| |
| |||||||
Log-Analyse und Auswertung: Win 7 Security entfernen (log-files vorhanden)Windows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML. |
08.04.2011, 19:08
| #1 |
| |  Win 7 Security entfernen (log-files vorhanden) Hallo, ich habe mir bereits einige Threads zum Thema Win7 Security entfernen durhcgelesen. Ich habe HijackThis installiert und jeweils beide log files erstellt. Ausserdem noch mit CCleaner meine installierten Programme ausgegeben. Den empfohlenen Malware entferner habe ich bereits installiert. Hier meine log files: Code:
ATTFilter Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 10:57:41, on 08.04.2011 Platform: Unknown Windows (WinNT 6.01.3504) MSIE: Internet Explorer v8.00 (8.00.7600.16722) Boot mode: Safe mode Running processes: C:\Windows\Explorer.EXE C:\Windows\system32\ctfmon.exe C:\Users\Hens\Desktop\HiJackThis.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://go.microsoft.com/fwlink/?LinkId=69157 R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: IEVkbdBHO - {59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C} - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\ievkbd.dll O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file) O2 - BHO: Windows Live Anmelde-Hilfsprogramm - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL O2 - BHO: Ask Toolbar BHO - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll O2 - BHO: link filter bho - {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\klwtbbho.dll O3 - Toolbar: Foxit Toolbar - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll O4 - HKLM\..\Run: [AVP] "C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe" O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe" O4 - HKLM\..\Run: [IndicatorUtility] C:\Program Files\Fujitsu\Fujitsu Hotkey Utility\IndicatorUty.exe O4 - HKLM\..\Run: [LoadFUJ02E3] C:\Program Files\Fujitsu\FUJ02E3\FUJ02E3.exe O4 - HKLM\..\Run: [LoadFujitsuQuickTouch] C:\Program Files\Fujitsu\Application Panel\QuickTouch.exe O4 - HKLM\..\Run: [LoadBtnHnd] C:\Program Files\Fujitsu\BtnHnd\BtnHnd.exe O4 - HKLM\..\Run: [TvOutSwitch] C:\Program Files\Fujitsu\DispSwitch\DispSwitchLauncher.exe O4 - HKLM\..\Run: [SSUtility] C:\Program Files\Fujitsu\SSUtility\FJSSDMN.exe O4 - HKLM\..\Run: [PSUtility] C:\Program Files\Fujitsu\PSUtility\TrayManager.exe O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe O4 - HKLM\..\Run: [openvpn-gui] C:\Program Files\OpenVPN\bin\openvpn-gui.exe O4 - HKLM\..\Run: [SSBkgdUpdate] "C:\Program Files\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe" -Embedding -boot O4 - HKLM\..\Run: [ScanSoft PDF Create! 4-reminder] "C:\Program Files\ScanSoft\PDF Create! 4\Ereg\Ereg.exe" -r "C:\ProgramData\ScanSoft\PDF Create\4\Ereg\Ereg.ini O4 - HKLM\..\Run: [LogitechQuickCamRibbon] "C:\Program Files\Logitech\Logitech WebCam Software\LWS.exe" /hide O4 - HKLM\..\Run: [BCSSync] "C:\Program Files\Microsoft Office\Office14\BCSSync.exe" /DelayServices O4 - HKLM\..\Run: [IgfxTray] C:\Windows\system32\igfxtray.exe O4 - HKLM\..\Run: [HotKeysCmds] C:\Windows\system32\hkcmd.exe O4 - HKLM\..\Run: [Persistence] C:\Windows\system32\igfxpers.exe O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe" O4 - HKLM\..\Run: [AdobeAAMUpdater-1.0] "C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" O4 - HKLM\..\Run: [SwitchBoard] C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe O4 - HKLM\..\Run: [AdobeCS5ServiceManager] "C:\Program Files\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe" -launchedbylogin O4 - HKLM\..\Run: [USBToolTip] C:\PROGRA~1\Pinnacle\SHARED~1\Programs\USBTip\USBTip.exe O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe" O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" O4 - HKLM\..\RunOnce: [Malwarebytes' Anti-Malware] C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe /install /silent O4 - HKCU\..\Run: [Rainlendar2] C:\Program Files\Rainlendar2\Rainlendar2.exe O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOKALER DIENST') O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOKALER DIENST') O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETZWERKDIENST') O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETZWERKDIENST') O4 - Startup: Dropbox.lnk = Hens\AppData\Roaming\Dropbox\bin\Dropbox.exe O4 - Global Startup: Nach Updates suchen.lnk = C:\Program Files\Common Files\PCTV Systems\WebUpdater\WebUpdater.exe O8 - Extra context menu item: An OneNote s&enden - res://C:\PROGRA~1\MICROS~2\Office14\ONBttnIE.dll/105 O8 - Extra context menu item: Free YouTube Download - C:\Users\Hens\AppData\Roaming\DVDVideoSoftIEHelpers\freeyoutubedownload.htm O8 - Extra context menu item: Free YouTube to Mp3 Converter - C:\Users\Hens\AppData\Roaming\DVDVideoSoftIEHelpers\freeyoutubetomp3converter.htm O8 - Extra context menu item: Nach Microsoft &Excel exportieren - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000 O8 - Extra context menu item: Nach Microsoft E&xcel exportieren - res://C:\PROGRA~1\MICROS~2\Office14\EXCEL.EXE/3000 O9 - Extra button: An OneNote senden - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll O9 - Extra 'Tools' menuitem: An OneNote s&enden - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll O9 - Extra button: &Virtuelle Tastatur - {4248FE82-7FCB-46AC-B270-339F08212110} - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\klwtbbho.dll O9 - Extra button: Verknüpfte &OneNote-Notizen - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll O9 - Extra 'Tools' menuitem: Verknüpfte &OneNote-Notizen - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll O9 - Extra button: Li&nks untersuchen - {CCF151D8-D089-449F-A5A4-D9909053F20F} - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\klwtbbho.dll O9 - Extra button: PokerStars.net - {FA9B9510-9FCB-4ca0-818C-5D0987B47C4D} - C:\Program Files\PokerStars.NET\PokerStarsUpdate.exe O13 - Gopher Prefix: O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL O20 - AppInit_DLLs: C:\PROGRA~1\KASPER~1\KASPER~1\mzvkbd3.dll O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe O23 - Service: Kaspersky Anti-Virus (AVP) - Kaspersky Lab - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe O23 - Service: Bonjour-Dienst (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe O23 - Service: DisplayLinkManager (DisplayLinkService) - DisplayLink Corp. - C:\Program Files\DisplayLink Core Software\DisplayLinkManager.exe O23 - Service: FLEXlm server for PTC - Macrovision Corporation - C:\Program Files\flexnet\i486_nt\obj\lmgrd.exe O23 - Service: HP Port Resolver - Hewlett-Packard Company - C:\WINDOWS\SYSTEM32\SPOOL\DRIVERS\W32X86\3\HPBPRO.EXE O23 - Service: HP Status Server - Hewlett-Packard Company - C:\WINDOWS\SYSTEM32\SPOOL\DRIVERS\W32X86\3\HPBOID.EXE O23 - Service: iPod-Dienst (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: KMService - Unknown owner - C:\Windows\system32\srvany.exe O23 - Service: Process Monitor (LVPrcSrv) - Logitech Inc. - C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe O23 - Service: OpenVPN Service (OpenVPNService) - Unknown owner - C:\Program Files\OpenVPN\bin\openvpnserv.exe O23 - Service: PowerSavingUtilityService - FUJITSU LIMITED - C:\Program Files\Fujitsu\PSUtility\PSUService.exe O23 - Service: Sentinel Protection Server (SentinelProtectionServer) - SafeNet, Inc - C:\Program Files\Common Files\SafeNet Sentinel\Sentinel Protection Server\WinNT\spnsrvnt.exe O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe O23 - Service: WirelessSelectorService - Unknown owner - C:\Program Files\Fujitsu\WirelessSelector\WSUService.exe -- End of file - 10027 bytes Code:
ATTFilter
$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$
º º
hjtscanlist v2.0
º º
$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$
Microsoft Windows [Version 6.1.7600]
C:
C:\pagefile.sys ---------
C:\hiberfil.sys ---------
08.04.2011 10:53 C:\Windows --------- 28672
08.04.2011 10:37 C:\ProgramData --------- 12288
08.04.2011 10:37 C:\Program Files --------- 28672
08.04.2011 10:32 C:\System Volume Information --------- 20480
20.03.2011 22:18 C:\DVDVideoSoft --------- 0
17.12.2010 14:06 C:\flexlm --------- 0
21.11.2010 07:26 C:\PTC --------- 0
22.04.2010 03:17 C:\SmartDraw 2010 --------- 0
21.03.2010 16:38 C:\IO.SYS --------- 0
21.03.2010 16:38 C:\MSDOS.SYS --------- 0
14.03.2010 10:59 C:\timestmp.tmp --------- 4
12.03.2010 10:06 C:\ptcsetup.log --------- 797246
21.02.2010 15:27 C:\Intel --------- 0
21.02.2010 15:27 C:\fsc.tmp --------- 0
21.02.2010 15:22 C:\DeskUpdate.tmp --------- 0
19.02.2010 10:08 C:\$Recycle.Bin --------- 0
08.02.2010 08:33 C:\MSOCache --------- 0
08.02.2010 08:29 C:\Users --------- 4096
08.02.2010 08:29 C:\Recovery --------- 0
08.02.2010 08:29 C:\Programme --------- 0
08.02.2010 08:29 C:\Dokumente und Einstellungen --------- 0
08.02.2010 08:19 C:\BOOTSECT.BAK --------- 8192
08.02.2010 08:19 C:\Boot --------- 4096
13.07.2009 22:53 C:\Documents and Settings --------- 0
13.07.2009 20:37 C:\PerfLogs --------- 0
13.07.2009 19:38 C:\bootmgr --------- 383562
10.06.2009 15:42 C:\config.sys --------- 10
10.06.2009 15:42 C:\autoexec.bat --------- 24
----------------------------------------
C:\Windows
08.04.2011 10:57 C:\Windows\ntbtlog.txt --------- 1192722
08.04.2011 10:56 C:\Windows\bootstat.dat --------- 67584
08.04.2011 10:53 C:\Windows\setuperr.log --------- 0
08.04.2011 10:53 C:\Windows\setupact.log --------- 56
19.07.2010 13:44 C:\Windows\win.ini --------- 509
10.04.2010 01:03 C:\Windows\KMService.exe --------- 77824
08.02.2010 08:37 C:\Windows\ODBC.INI --------- 400
18.01.2010 05:42 C:\Windows\Irremote.ini --------- 34666
30.10.2009 23:45 C:\Windows\explorer.exe --------- 2614272
13.07.2009 22:41 C:\Windows\WindowsShell.Manifest --------- 749
13.07.2009 19:16 C:\Windows\twain_32.dll --------- 51200
13.07.2009 19:14 C:\Windows\write.exe --------- 9216
13.07.2009 19:14 C:\Windows\winhlp32.exe --------- 9728
13.07.2009 19:14 C:\Windows\twunk_32.exe --------- 31232
13.07.2009 19:14 C:\Windows\regedit.exe --------- 398336
13.07.2009 19:14 C:\Windows\notepad.exe --------- 179712
13.07.2009 19:14 C:\Windows\hh.exe --------- 15360
13.07.2009 19:14 C:\Windows\HelpPane.exe --------- 497152
13.07.2009 19:14 C:\Windows\fveupdate.exe --------- 13824
13.07.2009 19:14 C:\Windows\bfsvc.exe --------- 65024
13.07.2009 16:58 C:\Windows\mib.bin --------- 43131
10.06.2009 15:46 C:\Windows\system.ini --------- 219
10.06.2009 15:42 C:\Windows\_default.pif --------- 707
10.06.2009 15:42 C:\Windows\winhelp.exe --------- 256192
10.06.2009 15:41 C:\Windows\twunk_16.exe --------- 49680
10.06.2009 15:41 C:\Windows\twain.dll --------- 94784
10.06.2009 15:34 C:\Windows\WMSysPr9.prx --------- 316640
10.06.2009 15:19 C:\Windows\msdfmap.ini --------- 1405
10.06.2009 15:14 C:\Windows\Starter.xml --------- 48201
10.06.2009 15:14 C:\Windows\HomePremium.xml --------- 48265
24.04.2007 09:51 C:\Windows\UNNeroShowTime.exe --------- 972336
20.03.2007 14:22 C:\Windows\UNNeroBackItUp.exe --------- 972336
12.03.2007 07:51 C:\Windows\UNNeroMediaHome.exe --------- 972336
28.02.2007 14:53 C:\Windows\UNNeroVision.exe --------- 972336
15.09.2005 07:35 C:\Windows\UNNeroMediaHome.cfg --------- 50
30.08.2005 14:37 C:\Windows\UNNeroVision.cfg --------- 50
30.08.2005 14:37 C:\Windows\UNNeroShowTime.cfg --------- 50
30.08.2005 14:33 C:\Windows\UNNeroBackItUp.cfg --------- 50
23.01.1998 04:20 C:\Windows\IsUn0407.exe --------- 305664
----------------------------------------
C:\Windows\System
13.07.2009 15:41 C:\Windows\System\OLESVR.DLL --------- 24064
13.07.2009 15:41 C:\Windows\System\WFWNET.DRV --------- 12704
13.07.2009 15:41 C:\Windows\System\COMMDLG.DLL --------- 32816
13.07.2009 15:41 C:\Windows\System\TIMER.DRV --------- 4048
13.07.2009 15:41 C:\Windows\System\MMSYSTEM.DLL --------- 68992
13.07.2009 15:41 C:\Windows\System\mmtask.tsk --------- 1152
13.07.2009 15:41 C:\Windows\System\mouse.drv --------- 2032
13.07.2009 15:41 C:\Windows\System\vga.drv --------- 2176
13.07.2009 15:41 C:\Windows\System\sound.drv --------- 1744
13.07.2009 15:41 C:\Windows\System\keyboard.drv --------- 2000
13.07.2009 15:41 C:\Windows\System\SHELL.DLL --------- 5120
13.07.2009 15:41 C:\Windows\System\system.drv --------- 3360
10.06.2009 15:42 C:\Windows\System\ver.dll --------- 9008
10.06.2009 15:42 C:\Windows\System\olecli.dll --------- 82944
10.06.2009 15:42 C:\Windows\System\lzexpand.dll --------- 9936
10.06.2009 15:25 C:\Windows\System\stdole.tlb --------- 5532
10.06.2009 15:21 C:\Windows\System\msvideo.dll --------- 126912
10.06.2009 15:21 C:\Windows\System\mciwave.drv --------- 28160
10.06.2009 15:21 C:\Windows\System\mciseq.drv --------- 25264
10.06.2009 15:21 C:\Windows\System\mciavi.drv --------- 73376
10.06.2009 15:21 C:\Windows\System\avifile.dll --------- 109456
10.06.2009 15:21 C:\Windows\System\avicap.dll --------- 69584
----------------------------------------
C:\Windows\System32
08.04.2011 10:37 C:\Windows\system32\drivers --------- 65536
08.04.2011 10:34 C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 --------- 13456
08.04.2011 10:34 C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 --------- 13456
08.04.2011 10:29 C:\Windows\system32\config --------- 28672
08.04.2011 09:49 C:\Windows\system32\perfc009.dat --------- 103568
08.04.2011 09:49 C:\Windows\system32\perfh009.dat --------- 607190
08.04.2011 09:49 C:\Windows\system32\perfh007.dat --------- 643866
08.04.2011 09:49 C:\Windows\system32\perfc007.dat --------- 126394
08.04.2011 09:49 C:\Windows\system32\PerfStringBackup.INI --------- 1472002
07.04.2011 23:24 C:\Windows\system32\sysprep --------- 0
29.03.2011 21:35 C:\Windows\system32\catroot2 --------- 16384
24.03.2011 22:34 C:\Windows\system32\FNTCACHE.DAT --------- 3834352
24.03.2011 14:13 C:\Windows\system32\catroot --------- 8192
24.03.2011 14:13 C:\Windows\system32\DriverStore --------- 0
02.03.2011 19:56 C:\Windows\system32\MRT.exe --------- 37943240
12.02.2011 13:00 C:\Windows\system32\jupdate-1.6.0_23-b05.log --------- 3734
11.02.2011 17:05 C:\Windows\system32\Tasks --------- 0
09.02.2011 22:32 C:\Windows\system32\migration --------- 0
02.02.2011 18:11 C:\Windows\system32\MpSigStub.exe --------- 222080
08.01.2011 16:25 C:\Windows\system32\QuickTime --------- 0
07.01.2011 01:27 C:\Windows\system32\atmlib.dll --------- 34304
06.01.2011 23:33 C:\Windows\system32\atmfd.dll --------- 294400
04.01.2011 23:37 C:\Windows\system32\vbscript.dll --------- 428032
04.01.2011 23:34 C:\Windows\system32\jscript.dll --------- 716800
04.01.2011 21:37 C:\Windows\system32\win32k.sys --------- 2329088
22.12.2010 23:28 C:\Windows\system32\sbe.dll --------- 850432
22.12.2010 23:28 C:\Windows\system32\EncDec.dll --------- 534528
22.12.2010 23:28 C:\Windows\system32\CPFilters.dll --------- 642048
22.12.2010 23:24 C:\Windows\system32\mpg2splt.ax --------- 199680
20.12.2010 02:52 C:\Windows\system32\NDF --------- 0
17.12.2010 23:32 C:\Windows\system32\wininet.dll --------- 981504
17.12.2010 23:32 C:\Windows\system32\urlmon.dll --------- 1228288
17.12.2010 23:30 C:\Windows\system32\mstscax.dll --------- 2690560
17.12.2010 23:30 C:\Windows\system32\mstime.dll --------- 606208
17.12.2010 23:30 C:\Windows\system32\mshtmled.dll --------- 67072
17.12.2010 23:30 C:\Windows\system32\mshtml.dll --------- 5980672
17.12.2010 23:30 C:\Windows\system32\msfeedsbs.dll --------- 64512
17.12.2010 23:30 C:\Windows\system32\msfeeds.dll --------- 599040
17.12.2010 23:29 C:\Windows\system32\licmgr10.dll --------- 44544
17.12.2010 23:29 C:\Windows\system32\kerberos.dll --------- 541184
17.12.2010 23:29 C:\Windows\system32\jsproxy.dll --------- 48128
17.12.2010 23:29 C:\Windows\system32\ieui.dll --------- 176640
17.12.2010 23:29 C:\Windows\system32\iertutil.dll --------- 2063360
17.12.2010 23:29 C:\Windows\system32\iepeers.dll --------- 185856
17.12.2010 23:29 C:\Windows\system32\ieframe.dll --------- 10989056
17.12.2010 23:29 C:\Windows\system32\iedkcs32.dll --------- 381440
17.12.2010 23:26 C:\Windows\system32\mstsc.exe --------- 1034240
17.12.2010 23:26 C:\Windows\system32\msfeedssync.exe --------- 12800
17.12.2010 22:20 C:\Windows\system32\html.iec --------- 386048
17.12.2010 21:47 C:\Windows\system32\mshtml.tlb --------- 1638912
16.12.2010 00:18 C:\Windows\system32\de-DE --------- 327680
12.11.2010 19:53 C:\Windows\system32\javaws.exe --------- 157472
12.11.2010 19:53 C:\Windows\system32\javaw.exe --------- 145184
12.11.2010 19:53 C:\Windows\system32\java.exe --------- 145184
12.11.2010 19:53 C:\Windows\system32\deployJava1.dll --------- 472808
11.11.2010 05:03 C:\Windows\system32\jupdate-1.6.0_22-b04.log --------- 4103
01.11.2010 22:41 C:\Windows\system32\wmicmiplugin.dll --------- 351232
01.11.2010 22:40 C:\Windows\system32\taskschd.dll --------- 496128
01.11.2010 22:40 C:\Windows\system32\taskcomp.dll --------- 305152
01.11.2010 22:39 C:\Windows\system32\schedsvc.dll --------- 749056
01.11.2010 22:34 C:\Windows\system32\taskeng.exe --------- 192000
01.11.2010 22:34 C:\Windows\system32\schtasks.exe --------- 179712
26.10.2010 22:43 C:\Windows\system32\ntoskrnl.exe --------- 3901824
26.10.2010 22:43 C:\Windows\system32\ntkrnlpa.exe --------- 3957120
26.10.2010 22:40 C:\Windows\system32\ntdll.dll --------- 1289536
26.10.2010 22:32 C:\Windows\system32\tzres.dll --------- 2048
15.10.2010 22:41 C:\Windows\system32\consent.exe --------- 101760
15.10.2010 22:36 C:\Windows\system32\webio.dll --------- 314368
15.10.2010 22:34 C:\Windows\system32\odbc32.dll --------- 573440
31.08.2010 22:29 C:\Windows\system32\wmp.dll --------- 11406848
31.08.2010 22:23 C:\Windows\system32\wmploc.DLL --------- 12625408
31.08.2010 13:14 C:\Windows\system32\jupdate-1.6.0_21-b07.log --------- 5351
30.08.2010 22:32 C:\Windows\system32\mfc40u.dll --------- 954288
30.08.2010 22:32 C:\Windows\system32\mfc40.dll --------- 954752
26.08.2010 23:46 C:\Windows\system32\srvsvc.dll --------- 168448
25.08.2010 22:39 C:\Windows\system32\t2embed.dll --------- 109056
20.08.2010 23:36 C:\Windows\system32\wmpmde.dll --------- 738816
20.08.2010 23:36 C:\Windows\system32\schannel.dll --------- 224256
20.08.2010 23:33 C:\Windows\system32\comctl32.dll --------- 530432
20.08.2010 23:32 C:\Windows\system32\spoolsv.exe --------- 316928
15.08.2010 00:41 C:\Windows\system32\Lang --------- 0
14.08.2010 06:00 C:\Windows\system32\x64 --------- 0
29.07.2010 06:09 C:\Windows\system32\wdi --------- 4096
29.07.2010 00:30 C:\Windows\system32\ir32_32.dll --------- 197632
29.07.2010 00:30 C:\Windows\system32\iccvid.dll --------- 82944
27.07.2010 08:03 C:\Windows\system32\shell32.dll --------- 12867584
28.06.2010 23:02 C:\Windows\system32\ole32.dll --------- 1413632
22.06.2010 23:30 C:\Windows\system32\tsccvid.dll --------- 411480
19.06.2010 00:23 C:\Windows\system32\rtutils.dll --------- 37376
08.06.2010 00:02 C:\Windows\system32\msxml3.dll --------- 1233920
26.05.2010 10:59 C:\Windows\system32\Wat --------- 0
05.05.2010 00:46 C:\Windows\system32\StructuredQuery.dll --------- 363520
03.05.2010 07:53 C:\Windows\system32\MSCHVBXM --------- 4098
26.04.2010 16:04 C:\Windows\system32\DivXControlPanelApplet.cpl --------- 353592
22.04.2010 06:29 C:\Windows\system32\lvcoinst.log --------- 11736
14.04.2010 14:20 C:\Windows\system32\GroupPolicy --------- 0
20.03.2010 12:11 C:\Windows\system32\FM20DEU.DLL --------- 36736
10.03.2010 13:29 C:\Windows\system32\dpl100.dll --------- 94208
05.03.2010 03:13 C:\Windows\system32\msjava.dll --------- 947472
05.03.2010 01:42 C:\Windows\system32\asycfilt.dll --------- 67584
----------------------------------------
C:\Windows\Prefetch
08.04.2011 10:56 C:\Windows\Prefetch\ReadyBoot --------- 4096
08.04.2011 10:55 C:\Windows\Prefetch\AgGlFgAppHistory.db --------- 1373845
08.04.2011 10:55 C:\Windows\Prefetch\AgGlFaultHistory.db --------- 493739
08.04.2011 10:55 C:\Windows\Prefetch\AgGlGlobalHistory.db --------- 2336149
08.04.2011 10:55 C:\Windows\Prefetch\AgRobust.db --------- 299804
08.04.2011 10:55 C:\Windows\Prefetch\PfSvPerfStats.bin --------- 508
08.04.2011 10:38 C:\Windows\Prefetch\LOGONUI.EXE-1BEE4A84.pf --------- 43308
08.04.2011 10:38 C:\Windows\Prefetch\DISPLAYLINKKENSINGTONSUPPORT.-4A9C90F1.pf --------- 18028
08.04.2011 10:38 C:\Windows\Prefetch\DISPLAYLINKUI.EXE-70773ADB.pf --------- 24284
08.04.2011 10:37 C:\Windows\Prefetch\CONSENT.EXE-65F6206D.pf --------- 117942
08.04.2011 10:37 C:\Windows\Prefetch\DLLHOST.EXE-71214090.pf --------- 42638
08.04.2011 10:37 C:\Windows\Prefetch\PING.EXE-B29F6629.pf --------- 14828
08.04.2011 10:37 C:\Windows\Prefetch\CONHOST.EXE-3218E401.pf --------- 14314
08.04.2011 10:36 C:\Windows\Prefetch\DLLHOST.EXE-893DDF55.pf --------- 33912
08.04.2011 10:35 C:\Windows\Prefetch\SEARCHFILTERHOST.EXE-AA7A1FDD.pf --------- 54288
08.04.2011 10:35 C:\Windows\Prefetch\SEARCHPROTOCOLHOST.EXE-AFAD3EF9.pf --------- 28726
08.04.2011 10:31 C:\Windows\Prefetch\SVCHOST.EXE-8FD92526.pf --------- 20694
08.04.2011 10:31 C:\Windows\Prefetch\VSSVC.EXE-04D079CC.pf --------- 28274
08.04.2011 10:31 C:\Windows\Prefetch\SVCHOST.EXE-93CEEE07.pf --------- 62884
08.04.2011 10:30 C:\Windows\Prefetch\TASKHOST.EXE-437C05A8.pf --------- 76958
08.04.2011 10:30 C:\Windows\Prefetch\WMIADAP.EXE-369DF1CD.pf --------- 20252
08.04.2011 10:29 C:\Windows\Prefetch\TRUSTEDINSTALLER.EXE-031B6478.pf --------- 72670
08.04.2011 10:29 C:\Windows\Prefetch\AgCx_SC4.db --------- 309398
08.04.2011 10:29 C:\Windows\Prefetch\WUAUCLT.EXE-830BCC14.pf --------- 56292
08.04.2011 10:28 C:\Windows\Prefetch\WMIPRVSE.EXE-43972D0F.pf --------- 39260
08.04.2011 10:28 C:\Windows\Prefetch\SPPSVC.EXE-CBE91656.pf --------- 24846
08.04.2011 10:28 C:\Windows\Prefetch\WMPNETWK.EXE-BD0344CA.pf --------- 69152
08.04.2011 10:28 C:\Windows\Prefetch\WMPNSCFG.EXE-DF1DD51A.pf --------- 19082
08.04.2011 10:28 C:\Windows\Prefetch\SEARCHINDEXER.EXE-77D27BAC.pf --------- 85290
08.04.2011 10:28 C:\Windows\Prefetch\EXPLORER.EXE-7A3328DA.pf --------- 201106
08.04.2011 10:28 C:\Windows\Prefetch\DWM.EXE-AEABE78B.pf --------- 44378
08.04.2011 10:28 C:\Windows\Prefetch\USERINIT.EXE-F39AB672.pf --------- 23942
08.04.2011 10:27 C:\Windows\Prefetch\ATBROKER.EXE-FF58B71D.pf --------- 10564
08.04.2011 09:52 C:\Windows\Prefetch\ACRORD32INFO.EXE-E3F62CBD.pf --------- 78004
08.04.2011 09:52 C:\Windows\Prefetch\MIKTEX-TEXWORKS.EXE-730A698D.pf --------- 92954
08.04.2011 09:47 C:\Windows\Prefetch\WUDFHOST.EXE-81420B07.pf --------- 25930
08.04.2011 09:46 C:\Windows\Prefetch\AUDIODG.EXE-D0D776AC.pf --------- 23096
08.04.2011 09:35 C:\Windows\Prefetch\AVP.EXE-66FE3676.pf --------- 131754
08.04.2011 09:31 C:\Windows\Prefetch\WERMGR.EXE-2A1BCBC7.pf --------- 19976
08.04.2011 09:28 C:\Windows\Prefetch\IGFXSRVC.EXE-67E7A62F.pf --------- 30290
08.04.2011 09:28 C:\Windows\Prefetch\IELOWUTIL.EXE-79D45B69.pf --------- 1402
08.04.2011 09:26 C:\Windows\Prefetch\KLWTBLFS.EXE-BD8E3D08.pf --------- 15204
08.04.2011 09:21 C:\Windows\Prefetch\RUNDLL32.EXE-AFD98684.pf --------- 15530
08.04.2011 08:19 C:\Windows\Prefetch\DLLHOST.EXE-53B78AD0.pf --------- 37768
08.04.2011 08:18 C:\Windows\Prefetch\SVCHOST.EXE-DB4C36D7.pf --------- 31902
08.04.2011 08:11 C:\Windows\Prefetch\TASKENG.EXE-5BAF290C.pf --------- 22616
07.04.2011 23:28 C:\Windows\Prefetch\OSPPSVC.EXE-FFA150A3.pf --------- 69032
07.04.2011 23:28 C:\Windows\Prefetch\PRINTISOLATIONHOST.EXE-83C184C4.pf --------- 15000
07.04.2011 23:28 C:\Windows\Prefetch\POWERPNT.EXE-C61D24E7.pf --------- 150592
07.04.2011 22:27 C:\Windows\Prefetch\PLUGIN-CONTAINER.EXE-1D5F6C6B.pf --------- 54662
07.04.2011 22:06 C:\Windows\Prefetch\SKYPEPM.EXE-2C1AF4F8.pf --------- 99332
07.04.2011 22:05 C:\Windows\Prefetch\SKYPE.EXE-40964AC7.pf --------- 164344
07.04.2011 22:05 C:\Windows\Prefetch\LVPRCSRV.EXE-E0306B6B.pf --------- 12576
07.04.2011 22:03 C:\Windows\Prefetch\THUNDERBIRD.EXE-EDED9AF7.pf --------- 252746
07.04.2011 22:02 C:\Windows\Prefetch\LULNCHR.EXE-E46CB67E.pf --------- 86564
07.04.2011 22:02 C:\Windows\Prefetch\LOGITECHUPDATE.EXE-55456C00.pf --------- 34410
07.04.2011 22:01 C:\Windows\Prefetch\FIREFOX.EXE-E60C0AA7.pf --------- 219566
07.04.2011 22:01 C:\Windows\Prefetch\SVCHOST.EXE-18D06B2E.pf --------- 6660
07.04.2011 22:01 C:\Windows\Prefetch\DROPBOX.EXE-6F5B5EDB.pf --------- 114496
07.04.2011 22:01 C:\Windows\Prefetch\CMD.EXE-89305D47.pf --------- 10908
07.04.2011 22:00 C:\Windows\Prefetch\WEBUPDATER.EXE-F58A287C.pf --------- 47714
07.04.2011 22:00 C:\Windows\Prefetch\SIDEBAR.EXE-3A7B3FCC.pf --------- 78692
07.04.2011 22:00 C:\Windows\Prefetch\DTLITE.EXE-77D34F4E.pf --------- 67736
07.04.2011 22:00 C:\Windows\Prefetch\RAINLENDAR2.EXE-437E37B5.pf --------- 81750
07.04.2011 22:00 C:\Windows\Prefetch\USBTIP.EXE-BF2C7046.pf --------- 26310
07.04.2011 22:00 C:\Windows\Prefetch\READER_SL.EXE-565703D6.pf --------- 13150
07.04.2011 22:00 C:\Windows\Prefetch\ADOBEARM.EXE-ACA00A4A.pf --------- 23094
07.04.2011 22:00 C:\Windows\Prefetch\SWITCHBOARD.EXE-7E935F90.pf --------- 30446
07.04.2011 22:00 C:\Windows\Prefetch\JUSCHED.EXE-07F32FAE.pf --------- 13964
07.04.2011 22:00 C:\Windows\Prefetch\UPDATERSTARTUPUTILITY.EXE-4E353C23.pf --------- 25712
07.04.2011 22:00 C:\Windows\Prefetch\CS5SERVICEMANAGER.EXE-5B253472.pf --------- 31260
07.04.2011 22:00 C:\Windows\Prefetch\IGFXPERS.EXE-F690CC93.pf --------- 17740
07.04.2011 22:00 C:\Windows\Prefetch\HKCMD.EXE-FA3EB5EE.pf --------- 18506
07.04.2011 22:00 C:\Windows\Prefetch\LWS.EXE-CC076DEB.pf --------- 59740
07.04.2011 22:00 C:\Windows\Prefetch\IGFXTRAY.EXE-95873609.pf --------- 19562
07.04.2011 22:00 C:\Windows\Prefetch\EREG.EXE-EEF5DFA3.pf --------- 26222
07.04.2011 21:59 C:\Windows\Prefetch\BCSSYNC.EXE-E11E559D.pf --------- 16300
07.04.2011 21:59 C:\Windows\Prefetch\IPODSERVICE.EXE-FE1A6FF7.pf --------- 19344
07.04.2011 21:59 C:\Windows\Prefetch\OPENVPN.EXE-51BE6D5E.pf --------- 17376
07.04.2011 21:59 C:\Windows\Prefetch\FJSSDMN.EXE-EB13373A.pf --------- 16722
07.04.2011 21:59 C:\Windows\Prefetch\SSBKGDUPDATE.EXE-2DA63B57.pf --------- 15888
07.04.2011 21:59 C:\Windows\Prefetch\BTNHND.EXE-3BD76FB3.pf --------- 17950
07.04.2011 21:59 C:\Windows\Prefetch\QUICKTOUCH.EXE-C66F2D8B.pf --------- 36808
07.04.2011 21:59 C:\Windows\Prefetch\INDICATORUTY.EXE-E859F9BC.pf --------- 18846
07.04.2011 21:59 C:\Windows\Prefetch\FUJ02E3.EXE-A0823DBD.pf --------- 14832
07.04.2011 21:59 C:\Windows\Prefetch\ITUNESHELPER.EXE-302622F9.pf --------- 75474
07.04.2011 21:54 C:\Windows\Prefetch\SVCHOST.EXE-4D8DA32A.pf --------- 24010
07.04.2011 21:54 C:\Windows\Prefetch\SVCHOST.EXE-B1D6DE75.pf --------- 19924
07.04.2011 18:06 C:\Windows\Prefetch\WINWORD.EXE-19416D26.pf --------- 221610
07.04.2011 18:03 C:\Windows\Prefetch\MSPAINT.EXE-89BB51A7.pf --------- 95820
07.04.2011 18:02 C:\Windows\Prefetch\TEXIFY.EXE-52D3EFBC.pf --------- 27196
07.04.2011 18:02 C:\Windows\Prefetch\PDFLATEX.EXE-F0A21ED7.pf --------- 116926
07.04.2011 18:02 C:\Windows\Prefetch\BIBTEX.EXE-4C074E6D.pf --------- 26122
07.04.2011 17:05 C:\Windows\Prefetch\ACRORD32.EXE-C2658FE9.pf --------- 87690
07.04.2011 16:59 C:\Windows\Prefetch\JAVAW.EXE-C4EA16F0.pf --------- 166406
07.04.2011 16:52 C:\Windows\Prefetch\AgGlUAD_P_S-1-5-21-631388349-1085569318-2024419824-1001.db --------- 943493
07.04.2011 16:52 C:\Windows\Prefetch\AgGlUAD_S-1-5-21-631388349-1085569318-2024419824-1001.db --------- 1267329
07.04.2011 16:13 C:\Windows\Prefetch\AgCx_SC2.db --------- 800696
07.04.2011 16:11 C:\Windows\Prefetch\PTC_D.EXE-50C7BF6C.pf --------- 23994
07.04.2011 11:51 C:\Windows\Prefetch\EXCEL.EXE-F0766CF1.pf --------- 154236
07.04.2011 11:42 C:\Windows\Prefetch\PDFTEX.EXE-ADEB943E.pf --------- 29180
07.04.2011 11:30 C:\Windows\Prefetch\FOXITR~1.EXE-54C77552.pf --------- 91340
07.04.2011 10:54 C:\Windows\Prefetch\DLLHOST.EXE-6202E8F2.pf --------- 213674
07.04.2011 10:24 C:\Windows\Prefetch\RUNDLL32.EXE-B641F777.pf --------- 33908
07.04.2011 09:51 C:\Windows\Prefetch\OUTLOOK.EXE-6869E875.pf --------- 265070
07.04.2011 09:46 C:\Windows\Prefetch\NTOSBOOT-B00DFAAD.pf --------- 3350318
07.04.2011 08:37 C:\Windows\Prefetch\ITUNES.EXE-049DB451.pf --------- 271298
07.04.2011 08:01 C:\Windows\Prefetch\QTTASK.EXE-D42B72A5.pf --------- 10784
06.04.2011 16:59 C:\Windows\Prefetch\WERFAULT.EXE-B7E27BE5.pf --------- 33982
06.04.2011 15:22 C:\Windows\Prefetch\PAINTDOTNET.EXE-A48207C8.pf --------- 139468
06.04.2011 15:14 C:\Windows\Prefetch\MATLAB.EXE-83FCC2C9.pf --------- 317714
06.04.2011 15:14 C:\Windows\Prefetch\MATLAB.EXE-F8C74B66.pf --------- 31212
06.04.2011 15:14 C:\Windows\Prefetch\VCRT_CHECK.EXE-9270A550.pf --------- 17660
06.04.2011 13:34 C:\Windows\Prefetch\W32TM.EXE-5D2265F4.pf --------- 15448
06.04.2011 13:33 C:\Windows\Prefetch\CSC.EXE-4EF173D0.pf --------- 40938
06.04.2011 13:33 C:\Windows\Prefetch\CVTRES.EXE-419E4E46.pf --------- 13220
06.04.2011 13:33 C:\Windows\Prefetch\SDIAGNHOST.EXE-67CD1457.pf --------- 63440
06.04.2011 13:33 C:\Windows\Prefetch\RUNDLL32.EXE-85E123DD.pf --------- 8630
06.04.2011 13:26 C:\Windows\Prefetch\RUNDLL32.EXE-125D4518.pf --------- 43814
06.04.2011 13:23 C:\Windows\Prefetch\SVCHOST.EXE-8DA0BAAD.pf --------- 17266
06.04.2011 13:23 C:\Windows\Prefetch\DEFRAG.EXE-738093E8.pf --------- 15134
06.04.2011 13:23 C:\Windows\Prefetch\Layout.ini --------- 1261444
06.04.2011 08:01 C:\Windows\Prefetch\DISPSWITCHLAUNCHER.EXE-B5D5114D.pf --------- 15864
05.04.2011 15:08 C:\Windows\Prefetch\MPSIGSTUB.EXE-7C60A359.pf --------- 25040
05.04.2011 15:08 C:\Windows\Prefetch\MPMINISIGSTUB.EXE-5E580501.pf --------- 7166
05.04.2011 15:08 C:\Windows\Prefetch\MPAS-D_BD1.EXE-B82677C3.pf --------- 15744
05.04.2011 10:55 C:\Windows\Prefetch\RUNDLL32.EXE-A5D8DA74.pf --------- 18540
05.04.2011 10:54 C:\Windows\Prefetch\DEVICEDISPLAYOBJECTPROVIDER.E-5B0FD533.pf --------- 33620
05.04.2011 10:50 C:\Windows\Prefetch\SVCHOST.EXE-7488A139.pf --------- 22334
05.04.2011 08:00 C:\Windows\Prefetch\COCIMANAGER.EXE-24AD6BC2.pf --------- 22156
04.04.2011 16:06 C:\Windows\Prefetch\CALC.EXE-AC08706A.pf --------- 23096
04.04.2011 15:12 C:\Windows\Prefetch\JAVAWS.EXE-25FD1E0F.pf --------- 18906
04.04.2011 15:12 C:\Windows\Prefetch\JAUCHECK.EXE-04AFF24E.pf --------- 33028
04.04.2011 14:54 C:\Windows\Prefetch\IZARC.EXE-1472F2CB.pf --------- 139640
04.04.2011 13:16 C:\Windows\Prefetch\SNDVOL.EXE-783DCB11.pf --------- 26990
03.04.2011 23:00 C:\Windows\Prefetch\WSQMCONS.EXE-E2CE6542.pf --------- 1242
03.04.2011 21:30 C:\Windows\Prefetch\INSTALLFLASHPLAYER.EXE-5258DA1C.pf --------- 22546
03.04.2011 21:28 C:\Windows\Prefetch\SC.EXE-BC6DAF49.pf --------- 3606
01.04.2011 14:59 C:\Windows\Prefetch\DLLHOST.EXE-91B07125.pf --------- 15754
01.04.2011 14:59 C:\Windows\Prefetch\SOFTWAREUPDATE.EXE-2B0C49F7.pf --------- 26590
01.04.2011 14:57 C:\Windows\Prefetch\AgCx_SC1.db --------- 687516
01.04.2011 14:56 C:\Windows\Prefetch\AgCx_SC1.db.trx --------- 280194
08.02.2010 08:22 C:\Windows\Prefetch\AgAppLaunch.db --------- 332116
----------------------------------------
C:\Windows\Tasks
08.04.2011 10:53 C:\Windows\Tasks\SA.DAT --------- 6
12.02.2011 03:21 C:\Windows\Tasks\SCHEDLGU.TXT --------- 32632
----------------------------------------
C:\Windows\Temp
08.04.2011 10:53 C:\Windows\Temp\spserv.dat --------- 1024
----------------------------------------
C:\Users\Hens\AppData\Local\Temp
08.04.2011 10:56 C:\Users\Hens\AppData\Local\Temp\WPDNSE --------- 0
08.04.2011 10:52 C:\Users\Hens\AppData\Local\Temp\js6cy226kpp3fu006bryc5cx757a25077l2 --------- 8578
08.04.2011 10:44 C:\Users\Hens\AppData\Local\Temp\mik64428 --------- 0
08.04.2011 09:26 C:\Users\Hens\AppData\Local\Temp\Low --------- 0
07.04.2011 23:24 C:\Users\Hens\AppData\Local\Temp\0.46982674232693467.exe --------- 217202
07.04.2011 22:00 C:\Users\Hens\AppData\Local\Temp\manifest.xml --------- 5275
07.04.2011 22:00 C:\Users\Hens\AppData\Local\Temp\config.xml --------- 0
07.04.2011 22:00 C:\Users\Hens\AppData\Local\Temp\de-de --------- 0
07.04.2011 22:00 C:\Users\Hens\AppData\Local\Temp\en-us --------- 0
07.04.2011 22:00 C:\Users\Hens\AppData\Local\Temp\resource.h --------- 0
08.02.2010 08:31 C:\Users\Hens\AppData\Local\Temp\FXSAPIDebugLogFile.txt --------- 0
----------------------------------------
C:\Program Files
08.04.2011 10:37 C:\Program Files\Malwarebytes' Anti-Malware --------- 4096
08.04.2011 10:37 C:\Program Files\CCleaner --------- 0
08.04.2011 10:32 C:\Program Files\Trend Micro --------- 0
31.03.2011 09:17 C:\Program Files\Adobe --------- 4096
24.03.2011 22:55 C:\Program Files\Mozilla Firefox --------- 32768
24.03.2011 14:12 C:\Program Files\Common Files --------- 4096
24.03.2011 14:00 C:\Program Files\Pinnacle --------- 0
24.03.2011 12:50 C:\Program Files\SafeNet Sentinel --------- 0
24.03.2011 12:50 C:\Program Files\InstallShield Installation Information --------- 0
24.03.2011 12:37 C:\Program Files\Motion Analysis --------- 0
08.03.2011 09:52 C:\Program Files\Mozilla Thunderbird --------- 28672
21.02.2011 00:12 C:\Program Files\Paint.NET --------- 16384
12.02.2011 13:00 C:\Program Files\Java --------- 4096
09.02.2011 22:32 C:\Program Files\Internet Explorer --------- 4096
18.01.2011 11:09 C:\Program Files\MATLAB --------- 0
18.01.2011 10:19 C:\Program Files\KinTrak 7.0 --------- 0
08.01.2011 16:24 C:\Program Files\TechSmith --------- 0
31.12.2010 11:23 C:\Program Files\Skype --------- 0
16.12.2010 00:18 C:\Program Files\Windows Mail --------- 0
15.12.2010 15:37 C:\Program Files\JDownloader --------- 0
07.12.2010 13:04 C:\Program Files\Ask.com --------- 4096
07.12.2010 13:04 C:\Program Files\Foxit Software --------- 0
07.11.2010 11:53 C:\Program Files\IrfanView --------- 0
07.11.2010 11:47 C:\Program Files\Ghostgum --------- 0
07.11.2010 07:34 C:\Program Files\Ghostscript --------- 0
07.11.2010 07:23 C:\Program Files\Texmaker --------- 16384
07.11.2010 07:21 C:\Program Files\TeXnicCenter --------- 0
07.11.2010 01:26 C:\Program Files\MiKTeX 2.9 --------- 4096
03.11.2010 13:16 C:\Program Files\Adobe Media Player --------- 0
13.10.2010 07:23 C:\Program Files\Windows Media Player --------- 4096
12.09.2010 01:28 C:\Program Files\Logitech --------- 0
15.08.2010 00:41 C:\Program Files\Intel --------- 0
06.08.2010 02:48 C:\Program Files\DVDVideoSoft --------- 0
19.07.2010 13:47 C:\Program Files\7-Zip --------- 0
19.07.2010 13:38 C:\Program Files\Microsoft Synchronization Services --------- 0
19.07.2010 13:37 C:\Program Files\Microsoft Office --------- 4096
19.07.2010 13:37 C:\Program Files\Microsoft SQL Server Compact Edition --------- 0
19.07.2010 13:37 C:\Program Files\Microsoft.NET --------- 0
19.07.2010 13:32 C:\Program Files\Microsoft Analysis Services --------- 0
19.07.2010 13:06 C:\Program Files\IZArc --------- 4096
12.06.2010 08:53 C:\Program Files\PCTV Systems --------- 0
09.06.2010 12:12 C:\Program Files\Avanquest update --------- 0
07.06.2010 14:41 C:\Program Files\MDESIGN --------- 0
06.06.2010 04:09 C:\Program Files\MyPhoneExplorer --------- 4096
31.05.2010 02:48 C:\Program Files\DisplayLink Core Software --------- 8192
16.05.2010 10:57 C:\Program Files\MSECache --------- 0
05.05.2010 03:36 C:\Program Files\DAEMON Tools Lite --------- 0
21.04.2010 11:57 C:\Program Files\Microsoft CAPICOM 2.1.0.2 --------- 0
15.04.2010 03:48 C:\Program Files\WinRAR --------- 4096
14.04.2010 14:20 C:\Program Files\ScanSoft --------- 0
22.03.2010 07:19 C:\Program Files\HBM --------- 0
12.03.2010 10:05 C:\Program Files\proeWildfire 4.0 --------- 8192
12.03.2010 09:57 C:\Program Files\flexnet --------- 4096
06.03.2010 04:32 C:\Program Files\PokerStars.NET --------- 8192
02.03.2010 01:18 C:\Program Files\OpenVPN --------- 4096
01.03.2010 08:22 C:\Program Files\MSXML 4.0 --------- 0
27.02.2010 11:09 C:\Program Files\Nero --------- 0
21.02.2010 15:40 C:\Program Files\Fujitsu --------- 4096
21.02.2010 15:32 C:\Program Files\O2Micro OZ711 SCR Driver --------- 0
21.02.2010 15:30 C:\Program Files\Sierra Wireless Inc --------- 0
09.02.2010 14:57 C:\Program Files\Microsoft --------- 0
09.02.2010 14:57 C:\Program Files\Windows Live --------- 0
09.02.2010 14:57 C:\Program Files\Windows Live SkyDrive --------- 0
09.02.2010 03:29 C:\Program Files\Kensington Display Adapter --------- 0
08.02.2010 10:39 C:\Program Files\iTunes --------- 4096
08.02.2010 10:38 C:\Program Files\iPod --------- 0
08.02.2010 10:38 C:\Program Files\Bonjour --------- 0
08.02.2010 10:38 C:\Program Files\QuickTime --------- 4096
08.02.2010 10:37 C:\Program Files\Apple Software Update --------- 4096
08.02.2010 10:04 C:\Program Files\Rainlendar2 --------- 0
08.02.2010 09:05 C:\Program Files\VideoLAN --------- 0
08.02.2010 08:41 C:\Program Files\Kaspersky Lab --------- 0
08.02.2010 08:29 C:\Program Files\Windows NT --------- 4096
08.02.2010 08:29 C:\Program Files\Gemeinsame Dateien --------- 0
14.07.2009 02:56 C:\Program Files\DVD Maker --------- 0
14.07.2009 02:56 C:\Program Files\Windows Journal --------- 0
14.07.2009 02:56 C:\Program Files\Microsoft Games --------- 0
14.07.2009 02:47 C:\Program Files\Windows Sidebar --------- 0
14.07.2009 02:47 C:\Program Files\Windows Photo Viewer --------- 0
14.07.2009 02:47 C:\Program Files\Windows Defender --------- 0
13.07.2009 22:53 C:\Program Files\Uninstall Information --------- 0
13.07.2009 22:52 C:\Program Files\Windows Portable Devices --------- 0
13.07.2009 22:52 C:\Program Files\Reference Assemblies --------- 0
13.07.2009 22:52 C:\Program Files\MSBuild --------- 0
13.07.2009 22:41 C:\Program Files\desktop.ini --------- 174
----------------------------------------
C:\ProgramData\..
Hens
Default
Public
Default User
All Users
desktop.ini
----------------------------------------
C:\Windows\system32\drivers\etc\hosts
127.0.0.1 activate.adobe.com
127.0.0.1 adobe.activate.com
127.0.0.1 practivate.adobe.com
127.0.0.1 ereg.adobe.com
127.0.0.1 adobeereg.com
127.0.0.1 activate.wip3.adobe.com
127.0.0.1 wip3.adobe.com
127.0.0.1 3dns-3.adobe.com
127.0.0.1 3dns-2.adobe.com
127.0.0.1 adobe-dns.adobe.com
127.0.0.1 adobe-dns-2.adobe.com
127.0.0.1 adobe-dns-3.adobe.com
127.0.0.1 ereg.wip3.adobe.com
127.0.0.1 activate-sea.adobe.com
127.0.0.1 wwis-dubc1-vip60.adobe.com
127.0.0.1 activate-sjc0.adobe.com
127.0.0.1 wwis-dubc1-vip60.adobe.com
----------------------------------------
Abbildname PID Sitzungsname Sitz.-Nr. Speichernutzung
========================= ======== ================ =========== ===============
System Idle Process 0 Services 0 24 K
System 4 Services 0 712 K
smss.exe 288 Services 0 820 K
csrss.exe 384 Services 0 2.804 K
csrss.exe 432 Console 1 4.608 K
wininit.exe 440 Services 0 3.572 K
services.exe 500 Services 0 5.304 K
lsass.exe 508 Services 0 7.244 K
lsm.exe 520 Services 0 2.800 K
winlogon.exe 552 Console 1 4.444 K
svchost.exe 660 Services 0 6.532 K
svchost.exe 740 Services 0 4.548 K
svchost.exe 792 Services 0 7.512 K
svchost.exe 860 Services 0 9.460 K
svchost.exe 920 Services 0 3.596 K
svchost.exe 984 Services 0 4.008 K
explorer.exe 1140 Console 1 47.812 K
ctfmon.exe 1196 Console 1 3.124 K
cmd.exe 2012 Console 1 3.248 K
conhost.exe 2020 Console 1 2.984 K
tasklist.exe 952 Console 1 4.200 K
dllhost.exe 1316 Console 1 5.596 K
WmiPrvSE.exe 1400 Services 0 4.756 K
***** Ende des Scans 08.04.2011 um 10:59:44,33 ***
Code:
ATTFilter Adobe AIR Adobe Systems Inc. 03.11.2010 1.5.3.9120
Adobe Community Help Adobe Systems Incorporated 03.11.2010 3.0.0.400
Adobe Flash Player 10 ActiveX Adobe Systems Incorporated 06.08.2010 6,00MB 10.1.53.64
Adobe Flash Player 10 Plugin Adobe Systems Incorporated 03.04.2011 6,00MB 10.2.153.1
Adobe Media Player Adobe Systems Incorporated 03.11.2010 1.8
Adobe Photoshop CS5 Adobe Systems Incorporated 03.11.2010 1.559MB 12.0
Adobe Reader 9.4.3 - Deutsch Adobe Systems Incorporated 31.03.2011 164,6MB 9.4.3
Adobe Shockwave Player 11.5 Adobe Systems, Inc. 05.10.2010 11.5.8.612
Akamai NetSession Interface 03.11.2010
Apple Application Support Apple Inc. 08.02.2010 32,4MB 1.1.0
Apple Mobile Device Support Apple Inc. 08.02.2010 40,4MB 2.6.0.32
Apple Software Update Apple Inc. 08.02.2010 2,16MB 2.1.1.116
Avanquest update Avanquest Software 09.06.2010 1.22
Bonjour Apple Inc. 08.02.2010 0,49MB 1.0.106
Camtasia Studio 7 TechSmith Corporation 08.01.2011 219MB 7.0.1
catmanEasy/AP 3.0.4.100 Hottinger Baldwin Messtechnik GmbH 22.03.2010 3.0.4.100
CCleaner Piriform 08.04.2011 3.05
Compatibility Pack for the 2007 Office system Microsoft Corporation 10.11.2010 129,5MB 12.0.6514.5001
DisplayLink Core Software DisplayLink Corp. 09.02.2010 12,8MB 5.2.22617.0
DivX-Setup DivX, Inc. 04.10.2010 2.1.0.12
Dropbox 24.09.2010 0.7.110
EVaRT 5.0.4 Motion Analysis Corporation 24.03.2011 62,5MB 5.0.4
Facebook Plug-In Facebook, Inc. 12.04.2010
Faraday's Electromagnetic Lab University of Colorado, Department of Physics 07.03.2010
Foxit Reader Foxit Corporation 07.12.2010 11,1MB 4.3.0.1110
Foxit Toolbar Ask.com 07.12.2010 2,57MB 1.9.1.0
Free Audio CD Burner version 1.4.7 DVDVideoSoft Limited. 26.03.2011 10,7MB
Free Studio version 5.0.6 DVDVideoSoft Limited. 24.03.2011 258MB
Free YouTube Download 2.8 DVDVideoSoft Limited. 29.07.2010 25,5MB
Free YouTube to MP3 Converter version 3.9.35.324 DVDVideoSoft Limited. 26.03.2011 36,0MB
Fujitsu Display Manager FUJITSU LIMITED 21.02.2010 1,09MB 50.0.1.0
Fujitsu Hotkey Utility FUJITSU LIMITED 21.02.2010 0,22MB 3.0.0.0
Fujitsu MobilityCenter Extension Utility FUJITSU LIMITED 21.02.2010 0,28MB 1.1.0.0
Fujitsu System Extension Utility FUJITSU LIMITED 21.02.2010 0,13MB 2.1.1.0
GPL Ghostscript 9.00 07.11.2010
GSview 4.9 07.11.2010
HBM TEDS Editor Hottinger Baldwin Messtechnik GmbH 22.03.2010 3.0.0.86
HiJackThis Trend Micro 08.04.2011 0,36MB 1.0.0
HijackThis 2.0.2 TrendMicro 08.04.2011 2.0.2
Intel(R) Graphics Media Accelerator Driver Intel Corporation 15.08.2010 54,3MB 8.15.10.1930
Intel(R) TV Wizard Intel Corporation 15.08.2010
IrfanView (remove only) Irfan Skiljan 07.11.2010 1,50MB 4.27
iTunes Apple Inc. 08.02.2010 146,3MB 9.0.3.15
IZArc 4.1.2 Ivan Zahariev 19.07.2010 13,8MB 4.1.2
Java(TM) 6 Update 23 Sun Microsystems, Inc. 23.05.2010 94,5MB 6.0.230
Java(TM) 6 Update 5 Sun Microsystems, Inc. 08.02.2010 140,9MB 1.6.0.50
JDownloader AppWork UG (haftungsbeschränkt) 13.04.2010 0.89
Kaspersky Anti-Virus 2010 Kaspersky Lab 08.02.2010 9.0.0.459
Kensington Display Adapter Kensington Computer Products Group 09.02.2010 1,83MB 5.2.22663.0
KinTrak 7.0 University of Calgary 18.01.2011 32,8MB 7.0.25
LifeBook Application Panel FUJITSU LIMITED 21.02.2010 5,48MB 7.0.0.0
Logitech Vid HD Logitech Inc.. 11.09.2010 7.2 (7230)
Logitech Webcam Software Logitech Inc. 21.04.2010 43,9MB 12.10.1113
Logitech Webcam Software-Treiberpaket Logitech Inc. 20.04.2010 12.10.1110
Malwarebytes' Anti-Malware Malwarebytes Corporation 08.04.2011 10,5MB
MATLAB R2010a The MathWorks, Inc. 18.01.2011 7.10
MDESIGN Roloff-Matek Edition 07.06.2010 2009
Microsoft Office Professional Plus 2010 Microsoft Corporation 19.07.2010 14.0.4763.1000
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 Microsoft Corporation 16.02.2010 0,25MB 8.0.50727.4053
Microsoft Visual C++ 2005 Redistributable Microsoft Corporation 12.02.2010 0,42MB 8.0.56336
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 Microsoft Corporation 10.02.2010 0,20MB 9.0.30729.4148
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 Microsoft Corporation 08.02.2010 0,58MB 9.0.30729
MiKTeX 2.9 MiKTeX.org 07.11.2010 2.9
Mozilla Firefox 4.0 (x86 en-US) Mozilla 24.03.2011 33,7MB 4.0
Mozilla Thunderbird (3.1.9) Mozilla 08.03.2011 3.1.9 (de)
MSXML 4.0 SP2 (KB954430) Microsoft Corporation 01.03.2010 35,00KB 4.20.9870.0
MSXML 4.0 SP2 (KB973688) Microsoft Corporation 01.03.2010 1,33MB 4.20.9876.0
MSXML 4.0 SP2 Parser and SDK Microsoft Corporation 12.06.2010 36,00KB 4.20.9818.0
MyPhoneExplorer F.J. Wechselberger 06.06.2010 1.7.6
Nero 7 Essentials Nero AG 27.02.2010 1.814MB 7.02.8076
OpenVPN 2.0.9-gui-1.0.3 02.03.2010
OZ711 SCR Driver V3.0.0.9A O2Micro 21.02.2010 0,95MB 3.0.0.9A
Paint.NET v3.5.7 dotPDN LLC 20.02.2011 10,4MB 3.57.0
Pinnacle Studio 14 Pinnacle Systems 24.03.2011 2.030MB 14.0.0.7255
Pinnacle Video Treiber Pinnacle Systems 24.03.2011 4,96MB 12.1.0.030
PokerStars.net PokerStars.net 05.03.2010
Power Saving Utility Fujitsu LIMITED 21.02.2010 0,76MB 3.1.1.0
Pro/ENGINEER Release Wildfire 4.0 Datecode F000 PTC 12.03.2010 Wildfire 4.0
PTC License Server Release Wildfire 4.0 Datecode F000 PTC 12.03.2010 Wildfire 4.0
QuickTime Apple Inc. 08.02.2010 77,3MB 7.65.17.80
Rainlendar2 (remove only) 08.02.2010
ScanSoft PDF Create! 4 Nuance, Inc. 14.04.2010 27,4MB 4.01.0109
Sentinel Protection Installer 7.3.0 SafeNet, Inc. 24.03.2011 2,56MB 7.3.0
Shock Sensor Utility FUJITSU LIMITED 21.02.2010 0,75MB 2.2.0.0
Skype Toolbars Skype Technologies S.A. 11.02.2011 5,76MB 5.0.4137
Skype™ 5.1 Skype Technologies S.A. 11.02.2011 22,7MB 5.1.112
Spider32 Setup 21.03.2010
Texmaker 07.11.2010
TVCenter PCTV Systems 12.06.2010 160,5MB 6.3.0.584
Uninstall 1.0.0.1 26.03.2011 10,6MB
VLC media player 1.0.3 VideoLAN Team 08.02.2010 1.0.3
Windows Live Anmelde-Assistent Microsoft Corporation 09.02.2010 1,94MB 5.000.818.5
Windows Live Essentials Microsoft Corporation 09.02.2010 14.0.8089.0726
Windows Live-Uploadtool Microsoft Corporation 09.02.2010 0,22MB 14.0.8014.1029
WinRAR 15.04.2010
Wireless Selector FUJITSU LIMITED 21.02.2010 0,34MB 2.0.0.0
Ansonsten ist das Problem, dass ich den Malware detecter nicht aktualisieren kann (wie empfohlen) weil ich wegen dem Win7 nicht ins Inet komme. Danke fuer eure Hilfe |
| Themen zu Win 7 Security entfernen (log-files vorhanden) |
| 7-zip, analysis, avp, avp.exe, bho, bootmgr, c:\hiberfil.sys, c:\windows\kmservice.exe, cache.dat, computer, converter, department, desktop, desktop.ini, display adapter, entfernen, excel, flash player, hiberfil.sys, hijack, hijackthis, installation, javaws.exe, jdownloader, kaspersky, log files, logfile, lws.exe, malware, mozilla, mozilla thunderbird, mp3, mpsigstub.exe, myphoneexplorer, notepad.exe, ntdll.dll, plug-in, problem, recycle.bin, schannel.dll, security, senden, server, shell32.dll, sierra, software, studio, system, tastatur, twain.dll, twunk_32.exe, win32k.sys, windows, wmploc.dll |
Baum-Darstellung