|
Log-Analyse und Auswertung: [XP, SP3]Facebook meldet VirusWindows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML. |
24.12.2013, 21:00 | #16 |
| [XP, SP3]Facebook meldet Virus ESET Code:
ATTFilter ESETSmartInstaller@High as downloader log: all ok # version=8 # OnlineScannerApp.exe=1.0.0.1 # OnlineScanner.ocx=1.0.0.6920 # api_version=3.0.2 # EOSSerial=a2bdb16479a95a4ba045f74ec803f1a0 # engine=16391 # end=finished # remove_checked=false # archives_checked=false # unwanted_checked=false # unsafe_checked=false # antistealth_checked=true # utc_time=2013-12-24 07:35:50 # local_time=2013-12-24 08:35:50 (+0100, Westeuropäische Normalzeit) # country="Germany" # lang=1033 # osver=5.1.2600 NT Service Pack 3 # scanned=40709 # found=0 # cleaned=0 # scan_time=7179 Code:
ATTFilter Results of screen317's Security Check version 0.99.77 Windows XP Service Pack 3 x86 Internet Explorer 6 Out of date! ``````````````Antivirus/Firewall Check:`````````````` Warten Sie, w„hrend WMIC installiert wird.d i s p l a y N a m e ECHO ist ausgeschaltet (OFF). E m s i s o f t ECHO ist ausgeschaltet (OFF). A n t i M a l w a r e ECHO ist ausgeschaltet (OFF). Antivirus up to date! `````````Anti-malware/Other Utilities Check:````````` Malwarebytes Anti-Malware Version 1.75.0.1300 Java 7 Update 45 Adobe Reader XI Mozilla Firefox (26.0) Google Chrome 31.0.1650.63 ````````Process Check: objlist.exe by Laurent```````` Emsisoft Anti-Malware a2service.exe emsisoft Anti-Malware a2guard.exe `````````````````System Health check````````````````` Total Fragmentation on Drive C:: ````````````````````End of Log`````````````````````` Code:
ATTFilter Additional scan result of Farbar Recovery Scan Tool (x86) Version: 23-12-2013 01 Ran by Admin at 2013-12-24 20:58:02 Running from C:\Dokumente und Einstellungen\Admin\Desktop\TB Boot Mode: Normal ========================================================== ==================== Security Center ======================== AV: Emsisoft Anti-Malware (Disabled - Up to date) {0F8591BB-342B-4493-91C3-4E948ED21255} ==================== Installed Programs ====================== Adobe Reader XI (11.0.05) - Deutsch (Version: 11.0.05) ATI - Dienstprogramm zur Deinstallation der Software (Version: 6.14.10.1021) ATI Catalyst Control Center (Version: 2.008.0407.2138) ATI Display Driver (Version: 8.477-080407a-062896C-Toshiba) ATI Parental Control & Encoder (Version: 3.0) Camera Assistant Software for Toshiba (Version: 1.7.175.0123) Catalyst Control Center - Branding (Version: 1.00.0000) Catalyst Control Center Core Implementation (Version: 2008.0407.2139.36897) Catalyst Control Center Graphics Full Existing (Version: 2008.0407.2139.36897) Catalyst Control Center Graphics Full New (Version: 2008.0407.2139.36897) Catalyst Control Center Graphics Light (Version: 2008.0407.2139.36897) Catalyst Control Center Localization Chinese Standard (Version: 2008.0407.2139.36897) Catalyst Control Center Localization Chinese Traditional (Version: 2008.0407.2139.36897) Catalyst Control Center Localization Dutch (Version: 2008.0407.2139.36897) Catalyst Control Center Localization French (Version: 2008.0407.2139.36897) Catalyst Control Center Localization German (Version: 2008.0407.2139.36897) Catalyst Control Center Localization Italian (Version: 2008.0407.2139.36897) Catalyst Control Center Localization Japanese (Version: 2008.0407.2139.36897) Catalyst Control Center Localization Korean (Version: 2008.0407.2139.36897) Catalyst Control Center Localization Portuguese (Version: 2008.0407.2139.36897) Catalyst Control Center Localization Spanish (Version: 2008.0407.2139.36897) Catalyst Control Center Localization Swedish (Version: 2008.0407.2139.36897) CCC Help Chinese Standard (Version: 2008.0407.2138.36897) CCC Help Chinese Traditional (Version: 2008.0407.2138.36897) CCC Help Dutch (Version: 2008.0407.2138.36897) CCC Help English (Version: 2008.0407.2138.36897) CCC Help French (Version: 2008.0407.2138.36897) CCC Help German (Version: 2008.0407.2138.36897) CCC Help Italian (Version: 2008.0407.2138.36897) CCC Help Japanese (Version: 2008.0407.2138.36897) CCC Help Korean (Version: 2008.0407.2138.36897) CCC Help Portuguese (Version: 2008.0407.2138.36897) CCC Help Spanish (Version: 2008.0407.2138.36897) CCC Help Swedish (Version: 2008.0407.2138.36897) ccc-core-preinstall (Version: 2008.0407.2139.36897) ccc-core-static (Version: 2008.0407.2139.36897) ccc-utility (Version: 2008.0407.2139.36897) CD/DVD Drive Acoustic Silencer (Version: 1.00.008) Cisco AnyConnect Secure Mobility Client (Version: 3.1.04072) Cisco AnyConnect Secure Mobility Client (Version: 3.1.04072) Emsisoft Anti-Malware (Version: 8.1) ESET Online Scanner v3 Google Chrome (Version: 31.0.1650.63) Google Update Helper (Version: 1.3.22.3) High Definition Audio Driver Package - KB888111 (Version: 20040219.000000) Java 7 Update 45 (Version: 7.0.450) Java Auto Updater (Version: 2.1.9.8) Malwarebytes Anti-Malware Version 1.75.0.1300 (Version: 1.75.0.1300) Microsoft .NET Framework 2.0 Microsoft .NET Framework 2.0 (Version: 2.0.50727) Microsoft Silverlight (Version: 5.1.20913.0) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 (Version: 10.0.30319) Mozilla Firefox 26.0 (x86 de) (Version: 26.0) Mozilla Maintenance Service (Version: 26.0) OANDA - MetaTrader (Version: 4.00) REALTEK GbE & FE Ethernet PCI-E NIC Driver (Version: 1.35.0000) Realtek High Definition Audio Driver (Version: 5.10.0.5599) RICOH R5C83x/84x Flash Media Controller Driver Ver.3.54.02 (Version: 3.54.02) Skins (Version: 2008.0407.2139.36897) SpeedFan (remove only) TOSHIBA Assist TOSHIBA PC Diagnostic Tool (Version: 3.2.6) TOSHIBA Power Saver (Version: 7.04.02.I) WebFldrs XP (Version: 9.50.7523) Windows XP Service Pack 3 (Version: 20080414.031514) WinRAR 5.01 (32-Bit) (Version: 5.01.0) ==================== Restore Points ========================= 13-12-2013 19:59:48 Systemprüfpunkt 13-12-2013 20:05:53 Installiert REALTEK GbE & FE Ethernet PCI-E NIC Driver 13-12-2013 20:07:22 Installed Intel(R) PROSet/Wireless WiFi-Software. 13-12-2013 20:09:21 Installiert Realtek High Definition Audio Driver 13-12-2013 20:09:30 Installed Windows XP KB888111WXPSP2. 13-12-2013 20:17:06 Windows Installer KB893803v2 wurde installiert. 13-12-2013 20:19:22 Installiert ATI Catalyst Control Center 13-12-2013 20:20:48 ATI Parental Control & Encoder wird installiert 13-12-2013 20:38:12 Windows XP Service Pack 3 wurde installiert. 13-12-2013 21:44:55 Konfiguriert REALTEK GbE & FE Ethernet PCI-E NIC Driver 13-12-2013 21:50:55 Installiert Atheros Client Utility 13-12-2013 21:52:01 Installiert Atheros Client Utility 13-12-2013 21:55:36 Entfernt Atheros Client Utility 13-12-2013 21:57:32 Removed Intel(R) PROSet/Wireless WiFi-Software. 13-12-2013 22:17:19 Installiert REALTEK GbE & FE Ethernet PCI-E NIC Driver 13-12-2013 22:43:32 Installiert REALTEK GbE & FE Ethernet PCI-E NIC Driver 13-12-2013 22:46:27 Installiert Atheros Wireless LAN MiniPCI card Driver 13-12-2013 22:48:30 Installiert Atheros Client Utility 13-12-2013 22:54:53 Installiert Camera Assistant Software for Toshiba 13-12-2013 23:01:23 Konfiguriert REALTEK GbE & FE Ethernet PCI-E NIC Driver 13-12-2013 23:02:06 Entfernt Atheros Client Utility 13-12-2013 23:04:53 Installed TOSHIBA PC Diagnostic Tool 13-12-2013 23:07:39 Installiert CD/DVD Drive Acoustic Silencer 13-12-2013 23:13:03 Installiert RICOH R5C83x/84x Flash Media Controller Driver Ver.3 13-12-2013 23:14:36 Installiert TOSHIBA Assist 13-12-2013 23:18:17 Installiert TOSHIBA Common Module 13-12-2013 23:23:24 Installiert REALTEK GbE & FE Ethernet PCI-E NIC Driver 13-12-2013 23:48:41 Entfernt REALTEK GbE & FE Ethernet PCI-E NIC Driver 13-12-2013 23:49:33 Installiert REALTEK GbE & FE Ethernet PCI-E NIC Driver 13-12-2013 23:54:16 Entfernt Atheros Wireless LAN MiniPCI card Driver 14-12-2013 12:22:19 Ask Toolbar wird entfernt 14-12-2013 20:55:19 Java 7 Update 45 wird installiert 14-12-2013 20:57:21 Java 7 Update 45 wird entfernt 14-12-2013 20:57:52 Java 7 Update 45 wird installiert 14-12-2013 21:07:48 Installed Cisco AnyConnect Secure Mobility Client 16-12-2013 16:37:28 Systemprüfpunkt 17-12-2013 19:46:33 Systemprüfpunkt 18-12-2013 22:05:12 Windows XP KB2879017 wurde installiert. 19-12-2013 11:24:16 Windows XP KB2879017 wurde installiert. 21-12-2013 14:51:37 ComboFix created restore point ==================== Hosts content: ========================== 2004-08-04 13:00 - 2013-12-21 16:06 - 00000027 ____A C:\WINDOWS\system32\Drivers\etc\hosts 127.0.0.1 localhost ==================== Scheduled Tasks (whitelisted) ============= Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Programme\Google\Update\GoogleUpdate.exe Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Programme\Google\Update\GoogleUpdate.exe ==================== Loaded Modules (whitelisted) ============= 2013-12-14 00:18 - 2007-04-03 18:21 - 00049152 _____ () C:\Programme\Toshiba\Toshiba Applet\TouchPad_OnOff.dll 2013-12-13 21:29 - 2013-12-04 03:48 - 04055504 _____ () C:\Programme\Google\Chrome\Application\31.0.1650.63\pdf.dll 2013-12-13 21:29 - 2013-12-04 03:48 - 00399312 _____ () C:\Programme\Google\Chrome\Application\31.0.1650.63\ppGoogleNaClPluginChrome.dll 2013-12-13 21:29 - 2013-12-04 03:47 - 01619408 _____ () C:\Programme\Google\Chrome\Application\31.0.1650.63\ffmpegsumo.dll ==================== Alternate Data Streams (whitelisted) ========= ==================== Safe Mode (whitelisted) =================== HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CleanHlp => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CleanHlp.sys => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\CleanHlp => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\CleanHlp.sys => ""="Driver" ==================== Faulty Device Manager Devices ============= Name: Description: Class Guid: {4D36E97E-E325-11CE-BFC1-08002BE10318} Manufacturer: Service: Problem: : The drivers for this device are not installed. (Code 28) Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard. Name: ATI HDMI Audio Description: ATI HDMI Audio Class Guid: {4D36E96C-E325-11CE-BFC1-08002BE10318} Manufacturer: Realtek Service: Problem: : The drivers for this device are not installed. (Code 28) Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard. Name: Modem Device on High Definition Audio Bus Description: Modem Device on High Definition Audio Bus Class Guid: Manufacturer: Service: Problem: : The drivers for this device are not installed. (Code 28) Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard. Name: Cisco AnyConnect Secure Mobility Client Virtual Miniport Adapter for Windows Description: Cisco AnyConnect Secure Mobility Client Virtual Miniport Adapter for Windows Class Guid: {4D36E972-E325-11CE-BFC1-08002BE10318} Manufacturer: Cisco Systems Service: vpnva Problem: : This device is disabled. (Code 22) Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions. ==================== Event log errors: ========================= Application errors: ================== Error: (12/21/2013 03:59:13 PM) (Source: crypt32) (User: ) Description: Der automatische Aktualisierungsabruf der Drittanbieterstammlisten-Sequenznummer von <hxxp://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txt> ist fehlgeschlagen mit dem Fehler: Die Serververbindung konnte nicht hergestellt werden. . Error: (12/19/2013 04:45:36 PM) (Source: PerfNet) (User: ) Description: Der Serverdienst konnte nicht geöffnet werden. Die Server-Leistungsinformationen werden nicht zurückgegeben. Der zurückgegebene Fehlercode befindet sich in DWORD 0. Error: (12/19/2013 00:56:11 PM) (Source: Application Hang) (User: ) Description: Stillstehende Anwendung iexplore.exe, Version 6.0.2900.5512, Stillstandmodul hungapp, Version 0.0.0.0, Stillstandadresse 0x00000000. Error: (12/19/2013 00:40:01 PM) (Source: PerfNet) (User: ) Description: Der Serverdienst konnte nicht geöffnet werden. Die Server-Leistungsinformationen werden nicht zurückgegeben. Der zurückgegebene Fehlercode befindet sich in DWORD 0. Error: (12/19/2013 00:28:56 PM) (Source: PerfNet) (User: ) Description: Der Serverdienst konnte nicht geöffnet werden. Die Server-Leistungsinformationen werden nicht zurückgegeben. Der zurückgegebene Fehlercode befindet sich in DWORD 0. Error: (12/19/2013 00:10:37 PM) (Source: PerfNet) (User: ) Description: Der Serverdienst konnte nicht geöffnet werden. Die Server-Leistungsinformationen werden nicht zurückgegeben. Der zurückgegebene Fehlercode befindet sich in DWORD 0. Error: (12/19/2013 09:30:13 AM) (Source: PerfNet) (User: ) Description: Der Serverdienst konnte nicht geöffnet werden. Die Server-Leistungsinformationen werden nicht zurückgegeben. Der zurückgegebene Fehlercode befindet sich in DWORD 0. Error: (12/19/2013 08:52:52 AM) (Source: Application Hang) (User: ) Description: Stillstehende Anwendung iexplore.exe, Version 6.0.2900.5512, Stillstandmodul hungapp, Version 0.0.0.0, Stillstandadresse 0x00000000. Error: (12/19/2013 08:14:53 AM) (Source: PerfNet) (User: ) Description: Der Serverdienst konnte nicht geöffnet werden. Die Server-Leistungsinformationen werden nicht zurückgegeben. Der zurückgegebene Fehlercode befindet sich in DWORD 0. Error: (12/18/2013 11:10:52 PM) (Source: PerfNet) (User: ) Description: Der Serverdienst konnte nicht geöffnet werden. Die Server-Leistungsinformationen werden nicht zurückgegeben. Der zurückgegebene Fehlercode befindet sich in DWORD 0. System errors: ============= Error: (12/21/2013 02:44:49 PM) (Source: Service Control Manager) (User: ) Description: Der Dienst "Gatewaydienst auf Anwendungsebene" wurde aufgrund folgenden Fehlers nicht gestartet: %%1053 Error: (12/21/2013 02:44:49 PM) (Source: Service Control Manager) (User: ) Description: Zeitüberschreitung (30000 ms) beim Verbindungsversuch mit Dienst Gatewaydienst auf Anwendungsebene. Error: (12/19/2013 04:47:01 PM) (Source: Service Control Manager) (User: ) Description: Der Dienst "Cisco AnyConnect Secure Mobility Agent" wurde aufgrund folgenden Fehlers nicht gestartet: %%1053 Error: (12/19/2013 04:47:01 PM) (Source: Service Control Manager) (User: ) Description: Zeitüberschreitung (30000 ms) beim Verbindungsversuch mit Dienst Cisco AnyConnect Secure Mobility Agent. Error: (12/18/2013 09:35:11 PM) (Source: 0) (User: ) Description: \Device\Ide\IdePort0 Error: (12/18/2013 09:34:05 PM) (Source: 0) (User: ) Description: \Device\Ide\IdePort0 Error: (12/18/2013 09:33:21 PM) (Source: 0) (User: ) Description: \Device\Ide\IdePort0 Error: (12/18/2013 09:32:55 PM) (Source: 0) (User: ) Description: \Device\Ide\IdePort0 Error: (12/18/2013 09:32:31 PM) (Source: 0) (User: ) Description: \Device\Ide\IdePort0 Error: (12/18/2013 09:32:30 PM) (Source: 0) (User: ) Description: \Device\Ide\IdePort0 Microsoft Office Sessions: ========================= Error: (12/21/2013 03:59:13 PM) (Source: crypt32)(User: ) Description: hxxp://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txtDie Serververbindung konnte nicht hergestellt werden. Error: (12/19/2013 04:45:36 PM) (Source: PerfNet)(User: ) Description: Error: (12/19/2013 00:56:11 PM) (Source: Application Hang)(User: ) Description: iexplore.exe6.0.2900.5512hungapp0.0.0.000000000 Error: (12/19/2013 00:40:01 PM) (Source: PerfNet)(User: ) Description: Error: (12/19/2013 00:28:56 PM) (Source: PerfNet)(User: ) Description: Error: (12/19/2013 00:10:37 PM) (Source: PerfNet)(User: ) Description: Error: (12/19/2013 09:30:13 AM) (Source: PerfNet)(User: ) Description: Error: (12/19/2013 08:52:52 AM) (Source: Application Hang)(User: ) Description: iexplore.exe6.0.2900.5512hungapp0.0.0.000000000 Error: (12/19/2013 08:14:53 AM) (Source: PerfNet)(User: ) Description: Error: (12/18/2013 11:10:52 PM) (Source: PerfNet)(User: ) Description: ==================== Memory info =========================== Percentage of memory in use: 41% Total physical RAM: 3069.92 MB Available physical RAM: 1791.82 MB Total Pagefile: 4955.8 MB Available Pagefile: 3529.71 MB Total Virtual: 2047.88 MB Available Virtual: 1960.43 MB ==================== Drives ================================ Drive c: () (Fixed) (Total:232.88 GB) (Free:210.88 GB) NTFS ==>[Drive with boot components (Windows XP)] ==================== MBR & Partition Table ================== ======================================================== Disk: 0 (Size: 233 GB) (Disk ID: 600BADED) Partition 1: (Active) - (Size=233 GB) - (Type=07 NTFS) ==================== End Of Log ============================ |
24.12.2013, 21:03 | #17 |
| [XP, SP3]Facebook meldet Virus FRST aktuell Teil 1
__________________Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 23-12-2013 01 Ran by Admin (administrator) on ANDREAS on 24-12-2013 20:56:04 Running from C:\Dokumente und Einstellungen\Admin\Desktop\TB Microsoft Windows XP Professional Service Pack 3 (X86) OS Language: German Standard Internet Explorer Version 6 Boot Mode: Normal ==================== Processes (Whitelisted) =================== (Emsisoft GmbH) C:\Programme\Emsisoft Anti-Malware\a2service.exe (ATI Technologies Inc.) C:\WINDOWS\system32\ati2evxx.exe (ATI Technologies Inc.) C:\WINDOWS\system32\ati2evxx.exe (TOSHIBA Corporation) C:\WINDOWS\system32\TPSMain.exe (Realtek Semiconductor Corp.) C:\WINDOWS\RTHDCPL.exe (Emsisoft GmbH) C:\Programme\Emsisoft Anti-Malware\a2guard.exe (TOSHIBA) C:\Programme\TOSHIBA\TOSHIBA Applet\THotkey.exe (Oracle Corporation) C:\Programme\Gemeinsame Dateien\Java\Java Update\jusched.exe (TOSHIBA) C:\Programme\TOSHIBA\TOSCDSPD\TOSCDSPD.exe (TOSHIBA Corporation) C:\WINDOWS\system32\TPSBattM.exe (Oracle Corporation) C:\Programme\Java\jre7\bin\jqs.exe (TOSHIBA Corp.) C:\Programme\TOSHIBA\TOSHIBA Applet\TAPPSRV.exe (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe (Google Inc.) C:\Programme\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Programme\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Programme\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Programme\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Programme\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Programme\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Programme\Google\Chrome\Application\chrome.exe ==================== Registry (Whitelisted) ================== HKLM\...\Run: [TPSMain] - C:\WINDOWS\system32\TPSMain.exe [266240 2007-10-15] (TOSHIBA Corporation) HKLM\...\Run: [RTHDCPL] - C:\WINDOWS\RTHDCPL.exe [16860672 2008-07-31] (Realtek Semiconductor Corp.) HKLM\...\Run: [StartCCC] - C:\Programme\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [61440 2008-01-21] (Advanced Micro Devices, Inc.) HKLM\...\Run: [emsisoft anti-malware] - C:\Programme\Emsisoft Anti-Malware\a2guard.exe [4329408 2013-12-04] (Emsisoft GmbH) HKLM\...\Run: [THotkey] - C:\Programme\TOSHIBA\TOSHIBA Applet\THotkey.exe [360448 2008-05-27] (TOSHIBA) HKLM\...\Run: [Adobe ARM] - C:\Programme\Gemeinsame Dateien\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-09-05] (Adobe Systems Incorporated) HKLM\...\Run: [SunJavaUpdateSched] - C:\Programme\Gemeinsame Dateien\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation) Winlogon\Notify\AtiExtEvent: C:\Windows\system32\Ati2evxx.dll (ATI Technologies Inc.) HKCU\...\Run: [TOSCDSPD] - C:\Programme\TOSHIBA\TOSCDSPD\TOSCDSPD.exe [65536 2005-04-12] (TOSHIBA) ==================== Internet (Whitelisted) ==================== HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.microsoft.com/isapi/redir.dll?prd={SUB_PRD}&clcid={SUB_CLSID}&pver={SUB_PVER}&ar=home SearchScopes: HKLM - DefaultScope value is missing. BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Programme\Java\jre7\bin\ssv.dll (Oracle Corporation) BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Programme\Java\jre7\bin\jp2ssv.dll (Oracle Corporation) Toolbar: HKCU - &Adresse - {01E04581-4EEE-11D0-BFE9-00AA005B4383} - C:\WINDOWS\system32\browseui.dll (Microsoft Corporation) Toolbar: HKCU - &Links - {0E5CBF21-D15F-11D0-8301-00AA005B4383} - C:\WINDOWS\system32\shell32.dll (Microsoft Corporation) Handler: http\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\msdaipp.dll (Microsoft Corporation) Handler: http\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\msdaipp.dll (Microsoft Corporation) Handler: https\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\msdaipp.dll (Microsoft Corporation) Handler: https\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\msdaipp.dll (Microsoft Corporation) Handler: ipp\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\msdaipp.dll (Microsoft Corporation) Handler: msdaipp\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\msdaipp.dll (Microsoft Corporation) Handler: msdaipp\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\msdaipp.dll (Microsoft Corporation) Tcpip\Parameters: [DhcpNameServer] 192.168.2.1 FireFox: ======== FF ProfilePath: C:\Dokumente und Einstellungen\Admin\Anwendungsdaten\Mozilla\Firefox\Profiles\c8zp5kpk.default FF Plugin: @java.com/DTPlugin,version=10.45.2 - C:\Programme\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation) FF Plugin: @java.com/JavaPlugin,version=10.45.2 - C:\Programme\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation) FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Programme\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation) FF Plugin: @tools.google.com/Google Update;version=3 - C:\Programme\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.) FF Plugin: @tools.google.com/Google Update;version=9 - C:\Programme\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.) FF Plugin: Adobe Reader - C:\Programme\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.) FF SearchPlugin: C:\Programme\mozilla firefox\browser\searchplugins\amazondotcom-de.xml FF SearchPlugin: C:\Programme\mozilla firefox\browser\searchplugins\eBay-de.xml FF SearchPlugin: C:\Programme\mozilla firefox\browser\searchplugins\leo_ende_de.xml FF SearchPlugin: C:\Programme\mozilla firefox\browser\searchplugins\yahoo-de.xml FF Extension: Adblock Plus - C:\Dokumente und Einstellungen\Admin\Anwendungsdaten\Mozilla\Firefox\Profiles\c8zp5kpk.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi Chrome: ======= CHR HomePage: CHR Extension: (Google Docs) - C:\Dokumente und Einstellungen\Admin\Lokale Einstellungen\Anwendungsdaten\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0 CHR Extension: (Google Drive) - C:\Dokumente und Einstellungen\Admin\Lokale Einstellungen\Anwendungsdaten\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0 CHR Extension: (YouTube) - C:\Dokumente und Einstellungen\Admin\Lokale Einstellungen\Anwendungsdaten\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0 CHR Extension: (Google Search) - C:\Dokumente und Einstellungen\Admin\Lokale Einstellungen\Anwendungsdaten\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0 CHR Extension: (Session Buddy) - C:\Dokumente und Einstellungen\Admin\Lokale Einstellungen\Anwendungsdaten\Google\Chrome\User Data\Default\Extensions\edacconmaakjimmfgnblocblbcdcpbko\3.2.4_0 CHR Extension: (AdBlock) - C:\Dokumente und Einstellungen\Admin\Lokale Einstellungen\Anwendungsdaten\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.6.16_0 CHR Extension: (TweetDeck by Twitter) - C:\Dokumente und Einstellungen\Admin\Lokale Einstellungen\Anwendungsdaten\Google\Chrome\User Data\Default\Extensions\hbdpomandigafcibbmofojjchbcdagbl\3.5.5_0 CHR Extension: (Google Wallet) - C:\Dokumente und Einstellungen\Admin\Lokale Einstellungen\Anwendungsdaten\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.0_0 CHR Extension: (Gmail) - C:\Dokumente und Einstellungen\Admin\Lokale Einstellungen\Anwendungsdaten\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1 ========================== Services (Whitelisted) ================= R2 a2AntiMalware; C:\Programme\Emsisoft Anti-Malware\a2service.exe [4161512 2013-12-04] (Emsisoft GmbH) S2 gupdate; C:\Programme\Google\Update\GoogleUpdate.exe [116648 2013-12-13] (Google Inc.) S3 gupdatem; C:\Programme\Google\Update\GoogleUpdate.exe [116648 2013-12-13] (Google Inc.) S3 MozillaMaintenance; C:\Programme\Mozilla Maintenance Service\maintenanceservice.exe [119408 2013-12-05] (Mozilla Foundation) R2 TAPPSRV; C:\Programme\TOSHIBA\TOSHIBA Applet\TAPPSRV.exe [34304 2008-04-14] (TOSHIBA Corp.) R2 JavaQuickStarterService; "C:\Programme\Java\jre7\bin\jqs.exe" -service -config "C:\Programme\Java\jre7\lib\deploy\jqs\jqs.conf" ==================== Drivers (Whitelisted) ==================== R3 a2acc; C:\PROGRAMME\EMSISOFT ANTI-MALWARE\a2accx86.sys [57944 2013-08-24] (Emsisoft GmbH) R1 A2DDA; C:\Programme\Emsisoft Anti-Malware\a2ddax86.sys [22056 2013-03-28] (Emsisoft GmbH) R1 a2injectiondriver; C:\Programme\Emsisoft Anti-Malware\a2dix86.sys [38248 2013-09-30] (Emsisoft GmbH) R1 a2util; C:\Programme\Emsisoft Anti-Malware\a2util32.sys [14432 2013-03-28] (Emsisoft GmbH) S3 acsint; C:\Windows\System32\DRIVERS\acsint.sys [40304 2013-10-10] (Cisco Systems, Inc.) S3 acsmux; C:\Windows\System32\DRIVERS\acsmux.sys [58736 2013-10-10] (Cisco Systems, Inc.) S3 CCDECODE; C:\Windows\System32\DRIVERS\CCDECODE.sys [17024 2008-04-14] (Microsoft Corporation) R3 cleanhlp; C:\Programme\Emsisoft Anti-Malware\cleanhlp32.sys [50200 2013-12-04] (Emsisoft GmbH) R0 giveio; C:\Windows\System32\giveio.sys [5248 1996-04-03] () S3 NdisIP; C:\Windows\System32\DRIVERS\NdisIP.sys [10880 2008-04-14] (Microsoft Corporation) R3 NETw5x32; C:\Windows\System32\DRIVERS\NETw5x32.sys [4202496 2013-12-14] (Intel Corporation) S3 RTHDMIAzAudService; C:\Windows\System32\drivers\RtHDMI.sys [3688640 2008-07-31] (Realtek Semiconductor Corp.) R0 speedfan; C:\Windows\System32\speedfan.sys [24184 2012-12-29] (Almico Software) S3 UVCFTR; C:\Windows\System32\Drivers\UVCFTR_S.SYS [18432 2007-12-17] (Chicony Electronics Co., Ltd.) S3 catchme; \??\C:\ComboFix\catchme.sys [x] S4 IntelIde; No ImagePath U5 ScsiPort; C:\Windows\system32\drivers\scsiport.sys [96384 2008-04-14] (Microsoft Corporation) ==================== NetSvcs (Whitelisted) =================== ==================== One Month Created Files and Folders ======== 2013-12-24 18:30 - 2013-12-24 18:30 - 00000000 ____D C:\Programme\ESET 2013-12-23 13:50 - 2013-12-23 13:50 - 00000581 _____ C:\Dokumente und Einstellungen\Admin\Desktop\JRT.txt 2013-12-23 13:33 - 2013-12-23 13:33 - 00000000 ____D C:\WINDOWS\ERUNT 2013-12-23 13:16 - 2013-12-23 13:21 - 00000000 ____D C:\AdwCleaner 2013-12-23 08:33 - 2013-12-23 08:33 - 00000000 ____D C:\Dokumente und Einstellungen\Admin\Anwendungsdaten\Malwarebytes 2013-12-23 08:32 - 2013-12-23 08:32 - 00000756 _____ C:\Dokumente und Einstellungen\All Users\Desktop\ Malwarebytes Anti-Malware .lnk 2013-12-23 08:32 - 2013-12-23 08:32 - 00000000 ____D C:\Programme\Malwarebytes' Anti-Malware 2013-12-23 08:32 - 2013-12-23 08:32 - 00000000 ____D C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Malwarebytes' Anti-Malware 2013-12-23 08:32 - 2013-12-23 08:32 - 00000000 ____D C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Malwarebytes 2013-12-23 08:32 - 2013-04-04 14:50 - 00022856 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbam.sys 2013-12-21 16:20 - 2013-12-21 16:20 - 00009211 _____ C:\ComboFix.txt 2013-12-21 16:02 - 2013-12-21 16:02 - 00008192 ____H C:\WINDOWS\system32\config\SECURITY.tmp.LOG 2013-12-21 16:02 - 2013-12-21 16:02 - 00000000 ____H C:\WINDOWS\system32\config\system.tmp.LOG 2013-12-21 16:02 - 2013-12-21 16:02 - 00000000 ____H C:\WINDOWS\system32\config\software.tmp.LOG 2013-12-21 16:02 - 2013-12-21 16:02 - 00000000 ____H C:\WINDOWS\system32\config\SAM.tmp.LOG 2013-12-21 16:02 - 2013-12-21 16:02 - 00000000 ____H C:\WINDOWS\system32\config\default.tmp.LOG 2013-12-21 15:54 - 2013-12-16 11:43 - 00000211 _____ C:\Boot.bak 2013-12-21 15:54 - 2004-08-03 23:00 - 00262448 __RSH C:\cmldr 2013-12-21 15:53 - 2013-12-21 15:54 - 00000000 _RSHD C:\cmdcons 2013-12-21 15:51 - 2011-06-26 07:45 - 00256000 _____ C:\WINDOWS\PEV.exe 2013-12-21 15:51 - 2010-11-07 18:20 - 00208896 _____ C:\WINDOWS\MBR.exe 2013-12-21 15:51 - 2009-04-20 05:56 - 00060416 _____ (NirSoft) C:\WINDOWS\NIRCMD.exe 2013-12-21 15:51 - 2000-08-31 01:00 - 00518144 _____ (SteelWerX) C:\WINDOWS\SWREG.exe 2013-12-21 15:51 - 2000-08-31 01:00 - 00406528 _____ (SteelWerX) C:\WINDOWS\SWSC.exe 2013-12-21 15:51 - 2000-08-31 01:00 - 00212480 _____ (SteelWerX) C:\WINDOWS\SWXCACLS.exe 2013-12-21 15:51 - 2000-08-31 01:00 - 00098816 _____ C:\WINDOWS\sed.exe 2013-12-21 15:51 - 2000-08-31 01:00 - 00080412 _____ C:\WINDOWS\grep.exe 2013-12-21 15:51 - 2000-08-31 01:00 - 00068096 _____ C:\WINDOWS\zip.exe 2013-12-21 15:49 - 2013-12-21 16:20 - 00000000 ____D C:\Qoobox 2013-12-21 15:49 - 2013-12-21 15:49 - 00000000 ___RD C:\Dokumente und Einstellungen\Admin\Startmenü\Programme\Verwaltung 2013-12-21 15:48 - 2013-12-21 16:16 - 00000000 ____D C:\WINDOWS\erdnt 2013-12-19 12:35 - 2013-12-19 12:36 - 00004238 _____ C:\WINDOWS\KB2879017Uninst.log 2013-12-18 23:04 - 2013-12-19 12:25 - 00012259 _____ C:\WINDOWS\KB2879017.log 2013-12-18 23:04 - 2004-08-04 13:00 - 00068608 _____ (Microsoft Corporation) C:\WINDOWS\system32\plugin.ocx 2013-12-18 23:04 - 2004-08-04 13:00 - 00068608 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\plugin.ocx 2013-12-18 22:56 - 2013-12-19 12:21 - 00001692 _____ C:\WINDOWS\KB927891.log 2013-12-18 22:12 - 2013-12-18 22:23 - 00000000 ____D C:\Programme\OANDA - MetaTrader 2013-12-18 22:12 - 2013-12-18 22:12 - 00000000 ____D C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\OANDA - MetaTrader 2013-12-18 22:03 - 2013-12-18 23:21 - 00000000 ____D C:\Dokumente und Einstellungen\Admin\Desktop\CD 2013-12-18 21:47 - 2013-12-24 20:56 - 00000000 ____D C:\Dokumente und Einstellungen\Admin\Desktop\TB 2013-12-18 21:45 - 2013-12-18 21:45 - 00000000 ____D C:\Programme\WinRAR 2013-12-18 21:45 - 2013-12-18 21:45 - 00000000 ____D C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\WinRAR 2013-12-18 21:45 - 2013-12-18 21:45 - 00000000 ____D C:\Dokumente und Einstellungen\Admin\Startmenü\Programme\WinRAR 2013-12-18 21:45 - 2013-12-18 21:45 - 00000000 ____D C:\Dokumente und Einstellungen\Admin\Anwendungsdaten\WinRAR 2013-12-18 20:50 - 2013-12-24 20:55 - 00000000 ____D C:\FRST 2013-12-18 20:47 - 2013-12-18 20:47 - 00000000 _____ C:\Dokumente und Einstellungen\Admin\defogger_reenable 2013-12-18 09:36 - 2013-12-18 09:36 - 00000702 _____ C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Mozilla Firefox.lnk 2013-12-18 09:36 - 2013-12-18 09:36 - 00000696 _____ C:\Dokumente und Einstellungen\All Users\Desktop\Mozilla Firefox.lnk 2013-12-18 09:36 - 2013-12-18 09:36 - 00000000 ____D C:\Programme\Mozilla Maintenance Service 2013-12-18 09:36 - 2013-12-18 09:36 - 00000000 ____D C:\Programme\Mozilla Firefox 2013-12-18 09:36 - 2013-12-18 09:36 - 00000000 ____D C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Mozilla 2013-12-18 09:36 - 2013-12-18 09:36 - 00000000 ____D C:\Dokumente und Einstellungen\Admin\Lokale Einstellungen\Anwendungsdaten\Mozilla 2013-12-18 09:36 - 2013-12-18 09:36 - 00000000 ____D C:\Dokumente und Einstellungen\Admin\Anwendungsdaten\Mozilla 2013-12-16 11:43 - 2013-12-16 11:43 - 00000000 ____D C:\WINDOWS\pss 2013-12-15 19:55 - 2013-12-15 19:55 - 00000000 ____D C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\MetaQuotes 2013-12-15 19:53 - 2013-12-18 22:12 - 00001602 _____ C:\Dokumente und Einstellungen\All Users\Desktop\OANDA - MetaTrader.lnk 2013-12-15 19:53 - 2013-12-15 19:53 - 00000000 ____D C:\Dokumente und Einstellungen\Admin\Anwendungsdaten\MetaQuotes 2013-12-15 19:53 - 2013-12-15 19:53 - 00000000 ____D C:\Dokumente und Einstellungen\Admin\Anwendungsdaten\Macromedia 2013-12-15 19:51 - 2013-12-15 19:51 - 00000000 ____D C:\Dokumente und Einstellungen\Admin\.oanda 2013-12-15 19:26 - 2013-12-15 19:27 - 00000000 ____D C:\Programme\SpeedFan 2013-12-15 19:26 - 2013-12-15 19:26 - 00000045 _____ C:\WINDOWS\system32\initdebug.nfo 2013-12-15 10:33 - 2013-12-21 16:03 - 01245184 _____ C:\WINDOWS\system32\config\ACVPN.evt 2013-12-14 22:07 - 2013-12-15 00:11 - 00131072 _____ C:\WINDOWS\system32\config\Cisco An.evt 2013-12-14 22:07 - 2013-12-14 22:07 - 00000000 ____D C:\Programme\Cisco 2013-12-14 22:07 - 2013-12-14 22:07 - 00000000 ____D C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Cisco 2013-12-14 22:07 - 2013-12-14 22:07 - 00000000 ____D C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Cisco 2013-12-14 22:07 - 2013-12-14 22:07 - 00000000 ____D C:\Dokumente und Einstellungen\Admin\Lokale Einstellungen\Anwendungsdaten\Cisco 2013-12-14 22:07 - 2013-10-10 22:29 - 00058736 ____R (Cisco Systems, Inc.) C:\WINDOWS\system32\Drivers\acsmux.sys 2013-12-14 22:07 - 2013-10-10 22:29 - 00040304 ____R (Cisco Systems, Inc.) C:\WINDOWS\system32\Drivers\acsint.sys 2013-12-14 21:58 - 2013-12-14 21:58 - 00000000 ____D C:\WINDOWS\Sun 2013-12-14 21:58 - 2013-12-14 21:58 - 00000000 ____D C:\Programme\Gemeinsame Dateien\Java 2013-12-14 21:58 - 2013-12-14 21:58 - 00000000 ____D C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Java 2013-12-14 21:58 - 2013-12-14 21:58 - 00000000 ____D C:\Dokumente und Einstellungen\Admin\Lokale Einstellungen\Anwendungsdaten\Sun 2013-12-14 21:58 - 2013-12-14 21:57 - 00264616 _____ (Oracle Corporation) C:\WINDOWS\system32\javaws.exe 2013-12-14 21:58 - 2013-12-14 21:57 - 00175016 _____ (Oracle Corporation) C:\WINDOWS\system32\javaw.exe 2013-12-14 21:58 - 2013-12-14 21:57 - 00174504 _____ (Oracle Corporation) C:\WINDOWS\system32\java.exe 2013-12-14 21:58 - 2013-12-14 21:57 - 00145408 _____ (Oracle Corporation) C:\WINDOWS\system32\javacpl.cpl 2013-12-14 21:58 - 2013-12-14 21:57 - 00094632 _____ (Oracle Corporation) C:\WINDOWS\system32\WindowsAccessBridge.dll 2013-12-14 21:57 - 2013-12-14 21:57 - 00000000 ____D C:\Programme\Java 2013-12-14 21:55 - 2013-12-14 21:55 - 00000000 ____D C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Sun 2013-12-14 21:54 - 2013-12-14 21:54 - 00000000 ____D C:\Dokumente und Einstellungen\Admin\Anwendungsdaten\Sun 2013-12-14 15:27 - 2013-12-14 15:27 - 00000000 ____D C:\Programme\Microsoft Silverlight 2013-12-14 15:27 - 2013-12-14 15:27 - 00000000 ____D C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Microsoft Silverlight 2013-12-14 15:27 - 2012-06-02 15:18 - 00275696 _____ (Microsoft Corporation) C:\WINDOWS\system32\mucltui.dll 2013-12-14 15:27 - 2012-06-02 15:18 - 00214256 _____ (Microsoft Corporation) C:\WINDOWS\system32\muweb.dll 2013-12-14 15:27 - 2012-06-02 15:18 - 00018160 _____ (Microsoft Corporation) C:\WINDOWS\system32\mucltui.dll.mui 2013-12-14 13:22 - 2013-12-14 13:22 - 00000000 ____D C:\WINDOWS\system32\appmgmt 2013-12-14 13:21 - 2013-12-14 13:21 - 00000000 ____D C:\Programme\Microsoft Office 2007 Portable German 2013-12-14 13:14 - 2013-12-14 13:14 - 00000000 ____D C:\Dokumente und Einstellungen\Admin\Eigene Dateien\Neuer Ordner 2013-12-14 13:11 - 2013-12-14 13:16 - 00000000 ____D C:\Dokumente und Einstellungen\Admin\Eigene Dateien\Wirtschaft und Politik 2013-12-14 13:07 - 2013-12-14 13:16 - 00000000 ____D C:\Dokumente und Einstellungen\Admin\Eigene Dateien\Trading 2013-12-14 13:06 - 2013-12-14 13:07 - 00000000 ____D C:\Dokumente und Einstellungen\Admin\Eigene Dateien\Sonstiges 2013-12-14 13:00 - 2013-12-14 13:00 - 00000000 ____D C:\Dokumente und Einstellungen\Admin\Anwendungsdaten\Adobe 2013-12-14 12:57 - 2013-12-14 12:57 - 00001804 _____ C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Adobe Reader XI.lnk 2013-12-14 12:57 - 2013-12-14 12:57 - 00001714 _____ C:\Dokumente und Einstellungen\All Users\Desktop\Adobe Reader XI.lnk 2013-12-14 12:55 - 2013-12-14 12:55 - 00000000 ____D C:\Programme\Gemeinsame Dateien\Adobe 2013-12-14 12:55 - 2013-12-14 12:55 - 00000000 ____D C:\Programme\Adobe 2013-12-14 12:54 - 2013-12-14 15:04 - 00000000 ____D C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Adobe 2013-12-14 12:53 - 2013-12-14 13:00 - 00000000 ____D C:\Dokumente und Einstellungen\Admin\Lokale Einstellungen\Anwendungsdaten\Adobe 2013-12-14 00:58 - 2013-12-14 00:58 - 04202496 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\NETw5x32.sys 2013-12-14 00:58 - 2013-12-14 00:58 - 02756608 _____ (Intel Corporation) C:\WINDOWS\system32\NETw5r32.dll 2013-12-14 00:58 - 2013-12-14 00:58 - 00663552 _____ (Intel Corporation) C:\WINDOWS\system32\NETw5c32.dll 2013-12-14 00:49 - 2013-12-14 00:48 - 00102104 _____ (Realtek Semiconductor Corporation) C:\WINDOWS\system32\RTNUninst32.dll 2013-12-14 00:49 - 2013-12-14 00:48 - 00077528 _____ (Realtek Semiconductor Corporation) C:\WINDOWS\system32\RtNicProp32.dll 2013-12-14 00:18 - 2008-05-26 18:27 - 00053248 _____ ( ) C:\WINDOWS\system32\DLLVGA.dll 2013-12-14 00:18 - 2007-12-11 08:54 - 00024576 _____ (TOSHIBA) C:\WINDOWS\system32\LEDONOFF.exe 2013-12-14 00:18 - 2007-04-10 10:22 - 00118784 _____ () C:\WINDOWS\system32\TCtrlIO.dll 2013-12-14 00:18 - 2007-04-10 09:08 - 00004608 _____ (TOSHIBA Corp.) C:\WINDOWS\system32\TSBWLS.dll 2013-12-14 00:18 - 2007-04-10 09:05 - 00009728 _____ (TOSHIBA Corp.) C:\WINDOWS\system32\TCMSVR.dll 2013-12-14 00:18 - 2007-04-04 08:56 - 00005888 _____ (TOSHIBA Corporation) C:\WINDOWS\system32\Drivers\FwLnk.sys 2013-12-14 00:18 - 2004-03-09 16:00 - 01081616 _____ (Microsoft Corporation) C:\WINDOWS\system32\mscomctl.ocx 2013-12-14 00:18 - 1998-06-25 08:00 - 00067376 _____ (Microsoft Corporation) C:\WINDOWS\system32\SYSINFO.OCX 2013-12-14 00:13 - 2008-02-15 18:01 - 00046592 _____ (REDC) C:\WINDOWS\system32\Drivers\rimmptsk.sys 2013-12-14 00:13 - 2007-07-30 11:54 - 00038400 _____ (REDC) C:\WINDOWS\system32\Drivers\rixdptsk.sys 2013-12-14 00:13 - 2007-07-30 10:42 - 00043008 _____ (REDC) C:\WINDOWS\system32\Drivers\rimsptsk.sys 2013-12-14 00:13 - 2007-07-25 12:48 - 00172032 _____ (Ricoh Company,Ltd) C:\WINDOWS\system32\rixdicon.dll 2013-12-14 00:13 - 2004-09-04 03:00 - 00090112 _____ (Sony Corporation) C:\WINDOWS\system32\snymsico.dll 2013-12-14 00:07 - 2005-04-12 10:04 - 00516096 _____ C:\WINDOWS\system32\TOSCDSPD.cpl 2013-12-14 00:05 - 2013-12-14 00:05 - 00000000 ____D C:\Dokumente und Einstellungen\Admin\Anwendungsdaten\toshiba 2013-12-13 23:55 - 2007-12-17 11:45 - 00018432 _____ (Chicony Electronics Co., Ltd.) C:\WINDOWS\system32\Drivers\UVCFTR_S.SYS 2013-12-13 23:54 - 2013-12-13 23:54 - 00000000 ____D C:\Programme\Camera Assistant Software for Toshiba 2013-12-13 23:54 - 2013-12-13 23:54 - 00000000 ____D C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Camera Assistant Software 2013-12-13 23:48 - 2013-12-14 00:02 - 00000486 _____ C:\WINDOWS\system32\results.txt 2013-12-13 23:48 - 2004-04-09 21:34 - 00028672 _____ (ASKEY COMPUTER CORP.) C:\WINDOWS\system32\DelRunOnceReg.exe 2013-12-13 23:47 - 2008-04-14 07:53 - 00016384 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ipsink.ax 2013-12-13 23:47 - 2008-04-14 07:53 - 00016384 _____ (Microsoft Corporation) C:\WINDOWS\system32\ipsink.ax 2013-12-13 23:47 - 2008-04-14 00:16 - 00085248 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\nabtsfec.sys 2013-12-13 23:47 - 2008-04-14 00:16 - 00085248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\NABTSFEC.sys 2013-12-13 23:47 - 2008-04-14 00:16 - 00019200 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wstcodec.sys 2013-12-13 23:47 - 2008-04-14 00:16 - 00019200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WSTCODEC.SYS 2013-12-13 23:47 - 2008-04-14 00:16 - 00015232 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\streamip.sys 2013-12-13 23:47 - 2008-04-14 00:16 - 00015232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\StreamIP.sys 2013-12-13 23:47 - 2008-04-14 00:16 - 00011136 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\slip.sys 2013-12-13 23:47 - 2008-04-14 00:16 - 00011136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\SLIP.sys 2013-12-13 23:47 - 2008-04-14 00:16 - 00010880 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ndisip.sys 2013-12-13 23:47 - 2008-04-14 00:16 - 00010880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\NdisIP.sys 2013-12-13 23:47 - 2008-04-14 00:09 - 00005504 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mstee.sys 2013-12-13 23:47 - 2008-04-14 00:09 - 00005504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\MSTEE.sys 2013-12-13 23:46 - 2008-04-14 07:53 - 00091648 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kswdmcap.ax 2013-12-13 23:46 - 2008-04-14 07:53 - 00091648 _____ (Microsoft Corporation) C:\WINDOWS\system32\kswdmcap.ax 2013-12-13 23:46 - 2008-04-14 07:53 - 00061952 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kstvtune.ax 2013-12-13 23:46 - 2008-04-14 07:53 - 00061952 _____ (Microsoft Corporation) C:\WINDOWS\system32\kstvtune.ax 2013-12-13 23:46 - 2008-04-14 07:53 - 00043008 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ksxbar.ax 2013-12-13 23:46 - 2008-04-14 07:53 - 00043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\ksxbar.ax 2013-12-13 23:46 - 2008-04-14 07:53 - 00020992 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\dshowext.ax 2013-12-13 23:46 - 2008-04-14 07:53 - 00020992 _____ (Microsoft Corporation) C:\WINDOWS\system32\dshowext.ax 2013-12-13 23:46 - 2008-04-14 07:52 - 00054272 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\vfwwdm32.dll 2013-12-13 23:46 - 2008-04-14 07:52 - 00054272 _____ (Microsoft Corporation) C:\WINDOWS\system32\vfwwdm32.dll 2013-12-13 23:46 - 2008-04-14 00:16 - 00017024 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ccdecode.sys 2013-12-13 23:46 - 2008-04-14 00:16 - 00017024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\CCDECODE.sys 2013-12-13 23:46 - 2008-04-14 00:15 - 00032128 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\usbccgp.sys 2013-12-13 23:46 - 2008-04-14 00:15 - 00032128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbccgp.sys 2013-12-13 23:03 - 2013-12-13 23:03 - 00005033 _____ C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\mtbjfghn.xbe 2013-12-13 23:03 - 2013-12-13 23:03 - 00000000 ____D C:\Dokumente und Einstellungen\Admin\Anwendungsdaten\Carambis 2013-12-13 23:02 - 2013-12-13 23:03 - 00000000 ____D C:\Dokumente und Einstellungen\Admin\Lokale Einstellungen\TempDIR 2013-12-13 22:52 - 2013-12-13 22:58 - 00065536 _____ C:\WINDOWS\system32\config\ACS.evt 2013-12-13 22:50 - 2013-12-14 00:02 - 00000000 ____D C:\Programme\Atheros 2013-12-13 22:50 - 2013-12-13 22:50 - 00000000 ____D C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Atheros 2013-12-13 22:44 - 2013-12-13 22:44 - 00000000 ____D C:\Medion 2013-12-13 22:24 - 2013-12-13 22:24 - 00000000 ____D C:\Intel 2013-12-13 22:24 - 2008-02-22 13:06 - 00053248 _____ (Windows XP Bundled build C-Centric Single User) C:\WINDOWS\system32\CSVer.dll 2013-12-13 22:18 - 2013-12-13 22:19 - 00000280 _____ C:\WINDOWS\nsw.log 2013-12-13 22:17 - 2013-12-14 00:58 - 00023494 _____ C:\WINDOWS\DPINST.LOG 2013-12-13 22:15 - 2013-12-13 22:15 - 00000000 ____D C:\Dokumente und Einstellungen\Admin\Anwendungsdaten\WinBatch 2013-12-13 21:50 - 2013-12-13 21:50 - 00000738 _____ C:\Dokumente und Einstellungen\All Users\Desktop\Emsisoft Anti-Malware.lnk 2013-12-13 21:50 - 2013-12-13 21:50 - 00000000 ____D C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Emsisoft Anti-Malware 2013-12-13 21:49 - 2013-12-24 20:55 - 00000000 ____D C:\Programme\Emsisoft Anti-Malware 2013-12-13 21:49 - 2013-12-13 21:49 - 00000000 ____D C:\Dokumente und Einstellungen\Admin\Eigene Dateien\Anti-Malware 2013-12-13 21:48 - 2013-12-13 21:48 - 00000253 _____ C:\WINDOWS\system32\spupdwxp.log 2013-12-13 21:48 - 2013-12-13 21:48 - 00000187 _____ C:\WINDOWS\spupdsvc.log.1.log 2013-12-13 21:42 - 2013-12-13 21:48 - 00069866 _____ C:\WINDOWS\spupdsvc.log 2013-12-13 21:42 - 2013-12-13 21:42 - 00000000 ____D C:\WINDOWS\system32\de-de 2013-12-13 21:42 - 2013-12-13 21:42 - 00000000 ____D C:\WINDOWS\system32\de 2013-12-13 21:42 - 2013-12-13 21:42 - 00000000 ____D C:\WINDOWS\system32\bits 2013-12-13 21:42 - 2013-12-13 21:42 - 00000000 ____D C:\WINDOWS\l2schemas 2013-12-13 21:42 - 2008-04-14 07:53 - 00073796 ____N (Smart Link) C:\WINDOWS\system32\slserv.exe 2013-12-13 21:42 - 2008-04-14 07:53 - 00060416 ____N (Microsoft Corporation) C:\WINDOWS\system32\tzchange.exe 2013-12-13 21:42 - 2008-04-14 07:53 - 00032866 ____N (Smart Link) C:\WINDOWS\system32\slrundll.exe 2013-12-13 21:42 - 2008-04-14 07:53 - 00032866 ____N (Smart Link) C:\WINDOWS\slrundll.exe 2013-12-13 21:42 - 2008-04-14 07:53 - 00032768 ____N (Microsoft Corporation) C:\WINDOWS\system32\setupn.exe 2013-12-13 21:42 - 2008-04-14 07:53 - 00028672 ____N (Microsoft Corporation) C:\WINDOWS\system32\verclsid.exe 2013-12-13 21:42 - 2008-04-14 07:53 - 00028672 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\vidcap.ax 2013-12-13 21:42 - 2008-04-14 07:53 - 00028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\vidcap.ax 2013-12-13 21:42 - 2008-04-14 07:53 - 00023040 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\ativmvxx.ax 2013-12-13 21:42 - 2008-04-14 07:53 - 00009728 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\ativdaxx.ax 2013-12-13 21:42 - 2008-04-14 07:52 - 04274816 ____N (NVIDIA Corporation) C:\WINDOWS\system32\nv4_disp.dll 2013-12-13 21:42 - 2008-04-14 07:52 - 01737856 ____N (Matrox Graphics Inc.) C:\WINDOWS\system32\mtxparhd.dll 2013-12-13 21:42 - 2008-04-14 07:52 - 01306624 ____N (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll 2013-12-13 21:42 - 2008-04-14 07:52 - 01306624 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msxml6.dll 2013-12-13 21:42 - 2008-04-14 07:52 - 00870784 ____N (ATI Technologies Inc. ) C:\WINDOWS\system32\ati3d1ag.dll 2013-12-13 21:42 - 2008-04-14 07:52 - 00712704 ____N (Microsoft Corporation) C:\WINDOWS\system32\windowscodecs.dll 2013-12-13 21:42 - 2008-04-14 07:52 - 00651264 ____N (Microsoft Corporation) C:\WINDOWS\system32\dot3ui.dll 2013-12-13 21:42 - 2008-04-14 07:52 - 00412160 ____N (Microsoft Corporation) C:\WINDOWS\system32\photometadatahandler.dll 2013-12-13 21:42 - 2008-04-14 07:52 - 00397312 ____N (Microsoft Corporation) C:\WINDOWS\system32\mmcex.dll 2013-12-13 21:42 - 2008-04-14 07:52 - 00397056 ____N (S3 Graphics, Inc.) C:\WINDOWS\system32\s3gnb.dll 2013-12-13 21:42 - 2008-04-14 07:52 - 00377984 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\ati2dvaa.dll 2013-12-13 21:42 - 2008-04-14 07:52 - 00346112 ____N (Microsoft Corporation) C:\WINDOWS\system32\windowscodecsext.dll 2013-12-13 21:42 - 2008-04-14 07:52 - 00294400 ____N (Microsoft Corporation) C:\WINDOWS\system32\qagentrt.dll 2013-12-13 21:42 - 2008-04-14 07:52 - 00290304 ____N (Microsoft Corporation) C:\WINDOWS\system32\rhttpaa.dll 2013-12-13 21:42 - 2008-04-14 07:52 - 00286792 ____N (Smart Link) C:\WINDOWS\system32\slextspk.dll 2013-12-13 21:42 - 2008-04-14 07:52 - 00276992 ____N (Microsoft Corporation) C:\WINDOWS\system32\wmphoto.dll 2013-12-13 21:42 - 2008-04-14 07:52 - 00233472 ____N (Microsoft Corporation) C:\WINDOWS\system32\azroles.dll 2013-12-13 21:42 - 2008-04-14 07:52 - 00198656 ____N (Microsoft Corporation) C:\WINDOWS\system32\napmontr.dll 2013-12-13 21:42 - 2008-04-14 07:52 - 00188508 ____N (Smart Link) C:\WINDOWS\system32\slgen.dll 2013-12-13 21:42 - 2008-04-14 07:52 - 00184832 ____N (Microsoft Corporation) C:\WINDOWS\system32\eapp3hst.dll 2013-12-13 21:42 - 2008-04-14 07:52 - 00184320 ____N (Microsoft Corporation) C:\WINDOWS\system32\microsoft.managementconsole.dll 2013-12-13 21:42 - 2008-04-14 07:52 - 00182272 ____N (Microsoft Corporation) C:\WINDOWS\system32\eapphost.dll 2013-12-13 21:42 - 2008-04-14 07:52 - 00177664 ____N (Microsoft Corporation) C:\WINDOWS\system32\napstat.exe 2013-12-13 21:42 - 2008-04-14 07:52 - 00155136 ____N (Microsoft Corporation) C:\WINDOWS\system32\mssha.dll 2013-12-13 21:42 - 2008-04-14 07:52 - 00151040 ____N (Microsoft Corporation) C:\WINDOWS\system32\qagent.dll 2013-12-13 21:42 - 2008-04-14 07:52 - 00145408 ____N (Microsoft Corporation) C:\WINDOWS\system32\onex.dll 2013-12-13 21:42 - 2008-04-14 07:52 - 00136192 ____N (Microsoft Corporation) C:\WINDOWS\system32\aaclient.dll 2013-12-13 21:42 - 2008-04-14 07:52 - 00133120 ____N (Microsoft Corporation) C:\WINDOWS\system32\dot3svc.dll 2013-12-13 21:42 - 2008-04-14 07:52 - 00126976 ____N (Microsoft Corporation) C:\WINDOWS\system32\eappcfg.dll 2013-12-13 21:42 - 2008-04-14 07:52 - 00121856 ____N (Microsoft Corporation) C:\WINDOWS\system32\xmllite.dll 2013-12-13 21:42 - 2008-04-14 07:52 - 00106496 ____N (Microsoft Corporation) C:\WINDOWS\system32\mmcfxcommon.dll 2013-12-13 21:42 - 2008-04-14 07:52 - 00095232 ____N (Microsoft Corporation) C:\WINDOWS\system32\eappgnui.dll 2013-12-13 21:42 - 2008-04-14 07:52 - 00086016 ____N (Conexant) C:\WINDOWS\system32\mdmxsdk.dll 2013-12-13 21:42 - 2008-04-14 07:52 - 00076800 ____N (Microsoft Corporation) C:\WINDOWS\system32\qutil.dll 2013-12-13 21:42 - 2008-04-14 07:52 - 00073832 ____N (Smart Link) C:\WINDOWS\system32\slcoinst.dll 2013-12-13 21:42 - 2008-04-14 07:52 - 00069120 ____N (Microsoft Corporation) C:\WINDOWS\system32\wlanapi.dll 2013-12-13 21:42 - 2008-04-14 07:52 - 00062976 ____N (Microsoft Corporation) C:\WINDOWS\system32\dot3cfg.dll 2013-12-13 21:42 - 2008-04-14 07:52 - 00062464 ____N (Microsoft Corporation) C:\WINDOWS\system32\qcliprov.dll 2013-12-13 21:42 - 2008-04-14 07:52 - 00061952 ____N (Microsoft Corporation) C:\WINDOWS\system32\rasqec.dll 2013-12-13 21:42 - 2008-04-14 07:52 - 00061440 ____N (Microsoft Corporation) C:\WINDOWS\system32\kmsvc.dll 2013-12-13 21:42 - 2008-04-14 07:52 - 00059392 ____N (Microsoft Corporation) C:\WINDOWS\system32\eapqec.dll 2013-12-13 21:42 - 2008-04-14 07:52 - 00056832 ____N (Microsoft Corporation) C:\WINDOWS\system32\dot3msm.dll 2013-12-13 21:42 - 2008-04-14 07:52 - 00053248 ____N (Microsoft Corporation) C:\WINDOWS\system32\tsgqec.dll 2013-12-13 21:42 - 2008-04-14 07:52 - 00050688 ____N (Microsoft Corporation) C:\WINDOWS\system32\tspkg.dll 2013-12-13 21:42 - 2008-04-14 07:52 - 00048640 ____N (Microsoft Corporation) C:\WINDOWS\system32\dhcpqec.dll 2013-12-13 21:42 - 2008-04-14 07:52 - 00040960 ____N (Microsoft Corporation) C:\WINDOWS\system32\eappprxy.dll 2013-12-13 21:42 - 2008-04-14 07:52 - 00039936 ____N (Microsoft Corporation) C:\WINDOWS\system32\dot3gpclnt.dll 2013-12-13 21:42 - 2008-04-14 07:52 - 00039936 ____N (Microsoft Corporation) C:\WINDOWS\system32\dimsroam.dll 2013-12-13 21:42 - 2008-04-14 07:52 - 00037376 ____N (Microsoft Corporation) C:\WINDOWS\system32\l2gpstore.dll 2013-12-13 21:42 - 2008-04-14 07:52 - 00033792 ____N (Microsoft Corporation) C:\WINDOWS\system32\mmcperf.exe 2013-12-13 21:42 - 2008-04-14 07:52 - 00033792 ____N (Microsoft Corporation) C:\WINDOWS\system32\eapsvc.dll 2013-12-13 21:42 - 2008-04-14 07:52 - 00032768 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\ativtmxx.dll 2013-12-13 21:42 - 2008-04-14 07:52 - 00032285 ____N (Conexant Systems, Inc.) C:\WINDOWS\system32\hsfcisp2.dll 2013-12-13 21:42 - 2008-04-14 07:52 - 00030720 ____N (Microsoft Corporation) C:\WINDOWS\system32\eapolqec.dll 2013-12-13 21:42 - 2008-04-14 07:52 - 00030208 ____N (Microsoft Corporation) C:\WINDOWS\system32\napipsec.dll 2013-12-13 21:42 - 2008-04-14 07:52 - 00026112 ____N (Microsoft Corporation) C:\WINDOWS\system32\dot3api.dll 2013-12-13 21:42 - 2008-04-14 07:52 - 00019456 ____N (Microsoft Corporation) C:\WINDOWS\system32\dimsntfy.dll 2013-12-13 21:42 - 2008-04-14 07:52 - 00012800 ____N (Microsoft Corporation) C:\WINDOWS\system32\credssp.dll 2013-12-13 21:42 - 2008-04-14 07:52 - 00010752 ____N (Microsoft Corporation) C:\WINDOWS\system32\smtpapi.dll 2013-12-13 21:42 - 2008-04-14 07:52 - 00009728 ____N (Microsoft Corporation) C:\WINDOWS\system32\rwnh.dll 2013-12-13 21:42 - 2008-04-14 07:52 - 00009216 ____N (Microsoft Corporation) C:\WINDOWS\system32\dot3dlg.dll 2013-12-13 21:42 - 2008-04-14 07:52 - 00007168 ____N (Microsoft Corporation) C:\WINDOWS\system32\bitsprx4.dll 2013-12-13 21:42 - 2008-04-14 07:51 - 00102912 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\dpcdll.dll 2013-12-13 21:42 - 2008-04-14 07:51 - 00086016 ____C (Sipro Lab Telecom Inc.) C:\WINDOWS\system32\dllcache\sl_anet.acm 2013-12-13 21:42 - 2008-04-14 07:50 - 00294912 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msaud32.acm 2013-12-13 21:42 - 2008-04-14 07:50 - 00290816 ____C (Fraunhofer Institut Integrierte Schaltungen IIS) C:\WINDOWS\system32\dllcache\l3codeca.acm 2013-12-13 21:42 - 2008-04-14 07:50 - 00006144 ____N (Microsoft Corporation) C:\WINDOWS\system32\kbdpash.dll 2013-12-13 21:42 - 2008-04-14 07:50 - 00006144 ____N (Microsoft Corporation) C:\WINDOWS\system32\kbdnepr.dll 2013-12-13 21:42 - 2008-04-14 07:50 - 00006144 ____N (Microsoft Corporation) C:\WINDOWS\system32\kbdiultn.dll 2013-12-13 21:42 - 2008-04-14 07:50 - 00006144 ____N (Microsoft Corporation) C:\WINDOWS\system32\kbdbhc.dll 2013-12-13 21:42 - 2008-04-14 07:27 - 00093184 ____N (Microsoft Corporation) C:\WINDOWS\system32\msxml6r.dll 2013-12-13 21:42 - 2008-04-14 07:27 - 00093184 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msxml6r.dll 2013-12-13 21:42 - 2008-04-14 07:26 - 00081408 ____N (Microsoft Corporation) C:\WINDOWS\system32\msshavmsg.dll 2013-12-13 21:42 - 2008-04-14 00:15 - 00046592 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\irbus.sys 2013-12-13 21:42 - 2008-04-14 00:13 - 00009728 ____N (Microsoft Corporation) C:\WINDOWS\system32\comsdupd.exe 2013-12-13 21:42 - 2008-04-14 00:09 - 00779776 ____N (Microsoft Corporation) C:\WINDOWS\system32\xpsp3res.dll 2013-12-13 21:42 - 2007-06-26 11:30 - 00572557 ____C C:\WINDOWS\system32\dllcache\rtuner.wmv 2013-12-13 21:42 - 2007-06-26 11:30 - 00457607 ____C C:\WINDOWS\system32\dllcache\mdlib.wmv 2013-12-13 21:42 - 2007-06-26 11:30 - 00381425 ____C C:\WINDOWS\system32\dllcache\copycd.wmv 2013-12-13 21:42 - 2007-06-26 11:30 - 00375519 ____C C:\WINDOWS\system32\dllcache\nuskin.wmv 2013-12-13 21:42 - 2007-06-26 11:30 - 00354468 ____C C:\WINDOWS\system32\dllcache\wmpaud1.wav 2013-12-13 21:42 - 2007-06-26 11:30 - 00343204 ____C C:\WINDOWS\system32\dllcache\wmpaud7.wav 2013-12-13 21:42 - 2007-06-26 11:30 - 00343204 ____C C:\WINDOWS\system32\dllcache\wmpaud6.wav 2013-12-13 21:42 - 2007-06-26 11:30 - 00300969 ____C C:\WINDOWS\system32\dllcache\viz.wmv 2013-12-13 21:42 - 2007-06-26 11:30 - 00172196 ____C C:\WINDOWS\system32\dllcache\wmpaud9.wav 2013-12-13 21:42 - 2007-06-26 11:30 - 00172196 ____C C:\WINDOWS\system32\dllcache\wmpaud8.wav 2013-12-13 21:42 - 2007-06-26 11:30 - 00172196 ____C C:\WINDOWS\system32\dllcache\wmpaud3.wav 2013-12-13 21:42 - 2007-06-26 11:30 - 00086196 ____C C:\WINDOWS\system32\dllcache\wmpaud5.wav 2013-12-13 21:42 - 2007-06-26 11:30 - 00086180 ____C C:\WINDOWS\system32\dllcache\wmpaud4.wav 2013-12-13 21:42 - 2007-06-26 11:30 - 00086180 ____C C:\WINDOWS\system32\dllcache\wmpaud2.wav 2013-12-13 21:42 - 2007-06-26 11:30 - 00022060 ____C C:\WINDOWS\system32\dllcache\npds.zip 2013-12-13 21:42 - 2007-06-26 11:30 - 00010457 ____C C:\WINDOWS\system32\dllcache\wmptour.hta 2013-12-13 21:42 - 2007-06-26 11:30 - 00009585 ____C C:\WINDOWS\system32\dllcache\controls.css 2013-12-13 21:42 - 2007-06-26 11:30 - 00008298 ____C C:\WINDOWS\system32\dllcache\contents.htm 2013-12-13 21:42 - 2007-06-26 11:30 - 00006878 ____C C:\WINDOWS\system32\dllcache\controls.js 2013-12-13 21:42 - 2007-06-26 11:30 - 00005971 ____C C:\WINDOWS\system32\dllcache\events.js 2013-12-13 21:42 - 2007-06-26 11:30 - 00003187 ____C C:\WINDOWS\system32\dllcache\tour.js 2013-12-13 21:42 - 2007-06-26 11:30 - 00001771 ____C C:\WINDOWS\system32\dllcache\wmptour.css 2013-12-13 21:42 - 2007-06-26 11:30 - 00001148 ____C C:\WINDOWS\system32\dllcache\snd.htm 2013-12-13 21:42 - 2007-06-26 11:30 - 00000420 ____C C:\WINDOWS\system32\dllcache\wmploc.js 2013-12-13 21:42 - 2007-06-26 11:29 - 00097117 ____C C:\WINDOWS\system32\dllcache\mplayer2.hlp 2013-12-13 21:42 - 2007-06-26 11:29 - 00001885 ____C C:\WINDOWS\system32\dllcache\mplayer2.cnt 2013-12-13 21:42 - 2007-06-26 11:26 - 00000403 ____C C:\WINDOWS\system32\dllcache\npdrmv2.zip 2013-12-13 21:42 - 2007-02-21 10:45 - 00076456 ____C C:\WINDOWS\system32\dllcache\wmplayer.adm 2013-12-13 21:42 - 2007-02-21 10:36 - 00026141 ____C C:\WINDOWS\system32\dllcache\wmplay.chm 2013-12-13 21:42 - 2007-02-21 10:25 - 00660224 ____C C:\WINDOWS\system32\dllcache\wmplayer.chm 2013-12-13 21:42 - 2007-02-21 10:25 - 00184109 ____C C:\WINDOWS\system32\dllcache\compact.wmz 2013-12-13 21:42 - 2007-02-21 10:25 - 00084531 ____C C:\WINDOWS\system32\dllcache\plyr_err.chm 2013-12-13 21:42 - 2007-02-21 10:25 - 00066132 ____C C:\WINDOWS\system32\dllcache\revert.wmz 2013-12-13 21:42 - 2007-02-21 10:25 - 00001476 ____C C:\WINDOWS\system32\dllcache\plylst5.wpl 2013-12-13 21:42 - 2007-02-21 10:25 - 00001471 ____C C:\WINDOWS\system32\dllcache\plylst6.wpl 2013-12-13 21:42 - 2007-02-21 10:25 - 00001471 ____C C:\WINDOWS\system32\dllcache\plylst12.wpl 2013-12-13 21:42 - 2007-02-21 10:25 - 00001469 ____C C:\WINDOWS\system32\dllcache\plylst3.wpl 2013-12-13 21:42 - 2007-02-21 10:25 - 00001467 ____C C:\WINDOWS\system32\dllcache\plylst4.wpl 2013-12-13 21:42 - 2007-02-21 10:25 - 00001261 ____C C:\WINDOWS\system32\dllcache\plylst1.wpl 2013-12-13 21:42 - 2007-02-21 10:25 - 00001055 ____C C:\WINDOWS\system32\dllcache\plylst2.wpl 2013-12-13 21:42 - 2007-02-21 10:25 - 00001047 ____C C:\WINDOWS\system32\dllcache\plylst7.wpl 2013-12-13 21:42 - 2007-02-21 10:25 - 00001038 ____C C:\WINDOWS\system32\dllcache\plylst8.wpl 2013-12-13 21:42 - 2007-02-21 10:25 - 00000807 ____C C:\WINDOWS\system32\dllcache\plylst11.wpl 2013-12-13 21:42 - 2007-02-21 10:25 - 00000800 ____C C:\WINDOWS\system32\dllcache\plylst10.wpl 2013-12-13 21:42 - 2007-02-21 10:25 - 00000782 ____C C:\WINDOWS\system32\dllcache\plylst9.wpl 2013-12-13 21:42 - 2007-02-21 10:25 - 00000779 ____C C:\WINDOWS\system32\dllcache\plylst13.wpl 2013-12-13 21:42 - 2007-02-21 10:25 - 00000778 ____C C:\WINDOWS\system32\dllcache\plylst14.wpl 2013-12-13 21:42 - 2007-02-21 10:25 - 00000725 ____C C:\WINDOWS\system32\dllcache\plylst15.wpl 2013-12-13 21:41 - 2013-12-13 21:41 - 00000000 ____D C:\WINDOWS\ServicePackFiles 2013-12-13 21:40 - 2013-12-21 16:03 - 14155776 _____ C:\WINDOWS\system32\config\software.bak 2013-12-13 21:40 - 2013-12-21 16:03 - 04194304 _____ C:\WINDOWS\system32\config\system.bak 2013-12-13 21:40 - 2013-12-21 16:03 - 00524288 _____ C:\WINDOWS\system32\config\default.bak 2013-12-13 21:40 - 2013-12-21 15:54 - 00000327 __RSH C:\boot.ini 2013-12-13 21:40 - 2013-12-13 21:40 - 00663552 _____ C:\WINDOWS\system32\config\software.sav 2013-12-13 21:40 - 2013-12-13 21:40 - 00454656 _____ C:\WINDOWS\system32\config\system.sav 2013-12-13 21:40 - 2013-12-13 21:40 - 00262144 _____ C:\WINDOWS\system32\config\userdiff 2013-12-13 21:40 - 2013-12-13 21:40 - 00094208 _____ C:\WINDOWS\system32\config\default.sav 2013-12-13 21:40 - 2013-12-13 21:40 - 00001024 ____H C:\WINDOWS\system32\config\userdiff.LOG 2013-12-13 21:40 - 2013-12-13 21:40 - 00001024 ____H C:\WINDOWS\system32\config\TempKey.LOG 2013-12-13 21:40 - 2008-04-14 07:52 - 00294912 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\dlimport.exe 2013-12-13 21:39 - 2013-12-19 12:36 - 00093174 _____ C:\WINDOWS\updspapi.log 2013-12-13 21:39 - 2008-04-14 07:52 - 00025471 ____N (Intel(R) Corporation) C:\WINDOWS\system32\Drivers\atv04nt5.dll 2013-12-13 21:39 - 2008-04-14 07:52 - 00021183 ____N (Intel(R) Corporation) C:\WINDOWS\system32\Drivers\atv01nt5.dll 2013-12-13 21:39 - 2008-04-14 07:52 - 00017279 ____N (Intel(R) Corporation) C:\WINDOWS\system32\Drivers\atv10nt5.dll 2013-12-13 21:39 - 2008-04-14 07:52 - 00015423 ____N (Intel(R) Corporation) C:\WINDOWS\system32\Drivers\ch7xxnt5.dll 2013-12-13 21:39 - 2008-04-14 07:52 - 00014143 ____N (Intel(R) Corporation) C:\WINDOWS\system32\Drivers\atv06nt5.dll 2013-12-13 21:39 - 2008-04-14 07:52 - 00011359 ____N (Intel(R) Corporation) C:\WINDOWS\system32\Drivers\atv02nt5.dll 2013-12-13 21:39 - 2008-04-14 07:52 - 00011325 ____N (Intel(R) Corporation) C:\WINDOWS\system32\Drivers\vchnt5.dll 2013-12-13 21:39 - 2008-04-14 07:52 - 00004255 ____N (Intel(R) Corporation) C:\WINDOWS\system32\Drivers\adv01nt5.dll 2013-12-13 21:39 - 2008-04-14 07:52 - 00003967 ____N (Intel(R) Corporation) C:\WINDOWS\system32\Drivers\adv02nt5.dll 2013-12-13 21:39 - 2008-04-14 07:52 - 00003901 ____N (Intel(R) Corporation) C:\WINDOWS\system32\Drivers\siint5.dll 2013-12-13 21:39 - 2008-04-14 07:52 - 00003775 ____N (Intel(R) Corporation) C:\WINDOWS\system32\Drivers\adv11nt5.dll 2013-12-13 21:39 - 2008-04-14 07:52 - 00003711 ____N (Intel(R) Corporation) C:\WINDOWS\system32\Drivers\adv09nt5.dll 2013-12-13 21:39 - 2008-04-14 07:52 - 00003647 ____N (Intel(R) Corporation) C:\WINDOWS\system32\Drivers\adv07nt5.dll 2013-12-13 21:39 - 2008-04-14 07:52 - 00003615 ____N (Intel(R) Corporation) C:\WINDOWS\system32\Drivers\adv05nt5.dll 2013-12-13 21:39 - 2008-04-14 07:52 - 00003135 ____N (Intel(R) Corporation) C:\WINDOWS\system32\Drivers\adv08nt5.dll 2013-12-13 21:39 - 2008-04-14 07:24 - 00025856 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidbth.sys 2013-12-13 21:39 - 2008-04-14 07:22 - 00273920 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys 2013-12-13 21:39 - 2008-04-14 07:21 - 00327168 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\ati2mtaa.sys 2013-12-13 21:39 - 2008-04-14 00:26 - 00030592 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rndismpx.sys 2013-12-13 21:39 - 2008-04-14 00:26 - 00012800 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usb8023x.sys 2013-12-13 21:39 - 2008-04-14 00:21 - 00101120 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthpan.sys 2013-12-13 21:39 - 2008-04-14 00:16 - 00121984 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\usbvideo.sys 2013-12-13 21:39 - 2008-04-14 00:16 - 00121984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbvideo.sys 2013-12-13 21:39 - 2008-04-14 00:16 - 00059136 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rfcomm.sys 2013-12-13 21:39 - 2008-04-14 00:16 - 00037888 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthmodem.sys 2013-12-13 21:39 - 2008-04-14 00:16 - 00036480 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthprint.sys 2013-12-13 21:39 - 2008-04-14 00:16 - 00018944 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthusb.sys 2013-12-13 21:39 - 2008-04-14 00:16 - 00017024 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthenum.sys 2013-12-13 21:39 - 2008-04-14 00:15 - 00019200 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidir.sys 2013-12-13 21:39 - 2008-04-14 00:13 - 00014208 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wacompen.sys 2013-12-13 21:39 - 2008-04-14 00:13 - 00012672 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mutohpen.sys 2013-12-13 21:39 - 2008-04-14 00:10 - 00010240 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sffp_mmc.sys 2013-12-13 21:39 - 2008-04-14 00:06 - 00046464 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\gagp30kx.sys 2013-12-13 21:39 - 2008-04-14 00:06 - 00044928 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\agpcpq.sys 2013-12-13 21:39 - 2008-04-14 00:06 - 00044672 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\uagp35.sys 2013-12-13 21:39 - 2008-04-14 00:06 - 00043008 ____N (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\Drivers\amdagp.sys 2013-12-13 21:39 - 2008-04-14 00:06 - 00042752 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\alim1541.sys 2013-12-13 21:39 - 2008-04-14 00:06 - 00042368 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\agp440.sys 2013-12-13 21:39 - 2008-04-14 00:06 - 00042240 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\viaagp.sys 2013-12-13 21:39 - 2008-04-14 00:06 - 00040960 ____N (Silicon Integrated Systems Corporation) C:\WINDOWS\system32\Drivers\sisagp.sys 2013-12-13 21:39 - 2008-04-14 00:06 - 00005888 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\smbali.sys 2013-12-13 21:39 - 2008-04-13 23:53 - 01309184 ____N (Smart Link) C:\WINDOWS\system32\Drivers\mtlstrm.sys 2013-12-13 21:39 - 2008-04-13 23:53 - 01041536 ____N (Conexant Systems, Inc.) C:\WINDOWS\system32\Drivers\hsfdpsp2.sys 2013-12-13 21:39 - 2008-04-13 23:53 - 00685056 ____N (Conexant Systems, Inc.) C:\WINDOWS\system32\Drivers\hsfcxts2.sys 2013-12-13 21:39 - 2008-04-13 23:53 - 00404990 ____N (Smart Link) C:\WINDOWS\system32\Drivers\slntamr.sys 2013-12-13 21:39 - 2008-04-13 23:53 - 00220032 ____N (Conexant Systems, Inc.) C:\WINDOWS\system32\Drivers\hsfbs2s2.sys 2013-12-13 21:39 - 2008-04-13 23:53 - 00180360 ____N (Smart Link) C:\WINDOWS\system32\Drivers\ntmtlfax.sys 2013-12-13 21:39 - 2008-04-13 23:53 - 00129535 ____N (Smart Link) C:\WINDOWS\system32\Drivers\slnt7554.sys 2013-12-13 21:39 - 2008-04-13 23:53 - 00126686 ____N (Smart Link) C:\WINDOWS\system32\Drivers\mtlmnt5.sys 2013-12-13 21:39 - 2008-04-13 23:53 - 00095424 ____N (Smart Link) C:\WINDOWS\system32\Drivers\slnthal.sys 2013-12-13 21:39 - 2008-04-13 23:53 - 00013776 ____N (Smart Link) C:\WINDOWS\system32\Drivers\recagent.sys 2013-12-13 21:39 - 2008-04-13 23:53 - 00013240 ____N (Smart Link) C:\WINDOWS\system32\Drivers\slwdmsup.sys 2013-12-13 21:39 - 2008-04-13 23:53 - 00011868 ____N (Conexant) C:\WINDOWS\system32\Drivers\mdmxsdk.sys 2013-12-13 21:39 - 2008-04-13 22:04 - 01897408 ____N (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nv4_mini.sys 2013-12-13 21:39 - 2008-04-13 22:04 - 00452736 ____N (Matrox Graphics Inc.) C:\WINDOWS\system32\Drivers\mtxparhm.sys 2013-12-13 21:39 - 2008-04-13 22:04 - 00166912 ____N (S3 Graphics, Inc.) C:\WINDOWS\system32\Drivers\s3gnbm.sys 2013-12-13 21:39 - 2008-04-13 22:04 - 00104960 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\atinrvxx.sys 2013-12-13 21:39 - 2008-04-13 22:04 - 00073216 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\atintuxx.sys 2013-12-13 21:39 - 2008-04-13 22:04 - 00063663 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\ati1rvxx.sys 2013-12-13 21:39 - 2008-04-13 22:04 - 00063488 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\atinxsxx.sys 2013-12-13 21:39 - 2008-04-13 22:04 - 00057856 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\atinbtxx.sys 2013-12-13 21:39 - 2008-04-13 22:04 - 00056623 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\ati1btxx.sys 2013-12-13 21:39 - 2008-04-13 22:04 - 00052224 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\atinraxx.sys 2013-12-13 21:39 - 2008-04-13 22:04 - 00036463 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\ati1tuxx.sys 2013-12-13 21:39 - 2008-04-13 22:04 - 00034735 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\ati1xsxx.sys 2013-12-13 21:39 - 2008-04-13 22:04 - 00031744 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\atinxbxx.sys 2013-12-13 21:39 - 2008-04-13 22:04 - 00030671 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\ati1raxx.sys 2013-12-13 21:39 - 2008-04-13 22:04 - 00029455 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\ati1xbxx.sys 2013-12-13 21:39 - 2008-04-13 22:04 - 00028672 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\atinsnxx.sys 2013-12-13 21:39 - 2008-04-13 22:04 - 00026367 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\ati1snxx.sys 2013-12-13 21:39 - 2008-04-13 22:04 - 00025471 ____N (Intel(R) Corporation) C:\WINDOWS\system32\Drivers\watv10nt.sys 2013-12-13 21:39 - 2008-04-13 22:04 - 00022271 ____N (Intel(R) Corporation) C:\WINDOWS\system32\Drivers\watv06nt.sys 2013-12-13 21:39 - 2008-04-13 22:04 - 00021343 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\ati1ttxx.sys 2013-12-13 21:39 - 2008-04-13 22:04 - 00014336 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\atinpdxx.sys 2013-12-13 21:39 - 2008-04-13 22:04 - 00013824 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\atinttxx.sys 2013-12-13 21:39 - 2008-04-13 22:04 - 00013824 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\atinmdxx.sys 2013-12-13 21:39 - 2008-04-13 22:04 - 00012047 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\ati1pdxx.sys 2013-12-13 21:39 - 2008-04-13 22:04 - 00011935 ____N (Intel(R) Corporation) C:\WINDOWS\system32\Drivers\wadv11nt.sys 2013-12-13 21:39 - 2008-04-13 22:04 - 00011871 ____N (Intel(R) Corporation) C:\WINDOWS\system32\Drivers\wadv09nt.sys 2013-12-13 21:39 - 2008-04-13 22:04 - 00011807 ____N (Intel(R) Corporation) C:\WINDOWS\system32\Drivers\wadv07nt.sys 2013-12-13 21:39 - 2008-04-13 22:04 - 00011615 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\ati1mdxx.sys 2013-12-13 21:39 - 2008-04-13 22:04 - 00011295 ____N (Intel(R) Corporation) C:\WINDOWS\system32\Drivers\wadv08nt.sys 2013-12-13 21:39 - 2007-04-02 21:36 - 00129045 ____N C:\WINDOWS\system32\Drivers\cxthsfs2.cty 2013-12-13 21:39 - 2006-12-29 20:21 - 00064352 ____N C:\WINDOWS\system32\Drivers\ativmc20.cod 2013-12-13 21:39 - 2006-12-29 20:02 - 00067866 ____N C:\WINDOWS\system32\Drivers\netwlan5.img 2013-12-13 21:38 - 2013-12-13 23:34 - 00000000 ____D C:\WINDOWS\system32\ReinstallBackups 2013-12-13 21:38 - 2006-12-29 00:31 - 00019569 _____ C:\WINDOWS\002710_.tmp 2013-12-13 21:36 - 2013-12-13 21:38 - 00000000 __HDC C:\WINDOWS\$NtServicePackUninstall$ 2013-12-13 21:34 - 2013-12-13 21:46 - 00501427 _____ C:\WINDOWS\svcpack.log 2013-12-13 21:32 - 2013-12-14 12:47 - 00000000 ____D C:\WINDOWS\Help 2013-12-13 21:32 - 2013-12-13 21:45 - 00000000 ____D C:\WINDOWS\security 2013-12-13 21:32 - 2013-12-13 21:42 - 00000000 ____D C:\WINDOWS\system32\usmt 2013-12-13 21:32 - 2013-12-13 21:42 - 00000000 ____D C:\WINDOWS\system32\inetsrv 2013-12-13 21:32 - 2013-12-13 21:42 - 00000000 ____D C:\WINDOWS\PeerNet 2013-12-13 21:32 - 2013-12-13 21:42 - 00000000 ____D C:\WINDOWS\ime 2013-12-13 21:32 - 2013-12-13 21:41 - 00000000 ____D C:\WINDOWS\system32\npp 2013-12-13 21:32 - 2013-12-13 21:41 - 00000000 ____D C:\WINDOWS\msagent 2013-12-13 21:32 - 2013-12-13 21:40 - 00000000 ____D C:\WINDOWS\system 2013-12-13 21:32 - 2013-12-13 21:39 - 00000000 ____D C:\WINDOWS\system32\1031 2013-12-13 21:32 - 2013-12-13 21:39 - 00000000 ____D C:\WINDOWS\Media 2013-12-13 21:32 - 2013-12-13 21:35 - 00000000 ____D C:\WINDOWS\twain_32 2013-12-13 21:32 - 2013-12-13 21:35 - 00000000 ____D C:\WINDOWS\system32\ras 2013-12-13 21:32 - 2013-12-13 21:34 - 00000000 ____D C:\WINDOWS\system32\icsxml 2013-12-13 21:32 - 2013-12-13 21:34 - 00000000 ____D C:\WINDOWS\system32\ias 2013-12-13 21:32 - 2013-12-13 21:33 - 00000000 ____D C:\WINDOWS\system32\1033 2013-12-13 21:32 - 2013-12-13 21:32 - 00000000 ____D C:\WINDOWS\system32\wins 2013-12-13 21:32 - 2013-12-13 21:32 - 00000000 ____D C:\WINDOWS\system32\ShellExt 2013-12-13 21:32 - 2013-12-13 21:32 - 00000000 ____D C:\WINDOWS\system32\mui 2013-12-13 21:32 - 2013-12-13 21:32 - 00000000 ____D C:\WINDOWS\system32\IME 2013-12-13 21:32 - 2013-12-13 21:32 - 00000000 ____D C:\WINDOWS\system32\export 2013-12-13 21:32 - 2013-12-13 21:32 - 00000000 ____D C:\WINDOWS\system32\Drivers\disdn 2013-12-13 21:32 - 2013-12-13 21:32 - 00000000 ____D C:\WINDOWS\system32\dhcp 2013-12-13 21:32 - 2013-12-13 21:32 - 00000000 ____D C:\WINDOWS\system32\3com_dmi 2013-12-13 21:32 - 2013-12-13 21:32 - 00000000 ____D C:\WINDOWS\system32\3076 2013-12-13 21:32 - 2013-12-13 21:32 - 00000000 ____D C:\WINDOWS\system32\2052 2013-12-13 21:32 - 2013-12-13 21:32 - 00000000 ____D C:\WINDOWS\system32\1054 2013-12-13 21:32 - 2013-12-13 21:32 - 00000000 ____D C:\WINDOWS\system32\1042 2013-12-13 21:32 - 2013-12-13 21:32 - 00000000 ____D C:\WINDOWS\system32\1041 2013-12-13 21:32 - 2013-12-13 21:32 - 00000000 ____D C:\WINDOWS\system32\1037 2013-12-13 21:32 - 2013-12-13 21:32 - 00000000 ____D C:\WINDOWS\system32\1028 2013-12-13 21:32 - 2013-12-13 21:32 - 00000000 ____D C:\WINDOWS\system32\1025 2013-12-13 21:32 - 2013-12-13 21:32 - 00000000 ____D C:\WINDOWS\Resources 2013-12-13 21:32 - 2013-12-13 21:32 - 00000000 ____D C:\WINDOWS\repair 2013-12-13 21:32 - 2013-12-13 21:32 - 00000000 ____D C:\WINDOWS\Provisioning 2013-12-13 21:32 - 2013-12-13 21:32 - 00000000 ____D C:\WINDOWS\mui 2013-12-13 21:32 - 2013-12-13 21:32 - 00000000 ____D C:\WINDOWS\java 2013-12-13 21:32 - 2013-12-13 21:32 - 00000000 ____D C:\WINDOWS\Driver Cache 2013-12-13 21:32 - 2013-12-13 21:32 - 00000000 ____D C:\WINDOWS\Connection Wizard 2013-12-13 21:32 - 2013-12-13 21:32 - 00000000 ____D C:\WINDOWS\addins 2013-12-13 21:32 - 2013-12-13 20:52 - 00000000 ___RD C:\WINDOWS\Web 2013-12-13 21:32 - 2013-12-13 20:51 - 00000000 ____D C:\WINDOWS\pchealth 2013-12-13 21:32 - 2013-12-13 20:49 - 00000000 ____D C:\WINDOWS\Cursors 2013-12-13 21:32 - 2013-12-13 20:47 - 00000000 ____D C:\WINDOWS\system32\spool 2013-12-13 21:29 - 2013-12-24 20:47 - 00001084 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job 2013-12-13 21:29 - 2013-12-24 20:39 - 00001088 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job 2013-12-13 21:29 - 2013-12-13 21:29 - 00001769 _____ C:\Dokumente und Einstellungen\All Users\Desktop\Google Chrome.lnk 2013-12-13 21:29 - 2013-12-13 21:29 - 00000000 ____D C:\Programme\Google 2013-12-13 21:29 - 2013-12-13 21:29 - 00000000 ____D C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Google Chrome 2013-12-13 21:29 - 2013-12-13 21:29 - 00000000 ____D C:\Dokumente und Einstellungen\Admin\Lokale Einstellungen\Anwendungsdaten\Google 2013-12-13 21:28 - 2013-12-13 21:29 - 00000000 ____D C:\Dokumente und Einstellungen\Admin\Lokale Einstellungen\Anwendungsdaten\Deployment 2013-12-13 21:26 - 2013-12-13 21:26 - 00000000 ___SD C:\Dokumente und Einstellungen\Admin\UserData 2013-12-13 21:23 - 2013-12-13 21:23 - 00000000 ____D C:\Dokumente und Einstellungen\Admin\Lokale Einstellungen\Anwendungsdaten\WMTools Downloaded Files 2013-12-13 21:22 - 2013-12-24 20:44 - 00131072 _____ C:\WINDOWS\system32\config\ACEEvent.evt 2013-12-13 21:22 - 2013-12-13 21:22 - 00000000 ____D C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\ATI 2013-12-13 21:22 - 2013-12-13 21:22 - 00000000 ____D C:\Dokumente und Einstellungen\Admin\Lokale Einstellungen\Anwendungsdaten\ATI 2013-12-13 21:22 - 2013-12-13 21:22 - 00000000 ____D C:\Dokumente und Einstellungen\Admin\Anwendungsdaten\ATI 2013-12-13 21:22 - 2013-12-13 21:22 - 00000000 _____ C:\WINDOWS\ativpsrm.bin 2013-12-13 21:20 - 2013-12-13 21:20 - 00000000 ____D C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Catalyst Control Center 2013-12-13 21:17 - 2013-12-13 21:40 - 00000000 ____D C:\WINDOWS\Microsoft.NET 2013-12-13 21:17 - 2013-09-04 12:28 - 00018808 ____N (Microsoft Corporation) C:\WINDOWS\system32\spmsg.dll 2013-12-13 21:16 - 2013-12-13 21:20 - 00000000 ____D C:\Programme\ATI Technologies 2013-12-13 21:16 - 2013-12-13 21:17 - 00005777 _____ C:\WINDOWS\KB893803v2.log 2013-12-13 21:16 - 2013-12-13 21:16 - 00000000 __HDC C:\WINDOWS\$MSI31Uninstall_KB893803v2$ 2013-12-13 21:12 - 2013-12-13 21:12 - 00940794 _____ C:\WINDOWS\system32\LoopyMusic.wav 2013-12-13 21:12 - 2013-12-13 21:12 - 00146650 _____ C:\WINDOWS\system32\BuzzingBee.wav 2013-12-13 21:12 - 2013-12-13 21:12 - 00000000 ____D C:\WINDOWS\system32\Lang 2013-12-13 21:12 - 2008-04-14 00:47 - 00083072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wdmaud.sys 2013-12-13 21:12 - 2008-04-14 00:15 - 00056576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\swmidi.sys 2013-12-13 21:12 - 2008-04-14 00:15 - 00052864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dmusic.sys 2013-12-13 21:12 - 2008-04-14 00:15 - 00006272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\splitter.sys 2013-12-13 21:11 - 2013-12-13 21:11 - 00000000 _____ C:\WINDOWS\system32\Drivers\SETF2.tmp 2013-12-13 21:11 - 2008-07-31 15:18 - 00000553 ____R C:\WINDOWS\USetup.iss 2013-12-13 21:11 - 2008-04-14 00:45 - 00060800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sysaudio.sys 2013-12-13 21:11 - 2008-04-14 00:15 - 00172416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\kmixer.sys 2013-12-13 21:11 - 2008-04-14 00:15 - 00002944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\drmkaud.sys 2013-12-13 21:11 - 2008-04-14 00:09 - 00007552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mskssrv.sys 2013-12-13 21:11 - 2008-04-14 00:09 - 00005376 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mspclock.sys 2013-12-13 21:11 - 2008-04-14 00:09 - 00004992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mspqm.sys 2013-12-13 21:11 - 2008-04-13 22:09 - 00142592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\aec.sys 2013-12-13 21:10 - 2008-07-31 15:18 - 00049152 ____R C:\WINDOWS\system32\ChCfg.exe 2013-12-13 21:09 - 2013-12-13 21:10 - 00000000 ____D C:\WINDOWS\system32\RTCOM 2013-12-13 21:09 - 2013-12-13 21:09 - 00315392 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\HideWin.exe 2013-12-13 21:09 - 2013-12-13 21:09 - 00004779 _____ C:\WINDOWS\KB888111.log 2013-12-13 21:09 - 2013-12-13 21:09 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB888111WXPSP2$ 2013-12-13 21:09 - 2008-07-31 15:22 - 03688640 ____R (Realtek Semiconductor Corp.) C:\WINDOWS\system32\Drivers\RtHDMI.sys 2013-12-13 21:09 - 2008-07-31 15:22 - 01191936 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\RtkUpd.exe 2013-12-13 21:09 - 2008-07-31 15:21 - 16860672 ____R (Realtek Semiconductor Corp.) C:\WINDOWS\RTHDCPL.exe 2013-12-13 21:09 - 2008-07-31 15:21 - 09715200 ____R (Realtek Semiconductor Corp.) C:\WINDOWS\RTLCPL.exe 2013-12-13 21:09 - 2008-07-31 15:21 - 04703744 ____R (Realtek Semiconductor Corp.) C:\WINDOWS\system32\Drivers\RtkHDAud.sys 2013-12-13 21:09 - 2008-07-31 15:21 - 02808832 ____R (RealTek Semicoductor Corp.) C:\WINDOWS\alcwzrd.exe 2013-12-13 21:09 - 2008-07-31 15:21 - 02165760 ____R (Realtek Semiconductor Corp.) C:\WINDOWS\MicCal.exe 2013-12-13 21:09 - 2008-07-31 15:21 - 01826816 ____R (Realtek Semiconductor Corp.) C:\WINDOWS\SkyTel.exe 2013-12-13 21:09 - 2008-07-31 15:21 - 01196032 ____R (Realtek Semiconductor Corp.) C:\WINDOWS\RtlUpd.exe 2013-12-13 21:09 - 2008-07-31 15:21 - 00299008 ____R (Realtek Semiconductor Corp.) C:\WINDOWS\system32\ALSndMgr.cpl 2013-12-13 21:09 - 2008-07-31 15:21 - 00266240 ____R (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTSndMgr.cpl 2013-12-13 21:09 - 2008-07-31 15:21 - 00086016 ____R (Realtek Semiconductor Corp.) C:\WINDOWS\SoundMan.exe 2013-12-13 21:09 - 2008-07-31 15:21 - 00069632 ____R (Realtek Semiconductor Corp.) C:\WINDOWS\Alcmtr.exe 2013-12-13 21:09 - 2008-07-31 15:21 - 00000852 ____R C:\WINDOWS\system32\Drivers\RTKHDRC1.dat 2013-12-13 21:09 - 2008-07-31 15:21 - 00000852 ____R C:\WINDOWS\system32\Drivers\RTKHDRC0.dat 2013-12-13 21:09 - 2008-07-31 15:21 - 00000520 ____R C:\WINDOWS\system32\Drivers\RTEQEX1.dat 2013-12-13 21:09 - 2008-07-31 15:21 - 00000520 ____R C:\WINDOWS\system32\Drivers\RTEQEX0.dat 2013-12-13 21:09 - 2008-07-31 15:21 - 00000176 ____R C:\WINDOWS\system32\Drivers\RTHDAEQ1.dat 2013-12-13 21:09 - 2008-07-31 15:21 - 00000176 ____R C:\WINDOWS\system32\Drivers\RTHDAEQ0.dat 2013-12-13 21:09 - 2008-07-31 15:18 - 00520192 ____R (Realtek Semiconductor Corp.) C:\WINDOWS\RtlExUpd.dll 2013-12-13 21:09 - 2008-04-14 07:53 - 00129536 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ksproxy.ax 2013-12-13 21:09 - 2008-04-14 07:53 - 00129536 _____ (Microsoft Corporation) C:\WINDOWS\system32\ksproxy.ax 2013-12-13 21:09 - 2008-04-14 07:52 - 00004096 _____ (Microsoft Corporation) C:\WINDOWS\system32\ksuser.dll 2013-12-13 21:09 - 2008-04-14 00:15 - 00060160 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\drmk.sys 2013-12-13 21:09 - 2007-08-10 20:44 - 00026488 _____ (Microsoft Corporation) C:\WINDOWS\system32\spupdsvc.exe 2013-12-13 21:07 - 2013-12-13 22:58 - 00000000 ____D C:\Programme\Intel 2013-12-13 21:07 - 2013-12-13 21:07 - 00000000 ____D C:\Dokumente und Einstellungen\NetworkService\Anwendungsdaten\Intel 2013-12-13 21:07 - 2013-12-13 21:07 - 00000000 ____D C:\Dokumente und Einstellungen\LocalService\Anwendungsdaten\Intel 2013-12-13 21:07 - 2013-12-13 21:07 - 00000000 ____D C:\Dokumente und Einstellungen\Default User\Anwendungsdaten\Intel 2013-12-13 21:07 - 2013-12-13 21:07 - 00000000 ____D C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Intel 2013-12-13 21:07 - 2013-12-13 21:07 - 00000000 ____D C:\Dokumente und Einstellungen\Admin\Anwendungsdaten\Intel 2013-12-13 21:06 - 2013-12-14 00:48 - 00415832 _____ (Realtek Semiconductor Corporation ) C:\WINDOWS\system32\Drivers\Rtenicxp.sys 2013-12-13 21:05 - 2013-12-14 00:49 - 00000000 ___HD C:\Programme\InstallShield Installation Information 2013-12-13 21:05 - 2013-12-14 00:49 - 00000000 ____D C:\Programme\Realtek 2013-12-13 21:05 - 2013-12-14 00:18 - 00000000 ____D C:\Programme\TOSHIBA 2013-12-13 21:05 - 2013-12-14 00:05 - 00000000 ____D C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\TOSHIBA 2013-12-13 21:05 - 2013-12-13 21:05 - 00000104 _____ C:\Dokumente und Einstellungen\Admin\Desktop\Arbeitsplatz.lnk 2013-12-13 21:05 - 2007-10-15 15:03 - 01167360 _____ (TOSHIBA Corporation) C:\WINDOWS\system32\TPwrSave.cpl 2013-12-13 21:05 - 2007-10-15 15:02 - 00266240 _____ (TOSHIBA Corporation) C:\WINDOWS\system32\TPSMain.exe 2013-12-13 21:05 - 2007-10-15 15:02 - 00086016 _____ (TOSHIBA Corporation) C:\WINDOWS\system32\CpuPerf.dll 2013-12-13 21:05 - 2007-10-15 15:02 - 00077824 _____ (TOSHIBA Corporation) C:\WINDOWS\system32\TPwrReg.dll 2013-12-13 21:05 - 2007-10-15 15:02 - 00049152 _____ (TOSHIBA Corporation) C:\WINDOWS\system32\TPSTrace.dll 2013-12-13 21:05 - 2007-10-15 15:02 - 00049152 _____ (TOSHIBA Corporation) C:\WINDOWS\system32\TPSDel.dll 2013-12-13 21:05 - 2007-10-15 15:02 - 00045056 _____ (TOSHIBA Corporation) C:\WINDOWS\system32\TPwrCfg.dll 2013-12-13 21:05 - 2007-10-15 15:02 - 00040960 _____ (TOSHIBA Corporation) C:\WINDOWS\system32\TPSMainCtl.dll 2013-12-13 21:05 - 2007-10-15 15:02 - 00040960 _____ (TOSHIBA Corporation) C:\WINDOWS\system32\TPSBattM.exe 2013-12-13 21:05 - 2007-10-15 15:02 - 00040960 _____ (TOSHIBA Corporation) C:\WINDOWS\system32\TPSAddin.dll 2013-12-13 21:05 - 2007-10-08 13:02 - 00028672 _____ (TOSHIBA Corporation) C:\WINDOWS\system32\TPeculiarity.dll 2013-12-13 21:04 - 2013-12-13 21:04 - 00000000 ____D C:\Dokumente und Einstellungen\Admin\Anwendungsdaten\InstallShield 2013-12-13 21:03 - 2013-12-13 21:09 - 00000000 ____D C:\Programme\Gemeinsame Dateien\InstallShield 2013-12-13 21:00 - 2013-12-13 21:55 - 00013104 _____ C:\Dokumente und Einstellungen\Admin\Lokale Einstellungen\Anwendungsdaten\GDIPFONTCACHEV1.DAT 2013-12-13 21:00 - 2008-04-14 00:15 - 00026368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbstor.sys 2013-12-13 20:59 - 2013-12-24 20:44 - 00000190 ___SH C:\Dokumente und Einstellungen\Admin\ntuser.ini 2013-12-13 20:59 - 2013-12-21 15:49 - 00000000 ___RD C:\Dokumente und Einstellungen\Admin\Startmenü\Programme 2013-12-13 20:59 - 2013-12-18 20:47 - 00000000 ____D C:\Dokumente und Einstellungen\Admin 2013-12-13 20:59 - 2013-12-14 15:06 - 00000772 _____ C:\Dokumente und Einstellungen\Admin\Startmenü\Programme\Windows Media Player.lnk 2013-12-13 20:59 - 2013-12-14 13:06 - 00000000 ___RD C:\Dokumente und Einstellungen\Admin\Eigene Dateien\Eigene Bilder 2013-12-13 20:59 - 2013-12-14 12:58 - 00000000 ___RD C:\Dokumente und Einstellungen\Admin\Eigene Dateien\Eigene Musik 2013-12-13 20:59 - 2013-12-13 21:49 - 00000000 ___SD C:\Dokumente und Einstellungen\Admin\Lokale Einstellungen\Verlauf 2013-12-13 20:59 - 2013-12-13 21:48 - 00000747 _____ C:\Dokumente und Einstellungen\Admin\Startmenü\Programme\Internet Explorer.lnk 2013-12-13 20:59 - 2013-12-13 21:48 - 00000718 _____ C:\Dokumente und Einstellungen\Admin\Startmenü\Programme\Outlook Express.lnk 2013-12-13 20:59 - 2013-12-13 20:59 - 00000000 ___RD C:\Dokumente und Einstellungen\Admin\Startmenü\Programme\Zubehör 2013-12-13 20:59 - 2013-12-13 20:53 - 00001599 _____ C:\Dokumente und Einstellungen\Admin\Startmenü\Programme\Remoteunterstützung.lnk 2013-12-13 20:59 - 2013-12-13 20:41 - 00000000 ___RD C:\Dokumente und Einstellungen\Admin\Startmenü\Programme\Autostart 2013-12-13 20:59 - 2013-12-13 20:41 - 00000000 ___RD C:\Dokumente und Einstellungen\Admin\Startmenü 2013-12-13 20:59 - 2013-12-13 20:41 - 00000000 ___HD C:\Dokumente und Einstellungen\Admin\Netzwerkumgebung 2013-12-13 20:59 - 2013-12-13 20:41 - 00000000 ___HD C:\Dokumente und Einstellungen\Admin\Druckumgebung 2013-12-13 20:57 - 2013-12-24 20:47 - 00032548 _____ C:\WINDOWS\SchedLgU.Txt 2013-12-13 20:57 - 2013-12-24 20:47 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT 2013-12-13 20:57 - 2013-12-13 20:57 - 00000020 ___SH C:\Dokumente und Einstellungen\LocalService\ntuser.ini 2013-12-13 20:57 - 2013-12-13 20:57 - 00000000 __SHD C:\Dokumente und Einstellungen\LocalService 2013-12-13 20:57 - 2013-12-13 20:41 - 00000000 ___SD C:\Dokumente und Einstellungen\LocalService\Lokale Einstellungen\Verlauf 2013-12-13 20:56 - 2013-12-21 16:20 - 00000000 __SHD C:\Dokumente und Einstellungen\NetworkService 2013-12-13 20:56 - 2013-12-13 20:56 - 00008192 _____ C:\WINDOWS\REGLOCS.OLD 2013-12-13 20:56 - 2013-12-13 20:56 - 00000020 ___SH C:\Dokumente und Einstellungen\NetworkService\ntuser.ini 2013-12-13 20:56 - 2013-12-13 20:41 - 00000000 ___HD C:\Dokumente und Einstellungen\NetworkService\Lokale Einstellungen\Verlauf 2013-12-13 20:55 - 2008-04-14 07:52 - 00065024 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\unicdime.ime 2013-12-13 20:55 - 2008-04-14 07:51 - 00571392 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\tintlgnt.ime 2013-12-13 20:55 - 2008-04-14 07:51 - 00482304 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\pintlgnt.ime 2013-12-13 20:55 - 2008-04-14 07:51 - 00426041 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\voicepad.dll 2013-12-13 20:55 - 2008-04-14 07:51 - 00175104 ____C C:\WINDOWS\system32\dllcache\pintlcsa.dll 2013-12-13 20:55 - 2008-04-14 07:51 - 00156672 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\winzm.ime 2013-12-13 20:55 - 2008-04-14 07:51 - 00156672 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\winsp.ime 2013-12-13 20:55 - 2008-04-14 07:51 - 00156672 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\winpy.ime 2013-12-13 20:55 - 2008-04-14 07:51 - 00086073 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\voicesub.dll 2013-12-13 20:55 - 2008-04-14 07:51 - 00079360 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\winar30.ime 2013-12-13 20:55 - 2008-04-14 07:51 - 00079360 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\phon.ime 2013-12-13 20:55 - 2008-04-14 07:51 - 00077824 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\quick.ime 2013-12-13 20:55 - 2008-04-14 07:51 - 00076288 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\uniime.dll 2013-12-13 20:55 - 2008-04-14 07:51 - 00072704 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wingb.ime 2013-12-13 20:55 - 2008-04-14 07:51 - 00067584 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\pmigrate.dll 2013-12-13 20:55 - 2008-04-14 07:51 - 00065536 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\winime.ime 2013-12-13 20:55 - 2008-04-14 07:51 - 00053760 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\pintlcsd.dll 2013-12-13 20:55 - 2008-04-14 07:51 - 00026112 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\romanime.ime 2013-12-13 20:55 - 2008-04-14 07:51 - 00015872 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\padrs404.dll 2013-12-13 20:55 - 2008-04-14 07:51 - 00015360 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\padrs804.dll 2013-12-13 20:55 - 2008-04-14 07:51 - 00010240 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\tmigrate.dll 2013-12-13 20:55 - 2008-04-14 07:50 - 00811064 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\imjp81k.dll 2013-12-13 20:55 - 2008-04-14 07:50 - 00716856 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\imjpcus.dll 2013-12-13 20:55 - 2008-04-14 07:50 - 00368696 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\imjpcic.dll 2013-12-13 20:55 - 2008-04-14 07:50 - 00340023 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\imjp81.ime 2013-12-13 20:55 - 2008-04-14 07:50 - 00315455 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\imskf.dll 2013-12-13 20:55 - 2008-04-14 07:50 - 00274489 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\imjputyc.dll 2013-12-13 20:55 - 2008-04-14 07:50 - 00102456 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\imlang.dll 2013-12-13 20:55 - 2008-04-14 07:50 - 00086016 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\imekrmbx.dll 2013-12-13 20:55 - 2008-04-14 07:50 - 00081976 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\imjpdct.dll 2013-12-13 20:55 - 2008-04-13 22:13 - 00070144 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\pintlphr.exe 2013-12-13 20:55 - 2004-08-04 13:00 - 01875968 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msir3jp.lex 2013-12-13 20:55 - 2004-08-04 13:00 - 01158818 ____C C:\WINDOWS\system32\dllcache\korwbrkr.lex 2013-12-13 20:55 - 2004-08-04 13:00 - 00471102 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\imskdic.dll 2013-12-13 20:55 - 2004-08-04 13:00 - 00455168 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\tintsetp.exe 2013-12-13 20:55 - 2004-08-04 13:00 - 00311359 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\imepadsv.exe 2013-12-13 20:55 - 2004-08-04 13:00 - 00307257 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\imjpdct.exe 2013-12-13 20:55 - 2004-08-04 13:00 - 00262200 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\imjputy.exe 2013-12-13 20:55 - 2004-08-04 13:00 - 00233527 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\imjprw.exe 2013-12-13 20:55 - 2004-08-04 13:00 - 00229439 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\multibox.dll 2013-12-13 20:55 - 2004-08-04 13:00 - 00208952 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\imjpmig.exe 2013-12-13 20:55 - 2004-08-04 13:00 - 00196665 ____C C:\WINDOWS\system32\dllcache\imjpinst.exe 2013-12-13 20:55 - 2004-08-04 13:00 - 00185344 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\thawbrkr.dll 2013-12-13 20:55 - 2004-08-04 13:00 - 00155705 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\imjpdsvr.exe 2013-12-13 20:55 - 2004-08-04 13:00 - 00143422 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\softkey.dll 2013-12-13 20:55 - 2004-08-04 13:00 - 00131584 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\pmxviceo.dll 2013-12-13 20:55 - 2004-08-04 13:00 - 00102463 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\imepadsm.dll 2013-12-13 20:55 - 2004-08-04 13:00 - 00101376 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\srusbusd.dll 2013-12-13 20:55 - 2004-08-04 13:00 - 00098304 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msir3jp.dll 2013-12-13 20:55 - 2004-08-04 13:00 - 00092416 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mga.sys 2013-12-13 20:55 - 2004-08-04 13:00 - 00092032 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mga.dll 2013-12-13 20:55 - 2004-08-04 13:00 - 00083748 ____C C:\WINDOWS\system32\dllcache\prcp.nls 2013-12-13 20:55 - 2004-08-04 13:00 - 00083748 ____C C:\WINDOWS\system32\dllcache\prc.nls 2013-12-13 20:55 - 2004-08-04 13:00 - 00081408 ____C (Ricoh Co., Ltd.) C:\WINDOWS\system32\dllcache\rwia330.dll 2013-12-13 20:55 - 2004-08-04 13:00 - 00081408 ____C (Ricoh Co., Ltd.) C:\WINDOWS\system32\dllcache\rwia001.dll 2013-12-13 20:55 - 2004-08-04 13:00 - 00074240 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\w3ext.dll 2013-12-13 20:55 - 2004-08-04 13:00 - 00070656 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\korwbrkr.dll 2013-12-13 20:55 - 2004-08-04 13:00 - 00059904 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\imkrinst.exe 2013-12-13 20:55 - 2004-08-04 13:00 - 00059392 ____C C:\WINDOWS\system32\dllcache\imscinst.exe 2013-12-13 20:55 - 2004-08-04 13:00 - 00057398 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\imjpdadm.exe 2013-12-13 20:55 - 2004-08-04 13:00 - 00053248 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\nextlink.dll 2013-12-13 20:55 - 2004-08-04 13:00 - 00048256 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\w32.dll 2013-12-13 20:55 - 2004-08-04 13:00 - 00047066 ____C C:\WINDOWS\system32\dllcache\ksc.nls 2013-12-13 20:55 - 2004-08-04 13:00 - 00045109 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\imjpuex.exe 2013-12-13 20:55 - 2004-08-04 13:00 - 00044032 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\tintlphr.exe 2013-12-13 20:55 - 2004-08-04 13:00 - 00044032 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\imekrmig.exe 2013-12-13 20:55 - 2004-08-04 13:00 - 00041600 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\weitekp9.dll 2013-12-13 20:55 - 2004-08-04 13:00 - 00038912 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\sm9aw.dll 2013-12-13 20:55 - 2004-08-04 13:00 - 00036927 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\padrs411.dll 2013-12-13 20:55 - 2004-08-04 13:00 - 00031744 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\smb6w.dll 2013-12-13 20:55 - 2004-08-04 13:00 - 00031744 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\sma3w.dll 2013-12-13 20:55 - 2004-08-04 13:00 - 00031744 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\pagecnt.dll 2013-12-13 20:55 - 2004-08-04 13:00 - 00031360 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\weitekp9.sys 2013-12-13 20:55 - 2004-08-04 13:00 - 00030208 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\sm87w.dll 2013-12-13 20:55 - 2004-08-04 13:00 - 00030208 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\sm81w.dll 2013-12-13 20:55 - 2004-08-04 13:00 - 00029184 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\sm8cw.dll 2013-12-13 20:55 - 2004-08-04 13:00 - 00028288 ____C C:\WINDOWS\system32\dllcache\xjis.nls 2013-12-13 20:55 - 2004-08-04 13:00 - 00026624 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\sm93w.dll 2013-12-13 20:55 - 2004-08-04 13:00 - 00026624 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\sm92w.dll 2013-12-13 20:55 - 2004-08-04 13:00 - 00026624 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mdsync.dll 2013-12-13 20:55 - 2004-08-04 13:00 - 00026112 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\sm90w.dll 2013-12-13 20:55 - 2004-08-04 13:00 - 00026112 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\sm8dw.dll 2013-12-13 20:55 - 2004-08-04 13:00 - 00026112 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\sm8aw.dll 2013-12-13 20:55 - 2004-08-04 13:00 - 00026112 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\sm89w.dll 2013-12-13 20:55 - 2004-08-04 13:00 - 00025088 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\sm59w.dll 2013-12-13 20:55 - 2004-08-04 13:00 - 00022016 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\logscrpt.dll 2013-12-13 20:55 - 2004-08-04 13:00 - 00021896 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\tdipx.sys 2013-12-13 20:55 - 2004-08-04 13:00 - 00020992 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\permchk.dll 2013-12-13 20:55 - 2004-08-04 13:00 - 00019464 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\tdspx.sys 2013-12-13 20:55 - 2004-08-04 13:00 - 00019456 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\simptcp.dll 2013-12-13 20:55 - 2004-08-04 13:00 - 00018432 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\jupiw.dll 2013-12-13 20:55 - 2004-08-04 13:00 - 00016896 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\status.dll 2013-12-13 20:55 - 2004-08-04 13:00 - 00016896 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\quser.exe 2013-12-13 20:55 - 2004-08-04 13:00 - 00015872 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\smierrsm.dll 2013-12-13 20:55 - 2004-08-04 13:00 - 00014848 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\register.exe 2013-12-13 20:55 - 2004-08-04 13:00 - 00014336 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\tsprof.exe 2013-12-13 20:55 - 2004-08-04 13:00 - 00014336 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\padrs412.dll 2013-12-13 20:55 - 2004-08-04 13:00 - 00013192 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\tdasync.sys 2013-12-13 20:55 - 2004-08-04 13:00 - 00011264 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\pmxmcro.dll 2013-12-13 20:55 - 2004-08-04 13:00 - 00010240 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\snmpstup.dll 2013-12-13 20:55 - 2004-08-04 13:00 - 00010240 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\query.exe 2013-12-13 20:55 - 2004-08-04 13:00 - 00009216 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wamps51.dll 2013-12-13 20:55 - 2004-08-04 13:00 - 00009216 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdnecat.dll 2013-12-13 20:55 - 2004-08-04 13:00 - 00009216 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\iwrps.dll 2013-12-13 20:55 - 2004-08-04 13:00 - 00008704 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\infoctrs.dll 2013-12-13 20:55 - 2004-08-04 13:00 - 00007680 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdnecnt.dll 2013-12-13 20:55 - 2004-08-04 13:00 - 00007168 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdnec95.dll 2013-12-13 20:55 - 2004-08-04 13:00 - 00007168 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\isapips.dll 2013-12-13 20:55 - 2004-08-04 13:00 - 00006144 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\pmxgl.dll 2013-12-13 20:55 - 2004-08-04 13:00 - 00006144 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdth3.dll 2013-12-13 20:55 - 2004-08-04 13:00 - 00006144 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdth2.dll 2013-12-13 20:55 - 2004-08-04 13:00 - 00006144 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdinpun.dll 2013-12-13 20:55 - 2004-08-04 13:00 - 00006144 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbd101a.dll 2013-12-13 20:55 - 2004-08-04 13:00 - 00005632 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\w3svapi.dll 2013-12-13 20:55 - 2004-08-04 13:00 - 00005632 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\smimsgif.dll 2013-12-13 20:55 - 2004-08-04 13:00 - 00005632 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\smierrsy.dll 2013-12-13 20:55 - 2004-08-04 13:00 - 00005632 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdvntc.dll 2013-12-13 20:55 - 2004-08-04 13:00 - 00005632 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdusa.dll 2013-12-13 20:55 - 2004-08-04 13:00 - 00005632 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdurdu.dll 2013-12-13 20:55 - 2004-08-04 13:00 - 00005632 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdth1.dll 2013-12-13 20:55 - 2004-08-04 13:00 - 00005632 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdth0.dll 2013-12-13 20:55 - 2004-08-04 13:00 - 00005632 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdsyr2.dll 2013-12-13 20:55 - 2004-08-04 13:00 - 00005632 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdsyr1.dll 2013-12-13 20:55 - 2004-08-04 13:00 - 00005632 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdintel.dll 2013-12-13 20:55 - 2004-08-04 13:00 - 00005632 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdintam.dll 2013-12-13 20:55 - 2004-08-04 13:00 - 00005632 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdinmar.dll 2013-12-13 20:55 - 2004-08-04 13:00 - 00005632 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdinkan.dll 2013-12-13 20:55 - 2004-08-04 13:00 - 00005632 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdinhin.dll 2013-12-13 20:55 - 2004-08-04 13:00 - 00005632 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdinguj.dll 2013-12-13 20:55 - 2004-08-04 13:00 - 00005632 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdindev.dll 2013-12-13 20:55 - 2004-08-04 13:00 - 00005632 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdheb.dll 2013-12-13 20:55 - 2004-08-04 13:00 - 00005632 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdfa.dll 2013-12-13 20:55 - 2004-08-04 13:00 - 00005632 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbddiv2.dll 2013-12-13 20:55 - 2004-08-04 13:00 - 00005632 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbddiv1.dll 2013-12-13 20:55 - 2004-08-04 13:00 - 00005632 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbda3.dll 2013-12-13 20:55 - 2004-08-04 13:00 - 00005632 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbda2.dll 2013-12-13 20:55 - 2004-08-04 13:00 - 00005632 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbda1.dll 2013-12-13 20:55 - 2004-08-04 13:00 - 00005120 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdgeo.dll 2013-12-13 20:55 - 2004-08-04 13:00 - 00005120 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdarmw.dll 2013-12-13 20:55 - 2004-08-04 13:00 - 00005120 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdarme.dll 2013-12-13 20:55 - 2004-08-04 13:00 - 00004608 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\w3ctrs51.dll 2013-12-13 20:55 - 2001-08-18 04:55 - 00023040 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\EXCH_regtrace.exe 2013-12-13 20:55 - 2001-08-18 04:54 - 00057856 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\EXCH_scripto.dll 2013-12-13 20:55 - 2001-08-18 04:54 - 00038912 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\EXCH_ntfsdrv.dll 2013-12-13 20:55 - 2001-08-18 04:54 - 00026112 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\EXCH_seos.dll 2013-12-13 20:55 - 2001-08-18 04:54 - 00012288 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\EXCH_smtpctrs.dll 2013-12-13 20:55 - 2001-08-18 04:54 - 00007168 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\EXCH_snprfdll.dll 2013-12-13 20:55 - 2001-08-18 04:53 - 00065536 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\EXCH_mailmsg.dll 2013-12-13 20:54 - 2008-04-14 07:51 - 00078848 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\dayi.ime 2013-12-13 20:54 - 2008-04-14 07:51 - 00078336 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\chajei.ime 2013-12-13 20:54 - 2008-04-14 07:51 - 00021504 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\cintlgnt.ime 2013-12-13 20:54 - 2008-04-14 07:50 - 13463552 ____C C:\WINDOWS\system32\dllcache\hwxjpn.dll 2013-12-13 20:54 - 2008-04-14 07:50 - 00198656 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\cintime.dll 2013-12-13 20:54 - 2008-04-14 07:50 - 00173568 ____C C:\WINDOWS\system32\dllcache\chtskf.dll 2013-12-13 20:54 - 2008-04-14 07:50 - 00106496 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\imekrcic.dll 2013-12-13 20:54 - 2008-04-14 07:50 - 00097792 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\chtmbx.dll 2013-12-13 20:54 - 2008-04-14 07:50 - 00094720 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\imekr61.ime 2013-12-13 20:54 - 2008-04-14 07:50 - 00056320 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\chtskdic.dll 2013-12-13 20:54 - 2004-08-04 13:00 - 10129408 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\hwxkor.dll 2013-12-13 20:54 - 2004-08-04 13:00 - 10096640 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\hwxcht.dll 2013-12-13 20:54 - 2004-08-04 13:00 - 01677824 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\chsbrkr.dll 2013-12-13 20:54 - 2004-08-04 13:00 - 00838144 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\chtbrkr.dll 2013-12-13 20:54 - 2004-08-04 13:00 - 00514587 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\edb500.dll 2013-12-13 20:54 - 2004-08-04 13:00 - 00480256 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\cintsetp.exe 2013-12-13 20:54 - 2004-08-04 13:00 - 00195618 ____C C:\WINDOWS\system32\dllcache\c_10002.nls 2013-12-13 20:54 - 2004-08-04 13:00 - 00189986 ____C C:\WINDOWS\system32\dllcache\c_1361.nls 2013-12-13 20:54 - 2004-08-04 13:00 - 00187938 ____C C:\WINDOWS\system32\dllcache\c_20005.nls 2013-12-13 20:54 - 2004-08-04 13:00 - 00186402 ____C C:\WINDOWS\system32\dllcache\c_20001.nls 2013-12-13 20:54 - 2004-08-04 13:00 - 00185378 ____C C:\WINDOWS\system32\dllcache\c_20003.nls 2013-12-13 20:54 - 2004-08-04 13:00 - 00180770 ____C C:\WINDOWS\system32\dllcache\c_20932.nls 2013-12-13 20:54 - 2004-08-04 13:00 - 00180258 ____C C:\WINDOWS\system32\dllcache\c_20004.nls 2013-12-13 20:54 - 2004-08-04 13:00 - 00180258 ____C C:\WINDOWS\system32\dllcache\c_20000.nls 2013-12-13 20:54 - 2004-08-04 13:00 - 00177698 ____C C:\WINDOWS\system32\dllcache\c_20949.nls 2013-12-13 20:54 - 2004-08-04 13:00 - 00177698 ____C C:\WINDOWS\system32\dllcache\c_10003.nls 2013-12-13 20:54 - 2004-08-04 13:00 - 00173602 ____C C:\WINDOWS\system32\dllcache\c_20936.nls 2013-12-13 20:54 - 2004-08-04 13:00 - 00173602 ____C C:\WINDOWS\system32\dllcache\c_20002.nls 2013-12-13 20:54 - 2004-08-04 13:00 - 00173602 ____C C:\WINDOWS\system32\dllcache\c_10008.nls 2013-12-13 20:54 - 2004-08-04 13:00 - 00172032 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\iisui.dll 2013-12-13 20:54 - 2004-08-04 13:00 - 00162850 ____C C:\WINDOWS\system32\dllcache\c_10001.nls 2013-12-13 20:54 - 2004-08-04 13:00 - 00139264 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fxsclntr.dll 2013-12-13 20:54 - 2004-08-04 13:00 - 00134339 ____C C:\WINDOWS\system32\dllcache\imekr.lex 2013-12-13 20:54 - 2004-08-04 13:00 - 00112640 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fxscfgwz.dll 2013-12-13 20:54 - 2004-08-04 13:00 - 00108827 ____C C:\WINDOWS\system32\dllcache\hanja.lex 2013-12-13 20:54 - 2004-08-04 13:00 - 00082172 ____C C:\WINDOWS\system32\dllcache\bopomofo.nls 2013-12-13 20:54 - 2004-08-04 13:00 - 00066728 ____C C:\WINDOWS\system32\dllcache\big5.nls 2013-12-13 20:54 - 2004-08-04 13:00 - 00066594 ____C C:\WINDOWS\system32\dllcache\c_864.nls 2013-12-13 20:54 - 2004-08-04 13:00 - 00066594 ____C C:\WINDOWS\system32\dllcache\c_862.nls 2013-12-13 20:54 - 2004-08-04 13:00 - 00066594 ____C C:\WINDOWS\system32\dllcache\c_858.nls 2013-12-13 20:54 - 2004-08-04 13:00 - 00066594 ____C C:\WINDOWS\system32\dllcache\c_720.nls 2013-12-13 20:54 - 2004-08-04 13:00 - 00066082 ____C C:\WINDOWS\system32\dllcache\c_870.nls 2013-12-13 20:54 - 2004-08-04 13:00 - 00066082 ____C C:\WINDOWS\system32\dllcache\c_708.nls 2013-12-13 20:54 - 2004-08-04 13:00 - 00066082 ____C C:\WINDOWS\system32\dllcache\c_28596.nls 2013-12-13 20:54 - 2004-08-04 13:00 - 00066082 ____C C:\WINDOWS\system32\dllcache\c_21027.nls 2013-12-13 20:54 - 2004-08-04 13:00 - 00066082 ____C C:\WINDOWS\system32\dllcache\c_21025.nls 2013-12-13 20:54 - 2004-08-04 13:00 - 00066082 ____C C:\WINDOWS\system32\dllcache\c_20924.nls 2013-12-13 20:54 - 2004-08-04 13:00 - 00066082 ____C C:\WINDOWS\system32\dllcache\c_20880.nls 2013-12-13 20:54 - 2004-08-04 13:00 - 00066082 ____C C:\WINDOWS\system32\dllcache\c_20871.nls 2013-12-13 20:54 - 2004-08-04 13:00 - 00066082 ____C C:\WINDOWS\system32\dllcache\c_20838.nls 2013-12-13 20:54 - 2004-08-04 13:00 - 00066082 ____C C:\WINDOWS\system32\dllcache\c_20833.nls 2013-12-13 20:54 - 2004-08-04 13:00 - 00066082 ____C C:\WINDOWS\system32\dllcache\c_20424.nls 2013-12-13 20:54 - 2004-08-04 13:00 - 00066082 ____C C:\WINDOWS\system32\dllcache\c_20423.nls 2013-12-13 20:54 - 2004-08-04 13:00 - 00066082 ____C C:\WINDOWS\system32\dllcache\c_20420.nls 2013-12-13 20:54 - 2004-08-04 13:00 - 00066082 ____C C:\WINDOWS\system32\dllcache\c_20297.nls 2013-12-13 20:54 - 2004-08-04 13:00 - 00066082 ____C C:\WINDOWS\system32\dllcache\c_20290.nls 2013-12-13 20:54 - 2004-08-04 13:00 - 00066082 ____C C:\WINDOWS\system32\dllcache\c_20285.nls 2013-12-13 20:54 - 2004-08-04 13:00 - 00066082 ____C C:\WINDOWS\system32\dllcache\c_20284.nls 2013-12-13 20:54 - 2004-08-04 13:00 - 00066082 ____C C:\WINDOWS\system32\dllcache\c_20280.nls 2013-12-13 20:54 - 2004-08-04 13:00 - 00066082 ____C C:\WINDOWS\system32\dllcache\c_20278.nls 2013-12-13 20:54 - 2004-08-04 13:00 - 00066082 ____C C:\WINDOWS\system32\dllcache\c_20277.nls 2013-12-13 20:54 - 2004-08-04 13:00 - 00066082 ____C C:\WINDOWS\system32\dllcache\c_20273.nls 2013-12-13 20:54 - 2004-08-04 13:00 - 00066082 ____C C:\WINDOWS\system32\dllcache\c_20269.nls 2013-12-13 20:54 - 2004-08-04 13:00 - 00066082 ____C C:\WINDOWS\system32\dllcache\c_20108.nls 2013-12-13 20:54 - 2004-08-04 13:00 - 00066082 ____C C:\WINDOWS\system32\dllcache\c_20107.nls 2013-12-13 20:54 - 2004-08-04 13:00 - 00066082 ____C C:\WINDOWS\system32\dllcache\c_20106.nls 2013-12-13 20:54 - 2004-08-04 13:00 - 00066082 ____C C:\WINDOWS\system32\dllcache\c_20105.nls 2013-12-13 20:54 - 2004-08-04 13:00 - 00066082 ____C C:\WINDOWS\system32\dllcache\c_1149.nls 2013-12-13 20:54 - 2004-08-04 13:00 - 00066082 ____C C:\WINDOWS\system32\dllcache\c_1148.nls 2013-12-13 20:54 - 2004-08-04 13:00 - 00066082 ____C C:\WINDOWS\system32\dllcache\c_1147.nls 2013-12-13 20:54 - 2004-08-04 13:00 - 00066082 ____C C:\WINDOWS\system32\dllcache\c_1146.nls 2013-12-13 20:54 - 2004-08-04 13:00 - 00066082 ____C C:\WINDOWS\system32\dllcache\c_1145.nls 2013-12-13 20:54 - 2004-08-04 13:00 - 00066082 ____C C:\WINDOWS\system32\dllcache\c_1144.nls 2013-12-13 20:54 - 2004-08-04 13:00 - 00066082 ____C C:\WINDOWS\system32\dllcache\c_1143.nls 2013-12-13 20:54 - 2004-08-04 13:00 - 00066082 ____C C:\WINDOWS\system32\dllcache\c_1142.nls 2013-12-13 20:54 - 2004-08-04 13:00 - 00066082 ____C C:\WINDOWS\system32\dllcache\c_1141.nls 2013-12-13 20:54 - 2004-08-04 13:00 - 00066082 ____C C:\WINDOWS\system32\dllcache\c_1140.nls 2013-12-13 20:54 - 2004-08-04 13:00 - 00066082 ____C C:\WINDOWS\system32\dllcache\c_1047.nls 2013-12-13 20:54 - 2004-08-04 13:00 - 00066082 ____C C:\WINDOWS\system32\dllcache\c_10021.nls 2013-12-13 20:54 - 2004-08-04 13:00 - 00066082 ____C C:\WINDOWS\system32\dllcache\c_10005.nls 2013-12-13 20:54 - 2004-08-04 13:00 - 00066082 ____C C:\WINDOWS\system32\dllcache\c_10004.nls 2013-12-13 20:54 - 2004-08-04 13:00 - 00061440 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\iisclex4.dll 2013-12-13 20:54 - 2004-08-04 13:00 - 00057856 ____C (SEIKO EPSON CORP.) C:\WINDOWS\system32\dllcache\esuimgd.dll 2013-12-13 20:54 - 2004-08-04 13:00 - 00057399 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\cplexe.exe 2013-12-13 20:54 - 2004-08-04 13:00 - 00056832 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\convlog.exe 2013-12-13 20:54 - 2004-08-04 13:00 - 00054528 ____C (Philips Semiconductors GmbH) C:\WINDOWS\system32\dllcache\cap7146.sys 2013-12-13 20:54 - 2004-08-04 13:00 - 00050176 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\adrot.dll 2013-12-13 20:54 - 2004-08-04 13:00 - 00045568 ____C (SEIKO EPSON CORP.) C:\WINDOWS\system32\dllcache\esunid.dll 2013-12-13 20:54 - 2004-08-04 13:00 - 00045568 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\browscap.dll 2013-12-13 20:54 - 2004-08-04 13:00 - 00036864 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\hanjadic.dll 2013-12-13 20:54 - 2004-08-04 13:00 - 00033792 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\controt.dll 2013-12-13 20:54 - 2004-08-04 13:00 - 00031744 ____C (SEIKO EPSON CORP.) C:\WINDOWS\system32\dllcache\esucmd.dll 2013-12-13 20:54 - 2004-08-04 13:00 - 00031744 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fxsroute.dll 2013-12-13 20:54 - 2004-08-04 13:00 - 00029184 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\asptxn.dll 2013-12-13 20:54 - 2004-08-04 13:00 - 00025856 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\et4000.sys 2013-12-13 20:54 - 2004-08-04 13:00 - 00020480 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\counters.dll 2013-12-13 20:54 - 2004-08-04 13:00 - 00019968 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\inetsloc.dll 2013-12-13 20:54 - 2004-08-04 13:00 - 00019968 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\cprofile.exe 2013-12-13 20:54 - 2004-08-04 13:00 - 00019456 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\iiscrmap.dll 2013-12-13 20:54 - 2004-08-04 13:00 - 00016384 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\chgport.exe 2013-12-13 20:54 - 2004-08-04 13:00 - 00015360 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\iisreset.exe 2013-12-13 20:54 - 2004-08-04 13:00 - 00014848 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\flattemp.exe 2013-12-13 20:54 - 2004-08-04 13:00 - 00014848 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\chgusr.exe 2013-12-13 20:54 - 2004-08-04 13:00 - 00013824 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\chglogon.exe 2013-12-13 20:54 - 2004-08-04 13:00 - 00011264 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fxssend.exe 2013-12-13 20:54 - 2004-08-04 13:00 - 00010752 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\c_iscii.dll 2013-12-13 20:54 - 2004-08-04 13:00 - 00010240 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\change.exe 2013-12-13 20:54 - 2004-08-04 13:00 - 00010240 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\aspperf.dll 2013-12-13 20:54 - 2004-08-04 13:00 - 00009216 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\authfilt.dll 2013-12-13 20:54 - 2004-08-04 13:00 - 00007680 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\inetmgr.exe 2013-12-13 20:54 - 2004-08-04 13:00 - 00007680 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ftpctrs2.dll 2013-12-13 20:54 - 2004-08-04 13:00 - 00007168 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wamregps.dll 2013-12-13 20:54 - 2004-08-04 13:00 - 00006656 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\iissync.exe 2013-12-13 20:54 - 2004-08-04 13:00 - 00006656 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\c_is2022.dll 2013-12-13 20:54 - 2004-08-04 13:00 - 00006144 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ftpsapi2.dll 2013-12-13 20:54 - 2004-08-04 13:00 - 00006144 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ftlx041e.dll 2013-12-13 20:54 - 2004-08-04 13:00 - 00006144 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\admxprox.dll 2013-12-13 20:54 - 2004-08-04 13:00 - 00005632 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\iisrstap.dll 2013-12-13 20:54 - 2004-08-04 13:00 - 00003584 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\iismui.dll 2013-12-13 20:54 - 2003-03-24 16:52 - 00016384 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\tcptsat.dll 2013-12-13 20:54 - 2001-08-18 04:53 - 00046592 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\EXCH_aqadmin.dll 2013-12-13 20:54 - 2001-08-18 04:53 - 00043520 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\EXCH_fcachdll.dll 2013-12-13 20:54 - 2001-08-18 04:52 - 00005632 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\EXCH_adsiisex.dll 2013-12-13 20:53 - 2013-12-18 22:53 - 00001507 _____ C:\Dokumente und Einstellungen\All Users\Startmenü\Windows Update.lnk 2013-12-13 20:53 - 2013-12-13 21:48 - 00316640 _____ C:\WINDOWS\WMSysPr9.prx 2013-12-13 20:53 - 2013-12-13 21:42 - 00001563 _____ C:\Dokumente und Einstellungen\All Users\Startmenü\Programmzugriff und -standards.lnk 2013-12-13 20:53 - 2013-12-13 20:53 - 00023392 _____ C:\WINDOWS\system32\nscompat.tlb 2013-12-13 20:53 - 2013-12-13 20:53 - 00016832 _____ C:\WINDOWS\system32\amcompat.tlb 2013-12-13 20:53 - 2013-12-13 20:53 - 00002951 _____ C:\WINDOWS\system32\CONFIG.NT 2013-12-13 20:53 - 2013-12-13 20:53 - 00001599 _____ C:\Dokumente und Einstellungen\Default User\Startmenü\Programme\Remoteunterstützung.lnk 2013-12-13 20:53 - 2013-12-13 20:53 - 00000772 _____ C:\Dokumente und Einstellungen\Default User\Startmenü\Programme\Windows Media Player.lnk 2013-12-13 20:53 - 2013-12-13 20:53 - 00000398 _____ C:\Dokumente und Einstellungen\All Users\Startmenü\Windows-Katalog.lnk 2013-12-13 20:53 - 2013-12-13 20:53 - 00000000 __RSH C:\MSDOS.SYS 2013-12-13 20:53 - 2013-12-13 20:53 - 00000000 __RSH C:\IO.SYS 2013-12-13 20:53 - 2013-12-13 20:53 - 00000000 ____D C:\WINDOWS\system32\xircom 2013-12-13 20:53 - 2013-12-13 20:53 - 00000000 ____D C:\Programme\xerox 2013-12-13 20:53 - 2013-12-13 20:53 - 00000000 ____D C:\Programme\microsoft frontpage 2013-12-13 20:53 - 2013-12-13 20:53 - 00000000 _____ C:\WINDOWS\control.ini 2013-12-13 20:53 - 2013-12-13 20:53 - 00000000 _____ C:\CONFIG.SYS 2013-12-13 20:53 - 2013-12-13 20:53 - 00000000 _____ C:\AUTOEXEC.BAT 2013-12-13 20:53 - 2004-08-04 13:00 - 00112128 _____ (Microsoft Corporation) C:\WINDOWS\system32\mapi32.dll 2013-12-13 20:53 - 2004-08-04 13:00 - 00096768 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\certmap.ocx 2013-12-13 20:53 - 2003-03-24 16:52 - 00217088 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fpmmcsat.dll 2013-12-13 20:52 - 2013-12-24 20:50 - 00525626 _____ C:\WINDOWS\WindowsUpdate.log 2013-12-13 20:52 - 2013-12-13 20:53 - 00000000 ___RD C:\Dokumente und Einstellungen\Default User\Startmenü\Programme\Zubehör 2013-12-13 20:52 - 2013-12-13 20:52 - 00000758 _____ C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Windows Movie Maker.lnk 2013-12-13 20:52 - 2013-12-13 20:52 - 00000749 ___RH C:\WINDOWS\WindowsShell.Manifest 2013-12-13 20:52 - 2013-12-13 20:52 - 00000749 ___RH C:\WINDOWS\system32\wuaucpl.cpl.manifest 2013-12-13 20:52 - 2013-12-13 20:52 - 00000749 ___RH C:\WINDOWS\system32\sapi.cpl.manifest 2013-12-13 20:52 - 2013-12-13 20:52 - 00000749 ___RH C:\WINDOWS\system32\nwc.cpl.manifest 2013-12-13 20:52 - 2013-12-13 20:52 - 00000749 ___RH C:\WINDOWS\system32\ncpa.cpl.manifest 2013-12-13 20:52 - 2013-12-13 20:52 - 00000749 ___RH C:\WINDOWS\system32\cdplayer.exe.manifest 2013-12-13 20:52 - 2013-12-13 20:52 - 00000488 ___RH C:\WINDOWS\system32\WindowsLogon.manifest 2013-12-13 20:52 - 2013-12-13 20:52 - 00000488 ___RH C:\WINDOWS\system32\logonui.exe.manifest 2013-12-13 20:52 - 2013-12-13 20:52 - 00000000 __SHD C:\Dokumente und Einstellungen\All Users\DRM 2013-12-13 20:52 - 2013-12-13 20:52 - 00000000 ___RD C:\WINDOWS\Offline Web Pages 2013-12-13 20:52 - 2013-12-13 20:52 - 00000000 ___HD C:\Programme\WindowsUpdate 2013-12-13 20:52 - 2013-12-13 20:52 - 00000000 ____D C:\WINDOWS\system32\DirectX 2013-12-13 20:52 - 2013-12-13 20:52 - 00000000 ____D C:\Programme\Online-Dienste 2013-12-13 20:52 - 2004-08-04 13:00 - 04399505 ____C C:\WINDOWS\system32\dllcache\nls302en.lex 2013-12-13 20:51 - 2013-12-13 21:42 - 00000000 ____D C:\Programme\Movie Maker 2013-12-13 20:51 - 2013-12-13 21:41 - 00000000 ____D C:\WINDOWS\srchasst 2013-12-13 20:51 - 2013-12-13 20:51 - 00000000 ____D C:\WINDOWS\system32\Macromed 2013-12-13 20:51 - 2013-12-13 20:51 - 00000000 ____D C:\Programme\Gemeinsame Dateien\MSSoap 2013-12-13 20:51 - 2013-12-13 20:51 - 00000000 ____D C:\Programme\Gemeinsame Dateien\Dienste 2013-12-13 20:51 - 2012-06-02 15:19 - 01933848 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wuaueng.dll 2013-12-13 20:51 - 2012-06-02 15:19 - 01933848 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll 2013-12-13 20:51 - 2012-06-02 15:19 - 00577048 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wuapi.dll 2013-12-13 20:51 - 2012-06-02 15:19 - 00577048 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll 2013-12-13 20:51 - 2012-06-02 15:19 - 00329240 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wucltui.dll 2013-12-13 20:51 - 2012-06-02 15:19 - 00329240 _____ (Microsoft Corporation) C:\WINDOWS\system32\wucltui.dll 2013-12-13 20:51 - 2012-06-02 15:19 - 00219160 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wuaucpl.cpl 2013-12-13 20:51 - 2012-06-02 15:19 - 00219160 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaucpl.cpl 2013-12-13 20:51 - 2012-06-02 15:19 - 00210968 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wuweb.dll 2013-12-13 20:51 - 2012-06-02 15:19 - 00210968 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuweb.dll 2013-12-13 20:51 - 2012-06-02 15:19 - 00053784 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wuauclt.exe 2013-12-13 20:51 - 2012-06-02 15:19 - 00053784 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe 2013-12-13 20:51 - 2012-06-02 15:19 - 00035864 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wups.dll 2013-12-13 20:51 - 2012-06-02 15:19 - 00035864 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups.dll 2013-12-13 20:51 - 2008-04-14 07:53 - 00778240 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\setup_wm.exe 2013-12-13 20:51 - 2008-04-14 07:53 - 00226816 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\npdrmv2.dll 2013-12-13 20:51 - 2008-04-14 07:53 - 00168448 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt1.exe 2013-12-13 20:51 - 2008-04-14 07:53 - 00073728 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wmplayer.exe 2013-12-13 20:51 - 2008-04-14 07:52 - 00786432 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\migrate.exe 2013-12-13 20:51 - 2008-04-14 07:52 - 00409088 _____ (Microsoft Corporation) C:\WINDOWS\system32\qmgr.dll 2013-12-13 20:51 - 2008-04-14 07:52 - 00368640 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mpvis.dll 2013-12-13 20:51 - 2008-04-14 07:52 - 00364544 ____C (Microsoft Corporation (written by Digital Renaissance Inc.)) C:\WINDOWS\system32\dllcache\npdsplay.dll 2013-12-13 20:51 - 2008-04-14 07:52 - 00221184 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wmpns.dll 2013-12-13 20:51 - 2008-04-14 07:52 - 00183808 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng1.dll 2013-12-13 20:51 - 2008-04-14 07:52 - 00098304 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wmpband.dll 2013-12-13 20:51 - 2008-04-14 07:52 - 00045568 _____ (Microsoft Corporation) C:\WINDOWS\system32\safrslv.dll 2013-12-13 20:51 - 2008-04-14 07:52 - 00043520 _____ (Microsoft Corporation) C:\WINDOWS\system32\safrcdlg.dll 2013-12-13 20:51 - 2008-04-14 07:52 - 00043520 _____ (Microsoft Corporation) C:\WINDOWS\system32\racpldlg.dll 2013-12-13 20:51 - 2008-04-14 07:52 - 00033792 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\custsat.dll 2013-12-13 20:51 - 2008-04-14 07:52 - 00029696 _____ (Microsoft Corporation) C:\WINDOWS\system32\safrdm.dll 2013-12-13 20:51 - 2008-04-14 07:52 - 00018944 _____ (Microsoft Corporation) C:\WINDOWS\system32\qmgrprxy.dll 2013-12-13 20:51 - 2008-04-14 07:52 - 00010240 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\npwmsdrm.dll 2013-12-13 20:51 - 2008-04-14 07:52 - 00008192 _____ (Microsoft Corporation) C:\WINDOWS\system32\bitsprx2.dll 2013-12-13 20:51 - 2008-04-14 07:52 - 00007168 _____ (Microsoft Corporation) C:\WINDOWS\system32\bitsprx3.dll 2013-12-13 20:51 - 2008-04-14 07:52 - 00006656 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauserv.dll 2013-12-13 20:51 - 2008-04-14 07:52 - 00004639 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mplayer2.exe 2013-12-13 20:51 - 2004-08-04 13:00 - 00235520 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mssoap1.dll 2013-12-13 20:51 - 2004-08-04 13:00 - 00118784 _____ (Microsoft Corporation) C:\WINDOWS\system32\msg723.acm 2013-12-13 20:51 - 2004-08-04 13:00 - 00099840 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\helphost.exe 2013-12-13 20:51 - 2004-08-04 13:00 - 00094208 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ieinfo5.ocx 2013-12-13 20:51 - 2004-08-04 13:00 - 00073728 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\icwtutor.exe 2013-12-13 20:51 - 2004-08-04 13:00 - 00070144 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\acctres.dll 2013-12-13 20:51 - 2004-08-04 13:00 - 00070144 _____ (Microsoft Corporation) C:\WINDOWS\system32\acctres.dll 2013-12-13 20:51 - 2004-08-04 13:00 - 00065536 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\icwres.dll 2013-12-13 20:51 - 2004-08-04 13:00 - 00048680 ___SH C:\WINDOWS\winnt256.bmp 2013-12-13 20:51 - 2004-08-04 13:00 - 00048680 ___SH C:\WINDOWS\winnt.bmp 2013-12-13 20:51 - 2004-08-04 13:00 - 00047104 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\srdiag.exe 2013-12-13 20:51 - 2004-08-04 13:00 - 00040960 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\trialoc.dll 2013-12-13 20:51 - 2004-08-04 13:00 - 00040448 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msinfo32.exe 2013-12-13 20:51 - 2004-08-04 13:00 - 00035328 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\notiflag.exe 2013-12-13 20:51 - 2004-08-04 13:00 - 00025088 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wisc10.dll 2013-12-13 20:51 - 2004-08-04 13:00 - 00023552 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mssoapr.dll 2013-12-13 20:51 - 2004-08-04 13:00 - 00021504 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\brpinfo.dll 2013-12-13 20:51 - 2004-08-04 13:00 - 00016384 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\isignup.exe 2013-12-13 20:51 - 2004-08-04 13:00 - 00016384 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\icfgnt5.dll 2013-12-13 20:51 - 2004-08-04 13:00 - 00016384 _____ (Microsoft Corporation) C:\WINDOWS\system32\icfgnt5.dll 2013-12-13 20:51 - 2004-08-04 13:00 - 00012288 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wb32.exe 2013-12-13 20:51 - 2004-08-04 13:00 - 00012288 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\nmevtmsg.dll 2013-12-13 20:51 - 2004-08-04 13:00 - 00012288 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\cb32.exe 2013-12-13 20:51 - 2004-08-04 13:00 - 00012288 _____ (Microsoft Corporation) C:\WINDOWS\system32\nmevtmsg.dll 2013-12-13 20:51 - 2004-08-04 13:00 - 00011264 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\atrace.dll 2013-12-13 20:51 - 2004-08-04 13:00 - 00011264 _____ (Microsoft Corporation) C:\WINDOWS\system32\atrace.dll 2013-12-13 20:51 - 2004-08-04 13:00 - 00007680 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\hcappres.dll 2013-12-13 20:51 - 2004-08-04 13:00 - 00000984 ____C C:\WINDOWS\system32\dllcache\srframe.mmf 2013-12-13 20:50 - 2013-12-13 21:42 - 00001334 _____ C:\WINDOWS\sessmgr.setup.log 2013-12-13 20:50 - 2013-12-13 21:41 - 00000000 ____D C:\WINDOWS\system32\Restore 2013-12-13 20:50 - 2013-12-13 21:41 - 00000000 ____D C:\Programme\Outlook Express 2013-12-13 20:50 - 2013-12-13 21:41 - 00000000 ____D C:\Programme\NetMeeting 2013-12-13 20:50 - 2013-12-13 21:40 - 00000000 ____D C:\Programme\Gemeinsame Dateien\System |
24.12.2013, 21:08 | #18 |
| [XP, SP3]Facebook meldet Virus FRST aktuell Teil 2
__________________Code:
ATTFilter 2013-12-13 20:50 - 2013-12-13 20:53 - 00000000 ___RD C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Verwaltung 2013-12-13 20:50 - 2013-12-13 20:53 - 00000000 ____D C:\WINDOWS\Registration 2013-12-13 20:50 - 2013-12-13 20:51 - 00000000 ___RD C:\Dokumente und Einstellungen\All Users\Dokumente\Eigene Bilder 2013-12-13 20:50 - 2013-12-13 20:50 - 00021740 _____ C:\WINDOWS\system32\emptyregdb.dat 2013-12-13 20:50 - 2013-12-13 20:50 - 00000621 _____ C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Windows Messenger.lnk 2013-12-13 20:50 - 2013-12-13 20:50 - 00000037 _____ C:\WINDOWS\vbaddin.ini 2013-12-13 20:50 - 2013-12-13 20:50 - 00000036 _____ C:\WINDOWS\vb.ini 2013-12-13 20:50 - 2013-12-13 20:50 - 00000000 ___RD C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Spiele 2013-12-13 20:50 - 2013-12-13 20:50 - 00000000 ____D C:\Programme\ComPlus Applications 2013-12-13 20:50 - 2008-04-14 07:53 - 00192512 _____ (Microsoft Corporation) C:\WINDOWS\system32\msh261.drv 2013-12-13 20:50 - 2008-04-14 07:52 - 00691712 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcomm.dll 2013-12-13 20:50 - 2008-04-14 07:52 - 00282624 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcfg.dll 2013-12-13 20:50 - 2008-04-14 07:52 - 00280064 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstask.dll 2013-12-13 20:50 - 2008-04-14 07:52 - 00252928 _____ (Microsoft Corporation) C:\WINDOWS\system32\msoeacct.dll 2013-12-13 20:50 - 2008-04-14 07:52 - 00242176 _____ (Microsoft Corporation) C:\WINDOWS\system32\srrstr.dll 2013-12-13 20:50 - 2008-04-14 07:52 - 00193536 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll 2013-12-13 20:50 - 2008-04-14 07:52 - 00171520 _____ (Microsoft Corporation) C:\WINDOWS\system32\srsvc.dll 2013-12-13 20:50 - 2008-04-14 07:52 - 00105984 _____ (Microsoft Corporation) C:\WINDOWS\system32\msoert2.dll 2013-12-13 20:50 - 2008-04-14 07:52 - 00086016 _____ (Microsoft Corporation) C:\WINDOWS\system32\isign32.dll 2013-12-13 20:50 - 2008-04-14 07:52 - 00081920 _____ (Microsoft Corporation) C:\WINDOWS\system32\ils.dll 2013-12-13 20:50 - 2008-04-14 07:52 - 00073728 _____ (Microsoft Corporation) C:\WINDOWS\system32\icwdial.dll 2013-12-13 20:50 - 2008-04-14 07:52 - 00069632 _____ (Microsoft Corporation) C:\WINDOWS\system32\msconf.dll 2013-12-13 20:50 - 2008-04-14 07:52 - 00067584 _____ (Microsoft Corporation) C:\WINDOWS\system32\srclient.dll 2013-12-13 20:50 - 2008-04-14 07:52 - 00065536 _____ (Microsoft Corporation) C:\WINDOWS\system32\icwphbk.dll 2013-12-13 20:50 - 2008-04-14 07:52 - 00034560 _____ (Microsoft Corporation) C:\WINDOWS\system32\mnmdd.dll 2013-12-13 20:50 - 2008-04-14 07:52 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\system32\mnmsrvc.exe 2013-12-13 20:50 - 2008-04-14 07:52 - 00032768 _____ (Intel Corporation) C:\WINDOWS\system32\isrdbg32.dll 2013-12-13 20:50 - 2008-04-14 07:52 - 00028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\nmmkcert.dll 2013-12-13 20:50 - 2008-04-14 07:52 - 00023040 _____ (Microsoft Corporation) C:\WINDOWS\system32\fltmc.exe 2013-12-13 20:50 - 2008-04-14 07:52 - 00016896 _____ (Microsoft Corporation) C:\WINDOWS\system32\fltlib.dll 2013-12-13 20:50 - 2008-04-14 07:52 - 00012288 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstinit.exe 2013-12-13 20:50 - 2008-04-14 07:32 - 00073472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sr.sys 2013-12-13 20:50 - 2008-04-14 07:26 - 00051712 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetres.dll 2013-12-13 20:50 - 2008-04-14 00:03 - 00129792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fltmgr.sys 2013-12-13 20:49 - 2013-12-14 15:06 - 00002499 _____ C:\WINDOWS\wmsetup.log 2013-12-13 20:49 - 2013-12-13 21:48 - 00000359 _____ C:\WINDOWS\DtcInstall.log 2013-12-13 20:49 - 2013-12-13 21:42 - 00000000 ____D C:\Programme\Messenger 2013-12-13 20:49 - 2013-12-13 20:51 - 00000000 ___RD C:\Dokumente und Einstellungen\All Users\Dokumente\Eigene Musik 2013-12-13 20:49 - 2013-12-13 20:49 - 00002004 _____ C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\MSN.lnk 2013-12-13 20:49 - 2013-12-13 20:49 - 00000000 ____D C:\Programme\Online Services 2013-12-13 20:49 - 2013-12-13 20:49 - 00000000 ____D C:\Programme\MSN Gaming Zone 2013-12-13 20:49 - 2008-04-14 07:52 - 00167424 _____ (Microsoft Corporation) C:\WINDOWS\system32\comsnap.dll 2013-12-13 20:49 - 2008-04-14 07:52 - 00097792 _____ (Microsoft Corporation) C:\WINDOWS\system32\comrepl.dll 2013-12-13 20:49 - 2008-04-14 07:52 - 00059392 _____ (Microsoft Corporation) C:\WINDOWS\system32\stclient.dll 2013-12-13 20:49 - 2008-04-14 07:52 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\system32\mtxlegih.dll 2013-12-13 20:49 - 2008-04-14 07:52 - 00030720 _____ (Microsoft Corporation) C:\WINDOWS\system32\mtxdm.dll 2013-12-13 20:49 - 2008-04-14 07:52 - 00028160 _____ (Microsoft Corporation) C:\WINDOWS\system32\comaddin.dll 2013-12-13 20:49 - 2008-04-14 07:52 - 00006144 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcomcnfg.exe 2013-12-13 20:49 - 2008-04-14 07:52 - 00004096 _____ (Microsoft Corporation) C:\WINDOWS\system32\mtxex.dll 2013-12-13 20:49 - 2004-08-04 13:00 - 02178131 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\shvlres.dll 2013-12-13 20:49 - 2004-08-04 13:00 - 01817687 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\bckgres.dll 2013-12-13 20:49 - 2004-08-04 13:00 - 01175635 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\hrtzres.dll 2013-12-13 20:49 - 2004-08-04 13:00 - 01042515 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\cmnresm.dll 2013-12-13 20:49 - 2004-08-04 13:00 - 00781397 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\chkrres.dll 2013-12-13 20:49 - 2004-08-04 13:00 - 00753236 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\rvseres.dll 2013-12-13 20:49 - 2004-08-04 13:00 - 00683520 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\getuname.dll 2013-12-13 20:49 - 2004-08-04 13:00 - 00683520 _____ (Microsoft Corporation) C:\WINDOWS\system32\getuname.dll 2013-12-13 20:49 - 2004-08-04 13:00 - 00273920 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msiprov.dll 2013-12-13 20:49 - 2004-08-04 13:00 - 00232960 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\avtapi.dll 2013-12-13 20:49 - 2004-08-04 13:00 - 00232960 _____ (Microsoft Corporation) C:\WINDOWS\system32\avtapi.dll 2013-12-13 20:49 - 2004-08-04 13:00 - 00217160 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\cmnclim.dll 2013-12-13 20:49 - 2004-08-04 13:00 - 00139776 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\sndvol32.exe 2013-12-13 20:49 - 2004-08-04 13:00 - 00139776 _____ (Microsoft Corporation) C:\WINDOWS\system32\sndvol32.exe 2013-12-13 20:49 - 2004-08-04 13:00 - 00128000 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mshearts.exe 2013-12-13 20:49 - 2004-08-04 13:00 - 00128000 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshearts.exe 2013-12-13 20:49 - 2004-08-04 13:00 - 00120320 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\winmine.exe 2013-12-13 20:49 - 2004-08-04 13:00 - 00120320 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\dsprov.dll 2013-12-13 20:49 - 2004-08-04 13:00 - 00120320 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmine.exe 2013-12-13 20:49 - 2004-08-04 13:00 - 00116224 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\updprov.dll 2013-12-13 20:49 - 2004-08-04 13:00 - 00114688 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\calc.exe 2013-12-13 20:49 - 2004-08-04 13:00 - 00114688 _____ (Microsoft Corporation) C:\WINDOWS\system32\calc.exe 2013-12-13 20:49 - 2004-08-04 13:00 - 00113222 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\zoneclim.dll 2013-12-13 20:49 - 2004-08-04 13:00 - 00093702 _____ C:\WINDOWS\system32\subrange.uce 2013-12-13 20:49 - 2004-08-04 13:00 - 00082501 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\bckg.dll 2013-12-13 20:49 - 2004-08-04 13:00 - 00080896 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\charmap.exe 2013-12-13 20:49 - 2004-08-04 13:00 - 00080896 _____ (Microsoft Corporation) C:\WINDOWS\system32\charmap.exe 2013-12-13 20:49 - 2004-08-04 13:00 - 00076800 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wmipicmp.dll 2013-12-13 20:49 - 2004-08-04 13:00 - 00073216 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\avwav.dll 2013-12-13 20:49 - 2004-08-04 13:00 - 00073216 _____ (Microsoft Corporation) C:\WINDOWS\system32\avwav.dll 2013-12-13 20:49 - 2004-08-04 13:00 - 00066113 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\shvl.dll 2013-12-13 20:49 - 2004-08-04 13:00 - 00065978 _____ C:\WINDOWS\Seifenblase.bmp 2013-12-13 20:49 - 2004-08-04 13:00 - 00065954 _____ C:\WINDOWS\Präriewind.bmp 2013-12-13 20:49 - 2004-08-04 13:00 - 00065832 _____ C:\WINDOWS\Santa Fe-Stuck.bmp 2013-12-13 20:49 - 2004-08-04 13:00 - 00063488 _____ C:\WINDOWS\system32\wmimgmt.msc 2013-12-13 20:49 - 2004-08-04 13:00 - 00061952 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\tmplprov.dll 2013-12-13 20:49 - 2004-08-04 13:00 - 00061440 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wmimsg.dll 2013-12-13 20:49 - 2004-08-04 13:00 - 00060458 _____ C:\WINDOWS\system32\ideograf.uce 2013-12-13 20:49 - 2004-08-04 13:00 - 00059904 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wbemdisp.tlb 2013-12-13 20:49 - 2004-08-04 13:00 - 00059904 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\trnsprov.dll 2013-12-13 20:49 - 2004-08-04 13:00 - 00057409 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\hrtz.dll 2013-12-13 20:49 - 2004-08-04 13:00 - 00057344 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\sol.exe 2013-12-13 20:49 - 2004-08-04 13:00 - 00057344 _____ (Microsoft Corporation) C:\WINDOWS\system32\sol.exe 2013-12-13 20:49 - 2004-08-04 13:00 - 00055808 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\freecell.exe 2013-12-13 20:49 - 2004-08-04 13:00 - 00055808 _____ (Microsoft Corporation) C:\WINDOWS\system32\freecell.exe 2013-12-13 20:49 - 2004-08-04 13:00 - 00053248 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fwdprov.dll 2013-12-13 20:49 - 2004-08-04 13:00 - 00052224 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wmitimep.dll 2013-12-13 20:49 - 2004-08-04 13:00 - 00048706 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\rvse.dll 2013-12-13 20:49 - 2004-08-04 13:00 - 00045568 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wmi2xml.dll 2013-12-13 20:49 - 2004-08-04 13:00 - 00044544 _____ (Hilgraeve, Inc.) C:\WINDOWS\system32\hticons.dll 2013-12-13 20:49 - 2004-08-04 13:00 - 00042577 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\bckgzm.exe 2013-12-13 20:49 - 2004-08-04 13:00 - 00042575 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\chkrzm.exe 2013-12-13 20:49 - 2004-08-04 13:00 - 00042574 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\rvsezm.exe 2013-12-13 20:49 - 2004-08-04 13:00 - 00042573 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\shvlzm.exe 2013-12-13 20:49 - 2004-08-04 13:00 - 00042573 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\hrtzzm.exe 2013-12-13 20:49 - 2004-08-04 13:00 - 00041029 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\zcorem.dll 2013-12-13 20:49 - 2004-08-04 13:00 - 00040960 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\smtpcons.dll 2013-12-13 20:49 - 2004-08-04 13:00 - 00040515 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\chkr.dll 2013-12-13 20:49 - 2004-08-04 13:00 - 00036937 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\zclientm.exe 2013-12-13 20:49 - 2004-08-04 13:00 - 00035840 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\winchat.exe 2013-12-13 20:49 - 2004-08-04 13:00 - 00035840 _____ (Microsoft Corporation) C:\WINDOWS\system32\winchat.exe 2013-12-13 20:49 - 2004-08-04 13:00 - 00033792 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\regini.exe 2013-12-13 20:49 - 2004-08-04 13:00 - 00033792 _____ (Microsoft Corporation) C:\WINDOWS\system32\regini.exe 2013-12-13 20:49 - 2004-08-04 13:00 - 00032339 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\uniansi.dll 2013-12-13 20:49 - 2004-08-04 13:00 - 00031232 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wbemads.tlb 2013-12-13 20:49 - 2004-08-04 13:00 - 00029760 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\znetm.dll 2013-12-13 20:49 - 2004-08-04 13:00 - 00027055 _____ C:\WINDOWS\system32\tslabels.ini 2013-12-13 20:49 - 2004-08-04 13:00 - 00026680 _____ C:\WINDOWS\Fächer.bmp 2013-12-13 20:49 - 2004-08-04 13:00 - 00026582 _____ C:\WINDOWS\Granit.bmp 2013-12-13 20:49 - 2004-08-04 13:00 - 00024006 _____ C:\WINDOWS\system32\gb2312.uce 2013-12-13 20:49 - 2004-08-04 13:00 - 00022984 _____ C:\WINDOWS\system32\bopomofo.uce 2013-12-13 20:49 - 2004-08-04 13:00 - 00022528 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\qwinsta.exe 2013-12-13 20:49 - 2004-08-04 13:00 - 00022528 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msg.exe 2013-12-13 20:49 - 2004-08-04 13:00 - 00022528 _____ (Microsoft Corporation) C:\WINDOWS\system32\qwinsta.exe 2013-12-13 20:49 - 2004-08-04 13:00 - 00022528 _____ (Microsoft Corporation) C:\WINDOWS\system32\msg.exe 2013-12-13 20:49 - 2004-08-04 13:00 - 00019456 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mtsadmin.tlb 2013-12-13 20:49 - 2004-08-04 13:00 - 00017920 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\winmgmtr.dll 2013-12-13 20:49 - 2004-08-04 13:00 - 00017920 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\tsshutdn.exe 2013-12-13 20:49 - 2004-08-04 13:00 - 00017920 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsshutdn.exe 2013-12-13 20:49 - 2004-08-04 13:00 - 00017408 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\qappsrv.exe 2013-12-13 20:49 - 2004-08-04 13:00 - 00017408 _____ (Microsoft Corporation) C:\WINDOWS\system32\qappsrv.exe 2013-12-13 20:49 - 2004-08-04 13:00 - 00017362 _____ C:\WINDOWS\Rhododendron.bmp 2013-12-13 20:49 - 2004-08-04 13:00 - 00017336 _____ C:\WINDOWS\Angler.bmp 2013-12-13 20:49 - 2004-08-04 13:00 - 00017062 _____ C:\WINDOWS\Kaffeetasse.bmp 2013-12-13 20:49 - 2004-08-04 13:00 - 00016896 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\unsecapp.exe 2013-12-13 20:49 - 2004-08-04 13:00 - 00016740 _____ C:\WINDOWS\system32\shiftjis.uce 2013-12-13 20:49 - 2004-08-04 13:00 - 00016730 _____ C:\WINDOWS\Feder.bmp 2013-12-13 20:49 - 2004-08-04 13:00 - 00016384 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\tskill.exe 2013-12-13 20:49 - 2004-08-04 13:00 - 00016384 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\rwinsta.exe 2013-12-13 20:49 - 2004-08-04 13:00 - 00016384 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\avmeter.dll 2013-12-13 20:49 - 2004-08-04 13:00 - 00016384 _____ (Microsoft Corporation) C:\WINDOWS\system32\tskill.exe 2013-12-13 20:49 - 2004-08-04 13:00 - 00016384 _____ (Microsoft Corporation) C:\WINDOWS\system32\rwinsta.exe 2013-12-13 20:49 - 2004-08-04 13:00 - 00016384 _____ (Microsoft Corporation) C:\WINDOWS\system32\avmeter.dll 2013-12-13 20:49 - 2004-08-04 13:00 - 00015872 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\logoff.exe 2013-12-13 20:49 - 2004-08-04 13:00 - 00015872 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\cdmodem.dll 2013-12-13 20:49 - 2004-08-04 13:00 - 00015872 _____ (Microsoft Corporation) C:\WINDOWS\system32\logoff.exe 2013-12-13 20:49 - 2004-08-04 13:00 - 00015872 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdmodem.dll 2013-12-13 20:49 - 2004-08-04 13:00 - 00015360 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\tsdiscon.exe 2013-12-13 20:49 - 2004-08-04 13:00 - 00015360 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\tscon.exe 2013-12-13 20:49 - 2004-08-04 13:00 - 00015360 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\shadow.exe 2013-12-13 20:49 - 2004-08-04 13:00 - 00015360 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsdiscon.exe 2013-12-13 20:49 - 2004-08-04 13:00 - 00015360 _____ (Microsoft Corporation) C:\WINDOWS\system32\tscon.exe 2013-12-13 20:49 - 2004-08-04 13:00 - 00015360 _____ (Microsoft Corporation) C:\WINDOWS\system32\shadow.exe 2013-12-13 20:49 - 2004-08-04 13:00 - 00013894 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\zonelibm.dll 2013-12-13 20:49 - 2004-08-04 13:00 - 00013824 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\winmgmt.exe 2013-12-13 20:49 - 2004-08-04 13:00 - 00013312 ____C (Hilgraeve, Inc.) C:\WINDOWS\system32\dllcache\htrn_jis.dll 2013-12-13 20:49 - 2004-08-04 13:00 - 00012876 _____ C:\WINDOWS\system32\korean.uce 2013-12-13 20:49 - 2004-08-04 13:00 - 00012288 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wbemads.dll 2013-12-13 20:49 - 2004-08-04 13:00 - 00010240 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\reset.exe 2013-12-13 20:49 - 2004-08-04 13:00 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\system32\reset.exe 2013-12-13 20:49 - 2004-08-04 13:00 - 00009522 _____ C:\WINDOWS\Zapotek.bmp 2013-12-13 20:49 - 2004-08-04 13:00 - 00008484 _____ C:\WINDOWS\system32\kanji_2.uce 2013-12-13 20:49 - 2004-08-04 13:00 - 00006948 _____ C:\WINDOWS\system32\kanji_1.uce 2013-12-13 20:49 - 2004-08-04 13:00 - 00005632 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\write.exe 2013-12-13 20:49 - 2004-08-04 13:00 - 00005632 _____ (Microsoft Corporation) C:\WINDOWS\system32\write.exe 2013-12-13 20:49 - 2004-08-04 13:00 - 00004677 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\zeeverm.dll 2013-12-13 20:49 - 2004-08-04 13:00 - 00004608 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\rdpcfgex.dll 2013-12-13 20:49 - 2004-08-04 13:00 - 00004608 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcfgex.dll 2013-12-13 20:49 - 2004-08-04 13:00 - 00003999 _____ C:\WINDOWS\system32\msdtcprf.ini 2013-12-13 20:49 - 2004-08-04 13:00 - 00003286 _____ C:\WINDOWS\system32\tslabels.h 2013-12-13 20:49 - 2004-08-04 13:00 - 00001272 _____ C:\WINDOWS\Blaue Spitzen 16.bmp 2013-12-13 20:49 - 2004-08-04 13:00 - 00001237 _____ C:\WINDOWS\system32\usrlogon.cmd 2013-12-13 20:49 - 2004-08-04 13:00 - 00000768 _____ C:\WINDOWS\system32\msdtcprf.h 2013-12-13 20:48 - 2013-12-13 21:41 - 00000000 ____D C:\WINDOWS\system32\Com 2013-12-13 20:48 - 2013-12-13 21:41 - 00000000 ____D C:\Programme\Windows NT 2013-12-13 20:48 - 2013-12-13 20:50 - 00000000 ____D C:\WINDOWS\system32\MsDtc 2013-12-13 20:48 - 2013-12-13 20:48 - 00000000 ____D C:\Programme\MSN 2013-12-13 20:48 - 2008-04-14 07:53 - 00539136 _____ (Microsoft Corporation) C:\WINDOWS\system32\spider.exe 2013-12-13 20:48 - 2008-04-14 07:53 - 00143360 _____ (Microsoft Corporation) C:\WINDOWS\system32\sessmgr.exe 2013-12-13 20:48 - 2008-04-14 07:53 - 00139656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdpwd.sys 2013-12-13 20:48 - 2008-04-14 07:53 - 00133120 _____ (Microsoft Corporation) C:\WINDOWS\system32\sndrec32.exe 2013-12-13 20:48 - 2008-04-14 07:53 - 00087176 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpwsx.dll 2013-12-13 20:48 - 2008-04-14 07:53 - 00070656 _____ (Microsoft Corporation) C:\WINDOWS\system32\access.cpl 2013-12-13 20:48 - 2008-04-14 07:53 - 00067072 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdshost.exe 2013-12-13 20:48 - 2008-04-14 07:53 - 00062976 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpclip.exe 2013-12-13 20:48 - 2008-04-14 07:53 - 00040840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\termdd.sys 2013-12-13 20:48 - 2008-04-14 07:53 - 00021896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tdtcp.sys 2013-12-13 20:48 - 2008-04-14 07:53 - 00013824 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdsaddin.exe 2013-12-13 20:48 - 2008-04-14 07:53 - 00012040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tdpipe.sys 2013-12-13 20:48 - 2008-04-14 07:52 - 02061824 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll 2013-12-13 20:48 - 2008-04-14 07:52 - 01267200 _____ (Microsoft Corporation) C:\WINDOWS\system32\comsvcs.dll 2013-12-13 20:48 - 2008-04-14 07:52 - 00956928 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdtctm.dll 2013-12-13 20:48 - 2008-04-14 07:52 - 00677888 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstsc.exe 2013-12-13 20:48 - 2008-04-14 07:52 - 00625664 _____ (Microsoft Corporation) C:\WINDOWS\system32\catsrvut.dll 2013-12-13 20:48 - 2008-04-14 07:52 - 00498688 _____ (Microsoft Corporation) C:\WINDOWS\system32\clbcatq.dll 2013-12-13 20:48 - 2008-04-14 07:52 - 00427008 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdtcprx.dll 2013-12-13 20:48 - 2008-04-14 07:52 - 00356352 _____ (Hilgraeve, Inc.) C:\WINDOWS\system32\hypertrm.dll 2013-12-13 20:48 - 2008-04-14 07:52 - 00346624 _____ (Microsoft Corporation) C:\WINDOWS\system32\mspaint.exe 2013-12-13 20:48 - 2008-04-14 07:52 - 00297472 _____ (Microsoft Corporation) C:\WINDOWS\system32\termsrv.dll 2013-12-13 20:48 - 2008-04-14 07:52 - 00226304 _____ (Microsoft Corporation) C:\WINDOWS\system32\catsrv.dll 2013-12-13 20:48 - 2008-04-14 07:52 - 00189440 _____ (Microsoft Corporation) C:\WINDOWS\system32\cmprops.dll 2013-12-13 20:48 - 2008-04-14 07:52 - 00188928 _____ (Microsoft Corporation) C:\WINDOWS\system32\accwiz.exe 2013-12-13 20:48 - 2008-04-14 07:52 - 00161792 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdtcuiu.dll 2013-12-13 20:48 - 2008-04-14 07:52 - 00147968 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdchost.dll 2013-12-13 20:48 - 2008-04-14 07:52 - 00124928 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mplay32.exe 2013-12-13 20:48 - 2008-04-14 07:52 - 00124928 _____ (Microsoft Corporation) C:\WINDOWS\system32\mplay32.exe 2013-12-13 20:48 - 2008-04-14 07:52 - 00110592 _____ (Microsoft Corporation) C:\WINDOWS\system32\clbcatex.dll 2013-12-13 20:48 - 2008-04-14 07:52 - 00104448 _____ (Microsoft Corporation) C:\WINDOWS\system32\clipbrd.exe 2013-12-13 20:48 - 2008-04-14 07:52 - 00094720 _____ (Microsoft Corporation) C:\WINDOWS\system32\tscfgwmi.dll 2013-12-13 20:48 - 2008-04-14 07:52 - 00091648 _____ (Microsoft Corporation) C:\WINDOWS\system32\mtxoci.dll 2013-12-13 20:48 - 2008-04-14 07:52 - 00085504 _____ (Microsoft Corporation) C:\WINDOWS\system32\catsrvps.dll 2013-12-13 20:48 - 2008-04-14 07:52 - 00061440 _____ (Microsoft Corporation) C:\WINDOWS\system32\remotepg.dll 2013-12-13 20:48 - 2008-04-14 07:52 - 00060416 _____ (Microsoft Corporation) C:\WINDOWS\system32\colbact.dll 2013-12-13 20:48 - 2008-04-14 07:52 - 00058880 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdtclog.dll 2013-12-13 20:48 - 2008-04-14 07:52 - 00058880 _____ (Microsoft Corporation) C:\WINDOWS\system32\licwmi.dll 2013-12-13 20:48 - 2008-04-14 07:52 - 00056320 _____ (Microsoft Corporation) C:\WINDOWS\system32\servdeps.dll 2013-12-13 20:48 - 2008-04-14 07:52 - 00039424 _____ (Microsoft Corporation) C:\WINDOWS\system32\cfgbkend.dll 2013-12-13 20:48 - 2008-04-14 07:52 - 00020480 _____ (Microsoft Corporation) C:\WINDOWS\system32\qprocess.exe 2013-12-13 20:48 - 2008-04-14 07:52 - 00019968 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpsnd.dll 2013-12-13 20:48 - 2008-04-14 07:52 - 00017920 _____ (Microsoft Corporation) C:\WINDOWS\system32\mmfutil.dll 2013-12-13 20:48 - 2008-04-14 07:52 - 00011776 _____ (Microsoft Corporation) C:\WINDOWS\system32\xolehlp.dll 2013-12-13 20:48 - 2008-04-14 07:52 - 00011264 _____ (Microsoft Corporation) C:\WINDOWS\system32\icaapi.dll 2013-12-13 20:48 - 2008-04-14 07:52 - 00006144 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdtc.exe 2013-12-13 20:48 - 2008-04-14 07:50 - 00539648 _____ (Microsoft Corporation) C:\WINDOWS\system32\comuid.dll 2013-12-13 20:48 - 2008-04-14 00:02 - 00196224 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdpdr.sys 2013-12-13 20:48 - 2004-08-04 13:00 - 00655360 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mstscax.dll 2013-12-13 20:48 - 2004-08-04 13:00 - 00412672 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mstsc.exe 2013-12-13 20:48 - 2004-08-04 13:00 - 00044544 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\tscupgrd.exe 2013-12-13 20:48 - 2004-08-04 13:00 - 00044544 _____ (Microsoft Corporation) C:\WINDOWS\system32\tscupgrd.exe 2013-12-13 20:47 - 2013-12-13 23:46 - 00000000 ___RD C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Zubehör 2013-12-13 20:47 - 2013-12-13 21:42 - 00000373 _____ C:\WINDOWS\cmsetacl.log 2013-12-13 20:44 - 2013-12-24 20:47 - 00000159 _____ C:\WINDOWS\wiadebug.log 2013-12-13 20:44 - 2013-12-24 20:47 - 00000050 _____ C:\WINDOWS\wiaservc.log 2013-12-13 20:44 - 2013-12-13 20:44 - 00000000 _____ C:\WINDOWS\Sti_Trace.log 2013-12-13 20:44 - 2008-04-14 07:22 - 00057728 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\redbook.sys 2013-12-13 20:44 - 2001-08-17 13:59 - 00003072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\audstub.sys 2013-12-13 20:43 - 2008-04-14 07:52 - 00077312 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\usbui.dll 2013-12-13 20:43 - 2008-04-14 07:52 - 00077312 _____ (Microsoft Corporation) C:\WINDOWS\system32\usbui.dll 2013-12-13 20:43 - 2008-04-14 07:22 - 00016384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\battc.sys 2013-12-13 20:43 - 2008-04-14 00:06 - 00013952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cmbatt.sys 2013-12-13 20:43 - 2008-04-14 00:06 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\compbatt.sys 2013-12-13 20:43 - 2001-08-17 13:46 - 00006400 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\enum1394.sys 2013-12-13 20:42 - 2013-12-24 18:30 - 00000000 ___RD C:\Programme 2013-12-13 20:42 - 2013-12-19 12:36 - 00082283 _____ C:\WINDOWS\iis6.log 2013-12-13 20:42 - 2013-12-19 12:36 - 00048632 _____ C:\WINDOWS\FaxSetup.log 2013-12-13 20:42 - 2013-12-19 12:36 - 00032297 _____ C:\WINDOWS\ocgen.log 2013-12-13 20:42 - 2013-12-19 12:36 - 00027527 _____ C:\WINDOWS\comsetup.log 2013-12-13 20:42 - 2013-12-19 12:36 - 00026172 _____ C:\WINDOWS\tsoc.log 2013-12-13 20:42 - 2013-12-19 12:36 - 00021674 _____ C:\WINDOWS\msmqinst.log 2013-12-13 20:42 - 2013-12-19 12:36 - 00014795 _____ C:\WINDOWS\ntdtcsetup.log 2013-12-13 20:42 - 2013-12-19 12:36 - 00008962 _____ C:\WINDOWS\netfxocm.log 2013-12-13 20:42 - 2013-12-19 12:36 - 00005792 _____ C:\WINDOWS\MedCtrOC.log 2013-12-13 20:42 - 2013-12-19 12:36 - 00003274 _____ C:\WINDOWS\tabletoc.log 2013-12-13 20:42 - 2013-12-19 12:36 - 00002756 _____ C:\WINDOWS\ocmsn.log 2013-12-13 20:42 - 2013-12-19 12:36 - 00002569 _____ C:\WINDOWS\msgsocm.log 2013-12-13 20:42 - 2013-12-19 12:36 - 00001393 _____ C:\WINDOWS\imsins.log 2013-12-13 20:42 - 2013-12-18 23:06 - 00001393 _____ C:\WINDOWS\imsins.BAK 2013-12-13 20:42 - 2013-12-14 00:59 - 00938224 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2013-12-13 20:42 - 2013-12-13 20:59 - 00000000 ____D C:\Programme\Gemeinsame Dateien\Microsoft Shared 2013-12-13 20:42 - 2013-12-13 20:53 - 00004161 _____ C:\WINDOWS\ODBCINST.INI 2013-12-13 20:42 - 2013-12-13 20:42 - 00001348 _____ C:\WINDOWS\regopt.log 2013-12-13 20:42 - 2013-12-13 20:42 - 00000000 ____D C:\Programme\Gemeinsame Dateien\SpeechEngines 2013-12-13 20:42 - 2013-12-13 20:42 - 00000000 ____D C:\Programme\Gemeinsame Dateien\ODBC 2013-12-13 20:42 - 2008-04-14 07:53 - 00146944 _____ (Microsoft Corporation) C:\WINDOWS\system\winspool.drv 2013-12-13 20:42 - 2008-04-14 07:52 - 00008704 _____ (Microsoft Corporation) C:\WINDOWS\system32\batt.dll 2013-12-13 20:42 - 2008-04-14 00:24 - 00011264 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\irenum.sys 2013-12-13 20:42 - 2004-08-04 13:00 - 01685606 ____C C:\WINDOWS\system32\dllcache\sam.spd 2013-12-13 20:42 - 2004-08-04 13:00 - 00774144 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\spttseng.dll 2013-12-13 20:42 - 2004-08-04 13:00 - 00643717 ____C C:\WINDOWS\system32\dllcache\ltts1033.lxa 2013-12-13 20:42 - 2004-08-04 13:00 - 00605050 ____C C:\WINDOWS\system32\dllcache\r1033tts.lxa 2013-12-13 20:42 - 2004-08-04 13:00 - 00176157 ____C (Digi International, Inc.) C:\WINDOWS\system32\dllcache\dgrpsetu.dll 2013-12-13 20:42 - 2004-08-04 13:00 - 00176157 _____ (Digi International, Inc.) C:\WINDOWS\system32\dgrpsetu.dll 2013-12-13 20:42 - 2004-08-04 13:00 - 00127104 _____ (Microsoft Corporation) C:\WINDOWS\system\MSVIDEO.DLL 2013-12-13 20:42 - 2004-08-04 13:00 - 00109504 _____ (Microsoft Corporation) C:\WINDOWS\system\AVIFILE.DLL 2013-12-13 20:42 - 2004-08-04 13:00 - 00103936 ____C (Equinox Systems Inc.) C:\WINDOWS\system32\dllcache\eqnclass.dll 2013-12-13 20:42 - 2004-08-04 13:00 - 00103936 _____ (Equinox Systems Inc.) C:\WINDOWS\system32\EqnClass.Dll 2013-12-13 20:42 - 2004-08-04 13:00 - 00086556 ____C (Digi International) C:\WINDOWS\system32\dllcache\dgsetup.dll 2013-12-13 20:42 - 2004-08-04 13:00 - 00086556 _____ (Digi International) C:\WINDOWS\system32\dgsetup.dll 2013-12-13 20:42 - 2004-08-04 13:00 - 00082944 _____ (Microsoft Corporation) C:\WINDOWS\system\OLECLI.DLL 2013-12-13 20:42 - 2004-08-04 13:00 - 00077824 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\spcommon.dll 2013-12-13 20:42 - 2004-08-04 13:00 - 00073760 _____ (Microsoft Corporation) C:\WINDOWS\system\MCIAVI.DRV 2013-12-13 20:42 - 2004-08-04 13:00 - 00070368 _____ (Microsoft Corporation) C:\WINDOWS\system\AVICAP.DLL 2013-12-13 20:42 - 2004-08-04 13:00 - 00066594 ____C C:\WINDOWS\system32\dllcache\c_869.nls 2013-12-13 20:42 - 2004-08-04 13:00 - 00066594 ____C C:\WINDOWS\system32\dllcache\c_866.nls 2013-12-13 20:42 - 2004-08-04 13:00 - 00066594 ____C C:\WINDOWS\system32\dllcache\c_857.nls 2013-12-13 20:42 - 2004-08-04 13:00 - 00066594 ____C C:\WINDOWS\system32\dllcache\c_855.nls 2013-12-13 20:42 - 2004-08-04 13:00 - 00066594 ____C C:\WINDOWS\system32\dllcache\c_852.nls 2013-12-13 20:42 - 2004-08-04 13:00 - 00066594 ____C C:\WINDOWS\system32\dllcache\c_737.nls 2013-12-13 20:42 - 2004-08-04 13:00 - 00066594 _____ C:\WINDOWS\system32\c_869.nls 2013-12-13 20:42 - 2004-08-04 13:00 - 00066594 _____ C:\WINDOWS\system32\c_866.nls 2013-12-13 20:42 - 2004-08-04 13:00 - 00066594 _____ C:\WINDOWS\system32\c_857.nls 2013-12-13 20:42 - 2004-08-04 13:00 - 00066594 _____ C:\WINDOWS\system32\c_855.nls 2013-12-13 20:42 - 2004-08-04 13:00 - 00066594 _____ C:\WINDOWS\system32\c_852.nls 2013-12-13 20:42 - 2004-08-04 13:00 - 00066594 _____ C:\WINDOWS\system32\c_737.nls 2013-12-13 20:42 - 2004-08-04 13:00 - 00066082 ____C C:\WINDOWS\system32\dllcache\c_875.nls 2013-12-13 20:42 - 2004-08-04 13:00 - 00066082 ____C C:\WINDOWS\system32\dllcache\c_28603.nls 2013-12-13 20:42 - 2004-08-04 13:00 - 00066082 ____C C:\WINDOWS\system32\dllcache\c_28599.nls 2013-12-13 20:42 - 2004-08-04 13:00 - 00066082 ____C C:\WINDOWS\system32\dllcache\c_28597.nls 2013-12-13 20:42 - 2004-08-04 13:00 - 00066082 ____C C:\WINDOWS\system32\dllcache\c_28595.nls 2013-12-13 20:42 - 2004-08-04 13:00 - 00066082 ____C C:\WINDOWS\system32\dllcache\c_28594.nls 2013-12-13 20:42 - 2004-08-04 13:00 - 00066082 ____C C:\WINDOWS\system32\dllcache\c_20127.nls 2013-12-13 20:42 - 2004-08-04 13:00 - 00066082 ____C C:\WINDOWS\system32\dllcache\c_10082.nls 2013-12-13 20:42 - 2004-08-04 13:00 - 00066082 ____C C:\WINDOWS\system32\dllcache\c_10081.nls 2013-12-13 20:42 - 2004-08-04 13:00 - 00066082 ____C C:\WINDOWS\system32\dllcache\c_10029.nls 2013-12-13 20:42 - 2004-08-04 13:00 - 00066082 ____C C:\WINDOWS\system32\dllcache\c_10017.nls 2013-12-13 20:42 - 2004-08-04 13:00 - 00066082 ____C C:\WINDOWS\system32\dllcache\c_10010.nls 2013-12-13 20:42 - 2004-08-04 13:00 - 00066082 ____C C:\WINDOWS\system32\dllcache\c_10007.nls 2013-12-13 20:42 - 2004-08-04 13:00 - 00066082 ____C C:\WINDOWS\system32\dllcache\c_10006.nls 2013-12-13 20:42 - 2004-08-04 13:00 - 00066082 _____ C:\WINDOWS\system32\c_875.nls 2013-12-13 20:42 - 2004-08-04 13:00 - 00066082 _____ C:\WINDOWS\system32\c_28603.nls 2013-12-13 20:42 - 2004-08-04 13:00 - 00066082 _____ C:\WINDOWS\system32\c_28599.nls 2013-12-13 20:42 - 2004-08-04 13:00 - 00066082 _____ C:\WINDOWS\system32\C_28597.NLS 2013-12-13 20:42 - 2004-08-04 13:00 - 00066082 _____ C:\WINDOWS\system32\C_28595.NLS 2013-12-13 20:42 - 2004-08-04 13:00 - 00066082 _____ C:\WINDOWS\system32\C_28594.NLS 2013-12-13 20:42 - 2004-08-04 13:00 - 00066082 _____ C:\WINDOWS\system32\c_20127.nls 2013-12-13 20:42 - 2004-08-04 13:00 - 00066082 _____ C:\WINDOWS\system32\c_10082.nls 2013-12-13 20:42 - 2004-08-04 13:00 - 00066082 _____ C:\WINDOWS\system32\c_10081.nls 2013-12-13 20:42 - 2004-08-04 13:00 - 00066082 _____ C:\WINDOWS\system32\c_10029.nls 2013-12-13 20:42 - 2004-08-04 13:00 - 00066082 _____ C:\WINDOWS\system32\c_10017.nls 2013-12-13 20:42 - 2004-08-04 13:00 - 00066082 _____ C:\WINDOWS\system32\c_10010.nls 2013-12-13 20:42 - 2004-08-04 13:00 - 00066082 _____ C:\WINDOWS\system32\c_10007.nls 2013-12-13 20:42 - 2004-08-04 13:00 - 00066082 _____ C:\WINDOWS\system32\c_10006.nls 2013-12-13 20:42 - 2004-08-04 13:00 - 00065536 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\spcplui.dll 2013-12-13 20:42 - 2004-08-04 13:00 - 00036864 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\sapisvr.exe 2013-12-13 20:42 - 2004-08-04 13:00 - 00033744 _____ (Microsoft Corporation) C:\WINDOWS\system\COMMDLG.DLL 2013-12-13 20:42 - 2004-08-04 13:00 - 00028160 _____ (Microsoft Corporation) C:\WINDOWS\system\MCIWAVE.DRV 2013-12-13 20:42 - 2004-08-04 13:00 - 00025296 _____ (Microsoft Corporation) C:\WINDOWS\system\MCISEQ.DRV 2013-12-13 20:42 - 2004-08-04 13:00 - 00024661 ____C (Perle Systems Ltd.) C:\WINDOWS\system32\dllcache\spxcoins.dll 2013-12-13 20:42 - 2004-08-04 13:00 - 00024661 _____ (Perle Systems Ltd.) C:\WINDOWS\system32\spxcoins.dll 2013-12-13 20:42 - 2004-08-04 13:00 - 00024064 _____ (Microsoft Corporation) C:\WINDOWS\system\OLESVR.DLL 2013-12-13 20:42 - 2004-08-04 13:00 - 00019200 _____ (Microsoft Corporation) C:\WINDOWS\system\TAPI.DLL 2013-12-13 20:42 - 2004-08-04 13:00 - 00015872 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\taskman.exe 2013-12-13 20:42 - 2004-08-04 13:00 - 00015872 _____ (Microsoft Corporation) C:\WINDOWS\TASKMAN.EXE 2013-12-13 20:42 - 2004-08-04 13:00 - 00013824 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\irclass.dll 2013-12-13 20:42 - 2004-08-04 13:00 - 00013824 _____ (Microsoft Corporation) C:\WINDOWS\system32\irclass.dll 2013-12-13 20:42 - 2004-08-04 13:00 - 00013600 _____ (Microsoft Corporation) C:\WINDOWS\system\WFWNET.DRV 2013-12-13 20:42 - 2004-08-04 13:00 - 00009936 _____ (Microsoft Corporation) C:\WINDOWS\system\LZEXPAND.DLL 2013-12-13 20:42 - 2004-08-04 13:00 - 00009200 _____ (Microsoft Corporation) C:\WINDOWS\system\VER.DLL 2013-12-13 20:42 - 2004-08-04 13:00 - 00008192 ____R (Microsoft Corporation) C:\WINDOWS\system32\kbdhept.dll 2013-12-13 20:42 - 2004-08-04 13:00 - 00008192 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdhept.dll 2013-12-13 20:42 - 2004-08-04 13:00 - 00007168 ____R (Microsoft Corporation) C:\WINDOWS\system32\kbdcz.dll 2013-12-13 20:42 - 2004-08-04 13:00 - 00007168 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdcz.dll 2013-12-13 20:42 - 2004-08-04 13:00 - 00006656 ____R (Microsoft Corporation) C:\WINDOWS\system32\kbdycl.dll 2013-12-13 20:42 - 2004-08-04 13:00 - 00006656 ____R (Microsoft Corporation) C:\WINDOWS\system32\kbdsl1.dll 2013-12-13 20:42 - 2004-08-04 13:00 - 00006656 ____R (Microsoft Corporation) C:\WINDOWS\system32\kbdsl.dll 2013-12-13 20:42 - 2004-08-04 13:00 - 00006656 ____R (Microsoft Corporation) C:\WINDOWS\system32\kbdpl.dll 2013-12-13 20:42 - 2004-08-04 13:00 - 00006656 ____R (Microsoft Corporation) C:\WINDOWS\system32\kbdhu.dll 2013-12-13 20:42 - 2004-08-04 13:00 - 00006656 ____R (Microsoft Corporation) C:\WINDOWS\system32\kbdhela3.dll 2013-12-13 20:42 - 2004-08-04 13:00 - 00006656 ____R (Microsoft Corporation) C:\WINDOWS\system32\kbdcz2.dll 2013-12-13 20:42 - 2004-08-04 13:00 - 00006656 ____R (Microsoft Corporation) C:\WINDOWS\system32\kbdcz1.dll 2013-12-13 20:42 - 2004-08-04 13:00 - 00006656 ____R (Microsoft Corporation) C:\WINDOWS\system32\kbdcr.dll 2013-12-13 20:42 - 2004-08-04 13:00 - 00006656 ____R (Microsoft Corporation) C:\WINDOWS\system32\KBDAL.DLL 2013-12-13 20:42 - 2004-08-04 13:00 - 00006656 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdycl.dll 2013-12-13 20:42 - 2004-08-04 13:00 - 00006656 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdsl1.dll 2013-12-13 20:42 - 2004-08-04 13:00 - 00006656 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdsl.dll 2013-12-13 20:42 - 2004-08-04 13:00 - 00006656 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdpl.dll 2013-12-13 20:42 - 2004-08-04 13:00 - 00006656 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdhu.dll 2013-12-13 20:42 - 2004-08-04 13:00 - 00006656 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdhela3.dll 2013-12-13 20:42 - 2004-08-04 13:00 - 00006656 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdcz2.dll 2013-12-13 20:42 - 2004-08-04 13:00 - 00006656 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdcz1.dll 2013-12-13 20:42 - 2004-08-04 13:00 - 00006656 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdcr.dll 2013-12-13 20:42 - 2004-08-04 13:00 - 00006656 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdal.dll 2013-12-13 20:42 - 2004-08-04 13:00 - 00006144 ____R (Microsoft Corporation) C:\WINDOWS\system32\kbdtuq.dll 2013-12-13 20:42 - 2004-08-04 13:00 - 00006144 ____R (Microsoft Corporation) C:\WINDOWS\system32\kbdtuf.dll 2013-12-13 20:42 - 2004-08-04 13:00 - 00006144 ____R (Microsoft Corporation) C:\WINDOWS\system32\kbdlv1.dll 2013-12-13 20:42 - 2004-08-04 13:00 - 00006144 ____R (Microsoft Corporation) C:\WINDOWS\system32\kbdlv.dll 2013-12-13 20:42 - 2004-08-04 13:00 - 00006144 ____R (Microsoft Corporation) C:\WINDOWS\system32\kbdhela2.dll 2013-12-13 20:42 - 2004-08-04 13:00 - 00006144 ____R (Microsoft Corporation) C:\WINDOWS\system32\kbdgkl.dll 2013-12-13 20:42 - 2004-08-04 13:00 - 00006144 ____R (Microsoft Corporation) C:\WINDOWS\system32\kbdest.dll 2013-12-13 20:42 - 2004-08-04 13:00 - 00006144 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdtuq.dll 2013-12-13 20:42 - 2004-08-04 13:00 - 00006144 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdtuf.dll 2013-12-13 20:42 - 2004-08-04 13:00 - 00006144 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdlv1.dll 2013-12-13 20:42 - 2004-08-04 13:00 - 00006144 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdlv.dll 2013-12-13 20:42 - 2004-08-04 13:00 - 00006144 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdhela2.dll 2013-12-13 20:42 - 2004-08-04 13:00 - 00006144 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdgkl.dll 2013-12-13 20:42 - 2004-08-04 13:00 - 00006144 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdest.dll 2013-12-13 20:42 - 2004-08-04 13:00 - 00005632 ____R (Microsoft Corporation) C:\WINDOWS\system32\kbdycc.dll 2013-12-13 20:42 - 2004-08-04 13:00 - 00005632 ____R (Microsoft Corporation) C:\WINDOWS\system32\kbduzb.dll 2013-12-13 20:42 - 2004-08-04 13:00 - 00005632 ____R (Microsoft Corporation) C:\WINDOWS\system32\kbdur.dll 2013-12-13 20:42 - 2004-08-04 13:00 - 00005632 ____R (Microsoft Corporation) C:\WINDOWS\system32\kbdtat.dll 2013-12-13 20:42 - 2004-08-04 13:00 - 00005632 ____R (Microsoft Corporation) C:\WINDOWS\system32\kbdru1.dll 2013-12-13 20:42 - 2004-08-04 13:00 - 00005632 ____R (Microsoft Corporation) C:\WINDOWS\system32\kbdru.dll 2013-12-13 20:42 - 2004-08-04 13:00 - 00005632 ____R (Microsoft Corporation) C:\WINDOWS\system32\kbdro.dll 2013-12-13 20:42 - 2004-08-04 13:00 - 00005632 ____R (Microsoft Corporation) C:\WINDOWS\system32\kbdpl1.dll 2013-12-13 20:42 - 2004-08-04 13:00 - 00005632 ____R (Microsoft Corporation) C:\WINDOWS\system32\kbdmon.dll 2013-12-13 20:42 - 2004-08-04 13:00 - 00005632 ____R (Microsoft Corporation) C:\WINDOWS\system32\kbdlt1.dll 2013-12-13 20:42 - 2004-08-04 13:00 - 00005632 ____R (Microsoft Corporation) C:\WINDOWS\system32\kbdlt.dll 2013-12-13 20:42 - 2004-08-04 13:00 - 00005632 ____R (Microsoft Corporation) C:\WINDOWS\system32\kbdkyr.dll 2013-12-13 20:42 - 2004-08-04 13:00 - 00005632 ____R (Microsoft Corporation) C:\WINDOWS\system32\kbdkaz.dll 2013-12-13 20:42 - 2004-08-04 13:00 - 00005632 ____R (Microsoft Corporation) C:\WINDOWS\system32\kbdhu1.dll 2013-12-13 20:42 - 2004-08-04 13:00 - 00005632 ____R (Microsoft Corporation) C:\WINDOWS\system32\kbdhe319.dll 2013-12-13 20:42 - 2004-08-04 13:00 - 00005632 ____R (Microsoft Corporation) C:\WINDOWS\system32\kbdhe220.dll 2013-12-13 20:42 - 2004-08-04 13:00 - 00005632 ____R (Microsoft Corporation) C:\WINDOWS\system32\kbdhe.dll 2013-12-13 20:42 - 2004-08-04 13:00 - 00005632 ____R (Microsoft Corporation) C:\WINDOWS\system32\kbdbu.dll 2013-12-13 20:42 - 2004-08-04 13:00 - 00005632 ____R (Microsoft Corporation) C:\WINDOWS\system32\kbdblr.dll 2013-12-13 20:42 - 2004-08-04 13:00 - 00005632 ____R (Microsoft Corporation) C:\WINDOWS\system32\kbdazel.dll 2013-12-13 20:42 - 2004-08-04 13:00 - 00005632 ____R (Microsoft Corporation) C:\WINDOWS\system32\kbdaze.dll 2013-12-13 20:42 - 2004-08-04 13:00 - 00005632 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdycc.dll 2013-12-13 20:42 - 2004-08-04 13:00 - 00005632 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbduzb.dll 2013-12-13 20:42 - 2004-08-04 13:00 - 00005632 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdur.dll 2013-12-13 20:42 - 2004-08-04 13:00 - 00005632 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdtat.dll 2013-12-13 20:42 - 2004-08-04 13:00 - 00005632 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdru1.dll 2013-12-13 20:42 - 2004-08-04 13:00 - 00005632 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdru.dll 2013-12-13 20:42 - 2004-08-04 13:00 - 00005632 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdro.dll 2013-12-13 20:42 - 2004-08-04 13:00 - 00005632 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdpl1.dll 2013-12-13 20:42 - 2004-08-04 13:00 - 00005632 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdmon.dll 2013-12-13 20:42 - 2004-08-04 13:00 - 00005632 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdlt1.dll 2013-12-13 20:42 - 2004-08-04 13:00 - 00005632 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdlt.dll 2013-12-13 20:42 - 2004-08-04 13:00 - 00005632 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdkyr.dll 2013-12-13 20:42 - 2004-08-04 13:00 - 00005632 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdkaz.dll 2013-12-13 20:42 - 2004-08-04 13:00 - 00005632 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdhu1.dll 2013-12-13 20:42 - 2004-08-04 13:00 - 00005632 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdhe319.dll 2013-12-13 20:42 - 2004-08-04 13:00 - 00005632 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdhe220.dll 2013-12-13 20:42 - 2004-08-04 13:00 - 00005632 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdhe.dll 2013-12-13 20:42 - 2004-08-04 13:00 - 00005632 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdbu.dll 2013-12-13 20:42 - 2004-08-04 13:00 - 00005632 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdblr.dll 2013-12-13 20:42 - 2004-08-04 13:00 - 00005632 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdazel.dll 2013-12-13 20:42 - 2004-08-04 13:00 - 00005632 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdaze.dll 2013-12-13 20:42 - 2004-08-04 13:00 - 00005120 _____ (Microsoft Corporation) C:\WINDOWS\system\SHELL.DLL 2013-12-13 20:42 - 2004-08-04 13:00 - 00004048 _____ (Microsoft Corporation) C:\WINDOWS\system\TIMER.DRV 2013-12-13 20:42 - 2004-08-04 13:00 - 00003360 _____ (Microsoft Corporation) C:\WINDOWS\system\SYSTEM.DRV 2013-12-13 20:42 - 2004-08-04 13:00 - 00002951 ____N C:\WINDOWS\system32\CONFIG.TMP 2013-12-13 20:42 - 2004-08-04 13:00 - 00002176 _____ (Microsoft Corporation) C:\WINDOWS\system\VGA.DRV 2013-12-13 20:42 - 2004-08-04 13:00 - 00002032 _____ (Microsoft Corporation) C:\WINDOWS\system\MOUSE.DRV 2013-12-13 20:42 - 2004-08-04 13:00 - 00002000 _____ (Microsoft Corporation) C:\WINDOWS\system\KEYBOARD.DRV 2013-12-13 20:42 - 2004-08-04 13:00 - 00001806 _____ C:\WINDOWS\system32\AUTOEXEC.NT 2013-12-13 20:42 - 2004-08-04 13:00 - 00001744 _____ (Microsoft Corporation) C:\WINDOWS\system\SOUND.DRV 2013-12-13 20:42 - 2004-08-04 13:00 - 00001152 _____ (Microsoft Corporation) C:\WINDOWS\system\MMTASK.TSK 2013-12-13 20:42 - 2004-08-04 13:00 - 00000888 ____C C:\WINDOWS\system32\dllcache\sam.sdf 2013-12-13 20:41 - 2013-12-23 14:01 - 00654727 _____ C:\WINDOWS\setupapi.log 2013-12-13 20:41 - 2013-12-23 08:32 - 00000000 ___RD C:\Dokumente und Einstellungen\All Users\Startmenü\Programme 2013-12-13 20:41 - 2013-12-21 16:03 - 00262144 _____ C:\WINDOWS\system32\config\SECURITY.bak 2013-12-13 20:41 - 2013-12-21 16:03 - 00262144 _____ C:\WINDOWS\system32\config\SAM.bak 2013-12-13 20:41 - 2013-12-14 18:00 - 00191740 _____ C:\WINDOWS\setupact.log 2013-12-13 20:41 - 2013-12-13 23:05 - 00000000 ___RD C:\Dokumente und Einstellungen\All Users\Startmenü 2013-12-13 20:41 - 2013-12-13 21:47 - 00091888 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2013-12-13 20:41 - 2013-12-13 20:53 - 00000000 ___RD C:\Dokumente und Einstellungen\Default User\Startmenü\Programme 2013-12-13 20:41 - 2013-12-13 20:50 - 00000000 ___RD C:\Dokumente und Einstellungen\All Users\Dokumente 2013-12-13 20:41 - 2013-12-13 20:41 - 00000000 ___SD C:\Dokumente und Einstellungen\Default User\Lokale Einstellungen\Verlauf 2013-12-13 20:41 - 2013-12-13 20:41 - 00000000 ___RD C:\Dokumente und Einstellungen\Default User\Startmenü\Programme\Autostart 2013-12-13 20:41 - 2013-12-13 20:41 - 00000000 ___RD C:\Dokumente und Einstellungen\Default User\Startmenü 2013-12-13 20:41 - 2013-12-13 20:41 - 00000000 ___RD C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Autostart 2013-12-13 20:41 - 2013-12-13 20:41 - 00000000 ___HD C:\Dokumente und Einstellungen\Default User\Netzwerkumgebung 2013-12-13 20:41 - 2013-12-13 20:41 - 00000000 ___HD C:\Dokumente und Einstellungen\Default User\Druckumgebung 2013-12-13 20:41 - 2013-12-13 20:41 - 00000000 _____ C:\WINDOWS\setuperr.log 2013-12-13 20:41 - 2008-04-14 07:52 - 00076288 _____ (Microsoft Corporation) C:\WINDOWS\system32\storprop.dll 2013-12-13 20:41 - 2008-04-14 07:52 - 00070144 _____ (Microsoft Corporation) C:\WINDOWS\notepad.exe 2013-12-13 20:41 - 2004-08-04 13:00 - 01086058 ____R C:\WINDOWS\SET4.tmp 2013-12-13 20:41 - 2004-08-04 13:00 - 01014663 ____R C:\WINDOWS\SET3.tmp 2013-12-13 20:41 - 2004-08-04 13:00 - 01014663 ____C C:\WINDOWS\system32\dllcache\SP2.CAT 2013-12-13 20:41 - 2004-08-04 13:00 - 00817199 ____C C:\WINDOWS\system32\dllcache\NT5IIS.CAT 2013-12-13 20:41 - 2004-08-04 13:00 - 00399645 ____C C:\WINDOWS\system32\dllcache\MAPIMIG.CAT 2013-12-13 20:41 - 2004-08-04 13:00 - 00069632 _____ (Microsoft Corporation) C:\WINDOWS\system\MMSYSTEM.DLL 2013-12-13 20:41 - 2004-08-04 13:00 - 00041270 ____C C:\WINDOWS\system32\dllcache\MW770.CAT 2013-12-13 20:41 - 2004-08-04 13:00 - 00014043 ____R C:\WINDOWS\SET8.tmp 2013-12-13 20:41 - 2004-08-04 13:00 - 00013472 ____C C:\WINDOWS\system32\dllcache\HPCRDP.CAT 2013-12-13 20:41 - 2004-08-04 13:00 - 00008574 ____C C:\WINDOWS\system32\dllcache\IASNT4.CAT 2013-12-13 20:41 - 2004-08-04 13:00 - 00007382 ____C C:\WINDOWS\system32\dllcache\OEMBIOS.CAT 2013-12-13 20:41 - 2004-08-04 13:00 - 00007334 ____C C:\WINDOWS\system32\dllcache\wmerrenu.cat ==================== One Month Modified Files and Folders ======= 2013-12-24 20:56 - 2013-12-18 21:47 - 00000000 ____D C:\Dokumente und Einstellungen\Admin\Desktop\TB 2013-12-24 20:55 - 2013-12-18 20:50 - 00000000 ____D C:\FRST 2013-12-24 20:55 - 2013-12-13 21:49 - 00000000 ____D C:\Programme\Emsisoft Anti-Malware 2013-12-24 20:50 - 2013-12-13 20:52 - 00525626 _____ C:\WINDOWS\WindowsUpdate.log 2013-12-24 20:47 - 2013-12-13 21:29 - 00001084 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job 2013-12-24 20:47 - 2013-12-13 20:57 - 00032548 _____ C:\WINDOWS\SchedLgU.Txt 2013-12-24 20:47 - 2013-12-13 20:57 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT 2013-12-24 20:47 - 2013-12-13 20:44 - 00000159 _____ C:\WINDOWS\wiadebug.log 2013-12-24 20:47 - 2013-12-13 20:44 - 00000050 _____ C:\WINDOWS\wiaservc.log 2013-12-24 20:44 - 2013-12-13 21:22 - 00131072 _____ C:\WINDOWS\system32\config\ACEEvent.evt 2013-12-24 20:44 - 2013-12-13 20:59 - 00000190 ___SH C:\Dokumente und Einstellungen\Admin\ntuser.ini 2013-12-24 20:39 - 2013-12-13 21:29 - 00001088 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job 2013-12-24 18:30 - 2013-12-24 18:30 - 00000000 ____D C:\Programme\ESET 2013-12-24 18:30 - 2013-12-13 20:42 - 00000000 ___RD C:\Programme 2013-12-23 14:01 - 2013-12-13 20:41 - 00654727 _____ C:\WINDOWS\setupapi.log 2013-12-23 13:50 - 2013-12-23 13:50 - 00000581 _____ C:\Dokumente und Einstellungen\Admin\Desktop\JRT.txt 2013-12-23 13:33 - 2013-12-23 13:33 - 00000000 ____D C:\WINDOWS\ERUNT 2013-12-23 13:21 - 2013-12-23 13:16 - 00000000 ____D C:\AdwCleaner 2013-12-23 08:33 - 2013-12-23 08:33 - 00000000 ____D C:\Dokumente und Einstellungen\Admin\Anwendungsdaten\Malwarebytes 2013-12-23 08:32 - 2013-12-23 08:32 - 00000756 _____ C:\Dokumente und Einstellungen\All Users\Desktop\ Malwarebytes Anti-Malware .lnk 2013-12-23 08:32 - 2013-12-23 08:32 - 00000000 ____D C:\Programme\Malwarebytes' Anti-Malware 2013-12-23 08:32 - 2013-12-23 08:32 - 00000000 ____D C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Malwarebytes' Anti-Malware 2013-12-23 08:32 - 2013-12-23 08:32 - 00000000 ____D C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Malwarebytes 2013-12-23 08:32 - 2013-12-13 20:41 - 00000000 ___RD C:\Dokumente und Einstellungen\All Users\Startmenü\Programme 2013-12-23 08:15 - 2004-08-04 13:00 - 00002206 _____ C:\WINDOWS\system32\wpa.dbl 2013-12-21 16:20 - 2013-12-21 16:20 - 00009211 _____ C:\ComboFix.txt 2013-12-21 16:20 - 2013-12-21 15:49 - 00000000 ____D C:\Qoobox 2013-12-21 16:20 - 2013-12-13 20:56 - 00000000 __SHD C:\Dokumente und Einstellungen\NetworkService 2013-12-21 16:16 - 2013-12-21 15:48 - 00000000 ____D C:\WINDOWS\erdnt 2013-12-21 16:07 - 2004-08-04 13:00 - 00000227 _____ C:\WINDOWS\system.ini 2013-12-21 16:03 - 2013-12-15 10:33 - 01245184 _____ C:\WINDOWS\system32\config\ACVPN.evt 2013-12-21 16:03 - 2013-12-13 21:40 - 14155776 _____ C:\WINDOWS\system32\config\software.bak 2013-12-21 16:03 - 2013-12-13 21:40 - 04194304 _____ C:\WINDOWS\system32\config\system.bak 2013-12-21 16:03 - 2013-12-13 21:40 - 00524288 _____ C:\WINDOWS\system32\config\default.bak 2013-12-21 16:03 - 2013-12-13 20:41 - 00262144 _____ C:\WINDOWS\system32\config\SECURITY.bak 2013-12-21 16:03 - 2013-12-13 20:41 - 00262144 _____ C:\WINDOWS\system32\config\SAM.bak 2013-12-21 16:02 - 2013-12-21 16:02 - 00008192 ____H C:\WINDOWS\system32\config\SECURITY.tmp.LOG 2013-12-21 16:02 - 2013-12-21 16:02 - 00000000 ____H C:\WINDOWS\system32\config\system.tmp.LOG 2013-12-21 16:02 - 2013-12-21 16:02 - 00000000 ____H C:\WINDOWS\system32\config\software.tmp.LOG 2013-12-21 16:02 - 2013-12-21 16:02 - 00000000 ____H C:\WINDOWS\system32\config\SAM.tmp.LOG 2013-12-21 16:02 - 2013-12-21 16:02 - 00000000 ____H C:\WINDOWS\system32\config\default.tmp.LOG 2013-12-21 15:54 - 2013-12-21 15:53 - 00000000 _RSHD C:\cmdcons 2013-12-21 15:54 - 2013-12-13 21:40 - 00000327 __RSH C:\boot.ini 2013-12-21 15:49 - 2013-12-21 15:49 - 00000000 ___RD C:\Dokumente und Einstellungen\Admin\Startmenü\Programme\Verwaltung 2013-12-21 15:49 - 2013-12-13 20:59 - 00000000 ___RD C:\Dokumente und Einstellungen\Admin\Startmenü\Programme 2013-12-19 12:36 - 2013-12-19 12:35 - 00004238 _____ C:\WINDOWS\KB2879017Uninst.log 2013-12-19 12:36 - 2013-12-13 21:39 - 00093174 _____ C:\WINDOWS\updspapi.log 2013-12-19 12:36 - 2013-12-13 20:42 - 00082283 _____ C:\WINDOWS\iis6.log 2013-12-19 12:36 - 2013-12-13 20:42 - 00048632 _____ C:\WINDOWS\FaxSetup.log 2013-12-19 12:36 - 2013-12-13 20:42 - 00032297 _____ C:\WINDOWS\ocgen.log 2013-12-19 12:36 - 2013-12-13 20:42 - 00027527 _____ C:\WINDOWS\comsetup.log 2013-12-19 12:36 - 2013-12-13 20:42 - 00026172 _____ C:\WINDOWS\tsoc.log 2013-12-19 12:36 - 2013-12-13 20:42 - 00021674 _____ C:\WINDOWS\msmqinst.log 2013-12-19 12:36 - 2013-12-13 20:42 - 00014795 _____ C:\WINDOWS\ntdtcsetup.log 2013-12-19 12:36 - 2013-12-13 20:42 - 00008962 _____ C:\WINDOWS\netfxocm.log 2013-12-19 12:36 - 2013-12-13 20:42 - 00005792 _____ C:\WINDOWS\MedCtrOC.log 2013-12-19 12:36 - 2013-12-13 20:42 - 00003274 _____ C:\WINDOWS\tabletoc.log 2013-12-19 12:36 - 2013-12-13 20:42 - 00002756 _____ C:\WINDOWS\ocmsn.log 2013-12-19 12:36 - 2013-12-13 20:42 - 00002569 _____ C:\WINDOWS\msgsocm.log 2013-12-19 12:36 - 2013-12-13 20:42 - 00001393 _____ C:\WINDOWS\imsins.log 2013-12-19 12:25 - 2013-12-18 23:04 - 00012259 _____ C:\WINDOWS\KB2879017.log 2013-12-19 12:21 - 2013-12-18 22:56 - 00001692 _____ C:\WINDOWS\KB927891.log 2013-12-18 23:21 - 2013-12-18 22:03 - 00000000 ____D C:\Dokumente und Einstellungen\Admin\Desktop\CD 2013-12-18 23:06 - 2013-12-13 20:42 - 00001393 _____ C:\WINDOWS\imsins.BAK 2013-12-18 22:53 - 2013-12-13 20:53 - 00001507 _____ C:\Dokumente und Einstellungen\All Users\Startmenü\Windows Update.lnk 2013-12-18 22:23 - 2013-12-18 22:12 - 00000000 ____D C:\Programme\OANDA - MetaTrader 2013-12-18 22:12 - 2013-12-18 22:12 - 00000000 ____D C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\OANDA - MetaTrader 2013-12-18 22:12 - 2013-12-15 19:53 - 00001602 _____ C:\Dokumente und Einstellungen\All Users\Desktop\OANDA - MetaTrader.lnk 2013-12-18 21:45 - 2013-12-18 21:45 - 00000000 ____D C:\Programme\WinRAR 2013-12-18 21:45 - 2013-12-18 21:45 - 00000000 ____D C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\WinRAR 2013-12-18 21:45 - 2013-12-18 21:45 - 00000000 ____D C:\Dokumente und Einstellungen\Admin\Startmenü\Programme\WinRAR 2013-12-18 21:45 - 2013-12-18 21:45 - 00000000 ____D C:\Dokumente und Einstellungen\Admin\Anwendungsdaten\WinRAR 2013-12-18 20:47 - 2013-12-18 20:47 - 00000000 _____ C:\Dokumente und Einstellungen\Admin\defogger_reenable 2013-12-18 20:47 - 2013-12-13 20:59 - 00000000 ____D C:\Dokumente und Einstellungen\Admin 2013-12-18 09:36 - 2013-12-18 09:36 - 00000702 _____ C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Mozilla Firefox.lnk 2013-12-18 09:36 - 2013-12-18 09:36 - 00000696 _____ C:\Dokumente und Einstellungen\All Users\Desktop\Mozilla Firefox.lnk 2013-12-18 09:36 - 2013-12-18 09:36 - 00000000 ____D C:\Programme\Mozilla Maintenance Service 2013-12-18 09:36 - 2013-12-18 09:36 - 00000000 ____D C:\Programme\Mozilla Firefox 2013-12-18 09:36 - 2013-12-18 09:36 - 00000000 ____D C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Mozilla 2013-12-18 09:36 - 2013-12-18 09:36 - 00000000 ____D C:\Dokumente und Einstellungen\Admin\Lokale Einstellungen\Anwendungsdaten\Mozilla 2013-12-18 09:36 - 2013-12-18 09:36 - 00000000 ____D C:\Dokumente und Einstellungen\Admin\Anwendungsdaten\Mozilla 2013-12-16 11:43 - 2013-12-21 15:54 - 00000211 _____ C:\Boot.bak 2013-12-16 11:43 - 2013-12-16 11:43 - 00000000 ____D C:\WINDOWS\pss 2013-12-16 11:43 - 2004-08-04 13:00 - 00000477 _____ C:\WINDOWS\win.ini 2013-12-15 19:55 - 2013-12-15 19:55 - 00000000 ____D C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\MetaQuotes 2013-12-15 19:53 - 2013-12-15 19:53 - 00000000 ____D C:\Dokumente und Einstellungen\Admin\Anwendungsdaten\MetaQuotes 2013-12-15 19:53 - 2013-12-15 19:53 - 00000000 ____D C:\Dokumente und Einstellungen\Admin\Anwendungsdaten\Macromedia 2013-12-15 19:51 - 2013-12-15 19:51 - 00000000 ____D C:\Dokumente und Einstellungen\Admin\.oanda 2013-12-15 19:27 - 2013-12-15 19:26 - 00000000 ____D C:\Programme\SpeedFan 2013-12-15 19:26 - 2013-12-15 19:26 - 00000045 _____ C:\WINDOWS\system32\initdebug.nfo 2013-12-15 00:11 - 2013-12-14 22:07 - 00131072 _____ C:\WINDOWS\system32\config\Cisco An.evt 2013-12-14 22:07 - 2013-12-14 22:07 - 00000000 ____D C:\Programme\Cisco 2013-12-14 22:07 - 2013-12-14 22:07 - 00000000 ____D C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Cisco 2013-12-14 22:07 - 2013-12-14 22:07 - 00000000 ____D C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Cisco 2013-12-14 22:07 - 2013-12-14 22:07 - 00000000 ____D C:\Dokumente und Einstellungen\Admin\Lokale Einstellungen\Anwendungsdaten\Cisco 2013-12-14 21:58 - 2013-12-14 21:58 - 00000000 ____D C:\WINDOWS\Sun 2013-12-14 21:58 - 2013-12-14 21:58 - 00000000 ____D C:\Programme\Gemeinsame Dateien\Java 2013-12-14 21:58 - 2013-12-14 21:58 - 00000000 ____D C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Java 2013-12-14 21:58 - 2013-12-14 21:58 - 00000000 ____D C:\Dokumente und Einstellungen\Admin\Lokale Einstellungen\Anwendungsdaten\Sun 2013-12-14 21:57 - 2013-12-14 21:58 - 00264616 _____ (Oracle Corporation) C:\WINDOWS\system32\javaws.exe 2013-12-14 21:57 - 2013-12-14 21:58 - 00175016 _____ (Oracle Corporation) C:\WINDOWS\system32\javaw.exe 2013-12-14 21:57 - 2013-12-14 21:58 - 00174504 _____ (Oracle Corporation) C:\WINDOWS\system32\java.exe 2013-12-14 21:57 - 2013-12-14 21:58 - 00145408 _____ (Oracle Corporation) C:\WINDOWS\system32\javacpl.cpl 2013-12-14 21:57 - 2013-12-14 21:58 - 00094632 _____ (Oracle Corporation) C:\WINDOWS\system32\WindowsAccessBridge.dll 2013-12-14 21:57 - 2013-12-14 21:57 - 00000000 ____D C:\Programme\Java 2013-12-14 21:55 - 2013-12-14 21:55 - 00000000 ____D C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Sun 2013-12-14 21:54 - 2013-12-14 21:54 - 00000000 ____D C:\Dokumente und Einstellungen\Admin\Anwendungsdaten\Sun 2013-12-14 18:00 - 2013-12-13 20:41 - 00191740 _____ C:\WINDOWS\setupact.log 2013-12-14 15:27 - 2013-12-14 15:27 - 00000000 ____D C:\Programme\Microsoft Silverlight 2013-12-14 15:27 - 2013-12-14 15:27 - 00000000 ____D C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Microsoft Silverlight 2013-12-14 15:06 - 2013-12-13 20:59 - 00000772 _____ C:\Dokumente und Einstellungen\Admin\Startmenü\Programme\Windows Media Player.lnk 2013-12-14 15:06 - 2013-12-13 20:49 - 00002499 _____ C:\WINDOWS\wmsetup.log 2013-12-14 15:04 - 2013-12-14 12:54 - 00000000 ____D C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Adobe 2013-12-14 13:22 - 2013-12-14 13:22 - 00000000 ____D C:\WINDOWS\system32\appmgmt 2013-12-14 13:21 - 2013-12-14 13:21 - 00000000 ____D C:\Programme\Microsoft Office 2007 Portable German 2013-12-14 13:16 - 2013-12-14 13:11 - 00000000 ____D C:\Dokumente und Einstellungen\Admin\Eigene Dateien\Wirtschaft und Politik 2013-12-14 13:16 - 2013-12-14 13:07 - 00000000 ____D C:\Dokumente und Einstellungen\Admin\Eigene Dateien\Trading 2013-12-14 13:14 - 2013-12-14 13:14 - 00000000 ____D C:\Dokumente und Einstellungen\Admin\Eigene Dateien\Neuer Ordner 2013-12-14 13:07 - 2013-12-14 13:06 - 00000000 ____D C:\Dokumente und Einstellungen\Admin\Eigene Dateien\Sonstiges 2013-12-14 13:06 - 2013-12-13 20:59 - 00000000 ___RD C:\Dokumente und Einstellungen\Admin\Eigene Dateien\Eigene Bilder 2013-12-14 13:00 - 2013-12-14 13:00 - 00000000 ____D C:\Dokumente und Einstellungen\Admin\Anwendungsdaten\Adobe 2013-12-14 13:00 - 2013-12-14 12:53 - 00000000 ____D C:\Dokumente und Einstellungen\Admin\Lokale Einstellungen\Anwendungsdaten\Adobe 2013-12-14 12:58 - 2013-12-13 20:59 - 00000000 ___RD C:\Dokumente und Einstellungen\Admin\Eigene Dateien\Eigene Musik 2013-12-14 12:57 - 2013-12-14 12:57 - 00001804 _____ C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Adobe Reader XI.lnk 2013-12-14 12:57 - 2013-12-14 12:57 - 00001714 _____ C:\Dokumente und Einstellungen\All Users\Desktop\Adobe Reader XI.lnk 2013-12-14 12:55 - 2013-12-14 12:55 - 00000000 ____D C:\Programme\Gemeinsame Dateien\Adobe 2013-12-14 12:55 - 2013-12-14 12:55 - 00000000 ____D C:\Programme\Adobe 2013-12-14 12:47 - 2013-12-13 21:32 - 00000000 ____D C:\WINDOWS\Help 2013-12-14 00:59 - 2013-12-13 20:42 - 00938224 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2013-12-14 00:58 - 2013-12-14 00:58 - 04202496 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\NETw5x32.sys 2013-12-14 00:58 - 2013-12-14 00:58 - 02756608 _____ (Intel Corporation) C:\WINDOWS\system32\NETw5r32.dll 2013-12-14 00:58 - 2013-12-14 00:58 - 00663552 _____ (Intel Corporation) C:\WINDOWS\system32\NETw5c32.dll 2013-12-14 00:58 - 2013-12-13 22:17 - 00023494 _____ C:\WINDOWS\DPINST.LOG 2013-12-14 00:49 - 2013-12-13 21:05 - 00000000 ___HD C:\Programme\InstallShield Installation Information 2013-12-14 00:49 - 2013-12-13 21:05 - 00000000 ____D C:\Programme\Realtek 2013-12-14 00:48 - 2013-12-14 00:49 - 00102104 _____ (Realtek Semiconductor Corporation) C:\WINDOWS\system32\RTNUninst32.dll 2013-12-14 00:48 - 2013-12-14 00:49 - 00077528 _____ (Realtek Semiconductor Corporation) C:\WINDOWS\system32\RtNicProp32.dll 2013-12-14 00:48 - 2013-12-13 21:06 - 00415832 _____ (Realtek Semiconductor Corporation ) C:\WINDOWS\system32\Drivers\Rtenicxp.sys 2013-12-14 00:18 - 2013-12-13 21:05 - 00000000 ____D C:\Programme\TOSHIBA 2013-12-14 00:05 - 2013-12-14 00:05 - 00000000 ____D C:\Dokumente und Einstellungen\Admin\Anwendungsdaten\toshiba 2013-12-14 00:05 - 2013-12-13 21:05 - 00000000 ____D C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\TOSHIBA 2013-12-14 00:02 - 2013-12-13 23:48 - 00000486 _____ C:\WINDOWS\system32\results.txt 2013-12-14 00:02 - 2013-12-13 22:50 - 00000000 ____D C:\Programme\Atheros 2013-12-13 23:54 - 2013-12-13 23:54 - 00000000 ____D C:\Programme\Camera Assistant Software for Toshiba 2013-12-13 23:54 - 2013-12-13 23:54 - 00000000 ____D C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Camera Assistant Software 2013-12-13 23:46 - 2013-12-13 20:47 - 00000000 ___RD C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Zubehör 2013-12-13 23:34 - 2013-12-13 21:38 - 00000000 ____D C:\WINDOWS\system32\ReinstallBackups 2013-12-13 23:05 - 2013-12-13 20:41 - 00000000 ___RD C:\Dokumente und Einstellungen\All Users\Startmenü 2013-12-13 23:03 - 2013-12-13 23:03 - 00005033 _____ C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\mtbjfghn.xbe 2013-12-13 23:03 - 2013-12-13 23:03 - 00000000 ____D C:\Dokumente und Einstellungen\Admin\Anwendungsdaten\Carambis 2013-12-13 23:03 - 2013-12-13 23:02 - 00000000 ____D C:\Dokumente und Einstellungen\Admin\Lokale Einstellungen\TempDIR 2013-12-13 22:58 - 2013-12-13 22:52 - 00065536 _____ C:\WINDOWS\system32\config\ACS.evt 2013-12-13 22:58 - 2013-12-13 21:07 - 00000000 ____D C:\Programme\Intel 2013-12-13 22:50 - 2013-12-13 22:50 - 00000000 ____D C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Atheros 2013-12-13 22:44 - 2013-12-13 22:44 - 00000000 ____D C:\Medion 2013-12-13 22:24 - 2013-12-13 22:24 - 00000000 ____D C:\Intel 2013-12-13 22:19 - 2013-12-13 22:18 - 00000280 _____ C:\WINDOWS\nsw.log 2013-12-13 22:15 - 2013-12-13 22:15 - 00000000 ____D C:\Dokumente und Einstellungen\Admin\Anwendungsdaten\WinBatch 2013-12-13 21:55 - 2013-12-13 21:00 - 00013104 _____ C:\Dokumente und Einstellungen\Admin\Lokale Einstellungen\Anwendungsdaten\GDIPFONTCACHEV1.DAT 2013-12-13 21:50 - 2013-12-13 21:50 - 00000738 _____ C:\Dokumente und Einstellungen\All Users\Desktop\Emsisoft Anti-Malware.lnk 2013-12-13 21:50 - 2013-12-13 21:50 - 00000000 ____D C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Emsisoft Anti-Malware 2013-12-13 21:49 - 2013-12-13 21:49 - 00000000 ____D C:\Dokumente und Einstellungen\Admin\Eigene Dateien\Anti-Malware 2013-12-13 21:49 - 2013-12-13 20:59 - 00000000 ___SD C:\Dokumente und Einstellungen\Admin\Lokale Einstellungen\Verlauf 2013-12-13 21:48 - 2013-12-13 21:48 - 00000253 _____ C:\WINDOWS\system32\spupdwxp.log 2013-12-13 21:48 - 2013-12-13 21:48 - 00000187 _____ C:\WINDOWS\spupdsvc.log.1.log 2013-12-13 21:48 - 2013-12-13 21:42 - 00069866 _____ C:\WINDOWS\spupdsvc.log 2013-12-13 21:48 - 2013-12-13 20:59 - 00000747 _____ C:\Dokumente und Einstellungen\Admin\Startmenü\Programme\Internet Explorer.lnk 2013-12-13 21:48 - 2013-12-13 20:59 - 00000718 _____ C:\Dokumente und Einstellungen\Admin\Startmenü\Programme\Outlook Express.lnk 2013-12-13 21:48 - 2013-12-13 20:53 - 00316640 _____ C:\WINDOWS\WMSysPr9.prx 2013-12-13 21:48 - 2013-12-13 20:49 - 00000359 _____ C:\WINDOWS\DtcInstall.log 2013-12-13 21:47 - 2013-12-13 20:41 - 00091888 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2013-12-13 21:46 - 2013-12-13 21:34 - 00501427 _____ C:\WINDOWS\svcpack.log 2013-12-13 21:45 - 2013-12-13 21:32 - 00000000 ____D C:\WINDOWS\security 2013-12-13 21:42 - 2013-12-13 21:42 - 00000000 ____D C:\WINDOWS\system32\de-de 2013-12-13 21:42 - 2013-12-13 21:42 - 00000000 ____D C:\WINDOWS\system32\de 2013-12-13 21:42 - 2013-12-13 21:42 - 00000000 ____D C:\WINDOWS\system32\bits 2013-12-13 21:42 - 2013-12-13 21:42 - 00000000 ____D C:\WINDOWS\l2schemas 2013-12-13 21:42 - 2013-12-13 21:32 - 00000000 ____D C:\WINDOWS\system32\usmt 2013-12-13 21:42 - 2013-12-13 21:32 - 00000000 ____D C:\WINDOWS\system32\inetsrv 2013-12-13 21:42 - 2013-12-13 21:32 - 00000000 ____D C:\WINDOWS\PeerNet 2013-12-13 21:42 - 2013-12-13 21:32 - 00000000 ____D C:\WINDOWS\ime 2013-12-13 21:42 - 2013-12-13 20:53 - 00001563 _____ C:\Dokumente und Einstellungen\All Users\Startmenü\Programmzugriff und -standards.lnk 2013-12-13 21:42 - 2013-12-13 20:51 - 00000000 ____D C:\Programme\Movie Maker 2013-12-13 21:42 - 2013-12-13 20:50 - 00001334 _____ C:\WINDOWS\sessmgr.setup.log 2013-12-13 21:42 - 2013-12-13 20:49 - 00000000 ____D C:\Programme\Messenger 2013-12-13 21:42 - 2013-12-13 20:47 - 00000373 _____ C:\WINDOWS\cmsetacl.log 2013-12-13 21:41 - 2013-12-13 21:41 - 00000000 ____D C:\WINDOWS\ServicePackFiles 2013-12-13 21:41 - 2013-12-13 21:32 - 00000000 ____D C:\WINDOWS\system32\npp 2013-12-13 21:41 - 2013-12-13 21:32 - 00000000 ____D C:\WINDOWS\msagent 2013-12-13 21:41 - 2013-12-13 20:51 - 00000000 ____D C:\WINDOWS\srchasst 2013-12-13 21:41 - 2013-12-13 20:50 - 00000000 ____D C:\WINDOWS\system32\Restore 2013-12-13 21:41 - 2013-12-13 20:50 - 00000000 ____D C:\Programme\Outlook Express 2013-12-13 21:41 - 2013-12-13 20:50 - 00000000 ____D C:\Programme\NetMeeting 2013-12-13 21:41 - 2013-12-13 20:48 - 00000000 ____D C:\WINDOWS\system32\Com 2013-12-13 21:41 - 2013-12-13 20:48 - 00000000 ____D C:\Programme\Windows NT 2013-12-13 21:40 - 2013-12-13 21:40 - 00663552 _____ C:\WINDOWS\system32\config\software.sav 2013-12-13 21:40 - 2013-12-13 21:40 - 00454656 _____ C:\WINDOWS\system32\config\system.sav 2013-12-13 21:40 - 2013-12-13 21:40 - 00262144 _____ C:\WINDOWS\system32\config\userdiff 2013-12-13 21:40 - 2013-12-13 21:40 - 00094208 _____ C:\WINDOWS\system32\config\default.sav 2013-12-13 21:40 - 2013-12-13 21:40 - 00001024 ____H C:\WINDOWS\system32\config\userdiff.LOG 2013-12-13 21:40 - 2013-12-13 21:40 - 00001024 ____H C:\WINDOWS\system32\config\TempKey.LOG 2013-12-13 21:40 - 2013-12-13 21:32 - 00000000 ____D C:\WINDOWS\system 2013-12-13 21:40 - 2013-12-13 21:17 - 00000000 ____D C:\WINDOWS\Microsoft.NET 2013-12-13 21:40 - 2013-12-13 20:50 - 00000000 ____D C:\Programme\Gemeinsame Dateien\System 2013-12-13 21:39 - 2013-12-13 21:32 - 00000000 ____D C:\WINDOWS\system32\1031 2013-12-13 21:39 - 2013-12-13 21:32 - 00000000 ____D C:\WINDOWS\Media 2013-12-13 21:39 - 2004-08-04 13:00 - 00251712 __RSH C:\ntldr 2013-12-13 21:38 - 2013-12-13 21:36 - 00000000 __HDC C:\WINDOWS\$NtServicePackUninstall$ 2013-12-13 21:35 - 2013-12-13 21:32 - 00000000 ____D C:\WINDOWS\twain_32 2013-12-13 21:35 - 2013-12-13 21:32 - 00000000 ____D C:\WINDOWS\system32\ras 2013-12-13 21:34 - 2013-12-13 21:32 - 00000000 ____D C:\WINDOWS\system32\icsxml 2013-12-13 21:34 - 2013-12-13 21:32 - 00000000 ____D C:\WINDOWS\system32\ias 2013-12-13 21:33 - 2013-12-13 21:32 - 00000000 ____D C:\WINDOWS\system32\1033 2013-12-13 21:32 - 2013-12-13 21:32 - 00000000 ____D C:\WINDOWS\system32\wins 2013-12-13 21:32 - 2013-12-13 21:32 - 00000000 ____D C:\WINDOWS\system32\ShellExt 2013-12-13 21:32 - 2013-12-13 21:32 - 00000000 ____D C:\WINDOWS\system32\mui 2013-12-13 21:32 - 2013-12-13 21:32 - 00000000 ____D C:\WINDOWS\system32\IME 2013-12-13 21:32 - 2013-12-13 21:32 - 00000000 ____D C:\WINDOWS\system32\export 2013-12-13 21:32 - 2013-12-13 21:32 - 00000000 ____D C:\WINDOWS\system32\Drivers\disdn 2013-12-13 21:32 - 2013-12-13 21:32 - 00000000 ____D C:\WINDOWS\system32\dhcp 2013-12-13 21:32 - 2013-12-13 21:32 - 00000000 ____D C:\WINDOWS\system32\3com_dmi 2013-12-13 21:32 - 2013-12-13 21:32 - 00000000 ____D C:\WINDOWS\system32\3076 2013-12-13 21:32 - 2013-12-13 21:32 - 00000000 ____D C:\WINDOWS\system32\2052 2013-12-13 21:32 - 2013-12-13 21:32 - 00000000 ____D C:\WINDOWS\system32\1054 2013-12-13 21:32 - 2013-12-13 21:32 - 00000000 ____D C:\WINDOWS\system32\1042 2013-12-13 21:32 - 2013-12-13 21:32 - 00000000 ____D C:\WINDOWS\system32\1041 2013-12-13 21:32 - 2013-12-13 21:32 - 00000000 ____D C:\WINDOWS\system32\1037 2013-12-13 21:32 - 2013-12-13 21:32 - 00000000 ____D C:\WINDOWS\system32\1028 2013-12-13 21:32 - 2013-12-13 21:32 - 00000000 ____D C:\WINDOWS\system32\1025 2013-12-13 21:32 - 2013-12-13 21:32 - 00000000 ____D C:\WINDOWS\Resources 2013-12-13 21:32 - 2013-12-13 21:32 - 00000000 ____D C:\WINDOWS\repair 2013-12-13 21:32 - 2013-12-13 21:32 - 00000000 ____D C:\WINDOWS\Provisioning 2013-12-13 21:32 - 2013-12-13 21:32 - 00000000 ____D C:\WINDOWS\mui 2013-12-13 21:32 - 2013-12-13 21:32 - 00000000 ____D C:\WINDOWS\java 2013-12-13 21:32 - 2013-12-13 21:32 - 00000000 ____D C:\WINDOWS\Driver Cache 2013-12-13 21:32 - 2013-12-13 21:32 - 00000000 ____D C:\WINDOWS\Connection Wizard 2013-12-13 21:32 - 2013-12-13 21:32 - 00000000 ____D C:\WINDOWS\addins 2013-12-13 21:29 - 2013-12-13 21:29 - 00001769 _____ C:\Dokumente und Einstellungen\All Users\Desktop\Google Chrome.lnk 2013-12-13 21:29 - 2013-12-13 21:29 - 00000000 ____D C:\Programme\Google 2013-12-13 21:29 - 2013-12-13 21:29 - 00000000 ____D C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Google Chrome 2013-12-13 21:29 - 2013-12-13 21:29 - 00000000 ____D C:\Dokumente und Einstellungen\Admin\Lokale Einstellungen\Anwendungsdaten\Google 2013-12-13 21:29 - 2013-12-13 21:28 - 00000000 ____D C:\Dokumente und Einstellungen\Admin\Lokale Einstellungen\Anwendungsdaten\Deployment 2013-12-13 21:26 - 2013-12-13 21:26 - 00000000 ___SD C:\Dokumente und Einstellungen\Admin\UserData 2013-12-13 21:23 - 2013-12-13 21:23 - 00000000 ____D C:\Dokumente und Einstellungen\Admin\Lokale Einstellungen\Anwendungsdaten\WMTools Downloaded Files 2013-12-13 21:22 - 2013-12-13 21:22 - 00000000 ____D C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\ATI 2013-12-13 21:22 - 2013-12-13 21:22 - 00000000 ____D C:\Dokumente und Einstellungen\Admin\Lokale Einstellungen\Anwendungsdaten\ATI 2013-12-13 21:22 - 2013-12-13 21:22 - 00000000 ____D C:\Dokumente und Einstellungen\Admin\Anwendungsdaten\ATI 2013-12-13 21:22 - 2013-12-13 21:22 - 00000000 _____ C:\WINDOWS\ativpsrm.bin 2013-12-13 21:20 - 2013-12-13 21:20 - 00000000 ____D C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Catalyst Control Center 2013-12-13 21:20 - 2013-12-13 21:16 - 00000000 ____D C:\Programme\ATI Technologies 2013-12-13 21:17 - 2013-12-13 21:16 - 00005777 _____ C:\WINDOWS\KB893803v2.log 2013-12-13 21:16 - 2013-12-13 21:16 - 00000000 __HDC C:\WINDOWS\$MSI31Uninstall_KB893803v2$ 2013-12-13 21:15 - 2008-07-31 15:24 - 09801728 _____ (ATI Technologies Inc.) C:\WINDOWS\system32\atioglx2.dll 2013-12-13 21:15 - 2008-07-31 15:24 - 05439488 _____ (ATI Technologies Inc.) C:\WINDOWS\system32\atioglxx.dll 2013-12-13 21:15 - 2008-07-31 15:24 - 03176480 ____C (ATI Technologies Inc. ) C:\WINDOWS\system32\dllcache\ati3duag.dll 2013-12-13 21:15 - 2008-07-31 15:24 - 03176480 _____ (ATI Technologies Inc. ) C:\WINDOWS\system32\ati3duag.dll 2013-12-13 21:15 - 2008-07-31 15:24 - 03107788 _____ C:\WINDOWS\system32\ativvaxx.dat 2013-12-13 21:15 - 2008-07-31 15:24 - 03107788 _____ C:\WINDOWS\system32\ativva5x.dat 2013-12-13 21:15 - 2008-07-31 15:24 - 02876928 ____C (ATI Technologies Inc.) C:\WINDOWS\system32\dllcache\ati2mtag.sys 2013-12-13 21:15 - 2008-07-31 15:24 - 02876928 _____ (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\ati2mtag.sys 2013-12-13 21:15 - 2008-07-31 15:24 - 01765120 ____C (ATI Technologies Inc. ) C:\WINDOWS\system32\dllcache\ativvaxx.dll 2013-12-13 21:15 - 2008-07-31 15:24 - 01765120 _____ (ATI Technologies Inc. ) C:\WINDOWS\system32\ativvaxx.dll 2013-12-13 21:15 - 2008-07-31 15:24 - 00887724 _____ C:\WINDOWS\system32\ativva6x.dat 2013-12-13 21:15 - 2008-07-31 15:24 - 00536576 _____ (ATI Technologies Inc.) C:\WINDOWS\system32\ati2evxx.exe 2013-12-13 21:15 - 2008-07-31 15:24 - 00520192 ____C (ATI Technologies Inc.) C:\WINDOWS\system32\dllcache\ati2cqag.dll 2013-12-13 21:15 - 2008-07-31 15:24 - 00520192 _____ (ATI Technologies Inc.) C:\WINDOWS\system32\ati2cqag.dll 2013-12-13 21:15 - 2008-07-31 15:24 - 00393216 _____ (ATI Technologies Inc.) C:\WINDOWS\system32\atikvmag.dll 2013-12-13 21:15 - 2008-07-31 15:24 - 00372736 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\ATIDEMGX.dll 2013-12-13 21:15 - 2008-07-31 15:24 - 00307200 _____ (ATI Technologies Inc.) C:\WINDOWS\system32\atiiiexx.dll 2013-12-13 21:15 - 2008-07-31 15:24 - 00299008 ____C (ATI Technologies Inc.) C:\WINDOWS\system32\dllcache\ati2dvag.dll 2013-12-13 21:15 - 2008-07-31 15:24 - 00299008 _____ (ATI Technologies Inc.) C:\WINDOWS\system32\ati2dvag.dll 2013-12-13 21:15 - 2008-07-31 15:24 - 00172032 _____ (ATI Technologies, Inc.) C:\WINDOWS\system32\atipdlxx.dll 2013-12-13 21:15 - 2008-07-31 15:24 - 00168883 _____ C:\WINDOWS\system32\atiicdxx.dat 2013-12-13 21:15 - 2008-07-31 15:24 - 00167936 _____ (ATI Technologies Inc.) C:\WINDOWS\system32\atiok3x2.dll 2013-12-13 21:15 - 2008-07-31 15:24 - 00126976 _____ (ATI Technologies, Inc.) C:\WINDOWS\system32\Oemdspif.dll 2013-12-13 21:15 - 2008-07-31 15:24 - 00126976 _____ (ATI Technologies Inc.) C:\WINDOWS\system32\ati2evxx.dll 2013-12-13 21:15 - 2008-07-31 15:24 - 00053248 _____ ( ATI Technologies Inc.) C:\WINDOWS\system32\ATIDDC.DLL 2013-12-13 21:15 - 2008-07-31 15:24 - 00049152 _____ (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\ati2erec.dll 2013-12-13 21:15 - 2008-07-31 15:24 - 00046080 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdpcom32.dll 2013-12-13 21:15 - 2008-07-31 15:24 - 00043520 _____ (ATI Technologies, Inc.) C:\WINDOWS\system32\ati2edxx.dll 2013-12-13 21:15 - 2008-07-31 15:24 - 00026112 _____ (ATI Technologies, Inc.) C:\WINDOWS\system32\Ati2mdxx.exe 2013-12-13 21:15 - 2008-07-31 15:24 - 00024064 _____ (ATI Technologies, Inc.) C:\WINDOWS\system32\ativcoxx.dll 2013-12-13 21:15 - 2008-07-31 15:24 - 00017408 _____ (ATI Technologies Inc.) C:\WINDOWS\system32\atitvo32.dll 2013-12-13 21:15 - 2008-07-31 15:24 - 00012477 _____ C:\WINDOWS\atiogl.xml 2013-12-13 21:15 - 2008-07-31 15:24 - 00007167 _____ C:\WINDOWS\system32\atifglpf.xml 2013-12-13 21:12 - 2013-12-13 21:12 - 00940794 _____ C:\WINDOWS\system32\LoopyMusic.wav 2013-12-13 21:12 - 2013-12-13 21:12 - 00146650 _____ C:\WINDOWS\system32\BuzzingBee.wav 2013-12-13 21:12 - 2013-12-13 21:12 - 00000000 ____D C:\WINDOWS\system32\Lang 2013-12-13 21:11 - 2013-12-13 21:11 - 00000000 _____ C:\WINDOWS\system32\Drivers\SETF2.tmp 2013-12-13 21:10 - 2013-12-13 21:09 - 00000000 ____D C:\WINDOWS\system32\RTCOM 2013-12-13 21:09 - 2013-12-13 21:09 - 00315392 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\HideWin.exe 2013-12-13 21:09 - 2013-12-13 21:09 - 00004779 _____ C:\WINDOWS\KB888111.log 2013-12-13 21:09 - 2013-12-13 21:09 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB888111WXPSP2$ 2013-12-13 21:09 - 2013-12-13 21:03 - 00000000 ____D C:\Programme\Gemeinsame Dateien\InstallShield 2013-12-13 21:07 - 2013-12-13 21:07 - 00000000 ____D C:\Dokumente und Einstellungen\NetworkService\Anwendungsdaten\Intel 2013-12-13 21:07 - 2013-12-13 21:07 - 00000000 ____D C:\Dokumente und Einstellungen\LocalService\Anwendungsdaten\Intel 2013-12-13 21:07 - 2013-12-13 21:07 - 00000000 ____D C:\Dokumente und Einstellungen\Default User\Anwendungsdaten\Intel 2013-12-13 21:07 - 2013-12-13 21:07 - 00000000 ____D C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Intel 2013-12-13 21:07 - 2013-12-13 21:07 - 00000000 ____D C:\Dokumente und Einstellungen\Admin\Anwendungsdaten\Intel 2013-12-13 21:05 - 2013-12-13 21:05 - 00000104 _____ C:\Dokumente und Einstellungen\Admin\Desktop\Arbeitsplatz.lnk 2013-12-13 21:04 - 2013-12-13 21:04 - 00000000 ____D C:\Dokumente und Einstellungen\Admin\Anwendungsdaten\InstallShield 2013-12-13 20:59 - 2013-12-13 20:59 - 00000000 ___RD C:\Dokumente und Einstellungen\Admin\Startmenü\Programme\Zubehör 2013-12-13 20:59 - 2013-12-13 20:42 - 00000000 ____D C:\Programme\Gemeinsame Dateien\Microsoft Shared 2013-12-13 20:57 - 2013-12-13 20:57 - 00000020 ___SH C:\Dokumente und Einstellungen\LocalService\ntuser.ini 2013-12-13 20:57 - 2013-12-13 20:57 - 00000000 __SHD C:\Dokumente und Einstellungen\LocalService 2013-12-13 20:56 - 2013-12-13 20:56 - 00008192 _____ C:\WINDOWS\REGLOCS.OLD 2013-12-13 20:56 - 2013-12-13 20:56 - 00000020 ___SH C:\Dokumente und Einstellungen\NetworkService\ntuser.ini 2013-12-13 20:53 - 2013-12-13 20:59 - 00001599 _____ C:\Dokumente und Einstellungen\Admin\Startmenü\Programme\Remoteunterstützung.lnk 2013-12-13 20:53 - 2013-12-13 20:53 - 00023392 _____ C:\WINDOWS\system32\nscompat.tlb 2013-12-13 20:53 - 2013-12-13 20:53 - 00016832 _____ C:\WINDOWS\system32\amcompat.tlb 2013-12-13 20:53 - 2013-12-13 20:53 - 00002951 _____ C:\WINDOWS\system32\CONFIG.NT 2013-12-13 20:53 - 2013-12-13 20:53 - 00001599 _____ C:\Dokumente und Einstellungen\Default User\Startmenü\Programme\Remoteunterstützung.lnk 2013-12-13 20:53 - 2013-12-13 20:53 - 00000772 _____ C:\Dokumente und Einstellungen\Default User\Startmenü\Programme\Windows Media Player.lnk 2013-12-13 20:53 - 2013-12-13 20:53 - 00000398 _____ C:\Dokumente und Einstellungen\All Users\Startmenü\Windows-Katalog.lnk 2013-12-13 20:53 - 2013-12-13 20:53 - 00000000 __RSH C:\MSDOS.SYS 2013-12-13 20:53 - 2013-12-13 20:53 - 00000000 __RSH C:\IO.SYS 2013-12-13 20:53 - 2013-12-13 20:53 - 00000000 ____D C:\WINDOWS\system32\xircom 2013-12-13 20:53 - 2013-12-13 20:53 - 00000000 ____D C:\Programme\xerox 2013-12-13 20:53 - 2013-12-13 20:53 - 00000000 ____D C:\Programme\microsoft frontpage 2013-12-13 20:53 - 2013-12-13 20:53 - 00000000 _____ C:\WINDOWS\control.ini 2013-12-13 20:53 - 2013-12-13 20:53 - 00000000 _____ C:\CONFIG.SYS 2013-12-13 20:53 - 2013-12-13 20:53 - 00000000 _____ C:\AUTOEXEC.BAT 2013-12-13 20:53 - 2013-12-13 20:52 - 00000000 ___RD C:\Dokumente und Einstellungen\Default User\Startmenü\Programme\Zubehör 2013-12-13 20:53 - 2013-12-13 20:50 - 00000000 ___RD C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Verwaltung 2013-12-13 20:53 - 2013-12-13 20:50 - 00000000 ____D C:\WINDOWS\Registration 2013-12-13 20:53 - 2013-12-13 20:42 - 00004161 _____ C:\WINDOWS\ODBCINST.INI 2013-12-13 20:53 - 2013-12-13 20:41 - 00000000 ___RD C:\Dokumente und Einstellungen\Default User\Startmenü\Programme 2013-12-13 20:52 - 2013-12-13 21:32 - 00000000 ___RD C:\WINDOWS\Web 2013-12-13 20:52 - 2013-12-13 20:52 - 00000758 _____ C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Windows Movie Maker.lnk 2013-12-13 20:52 - 2013-12-13 20:52 - 00000749 ___RH C:\WINDOWS\WindowsShell.Manifest 2013-12-13 20:52 - 2013-12-13 20:52 - 00000749 ___RH C:\WINDOWS\system32\wuaucpl.cpl.manifest 2013-12-13 20:52 - 2013-12-13 20:52 - 00000749 ___RH C:\WINDOWS\system32\sapi.cpl.manifest 2013-12-13 20:52 - 2013-12-13 20:52 - 00000749 ___RH C:\WINDOWS\system32\nwc.cpl.manifest 2013-12-13 20:52 - 2013-12-13 20:52 - 00000749 ___RH C:\WINDOWS\system32\ncpa.cpl.manifest 2013-12-13 20:52 - 2013-12-13 20:52 - 00000749 ___RH C:\WINDOWS\system32\cdplayer.exe.manifest 2013-12-13 20:52 - 2013-12-13 20:52 - 00000488 ___RH C:\WINDOWS\system32\WindowsLogon.manifest 2013-12-13 20:52 - 2013-12-13 20:52 - 00000488 ___RH C:\WINDOWS\system32\logonui.exe.manifest 2013-12-13 20:52 - 2013-12-13 20:52 - 00000000 __SHD C:\Dokumente und Einstellungen\All Users\DRM 2013-12-13 20:52 - 2013-12-13 20:52 - 00000000 ___RD C:\WINDOWS\Offline Web Pages 2013-12-13 20:52 - 2013-12-13 20:52 - 00000000 ___HD C:\Programme\WindowsUpdate 2013-12-13 20:52 - 2013-12-13 20:52 - 00000000 ____D C:\WINDOWS\system32\DirectX 2013-12-13 20:52 - 2013-12-13 20:52 - 00000000 ____D C:\Programme\Online-Dienste 2013-12-13 20:51 - 2013-12-13 21:32 - 00000000 ____D C:\WINDOWS\pchealth 2013-12-13 20:51 - 2013-12-13 20:51 - 00000000 ____D C:\WINDOWS\system32\Macromed 2013-12-13 20:51 - 2013-12-13 20:51 - 00000000 ____D C:\Programme\Gemeinsame Dateien\MSSoap 2013-12-13 20:51 - 2013-12-13 20:51 - 00000000 ____D C:\Programme\Gemeinsame Dateien\Dienste 2013-12-13 20:51 - 2013-12-13 20:50 - 00000000 ___RD C:\Dokumente und Einstellungen\All Users\Dokumente\Eigene Bilder 2013-12-13 20:51 - 2013-12-13 20:49 - 00000000 ___RD C:\Dokumente und Einstellungen\All Users\Dokumente\Eigene Musik 2013-12-13 20:50 - 2013-12-13 20:50 - 00021740 _____ C:\WINDOWS\system32\emptyregdb.dat 2013-12-13 20:50 - 2013-12-13 20:50 - 00000621 _____ C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Windows Messenger.lnk 2013-12-13 20:50 - 2013-12-13 20:50 - 00000037 _____ C:\WINDOWS\vbaddin.ini 2013-12-13 20:50 - 2013-12-13 20:50 - 00000036 _____ C:\WINDOWS\vb.ini 2013-12-13 20:50 - 2013-12-13 20:50 - 00000000 ___RD C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Spiele 2013-12-13 20:50 - 2013-12-13 20:50 - 00000000 ____D C:\Programme\ComPlus Applications 2013-12-13 20:50 - 2013-12-13 20:48 - 00000000 ____D C:\WINDOWS\system32\MsDtc 2013-12-13 20:50 - 2013-12-13 20:41 - 00000000 ___RD C:\Dokumente und Einstellungen\All Users\Dokumente 2013-12-13 20:49 - 2013-12-13 21:32 - 00000000 ____D C:\WINDOWS\Cursors 2013-12-13 20:49 - 2013-12-13 20:49 - 00002004 _____ C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\MSN.lnk 2013-12-13 20:49 - 2013-12-13 20:49 - 00000000 ____D C:\Programme\Online Services 2013-12-13 20:49 - 2013-12-13 20:49 - 00000000 ____D C:\Programme\MSN Gaming Zone 2013-12-13 20:48 - 2013-12-13 20:48 - 00000000 ____D C:\Programme\MSN 2013-12-13 20:47 - 2013-12-13 21:32 - 00000000 ____D C:\WINDOWS\system32\spool 2013-12-13 20:44 - 2013-12-13 20:44 - 00000000 _____ C:\WINDOWS\Sti_Trace.log 2013-12-13 20:42 - 2013-12-13 20:42 - 00001348 _____ C:\WINDOWS\regopt.log 2013-12-13 20:42 - 2013-12-13 20:42 - 00000000 ____D C:\Programme\Gemeinsame Dateien\SpeechEngines 2013-12-13 20:42 - 2013-12-13 20:42 - 00000000 ____D C:\Programme\Gemeinsame Dateien\ODBC 2013-12-13 20:41 - 2013-12-13 20:59 - 00000000 ___RD C:\Dokumente und Einstellungen\Admin\Startmenü\Programme\Autostart 2013-12-13 20:41 - 2013-12-13 20:59 - 00000000 ___RD C:\Dokumente und Einstellungen\Admin\Startmenü 2013-12-13 20:41 - 2013-12-13 20:59 - 00000000 ___HD C:\Dokumente und Einstellungen\Admin\Netzwerkumgebung 2013-12-13 20:41 - 2013-12-13 20:59 - 00000000 ___HD C:\Dokumente und Einstellungen\Admin\Druckumgebung 2013-12-13 20:41 - 2013-12-13 20:57 - 00000000 ___SD C:\Dokumente und Einstellungen\LocalService\Lokale Einstellungen\Verlauf 2013-12-13 20:41 - 2013-12-13 20:56 - 00000000 ___HD C:\Dokumente und Einstellungen\NetworkService\Lokale Einstellungen\Verlauf 2013-12-13 20:41 - 2013-12-13 20:41 - 00000000 ___SD C:\Dokumente und Einstellungen\Default User\Lokale Einstellungen\Verlauf 2013-12-13 20:41 - 2013-12-13 20:41 - 00000000 ___RD C:\Dokumente und Einstellungen\Default User\Startmenü\Programme\Autostart 2013-12-13 20:41 - 2013-12-13 20:41 - 00000000 ___RD C:\Dokumente und Einstellungen\Default User\Startmenü 2013-12-13 20:41 - 2013-12-13 20:41 - 00000000 ___RD C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Autostart 2013-12-13 20:41 - 2013-12-13 20:41 - 00000000 ___HD C:\Dokumente und Einstellungen\Default User\Netzwerkumgebung 2013-12-13 20:41 - 2013-12-13 20:41 - 00000000 ___HD C:\Dokumente und Einstellungen\Default User\Druckumgebung 2013-12-13 20:41 - 2013-12-13 20:41 - 00000000 _____ C:\WINDOWS\setuperr.log Some content of TEMP: ==================== C:\Dokumente und Einstellungen\Admin\Lokale Einstellungen\temp\Quarantine.exe ==================== Bamital & volsnap Check ================= C:\Windows\explorer.exe [2004-08-04 13:00] - [2008-04-14 07:52] - 1036800 ____A (Microsoft Corporation) 418045a93cd87a352098ab7dabe1b53e C:\Windows\System32\winlogon.exe [2004-08-04 13:00] - [2008-04-14 07:53] - 0513024 ____A (Microsoft Corporation) f09a527b422e25c478e38caa0e44417a C:\Windows\System32\svchost.exe [2004-08-04 13:00] - [2008-04-14 07:53] - 0014336 ____A (Microsoft Corporation) 4fbc75b74479c7a6f829e0ca19df3366 C:\Windows\System32\services.exe [2004-08-04 13:00] - [2008-04-14 07:53] - 0109056 ____A (Microsoft Corporation) 4bb6a83640f1d1792ad21ce767b621c6 C:\Windows\System32\User32.dll [2004-08-04 13:00] - [2008-04-14 07:52] - 0580096 ____A (Microsoft Corporation) b0050cc5340e3a0760dd8b417ff7aebd C:\Windows\System32\userinit.exe [2004-08-04 13:00] - [2008-04-14 07:53] - 0026624 ____A (Microsoft Corporation) 788f95312e26389d596c0fa55834e106 C:\Windows\System32\Drivers\volsnap.sys [2004-08-04 13:00] - [2008-04-14 07:22] - 0053760 ____A (Microsoft Corporation) a5a712f4e880874a477af790b5186e1d ==================== End Of Log ============================ Schalte ich den Laptop ein, so dauert es 2 Minuten, bis der Desktop erscheint. Danach dauert es ca. weitere 2 Minuten, bis die Startprogramme starten. Danach lahmt der Laptop so vor sich hin, nach 8 Minuten läuft alles "rund". Allerdings hat die svchost.exe immer noch konstant 50% CPU-Auslastung. Die CPU-Auslastung war ja schon von Anfang an so. Dass der Laptop aber so langsam hochfährt, ist erst seitdem ich das Windows-Update manuell installiert habe. |
25.12.2013, 15:04 | #19 |
/// the machine /// TB-Ausbilder | [XP, SP3]Facebook meldet Virus Dann deinstalliere bitte das Windows update nochmal. ProcessExplorer als Ersatz für den Windows Taskmanager installieren Lade Dir den Process Explorer als Ersatz für den Taskmanager herunter und installiere ihn, hier findest Du eine Anleitung. Das ist ein wesentlich leistungsfähigerer Ersatz für den Windows-Taskmanager. Im Menü unter "Options" kannst Du den ProcessExplorer dauerhaft als Ersatz für den Taskmanager einrichten (Replace Taskmanager). Das ist sehr empfehlenswert, weil der ProcessExplorer erheblich mehr Funktionen als der Taskmanager hat. Wenn Du diese Einstellung gemacht hast, öffnet sich mit der Tastenkombination STRG + ALT + Entf. nicht mehr der Taskmanager, sondern der ProcessExplorer. Das kann jederzeit durch Abhaken dieser Einstellung wieder rückgängig gemacht werden. Was wir jetzt konkret brauchen: In jeder Zeile steht ein Prozess, ein paar der Zeilen sind keine richtigen Prozesse, sondern nur Pseudoprozesse für die Tätigkeit des Windos-Kernels. Im Menü View => Select Columns wird ein Dialog geöffnet, in dem Du auswählen kannst, welche Spalten mit Informationen zu den Prozessen angezeigt werden sollen. In dem gehe in das Register "Process Performance" und stelle sicher, dass dort "CPU Usage" angehakt ist, "CPU History" wäre ebenfalls sinnvoll. Unter "CPU Usage" wird der aktuelle Wert der Prozessorauslastung für jeden Prozess angezeigt (im Tabellentitel steht nur kurz "CPU"), "CPU History" blendet für jeden Prozess ein Diagramm ein, das eine Kurve mit der Prozessorauslastung für die letzte Zeit anzeigt. Damit sollte es Dir möglich sein, zu identifizieren, welcher Prozess Deine CPU in Trab hält. Mache einen Doppelklick auf den Prozess. Du kannst von dem ganzen auch einen Screenshot machen und ihn als Anhang mit Deiner Antwort hochladen (auf "Erweitert" unter dem Textfeld klicken und über "Anhänge verwalten" auf Deinem Rechner suchen lassen und über "Hochladen" anhängen).
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
25.12.2013, 15:54 | #20 |
| [XP, SP3]Facebook meldet Virus Habe vergessen zu erwähnen, dass ich dieses Update schon wieder deinstalliert hatte, leider ohne Wirkung. Hier der Screenshot, wobei ich nicht ganz wusste, wo ich dann genauer hingehen sollte. Nach Doppelklick auf die svchost.exe bin ich auf Services gegangen. |
26.12.2013, 14:30 | #21 |
/// the machine /// TB-Ausbilder | [XP, SP3]Facebook meldet Virus Ja, da sieht man es ganz deutlich. WIndows Update zieht den Saft. Deaktiviere mal WIndows Update komplett und reboote.
__________________ --> [XP, SP3]Facebook meldet Virus |
26.12.2013, 17:09 | #22 |
| [XP, SP3]Facebook meldet Virus Und beim Start, wenn alles lahmt, sieht es so aus. |
26.12.2013, 18:19 | #23 |
| [XP, SP3]Facebook meldet Virus Also die svchost.exe macht keine Probleme mehr, allerdings lahmt der Laptop beim Hochfahren immer noch ziemlich stark. Wie gesagt, dass ist er seit dem manuellen Update so und eine Deinstallation hat den Vorgang nicht rückgängig gemacht. Auch während des Gebrauchs scheint "Interrupts" viel zu verbrauchen laut Process Explorer. Sorry für den Doppelpost, editieren ging nicht mehr. Geändert von rawhide (26.12.2013 um 18:33 Uhr) |
27.12.2013, 16:39 | #24 |
/// the machine /// TB-Ausbilder | [XP, SP3]Facebook meldet Virus Das haben wir schnell HDD-Controller-Treiber zurücksetzen nach Scan mit GMER (Originalwebseite und mit freundlicher Genehmigung von Hans-Georg Michna)
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
28.12.2013, 20:36 | #25 |
| [XP, SP3]Facebook meldet Virus Hat super geklappt, vielen Dank. Alles wieder flott. Wenn ich wieder zuhause bin, kommt natürlich wieder eine Spende |
29.12.2013, 12:39 | #26 |
/// the machine /// TB-Ausbilder | [XP, SP3]Facebook meldet Virus Fertig Falls Du Lob oder Kritik loswerden möchtest kannst Du das hier tun Die Reihenfolge ist hier entscheidend.
Hier noch ein paar Tipps zur Absicherung deines Systems. Ich kann garnicht zu oft erwähnen, wie wichtig es ist, dass dein System Up to Date ist.
Anti- Viren Software
Zusätzlicher Schutz
Sicheres Browsen
Alternative Browser Andere Browser tendieren zu etwas mehr Sicherheit als der IE, da diese keine Active X Elemente verwenden. Diese können von Spyware zur Infektion deines Systems missbraucht werden.
Performance Bereinige regelmäßig deine Temp Files. Ich empfehle hierzu TFC Halte dich fern von jedlichen Registry Cleanern. Diese Schaden deinem System mehr als sie helfen. Hier ein paar ( englishe ) Links Miekemoes Blogspot ( MVP ) Bill Castner ( MVP ) Don'ts
Hinweis: Bitte gib mir eine kurze Rückmeldung wenn alles erledigt ist und keine Fragen mehr vorhanden sind, so das ich diesen Thread aus meinen Abos löschen kann.
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
29.12.2013, 20:54 | #27 |
| [XP, SP3]Facebook meldet Virus Alles geklärt, keine weiteren Fragen mehr. Danke nochmal für die tolle Hilfe. |
30.12.2013, 11:23 | #28 |
/// the machine /// TB-Ausbilder | [XP, SP3]Facebook meldet Virus Gern Geschehen
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
Themen zu [XP, SP3]Facebook meldet Virus |
4d36e972-e325-11ce-bfc1-08002be10318, adblock, administrator, adobe, branding, chromium, cyberghost, desktop, einstellungen, emsisoft, explorer, flash player, format, gesperrt, google, helper, homepage, hotkey, mozilla, msiinstaller, netzwerkkarte, plug-in, programme, realtek, registry, security, software, svchost.exe, system error, usb, virus, windows, windows xp |