Zurück   Trojaner-Board > Malware entfernen > Log-Analyse und Auswertung
BKA trojaner 1.14 was nun ?

BKA trojaner 1.14 was nun ?


Log-Analyse und Auswertung: BKA trojaner 1.14 was nun ?

Windows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML.

 
Vorheriger Beitrag Vorheriger Beitrag   Nächster Beitrag Nächster Beitrag
Alt 27.07.2012, 16:18   #1
natalie123
 
BKA trojaner 1.14 was nun ? - Standard

BKA trojaner 1.14 was nun ?


Hi,

hab mir gestern den besagten BKA trojaner eingefangen

den OTLPE Scan hab ich schon gemacht und ergebnis hab ich auch gepostet,

was muß ich jetzt machen ?

Schonmal Danke für eure Hilfe

Leider war die txt zu groß um die hier anzuhängen, hab ich die mal dreist gepostet: OTL.txt

OTL logfile created on: 27.07.2012 17:06:49 - Run
OTLPE by OldTimer - Version 3.1.48.0 Folder = D:\PROGRAMS\OTLPE
Microsoft Windows XP Service Pack 3 (Version = 5.1.2600) - Type = SYSTEM
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy

2,00 Gb Total Physical Memory | 1,00 Gb Available Physical Memory | 73,00% Memory free
4,00 Gb Paging File | 3,00 Gb Available in Paging File | 86,00% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Programme
Drive C: | 69,48 Gb Total Space | 11,33 Gb Free Space | 16,31% Space Free | Partition Type: NTFS
Drive D: | 1,95 Gb Total Space | 1,63 Gb Free Space | 83,32% Space Free | Partition Type: FAT
Drive F: | 960,50 Mb Total Space | 956,55 Mb Free Space | 99,59% Space Free | Partition Type: FAT

Computer Name: MASCHINE | User Name: Administrator
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 7 Days
Using ControlSet: ControlSet001

========== Win32 Services (SafeList) ==========

SRV - (MozillaMaintenance) -- C:\Programme\Mozilla Maintenance Service\maintenanceservice.exe (Mozilla Foundation)
SRV - (JavaQuickStarterService) -- C:\Programme\Java\jre7\bin\jqs.exe (Oracle Corporation)
SRV - (AntiVirSchedulerService) -- C:\Programme\Avira\AntiVir Desktop\sched.exe (Avira Operations GmbH & Co. KG)
SRV - (AntiVirService) -- C:\Programme\Avira\AntiVir Desktop\avguard.exe (Avira Operations GmbH & Co. KG)
SRV - (SkypeUpdate) -- C:\Programme\Skype\Updater\Updater.exe (Skype Technologies)
SRV - (SUService) -- C:\Programme\Lenovo\System Update\SUService.exe (Lenovo Group Limited)
SRV - (TVT Scheduler) -- C:\Programme\Gemeinsame Dateien\Lenovo\Scheduler\tvtsched.exe (Lenovo Group Limited)
SRV - (ThinkVantage Registry Monitor Service) -- C:\Programme\Gemeinsame Dateien\Lenovo\tvt_reg_monitor_svc.exe (Lenovo Group Limited)
SRV - (AcSvc) -- C:\Programme\ThinkPad\ConnectUtilities\AcSvc.exe (Lenovo)
SRV - (AcPrfMgrSvc) -- C:\Programme\ThinkPad\ConnectUtilities\AcPrfMgrSvc.exe ()
SRV - (IPSSVC) -- C:\WINDOWS\system32\IPSSVC.EXE (Lenovo Group Limited)
SRV - (tvtnetwk) -- C:\Programme\Lenovo\Rescue and Recovery\ADM\IUService.exe ()
SRV - (btwdins) -- C:\Programme\ThinkPad\Bluetooth Software\bin\btwdins.exe (Broadcom Corporation.)
SRV - (Diskeeper) -- C:\Programme\Diskeeper Corporation\Diskeeper\DkService.exe (Diskeeper Corporation)
SRV - (WMConnectCDS) -- C:\Programme\Windows Media Connect 2\wmccds.exe (Microsoft Corporation)
SRV - (TpKmpSVC) -- C:\WINDOWS\system32\TpKmpSvc.exe ()
SRV - (IDriverT) -- C:\Programme\Gemeinsame Dateien\InstallShield\Driver\1050\Intel 32\IDriverT.exe (Macrovision Corporation)
SRV - (ose) -- C:\Programme\Gemeinsame Dateien\Microsoft Shared\Source Engine\OSE.EXE (Microsoft Corporation)


========== Driver Services (SafeList) ==========

DRV - (WDICA) -- File not found
DRV - (PDRFRAME) -- File not found
DRV - (PDRELI) -- File not found
DRV - (PDFRAME) -- File not found
DRV - (PDCOMP) -- File not found
DRV - (PCIDump) -- File not found
DRV - (PcdrNdisuio) -- File not found
DRV - (lbrtfdc) -- File not found
DRV - (Changer) -- File not found
DRV - (avipbb) -- C:\WINDOWS\system32\drivers\avipbb.sys (Avira GmbH)
DRV - (avgntflt) -- C:\WINDOWS\system32\drivers\avgntflt.sys (Avira GmbH)
DRV - (avkmgr) -- C:\WINDOWS\system32\drivers\avkmgr.sys (Avira GmbH)
DRV - (ssmdrv) -- C:\WINDOWS\system32\drivers\ssmdrv.sys (Avira GmbH)
DRV - (psadd) -- C:\WINDOWS\system32\drivers\psadd.sys (Lenovo (United States) Inc.)
DRV - (BVRPMPR5) -- C:\WINDOWS\system32\drivers\BVRPMPR5.SYS (Avanquest Software)
DRV - (V0530Dev) -- C:\WINDOWS\system32\drivers\V0530Vid.sys (Creative Technology Ltd.)
DRV - (CtClsFlt) -- C:\WINDOWS\system32\drivers\CtClsFlt.sys (Creative Technology Ltd.)
DRV - (Hardlock) -- C:\WINDOWS\system32\drivers\hardlock.sys (Aladdin Knowledge Systems Ltd.)
DRV - (aksusb) -- C:\WINDOWS\system32\drivers\aksusb.sys (Aladdin Knowledge Systems Ltd.)
DRV - (akshasp) -- C:\WINDOWS\system32\drivers\akshasp.sys (Aladdin Knowledge Systems Ltd.)
DRV - (ati2mtag) -- C:\WINDOWS\system32\drivers\ati2mtag.sys (ATI Technologies Inc.)
DRV - (PROCDD) -- C:\WINDOWS\system32\drivers\PROCDD.SYS (Lenovo Group Limited)
DRV - (Smapint) -- C:\WINDOWS\system32\drivers\SMAPINT.SYS (Microsoft Corporation)
DRV - (TDSMAPI) -- C:\WINDOWS\system32\drivers\TDSMAPI.SYS ()
DRV - (s24trans) -- C:\WINDOWS\system32\drivers\s24trans.sys (Intel Corporation)
DRV - (TSMAPIP) -- C:\WINDOWS\system32\drivers\TSMAPIP.SYS ()
DRV - (BTKRNL) -- C:\WINDOWS\system32\drivers\btkrnl.sys (Broadcom Corporation.)
DRV - (BTWUSB) -- C:\WINDOWS\system32\drivers\btwusb.sys (Broadcom Corporation.)
DRV - (TPPWRIF) -- C:\WINDOWS\system32\drivers\TPPWRIF.SYS ()
DRV - (smihlp) -- C:\Programme\ThinkVantage Fingerprint Software\smihlp.sys (UPEK Inc.)
DRV - (PrivateDisk) -- C:\Programme\Lenovo\SafeGuard PrivateDisk\privatediskm.sys (Utimaco Safeware AG)
DRV - (IBMTPCHK) -- C:\WINDOWS\system32\drivers\IBMBLDID.sys ()
DRV - (ANC) -- C:\WINDOWS\system32\drivers\ANC.sys (IBM Corp.)
DRV - (G400) -- C:\WINDOWS\system32\drivers\G400m.sys (Matrox Graphics Inc.)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =


IE - HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://www.lenovo.com/welcome/thinkpad [binary data]
IE - HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://lenovo.live.com
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0



IE - HKU\S-1-5-21-4125729320-3153985241-686834531-500\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://www.lenovo.com/welcome/thinkpad [binary data]
IE - HKU\S-1-5-21-4125729320-3153985241-686834531-500\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://lenovo.live.com
IE - HKU\S-1-5-21-4125729320-3153985241-686834531-500\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========


FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_3_300_265.dll ()
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX VOD Helper,version=1.0.0: File not found
FF - HKLM\Software\MozillaPlugins\@Google.com/GoogleEarthPlugin: C:\Programme\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF - HKLM\Software\MozillaPlugins\@google.com/npPicasa2,version=2.0.0: C:\Programme\Picasa2\npPicasa2.dll (Google, Inc.)
FF - HKLM\Software\MozillaPlugins\@google.com/npPicasa3,version=3.0.0: C:\Programme\Picasa2\npPicasa3.dll (Google, Inc.)
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.4.0: C:\WINDOWS\system32\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.4.0: C:\Programme\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@pack.google.com/Google Updater;version=14: C:\Programme\Google\Google Updater\2.4.2432.1652\npCIDetect14.dll (Google)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Programme\Google\Update\1.3.21.115\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Programme\Google\Update\1.3.21.115\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=1.1.11: C:\Programme\VideoLAN\VLC\npvlc.dll (the VideoLAN Team)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 14.0.1\extensions\\Components: C:\Programme\Mozilla Firefox\components [2012.07.17 19:03:35 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 14.0.1\extensions\\Plugins: C:\Programme\Mozilla Firefox\plugins [2012.06.07 16:27:28 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Thunderbird 14.0\extensions\\Components: C:\Programme\Mozilla Thunderbird\components [2012.06.16 13:53:03 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Thunderbird 14.0\extensions\\Plugins: C:\Programme\Mozilla Thunderbird\plugins

[2012.07.27 00:40:53 | 000,000,000 | ---D | M] (No name found) -- C:\Dokumente und Einstellungen\Administrator\Anwendungsdaten\Mozilla\Extensions
[2012.01.06 19:17:24 | 000,000,000 | ---D | M] (No name found) -- C:\Programme\Mozilla Firefox\extensions
File not found (No name found) --
[2012.07.17 19:03:35 | 000,136,672 | ---- | M] (Mozilla Foundation) -- C:\Programme\mozilla firefox\components\browsercomps.dll
[2011.05.07 13:50:06 | 000,001,392 | ---- | M] () -- C:\Programme\mozilla firefox\searchplugins\amazondotcom-de.xml
[2011.05.07 13:50:09 | 000,002,252 | ---- | M] () -- C:\Programme\mozilla firefox\searchplugins\bing.xml
[2011.05.07 13:50:09 | 000,001,153 | ---- | M] () -- C:\Programme\mozilla firefox\searchplugins\eBay-de.xml
[2011.05.07 13:50:10 | 000,006,805 | ---- | M] () -- C:\Programme\mozilla firefox\searchplugins\leo_ende_de.xml
[2011.05.07 13:50:10 | 000,001,178 | ---- | M] () -- C:\Programme\mozilla firefox\searchplugins\wikipedia-de.xml
[2011.05.07 13:50:10 | 000,001,105 | ---- | M] () -- C:\Programme\mozilla firefox\searchplugins\yahoo-de.xml

O1 HOSTS File: ([2004.08.04 14:00:00 | 000,000,820 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (AcroIEHlprObj Class) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Programme\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Programme\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (Adobe PDF Conversion Toolbar Helper) - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Programme\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Programme\Google\GoogleToolbarNotifier\5.2.4204.1700\swg.dll (Google Inc.)
O2 - BHO: (Windows Live Toolbar Helper) - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Programme\Windows Live Toolbar\msntb.dll (Microsoft Corporation)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Programme\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O2 - BHO: (CPwmIEBrowserHelper Object) - {F040E541-A427-4CF7-85D8-75E3E0F476C5} - C:\Programme\Lenovo\Client Security Solution\tvtpwm_ie_com.dll (Lenovo Group Limited)
O3 - HKLM\..\Toolbar: (Adobe PDF) - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Programme\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O3 - HKLM\..\Toolbar: (Windows Live Toolbar) - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Programme\Windows Live Toolbar\msntb.dll (Microsoft Corporation)
O4 - HKLM..\Run: [Acrobat Assistant 7.0] C:\Programme\Adobe\Acrobat 7.0\Distillr\Acrotray.exe (Adobe Systems Inc.)
O4 - HKLM..\Run: [ATICCC] C:\Programme\ATI Technologies\ATI.ACE\CLIStart.exe ()
O4 - HKLM..\Run: [avgnt] C:\Programme\Avira\AntiVir Desktop\avgnt.exe (Avira Operations GmbH & Co. KG)
O4 - HKLM..\Run: [AwaySch] C:\Programme\Lenovo\AwayTask\AwaySch.EXE (Lenovo Group Limited)
O4 - HKLM..\Run: [BLOG] C:\Programme\ThinkPad\Utilities\BATLOGEX.DLL ()
O4 - HKLM..\Run: [DiskeeperSystray] C:\Programme\Diskeeper Corporation\Diskeeper\DkIcon.exe (Diskeeper Corporation)
O4 - HKLM..\Run: [Live! Central 2] C:\Programme\Creative\Creative Live! Cam\Live! Central 2\CTLVCentral2.exe (Creative Technology Ltd)
O4 - HKLM..\Run: [Message Center Plus] C:\Programme\LENOVO\Message Center Plus\MCPLaunch.exe ()
O4 - HKLM..\Run: [Omnipage] C:\Programme\opware32.exe (ScanSoft, Inc)
O4 - HKLM..\Run: [PDService.exe] C:\Programme\Lenovo\SafeGuard PrivateDisk\pdservice.exe (Utimaco Safeware AG)
O4 - HKLM..\Run: [PWRMGRTR] C:\Programme\ThinkPad\Utilities\PWRMGRTR.DLL (Lenovo Group Limited)
O4 - HKLM..\Run: [SunJavaUpdateSched] C:\Programme\Gemeinsame Dateien\Java\Java Update\jusched.exe (Sun Microsystems, Inc.)
O4 - HKLM..\Run: [SynTPLpr] C:\Programme\Synaptics\SynTP\SynTPLpr.exe (Synaptics Incorporated)
O4 - HKLM..\Run: [TP4EX] C:\WINDOWS\System32\TP4EX.exe (Lenovo Group Limited)
O4 - HKLM..\Run: [TPKMAPHELPER] C:\Programme\ThinkPad\Utilities\TpKmapAp.exe (Lenovo)
O4 - HKLM..\Run: [TVT Scheduler Proxy] C:\Programme\Gemeinsame Dateien\Lenovo\Scheduler\scheduler_proxy.exe (Lenovo Group Limited)
O4 - HKLM..\Run: [V0530Mon.exe] C:\WINDOWS\V0530Mon.exe (Creative Technology Ltd.)
O4 - Startup: C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Autostart\Adobe Acrobat - Schnellstart.lnk = C:\WINDOWS\Installer\{AC76BA86-1033-F400-BA7E-100000000002}\SC_Acrobat.exe ()
O4 - Startup: C:\Dokumente und Einstellungen\natalie\Startmenü\Programme\Autostart\Adobe Gamma.lnk = C:\Programme\Gemeinsame Dateien\Adobe\Calibration\Adobe Gamma Loader.exe (Adobe Systems, Inc.)
O4 - Startup: C:\Dokumente und Einstellungen\natalie\Startmenü\Programme\Autostart\Dropbox.lnk = File not found
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoCDBurning = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableTaskMgr = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableRegedit = 1
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-4125729320-3153985241-686834531-500\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O8 - Extra context menu item: Add to Google Photos Screensa&ver - C:\WINDOWS\System32\GPhotos.scr (Google Inc.)
O8 - Extra context menu item: Senden an &Bluetooth-Gerät... - C:\Programme\ThinkPad\Bluetooth Software\btsendto_ie_ctx.htm ()
O9 - Extra 'Tools' menuitem : ThinkVantage Password Manager... - {0045D4BC-5189-4b67-969C-83BB1906C421} - C:\Programme\Lenovo\Client Security Solution\tvtpwm_ie_com.dll (Lenovo Group Limited)
O18 - Protocol\Handler\http\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\http\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\https\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\https\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\ipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\ms-itss {0A9007C0-4076-11D3-8789-0000F8105754} - C:\Programme\Gemeinsame Dateien\Microsoft Shared\Information Retrieval\MSITSS.DLL (Microsoft Corporation)
O18 - Protocol\Handler\mso-offdap11 {32505114-5902-49B2-880A-1F7738E5A384} - C:\Programme\Gemeinsame Dateien\Microsoft Shared\Web Components\11\OWC11.DLL (Microsoft Corporation)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Programme\Gemeinsame Dateien\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Filter\text/xml {807553E5-5146-11D5-A672-00B0D022E945} - C:\Programme\Gemeinsame Dateien\Microsoft Shared\OFFICE11\MSOXMLMF.DLL (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: GinaDLL - (tvt_gina.dll) - C:\WINDOWS\System32\tvt_gina.dll (Lenovo)
O20 - Winlogon\Notify\ACNotify: DllName - ACNotify.dll - C:\Programme\ThinkPad\ConnectUtilities\ACNotify.dll ()
O20 - Winlogon\Notify\AtiExtEvent: DllName - Ati2evxx.dll - C:\WINDOWS\System32\ati2evxx.dll (ATI Technologies Inc.)
O20 - Winlogon\Notify\AwayNotify: DllName - C:\Programme\Lenovo\AwayTask\AwayNotify.dll - C:\Programme\Lenovo\AwayTask\AwayNotify.dll (Lenovo Group Limited)
O20 - Winlogon\Notify\NavLogon: DllName - Reg Error: Value error. - Reg Error: Value error. File not found
O20 - Winlogon\Notify\psfus: DllName - psqlpwd.dll - C:\WINDOWS\System32\psqlpwd.dll (UPEK Inc.)
O20 - Winlogon\Notify\tpfnf2: DllName - notifyf2.dll - C:\WINDOWS\System32\notifyf2.dll ()
O20 - Winlogon\Notify\tphotkey: DllName - tphklock.dll - C:\WINDOWS\System32\tphklock.dll ()
O24 - Desktop Components:0 (Die derzeitige Homepage) - About:Home
O24 - Desktop WallPaper: C:\WINDOWS\Web\Wallpaper\Grüne Idylle.bmp
O24 - Desktop BackupWallPaper: C:\WINDOWS\Web\Wallpaper\Grüne Idylle.bmp
O27 - HKLM IFEO\msconfig.exe: Debugger - P9KDMF.EXE File not found
O27 - HKLM IFEO\regedit.exe: Debugger - P9KDMF.EXE File not found
O27 - HKLM IFEO\taskmgr.exe: Debugger - P9KDMF.EXE File not found
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2006.01.27 04:18:40 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O32 - Unable to obtain root file information for disk D:\
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

========== Files/Folders - Created Within 7 Days ==========

[2012.07.27 13:37:17 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\Administrator\Lokale Einstellungen\Anwendungsdaten\Mozilla
[2012.07.27 01:46:05 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\Administrator\Anwendungsdaten\Google
[2012.07.27 01:46:02 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\Administrator\Lokale Einstellungen\Anwendungsdaten\Google
[2012.07.27 00:40:53 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\Administrator\Anwendungsdaten\Mozilla
[2012.07.27 00:40:51 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\Administrator\Lokale Einstellungen\Anwendungsdaten\Thunderbird
[2012.07.27 00:40:51 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\Administrator\Anwendungsdaten\Thunderbird
[2012.07.26 23:23:51 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\Administrator\Anwendungsdaten\Avira
[2012.07.26 23:23:41 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\Administrator\Lokale Einstellungen\Anwendungsdaten\Sun
[2012.07.26 23:23:41 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\Administrator\Anwendungsdaten\Sun
[2012.07.26 23:18:57 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\Administrator\Lokale Einstellungen\Anwendungsdaten\Adobe
[2012.07.26 23:18:53 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\Administrator\Anwendungsdaten\Adobe
[2012.07.26 23:17:47 | 000,000,000 | -HSD | C] -- C:\Dokumente und Einstellungen\Administrator\IETldCache
[2009.05.29 16:20:46 | 000,451,944 | ---- | C] (Autodesk, Inc.) -- C:\Programme\Setup.exe
[2009.05.29 16:19:41 | 000,161,640 | ---- | C] (Autodesk, Inc.) -- C:\Programme\AcDelTree.exe
[2009.05.29 16:19:39 | 000,670,568 | ---- | C] (Autodesk, Inc.) -- C:\Programme\SetupAcadUi.dll
[2009.05.29 16:19:39 | 000,665,448 | ---- | C] (Autodesk, Inc.) -- C:\Programme\SetupUi.dll
[2009.05.29 16:19:39 | 000,285,000 | ---- | C] (Autodesk, Inc.) -- C:\Programme\SetupRes.dll
[2009.05.29 16:19:33 | 000,655,872 | ---- | C] (Microsoft Corporation) -- C:\Programme\msvcr90.dll
[2009.05.29 16:19:32 | 000,568,832 | ---- | C] (Microsoft Corporation) -- C:\Programme\msvcp90.dll
[2009.05.29 16:19:32 | 000,224,768 | ---- | C] (Microsoft Corporation) -- C:\Programme\msvcm90.dll
[2009.05.29 16:19:32 | 000,106,344 | ---- | C] (Autodesk, Inc.) -- C:\Programme\LiteHtml.dll
[2009.05.29 16:19:29 | 001,645,320 | ---- | C] (Microsoft Corporation) -- C:\Programme\gdiplus.dll
[2009.05.29 16:19:22 | 000,550,248 | ---- | C] (Autodesk, Inc.) -- C:\Programme\DeployUi.dll
[2009.05.29 16:19:07 | 000,014,152 | ---- | C] (Autodesk, Inc.) -- C:\Programme\ADRInstRes.dll
[2008.11.05 02:07:43 | 000,040,960 | R--- | C] (ScanSoft, Inc.) -- C:\Programme\TTSManager.dll
[2008.08.12 20:56:52 | 000,018,944 | ---- | C] ( ) -- C:\WINDOWS\System32\IMPLODE.DLL
[2002.06.03 12:54:14 | 001,310,720 | ---- | C] (ScanSoft, Inc) -- C:\Programme\OmniPage.exe
[2002.06.03 12:40:06 | 000,913,408 | ---- | C] (ScanSoft, Inc.) -- C:\Programme\opresita.dll
[2002.06.03 12:39:58 | 000,065,536 | ---- | C] (ScanSoft, Inc.) -- C:\Programme\OfficeAddin.dll
[2002.06.03 12:39:46 | 000,917,504 | ---- | C] (ScanSoft, Inc.) -- C:\Programme\opresger.dll
[2002.06.03 12:38:18 | 000,069,632 | ---- | C] (ScanSoft Corporation) -- C:\Programme\oppro32.ocr
[2002.06.03 12:38:12 | 000,049,152 | ---- | C] (ScanSoft, Inc) -- C:\Programme\opware32.exe
[2002.06.03 12:38:08 | 000,061,440 | ---- | C] (ScanSoft, Inc) -- C:\Programme\opshel32.dll
[2002.06.03 12:37:50 | 000,167,936 | ---- | C] (ScanSoft, Inc) -- C:\Programme\ophook32.dll
[2002.06.03 12:33:36 | 000,880,640 | ---- | C] (ScanSoft, Inc.) -- C:\Programme\opreseng.dll
[2002.01.03 16:59:04 | 000,712,763 | ---- | C] (ScanSoft, Inc.) -- C:\Programme\XSCAN32.psp
[2001.11.30 12:16:24 | 001,474,560 | ---- | C] (Caere Corp) -- C:\Programme\xocr32b.exe
[2001.05.19 13:42:50 | 000,167,986 | ---- | C] (ScanSoft, Inc.) -- C:\Programme\PSOM.dll
[2000.10.27 12:04:42 | 000,274,432 | ---- | C] (ScanSoft, Inc.) -- C:\Programme\psmaxapi.dll
[2000.01.18 13:45:14 | 000,098,304 | ---- | C] (Stingray Software Inc.) -- C:\Programme\OT602as.dll
[2000.01.18 13:45:04 | 000,172,032 | ---- | C] (Stingray Software Inc.) -- C:\Programme\OSC61as.dll
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[1 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]

========== Files - Modified Within 7 Days ==========

[2012.07.27 17:07:10 | 000,001,092 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2012.07.27 16:44:23 | 000,002,319 | ---- | M] () -- C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Autostart\Adobe Acrobat - Schnellstart.lnk
[2012.07.27 16:44:14 | 000,010,005 | ---- | M] () -- C:\WINDOWS\System32\PROCDB.INI
[2012.07.27 16:44:02 | 000,000,316 | ---- | M] () -- C:\WINDOWS\tasks\PMTask.job
[2012.07.27 16:43:32 | 000,000,514 | ---- | M] () -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\tvt_userinfo.ini
[2012.07.27 16:43:24 | 000,002,278 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2012.07.27 16:43:21 | 000,001,088 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2012.07.27 16:42:30 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2012.07.27 16:42:28 | 2145,832,960 | -HS- | M] () -- C:\hiberfil.sys
[2012.07.27 16:26:03 | 000,000,250 | ---- | M] () -- C:\WINDOWS\tasks\Auf Updates für Windows Live Toolbar prüfen.job
[2012.07.27 00:50:37 | 000,000,400 | -H-- | M] () -- C:\WINDOWS\ODBC.INI
[2012.07.26 23:29:40 | 000,003,216 | ---- | M] () -- C:\WINDOWS\System32\encobject.dat
[2012.07.26 23:18:07 | 000,000,802 | ---- | M] () -- C:\Dokumente und Einstellungen\Administrator\Anwendungsdaten\Microsoft\Internet Explorer\Quick Launch\Internet Explorer Browser starten.lnk
[2012.07.26 23:17:59 | 000,000,773 | ---- | M] () -- C:\Dokumente und Einstellungen\Administrator\Desktop\Windows Media Player.lnk
[2012.07.26 18:29:24 | 000,000,664 | ---- | M] () -- C:\WINDOWS\System32\d3d9caps.dat
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[1 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]

========== Files Created - No Company Name ==========

[2012.07.26 23:18:07 | 000,000,790 | ---- | C] () -- C:\Dokumente und Einstellungen\Administrator\Startmenü\Programme\Internet Explorer.lnk
[2012.07.26 23:17:59 | 000,000,773 | ---- | C] () -- C:\Dokumente und Einstellungen\Administrator\Desktop\Windows Media Player.lnk
[2012.06.17 17:30:18 | 000,355,360 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2012.04.14 17:24:32 | 000,000,032 | -H-- | C] () -- C:\WINDOWS\Menu.INI
[2012.02.16 16:19:37 | 000,003,072 | ---- | C] () -- C:\WINDOWS\System32\iacenc.dll
[2011.11.25 18:03:02 | 000,000,029 | -H-- | C] () -- C:\WINDOWS\DEBUGSM.INI
[2011.06.02 22:46:14 | 000,024,576 | ---- | C] () -- C:\WINDOWS\System32\hdsuinst.exe
[2011.06.02 22:46:13 | 000,153,088 | ---- | C] () -- C:\WINDOWS\System32\UNWISE.EXE
[2011.06.02 22:46:13 | 000,006,836 | ---- | C] () -- C:\WINDOWS\System32\UNWISE.INI
[2010.06.02 12:10:56 | 004,555,278 | ---- | C] () -- C:\WINDOWS\System32\libavcodec.dll
[2010.06.02 12:10:56 | 000,180,224 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll
[2010.06.02 12:10:56 | 000,097,792 | ---- | C] () -- C:\WINDOWS\System32\ff_unrar.dll
[2010.06.02 12:10:56 | 000,087,552 | ---- | C] () -- C:\WINDOWS\System32\ac3config.exe
[2010.06.02 12:10:54 | 000,121,856 | ---- | C] () -- C:\WINDOWS\System32\ff_liba52.dll
[2010.06.02 12:10:54 | 000,080,384 | ---- | C] () -- C:\WINDOWS\System32\mkzlib.dll
[2010.06.02 12:10:52 | 003,596,288 | ---- | C] () -- C:\WINDOWS\System32\qt-dx331.dll
[2010.06.02 12:10:52 | 001,449,935 | ---- | C] () -- C:\WINDOWS\System32\ffmpegmt.dll
[2010.06.02 12:10:52 | 000,882,688 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll
[2010.06.02 12:10:52 | 000,877,385 | ---- | C] () -- C:\WINDOWS\System32\ff_x264.dll
[2010.06.02 12:10:52 | 000,556,491 | ---- | C] () -- C:\WINDOWS\System32\libmplayer.dll
[2010.06.02 12:10:52 | 000,357,888 | ---- | C] () -- C:\WINDOWS\System32\gdsmux.exe
[2010.06.02 12:10:52 | 000,336,384 | ---- | C] () -- C:\WINDOWS\System32\ff_libfaad2.dll
[2010.06.02 12:10:52 | 000,324,096 | ---- | C] () -- C:\WINDOWS\System32\TomsMoComp_ff.dll
[2010.06.02 12:10:52 | 000,248,320 | ---- | C] () -- C:\WINDOWS\System32\ff_kernelDeint.dll
[2010.06.02 12:10:52 | 000,216,576 | ---- | C] () -- C:\WINDOWS\System32\ff_libdts.dll
[2010.06.02 12:10:52 | 000,169,984 | ---- | C] () -- C:\WINDOWS\System32\ff_samplerate.dll
[2010.06.02 12:10:52 | 000,151,552 | ---- | C] () -- C:\WINDOWS\System32\ff_libmad.dll
[2010.06.02 12:10:52 | 000,145,408 | ---- | C] () -- C:\WINDOWS\System32\libmpeg2_ff.dll
[2010.06.02 12:10:52 | 000,136,704 | ---- | C] () -- C:\WINDOWS\System32\mkv2vfr.exe
[2010.06.02 12:10:52 | 000,116,736 | ---- | C] () -- C:\WINDOWS\System32\ff_tremor.dll
[2010.06.02 12:10:52 | 000,113,152 | ---- | C] () -- C:\WINDOWS\System32\dsmux.exe
[2010.06.02 12:10:52 | 000,100,864 | ---- | C] () -- C:\WINDOWS\System32\ff_wmv9.dll
[2010.06.02 12:10:52 | 000,093,184 | ---- | C] () -- C:\WINDOWS\System32\avss.dll
[2010.06.02 12:10:52 | 000,085,504 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll
[2010.06.02 12:10:52 | 000,024,576 | ---- | C] () -- C:\WINDOWS\System32\mkunicode.dll
[2010.06.02 12:10:52 | 000,000,137 | ---- | C] () -- C:\WINDOWS\System32\Registration.ini
[2010.06.02 12:10:30 | 000,249,856 | ---- | C] () -- C:\WINDOWS\System32\dxr.dll
[2010.06.02 12:10:30 | 000,159,744 | ---- | C] () -- C:\WINDOWS\System32\mmfinfo.dll
[2010.06.02 12:10:30 | 000,150,016 | ---- | C] () -- C:\WINDOWS\System32\mkx.dll
[2010.06.02 12:10:30 | 000,141,824 | ---- | C] () -- C:\WINDOWS\System32\mp4.dll
[2010.06.02 12:10:28 | 000,154,112 | ---- | C] () -- C:\WINDOWS\System32\ts.dll
[2010.06.02 12:10:28 | 000,123,392 | ---- | C] () -- C:\WINDOWS\System32\ogm.dll
[2010.06.02 12:10:28 | 000,109,568 | ---- | C] () -- C:\WINDOWS\System32\avi.dll
[2010.06.02 12:10:28 | 000,097,792 | ---- | C] () -- C:\WINDOWS\System32\avs.dll
[2010.05.26 00:02:55 | 000,000,664 | ---- | C] () -- C:\WINDOWS\System32\d3d9caps.dat
[2010.04.15 15:39:53 | 000,000,112 | -H-- | C] () -- C:\WINDOWS\ActiveSkin.INI
[2009.09.02 02:13:25 | 000,001,175 | ---- | C] () -- C:\Programme\burner.cfg
[2009.05.29 16:21:04 | 053,031,936 | ---- | C] () -- C:\Programme\SetupDesignReview2010.msi
[2009.05.29 16:21:01 | 000,011,256 | ---- | C] () -- C:\Programme\Setup.ini
[2009.05.16 16:47:34 | 000,290,816 | ---- | C] () -- C:\WINDOWS\System32\decdll.dll
[2009.01.01 18:36:16 | 000,025,601 | -H-- | C] () -- C:\WINDOWS\CSTBox.INI
[2008.12.27 15:41:00 | 000,111,932 | ---- | C] () -- C:\WINDOWS\System32\EPPICPrinterDB.dat
[2008.12.27 15:41:00 | 000,031,053 | ---- | C] () -- C:\WINDOWS\System32\EPPICPattern131.dat
[2008.12.27 15:41:00 | 000,027,417 | ---- | C] () -- C:\WINDOWS\System32\EPPICPattern121.dat
[2008.12.27 15:41:00 | 000,026,154 | ---- | C] () -- C:\WINDOWS\System32\EPPICPattern1.dat
[2008.12.27 15:41:00 | 000,024,903 | ---- | C] () -- C:\WINDOWS\System32\EPPICPattern3.dat
[2008.12.27 15:41:00 | 000,021,390 | ---- | C] () -- C:\WINDOWS\System32\EPPICPattern5.dat
[2008.12.27 15:41:00 | 000,020,148 | ---- | C] () -- C:\WINDOWS\System32\EPPICPattern2.dat
[2008.12.27 15:41:00 | 000,011,811 | ---- | C] () -- C:\WINDOWS\System32\EPPICPattern4.dat
[2008.12.27 15:41:00 | 000,004,943 | ---- | C] () -- C:\WINDOWS\System32\EPPICPattern6.dat
[2008.12.27 15:41:00 | 000,001,146 | ---- | C] () -- C:\WINDOWS\System32\EPPICPresetData_DU.dat
[2008.12.27 15:41:00 | 000,001,139 | ---- | C] () -- C:\WINDOWS\System32\EPPICPresetData_PT.dat
[2008.12.27 15:41:00 | 000,001,139 | ---- | C] () -- C:\WINDOWS\System32\EPPICPresetData_BP.dat
[2008.12.27 15:41:00 | 000,001,136 | ---- | C] () -- C:\WINDOWS\System32\EPPICPresetData_ES.dat
[2008.12.27 15:41:00 | 000,001,129 | ---- | C] () -- C:\WINDOWS\System32\EPPICPresetData_FR.dat
[2008.12.27 15:41:00 | 000,001,129 | ---- | C] () -- C:\WINDOWS\System32\EPPICPresetData_CF.dat
[2008.12.27 15:41:00 | 000,001,120 | ---- | C] () -- C:\WINDOWS\System32\EPPICPresetData_IT.dat
[2008.12.27 15:41:00 | 000,001,107 | ---- | C] () -- C:\WINDOWS\System32\EPPICPresetData_GE.dat
[2008.12.27 15:41:00 | 000,001,104 | ---- | C] () -- C:\WINDOWS\System32\EPPICPresetData_EN.dat
[2008.12.27 15:41:00 | 000,000,097 | ---- | C] () -- C:\WINDOWS\System32\PICSDK.ini
[2008.12.27 15:25:41 | 000,000,025 | -H-- | C] () -- C:\WINDOWS\CSES20.ini
[2008.11.13 20:49:54 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\IMPORT71.INI
[2008.11.05 02:24:47 | 000,000,063 | ---- | C] () -- C:\Programme\xscan32.dat
[2008.11.05 02:07:44 | 000,077,123 | R--- | C] () -- C:\Programme\ReadMeGer.htm
[2008.11.05 02:07:44 | 000,074,066 | R--- | C] () -- C:\Programme\ReadMeIta.htm
[2008.11.05 02:07:44 | 000,025,509 | R--- | C] () -- C:\Programme\omnipage.jpg
[2008.11.05 02:07:44 | 000,000,929 | R--- | C] () -- C:\Programme\SupportGer.htm
[2008.11.05 02:07:44 | 000,000,906 | R--- | C] () -- C:\Programme\SupportIta.htm
[2008.11.05 02:07:43 | 000,065,603 | R--- | C] () -- C:\Programme\ReadMeEng.htm
[2008.11.05 02:07:43 | 000,062,762 | R--- | C] () -- C:\Programme\uninstall.ini
[2008.11.05 02:07:43 | 000,003,321 | R--- | C] () -- C:\Programme\Rendering.dat
[2008.11.05 02:07:43 | 000,000,906 | R--- | C] () -- C:\Programme\SupportEng.htm
[2008.11.05 02:07:36 | 000,000,429 | -H-- | C] () -- C:\WINDOWS\MAXLINK.INI
[2008.08.12 20:56:50 | 000,210,944 | ---- | C] () -- C:\WINDOWS\System32\Msvcrt10.dll
[2008.08.12 20:51:24 | 000,000,073 | -H-- | C] () -- C:\WINDOWS\Risxtd.ini
[2008.08.12 16:52:22 | 000,000,400 | -H-- | C] () -- C:\WINDOWS\ODBC.INI
[2008.08.07 22:06:23 | 000,001,144 | -H-- | C] () -- C:\WINDOWS\mozver.dat
[2008.07.22 12:21:41 | 000,000,056 | -H-- | C] () -- C:\WINDOWS\System32\ezsidmv.dat
[2008.07.20 14:39:58 | 000,008,706 | -H-- | C] () -- C:\WINDOWS\cdplayer.ini
[2008.07.05 15:21:16 | 000,054,812 | -H-- | C] () -- C:\WINDOWS\System32\mlfcache.dat
[2008.06.03 18:03:28 | 000,003,216 | ---- | C] () -- C:\WINDOWS\System32\encobject.dat
[2008.06.03 17:58:24 | 000,000,514 | ---- | C] () -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\tvt_userinfo.ini
[2008.06.03 16:56:21 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\nsreg.dat
[2008.05.30 14:08:51 | 000,000,146 | ---- | C] () -- C:\WINDOWS\system32\config\systemprofile\Lokale Einstellungen\Anwendungsdaten\fusioncache.dat
[2008.05.24 05:13:36 | 000,073,782 | ---- | C] () -- C:\WINDOWS\System32\ibmpmsvc.exe
[2008.05.23 22:03:06 | 000,000,061 | -H-- | C] () -- C:\WINDOWS\smscfg.ini
[2008.05.23 21:46:04 | 000,023,552 | ---- | C] () -- C:\WINDOWS\System32\drivers\psasrv.exe
[2008.05.23 21:45:40 | 000,006,016 | ---- | C] () -- C:\WINDOWS\System32\drivers\IBMBLDID.sys
[2008.05.23 21:44:54 | 000,114,688 | -H-- | C] () -- C:\WINDOWS\desktopset.exe
[2008.05.23 21:40:37 | 000,000,040 | ---- | C] () -- C:\WINDOWS\System32\profile.dat
[2008.05.23 21:37:52 | 000,000,196 | -H-- | C] () -- C:\WINDOWS\wininit.ini
[2008.05.23 21:36:11 | 000,204,800 | ---- | C] () -- C:\WINDOWS\System32\IVIresizeW7.dll
[2008.05.23 21:36:11 | 000,200,704 | ---- | C] () -- C:\WINDOWS\System32\IVIresizeA6.dll
[2008.05.23 21:36:11 | 000,192,512 | ---- | C] () -- C:\WINDOWS\System32\IVIresizeP6.dll
[2008.05.23 21:36:11 | 000,192,512 | ---- | C] () -- C:\WINDOWS\System32\IVIresizeM6.dll
[2008.05.23 21:36:11 | 000,188,416 | ---- | C] () -- C:\WINDOWS\System32\IVIresizePX.dll
[2008.05.23 21:36:11 | 000,020,480 | ---- | C] () -- C:\WINDOWS\System32\IVIresize.dll
[2008.05.23 21:29:32 | 000,133,583 | ---- | C] () -- C:\WINDOWS\System32\atiicdxx.dat
[2008.05.23 21:28:37 | 000,045,056 | ---- | C] () -- C:\WINDOWS\System32\FPCALL.dll
[2008.05.23 21:26:16 | 000,032,768 | ---- | C] () -- C:\WINDOWS\System32\TpKmpSvc.exe
[2008.05.23 21:25:59 | 000,077,824 | ---- | C] () -- C:\WINDOWS\System32\SynTPCoI.dll
[2008.05.23 21:25:44 | 000,016,384 | -H-- | C] () -- C:\WINDOWS\PWMBTHLP.EXE
[2008.05.23 21:25:44 | 000,004,442 | ---- | C] () -- C:\WINDOWS\System32\drivers\TPPWRIF.SYS
[2008.05.23 21:25:29 | 000,009,343 | ---- | C] () -- C:\WINDOWS\System32\drivers\TDSMAPI.SYS
[2008.05.23 21:20:08 | 000,000,138 | ---- | C] () -- C:\WINDOWS\System32\Softkbd.exe.config
[2006.08.17 10:00:13 | 000,010,005 | ---- | C] () -- C:\WINDOWS\System32\PROCDB.INI
[2006.08.17 10:00:09 | 000,000,487 | ---- | C] () -- C:\WINDOWS\System32\IPSCtrl.INI
[2006.08.03 03:27:54 | 000,024,576 | ---- | C] () -- C:\WINDOWS\System32\tphklock.dll
[2006.08.03 03:27:52 | 000,028,672 | ---- | C] () -- C:\WINDOWS\System32\notifyf2.dll
[2006.06.14 18:26:54 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\px.ini
[2006.06.12 12:27:00 | 000,073,728 | ---- | C] () -- C:\WINDOWS\System32\DEVMAN.DLL
[2006.05.31 14:37:38 | 000,090,112 | ---- | C] () -- C:\WINDOWS\System32\btprn2k.dll
[2006.05.04 10:36:12 | 000,245,760 | R--- | C] () -- C:\WINDOWS\System32\setupsup.dll
[2006.02.16 10:18:38 | 000,000,146 | ---- | C] () -- C:\Dokumente und Einstellungen\Administrator\Lokale Einstellungen\Anwendungsdaten\fusioncache.dat
[2006.01.27 19:18:01 | 000,000,849 | -H-- | C] () -- C:\WINDOWS\orun32.ini
[2006.01.27 19:05:14 | 000,002,963 | ---- | C] () -- C:\WINDOWS\System32\OEMINFO.INI
[2006.01.27 04:25:08 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat
[2006.01.27 04:15:11 | 000,021,740 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat
[2006.01.27 03:01:44 | 000,459,818 | ---- | C] () -- C:\WINDOWS\System32\perfh007.dat
[2006.01.27 03:01:44 | 000,269,480 | ---- | C] () -- C:\WINDOWS\System32\perfi007.dat
[2006.01.27 03:01:44 | 000,085,144 | ---- | C] () -- C:\WINDOWS\System32\perfc007.dat
[2006.01.27 03:01:44 | 000,034,478 | ---- | C] () -- C:\WINDOWS\System32\perfd007.dat
[2006.01.27 03:01:24 | 000,004,569 | ---- | C] () -- C:\WINDOWS\System32\secupd.dat
[2006.01.27 03:01:21 | 000,441,880 | ---- | C] () -- C:\WINDOWS\System32\perfh009.dat
[2006.01.27 03:01:21 | 000,272,128 | ---- | C] () -- C:\WINDOWS\System32\perfi009.dat
[2006.01.27 03:01:21 | 000,071,816 | ---- | C] () -- C:\WINDOWS\System32\perfc009.dat
[2006.01.27 03:01:21 | 000,028,626 | ---- | C] () -- C:\WINDOWS\System32\perfd009.dat
[2006.01.27 03:01:19 | 000,004,547 | ---- | C] () -- C:\WINDOWS\System32\oembios.dat
[2006.01.27 03:01:17 | 013,107,200 | ---- | C] () -- C:\WINDOWS\System32\oembios.bin
[2006.01.27 03:01:15 | 000,000,741 | ---- | C] () -- C:\WINDOWS\System32\noise.dat
[2006.01.27 03:01:08 | 000,673,088 | ---- | C] () -- C:\WINDOWS\System32\mlang.dat
[2006.01.27 03:01:08 | 000,046,258 | ---- | C] () -- C:\WINDOWS\System32\mib.bin
[2006.01.27 03:01:06 | 000,001,025 | ---- | C] () -- C:\WINDOWS\System32\y22otun.dll
[2006.01.27 03:01:06 | 000,001,025 | ---- | C] () -- C:\WINDOWS\System32\grcauth2.dll
[2006.01.27 03:01:06 | 000,001,025 | ---- | C] () -- C:\WINDOWS\System32\grcauth1.dll
[2006.01.27 03:01:06 | 000,001,025 | ---- | C] () -- C:\WINDOWS\System32\clauth2.dll
[2006.01.27 03:01:06 | 000,001,025 | ---- | C] () -- C:\WINDOWS\System32\clauth1.dll
[2006.01.27 03:01:06 | 000,000,204 | ---- | C] () -- C:\WINDOWS\System32\odkrt0f.dll
[2006.01.27 03:01:06 | 000,000,100 | ---- | C] () -- C:\WINDOWS\System32\prsgrc.dll
[2006.01.27 03:01:06 | 000,000,072 | ---- | C] () -- C:\WINDOWS\System32\ssprs.dll
[2006.01.27 03:01:06 | 000,000,016 | -H-- | C] () -- C:\WINDOWS\System32\msd8iw9.dll
[2006.01.27 03:01:06 | 000,000,016 | -H-- | C] () -- C:\WINDOWS\System32\l33tsad.dll
[2006.01.27 03:01:02 | 000,218,003 | ---- | C] () -- C:\WINDOWS\System32\dssec.dat
[2006.01.27 03:00:53 | 000,001,804 | ---- | C] () -- C:\WINDOWS\System32\dcache.bin
[2006.01.26 19:09:45 | 000,004,161 | -H-- | C] () -- C:\WINDOWS\ODBCINST.INI
[2002.06.03 13:13:22 | 000,106,496 | ---- | C] () -- C:\Programme\SetRgOP.exe
[2002.06.03 13:12:56 | 000,106,496 | ---- | C] () -- C:\Programme\SetRgScn.exe
[2002.06.03 12:39:38 | 000,172,032 | ---- | C] () -- C:\Programme\easytb32.dll
[2002.06.03 12:39:32 | 000,032,768 | ---- | C] () -- C:\Programme\ScheduleTimer.exe
[2002.06.03 12:39:28 | 000,159,744 | ---- | C] () -- C:\Programme\Schedule.exe
[2002.06.03 12:38:54 | 000,135,220 | ---- | C] () -- C:\Programme\ScheduleOptions.dll
[2002.06.03 12:38:44 | 000,028,672 | ---- | C] () -- C:\Programme\OpInstance.dll
[2002.06.03 12:38:42 | 000,081,920 | ---- | C] () -- C:\Programme\OCRWizard.dll
[2002.06.03 12:37:30 | 000,090,112 | ---- | C] () -- C:\Programme\OfficeAut.dll
[2002.06.03 12:36:06 | 000,131,072 | ---- | C] () -- C:\Programme\Image.dll
[2002.06.03 12:35:52 | 000,053,248 | ---- | C] () -- C:\Programme\Met2OPD.dll
[2002.06.03 12:35:36 | 000,135,168 | ---- | C] () -- C:\Programme\MetaFile.dll
[2002.06.03 12:33:30 | 000,045,056 | ---- | C] () -- C:\Programme\OpElement.dll
[2002.06.03 12:33:06 | 000,057,344 | ---- | C] () -- C:\Programme\operrors.dll
[2002.06.03 12:33:02 | 000,024,576 | ---- | C] () -- C:\Programme\OpComCtl.dll
[2002.06.03 12:32:58 | 000,122,880 | ---- | C] () -- C:\Programme\Options.dll
[2002.05.31 13:55:38 | 001,425,408 | ---- | C] () -- C:\Programme\Eng7Shrd.dll
[2002.05.31 13:49:22 | 000,045,056 | ---- | C] () -- C:\Programme\regexp.dll
[2002.02.27 15:38:52 | 000,490,232 | ---- | C] () -- C:\Programme\opproita.chm
[2002.02.27 15:38:38 | 000,479,700 | ---- | C] () -- C:\Programme\opproger.chm
[2002.02.27 15:38:12 | 000,428,056 | ---- | C] () -- C:\Programme\opproeng.chm
[2002.02.27 12:51:44 | 000,671,744 | ---- | C] () -- C:\Programme\LEditor.dll
[2002.02.27 12:51:30 | 000,462,848 | ---- | C] () -- C:\Programme\Eng7Rec.dll
[2002.02.27 12:51:24 | 000,061,440 | ---- | C] () -- C:\Programme\Rndot.dll
[2002.02.27 12:51:22 | 002,678,784 | ---- | C] () -- C:\Programme\formatter.dll
[2002.02.27 12:51:10 | 000,024,576 | ---- | C] () -- C:\Programme\Rndsinso.dll
[2002.02.27 12:51:08 | 000,630,784 | ---- | C] () -- C:\Programme\MorPF.dll
[2002.02.27 12:50:58 | 000,630,784 | ---- | C] () -- C:\Programme\MorIF.dll
[2002.02.27 12:50:46 | 000,077,824 | ---- | C] () -- C:\Programme\Rendering.dll
[2002.02.27 12:49:54 | 000,258,048 | ---- | C] () -- C:\Programme\WPCnv.dlc
[2002.02.27 12:49:50 | 000,307,200 | ---- | C] () -- C:\Programme\WordCnv.dlc
[2002.02.27 12:49:04 | 000,077,824 | ---- | C] () -- C:\Programme\ConvICF.dlc
[2002.02.27 12:48:12 | 000,069,632 | ---- | C] () -- C:\Programme\TxtConv.dlc
[2002.02.27 12:48:10 | 000,409,600 | ---- | C] () -- C:\Programme\HTMLCnv.dlc
[2002.02.27 12:48:10 | 000,172,032 | ---- | C] () -- C:\Programme\RtfConv.dlc
[2002.02.27 12:47:46 | 000,389,120 | ---- | C] () -- C:\Programme\ExcelCnv.dlc
[2002.02.27 12:47:36 | 002,109,440 | ---- | C] () -- C:\Programme\LecsoMgr.dll
[2002.02.27 12:47:36 | 000,258,048 | ---- | C] () -- C:\Programme\PreRendering.dll
[2002.02.27 12:46:30 | 000,630,784 | ---- | C] () -- C:\Programme\Mor.dll
[2002.02.20 20:54:00 | 002,199,552 | ---- | C] () -- C:\Programme\xocr.dll
[2002.02.20 20:46:12 | 000,208,896 | ---- | C] () -- C:\Programme\RNSCNSTP.dll
[2002.02.20 20:42:54 | 000,032,768 | ---- | C] () -- C:\Programme\RnXScanAPP.rsd
[2002.02.20 20:42:50 | 000,069,632 | ---- | C] () -- C:\Programme\RnRSD.dll
[2002.02.20 20:42:46 | 000,020,480 | ---- | C] () -- C:\Programme\RnRSDSCS.dll
[2002.02.20 20:42:44 | 000,024,576 | ---- | C] () -- C:\Programme\RnRSDOS.dll
[2002.02.20 20:39:58 | 000,024,576 | ---- | C] () -- C:\Programme\rndsdawg.dll
[2002.02.20 20:37:08 | 000,188,416 | ---- | C] () -- C:\Programme\W4w48t.dll
[2002.02.20 20:37:02 | 000,163,840 | ---- | C] () -- C:\Programme\G4g615t.dll
[2002.02.20 20:36:58 | 000,139,264 | ---- | C] () -- C:\Programme\W4w07t.dll
[2002.02.20 20:36:54 | 000,163,840 | ---- | C] () -- C:\Programme\G4g606t.dll
[2002.02.20 20:36:50 | 000,176,128 | ---- | C] () -- C:\Programme\W4w49t.dll
[2002.02.20 20:36:42 | 000,147,456 | ---- | C] () -- C:\Programme\W4w107t.dll
[2002.02.20 20:36:36 | 000,167,936 | ---- | C] () -- C:\Programme\G4g612t.dll
[2002.02.20 20:36:32 | 000,167,936 | ---- | C] () -- C:\Programme\W4w42t.dll
[2002.02.20 20:36:28 | 000,172,032 | ---- | C] () -- C:\Programme\G4g610t.dll
[2002.02.20 20:36:26 | 000,081,920 | ---- | C] () -- C:\Programme\W4w21t.dll
[2002.02.20 20:36:22 | 000,176,128 | ---- | C] () -- C:\Programme\G4g521t.dll
[2002.02.12 17:09:04 | 000,472,310 | ---- | C] () -- C:\Programme\splRGB.bjk
[2002.02.12 17:08:44 | 000,159,332 | ---- | C] () -- C:\Programme\spl256.bjk
[2001.11.30 12:29:00 | 000,528,384 | ---- | C] () -- C:\Programme\LecsoDiff.dll
[2001.11.16 17:44:34 | 000,061,952 | ---- | C] () -- C:\Programme\aware_ppt.ppa
[2001.11.16 17:41:58 | 000,043,520 | ---- | C] () -- C:\Programme\aware_excel.xla
[2001.11.14 13:56:00 | 001,802,240 | ---- | C] () -- C:\WINDOWS\System32\lcppn21.dll
[2001.11.12 17:57:38 | 000,021,262 | ---- | C] () -- C:\Programme\aware_word.bas
[2001.07.12 17:14:12 | 000,020,480 | ---- | C] () -- C:\WINDOWS\System32\shelexec.exe
[2001.05.18 19:19:30 | 000,000,175 | ---- | C] () -- C:\Programme\directocr.ini
[2001.05.08 12:45:40 | 000,002,340 | ---- | C] () -- C:\Programme\scansoft.jpg
[2001.04.26 17:55:18 | 000,213,922 | ---- | C] () -- C:\Programme\recogn.bct
[2001.03.06 16:03:08 | 000,001,270 | ---- | C] () -- C:\Programme\oppp_n.bmp
[2001.03.06 16:03:04 | 000,001,270 | ---- | C] () -- C:\Programme\oppp_s.bmp
[2001.02.27 17:41:06 | 000,006,764 | ---- | C] () -- C:\Programme\OURDICT.dat
[2001.02.09 11:13:44 | 000,022,432 | ---- | C] () -- C:\Programme\TUDAS.FA
[2001.01.04 16:00:06 | 000,000,431 | ---- | C] () -- C:\Programme\SCANNER.ini
[2000.11.20 14:30:12 | 000,007,376 | ---- | C] () -- C:\Programme\CURTWORD.dat
[2000.05.08 22:20:58 | 000,530,244 | ---- | C] () -- C:\Programme\XISWDB.BIN
[2000.05.08 22:20:58 | 000,489,303 | ---- | C] () -- C:\Programme\XISWDD.BIN
[2000.05.08 22:20:58 | 000,085,100 | ---- | C] () -- C:\Programme\XISWDE.BIN
[2000.05.08 22:20:58 | 000,034,559 | ---- | C] () -- C:\Programme\XISWDC.BIN
[2000.05.08 22:20:58 | 000,009,684 | ---- | C] () -- C:\Programme\XISWDP.BIN
[2000.05.08 22:20:58 | 000,008,794 | ---- | C] () -- C:\Programme\XISWDS.BIN
[2000.05.08 22:20:58 | 000,004,364 | ---- | C] () -- C:\Programme\XISWDZ.BIN
[2000.05.08 22:20:56 | 000,527,108 | ---- | C] () -- C:\Programme\XISPNB.BIN
[2000.05.08 22:20:56 | 000,222,108 | ---- | C] () -- C:\Programme\XISPND.BIN
[2000.05.08 22:20:56 | 000,085,100 | ---- | C] () -- C:\Programme\XISPNE.BIN
[2000.05.08 22:20:56 | 000,034,949 | ---- | C] () -- C:\Programme\XISPNC.BIN
[2000.05.08 22:20:56 | 000,011,434 | ---- | C] () -- C:\Programme\XISPNS.BIN
[2000.05.08 22:20:56 | 000,009,648 | ---- | C] () -- C:\Programme\XISPNP.BIN
[2000.05.08 22:20:56 | 000,004,622 | ---- | C] () -- C:\Programme\XISPNZ.BIN
[2000.05.08 22:20:56 | 000,004,596 | ---- | C] () -- C:\Programme\XIPRTZ.BIN
[2000.05.08 22:20:54 | 000,537,770 | ---- | C] () -- C:\Programme\XIPRTB.BIN
[2000.05.08 22:20:54 | 000,086,721 | ---- | C] () -- C:\Programme\XIPRTD.BIN
[2000.05.08 22:20:54 | 000,085,100 | ---- | C] () -- C:\Programme\XIPRTE.BIN
[2000.05.08 22:20:54 | 000,085,100 | ---- | C] () -- C:\Programme\XINRWE.BIN
[2000.05.08 22:20:54 | 000,041,501 | ---- | C] () -- C:\Programme\XIPRTC.BIN
[2000.05.08 22:20:54 | 000,016,738 | ---- | C] () -- C:\Programme\XIPRTS.BIN
[2000.05.08 22:20:54 | 000,009,684 | ---- | C] () -- C:\Programme\XIPRTP.BIN
[2000.05.08 22:20:54 | 000,009,684 | ---- | C] () -- C:\Programme\XINRWP.BIN
[2000.05.08 22:20:54 | 000,007,074 | ---- | C] () -- C:\Programme\XINRWS.BIN
[2000.05.08 22:20:54 | 000,004,378 | ---- | C] () -- C:\Programme\XINRWZ.BIN
[2000.05.08 22:20:52 | 000,523,560 | ---- | C] () -- C:\Programme\XINRWB.BIN
[2000.05.08 22:20:52 | 000,345,242 | ---- | C] () -- C:\Programme\XINRWD.BIN
[2000.05.08 22:20:52 | 000,161,909 | ---- | C] () -- C:\Programme\XIITLD.BIN
[2000.05.08 22:20:52 | 000,085,100 | ---- | C] () -- C:\Programme\XIITLE.BIN
[2000.05.08 22:20:52 | 000,032,607 | ---- | C] () -- C:\Programme\XINRWC.BIN
[2000.05.08 22:20:52 | 000,019,238 | ---- | C] () -- C:\Programme\XIITLS.BIN
[2000.05.08 22:20:52 | 000,009,656 | ---- | C] () -- C:\Programme\XIITLP.BIN
[2000.05.08 22:20:52 | 000,004,506 | ---- | C] () -- C:\Programme\XIITLZ.BIN
[2000.05.08 22:20:50 | 000,476,018 | ---- | C] () -- C:\Programme\XIITLB.BIN
[2000.05.08 22:20:50 | 000,458,050 | ---- | C] () -- C:\Programme\XIGRMB.BIN
[2000.05.08 22:20:50 | 000,249,547 | ---- | C] () -- C:\Programme\XIGRMD.BIN
[2000.05.08 22:20:50 | 000,085,100 | ---- | C] () -- C:\Programme\XIGRME.BIN
[2000.05.08 22:20:50 | 000,035,525 | ---- | C] () -- C:\Programme\XIITLC.BIN
[2000.05.08 22:20:50 | 000,035,068 | ---- | C] () -- C:\Programme\XIGRMC.BIN
[2000.05.08 22:20:50 | 000,019,346 | ---- | C] () -- C:\Programme\XIGRMS.BIN
[2000.05.08 22:20:50 | 000,009,656 | ---- | C] () -- C:\Programme\XIGRMP.BIN
[2000.05.08 22:20:50 | 000,004,298 | ---- | C] () -- C:\Programme\XIGRMZ.BIN
[2000.05.08 22:20:48 | 000,495,908 | ---- | C] () -- C:\Programme\XIFRNB.BIN
[2000.05.08 22:20:48 | 000,303,591 | ---- | C] () -- C:\Programme\XIFRND.BIN
[2000.05.08 22:20:48 | 000,085,100 | ---- | C] () -- C:\Programme\XIFRNE.BIN
[2000.05.08 22:20:48 | 000,056,724 | ---- | C] () -- C:\Programme\XIFRNC.BIN
[2000.05.08 22:20:48 | 000,021,046 | ---- | C] () -- C:\Programme\XIFRNS.BIN
[2000.05.08 22:20:48 | 000,009,692 | ---- | C] () -- C:\Programme\XIFRNP.BIN
[2000.05.08 22:20:48 | 000,004,354 | ---- | C] () -- C:\Programme\XIFRNZ.BIN
[2000.05.08 22:20:46 | 000,517,334 | ---- | C] () -- C:\Programme\XIFINB.BIN
[2000.05.08 22:20:46 | 000,431,439 | ---- | C] () -- C:\Programme\XIFIND.BIN
[2000.05.08 22:20:46 | 000,085,100 | ---- | C] () -- C:\Programme\XIFINE.BIN
[2000.05.08 22:20:46 | 000,030,237 | ---- | C] () -- C:\Programme\XIFINC.BIN
[2000.05.08 22:20:46 | 000,009,684 | ---- | C] () -- C:\Programme\XIFINP.BIN
[2000.05.08 22:20:46 | 000,007,394 | ---- | C] () -- C:\Programme\XIFINS.BIN
[2000.05.08 22:20:46 | 000,004,316 | ---- | C] () -- C:\Programme\XIFINZ.BIN
[2000.05.08 22:20:44 | 000,004,654 | ---- | C] () -- C:\Programme\XIDUTZ.BIN
[2000.05.08 22:20:42 | 000,531,718 | ---- | C] () -- C:\Programme\XIDUTB.BIN
[2000.05.08 22:20:42 | 000,390,070 | ---- | C] () -- C:\Programme\XIDAND.BIN
[2000.05.08 22:20:42 | 000,246,288 | ---- | C] () -- C:\Programme\XIDUTD.BIN
[2000.05.08 22:20:42 | 000,085,100 | ---- | C] () -- C:\Programme\XIDUTE.BIN
[2000.05.08 22:20:42 | 000,085,100 | ---- | C] () -- C:\Programme\XIDANE.BIN
[2000.05.08 22:20:42 | 000,038,538 | ---- | C] () -- C:\Programme\XIDUTC.BIN
[2000.05.08 22:20:42 | 000,009,684 | ---- | C] () -- C:\Programme\XIDANP.BIN
[2000.05.08 22:20:42 | 000,009,660 | ---- | C] () -- C:\Programme\XIDUTP.BIN
[2000.05.08 22:20:42 | 000,007,914 | ---- | C] () -- C:\Programme\XIDUTS.BIN
[2000.05.08 22:20:42 | 000,005,954 | ---- | C] () -- C:\Programme\XIDANS.BIN
[2000.05.08 22:20:42 | 000,004,482 | ---- | C] () -- C:\Programme\XIDANZ.BIN
[2000.05.08 22:20:40 | 000,526,932 | ---- | C] () -- C:\Programme\XIBRZB.BIN
[2000.05.08 22:20:40 | 000,525,816 | ---- | C] () -- C:\Programme\XIDANB.BIN
[2000.05.08 22:20:40 | 000,087,689 | ---- | C] () -- C:\Programme\XIBRZD.BIN
[2000.05.08 22:20:40 | 000,085,100 | ---- | C] () -- C:\Programme\XIBRZE.BIN
[2000.05.08 22:20:40 | 000,041,561 | ---- | C] () -- C:\Programme\XIBRZC.BIN
[2000.05.08 22:20:40 | 000,037,688 | ---- | C] () -- C:\Programme\XIDANC.BIN
[2000.05.08 22:20:40 | 000,009,684 | ---- | C] () -- C:\Programme\XIBRZP.BIN
[2000.05.08 22:20:40 | 000,008,634 | ---- | C] () -- C:\Programme\XIBRZS.BIN
[2000.05.08 22:20:40 | 000,004,522 | ---- | C] () -- C:\Programme\XIBRZZ.BIN
[1999.11.12 15:09:46 | 000,265,349 | ---- | C] () -- C:\Programme\ICDLLW32.DLL
[1999.11.12 15:06:38 | 000,124,969 | ---- | C] () -- C:\Programme\ICHUNW32.DLL
[1999.10.28 14:08:46 | 000,000,938 | ---- | C] () -- C:\Programme\Tev.szo
[1998.12.01 08:37:32 | 000,482,384 | ---- | C] () -- C:\Programme\Xiengb.bin
[1998.12.01 08:37:32 | 000,237,741 | ---- | C] () -- C:\Programme\Xiengd.bin
[1998.12.01 08:37:32 | 000,082,608 | ---- | C] () -- C:\Programme\Xienge.bin
[1998.12.01 08:37:32 | 000,026,302 | ---- | C] () -- C:\Programme\Xiengc.bin
[1998.12.01 08:37:32 | 000,015,386 | ---- | C] () -- C:\Programme\xiengl.bin
[1998.12.01 08:37:32 | 000,015,054 | ---- | C] () -- C:\Programme\Xiengs.bin
[1998.12.01 08:37:32 | 000,011,296 | ---- | C] () -- C:\Programme\Xiengf.bin
[1998.12.01 08:37:32 | 000,006,556 | ---- | C] () -- C:\Programme\Xiengp.bin
[1998.12.01 08:37:32 | 000,003,894 | ---- | C] () -- C:\Programme\Xiengz.bin
[1998.10.09 04:51:00 | 000,831,781 | ---- | C] () -- C:\Programme\R_GER.DAT
[1998.10.09 04:51:00 | 000,655,435 | ---- | C] () -- C:\Programme\R_DUT.DAT
[1997.05.13 18:50:18 | 000,542,804 | ---- | C] () -- C:\Programme\RECOGN24.BCT
[1996.07.05 12:22:52 | 000,053,914 | ---- | C] () -- C:\Programme\rnrsd.msg
[1996.03.22 00:32:26 | 000,162,304 | ---- | C] () -- C:\WINDOWS\System32\DLWBC31.DLL
[1995.12.06 18:01:48 | 000,521,315 | ---- | C] () -- C:\Programme\R_DAN.DAT
[1995.10.26 14:27:08 | 000,288,519 | ---- | C] () -- C:\Programme\R_SPA.DAT
[1995.10.26 14:07:22 | 000,368,635 | ---- | C] () -- C:\Programme\R_SWE.DAT
[1995.10.26 13:44:04 | 000,344,775 | ---- | C] () -- C:\Programme\R_ITA.DAT
[1995.10.20 12:41:06 | 000,345,971 | ---- | C] () -- C:\Programme\R_POR.DAT
[1995.10.17 19:58:24 | 000,339,237 | ---- | C] () -- C:\Programme\R_FRE.DAT
[1995.09.29 17:41:56 | 000,607,892 | ---- | C] () -- C:\Programme\R_GRE.DAT
[1995.09.15 12:59:20 | 000,622,988 | ---- | C] () -- C:\Programme\R_RUS.DAT
[1995.09.15 10:58:44 | 000,443,758 | ---- | C] () -- C:\Programme\R_FIN.DAT
[1995.09.15 09:55:42 | 000,641,241 | ---- | C] () -- C:\Programme\R_CZH.DAT
[1995.09.15 09:44:54 | 000,236,245 | ---- | C] () -- C:\Programme\R_CAT.DAT
[1995.09.14 23:19:02 | 000,285,679 | ---- | C] () -- C:\Programme\R_ENG.DAT
[1995.07.05 18:26:36 | 000,755,560 | ---- | C] () -- C:\Programme\R_HUN.DAT
[1995.06.26 22:42:00 | 000,805,837 | ---- | C] () -- C:\Programme\R_POL.DAT
[1994.03.15 17:08:24 | 000,762,368 | ---- | C] () -- C:\Programme\R_NOR.DAT

========== LOP Check ==========

[2012.07.26 23:17:18 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Administrator\Anwendungsdaten\Lenovo
[2008.05.23 21:51:59 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Administrator\Anwendungsdaten\ThinkVantage
[2012.07.27 00:40:51 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Administrator\Anwendungsdaten\Thunderbird
[2009.08.14 14:17:23 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\4D
[2009.05.29 16:39:55 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Autodesk
[2008.12.27 15:40:11 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\EPSON
[2008.08.13 01:59:47 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\GARMIN
[2009.09.17 12:12:05 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Lenovo
[2012.05.31 17:52:05 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\PCDr
[2008.11.05 02:26:11 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\ScanSoft
[2008.11.05 02:17:17 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\SSScanAppDataDir
[2008.11.05 02:24:47 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\SSScanWizard
[2008.08.12 21:39:24 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\StatSoft
[2009.08.26 23:44:54 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\TEMP
[2008.12.27 15:43:56 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\UDL
[2012.07.27 16:26:03 | 000,000,250 | ---- | M] () -- C:\WINDOWS\Tasks\Auf Updates für Windows Live Toolbar prüfen.job
[2012.07.27 16:44:02 | 000,000,316 | ---- | M] () -- C:\WINDOWS\Tasks\PMTask.job

========== Purity Check ==========


< End of report >

 

Themen zu BKA trojaner 1.14 was nun ?
.dll, avira, bho, desktop, einstellungen, error, explorer, firefox, format, google earth, helper, homepage, lenovo, logfile, monitor, msvcrt, object, opera, plug-in, registry, scan, security, senden, software, trojaner, windows, windows xp, winlogon


« 3x PUP Offer Bundler.St in drei Verzeichnissen des PC mit Malewarebytes gefunden | GVU-Trojaner mit Webcam »


Zum Thema BKA trojaner 1.14 was nun ? - Hi, hab mir gestern den besagten BKA trojaner eingefangen den OTLPE Scan hab ich schon gemacht und ergebnis hab ich auch gepostet, was muß ich jetzt machen ? Schonmal Danke - BKA trojaner 1.14 was nun ?...
Archiv
Du betrachtest: BKA trojaner 1.14 was nun ? auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19