\Dokumente und Einstellungen\\Robert\\Anwendungsdaten\\Identities\par [2010.06.25 12:57:02 | 000,000,000 | -H-D | C] -- C:\\Programme\\Uninstall Information\par [2010.06.25 12:56:59 | 000,000,000 | R--D | C] -- C:\\Dokumente und Einstellungen\\Robert\\Eigene Dateien\\Eigene Musik\par [2010.06.25 12:56:59 | 000,000,000 | R--D | C] -- C:\\Dokumente und Einstellungen\\Robert\\Eigene Dateien\par [2010.06.25 12:56:59 | 000,000,000 | R--D | C] -- C:\\Dokumente und Einstellungen\\Robert\\Eigene Dateien\\Eigene Bilder\par [2010.06.25 12:56:44 | 000,000,000 | --SD | C] -- C:\\Dokumente und Einstellungen\\Robert\\Anwendungsdaten\\Microsoft\par [2010.06.25 12:56:44 | 000,000,000 | --SD | C] -- C:\\Dokumente und Einstellungen\\Robert\\Cookies\par [2010.06.25 12:56:44 | 000,000,000 | RH-D | C] -- C:\\Dokumente und Einstellungen\\Robert\\SendTo\par [2010.06.25 12:56:44 | 000,000,000 | RH-D | C] -- C:\\Dokumente und Einstellungen\\Robert\\Recent\par [2010.06.25 12:56:44 | 000,000,000 | RH-D | C] -- C:\\Dokumente und Einstellungen\\Robert\\Anwendungsdaten\par [2010.06.25 12:56:44 | 000,000,000 | R--D | C] -- C:\\Dokumente und Einstellungen\\Robert\\Startmen\'fc\par [2010.06.25 12:56:44 | 000,000,000 | R--D | C] -- C:\\Dokumente und Einstellungen\\Robert\\Favoriten\par [2010.06.25 12:56:44 | 000,000,000 | -H-D | C] -- C:\\Dokumente und Einstellungen\\Robert\\Vorlagen\par [2010.06.25 12:56:44 | 000,000,000 | -H-D | C] -- C:\\Dokumente und Einstellungen\\Robert\\Netzwerkumgebung\par [2010.06.25 12:56:44 | 000,000,000 | -H-D | C] -- C:\\Dokumente und Einstellungen\\Robert\\Lokale Einstellungen\par [2010.06.25 12:56:44 | 000,000,000 | -H-D | C] -- C:\\Dokumente und Einstellungen\\Robert\\Druckumgebung\par [2010.06.25 12:56:44 | 000,000,000 | ---D | C] -- C:\\Dokumente und Einstellungen\\Robert\\Lokale Einstellungen\\Anwendungsdaten\\Microsoft\par [2010.06.25 12:56:44 | 000,000,000 | ---D | C] -- C:\\Dokumente und Einstellungen\\Robert\\Desktop\par [2010.06.25 12:55:59 | 000,000,000 | ---D | C] -- C:\\WINDOWS\\SoftwareDistribution\par [2010.06.25 12:55:57 | 000,000,000 | --SD | C] -- C:\\WINDOWS\\System32\\Microsoft\par [2010.06.25 12:55:57 | 000,000,000 | ---D | C] -- C:\\Dokumente und Einstellungen\\LocalService\\Lokale Einstellungen\\Anwendungsdaten\\Microsoft\par [2010.06.25 12:55:56 | 000,000,000 | --SD | C] -- C:\\Dokumente und Einstellungen\\LocalService\\Anwendungsdaten\\Microsoft\par [2010.06.25 12:55:41 | 000,000,000 | --SD | C] -- C:\\Dokumente und Einstellungen\\NetworkService\\Anwendungsdaten\\Microsoft\par [2010.06.25 12:55:41 | 000,000,000 | ---D | C] -- C:\\Dokumente und Einstellungen\\NetworkService\\Lokale Einstellungen\\Anwendungsdaten\\Microsoft\par [2010.06.25 12:54:03 | 000,618,605 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\fp4autl.dll\par [2010.06.25 12:53:35 | 000,000,000 | ---D | C] -- C:\\WINDOWS\\System32\\xircom\par [2010.06.25 12:53:35 | 000,000,000 | ---D | C] -- C:\\Programme\\xerox\par [2010.06.25 12:53:35 | 000,000,000 | ---D | C] -- C:\\Programme\\microsoft frontpage\par [2010.06.25 12:53:02 | 000,112,128 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\mapi32.dll\par [2010.06.25 12:52:32 | 000,000,000 | -HSD | C] -- C:\\Dokumente und Einstellungen\\All Users\\DRM\par [2010.06.25 12:52:26 | 000,000,000 | --SD | C] -- C:\\WINDOWS\\Downloaded Program Files\par [2010.06.25 12:52:26 | 000,000,000 | R--D | C] -- C:\\WINDOWS\\Offline Web Pages\par [2010.06.25 12:52:19 | 000,000,000 | -H-D | C] -- C:\\Programme\\WindowsUpdate\par [2010.06.25 12:52:16 | 000,000,000 | ---D | C] -- C:\\Programme\\Online-Dienste\par [2010.06.25 12:52:04 | 000,000,000 | ---D | C] -- C:\\WINDOWS\\System32\\DirectX\par [2010.06.25 12:52:00 | 000,099,840 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\helphost.exe\par [2010.06.25 12:52:00 | 000,035,328 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\notiflag.exe\par [2010.06.25 12:52:00 | 000,021,504 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\brpinfo.dll\par [2010.06.25 12:52:00 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\atrace.dll\par [2010.06.25 12:52:00 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\atrace.dll\par [2010.06.25 12:52:00 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\hcappres.dll\par [2010.06.25 12:51:54 | 000,047,104 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\srdiag.exe\par [2010.06.25 12:51:53 | 000,070,144 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\acctres.dll\par [2010.06.25 12:51:53 | 000,070,144 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\acctres.dll\par [2010.06.25 12:51:53 | 000,040,448 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\msinfo32.exe\par [2010.06.25 12:51:53 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\wb32.exe\par [2010.06.25 12:51:53 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\nmevtmsg.dll\par [2010.06.25 12:51:53 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\nmevtmsg.dll\par [2010.06.25 12:51:53 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\cb32.exe\par [2010.06.25 12:51:52 | 000,000,000 | ---D | C] -- C:\\Programme\\Gemeinsame Dateien\\Dienste\par [2010.06.25 12:51:50 | 000,235,520 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\mssoap1.dll\par [2010.06.25 12:51:50 | 000,073,728 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\icwtutor.exe\par [2010.06.25 12:51:50 | 000,065,536 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\icwres.dll\par [2010.06.25 12:51:50 | 000,040,960 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\trialoc.dll\par [2010.06.25 12:51:50 | 000,025,088 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\wisc10.dll\par [2010.06.25 12:51:50 | 000,023,552 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\mssoapr.dll\par [2010.06.25 12:51:50 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\isignup.exe\par [2010.06.25 12:51:50 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\icfgnt5.dll\par [2010.06.25 12:51:50 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\icfgnt5.dll\par [2010.06.25 12:51:50 | 000,000,000 | --SD | C] -- C:\\WINDOWS\\Tasks\par [2010.06.25 12:51:50 | 000,000,000 | ---D | C] -- C:\\Programme\\Gemeinsame Dateien\\MSSoap\par [2010.06.25 12:51:49 | 000,094,208 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\ieinfo5.ocx\par [2010.06.25 12:51:47 | 003,166,208 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\msgr3en.dll\par [2010.06.25 12:51:47 | 000,851,968 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\vgx.dll\par [2010.06.25 12:51:47 | 000,727,614 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\srchui.dll\par [2010.06.25 12:51:47 | 000,058,434 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\srchctls.dll\par [2010.06.25 12:51:47 | 000,000,000 | ---D | C] -- C:\\WINDOWS\\srchasst\par [2010.06.25 12:51:46 | 000,778,240 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\setup_wm.exe\par [2010.06.25 12:51:46 | 000,368,640 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\mpvis.dll\par [2010.06.25 12:51:46 | 000,221,184 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\wmpns.dll\par [2010.06.25 12:51:46 | 000,098,304 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\wmpband.dll\par [2010.06.25 12:51:46 | 000,000,000 | ---D | C] -- C:\\WINDOWS\\System32\\Macromed\par [2010.06.25 12:51:45 | 000,786,432 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\migrate.exe\par [2010.06.25 12:51:45 | 000,364,544 | ---- | C] (Microsoft Corporation (written by Digital Renaissance Inc.)) -- C:\\WINDOWS\\System32\\dllcache\\npdsplay.dll\par [2010.06.25 12:51:45 | 000,226,816 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\npdrmv2.dll\par [2010.06.25 12:51:45 | 000,073,728 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\wmplayer.exe\par |
|
04.07.2010, 18:50
| #5 |
| | Internet Explorer öffnet ständig werbung ohne zutuhn kann dauern.... [2010.06.25 12:51:45 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\custsat.dll\par [2010.06.25 12:51:45 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\npwmsdrm.dll\par [2010.06.25 12:51:45 | 000,004,639 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\mplayer2.exe\par [2010.06.25 12:51:44 | 001,135,616 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\wuaueng.dll\par [2010.06.25 12:51:44 | 000,183,808 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\wuaueng1.dll\par [2010.06.25 12:51:44 | 000,183,808 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\wuaueng1.dll\par [2010.06.25 12:51:44 | 000,168,448 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\wuauclt1.exe\par [2010.06.25 12:51:44 | 000,168,448 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\wuauclt1.exe\par [2010.06.25 12:51:44 | 000,162,816 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\wuaucpl.cpl\par [2010.06.25 12:51:44 | 000,120,320 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\wuweb.dll\par [2010.06.25 12:51:44 | 000,113,664 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\wucltui.dll\par [2010.06.25 12:51:44 | 000,113,664 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\wucltui.dll\par [2010.06.25 12:51:44 | 000,111,616 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\wuauclt.exe\par [2010.06.25 12:51:44 | 000,032,256 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\wups.dll\par [2010.06.25 12:51:44 | 000,032,256 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\wups.dll\par [2010.06.25 12:51:44 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\wuauserv.dll\par [2010.06.25 12:51:43 | 000,431,616 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\wuapi.dll\par [2010.06.25 12:51:43 | 000,431,616 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\wuapi.dll\par [2010.06.25 12:51:43 | 000,409,088 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\qmgr.dll\par [2010.06.25 12:51:43 | 000,018,944 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\qmgrprxy.dll\par [2010.06.25 12:51:43 | 000,018,944 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\qmgrprxy.dll\par [2010.06.25 12:51:43 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\bitsprx2.dll\par [2010.06.25 12:51:43 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\bitsprx2.dll\par [2010.06.25 12:51:43 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\bitsprx4.dll\par [2010.06.25 12:51:43 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\bitsprx4.dll\par [2010.06.25 12:51:43 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\bitsprx3.dll\par [2010.06.25 12:51:43 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\bitsprx3.dll\par [2010.06.25 12:51:42 | 004,293,632 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\wmm2res.dll\par [2010.06.25 12:51:42 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\wmm2res2.dll\par [2010.06.25 12:51:42 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\wmm2eres.dll\par [2010.06.25 12:51:41 | 003,558,912 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\moviemk.exe\par [2010.06.25 12:51:41 | 000,502,272 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\wmm2fxa.dll\par [2010.06.25 12:51:41 | 000,402,432 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\wmm2filt.dll\par [2010.06.25 12:51:41 | 000,325,632 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\wmm2fxb.dll\par [2010.06.25 12:51:41 | 000,167,936 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\wmm2ae.dll\par [2010.06.25 12:51:41 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\wmm2ext.dll\par [2010.06.25 12:51:40 | 000,000,000 | ---D | C] -- C:\\Programme\\Movie Maker\par [2010.06.25 12:51:30 | 000,565,760 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\msobmain.dll\par [2010.06.25 12:51:30 | 000,122,368 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\msobcomm.dll\par [2010.06.25 12:51:30 | 000,051,712 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\oobebaln.exe\par [2010.06.25 12:51:30 | 000,030,720 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\msobshel.dll\par [2010.06.25 12:51:30 | 000,029,184 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\msoobe.exe\par [2010.06.25 12:51:30 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\msobweb.dll\par [2010.06.25 12:51:30 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\msobdl.dll\par [2010.06.25 12:51:28 | 000,151,040 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\uploadm.exe\par [2010.06.25 12:51:28 | 000,102,912 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\pchshell.dll\par [2010.06.25 12:51:28 | 000,045,568 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\safrslv.dll\par [2010.06.25 12:51:28 | 000,045,568 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\safrslv.dll\par [2010.06.25 12:51:28 | 000,043,520 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\safrcdlg.dll\par [2010.06.25 12:51:28 | 000,043,520 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\safrcdlg.dll\par [2010.06.25 12:51:28 | 000,043,520 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\racpldlg.dll\par [2010.06.25 12:51:28 | 000,043,520 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\racpldlg.dll\par [2010.06.25 12:51:28 | 000,038,400 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\pchsvc.dll\par [2010.06.25 12:51:28 | 000,029,696 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\safrdm.dll\par [2010.06.25 12:51:28 | 000,029,696 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\safrdm.dll\par [2010.06.25 12:51:26 | 000,769,024 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\helpctr.exe\par [2010.06.25 12:51:26 | 000,744,448 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\helpsvc.exe\par [2010.06.25 12:51:26 | 000,172,544 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\msconfig.exe\par [2010.06.25 12:51:26 | 000,018,432 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\hscupd.exe\par [2010.06.25 12:51:25 | 000,385,536 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\rstrui.exe\par [2010.06.25 12:51:25 | 000,242,176 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\srrstr.dll\par [2010.06.25 12:51:25 | 000,242,176 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\srrstr.dll\par [2010.06.25 12:51:25 | 000,171,520 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\srsvc.dll\par [2010.06.25 12:51:25 | 000,129,792 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\fltmgr.sys\par [2010.06.25 12:51:25 | 000,073,472 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\sr.sys\par [2010.06.25 12:51:25 | 000,067,584 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\srclient.dll\par [2010.06.25 12:51:25 | 000,023,040 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\fltMc.exe\par [2010.06.25 12:51:25 | 000,023,040 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\fltmc.exe\par [2010.06.25 12:51:25 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\fltlib.dll\par [2010.06.25 12:51:25 | 000,000,000 | ---D | C] -- C:\\WINDOWS\\System32\\Restore\par [2010.06.25 12:51:24 | 000,385,024 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\callcont.dll\par [2010.06.25 12:51:24 | 000,229,376 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\nmas.dll\par [2010.06.25 12:51:24 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\ils.dll\par [2010.06.25 12:51:24 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\ils.dll\par [2010.06.25 12:51:24 | 000,069,632 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\msconf.dll\par [2010.06.25 12:51:24 | 000,069,632 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\msconf.dll\par [2010.06.25 12:51:24 | 000,040,960 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\dcap32.dll\par [2010.06.25 12:51:24 | 000,034,560 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\mnmdd.dll\par [2010.06.25 12:51:24 | 000,034,560 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\mnmdd.dll\par [2010.06.25 12:51:24 | 000,032,768 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\mnmsrvc.exe\par [2010.06.25 12:51:24 | 000,032,768 | ---- | C] (Intel Corporation) -- C:\\WINDOWS\\System32\\isrdbg32.dll\par [2010.06.25 12:51:24 | 000,032,768 | ---- | C] (Intel Corporation) -- C:\\WINDOWS\\System32\\dllcache\\isrdbg32.dll\par [2010.06.25 12:51:24 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\nmmkcert.dll\par [2010.06.25 12:51:24 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\nmmkcert.dll\par [2010.06.25 12:51:24 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\nmasnt.dll\par [2010.06.25 12:51:23 | 000,274,432 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\mst120.dll\par [2010.06.25 12:51:23 | 000,221,184 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\nac.dll\par [2010.06.25 12:51:23 | 000,188,416 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\nmwb.dll\par [2010.06.25 12:51:23 | 000,155,648 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\nmft.dll\par [2010.06.25 12:51:23 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\nmchat.dll\par [2010.06.25 12:51:23 | 000,077,824 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\nmcom.dll\par [2010.06.25 12:51:23 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\rrcm.dll\par [2010.06.25 12:51:23 | 000,057,344 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\mst123.dll\par [2010.06.25 12:51:23 | 000,057,344 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\h323cc.dll\par [2010.06.25 12:51:23 | 000,045,056 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\confmrsl.dll\par [2010.06.25 12:51:22 | 001,040,384 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\conf.exe\par [2010.06.25 12:51:22 | 000,510,976 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\wab32.dll\par [2010.06.25 12:51:22 | 000,252,928 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\msoeacct.dll\par [2010.06.25 12:51:22 | 000,252,928 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\msoeacct.dll\par [2010.06.25 12:51:22 | 000,172,032 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\nmoldwb.dll\par [2010.06.25 12:51:22 | 000,105,984 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\msoert2.dll\par [2010.06.25 12:51:22 | 000,105,984 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\msoert2.dll\par [2010.06.25 12:51:22 | 000,085,504 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\wabimp.dll\par [2010.06.25 12:51:22 | 000,046,080 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\wab.exe\par [2010.06.25 12:51:22 | 000,032,768 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\wabfind.dll\par [2010.06.25 12:51:22 | 000,030,208 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\wabmig.exe\par [2010.06.25 12:51:22 | 000,000,000 | ---D | C] -- C:\\Programme\\NetMeeting\par [2010.06.25 12:51:21 | 000,691,712 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\inetcomm.dll\par [2010.06.25 12:51:21 | 000,259,072 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\wab32res.dll\par [2010.06.25 12:51:21 | 000,104,448 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\oeimport.dll\par [2010.06.25 12:51:21 | 000,086,528 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\directdb.dll\par [2010.06.25 12:51:21 | 000,060,416 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\msimn.exe\par [2010.06.25 12:51:21 | 000,051,712 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\inetres.dll\par [2010.06.25 12:51:21 | 000,051,712 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\inetres.dll\par [2010.06.25 12:51:20 | 002,532,864 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\msoeres.dll\par [2010.06.25 12:51:20 | 000,280,064 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\mstask.dll\par [2010.06.25 12:51:20 | 000,193,536 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\schedsvc.dll\par [2010.06.25 12:51:20 | 000,074,240 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\setup50.exe\par [2010.06.25 12:51:20 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\oemig50.exe\par [2010.06.25 12:51:20 | 000,035,328 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\oemiglib.dll\par [2010.06.25 12:51:20 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\mstinit.exe\par [2010.06.25 12:51:20 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\mstinit.exe\par [2010.06.25 12:51:20 | 000,000,000 | ---D | C] -- C:\\Programme\\Outlook Express\par [2010.06.25 12:51:19 | 000,282,624 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\inetcfg.dll\par [2010.06.25 12:51:19 | 000,282,624 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\inetcfg.dll\par [2010.06.25 12:51:19 | 000,086,016 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\isign32.dll\par [2010.06.25 12:51:19 | 000,086,016 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\isign32.dll\par [2010.06.25 12:51:19 | 000,073,728 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\icwdial.dll\par [2010.06.25 12:51:19 | 000,073,728 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\icwdial.dll\par [2010.06.25 12:51:19 | 000,065,536 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\icwphbk.dll\par [2010.06.25 12:51:19 | 000,065,536 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\icwphbk.dll\par [2010.06.25 12:51:18 | 000,554,008 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\dao360.dll\par [2010.06.25 12:51:18 | 000,218,624 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\icwconn1.exe\par [2010.06.25 12:51:18 | 000,217,088 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\sqlxmlx.dll\par [2010.06.25 12:51:18 | 000,172,032 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\icwhelp.dll\par [2010.06.25 12:51:18 | 000,086,016 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\icwconn2.exe\par [2010.06.25 12:51:18 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\icwconn.dll\par [2010.06.25 12:51:18 | 000,049,152 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\icwutil.dll\par [2010.06.25 12:51:18 | 000,032,768 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\icwdl.dll\par [2010.06.25 12:51:18 | 000,024,576 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\icwrmind.exe\par [2010.06.25 12:51:18 | 000,020,480 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\inetwiz.exe\par [2010.06.25 12:51:17 | 000,487,424 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\oledb32.dll\par [2010.06.25 12:51:17 | 000,315,392 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\msdasql.dll\par [2010.06.25 12:51:17 | 000,233,472 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\msdaora.dll\par [2010.06.25 12:51:17 | 000,204,800 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\msdaps.dll\par [2010.06.25 12:51:17 | 000,102,400 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\msjro.dll\par [2010.06.25 12:51:17 | 000,094,208 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\msdatl3.dll\par [2010.06.25 12:51:17 | 000,077,824 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\msdaosp.dll\par [2010.06.25 12:51:17 | 000,073,728 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\oledb32r.dll\par [2010.06.25 12:51:17 | 000,024,576 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\msxactps.dll\par [2010.06.25 12:51:17 | 000,020,480 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\msdatt.dll\par [2010.06.25 12:51:17 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\msdasqlr.dll\par [2010.06.25 12:51:17 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\msdaorar.dll\par [2010.06.25 12:51:17 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\msdaurl.dll\par [2010.06.25 12:51:17 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\msdasc.dll\par [2010.06.25 12:51:17 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\msdaer.dll\par [2010.06.25 12:51:17 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\msdaenum.dll\par [2010.06.25 12:51:17 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\msdadc.dll\par [2010.06.25 12:51:16 | 000,536,576 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\msado15.dll\par [2010.06.25 12:51:16 | 000,200,704 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\msdaprst.dll\par [2010.06.25 12:51:16 | 000,200,704 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\msadox.dll\par [2010.06.25 12:51:16 | 000,180,224 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\msadomd.dll\par [2010.06.25 12:51:16 | 000,118,784 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\msdarem.dll\par [2010.06.25 12:51:16 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\msado27.tlb\par [2010.06.25 12:51:16 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\msado26.tlb\par [2010.06.25 12:51:16 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\msado25.tlb\par [2010.06.25 12:51:16 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\msado21.tlb\par [2010.06.25 12:51:16 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\msado20.tlb\par [2010.06.25 12:51:16 | 000,057,344 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\msadrh15.dll\par [2010.06.25 12:51:16 | 000,057,344 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\msador15.dll\par [2010.06.25 12:51:16 | 000,036,864 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\msdfmap.dll\par [2010.06.25 12:51:16 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\msader15.dll\par [2010.06.25 12:51:16 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\msdaremr.dll\par [2010.06.25 12:51:16 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\msdaprsr.dll\par [2010.06.25 12:51:15 | 000,331,776 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\msadce.dll\par [2010.06.25 12:51:15 | 000,155,648 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\msadds.dll\par [2010.06.25 12:51:15 | 000,143,360 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\msadco.dll\par [2010.06.25 12:51:15 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\msadcf.dll\par [2010.06.25 12:51:15 | 000,053,248 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\msadcs.dll\par [2010.06.25 12:51:15 | 000,024,576 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\msaddsr.dll\par [2010.06.25 12:51:15 | 000,020,480 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\msadcer.dll\par [2010.06.25 12:51:15 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\msadcor.dll\par [2010.06.25 12:51:15 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\msadcfr.dll\par [2010.06.25 12:51:15 | 000,000,000 | ---D | C] -- C:\\Programme\\Gemeinsame Dateien\\System\par [2010.06.25 12:51:14 | 000,093,184 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\iexplore.exe\par [2010.06.25 12:51:14 | 000,038,912 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\hmmapi.dll\par [2010.06.25 12:51:14 | 000,018,432 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\iedw.exe\par [2010.06.25 12:51:14 | 000,000,000 | ---D | C] -- C:\\Programme\\Internet Explorer\par [2010.06.25 12:51:13 | 000,000,000 | R--D | C] -- C:\\Dokumente und Einstellungen\\All Users\\Dokumente\\Eigene Bilder\par [2010.06.25 12:50:43 | 000,000,000 | ---D | C] -- C:\\Programme\\ComPlus Applications\par [2010.06.25 12:50:37 | 000,000,000 | ---D | C] -- C:\\WINDOWS\\Registration\par [2010.06.25 12:50:30 | 000,000,000 | R--D | C] -- C:\\Dokumente und Einstellungen\\All Users\\Dokumente\\Eigene Musik\par [2010.06.25 12:50:30 | 000,000,000 | ---D | C] -- C:\\Programme\\Windows Media Player\par [2010.06.25 12:50:30 | 000,000,000 | ---D | C] -- C:\\Programme\\Online Services\par [2010.06.25 12:50:24 | 000,042,577 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\bckgzm.exe\par [2010.06.25 12:50:24 | 000,000,000 | ---D | C] -- C:\\Programme\\Messenger\par [2010.06.25 12:50:23 | 002,178,131 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\shvlres.dll\par [2010.06.25 12:50:23 | 001,817,687 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\bckgres.dll\par [2010.06.25 12:50:23 | 000,781,397 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\chkrres.dll\par [2010.06.25 12:50:23 | 000,753,236 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\rvseres.dll\par [2010.06.25 12:50:23 | 000,082,501 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\bckg.dll\par [2010.06.25 12:50:23 | 000,066,113 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\shvl.dll\par [2010.06.25 12:50:23 | 000,048,706 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\rvse.dll\par [2010.06.25 12:50:23 | 000,042,575 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\chkrzm.exe\par [2010.06.25 12:50:23 | 000,042,574 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\rvsezm.exe\par [2010.06.25 12:50:23 | 000,042,573 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\shvlzm.exe\par [2010.06.25 12:50:23 | 000,042,573 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\hrtzzm.exe\par [2010.06.25 12:50:23 | 000,040,515 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\chkr.dll\par [2010.06.25 12:50:22 | 001,175,635 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\hrtzres.dll\par [2010.06.25 12:50:22 | 001,042,515 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\cmnresm.dll\par [2010.06.25 12:50:22 | 000,217,160 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\cmnclim.dll\par [2010.06.25 12:50:22 | 000,113,222 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\zoneclim.dll\par [2010.06.25 12:50:22 | 000,057,409 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\hrtz.dll\par [2010.06.25 12:50:22 | 000,041,029 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\zcorem.dll\par [2010.06.25 12:50:22 | 000,032,339 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\uniansi.dll\par [2010.06.25 12:50:22 | 000,013,894 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\zonelibm.dll\par [2010.06.25 12:50:22 | 000,004,677 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\zeeverm.dll\par [2010.06.25 12:50:21 | 000,036,937 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\zclientm.exe\par [2010.06.25 12:50:21 | 000,029,760 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\znetm.dll\par [2010.06.25 12:50:21 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\write.exe\par [2010.06.25 12:50:21 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\write.exe\par [2010.06.25 12:50:21 | 000,000,000 | ---D | C] -- C:\\Programme\\MSN Gaming Zone\par [2010.06.25 12:50:15 | 000,232,960 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\avtapi.dll\par [2010.06.25 12:50:15 | 000,232,960 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\avtapi.dll\par [2010.06.25 12:50:15 | 000,139,776 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\sndvol32.exe\par [2010.06.25 12:50:15 | 000,139,776 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\sndvol32.exe\par [2010.06.25 12:50:15 | 000,073,216 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\avwav.dll\par [2010.06.25 12:50:15 | 000,073,216 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\avwav.dll\par [2010.06.25 12:50:15 | 000,044,544 | ---- | C] (Hilgraeve, Inc.) -- C:\\WINDOWS\\System32\\hticons.dll\par [2010.06.25 12:50:15 | 000,035,840 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\winchat.exe\par [2010.06.25 12:50:15 | 000,035,840 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\winchat.exe\par [2010.06.25 12:50:15 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\avmeter.dll\par [2010.06.25 12:50:15 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\avmeter.dll\par [2010.06.25 12:50:15 | 000,013,312 | ---- | C] (Hilgraeve, Inc.) -- C:\\WINDOWS\\System32\\dllcache\\htrn_jis.dll\par [2010.06.25 12:50:10 | 000,683,520 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\getuname.dll\par [2010.06.25 12:50:10 | 000,683,520 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\getuname.dll\par [2010.06.25 12:50:10 | 000,120,320 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\winmine.exe\par [2010.06.25 12:50:10 | 000,120,320 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\winmine.exe\par [2010.06.25 12:50:10 | 000,114,688 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\calc.exe\par [2010.06.25 12:50:10 | 000,114,688 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\calc.exe\par [2010.06.25 12:50:10 | 000,080,896 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\charmap.exe\par [2010.06.25 12:50:10 | 000,080,896 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\charmap.exe\par [2010.06.25 12:50:10 | 000,057,344 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\sol.exe\par [2010.06.25 12:50:10 | 000,057,344 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\sol.exe\par [2010.06.25 12:50:09 | 000,128,000 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\mshearts.exe\par [2010.06.25 12:50:09 | 000,128,000 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\mshearts.exe\par [2010.06.25 12:50:09 | 000,055,808 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\freecell.exe\par [2010.06.25 12:50:09 | 000,055,808 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\freecell.exe\par [2010.06.25 12:50:09 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\regini.exe\par [2010.06.25 12:50:09 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\regini.exe\par [2010.06.25 12:50:09 | 000,022,528 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\qwinsta.exe\par [2010.06.25 12:50:09 | 000,022,528 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\qwinsta.exe\par [2010.06.25 12:50:09 | 000,022,528 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\msg.exe\par [2010.06.25 12:50:09 | 000,022,528 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\msg.exe\par [2010.06.25 12:50:09 | 000,017,920 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\tsshutdn.exe\par [2010.06.25 12:50:09 | 000,017,920 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\tsshutdn.exe\par [2010.06.25 12:50:09 | 000,017,408 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\qappsrv.exe\par [2010.06.25 12:50:09 | 000,017,408 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\qappsrv.exe\par [2010.06.25 12:50:09 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\tskill.exe\par [2010.06.25 12:50:09 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\tskill.exe\par [2010.06.25 12:50:09 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\rwinsta.exe\par [2010.06.25 12:50:09 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\rwinsta.exe\par [2010.06.25 12:50:09 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\tsdiscon.exe\par [2010.06.25 12:50:09 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\tsdiscon.exe\par [2010.06.25 12:50:09 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\tscon.exe\par [2010.06.25 12:50:09 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\tscon.exe\par [2010.06.25 12:50:09 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\shadow.exe\par [2010.06.25 12:50:09 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\shadow.exe\par [2010.06.25 12:50:09 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\reset.exe\par [2010.06.25 12:50:09 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\reset.exe\par [2010.06.25 12:50:09 | 000,004,608 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\rdpcfgex.dll\par [2010.06.25 12:50:09 | 000,004,608 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\rdpcfgex.dll\par [2010.06.25 12:50:08 | 000,045,568 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\wmi2xml.dll\par [2010.06.25 12:50:08 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\mtsadmin.tlb\par [2010.06.25 12:50:08 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\logoff.exe\par [2010.06.25 12:50:08 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\logoff.exe\par [2010.06.25 12:50:08 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\cdmodem.dll\par [2010.06.25 12:50:08 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\cdmodem.dll\par [2010.06.25 12:50:06 | 000,076,800 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\wmipicmp.dll\par [2010.06.25 12:50:06 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\wmimsg.dll\par [2010.06.25 12:50:06 | 000,052,224 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\wmitimep.dll\par [2010.06.25 12:50:05 | 000,273,920 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\msiprov.dll\par [2010.06.25 12:50:05 | 000,120,320 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\dsprov.dll\par [2010.06.25 12:50:05 | 000,116,224 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\updprov.dll\par [2010.06.25 12:50:05 | 000,061,952 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\tmplprov.dll\par [2010.06.25 12:50:05 | 000,059,904 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\wbemdisp.tlb\par [2010.06.25 12:50:05 | 000,059,904 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\trnsprov.dll\par [2010.06.25 12:50:05 | 000,053,248 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\fwdprov.dll\par [2010.06.25 12:50:05 | 000,040,960 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\smtpcons.dll\par [2010.06.25 12:50:05 | 000,031,232 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\wbemads.tlb\par [2010.06.25 12:50:05 | 000,017,920 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\winmgmtr.dll\par [2010.06.25 12:50:05 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\unsecapp.exe\par [2010.06.25 12:50:05 | 000,013,824 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\winmgmt.exe\par [2010.06.25 12:50:05 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\wbemads.dll\par [2010.06.25 12:49:57 | 000,282,624 | ---- | C] (Cinematronics) -- C:\\WINDOWS\\System32\\dllcache\\pinball.exe\par [2010.06.25 12:49:57 | 000,188,928 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\accwiz.exe\par [2010.06.25 12:49:57 | 000,188,928 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\accwiz.exe\par [2010.06.25 12:49:57 | 000,070,656 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\access.cpl\par [2010.06.25 12:49:57 | 000,070,656 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\access.cpl\par [2010.06.25 12:49:57 | 000,000,000 | ---D | C] -- C:\\Programme\\MSN\par [2010.06.25 12:49:56 | 000,545,280 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\dialer.exe\par [2010.06.25 12:49:56 | 000,356,352 | ---- | C] (Hilgraeve, Inc.) -- C:\\WINDOWS\\System32\\hypertrm.dll\par [2010.06.25 12:49:56 | 000,346,624 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\mspaint.exe\par [2010.06.25 12:49:56 | 000,346,624 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\mspaint.exe\par [2010.06.25 12:49:56 | 000,133,120 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\sndrec32.exe\par [2010.06.25 12:49:56 | 000,133,120 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\sndrec32.exe\par [2010.06.25 12:49:56 | 000,124,928 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\mplay32.exe\par [2010.06.25 12:49:56 | 000,124,928 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\mplay32.exe\par [2010.06.25 12:49:56 | 000,104,448 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\clipbrd.exe\par [2010.06.25 12:49:56 | 000,104,448 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\clipbrd.exe\par [2010.06.25 12:49:56 | 000,000,000 | ---D | C] -- C:\\Programme\\Windows NT\par [2010.06.25 12:49:55 | 000,539,136 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\spider.exe\par [2010.06.25 12:49:55 | 000,539,136 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\spider.exe\par [2010.06.25 12:49:55 | 000,139,656 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\rdpwd.sys\par [2010.06.25 12:49:55 | 000,094,720 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\tscfgwmi.dll\par [2010.06.25 12:49:55 | 000,094,720 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\tscfgwmi.dll\par [2010.06.25 12:49:55 | 000,053,248 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\tsgqec.dll\par [2010.06.25 12:49:55 | 000,053,248 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\tsgqec.dll\par [2010.06.25 12:49:55 | 000,021,896 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\tdtcp.sys\par [2010.06.25 12:49:55 | 000,012,040 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\tdpipe.sys\par [2010.06.25 12:49:54 | 002,061,824 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\lhmstscx.dll\par [2010.06.25 12:49:54 | 000,677,888 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\lhmstsc.exe\par [2010.06.25 12:49:54 | 000,290,304 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\rhttpaa.dll\par [2010.06.25 12:49:54 | 000,290,304 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\rhttpaa.dll\par [2010.06.25 12:49:54 | 000,143,360 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\sessmgr.exe\par [2010.06.25 12:49:54 | 000,136,192 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\aaclient.dll\par [2010.06.25 12:49:54 | 000,136,192 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\aaclient.dll\par [2010.06.25 12:49:54 | 000,067,072 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\rdshost.exe\par [2010.06.25 12:49:54 | 000,067,072 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\rdshost.exe\par [2010.06.25 12:49:54 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\remotepg.dll\par [2010.06.25 12:49:54 | 000,013,824 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\rdsaddin.exe\par [2010.06.25 12:49:54 | 000,013,824 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\rdsaddin.exe\par [2010.06.25 12:49:53 | 000,297,472 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\termsrv.dll\par [2010.06.25 12:49:53 | 000,161,792 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\msdtcuiu.dll\par [2010.06.25 12:49:53 | 000,161,792 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\msdtcuiu.dll\par [2010.06.25 12:49:53 | 000,147,968 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\rdchost.dll\par [2010.06.25 12:49:53 | 000,147,968 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\rdchost.dll\par [2010.06.25 12:49:53 | 000,091,648 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\mtxoci.dll\par [2010.06.25 12:49:53 | 000,091,648 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\mtxoci.dll\par [2010.06.25 12:49:53 | 000,087,176 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\rdpwsx.dll\par [2010.06.25 12:49:53 | 000,087,176 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\rdpwsx.dll\par [2010.06.25 12:49:53 | 000,062,976 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\rdpclip.exe\par [2010.06.25 12:49:53 | 000,062,976 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\rdpclip.exe\par [2010.06.25 12:49:53 | 000,039,424 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\cfgbkend.dll\par [2010.06.25 12:49:53 | 000,039,424 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\cfgbkend.dll\par [2010.06.25 12:49:53 | 000,020,480 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\qprocess.exe\par [2010.06.25 12:49:53 | 000,020,480 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\qprocess.exe\par [2010.06.25 12:49:53 | 000,019,968 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\rdpsnd.dll\par [2010.06.25 12:49:53 | 000,019,968 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\rdpsnd.dll\par [2010.06.25 12:49:53 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\icaapi.dll\par [2010.06.25 12:49:53 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\icaapi.dll\par [2010.06.25 12:49:53 | 000,000,000 | ---D | C] -- C:\\WINDOWS\\System32\\MsDtc\par [2010.06.25 12:49:52 | 000,956,928 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\msdtctm.dll\par [2010.06.25 12:49:52 | 000,956,928 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\msdtctm.dll\par [2010.06.25 12:49:52 | 000,427,008 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\msdtcprx.dll\par [2010.06.25 12:49:52 | 000,427,008 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\msdtcprx.dll\par [2010.06.25 12:49:52 | 000,058,880 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\msdtclog.dll\par [2010.06.25 12:49:52 | 000,058,880 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\msdtclog.dll\par [2010.06.25 12:49:52 | 000,011,776 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\xolehlp.dll\par [2010.06.25 12:49:52 | 000,011,776 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\xolehlp.dll\par [2010.06.25 12:49:52 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\comrepl.exe\par [2010.06.25 12:49:52 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\msdtc.exe\par [2010.06.25 12:49:52 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\comrereg.exe\par [2010.06.25 12:49:51 | 000,625,664 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\catsrvut.dll\par [2010.06.25 12:49:51 | 000,625,664 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\catsrvut.dll\par [2010.06.25 12:49:51 | 000,195,072 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\comadmin.dll\par [2010.06.25 12:49:51 | 000,110,592 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\clbcatex.dll\par [2010.06.25 12:49:51 | 000,110,592 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\clbcatex.dll\par [2010.06.25 12:49:51 | 000,097,792 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\comrepl.dll\par [2010.06.25 12:49:51 | 000,097,792 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\comrepl.dll\par [2010.06.25 12:49:51 | 000,085,504 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\catsrvps.dll\par [2010.06.25 12:49:51 | 000,085,504 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\catsrvps.dll\par [2010.06.25 12:49:51 | 000,060,416 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\colbact.dll\par [2010.06.25 12:49:51 | 000,060,416 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\colbact.dll\par [2010.06.25 12:49:51 | 000,059,392 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\stclient.dll\par [2010.06.25 12:49:51 | 000,059,392 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\stclient.dll\par [2010.06.25 12:49:51 | 000,034,304 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\mtxlegih.dll\par [2010.06.25 12:49:51 | 000,034,304 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\mtxlegih.dll\par [2010.06.25 12:49:51 | 000,030,720 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\mtxdm.dll\par [2010.06.25 12:49:51 | 000,030,720 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\mtxdm.dll\par [2010.06.25 12:49:51 | 000,028,160 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\comaddin.dll\par [2010.06.25 12:49:51 | 000,028,160 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\comaddin.dll\par [2010.06.25 12:49:51 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\dcomcnfg.exe\par [2010.06.25 12:49:51 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dcomcnfg.exe\par [2010.06.25 12:49:51 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\mtxex.dll\par [2010.06.25 12:49:51 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\mtxex.dll\par [2010.06.25 12:49:51 | 000,000,000 | ---D | C] -- C:\\WINDOWS\\System32\\Com\par [2010.06.25 12:49:50 | 001,267,200 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\comsvcs.dll\par [2010.06.25 12:49:50 | 001,267,200 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\comsvcs.dll\par [2010.06.25 12:49:50 | 000,539,648 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\comuid.dll\par [2010.06.25 12:49:50 | 000,539,648 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\comuid.dll\par [2010.06.25 12:49:50 | 000,498,688 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\clbcatq.dll\par [2010.06.25 12:49:50 | 000,226,304 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\catsrv.dll\par [2010.06.25 12:49:50 | 000,226,304 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\catsrv.dll\par [2010.06.25 12:49:50 | 000,167,424 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\comsnap.dll\par [2010.06.25 12:49:50 | 000,167,424 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\comsnap.dll\par [2010.06.25 12:49:49 | 000,145,408 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\wmisvc.dll\par [2010.06.25 12:49:49 | 000,099,840 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\wmiutils.dll\par [2010.06.25 12:49:49 | 000,041,472 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\wmipsess.dll\par [2010.06.25 12:49:48 | 000,370,176 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\wmic.exe\par [2010.06.25 12:49:48 | 000,273,920 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\wbemess.dll\par [2010.06.25 12:49:48 | 000,197,120 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\wbemupgd.dll\par [2010.06.25 12:49:48 | 000,196,608 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\wmiadap.exe\par [2010.06.25 12:49:48 | 000,178,176 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\wbemdisp.dll\par [2010.06.25 12:49:48 | 000,156,672 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\wmipcima.dll\par [2010.06.25 12:49:48 | 000,144,896 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\wmiprov.dll\par [2010.06.25 12:49:48 | 000,140,800 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\wmidcprv.dll\par [2010.06.25 12:49:48 | 000,132,096 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\wmipdskq.dll\par [2010.06.25 12:49:48 | 000,126,464 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\wmiapsrv.exe\par [2010.06.25 12:49:48 | 000,120,320 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\wbemtest.exe\par [2010.06.25 12:49:48 | 000,088,576 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\wmiaprpl.dll\par [2010.06.25 12:49:48 | 000,062,464 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\wmipjobj.dll\par [2010.06.25 12:49:48 | 000,061,952 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\wmipiprt.dll\par [2010.06.25 12:49:48 | 000,060,928 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\wmicookr.dll\par [2010.06.25 12:49:48 | 000,043,520 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\wbemsvc.dll\par [2010.06.25 12:49:48 | 000,018,944 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\wbemprox.dll\par [2010.06.25 12:49:48 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\wmiapres.dll\par [2010.06.25 12:49:47 | 000,531,456 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\wbemcore.dll\par [2010.06.25 12:49:47 | 000,237,056 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\provthrd.dll\par [2010.06.25 12:49:47 | 000,214,528 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\wbemcomn.dll\par [2010.06.25 12:49:47 | 000,212,992 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\ntevt.dll\par [2010.06.25 12:49:47 | 000,201,216 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\wbemcntl.dll\par [2010.06.25 12:49:47 | 000,178,176 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\repdrvfs.dll\par [2010.06.25 12:49:47 | 000,131,584 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\viewprov.dll\par [2010.06.25 12:49:47 | 000,092,672 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\policman.dll\par [2010.06.25 12:49:47 | 000,086,528 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\stdprov.dll\par [2010.06.25 12:49:47 | 000,071,680 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\wbemcons.dll\par [2010.06.25 12:49:47 | 000,036,352 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\scrcons.exe\par [2010.06.25 12:49:46 | 000,247,808 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\esscli.dll\par [2010.06.25 12:49:46 | 000,185,344 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\framedyn.dll\par [2010.06.25 12:49:46 | 000,124,416 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\mofd.dll\par [2010.06.25 12:49:46 | 000,047,104 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\ncprov.dll\par [2010.06.25 12:49:46 | 000,024,576 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\krnlprov.dll\par [2010.06.25 12:49:46 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\mofcomp.exe\par [2010.06.25 12:49:45 | 001,359,360 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\cimwin32.dll\par [2010.06.25 12:49:45 | 000,189,440 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\cmprops.dll\par [2010.06.25 12:49:45 | 000,189,440 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\cmprops.dll\par [2010.06.25 12:49:45 | 000,058,880 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\licwmi.dll\par [2010.06.25 12:49:45 | 000,058,880 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\licwmi.dll\par [2010.06.25 12:49:45 | 000,056,320 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\servdeps.dll\par [2010.06.25 12:49:45 | 000,056,320 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\servdeps.dll\par [2010.06.25 12:49:45 | 000,017,920 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\mmfutil.dll\par [2010.06.25 12:49:45 | 000,017,920 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\mmfutil.dll\par [2010.06.25 12:49:43 | 000,000,000 | R--D | C] -- C:\\Dokumente und Einstellungen\\All Users\\Dokumente\\Eigene Videos\par [6 C:\\WINDOWS\\*.tmp files -> C:\\WINDOWS\\*.tmp -> ]\par [1 C:\\WINDOWS\\System32\\*.tmp files -> C:\\WINDOWS\\System32\\*.tmp -> ]\par \par ========== Files - Modified Within 30 Days ==========\par \par [2010.07.04 18:02:05 | 000,000,248 | -H-- | M] () -- C:\\WINDOWS\\tasks\\\{62C40AA6-4406-467a-A5A5-DFDF1B559B7A\}.job\par [2010.07.04 17:02:39 | 000,723,744 | ---- | M] () -- C:\\WINDOWS\\System32\\PerfStringBackup.INI\par [2010.07.04 17:02:39 | 000,316,594 | ---- | M] () -- C:\\WINDOWS\\System32\\perfh007.dat\par [2010.07.04 17:02:39 | 000,311,604 | ---- | M] () -- C:\\WINDOWS\\System32\\perfh009.dat\par [2010.07.04 17:02:39 | 000,048,156 | ---- | M] () -- C:\\WINDOWS\\System32\\perfc007.dat\par [2010.07.04 17:02:39 | 000,039,992 | ---- | M] () -- C:\\WINDOWS\\System32\\perfc009.dat\par [2010.07.04 17:01:41 | 000,000,260 | ---- | M] () -- C:\\WINDOWS\\tasks\\WGASetup.job\par [2010.07.04 16:58:31 | 000,000,316 | -HS- | M] () -- C:\\WINDOWS\\tasks\\IPMBNRUO.job\par [2010.07.04 16:58:27 | 000,000,006 | -H-- | M] () -- C:\\WINDOWS\\tasks\\SA.DAT\par [2010.07.04 16:58:26 | 000,160,101 | ---- | M] () -- C:\\WINDOWS\\System32\\nvapps.xml\par [2010.07.04 16:58:23 | 000,002,048 | --S- | M] () -- C:\\WINDOWS\\bootstat.dat\par [2010.07.04 14:53:25 | 001,048,576 | -H-- | M] () -- C:\\Dokumente und Einstellungen\\Robert\\NTUSER.DAT\par [2010.07.04 14:53:25 | 000,000,190 | -HS- | M] () -- C:\\Dokumente und Einstellungen\\Robert\\ntuser.ini\par [2010.07.04 14:53:21 | 002,654,956 | -H-- | M] () -- C:\\Dokumente und Einstellungen\\Robert\\Lokale Einstellungen\\Anwendungsdaten\\IconCache.db\par [2010.07.04 14:52:39 | 1609,842,688 | ---- | M] () -- C:\\WINDOWS\\MEMORY.DMP\par [2010.07.04 14:05:39 | 000,012,328 | ---- | M] () -- C:\\Dokumente und Einstellungen\\Robert\\Lokale Einstellungen\\Anwendungsdaten\\GDIPFONTCACHEV1.DAT\par [2010.07.04 13:59:38 | 000,002,206 | ---- | M] () -- C:\\WINDOWS\\System32\\wpa.dbl\par [2010.07.04 13:59:22 | 000,090,296 | ---- | M] () -- C:\\WINDOWS\\System32\\FNTCACHE.DAT\par [2010.07.04 13:58:36 | 000,021,483 | ---- | M] () -- C:\\WINDOWS\\System32\\$winnt$.inf\par [2010.07.04 13:56:38 | 000,316,640 | ---- | M] () -- C:\\WINDOWS\\WMSysPr9.prx\par [2010.07.04 13:56:37 | 000,023,392 | ---- | M] () -- C:\\WINDOWS\\System32\\nscompat.tlb\par [2010.07.04 13:56:37 | 000,016,832 | ---- | M] () -- C:\\WINDOWS\\System32\\amcompat.tlb\par [2010.07.04 13:56:29 | 000,004,161 | ---- | M] () -- C:\\WINDOWS\\ODBCINST.INI\par [2010.07.04 13:55:52 | 000,000,488 | RH-- | M] () -- C:\\WINDOWS\\System32\\WindowsLogon.manifest\par [2010.07.04 13:55:52 | 000,000,488 | RH-- | M] () -- C:\\WINDOWS\\System32\\logonui.exe.manifest\par [2010.07.04 13:55:48 | 000,000,749 | RH-- | M] () -- C:\\WINDOWS\\System32\\wuaucpl.cpl.manifest\par [2010.07.04 13:55:48 | 000,000,749 | RH-- | M] () -- C:\\WINDOWS\\WindowsShell.Manifest\par [2010.07.04 13:55:48 | 000,000,749 | RH-- | M] () -- C:\\WINDOWS\\System32\\sapi.cpl.manifest\par [2010.07.04 13:55:48 | 000,000,749 | RH-- | M] () -- C:\\WINDOWS\\System32\\nwc.cpl.manifest\par [2010.07.04 13:55:48 | 000,000,749 | RH-- | M] () -- C:\\WINDOWS\\System32\\ncpa.cpl.manifest\par [2010.07.04 13:55:48 | 000,000,749 | RH-- | M] () -- C:\\WINDOWS\\System32\\cdplayer.exe.manifest\par [2010.07.04 13:55:39 | 000,000,477 | ---- | M] () -- C:\\WINDOWS\\win.ini\par [2010.07.04 13:54:51 | 000,022,880 | ---- | M] () -- C:\\WINDOWS\\System32\\emptyregdb.dat\par [2010.07.04 13:53:47 | 000,000,211 | -HS- | M] () -- C:\\boot.ini\par [2010.07.04 13:49:10 | 000,004,444 | ---- | M] () -- C:\\WINDOWS\\System32\\pid.PNF\par [2010.07.04 13:49:04 | 000,000,231 | ---- | M] () -- C:\\WINDOWS\\system.ini\par [2010.07.04 10:34:01 | 000,163,840 | ---- | M] () -- C:\\WINDOWS\\Tgifie.exe\par [2010.07.04 10:34:01 | 000,163,840 | ---- | M] () -- C:\\WINDOWS\\Tgifid.exe\par [2010.07.04 10:34:01 | 000,163,840 | ---- | M] () -- C:\\WINDOWS\\Tgific.exe\par [2010.07.04 10:34:01 | 000,163,840 | ---- | M] () -- C:\\WINDOWS\\Tgifib.exe\par [2010.07.04 10:33:59 | 000,163,840 | ---- | M] () -- C:\\WINDOWS\\Tgifia.exe\par [2010.07.04 10:33:57 | 000,209,408 | ---- | M] () -- C:\\WINDOWS\\System32\\sshnas21.dll\par [2010.07.01 15:49:13 | 000,273,307 | ---- | M] () -- C:\\WINDOWS\\setupapi.old\par [2010.07.01 15:40:39 | 000,063,488 | RHS- | M] () -- C:\\WINDOWS\\System32\\tlntsess7.dll\par [2010.07.01 15:26:58 | 000,002,239 | ---- | M] () -- C:\\Dokumente und Einstellungen\\Robert\\.recently-used.xbel\par [2010.06.30 22:26:12 | 000,001,374 | ---- | M] () -- C:\\WINDOWS\\imsins.BAK\par [2010.06.30 21:30:11 | 000,001,709 | ---- | M] () -- C:\\Dokumente und Einstellungen\\All Users\\Desktop\\Adobe Reader 9.lnk\par [2010.06.26 11:08:45 | 000,000,772 | ---- | M] () -- C:\\Dokumente und Einstellungen\\Robert\\Desktop\\Windows Media Player.lnk\par [2010.06.25 19:50:08 | 000,000,899 | ---- | M] () -- C:\\Dokumente und Einstellungen\\All Users\\Desktop\\Tactical Ops.lnk\par [2010.06.25 15:06:48 | 000,411,368 | ---- | M] (Sun Microsystems, Inc.) -- C:\\WINDOWS\\System32\\deployJava1.dll\par [2010.06.25 15:06:48 | 000,153,376 | ---- | M] (Sun Microsystems, Inc.) -- C:\\WINDOWS\\System32\\javaws.exe\par [2010.06.25 15:06:48 | 000,145,184 | ---- | M] (Sun Microsystems, Inc.) -- C:\\WINDOWS\\System32\\javaw.exe\par [2010.06.25 15:06:48 | 000,145,184 | ---- | M] (Sun Microsystems, Inc.) -- C:\\WINDOWS\\System32\\java.exe\par [2010.06.25 15:06:48 | 000,073,728 | ---- | M] (Sun Microsystems, Inc.) -- C:\\WINDOWS\\System32\\javacpl.cpl\par [2010.06.25 15:02:50 | 000,001,451 | ---- | M] () -- C:\\Dokumente und Einstellungen\\All Users\\Desktop\\ICQ7.2.lnk\par [2010.06.25 13:19:09 | 000,000,778 | ---- | M] () -- C:\\Dokumente und Einstellungen\\All Users\\Desktop\\GIMP 2.lnk\par [2010.06.25 13:15:49 | 000,001,671 | ---- | M] () -- C:\\Dokumente und Einstellungen\\All Users\\Desktop\\Avira AntiVir Control Center.lnk\par [2010.06.25 13:10:17 | 000,000,000 | ---- | M] () -- C:\\WINDOWS\\nsreg.dat\par Geändert von suncruiser (04.07.2010 um 18:59 Uhr) |
|
04.07.2010, 19:02
| #6 |
| | Internet Explorer öffnet ständig werbung ohne zutuhn OTL Teil III (das ist dann jetz alles) [2010.06.25 13:10:10 | 000,001,566 | ---- | M] () -- C:\\Dokumente und Einstellungen\\All Users\\Desktop\\Mozilla Firefox.lnk\par [2010.06.25 13:08:05 | 000,000,906 | ---- | M] () -- C:\\Dokumente und Einstellungen\\Robert\\Desktop\\DVDVideoSoft Free Studio.lnk\par [2010.06.25 13:02:28 | 000,940,794 | ---- | M] () -- C:\\WINDOWS\\System32\\LoopyMusic.wav\par [2010.06.25 13:02:28 | 000,146,650 | ---- | M] () -- C:\\WINDOWS\\System32\\BuzzingBee.wav\par [2010.06.25 13:00:51 | 000,319,488 | ---- | M] (Realtek Semiconductor Corp.) -- C:\\WINDOWS\\HideWin.exe\par [2010.06.25 12:57:27 | 000,000,104 | ---- | M] () -- C:\\Dokumente und Einstellungen\\Robert\\Desktop\\Arbeitsplatz.lnk\par [2010.06.25 12:55:43 | 000,008,192 | ---- | M] () -- C:\\WINDOWS\\REGLOCS.OLD\par [2010.06.25 12:53:14 | 000,002,951 | ---- | M] () -- C:\\WINDOWS\\System32\\CONFIG.NT\par [2010.06.25 12:53:14 | 000,000,000 | RHS- | M] () -- C:\\MSDOS.SYS\par [2010.06.25 12:53:14 | 000,000,000 | RHS- | M] () -- C:\\IO.SYS\par [2010.06.25 12:53:14 | 000,000,000 | ---- | M] () -- C:\\WINDOWS\\control.ini\par [2010.06.25 12:53:14 | 000,000,000 | ---- | M] () -- C:\\CONFIG.SYS\par [2010.06.25 12:53:14 | 000,000,000 | ---- | M] () -- C:\\AUTOEXEC.BAT\par [2010.06.25 12:50:41 | 000,000,037 | ---- | M] () -- C:\\WINDOWS\\vbaddin.ini\par [2010.06.25 12:50:41 | 000,000,036 | ---- | M] () -- C:\\WINDOWS\\vb.ini\par [6 C:\\WINDOWS\\*.tmp files -> C:\\WINDOWS\\*.tmp -> ]\par [1 C:\\WINDOWS\\System32\\*.tmp files -> C:\\WINDOWS\\System32\\*.tmp -> ]\par \par ========== Files Created - No Company Name ==========\par \par [2010.07.04 14:04:20 | 000,163,840 | ---- | C] () -- C:\\WINDOWS\\Tgifie.exe\par [2010.07.04 14:04:14 | 000,163,840 | ---- | C] () -- C:\\WINDOWS\\Tgifid.exe\par [2010.07.04 13:58:27 | 000,028,288 | ---- | C] () -- C:\\WINDOWS\\System32\\dllcache\\xjis.nls\par [2010.07.04 13:58:03 | 000,083,748 | ---- | C] () -- C:\\WINDOWS\\System32\\dllcache\\prcp.nls\par [2010.07.04 13:58:03 | 000,083,748 | ---- | C] () -- C:\\WINDOWS\\System32\\dllcache\\prc.nls\par [2010.07.04 13:58:02 | 000,175,104 | ---- | C] () -- C:\\WINDOWS\\System32\\dllcache\\pintlcsa.dll\par [2010.07.04 13:57:48 | 000,047,066 | ---- | C] () -- C:\\WINDOWS\\System32\\dllcache\\ksc.nls\par [2010.07.04 13:57:47 | 001,158,818 | ---- | C] () -- C:\\WINDOWS\\System32\\dllcache\\korwbrkr.lex\par [2010.07.04 13:57:42 | 000,059,392 | ---- | C] () -- C:\\WINDOWS\\System32\\dllcache\\imscinst.exe\par [2010.07.04 13:57:41 | 000,196,665 | ---- | C] () -- C:\\WINDOWS\\System32\\dllcache\\imjpinst.exe\par [2010.07.04 13:57:39 | 000,134,339 | ---- | C] () -- C:\\WINDOWS\\System32\\dllcache\\imekr.lex\par [2010.07.04 13:57:33 | 013,463,552 | ---- | C] () -- C:\\WINDOWS\\System32\\dllcache\\hwxjpn.dll\par [2010.07.04 13:57:29 | 000,108,827 | ---- | C] () -- C:\\WINDOWS\\System32\\dllcache\\hanja.lex\par [2010.07.04 13:57:26 | 000,094,208 | ---- | C] () -- C:\\WINDOWS\\System32\\dllcache\\fpencode.dll\par [2010.07.04 13:57:16 | 000,173,568 | ---- | C] () -- C:\\WINDOWS\\System32\\dllcache\\chtskf.dll\par [2010.07.04 13:57:14 | 000,066,594 | ---- | C] () -- C:\\WINDOWS\\System32\\dllcache\\c_864.nls\par [2010.07.04 13:57:14 | 000,066,594 | ---- | C] () -- C:\\WINDOWS\\System32\\dllcache\\c_862.nls\par [2010.07.04 13:57:14 | 000,066,082 | ---- | C] () -- C:\\WINDOWS\\System32\\dllcache\\c_870.nls\par [2010.07.04 13:57:13 | 000,180,770 | ---- | C] () -- C:\\WINDOWS\\System32\\dllcache\\c_20932.nls\par [2010.07.04 13:57:13 | 000,177,698 | ---- | C] () -- C:\\WINDOWS\\System32\\dllcache\\c_20949.nls\par [2010.07.04 13:57:13 | 000,173,602 | ---- | C] () -- C:\\WINDOWS\\System32\\dllcache\\c_20936.nls\par [2010.07.04 13:57:13 | 000,066,594 | ---- | C] () -- C:\\WINDOWS\\System32\\dllcache\\c_858.nls\par [2010.07.04 13:57:13 | 000,066,594 | ---- | C] () -- C:\\WINDOWS\\System32\\dllcache\\c_720.nls\par [2010.07.04 13:57:13 | 000,066,082 | ---- | C] () -- C:\\WINDOWS\\System32\\dllcache\\c_708.nls\par [2010.07.04 13:57:13 | 000,066,082 | ---- | C] () -- C:\\WINDOWS\\System32\\dllcache\\c_28596.nls\par [2010.07.04 13:57:13 | 000,066,082 | ---- | C] () -- C:\\WINDOWS\\System32\\dllcache\\c_21027.nls\par [2010.07.04 13:57:13 | 000,066,082 | ---- | C] () -- C:\\WINDOWS\\System32\\dllcache\\c_21025.nls\par [2010.07.04 13:57:13 | 000,066,082 | ---- | C] () -- C:\\WINDOWS\\System32\\dllcache\\c_20924.nls\par [2010.07.04 13:57:13 | 000,066,082 | ---- | C] () -- C:\\WINDOWS\\System32\\dllcache\\c_20880.nls\par [2010.07.04 13:57:12 | 000,066,082 | ---- | C] () -- C:\\WINDOWS\\System32\\dllcache\\c_20871.nls\par [2010.07.04 13:57:12 | 000,066,082 | ---- | C] () -- C:\\WINDOWS\\System32\\dllcache\\c_20838.nls\par [2010.07.04 13:57:12 | 000,066,082 | ---- | C] () -- C:\\WINDOWS\\System32\\dllcache\\c_20833.nls\par [2010.07.04 13:57:12 | 000,066,082 | ---- | C] () -- C:\\WINDOWS\\System32\\dllcache\\c_20424.nls\par [2010.07.04 13:57:12 | 000,066,082 | ---- | C] () -- C:\\WINDOWS\\System32\\dllcache\\c_20423.nls\par [2010.07.04 13:57:12 | 000,066,082 | ---- | C] () -- C:\\WINDOWS\\System32\\dllcache\\c_20420.nls\par [2010.07.04 13:57:12 | 000,066,082 | ---- | C] () -- C:\\WINDOWS\\System32\\dllcache\\c_20297.nls\par [2010.07.04 13:57:12 | 000,066,082 | ---- | C] () -- C:\\WINDOWS\\System32\\dllcache\\c_20290.nls\par [2010.07.04 13:57:12 | 000,066,082 | ---- | C] () -- C:\\WINDOWS\\System32\\dllcache\\c_20285.nls\par [2010.07.04 13:57:12 | 000,066,082 | ---- | C] () -- C:\\WINDOWS\\System32\\dllcache\\c_20284.nls\par [2010.07.04 13:57:12 | 000,066,082 | ---- | C] () -- C:\\WINDOWS\\System32\\dllcache\\c_20280.nls\par [2010.07.04 13:57:12 | 000,066,082 | ---- | C] () -- C:\\WINDOWS\\System32\\dllcache\\c_20278.nls\par [2010.07.04 13:57:12 | 000,066,082 | ---- | C] () -- C:\\WINDOWS\\System32\\dllcache\\c_20277.nls\par [2010.07.04 13:57:12 | 000,066,082 | ---- | C] () -- C:\\WINDOWS\\System32\\dllcache\\c_20273.nls\par [2010.07.04 13:57:12 | 000,066,082 | ---- | C] () -- C:\\WINDOWS\\System32\\dllcache\\c_20269.nls\par [2010.07.04 13:57:12 | 000,066,082 | ---- | C] () -- C:\\WINDOWS\\System32\\dllcache\\c_20108.nls\par [2010.07.04 13:57:11 | 000,189,986 | ---- | C] () -- C:\\WINDOWS\\System32\\dllcache\\c_1361.nls\par [2010.07.04 13:57:11 | 000,187,938 | ---- | C] () -- C:\\WINDOWS\\System32\\dllcache\\c_20005.nls\par [2010.07.04 13:57:11 | 000,186,402 | ---- | C] () -- C:\\WINDOWS\\System32\\dllcache\\c_20001.nls\par [2010.07.04 13:57:11 | 000,185,378 | ---- | C] () -- C:\\WINDOWS\\System32\\dllcache\\c_20003.nls\par [2010.07.04 13:57:11 | 000,180,258 | ---- | C] () -- C:\\WINDOWS\\System32\\dllcache\\c_20004.nls\par [2010.07.04 13:57:11 | 000,180,258 | ---- | C] () -- C:\\WINDOWS\\System32\\dllcache\\c_20000.nls\par [2010.07.04 13:57:11 | 000,173,602 | ---- | C] () -- C:\\WINDOWS\\System32\\dllcache\\c_20002.nls\par [2010.07.04 13:57:11 | 000,066,082 | ---- | C] () -- C:\\WINDOWS\\System32\\dllcache\\c_20107.nls\par [2010.07.04 13:57:11 | 000,066,082 | ---- | C] () -- C:\\WINDOWS\\System32\\dllcache\\c_20106.nls\par [2010.07.04 13:57:11 | 000,066,082 | ---- | C] () -- C:\\WINDOWS\\System32\\dllcache\\c_20105.nls\par [2010.07.04 13:57:10 | 000,177,698 | ---- | C] () -- C:\\WINDOWS\\System32\\dllcache\\c_10003.nls\par [2010.07.04 13:57:10 | 000,173,602 | ---- | C] () -- C:\\WINDOWS\\System32\\dllcache\\c_10008.nls\par [2010.07.04 13:57:10 | 000,066,082 | ---- | C] () -- C:\\WINDOWS\\System32\\dllcache\\c_1149.nls\par [2010.07.04 13:57:10 | 000,066,082 | ---- | C] () -- C:\\WINDOWS\\System32\\dllcache\\c_1148.nls\par [2010.07.04 13:57:10 | 000,066,082 | ---- | C] () -- C:\\WINDOWS\\System32\\dllcache\\c_1147.nls\par [2010.07.04 13:57:10 | 000,066,082 | ---- | C] () -- C:\\WINDOWS\\System32\\dllcache\\c_1146.nls\par [2010.07.04 13:57:10 | 000,066,082 | ---- | C] () -- C:\\WINDOWS\\System32\\dllcache\\c_1145.nls\par [2010.07.04 13:57:10 | 000,066,082 | ---- | C] () -- C:\\WINDOWS\\System32\\dllcache\\c_1144.nls\par [2010.07.04 13:57:10 | 000,066,082 | ---- | C] () -- C:\\WINDOWS\\System32\\dllcache\\c_1143.nls\par [2010.07.04 13:57:10 | 000,066,082 | ---- | C] () -- C:\\WINDOWS\\System32\\dllcache\\c_1142.nls\par [2010.07.04 13:57:10 | 000,066,082 | ---- | C] () -- C:\\WINDOWS\\System32\\dllcache\\c_1141.nls\par [2010.07.04 13:57:10 | 000,066,082 | ---- | C] () -- C:\\WINDOWS\\System32\\dllcache\\c_1140.nls\par [2010.07.04 13:57:10 | 000,066,082 | ---- | C] () -- C:\\WINDOWS\\System32\\dllcache\\c_1047.nls\par [2010.07.04 13:57:10 | 000,066,082 | ---- | C] () -- C:\\WINDOWS\\System32\\dllcache\\c_10021.nls\par [2010.07.04 13:57:10 | 000,066,082 | ---- | C] () -- C:\\WINDOWS\\System32\\dllcache\\c_10005.nls\par [2010.07.04 13:57:10 | 000,066,082 | ---- | C] () -- C:\\WINDOWS\\System32\\dllcache\\c_10004.nls\par [2010.07.04 13:57:09 | 000,195,618 | ---- | C] () -- C:\\WINDOWS\\System32\\dllcache\\c_10002.nls\par [2010.07.04 13:57:09 | 000,162,850 | ---- | C] () -- C:\\WINDOWS\\System32\\dllcache\\c_10001.nls\par [2010.07.04 13:57:09 | 000,082,172 | ---- | C] () -- C:\\WINDOWS\\System32\\dllcache\\bopomofo.nls\par [2010.07.04 13:57:09 | 000,066,728 | ---- | C] () -- C:\\WINDOWS\\System32\\dllcache\\big5.nls\par [2010.07.04 13:55:52 | 000,000,488 | RH-- | C] () -- C:\\WINDOWS\\System32\\logonui.exe.manifest\par [2010.07.04 13:55:48 | 000,000,749 | RH-- | C] () -- C:\\WINDOWS\\System32\\wuaucpl.cpl.manifest\par [2010.07.04 13:55:48 | 000,000,749 | RH-- | C] () -- C:\\WINDOWS\\WindowsShell.Manifest\par [2010.07.04 13:55:48 | 000,000,749 | RH-- | C] () -- C:\\WINDOWS\\System32\\sapi.cpl.manifest\par [2010.07.04 13:55:48 | 000,000,749 | RH-- | C] () -- C:\\WINDOWS\\System32\\nwc.cpl.manifest\par [2010.07.04 13:55:48 | 000,000,749 | RH-- | C] () -- C:\\WINDOWS\\System32\\ncpa.cpl.manifest\par [2010.07.04 13:48:45 | 002,039,179 | ---- | C] () -- C:\\WINDOWS\\System32\\dllcache\\NT5.CAT\par [2010.07.04 13:48:45 | 001,246,537 | ---- | C] () -- C:\\WINDOWS\\System32\\dllcache\\SP3.CAT\par [2010.07.04 13:48:45 | 000,817,199 | ---- | C] () -- C:\\WINDOWS\\System32\\dllcache\\NT5IIS.CAT\par [2010.07.04 13:48:45 | 000,399,645 | ---- | C] () -- C:\\WINDOWS\\System32\\dllcache\\MAPIMIG.CAT\par [2010.07.04 13:48:45 | 000,144,484 | ---- | C] () -- C:\\WINDOWS\\System32\\dllcache\\netfx.cat\par [2010.07.04 13:48:45 | 000,105,926 | ---- | C] () -- C:\\WINDOWS\\System32\\dllcache\\tabletpc.cat\par [2010.07.04 13:48:45 | 000,041,270 | ---- | C] () -- C:\\WINDOWS\\System32\\dllcache\\MW770.CAT\par [2010.07.04 13:48:45 | 000,034,747 | ---- | C] () -- C:\\WINDOWS\\System32\\dllcache\\mediactr.cat\par [2010.07.04 13:48:45 | 000,033,765 | ---- | C] () -- C:\\WINDOWS\\System32\\dllcache\\FP4.CAT\par [2010.07.04 13:48:45 | 000,021,771 | ---- | C] () -- C:\\WINDOWS\\System32\\dllcache\\msn7.cat\par [2010.07.04 13:48:45 | 000,016,825 | ---- | C] () -- C:\\WINDOWS\\System32\\dllcache\\IMS.CAT\par [2010.07.04 13:48:45 | 000,014,433 | ---- | C] () -- C:\\WINDOWS\\System32\\dllcache\\msn9.cat\par [2010.07.04 13:48:45 | 000,013,472 | ---- | C] () -- C:\\WINDOWS\\System32\\dllcache\\HPCRDP.CAT\par [2010.07.04 13:48:45 | 000,012,363 | ---- | C] () -- C:\\WINDOWS\\System32\\dllcache\\MSMSGS.CAT\par [2010.07.04 13:48:45 | 000,010,027 | ---- | C] () -- C:\\WINDOWS\\System32\\dllcache\\MSTSWEB.CAT\par [2010.07.04 13:48:45 | 000,008,574 | ---- | C] () -- C:\\WINDOWS\\System32\\dllcache\\IASNT4.CAT\par [2010.07.04 13:48:45 | 000,007,382 | ---- | C] () -- C:\\WINDOWS\\System32\\dllcache\\OEMBIOS.CAT\par [2010.07.04 13:48:44 | 000,631,338 | ---- | C] () -- C:\\WINDOWS\\System32\\dllcache\\NT5INF.CAT\par [2010.07.04 13:30:38 | 000,163,840 | ---- | C] () -- C:\\WINDOWS\\Tgific.exe\par [2010.07.04 12:23:40 | 000,163,840 | ---- | C] () -- C:\\WINDOWS\\Tgifib.exe\par [2010.07.04 10:34:03 | 000,163,840 | ---- | C] () -- C:\\WINDOWS\\Tgifia.exe\par [2010.07.04 10:34:00 | 000,000,248 | -H-- | C] () -- C:\\WINDOWS\\tasks\\\{62C40AA6-4406-467a-A5A5-DFDF1B559B7A\}.job\par [2010.07.04 10:33:57 | 000,209,408 | ---- | C] () -- C:\\WINDOWS\\System32\\sshnas21.dll\par [2010.07.01 15:40:39 | 000,063,488 | RHS- | C] () -- C:\\WINDOWS\\System32\\tlntsess7.dll\par [2010.07.01 15:40:39 | 000,000,316 | -HS- | C] () -- C:\\WINDOWS\\tasks\\IPMBNRUO.job\par [2010.07.01 15:26:58 | 000,002,239 | ---- | C] () -- C:\\Dokumente und Einstellungen\\Robert\\.recently-used.xbel\par [2010.07.01 15:02:35 | 000,012,148 | ---- | C] () -- C:\\Dokumente und Einstellungen\\Robert\\hs_err_pid2992.log\par [2010.06.30 21:28:01 | 000,001,709 | ---- | C] () -- C:\\Dokumente und Einstellungen\\All Users\\Desktop\\Adobe Reader 9.lnk\par [2010.06.30 00:18:14 | 000,000,260 | ---- | C] () -- C:\\WINDOWS\\tasks\\WGASetup.job\par [2010.06.29 20:34:56 | 000,014,089 | ---- | C] () -- C:\\Dokumente und Einstellungen\\Robert\\hs_err_pid2592.log\par [2010.06.27 09:24:38 | 000,000,772 | ---- | C] () -- C:\\Dokumente und Einstellungen\\Robert\\Desktop\\Windows Media Player.lnk\par [2010.06.25 19:50:08 | 000,000,899 | ---- | C] () -- C:\\Dokumente und Einstellungen\\All Users\\Desktop\\Tactical Ops.lnk\par [2010.06.25 15:02:50 | 000,001,451 | ---- | C] () -- C:\\Dokumente und Einstellungen\\All Users\\Desktop\\ICQ7.2.lnk\par [2010.06.25 14:41:20 | 000,000,211 | -HS- | C] () -- C:\\boot.ini\par [2010.06.25 14:41:17 | 000,021,483 | ---- | C] () -- C:\\WINDOWS\\System32\\$winnt$.inf\par [2010.06.25 14:37:48 | 1609,842,688 | ---- | C] () -- C:\\WINDOWS\\MEMORY.DMP\par [2010.06.25 13:47:35 | 000,004,444 | ---- | C] () -- C:\\WINDOWS\\System32\\pid.PNF\par [2010.06.25 13:44:47 | 000,001,374 | ---- | C] () -- C:\\WINDOWS\\imsins.BAK\par [2010.06.25 13:44:42 | 001,685,606 | ---- | C] () -- C:\\WINDOWS\\System32\\dllcache\\sam.spd\par [2010.06.25 13:44:42 | 000,605,050 | ---- | C] () -- C:\\WINDOWS\\System32\\dllcache\\r1033tts.lxa\par [2010.06.25 13:44:42 | 000,000,888 | ---- | C] () -- C:\\WINDOWS\\System32\\dllcache\\sam.sdf\par [2010.06.25 13:44:41 | 000,643,717 | ---- | C] () -- C:\\WINDOWS\\System32\\dllcache\\ltts1033.lxa\par [2010.06.25 13:44:39 | 000,066,082 | ---- | C] () -- C:\\WINDOWS\\System32\\dllcache\\c_28603.nls\par [2010.06.25 13:44:39 | 000,066,082 | ---- | C] () -- C:\\WINDOWS\\System32\\c_28603.nls\par [2010.06.25 13:44:38 | 000,066,082 | ---- | C] () -- C:\\WINDOWS\\System32\\dllcache\\c_28599.nls\par [2010.06.25 13:44:38 | 000,066,082 | ---- | C] () -- C:\\WINDOWS\\System32\\c_28599.nls\par [2010.06.25 13:44:36 | 000,066,082 | ---- | C] () -- C:\\WINDOWS\\System32\\dllcache\\c_28595.nls\par [2010.06.25 13:44:36 | 000,066,082 | ---- | C] () -- C:\\WINDOWS\\System32\\C_28595.NLS\par [2010.06.25 13:44:35 | 000,066,082 | ---- | C] () -- C:\\WINDOWS\\System32\\dllcache\\c_28597.nls\par [2010.06.25 13:44:35 | 000,066,082 | ---- | C] () -- C:\\WINDOWS\\System32\\C_28597.NLS\par [2010.06.25 13:44:34 | 000,066,082 | ---- | C] () -- C:\\WINDOWS\\System32\\dllcache\\c_28594.nls\par [2010.06.25 13:44:34 | 000,066,082 | ---- | C] () -- C:\\WINDOWS\\System32\\C_28594.NLS\par [2010.06.25 13:44:32 | 000,066,082 | ---- | C] () -- C:\\WINDOWS\\System32\\dllcache\\c_20127.nls\par [2010.06.25 13:44:32 | 000,066,082 | ---- | C] () -- C:\\WINDOWS\\System32\\c_20127.nls\par [2010.06.25 13:44:29 | 000,001,806 | ---- | C] () -- C:\\WINDOWS\\System32\\AUTOEXEC.NT\par [2010.06.25 13:42:41 | 000,007,334 | ---- | C] () -- C:\\WINDOWS\\System32\\dllcache\\wmerrenu.cat\par [2010.06.25 13:42:26 | 000,273,307 | ---- | C] () -- C:\\WINDOWS\\setupapi.old\par [2010.06.25 13:42:07 | 000,090,296 | ---- | C] () -- C:\\WINDOWS\\System32\\FNTCACHE.DAT\par [2010.06.25 13:19:09 | 000,000,778 | ---- | C] () -- C:\\Dokumente und Einstellungen\\All Users\\Desktop\\GIMP 2.lnk\par [2010.06.25 13:15:49 | 000,001,671 | ---- | C] () -- C:\\Dokumente und Einstellungen\\All Users\\Desktop\\Avira AntiVir Control Center.lnk\par [2010.06.25 13:10:17 | 000,000,000 | ---- | C] () -- C:\\WINDOWS\\nsreg.dat\par [2010.06.25 13:10:10 | 000,001,566 | ---- | C] () -- C:\\Dokumente und Einstellungen\\All Users\\Desktop\\Mozilla Firefox.lnk\par [2010.06.25 13:08:05 | 000,000,906 | ---- | C] () -- C:\\Dokumente und Einstellungen\\Robert\\Desktop\\DVDVideoSoft Free Studio.lnk\par [2010.06.25 13:02:28 | 000,940,794 | ---- | C] () -- C:\\WINDOWS\\System32\\LoopyMusic.wav\par [2010.06.25 13:02:28 | 000,146,650 | ---- | C] () -- C:\\WINDOWS\\System32\\BuzzingBee.wav\par [2010.06.25 13:01:06 | 000,000,553 | ---- | C] () -- C:\\WINDOWS\\USetup.iss\par [2010.06.25 12:59:41 | 000,160,101 | ---- | C] () -- C:\\WINDOWS\\System32\\nvapps.xml\par [2010.06.25 12:59:38 | 000,017,937 | ---- | C] () -- C:\\WINDOWS\\System32\\nvdisp.nvu\par [2010.06.25 12:59:03 | 000,000,659 | ---- | C] () -- C:\\WINDOWS\\System32\\nvsmu.nvu\par [2010.06.25 12:59:02 | 000,002,016 | ---- | C] () -- C:\\WINDOWS\\System32\\nvsmb.nvu\par [2010.06.25 12:57:27 | 000,000,104 | ---- | C] () -- C:\\Dokumente und Einstellungen\\Robert\\Desktop\\Arbeitsplatz.lnk\par [2010.06.25 12:56:46 | 000,000,190 | -HS- | C] () -- C:\\Dokumente und Einstellungen\\Robert\\ntuser.ini\par [2010.06.25 12:56:45 | 000,024,576 | -H-- | C] () -- C:\\Dokumente und Einstellungen\\Robert\\ntuser.dat.LOG\par [2010.06.25 12:56:44 | 001,048,576 | -H-- | C] () -- C:\\Dokumente und Einstellungen\\Robert\\NTUSER.DAT\par [2010.06.25 12:55:43 | 000,008,192 | ---- | C] () -- C:\\WINDOWS\\REGLOCS.OLD\par [2010.06.25 12:54:56 | 000,002,048 | --S- | C] () -- C:\\WINDOWS\\bootstat.dat\par [2010.06.25 12:53:14 | 000,002,951 | ---- | C] () -- C:\\WINDOWS\\System32\\CONFIG.NT\par [2010.06.25 12:53:14 | 000,000,000 | RHS- | C] () -- C:\\MSDOS.SYS\par [2010.06.25 12:53:14 | 000,000,000 | RHS- | C] () -- C:\\IO.SYS\par [2010.06.25 12:53:14 | 000,000,000 | ---- | C] () -- C:\\CONFIG.SYS\par [2010.06.25 12:53:14 | 000,000,000 | ---- | C] () -- C:\\AUTOEXEC.BAT\par [2010.06.25 12:53:11 | 000,023,392 | ---- | C] () -- C:\\WINDOWS\\System32\\nscompat.tlb\par [2010.06.25 12:53:11 | 000,016,832 | ---- | C] () -- C:\\WINDOWS\\System32\\amcompat.tlb\par [2010.06.25 12:53:10 | 000,316,640 | ---- | C] () -- C:\\WINDOWS\\WMSysPr9.prx\par [2010.06.25 12:52:26 | 000,000,488 | RH-- | C] () -- C:\\WINDOWS\\System32\\WindowsLogon.manifest\par [2010.06.25 12:52:22 | 000,000,749 | RH-- | C] () -- C:\\WINDOWS\\System32\\cdplayer.exe.manifest\par [2010.06.25 12:52:09 | 004,399,505 | ---- | C] () -- C:\\WINDOWS\\System32\\dllcache\\nls302en.lex\par [2010.06.25 12:51:58 | 000,048,680 | -HS- | C] () -- C:\\WINDOWS\\winnt256.bmp\par [2010.06.25 12:51:58 | 000,048,680 | -HS- | C] () -- C:\\WINDOWS\\winnt.bmp\par [2010.06.25 12:51:54 | 000,000,984 | ---- | C] () -- C:\\WINDOWS\\System32\\dllcache\\srframe.mmf\par [2010.06.25 12:51:26 | 000,380,416 | ---- | C] () -- C:\\WINDOWS\\System32\\dllcache\\msinfo.dll\par [2010.06.25 12:50:52 | 000,022,880 | ---- | C] () -- C:\\WINDOWS\\System32\\emptyregdb.dat\par [2010.06.25 12:50:12 | 000,065,832 | ---- | C] () -- C:\\WINDOWS\\Santa Fe-Stuck.bmp\par [2010.06.25 12:50:12 | 000,026,680 | ---- | C] () -- C:\\WINDOWS\\F\'e4cher.bmp\par [2010.06.25 12:50:12 | 000,009,522 | ---- | C] () -- C:\\WINDOWS\\Zapotek.bmp\par [2010.06.25 12:50:11 | 000,093,702 | ---- | C] () -- C:\\WINDOWS\\System32\\subrange.uce\par [2010.06.25 12:50:11 | 000,065,978 | ---- | C] () -- C:\\WINDOWS\\Seifenblase.bmp\par [2010.06.25 12:50:11 | 000,065,954 | ---- | C] () -- C:\\WINDOWS\\Pr\'e4riewind.bmp\par [2010.06.25 12:50:11 | 000,026,582 | ---- | C] () -- C:\\WINDOWS\\Granit.bmp\par [2010.06.25 12:50:11 | 000,017,362 | ---- | C] () -- C:\\WINDOWS\\Rhododendron.bmp\par [2010.06.25 12:50:11 | 000,017,336 | ---- | C] () -- C:\\WINDOWS\\Angler.bmp\par [2010.06.25 12:50:11 | 000,017,062 | ---- | C] () -- C:\\WINDOWS\\Kaffeetasse.bmp\par [2010.06.25 12:50:11 | 000,016,740 | ---- | C] () -- C:\\WINDOWS\\System32\\shiftjis.uce\par [2010.06.25 12:50:11 | 000,016,730 | ---- | C] () -- C:\\WINDOWS\\Feder.bmp\par [2010.06.25 12:50:11 | 000,012,876 | ---- | C] () -- C:\\WINDOWS\\System32\\korean.uce\par [2010.06.25 12:50:11 | 000,008,484 | ---- | C] () -- C:\\WINDOWS\\System32\\kanji_2.uce\par [2010.06.25 12:50:11 | 000,006,948 | ---- | C] () -- C:\\WINDOWS\\System32\\kanji_1.uce\par [2010.06.25 12:50:11 | 000,001,272 | ---- | C] () -- C:\\WINDOWS\\Blaue Spitzen 16.bmp\par [2010.06.25 12:50:10 | 000,060,458 | ---- | C] () -- C:\\WINDOWS\\System32\\ideograf.uce\par [2010.06.25 12:50:10 | 000,024,006 | ---- | C] () -- C:\\WINDOWS\\System32\\gb2312.uce\par [2010.06.25 12:50:10 | 000,022,984 | ---- | C] () -- C:\\WINDOWS\\System32\\bopomofo.uce\par [2010.06.25 12:50:09 | 000,003,286 | ---- | C] () -- C:\\WINDOWS\\System32\\tslabels.h\par [2010.06.25 12:50:09 | 000,001,237 | ---- | C] () -- C:\\WINDOWS\\System32\\usrlogon.cmd\par [2010.06.25 12:50:08 | 000,000,768 | ---- | C] () -- C:\\WINDOWS\\System32\\msdtcprf.h\par [2010.06.25 12:50:04 | 000,063,488 | ---- | C] () -- C:\\WINDOWS\\System32\\wmimgmt.msc\par [2008.03.19 17:04:00 | 001,703,936 | ---- | C] () -- C:\\WINDOWS\\System32\\nvwdmcpl.dll\par [2008.03.19 17:04:00 | 001,486,848 | ---- | C] () -- C:\\WINDOWS\\System32\\nview.dll\par [2008.03.19 17:04:00 | 001,019,904 | ---- | C] () -- C:\\WINDOWS\\System32\\nvwimg.dll\par [2008.03.19 17:04:00 | 000,466,944 | ---- | C] () -- C:\\WINDOWS\\System32\\nvshell.dll\par [2008.03.19 17:04:00 | 000,286,720 | ---- | C] () -- C:\\WINDOWS\\System32\\nvnt4cpl.dll\par \par ========== LOP Check ==========\par \par [2010.06.25 15:02:31 | 000,000,000 | ---D | M] -- C:\\Dokumente und Einstellungen\\All Users\\Anwendungsdaten\\ICQ\par [2010.07.01 15:26:58 | 000,000,000 | ---D | M] -- C:\\Dokumente und Einstellungen\\Robert\\Anwendungsdaten\\gtk-2.0\par [2010.07.04 18:22:16 | 000,000,000 | ---D | M] -- C:\\Dokumente und Einstellungen\\Robert\\Anwendungsdaten\\ICQ\par [2010.07.03 23:01:40 | 000,000,000 | ---D | M] -- C:\\Dokumente und Einstellungen\\Robert\\Anwendungsdaten\\Utherverse\par [2010.07.04 16:58:31 | 000,000,316 | -HS- | M] () -- C:\\WINDOWS\\Tasks\\IPMBNRUO.job\par [2010.07.04 17:01:41 | 000,000,260 | ---- | M] () -- C:\\WINDOWS\\Tasks\\WGASetup.job\par [2010.07.04 18:02:05 | 000,000,248 | -H-- | M] () -- C:\\WINDOWS\\Tasks\\\{62C40AA6-4406-467a-A5A5-DFDF1B559B7A\}.job\par \par ========== Purity Check ==========\par \par \par \par ========== Custom Scans ==========\par \par \par < %ALLUSERSPROFILE%\\Application Data\\*. >\par \par < %ALLUSERSPROFILE%\\Application Data\\*.exe /s >\par \par < %APPDATA%\\*. >\par [2010.06.30 21:28:23 | 000,000,000 | ---D | M] -- C:\\Dokumente und Einstellungen\\Robert\\Anwendungsdaten\\Adobe\par [2010.06.25 13:36:43 | 000,000,000 | ---D | M] -- C:\\Dokumente und Einstellungen\\Robert\\Anwendungsdaten\\Avira\par [2010.07.01 15:26:58 | 000,000,000 | ---D | M] -- C:\\Dokumente und Einstellungen\\Robert\\Anwendungsdaten\\gtk-2.0\par [2010.07.04 18:22:16 | 000,000,000 | ---D | M] -- C:\\Dokumente und Einstellungen\\Robert\\Anwendungsdaten\\ICQ\par [2010.06.25 12:57:03 | 000,000,000 | ---D | M] -- C:\\Dokumente und Einstellungen\\Robert\\Anwendungsdaten\\Identities\par [2010.06.25 12:59:50 | 000,000,000 | ---D | M] -- C:\\Dokumente und Einstellungen\\Robert\\Anwendungsdaten\\InstallShield\par [2010.06.25 14:37:36 | 000,000,000 | ---D | M] -- C:\\Dokumente und Einstellungen\\Robert\\Anwendungsdaten\\Macromedia\par [2010.07.04 10:12:28 | 000,000,000 | --SD | M] -- C:\\Dokumente und Einstellungen\\Robert\\Anwendungsdaten\\Microsoft\par [2010.06.25 13:10:21 | 000,000,000 | ---D | M] -- C:\\Dokumente und Einstellungen\\Robert\\Anwendungsdaten\\Mozilla\par [2010.06.25 15:06:11 | 000,000,000 | ---D | M] -- C:\\Dokumente und Einstellungen\\Robert\\Anwendungsdaten\\Sun\par [2010.07.03 23:01:40 | 000,000,000 | ---D | M] -- C:\\Dokumente und Einstellungen\\Robert\\Anwendungsdaten\\Utherverse\par \par < %APPDATA%\\*.exe /s >\par \par < %SYSTEMDRIVE%\\*.exe >\par \par \par < MD5 for: AGP440.SYS >\par [2008.04.14 08:03:54 | 020,108,202 | ---- | M] () .cab file -- C:\\WINDOWS\\Driver Cache\\i386\\sp3.cab:AGP440.sys\par [2008.04.14 08:03:54 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- C:\\WINDOWS\\system32\\drivers\\agp440.sys\par \par < MD5 for: ATAPI.SYS >\par [2008.04.14 08:03:54 | 020,108,202 | ---- | M] () .cab file -- C:\\WINDOWS\\Driver Cache\\i386\\sp3.cab:atapi.sys\par [2008.04.14 00:10:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\\WINDOWS\\system32\\drivers\\atapi.sys\par \par < MD5 for: EVENTLOG.DLL >\par [2008.04.14 07:52:12 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=04955AA695448C181B367D964AF158AA -- C:\\WINDOWS\\system32\\dllcache\\eventlog.dll\par [2008.04.14 07:52:12 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=04955AA695448C181B367D964AF158AA -- C:\\WINDOWS\\system32\\eventlog.dll\par \par < MD5 for: NETLOGON.DLL >\par [2008.04.14 07:52:20 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=0098D35F91DEAB9C127360A877F2CF84 -- C:\\WINDOWS\\system32\\dllcache\\netlogon.dll\par [2008.04.14 07:52:20 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=0098D35F91DEAB9C127360A877F2CF84 -- C:\\WINDOWS\\system32\\netlogon.dll\par \par < MD5 for: SCECLI.DLL >\par [2008.04.14 07:52:24 | 000,187,904 | ---- | M] (Microsoft Corporation) MD5=5132443DF6FC3771A17AB4AE55DCBC28 -- C:\\WINDOWS\\system32\\dllcache\\scecli.dll\par [2008.04.14 07:52:24 | 000,187,904 | ---- | M] (Microsoft Corporation) MD5=5132443DF6FC3771A17AB4AE55DCBC28 -- C:\\WINDOWS\\system32\\scecli.dll\par \par < MD5 for: USERINIT.EXE >\par [2008.04.14 07:53:04 | 000,026,624 | ---- | M] (Microsoft Corporation) MD5=788F95312E26389D596C0FA55834E106 -- C:\\WINDOWS\\system32\\dllcache\\userinit.exe\par [2008.04.14 07:53:04 | 000,026,624 | ---- | M] (Microsoft Corporation) MD5=788F95312E26389D596C0FA55834E106 -- C:\\WINDOWS\\system32\\userinit.exe\par \par < MD5 for: WS2IFSL.SYS >\par [2001.08.18 12:00:00 | 000,012,032 | ---- | M] (Microsoft Corporation) MD5=6ABE6E225ADB5A751622A9CC3BC19CE8 -- C:\\WINDOWS\\system32\\dllcache\\ws2ifsl.sys\par [2001.08.18 12:00:00 | 000,012,032 | ---- | M] (Microsoft Corporation) MD5=6ABE6E225ADB5A751622A9CC3BC19CE8 -- C:\\WINDOWS\\system32\\drivers\\ws2ifsl.sys\par \par < %systemroot%\\system32\\drivers\\*.sys /lockedfiles >\par \par < %systemroot%\\System32\\config\\*.sav >\par [2010.07.04 15:47:09 | 000,262,144 | ---- | M] () -- C:\\WINDOWS\\system32\\config\\default.sav\par [2010.07.04 13:35:13 | 000,262,144 | ---- | M] () -- C:\\WINDOWS\\system32\\config\\security.sav\par [2010.07.04 15:47:09 | 011,010,048 | ---- | M] () -- C:\\WINDOWS\\system32\\config\\software.sav\par [2010.07.04 15:47:11 | 003,932,160 | ---- | M] () -- C:\\WINDOWS\\system32\\config\\system.sav\par \par < %systemroot%\\*. /mp /s >\par \par < %systemroot%\\system32\\*.dll /lockedfiles >\par [2008.04.14 07:52:10 | 001,267,200 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\\WINDOWS\\system32\\comsvcs.dll\par [2010.07.01 15:40:39 | 000,063,488 | RHS- | M] () Unable to obtain MD5 -- C:\\WINDOWS\\system32\\tlntsess7.dll\par [1 C:\\WINDOWS\\system32\\*.tmp files -> C:\\WINDOWS\\system32\\*.tmp -> ]\par < End of report >\par } |
|
04.07.2010, 19:10
| #7 |
| /// Malware-holic | Internet Explorer öffnet ständig werbung ohne zutuhn bitte erstelle und poste ein combofix log. Ein Leitfaden und Tutorium zur Nutzung von ComboFix |
|
04.07.2010, 19:31
| #8 |
| | Internet Explorer öffnet ständig werbung ohne zutuhn LOG Combofix Logfile: Code:
ATTFilter ComboFix 10-07-03.06 - Robert 04.07.2010 20:26:01.1.2 - x86
Microsoft Windows XP Professional 5.1.2600.3.1252.49.1031.18.1535.683 [GMT 2:00]
ausgeführt von:: c:\dokumente und einstellungen\Robert\Eigene Dateien\Downloads\ComboFix.exe
AV: AntiVir Desktop *On-access scanning disabled* (Updated) {AD166499-45F9-482A-A743-FDD3350758C7}
.
(((((((((((((((((((((((((((((((((((( Weitere Löschungen ))))))))))))))))))))))))))))))))))))))))))))))))
.
c:\windows\system32\sshnas21.dll
c:\windows\Tgifia.exe
c:\windows\Tgifib.exe
c:\windows\Tgific.exe
c:\windows\Tgifid.exe
c:\windows\Tgifie.exe
.
((((((((((((((((((((((((((((((((((((((( Treiber/Dienste )))))))))))))))))))))))))))))))))))))))))))))))))
.
-------\Legacy_SSHNAS
-------\Service_SSHNAS
((((((((((((((((((((((( Dateien erstellt von 2010-06-04 bis 2010-07-04 ))))))))))))))))))))))))))))))
.
2010-07-04 11:58 . 2001-08-18 10:00 41600 -c--a-w- c:\windows\system32\dllcache\weitekp9.dll
2010-07-04 11:57 . 2008-04-14 05:52 45056 -c--a-w- c:\windows\system32\dllcache\nsepm.dll
2010-07-04 11:56 . 2008-04-14 05:52 847360 -c--a-w- c:\windows\system32\dllcache\inetmgr.dll
2010-07-04 11:49 . 2001-08-18 10:00 24661 -c--a-w- c:\windows\system32\dllcache\spxcoins.dll
2010-07-04 11:49 . 2001-08-18 10:00 24661 ----a-w- c:\windows\system32\spxcoins.dll
2010-07-04 11:49 . 2001-08-18 10:00 13824 -c--a-w- c:\windows\system32\dllcache\irclass.dll
2010-07-04 11:49 . 2001-08-18 10:00 13824 ----a-w- c:\windows\system32\irclass.dll
2010-07-04 11:31 . 2010-07-04 11:31 -------- d-----w- c:\windows\system32\LogFiles
2010-07-03 21:01 . 2010-07-03 21:01 -------- d-----w- c:\dokumente und einstellungen\Robert\Anwendungsdaten\Utherverse
2010-07-03 20:58 . 2010-07-03 20:58 -------- d-----w- c:\dokumente und einstellungen\Robert\Startmen³
2010-07-03 20:50 . 2010-07-03 20:50 -------- d-----w- c:\programme\Utherverse Digital Inc
2010-07-01 13:48 . 2010-07-04 16:22 -------- d-----w- c:\windows\system32\NtmsData
2010-07-01 13:40 . 2010-07-01 13:40 63488 --sha-r- c:\windows\system32\tlntsess7.dll
2010-07-01 13:26 . 2010-07-01 13:26 -------- d-----w- c:\dokumente und einstellungen\Robert\Anwendungsdaten\gtk-2.0
2010-06-30 19:28 . 2010-06-30 19:29 -------- d-----w- c:\dokumente und einstellungen\Robert\Lokale Einstellungen\Anwendungsdaten\Adobe
2010-06-30 19:27 . 2010-06-30 19:27 -------- d-----w- c:\programme\Gemeinsame Dateien\Adobe
2010-06-29 22:18 . 2010-06-29 22:18 -------- d-----w- c:\windows\system32\KB905474
2010-06-29 14:54 . 2010-06-29 14:55 -------- d-----w- C:\e711cd94357417b49e56e2f1ac14a4c8
2010-06-29 14:48 . 2010-02-12 10:03 293376 ------w- c:\windows\system32\browserchoice.exe
2010-06-29 14:44 . 2007-07-27 21:11 26488 ----a-w- c:\windows\system32\spupdsvc.exe
2010-06-29 14:44 . 2010-06-30 07:13 -------- d--h--w- c:\windows\$hf_mig$
2010-06-27 15:55 . 2010-06-27 15:55 -------- d-----w- c:\dokumente und einstellungen\Robert\Lokale Einstellungen\Anwendungsdaten\Identities
2010-06-26 09:08 . 2008-04-14 05:52 221184 ----a-w- c:\windows\system32\wmpns.dll
2010-06-25 15:44 . 2010-06-25 15:44 -------- d-----w- c:\dokumente und einstellungen\Robert\.thumbnails
2010-06-25 15:44 . 2010-07-01 13:27 -------- d-----w- c:\dokumente und einstellungen\Robert\.gimp-2.6
2010-06-25 13:07 . 2010-06-25 13:07 -------- d-----w- c:\windows\Sun
2010-06-25 13:07 . 2010-06-25 13:07 -------- d-----w- c:\programme\Gemeinsame Dateien\Java
2010-06-25 13:07 . 2010-06-25 13:07 503808 ----a-w- c:\dokumente und einstellungen\Robert\Anwendungsdaten\Sun\Java\Deployment\SystemCache\6.0\46\f84c6ae-693d0cd1-n\msvcp71.dll
2010-06-25 13:07 . 2010-06-25 13:07 499712 ----a-w- c:\dokumente und einstellungen\Robert\Anwendungsdaten\Sun\Java\Deployment\SystemCache\6.0\46\f84c6ae-693d0cd1-n\jmc.dll
2010-06-25 13:07 . 2010-06-25 13:07 348160 ----a-w- c:\dokumente und einstellungen\Robert\Anwendungsdaten\Sun\Java\Deployment\SystemCache\6.0\46\f84c6ae-693d0cd1-n\msvcr71.dll
2010-06-25 13:06 . 2010-06-25 13:06 61440 ----a-w- c:\dokumente und einstellungen\Robert\Anwendungsdaten\Sun\Java\Deployment\SystemCache\6.0\50\5535ab32-4c47fad4-n\decora-sse.dll
2010-06-25 13:06 . 2010-06-25 13:06 12800 ----a-w- c:\dokumente und einstellungen\Robert\Anwendungsdaten\Sun\Java\Deployment\SystemCache\6.0\50\5535ab32-4c47fad4-n\decora-d3d.dll
2010-06-25 13:06 . 2010-06-25 13:06 411368 ----a-w- c:\windows\system32\deployJava1.dll
2010-06-25 13:06 . 2010-06-25 13:06 -------- d-----w- c:\programme\Java
2010-06-25 13:02 . 2010-06-25 13:02 -------- d-----w- c:\programme\ICQ6Toolbar
2010-06-25 13:02 . 2010-06-25 13:02 -------- d-----w- c:\dokumente und einstellungen\All Users\Anwendungsdaten\ICQ
2010-06-25 13:02 . 2010-07-04 17:34 -------- d-----w- c:\dokumente und einstellungen\Robert\Anwendungsdaten\ICQ
2010-06-25 13:02 . 2010-06-25 13:02 -------- d-----w- c:\dokumente und einstellungen\Robert\Lokale Einstellungen\Anwendungsdaten\AOL
2010-06-25 13:02 . 2010-06-25 13:03 -------- d-----w- c:\programme\ICQ7.2
.
(((((((((((((((((((((((((((((((((((( Find3M Bericht ))))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-07-04 15:02 . 2001-08-18 10:00 48156 ----a-w- c:\windows\system32\perfc007.dat
2010-07-04 15:02 . 2001-08-18 10:00 316594 ----a-w- c:\windows\system32\perfh007.dat
2010-07-04 12:05 . 2010-06-25 11:16 12328 ----a-w- c:\dokumente und einstellungen\Robert\Lokale Einstellungen\Anwendungsdaten\GDIPFONTCACHEV1.DAT
2010-07-04 11:54 . 2010-06-25 10:50 22880 ----a-w- c:\windows\system32\emptyregdb.dat
2010-06-26 11:00 . 2010-06-25 10:52 86327 ----a-w- c:\windows\pchealth\helpctr\OfflineCache\index.dat
2010-06-25 13:02 . 2010-06-25 10:59 -------- d--h--w- c:\programme\InstallShield Installation Information
2010-06-25 11:36 . 2010-06-25 11:36 -------- d-----w- c:\dokumente und einstellungen\Robert\Anwendungsdaten\Avira
2010-06-25 11:18 . 2010-06-25 11:18 -------- d-----w- c:\programme\GIMP-2.0
2010-06-25 11:15 . 2010-06-25 11:15 -------- d-----w- c:\programme\Avira
2010-06-25 11:15 . 2010-06-25 11:15 -------- d-----w- c:\dokumente und einstellungen\All Users\Anwendungsdaten\Avira
2010-06-25 11:10 . 2010-06-25 11:10 0 ----a-w- c:\windows\nsreg.dat
2010-06-25 11:08 . 2010-06-25 11:08 -------- d-----w- c:\programme\Gemeinsame Dateien\DVDVideoSoft
2010-06-25 11:08 . 2010-06-25 11:08 -------- d-----w- c:\programme\DVDVideoSoft
2010-06-25 11:03 . 2010-06-25 11:03 -------- d-----w- c:\programme\Infogrames
2010-06-25 11:00 . 2010-06-25 10:59 -------- d-----w- c:\programme\Realtek
2010-06-25 11:00 . 2010-06-25 11:00 319488 ----a-w- c:\windows\HideWin.exe
2010-06-25 10:59 . 2010-06-25 10:59 -------- d-----w- c:\dokumente und einstellungen\Robert\Anwendungsdaten\InstallShield
2010-06-25 10:59 . 2010-06-25 10:59 -------- d-----w- c:\programme\Gemeinsame Dateien\InstallShield
2010-06-25 10:53 . 2010-06-25 10:53 -------- d-----w- c:\programme\microsoft frontpage
2010-06-25 10:52 . 2010-06-25 10:52 -------- d-----w- c:\programme\Online-Dienste
2010-06-25 10:51 . 2010-06-25 10:51 -------- d-----w- c:\programme\Gemeinsame Dateien\Dienste
.
(((((((((((((((((((((((((((( Autostartpunkte der Registrierung ))))))))))))))))))))))))))))))))))))))))
.
.
*Hinweis* leere Einträge & legitime Standardeinträge werden nicht angezeigt.
REGEDIT4
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2008-03-19 13508608]
"nwiz"="nwiz.exe" [2008-03-19 1630208]
"avgnt"="c:\programme\Avira\AntiVir Desktop\avgnt.exe" [2010-03-02 282792]
"SunJavaUpdateSched"="c:\programme\Gemeinsame Dateien\Java\Java Update\jusched.exe" [2010-02-18 248040]
"Adobe Reader Speed Launcher"="c:\programme\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2010-06-20 35760]
"Adobe ARM"="c:\programme\Gemeinsame Dateien\Adobe\ARM\1.0\AdobeARM.exe" [2010-06-09 976832]
"RTHDCPL"="RTHDCPL.EXE" [2008-07-31 16806912]
"NvMediaCenter"="c:\windows\system32\NvMcTray.dll" [2008-03-19 86016]
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"%windir%\\system32\\sessmgr.exe"=
"c:\\Programme\\Infogrames\\Tactical Ops\\System\\TacticalOps.exe"=
"c:\\Programme\\ICQ7.2\\ICQ.exe"=
"c:\\Programme\\ICQ7.2\\aolload.exe"=
R1 BIOS;BIOS;c:\windows\system32\drivers\BIOS.sys [25.06.2010 12:58 13696]
R2 AntiVirSchedulerService;Avira AntiVir Planer;c:\programme\Avira\AntiVir Desktop\sched.exe [25.06.2010 13:15 135336]
R2 ICQ Service;ICQ Service;c:\programme\ICQ6Toolbar\ICQ Service.exe [25.06.2010 15:02 246520]
R3 NVHDA;Service for NVIDIA HDMI Audio Driver;c:\windows\system32\drivers\nvhda32.sys [11.12.2007 14:30 30880]
.
Inhalt des "geplante Tasks" Ordners
2010-07-04 c:\windows\Tasks\WGASetup.job
- c:\windows\system32\KB905474\wgasetup.exe [2010-06-29 20:18]
.
.
------- Zusätzlicher Suchlauf -------
.
uStart Page = hxxp://start.icq.com/
uInternet Connection Wizard,ShellNext = hxxp://www.dvdvideosoft.com/r/de_AfterInstallA.htm
IE: {{72EFBFE4-C74F-4187-AEFD-73EA3BE968D6} - c:\programme\ICQ7.2\ICQ.exe
FF - ProfilePath - c:\dokumente und einstellungen\Robert\Anwendungsdaten\Mozilla\Firefox\Profiles\yojnk6bd.default\
FF - prefs.js: browser.search.selectedEngine - Google
FF - prefs.js: browser.startup.homepage - hxxp://google.de/
FF - prefs.js: keyword.URL - hxxp://search.icq.com/search/afe_results.php?ch_id=afex&tb_ver=2.0.0.4&q=
FF - plugin: c:\programme\Java\jre6\bin\new_plugin\npdeployJava1.dll
FF - plugin: c:\programme\Mozilla Firefox\plugins\npdeployJava1.dll
---- FIREFOX Richtlinien ----
c:\programme\Mozilla Firefox\greprefs\security-prefs.js - pref("security.ssl.allow_unrestricted_renego_everywhere__temporarily_available_pref", true);
c:\programme\Mozilla Firefox\greprefs\security-prefs.js - pref("security.ssl.renego_unrestricted_hosts", "");
c:\programme\Mozilla Firefox\greprefs\security-prefs.js - pref("security.ssl.treat_unsafe_negotiation_as_broken", false);
c:\programme\Mozilla Firefox\greprefs\security-prefs.js - pref("security.ssl.require_safe_negotiation", false);
.
- - - - Entfernte verwaiste Registrierungseinträge - - - -
WebBrowser-{D4027C7F-154A-4066-A1AD-4243D8127440} - (no file)
HKCU-Run-VO3N0SLJ2I - c:\windows\Tgifid.exe
**************************************************************************
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, GMER - Rootkit Detector and Remover
Rootkit scan 2010-07-04 20:29
Windows 5.1.2600 Service Pack 3 NTFS
Scanne versteckte Prozesse...
Scanne versteckte Autostarteinträge...
Scanne versteckte Dateien...
Scan erfolgreich abgeschlossen
versteckte Dateien: 0
**************************************************************************
.
------------------------ Weitere laufende Prozesse ------------------------
.
c:\windows\RTHDCPL.EXE
c:\windows\system32\RUNDLL32.EXE
c:\programme\Avira\AntiVir Desktop\avguard.exe
c:\programme\Java\jre6\bin\jqs.exe
c:\windows\system32\nvsvc32.exe
c:\programme\Avira\AntiVir Desktop\avshadow.exe
c:\windows\system32\wscntfy.exe
c:\windows\system32\imapi.exe
.
**************************************************************************
.
Zeit der Fertigstellung: 2010-07-04 20:30:00 - PC wurde neu gestartet
ComboFix-quarantined-files.txt 2010-07-04 18:29
Vor Suchlauf: 6 Verzeichnis(se), 488.391.905.280 Bytes frei
Nach Suchlauf: 7 Verzeichnis(se), 488.549.261.312 Bytes frei
WindowsXP-KB310994-SP2-Pro-BootDisk-DEU.exe
[boot loader]
timeout=2
default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS
[operating systems]
c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons
multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP Professional" /noexecute=optin /fastdetect
- - End Of File - - ED0FA1DF09179447492C660AD10DBF06
|
|
04.07.2010, 19:51
| #9 |
| /// Malware-holic | Internet Explorer öffnet ständig werbung ohne zutuhn rechtsklick avira schirm, guard deaktivieren. dan öffne arbeitsplatz, c: dort suche qoobox, rechtsklick, zu qoobox.rar oder zip hinzufügen, dieses archiv hochladen: http://www.trojaner-board.de/54791-a...ner-board.html wie unter punkt2 beschrieben, gib bescheid wenn fertig. downloade dann malwarebytes. http://www.trojaner-board.de/51187-anleitung-malwarebytes-anti-malware.html instalieren, öffnen, registerkarte aktualisierung, programm updaten, registerkarte scanner, komplett scan, funde löschen, log posten, avira einschalten. |
|
04.07.2010, 20:40
| #10 |
| | Internet Explorer öffnet ständig werbung ohne zutuhn mbam-log Malwarebytes' Anti-Malware 1.46 www.malwarebytes.org Datenbank Version: 4275 Windows 5.1.2600 Service Pack 3 Internet Explorer 6.0.2900.5512 04.07.2010 21:39:25 mbam-log-2010-07-04 (21-39-25).txt Art des Suchlaufs: Vollständiger Suchlauf (C:\|) Durchsuchte Objekte: 132626 Laufzeit: 7 Minute(n), 56 Sekunde(n) Infizierte Speicherprozesse: 0 Infizierte Speichermodule: 0 Infizierte Registrierungsschlüssel: 1 Infizierte Registrierungswerte: 0 Infizierte Dateiobjekte der Registrierung: 0 Infizierte Verzeichnisse: 0 Infizierte Dateien: 0 Infizierte Speicherprozesse: (Keine bösartigen Objekte gefunden) Infizierte Speichermodule: (Keine bösartigen Objekte gefunden) Infizierte Registrierungsschlüssel: HKEY_CURRENT_USER\SOFTWARE\VO3N0SLJ2I (Trojan.FakeAlert) -> Quarantined and deleted successfully. Infizierte Registrierungswerte: (Keine bösartigen Objekte gefunden) Infizierte Dateiobjekte der Registrierung: (Keine bösartigen Objekte gefunden) Infizierte Verzeichnisse: (Keine bösartigen Objekte gefunden) Infizierte Dateien: (Keine bösartigen Objekte gefunden) |
|
05.07.2010, 09:51
| #11 |
| /// Malware-holic | Internet Explorer öffnet ständig werbung ohne zutuhn poste mal bitte ne neue otl.txt die extras benötige ich nicht |
|
05.07.2010, 10:05
| #12 |
| | Internet Explorer öffnet ständig werbung ohne zutuhn Neue OTL Teil I OTL logfile created on: 05.07.2010 11:02:50 - Run 3 OTL by OldTimer - Version 3.2.7.0 Folder = C:\Dokumente und Einstellungen\Robert\Eigene Dateien\Downloads Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 6.0.2900.5512) Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy 1,00 Gb Total Physical Memory | 1,00 Gb Available Physical Memory | 69,00% Memory free 3,00 Gb Paging File | 3,00 Gb Available in Paging File | 89,00% Paging File free Paging file location(s): c:\pagefile.sys 2046 8000 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Programme Drive C: | 465,75 Gb Total Space | 454,93 Gb Free Space | 97,68% Space Free | Partition Type: NTFS D: Drive not present or media not loaded E: Drive not present or media not loaded F: Drive not present or media not loaded G: Drive not present or media not loaded H: Drive not present or media not loaded I: Drive not present or media not loaded Computer Name: SCHORSCH Current User Name: Robert Logged in as Administrator. Current Boot Mode: Normal Scan Mode: All users Company Name Whitelist: Off Skip Microsoft Files: Off File Age = 30 Days Output = Minimal ========== Processes (SafeList) ========== PRC - C:\Dokumente und Einstellungen\Robert\Eigene Dateien\Downloads\OTL.exe (OldTimer Tools) PRC - C:\Programme\Mozilla Firefox\firefox.exe (Mozilla Corporation) PRC - C:\Programme\Avira\AntiVir Desktop\avguard.exe (Avira GmbH) PRC - C:\Programme\ICQ6Toolbar\ICQ Service.exe () PRC - C:\Programme\Avira\AntiVir Desktop\avgnt.exe (Avira GmbH) PRC - C:\Programme\Avira\AntiVir Desktop\sched.exe (Avira GmbH) PRC - C:\Programme\Gemeinsame Dateien\Java\Java Update\jusched.exe (Sun Microsystems, Inc.) PRC - C:\Programme\Avira\AntiVir Desktop\avshadow.exe (Avira GmbH) PRC - C:\WINDOWS\explorer.exe (Microsoft Corporation) ========== Modules (SafeList) ========== MOD - C:\Dokumente und Einstellungen\Robert\Eigene Dateien\Downloads\OTL.exe (OldTimer Tools) MOD - C:\WINDOWS\system32\msscript.ocx (Microsoft Corporation) ========== Win32 Services (SafeList) ========== SRV - (AntiVirService) -- C:\Programme\Avira\AntiVir Desktop\avguard.exe (Avira GmbH) SRV - (ICQ Service) -- C:\Programme\ICQ6Toolbar\ICQ Service.exe () SRV - (AntiVirSchedulerService) -- C:\Programme\Avira\AntiVir Desktop\sched.exe (Avira GmbH) ========== Driver Services (SafeList) ========== DRV - (avipbb) -- C:\WINDOWS\system32\drivers\avipbb.sys (Avira GmbH) DRV - (avgntflt) -- C:\WINDOWS\system32\drivers\avgntflt.sys (Avira GmbH) DRV - (avgio) -- C:\Programme\Avira\AntiVir Desktop\avgio.sys (Avira GmbH) DRV - (ssmdrv) -- C:\WINDOWS\system32\drivers\ssmdrv.sys (Avira GmbH) DRV - (IntcAzAudAddService) Service for Realtek HD Audio (WDM) -- C:\WINDOWS\system32\drivers\RtkHDAud.sys (Realtek Semiconductor Corp.) DRV - (HDAudBus) -- C:\WINDOWS\system32\drivers\hdaudbus.sys (Windows (R) Server 2003 DDK provider) DRV - (nv) -- C:\WINDOWS\system32\drivers\nv4_mini.sys (NVIDIA Corporation) DRV - (RTLE8023xp) -- C:\WINDOWS\system32\drivers\Rtenicxp.sys (Realtek Semiconductor Corporation ) DRV - (NVHDA) -- C:\WINDOWS\system32\drivers\nvhda32.sys (NVIDIA Corporation) DRV - (nvsmu) -- C:\WINDOWS\system32\drivers\nvsmu.sys (NVIDIA Corporation) DRV - (BIOS) -- C:\WINDOWS\system32\drivers\BIOS.sys (BIOSTAR Group) ========== Standard Registry (SafeList) ========== ========== Internet Explorer ========== IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm IE - HKLM\..\URLSearchHook: - Reg Error: Key error. File not found IE - HKLM\..\URLSearchHook: {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Programme\ICQ6Toolbar\ICQToolBar.dll (ICQ) IE - HKU\.DEFAULT\..\URLSearchHook: - Reg Error: Key error. File not found IE - HKU\.DEFAULT\..\URLSearchHook: {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Programme\ICQ6Toolbar\ICQToolBar.dll (ICQ) IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-18\..\URLSearchHook: - Reg Error: Key error. File not found IE - HKU\S-1-5-18\..\URLSearchHook: {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Programme\ICQ6Toolbar\ICQToolBar.dll (ICQ) IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-21-1123561945-884357618-725345543-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = hxxp://start.icq.com/ IE - HKU\S-1-5-21-1123561945-884357618-725345543-1003\..\URLSearchHook: - Reg Error: Key error. File not found IE - HKU\S-1-5-21-1123561945-884357618-725345543-1003\..\URLSearchHook: {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Programme\ICQ6Toolbar\ICQToolBar.dll (ICQ) IE - HKU\S-1-5-21-1123561945-884357618-725345543-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 ========== FireFox ========== FF - prefs.js..browser.search.defaultenginename: "ICQ Search" FF - prefs.js..browser.search.selectedEngine: "Google" FF - prefs.js..browser.startup.homepage: "hxxp://google.de/" FF - prefs.js..extensions.enabledItems: {800b5000-a755-47e1-992b-48a1c1357f07}:2.0.0.4 FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}:6.0.20 FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0 FF - prefs.js..keyword.URL: "hxxp://search.icq.com/search/afe_results.php?ch_id=afex&tb_ver=2.0.0.4&q=" FF - HKLM\software\mozilla\Mozilla Firefox 3.5.10\extensions\\Components: C:\Programme\Mozilla Firefox\components [2010.06.27 12:49:07 | 000,000,000 | ---D | M] FF - HKLM\software\mozilla\Mozilla Firefox 3.5.10\extensions\\Plugins: C:\Programme\Mozilla Firefox\plugins [2010.06.30 21:30:10 | 000,000,000 | ---D | M] [2010.06.25 13:10:21 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Robert\Anwendungsdaten\Mozilla\Extensions [2010.07.04 19:27:52 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Robert\Anwendungsdaten\Mozilla\Firefox\Profiles\yojnk6bd.default\extensions [2010.06.25 15:02:34 | 000,000,000 | ---D | M] (No name found) -- C:\Dokumente und Einstellungen\Robert\Anwendungsdaten\Mozilla\Firefox\Profiles\yojnk6bd.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07} [2010.06.30 21:26:27 | 000,000,000 | ---D | M] (No name found) -- C:\Dokumente und Einstellungen\Robert\Anwendungsdaten\Mozilla\Firefox\Profiles\yojnk6bd.default\extensions\{E2883E8F-472F-4fb0-9522-AC9BF37916A7} [2010.06.30 21:26:27 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Robert\Anwendungsdaten\Mozilla\Firefox\Profiles\yojnk6bd.default\extensions\staged-xpis [2010.06.25 15:02:34 | 000,000,168 | ---- | M] () -- C:\Dokumente und Einstellungen\Robert\Anwendungsdaten\Mozilla\Firefox\Profiles\yojnk6bd.default\searchplugins\icqplugin.gif [2010.06.25 15:02:34 | 000,000,618 | ---- | M] () -- C:\Dokumente und Einstellungen\Robert\Anwendungsdaten\Mozilla\Firefox\Profiles\yojnk6bd.default\searchplugins\icqplugin.src [2010.07.02 17:42:24 | 000,001,069 | ---- | M] () -- C:\Dokumente und Einstellungen\Robert\Anwendungsdaten\Mozilla\Firefox\Profiles\yojnk6bd.default\searchplugins\icqplugin.xml [2010.07.04 19:27:52 | 000,000,000 | ---D | M] -- C:\Programme\Mozilla Firefox\extensions [2010.06.25 15:06:54 | 000,000,000 | ---D | M] (Java Console) -- C:\Programme\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} [2010.06.25 15:06:48 | 000,411,368 | ---- | M] (Sun Microsystems, Inc.) -- C:\Programme\Mozilla Firefox\plugins\npdeployJava1.dll [2010.06.27 12:49:04 | 000,001,392 | ---- | M] () -- C:\Programme\Mozilla Firefox\searchplugins\amazondotcom-de.xml [2010.06.27 12:49:04 | 000,002,344 | ---- | M] () -- C:\Programme\Mozilla Firefox\searchplugins\eBay-de.xml [2010.06.27 12:49:04 | 000,006,805 | ---- | M] () -- C:\Programme\Mozilla Firefox\searchplugins\leo_ende_de.xml [2010.06.27 12:49:04 | 000,001,178 | ---- | M] () -- C:\Programme\Mozilla Firefox\searchplugins\wikipedia-de.xml [2010.06.27 12:49:04 | 000,000,801 | ---- | M] () -- C:\Programme\Mozilla Firefox\searchplugins\yahoo-de.xml O1 HOSTS File: ([2010.07.04 20:28:54 | 000,000,027 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts O1 - Hosts: 127.0.0.1 localhost O2 - BHO: (Adobe PDF Link Helper) - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Programme\Gemeinsame Dateien\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated) O3 - HKLM\..\Toolbar: (ICQToolBar) - {855F3B16-6D32-4FE6-8A56-BBB695989046} - C:\Programme\ICQ6Toolbar\ICQToolBar.dll (ICQ) O4 - HKLM..\Run: [Adobe ARM] C:\Programme\Gemeinsame Dateien\Adobe\ARM\1.0\AdobeARM.exe (Adobe Systems Incorporated) O4 - HKLM..\Run: [avgnt] C:\Programme\Avira\AntiVir Desktop\avgnt.exe (Avira GmbH) O4 - HKLM..\Run: [KernelFaultCheck] File not found O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.DLL (NVIDIA Corporation) O4 - HKLM..\Run: [NvMediaCenter] C:\WINDOWS\System32\NvMcTray.DLL (NVIDIA Corporation) O4 - HKLM..\Run: [nwiz] C:\WINDOWS\System32\nwiz.exe () O4 - HKLM..\Run: [SunJavaUpdateSched] C:\Programme\Gemeinsame Dateien\Java\Java Update\jusched.exe (Sun Microsystems, Inc.) O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0 O7 - HKU\.DEFAULT\Software\Policies\Microsoft\Internet Explorer\Control Panel present O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323 O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863 O7 - HKU\S-1-5-18\Software\Policies\Microsoft\Internet Explorer\Control Panel present O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323 O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863 O7 - HKU\S-1-5-19\Software\Policies\Microsoft\Internet Explorer\Control Panel present O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-20\Software\Policies\Microsoft\Internet Explorer\Control Panel present O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-21-1123561945-884357618-725345543-1003\Software\Policies\Microsoft\Internet Explorer\Control Panel present O7 - HKU\S-1-5-21-1123561945-884357618-725345543-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323 O7 - HKU\S-1-5-21-1123561945-884357618-725345543-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863 O7 - HKU\S-1-5-21-1123561945-884357618-725345543-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0 O9 - Extra Button: ICQ7.2 - {72EFBFE4-C74F-4187-AEFD-73EA3BE968D6} - C:\Programme\ICQ7.2\ICQ.exe (ICQ, LLC.) O9 - Extra 'Tools' menuitem : ICQ7.2 - {72EFBFE4-C74F-4187-AEFD-73EA3BE968D6} - C:\Programme\ICQ7.2\ICQ.exe (ICQ, LLC.) O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab (Java Plug-in 1.6.0_20) O16 - DPF: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab (Java Plug-in 1.6.0_20) O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab (Java Plug-in 1.6.0_20) O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} https://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object) O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.2.1 O18 - Protocol\Handler\http\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\http\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\https\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\https\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\ipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation) O24 - Desktop Components:0 (Die derzeitige Homepage) - About:Home O24 - Desktop WallPaper: C:\WINDOWS\Web\Wallpaper\Grüne Idylle.bmp O24 - Desktop BackupWallPaper: C:\WINDOWS\Web\Wallpaper\Grüne Idylle.bmp O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2010.06.25 12:53:14 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ] O34 - HKLM BootExecute: (autocheck autochk *) - File not found O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37 - HKLM\...com [@ = ComFile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* NetSvcs: 6to4 - File not found NetSvcs: Ias - C:\WINDOWS\system32\ias [2010.07.04 15:43:56 | 000,000,000 | ---D | M] NetSvcs: Iprip - File not found NetSvcs: Irmon - File not found NetSvcs: NWCWorkstation - File not found NetSvcs: Nwsapagent - File not found NetSvcs: WmdmPmSp - File not found SafeBootMin: Base - Driver Group SafeBootMin: Boot Bus Extender - Driver Group SafeBootMin: Boot file system - Driver Group SafeBootMin: File system - Driver Group SafeBootMin: Filter - Driver Group SafeBootMin: PCI Configuration - Driver Group SafeBootMin: PNP Filter - Driver Group SafeBootMin: Primary disk - Driver Group SafeBootMin: SCSI Class - Driver Group SafeBootMin: sermouse.sys - Driver SafeBootMin: System Bus Extender - Driver Group SafeBootMin: vga.sys - Driver SafeBootMin: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers SafeBootMin: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive SafeBootMin: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive SafeBootMin: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller SafeBootMin: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc SafeBootMin: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard SafeBootMin: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse SafeBootMin: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters SafeBootMin: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter SafeBootMin: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System SafeBootMin: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive SafeBootMin: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume SafeBootMin: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices SafeBootNet: Base - Driver Group SafeBootNet: Boot Bus Extender - Driver Group SafeBootNet: Boot file system - Driver Group SafeBootNet: File system - Driver Group SafeBootNet: Filter - Driver Group SafeBootNet: NDIS Wrapper - Driver Group SafeBootNet: NetBIOSGroup - Driver Group SafeBootNet: NetDDEGroup - Driver Group SafeBootNet: Network - Driver Group SafeBootNet: NetworkProvider - Driver Group SafeBootNet: PCI Configuration - Driver Group SafeBootNet: PNP Filter - Driver Group SafeBootNet: PNP_TDI - Driver Group SafeBootNet: Primary disk - Driver Group SafeBootNet: SCSI Class - Driver Group SafeBootNet: sermouse.sys - Driver SafeBootNet: Streams Drivers - Driver Group SafeBootNet: System Bus Extender - Driver Group SafeBootNet: TDI - Driver Group SafeBootNet: vga.sys - Driver SafeBootNet: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers SafeBootNet: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive SafeBootNet: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive SafeBootNet: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller SafeBootNet: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc SafeBootNet: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard SafeBootNet: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse SafeBootNet: {4D36E972-E325-11CE-BFC1-08002BE10318} - Net SafeBootNet: {4D36E973-E325-11CE-BFC1-08002BE10318} - NetClient SafeBootNet: {4D36E974-E325-11CE-BFC1-08002BE10318} - NetService SafeBootNet: {4D36E975-E325-11CE-BFC1-08002BE10318} - NetTrans SafeBootNet: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters SafeBootNet: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter SafeBootNet: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System SafeBootNet: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive SafeBootNet: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume SafeBootNet: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices ActiveX: {08B0E5C0-4FCB-11CF-AAA5-00401C608500} - Java (Sun) ActiveX: {10072CEC-8CC1-11D1-986E-00A0C955B42F} - Vektorgrafik-Rendering (VML) ActiveX: {2179C5D3-EBFF-11CF-B6FD-00AA00B4E220} - NetShow ActiveX: {22d6f312-b0f6-11d0-94ab-0080c74c7e95} - Microsoft Windows Media Player 6.4 ActiveX: {283807B5-2C60-11D0-A31D-00AA00B92C03} - DirectAnimation ActiveX: {2C7339CF-2B09-4501-B3F3-F3508C9228ED} - %SystemRoot%\system32\regsvr32.exe /s /n /i:/UserInstall %SystemRoot%\system32\themeui.dll ActiveX: {36f8ec70-c29a-11d1-b5c7-0000f8051515} - Dynamic HTML-Datenbindung für Java ActiveX: {3af36230-a269-11d1-b5bf-0000f8051515} - Offlinebrowsingpaket ActiveX: {3bf42070-b3b1-11d1-b5c5-0000f8051515} - Uniscribe ActiveX: {4278c270-a269-11d1-b5bf-0000f8051515} - Erweitertes Authoring ActiveX: {44BBA840-CC51-11CF-AAFA-00AA00B6015C} - "%ProgramFiles%\Outlook Express\setup50.exe" /APP:OE /CALLER:WINNT /user /install ActiveX: {44BBA842-CC51-11CF-AAFA-00AA00B6015B} - rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\msnetmtg.inf,NetMtg.Install.PerUser.NT ActiveX: {44BBA848-CC51-11CF-AAFA-00AA00B6015C} - DirectShow ActiveX: {44BBA855-CC51-11CF-AAFA-00AA00B6015F} - DirectDrawEx ActiveX: {45ea75a0-a269-11d1-b5bf-0000f8051515} - Internet Explorer-Hilfe ActiveX: {4f216970-c90c-11d1-b5c7-0000f8051515} - DirectAnimation Java Classes ActiveX: {4f645220-306d-11d2-995d-00c04f98bbc9} - Microsoft Windows Script 5.7 ActiveX: {5945c046-1e7d-11d1-bc44-00c04fd912be} - rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\msmsgs.inf,BLC.QuietInstall.PerUser ActiveX: {5A8D6EE0-3E18-11D0-821E-444553540000} - ICW ActiveX: {5fd399c0-a70a-11d1-9948-00c04f98bbc9} - Internet Explorer Setup Tools ActiveX: {630b1da0-b465-11d1-9948-00c04f98bbc9} - Browsererweiterungen ActiveX: {6BF52A52-394A-11d3-B153-00C04F79FAA6} - Microsoft Windows Media Player ActiveX: {6fab99d0-bab8-11d1-994a-00c04f98bbc9} - Zugang zu MSN Site ActiveX: {7790769C-0471-11d2-AF11-00C04FA35D02} - "%ProgramFiles%\Outlook Express\setup50.exe" /APP:WAB /CALLER:WINNT /user /install ActiveX: {89820200-ECBD-11cf-8B85-00AA005B4340} - regsvr32.exe /s /n /i:U shell32.dll ActiveX: {89820200-ECBD-11cf-8B85-00AA005B4383} - %SystemRoot%\system32\ie4uinit.exe ActiveX: {9381D8F2-0288-11D0-9501-00AA00B911A5} - Dynamic HTML-Datenbindung ActiveX: {ACC563BC-4266-43f0-B6ED-9D38C4202C7E} - ActiveX: {C9E9A340-D1F1-11D0-821E-444553540600} - Internet Explorer-Hauptschriftarten ActiveX: {CC2A9BA0-3BDD-11D0-821E-444553540000} - Taskplaner ActiveX: {CDD7975E-60F8-41d5-8149-19E51D6F71D0} - Windows Movie Maker v2.1 ActiveX: {D27CDB6E-AE6D-11cf-96B8-444553540000} - Macromedia Shockwave Flash ActiveX: {de5aed00-a4bf-11d1-9948-00c04f98bbc9} - HTML-Hilfe ActiveX: {E92B03AB-B707-11d2-9CBD-0000F87A369E} - Active Directory Service Interface ActiveX: >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} - C:\WINDOWS\inf\unregmp2.exe /ShowWMP ActiveX: >{26923b43-4d38-484f-9b9e-de460746276c} - %systemroot%\system32\shmgrate.exe OCInstallUserConfigIE ActiveX: >{60B49E34-C7CC-11D0-8953-00A0C90347FF}MICROS - RunDLL32 IEDKCS32.DLL,BrandIE4 SIGNUP ActiveX: >{881dd1c5-3dcf-431b-b061-f3f88e8be88a} - %systemroot%\system32\shmgrate.exe OCInstallUserConfigOE Drivers32: msacm.iac2 - C:\WINDOWS\system32\iac25_32.ax (Intel Corporation) Drivers32: msacm.l3acm - C:\WINDOWS\system32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS) Drivers32: msacm.sl_anet - C:\WINDOWS\System32\sl_anet.acm (Sipro Lab Telecom Inc.) Drivers32: msacm.trspch - C:\WINDOWS\System32\tssoft32.acm (DSP GROUP, INC.) Drivers32: vidc.cvid - C:\WINDOWS\System32\iccvid.dll (Radius Inc.) Drivers32: vidc.iv31 - C:\WINDOWS\System32\ir32_32.dll () Drivers32: vidc.iv32 - C:\WINDOWS\System32\ir32_32.dll () Drivers32: vidc.iv41 - C:\WINDOWS\System32\ir41_32.ax (Intel Corporation) Drivers32: vidc.iv50 - C:\WINDOWS\System32\ir50_32.dll (Intel Corporation) CREATERESTOREPOINT Restore point Set: OTL Restore Point (16902109354000384) ========== Files/Folders - Created Within 30 Days ========== [2010.07.05 10:57:23 | 000,000,000 | -HSD | C] -- C:\RECYCLER [2010.07.04 21:30:11 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\Robert\Anwendungsdaten\Malwarebytes [2010.07.04 21:30:00 | 000,038,224 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys [2010.07.04 21:29:58 | 000,020,952 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys [2010.07.04 21:29:58 | 000,000,000 | ---D | C] -- C:\Programme\Malwarebytes' Anti-Malware [2010.07.04 21:29:58 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Malwarebytes [2010.07.04 20:25:34 | 000,000,000 | RHSD | C] -- C:\cmdcons [2010.07.04 20:24:52 | 000,212,480 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWXCACLS.exe [2010.07.04 20:24:52 | 000,161,792 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWREG.exe [2010.07.04 20:24:52 | 000,136,704 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWSC.exe [2010.07.04 20:24:52 | 000,031,232 | ---- | C] (NirSoft) -- C:\WINDOWS\NIRCMD.exe [2010.07.04 20:24:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\ERDNT [2010.07.04 20:24:48 | 000,000,000 | ---D | C] -- C:\ComboFix [2010.07.04 20:23:37 | 000,000,000 | ---D | C] -- C:\Qoobox [2010.07.04 17:57:33 | 000,000,000 | ---D | C] -- C:\WINDOWS\pss [2010.07.04 17:50:20 | 000,000,000 | ---D | C] -- C:\VundoFix Backups [2010.07.04 13:59:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\Prefetch [2010.07.04 13:58:22 | 000,156,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winzm.ime [2010.07.04 13:58:22 | 000,156,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winsp.ime [2010.07.04 13:58:22 | 000,156,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winpy.ime [2010.07.04 13:58:22 | 000,065,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winime.ime [2010.07.04 13:58:21 | 000,079,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winar30.ime [2010.07.04 13:58:21 | 000,072,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wingb.ime [2010.07.04 13:58:21 | 000,041,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\weitekp9.dll [2010.07.04 13:58:21 | 000,031,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\weitekp9.sys [2010.07.04 13:58:20 | 000,363,008 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\w3svc.dll [2010.07.04 13:58:20 | 000,076,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wam51.dll [2010.07.04 13:58:20 | 000,074,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\w3ext.dll [2010.07.04 13:58:20 | 000,053,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wamreg51.dll [2010.07.04 13:58:20 | 000,009,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wamps51.dll [2010.07.04 13:58:20 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\w3svapi.dll [2010.07.04 13:58:19 | 000,426,041 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\voicepad.dll [2010.07.04 13:58:19 | 000,086,073 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\voicesub.dll [2010.07.04 13:58:19 | 000,048,256 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\w32.dll [2010.07.04 13:58:19 | 000,004,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\w3ctrs51.dll [2010.07.04 13:58:17 | 000,103,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\uihelper.dll [2010.07.04 13:58:17 | 000,076,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\uniime.dll [2010.07.04 13:58:17 | 000,065,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\unicdime.ime [2010.07.04 13:58:17 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tsprof.exe [2010.07.04 13:58:16 | 000,571,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tintlgnt.ime [2010.07.04 13:58:16 | 000,455,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tintsetp.exe [2010.07.04 13:58:16 | 000,044,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tintlphr.exe [2010.07.04 13:58:16 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tools.dll [2010.07.04 13:58:16 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tmigrate.dll [2010.07.04 13:58:15 | 000,185,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\thawbrkr.dll [2010.07.04 13:58:15 | 000,021,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tdipx.sys [2010.07.04 13:58:15 | 000,019,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tdspx.sys [2010.07.04 13:58:15 | 000,013,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tdasync.sys [2010.07.04 13:58:14 | 000,046,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\svcext51.dll [2010.07.04 13:58:14 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\status.dll [2010.07.04 13:58:13 | 000,101,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\srusbusd.dll [2010.07.04 13:58:13 | 000,046,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sspifilt.dll [2010.07.04 13:58:13 | 000,045,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ssinc51.dll [2010.07.04 13:58:12 | 000,143,422 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\softkey.dll [2010.07.04 13:58:12 | 000,039,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\snmpthrd.dll [2010.07.04 13:58:12 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\snmpstup.dll [2010.07.04 13:58:12 | 000,008,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\snmptrap.exe [2010.07.04 13:58:12 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_snprfdll.dll [2010.07.04 13:58:11 | 000,465,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smtpsvc.dll [2010.07.04 13:58:11 | 000,358,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\snmpincl.dll [2010.07.04 13:58:11 | 000,259,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\snmpcl.dll [2010.07.04 13:58:11 | 000,188,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\snmpsmir.dll [2010.07.04 13:58:11 | 000,033,280 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\snmp.exe [2010.07.04 13:58:11 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_smtpctrs.dll [2010.07.04 13:58:11 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\snmpmib.dll [2010.07.04 13:58:10 | 000,236,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smi2smir.exe [2010.07.04 13:58:10 | 000,038,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm9aw.dll [2010.07.04 13:58:10 | 000,031,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smb6w.dll [2010.07.04 13:58:10 | 000,031,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sma3w.dll [2010.07.04 13:58:10 | 000,026,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm93w.dll [2010.07.04 13:58:10 | 000,026,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm92w.dll [2010.07.04 13:58:10 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm90w.dll [2010.07.04 13:58:10 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm8dw.dll [2010.07.04 13:58:10 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smierrsm.dll [2010.07.04 13:58:10 | 000,010,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smtpapi.dll [2010.07.04 13:58:10 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smimsgif.dll [2010.07.04 13:58:10 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smierrsy.dll [2010.07.04 13:58:09 | 000,030,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm87w.dll [2010.07.04 13:58:09 | 000,030,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm81w.dll [2010.07.04 13:58:09 | 000,029,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm8cw.dll [2010.07.04 13:58:09 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm8aw.dll [2010.07.04 13:58:09 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm89w.dll [2010.07.04 13:58:09 | 000,025,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm59w.dll [2010.07.04 13:58:09 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\simptcp.dll [2010.07.04 13:58:07 | 000,221,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\seo.dll [2010.07.04 13:58:07 | 000,057,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_scripto.dll [2010.07.04 13:58:07 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_seos.dll [2010.07.04 13:58:06 | 000,081,408 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rwia330.dll [2010.07.04 13:58:06 | 000,081,408 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rwia001.dll [2010.07.04 13:58:06 | 000,029,184 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rw330ext.dll [2010.07.04 13:58:06 | 000,027,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rw001ext.dll [2010.07.04 13:58:06 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rwnh.dll [2010.07.04 13:58:06 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rpcref.dll [2010.07.04 13:58:05 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\romanime.ime [2010.07.04 13:58:05 | 000,023,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_regtrace.exe [2010.07.04 13:58:05 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\register.exe [2010.07.04 13:58:04 | 000,077,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\quick.ime [2010.07.04 13:58:04 | 000,020,736 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ramdisk.sys [2010.07.04 13:58:04 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\quser.exe [2010.07.04 13:58:04 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\query.exe [2010.07.04 13:58:03 | 000,131,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pmxviceo.dll [2010.07.04 13:58:03 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pmxmcro.dll [2010.07.04 13:58:03 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pwsdata.dll [2010.07.04 13:58:02 | 000,482,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pintlgnt.ime [2010.07.04 13:58:02 | 000,079,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\phon.ime [2010.07.04 13:58:02 | 000,070,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pintlphr.exe [2010.07.04 13:58:02 | 000,067,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pmigrate.dll [2010.07.04 13:58:02 | 000,053,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pintlcsd.dll [2010.07.04 13:58:02 | 000,020,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\permchk.dll [2010.07.04 13:58:02 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pmxgl.dll [2010.07.04 13:58:01 | 000,036,927 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\padrs411.dll [2010.07.04 13:58:01 | 000,031,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pagecnt.dll [2010.07.04 13:58:01 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\padrs404.dll [2010.07.04 13:58:01 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\padrs804.dll [2010.07.04 13:58:01 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\padrs412.dll [2010.07.04 13:57:59 | 000,045,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\nsepm.dll [2010.07.04 13:57:59 | 000,038,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_ntfsdrv.dll [2010.07.04 13:57:58 | 000,053,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\nextlink.dll [2010.07.04 13:57:57 | 000,229,439 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\multibox.dll [2010.07.04 13:57:57 | 000,119,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mtstocom.exe [2010.07.04 13:57:55 | 001,875,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msir3jp.lex [2010.07.04 13:57:55 | 000,098,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msir3jp.dll [2010.07.04 13:57:50 | 000,092,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mga.sys [2010.07.04 13:57:50 | 000,092,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mga.dll [2010.07.04 13:57:50 | 000,086,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\metada51.dll [2010.07.04 13:57:50 | 000,026,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mdsync.dll [2010.07.04 13:57:50 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\migregdb.exe [2010.07.04 13:57:49 | 000,065,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_mailmsg.dll [2010.07.04 13:57:49 | 000,037,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\md5filt.dll [2010.07.04 13:57:49 | 000,019,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\lprmon.dll [2010.07.04 13:57:48 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\lmmib2.dll [2010.07.04 13:57:48 | 000,023,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\lpdsvc.dll [2010.07.04 13:57:48 | 000,022,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\logscrpt.dll [2010.07.04 13:57:48 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\lonsint.dll [2010.07.04 13:57:47 | 000,070,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\korwbrkr.dll [2010.07.04 13:57:47 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdvntc.dll [2010.07.04 13:57:47 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdusa.dll [2010.07.04 13:57:47 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdurdu.dll [2010.07.04 13:57:46 | 000,009,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdnecat.dll [2010.07.04 13:57:46 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdnecnt.dll [2010.07.04 13:57:46 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdnec95.dll [2010.07.04 13:57:46 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdlk41a.dll [2010.07.04 13:57:46 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdth3.dll [2010.07.04 13:57:46 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdth2.dll [2010.07.04 13:57:46 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdlk41j.dll [2010.07.04 13:57:46 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdth1.dll [2010.07.04 13:57:46 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdth0.dll [2010.07.04 13:57:46 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdsyr2.dll [2010.07.04 13:57:46 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdsyr1.dll |
|
05.07.2010, 10:06
| #13 |
| | Internet Explorer öffnet ständig werbung ohne zutuhn OTL Teil II [2010.07.04 13:57:46 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdintel.dll [2010.07.04 13:57:45 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdibm02.dll [2010.07.04 13:57:45 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdinpun.dll [2010.07.04 13:57:45 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdintam.dll [2010.07.04 13:57:45 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdinmar.dll [2010.07.04 13:57:45 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdinkan.dll [2010.07.04 13:57:45 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdinhin.dll [2010.07.04 13:57:45 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdinguj.dll [2010.07.04 13:57:45 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdindev.dll [2010.07.04 13:57:45 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdheb.dll [2010.07.04 13:57:45 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdfa.dll [2010.07.04 13:57:45 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbddiv2.dll [2010.07.04 13:57:45 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbddiv1.dll [2010.07.04 13:57:45 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdgeo.dll [2010.07.04 13:57:44 | 000,018,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\jupiw.dll [2010.07.04 13:57:44 | 000,009,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iwrps.dll [2010.07.04 13:57:44 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdax2.dll [2010.07.04 13:57:44 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbd106n.dll [2010.07.04 13:57:44 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbd101a.dll [2010.07.04 13:57:44 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbd101.dll [2010.07.04 13:57:44 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbda3.dll [2010.07.04 13:57:44 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbda2.dll [2010.07.04 13:57:44 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbda1.dll [2010.07.04 13:57:44 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdarmw.dll [2010.07.04 13:57:44 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdarme.dll [2010.07.04 13:57:43 | 000,036,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iprip.dll [2010.07.04 13:57:43 | 000,026,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iscomlog.dll [2010.07.04 13:57:43 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\isapips.dll [2010.07.04 13:57:42 | 000,471,102 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imskdic.dll [2010.07.04 13:57:42 | 000,315,455 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imskf.dll [2010.07.04 13:57:42 | 000,257,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\infocomm.dll [2010.07.04 13:57:42 | 000,102,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imlang.dll [2010.07.04 13:57:42 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inetin51.exe [2010.07.04 13:57:42 | 000,008,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\infoctrs.dll [2010.07.04 13:57:41 | 000,307,257 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpdct.exe [2010.07.04 13:57:41 | 000,274,489 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjputyc.dll [2010.07.04 13:57:41 | 000,262,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjputy.exe [2010.07.04 13:57:41 | 000,233,527 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjprw.exe [2010.07.04 13:57:41 | 000,208,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpmig.exe [2010.07.04 13:57:41 | 000,155,705 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpdsvr.exe [2010.07.04 13:57:41 | 000,081,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpdct.dll [2010.07.04 13:57:41 | 000,059,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imkrinst.exe [2010.07.04 13:57:41 | 000,057,398 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpdadm.exe [2010.07.04 13:57:41 | 000,045,109 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpuex.exe [2010.07.04 13:57:40 | 000,811,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjp81k.dll [2010.07.04 13:57:40 | 000,716,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpcus.dll [2010.07.04 13:57:40 | 000,368,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpcic.dll [2010.07.04 13:57:40 | 000,340,023 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjp81.ime [2010.07.04 13:57:40 | 000,311,359 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imepadsv.exe [2010.07.04 13:57:40 | 000,106,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imekrcic.dll [2010.07.04 13:57:40 | 000,102,463 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imepadsm.dll [2010.07.04 13:57:40 | 000,086,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imekrmbx.dll [2010.07.04 13:57:40 | 000,044,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imekrmig.exe [2010.07.04 13:57:39 | 000,145,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iische51.dll [2010.07.04 13:57:39 | 000,094,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imekr61.ime [2010.07.04 13:57:39 | 000,079,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iislog51.dll [2010.07.04 13:57:39 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisclex4.dll [2010.07.04 13:57:39 | 000,025,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisadmin.dll [2010.07.04 13:57:39 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iiscrmap.dll [2010.07.04 13:57:39 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisfecnv.dll [2010.07.04 13:57:39 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iissync.exe [2010.07.04 13:57:39 | 000,003,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iismui.dll [2010.07.04 13:57:36 | 010,129,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hwxkor.dll [2010.07.04 13:57:30 | 010,096,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hwxcht.dll [2010.07.04 13:57:30 | 000,268,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\httpext.dll [2010.07.04 13:57:30 | 000,061,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\httpod51.dll [2010.07.04 13:57:30 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\httpmb51.dll [2010.07.04 13:57:29 | 000,039,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hostmib.dll [2010.07.04 13:57:29 | 000,036,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hanjadic.dll [2010.07.04 13:57:29 | 000,032,256 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\gzip.dll [2010.07.04 13:57:28 | 000,400,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsxp32.dll [2010.07.04 13:57:28 | 000,397,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxstiff.dll [2010.07.04 13:57:28 | 000,268,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxssvc.exe [2010.07.04 13:57:28 | 000,246,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxst30.dll [2010.07.04 13:57:28 | 000,195,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxswzrd.dll [2010.07.04 13:57:28 | 000,155,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsui.dll [2010.07.04 13:57:27 | 000,563,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsst.dll [2010.07.04 13:57:27 | 000,285,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxscomex.dll [2010.07.04 13:57:27 | 000,235,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxscover.exe [2010.07.04 13:57:27 | 000,142,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsclnt.exe [2010.07.04 13:57:27 | 000,139,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsclntr.dll [2010.07.04 13:57:27 | 000,072,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxscom.dll [2010.07.04 13:57:27 | 000,064,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsevent.dll [2010.07.04 13:57:27 | 000,031,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsroute.dll [2010.07.04 13:57:27 | 000,026,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsdrv.dll [2010.07.04 13:57:27 | 000,023,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsmon.dll [2010.07.04 13:57:27 | 000,023,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsext32.dll [2010.07.04 13:57:27 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxssend.exe [2010.07.04 13:57:27 | 000,008,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsperf.dll [2010.07.04 13:57:27 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsres.dll [2010.07.04 13:57:26 | 000,451,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsapi.dll [2010.07.04 13:57:26 | 000,125,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ftpsv251.dll [2010.07.04 13:57:26 | 000,112,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxscfgwz.dll [2010.07.04 13:57:26 | 000,024,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fpadmcgi.exe [2010.07.04 13:57:26 | 000,020,541 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fpadmdll.dll [2010.07.04 13:57:26 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ftpctrs2.dll [2010.07.04 13:57:26 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ftpmib.dll [2010.07.04 13:57:26 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ftlx041e.dll [2010.07.04 13:57:25 | 000,043,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_fcachdll.dll [2010.07.04 13:57:25 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\flattemp.exe [2010.07.04 13:57:25 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\exstrace.dll [2010.07.04 13:57:25 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\f3ahvoas.dll [2010.07.04 13:57:24 | 000,108,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\evntagnt.dll [2010.07.04 13:57:24 | 000,094,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\evntwin.exe [2010.07.04 13:57:24 | 000,057,856 | ---- | C] (SEIKO EPSON CORP.) -- C:\WINDOWS\System32\dllcache\esuimgd.dll [2010.07.04 13:57:24 | 000,045,568 | ---- | C] (SEIKO EPSON CORP.) -- C:\WINDOWS\System32\dllcache\esunid.dll [2010.07.04 13:57:24 | 000,031,744 | ---- | C] (SEIKO EPSON CORP.) -- C:\WINDOWS\System32\dllcache\esucmd.dll [2010.07.04 13:57:24 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\evntcmd.exe [2010.07.04 13:57:24 | 000,025,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\et4000.sys [2010.07.04 13:57:20 | 000,078,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dayi.ime [2010.07.04 13:57:19 | 000,042,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\davcdata.exe [2010.07.04 13:57:18 | 000,057,399 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cplexe.exe [2010.07.04 13:57:18 | 000,056,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\convlog.exe [2010.07.04 13:57:18 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\controt.dll [2010.07.04 13:57:18 | 000,020,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\counters.dll [2010.07.04 13:57:18 | 000,019,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cprofile.exe [2010.07.04 13:57:17 | 000,480,256 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cintsetp.exe [2010.07.04 13:57:17 | 000,198,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cintime.dll [2010.07.04 13:57:17 | 000,024,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\compfilt.dll [2010.07.04 13:57:17 | 000,021,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cintlgnt.ime [2010.07.04 13:57:16 | 001,677,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chsbrkr.dll [2010.07.04 13:57:16 | 000,838,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chtbrkr.dll [2010.07.04 13:57:16 | 000,097,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chtmbx.dll [2010.07.04 13:57:16 | 000,056,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chtskdic.dll [2010.07.04 13:57:15 | 000,078,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chajei.ime [2010.07.04 13:57:15 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chgport.exe [2010.07.04 13:57:15 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chgusr.exe [2010.07.04 13:57:15 | 000,013,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chglogon.exe [2010.07.04 13:57:15 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\change.exe [2010.07.04 13:57:14 | 000,218,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\c_g18030.dll [2010.07.04 13:57:14 | 000,054,528 | ---- | C] (Philips Semiconductors GmbH) -- C:\WINDOWS\System32\dllcache\cap7146.sys [2010.07.04 13:57:14 | 000,010,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\c_iscii.dll [2010.07.04 13:57:14 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\c_is2022.dll [2010.07.04 13:57:09 | 000,045,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\browscap.dll [2010.07.04 13:57:08 | 000,374,784 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\asp51.dll [2010.07.04 13:57:08 | 000,029,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\asptxn.dll [2010.07.04 13:57:08 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\aspperf.dll [2010.07.04 13:57:08 | 000,009,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\authfilt.dll [2010.07.04 13:57:07 | 000,334,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\aqueue.dll [2010.07.04 13:57:07 | 000,110,080 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\appconf.dll [2010.07.04 13:57:07 | 000,046,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_aqadmin.dll [2010.07.04 13:57:07 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt0804.dll [2010.07.04 13:57:07 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt0412.dll [2010.07.04 13:57:06 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt0411.dll [2010.07.04 13:57:06 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt040d.dll [2010.07.04 13:57:06 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt0404.dll [2010.07.04 13:57:06 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt0401.dll [2010.07.04 13:57:06 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_adsiisex.dll [2010.07.04 13:57:05 | 000,050,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\adrot.dll [2010.07.04 13:57:05 | 000,029,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\admexs.dll [2010.07.04 13:57:05 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\admxprox.dll [2010.07.04 13:57:03 | 000,032,827 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tcptest.exe [2010.07.04 13:57:03 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tcptsat.dll [2010.07.04 13:57:03 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wamregps.dll [2010.07.04 13:57:02 | 002,134,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smtpsnap.dll [2010.07.04 13:57:02 | 000,189,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smtpadm.dll [2010.07.04 13:57:02 | 000,020,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\shtml.dll [2010.07.04 13:57:02 | 000,016,437 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\shtml.exe [2010.07.04 13:57:02 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\staxmem.dll [2010.07.04 13:56:59 | 000,078,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\logui.ocx [2010.07.04 13:56:58 | 000,847,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inetmgr.dll [2010.07.04 13:56:58 | 000,172,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisui.dll [2010.07.04 13:56:58 | 000,133,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisrtl.dll [2010.07.04 13:56:58 | 000,068,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\isatq.dll [2010.07.04 13:56:58 | 000,019,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inetsloc.dll [2010.07.04 13:56:58 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\infoadmn.dll [2010.07.04 13:56:58 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inetmgr.exe [2010.07.04 13:56:57 | 000,598,071 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fpmmc.dll [2010.07.04 13:56:57 | 000,217,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fpmmcsat.dll [2010.07.04 13:56:57 | 000,068,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisext51.dll [2010.07.04 13:56:57 | 000,064,512 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iismap.dll [2010.07.04 13:56:57 | 000,030,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisrstas.exe [2010.07.04 13:56:57 | 000,020,541 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fpexedll.dll [2010.07.04 13:56:57 | 000,020,538 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fpremadm.exe [2010.07.04 13:56:57 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisreset.exe [2010.07.04 13:56:57 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ftpsapi2.dll [2010.07.04 13:56:57 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisrstap.dll [2010.07.04 13:56:56 | 000,876,653 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp4awel.dll [2010.07.04 13:56:56 | 000,188,494 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fpcount.exe [2010.07.04 13:56:56 | 000,184,435 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp4amsft.dll [2010.07.04 13:56:56 | 000,147,513 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp4apws.dll [2010.07.04 13:56:56 | 000,109,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp98swin.exe [2010.07.04 13:56:56 | 000,102,509 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp4atxt.dll [2010.07.04 13:56:56 | 000,082,035 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp4anscp.dll [2010.07.04 13:56:56 | 000,049,212 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp4awebs.dll [2010.07.04 13:56:56 | 000,049,210 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp4areg.dll [2010.07.04 13:56:56 | 000,041,020 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp4avnb.dll [2010.07.04 13:56:56 | 000,032,826 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp4avss.dll [2010.07.04 13:56:56 | 000,014,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp98sadm.exe [2010.07.04 13:56:55 | 000,282,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\certwiz.ocx [2010.07.04 13:56:55 | 000,188,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cfgwiz.exe [2010.07.04 13:56:55 | 000,096,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\certmap.ocx [2010.07.04 13:56:55 | 000,077,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cnfgprts.ocx [2010.07.04 13:56:55 | 000,047,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\coadmin.dll [2010.07.04 13:56:55 | 000,016,439 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\author.exe [2010.07.04 13:56:54 | 000,290,816 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\adsiis51.dll [2010.07.04 13:56:54 | 000,043,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\admwprox.dll [2010.07.04 13:56:54 | 000,020,540 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\author.dll [2010.07.04 13:56:54 | 000,016,439 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\admin.exe [2010.07.04 13:56:53 | 000,020,540 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\admin.dll [2010.07.04 13:49:00 | 000,024,661 | ---- | C] (Perle Systems Ltd.) -- C:\WINDOWS\System32\spxcoins.dll [2010.07.04 13:49:00 | 000,024,661 | ---- | C] (Perle Systems Ltd.) -- C:\WINDOWS\System32\dllcache\spxcoins.dll [2010.07.04 13:49:00 | 000,013,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\irclass.dll [2010.07.04 13:49:00 | 000,013,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\irclass.dll [2010.07.04 13:31:09 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\LogFiles [2010.07.04 10:14:18 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\appmgmt [2010.07.03 23:01:40 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\Robert\Anwendungsdaten\Utherverse [2010.07.03 22:58:13 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\Robert\Startmen³ [2010.07.03 22:50:40 | 000,000,000 | ---D | C] -- C:\Programme\Utherverse Digital Inc [2010.07.01 15:48:59 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\NtmsData [2010.07.01 15:26:58 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\Robert\Anwendungsdaten\gtk-2.0 [2010.06.30 21:28:23 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\Robert\Lokale Einstellungen\Anwendungsdaten\Adobe [2010.06.30 21:27:58 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Adobe [2010.06.30 21:27:50 | 000,000,000 | ---D | C] -- C:\Programme\Gemeinsame Dateien\Adobe [2010.06.30 21:27:50 | 000,000,000 | ---D | C] -- C:\Programme\Adobe [2010.06.30 00:18:14 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\KB905474 [2010.06.29 16:54:59 | 000,000,000 | ---D | C] -- C:\e711cd94357417b49e56e2f1ac14a4c8 [2010.06.29 16:48:18 | 000,293,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\browserchoice.exe [2010.06.29 16:44:10 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\PreInstall [2010.06.29 16:44:09 | 000,026,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\spupdsvc.exe [2010.06.29 16:44:09 | 000,018,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\spmsg.dll [2010.06.29 16:44:08 | 000,000,000 | -H-D | C] -- C:\WINDOWS\$hf_mig$ [2010.06.29 10:59:07 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\SoftwareDistribution [2010.06.27 17:55:28 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\Robert\Lokale Einstellungen\Anwendungsdaten\Identities [2010.06.27 11:21:04 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\Robert\Eigene Dateien\ICQ [2010.06.25 17:44:49 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\Robert\.thumbnails [2010.06.25 17:44:35 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\Robert\.gimp-2.6 [2010.06.25 17:44:34 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\Robert\Eigene Dateien\gegl-0.0 [2010.06.25 15:07:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\Sun [2010.06.25 15:07:07 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Sun [2010.06.25 15:07:06 | 000,000,000 | ---D | C] -- C:\Programme\Gemeinsame Dateien\Java [2010.06.25 15:06:53 | 000,411,368 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\deployJava1.dll [2010.06.25 15:06:53 | 000,153,376 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaws.exe [2010.06.25 15:06:53 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaw.exe [2010.06.25 15:06:53 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\java.exe [2010.06.25 15:06:53 | 000,073,728 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javacpl.cpl [2010.06.25 15:06:46 | 000,000,000 | ---D | C] -- C:\Programme\Java [2010.06.25 15:06:11 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\Robert\Anwendungsdaten\Sun [2010.06.25 15:02:33 | 000,000,000 | ---D | C] -- C:\Programme\ICQ6Toolbar [2010.06.25 15:02:30 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\ICQ [2010.06.25 15:02:14 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\Robert\Anwendungsdaten\ICQ [2010.06.25 15:02:14 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\Robert\Lokale Einstellungen\Anwendungsdaten\AOL [2010.06.25 15:02:09 | 000,000,000 | ---D | C] -- C:\Programme\ICQ7.2 [2010.06.25 15:00:06 | 000,000,000 | ---D | C] -- C:\WINDOWS\Minidump [2010.06.25 14:37:48 | 000,000,000 | R-SD | C] -- C:\WINDOWS\Fonts [2010.06.25 14:37:48 | 000,000,000 | RHSD | C] -- C:\WINDOWS\System32\dllcache [2010.06.25 14:37:48 | 000,000,000 | R--D | C] -- C:\WINDOWS\Web [2010.06.25 14:37:48 | 000,000,000 | -H-D | C] -- C:\WINDOWS\inf [2010.06.25 14:37:48 | 000,000,000 | ---D | C] -- C:\WINDOWS\WinSxS [2010.06.25 14:37:48 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\wins [2010.06.25 14:37:48 | 000,000,000 | ---D | C] -- C:\WINDOWS [2010.06.25 14:37:48 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\wbem [2010.06.25 14:37:48 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\usmt [2010.06.25 14:37:48 | 000,000,000 | ---D | C] -- C:\WINDOWS\twain_32 [2010.06.25 14:37:48 | 000,000,000 | ---D | C] -- C:\WINDOWS\Temp [2010.06.25 14:37:48 | 000,000,000 | ---D | C] -- C:\WINDOWS\system32 [2010.06.25 14:37:48 | 000,000,000 | ---D | C] -- C:\WINDOWS\system [2010.06.25 14:37:48 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\spool [2010.06.25 14:37:48 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ShellExt [2010.06.25 14:37:48 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Setup [2010.06.25 14:37:48 | 000,000,000 | ---D | C] -- C:\WINDOWS\security [2010.06.25 14:37:48 | 000,000,000 | ---D | C] -- C:\WINDOWS\Resources [2010.06.25 14:37:48 | 000,000,000 | ---D | C] -- C:\WINDOWS\repair [2010.06.25 14:37:48 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ras [2010.06.25 14:37:48 | 000,000,000 | ---D | C] -- C:\WINDOWS\Provisioning [2010.06.25 14:37:48 | 000,000,000 | ---D | C] -- C:\WINDOWS\PeerNet [2010.06.25 14:37:48 | 000,000,000 | ---D | C] -- C:\WINDOWS\pchealth [2010.06.25 14:37:48 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\oobe [2010.06.25 14:37:48 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\npp [2010.06.25 14:37:48 | 000,000,000 | ---D | C] -- C:\WINDOWS\Network Diagnostic [2010.06.25 14:37:48 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\mui [2010.06.25 14:37:48 | 000,000,000 | ---D | C] -- C:\WINDOWS\mui [2010.06.25 14:37:48 | 000,000,000 | ---D | C] -- C:\WINDOWS\msapps [2010.06.25 14:37:48 | 000,000,000 | ---D | C] -- C:\WINDOWS\msagent [2010.06.25 14:37:48 | 000,000,000 | ---D | C] -- C:\WINDOWS\Media [2010.06.25 14:37:48 | 000,000,000 | ---D | C] -- C:\WINDOWS\L2Schemas [2010.06.25 14:37:48 | 000,000,000 | ---D | C] -- C:\WINDOWS\java [2010.06.25 14:37:48 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\inetsrv [2010.06.25 14:37:48 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\IME [2010.06.25 14:37:48 | 000,000,000 | ---D | C] -- C:\WINDOWS\ime [2010.06.25 14:37:48 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\icsxml [2010.06.25 14:37:48 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ias [2010.06.25 14:37:48 | 000,000,000 | ---D | C] -- C:\WINDOWS\Help [2010.06.25 14:37:48 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\export [2010.06.25 14:37:48 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\etc [2010.06.25 14:37:48 | 000,000,000 | ---D | C] -- C:\WINDOWS\ehome [2010.06.25 14:37:48 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers [2010.06.25 14:37:48 | 000,000,000 | ---D | C] -- C:\WINDOWS\Driver Cache [2010.06.25 14:37:48 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\disdn [2010.06.25 14:37:48 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\dhcp [2010.06.25 14:37:48 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\de-de [2010.06.25 14:37:48 | 000,000,000 | ---D | C] -- C:\WINDOWS\Debug [2010.06.25 14:37:48 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\de [2010.06.25 14:37:48 | 000,000,000 | ---D | C] -- C:\WINDOWS\Cursors [2010.06.25 14:37:48 | 000,000,000 | ---D | C] -- C:\WINDOWS\Connection Wizard [2010.06.25 14:37:48 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\config [2010.06.25 14:37:48 | 000,000,000 | ---D | C] -- C:\WINDOWS\Config [2010.06.25 14:37:48 | 000,000,000 | ---D | C] -- C:\WINDOWS\AppPatch [2010.06.25 14:37:48 | 000,000,000 | ---D | C] -- C:\WINDOWS\addins [2010.06.25 14:37:48 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\3com_dmi [2010.06.25 14:37:48 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\3076 [2010.06.25 14:37:48 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\2052 [2010.06.25 14:37:48 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1054 [2010.06.25 14:37:48 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1042 [2010.06.25 14:37:48 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1041 [2010.06.25 14:37:48 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1037 [2010.06.25 14:37:48 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1033 [2010.06.25 14:37:48 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1031 [2010.06.25 14:37:48 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1028 [2010.06.25 14:37:48 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1025 [2010.06.25 14:37:36 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\Robert\Anwendungsdaten\Macromedia [2010.06.25 14:37:36 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\Robert\Anwendungsdaten\Adobe [2010.06.25 14:11:00 | 016,871,432 | ---- | C] ( ) -- C:\Dokumente und Einstellungen\Robert\Eigene Dateien\gimp-2.6.7-i686-setup.exe [2010.06.25 14:10:55 | 011,008,060 | ---- | C] (DVDVideoSoft Limited. ) -- C:\Dokumente und Einstellungen\Robert\Eigene Dateien\FreeYouTubeToMp3Converter.exe [2010.06.25 14:10:45 | 101,418,769 | ---- | C] (ATARI, Inc.) -- C:\Dokumente und Einstellungen\Robert\Eigene Dateien\TACOPS_3.4.EXE [2010.06.25 13:44:44 | 000,000,000 | -HSD | C] -- C:\WINDOWS\Installer [2010.06.25 13:44:44 | 000,000,000 | ---D | C] -- C:\Programme\Gemeinsame Dateien\ODBC [2010.06.25 13:44:43 | 000,077,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\spcommon.dll [2010.06.25 13:44:43 | 000,065,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\spcplui.dll [2010.06.25 13:44:42 | 000,774,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\spttseng.dll [2010.06.25 13:44:41 | 000,741,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sapi.dll [2010.06.25 13:44:41 | 000,159,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sapi.cpl [2010.06.25 13:44:41 | 000,036,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sapisvr.exe [2010.06.25 13:44:41 | 000,000,000 | R--D | C] -- C:\Programme [2010.06.25 13:44:41 | 000,000,000 | ---D | C] -- C:\Programme\Gemeinsame Dateien\SpeechEngines [2010.06.25 13:44:41 | 000,000,000 | ---D | C] -- C:\Programme\Gemeinsame Dateien\Microsoft Shared [2010.06.25 13:44:41 | 000,000,000 | ---D | C] -- C:\Programme\Gemeinsame Dateien [2010.06.25 13:44:39 | 000,022,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt0408.dll [2010.06.25 13:44:39 | 000,019,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt040e.dll [2010.06.25 13:44:39 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt041f.dll [2010.06.25 13:44:39 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt0419.dll [2010.06.25 13:44:39 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt0415.dll [2010.06.25 13:44:39 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt0405.dll [2010.06.25 13:44:31 | 000,176,157 | ---- | C] (Digi International, Inc.) -- C:\WINDOWS\System32\dllcache\dgrpsetu.dll [2010.06.25 13:44:31 | 000,176,157 | ---- | C] (Digi International, Inc.) -- C:\WINDOWS\System32\dgrpsetu.dll [2010.06.25 13:44:31 | 000,103,936 | ---- | C] (Equinox Systems Inc.) -- C:\WINDOWS\System32\EqnClass.Dll [2010.06.25 13:44:31 | 000,103,936 | ---- | C] (Equinox Systems Inc.) -- C:\WINDOWS\System32\dllcache\eqnclass.dll [2010.06.25 13:44:31 | 000,013,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\WFWNET.DRV [2010.06.25 13:44:31 | 000,004,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\TIMER.DRV [2010.06.25 13:44:31 | 000,003,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\SYSTEM.DRV [2010.06.25 13:44:31 | 000,002,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\VGA.DRV [2010.06.25 13:44:30 | 000,070,368 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\AVICAP.DLL [2010.06.25 13:44:30 | 000,002,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\MOUSE.DRV [2010.06.25 13:44:30 | 000,002,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\KEYBOARD.DRV [2010.06.25 13:44:30 | 000,001,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\SOUND.DRV [2010.06.25 13:44:29 | 000,146,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\WINSPOOL.DRV [2010.06.25 13:44:29 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\irenum.sys [2010.06.25 13:44:27 | 000,076,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\storprop.dll [2010.06.25 13:44:20 | 000,000,000 | R--D | C] -- C:\Dokumente und Einstellungen\All Users\Startmenü [2010.06.25 13:44:20 | 000,000,000 | R--D | C] -- C:\Dokumente und Einstellungen\All Users\Dokumente [2010.06.25 13:44:20 | 000,000,000 | -H-D | C] -- C:\Dokumente und Einstellungen\All Users\Vorlagen [2010.06.25 13:44:20 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\All Users\Favoriten [2010.06.25 13:44:20 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\All Users\Desktop [2010.06.25 13:42:32 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\CatRoot2 [2010.06.25 13:42:32 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\CatRoot [2010.06.25 13:42:26 | 000,000,000 | --SD | C] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Microsoft [2010.06.25 13:42:26 | 000,000,000 | RH-D | C] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten [2010.06.25 13:42:08 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen [2010.06.25 13:42:07 | 000,000,000 | -HSD | C] -- C:\System Volume Information [2010.06.25 13:36:43 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\Robert\Anwendungsdaten\Avira [2010.06.25 13:20:07 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\Robert\Eigene Dateien\pdf [2010.06.25 13:18:49 | 000,000,000 | ---D | C] -- C:\Programme\GIMP-2.0 [2010.06.25 13:15:43 | 000,028,520 | ---- | C] (Avira GmbH) -- C:\WINDOWS\System32\drivers\ssmdrv.sys [2010.06.25 13:15:42 | 000,124,784 | ---- | C] (Avira GmbH) -- C:\WINDOWS\System32\drivers\avipbb.sys [2010.06.25 13:15:42 | 000,060,936 | ---- | C] (Avira GmbH) -- C:\WINDOWS\System32\drivers\avgntflt.sys [2010.06.25 13:15:42 | 000,045,416 | ---- | C] (Avira GmbH) -- C:\WINDOWS\System32\drivers\avgntdd.sys [2010.06.25 13:15:42 | 000,022,360 | ---- | C] (Avira GmbH) -- C:\WINDOWS\System32\drivers\avgntmgr.sys [2010.06.25 13:15:42 | 000,000,000 | ---D | C] -- C:\Programme\Avira [2010.06.25 13:15:42 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Avira [2010.06.25 13:12:55 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\Robert\Eigene Dateien\Downloads [2010.06.25 13:10:16 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\Robert\Lokale Einstellungen\Anwendungsdaten\Mozilla [2010.06.25 13:10:16 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\Robert\Anwendungsdaten\Mozilla [2010.06.25 13:10:08 | 000,000,000 | ---D | C] -- C:\Programme\Mozilla Firefox [2010.06.25 13:08:05 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\Robert\Eigene Dateien\DVDVideoSoft [2010.06.25 13:08:01 | 000,000,000 | ---D | C] -- C:\Programme\Gemeinsame Dateien\DVDVideoSoft [2010.06.25 13:08:01 | 000,000,000 | ---D | C] -- C:\Programme\DVDVideoSoft [2010.06.25 13:03:32 | 000,000,000 | ---D | C] -- C:\Programme\Infogrames [2010.06.25 13:03:21 | 000,328,704 | ---- | C] (InstallShield Software Corporation ) -- C:\WINDOWS\IsUn0407.exe [2010.06.25 13:02:25 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Lang [2010.06.25 13:01:10 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ReinstallBackups [2010.06.25 13:01:03 | 000,069,632 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\System32\ChCfg.exe [2010.06.25 13:00:59 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\RTCOM |
|
05.07.2010, 10:06
| #14 |
| | Internet Explorer öffnet ständig werbung ohne zutuhn OTL Teil 3 [2010.06.25 13:00:54 | 009,715,200 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\RTLCPL.exe [2010.06.25 13:00:54 | 001,826,816 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\SkyTel.exe [2010.06.25 13:00:54 | 001,196,032 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\RtlUpd.exe [2010.06.25 13:00:54 | 000,266,240 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\System32\RTSndMgr.cpl [2010.06.25 13:00:54 | 000,077,824 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\SoundMan.exe [2010.06.25 13:00:53 | 004,755,968 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\System32\drivers\RtkHDAud.sys [2010.06.25 13:00:53 | 002,808,832 | ---- | C] (RealTek Semicoductor Corp.) -- C:\WINDOWS\alcwzrd.exe [2010.06.25 13:00:53 | 002,165,760 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\MicCal.exe [2010.06.25 13:00:53 | 000,278,528 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\System32\ALSndMgr.cpl [2010.06.25 13:00:53 | 000,057,344 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\Alcmtr.exe [2010.06.25 13:00:51 | 000,528,384 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\RtlExUpd.dll [2010.06.25 13:00:51 | 000,319,488 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\HideWin.exe [2010.06.25 13:00:10 | 000,129,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ksproxy.ax [2010.06.25 13:00:10 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ksuser.dll [2010.06.25 12:59:53 | 000,105,856 | ---- | C] (Realtek Semiconductor Corporation ) -- C:\WINDOWS\System32\drivers\Rtenicxp.sys [2010.06.25 12:59:52 | 000,000,000 | -H-D | C] -- C:\Programme\InstallShield Installation Information [2010.06.25 12:59:52 | 000,000,000 | ---D | C] -- C:\Programme\Realtek [2010.06.25 12:59:52 | 000,000,000 | ---D | C] -- C:\WINDOWS\OPTIONS [2010.06.25 12:59:50 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\Robert\Anwendungsdaten\InstallShield [2010.06.25 12:59:38 | 000,442,368 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvudisp.exe [2010.06.25 12:59:38 | 000,000,000 | ---D | C] -- C:\WINDOWS\nview [2010.06.25 12:59:33 | 000,000,000 | ---D | C] -- C:\Programme\Gemeinsame Dateien\InstallShield [2010.06.25 12:59:03 | 000,356,352 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvusmu.exe [2010.06.25 12:59:02 | 000,442,368 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvusmb.exe [2010.06.25 12:58:59 | 000,442,368 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NVUNINST.EXE [2010.06.25 12:58:31 | 000,013,696 | R--- | C] (BIOSTAR Group) -- C:\WINDOWS\System32\drivers\BIOS.sys [2010.06.25 12:57:03 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\Robert\Anwendungsdaten\Identities [2010.06.25 12:57:02 | 000,000,000 | -H-D | C] -- C:\Programme\Uninstall Information [2010.06.25 12:56:59 | 000,000,000 | R--D | C] -- C:\Dokumente und Einstellungen\Robert\Eigene Dateien\Eigene Musik [2010.06.25 12:56:59 | 000,000,000 | R--D | C] -- C:\Dokumente und Einstellungen\Robert\Eigene Dateien [2010.06.25 12:56:59 | 000,000,000 | R--D | C] -- C:\Dokumente und Einstellungen\Robert\Eigene Dateien\Eigene Bilder [2010.06.25 12:56:44 | 000,000,000 | --SD | C] -- C:\Dokumente und Einstellungen\Robert\Anwendungsdaten\Microsoft [2010.06.25 12:56:44 | 000,000,000 | --SD | C] -- C:\Dokumente und Einstellungen\Robert\Cookies [2010.06.25 12:56:44 | 000,000,000 | RH-D | C] -- C:\Dokumente und Einstellungen\Robert\SendTo [2010.06.25 12:56:44 | 000,000,000 | RH-D | C] -- C:\Dokumente und Einstellungen\Robert\Recent [2010.06.25 12:56:44 | 000,000,000 | RH-D | C] -- C:\Dokumente und Einstellungen\Robert\Anwendungsdaten [2010.06.25 12:56:44 | 000,000,000 | R--D | C] -- C:\Dokumente und Einstellungen\Robert\Startmenü [2010.06.25 12:56:44 | 000,000,000 | R--D | C] -- C:\Dokumente und Einstellungen\Robert\Favoriten [2010.06.25 12:56:44 | 000,000,000 | -H-D | C] -- C:\Dokumente und Einstellungen\Robert\Vorlagen [2010.06.25 12:56:44 | 000,000,000 | -H-D | C] -- C:\Dokumente und Einstellungen\Robert\Netzwerkumgebung [2010.06.25 12:56:44 | 000,000,000 | -H-D | C] -- C:\Dokumente und Einstellungen\Robert\Lokale Einstellungen [2010.06.25 12:56:44 | 000,000,000 | -H-D | C] -- C:\Dokumente und Einstellungen\Robert\Druckumgebung [2010.06.25 12:56:44 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\Robert\Lokale Einstellungen\Anwendungsdaten\Microsoft [2010.06.25 12:56:44 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\Robert\Desktop [2010.06.25 12:55:59 | 000,000,000 | ---D | C] -- C:\WINDOWS\SoftwareDistribution [2010.06.25 12:55:57 | 000,000,000 | --SD | C] -- C:\WINDOWS\System32\Microsoft [2010.06.25 12:55:57 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\LocalService\Lokale Einstellungen\Anwendungsdaten\Microsoft [2010.06.25 12:55:56 | 000,000,000 | --SD | C] -- C:\Dokumente und Einstellungen\LocalService\Anwendungsdaten\Microsoft [2010.06.25 12:55:41 | 000,000,000 | --SD | C] -- C:\Dokumente und Einstellungen\NetworkService\Anwendungsdaten\Microsoft [2010.06.25 12:55:41 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\NetworkService\Lokale Einstellungen\Anwendungsdaten\Microsoft [2010.06.25 12:54:03 | 000,618,605 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp4autl.dll [2010.06.25 12:53:35 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\xircom [2010.06.25 12:53:35 | 000,000,000 | ---D | C] -- C:\Programme\xerox [2010.06.25 12:53:35 | 000,000,000 | ---D | C] -- C:\Programme\microsoft frontpage [2010.06.25 12:53:02 | 000,112,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mapi32.dll [2010.06.25 12:52:32 | 000,000,000 | -HSD | C] -- C:\Dokumente und Einstellungen\All Users\DRM [2010.06.25 12:52:26 | 000,000,000 | --SD | C] -- C:\WINDOWS\Downloaded Program Files [2010.06.25 12:52:26 | 000,000,000 | R--D | C] -- C:\WINDOWS\Offline Web Pages [2010.06.25 12:52:19 | 000,000,000 | -H-D | C] -- C:\Programme\WindowsUpdate [2010.06.25 12:52:16 | 000,000,000 | ---D | C] -- C:\Programme\Online-Dienste [2010.06.25 12:52:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\DirectX [2010.06.25 12:52:00 | 000,099,840 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\helphost.exe [2010.06.25 12:52:00 | 000,035,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\notiflag.exe [2010.06.25 12:52:00 | 000,021,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\brpinfo.dll [2010.06.25 12:52:00 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\atrace.dll [2010.06.25 12:52:00 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\atrace.dll [2010.06.25 12:52:00 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hcappres.dll [2010.06.25 12:51:54 | 000,047,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\srdiag.exe [2010.06.25 12:51:53 | 000,070,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\acctres.dll [2010.06.25 12:51:53 | 000,070,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\acctres.dll [2010.06.25 12:51:53 | 000,040,448 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msinfo32.exe [2010.06.25 12:51:53 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wb32.exe [2010.06.25 12:51:53 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\nmevtmsg.dll [2010.06.25 12:51:53 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\nmevtmsg.dll [2010.06.25 12:51:53 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cb32.exe [2010.06.25 12:51:52 | 000,000,000 | ---D | C] -- C:\Programme\Gemeinsame Dateien\Dienste [2010.06.25 12:51:50 | 000,235,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mssoap1.dll [2010.06.25 12:51:50 | 000,073,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icwtutor.exe [2010.06.25 12:51:50 | 000,065,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icwres.dll [2010.06.25 12:51:50 | 000,040,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\trialoc.dll [2010.06.25 12:51:50 | 000,025,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wisc10.dll [2010.06.25 12:51:50 | 000,023,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mssoapr.dll [2010.06.25 12:51:50 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\isignup.exe [2010.06.25 12:51:50 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\icfgnt5.dll [2010.06.25 12:51:50 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icfgnt5.dll [2010.06.25 12:51:50 | 000,000,000 | --SD | C] -- C:\WINDOWS\Tasks [2010.06.25 12:51:50 | 000,000,000 | ---D | C] -- C:\Programme\Gemeinsame Dateien\MSSoap [2010.06.25 12:51:49 | 000,094,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ieinfo5.ocx [2010.06.25 12:51:47 | 003,166,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msgr3en.dll [2010.06.25 12:51:47 | 000,851,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\vgx.dll [2010.06.25 12:51:47 | 000,727,614 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\srchui.dll [2010.06.25 12:51:47 | 000,058,434 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\srchctls.dll [2010.06.25 12:51:47 | 000,000,000 | ---D | C] -- C:\WINDOWS\srchasst [2010.06.25 12:51:46 | 000,778,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\setup_wm.exe [2010.06.25 12:51:46 | 000,368,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mpvis.dll [2010.06.25 12:51:46 | 000,221,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmpns.dll [2010.06.25 12:51:46 | 000,098,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmpband.dll [2010.06.25 12:51:46 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Macromed [2010.06.25 12:51:45 | 000,786,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\migrate.exe [2010.06.25 12:51:45 | 000,364,544 | ---- | C] (Microsoft Corporation (written by Digital Renaissance Inc.)) -- C:\WINDOWS\System32\dllcache\npdsplay.dll [2010.06.25 12:51:45 | 000,226,816 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\npdrmv2.dll [2010.06.25 12:51:45 | 000,073,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmplayer.exe [2010.06.25 12:51:45 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\custsat.dll [2010.06.25 12:51:45 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\npwmsdrm.dll [2010.06.25 12:51:45 | 000,004,639 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mplayer2.exe [2010.06.25 12:51:44 | 001,929,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wuaueng.dll [2010.06.25 12:51:44 | 000,327,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wucltui.dll [2010.06.25 12:51:44 | 000,327,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wucltui.dll [2010.06.25 12:51:44 | 000,217,816 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wuaucpl.cpl [2010.06.25 12:51:44 | 000,209,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wuweb.dll [2010.06.25 12:51:44 | 000,183,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wuaueng1.dll [2010.06.25 12:51:44 | 000,183,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wuaueng1.dll [2010.06.25 12:51:44 | 000,168,448 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wuauclt1.exe [2010.06.25 12:51:44 | 000,168,448 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wuauclt1.exe [2010.06.25 12:51:44 | 000,053,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wuauclt.exe [2010.06.25 12:51:44 | 000,035,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wups.dll [2010.06.25 12:51:44 | 000,035,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wups.dll [2010.06.25 12:51:44 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wuauserv.dll [2010.06.25 12:51:43 | 000,575,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wuapi.dll [2010.06.25 12:51:43 | 000,575,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wuapi.dll [2010.06.25 12:51:43 | 000,409,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\qmgr.dll [2010.06.25 12:51:43 | 000,018,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\qmgrprxy.dll [2010.06.25 12:51:43 | 000,018,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\qmgrprxy.dll [2010.06.25 12:51:43 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\bitsprx2.dll [2010.06.25 12:51:43 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\bitsprx2.dll [2010.06.25 12:51:43 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\bitsprx4.dll [2010.06.25 12:51:43 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\bitsprx4.dll [2010.06.25 12:51:43 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\bitsprx3.dll [2010.06.25 12:51:43 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\bitsprx3.dll [2010.06.25 12:51:42 | 004,293,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmm2res.dll [2010.06.25 12:51:42 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmm2res2.dll [2010.06.25 12:51:42 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmm2eres.dll [2010.06.25 12:51:41 | 003,558,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\moviemk.exe [2010.06.25 12:51:41 | 000,502,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmm2fxa.dll [2010.06.25 12:51:41 | 000,402,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmm2filt.dll [2010.06.25 12:51:41 | 000,325,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmm2fxb.dll [2010.06.25 12:51:41 | 000,167,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmm2ae.dll [2010.06.25 12:51:41 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmm2ext.dll [2010.06.25 12:51:40 | 000,000,000 | ---D | C] -- C:\Programme\Movie Maker [2010.06.25 12:51:30 | 000,565,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msobmain.dll [2010.06.25 12:51:30 | 000,122,368 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msobcomm.dll [2010.06.25 12:51:30 | 000,051,712 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\oobebaln.exe [2010.06.25 12:51:30 | 000,030,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msobshel.dll [2010.06.25 12:51:30 | 000,029,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msoobe.exe [2010.06.25 12:51:30 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msobweb.dll [2010.06.25 12:51:30 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msobdl.dll [2010.06.25 12:51:28 | 000,151,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\uploadm.exe [2010.06.25 12:51:28 | 000,102,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pchshell.dll [2010.06.25 12:51:28 | 000,045,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\safrslv.dll [2010.06.25 12:51:28 | 000,045,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\safrslv.dll [2010.06.25 12:51:28 | 000,043,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\safrcdlg.dll [2010.06.25 12:51:28 | 000,043,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\safrcdlg.dll [2010.06.25 12:51:28 | 000,043,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\racpldlg.dll [2010.06.25 12:51:28 | 000,043,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\racpldlg.dll [2010.06.25 12:51:28 | 000,038,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pchsvc.dll [2010.06.25 12:51:28 | 000,029,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\safrdm.dll [2010.06.25 12:51:28 | 000,029,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\safrdm.dll [2010.06.25 12:51:26 | 000,769,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\helpctr.exe [2010.06.25 12:51:26 | 000,744,448 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\helpsvc.exe [2010.06.25 12:51:26 | 000,172,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msconfig.exe [2010.06.25 12:51:26 | 000,018,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hscupd.exe [2010.06.25 12:51:25 | 000,385,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rstrui.exe [2010.06.25 12:51:25 | 000,242,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\srrstr.dll [2010.06.25 12:51:25 | 000,242,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\srrstr.dll [2010.06.25 12:51:25 | 000,171,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\srsvc.dll [2010.06.25 12:51:25 | 000,129,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fltmgr.sys [2010.06.25 12:51:25 | 000,073,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sr.sys [2010.06.25 12:51:25 | 000,067,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\srclient.dll [2010.06.25 12:51:25 | 000,023,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\fltMc.exe [2010.06.25 12:51:25 | 000,023,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fltmc.exe [2010.06.25 12:51:25 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fltlib.dll [2010.06.25 12:51:25 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Restore [2010.06.25 12:51:24 | 000,385,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\callcont.dll [2010.06.25 12:51:24 | 000,229,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\nmas.dll [2010.06.25 12:51:24 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ils.dll [2010.06.25 12:51:24 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ils.dll [2010.06.25 12:51:24 | 000,069,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msconf.dll [2010.06.25 12:51:24 | 000,069,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msconf.dll [2010.06.25 12:51:24 | 000,040,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dcap32.dll [2010.06.25 12:51:24 | 000,034,560 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mnmdd.dll [2010.06.25 12:51:24 | 000,034,560 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mnmdd.dll [2010.06.25 12:51:24 | 000,032,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mnmsrvc.exe [2010.06.25 12:51:24 | 000,032,768 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\isrdbg32.dll [2010.06.25 12:51:24 | 000,032,768 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\dllcache\isrdbg32.dll [2010.06.25 12:51:24 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\nmmkcert.dll [2010.06.25 12:51:24 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\nmmkcert.dll [2010.06.25 12:51:24 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\nmasnt.dll [2010.06.25 12:51:23 | 000,274,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mst120.dll [2010.06.25 12:51:23 | 000,221,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\nac.dll [2010.06.25 12:51:23 | 000,188,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\nmwb.dll [2010.06.25 12:51:23 | 000,155,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\nmft.dll [2010.06.25 12:51:23 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\nmchat.dll [2010.06.25 12:51:23 | 000,077,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\nmcom.dll [2010.06.25 12:51:23 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rrcm.dll [2010.06.25 12:51:23 | 000,057,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mst123.dll [2010.06.25 12:51:23 | 000,057,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\h323cc.dll [2010.06.25 12:51:23 | 000,045,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\confmrsl.dll [2010.06.25 12:51:22 | 001,040,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\conf.exe [2010.06.25 12:51:22 | 000,510,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wab32.dll [2010.06.25 12:51:22 | 000,252,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msoeacct.dll [2010.06.25 12:51:22 | 000,252,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msoeacct.dll [2010.06.25 12:51:22 | 000,172,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\nmoldwb.dll [2010.06.25 12:51:22 | 000,105,984 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msoert2.dll [2010.06.25 12:51:22 | 000,105,984 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msoert2.dll [2010.06.25 12:51:22 | 000,085,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wabimp.dll [2010.06.25 12:51:22 | 000,046,080 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wab.exe [2010.06.25 12:51:22 | 000,032,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wabfind.dll [2010.06.25 12:51:22 | 000,030,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wabmig.exe [2010.06.25 12:51:22 | 000,000,000 | ---D | C] -- C:\Programme\NetMeeting [2010.06.25 12:51:21 | 000,691,712 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inetcomm.dll [2010.06.25 12:51:21 | 000,259,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wab32res.dll [2010.06.25 12:51:21 | 000,104,448 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\oeimport.dll [2010.06.25 12:51:21 | 000,086,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\directdb.dll [2010.06.25 12:51:21 | 000,060,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msimn.exe [2010.06.25 12:51:21 | 000,051,712 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\inetres.dll [2010.06.25 12:51:21 | 000,051,712 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inetres.dll [2010.06.25 12:51:20 | 002,532,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msoeres.dll [2010.06.25 12:51:20 | 000,280,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mstask.dll [2010.06.25 12:51:20 | 000,193,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\schedsvc.dll [2010.06.25 12:51:20 | 000,074,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\setup50.exe [2010.06.25 12:51:20 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\oemig50.exe [2010.06.25 12:51:20 | 000,035,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\oemiglib.dll [2010.06.25 12:51:20 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mstinit.exe [2010.06.25 12:51:20 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mstinit.exe [2010.06.25 12:51:20 | 000,000,000 | ---D | C] -- C:\Programme\Outlook Express [2010.06.25 12:51:19 | 000,282,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\inetcfg.dll [2010.06.25 12:51:19 | 000,282,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inetcfg.dll [2010.06.25 12:51:19 | 000,086,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\isign32.dll [2010.06.25 12:51:19 | 000,086,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\isign32.dll [2010.06.25 12:51:19 | 000,073,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\icwdial.dll [2010.06.25 12:51:19 | 000,073,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icwdial.dll [2010.06.25 12:51:19 | 000,065,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\icwphbk.dll [2010.06.25 12:51:19 | 000,065,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icwphbk.dll [2010.06.25 12:51:18 | 000,554,008 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dao360.dll [2010.06.25 12:51:18 | 000,218,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icwconn1.exe [2010.06.25 12:51:18 | 000,217,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sqlxmlx.dll [2010.06.25 12:51:18 | 000,172,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icwhelp.dll [2010.06.25 12:51:18 | 000,086,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icwconn2.exe [2010.06.25 12:51:18 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icwconn.dll [2010.06.25 12:51:18 | 000,049,152 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icwutil.dll [2010.06.25 12:51:18 | 000,032,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icwdl.dll [2010.06.25 12:51:18 | 000,024,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icwrmind.exe [2010.06.25 12:51:18 | 000,020,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inetwiz.exe [2010.06.25 12:51:17 | 000,487,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\oledb32.dll [2010.06.25 12:51:17 | 000,315,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdasql.dll [2010.06.25 12:51:17 | 000,233,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdaora.dll [2010.06.25 12:51:17 | 000,204,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdaps.dll [2010.06.25 12:51:17 | 000,102,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msjro.dll [2010.06.25 12:51:17 | 000,094,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdatl3.dll [2010.06.25 12:51:17 | 000,077,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdaosp.dll [2010.06.25 12:51:17 | 000,073,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\oledb32r.dll [2010.06.25 12:51:17 | 000,024,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msxactps.dll [2010.06.25 12:51:17 | 000,020,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdatt.dll [2010.06.25 12:51:17 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdasqlr.dll [2010.06.25 12:51:17 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdaorar.dll [2010.06.25 12:51:17 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdaurl.dll [2010.06.25 12:51:17 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdasc.dll [2010.06.25 12:51:17 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdaer.dll [2010.06.25 12:51:17 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdaenum.dll [2010.06.25 12:51:17 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdadc.dll [2010.06.25 12:51:16 | 000,536,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msado15.dll [2010.06.25 12:51:16 | 000,200,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdaprst.dll [2010.06.25 12:51:16 | 000,200,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadox.dll [2010.06.25 12:51:16 | 000,180,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadomd.dll [2010.06.25 12:51:16 | 000,118,784 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdarem.dll [2010.06.25 12:51:16 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msado27.tlb [2010.06.25 12:51:16 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msado26.tlb [2010.06.25 12:51:16 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msado25.tlb [2010.06.25 12:51:16 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msado21.tlb [2010.06.25 12:51:16 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msado20.tlb [2010.06.25 12:51:16 | 000,057,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadrh15.dll [2010.06.25 12:51:16 | 000,057,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msador15.dll [2010.06.25 12:51:16 | 000,036,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdfmap.dll [2010.06.25 12:51:16 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msader15.dll [2010.06.25 12:51:16 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdaremr.dll [2010.06.25 12:51:16 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdaprsr.dll [2010.06.25 12:51:15 | 000,331,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadce.dll [2010.06.25 12:51:15 | 000,155,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadds.dll [2010.06.25 12:51:15 | 000,143,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadco.dll [2010.06.25 12:51:15 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadcf.dll [2010.06.25 12:51:15 | 000,053,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadcs.dll [2010.06.25 12:51:15 | 000,024,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msaddsr.dll [2010.06.25 12:51:15 | 000,020,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadcer.dll [2010.06.25 12:51:15 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadcor.dll [2010.06.25 12:51:15 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadcfr.dll [2010.06.25 12:51:15 | 000,000,000 | ---D | C] -- C:\Programme\Gemeinsame Dateien\System [2010.06.25 12:51:14 | 000,093,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iexplore.exe [2010.06.25 12:51:14 | 000,038,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hmmapi.dll [2010.06.25 12:51:14 | 000,018,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iedw.exe [2010.06.25 12:51:14 | 000,000,000 | ---D | C] -- C:\Programme\Internet Explorer [2010.06.25 12:51:13 | 000,000,000 | R--D | C] -- C:\Dokumente und Einstellungen\All Users\Dokumente\Eigene Bilder [2010.06.25 12:50:43 | 000,000,000 | ---D | C] -- C:\Programme\ComPlus Applications [2010.06.25 12:50:37 | 000,000,000 | ---D | C] -- C:\WINDOWS\Registration [2010.06.25 12:50:30 | 000,000,000 | R--D | C] -- C:\Dokumente und Einstellungen\All Users\Dokumente\Eigene Musik [2010.06.25 12:50:30 | 000,000,000 | ---D | C] -- C:\Programme\Windows Media Player [2010.06.25 12:50:30 | 000,000,000 | ---D | C] -- C:\Programme\Online Services [2010.06.25 12:50:24 | 000,042,577 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\bckgzm.exe [2010.06.25 12:50:24 | 000,000,000 | ---D | C] -- C:\Programme\Messenger [2010.06.25 12:50:23 | 002,178,131 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\shvlres.dll [2010.06.25 12:50:23 | 001,817,687 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\bckgres.dll [2010.06.25 12:50:23 | 000,781,397 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chkrres.dll [2010.06.25 12:50:23 | 000,753,236 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rvseres.dll [2010.06.25 12:50:23 | 000,082,501 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\bckg.dll [2010.06.25 12:50:23 | 000,066,113 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\shvl.dll [2010.06.25 12:50:23 | 000,048,706 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rvse.dll [2010.06.25 12:50:23 | 000,042,575 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chkrzm.exe [2010.06.25 12:50:23 | 000,042,574 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rvsezm.exe [2010.06.25 12:50:23 | 000,042,573 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\shvlzm.exe [2010.06.25 12:50:23 | 000,042,573 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hrtzzm.exe [2010.06.25 12:50:23 | 000,040,515 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chkr.dll [2010.06.25 12:50:22 | 001,175,635 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hrtzres.dll [2010.06.25 12:50:22 | 001,042,515 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cmnresm.dll [2010.06.25 12:50:22 | 000,217,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cmnclim.dll [2010.06.25 12:50:22 | 000,113,222 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\zoneclim.dll [2010.06.25 12:50:22 | 000,057,409 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hrtz.dll [2010.06.25 12:50:22 | 000,041,029 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\zcorem.dll [2010.06.25 12:50:22 | 000,032,339 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\uniansi.dll [2010.06.25 12:50:22 | 000,013,894 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\zonelibm.dll [2010.06.25 12:50:22 | 000,004,677 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\zeeverm.dll [2010.06.25 12:50:21 | 000,036,937 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\zclientm.exe [2010.06.25 12:50:21 | 000,029,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\znetm.dll [2010.06.25 12:50:21 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\write.exe [2010.06.25 12:50:21 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\write.exe [2010.06.25 12:50:21 | 000,000,000 | ---D | C] -- C:\Programme\MSN Gaming Zone [2010.06.25 12:50:15 | 000,232,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\avtapi.dll [2010.06.25 12:50:15 | 000,232,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\avtapi.dll [2010.06.25 12:50:15 | 000,139,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\sndvol32.exe [2010.06.25 12:50:15 | 000,139,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sndvol32.exe [2010.06.25 12:50:15 | 000,073,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\avwav.dll [2010.06.25 12:50:15 | 000,073,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\avwav.dll [2010.06.25 12:50:15 | 000,044,544 | ---- | C] (Hilgraeve, Inc.) -- C:\WINDOWS\System32\hticons.dll [2010.06.25 12:50:15 | 000,035,840 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\winchat.exe [2010.06.25 12:50:15 | 000,035,840 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winchat.exe [2010.06.25 12:50:15 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\avmeter.dll [2010.06.25 12:50:15 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\avmeter.dll [2010.06.25 12:50:15 | 000,013,312 | ---- | C] (Hilgraeve, Inc.) -- C:\WINDOWS\System32\dllcache\htrn_jis.dll [2010.06.25 12:50:10 | 000,683,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\getuname.dll [2010.06.25 12:50:10 | 000,683,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\getuname.dll [2010.06.25 12:50:10 | 000,120,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\winmine.exe [2010.06.25 12:50:10 | 000,120,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winmine.exe [2010.06.25 12:50:10 | 000,114,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\calc.exe [2010.06.25 12:50:10 | 000,114,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\calc.exe [2010.06.25 12:50:10 | 000,080,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\charmap.exe [2010.06.25 12:50:10 | 000,080,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\charmap.exe [2010.06.25 12:50:10 | 000,057,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\sol.exe [2010.06.25 12:50:10 | 000,057,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sol.exe [2010.06.25 12:50:09 | 000,128,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mshearts.exe [2010.06.25 12:50:09 | 000,128,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mshearts.exe [2010.06.25 12:50:09 | 000,055,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\freecell.exe [2010.06.25 12:50:09 | 000,055,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\freecell.exe [2010.06.25 12:50:09 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\regini.exe [2010.06.25 12:50:09 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\regini.exe [2010.06.25 12:50:09 | 000,022,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\qwinsta.exe [2010.06.25 12:50:09 | 000,022,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\qwinsta.exe [2010.06.25 12:50:09 | 000,022,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msg.exe [2010.06.25 12:50:09 | 000,022,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msg.exe [2010.06.25 12:50:09 | 000,017,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tsshutdn.exe [2010.06.25 12:50:09 | 000,017,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tsshutdn.exe [2010.06.25 12:50:09 | 000,017,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\qappsrv.exe [2010.06.25 12:50:09 | 000,017,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\qappsrv.exe [2010.06.25 12:50:09 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tskill.exe [2010.06.25 12:50:09 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tskill.exe [2010.06.25 12:50:09 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rwinsta.exe [2010.06.25 12:50:09 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rwinsta.exe [2010.06.25 12:50:09 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tsdiscon.exe [2010.06.25 12:50:09 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tsdiscon.exe [2010.06.25 12:50:09 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tscon.exe [2010.06.25 12:50:09 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tscon.exe [2010.06.25 12:50:09 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\shadow.exe [2010.06.25 12:50:09 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\shadow.exe [2010.06.25 12:50:09 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\reset.exe [2010.06.25 12:50:09 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\reset.exe [2010.06.25 12:50:09 | 000,004,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rdpcfgex.dll [2010.06.25 12:50:09 | 000,004,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rdpcfgex.dll [2010.06.25 12:50:08 | 000,045,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmi2xml.dll [2010.06.25 12:50:08 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mtsadmin.tlb [2010.06.25 12:50:08 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\logoff.exe [2010.06.25 12:50:08 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\logoff.exe [2010.06.25 12:50:08 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cdmodem.dll [2010.06.25 12:50:08 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\cdmodem.dll [2010.06.25 12:50:06 | 000,076,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmipicmp.dll [2010.06.25 12:50:06 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmimsg.dll [2010.06.25 12:50:06 | 000,052,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmitimep.dll [2010.06.25 12:50:05 | 000,273,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msiprov.dll [2010.06.25 12:50:05 | 000,120,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dsprov.dll [2010.06.25 12:50:05 | 000,116,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\updprov.dll [2010.06.25 12:50:05 | 000,061,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tmplprov.dll [2010.06.25 12:50:05 | 000,059,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wbemdisp.tlb [2010.06.25 12:50:05 | 000,059,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\trnsprov.dll [2010.06.25 12:50:05 | 000,053,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fwdprov.dll [2010.06.25 12:50:05 | 000,040,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smtpcons.dll [2010.06.25 12:50:05 | 000,031,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wbemads.tlb [2010.06.25 12:50:05 | 000,017,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winmgmtr.dll [2010.06.25 12:50:05 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\unsecapp.exe [2010.06.25 12:50:05 | 000,013,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winmgmt.exe [2010.06.25 12:50:05 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wbemads.dll [2010.06.25 12:49:57 | 000,282,624 | ---- | C] (Cinematronics) -- C:\WINDOWS\System32\dllcache\pinball.exe [2010.06.25 12:49:57 | 000,188,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\accwiz.exe [2010.06.25 12:49:57 | 000,188,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\accwiz.exe [2010.06.25 12:49:57 | 000,070,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\access.cpl [2010.06.25 12:49:57 | 000,070,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\access.cpl [2010.06.25 12:49:57 | 000,000,000 | ---D | C] -- C:\Programme\MSN [2010.06.25 12:49:56 | 000,545,280 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dialer.exe [2010.06.25 12:49:56 | 000,356,352 | ---- | C] (Hilgraeve, Inc.) -- C:\WINDOWS\System32\hypertrm.dll [2010.06.25 12:49:56 | 000,346,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mspaint.exe [2010.06.25 12:49:56 | 000,346,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mspaint.exe [2010.06.25 12:49:56 | 000,133,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\sndrec32.exe [2010.06.25 12:49:56 | 000,133,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sndrec32.exe [2010.06.25 12:49:56 | 000,124,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mplay32.exe [2010.06.25 12:49:56 | 000,124,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mplay32.exe [2010.06.25 12:49:56 | 000,104,448 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\clipbrd.exe [2010.06.25 12:49:56 | 000,104,448 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\clipbrd.exe [2010.06.25 12:49:56 | 000,000,000 | ---D | C] -- C:\Programme\Windows NT [2010.06.25 12:49:55 | 000,539,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\spider.exe [2010.06.25 12:49:55 | 000,539,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\spider.exe [2010.06.25 12:49:55 | 000,139,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rdpwd.sys [2010.06.25 12:49:55 | 000,094,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tscfgwmi.dll [2010.06.25 12:49:55 | 000,094,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tscfgwmi.dll [2010.06.25 12:49:55 | 000,053,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tsgqec.dll [2010.06.25 12:49:55 | 000,053,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tsgqec.dll [2010.06.25 12:49:55 | 000,021,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tdtcp.sys [2010.06.25 12:49:55 | 000,012,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tdpipe.sys [2010.06.25 12:49:54 | 002,061,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\lhmstscx.dll [2010.06.25 12:49:54 | 000,677,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\lhmstsc.exe [2010.06.25 12:49:54 | 000,290,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rhttpaa.dll [2010.06.25 12:49:54 | 000,290,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rhttpaa.dll [2010.06.25 12:49:54 | 000,143,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sessmgr.exe [2010.06.25 12:49:54 | 000,136,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\aaclient.dll [2010.06.25 12:49:54 | 000,136,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\aaclient.dll [2010.06.25 12:49:54 | 000,067,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rdshost.exe [2010.06.25 12:49:54 | 000,067,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rdshost.exe [2010.06.25 12:49:54 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\remotepg.dll [2010.06.25 12:49:54 | 000,013,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rdsaddin.exe |
|
05.07.2010, 10:07
| #15 |
| | Internet Explorer öffnet ständig werbung ohne zutuhn Und OTL Teil IV [2010.06.25 12:49:54 | 000,013,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rdsaddin.exe [2010.06.25 12:49:53 | 000,297,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\termsrv.dll [2010.06.25 12:49:53 | 000,161,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msdtcuiu.dll [2010.06.25 12:49:53 | 000,161,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdtcuiu.dll [2010.06.25 12:49:53 | 000,147,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rdchost.dll [2010.06.25 12:49:53 | 000,147,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rdchost.dll [2010.06.25 12:49:53 | 000,091,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mtxoci.dll [2010.06.25 12:49:53 | 000,091,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mtxoci.dll [2010.06.25 12:49:53 | 000,087,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rdpwsx.dll [2010.06.25 12:49:53 | 000,087,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rdpwsx.dll [2010.06.25 12:49:53 | 000,062,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rdpclip.exe [2010.06.25 12:49:53 | 000,062,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rdpclip.exe [2010.06.25 12:49:53 | 000,039,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cfgbkend.dll [2010.06.25 12:49:53 | 000,039,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\cfgbkend.dll [2010.06.25 12:49:53 | 000,020,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\qprocess.exe [2010.06.25 12:49:53 | 000,020,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\qprocess.exe [2010.06.25 12:49:53 | 000,019,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rdpsnd.dll [2010.06.25 12:49:53 | 000,019,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rdpsnd.dll [2010.06.25 12:49:53 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\icaapi.dll [2010.06.25 12:49:53 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icaapi.dll [2010.06.25 12:49:53 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\MsDtc [2010.06.25 12:49:52 | 000,956,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msdtctm.dll [2010.06.25 12:49:52 | 000,956,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdtctm.dll [2010.06.25 12:49:52 | 000,427,008 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msdtcprx.dll [2010.06.25 12:49:52 | 000,427,008 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdtcprx.dll [2010.06.25 12:49:52 | 000,058,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msdtclog.dll [2010.06.25 12:49:52 | 000,058,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdtclog.dll [2010.06.25 12:49:52 | 000,011,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xolehlp.dll [2010.06.25 12:49:52 | 000,011,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\xolehlp.dll [2010.06.25 12:49:52 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\comrepl.exe [2010.06.25 12:49:52 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdtc.exe [2010.06.25 12:49:52 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\comrereg.exe [2010.06.25 12:49:51 | 000,625,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\catsrvut.dll [2010.06.25 12:49:51 | 000,625,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\catsrvut.dll [2010.06.25 12:49:51 | 000,195,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\comadmin.dll [2010.06.25 12:49:51 | 000,110,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\clbcatex.dll [2010.06.25 12:49:51 | 000,110,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\clbcatex.dll [2010.06.25 12:49:51 | 000,097,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\comrepl.dll [2010.06.25 12:49:51 | 000,097,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\comrepl.dll [2010.06.25 12:49:51 | 000,085,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\catsrvps.dll [2010.06.25 12:49:51 | 000,085,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\catsrvps.dll [2010.06.25 12:49:51 | 000,060,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\colbact.dll [2010.06.25 12:49:51 | 000,060,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\colbact.dll [2010.06.25 12:49:51 | 000,059,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\stclient.dll [2010.06.25 12:49:51 | 000,059,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\stclient.dll [2010.06.25 12:49:51 | 000,034,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mtxlegih.dll [2010.06.25 12:49:51 | 000,034,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mtxlegih.dll [2010.06.25 12:49:51 | 000,030,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mtxdm.dll [2010.06.25 12:49:51 | 000,030,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mtxdm.dll [2010.06.25 12:49:51 | 000,028,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\comaddin.dll [2010.06.25 12:49:51 | 000,028,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\comaddin.dll [2010.06.25 12:49:51 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dcomcnfg.exe [2010.06.25 12:49:51 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dcomcnfg.exe [2010.06.25 12:49:51 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mtxex.dll [2010.06.25 12:49:51 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mtxex.dll [2010.06.25 12:49:51 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Com [2010.06.25 12:49:50 | 001,267,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\comsvcs.dll [2010.06.25 12:49:50 | 001,267,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\comsvcs.dll [2010.06.25 12:49:50 | 000,539,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\comuid.dll [2010.06.25 12:49:50 | 000,539,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\comuid.dll [2010.06.25 12:49:50 | 000,498,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\clbcatq.dll [2010.06.25 12:49:50 | 000,226,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\catsrv.dll [2010.06.25 12:49:50 | 000,226,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\catsrv.dll [2010.06.25 12:49:50 | 000,167,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\comsnap.dll [2010.06.25 12:49:50 | 000,167,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\comsnap.dll [2010.06.25 12:49:49 | 000,145,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmisvc.dll [2010.06.25 12:49:49 | 000,099,840 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmiutils.dll [2010.06.25 12:49:49 | 000,041,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmipsess.dll [2010.06.25 12:49:48 | 000,370,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmic.exe [2010.06.25 12:49:48 | 000,273,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wbemess.dll [2010.06.25 12:49:48 | 000,197,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wbemupgd.dll [2010.06.25 12:49:48 | 000,196,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmiadap.exe [2010.06.25 12:49:48 | 000,178,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wbemdisp.dll [2010.06.25 12:49:48 | 000,156,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmipcima.dll [2010.06.25 12:49:48 | 000,144,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmiprov.dll [2010.06.25 12:49:48 | 000,140,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmidcprv.dll [2010.06.25 12:49:48 | 000,132,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmipdskq.dll [2010.06.25 12:49:48 | 000,126,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmiapsrv.exe [2010.06.25 12:49:48 | 000,120,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wbemtest.exe [2010.06.25 12:49:48 | 000,088,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmiaprpl.dll [2010.06.25 12:49:48 | 000,062,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmipjobj.dll [2010.06.25 12:49:48 | 000,061,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmipiprt.dll [2010.06.25 12:49:48 | 000,060,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmicookr.dll [2010.06.25 12:49:48 | 000,043,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wbemsvc.dll [2010.06.25 12:49:48 | 000,018,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wbemprox.dll [2010.06.25 12:49:48 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmiapres.dll [2010.06.25 12:49:47 | 000,531,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wbemcore.dll [2010.06.25 12:49:47 | 000,237,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\provthrd.dll [2010.06.25 12:49:47 | 000,214,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wbemcomn.dll [2010.06.25 12:49:47 | 000,212,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntevt.dll [2010.06.25 12:49:47 | 000,201,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wbemcntl.dll [2010.06.25 12:49:47 | 000,178,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\repdrvfs.dll [2010.06.25 12:49:47 | 000,131,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\viewprov.dll [2010.06.25 12:49:47 | 000,092,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\policman.dll [2010.06.25 12:49:47 | 000,086,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\stdprov.dll [2010.06.25 12:49:47 | 000,071,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wbemcons.dll [2010.06.25 12:49:47 | 000,036,352 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\scrcons.exe [2010.06.25 12:49:46 | 000,247,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\esscli.dll [2010.06.25 12:49:46 | 000,185,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\framedyn.dll [2010.06.25 12:49:46 | 000,124,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mofd.dll [2010.06.25 12:49:46 | 000,047,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ncprov.dll [2010.06.25 12:49:46 | 000,024,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\krnlprov.dll [2010.06.25 12:49:46 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mofcomp.exe [2010.06.25 12:49:45 | 001,359,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cimwin32.dll [2010.06.25 12:49:45 | 000,189,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cmprops.dll [2010.06.25 12:49:45 | 000,189,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\cmprops.dll [2010.06.25 12:49:45 | 000,058,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\licwmi.dll [2010.06.25 12:49:45 | 000,058,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\licwmi.dll [2010.06.25 12:49:45 | 000,056,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\servdeps.dll [2010.06.25 12:49:45 | 000,056,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\servdeps.dll [2010.06.25 12:49:45 | 000,017,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mmfutil.dll [2010.06.25 12:49:45 | 000,017,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mmfutil.dll [2010.06.25 12:49:43 | 000,000,000 | R--D | C] -- C:\Dokumente und Einstellungen\All Users\Dokumente\Eigene Videos [6 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ] [1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ] ========== Files - Modified Within 30 Days ========== [2010.07.05 10:50:12 | 000,723,744 | ---- | M] () -- C:\WINDOWS\System32\PerfStringBackup.INI [2010.07.05 10:50:12 | 000,316,594 | ---- | M] () -- C:\WINDOWS\System32\perfh007.dat [2010.07.05 10:50:12 | 000,311,604 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat [2010.07.05 10:50:12 | 000,048,156 | ---- | M] () -- C:\WINDOWS\System32\perfc007.dat [2010.07.05 10:50:12 | 000,039,992 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat [2010.07.05 10:46:06 | 000,000,260 | ---- | M] () -- C:\WINDOWS\tasks\WGASetup.job [2010.07.05 10:45:59 | 000,160,101 | ---- | M] () -- C:\WINDOWS\System32\nvapps.xml [2010.07.05 10:45:58 | 000,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT [2010.07.05 10:45:57 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat [2010.07.05 09:58:36 | 001,048,576 | -H-- | M] () -- C:\Dokumente und Einstellungen\Robert\NTUSER.DAT [2010.07.05 09:58:36 | 000,000,190 | -HS- | M] () -- C:\Dokumente und Einstellungen\Robert\ntuser.ini [2010.07.05 09:58:32 | 001,576,810 | -H-- | M] () -- C:\Dokumente und Einstellungen\Robert\Lokale Einstellungen\Anwendungsdaten\IconCache.db [2010.07.04 23:14:46 | 1609,842,688 | ---- | M] () -- C:\WINDOWS\MEMORY.DMP [2010.07.04 21:30:02 | 000,000,676 | ---- | M] () -- C:\Dokumente und Einstellungen\All Users\Desktop\Malwarebytes' Anti-Malware.lnk [2010.07.04 21:25:37 | 000,869,052 | ---- | M] () -- C:\Qoobox.zip [2010.07.04 20:29:00 | 000,000,227 | ---- | M] () -- C:\WINDOWS\system.ini [2010.07.04 20:28:54 | 000,000,027 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts [2010.07.04 20:25:38 | 000,000,281 | RHS- | M] () -- C:\boot.ini [2010.07.04 14:05:39 | 000,012,328 | ---- | M] () -- C:\Dokumente und Einstellungen\Robert\Lokale Einstellungen\Anwendungsdaten\GDIPFONTCACHEV1.DAT [2010.07.04 13:59:38 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl [2010.07.04 13:59:22 | 000,090,296 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT [2010.07.04 13:58:36 | 000,021,483 | ---- | M] () -- C:\WINDOWS\System32\$winnt$.inf [2010.07.04 13:56:38 | 000,316,640 | ---- | M] () -- C:\WINDOWS\WMSysPr9.prx [2010.07.04 13:56:37 | 000,023,392 | ---- | M] () -- C:\WINDOWS\System32\nscompat.tlb [2010.07.04 13:56:37 | 000,016,832 | ---- | M] () -- C:\WINDOWS\System32\amcompat.tlb [2010.07.04 13:56:29 | 000,004,161 | ---- | M] () -- C:\WINDOWS\ODBCINST.INI [2010.07.04 13:55:52 | 000,000,488 | RH-- | M] () -- C:\WINDOWS\System32\WindowsLogon.manifest [2010.07.04 13:55:52 | 000,000,488 | RH-- | M] () -- C:\WINDOWS\System32\logonui.exe.manifest [2010.07.04 13:55:48 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\System32\wuaucpl.cpl.manifest [2010.07.04 13:55:48 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\WindowsShell.Manifest [2010.07.04 13:55:48 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\System32\sapi.cpl.manifest [2010.07.04 13:55:48 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\System32\nwc.cpl.manifest [2010.07.04 13:55:48 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\System32\ncpa.cpl.manifest [2010.07.04 13:55:48 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\System32\cdplayer.exe.manifest [2010.07.04 13:55:39 | 000,000,477 | ---- | M] () -- C:\WINDOWS\win.ini [2010.07.04 13:54:51 | 000,022,880 | ---- | M] () -- C:\WINDOWS\System32\emptyregdb.dat [2010.07.04 13:53:47 | 000,000,211 | ---- | M] () -- C:\Boot.bak [2010.07.04 13:49:10 | 000,004,444 | ---- | M] () -- C:\WINDOWS\System32\pid.PNF [2010.07.01 15:49:13 | 000,273,307 | ---- | M] () -- C:\WINDOWS\setupapi.old [2010.07.01 15:40:39 | 000,063,488 | RHS- | M] () -- C:\WINDOWS\System32\tlntsess7.dll [2010.07.01 15:26:58 | 000,002,239 | ---- | M] () -- C:\Dokumente und Einstellungen\Robert\.recently-used.xbel [2010.06.30 22:26:12 | 000,001,374 | ---- | M] () -- C:\WINDOWS\imsins.BAK [2010.06.30 21:30:11 | 000,001,709 | ---- | M] () -- C:\Dokumente und Einstellungen\All Users\Desktop\Adobe Reader 9.lnk [2010.06.26 11:08:45 | 000,000,772 | ---- | M] () -- C:\Dokumente und Einstellungen\Robert\Desktop\Windows Media Player.lnk [2010.06.25 19:50:08 | 000,000,899 | ---- | M] () -- C:\Dokumente und Einstellungen\All Users\Desktop\Tactical Ops.lnk [2010.06.25 15:06:48 | 000,411,368 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\deployJava1.dll [2010.06.25 15:06:48 | 000,153,376 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaws.exe [2010.06.25 15:06:48 | 000,145,184 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaw.exe [2010.06.25 15:06:48 | 000,145,184 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\java.exe [2010.06.25 15:06:48 | 000,073,728 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javacpl.cpl [2010.06.25 15:02:50 | 000,001,451 | ---- | M] () -- C:\Dokumente und Einstellungen\All Users\Desktop\ICQ7.2.lnk [2010.06.25 13:19:09 | 000,000,778 | ---- | M] () -- C:\Dokumente und Einstellungen\All Users\Desktop\GIMP 2.lnk [2010.06.25 13:15:49 | 000,001,671 | ---- | M] () -- C:\Dokumente und Einstellungen\All Users\Desktop\Avira AntiVir Control Center.lnk [2010.06.25 13:10:17 | 000,000,000 | ---- | M] () -- C:\WINDOWS\nsreg.dat [2010.06.25 13:10:10 | 000,001,566 | ---- | M] () -- C:\Dokumente und Einstellungen\All Users\Desktop\Mozilla Firefox.lnk [2010.06.25 13:08:05 | 000,000,906 | ---- | M] () -- C:\Dokumente und Einstellungen\Robert\Desktop\DVDVideoSoft Free Studio.lnk [2010.06.25 13:02:28 | 000,940,794 | ---- | M] () -- C:\WINDOWS\System32\LoopyMusic.wav [2010.06.25 13:02:28 | 000,146,650 | ---- | M] () -- C:\WINDOWS\System32\BuzzingBee.wav [2010.06.25 13:00:51 | 000,319,488 | ---- | M] (Realtek Semiconductor Corp.) -- C:\WINDOWS\HideWin.exe [2010.06.25 12:57:27 | 000,000,104 | ---- | M] () -- C:\Dokumente und Einstellungen\Robert\Desktop\Arbeitsplatz.lnk [2010.06.25 12:55:43 | 000,008,192 | ---- | M] () -- C:\WINDOWS\REGLOCS.OLD [2010.06.25 12:53:14 | 000,002,951 | ---- | M] () -- C:\WINDOWS\System32\CONFIG.NT [2010.06.25 12:53:14 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS [2010.06.25 12:53:14 | 000,000,000 | RHS- | M] () -- C:\IO.SYS [2010.06.25 12:53:14 | 000,000,000 | ---- | M] () -- C:\WINDOWS\control.ini [2010.06.25 12:53:14 | 000,000,000 | ---- | M] () -- C:\CONFIG.SYS [2010.06.25 12:53:14 | 000,000,000 | ---- | M] () -- C:\AUTOEXEC.BAT [2010.06.25 12:50:41 | 000,000,037 | ---- | M] () -- C:\WINDOWS\vbaddin.ini [2010.06.25 12:50:41 | 000,000,036 | ---- | M] () -- C:\WINDOWS\vb.ini [6 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ] [1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ] ========== Files Created - No Company Name ========== [2010.07.04 21:30:02 | 000,000,676 | ---- | C] () -- C:\Dokumente und Einstellungen\All Users\Desktop\Malwarebytes' Anti-Malware.lnk [2010.07.04 21:25:37 | 000,869,052 | ---- | C] () -- C:\Qoobox.zip [2010.07.04 20:25:38 | 000,000,211 | ---- | C] () -- C:\Boot.bak [2010.07.04 20:25:36 | 000,262,448 | ---- | C] () -- C:\cmldr [2010.07.04 20:24:52 | 000,256,512 | ---- | C] () -- C:\WINDOWS\PEV.exe [2010.07.04 20:24:52 | 000,098,816 | ---- | C] () -- C:\WINDOWS\sed.exe [2010.07.04 20:24:52 | 000,080,412 | ---- | C] () -- C:\WINDOWS\grep.exe [2010.07.04 20:24:52 | 000,077,312 | ---- | C] () -- C:\WINDOWS\MBR.exe [2010.07.04 20:24:52 | 000,068,096 | ---- | C] () -- C:\WINDOWS\zip.exe [2010.07.04 13:58:27 | 000,028,288 | ---- | C] () -- C:\WINDOWS\System32\dllcache\xjis.nls [2010.07.04 13:58:03 | 000,083,748 | ---- | C] () -- C:\WINDOWS\System32\dllcache\prcp.nls [2010.07.04 13:58:03 | 000,083,748 | ---- | C] () -- C:\WINDOWS\System32\dllcache\prc.nls [2010.07.04 13:58:02 | 000,175,104 | ---- | C] () -- C:\WINDOWS\System32\dllcache\pintlcsa.dll [2010.07.04 13:57:48 | 000,047,066 | ---- | C] () -- C:\WINDOWS\System32\dllcache\ksc.nls [2010.07.04 13:57:47 | 001,158,818 | ---- | C] () -- C:\WINDOWS\System32\dllcache\korwbrkr.lex [2010.07.04 13:57:42 | 000,059,392 | ---- | C] () -- C:\WINDOWS\System32\dllcache\imscinst.exe [2010.07.04 13:57:41 | 000,196,665 | ---- | C] () -- C:\WINDOWS\System32\dllcache\imjpinst.exe [2010.07.04 13:57:39 | 000,134,339 | ---- | C] () -- C:\WINDOWS\System32\dllcache\imekr.lex [2010.07.04 13:57:33 | 013,463,552 | ---- | C] () -- C:\WINDOWS\System32\dllcache\hwxjpn.dll [2010.07.04 13:57:29 | 000,108,827 | ---- | C] () -- C:\WINDOWS\System32\dllcache\hanja.lex [2010.07.04 13:57:26 | 000,094,208 | ---- | C] () -- C:\WINDOWS\System32\dllcache\fpencode.dll [2010.07.04 13:57:16 | 000,173,568 | ---- | C] () -- C:\WINDOWS\System32\dllcache\chtskf.dll [2010.07.04 13:57:14 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_864.nls [2010.07.04 13:57:14 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_862.nls [2010.07.04 13:57:14 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_870.nls [2010.07.04 13:57:13 | 000,180,770 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20932.nls [2010.07.04 13:57:13 | 000,177,698 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20949.nls [2010.07.04 13:57:13 | 000,173,602 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20936.nls [2010.07.04 13:57:13 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_858.nls [2010.07.04 13:57:13 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_720.nls [2010.07.04 13:57:13 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_708.nls [2010.07.04 13:57:13 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_28596.nls [2010.07.04 13:57:13 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_21027.nls [2010.07.04 13:57:13 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_21025.nls [2010.07.04 13:57:13 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20924.nls [2010.07.04 13:57:13 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20880.nls [2010.07.04 13:57:12 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20871.nls [2010.07.04 13:57:12 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20838.nls [2010.07.04 13:57:12 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20833.nls [2010.07.04 13:57:12 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20424.nls [2010.07.04 13:57:12 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20423.nls [2010.07.04 13:57:12 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20420.nls [2010.07.04 13:57:12 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20297.nls [2010.07.04 13:57:12 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20290.nls [2010.07.04 13:57:12 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20285.nls [2010.07.04 13:57:12 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20284.nls [2010.07.04 13:57:12 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20280.nls [2010.07.04 13:57:12 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20278.nls [2010.07.04 13:57:12 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20277.nls [2010.07.04 13:57:12 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20273.nls [2010.07.04 13:57:12 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20269.nls [2010.07.04 13:57:12 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20108.nls [2010.07.04 13:57:11 | 000,189,986 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1361.nls [2010.07.04 13:57:11 | 000,187,938 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20005.nls [2010.07.04 13:57:11 | 000,186,402 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20001.nls [2010.07.04 13:57:11 | 000,185,378 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20003.nls [2010.07.04 13:57:11 | 000,180,258 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20004.nls [2010.07.04 13:57:11 | 000,180,258 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20000.nls [2010.07.04 13:57:11 | 000,173,602 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20002.nls [2010.07.04 13:57:11 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20107.nls [2010.07.04 13:57:11 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20106.nls [2010.07.04 13:57:11 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20105.nls [2010.07.04 13:57:10 | 000,177,698 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10003.nls [2010.07.04 13:57:10 | 000,173,602 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10008.nls [2010.07.04 13:57:10 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1149.nls [2010.07.04 13:57:10 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1148.nls [2010.07.04 13:57:10 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1147.nls [2010.07.04 13:57:10 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1146.nls [2010.07.04 13:57:10 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1145.nls [2010.07.04 13:57:10 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1144.nls [2010.07.04 13:57:10 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1143.nls [2010.07.04 13:57:10 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1142.nls [2010.07.04 13:57:10 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1141.nls [2010.07.04 13:57:10 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1140.nls [2010.07.04 13:57:10 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1047.nls [2010.07.04 13:57:10 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10021.nls [2010.07.04 13:57:10 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10005.nls [2010.07.04 13:57:10 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10004.nls [2010.07.04 13:57:09 | 000,195,618 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10002.nls [2010.07.04 13:57:09 | 000,162,850 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10001.nls [2010.07.04 13:57:09 | 000,082,172 | ---- | C] () -- C:\WINDOWS\System32\dllcache\bopomofo.nls [2010.07.04 13:57:09 | 000,066,728 | ---- | C] () -- C:\WINDOWS\System32\dllcache\big5.nls [2010.07.04 13:55:52 | 000,000,488 | RH-- | C] () -- C:\WINDOWS\System32\logonui.exe.manifest [2010.07.04 13:55:48 | 000,000,749 | RH-- | C] () -- C:\WINDOWS\System32\wuaucpl.cpl.manifest [2010.07.04 13:55:48 | 000,000,749 | RH-- | C] () -- C:\WINDOWS\WindowsShell.Manifest [2010.07.04 13:55:48 | 000,000,749 | RH-- | C] () -- C:\WINDOWS\System32\sapi.cpl.manifest [2010.07.04 13:55:48 | 000,000,749 | RH-- | C] () -- C:\WINDOWS\System32\nwc.cpl.manifest [2010.07.04 13:55:48 | 000,000,749 | RH-- | C] () -- C:\WINDOWS\System32\ncpa.cpl.manifest [2010.07.04 13:48:45 | 002,039,179 | ---- | C] () -- C:\WINDOWS\System32\dllcache\NT5.CAT [2010.07.04 13:48:45 | 001,246,537 | ---- | C] () -- C:\WINDOWS\System32\dllcache\SP3.CAT [2010.07.04 13:48:45 | 000,817,199 | ---- | C] () -- C:\WINDOWS\System32\dllcache\NT5IIS.CAT [2010.07.04 13:48:45 | 000,399,645 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MAPIMIG.CAT [2010.07.04 13:48:45 | 000,144,484 | ---- | C] () -- C:\WINDOWS\System32\dllcache\netfx.cat [2010.07.04 13:48:45 | 000,105,926 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tabletpc.cat [2010.07.04 13:48:45 | 000,041,270 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MW770.CAT [2010.07.04 13:48:45 | 000,034,747 | ---- | C] () -- C:\WINDOWS\System32\dllcache\mediactr.cat [2010.07.04 13:48:45 | 000,033,765 | ---- | C] () -- C:\WINDOWS\System32\dllcache\FP4.CAT [2010.07.04 13:48:45 | 000,021,771 | ---- | C] () -- C:\WINDOWS\System32\dllcache\msn7.cat [2010.07.04 13:48:45 | 000,016,825 | ---- | C] () -- C:\WINDOWS\System32\dllcache\IMS.CAT [2010.07.04 13:48:45 | 000,014,433 | ---- | C] () -- C:\WINDOWS\System32\dllcache\msn9.cat [2010.07.04 13:48:45 | 000,013,472 | ---- | C] () -- C:\WINDOWS\System32\dllcache\HPCRDP.CAT [2010.07.04 13:48:45 | 000,012,363 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MSMSGS.CAT [2010.07.04 13:48:45 | 000,010,027 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MSTSWEB.CAT [2010.07.04 13:48:45 | 000,008,574 | ---- | C] () -- C:\WINDOWS\System32\dllcache\IASNT4.CAT [2010.07.04 13:48:45 | 000,007,382 | ---- | C] () -- C:\WINDOWS\System32\dllcache\OEMBIOS.CAT [2010.07.04 13:48:44 | 000,631,338 | ---- | C] () -- C:\WINDOWS\System32\dllcache\NT5INF.CAT [2010.07.01 15:40:39 | 000,063,488 | RHS- | C] () -- C:\WINDOWS\System32\tlntsess7.dll [2010.07.01 15:26:58 | 000,002,239 | ---- | C] () -- C:\Dokumente und Einstellungen\Robert\.recently-used.xbel [2010.07.01 15:02:35 | 000,012,148 | ---- | C] () -- C:\Dokumente und Einstellungen\Robert\hs_err_pid2992.log [2010.06.30 21:28:01 | 000,001,709 | ---- | C] () -- C:\Dokumente und Einstellungen\All Users\Desktop\Adobe Reader 9.lnk [2010.06.30 00:18:14 | 000,000,260 | ---- | C] () -- C:\WINDOWS\tasks\WGASetup.job [2010.06.29 20:34:56 | 000,014,089 | ---- | C] () -- C:\Dokumente und Einstellungen\Robert\hs_err_pid2592.log [2010.06.27 09:24:38 | 000,000,772 | ---- | C] () -- C:\Dokumente und Einstellungen\Robert\Desktop\Windows Media Player.lnk [2010.06.25 19:50:08 | 000,000,899 | ---- | C] () -- C:\Dokumente und Einstellungen\All Users\Desktop\Tactical Ops.lnk [2010.06.25 15:02:50 | 000,001,451 | ---- | C] () -- C:\Dokumente und Einstellungen\All Users\Desktop\ICQ7.2.lnk [2010.06.25 14:41:20 | 000,000,281 | RHS- | C] () -- C:\boot.ini [2010.06.25 14:41:17 | 000,021,483 | ---- | C] () -- C:\WINDOWS\System32\$winnt$.inf [2010.06.25 14:37:48 | 1609,842,688 | ---- | C] () -- C:\WINDOWS\MEMORY.DMP [2010.06.25 13:47:35 | 000,004,444 | ---- | C] () -- C:\WINDOWS\System32\pid.PNF [2010.06.25 13:44:47 | 000,001,374 | ---- | C] () -- C:\WINDOWS\imsins.BAK [2010.06.25 13:44:42 | 001,685,606 | ---- | C] () -- C:\WINDOWS\System32\dllcache\sam.spd [2010.06.25 13:44:42 | 000,605,050 | ---- | C] () -- C:\WINDOWS\System32\dllcache\r1033tts.lxa [2010.06.25 13:44:42 | 000,000,888 | ---- | C] () -- C:\WINDOWS\System32\dllcache\sam.sdf [2010.06.25 13:44:41 | 000,643,717 | ---- | C] () -- C:\WINDOWS\System32\dllcache\ltts1033.lxa [2010.06.25 13:44:39 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_28603.nls [2010.06.25 13:44:39 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_28603.nls [2010.06.25 13:44:38 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_28599.nls [2010.06.25 13:44:38 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_28599.nls [2010.06.25 13:44:36 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_28595.nls [2010.06.25 13:44:36 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\C_28595.NLS [2010.06.25 13:44:35 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_28597.nls [2010.06.25 13:44:35 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\C_28597.NLS [2010.06.25 13:44:34 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_28594.nls [2010.06.25 13:44:34 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\C_28594.NLS [2010.06.25 13:44:32 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20127.nls [2010.06.25 13:44:32 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_20127.nls [2010.06.25 13:44:29 | 000,001,806 | ---- | C] () -- C:\WINDOWS\System32\AUTOEXEC.NT [2010.06.25 13:42:41 | 000,007,334 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmerrenu.cat [2010.06.25 13:42:26 | 000,273,307 | ---- | C] () -- C:\WINDOWS\setupapi.old [2010.06.25 13:42:07 | 000,090,296 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT [2010.06.25 13:19:09 | 000,000,778 | ---- | C] () -- C:\Dokumente und Einstellungen\All Users\Desktop\GIMP 2.lnk [2010.06.25 13:15:49 | 000,001,671 | ---- | C] () -- C:\Dokumente und Einstellungen\All Users\Desktop\Avira AntiVir Control Center.lnk [2010.06.25 13:10:17 | 000,000,000 | ---- | C] () -- C:\WINDOWS\nsreg.dat [2010.06.25 13:10:10 | 000,001,566 | ---- | C] () -- C:\Dokumente und Einstellungen\All Users\Desktop\Mozilla Firefox.lnk [2010.06.25 13:08:05 | 000,000,906 | ---- | C] () -- C:\Dokumente und Einstellungen\Robert\Desktop\DVDVideoSoft Free Studio.lnk [2010.06.25 13:02:28 | 000,940,794 | ---- | C] () -- C:\WINDOWS\System32\LoopyMusic.wav [2010.06.25 13:02:28 | 000,146,650 | ---- | C] () -- C:\WINDOWS\System32\BuzzingBee.wav [2010.06.25 13:01:06 | 000,000,553 | ---- | C] () -- C:\WINDOWS\USetup.iss [2010.06.25 12:59:41 | 000,160,101 | ---- | C] () -- C:\WINDOWS\System32\nvapps.xml [2010.06.25 12:59:38 | 000,017,937 | ---- | C] () -- C:\WINDOWS\System32\nvdisp.nvu [2010.06.25 12:59:03 | 000,000,659 | ---- | C] () -- C:\WINDOWS\System32\nvsmu.nvu [2010.06.25 12:59:02 | 000,002,016 | ---- | C] () -- C:\WINDOWS\System32\nvsmb.nvu [2010.06.25 12:57:27 | 000,000,104 | ---- | C] () -- C:\Dokumente und Einstellungen\Robert\Desktop\Arbeitsplatz.lnk [2010.06.25 12:56:46 | 000,000,190 | -HS- | C] () -- C:\Dokumente und Einstellungen\Robert\ntuser.ini [2010.06.25 12:56:45 | 000,001,024 | -H-- | C] () -- C:\Dokumente und Einstellungen\Robert\ntuser.dat.LOG [2010.06.25 12:56:44 | 001,048,576 | -H-- | C] () -- C:\Dokumente und Einstellungen\Robert\NTUSER.DAT [2010.06.25 12:55:43 | 000,008,192 | ---- | C] () -- C:\WINDOWS\REGLOCS.OLD [2010.06.25 12:54:56 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat [2010.06.25 12:53:14 | 000,002,951 | ---- | C] () -- C:\WINDOWS\System32\CONFIG.NT [2010.06.25 12:53:14 | 000,000,000 | RHS- | C] () -- C:\MSDOS.SYS [2010.06.25 12:53:14 | 000,000,000 | RHS- | C] () -- C:\IO.SYS [2010.06.25 12:53:14 | 000,000,000 | ---- | C] () -- C:\CONFIG.SYS [2010.06.25 12:53:14 | 000,000,000 | ---- | C] () -- C:\AUTOEXEC.BAT [2010.06.25 12:53:11 | 000,023,392 | ---- | C] () -- C:\WINDOWS\System32\nscompat.tlb [2010.06.25 12:53:11 | 000,016,832 | ---- | C] () -- C:\WINDOWS\System32\amcompat.tlb [2010.06.25 12:53:10 | 000,316,640 | ---- | C] () -- C:\WINDOWS\WMSysPr9.prx [2010.06.25 12:52:26 | 000,000,488 | RH-- | C] () -- C:\WINDOWS\System32\WindowsLogon.manifest [2010.06.25 12:52:22 | 000,000,749 | RH-- | C] () -- C:\WINDOWS\System32\cdplayer.exe.manifest [2010.06.25 12:52:09 | 004,399,505 | ---- | C] () -- C:\WINDOWS\System32\dllcache\nls302en.lex [2010.06.25 12:51:58 | 000,048,680 | -HS- | C] () -- C:\WINDOWS\winnt256.bmp [2010.06.25 12:51:58 | 000,048,680 | -HS- | C] () -- C:\WINDOWS\winnt.bmp [2010.06.25 12:51:54 | 000,000,984 | ---- | C] () -- C:\WINDOWS\System32\dllcache\srframe.mmf [2010.06.25 12:51:26 | 000,380,416 | ---- | C] () -- C:\WINDOWS\System32\dllcache\msinfo.dll [2010.06.25 12:50:52 | 000,022,880 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat [2010.06.25 12:50:12 | 000,065,832 | ---- | C] () -- C:\WINDOWS\Santa Fe-Stuck.bmp [2010.06.25 12:50:12 | 000,026,680 | ---- | C] () -- C:\WINDOWS\Fächer.bmp [2010.06.25 12:50:12 | 000,009,522 | ---- | C] () -- C:\WINDOWS\Zapotek.bmp [2010.06.25 12:50:11 | 000,093,702 | ---- | C] () -- C:\WINDOWS\System32\subrange.uce [2010.06.25 12:50:11 | 000,065,978 | ---- | C] () -- C:\WINDOWS\Seifenblase.bmp [2010.06.25 12:50:11 | 000,065,954 | ---- | C] () -- C:\WINDOWS\Präriewind.bmp [2010.06.25 12:50:11 | 000,026,582 | ---- | C] () -- C:\WINDOWS\Granit.bmp [2010.06.25 12:50:11 | 000,017,362 | ---- | C] () -- C:\WINDOWS\Rhododendron.bmp [2010.06.25 12:50:11 | 000,017,336 | ---- | C] () -- C:\WINDOWS\Angler.bmp [2010.06.25 12:50:11 | 000,017,062 | ---- | C] () -- C:\WINDOWS\Kaffeetasse.bmp [2010.06.25 12:50:11 | 000,016,740 | ---- | C] () -- C:\WINDOWS\System32\shiftjis.uce [2010.06.25 12:50:11 | 000,016,730 | ---- | C] () -- C:\WINDOWS\Feder.bmp [2010.06.25 12:50:11 | 000,012,876 | ---- | C] () -- C:\WINDOWS\System32\korean.uce [2010.06.25 12:50:11 | 000,008,484 | ---- | C] () -- C:\WINDOWS\System32\kanji_2.uce [2010.06.25 12:50:11 | 000,006,948 | ---- | C] () -- C:\WINDOWS\System32\kanji_1.uce [2010.06.25 12:50:11 | 000,001,272 | ---- | C] () -- C:\WINDOWS\Blaue Spitzen 16.bmp [2010.06.25 12:50:10 | 000,060,458 | ---- | C] () -- C:\WINDOWS\System32\ideograf.uce [2010.06.25 12:50:10 | 000,024,006 | ---- | C] () -- C:\WINDOWS\System32\gb2312.uce [2010.06.25 12:50:10 | 000,022,984 | ---- | C] () -- C:\WINDOWS\System32\bopomofo.uce [2010.06.25 12:50:09 | 000,003,286 | ---- | C] () -- C:\WINDOWS\System32\tslabels.h [2010.06.25 12:50:09 | 000,001,237 | ---- | C] () -- C:\WINDOWS\System32\usrlogon.cmd [2010.06.25 12:50:08 | 000,000,768 | ---- | C] () -- C:\WINDOWS\System32\msdtcprf.h [2010.06.25 12:50:04 | 000,063,488 | ---- | C] () -- C:\WINDOWS\System32\wmimgmt.msc [2008.03.19 17:04:00 | 001,703,936 | ---- | C] () -- C:\WINDOWS\System32\nvwdmcpl.dll [2008.03.19 17:04:00 | 001,486,848 | ---- | C] () -- C:\WINDOWS\System32\nview.dll [2008.03.19 17:04:00 | 001,019,904 | ---- | C] () -- C:\WINDOWS\System32\nvwimg.dll [2008.03.19 17:04:00 | 000,466,944 | ---- | C] () -- C:\WINDOWS\System32\nvshell.dll [2008.03.19 17:04:00 | 000,286,720 | ---- | C] () -- C:\WINDOWS\System32\nvnt4cpl.dll ========== Custom Scans ========== < %ALLUSERSPROFILE%\Application Data\*. > < %ALLUSERSPROFILE%\Application Data\*.exe /s > < %APPDATA%\*. > [2010.06.30 21:28:23 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Robert\Anwendungsdaten\Adobe [2010.06.25 13:36:43 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Robert\Anwendungsdaten\Avira [2010.07.01 15:26:58 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Robert\Anwendungsdaten\gtk-2.0 [2010.07.05 09:58:31 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Robert\Anwendungsdaten\ICQ [2010.06.25 12:57:03 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Robert\Anwendungsdaten\Identities [2010.06.25 12:59:50 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Robert\Anwendungsdaten\InstallShield [2010.06.25 14:37:36 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Robert\Anwendungsdaten\Macromedia [2010.07.04 21:30:11 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Robert\Anwendungsdaten\Malwarebytes [2010.07.04 10:12:28 | 000,000,000 | --SD | M] -- C:\Dokumente und Einstellungen\Robert\Anwendungsdaten\Microsoft [2010.06.25 13:10:21 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Robert\Anwendungsdaten\Mozilla [2010.06.25 15:06:11 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Robert\Anwendungsdaten\Sun [2010.07.03 23:01:40 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Robert\Anwendungsdaten\Utherverse < %APPDATA%\*.exe /s > < %SYSTEMDRIVE%\*.exe > < MD5 for: AGP440.SYS > [2008.04.14 08:03:54 | 020,108,202 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:AGP440.sys [2008.04.14 08:03:54 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- C:\WINDOWS\ERDNT\cache\agp440.sys [2008.04.14 08:03:54 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- C:\WINDOWS\system32\drivers\agp440.sys < MD5 for: ATAPI.SYS > [2008.04.14 08:03:54 | 020,108,202 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:atapi.sys [2008.04.14 00:10:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\ERDNT\cache\atapi.sys [2008.04.14 00:10:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\drivers\atapi.sys < MD5 for: EVENTLOG.DLL > [2008.04.14 07:52:12 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=04955AA695448C181B367D964AF158AA -- C:\WINDOWS\ERDNT\cache\eventlog.dll [2008.04.14 07:52:12 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=04955AA695448C181B367D964AF158AA -- C:\WINDOWS\system32\dllcache\eventlog.dll [2008.04.14 07:52:12 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=04955AA695448C181B367D964AF158AA -- C:\WINDOWS\system32\eventlog.dll < MD5 for: NETLOGON.DLL > [2008.04.14 07:52:20 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=0098D35F91DEAB9C127360A877F2CF84 -- C:\WINDOWS\ERDNT\cache\netlogon.dll [2008.04.14 07:52:20 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=0098D35F91DEAB9C127360A877F2CF84 -- C:\WINDOWS\system32\dllcache\netlogon.dll [2008.04.14 07:52:20 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=0098D35F91DEAB9C127360A877F2CF84 -- C:\WINDOWS\system32\netlogon.dll < MD5 for: SCECLI.DLL > [2008.04.14 07:52:24 | 000,187,904 | ---- | M] (Microsoft Corporation) MD5=5132443DF6FC3771A17AB4AE55DCBC28 -- C:\WINDOWS\ERDNT\cache\scecli.dll [2008.04.14 07:52:24 | 000,187,904 | ---- | M] (Microsoft Corporation) MD5=5132443DF6FC3771A17AB4AE55DCBC28 -- C:\WINDOWS\system32\dllcache\scecli.dll [2008.04.14 07:52:24 | 000,187,904 | ---- | M] (Microsoft Corporation) MD5=5132443DF6FC3771A17AB4AE55DCBC28 -- C:\WINDOWS\system32\scecli.dll < MD5 for: USERINIT.EXE > [2008.04.14 07:53:04 | 000,026,624 | ---- | M] (Microsoft Corporation) MD5=788F95312E26389D596C0FA55834E106 -- C:\WINDOWS\ERDNT\cache\userinit.exe [2008.04.14 07:53:04 | 000,026,624 | ---- | M] (Microsoft Corporation) MD5=788F95312E26389D596C0FA55834E106 -- C:\WINDOWS\system32\dllcache\userinit.exe [2008.04.14 07:53:04 | 000,026,624 | ---- | M] (Microsoft Corporation) MD5=788F95312E26389D596C0FA55834E106 -- C:\WINDOWS\system32\userinit.exe < MD5 for: WS2IFSL.SYS > [2001.08.18 12:00:00 | 000,012,032 | ---- | M] (Microsoft Corporation) MD5=6ABE6E225ADB5A751622A9CC3BC19CE8 -- C:\WINDOWS\system32\dllcache\ws2ifsl.sys [2001.08.18 12:00:00 | 000,012,032 | ---- | M] (Microsoft Corporation) MD5=6ABE6E225ADB5A751622A9CC3BC19CE8 -- C:\WINDOWS\system32\drivers\ws2ifsl.sys < %systemroot%\system32\drivers\*.sys /lockedfiles > < %systemroot%\System32\config\*.sav > [2010.07.04 15:47:09 | 000,262,144 | ---- | M] () -- C:\WINDOWS\system32\config\default.sav [2010.07.04 13:35:13 | 000,262,144 | ---- | M] () -- C:\WINDOWS\system32\config\security.sav [2010.07.04 15:47:09 | 011,010,048 | ---- | M] () -- C:\WINDOWS\system32\config\software.sav [2010.07.04 15:47:11 | 003,932,160 | ---- | M] () -- C:\WINDOWS\system32\config\system.sav < %systemroot%\*. /mp /s > < %systemroot%\system32\*.dll /lockedfiles > [2010.07.01 15:40:39 | 000,063,488 | RHS- | M] () Unable to obtain MD5 -- C:\WINDOWS\system32\tlntsess7.dll [1 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ] < End of report > |
|
| Themen zu Internet Explorer öffnet ständig werbung ohne zutuhn |
| adobe, antivir, antivir guard, avg, avira, bho, browseui preloader, desktop, dll, einstellungen, explorer, firefox, hijack, hijackthis, hkus\s-1-5-18, internet, internet explorer, mozilla, nvidia, plug-in, programme, rundll, software, system, werbung, windows, windows xp, öffnet |
Linear-Darstellung
