ghostman72 | 27.06.2010 08:59 | Und Teil 2 des OTL Log's: Code:
[2010.07.25 14:29:57 | 000,304,128 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\duser.dll
[2010.07.25 14:29:57 | 000,180,224 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dwwin.exe
[2010.07.25 14:29:54 | 000,357,888 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dxtmsft.dll
[2010.07.25 14:29:54 | 000,205,312 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dxtrans.dll
[2010.07.25 14:29:53 | 000,186,880 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\els.dll
[2010.07.25 14:29:52 | 000,380,445 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\expsrv.dll
[2010.07.25 14:29:52 | 000,195,584 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\eudcedit.exe
[2010.07.25 14:29:52 | 000,080,896 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\faultrep.dll
[2010.07.25 14:29:52 | 000,056,320 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\eventlog.dll
[2010.07.25 14:29:51 | 000,545,280 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\hhctrl.ocx
[2010.07.25 14:29:51 | 000,088,576 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\fldrclnr.dll
[2010.07.25 14:29:51 | 000,041,472 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\hhsetup.dll
[2010.07.25 14:29:51 | 000,021,504 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\fontview.exe
[2010.07.25 14:29:51 | 000,009,344 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\framebuf.dll
[2010.07.25 14:29:50 | 000,348,672 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\hnetcfg.dll
[2010.07.25 14:29:50 | 000,254,976 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\icm32.dll
[2010.07.25 14:29:50 | 000,011,264 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\icaapi.dll
[2010.07.25 14:29:49 | 000,220,672 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\ieaksie.dll
[2010.07.25 14:29:49 | 000,143,360 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\ieakeng.dll
[2010.07.25 14:29:49 | 000,121,344 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\idq.dll
[2010.07.25 14:29:49 | 000,034,304 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\ie4uinit.exe
[2010.07.25 14:29:48 | 000,323,584 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\iedkcs32.dll
[2010.07.25 14:29:47 | 000,251,904 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\iepeers.dll
[2010.07.25 14:29:47 | 000,081,920 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\ils.dll
[2010.07.25 14:29:47 | 000,064,000 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\iesetup.dll
[2010.07.25 14:29:46 | 000,036,921 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\imeshare.dll
[2010.07.25 14:29:46 | 000,035,840 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\imgutil.dll
[2010.07.25 14:29:42 | 000,361,984 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\inetcpl.cpl
[2010.07.25 14:29:41 | 000,127,488 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\input.dll
[2010.07.25 14:29:41 | 000,096,768 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\inseng.dll
[2010.07.25 14:29:40 | 000,133,120 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\intl.cpl
[2010.07.25 14:29:40 | 000,095,744 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\iphlpapi.dll
[2010.07.25 14:29:40 | 000,058,368 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\ipconfig.exe
[2010.07.25 14:29:39 | 000,345,600 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\ippromon.dll
[2010.07.25 14:29:38 | 000,059,904 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\ipv6mon.dll
[2010.07.25 14:29:38 | 000,053,248 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\ipv6.exe
[2010.07.25 14:29:37 | 000,155,136 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\itircl.dll
[2010.07.25 14:29:37 | 000,069,632 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\joy.cpl
[2010.07.25 14:29:37 | 000,054,784 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\ixsso.dll
[2010.07.25 14:29:36 | 000,007,424 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\kd1394.dll
[2010.07.25 14:29:35 | 000,290,816 | ---- | C] (Fraunhofer Institut Integrierte Schaltungen IIS) -- D:\WINDOWS\System32\l3codeca.acm
[2010.07.25 14:29:35 | 000,058,880 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\licwmi.dll
[2010.07.25 14:29:35 | 000,022,016 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\licmgr10.dll
[2010.07.25 14:29:34 | 000,220,672 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\logon.scr
[2010.07.25 14:29:34 | 000,012,288 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\localui.dll
[2010.07.25 14:29:33 | 000,163,840 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\mindex.dll
[2010.07.25 14:29:32 | 001,877,504 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\mmcndmgr.dll
[2010.07.25 14:29:32 | 000,034,560 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\mnmdd.dll
[2010.07.25 14:29:31 | 000,262,144 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\mpg4ds32.ax
[2010.07.25 14:29:31 | 000,216,064 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\moricons.dll
[2010.07.25 14:29:30 | 000,221,184 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\msadds32.ax
[2010.07.25 14:29:30 | 000,124,928 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\mplay32.exe
[2010.07.25 14:29:29 | 000,073,728 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\mscms.dll
[2010.07.25 14:29:29 | 000,069,632 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\msconf.dll
[2010.07.25 14:29:29 | 000,012,288 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\mscpx32r.dll
[2010.07.25 14:29:28 | 000,427,008 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\msdtcprx.dll
[2010.07.25 14:29:28 | 000,151,552 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\msdart.dll
[2010.07.25 14:29:28 | 000,068,608 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\msctfp.dll
[2010.07.25 14:29:28 | 000,012,288 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\msdatsrc.tlb
[2010.07.25 14:29:27 | 000,847,898 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\msdxm.ocx
[2010.07.25 14:29:27 | 000,004,126 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\msdxmlc.dll
[2010.07.25 14:29:26 | 000,518,944 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\msexch40.dll
[2010.07.25 14:29:26 | 000,326,432 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\msexcl40.dll
[2010.07.25 14:29:23 | 001,351,168 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\mshtml.tlb
[2010.07.25 14:29:22 | 000,057,344 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\mshtmler.dll
[2010.07.25 14:29:20 | 002,843,136 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\msi.dll
[2010.07.25 14:29:19 | 000,368,710 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\msisam11.dll
[2010.07.25 14:29:19 | 000,271,360 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\msihnd.dll
[2010.07.25 14:29:19 | 000,159,232 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\msimtf.dll
[2010.07.25 14:29:17 | 001,516,568 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\msjet40.dll
[2010.07.25 14:29:17 | 000,248,608 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\msjtes40.dll
[2010.07.25 14:29:16 | 000,252,928 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\msoeacct.dll
[2010.07.25 14:29:16 | 000,219,936 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\msltus40.dll
[2010.07.25 14:29:15 | 000,346,624 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\mspaint.exe
[2010.07.25 14:29:15 | 000,143,360 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\msorcl32.dll
[2010.07.25 14:29:15 | 000,105,984 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\msoert2.dll
[2010.07.25 14:29:14 | 000,355,104 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\mspbde40.dll
[2010.07.25 14:29:14 | 000,201,728 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\mspmsp.dll
[2010.07.25 14:29:14 | 000,146,432 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\msrating.dll
[2010.07.25 14:29:13 | 000,559,904 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\msrepl40.dll
[2010.07.25 14:29:13 | 000,432,928 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\msrd2x40.dll
[2010.07.25 14:29:12 | 000,356,352 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\msscp.dll
[2010.07.25 14:29:12 | 000,110,592 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\msscript.ocx
[2010.07.25 14:29:12 | 000,069,632 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\msscds32.ax
[2010.07.25 14:29:11 | 000,532,480 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\mstime.dll
[2010.07.25 14:29:11 | 000,264,992 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\mstext40.dll
[2010.07.25 14:29:10 | 000,012,288 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\mstinit.exe
[2010.07.25 14:29:09 | 000,241,725 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\msuni11.dll
[2010.07.25 14:29:09 | 000,196,096 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\msutb.dll
[2010.07.25 14:29:08 | 000,413,696 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\msvcp60.dll
[2010.07.25 14:29:07 | 000,355,104 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\msxbde40.dll
[2010.07.25 14:29:07 | 000,122,368 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\msvfw32.dll
[2010.07.25 14:29:06 | 000,701,440 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\msxml2.dll
[2010.07.25 14:29:05 | 000,124,928 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\net1.exe
[2010.07.25 14:29:05 | 000,042,496 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\net.exe
[2010.07.25 14:29:05 | 000,036,352 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\ncobjapi.dll
[2010.07.25 14:29:05 | 000,019,456 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\nddenb32.dll
[2010.07.25 14:29:03 | 000,633,856 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\netcfgx.dll
[2010.07.25 14:29:03 | 000,407,040 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\netlogon.dll
[2010.07.25 14:28:59 | 000,250,880 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\newdev.dll
[2010.07.25 14:28:59 | 000,098,304 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\nlhtml.dll
[2010.07.25 14:28:59 | 000,055,296 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\npptools.dll
[2010.07.25 14:28:59 | 000,028,672 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\nmmkcert.dll
[2010.07.25 14:28:58 | 000,044,032 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\ntlanman.dll
[2010.07.25 14:28:58 | 000,040,960 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\ntmsapi.dll
[2010.07.25 14:28:57 | 000,180,224 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\ntmsdba.dll
[2010.07.25 14:28:56 | 000,271,360 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\oakley.dll
[2010.07.25 14:28:56 | 000,249,856 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\odbc32.dll
[2010.07.25 14:28:56 | 000,032,768 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\odbcad32.exe
[2010.07.25 14:28:56 | 000,024,576 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\odbcbcp.dll
[2010.07.25 14:28:56 | 000,016,384 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\odbc32gt.dll
[2010.07.25 14:28:55 | 000,135,168 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\odbcconf.dll
[2010.07.25 14:28:55 | 000,106,496 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\odbccp32.dll
[2010.07.25 14:28:55 | 000,069,632 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\odbcconf.exe
[2010.07.25 14:28:55 | 000,065,536 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\odbccu32.dll
[2010.07.25 14:28:55 | 000,065,536 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\odbccr32.dll
[2010.07.25 14:28:54 | 000,192,000 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\offfilt.dll
[2010.07.25 14:28:54 | 000,147,456 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\odbctrac.dll
[2010.07.25 14:28:54 | 000,012,288 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\odbcp32r.dll
[2010.07.25 14:28:53 | 000,108,544 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\oleprn.dll
[2010.07.25 14:28:52 | 000,713,728 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\opengl32.dll
[2010.07.25 14:28:52 | 000,216,576 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\osk.exe
[2010.07.25 14:28:52 | 000,070,144 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\pautoenr.dll
[2010.07.25 14:28:52 | 000,059,904 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\packager.exe
[2010.07.25 14:28:51 | 000,286,720 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\pdh.dll
[2010.07.25 14:28:51 | 000,081,920 | ---- | C] (Intel Corporation) -- D:\WINDOWS\System32\proctexe.ocx
[2010.07.25 14:28:51 | 000,039,424 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\pngfilt.dll
[2010.07.25 14:28:51 | 000,018,944 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\ping.exe
[2010.07.25 14:28:50 | 000,099,328 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\psbase.dll
[2010.07.25 14:28:50 | 000,018,944 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\qmgrprxy.dll
[2010.07.25 14:28:49 | 001,441,792 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\query.dll
[2010.07.25 14:28:48 | 000,210,944 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\rasppp.dll
[2010.07.25 14:28:48 | 000,079,872 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\raschap.dll
[2010.07.25 14:28:48 | 000,016,384 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\rassapi.dll
[2010.07.25 14:28:47 | 000,151,040 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\rastls.dll
[2010.07.25 14:28:47 | 000,147,968 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\rdchost.dll
[2010.07.25 14:28:47 | 000,062,976 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\rdpclip.exe
[2010.07.25 14:28:47 | 000,035,840 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\rcimlby.exe
[2010.07.25 14:28:47 | 000,019,968 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\rdpsnd.dll
[2010.07.25 14:28:46 | 000,087,176 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\rdpwsx.dll
[2010.07.25 14:28:46 | 000,053,248 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\reg.exe
[2010.07.25 14:28:46 | 000,049,664 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\regapi.dll
[2010.07.25 14:28:46 | 000,013,824 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\rdsaddin.exe
[2010.07.25 14:28:45 | 000,433,664 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\riched20.dll
[2010.07.25 14:28:43 | 000,208,384 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\rsaenh.dll
[2010.07.25 14:28:42 | 000,171,520 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\sccsccp.dll
[2010.07.25 14:28:42 | 000,169,984 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\sccbase.dll
[2010.07.25 14:28:42 | 000,078,848 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\rtcshare.exe
[2010.07.25 14:28:42 | 000,014,336 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\runonce.exe
[2010.07.25 14:28:41 | 000,328,192 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\scesrv.dll
[2010.07.25 14:28:41 | 000,187,904 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\scecli.dll
[2010.07.25 14:28:40 | 000,078,336 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\sdbinst.exe
[2010.07.25 14:28:40 | 000,023,040 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\setup.exe
[2010.07.25 14:28:40 | 000,009,216 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\scrnsave.scr
[2010.07.25 14:28:40 | 000,007,168 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\sensapi.dll
[2010.07.25 14:28:39 | 001,571,840 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\sfcfiles.dll
[2010.07.25 14:28:39 | 000,142,336 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\sfc_os.dll
[2010.07.25 14:28:32 | 000,068,096 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\shgina.dll
[2010.07.25 14:28:32 | 000,025,088 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\shfolder.dll
[2010.07.25 14:28:31 | 000,045,056 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\shmgrate.exe
[2010.07.25 14:28:30 | 000,086,016 | ---- | C] (Sipro Lab Telecom Inc.) -- D:\WINDOWS\System32\sl_anet.acm
[2010.07.25 14:28:30 | 000,071,168 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\sigverif.exe
[2010.07.25 14:28:30 | 000,026,112 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\skeys.exe
[2010.07.25 14:28:30 | 000,016,384 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\simpdata.tlb
[2010.07.25 14:28:30 | 000,013,312 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\sigtab.dll
[2010.07.25 14:28:29 | 000,368,128 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\smlogcfg.dll
[2010.07.25 14:28:29 | 000,018,944 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\snmpapi.dll
[2010.07.25 14:28:28 | 000,539,136 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\spider.exe
[2010.07.25 14:28:28 | 000,442,368 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\sqlsrv32.dll
[2010.07.25 14:28:28 | 000,075,264 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\spoolss.dll
[2010.07.25 14:28:27 | 000,242,176 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\srrstr.dll
[2010.07.25 14:28:26 | 000,708,608 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\ss3dfo.scr
[2010.07.25 14:28:26 | 000,019,968 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\ssbezier.scr
[2010.07.25 14:28:25 | 000,393,216 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\ssflwbox.scr
[2010.07.25 14:28:25 | 000,034,816 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\ssdpapi.dll
[2010.07.25 14:28:25 | 000,020,992 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\ssmarque.scr
[2010.07.25 14:28:25 | 000,018,944 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\ssmyst.scr
[2010.07.25 14:28:24 | 000,610,304 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\sspipes.scr
[2010.07.25 14:28:24 | 000,014,848 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\ssstars.scr
[2010.07.25 14:28:23 | 000,684,032 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\sstext3d.scr
[2010.07.25 14:28:23 | 000,137,216 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\sti_ci.dll
[2010.07.25 14:28:23 | 000,068,608 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\sti.dll
[2010.07.25 14:28:22 | 000,246,814 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\strmdll.dll
[2010.07.25 14:28:21 | 000,715,776 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\sxs.dll
[2010.07.25 14:28:21 | 000,220,672 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\sysmon.ocx
[2010.07.25 14:28:20 | 000,181,760 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\tapi32.dll
[2010.07.25 14:28:18 | 000,094,720 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\tscfgwmi.dll
[2010.07.25 14:28:18 | 000,044,544 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\tscupgrd.exe
[2010.07.25 14:28:18 | 000,036,352 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\umandlg.dll
[2010.07.25 14:28:18 | 000,026,624 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\udhisapi.dll
[2010.07.25 14:28:18 | 000,012,800 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\tracert.exe
[2010.07.25 14:28:17 | 000,133,632 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\upnp.dll
[2010.07.25 14:28:16 | 000,037,888 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\url.dll
[2010.07.25 14:28:15 | 000,050,176 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\utilman.exe
[2010.07.25 14:28:14 | 000,434,176 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\vbscript.dll
[2010.07.25 14:28:14 | 000,051,712 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\vdmredir.dll
[2010.07.25 14:28:13 | 000,017,664 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\watchdog.sys
[2010.07.25 14:28:10 | 000,136,192 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\webvw.dll
[2010.07.25 14:28:10 | 000,124,928 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\wiadss.dll
[2010.07.25 14:28:10 | 000,067,072 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\wextract.exe
[2010.07.25 14:28:08 | 000,053,760 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\winsta.dll
[2010.07.25 14:28:07 | 000,089,600 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\wmidx.ocx
[2010.07.25 14:28:07 | 000,020,480 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\wmpcd.dll
[2010.07.25 14:28:07 | 000,020,480 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\wmp.ocx
[2010.07.25 14:28:06 | 000,020,480 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\wmpcore.dll
[2010.07.25 14:28:04 | 002,973,696 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\wmploc.dll
[2010.07.25 14:28:04 | 000,077,824 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\wmpstub.exe
[2010.07.25 14:28:03 | 000,020,480 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\wmpui.dll
[2010.07.25 14:28:02 | 000,311,327 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\wmv8dmod.dll
[2010.07.25 14:28:02 | 000,303,616 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\wmstream.dll
[2010.07.25 14:28:02 | 000,115,200 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\wmsdmoe.dll
[2010.07.25 14:28:01 | 000,446,464 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\wmvdmoe.dll
[2010.07.25 14:28:01 | 000,278,559 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\wmv8ds32.ax
[2010.07.25 14:28:00 | 000,258,048 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\wmvds32.ax
[2010.07.25 14:27:59 | 000,264,704 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\wow32.dll
[2010.07.25 14:27:59 | 000,041,984 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\wsnmp32.dll
[2010.07.25 14:27:59 | 000,018,432 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\wtsapi32.dll
[2010.07.25 14:27:59 | 000,014,336 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\wship6.dll
[2010.07.25 14:27:58 | 000,384,512 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\wzcdlg.dll
[2010.07.25 14:27:57 | 000,176,248 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\xenroll.dll
[2010.07.25 14:27:57 | 000,091,648 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\xactsrv.dll
[2010.07.25 14:27:56 | 000,105,344 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\HAL.DLL
[2010.07.25 14:20:10 | 000,046,352 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\setdebug.exe
[2010.07.25 14:20:09 | 000,171,280 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\jit.dll
[2010.07.25 14:20:09 | 000,139,536 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\javaee.dll
[2010.07.25 14:20:08 | 000,313,856 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dx3j.dll
[2010.07.25 14:19:36 | 000,171,792 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\wjview.exe
[2010.07.25 14:19:35 | 000,286,992 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\vmhelper.dll
[2010.07.25 14:19:35 | 000,021,264 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\msjdbc10.dll
[2010.07.25 14:19:31 | 000,154,384 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\msawt.dll
[2010.07.25 14:19:30 | 000,172,304 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\jview.exe
[2010.07.25 14:19:29 | 000,015,120 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\jdbgmgr.exe
[2010.07.25 14:19:27 | 000,404,752 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\javart.dll
[2010.07.25 14:19:26 | 000,063,248 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\javaprxy.dll
[2010.07.25 14:19:25 | 000,187,152 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\javacypt.dll
[2010.07.25 14:19:16 | 000,049,424 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\clspack.exe
[2010.07.25 13:44:18 | 000,036,224 | ---- | C] (ADMtek Incorporated.) -- D:\WINDOWS\System32\drivers\an983.sys
[2010.07.25 13:28:23 | 000,000,000 | ---D | C] -- D:\WINDOWS\setup.pss
[2010.07.24 16:02:54 | 000,000,000 | -H-D | C] -- D:\WINDOWS\PIF
[2010.07.24 14:59:48 | 000,000,000 | ---D | C] -- D:\Dokumente und Einstellungen\Dieter\Anwendungsdaten\Malwarebytes
[2010.07.24 14:59:27 | 000,038,224 | ---- | C] (Malwarebytes Corporation) -- D:\WINDOWS\System32\drivers\mbamswissarmy.sys
[2010.07.24 14:59:20 | 000,000,000 | ---D | C] -- D:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Malwarebytes
[2010.07.24 14:59:19 | 000,019,288 | ---- | C] (Malwarebytes Corporation) -- D:\WINDOWS\System32\drivers\mbam.sys
[2010.07.24 14:23:02 | 000,000,000 | ---D | C] -- D:\Daten
[5 D:\WINDOWS\*.tmp files -> D:\WINDOWS\*.tmp -> ]
========== Files - Modified Within 30 Days ==========
[2010.07.28 09:19:54 | 003,145,728 | -H-- | M] () -- D:\Dokumente und Einstellungen\Dieter\NTUSER.DAT
[2010.07.28 09:10:16 | 000,309,810 | ---- | M] () -- D:\WINDOWS\System32\perfh007.dat
[2010.07.28 09:10:16 | 000,305,318 | ---- | M] () -- D:\WINDOWS\System32\perfh009.dat
[2010.07.28 09:10:16 | 000,045,672 | ---- | M] () -- D:\WINDOWS\System32\perfc007.dat
[2010.07.28 09:10:16 | 000,037,760 | ---- | M] () -- D:\WINDOWS\System32\perfc009.dat
[2010.07.28 09:10:14 | 000,705,468 | ---- | M] () -- D:\WINDOWS\System32\PerfStringBackup.INI
[2010.07.28 09:05:32 | 000,316,640 | ---- | M] () -- D:\WINDOWS\WMSysPr9.prx
[2010.07.28 08:59:14 | 000,002,422 | ---- | M] () -- D:\WINDOWS\System32\wpa.dbl
[2010.07.28 08:58:16 | 000,002,048 | --S- | M] () -- D:\WINDOWS\bootstat.dat
[2010.07.28 08:57:32 | 000,225,616 | ---- | M] () -- D:\WINDOWS\System32\FNTCACHE.DAT
[2010.07.28 08:57:30 | 133,816,320 | -HS- | M] () -- D:\hiberfil.sys
[2010.07.28 08:56:12 | 000,000,006 | -H-- | M] () -- D:\WINDOWS\tasks\SA.DAT
[2010.07.28 08:56:00 | 000,000,300 | -HS- | M] () -- D:\Dokumente und Einstellungen\Dieter\ntuser.ini
[2010.07.28 08:55:38 | 001,975,992 | -H-- | M] () -- D:\Dokumente und Einstellungen\Dieter\Lokale Einstellungen\Anwendungsdaten\IconCache.db
[2010.07.27 21:53:34 | 000,251,712 | RHS- | M] () -- D:\ntldr
[2010.07.27 18:28:58 | 000,004,696 | ---- | M] () -- D:\WINDOWS\imsins.BAK
[2010.07.27 18:24:46 | 000,056,576 | ---- | M] () -- D:\Dokumente und Einstellungen\Dieter\Lokale Einstellungen\Anwendungsdaten\GDIPFONTCACHEV1.DAT
[2010.07.27 12:52:22 | 000,000,210 | RHS- | M] () -- D:\boot.ini
[2010.07.27 12:52:04 | 000,000,615 | ---- | M] () -- D:\WINDOWS\win.ini
[2010.07.27 12:25:12 | 000,047,564 | RHS- | M] () -- D:\NTDETECT.COM
[2010.07.26 08:39:02 | 000,002,495 | ---- | M] () -- D:\Dokumente und Einstellungen\Dieter\Desktop\Microsoft Word.lnk
[2010.07.24 17:29:12 | 000,000,415 | ---- | M] () -- D:\Dokumente und Einstellungen\Dieter\Desktop\cmd.lnk
[2010.07.24 17:28:22 | 000,000,000 | ---- | M] () -- D:\Dokumente und Einstellungen\Dieter\Desktop\explorer.lnk
[2010.07.15 12:48:36 | 000,000,000 | ---- | M] () -- D:\WINDOWS\System32\19169.exe
[5 D:\WINDOWS\*.tmp files -> D:\WINDOWS\*.tmp -> ]
========== Files Created - No Company Name ==========
[2010.07.27 22:12:05 | 000,010,457 | ---- | C] () -- D:\WINDOWS\System32\dllcache\wmptour.hta
[2010.07.27 22:12:05 | 000,001,771 | ---- | C] () -- D:\WINDOWS\System32\dllcache\wmptour.css
[2010.07.27 22:12:05 | 000,001,730 | ---- | C] () -- D:\WINDOWS\System32\dllcache\wmpocm.inf
[2010.07.27 22:12:05 | 000,000,420 | ---- | C] () -- D:\WINDOWS\System32\dllcache\wmploc.js
[2010.07.27 22:12:03 | 000,660,224 | ---- | C] () -- D:\WINDOWS\System32\dllcache\wmplayer.chm
[2010.07.27 22:12:03 | 000,076,456 | ---- | C] () -- D:\WINDOWS\System32\dllcache\wmplayer.adm
[2010.07.27 22:12:02 | 000,172,196 | ---- | C] () -- D:\WINDOWS\System32\dllcache\wmpaud9.wav
[2010.07.27 22:12:02 | 000,172,196 | ---- | C] () -- D:\WINDOWS\System32\dllcache\wmpaud8.wav
[2010.07.27 22:12:02 | 000,026,141 | ---- | C] () -- D:\WINDOWS\System32\dllcache\wmplay.chm
[2010.07.27 22:12:01 | 000,343,204 | ---- | C] () -- D:\WINDOWS\System32\dllcache\wmpaud7.wav
[2010.07.27 22:12:01 | 000,343,204 | ---- | C] () -- D:\WINDOWS\System32\dllcache\wmpaud6.wav
[2010.07.27 22:12:01 | 000,086,196 | ---- | C] () -- D:\WINDOWS\System32\dllcache\wmpaud5.wav
[2010.07.27 22:12:01 | 000,086,180 | ---- | C] () -- D:\WINDOWS\System32\dllcache\wmpaud4.wav
[2010.07.27 22:12:00 | 000,172,196 | ---- | C] () -- D:\WINDOWS\System32\dllcache\wmpaud3.wav
[2010.07.27 22:12:00 | 000,086,180 | ---- | C] () -- D:\WINDOWS\System32\dllcache\wmpaud2.wav
[2010.07.27 22:11:59 | 000,354,468 | ---- | C] () -- D:\WINDOWS\System32\dllcache\wmpaud1.wav
[2010.07.27 22:11:59 | 000,058,216 | ---- | C] () -- D:\WINDOWS\System32\dllcache\wmp.inf
[2010.07.27 22:11:56 | 000,034,554 | ---- | C] () -- D:\WINDOWS\System32\dllcache\wmdm.inf
[2010.07.27 22:11:56 | 000,013,540 | ---- | C] () -- D:\WINDOWS\System32\dllcache\wmfsdk.inf
[2010.07.27 22:11:55 | 000,008,677 | ---- | C] () -- D:\WINDOWS\System32\dllcache\wm7.gif
[2010.07.27 22:11:55 | 000,007,892 | ---- | C] () -- D:\WINDOWS\System32\dllcache\wm9.gif
[2010.07.27 22:11:55 | 000,006,060 | ---- | C] () -- D:\WINDOWS\System32\dllcache\wm6.gif
[2010.07.27 22:11:55 | 000,004,193 | ---- | C] () -- D:\WINDOWS\System32\dllcache\wm8.gif
[2010.07.27 22:11:54 | 000,300,969 | ---- | C] () -- D:\WINDOWS\System32\dllcache\viz.wmv
[2010.07.27 22:11:54 | 000,017,489 | ---- | C] () -- D:\WINDOWS\System32\dllcache\videobg.gif
[2010.07.27 22:11:54 | 000,007,636 | ---- | C] () -- D:\WINDOWS\System32\dllcache\wm2.gif
[2010.07.27 22:11:54 | 000,007,369 | ---- | C] () -- D:\WINDOWS\System32\dllcache\wm4.gif
[2010.07.27 22:11:54 | 000,006,241 | ---- | C] () -- D:\WINDOWS\System32\dllcache\wm3.gif
[2010.07.27 22:11:54 | 000,005,789 | ---- | C] () -- D:\WINDOWS\System32\dllcache\wm1.gif
[2010.07.27 22:11:54 | 000,005,290 | ---- | C] () -- D:\WINDOWS\System32\dllcache\vidsamp.gif
[2010.07.27 22:11:54 | 000,002,477 | ---- | C] () -- D:\WINDOWS\System32\dllcache\wm5.gif
[2010.07.27 22:11:54 | 000,002,375 | ---- | C] () -- D:\WINDOWS\System32\dllcache\tplayh.gif
[2010.07.27 22:11:53 | 000,023,829 | ---- | C] () -- D:\WINDOWS\System32\dllcache\tourbg.gif
[2010.07.27 22:11:53 | 000,003,187 | ---- | C] () -- D:\WINDOWS\System32\dllcache\tour.js
[2010.07.27 22:11:53 | 000,002,469 | ---- | C] () -- D:\WINDOWS\System32\dllcache\tplay.gif
[2010.07.27 22:11:53 | 000,002,450 | ---- | C] () -- D:\WINDOWS\System32\dllcache\tpause.gif
[2010.07.27 22:11:53 | 000,002,371 | ---- | C] () -- D:\WINDOWS\System32\dllcache\tpauseh.gif
[2010.07.27 22:11:53 | 000,001,810 | ---- | C] () -- D:\WINDOWS\System32\dllcache\skins.inf
[2010.07.27 22:11:53 | 000,001,398 | ---- | C] () -- D:\WINDOWS\System32\dllcache\taon.gif
[2010.07.27 22:11:53 | 000,001,380 | ---- | C] () -- D:\WINDOWS\System32\dllcache\taonh.gif
[2010.07.27 22:11:53 | 000,001,380 | ---- | C] () -- D:\WINDOWS\System32\dllcache\taoff.gif
[2010.07.27 22:11:53 | 000,001,367 | ---- | C] () -- D:\WINDOWS\System32\dllcache\taoffh.gif
[2010.07.27 22:11:53 | 000,001,148 | ---- | C] () -- D:\WINDOWS\System32\dllcache\snd.htm
[2010.07.27 22:11:52 | 000,572,557 | ---- | C] () -- D:\WINDOWS\System32\dllcache\rtuner.wmv
[2010.07.27 22:11:51 | 000,084,531 | ---- | C] () -- D:\WINDOWS\System32\dllcache\plyr_err.chm
[2010.07.27 22:11:51 | 000,066,132 | ---- | C] () -- D:\WINDOWS\System32\dllcache\revert.wmz
[2010.07.27 22:11:51 | 000,001,476 | ---- | C] () -- D:\WINDOWS\System32\dllcache\plylst5.wpl
[2010.07.27 22:11:51 | 000,001,471 | ---- | C] () -- D:\WINDOWS\System32\dllcache\plylst6.wpl
[2010.07.27 22:11:51 | 000,001,471 | ---- | C] () -- D:\WINDOWS\System32\dllcache\plylst12.wpl
[2010.07.27 22:11:51 | 000,001,469 | ---- | C] () -- D:\WINDOWS\System32\dllcache\plylst3.wpl
[2010.07.27 22:11:51 | 000,001,467 | ---- | C] () -- D:\WINDOWS\System32\dllcache\plylst4.wpl
[2010.07.27 22:11:51 | 000,001,261 | ---- | C] () -- D:\WINDOWS\System32\dllcache\plylst1.wpl
[2010.07.27 22:11:51 | 000,001,055 | ---- | C] () -- D:\WINDOWS\System32\dllcache\plylst2.wpl
[2010.07.27 22:11:51 | 000,001,047 | ---- | C] () -- D:\WINDOWS\System32\dllcache\plylst7.wpl
[2010.07.27 22:11:51 | 000,001,038 | ---- | C] () -- D:\WINDOWS\System32\dllcache\plylst8.wpl
[2010.07.27 22:11:51 | 000,000,807 | ---- | C] () -- D:\WINDOWS\System32\dllcache\plylst11.wpl
[2010.07.27 22:11:51 | 000,000,800 | ---- | C] () -- D:\WINDOWS\System32\dllcache\plylst10.wpl
[2010.07.27 22:11:51 | 000,000,782 | ---- | C] () -- D:\WINDOWS\System32\dllcache\plylst9.wpl
[2010.07.27 22:11:51 | 000,000,779 | ---- | C] () -- D:\WINDOWS\System32\dllcache\plylst13.wpl
[2010.07.27 22:11:51 | 000,000,778 | ---- | C] () -- D:\WINDOWS\System32\dllcache\plylst14.wpl
[2010.07.27 22:11:51 | 000,000,725 | ---- | C] () -- D:\WINDOWS\System32\dllcache\plylst15.wpl
[2010.07.27 22:11:50 | 000,375,519 | ---- | C] () -- D:\WINDOWS\System32\dllcache\nuskin.wmv
[2010.07.27 22:11:50 | 000,022,060 | ---- | C] () -- D:\WINDOWS\System32\dllcache\npds.zip
[2010.07.27 22:11:50 | 000,000,403 | ---- | C] () -- D:\WINDOWS\System32\dllcache\npdrmv2.zip
[2010.07.27 22:11:47 | 000,097,117 | ---- | C] () -- D:\WINDOWS\System32\dllcache\mplayer2.hlp
[2010.07.27 22:11:47 | 000,036,610 | ---- | C] () -- D:\WINDOWS\System32\dllcache\mplayer2.inf
[2010.07.27 22:11:47 | 000,002,778 | ---- | C] () -- D:\WINDOWS\System32\dllcache\mplogoh.gif
[2010.07.27 22:11:47 | 000,002,545 | ---- | C] () -- D:\WINDOWS\System32\dllcache\mplogo.gif
[2010.07.27 22:11:47 | 000,001,885 | ---- | C] () -- D:\WINDOWS\System32\dllcache\mplayer2.cnt
[2010.07.27 22:11:45 | 000,457,607 | ---- | C] () -- D:\WINDOWS\System32\dllcache\mdlib.wmv
[2010.07.27 22:11:45 | 000,005,971 | ---- | C] () -- D:\WINDOWS\System32\dllcache\events.js
[2010.07.27 22:11:43 | 000,381,425 | ---- | C] () -- D:\WINDOWS\System32\dllcache\copycd.wmv
[2010.07.27 22:11:43 | 000,009,585 | ---- | C] () -- D:\WINDOWS\System32\dllcache\controls.css
[2010.07.27 22:11:43 | 000,008,298 | ---- | C] () -- D:\WINDOWS\System32\dllcache\contents.htm
[2010.07.27 22:11:43 | 000,006,878 | ---- | C] () -- D:\WINDOWS\System32\dllcache\controls.js
[2010.07.27 22:11:42 | 000,184,109 | ---- | C] () -- D:\WINDOWS\System32\dllcache\compact.wmz
[2010.07.27 22:11:42 | 000,000,999 | ---- | C] () -- D:\WINDOWS\System32\dllcache\bktrh.gif
[2010.07.27 22:11:42 | 000,000,773 | ---- | C] () -- D:\WINDOWS\System32\dllcache\cnth.gif
[2010.07.27 22:11:42 | 000,000,773 | ---- | C] () -- D:\WINDOWS\System32\dllcache\cnt.gif
[2010.07.27 22:11:42 | 000,000,772 | ---- | C] () -- D:\WINDOWS\System32\dllcache\cntd.gif
[2010.07.27 22:11:42 | 000,000,760 | ---- | C] () -- D:\WINDOWS\System32\dllcache\cloapph.gif
[2010.07.27 22:11:42 | 000,000,717 | ---- | C] () -- D:\WINDOWS\System32\dllcache\cloapp.gif
[2010.07.27 12:45:28 | 000,064,352 | ---- | C] () -- D:\WINDOWS\System32\drivers\ativmc20.cod
[2010.07.27 12:45:27 | 000,129,045 | ---- | C] () -- D:\WINDOWS\System32\drivers\cxthsfs2.cty
[2010.07.25 17:08:10 | 133,816,320 | -HS- | C] () -- D:\hiberfil.sys
[2010.07.25 14:31:38 | 000,066,082 | ---- | C] () -- D:\WINDOWS\System32\c_28603.nls
[2010.07.25 14:30:01 | 000,001,804 | ---- | C] () -- D:\WINDOWS\System32\dcache.bin
[2010.07.25 14:29:41 | 000,956,990 | ---- | C] () -- D:\WINDOWS\System32\instcat.sql
[2010.07.25 14:28:55 | 000,004,310 | ---- | C] () -- D:\WINDOWS\System32\odbcconf.rsp
[2010.07.25 14:28:46 | 000,003,358 | ---- | C] () -- D:\WINDOWS\System32\redir.exe
[2010.07.25 14:28:10 | 001,356,288 | ---- | C] () -- D:\WINDOWS\System32\webfldrs.msi
[2010.07.25 14:20:09 | 000,007,315 | ---- | C] () -- D:\WINDOWS\System32\javasup.vxd
[2010.07.25 14:20:09 | 000,006,550 | ---- | C] () -- D:\WINDOWS\jautoexp.dat
[2010.07.25 14:19:36 | 000,000,113 | ---- | C] () -- D:\WINDOWS\System32\zonedon.reg
[2010.07.25 14:19:36 | 000,000,113 | ---- | C] () -- D:\WINDOWS\System32\zonedoff.reg
[2010.07.24 17:29:10 | 000,000,415 | ---- | C] () -- D:\Dokumente und Einstellungen\Dieter\Desktop\cmd.lnk
[2010.07.24 17:28:21 | 000,000,000 | ---- | C] () -- D:\Dokumente und Einstellungen\Dieter\Desktop\explorer.lnk
[2010.07.15 12:48:34 | 000,000,000 | ---- | C] () -- D:\WINDOWS\System32\19169.exe
[2009.07.11 09:27:11 | 000,000,097 | ---- | C] () -- D:\WINDOWS\System32\PICSDK.ini
[2006.08.07 15:49:10 | 000,363,520 | ---- | C] () -- D:\WINDOWS\System32\psisdecd.dll
[2006.08.04 16:55:43 | 000,093,696 | ---- | C] () -- D:\WINDOWS\System32\hpgt42.dll
[2006.07.19 11:18:54 | 000,108,032 | ---- | C] () -- D:\WINDOWS\System32\sh33w32.dll
[2006.07.18 18:18:39 | 000,000,325 | ---- | C] () -- D:\WINDOWS\ULEAD32.INI
[2006.07.18 18:13:44 | 000,000,400 | ---- | C] () -- D:\WINDOWS\ODBC.INI
========== LOP Check ==========
[2006.09.22 17:47:00 | 000,000,000 | ---D | M] -- D:\Dokumente und Einstellungen\All Users\Anwendungsdaten\EnterNHelp
[2006.09.22 17:47:00 | 000,000,000 | ---D | M] -- D:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Ultima_T15
[2010.07.25 18:58:56 | 000,000,000 | ---D | M] -- D:\Dokumente und Einstellungen\All Users\Anwendungsdaten\TEMP
[2006.09.22 17:41:54 | 000,000,000 | ---D | M] -- D:\Dokumente und Einstellungen\Dieter\Anwendungsdaten\Nikon
[2010.06.20 09:23:48 | 000,000,000 | ---D | M] -- D:\Dokumente und Einstellungen\Dieter\Anwendungsdaten\TeamViewer
========== Purity Check ==========
========== Custom Scans ==========
< %ALLUSERSPROFILE%\Application Data\*. >
< %ALLUSERSPROFILE%\Application Data\*.exe /s >
< %APPDATA%\*. >
[2006.07.18 16:43:38 | 000,000,000 | --SD | M] -- D:\Dokumente und Einstellungen\Dieter\Anwendungsdaten\Microsoft
[2006.07.18 17:51:20 | 000,000,000 | ---D | M] -- D:\Dokumente und Einstellungen\Dieter\Anwendungsdaten\Identities
[2006.07.19 11:26:14 | 000,000,000 | ---D | M] -- D:\Dokumente und Einstellungen\Dieter\Anwendungsdaten\Corel
[2006.08.07 16:43:58 | 000,000,000 | ---D | M] -- D:\Dokumente und Einstellungen\Dieter\Anwendungsdaten\Ahead
[2006.08.16 17:22:00 | 000,000,000 | ---D | M] -- D:\Dokumente und Einstellungen\Dieter\Anwendungsdaten\Help
[2006.09.17 13:58:32 | 000,000,000 | ---D | M] -- D:\Dokumente und Einstellungen\Dieter\Anwendungsdaten\CyberLink
[2006.09.22 17:41:54 | 000,000,000 | ---D | M] -- D:\Dokumente und Einstellungen\Dieter\Anwendungsdaten\Nikon
[2009.02.09 17:06:14 | 000,000,000 | ---D | M] -- D:\Dokumente und Einstellungen\Dieter\Anwendungsdaten\Macromedia
[2009.07.11 09:24:42 | 000,000,000 | ---D | M] -- D:\Dokumente und Einstellungen\Dieter\Anwendungsdaten\InstallShield
[2009.07.11 14:54:34 | 000,000,000 | ---D | M] -- D:\Dokumente und Einstellungen\Dieter\Anwendungsdaten\Apple Computer
[2009.08.10 17:41:52 | 000,000,000 | ---D | M] -- D:\Dokumente und Einstellungen\Dieter\Anwendungsdaten\ArcSoft
[2010.06.20 09:23:48 | 000,000,000 | ---D | M] -- D:\Dokumente und Einstellungen\Dieter\Anwendungsdaten\TeamViewer
[2010.07.24 14:59:50 | 000,000,000 | ---D | M] -- D:\Dokumente und Einstellungen\Dieter\Anwendungsdaten\Malwarebytes
< %APPDATA%\*.exe /s >
< %SYSTEMDRIVE%\*.exe >
< MD5 for: AGP440.SYS >
[2004.08.04 01:10:00 | 018,782,319 | ---- | M] () .cab file -- D:\WINDOWS\Driver Cache\i386\sp2.cab:AGP440.sys
[2008.04.14 08:03:54 | 020,108,202 | ---- | M] () .cab file -- D:\WINDOWS\Driver Cache\i386\sp3.cab:AGP440.sys
[2004.08.04 01:10:00 | 018,782,319 | ---- | M] () .cab file -- D:\WINDOWS\ServicePackFiles\i386\sp2.cab:AGP440.sys
[2008.04.14 08:03:54 | 020,108,202 | ---- | M] () .cab file -- D:\WINDOWS\ServicePackFiles\i386\sp3.cab:AGP440.sys
[2008.04.14 00:06:40 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- D:\WINDOWS\ServicePackFiles\i386\agp440.sys
[2008.04.14 00:06:40 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- D:\WINDOWS\system32\drivers\agp440.sys
< MD5 for: ATAPI.SYS >
[2002.08.29 03:52:58 | 010,180,476 | ---- | M] () .cab file -- D:\WINDOWS\Driver Cache\i386\sp1.cab:atapi.sys
[2004.08.04 01:10:00 | 018,782,319 | ---- | M] () .cab file -- D:\WINDOWS\Driver Cache\i386\sp2.cab:atapi.sys
[2008.04.14 08:03:54 | 020,108,202 | ---- | M] () .cab file -- D:\WINDOWS\Driver Cache\i386\sp3.cab:atapi.sys
[2002.08.29 03:52:58 | 010,180,476 | ---- | M] () .cab file -- D:\WINDOWS\ServicePackFiles\i386\sp1.cab:atapi.sys
[2004.08.04 01:10:00 | 018,782,319 | ---- | M] () .cab file -- D:\WINDOWS\ServicePackFiles\i386\sp2.cab:atapi.sys
[2008.04.14 08:03:54 | 020,108,202 | ---- | M] () .cab file -- D:\WINDOWS\ServicePackFiles\i386\sp3.cab:atapi.sys
[2008.04.14 00:10:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- D:\WINDOWS\ServicePackFiles\i386\atapi.sys
[2008.04.14 00:10:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- D:\WINDOWS\system32\drivers\atapi.sys
< MD5 for: EVENTLOG.DLL >
[2008.04.14 07:52:12 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=04955AA695448C181B367D964AF158AA -- D:\WINDOWS\ServicePackFiles\i386\eventlog.dll
[2008.04.14 07:52:12 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=04955AA695448C181B367D964AF158AA -- D:\WINDOWS\system32\eventlog.dll
< MD5 for: NETLOGON.DLL >
[2008.04.14 07:52:20 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=0098D35F91DEAB9C127360A877F2CF84 -- D:\WINDOWS\ServicePackFiles\i386\netlogon.dll
[2008.04.14 07:52:20 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=0098D35F91DEAB9C127360A877F2CF84 -- D:\WINDOWS\system32\netlogon.dll
< MD5 for: SCECLI.DLL >
[2008.04.14 07:52:24 | 000,187,904 | ---- | M] (Microsoft Corporation) MD5=5132443DF6FC3771A17AB4AE55DCBC28 -- D:\WINDOWS\ServicePackFiles\i386\scecli.dll
[2008.04.14 07:52:24 | 000,187,904 | ---- | M] (Microsoft Corporation) MD5=5132443DF6FC3771A17AB4AE55DCBC28 -- D:\WINDOWS\system32\scecli.dll
< MD5 for: USERINIT.EXE >
[2008.04.14 07:53:04 | 000,026,624 | ---- | M] (Microsoft Corporation) MD5=788F95312E26389D596C0FA55834E106 -- D:\WINDOWS\ServicePackFiles\i386\userinit.exe
[2008.04.14 07:53:04 | 000,026,624 | ---- | M] (Microsoft Corporation) MD5=788F95312E26389D596C0FA55834E106 -- D:\WINDOWS\system32\userinit.exe
< MD5 for: WS2IFSL.SYS >
[2001.08.23 12:00:00 | 000,012,032 | ---- | M] (Microsoft Corporation) MD5=6ABE6E225ADB5A751622A9CC3BC19CE8 -- D:\WINDOWS\system32\dllcache\ws2ifsl.sys
[2001.08.23 12:00:00 | 000,012,032 | ---- | M] (Microsoft Corporation) MD5=6ABE6E225ADB5A751622A9CC3BC19CE8 -- D:\WINDOWS\system32\drivers\ws2ifsl.sys
< %systemroot%\system32\drivers\*.sys /lockedfiles >
< %systemroot%\System32\config\*.sav >
[2006.07.18 16:42:00 | 000,376,832 | ---- | M] () -- D:\WINDOWS\system32\config\system.sav
[2006.07.18 16:42:00 | 000,610,304 | ---- | M] () -- D:\WINDOWS\system32\config\software.sav
[2006.07.18 16:42:00 | 000,094,208 | ---- | M] () -- D:\WINDOWS\system32\config\default.sav
< %systemroot%\*. /mp /s >
< %systemroot%\system32\*.dll /lockedfiles >
< End of report > Besten Dank schon mal im Voraus und die beiden txt Dateien habe ich noch angehängt.
Alex |