Windows XP : Windows Explorer öffnet Werbung

Jona333 · 01.07.2014, 23:19

Hallo liebes TB-Team,
mein Problem ist, dass sich mein Windows Explorer ständig öffnet und Werbung, von mir unbekannten Seiten, öffnet. Er öffnet auch oft mehere Tabs gleichzeitig mit Werbung. Mein AVG-Antivirusprogramm meldet auch ständig das Trojaner gefunden worden.

defogger:

defogger_disable by jpshortstuff (23.02.10.1)
Log created at 22:16 on 01/07/2014 (User)

Checking for autostart values...
HKCU\~\Run values retrieved.
HKLM\~\Run values retrieved.

Checking for services/drivers...

-=E.O.F=-

FRST:

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version:29-06-2014
Ran by User (administrator) on HOME-PC on 01-07-2014 23:20:18
Running from C:\Dokumente und Einstellungen\User\Eigene Dateien\Downloads
Platform: Microsoft Windows XP Professional Service Pack 2 (X86) OS Language: Deutsch (Deutschland)
Internet Explorer Version 6
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: hxxp://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/81/
Download link for 64-Bit Version: hxxp://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(AVG Technologies CZ, s.r.o.) C:\PROGRA~1\AVG\AVG2014\avgrsx.exe
(AVG Technologies CZ, s.r.o.) C:\Programme\AVG\AVG2014\avgcsrvx.exe
() C:\WINDOWS\system32\WLTRYSVC.EXE
(Dell Inc.) C:\WINDOWS\system32\BCMWLTRY.EXE
(AVG) C:\Programme\AVG\AVG PC Tuneup 2011\BoostSpeed.exe
(AVG Technologies CZ, s.r.o.) C:\Programme\AVG\AVG2014\avgidsagent.exe
(AVG Technologies CZ, s.r.o.) C:\Programme\AVG\AVG2014\avgwdsvc.exe
(Sun Microsystems, Inc.) C:\Programme\Java\jre6\bin\jqs.exe
(AVG Secure Search) C:\Programme\Gemeinsame Dateien\AVG Secure Search\vToolbarUpdater\18.1.7\ToolbarUpdater.exe
() C:\Programme\Gemeinsame Dateien\AVG Secure Search\vToolbarUpdater\18.1.7\loggingserver.exe
(Intel Corporation) C:\WINDOWS\system32\hkcmd.exe
(Intel Corporation) C:\WINDOWS\system32\igfxsrvc.exe
(AVG Technologies CZ, s.r.o.) C:\Programme\AVG\AVG2014\avgnsx.exe
(Intel Corporation) C:\WINDOWS\system32\igfxpers.exe
(SigmaTel, Inc.) C:\Programme\SigmaTel\C-Major Audio\WDM\stsystra.exe
(Dell Inc.) C:\WINDOWS\system32\WLTRAY.EXE
(Alps Electric Co., Ltd.) C:\Programme\Apoint\Apoint.exe
() C:\Programme\AVG Secure Search\vprot.exe
(Sun Microsystems, Inc.) C:\Programme\Gemeinsame Dateien\Java\Java Update\jusched.exe
(shbox.de) C:\Programme\FreePDF_XP\fpassist.exe
(Alps Electric Co., Ltd.) C:\Programme\Apoint\hidfind.exe
(Alps Electric Co., Ltd.) C:\Programme\Apoint\ApntEx.exe
(Samsung Electronics Co., Ltd.) C:\Programme\Samsung\Kies\KiesTrayAgent.exe
(AVG Technologies CZ, s.r.o.) C:\Programme\AVG\AVG2014\avgui.exe
(Spotify Ltd) C:\Dokumente und Einstellungen\User\Anwendungsdaten\Spotify\Data\SpotifyWebHelper.exe
(Samsung) C:\Programme\Samsung\Kies\Kies.exe
(BVRP Software) C:\Programme\Digital Line Detect\DLG.exe
(Dropbox, Inc.) C:\Dokumente und Einstellungen\User\Anwendungsdaten\Dropbox\bin\Dropbox.exe
(OpenOffice.org) C:\Programme\OpenOffice.org 3\program\soffice.exe
(OpenOffice.org) C:\Programme\OpenOffice.org 3\program\soffice.bin
(Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
(Mozilla Corporation) C:\Programme\Mozilla Firefox\firefox.exe

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [SigmatelSysTrayApp] => C:\Programme\SigmaTel\C-Major Audio\WDM\stsystra.exe [405504 2007-05-10] (SigmaTel, Inc.)
HKLM\...\Run: [Broadcom Wireless Manager UI] => C:\WINDOWS\system32\WLTRAY.exe [2498560 2009-10-07] (Dell Inc.)
HKLM\...\Run: [Apoint] => C:\Programme\Apoint\Apoint.exe [176128 2005-10-07] (Alps Electric Co., Ltd.)
HKLM\...\Run: [BluetoothAuthenticationAgent] => rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent
HKLM\...\Run: [vProt] => C:\Programme\AVG Secure Search\vprot.exe [2571288 2014-06-23] ()
HKLM\...\Run: [SunJavaUpdateSched] => C:\Programme\Gemeinsame Dateien\Java\Java Update\jusched.exe [248552 2010-05-14] (Sun Microsystems, Inc.)
HKLM\...\Run: [KernelFaultCheck] => %systemroot%\system32\dumprep 0 -k
HKLM\...\Run: [FreePDF Assistant] => C:\Programme\FreePDF_XP\fpassist.exe [373760 2013-03-14] (shbox.de)
HKLM\...\Run: [Adobe Reader Speed Launcher] => C:\Programme\Adobe\Reader 8.0\Reader\Reader_sl.exe [40368 2009-12-18] (Adobe Systems Incorporated)
HKLM\...\Run: [Adobe ARM] => C:\Programme\Gemeinsame Dateien\Adobe\ARM\1.0\AdobeARM.exe [932288 2010-09-21] (Adobe Systems Incorporated)
HKLM\...\Run: [KiesTrayAgent] => C:\Programme\Samsung\Kies\KiesTrayAgent.exe [311616 2014-02-14] (Samsung Electronics Co., Ltd.)
HKLM\...\Run: [AVG_UI] => C:\Programme\AVG\AVG2014\avgui.exe [5181456 2014-05-13] (AVG Technologies CZ, s.r.o.)
HKU\S-1-5-21-790525478-115176313-725345543-1003\...\Run: [Spotify] => C:\Dokumente und Einstellungen\User\Anwendungsdaten\Spotify\Spotify.exe [6189624 2014-06-27] (Spotify Ltd)
HKU\S-1-5-21-790525478-115176313-725345543-1003\...\Run: [Spotify Web Helper] => C:\Dokumente und Einstellungen\User\Anwendungsdaten\Spotify\Data\SpotifyWebHelper.exe [1176632 2014-06-27] (Spotify Ltd)
HKU\S-1-5-21-790525478-115176313-725345543-1003\...\Run: [KiesPreload] => C:\Programme\Samsung\Kies\Kies.exe [1564992 2014-02-14] (Samsung)
HKU\S-1-5-21-790525478-115176313-725345543-1003\...\Run: [KiesAirMessage] => C:\Programme\Samsung\Kies\KiesAirMessage.exe -startup
HKU\S-1-5-21-790525478-115176313-725345543-500\...\Run: [AVG-Secure-Search-Update_JUNE2013_TB] => C:\Programme\AVG Secure Search\AVG-Secure-Search-Update_JUNE2013_TB.exe [1266712 2013-06-03] (AVG Secure Search)
HKU\S-1-5-21-790525478-115176313-725345543-500\...\Policies\Explorer: [NoCDBurning] 1
HKU\S-1-5-21-790525478-115176313-725345543-500\...\Policies\Explorer: [NoRecentDocsMenu] 1
Startup: C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Autostart\Digital Line Detect.lnk
ShortcutTarget: Digital Line Detect.lnk -> C:\Programme\Digital Line Detect\DLG.exe (BVRP Software)
Startup: C:\Dokumente und Einstellungen\User\Startmenü\Programme\Autostart\Dropbox.lnk
ShortcutTarget: Dropbox.lnk -> C:\Dokumente und Einstellungen\User\Anwendungsdaten\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
Startup: C:\Dokumente und Einstellungen\User\Startmenü\Programme\Autostart\OpenOffice.org 3.3.lnk
ShortcutTarget: OpenOffice.org 3.3.lnk -> C:\Programme\OpenOffice.org 3\program\quickstart.exe ()
ShellIconOverlayIdentifiers: DropboxExt1 -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => No File
ShellIconOverlayIdentifiers: DropboxExt2 -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => No File
ShellIconOverlayIdentifiers: DropboxExt3 -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => No File
ShellIconOverlayIdentifiers: DropboxExt4 -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => No File
BootExecute: autocheck autochk * C:\PROGRA~1\AVG\AVG2014\avgrsx.exe /sync /restart

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.microsoft.com/isapi/redir.dll?prd={SUB_PRD}&clcid={SUB_CLSID}&pver={SUB_PVER}&ar=home
HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = hxxp://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htm
SearchScopes: HKLM - DefaultScope value is missing.
SearchScopes: HKCU - DefaultScope {95B7759C-8C7F-4BF1-B163-73684A933233} URL = hxxp://isearch.avg.com/search?cid={6C3A6348-0B3D-450D-BA35-D5647587392D}&mid=426bd45c2ab047d1bddad1532d1b45b6-6868903894a809d08089c443b513b5f5c6e71fbe&lang=de&ds=AVG&pr=fr&d=2011-10-12 11:11:01&v=15.2.0.5&pid=avg&sg=0&sap=dsp&q={searchTerms}
SearchScopes: HKCU - {95B7759C-8C7F-4BF1-B163-73684A933233} URL = hxxp://isearch.avg.com/search?cid={6C3A6348-0B3D-450D-BA35-D5647587392D}&mid=426bd45c2ab047d1bddad1532d1b45b6-6868903894a809d08089c443b513b5f5c6e71fbe&lang=de&ds=AVG&pr=fr&d=2011-10-12 11:11:01&v=15.2.0.5&pid=avg&sg=0&sap=dsp&q={searchTerms}
BHO: Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Programme\Gemeinsame Dateien\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
BHO: AVG Safe Search - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Programme\AVG\AVG2012\avgssie.dll No File
BHO: AVG Security Toolbar - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Programme\AVG Secure Search\18.1.7.644\AVG Secure Search_toolbar.dll (AVG Secure Search)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Programme\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
BHO: JQSIEStartDetectorImpl Class - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Programme\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll (Sun Microsystems, Inc.)
Toolbar: HKLM - AVG Security Toolbar - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Programme\AVG Secure Search\18.1.7.644\AVG Secure Search_toolbar.dll (AVG Secure Search)
Toolbar: HKCU - &Adresse - {01E04581-4EEE-11D0-BFE9-00AA005B4383} - C:\WINDOWS\system32\browseui.dll (Microsoft Corporation)
Toolbar: HKCU - &Links - {0E5CBF21-D15F-11D0-8301-00AA005B4383} - C:\WINDOWS\system32\SHELL32.dll (Microsoft Corporation)
Toolbar: HKCU - No Name - {E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39} - No File
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} https://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab
Handler: http\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler: http\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler: https\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler: https\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler: ipp\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Programme\AVG\AVG2012\avgpp.dll No File
Handler: ms-help - {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Programme\Gemeinsame Dateien\Microsoft Shared\Help\hxds.dll (Microsoft Corporation)
Handler: msdaipp\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler: msdaipp\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - C:\Programme\Gemeinsame Dateien\AVG Secure Search\ViProtocolInstaller\18.1.7\ViProtocol.dll (AVG Secure Search)

Hosts: Hosts file not detected in the default directory
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1

FireFox:
========
FF ProfilePath: C:\Dokumente und Einstellungen\User\Anwendungsdaten\Mozilla\Firefox\Profiles\14poc7dh.default
FF Homepage: hxxp://www.google.de/
FF Plugin: @adobe.com/FlashPlayer - C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_9_900_117.dll ()
FF Plugin: @avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin - C:\Programme\Gemeinsame Dateien\AVG Secure Search\SiteSafetyInstaller\18.1.7\\npsitesafety.dll No File
FF Plugin: @java.com/JavaPlugin - C:\Programme\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Programme\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF user.js: detected! => C:\Dokumente und Einstellungen\User\Anwendungsdaten\Mozilla\Firefox\Profiles\14poc7dh.default\user.js
FF SearchPlugin: C:\Programme\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Programme\mozilla firefox\browser\searchplugins\avg-secure-search.xml
FF SearchPlugin: C:\Programme\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Programme\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Programme\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF Extension: FileZilla - C:\Dokumente und Einstellungen\User\Anwendungsdaten\Mozilla\Firefox\Profiles\14poc7dh.default\Extensions\client@filezilla.org [2011-10-13]
FF Extension: Yahoo! Toolbar - C:\Dokumente und Einstellungen\User\Anwendungsdaten\Mozilla\Firefox\Profiles\14poc7dh.default\Extensions\{635abd67-4fe9-1b23-4f01-e679fa7484c1} [2014-06-11]
FF Extension: Adblock Plus - C:\Dokumente und Einstellungen\User\Anwendungsdaten\Mozilla\Firefox\Profiles\14poc7dh.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2014-06-06]
FF HKLM\...\Firefox\Extensions: [jqs@sun.com] - C:\Programme\Java\jre6\lib\deploy\jqs\ff
FF Extension: Java Quick Starter - C:\Programme\Java\jre6\lib\deploy\jqs\ff [2011-11-23]
FF HKLM\...\Firefox\Extensions: [avg@toolbar] - C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\AVG Secure Search\FireFoxExt\18.1.7.644
FF Extension: AVG Security Toolbar - C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\AVG Secure Search\FireFoxExt\18.1.7.644 [2014-06-23]
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF Extension: Microsoft .NET Framework Assistant - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension [2013-10-21]

========================== Services (Whitelisted) =================

R2 AVGIDSAgent; C:\Programme\AVG\AVG2014\avgidsagent.exe [3644432 2014-05-13] (AVG Technologies CZ, s.r.o.)
R2 avgwd; C:\Programme\AVG\AVG2014\avgwdsvc.exe [292424 2014-05-13] (AVG Technologies CZ, s.r.o.)
R2 JavaQuickStarterService; C:\Programme\Java\jre6\bin\jqs.exe [153376 2011-11-23] (Sun Microsystems, Inc.)
S3 MozillaMaintenance; C:\Programme\Mozilla Maintenance Service\maintenanceservice.exe [119408 2014-06-11] (Mozilla Foundation)
S3 odserv; C:\Programme\Gemeinsame Dateien\Microsoft Shared\OFFICE12\ODSERV.EXE [441136 2006-10-26] (Microsoft Corporation)
S3 ose; C:\Programme\Gemeinsame Dateien\Microsoft Shared\Source Engine\OSE.EXE [145184 2006-10-26] (Microsoft Corporation)
S3 TUWinStylerThemeSvc; C:\Programme\TuneUpUtilities2006\WinStylerThemeSvc.exe [118272 2005-08-24] (TuneUp Software GmbH) [File not signed]
R2 vToolbarUpdater18.1.7; C:\Programme\Gemeinsame Dateien\AVG Secure Search\vToolbarUpdater\18.1.7\ToolbarUpdater.exe [1813528 2014-06-23] (AVG Secure Search)
R2 wltrysvc; C:\WINDOWS\System32\bcmwltry.exe [2232320 2009-10-07] (Dell Inc.) [File not signed]
S3 WMPNetworkSvc; C:\Programme\Windows Media Player\WMPNetwk.exe [829440 2006-05-10] (Microsoft Corporation)
S2 AMService; C:\WINDOWS\TEMP\jecynt\setup.exe run [X]

==================== Drivers (Whitelisted) ====================

R1 Avgdiskx; C:\WINDOWS\System32\DRIVERS\avgdiskx.sys [122136 2014-05-13] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSDriver; C:\WINDOWS\System32\DRIVERS\avgidsdriverx.sys [198936 2014-05-13] (AVG Technologies CZ, s.r.o.)
R0 AVGIDSHX; C:\WINDOWS\System32\DRIVERS\avgidshx.sys [149784 2014-05-13] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSShim; C:\WINDOWS\System32\DRIVERS\avgidsshimx.sys [21272 2014-05-13] (AVG Technologies CZ, s.r.o.)
R1 Avgldx86; C:\WINDOWS\System32\DRIVERS\avgldx86.sys [192280 2014-05-13] (AVG Technologies CZ, s.r.o.)
R0 Avglogx; C:\WINDOWS\System32\DRIVERS\avglogx.sys [237848 2014-05-13] (AVG Technologies CZ, s.r.o.)
R0 Avgmfx86; C:\WINDOWS\System32\DRIVERS\avgmfx86.sys [107288 2014-05-13] (AVG Technologies CZ, s.r.o.)
R0 Avgrkx86; C:\WINDOWS\System32\DRIVERS\avgrkx86.sys [27416 2014-05-13] (AVG Technologies CZ, s.r.o.)
R1 Avgtdix; C:\WINDOWS\System32\DRIVERS\avgtdix.sys [210200 2014-05-13] (AVG Technologies CZ, s.r.o.)
R1 avgtp; C:\WINDOWS\system32\drivers\avgtpx86.sys [42784 2014-06-23] (AVG Technologies)
R3 BCM43XX; C:\WINDOWS\System32\DRIVERS\bcmwl5.sys [2649216 2009-10-07] (Broadcom Corporation)
R2 BCMWLNPF; C:\WINDOWS\System32\drivers\bcmwlnpf.sys [33664 2009-10-07] (CACE Technologies) [File not signed]
S3 Secdrv; C:\WINDOWS\System32\DRIVERS\secdrv.sys [27440 2006-06-01] ()
R3 STHDA; C:\WINDOWS\System32\drivers\sthda.sys [1222840 2007-05-10] (SigmaTel, Inc.)
S4 IntelIde; No ImagePath
U1 WS2IFSL;
U3 kxtdipow; \??\C:\DOKUME~1\User\LOKALE~1\Temp\kxtdipow.sys [X]

==================== NetSvcs (Whitelisted) ===================

==================== One Month Created Files and Folders ========

2014-07-01 22:23 - 2014-07-01 23:20 - 00000000 ____D () C:\FRST
2014-07-01 22:14 - 2014-07-01 22:14 - 00000000 _____ () C:\Dokumente und Einstellungen\User\defogger_reenable
2014-06-19 22:43 - 2014-04-11 10:39 - 00184192 _____ (DEVGURU Co., LTD.(www.devguru.co.kr)) C:\WINDOWS\system32\Drivers\ssudmdm.sys
2014-06-19 22:43 - 2014-04-11 10:39 - 00089856 _____ (DEVGURU Co., LTD.(www.devguru.co.kr)) C:\WINDOWS\system32\Drivers\ssudbus.sys
2014-06-11 11:04 - 2014-06-11 11:05 - 00000000 ____D () C:\Programme\Mozilla Firefox

==================== One Month Modified Files and Folders =======

2014-07-01 23:20 - 2014-07-01 22:23 - 00000000 ____D () C:\FRST
2014-07-01 23:20 - 2011-10-12 13:52 - 00000000 ____D () C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\TEMP
2014-07-01 23:20 - 2011-07-20 07:38 - 00000000 ____D () C:\Dokumente und Einstellungen\User\Lokale Einstellungen\Temp
2014-07-01 22:14 - 2014-07-01 22:14 - 00000000 _____ () C:\Dokumente und Einstellungen\User\defogger_reenable
2014-07-01 21:52 - 2013-08-07 21:18 - 00000000 ____D () C:\Dokumente und Einstellungen\User\Anwendungsdaten\Spotify
2014-07-01 21:50 - 2013-08-07 21:19 - 00000000 ____D () C:\Dokumente und Einstellungen\User\Lokale Einstellungen\Anwendungsdaten\Spotify
2014-07-01 21:15 - 2011-10-12 11:06 - 00000000 ____D () C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\MFAData
2014-07-01 21:14 - 2013-01-20 20:36 - 00000000 ___RD () C:\Dokumente und Einstellungen\User\Eigene Dateien\Dropbox
2014-07-01 21:14 - 2013-01-20 20:32 - 00000000 ____D () C:\Dokumente und Einstellungen\User\Anwendungsdaten\Dropbox
2014-07-01 21:13 - 2014-05-16 00:00 - 00000000 ____D () C:\Dokumente und Einstellungen\User\Anwendungsdaten\DropboxMaster
2014-07-01 21:13 - 2011-07-19 15:08 - 01324826 _____ () C:\WINDOWS\WindowsUpdate.log
2014-07-01 21:11 - 2013-07-10 11:08 - 00000000 ____D () C:\Dokumente und Einstellungen\User\Lokale Einstellungen\Anwendungsdaten\FreePDF_XP
2014-07-01 21:11 - 2011-07-19 16:04 - 00000159 _____ () C:\WINDOWS\wiadebug.log
2014-07-01 21:10 - 2013-06-03 20:57 - 00000350 _____ () C:\WINDOWS\Tasks\AVG-Secure-Search-Update_JUNE2013_TB_rmv.job
2014-07-01 21:10 - 2011-10-12 13:52 - 00000400 _____ () C:\WINDOWS\Tasks\AVG PC Tuneup 2011 Integrator Start On User Logon.job
2014-07-01 21:10 - 2011-07-19 16:04 - 00000050 _____ () C:\WINDOWS\wiaservc.log
2014-07-01 21:10 - 2011-07-19 15:18 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT
2014-07-01 15:11 - 2011-07-20 07:38 - 00000190 ___SH () C:\Dokumente und Einstellungen\User\ntuser.ini
2014-07-01 15:11 - 2011-07-19 15:18 - 00032626 _____ () C:\WINDOWS\SchedLgU.Txt
2014-06-30 12:26 - 2014-04-07 23:08 - 00000000 ____D () C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\AVG2014
2014-06-29 23:43 - 2013-06-05 21:27 - 00000000 ____D () C:\Dokumente und Einstellungen\User\Desktop\Anderes
2014-06-29 20:23 - 2006-06-01 21:06 - 00002206 _____ () C:\WINDOWS\system32\wpa.dbl
2014-06-24 01:45 - 2011-07-22 14:46 - 00065536 _____ () C:\WINDOWS\system32\config\ODiag.evt
2014-06-23 18:10 - 2013-11-14 21:58 - 00003725 _____ () C:\Programme\Mozilla Firefoxavg-secure-search.xml
2014-06-23 18:10 - 2012-11-12 19:29 - 00042784 _____ (AVG Technologies) C:\WINDOWS\system32\Drivers\avgtpx86.sys
2014-06-23 18:10 - 2011-11-10 16:18 - 00000000 ____D () C:\WINDOWS\system32\cache
2014-06-23 18:10 - 2011-10-12 11:10 - 00000000 ____D () C:\Programme\AVG Secure Search
2014-06-20 16:56 - 2014-03-19 11:37 - 00547784 _____ () C:\Dokumente und Einstellungen\LocalService\Lokale Einstellungen\Anwendungsdaten\FontCache3.0.0.0.dat
2014-06-19 22:45 - 2011-07-19 16:01 - 00545952 _____ () C:\WINDOWS\setupapi.log
2014-06-19 22:45 - 2011-07-19 16:00 - 00208014 _____ () C:\WINDOWS\setupact.log
2014-06-12 13:56 - 2013-10-23 17:07 - 00000000 ____D () C:\Programme\Mozilla Maintenance Service
2014-06-12 09:15 - 2011-07-19 16:02 - 00000000 ___RD () C:\Programme
2014-06-11 20:02 - 2014-04-22 11:26 - 00000000 ____D () C:\WINDOWS\system32\MRT
2014-06-11 20:00 - 2011-07-19 15:21 - 92708840 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2014-06-11 11:05 - 2014-06-11 11:04 - 00000000 ____D () C:\Programme\Mozilla Firefox
2014-06-06 22:39 - 2011-07-20 07:38 - 00000000 ___RD () C:\Dokumente und Einstellungen\User\Eigene Dateien\Eigene Bilder
2014-06-01 21:43 - 2011-07-20 07:38 - 00000000 ___RD () C:\Dokumente und Einstellungen\User\Startmenü\Programme\Autostart
2014-06-01 21:42 - 2013-01-20 20:36 - 00001021 _____ () C:\Dokumente und Einstellungen\User\Desktop\Dropbox.lnk
2014-06-01 21:42 - 2013-01-20 20:33 - 00000000 ____D () C:\Dokumente und Einstellungen\User\Startmenü\Programme\Dropbox

Some content of TEMP:
====================
C:\Dokumente und Einstellungen\User\Lokale Einstellungen\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpzrnrrt.dll
C:\Dokumente und Einstellungen\User\Lokale Einstellungen\Temp\r7sn4iqt.dll

==================== Bamital & volsnap Check =================

C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed

==================== End Of Log ============================

Addition:

Additional scan result of Farbar Recovery Scan Tool (x86) Version:29-06-2014
Ran by User at 2014-07-01 23:20:51
Running from C:\Dokumente und Einstellungen\User\Eigene Dateien\Downloads
Boot Mode: Normal
==========================================================

==================== Security Center ========================

AV: AVG update module (Disabled - Up to date) {17DDD097-36FF-435F-9E1B-52D74245D6BF}

==================== Installed Programs ======================

7-Zip 9.20 (HKLM\...\7-Zip) (Version: - )
Adobe Flash Player 11 Plugin (HKLM\...\Adobe Flash Player Plugin) (Version: 11.9.900.117 - Adobe Systems Incorporated)
Adobe Reader 8.2.0 - Deutsch (HKLM\...\{AC76BA86-7AD7-1031-7B44-A82000000003}) (Version: 8.2.0 - Adobe Systems Incorporated)
ALPS Touch Pad Driver (HKLM\...\{9F72EF8B-AEC9-4CA5-B483-143980AFD6FD}) (Version: - )
AVG 2014 (HKLM\...\AVG) (Version: 2014.0.4592 - AVG Technologies)
AVG 2014 (Version: 14.0.3986 - AVG Technologies) Hidden
AVG 2014 (Version: 14.0.4592 - AVG Technologies) Hidden
AVG PC Tuneup 2011 (HKLM\...\{50316C0A-CC2A-460A-9EA5-F486E54AC17D}_is1) (Version: 10.0.0.26 - AVG)
AVG Security Toolbar (HKLM\...\AVG Secure Search) (Version: 18.1.7.644 - AVG Technologies)
Broadcom 440x 10/100 Integrated Controller (HKLM\...\{9C9D0F85-5658-4A5E-95A9-65F7DB2916EE}) (Version: 8.03.09 - Ihr Firmenname)
Dienstprogramm für die DW WLAN-Karte (HKLM\...\Dienstprogramm für die DW WLAN-Karte) (Version: 5.60.18.9 - Dell Inc.)
Digital Line Detect (HKLM\...\{E646DCF0-5A68-11D5-B229-002078017FBF}) (Version: 1.15 - BVRP Software, Inc)
Dropbox (HKCU\...\Dropbox) (Version: 2.8.2 - Dropbox, Inc.)
FreePDF (Remove only) (HKLM\...\FreePDF_XP) (Version: - )
GPL Ghostscript (HKLM\...\GPL Ghostscript 9.07) (Version: 9.07 - Artifex Software Inc.)
HighMAT-Erweiterung für den Microsoft Windows XP-Assistenten zum Schreiben von CDs (HKLM\...\{FCE65C4E-B0E8-4FBD-AD16-EDCBE6CD591F}) (Version: 1.1.1905.1 - Microsoft Corporation)
Hotfix für Windows XP (KB952287) (HKLM\...\KB952287) (Version: 1 - Microsoft Corporation)
Hotfix für Windows XP (KB961118) (HKLM\...\KB961118) (Version: 1 - Microsoft Corporation)
Hotfix für Windows XP (KB981793) (HKLM\...\KB981793) (Version: 1 - Microsoft Corporation)
Intel(R) Graphics Media Accelerator Driver (HKLM\...\HDMI) (Version: - )
Java Auto Updater (Version: 2.0.2.4 - Sun Microsystems, Inc.) Hidden
Java(TM) 6 Update 22 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83216022FF}) (Version: 6.0.220 - Oracle)
Microsoft .NET Framework 2.0 Service Pack 2 (HKLM\...\{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}) (Version: 2.2.30729 - Microsoft Corporation)
Microsoft .NET Framework 3.0 Service Pack 2 (HKLM\...\{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}) (Version: 3.2.30729 - Microsoft Corporation)
Microsoft .NET Framework 3.5 SP1 (HKLM\...\Microsoft .NET Framework 3.5 SP1) (Version: - Microsoft Corporation)
Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30729 - Microsoft Corporation) Hidden
Microsoft Office Excel MUI (German) 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Outlook MUI (German) 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (German) 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Proof (English) 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Proof (French) 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Proof (German) 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Proof (Italian) 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Proofing (German) 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (German) 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Standard 2007 (HKLM\...\STANDARD) (Version: 12.0.4518.1014 - Microsoft Corporation)
Microsoft Office Standard 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (German) 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30214.0 - Microsoft Corporation)
Microsoft Software Update for Web Folders (German) 12 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft User-Mode Driver Framework Feature Pack 1.0.0 (Pre-Release 5348) (HKLM\...\Wudf01000) (Version: - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Mozilla Firefox 30.0 (x86 de) (HKLM\...\Mozilla Firefox 30.0 (x86 de)) (Version: 30.0 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 29.0.1 - Mozilla)
MSXML 6 Service Pack 2 (KB973686) (HKLM\...\{56EA8BC0-3751-4B93-BC9D-6651CC36E5AA}) (Version: 6.20.2003.0 - Microsoft Corporation)
OpenOffice.org 3.3 (HKLM\...\{4286716B-1287-48E7-9078-3DC8248DBA96}) (Version: 3.3.9567 - OpenOffice.org)
RedMon - Redirection Port Monitor (HKLM\...\Redirection Port Monitor) (Version: - )
Samsung Kies (HKLM\...\InstallShield_{758C8301-2696-4855-AF45-534B1200980A}) (Version: 2.6.2.14014_7 - Samsung Electronics Co., Ltd.)
Samsung Kies (Version: 2.6.2.14014_7 - Samsung Electronics Co., Ltd.) Hidden
SAMSUNG USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.43.0 - SAMSUNG Electronics Co., Ltd.)
Sicherheitsupdate für Windows Media Player 10 (KB911565) (Version: - Microsoft Corporation) Hidden
Sicherheitsupdate für Windows XP (KB2229593) (HKLM\...\KB2229593) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB923561) (HKLM\...\KB923561) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB923789) (HKLM\...\KB923789) (Version: - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB929969) (HKLM\...\KB929969) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB944338-v2) (HKLM\...\KB944338-v2) (Version: 2 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB950762) (HKLM\...\KB950762) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB950974) (HKLM\...\KB950974) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB951376-v2) (HKLM\...\KB951376-v2) (Version: 2 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB951748) (HKLM\...\KB951748) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB952004) (HKLM\...\KB952004) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB952954) (HKLM\...\KB952954) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB955069) (HKLM\...\KB955069) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB956572) (HKLM\...\KB956572) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB956802) (HKLM\...\KB956802) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB956803) (HKLM\...\KB956803) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB956844) (HKLM\...\KB956844) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB958470) (HKLM\...\KB958470) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB958644) (HKLM\...\KB958644) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB958869) (HKLM\...\KB958869) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB959426) (HKLM\...\KB959426) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB960225) (HKLM\...\KB960225) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB960803) (HKLM\...\KB960803) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB960859) (HKLM\...\KB960859) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB961501) (HKLM\...\KB961501) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB969059) (HKLM\...\KB969059) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB970238) (HKLM\...\KB970238) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB970430) (HKLM\...\KB970430) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB971032) (HKLM\...\KB971032) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB971468) (HKLM\...\KB971468) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB971657) (HKLM\...\KB971657) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB971961) (HKLM\...\KB971961) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB972270) (HKLM\...\KB972270) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB973507) (HKLM\...\KB973507) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB973869) (HKLM\...\KB973869) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB973904) (HKLM\...\KB973904) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB974112) (HKLM\...\KB974112) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB974318) (HKLM\...\KB974318) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB974392) (HKLM\...\KB974392) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB974571) (HKLM\...\KB974571) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB975025) (HKLM\...\KB975025) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB975467) (HKLM\...\KB975467) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB975560) (HKLM\...\KB975560) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB975561) (HKLM\...\KB975561) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB975562) (HKLM\...\KB975562) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB977816) (HKLM\...\KB977816) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB977914) (HKLM\...\KB977914) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB978037) (HKLM\...\KB978037) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB978338) (HKLM\...\KB978338) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB978542) (HKLM\...\KB978542) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB978601) (HKLM\...\KB978601) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB978706) (HKLM\...\KB978706) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB979309) (HKLM\...\KB979309) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB979482) (HKLM\...\KB979482) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB979559) (HKLM\...\KB979559) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB979683) (HKLM\...\KB979683) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB980195) (HKLM\...\KB980195) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB980218) (HKLM\...\KB980218) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB980232) (HKLM\...\KB980232) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB981350) (HKLM\...\KB981350) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB982381) (HKLM\...\KB982381) (Version: 1 - Microsoft Corporation)
SigmaTel Audio (HKLM\...\{A462213D-EED4-42C2-9A60-7BDD4D4B0B17}) (Version: 5.10.5210.0 - SigmaTel)
SleepTimer Ultimate 1.2 (HKLM\...\{0EE56463-49B2-45E1-B74F-3E0139DBC986}_is1) (Version: - Christian Handorf)
Spotify (HKCU\...\Spotify) (Version: 0.9.10.22.gf87988f9 - Spotify AB)
TuneUp Utilities 2006 (HKLM\...\{868D7896-99D4-4513-BC62-2B3AD3E24926}) (Version: 5.0.2327 - TuneUp Software)
Update for Microsoft .NET Framework 3.5 SP1 (KB963707) (HKLM\...\{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}.KB963707) (Version: 1 - Microsoft Corporation)
Update für Windows XP (KB925720) (HKLM\...\KB925720) (Version: 1 - Microsoft Corporation)
Update für Windows XP (KB955759) (HKLM\...\KB955759) (Version: 1 - Microsoft Corporation)
Update für Windows XP (KB967715) (HKLM\...\KB967715) (Version: 1 - Microsoft Corporation)
Update für Windows XP (KB968389) (HKLM\...\KB968389) (Version: 1 - Microsoft Corporation)
Update für Windows XP (KB971737) (HKLM\...\KB971737) (Version: 1 - Microsoft Corporation)
Update für Windows XP (KB973687) (HKLM\...\KB973687) (Version: 1 - Microsoft Corporation)
Update für Windows XP (KB973815) (HKLM\...\KB973815) (Version: 1 - Microsoft Corporation)
VideoLAN VLC media player 0.8.6a (HKLM\...\VLC media player) (Version: 0.8.6a - VideoLAN Team)
Visual Studio 2012 x86 Redistributables (HKLM\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
WebFldrs XP (Version: 9.50.7523 - Microsoft Corporation) Hidden
Windows Imaging Component (HKLM\...\WIC) (Version: 3.0.0.0 - Microsoft Corporation)
Windows Media Format 11 runtime (HKLM\...\Windows Media Format Runtime) (Version: - )
Windows Media Format 11 runtime (Version: - Microsoft Corporation) Hidden
Windows Media Player 11 (HKLM\...\Windows Media Player) (Version: - )
Windows Media Player 11 (Version: - Microsoft Corporation) Hidden
WinRAR 4.20 (32-Bit) (HKLM\...\WinRAR archiver) (Version: 4.20.0 - win.rar GmbH)

==================== Restore Points =========================

01-04-2014 14:20:34 Systemprüfpunkt
02-04-2014 21:18:22 Systemprüfpunkt
06-04-2014 21:37:44 Systemprüfpunkt
07-04-2014 21:07:41 AVG 2014 wurde installiert
07-04-2014 21:07:54 AVG 2012 wurde entfernt
07-04-2014 21:08:25 AVG 2014 wurde installiert
07-04-2014 21:13:23 AVG 2012 wurde entfernt
08-04-2014 10:27:00 AVG 2014 wurde entfernt
09-04-2014 19:19:40 Systemprüfpunkt
10-04-2014 22:12:51 Systemprüfpunkt
12-04-2014 08:27:06 Systemprüfpunkt
13-04-2014 21:30:25 Systemprüfpunkt
15-04-2014 13:16:55 Systemprüfpunkt
16-04-2014 20:51:43 Systemprüfpunkt
22-04-2014 09:25:42 Software Distribution Service 3.0
23-04-2014 07:46:23 AVG 2014 wurde entfernt
24-04-2014 09:58:51 Systemprüfpunkt
25-04-2014 08:25:42 AVG 2014 wurde entfernt
28-04-2014 18:29:52 AVG 2014 wurde entfernt
04-05-2014 22:50:31 Systemprüfpunkt
05-05-2014 13:58:03 AVG 2014 wurde installiert
05-05-2014 13:59:55 AVG 2014 wurde entfernt
06-05-2014 19:40:43 Systemprüfpunkt
08-05-2014 12:03:00 Systemprüfpunkt
12-05-2014 09:42:41 Systemprüfpunkt
13-05-2014 08:19:29 AVG 2014 wurde entfernt
14-05-2014 23:17:43 Systemprüfpunkt
15-05-2014 02:23:31 Software Distribution Service 3.0
16-05-2014 10:59:20 Systemprüfpunkt
18-05-2014 21:17:45 Systemprüfpunkt
19-05-2014 23:44:53 Systemprüfpunkt
20-05-2014 07:21:50 AVG 2014 wurde entfernt
21-05-2014 14:40:20 Systemprüfpunkt
22-05-2014 22:10:22 Systemprüfpunkt
01-06-2014 19:39:42 AVG 2014 wurde entfernt
02-06-2014 22:23:27 Systemprüfpunkt
04-06-2014 20:49:55 Systemprüfpunkt
05-06-2014 21:38:36 Systemprüfpunkt
06-06-2014 21:48:23 Systemprüfpunkt
07-06-2014 22:30:57 Systemprüfpunkt
08-06-2014 23:59:26 Systemprüfpunkt
11-06-2014 18:00:16 Software Distribution Service 3.0
12-06-2014 08:07:23 AVG 2014 wurde entfernt
15-06-2014 21:18:50 Systemprüfpunkt
17-06-2014 17:06:14 AVG 2014 wurde entfernt
18-06-2014 18:00:40 Systemprüfpunkt
19-06-2014 20:34:20 Systemprüfpunkt
21-06-2014 09:29:23 Systemprüfpunkt
22-06-2014 16:34:54 Systemprüfpunkt
23-06-2014 17:14:28 Systemprüfpunkt
24-06-2014 17:41:20 Systemprüfpunkt
25-06-2014 18:09:24 AVG 2014 wurde entfernt
29-06-2014 22:01:14 Systemprüfpunkt

==================== Scheduled Tasks (whitelisted) =============

Task: C:\WINDOWS\Tasks\1-Klick-Wartung.job => C:\Programme\TuneUpUtilities2006\SystemOptimizer.exe
Task: C:\WINDOWS\Tasks\AVG PC Tuneup 2011 Integrator Start On User Logon.job => C:\Programme\AVG\AVG PC Tuneup 2011\BoostSpeed.exe
Task: C:\WINDOWS\Tasks\AVG-Secure-Search-Update_JUNE2013_TB_rmv.job => C:\WINDOWS\TEMP\{583FBF7A-4F7B-41C5-BE06-7B4CCA052625}.exe

==================== Loaded Modules (whitelisted) =============

2011-07-20 08:48 - 2009-10-07 15:01 - 00025088 _____ () C:\WINDOWS\System32\WLTRYSVC.EXE
2011-07-20 08:48 - 2009-10-07 15:01 - 00757760 _____ () C:\WINDOWS\System32\bcm1xsup.dll
2013-07-10 11:01 - 2012-08-18 11:31 - 00116224 _____ () C:\WINDOWS\system32\redmonnt.dll
2011-10-12 13:52 - 2011-05-25 10:53 - 00350024 _____ () C:\Programme\AVG\AVG PC Tuneup 2011\madExcept_.bpl
2011-10-12 13:52 - 2011-05-25 10:53 - 00184136 _____ () C:\Programme\AVG\AVG PC Tuneup 2011\madBasic_.bpl
2011-10-12 13:52 - 2011-05-25 10:53 - 00050504 _____ () C:\Programme\AVG\AVG PC Tuneup 2011\madDisAsm_.bpl
2014-06-23 18:10 - 2014-06-23 18:10 - 00159768 _____ () C:\Programme\Gemeinsame Dateien\AVG Secure Search\vToolbarUpdater\18.1.7\loggingserver.exe
2014-06-23 18:10 - 2014-06-23 18:10 - 00519704 _____ () C:\Programme\Gemeinsame Dateien\AVG Secure Search\vToolbarUpdater\18.1.7\log4cplusU.dll
2011-07-20 08:48 - 2009-10-07 15:01 - 00143360 _____ () C:\WINDOWS\system32\preflib.dll
2011-10-12 11:10 - 2014-06-23 18:10 - 02571288 _____ () C:\Programme\AVG Secure Search\vprot.exe
2014-03-17 19:57 - 2014-03-31 20:46 - 01603608 _____ () C:\Programme\AVG Secure Search\TBAPI.dll
2014-02-14 22:53 - 2014-02-14 22:53 - 00036864 _____ () C:\Programme\Samsung\Kies\Common\Kies.Common.DeviceServiceLib.Interface.dll
2014-02-14 22:54 - 2014-02-14 22:54 - 14959616 _____ () C:\Programme\Samsung\Kies\Theme\Kies.Theme.dll
2014-02-14 22:53 - 2014-02-14 22:53 - 00594944 _____ () C:\Programme\Samsung\Kies\Common\Kies.UI.dll
2014-02-14 22:53 - 2014-02-14 22:53 - 00023040 _____ () C:\Programme\Samsung\Kies\MVVM\Kies.MVVM.dll
2014-01-23 19:23 - 2014-01-23 19:23 - 00057856 _____ () C:\Programme\Samsung\Kies\External\MediaModules\ASF_cSharpAPI.dll
2014-07-01 21:13 - 2014-07-01 21:13 - 00043008 _____ () c:\Dokumente und Einstellungen\User\Lokale Einstellungen\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpzrnrrt.dll
2013-08-23 21:01 - 2013-08-23 21:01 - 25100288 _____ () C:\Dokumente und Einstellungen\User\Anwendungsdaten\Dropbox\bin\libcef.dll
2011-01-17 17:19 - 2011-11-23 19:39 - 00985088 _____ () C:\Programme\OpenOffice.org 3\program\libxml2.dll
2014-06-11 11:05 - 2014-06-11 11:05 - 03852912 _____ () C:\Programme\Mozilla Firefox\mozjs.dll

==================== Alternate Data Streams (whitelisted) =========

AlternateDataStreams: C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\TEMP:0B4227B4

==================== Safe Mode (whitelisted) ===================

==================== EXE Association (whitelisted) =============

==================== MSCONFIG/TASK MANAGER disabled items =========

==================== Faulty Device Manager Devices =============

Name: Modem Device on High Definition Audio Bus
Description: Modem Device on High Definition Audio Bus
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: 1394-Netzwerkadapter
Description: 1394-Netzwerkadapter
Class Guid: {4D36E972-E325-11CE-BFC1-08002BE10318}
Manufacturer: Microsoft
Service: NIC1394
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

==================== Event log errors: =========================

Application errors:
==================
Error: (06/30/2014 08:29:25 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Fehlgeschlagene Anwendung plugin-container.exe, Version 30.0.0.5269, fehlgeschlagenes Modul mozalloc.dll, Version 30.0.0.5269, Fehleradresse 0x0000141b.
Das medienspezifische Ereignis für [plugin-container.exe!ws!] wird verarbeitet.

Error: (06/23/2014 03:11:58 PM) (Source: Microsoft Office 12) (EventID: 1000) (User: )
Description: Faulting application winword.exe, version 12.0.4518.1014, stamp 45428028, faulting module mso.dll, version 12.0.4518.1014, stamp 4542867b, debug? 0, fault address 0x008f4f36.

Error: (06/19/2014 10:48:50 PM) (Source: .NET Runtime) (EventID: 1023) (User: )
Description: .NET Runtime version 2.0.50727.3603 - Unrecoverable system error.

Error: (06/19/2014 10:39:49 PM) (Source: .NET Runtime) (EventID: 1023) (User: )
Description: .NET Runtime version 2.0.50727.3603 - Unrecoverable system error.

Error: (06/18/2014 03:05:07 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Fehlgeschlagene Anwendung plugin-container.exe, Version 30.0.0.5269, fehlgeschlagenes Modul mozalloc.dll, Version 30.0.0.5269, Fehleradresse 0x0000141b.
Das medienspezifische Ereignis für [plugin-container.exe!ws!] wird verarbeitet.

Error: (04/11/2014 09:25:47 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Fehlgeschlagene Anwendung acrord32.exe, Version 8.2.0.81, fehlgeschlagenes Modul msvcr80.dll, Version 8.0.50727.3053, Fehleradresse 0x000173f7.
Das medienspezifische Ereignis für [acrord32.exe!ws!] wird verarbeitet.

Error: (04/07/2014 11:14:57 PM) (Source: crypt32) (EventID: 11) (User: )
Description: Die Extrahierung der Drittanbieterstammlisten aus der automatischen Aktualisierungs-CAB-Datei bei <hxxp://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab> ist fehlgeschlagen mit dem Fehler: Ein erforderliches Zertifikat befindet sich nicht im Gültigkeitszeitraum gemessen an der aktuellen Systemzeit oder dem Zeitstempel in der signierten Datei.
.

Error: (04/07/2014 11:14:57 PM) (Source: crypt32) (EventID: 11) (User: )
Description: Die Extrahierung der Drittanbieterstammlisten aus der automatischen Aktualisierungs-CAB-Datei bei <hxxp://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab> ist fehlgeschlagen mit dem Fehler: Ein erforderliches Zertifikat befindet sich nicht im Gültigkeitszeitraum gemessen an der aktuellen Systemzeit oder dem Zeitstempel in der signierten Datei.
.

Error: (02/02/2014 09:36:05 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Fehlgeschlagene Anwendung wmplayer.exe, Version 11.0.5358.4827, fehlgeschlagenes Modul unknown, Version 0.0.0.0, Fehleradresse 0x01169b50.
Das medienspezifische Ereignis für [wmplayer.exe!ws!] wird verarbeitet.

Error: (11/26/2013 06:39:38 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Fehlgeschlagene Anwendung plugin-container.exe, Version 25.0.1.5064, fehlgeschlagenes Modul mozalloc.dll, Version 25.0.1.5064, Fehleradresse 0x0000119c.
Das medienspezifische Ereignis für [plugin-container.exe!ws!] wird verarbeitet.

System errors:
=============
Error: (07/01/2014 11:12:54 PM) (Source: 0) (EventID: 9) (User: )
Description: \Device\Ide\IdePort0

Error: (07/01/2014 11:12:52 PM) (Source: 0) (EventID: 9) (User: )
Description: \Device\Ide\IdePort0

Error: (07/01/2014 11:11:54 PM) (Source: 0) (EventID: 9) (User: )
Description: \Device\Ide\IdePort0

Error: (07/01/2014 11:11:30 PM) (Source: 0) (EventID: 9) (User: )
Description: \Device\Ide\IdePort0

Error: (07/01/2014 11:11:17 PM) (Source: 0) (EventID: 9) (User: )
Description: \Device\Ide\IdePort0

Error: (07/01/2014 11:11:10 PM) (Source: 0) (EventID: 9) (User: )
Description: \Device\Ide\IdePort0

Error: (07/01/2014 11:09:34 PM) (Source: 0) (EventID: 9) (User: )
Description: \Device\Ide\IdePort0

Error: (07/01/2014 11:08:43 PM) (Source: 0) (EventID: 9) (User: )
Description: \Device\Ide\IdePort0

Error: (07/01/2014 11:05:52 PM) (Source: 0) (EventID: 9) (User: )
Description: \Device\Ide\IdePort0

Error: (07/01/2014 11:05:08 PM) (Source: 0) (EventID: 9) (User: )
Description: \Device\Ide\IdePort0

Microsoft Office Sessions:
=========================
Error: (06/23/2014 03:11:55 PM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.4518.1014, Microsoft Office Version: 12.0.4518.1014. This session lasted 9063 seconds with 5100 seconds of active time. This session ended with a crash.

==================== Memory info ===========================

Percentage of memory in use: 42%
Total physical RAM: 2038.27 MB
Available physical RAM: 1179.94 MB
Total Pagefile: 3930.64 MB
Available Pagefile: 2946.17 MB
Total Virtual: 2047.88 MB
Available Virtual: 1956.89 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:74.53 GB) (Free:37.06 GB) NTFS ==>[Drive with boot components (Windows XP)]

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 75 GB) (Disk ID: C9C1C9C1)
Partition 1: (Active) - (Size=75 GB) - (Type=07 NTFS)

==================== End Of Log ============================

Gmer:

GMER 2.1.19357 - hxxp://www.gmer.net
Rootkit scan 2014-07-01 23:15:16
Windows 5.1.2600 Service Pack 2 \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-3 ST980813AS rev.3.AAB 74,53GB
Running: Gmer-19357.exe; Driver: C:\DOKUME~1\User\LOKALE~1\Temp\kxtdipow.sys

---- System - GMER 2.1 ----

SSDT \??\C:\WINDOWS\system32\drivers\avgtpx86.sys ZwEnumerateKey [0xB8360342]
SSDT \??\C:\WINDOWS\system32\drivers\avgtpx86.sys ZwEnumerateValueKey [0xB83603F2]
SSDT \SystemRoot\system32\DRIVERS\avgidsshimx.sys ZwNotifyChangeKey [0xA636C6E0]
SSDT \SystemRoot\system32\DRIVERS\avgidsshimx.sys ZwNotifyChangeMultipleKeys [0xA636C800]
SSDT \SystemRoot\system32\DRIVERS\avgidsshimx.sys ZwOpenProcess [0xA636C010]
SSDT \SystemRoot\system32\DRIVERS\avgidsshimx.sys ZwOpenThread [0xA636C4D0]
SSDT \??\C:\WINDOWS\system32\drivers\avgtpx86.sys ZwQueryValueKey [0xB836022A]
SSDT \SystemRoot\system32\DRIVERS\avgidsshimx.sys ZwSuspendProcess [0xA636C300]
SSDT \SystemRoot\system32\DRIVERS\avgidsshimx.sys ZwSuspendThread [0xA636C3E0]
SSDT \SystemRoot\system32\DRIVERS\avgidsshimx.sys ZwTerminateProcess [0xA636C120]
SSDT \SystemRoot\system32\DRIVERS\avgidsshimx.sys ZwTerminateThread [0xA636C210]
SSDT \SystemRoot\system32\DRIVERS\avgidsshimx.sys ZwWriteVirtualMemory [0xA636C5E0]

---- User code sections - GMER 2.1 ----

.text C:\Programme\Internet Explorer\iexplore.exe[3032] ntdll.dll!NtCreateProcess 7C91D14E 2 Bytes [68, 0F]
.text C:\Programme\Internet Explorer\iexplore.exe[3032] ntdll.dll!NtCreateProcess + 3 7C91D151 1 Byte [EB]
.text C:\Programme\Internet Explorer\iexplore.exe[3032] ntdll.dll!NtCreateProcess + 3 7C91D151 3 Bytes [EB, 00, C3] {JMP 0x2; RET }
.text C:\Programme\Internet Explorer\iexplore.exe[3032] ntdll.dll!NtCreateProcessEx 7C91D15E 2 Bytes [68, 0F]
.text C:\Programme\Internet Explorer\iexplore.exe[3032] ntdll.dll!NtCreateProcessEx + 3 7C91D161 1 Byte [EC]
.text C:\Programme\Internet Explorer\iexplore.exe[3032] ntdll.dll!NtCreateProcessEx + 3 7C91D161 3 Bytes [EC, 00, C3] {IN AL, DX; ADD BL, AL}
.text C:\Programme\Internet Explorer\iexplore.exe[3032] ntdll.dll!RtlCreateUserProcess 7C940C29 6 Bytes PUSH 00ED000C; RET
.text C:\Programme\Internet Explorer\iexplore.exe[3032] USER32.dll!GetProcessWindowStation + 2C 77D191C1 7 Bytes JMP 00C60005
.text C:\Programme\Internet Explorer\iexplore.exe[3032] USER32.dll!GetShellWindow + 44 77D19296 7 Bytes JMP 00C80005
.text C:\Programme\Internet Explorer\iexplore.exe[3032] USER32.dll!PtInRect + 30 77D1BD71 7 Bytes JMP 00C30005
.text C:\Programme\Internet Explorer\iexplore.exe[3032] USER32.dll!GetMessagePos 77D1BF94 6 Bytes PUSH 00C2000C; RET
.text C:\Programme\Internet Explorer\iexplore.exe[3032] USER32.dll!UnionRect + 24A 77D1C967 7 Bytes JMP 00C70005
.text C:\Programme\Internet Explorer\iexplore.exe[3032] USER32.dll!LoadStringA + 55 77D2103D 7 Bytes JMP 00C50005
.text C:\Programme\Internet Explorer\iexplore.exe[3032] USER32.dll!CreateDialogIndirectParamA + 555 77D3A055 7 Bytes JMP 00AE0005
.text C:\Programme\Internet Explorer\iexplore.exe[3032] USER32.dll!GetMenuCheckMarkDimensions + 4EC 77D504E5 7 Bytes JMP 00AA0005
.text C:\Programme\Internet Explorer\iexplore.exe[3032] USER32.dll!MessageBoxA + 49 77D50533 7 Bytes JMP 00AD0005
.text C:\Programme\Internet Explorer\iexplore.exe[3032] USER32.dll!MessageBoxExW + 1F 77D50557 7 Bytes JMP 00AC0005
.text C:\Programme\Internet Explorer\iexplore.exe[3032] USER32.dll!RegisterSystemThread + 16 77D55E46 7 Bytes JMP 00C40005
.text C:\Programme\Internet Explorer\iexplore.exe[3032] USER32.dll!MessageBoxTimeoutA + CA 77D6608E 7 Bytes JMP 00AF0005
.text C:\Programme\Internet Explorer\iexplore.exe[3032] USER32.dll!MessageBoxIndirectW + 5A 77D660ED 7 Bytes JMP 00AB0005
.text C:\Programme\Internet Explorer\iexplore.exe[3032] USER32.dll!GetCursorInfo 77D6C786 4 Bytes [68, 0F, 00, C1]
.text C:\Programme\Internet Explorer\iexplore.exe[3032] USER32.dll!GetCursorInfo + 5 77D6C78B 1 Byte [C3]
.text C:\Programme\Internet Explorer\iexplore.exe[3032] ADVAPI32.dll!ElfFlushEventLog 77DA6A8A 7 Bytes JMP 00B80005
.text C:\Programme\Internet Explorer\iexplore.exe[3032] ADVAPI32.dll!RegOpenKeyExW + 173 77DA6C02 7 Bytes JMP 00B00005
.text C:\Programme\Internet Explorer\iexplore.exe[3032] ADVAPI32.dll!RegCloseKey + 3D3 77DA6FDA 2 Bytes JMP 00C00005
.text C:\Programme\Internet Explorer\iexplore.exe[3032] ADVAPI32.dll!RegCloseKey + 3D6 77DA6FDD 4 Bytes [E5, 88, EB, F9] {IN EAX, 0x88; JMP 0xfffffffd}
.text C:\Programme\Internet Explorer\iexplore.exe[3032] ADVAPI32.dll!GetSecurityDescriptorLength + 2AC 77DA7747 7 Bytes JMP 00BC0005
.text C:\Programme\Internet Explorer\iexplore.exe[3032] ADVAPI32.dll!RegCreateKeyExW + E1 77DA782D 7 Bytes JMP 00B70005
.text C:\Programme\Internet Explorer\iexplore.exe[3032] ADVAPI32.dll!RegOpenKeyExA + EF 77DA7921 7 Bytes JMP 00B60005
.text C:\Programme\Internet Explorer\iexplore.exe[3032] ADVAPI32.dll!SetSecurityDescriptorDacl + CB 77DA7A96 7 Bytes JMP 00BF0005
.text C:\Programme\Internet Explorer\iexplore.exe[3032] ADVAPI32.dll!RegQueryValueExA + 119 77DA7BB4 7 Bytes JMP 00B20005
.text C:\Programme\Internet Explorer\iexplore.exe[3032] ADVAPI32.dll!GetLengthSid + 18C 77DA7EC8 7 Bytes JMP 00B40005
.text C:\Programme\Internet Explorer\iexplore.exe[3032] ADVAPI32.dll!RegNotifyChangeKeyValue + 1031 77DAE82F 7 Bytes JMP 00BB0005
.text C:\Programme\Internet Explorer\iexplore.exe[3032] ADVAPI32.dll!RegDeleteValueW + 1D2 77DAEE03 7 Bytes JMP 00B50005
.text C:\Programme\Internet Explorer\iexplore.exe[3032] ADVAPI32.dll!ConvertStringSecurityDescriptorToSecurityDescriptorW + 1040 77DB3E1E 7 Bytes JMP 00BE0005
.text C:\Programme\Internet Explorer\iexplore.exe[3032] ADVAPI32.dll!ImpersonateSelf + 84 77DB45E9 7 Bytes JMP 00BA0005
.text C:\Programme\Internet Explorer\iexplore.exe[3032] ADVAPI32.dll!AccessCheckAndAuditAlarmW + 82 77DB4701 7 Bytes JMP 00B90005
.text C:\Programme\Internet Explorer\iexplore.exe[3032] ADVAPI32.dll!UnregisterTraceGuids + 3CE 77DC5AD3 7 Bytes JMP 00B30005
.text C:\Programme\Internet Explorer\iexplore.exe[3032] ADVAPI32.dll!WmiFreeBuffer + 2D 77DC849C 7 Bytes JMP 00B10005
.text C:\Programme\Internet Explorer\iexplore.exe[3032] ADVAPI32.dll!RegDeleteKeyA + 8D 77DCB74B 7 Bytes JMP 00BD0005
.text C:\Programme\Internet Explorer\iexplore.exe[3032] WININET.dll!GetUrlCacheHeaderData + 391E 7718AEE8 7 Bytes JMP 00EA0005
.text C:\Programme\Internet Explorer\iexplore.exe[3032] WININET.dll!InternetCloseHandle + 9FD 77195739 7 Bytes JMP 00E90005
.text C:\Programme\Internet Explorer\iexplore.exe[4256] ntdll.dll!NtCreateProcess 7C91D14E 2 Bytes [68, 0F]
.text C:\Programme\Internet Explorer\iexplore.exe[4256] ntdll.dll!NtCreateProcess + 3 7C91D151 1 Byte [EB]
.text C:\Programme\Internet Explorer\iexplore.exe[4256] ntdll.dll!NtCreateProcess + 3 7C91D151 3 Bytes [EB, 00, C3] {JMP 0x2; RET }
.text C:\Programme\Internet Explorer\iexplore.exe[4256] ntdll.dll!NtCreateProcessEx 7C91D15E 2 Bytes [68, 0F]
.text C:\Programme\Internet Explorer\iexplore.exe[4256] ntdll.dll!NtCreateProcessEx + 3 7C91D161 1 Byte [EC]
.text C:\Programme\Internet Explorer\iexplore.exe[4256] ntdll.dll!NtCreateProcessEx + 3 7C91D161 3 Bytes [EC, 00, C3] {IN AL, DX; ADD BL, AL}
.text C:\Programme\Internet Explorer\iexplore.exe[4256] ntdll.dll!RtlCreateUserProcess 7C940C29 6 Bytes PUSH 00ED000C; RET
.text C:\Programme\Internet Explorer\iexplore.exe[4256] USER32.dll!GetProcessWindowStation + 2C 77D191C1 7 Bytes JMP 00C60005
.text C:\Programme\Internet Explorer\iexplore.exe[4256] USER32.dll!GetShellWindow + 44 77D19296 7 Bytes JMP 00C80005
.text C:\Programme\Internet Explorer\iexplore.exe[4256] USER32.dll!PtInRect + 30 77D1BD71 7 Bytes JMP 00C30005
.text C:\Programme\Internet Explorer\iexplore.exe[4256] USER32.dll!GetMessagePos 77D1BF94 6 Bytes PUSH 00C2000C; RET
.text C:\Programme\Internet Explorer\iexplore.exe[4256] USER32.dll!UnionRect + 24A 77D1C967 7 Bytes JMP 00C70005
.text C:\Programme\Internet Explorer\iexplore.exe[4256] USER32.dll!LoadStringA + 55 77D2103D 7 Bytes JMP 00C50005
.text C:\Programme\Internet Explorer\iexplore.exe[4256] USER32.dll!CreateDialogIndirectParamA + 555 77D3A055 7 Bytes JMP 00AE0005
.text C:\Programme\Internet Explorer\iexplore.exe[4256] USER32.dll!GetMenuCheckMarkDimensions + 4EC 77D504E5 7 Bytes JMP 00AA0005
.text C:\Programme\Internet Explorer\iexplore.exe[4256] USER32.dll!MessageBoxA + 49 77D50533 7 Bytes JMP 00AD0005
.text C:\Programme\Internet Explorer\iexplore.exe[4256] USER32.dll!MessageBoxExW + 1F 77D50557 7 Bytes JMP 00AC0005
.text C:\Programme\Internet Explorer\iexplore.exe[4256] USER32.dll!RegisterSystemThread + 16 77D55E46 7 Bytes JMP 00C40005
.text C:\Programme\Internet Explorer\iexplore.exe[4256] USER32.dll!MessageBoxTimeoutA + CA 77D6608E 7 Bytes JMP 00AF0005
.text C:\Programme\Internet Explorer\iexplore.exe[4256] USER32.dll!MessageBoxIndirectW + 5A 77D660ED 7 Bytes JMP 00AB0005
.text C:\Programme\Internet Explorer\iexplore.exe[4256] USER32.dll!GetCursorInfo 77D6C786 4 Bytes [68, 0F, 00, C1]
.text C:\Programme\Internet Explorer\iexplore.exe[4256] USER32.dll!GetCursorInfo + 5 77D6C78B 1 Byte [C3]
.text C:\Programme\Internet Explorer\iexplore.exe[4256] ADVAPI32.dll!ElfFlushEventLog 77DA6A8A 7 Bytes JMP 00B80005
.text C:\Programme\Internet Explorer\iexplore.exe[4256] ADVAPI32.dll!RegOpenKeyExW + 173 77DA6C02 7 Bytes JMP 00B00005
.text C:\Programme\Internet Explorer\iexplore.exe[4256] ADVAPI32.dll!RegCloseKey + 3D3 77DA6FDA 2 Bytes JMP 00C00005
.text C:\Programme\Internet Explorer\iexplore.exe[4256] ADVAPI32.dll!RegCloseKey + 3D6 77DA6FDD 4 Bytes [E5, 88, EB, F9] {IN EAX, 0x88; JMP 0xfffffffd}
.text C:\Programme\Internet Explorer\iexplore.exe[4256] ADVAPI32.dll!GetSecurityDescriptorLength + 2AC 77DA7747 7 Bytes JMP 00BC0005
.text C:\Programme\Internet Explorer\iexplore.exe[4256] ADVAPI32.dll!RegCreateKeyExW + E1 77DA782D 7 Bytes JMP 00B70005
.text C:\Programme\Internet Explorer\iexplore.exe[4256] ADVAPI32.dll!RegOpenKeyExA + EF 77DA7921 7 Bytes JMP 00B60005
.text C:\Programme\Internet Explorer\iexplore.exe[4256] ADVAPI32.dll!SetSecurityDescriptorDacl + CB 77DA7A96 7 Bytes JMP 00BF0005
.text C:\Programme\Internet Explorer\iexplore.exe[4256] ADVAPI32.dll!RegQueryValueExA + 119 77DA7BB4 7 Bytes JMP 00B20005
.text C:\Programme\Internet Explorer\iexplore.exe[4256] ADVAPI32.dll!GetLengthSid + 18C 77DA7EC8 7 Bytes JMP 00B40005
.text C:\Programme\Internet Explorer\iexplore.exe[4256] ADVAPI32.dll!RegNotifyChangeKeyValue + 1031 77DAE82F 7 Bytes JMP 00BB0005
.text C:\Programme\Internet Explorer\iexplore.exe[4256] ADVAPI32.dll!RegDeleteValueW + 1D2 77DAEE03 7 Bytes JMP 00B50005
.text C:\Programme\Internet Explorer\iexplore.exe[4256] ADVAPI32.dll!ConvertStringSecurityDescriptorToSecurityDescriptorW + 1040 77DB3E1E 7 Bytes JMP 00BE0005
.text C:\Programme\Internet Explorer\iexplore.exe[4256] ADVAPI32.dll!ImpersonateSelf + 84 77DB45E9 7 Bytes JMP 00BA0005
.text C:\Programme\Internet Explorer\iexplore.exe[4256] ADVAPI32.dll!AccessCheckAndAuditAlarmW + 82 77DB4701 7 Bytes JMP 00B90005
.text C:\Programme\Internet Explorer\iexplore.exe[4256] ADVAPI32.dll!UnregisterTraceGuids + 3CE 77DC5AD3 7 Bytes JMP 00B30005
.text C:\Programme\Internet Explorer\iexplore.exe[4256] ADVAPI32.dll!WmiFreeBuffer + 2D 77DC849C 7 Bytes JMP 00B10005
.text C:\Programme\Internet Explorer\iexplore.exe[4256] ADVAPI32.dll!RegDeleteKeyA + 8D 77DCB74B 7 Bytes JMP 00BD0005
.text C:\Programme\Internet Explorer\iexplore.exe[4256] WININET.dll!GetUrlCacheHeaderData + 391E 7718AEE8 7 Bytes JMP 00EA0005
.text C:\Programme\Internet Explorer\iexplore.exe[4256] WININET.dll!InternetCloseHandle + 9FD 77195739 7 Bytes JMP 00E90005
.text C:\Programme\Internet Explorer\iexplore.exe[5608] ntdll.dll!NtCreateProcess 7C91D14E 2 Bytes [68, 0F]
.text C:\Programme\Internet Explorer\iexplore.exe[5608] ntdll.dll!NtCreateProcess + 3 7C91D151 1 Byte [EB]
.text C:\Programme\Internet Explorer\iexplore.exe[5608] ntdll.dll!NtCreateProcess + 3 7C91D151 3 Bytes [EB, 00, C3] {JMP 0x2; RET }
.text C:\Programme\Internet Explorer\iexplore.exe[5608] ntdll.dll!NtCreateProcessEx 7C91D15E 2 Bytes [68, 0F]
.text C:\Programme\Internet Explorer\iexplore.exe[5608] ntdll.dll!NtCreateProcessEx + 3 7C91D161 1 Byte [EC]
.text C:\Programme\Internet Explorer\iexplore.exe[5608] ntdll.dll!NtCreateProcessEx + 3 7C91D161 3 Bytes [EC, 00, C3] {IN AL, DX; ADD BL, AL}
.text C:\Programme\Internet Explorer\iexplore.exe[5608] ntdll.dll!RtlCreateUserProcess 7C940C29 6 Bytes PUSH 00ED000C; RET
.text C:\Programme\Internet Explorer\iexplore.exe[5608] USER32.dll!GetProcessWindowStation + 2C 77D191C1 7 Bytes JMP 00C60005
.text C:\Programme\Internet Explorer\iexplore.exe[5608] USER32.dll!GetShellWindow + 44 77D19296 7 Bytes JMP 00C80005
.text C:\Programme\Internet Explorer\iexplore.exe[5608] USER32.dll!PtInRect + 30 77D1BD71 7 Bytes JMP 00C30005
.text C:\Programme\Internet Explorer\iexplore.exe[5608] USER32.dll!GetMessagePos 77D1BF94 6 Bytes PUSH 00C2000C; RET
.text C:\Programme\Internet Explorer\iexplore.exe[5608] USER32.dll!UnionRect + 24A 77D1C967 7 Bytes JMP 00C70005
.text C:\Programme\Internet Explorer\iexplore.exe[5608] USER32.dll!LoadStringA + 55 77D2103D 7 Bytes JMP 00C50005
.text C:\Programme\Internet Explorer\iexplore.exe[5608] USER32.dll!CreateDialogIndirectParamA + 555 77D3A055 7 Bytes JMP 00AE0005
.text C:\Programme\Internet Explorer\iexplore.exe[5608] USER32.dll!GetMenuCheckMarkDimensions + 4EC 77D504E5 7 Bytes JMP 00AA0005
.text C:\Programme\Internet Explorer\iexplore.exe[5608] USER32.dll!MessageBoxA + 49 77D50533 7 Bytes JMP 00AD0005
.text C:\Programme\Internet Explorer\iexplore.exe[5608] USER32.dll!MessageBoxExW + 1F 77D50557 7 Bytes JMP 00AC0005
.text C:\Programme\Internet Explorer\iexplore.exe[5608] USER32.dll!RegisterSystemThread + 16 77D55E46 7 Bytes JMP 00C40005
.text C:\Programme\Internet Explorer\iexplore.exe[5608] USER32.dll!MessageBoxTimeoutA + CA 77D6608E 7 Bytes JMP 00AF0005
.text C:\Programme\Internet Explorer\iexplore.exe[5608] USER32.dll!MessageBoxIndirectW + 5A 77D660ED 7 Bytes JMP 00AB0005
.text C:\Programme\Internet Explorer\iexplore.exe[5608] USER32.dll!GetCursorInfo 77D6C786 4 Bytes [68, 0F, 00, C1]
.text C:\Programme\Internet Explorer\iexplore.exe[5608] USER32.dll!GetCursorInfo + 5 77D6C78B 1 Byte [C3]
.text C:\Programme\Internet Explorer\iexplore.exe[5608] ADVAPI32.dll!ElfFlushEventLog 77DA6A8A 7 Bytes JMP 00B80005
.text C:\Programme\Internet Explorer\iexplore.exe[5608] ADVAPI32.dll!RegOpenKeyExW + 173 77DA6C02 7 Bytes JMP 00B00005
.text C:\Programme\Internet Explorer\iexplore.exe[5608] ADVAPI32.dll!RegCloseKey + 3D3 77DA6FDA 2 Bytes JMP 00C00005
.text C:\Programme\Internet Explorer\iexplore.exe[5608] ADVAPI32.dll!RegCloseKey + 3D6 77DA6FDD 4 Bytes [E5, 88, EB, F9] {IN EAX, 0x88; JMP 0xfffffffd}
.text C:\Programme\Internet Explorer\iexplore.exe[5608] ADVAPI32.dll!GetSecurityDescriptorLength + 2AC 77DA7747 7 Bytes JMP 00BC0005
.text C:\Programme\Internet Explorer\iexplore.exe[5608] ADVAPI32.dll!RegCreateKeyExW + E1 77DA782D 7 Bytes JMP 00B70005
.text C:\Programme\Internet Explorer\iexplore.exe[5608] ADVAPI32.dll!RegOpenKeyExA + EF 77DA7921 7 Bytes JMP 00B60005
.text C:\Programme\Internet Explorer\iexplore.exe[5608] ADVAPI32.dll!SetSecurityDescriptorDacl + CB 77DA7A96 7 Bytes JMP 00BF0005
.text C:\Programme\Internet Explorer\iexplore.exe[5608] ADVAPI32.dll!RegQueryValueExA + 119 77DA7BB4 7 Bytes JMP 00B20005
.text C:\Programme\Internet Explorer\iexplore.exe[5608] ADVAPI32.dll!GetLengthSid + 18C 77DA7EC8 7 Bytes JMP 00B40005
.text C:\Programme\Internet Explorer\iexplore.exe[5608] ADVAPI32.dll!RegNotifyChangeKeyValue + 1031 77DAE82F 7 Bytes JMP 00BB0005
.text C:\Programme\Internet Explorer\iexplore.exe[5608] ADVAPI32.dll!RegDeleteValueW + 1D2 77DAEE03 7 Bytes JMP 00B50005
.text C:\Programme\Internet Explorer\iexplore.exe[5608] ADVAPI32.dll!ConvertStringSecurityDescriptorToSecurityDescriptorW + 1040 77DB3E1E 7 Bytes JMP 00BE0005
.text C:\Programme\Internet Explorer\iexplore.exe[5608] ADVAPI32.dll!ImpersonateSelf + 84 77DB45E9 7 Bytes JMP 00BA0005
.text C:\Programme\Internet Explorer\iexplore.exe[5608] ADVAPI32.dll!AccessCheckAndAuditAlarmW + 82 77DB4701 7 Bytes JMP 00B90005
.text C:\Programme\Internet Explorer\iexplore.exe[5608] ADVAPI32.dll!UnregisterTraceGuids + 3CE 77DC5AD3 7 Bytes JMP 00B30005
.text C:\Programme\Internet Explorer\iexplore.exe[5608] ADVAPI32.dll!WmiFreeBuffer + 2D 77DC849C 7 Bytes JMP 00B10005
.text C:\Programme\Internet Explorer\iexplore.exe[5608] ADVAPI32.dll!RegDeleteKeyA + 8D 77DCB74B 7 Bytes JMP 00BD0005
.text C:\Programme\Internet Explorer\iexplore.exe[5608] WININET.dll!GetUrlCacheHeaderData + 391E 7718AEE8 7 Bytes JMP 00EA0005
.text C:\Programme\Internet Explorer\iexplore.exe[5608] WININET.dll!InternetCloseHandle + 9FD 77195739 7 Bytes JMP 00E90005

---- Devices - GMER 2.1 ----

AttachedDevice \Driver\Tcpip \Device\Ip avgtdix.sys

Device \Driver\ACPI \Device\00000040 ntkrnlpa.exe
Device \Driver\ACPI \Device\00000041 ntkrnlpa.exe
Device \Driver\ACPI \Device\00000042 ntkrnlpa.exe
Device \Driver\ACPI \Device\00000050 ntkrnlpa.exe
Device \Driver\ACPI \Device\00000043 ntkrnlpa.exe
Device \Driver\ACPI \Device\00000051 ntkrnlpa.exe
Device \Driver\ACPI \Device\00000055 ntkrnlpa.exe
Device \Driver\ACPI \Device\00000048 ntkrnlpa.exe

AttachedDevice \Driver\Tcpip \Device\Tcp avgtdix.sys

Device \Driver\ACPI \Device\00000062 ntkrnlpa.exe
Device \Driver\ACPI \Device\00000056 ntkrnlpa.exe
Device \Driver\ACPI \Device\00000049 ntkrnlpa.exe
Device \Driver\ACPI \Device\00000058 ntkrnlpa.exe
Device \Driver\ACPI \Device\00000064 ntkrnlpa.exe
Device \Driver\ACPI \Device\00000059 ntkrnlpa.exe
Device \Driver\ACPI \Device\00000065 ntkrnlpa.exe
Device \Driver\ACPI \Device\00000080 ntkrnlpa.exe
Device \Driver\ACPI \Device\0000003c ntkrnlpa.exe
Device \Driver\ACPI \Device\00000082 ntkrnlpa.exe
Device \Driver\ACPI \Device\00000076 ntkrnlpa.exe
Device \Driver\ACPI \Device\00000077 ntkrnlpa.exe
Device \Driver\ACPI \Device\0000004a ntkrnlpa.exe
Device \Driver\ACPI \Device\0000003e ntkrnlpa.exe
Device \Driver\ACPI \Device\00000084 ntkrnlpa.exe
Device \Driver\ACPI \Device\0000003f ntkrnlpa.exe
Device \Driver\ACPI \Device\0000004b ntkrnlpa.exe
Device \Driver\ACPI \Device\0000004c ntkrnlpa.exe
Device \Driver\ACPI \Device\0000005a ntkrnlpa.exe
Device \Driver\ACPI \Device\0000004d ntkrnlpa.exe
Device \Driver\ACPI \Device\00000087 ntkrnlpa.exe
Device \Driver\ACPI \Device\0000004f ntkrnlpa.exe

AttachedDevice \Driver\Tcpip \Device\Udp avgtdix.sys
AttachedDevice \Driver\Tcpip \Device\RawIp avgtdix.sys

Device \Driver\ACPI \Device\0000007c ntkrnlpa.exe
Device \Driver\ACPI \Device\0000007e ntkrnlpa.exe

---- Registry - GMER 2.1 ----

Reg HKLM\SYSTEM\CurrentControlSet\Services\BTHPORT\Parameters\Keys\001a6bffac45
Reg HKLM\SYSTEM\ControlSet002\Services\BTHPORT\Parameters\Keys\001a6bffac45 (not active ControlSet)
Reg HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Group Policy\State\Machine\Extension-List\{00000000-0000-0000-0000-000000000000}@StartTimeLo 772004732
Reg HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Group Policy\State\Machine\Extension-List\{00000000-0000-0000-0000-000000000000}@StartTimeHi 30381408
Reg HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Group Policy\State\Machine\Extension-List\{00000000-0000-0000-0000-000000000000}@EndTimeLo 772004732
Reg HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Group Policy\State\Machine\Extension-List\{00000000-0000-0000-0000-000000000000}@EndTimeHi 30381408
Reg HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Group Policy\State\S-1-5-21-790525478-115176313-725345543-1003\Extension-List\{00000000-0000-0000-0000-000000000000}@StartTimeLo 772004732
Reg HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Group Policy\State\S-1-5-21-790525478-115176313-725345543-1003\Extension-List\{00000000-0000-0000-0000-000000000000}@StartTimeHi 30381408
Reg HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Group Policy\State\S-1-5-21-790525478-115176313-725345543-1003\Extension-List\{00000000-0000-0000-0000-000000000000}@EndTimeLo 772004732
Reg HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Group Policy\State\S-1-5-21-790525478-115176313-725345543-1003\Extension-List\{00000000-0000-0000-0000-000000000000}@EndTimeHi 30381408
Reg HKLM\SOFTWARE\Classes\CLSID\{A5246BC4-2C0E-7426-4150-BDCF61960FDE}\eeyvn@ ZNUo_^VWf[_xiiffGt
Reg HKLM\SOFTWARE\Classes\CLSID\{A5246BC4-2C0E-7426-4150-BDCF61960FDE}\egbEdkhznc@ GJDhuDwaT@of]Svu
Reg HKLM\SOFTWARE\Classes\CLSID\{A5246BC4-2C0E-7426-4150-BDCF61960FDE}\rnogImjFOdp@ S?TMR~dQkVk

---- EOF - GMER 2.1 ----

Ich hoffe man kann mir weiter helfen. Falls ich etwas vergessen oder falsch gemacht habe, werde ich es sofort korrigieren, wenn ihr mir Bescheidgebt.
Ich bedanke mich bei allen Helfern, die sich die Zeit nehmen und mir versuchen zu helfen.

jona333

schrauber · 02.07.2014, 05:02

hi,

So funktioniert es:
Posten in CODE-Tags
Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR, 7Z-Archive zu packen erschwert mir massiv die Arbeit, es sei denn natürlich die Datei wäre ansonsten zu gross für das Forum. Um die Logfiles in eine CODE-Box zu stellen gehe so vor:

Markiere das gesamte Logfile (geht meist mit STRG+A) und kopiere es in die Zwischenablage mit STRG+C.
Klicke im Editor auf das #-Symbol. Es erscheinen zwei Klammerausdrücke [CODE] [/CODE].
Setze den Curser zwischen die CODE-Tags und drücke STRG+V.
Klicke auf Erweitert/Vorschau, um so prüfen, ob du es richtig gemacht hast. Wenn alles stimmt ... auf Antworten.

warum hat der Rechner seit mindestens 7 Jahren kein Windows Update bekommen???????

Scan mit Combofix

WARNUNG an die MITLESER:
Combofix sollte ausschließlich ausgeführt werden, wenn dies von einem Teammitglied angewiesen wurde!

Downloade dir bitte Combofix vom folgenden Downloadspiegel: Link

WICHTIG: Speichere Combofix auf deinem Desktop

Deaktiviere bitte alle deine Antivirensoftware sowie Malware/Spyware Scanner. Diese können Combofix bei der Arbeit stören.

Starte die Combofix.exe und folge den Anweisungen auf dem Bildschirm.

Combofix wird überprüfen, ob die Microsoft Windows Wiederherstellungskonsole installiert ist.
Ist diese nicht installiert, erlaube Combofix diese herunter zu laden und zu installieren. Folge dazu einfach den Anweisungen und aktzeptiere die Endbenutzer-Lizenz.
Bei heutiger Malware ist dies sehr empfehlenswert, da diese uns eine Möglichkeit bietet, dein System zu reparieren, falls etwas schief geht.
Bestätige die Information, dass die Wiederherstellungskonsole installiert wurde mit Ja.
Hinweis: Ist diese bereits installiert, wird Combofix mit der Malwareentfernung fortfahren.

Während Combofix läuft bitte nicht am Computer arbeiten, die Maus bewegen oder ins Combofixfenster klicken!

Wenn Combofix fertig ist, wird es eine Logfile erstellen.

Bitte poste die C:\Combofix.txt in deiner nächsten Antwort.

Hinweis: Solltest du nach dem Neustart folgende Fehlermeldung erhalten
Es wurde versucht, einen Registrierungsschlüssel einem ungültigen Vorgang zu unterziehen, der zum Löschen markiert wurde.
starte den Rechner einfach neu. Dies sollte das Problem beheben.

Jona333 · 02.07.2014, 13:14

Hallo,

am Anfang möcht ich mich für deine Mithilfe bedanken. Vielen Dank!

Eigentlich lud der Laptop des Öfteren vor dem Herunterfahren neue Updates herunter.

Ich habe combofix ausgeführt und alle Schritte befolgt. Jedoch zeigte mir der Laptop an, als die Logdaten gespeichert worden, dass nicht ausreichend Platz vorhanden sei bzw ein Softwarefehler besteht. Deswegen gehen weitere Daten verloren. Dann ist er abgestürzt und ich musste ihn neu starten.
Ob die Logdatei jetzt unvollständig ist bzw. fehlerhaft ist, weiß ich nicht. Ich werde sie trotzdem posten und hoffe das sie dir weiter hilft.
Mein Laptop läuft sehr langsam und ,,ruckelig".

Code:

ATTFilter

ComboFix 14-06-30.01 - User 02.07.2014  13:05:56.1.2 - x86
Microsoft Windows XP Professional  5.1.2600.2.1252.49.1031.18.2038.1453 [GMT 2:00]
ausgeführt von:: C:\Dokumente und Einstellungen\User\Eigene Dateien\Downloads\ComboFix.exe
AV: AVG update module *Enabled/Updated* {17DDD097-36FF-435F-9E1B-52D74245D6BF}
 * Neuer Wiederherstellungspunkt wurde erstellt


((((((((((((((((((((((((((((((((((((   Weitere Löschungen   ))))))))))))))))))))))))))))))))))))))))))))))))


C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\TEMP
C:\Dokumente und Einstellungen\User\WINDOWS
C:\WINDOWS\IsUn0407.exe
C:\WINDOWS\system32\Cache
C:\WINDOWS\system32\Cache\21ee2a1b314d2be3.fb
C:\WINDOWS\system32\Cache\26c630d098e22dd5.fb
C:\WINDOWS\system32\Cache\272512937d9e61a4.fb
C:\WINDOWS\system32\Cache\287204568329e189.fb
C:\WINDOWS\system32\Cache\28bc8f716fd76a47.fb
C:\WINDOWS\system32\Cache\2c53092c95605355.fb
C:\WINDOWS\system32\Cache\31a0997e9a5b5eb3.fb
C:\WINDOWS\system32\Cache\32c84fe32bb74d60.fb
C:\WINDOWS\system32\Cache\3917078cb68ec657.fb
C:\WINDOWS\system32\Cache\41359e2a3fbf0cde.fb
C:\WINDOWS\system32\Cache\4163e8db7c39680c.fb
C:\WINDOWS\system32\Cache\45dd71cfd54e0c5a.fb
C:\WINDOWS\system32\Cache\48591779ce2926df.fb
C:\WINDOWS\system32\Cache\4e678aa7aea8f85a.fb
C:\WINDOWS\system32\Cache\54087cf30f6f65a1.fb
C:\WINDOWS\system32\Cache\58d52bc7ec203eaf.fb
C:\WINDOWS\system32\Cache\590ba23ce359fd0c.fb
C:\WINDOWS\system32\Cache\610289e025a3ee9a.fb
C:\WINDOWS\system32\Cache\651c5d3cdbfb8bd1.fb
C:\WINDOWS\system32\Cache\6a4c2ed80798ab32.fb
C:\WINDOWS\system32\Cache\6c59ac5e7e7a3ad0.fb
C:\WINDOWS\system32\Cache\6d03dad1035885d3.fb
C:\WINDOWS\system32\Cache\727a587b67d80279.fb
C:\WINDOWS\system32\Cache\7359944110118c03.fb
C:\WINDOWS\system32\Cache\7f573c9a399f8001.fb
C:\WINDOWS\system32\Cache\8782c70d137d34eb.fb
C:\WINDOWS\system32\Cache\95f567698be8a182.fb
C:\WINDOWS\system32\Cache\a0372ad5faf93bd6.fb
C:\WINDOWS\system32\Cache\a8556537add6dfc5.fb
C:\WINDOWS\system32\Cache\ad10a52aff5e038d.fb
C:\WINDOWS\system32\Cache\b108acd423da9d04.fb
C:\WINDOWS\system32\Cache\b4930112ccf9ede4.fb
C:\WINDOWS\system32\Cache\c1fa887b03019701.fb
C:\WINDOWS\system32\Cache\c4d28dca2e7648be.fb
C:\WINDOWS\system32\Cache\cde33f164a3f4ce9.fb
C:\WINDOWS\system32\Cache\d201ef9910cd39de.fb
C:\WINDOWS\system32\Cache\d2e94710a5708128.fb
C:\WINDOWS\system32\Cache\d79b9dfe81484ec4.fb
C:\WINDOWS\system32\Cache\e0de16f883bea794.fb
C:\WINDOWS\system32\Cache\e6364fbc38fa3772.fb
C:\WINDOWS\system32\Cache\ebcf1958ec9cecb6.fb
C:\WINDOWS\system32\Cache\f998975c9cc711ee.fb
C:\WINDOWS\unin0407.exe


(((((((((((((((((((((((((((((((((((((((   Treiber/Dienste   )))))))))))))))))))))))))))))))))))))))))))))))))
.

-------\Legacy_AMSERVICE
-------\Service_AMService


(((((((((((((((((((((((   Dateien erstellt von 2014-06-02 bis 2014-07-02  ))))))))))))))))))))))))))))))


2014-07-01 20:23:49 . 2014-07-01 21:21:26	--------	d-----w-	C:\FRST
2014-06-19 20:43:20 . 2014-04-11 08:39:22	184192	----a-w-	C:\WINDOWS\system32\drivers\ssudmdm.sys
2014-06-19 20:43:19 . 2014-04-11 08:39:22	89856	----a-w-	C:\WINDOWS\system32\drivers\ssudbus.sys
.


((((((((((((((((((((((((((((((((((((   Find3M Bericht   ))))))))))))))))))))))))))))))))))))))))))))))))))))))

2014-06-23 16:10:15 . 2012-11-12 17:29:36	42784	----a-w-	C:\WINDOWS\system32\drivers\avgtpx86.sys
2014-05-13 12:19:14 . 2011-07-10 23:13:46	192280	----a-w-	C:\WINDOWS\system32\drivers\avgldx86.sys
2014-05-13 12:17:24 . 2013-10-31 20:30:08	237848	----a-w-	C:\WINDOWS\system32\drivers\avglogx.sys
2014-05-13 12:17:22 . 2013-11-25 19:49:18	122136	----a-w-	C:\WINDOWS\system32\drivers\avgdiskx.sys
2014-05-13 12:17:22 . 2011-07-10 23:14:38	210200	----a-w-	C:\WINDOWS\system32\drivers\avgtdix.sys
2014-05-13 12:17:20 . 2012-04-19 02:50:26	149784	----a-w-	C:\WINDOWS\system32\drivers\avgidshx.sys
2014-05-13 12:17:20 . 2011-08-08 04:08:58	107288	----a-w-	C:\WINDOWS\system32\drivers\avgmfx86.sys
2014-05-13 12:09:12 . 2011-12-23 11:32:00	198936	----a-w-	C:\WINDOWS\system32\drivers\avgidsdriverx.sys
2014-05-13 12:04:36 . 2011-09-13 04:30:10	27416	----a-w-	C:\WINDOWS\system32\drivers\avgrkx86.sys
2014-05-13 12:04:34 . 2011-12-23 11:32:08	21272	----a-w-	C:\WINDOWS\system32\drivers\avgidsshimx.sys


((((((((((((((((((((((((((((   Autostartpunkte der Registrierung   ))))))))))))))))))))))))))))))))))))))))


*Hinweis* leere Einträge & legitime Standardeinträge werden nicht angezeigt. 
REGEDIT4

[HKEY_LOCAL_MACHINE\SOFTWARE\~\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}]
2014-06-23 16:10:15	3584024	----a-w-	C:\Programme\AVG Secure Search\18.1.7.644\AVG Secure Search_toolbar.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
"{95B7759C-8C7F-4BF1-B163-73684A933233}"= "C:\Programme\AVG Secure Search\18.1.7.644\AVG Secure Search_toolbar.dll" [2014-06-23 16:10:15 3584024]

[HKEY_CLASSES_ROOT\clsid\{95b7759c-8c7f-4bf1-b163-73684a933233}]
[HKEY_CLASSES_ROOT\AVG Secure Search.PugiObj.1]
[HKEY_CLASSES_ROOT\AVG Secure Search.PugiObj]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt1]
@="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}]
2013-09-10 23:54:20	131248	----a-w-	C:\Dokumente und Einstellungen\User\Anwendungsdaten\Dropbox\bin\DropboxExt.22.dll

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt2]
@="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}]
2013-09-10 23:54:20	131248	----a-w-	C:\Dokumente und Einstellungen\User\Anwendungsdaten\Dropbox\bin\DropboxExt.22.dll

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt3]
@="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}]
2013-09-10 23:54:20	131248	----a-w-	C:\Dokumente und Einstellungen\User\Anwendungsdaten\Dropbox\bin\DropboxExt.22.dll

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt4]
@="{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}]
2013-09-10 23:54:20	131248	----a-w-	C:\Dokumente und Einstellungen\User\Anwendungsdaten\Dropbox\bin\DropboxExt.22.dll

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Spotify"="C:\Dokumente und Einstellungen\User\Anwendungsdaten\Spotify\Spotify.exe" [2014-06-27 09:45:07 6189624]
"Spotify Web Helper"="C:\Dokumente und Einstellungen\User\Anwendungsdaten\Spotify\Data\SpotifyWebHelper.exe" [2014-06-27 09:44:45 1176632]
"KiesPreload"="C:\Programme\Samsung\Kies\Kies.exe" [2014-02-14 20:55:18 1564992]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"="C:\WINDOWS\system32\igfxtray.exe" [2007-03-30 18:00:02 138008]
"HotKeysCmds"="C:\WINDOWS\system32\hkcmd.exe" [2007-03-30 18:00:16 162584]
"Persistence"="C:\WINDOWS\system32\igfxpers.exe" [2007-03-30 17:59:36 138008]
"SigmatelSysTrayApp"="C:\Programme\SigmaTel\C-Major Audio\WDM\stsystra.exe" [2007-05-10 08:22:32 405504]
"Broadcom Wireless Manager UI"="C:\WINDOWS\system32\WLTRAY.exe" [2009-10-07 13:01:36 2498560]
"Apoint"="C:\Programme\Apoint\Apoint.exe" [2005-10-07 12:13:38 176128]
"BluetoothAuthenticationAgent"="bthprops.cpl" [2006-06-01 19:06:00 110592]
"vProt"="C:\Programme\AVG Secure Search\vprot.exe" [2014-06-23 16:10:15 2571288]
"SunJavaUpdateSched"="C:\Programme\Gemeinsame Dateien\Java\Java Update\jusched.exe" [2010-05-14 10:44:46 248552]
"FreePDF Assistant"="C:\Programme\FreePDF_XP\fpassist.exe" [2013-03-14 18:57:32 373760]
"Adobe Reader Speed Launcher"="C:\Programme\Adobe\Reader 8.0\Reader\Reader_sl.exe" [2009-12-18 06:58:00 40368]
"Adobe ARM"="C:\Programme\Gemeinsame Dateien\Adobe\ARM\1.0\AdobeARM.exe" [2010-09-21 18:37:40 932288]
"KiesTrayAgent"="C:\Programme\Samsung\Kies\KiesTrayAgent.exe" [2014-02-14 20:55:24 311616]
"AVG_UI"="C:\Programme\AVG\AVG2014\avgui.exe" [2014-05-13 12:18:32 5181456]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="C:\WINDOWS\system32\CTFMON.EXE" [2006-06-01 19:06:00 15360]

C:\Dokumente und Einstellungen\User\Startmenü\Programme\Autostart\
Dropbox.lnk - C:\Dokumente und Einstellungen\User\Anwendungsdaten\Dropbox\bin\Dropbox.exe /systemstartup [2014-5-20 33322312]
OpenOffice.org 3.3.lnk - C:\Programme\OpenOffice.org 3\program\quickstart.exe [2010-12-13 1198592]

C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Autostart\
Digital Line Detect.lnk - C:\Programme\Digital Line Detect\DLG.exe [2011-7-20 24576]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
BootExecute	REG_MULTI_SZ   	autocheck autochk *\0C:\PROGRA~1\AVG\AVG2014\avgrsx.exe /sync /restart

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"C:\\Dokumente und Einstellungen\\User\\Anwendungsdaten\\Spotify\\spotify.exe"=

R0 AVGIDSHX;AVGIDSHX;C:\WINDOWS\system32\drivers\avgidshx.sys [19.04.2012 04:50:26 149784]
R0 Avglogx;AVG Logging Driver;C:\WINDOWS\system32\drivers\avglogx.sys [31.10.2013 22:30:08 237848]
R0 Avgrkx86;AVG Anti-Rootkit Driver;C:\WINDOWS\system32\drivers\avgrkx86.sys [13.09.2011 06:30:10 27416]
R1 Avgdiskx;AVG Disk Driver;C:\WINDOWS\system32\drivers\avgdiskx.sys [25.11.2013 21:49:18 122136]
R1 AVGIDSDriver;AVGIDSDriver;C:\WINDOWS\system32\drivers\avgidsdriverx.sys [23.12.2011 13:32:00 198936]
R1 AVGIDSShim;AVGIDSShim;C:\WINDOWS\system32\drivers\avgidsshimx.sys [23.12.2011 13:32:08 21272]
R1 Avgldx86;AVG AVI Loader Driver;C:\WINDOWS\system32\drivers\avgldx86.sys [11.07.2011 01:13:46 192280]
R1 Avgtdix;AVG TDI Driver;C:\WINDOWS\system32\drivers\avgtdix.sys [11.07.2011 01:14:38 210200]
R1 avgtp;avgtp;C:\WINDOWS\system32\drivers\avgtpx86.sys [12.11.2012 19:29:36 42784]
R2 AVGIDSAgent;AVGIDSAgent;C:\Programme\AVG\AVG2014\avgidsagent.exe [13.05.2014 14:23:04 3644432]
R2 avgwd;AVG WatchDog;C:\Programme\AVG\AVG2014\avgwdsvc.exe [13.05.2014 14:15:28 292424]
R2 vToolbarUpdater18.1.7;vToolbarUpdater18.1.7;C:\Programme\Gemeinsame Dateien\AVG Secure Search\vToolbarUpdater\18.1.7\ToolbarUpdater.exe [23.06.2014 18:10:32 1813528]
S3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.);C:\WINDOWS\system32\drivers\ssudbus.sys [19.06.2014 22:43:19 89856]
S3 dgderdrv;dgderdrv;C:\WINDOWS\system32\drivers\dgderdrv.sys [18.03.2014 19:36:37 20032]
S3 ssudmdm;SAMSUNG  Mobile USB Modem Drivers (DEVGURU Ver.);C:\WINDOWS\system32\drivers\ssudmdm.sys [19.06.2014 22:43:20 184192]

--- Andere Dienste/Treiber im Speicher ---

*NewlyCreated* - WS2IFSL

Inhalt des "geplante Tasks" Ordners

2014-04-11 C:\WINDOWS\Tasks\1-Klick-Wartung.job
- C:\Programme\TuneUpUtilities2006\SystemOptimizer.exe [2005-08-24 00:29:46 . 2005-08-24 00:29:46]


------- Zusätzlicher Suchlauf -------

IE: Nach Microsoft E&xel exportieren - C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
TCP: DhcpNameServer = 192.168.0.1
Handler: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - C:\Programme\Gemeinsame Dateien\AVG Secure Search\ViProtocolInstaller\18.1.7\ViProtocol.dll
FF - ProfilePath - C:\Dokumente und Einstellungen\User\Anwendungsdaten\Mozilla\Firefox\Profiles\14poc7dh.default\
FF - prefs.js: browser.startup.homepage - hxxp://www.google.de/
FF - user.js: network.cookie.cookieBehavior - 0
FF - user.js: privacy.clearOnShutdown.cookies - false
FF - user.js: security.warn_viewing_mixed - false
FF - user.js: security.warn_viewing_mixed.show_once - false
FF - user.js: security.warn_submit_insecure - false
FF - user.js: security.warn_submit_insecure.show_once - false

- - - - Entfernte verwaiste Registrierungseinträge - - - -

HKCU-Run-KiesAirMessage - C:\Programme\Samsung\Kies\KiesAirMessage.exe
AddRemove-01_Simmental - C:\Programme\Samsung\USB Drivers\01_Simmental\Uninstall.exe
AddRemove-02_Siberian - C:\Programme\Samsung\USB Drivers\02_Siberian\Uninstall.exe
AddRemove-03_Swallowtail - C:\Programme\Samsung\USB Drivers\03_Swallowtail\Uninstall.exe
AddRemove-04_semseyite - C:\Programme\Samsung\USB Drivers\04_semseyite\Uninstall.exe
AddRemove-07_Schorl - C:\Programme\Samsung\USB Drivers\07_Schorl\Uninstall.exe
AddRemove-09_Hsp - C:\Programme\Samsung\USB Drivers\09_Hsp\Uninstall.exe
AddRemove-11_HSP_Plus_Default - C:\Programme\Samsung\USB Drivers\11_HSP_Plus_Default\Uninstall.exe
AddRemove-16_Shrewsbury - C:\Programme\Samsung\USB Drivers\16_Shrewsbury\Uninstall.exe
AddRemove-20_NXP_Driver - C:\Programme\Samsung\USB Drivers\20_NXP_Driver\Uninstall.exe
AddRemove-24_flashusbdriver - C:\Programme\Samsung\USB Drivers\24_flashusbdriver\Uninstall.exe
AddRemove-25_escape - C:\Programme\Samsung\USB Drivers\25_escape\Uninstall.exe

Soll ich die anderen Logfiles nochmals posten mit der Anleitung, die du mir gegeben hast(also mit :[CODE][CODE])

schrauber · 03.07.2014, 11:36

nee passt

Downloade Dir bitte

Malwarebytes Anti-Malware

Installiere das Programm in den vorgegebenen Pfad. (Bebilderte Anleitung zu MBAM)
Starte Malwarebytes' Anti-Malware (MBAM).
Klicke im Anschluss auf Scannen, wähle den Bedrohungssuchlauf aus und klicke auf Suchlauf starten.
Lass am Ende des Suchlaufs alle Funde (falls vorhanden) in die Quarantäne verschieben. Klicke dazu auf Auswahl entfernen.
Lass deinen Rechner ggf. neu starten, um die Bereinigung abzuschließen.
Starte MBAM, klicke auf Verlauf und dann auf Anwendungsprotokolle.
Wähle das neueste Scan-Protokoll aus und klicke auf Export. Wähle Textdatei (.txt) aus und speichere die Datei als mbam.txt auf dem Desktop ab. Das Logfile von MBAM findest du hier.
Füge den Inhalt der mbam.txt mit deiner nächsten Antwort hinzu.

Downloade Dir bitte

AdwCleaner auf deinen Desktop.

Schließe alle offenen Programme und Browser. Bebilderte Anleitung zu AdwCleaner.
Starte die AdwCleaner.exe mit einem Doppelklick.
Stimme den Nutzungsbedingungen zu.
Klicke auf Optionen und vergewissere dich, dass die folgenden Punkte ausgewählt sind:
- "Tracing" Schlüssel löschen
- Winsock Einstellungen zurücksetzen
- Proxy Einstellungen zurücksetzen
- Internet Explorer Richtlinien zurücksetzen
- Chrome Richtlinien zurücksetzen
- Stelle sicher, dass alle 5 Optionen wie hier dargestellt, ausgewählt sind
Klicke auf Suchlauf und warte bis dieser abgeschlossen ist.
Klicke nun auf Löschen und bestätige auftretende Hinweise mit Ok.
Dein Rechner wird automatisch neu gestartet. Nach dem Neustart öffnet sich eine Textdatei. Poste mir deren Inhalt mit deiner nächsten Antwort.
Die Logdatei findest du auch unter C:\AdwCleaner\AdwCleaner[Cx].txt. (x = fortlaufende Nummer).

Beende bitte Deine Schutzsoftware um eventuelle Konflikte zu vermeiden.
Bitte lade Junkware Removal Tool auf Deinen Desktop

Starte das Tool mit Doppelklick. Ab Windows Vista (oder höher) bitte mit Rechtsklick "als Administrator ausführen" starten.
Drücke eine beliebige Taste, um das Tool zu starten.
Je nach System kann der Scan eine Weile dauern.
Wenn das Tool fertig ist wird das Logfile (JRT.txt) auf dem Desktop gespeichert und automatisch geöffnet.
Bitte poste den Inhalt der JRT.txt in Deiner nächsten Antwort.

und ein frisches FRST log bitte.

Jona333 · 04.07.2014, 12:16

ich bin dir so unglaublich dankbar, dass du dich in deiner Freizeit mit den Problemen Anderer auseinandersetzt.

ok hier die angeforderten Daten:

mbam-Datei:

Code:

ATTFilter

 Malwarebytes Anti-Malware 
www.malwarebytes.org

Suchlauf Datum: 03.07.2014
Suchlauf-Zeit: 23:58:09
Logdatei: mbam.txt
Administrator: Ja

Version: 2.00.2.1012
Malware Datenbank: v2014.07.03.06
Rootkit Datenbank: v2014.07.03.01
Lizenz: Kostenlos
Malware Schutz: Deaktiviert
Bösartiger Webseiten Schutz: Deaktiviert
Self-protection: Deaktiviert

Betriebssystem: Windows XP Service Pack 2
CPU: x86
Dateisystem: NTFS
Benutzer: User

Suchlauf-Art: Bedrohungs-Suchlauf
Ergebnis: Abgeschlossen
Durchsuchte Objekte: 279415
Verstrichene Zeit: 34 Min, 20 Sek

Speicher: Aktiviert
Autostart: Aktiviert
Dateisystem: Aktiviert
Archive: Aktiviert
Rootkits: Deaktiviert
Heuristics: Aktiviert
PUP: Aktiviert
PUM: Aktiviert

Prozesse: 0
(No malicious items detected)

Module: 0
(No malicious items detected)

Registrierungsschlüssel: 0
(No malicious items detected)

Registrierungswerte: 0
(No malicious items detected)

Registrierungsdaten: 0
(No malicious items detected)

Ordner: 1
Trojan.Agent.Gen, C:\Dokumente und Einstellungen\User\M-1-52-5782-8752-5245, In Quarantäne, [bf63efacb4c7c76f11010e88f80a2cd4], 

Dateien: 0
(No malicious items detected)

Physische Sektoren: 0
(No malicious items detected)


(end)

ADWCleaner:

Code:

ATTFilter

# AdwCleaner v3.214 - Bericht erstellt am 04/07/2014 um 00:43:33
# Aktualisiert 29/06/2014 von Xplode
# Betriebssystem : Microsoft Windows XP Service Pack 2 (32 bits)
# Benutzername : User - HOME-PC
# Gestartet von : C:\Dokumente und Einstellungen\User\Eigene Dateien\Downloads\adwcleaner_3.214.exe
# Option : Löschen

***** [ Dienste ] *****

Dienst Gelöscht : vToolbarUpdater18.1.7

***** [ Dateien / Ordner ] *****

Ordner Gelöscht : C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\AVG Secure Search
Ordner Gelöscht : C:\Programme\AVG Secure Search
Ordner Gelöscht : C:\Programme\Gemeinsame Dateien\AVG Secure Search
Ordner Gelöscht : C:\Dokumente und Einstellungen\User\Lokale Einstellungen\Anwendungsdaten\AVG Secure Search
Ordner Gelöscht : C:\Dokumente und Einstellungen\User\Lokale Einstellungen\Anwendungsdaten\PackageAware
Ordner Gelöscht : C:\Dokumente und Einstellungen\User\Anwendungsdaten\AVG Secure Search
Ordner Gelöscht : C:\Dokumente und Einstellungen\User\Anwendungsdaten\Mozilla\Firefox\Profiles\14poc7dh.default\Extensions\{635abd67-4fe9-1b23-4f01-e679fa7484c1}
Datei Gelöscht : C:\END
Datei Gelöscht : C:\Programme\Mozilla Firefox\browser\searchplugins\avg-secure-search.xml
Datei Gelöscht : C:\Dokumente und Einstellungen\User\Anwendungsdaten\Mozilla\Firefox\Profiles\14poc7dh.default\user.js

***** [ Verknüpfungen ] *****


***** [ Registrierungsdatenbank ] *****

Wert Gelöscht : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [Avg@toolbar]
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\ScriptHelper.EXE
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\secman.DLL
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\ViProtocol.DLL
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AVG Secure Search.BrowserWndAPI
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AVG Secure Search.BrowserWndAPI.1
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AVG Secure Search.PugiObj
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AVG Secure Search.PugiObj.1
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\protocols\handler\viprotocol
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi.1
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\ViProtocol.ViProtocolOLE
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\ViProtocol.ViProtocolOLE.1
Wert Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [vProt]
Schlüssel Gelöscht : HKLM\SOFTWARE\MozillaPlugins\@avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{1FDFF5A2-7BB1-48E1-8081-7236812B12B2}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{4D076AB4-7562-427A-B5D2-BD96E19DEE56}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{BB711CB0-C70B-482E-9852-EC05EBD71DBB}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{408CFAD9-8F13-4747-8EC7-770A339C7237}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{933B95E2-E7B7-4AD9-B952-7AC336682AE3}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{94496571-6AC5-4836-82D5-D46260C44B17}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{95B7759C-8C7F-4BF1-B163-73684A933233}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{B658800C-F66E-4EF3-AB85-6C0C227862A9}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{BC9FD17D-30F6-4464-9E53-596A90AFF023}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{CC5AD34C-6F10-4CB3-B74A-C2DD4D5060A3}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{DE9028D0-5FFA-4E69-94E3-89EE8741F468}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{F25AF245-4A81-40DC-92F9-E9021F207706}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8FFE}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{07CAC314-E962-4F78-89AB-DD002F2490EE}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{13ABD093-D46F-40DF-A608-47E162EC799D}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{74FB6AFD-DD77-4CEB-83BD-AB2B63E63C93}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{9C049BA6-EA47-4AC3-AED6-A66D8DC9E1D8}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{C2AC8A0E-E48E-484B-A71C-C7A937FAAB94}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{95B7759C-8C7F-4BF1-B163-73684A933233}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{C6FDD0C3-266A-4DC3-B459-28C697C44CDC}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{F25AF245-4A81-40DC-92F9-E9021F207706}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}
Wert Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{95B7759C-8C7F-4BF1-B163-73684A933233}]
Schlüssel Gelöscht : HKCU\Software\AVG Secure Search
Schlüssel Gelöscht : HKCU\Software\Myfree Codec
Schlüssel Gelöscht : HKLM\Software\AVG Secure Search
Schlüssel Gelöscht : HKLM\Software\AVG Security Toolbar
Schlüssel Gelöscht : HKLM\Software\Myfree Codec
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\AVG Secure Search
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\AVG Secure Search

***** [ Browser ] *****

-\\ Internet Explorer v6.0.2900.2180

Einstellung Wiederhergestellt : HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURls [Tabs]

-\\ Mozilla Firefox v30.0 (de)

[ Datei : C:\Dokumente und Einstellungen\User\Anwendungsdaten\Mozilla\Firefox\Profiles\14poc7dh.default\prefs.js ]

Zeile gelöscht : user_pref("avg.install.installDirPath", "C:\\Dokumente und Einstellungen\\All Users\\Anwendungsdaten\\AVG Secure Search\\FireFoxExt\\18.0.5.292");
Zeile gelöscht : user_pref("avg.userPreferences.URLBarFocus.whiteList", "bing\\.com|google\\.\\w+|yahoo\\.\\w+|gmail\\.\\w+|hotmail\\.\\w+|live\\.\\w+|isearch\\.avg\\.com|mysearch\\.avg\\.com");

*************************

AdwCleaner[R0].txt - [7346 octets] - [04/07/2014 00:42:37]
AdwCleaner[S0].txt - [7046 octets] - [04/07/2014 00:43:33]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [7106 octets] ##########

Junkware Removal Tool :

Da gab es Probleme. Ich habe es installiert und gestartet. Nachdem ich dann eine beliebige Taste gedrückt habe, startete der Suchlauf, jedoch öffnete sich danach keine Textdatei. Auch bei mehrmaliger Wiederholung geschah nix. Ich weiß nicht ob er die Datei dann einfach nicht geöffnet hat oder der Suchlauf einfach jedesmal abgestürtzt ist.

FRST:

FRST Logfile:

Code:

ATTFilter

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version:29-06-2014
Ran by User (administrator) on HOME-PC on 04-07-2014 13:42:00
Running from C:\Dokumente und Einstellungen\User\Eigene Dateien\Downloads
Platform: Microsoft Windows XP Professional Service Pack 2 (X86) OS Language: Deutsch (Deutschland)
Internet Explorer Version 6
Boot Mode: Normal


==================== Processes (Whitelisted) =================

() C:\WINDOWS\system32\WLTRYSVC.EXE
(Dell Inc.) C:\WINDOWS\system32\BCMWLTRY.EXE
(AVG Technologies CZ, s.r.o.) C:\Programme\AVG\AVG2014\avgidsagent.exe
(AVG Technologies CZ, s.r.o.) C:\Programme\AVG\AVG2014\avgwdsvc.exe
(Sun Microsystems, Inc.) C:\Programme\Java\jre6\bin\jqs.exe
(AVG Technologies CZ, s.r.o.) C:\Programme\AVG\AVG2014\avgnsx.exe
(Intel Corporation) C:\WINDOWS\system32\igfxsrvc.exe
(Intel Corporation) C:\WINDOWS\system32\hkcmd.exe
(Intel Corporation) C:\WINDOWS\system32\igfxpers.exe
(SigmaTel, Inc.) C:\Programme\SigmaTel\C-Major Audio\WDM\stsystra.exe
(Dell Inc.) C:\WINDOWS\system32\WLTRAY.EXE
(Alps Electric Co., Ltd.) C:\Programme\Apoint\Apoint.exe
(Sun Microsystems, Inc.) C:\Programme\Gemeinsame Dateien\Java\Java Update\jusched.exe
(shbox.de) C:\Programme\FreePDF_XP\fpassist.exe
(Alps Electric Co., Ltd.) C:\Programme\Apoint\hidfind.exe
(Alps Electric Co., Ltd.) C:\Programme\Apoint\ApntEx.exe
(Samsung Electronics Co., Ltd.) C:\Programme\Samsung\Kies\KiesTrayAgent.exe
(AVG Technologies CZ, s.r.o.) C:\Programme\AVG\AVG2014\avgui.exe
(Spotify Ltd) C:\Dokumente und Einstellungen\User\Anwendungsdaten\Spotify\Data\SpotifyWebHelper.exe
(Samsung) C:\Programme\Samsung\Kies\Kies.exe
(BVRP Software) C:\Programme\Digital Line Detect\DLG.exe
(Dropbox, Inc.) C:\Dokumente und Einstellungen\User\Anwendungsdaten\Dropbox\bin\Dropbox.exe
(OpenOffice.org) C:\Programme\OpenOffice.org 3\program\soffice.exe
(OpenOffice.org) C:\Programme\OpenOffice.org 3\program\soffice.bin
(Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
(Microsoft Corporation) C:\WINDOWS\system32\wscntfy.exe
(AVG Technologies CZ, s.r.o.) C:\PROGRA~1\AVG\AVG2014\avgrsx.exe
(AVG Technologies CZ, s.r.o.) C:\Programme\AVG\AVG2014\avgcsrvx.exe
(Mozilla Corporation) C:\Programme\Mozilla Firefox\firefox.exe
(Microsoft Corporation) C:\Programme\Internet Explorer\IEXPLORE.EXE
(Microsoft Corporation) C:\Programme\Internet Explorer\IEXPLORE.EXE
(Microsoft Corporation) C:\Programme\Internet Explorer\IEXPLORE.EXE
(Microsoft Corporation) C:\Programme\Internet Explorer\IEXPLORE.EXE
(Microsoft Corporation) C:\Programme\Internet Explorer\IEXPLORE.EXE
(Microsoft Corporation) C:\Programme\Internet Explorer\IEXPLORE.EXE
(Microsoft Corporation) C:\Programme\Internet Explorer\IEXPLORE.EXE
(Microsoft Corporation) C:\Programme\Internet Explorer\IEXPLORE.EXE
(Microsoft Corporation) C:\Programme\Internet Explorer\IEXPLORE.EXE
(Microsoft Corporation) C:\Programme\Internet Explorer\IEXPLORE.EXE
(Microsoft Corporation) C:\Programme\Internet Explorer\IEXPLORE.EXE


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [SigmatelSysTrayApp] => C:\Programme\SigmaTel\C-Major Audio\WDM\stsystra.exe [405504 2007-05-10] (SigmaTel, Inc.)
HKLM\...\Run: [Broadcom Wireless Manager UI] => C:\WINDOWS\system32\WLTRAY.exe [2498560 2009-10-07] (Dell Inc.)
HKLM\...\Run: [Apoint] => C:\Programme\Apoint\Apoint.exe [176128 2005-10-07] (Alps Electric Co., Ltd.)
HKLM\...\Run: [BluetoothAuthenticationAgent] => rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent
HKLM\...\Run: [SunJavaUpdateSched] => C:\Programme\Gemeinsame Dateien\Java\Java Update\jusched.exe [248552 2010-05-14] (Sun Microsystems, Inc.)
HKLM\...\Run: [FreePDF Assistant] => C:\Programme\FreePDF_XP\fpassist.exe [373760 2013-03-14] (shbox.de)
HKLM\...\Run: [Adobe Reader Speed Launcher] => C:\Programme\Adobe\Reader 8.0\Reader\Reader_sl.exe [40368 2009-12-18] (Adobe Systems Incorporated)
HKLM\...\Run: [Adobe ARM] => C:\Programme\Gemeinsame Dateien\Adobe\ARM\1.0\AdobeARM.exe [932288 2010-09-21] (Adobe Systems Incorporated)
HKLM\...\Run: [KiesTrayAgent] => C:\Programme\Samsung\Kies\KiesTrayAgent.exe [311616 2014-02-14] (Samsung Electronics Co., Ltd.)
HKLM\...\Run: [AVG_UI] => C:\Programme\AVG\AVG2014\avgui.exe [5181456 2014-05-13] (AVG Technologies CZ, s.r.o.)
HKU\S-1-5-21-790525478-115176313-725345543-1003\...\Run: [Spotify] => C:\Dokumente und Einstellungen\User\Anwendungsdaten\Spotify\Spotify.exe [6189624 2014-06-27] (Spotify Ltd)
HKU\S-1-5-21-790525478-115176313-725345543-1003\...\Run: [Spotify Web Helper] => C:\Dokumente und Einstellungen\User\Anwendungsdaten\Spotify\Data\SpotifyWebHelper.exe [1176632 2014-06-27] (Spotify Ltd)
HKU\S-1-5-21-790525478-115176313-725345543-1003\...\Run: [KiesPreload] => C:\Programme\Samsung\Kies\Kies.exe [1564992 2014-02-14] (Samsung)
HKU\S-1-5-21-790525478-115176313-725345543-1003\...\Run: [KiesAirMessage] => C:\Programme\Samsung\Kies\KiesAirMessage.exe -startup
Startup: C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Autostart\Digital Line Detect.lnk
ShortcutTarget: Digital Line Detect.lnk -> C:\Programme\Digital Line Detect\DLG.exe (BVRP Software)
Startup: C:\Dokumente und Einstellungen\User\Startmenü\Programme\Autostart\Dropbox.lnk
ShortcutTarget: Dropbox.lnk -> C:\Dokumente und Einstellungen\User\Anwendungsdaten\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
Startup: C:\Dokumente und Einstellungen\User\Startmenü\Programme\Autostart\OpenOffice.org 3.3.lnk
ShortcutTarget: OpenOffice.org 3.3.lnk -> C:\Programme\OpenOffice.org 3\program\quickstart.exe ()
ShellIconOverlayIdentifiers: DropboxExt1 -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} =>  No File
ShellIconOverlayIdentifiers: DropboxExt2 -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} =>  No File
ShellIconOverlayIdentifiers: DropboxExt3 -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} =>  No File
ShellIconOverlayIdentifiers: DropboxExt4 -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} =>  No File
BootExecute: autocheck autochk * C:\PROGRA~1\AVG\AVG2014\avgrsx.exe /sync /restart

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.microsoft.com/isapi/redir.dll?prd={SUB_PRD}&clcid={SUB_CLSID}&pver={SUB_PVER}&ar=home
HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = hxxp://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htm
SearchScopes: HKLM - DefaultScope value is missing.
BHO: Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Programme\Gemeinsame Dateien\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Programme\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
BHO: JQSIEStartDetectorImpl Class - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Programme\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll (Sun Microsystems, Inc.)
Toolbar: HKCU - &Adresse - {01E04581-4EEE-11D0-BFE9-00AA005B4383} - C:\WINDOWS\system32\browseui.dll (Microsoft Corporation)
Toolbar: HKCU - &Links - {0E5CBF21-D15F-11D0-8301-00AA005B4383} - C:\WINDOWS\system32\SHELL32.dll (Microsoft Corporation)
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} https://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab
Handler: http\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler: http\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler: https\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler: https\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler: ipp\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Programme\AVG\AVG2012\avgpp.dll No File
Handler: ms-help - {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Programme\Gemeinsame Dateien\Microsoft Shared\Help\hxds.dll (Microsoft Corporation)
Handler: msdaipp\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler: msdaipp\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1

FireFox:
========
FF ProfilePath: C:\Dokumente und Einstellungen\User\Anwendungsdaten\Mozilla\Firefox\Profiles\14poc7dh.default
FF Homepage: hxxp://www.google.de/
FF Plugin: @adobe.com/FlashPlayer - C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_9_900_117.dll ()
FF Plugin: @java.com/JavaPlugin - C:\Programme\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Programme\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF SearchPlugin: C:\Programme\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Programme\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Programme\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Programme\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF Extension: FileZilla - C:\Dokumente und Einstellungen\User\Anwendungsdaten\Mozilla\Firefox\Profiles\14poc7dh.default\Extensions\client@filezilla.org [2011-10-13]
FF Extension: Adblock Plus - C:\Dokumente und Einstellungen\User\Anwendungsdaten\Mozilla\Firefox\Profiles\14poc7dh.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2014-06-06]
FF HKLM\...\Firefox\Extensions: [jqs@sun.com] - C:\Programme\Java\jre6\lib\deploy\jqs\ff
FF Extension: Java Quick Starter - C:\Programme\Java\jre6\lib\deploy\jqs\ff [2011-11-23]
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF Extension: Microsoft .NET Framework Assistant - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension [2013-10-21]

========================== Services (Whitelisted) =================

R2 AVGIDSAgent; C:\Programme\AVG\AVG2014\avgidsagent.exe [3644432 2014-05-13] (AVG Technologies CZ, s.r.o.)
R2 avgwd; C:\Programme\AVG\AVG2014\avgwdsvc.exe [292424 2014-05-13] (AVG Technologies CZ, s.r.o.)
R2 JavaQuickStarterService; C:\Programme\Java\jre6\bin\jqs.exe [153376 2011-11-23] (Sun Microsystems, Inc.)
S3 MozillaMaintenance; C:\Programme\Mozilla Maintenance Service\maintenanceservice.exe [119408 2014-06-11] (Mozilla Foundation)
S3 odserv; C:\Programme\Gemeinsame Dateien\Microsoft Shared\OFFICE12\ODSERV.EXE [441136 2006-10-26] (Microsoft Corporation)
S3 ose; C:\Programme\Gemeinsame Dateien\Microsoft Shared\Source Engine\OSE.EXE [145184 2006-10-26] (Microsoft Corporation)
S3 TUWinStylerThemeSvc; C:\Programme\TuneUpUtilities2006\WinStylerThemeSvc.exe [118272 2005-08-24] (TuneUp Software GmbH) [File not signed]
R2 wltrysvc; C:\WINDOWS\System32\bcmwltry.exe [2232320 2009-10-07] (Dell Inc.) [File not signed]
S3 WMPNetworkSvc; C:\Programme\Windows Media Player\WMPNetwk.exe [829440 2006-05-10] (Microsoft Corporation)

==================== Drivers (Whitelisted) ====================

R1 Avgdiskx; C:\WINDOWS\System32\DRIVERS\avgdiskx.sys [122136 2014-05-13] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSDriver; C:\WINDOWS\System32\DRIVERS\avgidsdriverx.sys [198936 2014-05-13] (AVG Technologies CZ, s.r.o.)
R0 AVGIDSHX; C:\WINDOWS\System32\DRIVERS\avgidshx.sys [149784 2014-05-13] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSShim; C:\WINDOWS\System32\DRIVERS\avgidsshimx.sys [21272 2014-05-13] (AVG Technologies CZ, s.r.o.)
R1 Avgldx86; C:\WINDOWS\System32\DRIVERS\avgldx86.sys [192280 2014-05-13] (AVG Technologies CZ, s.r.o.)
R0 Avglogx; C:\WINDOWS\System32\DRIVERS\avglogx.sys [237848 2014-05-13] (AVG Technologies CZ, s.r.o.)
R0 Avgmfx86; C:\WINDOWS\System32\DRIVERS\avgmfx86.sys [107288 2014-05-13] (AVG Technologies CZ, s.r.o.)
R0 Avgrkx86; C:\WINDOWS\System32\DRIVERS\avgrkx86.sys [27416 2014-05-13] (AVG Technologies CZ, s.r.o.)
R1 Avgtdix; C:\WINDOWS\System32\DRIVERS\avgtdix.sys [210200 2014-05-13] (AVG Technologies CZ, s.r.o.)
R1 avgtp; C:\WINDOWS\system32\drivers\avgtpx86.sys [42784 2014-06-23] (AVG Technologies)
R3 BCM43XX; C:\WINDOWS\System32\DRIVERS\bcmwl5.sys [2649216 2009-10-07] (Broadcom Corporation)
R2 BCMWLNPF; C:\WINDOWS\System32\drivers\bcmwlnpf.sys [33664 2009-10-07] (CACE Technologies) [File not signed]
S3 Secdrv; C:\WINDOWS\System32\DRIVERS\secdrv.sys [27440 2006-06-01] ()
R3 STHDA; C:\WINDOWS\System32\drivers\sthda.sys [1222840 2007-05-10] (SigmaTel, Inc.)
S3 catchme; \??\C:\DOKUME~1\User\LOKALE~1\Temp\catchme.sys [X]
S4 IntelIde; No ImagePath

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-07-04 13:15 - 2014-07-04 01:08 - 01016261 _____ (Thisisu) C:\Dokumente und Einstellungen\User\Desktop\JRT.exe
2014-07-04 01:09 - 2014-07-04 01:09 - 00000000 ____D () C:\WINDOWS\ERUNT
2014-07-04 00:42 - 2014-07-04 00:49 - 00000000 ____D () C:\AdwCleaner
2014-07-03 23:52 - 2014-07-04 00:37 - 00110296 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2014-07-03 23:51 - 2014-07-03 23:51 - 00000749 _____ () C:\Dokumente und Einstellungen\All Users\Desktop\ Malwarebytes Anti-Malware .lnk
2014-07-03 23:51 - 2014-07-03 23:51 - 00000000 ____D () C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\ Malwarebytes Anti-Malware 
2014-07-03 23:50 - 2014-07-03 23:51 - 00000000 ____D () C:\Programme\ Malwarebytes Anti-Malware 
2014-07-03 23:50 - 2014-07-03 23:50 - 00000000 ____D () C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Malwarebytes
2014-07-03 23:50 - 2014-05-12 07:26 - 00053208 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbamchameleon.sys
2014-07-03 23:50 - 2014-05-12 07:25 - 00023256 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbam.sys
2014-07-02 13:37 - 2014-07-02 13:37 - 00000000 ____H () C:\WINDOWS\system32\config\system.tmp.LOG
2014-07-02 13:37 - 2014-07-02 13:37 - 00000000 ____H () C:\WINDOWS\system32\config\software.tmp.LOG
2014-07-02 13:37 - 2014-07-02 13:37 - 00000000 ____H () C:\WINDOWS\system32\config\SAM.tmp.LOG
2014-07-02 13:37 - 2014-07-02 13:37 - 00000000 ____H () C:\WINDOWS\system32\config\default.tmp.LOG
2014-07-02 13:36 - 2014-07-02 13:36 - 00008192 ____H () C:\WINDOWS\system32\config\SECURITY.tmp.LOG
2014-07-02 13:20 - 2014-07-02 13:20 - 00000000 ____D () C:\Dokumente und Einstellungen\NetworkService\Lokale Einstellungen\temp
2014-07-02 13:20 - 2014-07-02 13:20 - 00000000 ____D () C:\Dokumente und Einstellungen\LocalService\Lokale Einstellungen\temp
2014-07-02 13:20 - 2014-07-02 13:20 - 00000000 ____D () C:\Dokumente und Einstellungen\Administrator\Lokale Einstellungen\temp
2014-07-02 12:58 - 2014-07-02 12:58 - 00000000 _RSHD () C:\cmdcons
2014-07-02 12:58 - 2011-07-19 15:04 - 00000211 _____ () C:\Boot.bak
2014-07-02 12:58 - 2004-08-03 23:00 - 00262448 __RSH () C:\cmldr
2014-07-02 12:52 - 2014-07-02 13:56 - 00000000 ____D () C:\ComboFix
2014-07-02 12:52 - 2011-06-26 08:45 - 00256000 _____ () C:\WINDOWS\PEV.exe
2014-07-02 12:52 - 2010-11-07 19:20 - 00208896 _____ () C:\WINDOWS\MBR.exe
2014-07-02 12:52 - 2009-04-20 06:56 - 00060416 _____ (NirSoft) C:\WINDOWS\NIRCMD.exe
2014-07-02 12:52 - 2000-08-31 02:00 - 00518144 _____ (SteelWerX) C:\WINDOWS\SWREG.exe
2014-07-02 12:52 - 2000-08-31 02:00 - 00406528 _____ (SteelWerX) C:\WINDOWS\SWSC.exe
2014-07-02 12:52 - 2000-08-31 02:00 - 00212480 _____ (SteelWerX) C:\WINDOWS\SWXCACLS.exe
2014-07-02 12:52 - 2000-08-31 02:00 - 00098816 _____ () C:\WINDOWS\sed.exe
2014-07-02 12:52 - 2000-08-31 02:00 - 00080412 _____ () C:\WINDOWS\grep.exe
2014-07-02 12:52 - 2000-08-31 02:00 - 00068096 _____ () C:\WINDOWS\zip.exe
2014-07-02 12:34 - 2014-07-02 13:41 - 00000000 ____D () C:\Qoobox
2014-07-02 12:34 - 2014-07-02 12:34 - 00000000 ___RD () C:\Dokumente und Einstellungen\User\Startmenü\Programme\Verwaltung
2014-07-02 12:33 - 2014-07-02 13:55 - 00000000 ____D () C:\WINDOWS\erdnt
2014-07-01 23:23 - 2014-07-04 01:04 - 00000000 ____D () C:\Dokumente und Einstellungen\User\Desktop\virusscan
2014-07-01 22:23 - 2014-07-04 13:42 - 00000000 ____D () C:\FRST
2014-07-01 22:14 - 2014-07-01 22:14 - 00000000 _____ () C:\Dokumente und Einstellungen\User\defogger_reenable
2014-06-19 22:43 - 2014-04-11 10:39 - 00184192 _____ (DEVGURU Co., LTD.(www.devguru.co.kr)) C:\WINDOWS\system32\Drivers\ssudmdm.sys
2014-06-19 22:43 - 2014-04-11 10:39 - 00089856 _____ (DEVGURU Co., LTD.(www.devguru.co.kr)) C:\WINDOWS\system32\Drivers\ssudbus.sys
2014-06-11 11:04 - 2014-06-11 11:05 - 00000000 ____D () C:\Programme\Mozilla Firefox

==================== One Month Modified Files and Folders =======

2014-07-04 13:44 - 2011-07-20 07:38 - 00000000 ____D () C:\Dokumente und Einstellungen\User\Lokale Einstellungen\Temp
2014-07-04 13:42 - 2014-07-01 22:23 - 00000000 ____D () C:\FRST
2014-07-04 13:30 - 2014-05-16 00:00 - 00000000 ____D () C:\Dokumente und Einstellungen\User\Anwendungsdaten\DropboxMaster
2014-07-04 13:30 - 2013-01-20 20:36 - 00000000 ___RD () C:\Dokumente und Einstellungen\User\Eigene Dateien\Dropbox
2014-07-04 13:30 - 2013-01-20 20:32 - 00000000 ____D () C:\Dokumente und Einstellungen\User\Anwendungsdaten\Dropbox
2014-07-04 12:33 - 2013-08-07 21:18 - 00000000 ____D () C:\Dokumente und Einstellungen\User\Anwendungsdaten\Spotify
2014-07-04 12:25 - 2011-07-19 15:08 - 01412033 _____ () C:\WINDOWS\WindowsUpdate.log
2014-07-04 12:23 - 2013-07-10 11:08 - 00000000 ____D () C:\Dokumente und Einstellungen\User\Lokale Einstellungen\Anwendungsdaten\FreePDF_XP
2014-07-04 12:23 - 2011-07-19 16:04 - 00000159 _____ () C:\WINDOWS\wiadebug.log
2014-07-04 12:22 - 2011-07-19 16:04 - 00000050 _____ () C:\WINDOWS\wiaservc.log
2014-07-04 12:22 - 2011-07-19 15:18 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT
2014-07-04 01:29 - 2011-07-20 07:38 - 00000190 ___SH () C:\Dokumente und Einstellungen\User\ntuser.ini
2014-07-04 01:29 - 2011-07-19 15:18 - 00032300 _____ () C:\WINDOWS\SchedLgU.Txt
2014-07-04 01:09 - 2014-07-04 01:09 - 00000000 ____D () C:\WINDOWS\ERUNT
2014-07-04 01:08 - 2014-07-04 13:15 - 01016261 _____ (Thisisu) C:\Dokumente und Einstellungen\User\Desktop\JRT.exe
2014-07-04 01:04 - 2014-07-01 23:23 - 00000000 ____D () C:\Dokumente und Einstellungen\User\Desktop\virusscan
2014-07-04 00:49 - 2014-07-04 00:42 - 00000000 ____D () C:\AdwCleaner
2014-07-04 00:46 - 2011-07-19 16:02 - 00000000 ___RD () C:\Programme
2014-07-04 00:37 - 2014-07-03 23:52 - 00110296 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2014-07-03 23:51 - 2014-07-03 23:51 - 00000749 _____ () C:\Dokumente und Einstellungen\All Users\Desktop\ Malwarebytes Anti-Malware .lnk
2014-07-03 23:51 - 2014-07-03 23:51 - 00000000 ____D () C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\ Malwarebytes Anti-Malware 
2014-07-03 23:51 - 2014-07-03 23:50 - 00000000 ____D () C:\Programme\ Malwarebytes Anti-Malware 
2014-07-03 23:51 - 2011-07-19 16:01 - 00000000 ___RD () C:\Dokumente und Einstellungen\All Users\Startmenü\Programme
2014-07-03 23:50 - 2014-07-03 23:50 - 00000000 ____D () C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Malwarebytes
2014-07-03 23:17 - 2006-06-01 21:06 - 00002206 _____ () C:\WINDOWS\system32\wpa.dbl
2014-07-02 14:13 - 2011-07-19 16:02 - 01050762 _____ () C:\WINDOWS\system32\PerfStringBackup.INI
2014-07-02 13:56 - 2014-07-02 12:52 - 00000000 ____D () C:\ComboFix
2014-07-02 13:55 - 2014-07-02 12:33 - 00000000 ____D () C:\WINDOWS\erdnt
2014-07-02 13:44 - 2006-06-01 21:06 - 00000227 _____ () C:\WINDOWS\system.ini
2014-07-02 13:41 - 2014-07-02 12:34 - 00000000 ____D () C:\Qoobox
2014-07-02 13:38 - 2011-07-19 16:59 - 22806528 _____ () C:\WINDOWS\system32\config\software.bak
2014-07-02 13:38 - 2011-07-19 16:59 - 03932160 _____ () C:\WINDOWS\system32\config\system.bak
2014-07-02 13:38 - 2011-07-19 16:59 - 00262144 _____ () C:\WINDOWS\system32\config\default.bak
2014-07-02 13:38 - 2011-07-19 16:00 - 00262144 _____ () C:\WINDOWS\system32\config\SECURITY.bak
2014-07-02 13:38 - 2011-07-19 16:00 - 00262144 _____ () C:\WINDOWS\system32\config\SAM.bak
2014-07-02 13:37 - 2014-07-02 13:37 - 00000000 ____H () C:\WINDOWS\system32\config\system.tmp.LOG
2014-07-02 13:37 - 2014-07-02 13:37 - 00000000 ____H () C:\WINDOWS\system32\config\software.tmp.LOG
2014-07-02 13:37 - 2014-07-02 13:37 - 00000000 ____H () C:\WINDOWS\system32\config\SAM.tmp.LOG
2014-07-02 13:37 - 2014-07-02 13:37 - 00000000 ____H () C:\WINDOWS\system32\config\default.tmp.LOG
2014-07-02 13:36 - 2014-07-02 13:36 - 00008192 ____H () C:\WINDOWS\system32\config\SECURITY.tmp.LOG
2014-07-02 13:20 - 2014-07-02 13:20 - 00000000 ____D () C:\Dokumente und Einstellungen\NetworkService\Lokale Einstellungen\temp
2014-07-02 13:20 - 2014-07-02 13:20 - 00000000 ____D () C:\Dokumente und Einstellungen\LocalService\Lokale Einstellungen\temp
2014-07-02 13:20 - 2014-07-02 13:20 - 00000000 ____D () C:\Dokumente und Einstellungen\Administrator\Lokale Einstellungen\temp
2014-07-02 12:58 - 2014-07-02 12:58 - 00000000 _RSHD () C:\cmdcons
2014-07-02 12:58 - 2011-07-19 16:59 - 00000327 __RSH () C:\boot.ini
2014-07-02 12:41 - 2011-10-12 11:06 - 00000000 ____D () C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\MFAData
2014-07-02 12:39 - 2011-10-12 11:09 - 00000000 ____D () C:\Programme\AVG
2014-07-02 12:34 - 2014-07-02 12:34 - 00000000 ___RD () C:\Dokumente und Einstellungen\User\Startmenü\Programme\Verwaltung
2014-07-02 12:34 - 2011-07-20 07:38 - 00000000 ___RD () C:\Dokumente und Einstellungen\User\Startmenü\Programme
2014-07-01 22:14 - 2014-07-01 22:14 - 00000000 _____ () C:\Dokumente und Einstellungen\User\defogger_reenable
2014-07-01 21:50 - 2013-08-07 21:19 - 00000000 ____D () C:\Dokumente und Einstellungen\User\Lokale Einstellungen\Anwendungsdaten\Spotify
2014-06-30 12:26 - 2014-04-07 23:08 - 00000000 ____D () C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\AVG2014
2014-06-29 23:43 - 2013-06-05 21:27 - 00000000 ____D () C:\Dokumente und Einstellungen\User\Desktop\Anderes
2014-06-24 01:45 - 2011-07-22 14:46 - 00065536 _____ () C:\WINDOWS\system32\config\ODiag.evt
2014-06-23 18:10 - 2013-11-14 21:58 - 00003725 _____ () C:\Programme\Mozilla Firefoxavg-secure-search.xml
2014-06-23 18:10 - 2012-11-12 19:29 - 00042784 _____ (AVG Technologies) C:\WINDOWS\system32\Drivers\avgtpx86.sys
2014-06-20 16:56 - 2014-03-19 11:37 - 00547784 _____ () C:\Dokumente und Einstellungen\LocalService\Lokale Einstellungen\Anwendungsdaten\FontCache3.0.0.0.dat
2014-06-19 22:45 - 2011-07-19 16:01 - 00545952 _____ () C:\WINDOWS\setupapi.log
2014-06-19 22:45 - 2011-07-19 16:00 - 00208014 _____ () C:\WINDOWS\setupact.log
2014-06-12 13:56 - 2013-10-23 17:07 - 00000000 ____D () C:\Programme\Mozilla Maintenance Service
2014-06-11 20:02 - 2014-04-22 11:26 - 00000000 ____D () C:\WINDOWS\system32\MRT
2014-06-11 20:00 - 2011-07-19 15:21 - 92708840 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2014-06-11 11:05 - 2014-06-11 11:04 - 00000000 ____D () C:\Programme\Mozilla Firefox
2014-06-06 22:39 - 2011-07-20 07:38 - 00000000 ___RD () C:\Dokumente und Einstellungen\User\Eigene Dateien\Eigene Bilder

Some content of TEMP:
====================
C:\Dokumente und Einstellungen\User\Lokale Einstellungen\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmp2ecozl.dll
C:\Dokumente und Einstellungen\User\Lokale Einstellungen\Temp\Quarantine.exe


==================== Bamital & volsnap Check =================

C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed

==================== End Of Log ============================

--- --- ---

Während ich den frst-scan durchführte, öffnete sich schonwieder 3 Internet Explorer mit Werbung. Der Virus/Trojaner/etc muss also noch drauf sein

Viele Grüße Jona

schrauber · 05.07.2014, 11:05

Downloade dir bitte

Malwarebytes Anti-Rootkit und speichere es auf deinem Desktop.

Starte bitte die mbar.exe.
Folge den Anweisungen auf deinem Bildschirm gemäß Anleitung zu Malwarebytes Anti-Rootkit
Aktualisiere unbedingt die Datenbank und erlaube dem Tool, dein System zu scannen.
Klicke auf den CleanUp Button und erlaube den Neustart.
Während dem Neustart wird MBAR die gefundenen Objekte entfernen, also bleib geduldig.
Nach dem Neustart starte die mbar.exe erneut.
Sollte nochmal was gefunden werden, wiederhole den CleanUp Prozess.

Das Tool wird im erstellten Ordner eine Logfile ( mbar-log-<Jahr-Monat-Tag>.txt ) erzeugen. Bitte poste diese hier.

Starte keine andere Datei in diesem Ordner ohne Anweisung eines Helfers

Downloade dir bitte

TDSSKiller.exe und speichere diese Datei auf dem Desktop

Starte die TDSSKiller.exe - Einstellen wie in der Anleitung zu TDSSKiller beschrieben.
Drücke Start Scan
Sollten infizierte Objekte gefunden werden, wähle keinesfalls Cure. Wähle Skip und klicke auf Continue.
TDSSKiller wird eine Logfile auf deinem Systemlaufwerk speichern (Meistens C:\)
Als Beispiel: C:\TDSSKiller.<Version_Datum_Uhrzeit>log.txt

Poste den Inhalt bitte in jedem Fall hier in deinen Thread.

Eigentlich müsste ich direkt formatieren schicken da Servicepack 3 fehlt für XP. Der REchner lädt schneller Malware nach als wir sie löschen können.

Jona333 · 09.07.2014, 11:45

Hey
entschuldigung das ich erst jetzt antworte aber das Lernen fürs Studium hat meine Freizeit völlig verschlungen. Ich bitte um Verzeihung.

Malewarebytes Anti-Rootkit hat nix gefunden:

Code:

ATTFilter

Malwarebytes Anti-Rootkit BETA 1.07.0.1012
www.malwarebytes.org

Database version: v2014.07.08.07

Windows XP Service Pack 2 x86 NTFS
Internet Explorer 6.0.2900.2180
User :: HOME-PC [administrator]

08.07.2014 19:09:40
mbar-log-2014-07-08 (19-09-40).txt

Scan type: Quick scan
Scan options enabled: Anti-Rootkit | Drivers | MBR | Physical Sectors | Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken
Scan options disabled: 
Objects scanned: 283254
Time elapsed: 17 hour(s), 21 minute(s), 32 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

Physical Sectors Detected: 0
(No malicious items detected)

(end)

TDSSKiller hat was gefunden:

Code:

ATTFilter

12:46:40.0281 0x0e2c  TDSS rootkit removing tool 3.0.0.39 Jun  5 2014 20:35:54
12:46:45.0828 0x0e2c  ============================================================
12:46:45.0828 0x0e2c  Current date / time: 2014/07/09 12:46:45.0828
12:46:45.0828 0x0e2c  SystemInfo:
12:46:45.0828 0x0e2c  
12:46:45.0828 0x0e2c  OS Version: 5.1.2600 ServicePack: 2.0
12:46:45.0828 0x0e2c  Product type: Workstation
12:46:45.0828 0x0e2c  ComputerName: HOME-PC
12:46:45.0828 0x0e2c  UserName: User
12:46:45.0828 0x0e2c  Windows directory: C:\WINDOWS
12:46:45.0828 0x0e2c  System windows directory: C:\WINDOWS
12:46:45.0828 0x0e2c  Processor architecture: Intel x86
12:46:45.0828 0x0e2c  Number of processors: 2
12:46:45.0828 0x0e2c  Page size: 0x1000
12:46:45.0828 0x0e2c  Boot type: Normal boot
12:46:45.0828 0x0e2c  ============================================================
12:46:54.0343 0x0e2c  KLMD registered as C:\WINDOWS\system32\drivers\80880396.sys
12:46:55.0843 0x0e2c  System UUID: {65764543-9F5B-9C08-29CC-71E2BA088262}
12:46:59.0812 0x0e2c  Drive \Device\Harddisk0\DR0 - Size: 0x12A1F16000 ( 74.53 Gb ), SectorSize: 0x200, Cylinders: 0x2601, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000054
12:46:59.0828 0x0e2c  ============================================================
12:46:59.0828 0x0e2c  \Device\Harddisk0\DR0:
12:46:59.0828 0x0e2c  MBR partitions:
12:46:59.0828 0x0e2c  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x950E482
12:46:59.0828 0x0e2c  ============================================================
12:46:59.0875 0x0e2c  C: <-> \Device\Harddisk0\DR0\Partition1
12:46:59.0875 0x0e2c  ============================================================
12:46:59.0875 0x0e2c  Initialize success
12:46:59.0875 0x0e2c  ============================================================
12:47:41.0515 0x06c4  ============================================================
12:47:41.0515 0x06c4  Scan started
12:47:41.0515 0x06c4  Mode: Manual; SigCheck; TDLFS; 
12:47:41.0515 0x06c4  ============================================================
12:47:41.0515 0x06c4  KSN ping started
12:47:55.0453 0x06c4  KSN ping finished: true
12:47:58.0546 0x06c4  ================ Scan system memory ========================
12:47:58.0546 0x06c4  System memory - ok
12:47:58.0546 0x06c4  ================ Scan services =============================
12:47:59.0015 0x06c4  Abiosdsk - ok
12:47:59.0015 0x06c4  abp480n5 - ok
12:47:59.0234 0x06c4  [ 94B4741D2CF9ED38140B831293D1601A, 4630074BB5E071430B6C9905F495E958511C161BEB45624AB1C0B75AE0B615AB ] ACPI            C:\WINDOWS\system32\DRIVERS\ACPI.sys
12:48:06.0343 0x06c4  ACPI - ok
12:48:06.0640 0x06c4  [ 9E1CA3160DAFB159CA14F83B1E317F75, 13B3E897B0E819BF734449416D9EC6EBCAC89538EC69BF48C068593B82D57004 ] ACPIEC          C:\WINDOWS\system32\drivers\ACPIEC.sys
12:48:06.0765 0x06c4  ACPIEC - ok
12:48:06.0781 0x06c4  adpu160m - ok
12:48:06.0906 0x06c4  [ 841F385C6CFAF66B58FBD898722BB4F0, 0DA17CCA27DF5C7245959249162A5393B2E36B7C9A3A3525AE1371DE6AE698A3 ] aec             C:\WINDOWS\system32\drivers\aec.sys
12:48:07.0218 0x06c4  aec - ok
12:48:07.0359 0x06c4  [ 55E6E1C51B6D30E54335750955453702, 49BE694FB65F195A65EC631558BA599345C6641A6A5AA2F1053611B715F4677A ] AFD             C:\WINDOWS\System32\drivers\afd.sys
12:48:07.0593 0x06c4  AFD - ok
12:48:07.0593 0x06c4  Aha154x - ok
12:48:07.0593 0x06c4  aic78u2 - ok
12:48:07.0593 0x06c4  aic78xx - ok
12:48:07.0640 0x06c4  [ 1AAB6C5F8376357CB9B16C38C42C4076, D6615A43C102817B7BF6CBD5A8097441FC5A7B00C03E0029B03D156C929574B1 ] Alerter         C:\WINDOWS\system32\alrsvc.dll
12:48:07.0750 0x06c4  Alerter - ok
12:48:07.0812 0x06c4  [ 6596DD260FFDE1BDC994C1DF236307BB, 210D2742425FD1F82D2416340F96FC79324C7A739650620A57278881A00B98B6 ] ALG             C:\WINDOWS\System32\alg.exe
12:48:07.0968 0x06c4  ALG - ok
12:48:07.0968 0x06c4  AliIde - ok
12:48:07.0984 0x06c4  amsint - ok
12:48:08.0109 0x06c4  [ 090880E9BF20F928BC341F96D27C019E, 3544F2F8F006351B991994EBC1B0D56AEF55856790978E8CE6D4C8DD60E73F62 ] ApfiltrService  C:\WINDOWS\system32\DRIVERS\Apfiltr.sys
12:48:08.0281 0x06c4  ApfiltrService - ok
12:48:08.0421 0x06c4  [ BECD5328E7869807D6557BE4FE60C72F, D022626970E68122CD3F67DAE71BAFA7A6EC7B3FAB7244D51096244C0E75E275 ] AppMgmt         C:\WINDOWS\System32\appmgmts.dll
12:48:08.0687 0x06c4  AppMgmt - ok
12:48:08.0765 0x06c4  [ F0D692B0BFFB46E30EB3CEA168BBC49F, 745BE951F18C90FCD30C9A59BB861375C29FA49AF38D27EBFE4158FB7CAC86ED ] Arp1394         C:\WINDOWS\system32\DRIVERS\arp1394.sys
12:48:08.0968 0x06c4  Arp1394 - ok
12:48:08.0968 0x06c4  asc - ok
12:48:08.0984 0x06c4  asc3350p - ok
12:48:08.0984 0x06c4  asc3550 - ok
12:48:09.0171 0x06c4  [ 0E5E4957549056E2BF2C49F4F6B601AD, F7F19FDC906B719A3516D30A9B4A2262C8CC5B36B94E3D4195C345EC4610FF2B ] aspnet_state    C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe
12:48:09.0203 0x06c4  aspnet_state - ok
12:48:09.0234 0x06c4  [ 02000ABF34AF4C218C35D257024807D6, FDE21F7FCB198A44A6F2BCAF5EB11C9D90A094B4A2F8C307244A7655848954DA ] AsyncMac        C:\WINDOWS\system32\DRIVERS\asyncmac.sys
12:48:09.0375 0x06c4  AsyncMac - ok
12:48:09.0453 0x06c4  [ CDFE4411A69C224BD1D11B2DA92DAC51, 0E6B23A80F171550575BEBC56F7500CD87A5CF03B2B9FDC49BC3DE96282CD69D ] atapi           C:\WINDOWS\system32\DRIVERS\atapi.sys
12:48:09.0578 0x06c4  atapi - ok
12:48:09.0593 0x06c4  Atdisk - ok
12:48:09.0656 0x06c4  [ EC88DA854AB7D7752EC8BE11A741BB7F, 91FAF224CB4B44608C85CC25C3A82A3EC83F379D14A119A60A75505A30043255 ] Atmarpc         C:\WINDOWS\system32\DRIVERS\atmarpc.sys
12:48:09.0890 0x06c4  Atmarpc - ok
12:48:09.0984 0x06c4  [ E98B8250398F6637B335A76BA8DFB602, D54090C8E0D0D9AFAE17F5085275897A05D8FEB3FBB9B34C2EA056B70426388B ] AudioSrv        C:\WINDOWS\System32\audiosrv.dll
12:48:10.0140 0x06c4  AudioSrv - ok
12:48:10.0187 0x06c4  [ D9F724AA26C010A217C97606B160ED68, 329B5118F2409731D06FDAE85B6ADD64A048292801BCB3546651CEB303111695 ] audstub         C:\WINDOWS\system32\DRIVERS\audstub.sys
12:48:10.0296 0x06c4  audstub - ok
12:48:10.0406 0x06c4  [ 383D7AEC7F1A44B81F2069DB9EE5F313, 3C6BFBA33245C95B65999C73E9EA6861D47A5C50561E4B93DB59DFB361B8711D ] Avgdiskx        C:\WINDOWS\system32\DRIVERS\avgdiskx.sys
12:48:10.0640 0x06c4  Avgdiskx - ok
12:48:12.0843 0x06c4  [ 561CE09C52F6E945ED4CE7E173D1F542, 25FB1B55E22D4DF3B03B6D395B6C4749C03B950139767FA095C24234BD962782 ] AVGIDSAgent     C:\Programme\AVG\AVG2014\avgidsagent.exe
12:48:16.0562 0x06c4  AVGIDSAgent - ok
12:48:16.0718 0x06c4  [ E76F8CDCC1BF9952D165CA5D90025730, 2A1AE74A25782C4407CA665FC5E3F15BD3F823E44DF0BB4103EDDEA70D81D887 ] AVGIDSDriver    C:\WINDOWS\system32\DRIVERS\avgidsdriverx.sys
12:48:16.0828 0x06c4  AVGIDSDriver - ok
12:48:16.0921 0x06c4  [ 486A27CBB8314577A92BEFF025D52345, EBAD1BF93E5246680018DC9B110D0FDAB40D11B730D23CA56ECB5F39C9B6E6D1 ] AVGIDSHX        C:\WINDOWS\system32\DRIVERS\avgidshx.sys
12:48:17.0015 0x06c4  AVGIDSHX - ok
12:48:17.0046 0x06c4  [ B650C4774CAB608AAC9C650312DA2CBB, 20F3041B1D69BFDCBEDBCB07965B5FC8AB28C4FC8822A0D975FB5850A299A913 ] AVGIDSShim      C:\WINDOWS\system32\DRIVERS\avgidsshimx.sys
12:48:17.0078 0x06c4  AVGIDSShim - ok
12:48:17.0187 0x06c4  [ B295472342FCD8E0D15FC099552BA89D, BDB6E0487DF37CDDFFC82F0C2BAF9A3F4FA67210AE9D76BD62499C4F6348EB19 ] Avgldx86        C:\WINDOWS\system32\DRIVERS\avgldx86.sys
12:48:17.0296 0x06c4  Avgldx86 - ok
12:48:17.0437 0x06c4  [ 624A328461D9A365C1B41BC2B8AA055E, FF8C99FFEF51F493525CDD875569165B69205F3008691B9DEE0029D04D0F7B55 ] Avglogx         C:\WINDOWS\system32\DRIVERS\avglogx.sys
12:48:17.0625 0x06c4  Avglogx - ok
12:48:17.0703 0x06c4  [ A7A3E71F9E4F6F93AEAE2B1A88A12FCB, 6724D7BEBC9F0504E794C395459B82486800D409D86E137AD9DE6A5B09DAFA19 ] Avgmfx86        C:\WINDOWS\system32\DRIVERS\avgmfx86.sys
12:48:17.0796 0x06c4  Avgmfx86 - ok
12:48:17.0812 0x06c4  [ F2C626DD5CF3F2FACBBA053F465563EB, 15881EE4F08B713209C6088E148ECF2245349E3B99D266BFE60442DEEDB38F29 ] Avgrkx86        C:\WINDOWS\system32\DRIVERS\avgrkx86.sys
12:48:17.0843 0x06c4  Avgrkx86 - ok
12:48:17.0968 0x06c4  [ 16EDEFD8D99936B2410D082A494D2E3F, B8D18E37FB931B67893F2B4F24D7B20BFC0AC4C45F5FBC5231B942A186D8B3EC ] Avgtdix         C:\WINDOWS\system32\DRIVERS\avgtdix.sys
12:48:18.0078 0x06c4  Avgtdix - ok
12:48:18.0140 0x06c4  [ 9D9B2624C7E8365FC699561111A46A99, 2EC0DBDB99A94E59E6272167ACB5992236B31AACC0F817A6E6D64A26211B5B73 ] avgtp           C:\WINDOWS\system32\drivers\avgtpx86.sys
12:48:18.0187 0x06c4  avgtp - ok
12:48:18.0390 0x06c4  [ E5C581D358B62CF65776B8E4E17B9E5C, 955E4ECFD036330B139476CCCC7564B082C197D5E7577853E0C3D7B707EDB090 ] avgwd           C:\Programme\AVG\AVG2014\avgwdsvc.exe
12:48:18.0640 0x06c4  avgwd - ok
12:48:20.0156 0x06c4  [ 345D38F298368DD6B0DF5C4F37457A22, 78CFEE7E45966E645ACD912052C018B701040EF4E1F00B349397F9E287A8F8EB ] BCM43XX         C:\WINDOWS\system32\DRIVERS\bcmwl5.sys
12:48:22.0906 0x06c4  BCM43XX - ok
12:48:23.0000 0x06c4  [ C768C8A463D32C219CE291645A0621A4, 04878E954E36731445F216017E4FB89686461D6FFD1815803EFBC9DAFAD4CD1E ] bcm4sbxp        C:\WINDOWS\system32\DRIVERS\bcm4sbxp.sys
12:48:23.0078 0x06c4  bcm4sbxp - ok
12:48:23.0140 0x06c4  [ 8C31C9DB77ED6143AD09DC5FD2C9D9CC, D79EE8D84D03237981886978C289193A860BD7A5B0F6E5B5243D47F894A2F45B ] BCMWLNPF        C:\WINDOWS\system32\drivers\bcmwlnpf.sys
12:48:23.0390 0x06c4  BCMWLNPF - detected UnsignedFile.Multi.Generic ( 1 )
12:48:26.0140 0x06c4  Detect skipped due to KSN trusted
12:48:26.0140 0x06c4  BCMWLNPF - ok
12:48:26.0625 0x06c4  [ DA1F27D85E0D1525F6621372E7B685E9, 5A81A46A3BDD19DAFC6C87D277267A5D44F3A1B5302F2CC1111D84B7BAD5610D ] Beep            C:\WINDOWS\system32\drivers\Beep.sys
12:48:27.0000 0x06c4  Beep - ok
12:48:27.0875 0x06c4  [ 3A5E54A9AB96EF2D273B58136FB58EFE, 7905C688AA96FCA01C7A03934DA12284B290FFC569E594ACBA340E6DE2B8940B ] BITS            C:\WINDOWS\system32\qmgr.dll
12:48:28.0625 0x06c4  BITS - ok
12:48:28.0937 0x06c4  [ D8653DCD80CF2EBB333FC4FCC43A7DEF, AD8560B4B7893F72D1FDC2222AFFA80CFEA0CD1D75280DA588F32D83BAEE2B0F ] Browser         C:\WINDOWS\System32\browser.dll
12:48:29.0531 0x06c4  Browser - ok
12:48:30.0234 0x06c4  [ D24B8D1784C68A25060FFFBE8ED34B76, E96FBABDB2B24050DD963C0CF39980DFBADB4DCE03CF5DC1C7CB0AE72A644608 ] BthEnum         C:\WINDOWS\system32\DRIVERS\BthEnum.sys
12:48:30.0656 0x06c4  BthEnum - ok
12:48:30.0890 0x06c4  [ 10355270BE12641B9764235DA39DCF0F, 325EECDF0B062BDF0CE76BC0B42885197315CFDEAF3336566B5EFCA0860FF0F0 ] BthPan          C:\WINDOWS\system32\DRIVERS\bthpan.sys
12:48:31.0375 0x06c4  BthPan - ok
12:48:31.0625 0x06c4  [ 3A7A07B55ADC58E2001537EB6E0A980D, 3861E419DDCCDAFB58C656C5C34E1779D1C807DEEFEE3F57D894AF608458A203 ] BTHPORT         C:\WINDOWS\system32\Drivers\BTHport.sys
12:48:31.0718 0x06c4  BTHPORT - ok
12:48:31.0781 0x06c4  [ 822D1875B12B6219CECE1D221349CEF4, BAE857650FE83B72B0FB0BF227EA1C9F9A9BF367EFAFCCAB675014CB95CF4F6C ] BthServ         C:\WINDOWS\System32\bthserv.dll
12:48:31.0906 0x06c4  BthServ - ok
12:48:31.0953 0x06c4  [ F06D4CB9918B462A84D9AC00027EFC30, 1F949DF5B768FB176A0203CD2C1260C15C7B4C5A3658230DA3BD7D8014614FD3 ] BTHUSB          C:\WINDOWS\system32\Drivers\BTHUSB.sys
12:48:32.0046 0x06c4  BTHUSB - ok
12:48:32.0265 0x06c4  catchme - ok
12:48:32.0328 0x06c4  [ 90A673FC8E12A79AFBED2576F6A7AAF9, BDE7858A3457DB979FEDD8577FA6321BF72848E4A7BF9F173C78A6A10CBB3EBE ] cbidf2k         C:\WINDOWS\system32\drivers\cbidf2k.sys
12:48:32.0531 0x06c4  cbidf2k - ok
12:48:32.0531 0x06c4  cd20xrnt - ok
12:48:32.0578 0x06c4  [ C1B486A7658353D33A10CC15211A873B, AA4DD9E7AAE5AAB1146B360B17001F975D2F29A1281CF7B13E7136480410F347 ] Cdaudio         C:\WINDOWS\system32\drivers\Cdaudio.sys
12:48:32.0750 0x06c4  Cdaudio - ok
12:48:32.0828 0x06c4  [ CD7D5152DF32B47F4E36F710B35AAE02, 7382890CC1B27FC66C3E94E064562BBD87B3C75577CB0FD10860B8E2CE07D12E ] Cdfs            C:\WINDOWS\system32\drivers\Cdfs.sys
12:48:32.0984 0x06c4  Cdfs - ok
12:48:33.0046 0x06c4  [ AF9C19B3100FE010496B1A27181FBF72, 64E9E4461F631EED2B2A1FC80DCC9C31DCECB5738289D322E6A6428C840DC621 ] Cdrom           C:\WINDOWS\system32\DRIVERS\cdrom.sys
12:48:33.0218 0x06c4  Cdrom - ok
12:48:33.0234 0x06c4  Changer - ok
12:48:33.0296 0x06c4  [ 234D52C63C67A8CF4AF9BECCE43BFB4A, 3050022FC88A0D61D823372DDFBFF3E97470DC08A6D65C96448DF215D3D0F2AD ] CiSvc           C:\WINDOWS\system32\cisvc.exe
12:48:33.0468 0x06c4  CiSvc - ok
12:48:33.0500 0x06c4  [ 0461868578D29DC18FB1C79933C5158A, B6B246E0C9B6FA4C6CFFB5C846C44A0933E7EE87BD91ED4267D4D7FD76201482 ] ClipSrv         C:\WINDOWS\system32\clipsrv.exe
12:48:33.0703 0x06c4  ClipSrv - ok
12:48:33.0781 0x06c4  [ D87ACAED61E417BBA546CED5E7E36D9C, 14AC6034A5BC0FB2A1AFDAD42BEF4DE641556E54AD30D0C46765660A4BE55462 ] clr_optimization_v2.0.50727_32 c:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
12:48:33.0843 0x06c4  clr_optimization_v2.0.50727_32 - ok
12:48:33.0906 0x06c4  [ 4266BE808F85826AEDF3C64C1E240203, D1EF8B2C35C21BA122C44F8C55F57B2FA36D37B08A15CFCCE085A4810FAC1FF9 ] CmBatt          C:\WINDOWS\system32\DRIVERS\CmBatt.sys
12:48:34.0093 0x06c4  CmBatt - ok
12:48:34.0093 0x06c4  CmdIde - ok
12:48:34.0187 0x06c4  [ DF1B1A24BF52D0EBC01ED4ECE8979F50, 78C5E7BE2FFA6A0709F3095AB006C86E3991AFC9E9B5ABEC94C3E8DF2EA2169D ] Compbatt        C:\WINDOWS\system32\DRIVERS\compbatt.sys
12:48:34.0328 0x06c4  Compbatt - ok
12:48:34.0328 0x06c4  COMSysApp - ok
12:48:34.0328 0x06c4  Cpqarray - ok
12:48:34.0437 0x06c4  [ 1A5F9DB98DF7955B4C7CBDBF2C638238, 91489B31024307D43FFCB0CB3FA5A5F92A6BD8B78FD032C640DB4C7C79B8A7CB ] CryptSvc        C:\WINDOWS\System32\cryptsvc.dll
12:48:34.0671 0x06c4  CryptSvc - ok
12:48:34.0671 0x06c4  dac2w2k - ok
12:48:34.0687 0x06c4  dac960nt - ok
12:48:34.0953 0x06c4  [ D45BBCDDC74A1B0259A0C4B00C190D20, 61B4A8626752EA21B2DB966D82B86ADC21E5EABDC0C77AF4BE0930F4552681F3 ] DcomLaunch      C:\WINDOWS\system32\rpcss.dll
12:48:35.0375 0x06c4  DcomLaunch - ok
12:48:35.0421 0x06c4  [ 6216FD7FD227DE454238A702B218CEC7, 5699FDD253754AE274B8624A41CBE778D74383E95D5167785A48A51AAD67FC70 ] dgderdrv        C:\WINDOWS\system32\drivers\dgderdrv.sys
12:48:35.0468 0x06c4  dgderdrv - ok
12:48:35.0546 0x06c4  [ 1D93C52AF82D68CFF028B51AA8E024C6, D68DBA930EF89FD3A6D7FF889722EE458D52550411FA399CF20F3BA62AAB9FBA ] dg_ssudbus      C:\WINDOWS\system32\DRIVERS\ssudbus.sys
12:48:35.0640 0x06c4  dg_ssudbus - ok
12:48:35.0750 0x06c4  [ 69F986B2688BA95A0D9362B0E233D5FF, 15C89E4F3CA6996575707F76F169BF9569461B9ED85C23ED245C5C1619660C2D ] Dhcp            C:\WINDOWS\System32\dhcpcsvc.dll
12:48:35.0906 0x06c4  Dhcp - ok
12:48:35.0953 0x06c4  [ 00CA44E4534865F8A3B64F7C0984BFF0, 3FD73CCD9892F6CFEE776CB384C2E35FA15F4101D308A67E1358F85299501E3D ] Disk            C:\WINDOWS\system32\DRIVERS\disk.sys
12:48:36.0078 0x06c4  Disk - ok
12:48:36.0078 0x06c4  dmadmin - ok
12:48:36.0625 0x06c4  [ 5789B83BA87FC84C3568CF86CACEF8CE, D4FF0E761BC83B07E129FB329599A82EE3BE8C0E23E95A11DB40B7BB9F6BB182 ] dmboot          C:\WINDOWS\system32\drivers\dmboot.sys
12:48:37.0765 0x06c4  dmboot - ok
12:48:37.0859 0x06c4  [ 084EB0A50A4F7B4705C8A57F234E5291, 1567AEE766660B58657B15BE477BD564B3A2426EE0DDABD9338B0B7D36C63EAA ] dmio            C:\WINDOWS\system32\drivers\dmio.sys
12:48:38.0062 0x06c4  dmio - ok
12:48:38.0093 0x06c4  [ E9317282A63CA4D188C0DF5E09C6AC5F, D41E002F555FE9015EF620975255F58BB79198CA1FF0E09EC950CB450FF77CF7 ] dmload          C:\WINDOWS\system32\drivers\dmload.sys
12:48:38.0203 0x06c4  dmload - ok
12:48:38.0234 0x06c4  [ FA2D9D1A9F6B5A88D01E1685CE2378BA, F792078E8AD346F55A3DB77071AD12C50BE19C62A39F55026811EE68EC688D2E ] dmserver        C:\WINDOWS\System32\dmserver.dll
12:48:38.0359 0x06c4  dmserver - ok
12:48:38.0437 0x06c4  [ A6F881284AC1150E37D9AE47FF601267, 6C07654CF21637E527FC727EB50F4138BF0EFF0680000AC94001063B436389DB ] DMusic          C:\WINDOWS\system32\drivers\DMusic.sys
12:48:38.0578 0x06c4  DMusic - ok
12:48:38.0656 0x06c4  [ D1F5B71BBAEEE07B78980DBD878C0BC7, A6F1DECBFE34EC8429D4A5CCA4CFE235FD362944E6537899F8CFDF276A2DFBA4 ] Dnscache        C:\WINDOWS\System32\dnsrslvr.dll
12:48:38.0796 0x06c4  Dnscache - ok
12:48:38.0796 0x06c4  dpti2o - ok
12:48:38.0828 0x06c4  [ 1ED4DBBAE9F5D558DBBA4CC450E3EB2E, B941AB5D9D504486083E0D1539B1A96E27721C9EFD7A67CA1DB7258B0D33AB78 ] drmkaud         C:\WINDOWS\system32\drivers\drmkaud.sys
12:48:38.0953 0x06c4  drmkaud - ok
12:48:39.0000 0x06c4  [ 877A4512CC9074D6954776AF47021766, 30A2A84B4BB29FF82451D5B8BFBBC7A25149DC2A664A8ECAFD3196893F56FC8E ] ERSvc           C:\WINDOWS\System32\ersvc.dll
12:48:39.0125 0x06c4  ERSvc - ok
12:48:39.0218 0x06c4  [ 65F6B774819BD727358157CEDEA67B8E, 050F7AC4B0C6D17574F374BDCF9A199437872C85E328530A49F500F69A1D7566 ] Eventlog        C:\WINDOWS\system32\services.exe
12:48:39.0296 0x06c4  Eventlog - ok
12:48:39.0484 0x06c4  [ D68ED3908C7A0DB446111D34AC40DC18, 9C5535D1CB3A717A267BAF8DD1EC43C76C70AAB1E61A94E0D4149B8C23B9F704 ] EventSystem     C:\WINDOWS\system32\es.dll
12:48:39.0718 0x06c4  EventSystem - ok
12:48:39.0843 0x06c4  [ 3117F595E9615E04F05A54FC15A03B20, 4708E8F1CDE6E9663B5DBEBAB8C684B16E45D41AEF20E4071D0A2931B305BD76 ] Fastfat         C:\WINDOWS\system32\drivers\Fastfat.sys
12:48:40.0046 0x06c4  Fastfat - ok
12:48:40.0140 0x06c4  [ BAC5F7F0C2B8C1B9832594851E0F9914, D6FAFCBF2219D7DD43F8692C1A6C45133E4636B2FEB7F5162CF01D2A62C48F0D ] FastUserSwitchingCompatibility C:\WINDOWS\System32\shsvcs.dll
12:48:40.0265 0x06c4  FastUserSwitchingCompatibility - ok
12:48:40.0328 0x06c4  [ CED2E8396A8838E59D8FD529C680E02C, 8542AE6A2D65D3F843EA70F5FFBC150B773C5CFA3FE6388FA68A95416FAD0F6E ] Fdc             C:\WINDOWS\system32\drivers\Fdc.sys
12:48:40.0437 0x06c4  Fdc - ok
12:48:40.0484 0x06c4  [ 9E9AF89F9B14AA6249065C309CE73BD8, AA2637F7E853AA6421465088307C8D6F97B05C4CBBD504F416F58FD17C53DE97 ] Fips            C:\WINDOWS\system32\drivers\Fips.sys
12:48:40.0609 0x06c4  Fips - ok
12:48:40.0656 0x06c4  [ 0DD1DE43115B93F4D85E889D7A86F548, D50F7AAE5416C6D41845960BDDA24E97226F609AA726E4F88601ADC9ED50E872 ] Flpydisk        C:\WINDOWS\system32\drivers\Flpydisk.sys
12:48:40.0781 0x06c4  Flpydisk - ok
12:48:40.0875 0x06c4  [ 157754F0DF355A9E0A6F54721914F9C6, 1EB1424D98000FE80901287F9D51DDD18132B7C2CFEC4C7767F32F71DC2F64F9 ] FltMgr          C:\WINDOWS\system32\DRIVERS\fltMgr.sys
12:48:41.0062 0x06c4  FltMgr - ok
12:48:41.0171 0x06c4  [ 8BA7C024070F2B7FDD98ED8A4BA41789, 47585006F86B2C6016EC54250A416794792D1E4024FF229C120BC25B684AF66A ] FontCache3.0.0.0 c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
12:48:41.0250 0x06c4  FontCache3.0.0.0 - ok
12:48:41.0265 0x06c4  [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A, EC635E071201A766845D48973772CBE0958942B4162F3F5F70660D114CC877E0 ] Fs_Rec          C:\WINDOWS\system32\drivers\Fs_Rec.sys
12:48:41.0421 0x06c4  Fs_Rec - ok
12:48:41.0562 0x06c4  [ 8F1955CE42E1484714B542F341647778, 8EB3F99625F409D3032561E8AB44BEFBFBFBA4EC873C2151C92A5CAAF7F2AA55 ] Ftdisk          C:\WINDOWS\system32\DRIVERS\ftdisk.sys
12:48:41.0890 0x06c4  Ftdisk - ok
12:48:41.0937 0x06c4  [ C0F1D4A21DE5A415DF8170616703DEBF, 3E21AAD06CF6EB95662B568671B1DBD129CED481761BCDB67088E965E5C0BC5B ] Gpc             C:\WINDOWS\system32\DRIVERS\msgpc.sys
12:48:42.0125 0x06c4  Gpc - ok
12:48:42.0234 0x06c4  [ E31363D186B3E1D7C4E9117884A6AEE5, AC42CA69D1D973F8DC11103BA42EB4F355E0E90EAB15B3A2F03A5FF6B87E6313 ] HDAudBus        C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
12:48:42.0359 0x06c4  HDAudBus - ok
12:48:42.0468 0x06c4  [ BA85BCF1A2BCF927C3600574173403E0, 0D0253BEA64FDF65DA03677BF8DEB3A8B2D6AF546EB22C439844DC008515CEBF ] helpsvc         C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
12:48:42.0593 0x06c4  helpsvc - ok
12:48:42.0609 0x06c4  HidServ - ok
12:48:42.0656 0x06c4  [ 1DE6783B918F540149AA69943BDFEBA8, 6ED28109CA0A7738857D840E369EAB91C1605F2643950762D327CCE241C135A1 ] HidUsb          C:\WINDOWS\system32\DRIVERS\hidusb.sys
12:48:42.0796 0x06c4  HidUsb - ok
12:48:42.0796 0x06c4  hpn - ok
12:48:42.0984 0x06c4  [ 9F8B0F4276F618964FD118BE4289B7CD, 5E72367D731A99D3E13004D7070494365E2DBD4D8134445F35E889D9E046BBA7 ] HTTP            C:\WINDOWS\system32\Drivers\HTTP.sys
12:48:43.0250 0x06c4  HTTP - ok
12:48:43.0312 0x06c4  [ 9EC7E866BBDBF3ECC0E67F4E0A838EB2, C98F569BDB58ED430C069516F64AFE1DE91FEA4CDF2572CEED7FF904E45F4FEE ] HTTPFilter      C:\WINDOWS\System32\w3ssl.dll
12:48:43.0437 0x06c4  HTTPFilter - ok
12:48:43.0437 0x06c4  i2omgmt - ok
12:48:43.0437 0x06c4  i2omp - ok
12:48:43.0500 0x06c4  [ 7C575018D0413440D75432A78B88C899, 064E0980C2D30ABB15BD4A20E0B0CC184B5E4FAB509307D91B4FB18973F6DD6F ] i8042prt        C:\WINDOWS\system32\DRIVERS\i8042prt.sys
12:48:43.0640 0x06c4  i8042prt - ok
12:48:46.0796 0x06c4  [ E8C7CC369C2FB657E0792AF70DF529E6, 2EDE19EE792A3222DAEEBE36B223715D5A81EB9C3354E3C7AF405D4C950B8E92 ] ialm            C:\WINDOWS\system32\DRIVERS\igxpmp32.sys
12:48:52.0984 0x06c4  ialm - ok
12:48:53.0546 0x06c4  [ C01AC32DC5C03076CFB852CB5DA5229C, A4D7749220B5BC965D96A267F1E02FE8284A230BA249109207BD4B9EA8DFAC96 ] idsvc           c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
12:48:54.0453 0x06c4  idsvc - ok
12:48:54.0500 0x06c4  [ F8AA320C6A0409C0380E5D8A99D76EC6, A848B9C489DDFBD48BDA140CB9DD43097686115042745F6444F803739168D391 ] Imapi           C:\WINDOWS\system32\DRIVERS\imapi.sys
12:48:54.0640 0x06c4  Imapi - ok
12:48:54.0750 0x06c4  [ 57D7267A9ED91ECAF4336B08C9628FCA, 1742A2D620DA325B6FCFFAD0D0D9177A73A58A353BE1462F3FE63BBC51DB97D0 ] ImapiService    C:\WINDOWS\system32\imapi.exe
12:48:54.0968 0x06c4  ImapiService - ok
12:48:54.0984 0x06c4  ini910u - ok
12:48:54.0984 0x06c4  IntelIde - ok
12:48:55.0093 0x06c4  [ C1C2CC1DA79C5EE10457EF0A3B8568C7, 7A37C349ADFCFAE86E679894F4E87A287712EF69D17BCC8B5C20C857E2B78B6A ] intelppm        C:\WINDOWS\system32\DRIVERS\intelppm.sys
12:48:55.0265 0x06c4  intelppm - ok
12:48:55.0312 0x06c4  [ 4448006B6BC60E6C027932CFC38D6855, C377235EBE475C281ACB6A3267F12D8FE623433F05134A6CE50562414F94D7B1 ] Ip6Fw           C:\WINDOWS\system32\DRIVERS\Ip6Fw.sys
12:48:55.0484 0x06c4  Ip6Fw - ok
12:48:55.0578 0x06c4  [ 731F22BA402EE4B62748ADAF6363C182, 5C3BEBD008A5BE4DC2F92076FF41A10DDC01E10EC7E6552213CFA11970811848 ] IpFilterDriver  C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
12:48:55.0781 0x06c4  IpFilterDriver - ok
12:48:55.0812 0x06c4  [ E1EC7F5DA720B640CD8FB8424F1B14BB, E5CF9F43D8C8028E8F29CAF8AD1E2179E5B02DCAA430900672FCB4C4EE288EF0 ] IpInIp          C:\WINDOWS\system32\DRIVERS\ipinip.sys
12:48:55.0937 0x06c4  IpInIp - ok
12:48:56.0015 0x06c4  [ E2168CBC7098FFE963C6F23F472A3593, 93B60D02ACBDDCE78BD4020B9CE0C132A8DD28FC2266B2748A22717B93AFF7C9 ] IpNat           C:\WINDOWS\system32\DRIVERS\ipnat.sys
12:48:56.0421 0x06c4  IpNat - ok
12:48:56.0500 0x06c4  [ 64537AA5C003A6AFEEE1DF819062D0D1, 5A6C11317DEF14B8C34A8C669EB75F7A8D46F05090C43D3DFF602CFA13CC504E ] IPSec           C:\WINDOWS\system32\DRIVERS\ipsec.sys
12:48:56.0640 0x06c4  IPSec - ok
12:48:56.0671 0x06c4  [ 50708DAA1B1CBB7D6AC1CF8F56A24410, A5657038A66B83472B456246E58884D5DF2E5B63BD176AE3DFFB6D5B6998E8B7 ] IRENUM          C:\WINDOWS\system32\DRIVERS\irenum.sys
12:48:56.0765 0x06c4  IRENUM - ok
12:48:56.0828 0x06c4  [ CE9B7AFDF0A3D7DD8D1487262316B959, 2843C253AC349818718FCCDC7832641AE3EE8E5B4879F1B76D180F23F8B00895 ] isapnp          C:\WINDOWS\system32\DRIVERS\isapnp.sys
12:48:57.0031 0x06c4  isapnp - ok
12:48:57.0218 0x06c4  [ 9AE07549A0D691A103FAF8946554BDB7, 74FFED470F9D8777F6BD05E3A5D46B41D5E98ACC1EA615C1ED2DA02C4FD660BC ] JavaQuickStarterService C:\Programme\Java\jre6\bin\jqs.exe
12:48:57.0296 0x06c4  JavaQuickStarterService - ok
12:48:57.0375 0x06c4  [ B128FC0A5CD83F669D5DE4B58F77C7D6, 8DDC829084C2B5B7CCF0938BBB518C892E1CB6AEC6EF8CD13DE3C95255DBF84E ] Kbdclass        C:\WINDOWS\system32\DRIVERS\kbdclass.sys
12:48:57.0578 0x06c4  Kbdclass - ok
12:48:57.0718 0x06c4  [ D93CAD07C5683DB066B0B2D2D3790EAD, 4C96F68F9914DCCDAFB5D6FC1A765ADFF37C6E4675AF0EF20AA1EDFF04CE27AD ] kmixer          C:\WINDOWS\system32\drivers\kmixer.sys
12:48:57.0843 0x06c4  kmixer - ok
12:48:57.0968 0x06c4  [ 674D3E5A593475915DC6643317192403, EDE02BB88BEFDCB3E312087AFB5D91D8E9648C0F8599BD551FDC745DBA765819 ] KSecDD          C:\WINDOWS\system32\drivers\KSecDD.sys
12:48:58.0109 0x06c4  KSecDD - ok
12:48:58.0187 0x06c4  [ 2865FA4ED4471929881C053A6E5A85F6, 404D43B8733BA1EE21408301F1E813F838F95F39B3E364B930E85C3361AA100E ] lanmanserver    C:\WINDOWS\System32\srvsvc.dll
12:48:58.0640 0x06c4  lanmanserver - ok
12:48:58.0781 0x06c4  [ F716A6F5BABB6DA60C0532510AB52245, 15022609C28B13FFD6460FCF4D694B1561FDCE0DD48B82E5A01735DF9EB57CF0 ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll
12:48:58.0843 0x06c4  lanmanworkstation - ok
12:48:58.0843 0x06c4  lbrtfdc - ok
12:48:58.0906 0x06c4  [ 4C25FADD7FE1D5BD779B20D3D0EB8D7C, 230F660122CA5AC16EC75C32A4CB807138E69EB68248E22DDAB98AEF0CB5AA69 ] LmHosts         C:\WINDOWS\System32\lmhsvc.dll
12:48:59.0015 0x06c4  LmHosts - ok
12:48:59.0078 0x06c4  [ A5B9DEC3FCFB6BCA24ED9A2154DA2C53, 1780241CEEFBF53F0605B8F3DF488C539E8B50C9E09E0DFE828174DFD4165F40 ] mbamchameleon   C:\WINDOWS\system32\drivers\mbamchameleon.sys
12:48:59.0109 0x06c4  mbamchameleon - ok
12:48:59.0156 0x06c4  [ E5215AB942C5AC5F7EB0E54871D7A27C, D1F4B56B3358D07D544A891544B0C913B1F980FD0A5A14D33FE0263D20D1D988 ] Messenger       C:\WINDOWS\System32\msgsvc.dll
12:48:59.0343 0x06c4  Messenger - ok
12:48:59.0390 0x06c4  [ 4AE068242760A1FB6E1A44BF4E16AFA6, 1FB771162B96AAF787AC24867B818DF8511F0780BB094FA9A38C11D8DBFE68BC ] mnmdd           C:\WINDOWS\system32\drivers\mnmdd.sys
12:48:59.0500 0x06c4  mnmdd - ok
12:48:59.0546 0x06c4  [ BB2470D20405B272EA47CA5E18F1C58E, 25FBCD1B48E2AEACAB0437BFBD4A3584E76D30E957DFDF4554709C15970C6CC8 ] mnmsrvc         C:\WINDOWS\system32\mnmsrvc.exe
12:48:59.0687 0x06c4  mnmsrvc - ok
12:48:59.0734 0x06c4  [ 91A3DA4B12F6F1D760463A7F7857F748, 399667C23B346ABEDA39E385A45F66B22CF94611999CA50F6D6C57E83547501B ] Modem           C:\WINDOWS\system32\drivers\Modem.sys
12:48:59.0906 0x06c4  Modem - ok
12:48:59.0937 0x06c4  [ 71E15CA47FD947552054AFB28536268F, C53BED7E31CD006FFA5F9D6AEAA7574102F9E780D4C68541EEA34B07A9031D54 ] Mouclass        C:\WINDOWS\system32\DRIVERS\mouclass.sys
12:49:00.0078 0x06c4  Mouclass - ok
12:49:00.0125 0x06c4  [ 66A6F73C74E1791464160A7065CE711A, 3C570FA1E8EF976B83759220FE95BAC9D7D48D607F91B113EDE4790D34ACBD46 ] mouhid          C:\WINDOWS\system32\DRIVERS\mouhid.sys
12:49:00.0250 0x06c4  mouhid - ok
12:49:00.0312 0x06c4  [ 65653F3B4477F3C63E68A9659F85EE2E, 32A34B22A4C1F50A966F321FD228C6B85F0F0315ABF3D40FC416618E786A4024 ] MountMgr        C:\WINDOWS\system32\drivers\MountMgr.sys
12:49:00.0453 0x06c4  MountMgr - ok
12:49:00.0593 0x06c4  [ 26EA1DAD601EE3ACAC301D66F07BA219, C9594BB15D53D4AC2156CCCD2DB65B2C20620F1F60DA85F48D1586FC10028096 ] MozillaMaintenance C:\Programme\Mozilla Maintenance Service\maintenanceservice.exe
12:49:01.0250 0x06c4  MozillaMaintenance - ok
12:49:01.0250 0x06c4  mraid35x - ok
12:49:01.0375 0x06c4  [ 46EDCC8F2DB2F322C24F48785CB46366, 0300EC19CAAEEC52001EBB7F3BE6DE314B42FE7F8BA072905070FEA75CC06E3B ] MRxDAV          C:\WINDOWS\system32\DRIVERS\mrxdav.sys
12:49:01.0781 0x06c4  MRxDAV - ok
12:49:02.0750 0x06c4  [ FB6C89BB3CE282B08BDB1E3C179E1C39, 0558617DB859228332F4B7E44875AB3CDBA370E78C23BB5E80B159AAA7087B3E ] MRxSmb          C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
12:49:04.0265 0x06c4  MRxSmb - ok
12:49:04.0437 0x06c4  [ D059F9C7752EF461476E83180DAA5C62, F20D18F24E8E66089028F1191D8FDEC46260C4453DF0D0CCB73DF2D0FDBBC7FE ] MSDTC           C:\WINDOWS\system32\msdtc.exe
12:49:04.0906 0x06c4  MSDTC - ok
12:49:05.0000 0x06c4  [ 561B3A4333CA2DBDBA28B5B956822519, 5B53906A29B9AA55A399F880CA989F9878BD943D3E97FB10A25BFD723654AF49 ] Msfs            C:\WINDOWS\system32\drivers\Msfs.sys
12:49:05.0390 0x06c4  Msfs - ok
12:49:05.0437 0x06c4  MSIServer - ok
12:49:05.0640 0x06c4  [ AE431A8DD3C1D0D0610CDBAC16057AD0, 8B3BCAC3DA71778DC8B863E6DEF10F02F65D1BDD3381802DDC0B2980F4F1FBB9 ] MSKSSRV         C:\WINDOWS\system32\drivers\MSKSSRV.sys
12:49:05.0796 0x06c4  MSKSSRV - ok
12:49:05.0890 0x06c4  [ 13E75FEF9DFEB08EEDED9D0246E1F448, 69D4CF483753FF253431656E1CB680F6702375696F94E259729BD11C25004031 ] MSPCLOCK        C:\WINDOWS\system32\drivers\MSPCLOCK.sys
12:49:06.0296 0x06c4  MSPCLOCK - ok
12:49:06.0468 0x06c4  [ 1988A33FF19242576C3D0EF9CE785DA7, 9E1C07F364DA7EF0D859BB7A3A06F849A153722E27E872640120CC6855D9FC51 ] MSPQM           C:\WINDOWS\system32\drivers\MSPQM.sys
12:49:06.0828 0x06c4  MSPQM - ok
12:49:06.0953 0x06c4  [ 469541F8BFD2B32659D5D463A6714BCE, 46AA7D2442DCC4C51C08BA0C00136F058F9160E6D6EDE78B2FD82545AE4FD10B ] mssmbios        C:\WINDOWS\system32\DRIVERS\mssmbios.sys
12:49:07.0703 0x06c4  mssmbios - ok
12:49:07.0828 0x06c4  [ 82035E0F41C2DD05AE41D27FE6CF7DE1, 6111D330E7ACB77E23EA6A9E001FC651DE1DC49D772DC6FDD3C4B8EDA57E1C7A ] Mup             C:\WINDOWS\system32\drivers\Mup.sys
12:49:08.0281 0x06c4  Mup - ok
12:49:08.0546 0x06c4  [ 558635D3AF1C7546D26067D5D9B6959E, 8C1802908DF35E442575969D29F4B22019A2B3E4C309B8E193F98F75AE81F013 ] NDIS            C:\WINDOWS\system32\drivers\NDIS.sys
12:49:08.0890 0x06c4  NDIS - ok
12:49:08.0921 0x06c4  [ 08D43BBDACDF23F34D79E44ED35C1B4C, F72CB8FA67C361C40B4C83F08302D7B2FD9178C1C60A7C236AF08B9CB5162591 ] NdisTapi        C:\WINDOWS\system32\DRIVERS\ndistapi.sys
12:49:09.0078 0x06c4  NdisTapi - ok
12:49:09.0140 0x06c4  [ 34D6CD56409DA9A7ED573E1C90A308BF, DE2060F57C913272524AFB0D472714ABF6F7E49A01534F23D95EE67F207CC6CF ] Ndisuio         C:\WINDOWS\system32\DRIVERS\ndisuio.sys
12:49:09.0328 0x06c4  Ndisuio - ok
12:49:09.0406 0x06c4  [ 0B90E255A9490166AB368CD55A529893, 90EB17422BF52FE6D0CC6ADA4262D605806C5B583DE04EDEC95FD47EE9697865 ] NdisWan         C:\WINDOWS\system32\DRIVERS\ndiswan.sys
12:49:09.0640 0x06c4  NdisWan - ok
12:49:09.0671 0x06c4  [ 59FC3FB44D2669BC144FD87826BB571F, B3C8CEFB09D5C85CBF12AED8CDB1FE455679D3436337263EFDABDC5116D92453 ] NDProxy         C:\WINDOWS\system32\drivers\NDProxy.sys
12:49:09.0875 0x06c4  NDProxy - ok
12:49:09.0921 0x06c4  [ 3A2ACA8FC1D7786902CA434998D7CEB4, ECE218DCDCB4D0A5CA8CBD14E931BAA3B5F381B70BBACB65B0EBBB46D2D31683 ] NetBIOS         C:\WINDOWS\system32\DRIVERS\netbios.sys
12:49:10.0062 0x06c4  NetBIOS - ok
12:49:10.0187 0x06c4  [ 0C80E410CD2F47134407EE7DD19CC86B, 2A1D0CE9797F4AB7A24873947A26DD6413B8DBB5A82C24CF28D1FC243AEFC5C8 ] NetBT           C:\WINDOWS\system32\DRIVERS\netbt.sys
12:49:10.0390 0x06c4  NetBT - ok
12:49:10.0484 0x06c4  [ F4EFF57254F565F39B6029150414A0D5, ADB4A797A25E7BD705A7FFCEEF15B681057748A7CEE19CC0B55F86446608752E ] NetDDE          C:\WINDOWS\system32\netdde.exe
12:49:10.0593 0x06c4  NetDDE - ok
12:49:10.0671 0x06c4  [ F4EFF57254F565F39B6029150414A0D5, ADB4A797A25E7BD705A7FFCEEF15B681057748A7CEE19CC0B55F86446608752E ] NetDDEdsdm      C:\WINDOWS\system32\netdde.exe
12:49:10.0765 0x06c4  NetDDEdsdm - ok
12:49:10.0812 0x06c4  [ 183805EB05BCA5A1E4AAAED4D2BE3690, D1821D2F616F029C07D0727FF8EB0862374EE544F4A66567F0433E567AF2B85A ] Netlogon        C:\WINDOWS\system32\lsass.exe
12:49:10.0906 0x06c4  Netlogon - ok
12:49:11.0046 0x06c4  [ 1E5218FBE323C375B488318950E10FB4, EC74DCF23B4FD08FE15BE636B2E556399797A7960D313F57F7A9554E030F1D29 ] Netman          C:\WINDOWS\System32\netman.dll
12:49:11.0453 0x06c4  Netman - ok
12:49:11.0656 0x06c4  [ D34612C5D02D026535B3095D620626AE, 1BBCCCBF49EB8807240A77DCB43C25C21682073CC5356594E2C4F53EF36BF657 ] NetTcpPortSharing c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
12:49:11.0796 0x06c4  NetTcpPortSharing - ok
12:49:11.0859 0x06c4  [ 5C5C53DB4FEF16CF87B9911C7E8C6FBC, AD1FD07DD9E745C29986C2A25E9EF80B93CBF0F47FCF76741DD6E9CC81C7D241 ] NIC1394         C:\WINDOWS\system32\DRIVERS\nic1394.sys
12:49:12.0078 0x06c4  NIC1394 - ok
12:49:12.0250 0x06c4  [ 774274C487493452DF3B0126DBE7FF3B, B8CD8FB06E2CCB428E34885324C1B83BDD6DEF4BA4B30B7DE42D8DB211DDA9FC ] Nla             C:\WINDOWS\System32\mswsock.dll
12:49:12.0484 0x06c4  Nla - ok
12:49:12.0531 0x06c4  [ 4F601BCB8F64EA3AC0994F98FED03F8E, D9D6783B970CB871DE0C6EDD8BE42F30CD1DCD55D4DF006922D9CFC0CF020D27 ] Npfs            C:\WINDOWS\system32\drivers\Npfs.sys
12:49:12.0734 0x06c4  Npfs - ok
12:49:13.0156 0x06c4  [ B78BE402C3F63DD55521F73876951CDD, 020D75527B4814C544820D29CA064E94F2FCB7B1BA011D63E9D2BFD4CF91BA61 ] Ntfs            C:\WINDOWS\system32\drivers\Ntfs.sys
12:49:13.0703 0x06c4  Ntfs - ok
12:49:13.0734 0x06c4  [ 183805EB05BCA5A1E4AAAED4D2BE3690, D1821D2F616F029C07D0727FF8EB0862374EE544F4A66567F0433E567AF2B85A ] NtLmSsp         C:\WINDOWS\system32\lsass.exe
12:49:13.0812 0x06c4  NtLmSsp - ok
12:49:14.0093 0x06c4  [ 428AA946A8D9F32DBB4260C8E6E13377, EE5D259287CFDEA7A83D565702CCD7C1F91C376B1327E8BAFF2A3DEFE3BE763E ] NtmsSvc         C:\WINDOWS\system32\ntmssvc.dll
12:49:14.0359 0x06c4  NtmsSvc - ok
12:49:14.0390 0x06c4  [ 73C1E1F395918BC2C6DD67AF7591A3AD, B21133A75253EC15E2DFF66D3B480AB1A7E1A2360476C810E7AA55D0F0EB08D4 ] Null            C:\WINDOWS\system32\drivers\Null.sys
12:49:14.0500 0x06c4  Null - ok
12:49:14.0531 0x06c4  [ B305F3FAD35083837EF46A0BBCE2FC57, 9D0E0E666D652D0FC9EAB97280A5D67AAF61D6B21929DF7CF8ED72A367720464 ] NwlnkFlt        C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
12:49:14.0656 0x06c4  NwlnkFlt - ok
12:49:14.0671 0x06c4  [ C99B3415198D1AAB7227F2C88FD664B9, DD8DA4B5E804F134AB9233859544C025062902DFC3E8FB8A09A67337A4E73F55 ] NwlnkFwd        C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
12:49:14.0796 0x06c4  NwlnkFwd - ok
12:49:15.0140 0x06c4  [ 84DE1DD996B48B05ACE31AD015FA108A, 4B9D1E4EF83ECED6C77F23D9879C124534F7053D7423E3A2D0F67A4A720CEA94 ] odserv          C:\Programme\Gemeinsame Dateien\Microsoft Shared\OFFICE12\ODSERV.EXE
12:49:15.0296 0x06c4  odserv - ok
12:49:15.0343 0x06c4  [ 0951DB8E5823EA366B0E408D71E1BA2A, EAF0E680BC476D8CEBAD0C21F2EDB958F333B731E8B131DA450D716FEC2C87B0 ] ohci1394        C:\WINDOWS\system32\DRIVERS\ohci1394.sys
12:49:15.0500 0x06c4  ohci1394 - ok
12:49:15.0609 0x06c4  [ 5A432A042DAE460ABE7199B758E8606C, 6E5D1F477D290905BE27CEBF9572BAC6B05FFEF2FAD901D3C8E11F665F8B9A71 ] ose             C:\Programme\Gemeinsame Dateien\Microsoft Shared\Source Engine\OSE.EXE
12:49:15.0625 0x06c4  ose - ok
12:49:15.0687 0x06c4  [ B2F17A2EDB5450E61973A037F63A595B, 21B5C7EC1FD0730BFA0D1390ECA744037344C020847615BBC3AA29E5169CA64F ] Parport         C:\WINDOWS\system32\drivers\Parport.sys
12:49:15.0843 0x06c4  Parport - ok
12:49:15.0875 0x06c4  [ 3334430C29DC338092F79C38EF7B4CD0, B54989B46D77F124D66741A939FF2033F73854FC39AF13C8165D01203A94A94E ] PartMgr         C:\WINDOWS\system32\drivers\PartMgr.sys
12:49:15.0984 0x06c4  PartMgr - ok
12:49:16.0015 0x06c4  [ C2BF987829099A3EAA2CA6A0A90ECB4F, 1DF21EA8E43875CFEECD869407429F82FB449707CFB845718499468E699BAAAA ] ParVdm          C:\WINDOWS\system32\drivers\ParVdm.sys
12:49:16.0171 0x06c4  ParVdm - ok
12:49:16.0250 0x06c4  [ 6FB463E5B243FBD6F3D3C83F914D94FB, 9B259BC29C458463D56EC59BDE4C116AEDC4AEFC53690292071628E739BABDB6 ] PCI             C:\WINDOWS\system32\DRIVERS\pci.sys
12:49:16.0390 0x06c4  PCI - ok
12:49:16.0406 0x06c4  PCIDump - ok
12:49:16.0437 0x06c4  [ 59BA86D9A61CBCF4DF8E598C331F5B82, 822D11C5CE77BFD7B2F25350CCBF92B0B9388EEA6D86ED220B768C720976D839 ] PCIIde          C:\WINDOWS\system32\DRIVERS\pciide.sys
12:49:16.0531 0x06c4  PCIIde - ok
12:49:16.0640 0x06c4  [ E2363F4C1DAFF89ABEE5F593E13D8A05, 92EDD9CE64BDA74EAB095077AE6A41ED4EBCE81694193DFCDDF158ECAEF3F96B ] Pcmcia          C:\WINDOWS\system32\DRIVERS\pcmcia.sys
12:49:16.0906 0x06c4  Pcmcia - ok
12:49:16.0906 0x06c4  PDCOMP - ok
12:49:16.0906 0x06c4  PDFRAME - ok
12:49:16.0921 0x06c4  PDRELI - ok
12:49:16.0921 0x06c4  PDRFRAME - ok
12:49:16.0937 0x06c4  perc2 - ok
12:49:16.0937 0x06c4  perc2hib - ok
12:49:17.0046 0x06c4  [ 65F6B774819BD727358157CEDEA67B8E, 050F7AC4B0C6D17574F374BDCF9A199437872C85E328530A49F500F69A1D7566 ] PlugPlay        C:\WINDOWS\system32\services.exe
12:49:17.0125 0x06c4  PlugPlay - ok
12:49:17.0171 0x06c4  [ 183805EB05BCA5A1E4AAAED4D2BE3690, D1821D2F616F029C07D0727FF8EB0862374EE544F4A66567F0433E567AF2B85A ] PolicyAgent     C:\WINDOWS\system32\lsass.exe
12:49:17.0343 0x06c4  PolicyAgent - ok
12:49:17.0406 0x06c4  [ 1C5CC65AAC0783C344F16353E60B72AC, 7786CFE970A79B327DB57AEBADA8B0B94B4DE07CE8AF285E9835B2AADD597296 ] PptpMiniport    C:\WINDOWS\system32\DRIVERS\raspptp.sys
12:49:17.0546 0x06c4  PptpMiniport - ok
12:49:17.0593 0x06c4  [ 183805EB05BCA5A1E4AAAED4D2BE3690, D1821D2F616F029C07D0727FF8EB0862374EE544F4A66567F0433E567AF2B85A ] ProtectedStorage C:\WINDOWS\system32\lsass.exe
12:49:17.0671 0x06c4  ProtectedStorage - ok
12:49:17.0718 0x06c4  [ 48671F327553DCF1D27F6197F622A668, CB34A17BC36E8F8BB5F87F9EE21311C50DE9AE156513D682581DE47C93EC155D ] PSched          C:\WINDOWS\system32\DRIVERS\psched.sys
12:49:17.0859 0x06c4  PSched - ok
12:49:17.0906 0x06c4  [ 80D317BD1C3DBC5D4FE7B1678C60CADD, DA76804B55D0CAB3DDD01EFC06673764AE4860693375C658B6063FB14AF7F12C ] Ptilink         C:\WINDOWS\system32\DRIVERS\ptilink.sys
12:49:18.0015 0x06c4  Ptilink - ok
12:49:18.0015 0x06c4  ql1080 - ok
12:49:18.0015 0x06c4  Ql10wnt - ok
12:49:18.0031 0x06c4  ql12160 - ok
12:49:18.0031 0x06c4  ql1240 - ok
12:49:18.0031 0x06c4  ql1280 - ok
12:49:18.0078 0x06c4  [ FE0D99D6F31E4FAD8159F690D68DED9C, 998685622ABE631984B7E4DBF91AB3594B1F574378D75EB9F6265F4650470692 ] RasAcd          C:\WINDOWS\system32\DRIVERS\rasacd.sys
12:49:18.0250 0x06c4  RasAcd - ok
12:49:18.0328 0x06c4  [ E3C6E87C1F84584A773D7C3DD205DBFF, E5F1FDCA1029170AFED8D5642E867F1F4A6F4F9894B099D5B3477140E3AFFDFE ] RasAuto         C:\WINDOWS\System32\rasauto.dll
12:49:18.0437 0x06c4  RasAuto - ok
12:49:18.0484 0x06c4  [ 98FAEB4A4DCF812BA1C6FCA4AA3E115C, F59974A2A3C21071BC72CA4DAF5D2DDF93471EC16FD1A34DE9DC1A50027F6835 ] Rasl2tp         C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
12:49:18.0625 0x06c4  Rasl2tp - ok
12:49:18.0765 0x06c4  [ A5D2D745A2AEFA327DCA6DA317B5FD70, 98DC43ACD8C32CC0BE8DCFF86E58A9EC15F7783D6DB0722FF179157C0683BB88 ] RasMan          C:\WINDOWS\System32\rasmans.dll
12:49:18.0859 0x06c4  RasMan - ok
12:49:18.0921 0x06c4  [ 7306EEED8895454CBED4669BE9F79FAA, DC6874ECAD9105BC9EAB007291958911D7D4D3649124472070B3496B36C45200 ] RasPppoe        C:\WINDOWS\system32\DRIVERS\raspppoe.sys
12:49:19.0140 0x06c4  RasPppoe - ok
12:49:19.0171 0x06c4  [ FDBB1D60066FCFBB7452FD8F9829B242, 10A2DACF944BD000032EBA8C095CB3D879CC55B28C377ADF6E52E508E47444DB ] Raspti          C:\WINDOWS\system32\DRIVERS\raspti.sys
12:49:19.0296 0x06c4  Raspti - ok
12:49:19.0406 0x06c4  [ 809CA45CAA9072B3176AD44579D7F688, 95ECD22D042CB2394C869AD42E8F6DAAEE29BA9BBE9C164092A554B505F1EDA2 ] Rdbss           C:\WINDOWS\system32\DRIVERS\rdbss.sys
12:49:19.0828 0x06c4  Rdbss - ok
12:49:19.0859 0x06c4  [ 4912D5B403614CE99C28420F75353332, 975341ECD660209987B5E5171B8315E032439E408CBE8A5986E67AF767F373BB ] RDPCDD          C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
12:49:19.0968 0x06c4  RDPCDD - ok
12:49:20.0109 0x06c4  [ A2CAE2C60BC37E0751EF9DDA7CEAF4AD, 586900D30F44E132AC75520EFF4FF615AA46283F1F050AC93FF9C235AC0F1D75 ] rdpdr           C:\WINDOWS\system32\DRIVERS\rdpdr.sys
12:49:20.0359 0x06c4  rdpdr - ok
12:49:20.0484 0x06c4  [ B54CD38A9EBFBF2B3561426E3FE26F62, 2BE75A68C598A2E162F09BCBA140909B9480A7E06A733B5D58673A172CAD8084 ] RDPWD           C:\WINDOWS\system32\drivers\RDPWD.sys
12:49:20.0843 0x06c4  RDPWD - ok
12:49:20.0953 0x06c4  [ AEC159942DF64A9890072D7BB1797762, 7AE6A4A521154875475205B2FEE07AE845EA4C930611C2D92BAE164E92BCB417 ] RDSessMgr       C:\WINDOWS\system32\sessmgr.exe
12:49:21.0078 0x06c4  RDSessMgr - ok
12:49:21.0156 0x06c4  [ AA56702E230860565CB8D43680F57F33, A2E3FE04335B988E1DEBF0AE717719B865E4A9807F916EACF64C114C49758FE1 ] redbook         C:\WINDOWS\system32\DRIVERS\redbook.sys
12:49:21.0312 0x06c4  redbook - ok
12:49:21.0421 0x06c4  [ EBA80CDF25E02084857957E820004934, 54F0EC0C91F0F277A5946D5BB41D2C1738253509174A53A3B7FD6434067C8A13 ] RemoteAccess    C:\WINDOWS\System32\mprdim.dll
12:49:21.0578 0x06c4  RemoteAccess - ok
12:49:21.0671 0x06c4  [ AE81CF7D7CFA79CD03E8FB99788A7E09, 8E5836CC42C923FA1AAD5D5E06F8E89B370ABA7E227D90705CAE39C17DE1E908 ] RemoteRegistry  C:\WINDOWS\system32\regsvc.dll
12:49:21.0828 0x06c4  RemoteRegistry - ok
12:49:21.0890 0x06c4  [ 99C4B74981A1413F142A3903130088CB, 46F17447F4E5C90AA726BE9076288D4726FB3E5B0AC5B57059452213F46C15CC ] RFCOMM          C:\WINDOWS\system32\DRIVERS\rfcomm.sys
12:49:22.0000 0x06c4  RFCOMM - ok
12:49:22.0078 0x06c4  [ DA23F9F3F1B1871120F980A6879581AC, B8A582D639540CD23E5573504EE64A6AB2E27B7B31F2EB8398190F735D36B0F8 ] RpcLocator      C:\WINDOWS\system32\locator.exe
12:49:22.0296 0x06c4  RpcLocator - ok
12:49:22.0531 0x06c4  [ D45BBCDDC74A1B0259A0C4B00C190D20, 61B4A8626752EA21B2DB966D82B86ADC21E5EABDC0C77AF4BE0930F4552681F3 ] RpcSs           C:\WINDOWS\System32\rpcss.dll
12:49:22.0750 0x06c4  RpcSs - ok
12:49:22.0843 0x06c4  [ 4BDD71B4B521521499DFD14735C4F398, 7B1498D3C67E56D05B58B7DA319ECB0117C37963AABB0E59B42831C087469DA1 ] RSVP            C:\WINDOWS\system32\rsvp.exe
12:49:22.0968 0x06c4  RSVP - ok
12:49:23.0015 0x06c4  [ 183805EB05BCA5A1E4AAAED4D2BE3690, D1821D2F616F029C07D0727FF8EB0862374EE544F4A66567F0433E567AF2B85A ] SamSs           C:\WINDOWS\system32\lsass.exe
12:49:23.0171 0x06c4  SamSs - ok
12:49:23.0296 0x06c4  [ B4CF7B42DE6CFA6FDE7D6AF4DAA55F57, F29B85D91EBE16BCB9E8D25F641C4C94E58B9D5F4C8F925A13601980404BAE0A ] SCardSvr        C:\WINDOWS\System32\SCardSvr.exe
12:49:23.0453 0x06c4  SCardSvr - ok
12:49:23.0593 0x06c4  [ D5E73842F38E24457C63FEF8CEFFBE19, 3456F527AE8E89603E4842C1CB71E5D84CBB2CAA99C384BEAC46DA2436E515C5 ] Schedule        C:\WINDOWS\system32\schedsvc.dll
12:49:23.0750 0x06c4  Schedule - ok
12:49:23.0843 0x06c4  [ D26E26EA516450AF9D072635C60387F4, C78D26B2E6343176EA9E09DD96CDAE108F832B7973FABF756D05E24392FEF388 ] Secdrv          C:\WINDOWS\system32\DRIVERS\secdrv.sys
12:49:23.0984 0x06c4  Secdrv - ok
12:49:24.0046 0x06c4  [ FED544B43903FB801B106F062110358A, 108739F6D260EE1FF3AD7392B7E3DCDE858EFA97ACDDE7A41F1F8E1AEA9D238A ] seclogon        C:\WINDOWS\System32\seclogon.dll
12:49:24.0234 0x06c4  seclogon - ok
12:49:24.0281 0x06c4  [ AB74D986C1DD0D0C95B6AD37EC1E9F4F, 9A13D6357BBA9FD84E6DD727FF5475157D6243CC5DAEB85D11450DC928D51036 ] SENS            C:\WINDOWS\system32\sens.dll
12:49:24.0390 0x06c4  SENS - ok
12:49:24.0421 0x06c4  [ A2D868AEEFF612E70E213C451A70CAFB, 25CBB9E26CDCBD8E221ACF4364E82E8F811C3144E0EEF9DF9DAEC8534243BD3B ] serenum         C:\WINDOWS\system32\DRIVERS\serenum.sys
12:49:24.0531 0x06c4  serenum - ok
12:49:24.0593 0x06c4  [ CD5B9995AFCDB466C9EFC048D167E3BE, C80F17BA17ACA8BCCE7C4230C2F076972254813FFFB9A0B71610EB7182D9F9FD ] Serial          C:\WINDOWS\system32\DRIVERS\serial.sys
12:49:24.0734 0x06c4  Serial - ok
12:49:24.0781 0x06c4  [ 0D13B6DF6E9E101013A7AFB0CE629FE0, 2214EA0F16BB33970E299CE457EB50AEE0BEF7959BC1EBD3C06C78A46B42B808 ] Sfloppy         C:\WINDOWS\system32\drivers\Sfloppy.sys
12:49:24.0890 0x06c4  Sfloppy - ok
12:49:25.0093 0x06c4  [ 9245420422E409A25C1410ACB4244060, 62523AA3B99CD20CABBC843744AD95A200959BAE3C485B75B9EABC71C57E8DD2 ] SharedAccess    C:\WINDOWS\System32\ipnathlp.dll
12:49:25.0578 0x06c4  SharedAccess - ok
12:49:25.0671 0x06c4  [ BAC5F7F0C2B8C1B9832594851E0F9914, D6FAFCBF2219D7DD43F8692C1A6C45133E4636B2FEB7F5162CF01D2A62C48F0D ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
12:49:25.0796 0x06c4  ShellHWDetection - ok
12:49:25.0812 0x06c4  Simbad - ok
12:49:25.0812 0x06c4  Sparrow - ok
12:49:25.0859 0x06c4  [ 8E186B8F23295D1E42C573B82B80D548, C418568C2071E2761CD26F736443BD7BF9C6914D47D171A5AC990278E855A74F ] splitter        C:\WINDOWS\system32\drivers\splitter.sys
12:49:25.0984 0x06c4  splitter - ok
12:49:26.0031 0x06c4  [ DA81EC57ACD4CDC3D4C51CF3D409AF9F, 521257429493F31516EDE549869EFA4B7A262F6A69EA1E82A9C875456C10E702 ] Spooler         C:\WINDOWS\system32\spoolsv.exe
12:49:26.0406 0x06c4  Spooler - ok
12:49:26.0515 0x06c4  [ E4200CB2F418D8FC4ACDD7E38C419D6A, 9F910E3C1E91FC13DD09F8791E98CEC11C17BEF8D7169483E8CA6FEC832CB8C4 ] sr              C:\WINDOWS\system32\DRIVERS\sr.sys
12:49:26.0625 0x06c4  sr - ok
12:49:26.0765 0x06c4  [ 015F302C4CF961F20C3F98F3A7CA7917, E82996C372D3E4E25D9B622C6D79B60BFDAE1DABD251C1174E080FB74B92C083 ] srservice       C:\WINDOWS\system32\srsvc.dll
12:49:26.0828 0x06c4  srservice - ok
12:49:27.0078 0x06c4  [ 7A4F147CC6B133F905F6E65E2F8669FB, 82E3C4F1A92D8D8129CC1CA07F516B537EA6A3B2EEDF47A2C32BEC7828A83A32 ] Srv             C:\WINDOWS\system32\DRIVERS\srv.sys
12:49:27.0593 0x06c4  Srv - ok
12:49:27.0687 0x06c4  [ 6FA03B462B2FFFE2627171B7FE73EE29, 8B5614500B1DC6DD077B5F47738DDAA1C8E88C3CCA049622B7FE548DB6A1EE0B ] SSDPSRV         C:\WINDOWS\System32\ssdpsrv.dll
12:49:27.0828 0x06c4  SSDPSRV - ok
12:49:27.0968 0x06c4  [ 2C71F7AFB1DA599E87F3C4FF15188EBE, 1B9DC278674AB8663A2D92CC66ECF233DC101844B0F9D8D8CD5BD4825460B469 ] ssudmdm         C:\WINDOWS\system32\DRIVERS\ssudmdm.sys
12:49:28.0093 0x06c4  ssudmdm - ok
12:49:28.0843 0x06c4  [ 951801DFB54D86F611F0AF47825476F9, 96A4453AB42953E6FE57377D125AFEB98B18901E1D8450CA96CE3304FBF79A90 ] STHDA           C:\WINDOWS\system32\drivers\sthda.sys
12:49:30.0203 0x06c4  STHDA - ok
12:49:30.0453 0x06c4  [ 7E751068ADA60FC77638622E86A7CD9E, CA841427E8C83E7E98D978D57EC23891171B0DC72050DE1C890D5877236332BF ] stisvc          C:\WINDOWS\system32\wiaservc.dll
12:49:30.0765 0x06c4  stisvc - ok
12:49:30.0796 0x06c4  [ 03C1BAE4766E2450219D20B993D6E046, 0D8E5B141EAA9E2C8D1F8BFD522F57EE8074216A336CBE37FE77B8ADDB791DBE ] swenum          C:\WINDOWS\system32\DRIVERS\swenum.sys
12:49:30.0906 0x06c4  swenum - ok
12:49:30.0968 0x06c4  [ 94ABC808FC4B6D7D2BBF42B85E25BB4D, EEF6DB9EDD8C273A6595675A7A12B9D440FA4E178BA7C69FB1942D97E291F989 ] swmidi          C:\WINDOWS\system32\drivers\swmidi.sys
12:49:31.0125 0x06c4  swmidi - ok
12:49:31.0125 0x06c4  SwPrv - ok
12:49:31.0125 0x06c4  symc810 - ok
12:49:31.0125 0x06c4  symc8xx - ok
12:49:31.0140 0x06c4  sym_hi - ok
12:49:31.0140 0x06c4  sym_u3 - ok
12:49:31.0218 0x06c4  [ 650AD082D46BAC0E64C9C0E0928492FD, 6A587A55418A3A7867602D92B99FE393152DED191F27992C4BA909BD268AC43C ] sysaudio        C:\WINDOWS\system32\drivers\sysaudio.sys
12:49:31.0375 0x06c4  sysaudio - ok
12:49:31.0468 0x06c4  [ 6D0C43DF9D3A7C5A9B4F94772CBD5DDC, 23CC1826F15748A4F6A38979F18CED3DE299BB3973C10CD4DACBFD1C7BF6030C ] SysmonLog       C:\WINDOWS\system32\smlogsvc.exe
12:49:31.0578 0x06c4  SysmonLog - ok
12:49:31.0750 0x06c4  [ 427D7EB3B453347082C8F4B370065D60, 1F8581227FA821C3DFFB9CFAE05731DEE2881A8FED553F40BAD3D562D443CC12 ] TapiSrv         C:\WINDOWS\System32\tapisrv.dll
12:49:32.0078 0x06c4  TapiSrv - ok
12:49:32.0296 0x06c4  [ 2A5554FC5B1E04E131230E3CE035C3F9, 97CD31598A95BAF227BD4763AE721DCBF2E7BBB951E95F33B56C94C3B1D7CF4A ] Tcpip           C:\WINDOWS\system32\DRIVERS\tcpip.sys
12:49:32.0781 0x06c4  Tcpip - ok
12:49:32.0812 0x06c4  [ 38D437CF2D98965F239B0ABCD66DCB0F, CC497A25C7AC1FF1E07CEE25FB0C5A5E6C4005C1CB244601FE620884A5C26506 ] TDPIPE          C:\WINDOWS\system32\drivers\TDPIPE.sys
12:49:32.0968 0x06c4  TDPIPE - ok
12:49:33.0031 0x06c4  [ ED0580AF02502D00AD8C4C066B156BE9, 41AA6C88CF48CAF0DA8E374F37E74206E4F558332075304A28983D04E08B3154 ] TDTCP           C:\WINDOWS\system32\drivers\TDTCP.sys
12:49:33.0187 0x06c4  TDTCP - ok
12:49:33.0250 0x06c4  [ A540A99C281D933F3D69D55E48727F47, CC430FA0E0F1745E167877003FDCC35FE940AF8CAD05387ECBA880CC3A3F6709 ] TermDD          C:\WINDOWS\system32\DRIVERS\termdd.sys
12:49:33.0453 0x06c4  TermDD - ok
12:49:33.0656 0x06c4  [ 1850BC10DE5DCCCEDE063FC2D0F2CEDA, 1EF2C45FCD1EAAC431D1079BCFC6D3DA7756ECA9BDA1B26BADD2E8E101F1EB2F ] TermService     C:\WINDOWS\System32\termsrv.dll
12:49:33.0812 0x06c4  TermService - ok
12:49:33.0921 0x06c4  [ BAC5F7F0C2B8C1B9832594851E0F9914, D6FAFCBF2219D7DD43F8692C1A6C45133E4636B2FEB7F5162CF01D2A62C48F0D ] Themes          C:\WINDOWS\System32\shsvcs.dll
12:49:34.0015 0x06c4  Themes - ok
12:49:34.0093 0x06c4  [ 58708746B8267033E5CF2B29659E7F74, F1AD45CE811A7BFC77124CC36AE7E46AD09651BEF484B42A01D4F7B82884566D ] TlntSvr         C:\WINDOWS\system32\tlntsvr.exe
12:49:34.0171 0x06c4  TlntSvr - ok
12:49:34.0171 0x06c4  TosIde - ok
12:49:34.0234 0x06c4  [ A34E894201D66E380E1FA96FE11B587E, 1A6A39492FCE3F63FB422F4C6C525B8DE39C38D8AD220E23D1194FD9B31C9B6F ] TrkWks          C:\WINDOWS\system32\trkwks.dll
12:49:34.0390 0x06c4  TrkWks - ok
12:49:34.0546 0x06c4  [ 8F5D673617D0101FC85DD30A27FC20C4, FC3CB3440407D79185AC250066B1970670897EE1D2376236780ADF93BF51DDF0 ] TUWinStylerThemeSvc C:\Programme\TuneUpUtilities2006\WinStylerThemeSvc.exe
12:49:34.0984 0x06c4  TUWinStylerThemeSvc - detected UnsignedFile.Multi.Generic ( 1 )
12:49:45.0265 0x06c4  TUWinStylerThemeSvc ( UnsignedFile.Multi.Generic ) - warning
12:49:45.0265 0x06c4  Force sending object to P2P due to detect: TUWinStylerThemeSvc
12:49:49.0281 0x06c4  Object send P2P result: true
12:49:52.0125 0x06c4  [ 12F70256F140CD7D52C58C7048FDE657, F2E3E645AA713A520452F5E17513D258D3900E93F65013551FC2B542BFA15BB3 ] Udfs            C:\WINDOWS\system32\drivers\Udfs.sys
12:49:52.0421 0x06c4  Udfs - ok
12:49:52.0421 0x06c4  ultra - ok
12:49:52.0562 0x06c4  [ A4815A4884898F355A3513E60843A4FD, 77F9ABAE23D58E505FFC2E64037E4724ED55B30F8C8210A662010F5708FE0A4A ] Update          C:\WINDOWS\system32\DRIVERS\update.sys
12:49:53.0265 0x06c4  Update - ok
12:49:53.0453 0x06c4  [ 09D4A2D7C5A8ABEC227D118765FAADDF, D69A5DA995D85EB2BB167D378E568A67C35F6EC69EB63E1DB6A08E4EF3B714A6 ] upnphost        C:\WINDOWS\System32\upnphost.dll
12:49:53.0843 0x06c4  upnphost - ok
12:49:53.0921 0x06c4  [ A99F867E76CFDAA28EE305B93F70E84F, 410063EE60AE2322633A3E1169896405D6892A1623EF4E89113A0A6F8A191991 ] UPS             C:\WINDOWS\System32\ups.exe
12:49:54.0062 0x06c4  UPS - ok
12:49:54.0125 0x06c4  [ BFFD9F120CC63BCBAA3D840F3EEF9F79, 0183D82E341473200FB1A05F6ABBBA3F2BD635654F49599E4CEB3E6394A33D36 ] usbccgp         C:\WINDOWS\system32\DRIVERS\usbccgp.sys
12:49:54.0656 0x06c4  usbccgp - ok
12:49:54.0718 0x06c4  [ 15E993BA2F6946B2BFBBFCD30398621E, 10AD5B133C9C68B8E11DF702C50BDE5162693C5A9F132DFE1823D03D70D4EB89 ] usbehci         C:\WINDOWS\system32\DRIVERS\usbehci.sys
12:49:54.0875 0x06c4  usbehci - ok
12:49:54.0937 0x06c4  [ C72F40947F92CEA56A8FB532EDF025F1, EBB9E235C973574B835B1FD22D813E9215029B3FC5030591D6F7971C9A23AEF7 ] usbhub          C:\WINDOWS\system32\DRIVERS\usbhub.sys
12:49:55.0390 0x06c4  usbhub - ok
12:49:55.0437 0x06c4  [ A6BC71402F4F7DD5B77FD7F4A8DDBA85, E40B73D4E2417F4874D155885C86E4FB44557324616AABD84EFE6C4751DCC46B ] usbscan         C:\WINDOWS\system32\DRIVERS\usbscan.sys
12:49:55.0531 0x06c4  usbscan - ok
12:49:55.0625 0x06c4  [ 6CD7B22193718F1D17A47A1CD6D37E75, CFD74FE06819DA488654F88BFCCBF29994FE7F04EC6CD5CD41552B0C95A8130F ] USBSTOR         C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
12:49:56.0046 0x06c4  USBSTOR - ok
12:49:56.0093 0x06c4  [ F8FD1400092E23C8F2F31406EF06167B, AE93C83BA1966535AFA3E72D6F69156B7E56F021A6808EC8DA44C7E7D506D7E5 ] usbuhci         C:\WINDOWS\system32\DRIVERS\usbuhci.sys
12:49:56.0218 0x06c4  usbuhci - ok
12:49:56.0250 0x06c4  [ 8A60EDD72B4EA5AEA8202DAF0E427925, ED0624B285E4F64E07E30C12490873A2090F9DFD6A91A2EDA7A1082B88A8199E ] VgaSave         C:\WINDOWS\System32\drivers\vga.sys
12:49:56.0484 0x06c4  VgaSave - ok
12:49:56.0500 0x06c4  ViaIde - ok
12:49:56.0578 0x06c4  [ D6888520FF56D72A50437E371CA25FC9, 54B7E24E750A2E0CE1AD6ADAB69C9CF19F7A9FD774A9D96A255C9D47AB0642B4 ] VolSnap         C:\WINDOWS\system32\drivers\VolSnap.sys
12:49:57.0125 0x06c4  VolSnap - ok
12:49:57.0312 0x06c4  [ 6635ECBF0D8090DC3A452D0D072B5D5B, 4FC0E170AF3E9999F0818E8CDDC4CD51073638CC915E191E3BBFB4D5AEC29563 ] VSS             C:\WINDOWS\System32\vssvc.exe
12:49:57.0609 0x06c4  VSS - ok
12:49:57.0781 0x06c4  [ C6D874CD2A5B83CD11CDEBD28A638584, C38969D6F648EB03565F4A505F7E15EBF8D6A0564757E4DA7C6397CBF79FFA8A ] W32Time         C:\WINDOWS\system32\w32time.dll
12:49:58.0000 0x06c4  W32Time - ok
12:49:58.0046 0x06c4  [ 984EF0B9788ABF89974CFED4BFBAACBC, 8178888E3A1AA3BD3BE34456118BB76AF2DD04EC575E4880F97A8EFB182C9E92 ] Wanarp          C:\WINDOWS\system32\DRIVERS\wanarp.sys
12:49:58.0328 0x06c4  Wanarp - ok
12:49:58.0328 0x06c4  WDICA - ok
12:49:58.0437 0x06c4  [ 2797F33EBF50466020C430EE4F037933, F134F8C091D944880714E4D193D2753BE4F1C18757D5274A892195C4EC9C4D08 ] wdmaud          C:\WINDOWS\system32\drivers\wdmaud.sys
12:49:58.0765 0x06c4  wdmaud - ok
12:49:58.0812 0x06c4  [ 879ECB9A5F14A03960B84EDB7207A051, 1F7B9296BA8DD0DF4DB595A0F1DB2C7A504930BE2CE07FC196401E450F063A8B ] WebClient       C:\WINDOWS\System32\webclnt.dll
12:49:59.0359 0x06c4  WebClient - ok
12:49:59.0546 0x06c4  [ DA2DADB42916E59C6E4BBA593BCCDA73, E86B7C169ABC78F23D7D4BC5705E9861BE4840DF7064C08B8460B16179D8DF6C ] winmgmt         C:\WINDOWS\system32\wbem\WMIsvc.dll
12:49:59.0937 0x06c4  winmgmt - ok
12:49:59.0968 0x06c4  wltrysvc - ok
12:50:00.0078 0x06c4  [ F4DB1F1417FF329E8FF217D5C474D5D7, 6F21B534C744A37AAEF022663A5A2F6F3C80AE673D5724A1C1BDC4B6499F892B ] WmdmPmSN        C:\WINDOWS\system32\MsPMSNSv.dll
12:50:00.0140 0x06c4  WmdmPmSN - ok
12:50:00.0531 0x06c4  [ 80D811741505365B79CBDB1254D5C98B, 8E719A79FD6F8B81222E54968564A55799DE9614A34769A9B7E6160F885C93B5 ] Wmi             C:\WINDOWS\System32\advapi32.dll
12:50:01.0781 0x06c4  Wmi - ok
12:50:01.0843 0x06c4  [ AE2C8544E747C20062DB27456EA2D67A, F2EF5ECED93B29CFD6D1EAD7B5F3E16F69D77E48EECCC8437D2B67605C5D6E65 ] WmiAcpi         C:\WINDOWS\system32\DRIVERS\wmiacpi.sys
12:50:02.0140 0x06c4  WmiAcpi - ok
12:50:02.0281 0x06c4  [ 042A78FCD1ADFB0FBA9865D55C6F5CC1, 1BB88E17059B9DA690480BDEDBB236BCB1CD7C45BEEB81607FD564B545A4AC04 ] WmiApSrv        C:\WINDOWS\system32\wbem\wmiapsrv.exe
12:50:02.0593 0x06c4  WmiApSrv - ok
12:50:03.0437 0x06c4  [ 25535D17C0FACBB0B570420FC5EEC177, 0C98F3353F42AECECB2E6AED8C3183446282BE4E4333AAAE7F13DA96470539BC ] WMPNetworkSvc   C:\Programme\Windows Media Player\WMPNetwk.exe
12:50:05.0140 0x06c4  WMPNetworkSvc - ok
12:50:05.0343 0x06c4  [ D4162C1D8FE1DE8F1E6EF9BA4323D520, EDBF8D2DB05128E4DB15D5DFDAB13C88B7CA3B50014C645C9292A2847799C803 ] WpdUsb          C:\WINDOWS\system32\DRIVERS\wpdusb.sys
12:50:05.0609 0x06c4  WpdUsb - ok
12:50:05.0734 0x06c4  [ 6ABE6E225ADB5A751622A9CC3BC19CE8, 4061C5D0F051DFF1730E2A3BFC1CCA97B29602FC50F10F6B44D93B0D28F42024 ] WS2IFSL         C:\WINDOWS\System32\drivers\ws2ifsl.sys
12:50:06.0156 0x06c4  WS2IFSL - ok
12:50:06.0234 0x06c4  [ BD3561AAE748150CF51C2CA876449EA7, 19A088627E763080074F5323B0EE2F9778B27D24685312EF0C33B8091588F767 ] wscsvc          C:\WINDOWS\system32\wscsvc.dll
12:50:06.0343 0x06c4  wscsvc - ok
12:50:06.0390 0x06c4  [ 1EDDD5C0ECF3FA6EDFD8A25B2B4E7DF6, C43900F2EC0843C6017A99BCE6B057FBD463587D15532F4E4D8DB514A5AE99C7 ] wuauserv        C:\WINDOWS\system32\wuauserv.dll
12:50:06.0484 0x06c4  wuauserv - ok
12:50:06.0578 0x06c4  [ 443F0A35CB3BE5D176053DA39157A898, 334B25A419BBDCA64A5F476E94C545A3B3E67A60832CE356C1A8BDED18F03FE4 ] WudfPf          C:\WINDOWS\system32\DRIVERS\WudfPf.sys
12:50:06.0796 0x06c4  WudfPf - ok
12:50:06.0875 0x06c4  [ E12D4C486D7EB4E0961C27558DC25AF7, 31515A07E5B063F73DE28F1CD4FA9AE5B2D35E1EF31DFAF8978D0778E21F23AA ] WudfRd          C:\WINDOWS\system32\DRIVERS\wudfrd.sys
12:50:06.0953 0x06c4  WudfRd - ok
12:50:07.0078 0x06c4  [ 8A92B1F02571B634F50DB35A934989F6, B3338465B9A869C4E89B6F3972DE8917D3717D0C1793863CA52469149A6AD1EB ] WudfSvc         C:\WINDOWS\System32\WUDFSvc.dll
12:50:07.0125 0x06c4  WudfSvc - ok
12:50:07.0593 0x06c4  [ AE83ADA96575DACF533C2BCB1FC163DC, 6DCE7BC30E62E5EE2345D3F0175786C272C878974AE08862C524FEAFAA1CAF9F ] WZCSVC          C:\WINDOWS\System32\wzcsvc.dll
12:50:08.0312 0x06c4  WZCSVC - ok
12:50:08.0484 0x06c4  [ 8302DE1C64618D72346DD0034DBC5D9B, D5CBD3058BD6C0F282928BEC993C741028DB72FF51562B5E7DE70EF71BF67E2F ] xmlprov         C:\WINDOWS\System32\xmlprov.dll
12:50:08.0687 0x06c4  xmlprov - ok
12:50:08.0687 0x06c4  ================ Scan global ===============================
12:50:08.0765 0x06c4  [ 1B91BAC6996731EE8925F58205DCB016, EF70A2F227F8D1837B1253DB8BB24DFEC5BF4A425A51A11473A831B2E6DE3915 ] C:\WINDOWS\system32\basesrv.dll
12:50:09.0125 0x06c4  [ C296947D3213E36FA75BB9C345E879CC, AF2C6EE160A0D9EEA679CFDA25295C65B1E425FC0AFEF8AF6A10CBB9276CA385 ] C:\WINDOWS\system32\winsrv.dll
12:50:09.0968 0x06c4  [ C296947D3213E36FA75BB9C345E879CC, AF2C6EE160A0D9EEA679CFDA25295C65B1E425FC0AFEF8AF6A10CBB9276CA385 ] C:\WINDOWS\system32\winsrv.dll
12:50:10.0125 0x06c4  [ 65F6B774819BD727358157CEDEA67B8E, 050F7AC4B0C6D17574F374BDCF9A199437872C85E328530A49F500F69A1D7566 ] C:\WINDOWS\system32\services.exe
12:50:10.0125 0x06c4  [ Global ] - ok
12:50:10.0125 0x06c4  ================ Scan MBR ==================================
12:50:10.0234 0x06c4  [ 72B8CE41AF0DE751C946802B3ED844B4 ] \Device\Harddisk0\DR0
12:50:22.0500 0x06c4  \Device\Harddisk0\DR0 - detected TDSS File System ( 1 )
12:50:22.0500 0x06c4  \Device\Harddisk0\DR0 ( TDSS File System ) - warning
12:50:24.0890 0x06c4  ================ Scan VBR ==================================
12:50:25.0109 0x06c4  [ 76D3B0017350467A2B92A1108262885B ] \Device\Harddisk0\DR0\Partition1
12:50:25.0109 0x06c4  \Device\Harddisk0\DR0\Partition1 - detected Rootkit.Boot.Cidox.b ( 0 )
12:50:25.0109 0x06c4  \Device\Harddisk0\DR0\Partition1 ( Rootkit.Boot.Cidox.b ) - infected
12:50:27.0484 0x06c4  ================ Scan generic autorun ======================
12:50:27.0625 0x06c4  [ 554BF964313238DB774F1E3406766C63, C3D72236924AF8869A2B44FC7068932A523387F8AE5521FD4B00E2E29792080C ] C:\WINDOWS\system32\igfxtray.exe
12:50:27.0750 0x06c4  IgfxTray - ok
12:50:27.0890 0x06c4  [ 2C0F5B7992CF976C2EFE75E394F2487F, 2A0A4B0964A209AC25E0DF9857A5EEF9E54168E5C355B6954119555E3403ED95 ] C:\WINDOWS\system32\hkcmd.exe
12:50:28.0031 0x06c4  HotKeysCmds - ok
12:50:28.0187 0x06c4  [ 3B00D3D63E89B7383475CE5D1FC750FB, EB50366E00359F727D3AA57EDD6DF906C39C698D115D095BE54CAA9C3F5E9658 ] C:\WINDOWS\system32\igfxpers.exe
12:50:28.0390 0x06c4  Persistence - ok
12:50:28.0906 0x06c4  [ 012844A8E13BE3941C9CAF1F91F47DF2, 0148EEEB474AB4A357EDFD97664C63CA011CC946A36B0D92CEFA9414B8D54CC0 ] C:\Programme\SigmaTel\C-Major Audio\WDM\stsystra.exe
12:50:31.0125 0x06c4  SigmatelSysTrayApp - ok
12:50:33.0484 0x06c4  [ 99630E3A852B5D86470B21FC983580FA, 27C35689FEAE69ED591C000DEA9DFAD4B302EC089DBAE62C883AEBF5FC3AD66A ] C:\WINDOWS\system32\WLTRAY.exe
12:50:38.0078 0x06c4  Broadcom Wireless Manager UI - detected UnsignedFile.Multi.Generic ( 1 )
12:50:40.0437 0x06c4  Detect skipped due to KSN trusted
12:50:40.0437 0x06c4  Broadcom Wireless Manager UI - ok
12:50:40.0656 0x06c4  [ BDF765B33972A95AE8B5C5262D5E1325, 4BC295116BC9ED3E6B6EB339CB28C400768908158C3F4DE4AA5D7954CF5E0E51 ] C:\Programme\Apoint\Apoint.exe
12:50:40.0734 0x06c4  Apoint - ok
12:50:40.0734 0x06c4  BluetoothAuthenticationAgent - ok
12:50:41.0015 0x06c4  [ 93DB1FF92B03D24738A71E6E4992DFD3, 56951284A1BBF201806A1A5610D6316DA33FC92A4E7DA5A989FD7C7FE2F7672C ] C:\Programme\Gemeinsame Dateien\Java\Java Update\jusched.exe
12:50:41.0265 0x06c4  SunJavaUpdateSched - ok
12:50:41.0734 0x06c4  [ 4AC6587E639CD5EAB5B657E7C1FBE680, 30FED733DA956D57016AB6570851E9B8A1C7711D0741EF14B792E3ECEB5AD035 ] C:\Programme\FreePDF_XP\fpassist.exe
12:50:44.0328 0x06c4  FreePDF Assistant - detected UnsignedFile.Multi.Generic ( 1 )
12:50:46.0671 0x06c4  Detect skipped due to KSN trusted
12:50:46.0671 0x06c4  FreePDF Assistant - ok
12:50:46.0828 0x06c4  [ 07B9233D1B5554A7F3F05AA36755A8E9, ECFBC9A790363A3321E8B1671D844E5397891F3B4896089F44B3D2C0FBB8F818 ] C:\Programme\Adobe\Reader 8.0\Reader\Reader_sl.exe
12:50:46.0937 0x06c4  Adobe Reader Speed Launcher - ok
12:50:47.0640 0x06c4  [ BAD6BEA0DE1F69C82BDB74378CE0C20A, ADA84B75173E9D03C180B527E31475ACA16CB19532C3EDA11357BD37049927E3 ] C:\Programme\Gemeinsame Dateien\Adobe\ARM\1.0\AdobeARM.exe
12:50:48.0609 0x06c4  Adobe ARM - ok
12:50:48.0937 0x06c4  [ A0251ED3ABBA7ACC84416738C8282ACA, 67240ED2BD24D557003AD7062E314F6CDC63BA95EB99A38AB7606432605DDE84 ] C:\Programme\Samsung\Kies\KiesTrayAgent.exe
12:50:49.0156 0x06c4  KiesTrayAgent - ok
12:50:55.0859 0x06c4  [ C8F0DCA0E032881B6C4422B502194629, 32996D4C0578FA9A12F3BD205F69E5357A31FBD2C9AC47DA2AB8D77196E587B1 ] C:\Programme\AVG\AVG2014\avgui.exe
12:51:11.0750 0x06c4  AVG_UI - ok
12:51:17.0046 0x06c4  [ 3E9C9E7AA2B89CC59F37A80BDDE85121, 82EEDE67A13AA54735D1E1BB5D730298C8D80EE72D4EB97FCB0D50134D0B164C ] C:\Dokumente und Einstellungen\User\Anwendungsdaten\Spotify\Spotify.exe
12:51:26.0140 0x06c4  Spotify - ok
12:51:27.0078 0x06c4  [ 25D88E97B23FD208C07FA65C6A870E0B, 16E562D7786DF14D4AE9FBB09F6159A22405B1876D989684585BECB8B72F0D2F ] C:\Dokumente und Einstellungen\User\Anwendungsdaten\Spotify\Data\SpotifyWebHelper.exe
12:51:28.0593 0x06c4  Spotify Web Helper - ok
12:51:29.0687 0x06c4  [ F5ED26AB8BDD951BFAC8BBD0D68BA3E9, 418A80F9213A6E830777DE6E8A0F5E5B4BE5B36F4767B056827682EC7F3C8BBF ] C:\Programme\Samsung\Kies\Kies.exe
12:51:31.0812 0x06c4  KiesPreload - ok
12:51:31.0812 0x06c4  KiesAirMessage - ok
12:51:32.0375 0x06c4  [ 98EBAF30AE3B607B916F0773456B075A, 7A7FF445E6075999BCEAA6B045435D5318C02E27BF2BEBBFE966E7A5451FAAB8 ] C:\WINDOWS\system32\Macromed\Flash\FlashUtil32_11_9_900_117_Plugin.exe
12:51:33.0468 0x06c4  FlashPlayerUpdate - ok
12:51:33.0562 0x06c4  [ 7CE20569925DF6789C31799F0C538F29, 33CAEF63448438337A4E9D16EA6D6BDB9027BE4C635EB5615BB2C071D4323183 ] C:\WINDOWS\system32\ctfmon.exe
12:51:33.0921 0x06c4  CTFMON.EXE - ok
12:51:33.0937 0x06c4  AVG-Secure-Search-Update_JUNE2013_TB - ok
12:51:33.0937 0x06c4  Waiting for KSN requests completion. In queue: 4
12:51:34.0937 0x06c4  Waiting for KSN requests completion. In queue: 4
12:51:35.0937 0x06c4  Waiting for KSN requests completion. In queue: 4
12:51:37.0203 0x06c4  AV detected via SS1: AVG AntiVirus Free Edition 2014, 2014.0, enabled, updated
12:51:37.0218 0x06c4  Win FW state via NFM: disabled
12:51:40.0156 0x06c4  ============================================================
12:51:40.0156 0x06c4  Scan finished
12:51:40.0156 0x06c4  ============================================================
12:51:40.0156 0x0d00  Detected object count: 3
12:51:40.0156 0x0d00  Actual detected object count: 3
12:54:14.0062 0x0d00  TUWinStylerThemeSvc ( UnsignedFile.Multi.Generic ) - skipped by user
12:54:14.0062 0x0d00  TUWinStylerThemeSvc ( UnsignedFile.Multi.Generic ) - User select action: Skip 
12:54:14.0062 0x0d00  \Device\Harddisk0\DR0 ( TDSS File System ) - skipped by user
12:54:14.0062 0x0d00  \Device\Harddisk0\DR0 ( TDSS File System ) - User select action: Skip 
12:54:14.0062 0x0d00  \Device\Harddisk0\DR0\Partition1 ( Rootkit.Boot.Cidox.b ) - skipped by user
12:54:14.0062 0x0d00  \Device\Harddisk0\DR0\Partition1 ( Rootkit.Boot.Cidox.b ) - User select action: Skip 
12:57:32.0375 0x01d4  Deinitialize success

Ich würde mich über eine Antwort freuen und werde so schnell wie möglich antworten und nicht nochmal so lange zum Antworten brauchen.

Viele Grüße

schrauber · 10.07.2014, 11:42

Starte TDSSkiller.exe mit Doppelklick.
Vista und Win7 User mit Rechtsklick "als Administrator starten"

Drücke auf Start Scan.
Mache während dem Scan nichts am Rechner
Gehe sicher das Cure ( default ) angehackt ist !
Drücke Continue --> Reboot.

TDSSKiller wird eine Logfile auf deinem Systemlaufwerk speichern ( Meistens C:\ )
Als Beispiel: C:\TDSSKiller.<version_date_time>log.txt

Poste den Inhalt bitte hier in deinen Thread.

Jona333 · 10.07.2014, 20:58

Hallo
ich habe das 3 mal durchgeführt damit alles beseitigt war.
Die logfiles waren zu groß, deswegen findest du sie im Anhang.

schrauber · 11.07.2014, 13:48

Dann jetzt bitte ein frisches FRST log. Was machen die Probleme?

Jona333 · 14.07.2014, 21:01

Ja das Problem ist anscheinend behoben

, bin super glücklich. Aber mein Lappi läuft noch verdammt langsam. Hast du da eventuell noch einen Ratschlag?

Das FRST log befindet sich im Anhang.

Vielen Dank für deine tolle Hilfe. Bin schwer begeistert von dieser tollen Crew auf trojaner bord

schrauber · 15.07.2014, 19:33

Hi,

Logs bitte immer in den Thread posten. Zur Not aufteilen und mehrere Posts nutzen.
Ich kann auf Arbeit keine Anhänge öffnen, danke.

So funktioniert es:
Posten in CODE-Tags
Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR, 7Z-Archive zu packen erschwert mir massiv die Arbeit, es sei denn natürlich die Datei wäre ansonsten zu gross für das Forum. Um die Logfiles in eine CODE-Box zu stellen gehe so vor:

Markiere das gesamte Logfile (geht meist mit STRG+A) und kopiere es in die Zwischenablage mit STRG+C.
Klicke im Editor auf das #-Symbol. Es erscheinen zwei Klammerausdrücke [CODE] [/CODE].
Setze den Curser zwischen die CODE-Tags und drücke STRG+V.
Klicke auf Erweitert/Vorschau, um so prüfen, ob du es richtig gemacht hast. Wenn alles stimmt ... auf Antworten.

Jona333 · 16.07.2014, 10:08

Ja das Problem ist anscheinend behoben , bin super glücklich. Aber mein Lappi läuft noch verdammt langsam und stuckelig. Hast du da eventuell noch einen Ratschlag?

Ich teile das Log auf:

Code:

ATTFilter

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version:14-07-2014 01
Ran by User (administrator) on HOME-PC on 14-07-2014 21:32:04
Running from C:\Dokumente und Einstellungen\User\Eigene Dateien\Downloads
Platform: Microsoft Windows XP Professional Service Pack 2 (X86) OS Language: Deutsch (Deutschland)
Internet Explorer Version 6
Boot Mode: Normal


==================== Processes (Whitelisted) =================

(AVG Technologies CZ, s.r.o.) C:\PROGRA~1\AVG\AVG2014\avgrsx.exe
(AVG Technologies CZ, s.r.o.) C:\Programme\AVG\AVG2014\avgcsrvx.exe
() C:\WINDOWS\system32\WLTRYSVC.EXE
(Dell Inc.) C:\WINDOWS\system32\BCMWLTRY.EXE
(AVG Technologies CZ, s.r.o.) C:\Programme\AVG\AVG2014\avgidsagent.exe
(AVG Technologies CZ, s.r.o.) C:\Programme\AVG\AVG2014\avgwdsvc.exe
(Sun Microsystems, Inc.) C:\Programme\Java\jre6\bin\jqs.exe
(AVG Technologies CZ, s.r.o.) C:\Programme\AVG\AVG2014\avgnsx.exe
(Intel Corporation) C:\WINDOWS\system32\hkcmd.exe
(Intel Corporation) C:\WINDOWS\system32\igfxpers.exe
(SigmaTel, Inc.) C:\Programme\SigmaTel\C-Major Audio\WDM\stsystra.exe
(Alps Electric Co., Ltd.) C:\Programme\Apoint\Apoint.exe
(Sun Microsystems, Inc.) C:\Programme\Gemeinsame Dateien\Java\Java Update\jusched.exe
(Samsung Electronics Co., Ltd.) C:\Programme\Samsung\Kies\KiesTrayAgent.exe
(AVG Technologies CZ, s.r.o.) C:\Programme\AVG\AVG2014\avgui.exe
(Spotify Ltd) C:\Dokumente und Einstellungen\User\Anwendungsdaten\Spotify\Data\SpotifyWebHelper.exe
(Intel Corporation) C:\WINDOWS\system32\igfxsrvc.exe
(Samsung) C:\Programme\Samsung\Kies\Kies.exe
(Alps Electric Co., Ltd.) C:\Programme\Apoint\hidfind.exe
(Alps Electric Co., Ltd.) C:\Programme\Apoint\ApntEx.exe
(BVRP Software) C:\Programme\Digital Line Detect\DLG.exe
(Dropbox, Inc.) C:\Dokumente und Einstellungen\User\Anwendungsdaten\Dropbox\bin\Dropbox.exe
(OpenOffice.org) C:\Programme\OpenOffice.org 3\program\soffice.exe
(OpenOffice.org) C:\Programme\OpenOffice.org 3\program\soffice.bin
(Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
(Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [SigmatelSysTrayApp] => C:\Programme\SigmaTel\C-Major Audio\WDM\stsystra.exe [405504 2007-05-10] (SigmaTel, Inc.)
HKLM\...\Run: [Apoint] => C:\Programme\Apoint\Apoint.exe [176128 2005-10-07] (Alps Electric Co., Ltd.)
HKLM\...\Run: [BluetoothAuthenticationAgent] => rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent
HKLM\...\Run: [SunJavaUpdateSched] => C:\Programme\Gemeinsame Dateien\Java\Java Update\jusched.exe [248552 2010-05-14] (Sun Microsystems, Inc.)
HKLM\...\Run: [Adobe Reader Speed Launcher] => C:\Programme\Adobe\Reader 8.0\Reader\Reader_sl.exe [40368 2009-12-18] (Adobe Systems Incorporated)
HKLM\...\Run: [Adobe ARM] => C:\Programme\Gemeinsame Dateien\Adobe\ARM\1.0\AdobeARM.exe [932288 2010-09-21] (Adobe Systems Incorporated)
HKLM\...\Run: [KiesTrayAgent] => C:\Programme\Samsung\Kies\KiesTrayAgent.exe [311616 2014-02-14] (Samsung Electronics Co., Ltd.)
HKLM\...\Run: [AVG_UI] => C:\Programme\AVG\AVG2014\avgui.exe [5181456 2014-05-13] (AVG Technologies CZ, s.r.o.)
HKU\S-1-5-21-790525478-115176313-725345543-1003\...\Run: [Spotify] => C:\Dokumente und Einstellungen\User\Anwendungsdaten\Spotify\Spotify.exe [6189624 2014-06-27] (Spotify Ltd)
HKU\S-1-5-21-790525478-115176313-725345543-1003\...\Run: [Spotify Web Helper] => C:\Dokumente und Einstellungen\User\Anwendungsdaten\Spotify\Data\SpotifyWebHelper.exe [1176632 2014-06-27] (Spotify Ltd)
HKU\S-1-5-21-790525478-115176313-725345543-1003\...\Run: [KiesPreload] => C:\Programme\Samsung\Kies\Kies.exe [1564992 2014-02-14] (Samsung)
HKU\S-1-5-21-790525478-115176313-725345543-1003\...\Run: [KiesAirMessage] => C:\Programme\Samsung\Kies\KiesAirMessage.exe -startup
Lsa: [Notification Packages]  scecli
Startup: C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Autostart\Digital Line Detect.lnk
ShortcutTarget: Digital Line Detect.lnk -> C:\Programme\Digital Line Detect\DLG.exe (BVRP Software)
Startup: C:\Dokumente und Einstellungen\User\Startmenü\Programme\Autostart\Dropbox.lnk
ShortcutTarget: Dropbox.lnk -> C:\Dokumente und Einstellungen\User\Anwendungsdaten\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
Startup: C:\Dokumente und Einstellungen\User\Startmenü\Programme\Autostart\OpenOffice.org 3.3.lnk
ShortcutTarget: OpenOffice.org 3.3.lnk -> C:\Programme\OpenOffice.org 3\program\quickstart.exe ()
ShellIconOverlayIdentifiers: DropboxExt1 -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} =>  No File
ShellIconOverlayIdentifiers: DropboxExt2 -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} =>  No File
ShellIconOverlayIdentifiers: DropboxExt3 -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} =>  No File
ShellIconOverlayIdentifiers: DropboxExt4 -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} =>  No File
BootExecute: autocheck autochk * C:\PROGRA~1\AVG\AVG2014\avgrsx.exe /sync /restart

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.microsoft.com/isapi/redir.dll?prd={SUB_PRD}&clcid={SUB_CLSID}&pver={SUB_PVER}&ar=home
HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = hxxp://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htm
SearchScopes: HKLM - DefaultScope value is missing.
BHO: Adobe PDF Reader -> {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} -> C:\Programme\Gemeinsame Dateien\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Programme\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
BHO: JQSIEStartDetectorImpl Class -> {E7E6F031-17CE-4C07-BC86-EABFE594F69C} -> C:\Programme\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll (Sun Microsystems, Inc.)
Toolbar: HKCU - &Adresse - {01E04581-4EEE-11D0-BFE9-00AA005B4383} - C:\WINDOWS\system32\browseui.dll (Microsoft Corporation)
Toolbar: HKCU - &Links - {0E5CBF21-D15F-11D0-8301-00AA005B4383} - C:\WINDOWS\system32\SHELL32.dll (Microsoft Corporation)
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} https://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab
Handler: http\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler: http\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler: https\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler: https\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler: ipp\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Programme\AVG\AVG2012\avgpp.dll No File
Handler: ms-help - {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Programme\Gemeinsame Dateien\Microsoft Shared\Help\hxds.dll (Microsoft Corporation)
Handler: msdaipp\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler: msdaipp\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1

FireFox:
========
FF ProfilePath: C:\Dokumente und Einstellungen\User\Anwendungsdaten\Mozilla\Firefox\Profiles\14poc7dh.default
FF Homepage: hxxp://www.google.de/
FF Plugin: @adobe.com/FlashPlayer - C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_9_900_117.dll ()
FF Plugin: @java.com/JavaPlugin - C:\Programme\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Programme\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF SearchPlugin: C:\Programme\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Programme\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Programme\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Programme\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF Extension: FileZilla - C:\Dokumente und Einstellungen\User\Anwendungsdaten\Mozilla\Firefox\Profiles\14poc7dh.default\Extensions\client@filezilla.org [2011-10-13]
FF Extension: Adblock Plus - C:\Dokumente und Einstellungen\User\Anwendungsdaten\Mozilla\Firefox\Profiles\14poc7dh.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2014-06-06]
FF HKLM\...\Firefox\Extensions: [jqs@sun.com] - C:\Programme\Java\jre6\lib\deploy\jqs\ff
FF Extension: Java Quick Starter - C:\Programme\Java\jre6\lib\deploy\jqs\ff [2011-11-23]
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF Extension: Microsoft .NET Framework Assistant - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension [2013-10-21]

========================== Services (Whitelisted) =================

R2 AVGIDSAgent; C:\Programme\AVG\AVG2014\avgidsagent.exe [3644432 2014-05-13] (AVG Technologies CZ, s.r.o.)
R2 avgwd; C:\Programme\AVG\AVG2014\avgwdsvc.exe [292424 2014-05-13] (AVG Technologies CZ, s.r.o.)
R2 JavaQuickStarterService; C:\Programme\Java\jre6\bin\jqs.exe [153376 2011-11-23] (Sun Microsystems, Inc.)
S3 MozillaMaintenance; C:\Programme\Mozilla Maintenance Service\maintenanceservice.exe [119408 2014-06-11] (Mozilla Foundation)
S3 odserv; C:\Programme\Gemeinsame Dateien\Microsoft Shared\OFFICE12\ODSERV.EXE [441136 2006-10-26] (Microsoft Corporation)
S3 ose; C:\Programme\Gemeinsame Dateien\Microsoft Shared\Source Engine\OSE.EXE [145184 2006-10-26] (Microsoft Corporation)
S2 uploadmgr; C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll [38912 2006-06-01] (Microsoft Corporation)
R2 wltrysvc; C:\WINDOWS\System32\bcmwltry.exe [2232320 2009-10-07] (Dell Inc.) [File not signed]
S3 WMPNetworkSvc; C:\Programme\Windows Media Player\WMPNetwk.exe [829440 2006-05-10] (Microsoft Corporation)

==================== Drivers (Whitelisted) ====================

R1 Avgdiskx; C:\WINDOWS\System32\DRIVERS\avgdiskx.sys [122136 2014-05-13] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSDriver; C:\WINDOWS\System32\DRIVERS\avgidsdriverx.sys [198936 2014-05-13] (AVG Technologies CZ, s.r.o.)
R0 AVGIDSHX; C:\WINDOWS\System32\DRIVERS\avgidshx.sys [149784 2014-05-13] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSShim; C:\WINDOWS\System32\DRIVERS\avgidsshimx.sys [21272 2014-05-13] (AVG Technologies CZ, s.r.o.)
R1 Avgldx86; C:\WINDOWS\System32\DRIVERS\avgldx86.sys [192280 2014-05-13] (AVG Technologies CZ, s.r.o.)
R0 Avglogx; C:\WINDOWS\System32\DRIVERS\avglogx.sys [237848 2014-05-13] (AVG Technologies CZ, s.r.o.)
R0 Avgmfx86; C:\WINDOWS\System32\DRIVERS\avgmfx86.sys [107288 2014-05-13] (AVG Technologies CZ, s.r.o.)
R0 Avgrkx86; C:\WINDOWS\System32\DRIVERS\avgrkx86.sys [27416 2014-05-13] (AVG Technologies CZ, s.r.o.)
R1 Avgtdix; C:\WINDOWS\System32\DRIVERS\avgtdix.sys [210200 2014-05-13] (AVG Technologies CZ, s.r.o.)
R1 avgtp; C:\WINDOWS\system32\drivers\avgtpx86.sys [42784 2014-06-23] (AVG Technologies)
R3 BCM43XX; C:\WINDOWS\System32\DRIVERS\bcmwl5.sys [2649216 2009-10-07] (Broadcom Corporation)
S3 Secdrv; C:\WINDOWS\System32\DRIVERS\secdrv.sys [27440 2006-06-01] ()
R3 STHDA; C:\WINDOWS\System32\drivers\sthda.sys [1222840 2007-05-10] (SigmaTel, Inc.)
S3 catchme; \??\C:\DOKUME~1\User\LOKALE~1\Temp\catchme.sys [X]
S4 IntelIde; No ImagePath
U5 ScsiPort; C:\WINDOWS\system32\drivers\scsiport.sys [96256 2006-06-01] (Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-07-14 20:30 - 2014-07-14 20:30 - 00000187 _____ () C:\WINDOWS\spupdsvc.log.1.log
2014-07-14 20:19 - 2014-07-14 20:19 - 00000160 _____ () C:\WINDOWS\system32\spdwnwxp.log
2014-07-14 19:37 - 2014-07-14 20:23 - 00519349 _____ () C:\WINDOWS\spuninst.log
2014-07-11 13:51 - 2014-07-14 19:13 - 00000000 ____D () C:\Programme\Messenger
2014-07-11 13:48 - 2014-07-14 19:15 - 00000000 ____D () C:\WINDOWS\system32\de-de
2014-07-11 13:48 - 2014-07-14 19:13 - 00000000 ____D () C:\WINDOWS\l2schemas
2014-07-11 13:48 - 2014-07-11 13:48 - 00000000 ____D () C:\Programme\msn
2014-07-11 13:47 - 2014-07-14 19:15 - 00000000 ____D () C:\WINDOWS\system32\de
2014-07-11 13:47 - 2014-07-14 19:15 - 00000000 ____D () C:\WINDOWS\system32\bits
2014-07-11 13:04 - 2007-08-10 20:44 - 00033656 _____ (Microsoft Corporation) C:\WINDOWS\system32\sprecovr.exe
2014-07-11 12:57 - 2010-04-16 17:35 - 00055808 _____ (Microsoft Corporation) C:\WINDOWS\system32\extmgr.dll
2014-07-11 12:57 - 2010-04-16 17:35 - 00055808 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\extmgr.dll
2014-07-11 12:57 - 2010-04-16 15:47 - 00375808 _____ (Microsoft Corporation) C:\WINDOWS\system32\xpsp3res.dll
2014-07-11 12:57 - 2010-04-16 15:36 - 00018432 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\iedw.exe
2014-07-11 12:57 - 2009-10-21 08:00 - 00025088 _____ (Microsoft Corporation) C:\WINDOWS\system32\httpapi.dll
2014-07-11 12:57 - 2009-10-21 08:00 - 00025088 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\httpapi.dll
2014-07-11 12:57 - 2009-10-20 16:58 - 00263552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\http.sys
2014-07-11 12:57 - 2009-10-20 16:58 - 00263552 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\http.sys
2014-07-11 12:57 - 2009-06-05 09:42 - 00655872 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2014-07-11 12:57 - 2007-05-08 17:08 - 00086728 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6r.dll
2014-07-11 12:57 - 2006-10-24 12:30 - 00716288 _____ (Microsoft Corporation) C:\WINDOWS\system32\windowscodecs.dll
2014-07-11 12:57 - 2006-10-24 12:30 - 00412160 _____ (Microsoft Corporation) C:\WINDOWS\system32\photometadatahandler.dll
2014-07-11 12:57 - 2006-10-24 12:30 - 00276992 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmphoto.dll
2014-07-11 12:57 - 2006-10-24 12:29 - 00352256 _____ (Microsoft Corporation) C:\WINDOWS\system32\windowscodecsext.dll
2014-07-11 12:57 - 2006-06-01 21:06 - 04293632 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wmm2res.dll
2014-07-11 12:57 - 2006-06-01 21:06 - 02981888 _____ (Microsoft Corporation) C:\WINDOWS\system32\xpsp2res.dll
2014-07-11 12:57 - 2006-06-01 21:06 - 02134528 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\smtpsnap.dll
2014-07-11 12:57 - 2006-06-01 21:06 - 02113536 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxdiagn.dll
2014-07-11 12:57 - 2006-06-01 21:06 - 02113536 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\dxdiagn.dll
2014-07-11 12:57 - 2006-06-01 21:06 - 01689088 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\d3d9.dll
2014-07-11 12:57 - 2006-06-01 21:06 - 01689088 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d9.dll
2014-07-11 12:57 - 2006-06-01 21:06 - 00937984 _____ (Microsoft Corporation) C:\WINDOWS\system32\winbrand.dll
2014-07-11 12:57 - 2006-06-01 21:06 - 00937984 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\winbrand.dll
2014-07-11 12:57 - 2006-06-01 21:06 - 00848384 _____ (Intel Corporation) C:\WINDOWS\system32\ir41_32.ax
2014-07-11 12:57 - 2006-06-01 21:06 - 00755200 _____ (Intel Corporation) C:\WINDOWS\system32\ir50_32.dll
2014-07-11 12:57 - 2006-06-01 21:06 - 00537088 _____ (Microsoft Corporation) C:\WINDOWS\system32\msftedit.dll
2014-07-11 12:57 - 2006-06-01 21:06 - 00537088 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msftedit.dll
2014-07-11 12:57 - 2006-06-01 21:06 - 00526848 _____ (Microsoft Corporation) C:\WINDOWS\system32\p2psvc.dll
2014-07-11 12:57 - 2006-06-01 21:06 - 00526848 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\p2psvc.dll
2014-07-11 12:57 - 2006-06-01 21:06 - 00502272 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wmm2fxa.dll
2014-07-11 12:57 - 2006-06-01 21:06 - 00438784 _____ (Microsoft Corporation) C:\WINDOWS\system32\xpob2res.dll
2014-07-11 12:57 - 2006-06-01 21:06 - 00438784 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\obrs0407.dll
2014-07-11 12:57 - 2006-06-01 21:06 - 00412672 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstsc.exe
2014-07-11 12:57 - 2006-06-01 21:06 - 00381440 _____ (Microsoft Corporation) C:\WINDOWS\system32\irprops.cpl
2014-07-11 12:57 - 2006-06-01 21:06 - 00338432 _____ (Intel Corporation.) C:\WINDOWS\system32\ir41_qcx.dll
2014-07-11 12:57 - 2006-06-01 21:06 - 00325632 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wmm2fxb.dll
2014-07-11 12:57 - 2006-06-01 21:06 - 00312320 _____ (Microsoft Corporation) C:\WINDOWS\system32\p2pgraph.dll
2014-07-11 12:57 - 2006-06-01 21:06 - 00312320 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\p2pgraph.dll
2014-07-11 12:57 - 2006-06-01 21:06 - 00221696 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\seo.dll
2014-07-11 12:57 - 2006-06-01 21:06 - 00200192 _____ (Intel Corporation.) C:\WINDOWS\system32\ir50_qc.dll
2014-07-11 12:57 - 2006-06-01 21:06 - 00199680 _____ (Microsoft Corporation) C:\WINDOWS\system32\xpsp1res.dll
2014-07-11 12:57 - 2006-06-01 21:06 - 00199680 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\sprs0407.dll
2014-07-11 12:57 - 2006-06-01 21:06 - 00199680 _____ (Intel Corporation) C:\WINDOWS\system32\iac25_32.ax
2014-07-11 12:57 - 2006-06-01 21:06 - 00193024 _____ (Microsoft Corporation) C:\WINDOWS\system32\fsquirt.exe
2014-07-11 12:57 - 2006-06-01 21:06 - 00192000 _____ (Microsoft Corporation) C:\WINDOWS\system32\iuengine.dll
2014-07-11 12:57 - 2006-06-01 21:06 - 00192000 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\iuengine.dll
2014-07-11 12:57 - 2006-06-01 21:06 - 00189952 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\smtpadm.dll
2014-07-11 12:57 - 2006-06-01 21:06 - 00183808 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng1.dll
2014-07-11 12:57 - 2006-06-01 21:06 - 00183808 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wuaueng1.dll
2014-07-11 12:57 - 2006-06-01 21:06 - 00183808 _____ (Intel Corporation.) C:\WINDOWS\system32\ir50_qcx.dll
2014-07-11 12:57 - 2006-06-01 21:06 - 00168448 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt1.exe
2014-07-11 12:57 - 2006-06-01 21:06 - 00168448 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wuauclt1.exe
2014-07-11 12:57 - 2006-06-01 21:06 - 00167936 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wmm2ae.dll
2014-07-11 12:57 - 2006-06-01 21:06 - 00159232 _____ (Microsoft Corporation) C:\WINDOWS\system32\sbeio.dll
2014-07-11 12:57 - 2006-06-01 21:06 - 00159232 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\sbeio.dll
2014-07-11 12:57 - 2006-06-01 21:06 - 00154624 _____ (Intel Corporation) C:\WINDOWS\system32\ivfsrc.ax
2014-07-11 12:57 - 2006-06-01 21:06 - 00148480 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscui.cpl
2014-07-11 12:57 - 2006-06-01 21:06 - 00148480 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wscui.cpl
2014-07-11 12:57 - 2006-06-01 21:06 - 00141702 _____ () C:\WINDOWS\system32\dllcache\netfx.cat
2014-07-11 12:57 - 2006-06-01 21:06 - 00134656 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssap.dll
2014-07-11 12:57 - 2006-06-01 21:06 - 00134656 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mssap.dll
2014-07-11 12:57 - 2006-06-01 21:06 - 00130715 _____ () C:\WINDOWS\system32\dllcache\mediactr.cat
2014-07-11 12:57 - 2006-06-01 21:06 - 00120320 _____ (Intel Corporation.) C:\WINDOWS\system32\ir41_qc.dll
2014-07-11 12:57 - 2006-06-01 21:06 - 00118784 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdadiag.dll
2014-07-11 12:57 - 2006-06-01 21:06 - 00118784 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msdadiag.dll
2014-07-11 12:57 - 2006-06-01 21:06 - 00110592 _____ (Microsoft Corporation) C:\WINDOWS\system32\bthprops.cpl
2014-07-11 12:57 - 2006-06-01 21:06 - 00108032 _____ (Microsoft Corporation) C:\WINDOWS\system32\wshbth.dll
2014-07-11 12:57 - 2006-06-01 21:06 - 00103124 _____ () C:\WINDOWS\system32\dllcache\tabletpc.cat
2014-07-11 12:57 - 2006-06-01 21:06 - 00096768 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpcdll.dll
2014-07-11 12:57 - 2006-06-01 21:06 - 00096768 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\dpcdll.dll
2014-07-11 12:57 - 2006-06-01 21:06 - 00088064 _____ (Microsoft Corporation) C:\WINDOWS\system32\p2pnetsh.dll
2014-07-11 12:57 - 2006-06-01 21:06 - 00088064 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\p2pnetsh.dll
2014-07-11 12:57 - 2006-06-01 21:06 - 00086016 _____ (Microsoft Corporation) C:\WINDOWS\system32\p2pgasvc.dll
2014-07-11 12:57 - 2006-06-01 21:06 - 00086016 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\p2pgasvc.dll
2014-07-11 12:57 - 2006-06-01 21:06 - 00081920 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msado27.tlb
2014-07-11 12:57 - 2006-06-01 21:06 - 00080384 _____ (Microsoft Corporation) C:\WINDOWS\system32\firewall.cpl
2014-07-11 12:57 - 2006-06-01 21:06 - 00080384 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\firewall.cpl
2014-07-11 12:57 - 2006-06-01 21:06 - 00067584 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdbus.sys
2014-07-11 12:57 - 2006-06-01 21:06 - 00060416 _____ (Microsoft Corporation) C:\WINDOWS\system32\fwcfg.dll
2014-07-11 12:57 - 2006-06-01 21:06 - 00060416 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fwcfg.dll
2014-07-11 12:57 - 2006-06-01 21:06 - 00048640 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnrpnsp.dll
2014-07-11 12:57 - 2006-06-01 21:06 - 00048640 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\pnrpnsp.dll
2014-07-11 12:57 - 2006-06-01 21:06 - 00044032 _____ (Microsoft Corporation) C:\WINDOWS\system32\twext.dll
2014-07-11 12:57 - 2006-06-01 21:06 - 00044032 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\twext.dll
2014-07-11 12:57 - 2006-06-01 21:06 - 00041472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\amdk7.sys
2014-07-11 12:57 - 2006-06-01 21:06 - 00040192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\intelppm.sys
2014-07-11 12:57 - 2006-06-01 21:06 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\tabletoc.dll
2014-07-11 12:57 - 2006-06-01 21:06 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\asr_pfu.exe
2014-07-11 12:57 - 2006-06-01 21:06 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\system32\asr_pfu.exe
2014-07-11 12:57 - 2006-06-01 21:06 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\bthserv.dll
2014-07-11 12:57 - 2006-06-01 21:06 - 00029184 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdhcinst.dll
2014-07-11 12:57 - 2006-06-01 21:06 - 00029056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ip6fw.sys
2014-07-11 12:57 - 2006-06-01 21:06 - 00029056 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ip6fw.sys
2014-07-11 12:57 - 2006-06-01 21:06 - 00025600 _____ (Microsoft Corporation) C:\WINDOWS\system32\netsetup.cpl
2014-07-11 12:57 - 2006-06-01 21:06 - 00025600 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\netsetup.cpl
2014-07-11 12:57 - 2006-06-01 21:06 - 00024064 _____ (Microsoft Corporation) C:\WINDOWS\system32\pidgen.dll
2014-07-11 12:57 - 2006-06-01 21:06 - 00024064 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\pidgen.dll
2014-07-11 12:57 - 2006-06-01 21:06 - 00020992 _____ (Microsoft Corporation) C:\WINDOWS\system32\bthci.dll
2014-07-11 12:57 - 2006-06-01 21:06 - 00020736 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ramdisk.sys
2014-07-11 12:57 - 2006-06-01 21:06 - 00019456 _____ (Microsoft Corporation) C:\WINDOWS\system32\secedit.exe
2014-07-11 12:57 - 2006-06-01 21:06 - 00019456 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\secedit.exe
2014-07-11 12:57 - 2006-06-01 21:06 - 00018989 _____ () C:\WINDOWS\system32\dllcache\msn7.cat
2014-07-11 12:57 - 2006-06-01 21:06 - 00016896 _____ (Microsoft Corporation) C:\WINDOWS\system32\fltlib.dll
2014-07-11 12:57 - 2006-06-01 21:06 - 00016896 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fltlib.dll
2014-07-11 12:57 - 2006-06-01 21:06 - 00015872 _____ (Microsoft Corporation) C:\WINDOWS\system32\w3ssl.dll
2014-07-11 12:57 - 2006-06-01 21:06 - 00015872 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\w3ssl.dll
2014-07-11 12:57 - 2006-06-01 21:06 - 00015488 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mssmbios.sys
2014-07-11 12:57 - 2006-06-01 21:06 - 00013824 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscntfy.exe
2014-07-11 12:57 - 2006-06-01 21:06 - 00013824 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wscntfy.exe
2014-07-11 12:57 - 2006-06-01 21:06 - 00012800 _____ (Microsoft Corporation) C:\WINDOWS\system32\spiisupd.exe
2014-07-11 12:57 - 2006-06-01 21:06 - 00012800 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\spiisupd.exe
2014-07-11 12:57 - 2006-06-01 21:06 - 00012416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tunmp.sys
2014-07-11 12:57 - 2006-06-01 21:06 - 00011776 _____ (Microsoft Corporation) C:\WINDOWS\system32\spnpinst.exe
2014-07-11 12:57 - 2006-06-01 21:06 - 00011776 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\spnpinst.exe
2014-07-11 12:57 - 2006-06-01 21:06 - 00011651 _____ () C:\WINDOWS\system32\dllcache\msn9.cat
2014-07-11 12:57 - 2006-06-01 21:06 - 00011136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sffdisk.sys
2014-07-11 12:57 - 2006-06-01 21:06 - 00010752 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\smtpapi.dll
2014-07-11 12:57 - 2006-06-01 21:06 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sffp_sd.sys
2014-07-11 12:57 - 2006-06-01 21:06 - 00009728 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\rwnh.dll
2014-07-11 12:57 - 2006-06-01 21:06 - 00008192 _____ (Microsoft Corporation) C:\WINDOWS\system32\smbinst.exe
2014-07-11 12:57 - 2006-06-01 21:06 - 00008192 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\smbinst.exe
2014-07-11 12:57 - 2006-06-01 21:06 - 00008192 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\bitsprx2.dll
2014-07-11 12:57 - 2006-06-01 21:06 - 00008192 _____ (Microsoft Corporation) C:\WINDOWS\system32\bitsprx2.dll
2014-07-11 12:57 - 2006-06-01 21:06 - 00007680 _____ (Microsoft Corporation) C:\WINDOWS\system32\kbdsmsno.dll
2014-07-11 12:57 - 2006-06-01 21:06 - 00007680 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdsmsno.dll
2014-07-11 12:57 - 2006-06-01 21:06 - 00007168 _____ (Microsoft Corporation) C:\WINDOWS\system32\kbdukx.dll
2014-07-11 12:57 - 2006-06-01 21:06 - 00007168 _____ (Microsoft Corporation) C:\WINDOWS\system32\kbdfi1.dll
2014-07-11 12:57 - 2006-06-01 21:06 - 00007168 _____ (Microsoft Corporation) C:\WINDOWS\system32\hccoin.dll
2014-07-11 12:57 - 2006-06-01 21:06 - 00007168 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdukx.dll
2014-07-11 12:57 - 2006-06-01 21:06 - 00007168 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdfi1.dll
2014-07-11 12:57 - 2006-06-01 21:06 - 00006656 _____ (Microsoft Corporation) C:\WINDOWS\system32\kbdinmal.dll
2014-07-11 12:57 - 2006-06-01 21:06 - 00006656 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdinmal.dll
2014-07-11 12:57 - 2006-06-01 21:06 - 00006144 _____ (Microsoft Corporation) C:\WINDOWS\system32\kbdmlt47.dll
2014-07-11 12:57 - 2006-06-01 21:06 - 00006144 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wmm2res2.dll
2014-07-11 12:57 - 2006-06-01 21:06 - 00006144 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdmlt47.dll
2014-07-11 12:57 - 2006-06-01 21:06 - 00004096 _____ (Microsoft Corporation) C:\WINDOWS\system32\dsprpres.dll
2014-07-11 12:57 - 2006-06-01 21:06 - 00004096 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wmm2eres.dll
2014-07-11 12:57 - 2006-06-01 21:06 - 00004096 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\dsprpres.dll
2014-07-11 12:57 - 2006-03-17 02:38 - 00028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\verclsid.exe
2014-07-11 12:57 - 2004-08-12 17:45 - 00137728 _____ (Windows (R) Server 2003 DDK provider) C:\WINDOWS\system32\Drivers\hdaudbus.sys
2014-07-11 12:57 - 2004-08-03 23:10 - 00018944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthusb.sys
2014-07-11 12:57 - 2004-08-03 23:10 - 00018944 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\bthusb.sys
2014-07-11 12:57 - 2004-08-03 22:58 - 00100992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthpan.sys
2014-07-11 12:57 - 2004-08-03 22:58 - 00100992 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\bthpan.sys
2014-07-11 12:56 - 2009-11-21 18:37 - 00470528 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\aclayers.dll
2014-07-11 12:56 - 2009-10-21 08:00 - 00075776 _____ (Microsoft Corporation) C:\WINDOWS\system32\strmfilt.dll
2014-07-11 12:56 - 2009-10-21 08:00 - 00075776 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\strmfilt.dll
2014-07-11 12:56 - 2009-08-25 11:46 - 00352256 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttp.dll
2014-07-11 12:56 - 2009-08-25 11:46 - 00352256 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\winhttp.dll
2014-07-11 12:56 - 2009-06-15 13:31 - 00082944 _____ (Microsoft Corporation) C:\WINDOWS\system32\tlntsess.exe
2014-07-11 12:56 - 2009-06-15 13:31 - 00082944 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\tlntsess.exe
2014-07-11 12:56 - 2008-06-14 19:57 - 00273024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys
2014-07-11 12:56 - 2008-06-14 19:57 - 00273024 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\bthport.sys
2014-07-11 12:56 - 2006-06-01 21:06 - 02981888 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\sprt0407.dll
2014-07-11 12:56 - 2006-06-01 21:06 - 01852928 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\acgenral.dll
2014-07-11 12:56 - 2006-06-01 21:06 - 01228800 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntbackup.exe
2014-07-11 12:56 - 2006-06-01 21:06 - 01228800 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ntbackup.exe
2014-07-11 12:56 - 2006-06-01 21:06 - 01040384 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\conf.exe
2014-07-11 12:56 - 2006-06-01 21:06 - 00847360 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\inetmgr.dll
2014-07-11 12:56 - 2006-06-01 21:06 - 00759966 _____ () C:\WINDOWS\system32\dllcache\apph_sp.sdb
2014-07-11 12:56 - 2006-06-01 21:06 - 00621329 _____ () C:\WINDOWS\system32\dllcache\nt5inf.cat
2014-07-11 12:56 - 2006-06-01 21:06 - 00610304 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsecedit.dll
2014-07-11 12:56 - 2006-06-01 21:06 - 00610304 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wsecedit.dll
2014-07-11 12:56 - 2006-06-01 21:06 - 00577024 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpedit.dll
2014-07-11 12:56 - 2006-06-01 21:06 - 00577024 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\gpedit.dll
2014-07-11 12:56 - 2006-06-01 21:06 - 00561179 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\dao360.dll
2014-07-11 12:56 - 2006-06-01 21:06 - 00545280 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\dialer.exe
2014-07-11 12:56 - 2006-06-01 21:06 - 00465920 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\smtpsvc.dll
2014-07-11 12:56 - 2006-06-01 21:06 - 00462848 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\sqlqp20.dll
2014-07-11 12:56 - 2006-06-01 21:06 - 00452096 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fxsapi.dll
2014-07-11 12:56 - 2006-06-01 21:06 - 00402432 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wmm2filt.dll
2014-07-11 12:56 - 2006-06-01 21:06 - 00385024 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\callcont.dll
2014-07-11 12:56 - 2006-06-01 21:06 - 00382464 _____ (Microsoft Corporation) C:\WINDOWS\system32\qmgr.dll
2014-07-11 12:56 - 2006-06-01 21:06 - 00382464 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\qmgr.dll
2014-07-11 12:56 - 2006-06-01 21:06 - 00375296 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\asp51.dll
2014-07-11 12:56 - 2006-06-01 21:06 - 00370176 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wmic.exe
2014-07-11 12:56 - 2006-06-01 21:06 - 00362496 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\w3svc.dll
2014-07-11 12:56 - 2006-06-01 21:06 - 00334848 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\aqueue.dll
2014-07-11 12:56 - 2006-06-01 21:06 - 00301568 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\appmgr.dll
2014-07-11 12:56 - 2006-06-01 21:06 - 00301568 _____ (Microsoft Corporation) C:\WINDOWS\system32\appmgr.dll
2014-07-11 12:56 - 2006-06-01 21:06 - 00290816 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\adsiis51.dll
2014-07-11 12:56 - 2006-06-01 21:06 - 00285184 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fxscomex.dll
2014-07-11 12:56 - 2006-06-01 21:06 - 00282624 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\certwiz.ocx
2014-07-11 12:56 - 2006-06-01 21:06 - 00268288 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\httpext.dll
2014-07-11 12:56 - 2006-06-01 21:06 - 00260096 _____ (Microsoft Corporation) C:\WINDOWS\system32\tracerpt.exe
2014-07-11 12:56 - 2006-06-01 21:06 - 00260096 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\tracerpt.exe
2014-07-11 12:56 - 2006-06-01 21:06 - 00257024 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\infocomm.dll
2014-07-11 12:56 - 2006-06-01 21:06 - 00256512 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\agentsvr.exe
2014-07-11 12:56 - 2006-06-01 21:06 - 00244736 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\acspecfc.dll
2014-07-11 12:56 - 2006-06-01 21:06 - 00235824 _____ () C:\WINDOWS\system32\dllcache\apphelp.sdb
2014-07-11 12:56 - 2006-06-01 21:06 - 00235520 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fxscover.exe
2014-07-11 12:56 - 2006-06-01 21:06 - 00218112 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\c_g18030.dll
2014-07-11 12:56 - 2006-06-01 21:06 - 00214016 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\agentctl.dll
2014-07-11 12:56 - 2006-06-01 21:06 - 00201216 _____ (Microsoft Corporation) C:\WINDOWS\system32\gptext.dll
2014-07-11 12:56 - 2006-06-01 21:06 - 00201216 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\gptext.dll
2014-07-11 12:56 - 2006-06-01 21:06 - 00195072 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\comadmin.dll
2014-07-11 12:56 - 2006-06-01 21:06 - 00177152 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctfime.ime
2014-07-11 12:56 - 2006-06-01 21:06 - 00177152 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msctfime.ime
2014-07-11 12:56 - 2006-06-01 21:06 - 00175616 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\appmgmts.dll
2014-07-11 12:56 - 2006-06-01 21:06 - 00175616 _____ (Microsoft Corporation) C:\WINDOWS\system32\appmgmts.dll
2014-07-11 12:56 - 2006-06-01 21:06 - 00163584 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\nwrdr.sys
2014-07-11 12:56 - 2006-06-01 21:06 - 00163584 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\nwrdr.sys
2014-07-11 12:56 - 2006-06-01 21:06 - 00151552 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\sqldb20.dll
2014-07-11 12:56 - 2006-06-01 21:06 - 00147456 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\bootcfg.exe
2014-07-11 12:56 - 2006-06-01 21:06 - 00147456 _____ (Microsoft Corporation) C:\WINDOWS\system32\bootcfg.exe
2014-07-11 12:56 - 2006-06-01 21:06 - 00145408 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\iische51.dll
2014-07-11 12:56 - 2006-06-01 21:06 - 00143360 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fxsclnt.exe
2014-07-11 12:56 - 2006-06-01 21:06 - 00137728 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\aclua.dll
2014-07-11 12:56 - 2006-06-01 21:06 - 00133632 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\iisrtl.dll
2014-07-11 12:56 - 2006-06-01 21:06 - 00129536 _____ (Microsoft Corporation) C:\WINDOWS\system32\xmlprov.dll
2014-07-11 12:56 - 2006-06-01 21:06 - 00129536 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\xmlprov.dll
2014-07-11 12:56 - 2006-06-01 21:06 - 00127488 _____ (Microsoft Corporation) C:\WINDOWS\system32\schtasks.exe
2014-07-11 12:56 - 2006-06-01 21:06 - 00127488 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\sctasks.exe
2014-07-11 12:56 - 2006-06-01 21:06 - 00125952 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ftpsv251.dll
2014-07-11 12:56 - 2006-06-01 21:06 - 00124800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fltmgr.sys
2014-07-11 12:56 - 2006-06-01 21:06 - 00124800 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fltmgr.sys
2014-07-11 12:56 - 2006-06-01 21:06 - 00122368 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpresult.exe
2014-07-11 12:56 - 2006-06-01 21:06 - 00122368 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\gprslt.exe
2014-07-11 12:56 - 2006-06-01 21:06 - 00118784 _____ (Microsoft Corporation) C:\WINDOWS\system32\fde.dll
2014-07-11 12:56 - 2006-06-01 21:06 - 00118784 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fde.dll
2014-07-11 12:56 - 2006-06-01 21:06 - 00116224 _____ (Microsoft Corporation) C:\WINDOWS\system32\p2p.dll
2014-07-11 12:56 - 2006-06-01 21:06 - 00116224 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\p2p.dll
2014-07-11 12:56 - 2006-06-01 21:06 - 00116224 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\acxtrnal.dll
2014-07-11 12:56 - 2006-06-01 21:06 - 00110592 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\sqlse20.dll
2014-07-11 12:56 - 2006-06-01 21:06 - 00110080 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\appconf.dll
2014-07-11 12:56 - 2006-06-01 21:06 - 00109568 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\adsnw.dll
2014-07-11 12:56 - 2006-06-01 21:06 - 00109568 _____ (Microsoft Corporation) C:\WINDOWS\system32\adsnw.dll
2014-07-11 12:56 - 2006-06-01 21:06 - 00108032 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\evntagnt.dll
2014-07-11 12:56 - 2006-06-01 21:06 - 00107520 _____ (Microsoft Corporation) C:\WINDOWS\system32\rsnotify.exe
2014-07-11 12:56 - 2006-06-01 21:06 - 00107520 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\rsnotify.exe
2014-07-11 12:56 - 2006-06-01 21:06 - 00103936 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\uihelper.dll
2014-07-11 12:56 - 2006-06-01 21:06 - 00094208 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\evntwin.exe
2014-07-11 12:56 - 2006-06-01 21:06 - 00092672 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\policman.dll
2014-07-11 12:56 - 2006-06-01 21:06 - 00089088 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqlogmgr.dll
2014-07-11 12:56 - 2006-06-01 21:06 - 00089088 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mqlogmgr.dll
2014-07-11 12:56 - 2006-06-01 21:06 - 00086016 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\metada51.dll
2014-07-11 12:56 - 2006-06-01 21:06 - 00081408 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscsvc.dll
2014-07-11 12:56 - 2006-06-01 21:06 - 00081408 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wscsvc.dll
2014-07-11 12:56 - 2006-06-01 21:06 - 00081408 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\directdb.dll
2014-07-11 12:56 - 2006-06-01 21:06 - 00081196 _____ () C:\WINDOWS\system32\dllcache\apps.chm
2014-07-11 12:56 - 2006-06-01 21:06 - 00080384 _____ (Microsoft Corporation) C:\WINDOWS\system32\eventtriggers.exe
2014-07-11 12:56 - 2006-06-01 21:06 - 00080384 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\evtrig.exe
2014-07-11 12:56 - 2006-06-01 21:06 - 00079872 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\iislog51.dll
2014-07-11 12:56 - 2006-06-01 21:06 - 00078336 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\logui.ocx
2014-07-11 12:56 - 2006-06-01 21:06 - 00077312 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\cnfgprts.ocx
2014-07-11 12:56 - 2006-06-01 21:06 - 00076800 _____ (Microsoft Corporation) C:\WINDOWS\system32\fdeploy.dll
2014-07-11 12:56 - 2006-06-01 21:06 - 00076800 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fdeploy.dll
2014-07-11 12:56 - 2006-06-01 21:06 - 00076288 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wam51.dll
2014-07-11 12:56 - 2006-06-01 21:06 - 00075264 _____ (Microsoft Corporation) C:\WINDOWS\system32\tlntsvr.exe
2014-07-11 12:56 - 2006-06-01 21:06 - 00075264 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\tlntsvr.exe
2014-07-11 12:56 - 2006-06-01 21:06 - 00074240 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskkill.exe
2014-07-11 12:56 - 2006-06-01 21:06 - 00074240 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\taskkill.exe
2014-07-11 12:56 - 2006-06-01 21:06 - 00073728 _____ (Microsoft Corporation) C:\WINDOWS\system32\tasklist.exe
2014-07-11 12:56 - 2006-06-01 21:06 - 00073728 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\tasklist.exe
2014-07-11 12:56 - 2006-06-01 21:06 - 00072192 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fxscom.dll
2014-07-11 12:56 - 2006-06-01 21:06 - 00071680 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\blastcln.exe
2014-07-11 12:56 - 2006-06-01 21:06 - 00071680 _____ (Microsoft Corporation) C:\WINDOWS\system32\blastcln.exe
2014-07-11 12:56 - 2006-06-01 21:06 - 00070656 _____ (Microsoft Corporation) C:\WINDOWS\system32\openfiles.exe
2014-07-11 12:56 - 2006-06-01 21:06 - 00070656 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\opnfiles.exe
2014-07-11 12:56 - 2006-06-01 21:06 - 00070144 _____ (Microsoft Corporation) C:\WINDOWS\system32\systeminfo.exe
2014-07-11 12:56 - 2006-06-01 21:06 - 00070144 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\sysinfo.exe
2014-07-11 12:56 - 2006-06-01 21:06 - 00068608 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\isatq.dll
2014-07-11 12:56 - 2006-06-01 21:06 - 00068608 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\iisext51.dll
2014-07-11 12:56 - 2006-06-01 21:06 - 00065024 _____ (Microsoft Corporation) C:\WINDOWS\system32\nwwks.dll
2014-07-11 12:56 - 2006-06-01 21:06 - 00065024 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\nwwks.dll
2014-07-11 12:56 - 2006-06-01 21:06 - 00064512 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\iismap.dll
2014-07-11 12:56 - 2006-06-01 21:06 - 00064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\tlntadmn.exe
2014-07-11 12:56 - 2006-06-01 21:06 - 00064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\tlntadmn.exe
2014-07-11 12:56 - 2006-06-01 21:06 - 00064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fxsevent.dll
2014-07-11 12:56 - 2006-06-01 21:06 - 00062976 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\spgrmr.dll
2014-07-11 12:56 - 2006-06-01 21:06 - 00061952 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\httpod51.dll
2014-07-11 12:56 - 2006-06-01 21:06 - 00061440 _____ (Microsoft Corporation) C:\WINDOWS\system32\logman.exe
2014-07-11 12:56 - 2006-06-01 21:06 - 00061440 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\logman.exe
2014-07-11 12:56 - 2006-06-01 21:06 - 00060928 _____ (Microsoft Corporation) C:\WINDOWS\system32\driverquery.exe
2014-07-11 12:56 - 2006-06-01 21:06 - 00060928 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\drvqry.exe
2014-07-11 12:56 - 2006-06-01 21:06 - 00058880 _____ (Microsoft Corporation) C:\WINDOWS\system32\nwapi32.dll
2014-07-11 12:56 - 2006-06-01 21:06 - 00058880 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\nwapi32.dll
2014-07-11 12:56 - 2006-06-01 21:06 - 00058368 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\cipher.exe
2014-07-11 12:56 - 2006-06-01 21:06 - 00058368 _____ (Microsoft Corporation) C:\WINDOWS\system32\cipher.exe
2014-07-11 12:56 - 2006-06-01 21:06 - 00057344 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\agentdpv.dll
2014-07-11 12:56 - 2006-06-01 21:06 - 00056832 _____ (Microsoft Corporation) C:\WINDOWS\system32\getmac.exe
2014-07-11 12:56 - 2006-06-01 21:06 - 00056832 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\getmac.exe
2014-07-11 12:56 - 2006-06-01 21:06 - 00053248 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wamreg51.dll
2014-07-11 12:56 - 2006-06-01 21:06 - 00052224 _____ (Microsoft Corporation) C:\WINDOWS\system32\eventcreate.exe
2014-07-11 12:56 - 2006-06-01 21:06 - 00052224 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\evcreate.exe
2014-07-11 12:56 - 2006-06-01 21:06 - 00050688 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\btpanui.dll
2014-07-11 12:56 - 2006-06-01 21:06 - 00050688 _____ (Microsoft Corporation) C:\WINDOWS\system32\btpanui.dll
2014-07-11 12:56 - 2006-06-01 21:06 - 00050176 _____ (Microsoft Corporation) C:\WINDOWS\system32\xmlprovi.dll
2014-07-11 12:56 - 2006-06-01 21:06 - 00050176 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\xmlprovi.dll
2014-07-11 12:56 - 2006-06-01 21:06 - 00049152 _____ (Microsoft Corporation) C:\WINDOWS\system32\powercfg.exe
2014-07-11 12:56 - 2006-06-01 21:06 - 00049152 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\powercfg.exe
2014-07-11 12:56 - 2006-06-01 21:06 - 00049152 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\agentmpx.dll
2014-07-11 12:56 - 2006-06-01 21:06 - 00047104 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\coadmin.dll
2014-07-11 12:56 - 2006-06-01 21:06 - 00046592 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\svcext51.dll
2014-07-11 12:56 - 2006-06-01 21:06 - 00046592 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\sspifilt.dll
2014-07-11 12:56 - 2006-06-01 21:06 - 00045568 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ssinc51.dll
2014-07-11 12:56 - 2006-06-01 21:06 - 00045568 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\evtgprov.dll
2014-07-11 12:56 - 2006-06-01 21:06 - 00045056 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\nsepm.dll
2014-07-11 12:56 - 2006-06-01 21:06 - 00045056 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\confmrsl.dll
2014-07-11 12:56 - 2006-06-01 21:06 - 00044032 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\agentsr.dll
2014-07-11 12:56 - 2006-06-01 21:06 - 00043520 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\admwprox.dll
2014-07-11 12:56 - 2006-06-01 21:06 - 00042496 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\davcdata.exe
2014-07-11 12:56 - 2006-06-01 21:06 - 00041984 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\agentdp2.dll
2014-07-11 12:56 - 2006-06-01 21:06 - 00040960 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\dcap32.dll
2014-07-11 12:56 - 2006-06-01 21:06 - 00037888 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\md5filt.dll
2014-07-11 12:56 - 2006-06-01 21:06 - 00032256 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\gzip.dll
2014-07-11 12:56 - 2006-06-01 21:06 - 00031232 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\tools.dll
2014-07-11 12:56 - 2006-06-01 21:06 - 00030983 _____ () C:\WINDOWS\system32\dllcache\fp4.cat
2014-07-11 12:56 - 2006-06-01 21:06 - 00030720 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\iisrstas.exe
2014-07-11 12:56 - 2006-06-01 21:06 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\asr_fmt.exe
2014-07-11 12:56 - 2006-06-01 21:06 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\asr_fmt.exe
2014-07-11 12:56 - 2006-06-01 21:06 - 00029696 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\admexs.dll
2014-07-11 12:56 - 2006-06-01 21:06 - 00028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\custsat.dll
2014-07-11 12:56 - 2006-06-01 21:06 - 00027136 _____ (Microsoft Corporation) C:\WINDOWS\system32\efsadu.dll
2014-07-11 12:56 - 2006-06-01 21:06 - 00027136 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\iscomlog.dll
2014-07-11 12:56 - 2006-06-01 21:06 - 00027136 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fxsdrv.dll
2014-07-11 12:56 - 2006-06-01 21:06 - 00027136 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\efsadu.dll
2014-07-11 12:56 - 2006-06-01 21:06 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\evntcmd.exe
2014-07-11 12:56 - 2006-06-01 21:06 - 00025088 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\iisadmin.dll
2014-07-11 12:56 - 2006-06-01 21:06 - 00024064 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\compfilt.dll
2014-07-11 12:56 - 2006-06-01 21:06 - 00024064 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\agtintl.dll
2014-07-11 12:56 - 2006-06-01 21:06 - 00024064 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\agentpsh.dll
2014-07-11 12:56 - 2006-06-01 21:06 - 00024064 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\agentanm.dll
2014-07-11 12:56 - 2006-06-01 21:06 - 00023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fxsmon.dll
2014-07-11 12:56 - 2006-06-01 21:06 - 00023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fxsext32.dll
2014-07-11 12:56 - 2006-06-01 21:06 - 00022528 _____ (Microsoft Corporation) C:\WINDOWS\system32\fltmc.exe
2014-07-11 12:56 - 2006-06-01 21:06 - 00022528 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fltmc.exe
2014-07-11 12:56 - 2006-06-01 21:06 - 00022016 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\agt0408.dll
2014-07-11 12:56 - 2006-06-01 21:06 - 00021504 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\agt040c.dll
2014-07-11 12:56 - 2006-06-01 21:06 - 00021504 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\agt0407.dll
2014-07-11 12:56 - 2006-06-01 21:06 - 00020992 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\agt0816.dll
2014-07-11 12:56 - 2006-06-01 21:06 - 00020992 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\agt0413.dll
2014-07-11 12:56 - 2006-06-01 21:06 - 00020992 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\agt0410.dll
2014-07-11 12:56 - 2006-06-01 21:06 - 00020480 _____ (Microsoft Corporation) C:\WINDOWS\system32\encapi.dll
2014-07-11 12:56 - 2006-06-01 21:06 - 00020480 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\encapi.dll
2014-07-11 12:56 - 2006-06-01 21:06 - 00020480 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\agt0c0a.dll
2014-07-11 12:56 - 2006-06-01 21:06 - 00020480 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\agt0416.dll
2014-07-11 12:56 - 2006-06-01 21:06 - 00019968 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\agt040e.dll
2014-07-11 12:56 - 2006-06-01 21:06 - 00019456 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\agt0804.dll
2014-07-11 12:56 - 2006-06-01 21:06 - 00019456 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\agt041f.dll
2014-07-11 12:56 - 2006-06-01 21:06 - 00019456 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\agt041d.dll
2014-07-11 12:56 - 2006-06-01 21:06 - 00019456 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\agt0419.dll
2014-07-11 12:56 - 2006-06-01 21:06 - 00019456 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\agt0415.dll
2014-07-11 12:56 - 2006-06-01 21:06 - 00019456 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\agt0414.dll
2014-07-11 12:56 - 2006-06-01 21:06 - 00019456 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\agt0412.dll
2014-07-11 12:56 - 2006-06-01 21:06 - 00019456 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\agt0411.dll
2014-07-11 12:56 - 2006-06-01 21:06 - 00019456 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\agt040d.dll
2014-07-11 12:56 - 2006-06-01 21:06 - 00019456 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\agt040b.dll
2014-07-11 12:56 - 2006-06-01 21:06 - 00019456 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\agt0409.dll
2014-07-11 12:56 - 2006-06-01 21:06 - 00019456 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\agt0406.dll
2014-07-11 12:56 - 2006-06-01 21:06 - 00019456 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\agt0405.dll
2014-07-11 12:56 - 2006-06-01 21:06 - 00019456 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\agt0404.dll
2014-07-11 12:56 - 2006-06-01 21:06 - 00019456 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\agt0401.dll
2014-07-11 12:56 - 2006-06-01 21:06 - 00018944 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\hscupd.exe
2014-07-11 12:56 - 2006-06-01 21:06 - 00018432 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\agtctl15.tlb
2014-07-11 12:56 - 2006-06-01 21:06 - 00017408 _____ (Microsoft Corporation) C:\WINDOWS\system32\winshfhc.dll
2014-07-11 12:56 - 2006-06-01 21:06 - 00017408 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\winshfhc.dll
2014-07-11 12:56 - 2006-06-01 21:06 - 00015872 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\inetin51.exe
2014-07-11 12:56 - 2006-06-01 21:06 - 00014336 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\exstrace.dll
2014-07-11 12:56 - 2006-06-01 21:06 - 00014336 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\auditusr.exe
2014-07-11 12:56 - 2006-06-01 21:06 - 00014336 _____ (Microsoft Corporation) C:\WINDOWS\system32\auditusr.exe
2014-07-11 12:56 - 2006-06-01 21:06 - 00013824 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\cmsetacl.dll
2014-07-11 12:56 - 2006-06-01 21:06 - 00013824 _____ (Microsoft Corporation) C:\WINDOWS\system32\cmsetacl.dll
2014-07-11 12:56 - 2006-06-01 21:06 - 00013312 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\lonsint.dll
2014-07-11 12:56 - 2006-06-01 21:06 - 00013312 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\infoadmn.dll
2014-07-11 12:56 - 2006-06-01 21:06 - 00009728 _____ (Microsoft Corporation) C:\WINDOWS\system32\proxycfg.exe
2014-07-11 12:56 - 2006-06-01 21:06 - 00009728 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\proxycfg.exe
2014-07-11 12:56 - 2006-06-01 21:06 - 00009728 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\comrepl.exe
2014-07-11 12:56 - 2006-06-01 21:06 - 00008704 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fxsperf.dll
2014-07-11 12:56 - 2006-06-01 21:06 - 00008192 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\staxmem.dll
2014-07-11 12:56 - 2006-06-01 21:06 - 00008192 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\httpmb51.dll
2014-07-11 12:56 - 2006-06-01 21:06 - 00007680 _____ (Microsoft Corporation) C:\WINDOWS\system32\kbdsmsfi.dll
2014-07-11 12:56 - 2006-06-01 21:06 - 00007680 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wmm2ext.dll
2014-07-11 12:56 - 2006-06-01 21:06 - 00007680 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\pwsdata.dll
2014-07-11 12:56 - 2006-06-01 21:06 - 00007680 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdsmsfi.dll
2014-07-11 12:56 - 2006-06-01 21:06 - 00007168 _____ (Microsoft Corporation) C:\WINDOWS\system32\tlntsvrp.dll
2014-07-11 12:56 - 2006-06-01 21:06 - 00007168 _____ (Microsoft Corporation) C:\WINDOWS\system32\kbdno1.dll
2014-07-11 12:56 - 2006-06-01 21:06 - 00007168 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\tlntsvrp.dll
2014-07-11 12:56 - 2006-06-01 21:06 - 00007168 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdno1.dll
2014-07-11 12:56 - 2006-06-01 21:06 - 00007168 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\iisfecnv.dll
2014-07-11 12:56 - 2006-06-01 21:06 - 00007168 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fxsres.dll
2014-07-11 12:56 - 2006-06-01 21:06 - 00007168 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\f3ahvoas.dll
2014-07-11 12:56 - 2006-06-01 21:06 - 00007168 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\bitsprx3.dll
2014-07-11 12:56 - 2006-06-01 21:06 - 00007168 _____ (Microsoft Corporation) C:\WINDOWS\system32\bitsprx3.dll
2014-07-11 12:56 - 2006-06-01 21:06 - 00006656 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauserv.dll
2014-07-11 12:56 - 2006-06-01 21:06 - 00006656 _____ (Microsoft Corporation) C:\WINDOWS\system32\kbdinben.dll
2014-07-11 12:56 - 2006-06-01 21:06 - 00006656 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wuauserv.dll
2014-07-11 12:56 - 2006-06-01 21:06 - 00006656 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdinben.dll
2014-07-11 12:56 - 2006-06-01 21:06 - 00006144 _____ (Microsoft Corporation) C:\WINDOWS\system32\kbdmlt48.dll
2014-07-11 12:56 - 2006-06-01 21:06 - 00006144 _____ (Microsoft Corporation) C:\WINDOWS\system32\kbdinbe1.dll
2014-07-11 12:56 - 2006-06-01 21:06 - 00006144 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdmlt48.dll
2014-07-11 12:56 - 2006-06-01 21:06 - 00006144 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdinbe1.dll
2014-07-11 12:56 - 2006-06-01 21:06 - 00006144 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ftpmib.dll
2014-07-11 12:56 - 2006-06-01 21:06 - 00005632 _____ (Microsoft Corporation) C:\WINDOWS\system32\kbdmaori.dll
2014-07-11 12:56 - 2006-06-01 21:06 - 00005632 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdmaori.dll
2014-07-11 12:56 - 2006-06-01 21:06 - 00005120 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\comrereg.exe
2014-07-11 12:56 - 2006-06-01 21:06 - 00004096 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\rpcref.dll
2014-07-11 12:56 - 2004-08-03 23:10 - 00059648 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rfcomm.sys
2014-07-11 12:56 - 2004-08-03 23:10 - 00059648 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\rfcomm.sys
2014-07-11 12:56 - 2004-08-03 23:10 - 00017024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthenum.sys
2014-07-11 12:56 - 2004-08-03 23:10 - 00017024 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\bthenum.sys
2014-07-11 12:56 - 2004-08-03 23:08 - 00026624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbehci.sys
2014-07-11 12:56 - 2004-08-03 23:08 - 00026624 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\usbehci.sys
2014-07-11 12:56 - 2004-05-13 00:39 - 00876653 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fp4awel.dll
2014-07-11 12:56 - 2004-05-13 00:39 - 00598071 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fpmmc.dll
2014-07-11 12:56 - 2004-05-13 00:39 - 00184435 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fp4amsft.dll
2014-07-11 12:56 - 2003-03-24 16:52 - 00618605 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fp4autl.dll
2014-07-11 12:56 - 2003-03-24 16:52 - 00188494 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fpcount.exe
2014-07-11 12:56 - 2003-03-24 16:52 - 00188480 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\cfgwiz.exe
2014-07-11 12:56 - 2003-03-24 16:52 - 00147513 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fp4apws.dll
2014-07-11 12:56 - 2003-03-24 16:52 - 00109328 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fp98swin.exe
2014-07-11 12:56 - 2003-03-24 16:52 - 00102509 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fp4atxt.dll
2014-07-11 12:56 - 2003-03-24 16:52 - 00094208 _____ () C:\WINDOWS\system32\dllcache\fpencode.dll
2014-07-11 12:56 - 2003-03-24 16:52 - 00082035 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fp4anscp.dll
2014-07-11 12:56 - 2003-03-24 16:52 - 00049212 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fp4awebs.dll
2014-07-11 12:56 - 2003-03-24 16:52 - 00049210 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fp4areg.dll
2014-07-11 12:56 - 2003-03-24 16:52 - 00041020 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fp4avnb.dll
2014-07-11 12:56 - 2003-03-24 16:52 - 00032826 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fp4avss.dll
2014-07-11 12:56 - 2003-03-24 16:52 - 00024632 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fpadmcgi.exe
2014-07-11 12:56 - 2003-03-24 16:52 - 00020541 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fpexedll.dll
2014-07-11 12:56 - 2003-03-24 16:52 - 00020541 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fpadmdll.dll
2014-07-11 12:56 - 2003-03-24 16:52 - 00020540 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\author.dll
2014-07-11 12:56 - 2003-03-24 16:52 - 00020540 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\admin.dll
2014-07-11 12:56 - 2003-03-24 16:52 - 00020538 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fpremadm.exe
2014-07-11 12:56 - 2003-03-24 16:52 - 00016439 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\author.exe
2014-07-11 12:56 - 2003-03-24 16:52 - 00016439 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\admin.exe
2014-07-11 12:56 - 2003-03-24 16:52 - 00014608 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fp98sadm.exe
2014-07-11 12:55 - 2010-06-14 16:30 - 00743936 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\helpsvc.exe
2014-07-11 12:55 - 2010-02-16 21:30 - 02183680 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ntoskrnl.exe
2014-07-11 12:55 - 2010-02-16 21:30 - 02139648 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ntkrnlmp.exe
2014-07-11 12:55 - 2010-02-16 21:30 - 02060672 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ntkrnlpa.exe
2014-07-11 12:55 - 2010-02-16 21:30 - 02019328 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ntkrpamp.exe
2014-07-11 12:55 - 2010-01-29 17:06 - 01315840 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msoe.dll
2014-07-11 12:55 - 2009-02-09 12:18 - 00473088 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fastprox.dll
2014-07-11 12:55 - 2009-02-09 12:18 - 00453120 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wmiprvsd.dll
2014-07-11 12:55 - 2009-02-06 18:39 - 00227840 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wmiprvse.exe
2014-07-11 12:55 - 2009-01-09 21:18 - 01089891 _____ () C:\WINDOWS\system32\dllcache\ntprint.cat
2014-07-11 12:55 - 2008-04-21 23:25 - 00217600 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wordpad.exe
2014-07-11 12:55 - 2006-12-19 20:08 - 00852480 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\vgx.dll
2014-07-11 12:55 - 2006-06-01 21:06 - 04190352 _____ (Microsoft) C:\WINDOWS\system32\dllcache\luna.mst
2014-07-11 12:55 - 2006-06-01 21:06 - 03166208 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msgr3en.dll
2014-07-11 12:55 - 2006-06-01 21:06 - 02532864 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msoeres.dll
2014-07-11 12:55 - 2006-06-01 21:06 - 01896083 _____ () C:\WINDOWS\system32\dllcache\nt5.cat
2014-07-11 12:55 - 2006-06-01 21:06 - 01352704 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\cimwin32.dll
2014-07-11 12:55 - 2006-06-01 21:06 - 00768512 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\helpctr.exe
2014-07-11 12:55 - 2006-06-01 21:06 - 00741376 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\sapi.dll
2014-07-11 12:55 - 2006-06-01 21:06 - 00727102 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\srchui.dll
2014-07-11 12:55 - 2006-06-01 21:06 - 00563200 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fxsst.dll
2014-07-11 12:55 - 2006-06-01 21:06 - 00539136 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\spider.exe
2014-07-11 12:55 - 2006-06-01 21:06 - 00536576 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msado15.dll
2014-07-11 12:55 - 2006-06-01 21:06 - 00530944 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wbemcore.dll
2014-07-11 12:55 - 2006-06-01 21:06 - 00510464 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wab32.dll
2014-07-11 12:55 - 2006-06-01 21:06 - 00508416 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\iis.dll
2014-07-11 12:55 - 2006-06-01 21:06 - 00487424 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\oledb32.dll
2014-07-11 12:55 - 2006-06-01 21:06 - 00400896 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fxsxp32.dll
2014-07-11 12:55 - 2006-06-01 21:06 - 00397312 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fxstiff.dll
2014-07-11 12:55 - 2006-06-01 21:06 - 00385536 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\rstrui.exe
2014-07-11 12:55 - 2006-06-01 21:06 - 00379904 _____ () C:\WINDOWS\system32\dllcache\msinfo.dll
2014-07-11 12:55 - 2006-06-01 21:06 - 00364544 _____ (Microsoft Corporation (written by Digital Renaissance Inc.)) C:\WINDOWS\system32\dllcache\npdsplay.dll
2014-07-11 12:55 - 2006-06-01 21:06 - 00358976 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msjetol1.dll
2014-07-11 12:55 - 2006-06-01 21:06 - 00358400 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\snmpincl.dll
2014-07-11 12:55 - 2006-06-01 21:06 - 00347136 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\tourstrt.exe
2014-07-11 12:55 - 2006-06-01 21:06 - 00315392 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msdasql.dll
2014-07-11 12:55 - 2006-06-01 21:06 - 00282624 _____ (Cinematronics) C:\WINDOWS\system32\dllcache\pinball.exe
2014-07-11 12:55 - 2006-06-01 21:06 - 00279040 _____ () C:\WINDOWS\system32\dllcache\tshoot.dll
2014-07-11 12:55 - 2006-06-01 21:06 - 00274432 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mst120.dll
2014-07-11 12:55 - 2006-06-01 21:06 - 00273920 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wbemess.dll
2014-07-11 12:55 - 2006-06-01 21:06 - 00272384 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\sptip.dll
2014-07-11 12:55 - 2006-06-01 21:06 - 00268800 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fxssvc.exe
2014-07-11 12:55 - 2006-06-01 21:06 - 00259584 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\comsetup.dll
2014-07-11 12:55 - 2006-06-01 21:06 - 00259072 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wab32res.dll
2014-07-11 12:55 - 2006-06-01 21:06 - 00259072 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\snmpcl.dll
2014-07-11 12:55 - 2006-06-01 21:06 - 00247808 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\esscli.dll
2014-07-11 12:55 - 2006-06-01 21:06 - 00246272 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fxst30.dll
2014-07-11 12:55 - 2006-06-01 21:06 - 00237056 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\provthrd.dll
2014-07-11 12:55 - 2006-06-01 21:06 - 00236544 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\smi2smir.exe
2014-07-11 12:55 - 2006-06-01 21:06 - 00233472 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msdaora.dll
2014-07-11 12:55 - 2006-06-01 21:06 - 00229376 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\nmas.dll
2014-07-11 12:55 - 2006-06-01 21:06 - 00226816 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\npdrmv2.dll
2014-07-11 12:55 - 2006-06-01 21:06 - 00221184 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\nac.dll
2014-07-11 12:55 - 2006-06-01 21:06 - 00220160 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mscandui.dll
2014-07-11 12:55 - 2006-06-01 21:06 - 00218624 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\icwconn1.exe
2014-07-11 12:55 - 2006-06-01 21:06 - 00214528 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wbemcomn.dll
2014-07-11 12:55 - 2006-06-01 21:06 - 00212992 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ntevt.dll
2014-07-11 12:55 - 2006-06-01 21:06 - 00204800 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msdaps.dll
2014-07-11 12:55 - 2006-06-01 21:06 - 00201216 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wbemcntl.dll
2014-07-11 12:55 - 2006-06-01 21:06 - 00200704 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msadox.dll
2014-07-11 12:55 - 2006-06-01 21:06 - 00198736 _____ () C:\WINDOWS\system32\dllcache\msimain.sdb
2014-07-11 12:55 - 2006-06-01 21:06 - 00197120 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wbemupgd.dll
2014-07-11 12:55 - 2006-06-01 21:06 - 00196608 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wmiadap.exe
2014-07-11 12:55 - 2006-06-01 21:06 - 00195584 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fxswzrd.dll
2014-07-11 12:55 - 2006-06-01 21:06 - 00188416 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\snmpsmir.dll
2014-07-11 12:55 - 2006-06-01 21:06 - 00188416 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\nmwb.dll
2014-07-11 12:55 - 2006-06-01 21:06 - 00185856 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\framedyn.dll
2014-07-11 12:55 - 2006-06-01 21:06 - 00180224 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msadomd.dll
2014-07-11 12:55 - 2006-06-01 21:06 - 00178176 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wbemdisp.dll
2014-07-11 12:55 - 2006-06-01 21:06 - 00177152 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\repdrvfs.dll
2014-07-11 12:55 - 2006-06-01 21:06 - 00172032 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\nmoldwb.dll
2014-07-11 12:55 - 2006-06-01 21:06 - 00172032 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\icwhelp.dll
2014-07-11 12:55 - 2006-06-01 21:06 - 00160768 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msconfig.exe
2014-07-11 12:55 - 2006-06-01 21:06 - 00159744 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\sapi.cpl
2014-07-11 12:55 - 2006-06-01 21:06 - 00156672 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wmipcima.dll
2014-07-11 12:55 - 2006-06-01 21:06 - 00155648 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\nmft.dll
2014-07-11 12:55 - 2006-06-01 21:06 - 00155648 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fxsui.dll
2014-07-11 12:55 - 2006-06-01 21:06 - 00151040 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\uploadm.exe
2014-07-11 12:55 - 2006-06-01 21:06 - 00145408 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wmisvc.dll
2014-07-11 12:55 - 2006-06-01 21:06 - 00144896 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wmiprov.dll
2014-07-11 12:55 - 2006-06-01 21:06 - 00140800 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wmidcprv.dll
2014-07-11 12:55 - 2006-06-01 21:06 - 00132608 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fxsocm.dll
2014-07-11 12:55 - 2006-06-01 21:06 - 00132096 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wmipdskq.dll
2014-07-11 12:55 - 2006-06-01 21:06 - 00131584 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\viewprov.dll
2014-07-11 12:55 - 2006-06-01 21:06 - 00130048 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\softkbd.dll
2014-07-11 12:55 - 2006-06-01 21:06 - 00126464 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wmiapsrv.exe
2014-07-11 12:55 - 2006-06-01 21:06 - 00124416 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mofd.dll
2014-07-11 12:55 - 2006-06-01 21:06 - 00123392 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\tsoc.dll
2014-07-11 12:55 - 2006-06-01 21:06 - 00120320 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wbemtest.exe
2014-07-11 12:55 - 2006-06-01 21:06 - 00118784 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\imsinsnt.dll
2014-07-11 12:55 - 2006-06-01 21:06 - 00111104 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mtstocom.exe
2014-07-11 12:55 - 2006-06-01 21:06 - 00104448 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\oeimport.dll
2014-07-11 12:55 - 2006-06-01 21:06 - 00102400 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\pchshell.dll
2014-07-11 12:55 - 2006-06-01 21:06 - 00102400 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msjro.dll
2014-07-11 12:55 - 2006-06-01 21:06 - 00101888 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\setupqry.dll
2014-07-11 12:55 - 2006-06-01 21:06 - 00099840 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wmiutils.dll
2014-07-11 12:55 - 2006-06-01 21:06 - 00094208 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msdatl3.dll
2014-07-11 12:55 - 2006-06-01 21:06 - 00093184 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\iexplore.exe
2014-07-11 12:55 - 2006-06-01 21:06 - 00089088 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wmiaprpl.dll
2014-07-11 12:55 - 2006-06-01 21:06 - 00086528 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\stdprov.dll
2014-07-11 12:55 - 2006-06-01 21:06 - 00086016 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\icwconn2.exe
2014-07-11 12:55 - 2006-06-01 21:06 - 00085504 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wabimp.dll
2014-07-11 12:55 - 2006-06-01 21:06 - 00082432 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msdtcstp.dll
2014-07-11 12:55 - 2006-06-01 21:06 - 00081920 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\nmchat.dll
2014-07-11 12:55 - 2006-06-01 21:06 - 00081920 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msado26.tlb
2014-07-11 12:55 - 2006-06-01 21:06 - 00081920 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msado25.tlb
2014-07-11 12:55 - 2006-06-01 21:06 - 00078336 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\netoc.dll
2014-07-11 12:55 - 2006-06-01 21:06 - 00077824 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\nmcom.dll
2014-07-11 12:55 - 2006-06-01 21:06 - 00077824 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msdaosp.dll
2014-07-11 12:55 - 2006-06-01 21:06 - 00074240 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\setup50.exe
2014-07-11 12:55 - 2006-06-01 21:06 - 00073728 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\oledb32r.dll
2014-07-11 12:55 - 2006-06-01 21:06 - 00071680 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wbemcons.dll
2014-07-11 12:55 - 2006-06-01 21:06 - 00063488 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ntoc.dll
2014-07-11 12:55 - 2006-06-01 21:06 - 00062976 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wmipjobj.dll
2014-07-11 12:55 - 2006-06-01 21:06 - 00062464 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wmipiprt.dll
2014-07-11 12:55 - 2006-06-01 21:06 - 00061440 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\rrcm.dll
2014-07-11 12:55 - 2006-06-01 21:06 - 00061440 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\oemig50.exe
2014-07-11 12:55 - 2006-06-01 21:06 - 00061440 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msado21.tlb
2014-07-11 12:55 - 2006-06-01 21:06 - 00061440 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msado20.tlb
2014-07-11 12:55 - 2006-06-01 21:06 - 00061440 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\icwconn.dll
2014-07-11 12:55 - 2006-06-01 21:06 - 00060928 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wmicookr.dll
2014-07-11 12:55 - 2006-06-01 21:06 - 00060416 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msimn.exe
2014-07-11 12:55 - 2006-06-01 21:06 - 00058434 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\srchctls.dll
2014-07-11 12:55 - 2006-06-01 21:06 - 00057344 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ndisnpp.dll
2014-07-11 12:55 - 2006-06-01 21:06 - 00057344 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mst123.dll
2014-07-11 12:55 - 2006-06-01 21:06 - 00057344 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msadrh15.dll
2014-07-11 12:55 - 2006-06-01 21:06 - 00057344 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msador15.dll
2014-07-11 12:55 - 2006-06-01 21:06 - 00057344 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\h323cc.dll
2014-07-11 12:55 - 2006-06-01 21:06 - 00049152 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\icwutil.dll
2014-07-11 12:55 - 2006-06-01 21:06 - 00047104 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ncprov.dll
2014-07-11 12:55 - 2006-06-01 21:06 - 00046080 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wab.exe
2014-07-11 12:55 - 2006-06-01 21:06 - 00044544 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wbemperf.dll
2014-07-11 12:55 - 2006-06-01 21:06 - 00043520 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wbemsvc.dll
2014-07-11 12:55 - 2006-06-01 21:06 - 00041472 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wmipsess.dll
2014-07-11 12:55 - 2006-06-01 21:06 - 00040960 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msiregmv.exe
2014-07-11 12:55 - 2006-06-01 21:06 - 00040448 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\snmpthrd.dll
2014-07-11 12:55 - 2006-06-01 21:06 - 00039936 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mslwvtts.dll
2014-07-11 12:55 - 2006-06-01 21:06 - 00039936 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\hostmib.dll
2014-07-11 12:55 - 2006-06-01 21:06 - 00038912 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\pchsvc.dll
2014-07-11 12:55 - 2006-06-01 21:06 - 00038912 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\hmmapi.dll
2014-07-11 12:55 - 2006-06-01 21:06 - 00036864 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\scrcons.exe
2014-07-11 12:55 - 2006-06-01 21:06 - 00036864 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\iprip.dll
2014-07-11 12:55 - 2006-06-01 21:06 - 00035328 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\oemiglib.dll
2014-07-11 12:55 - 2006-06-01 21:06 - 00034816 _____ () C:\WINDOWS\system32\dllcache\sniffpol.dll
2014-07-11 12:55 - 2006-06-01 21:06 - 00033792 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\lmmib2.dll
2014-07-11 12:55 - 2006-06-01 21:06 - 00033280 _____ () C:\WINDOWS\system32\dllcache\sstub.dll
2014-07-11 12:55 - 2006-06-01 21:06 - 00032828 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fp40ext.dll
2014-07-11 12:55 - 2006-06-01 21:06 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wabfind.dll
2014-07-11 12:55 - 2006-06-01 21:06 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\snmp.exe
2014-07-11 12:55 - 2006-06-01 21:06 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\icwdl.dll
2014-07-11 12:55 - 2006-06-01 21:06 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wabmig.exe
2014-07-11 12:55 - 2006-06-01 21:06 - 00028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\nmasnt.dll
2014-07-11 12:55 - 2006-06-01 21:06 - 00028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msader15.dll
2014-07-11 12:55 - 2006-06-01 21:06 - 00026624 _____ (Ricoh Co., Ltd.) C:\WINDOWS\system32\dllcache\rw330ext.dll
2014-07-11 12:55 - 2006-06-01 21:06 - 00024576 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\rw001ext.dll
2014-07-11 12:55 - 2006-06-01 21:06 - 00024576 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msxactps.dll
2014-07-11 12:55 - 2006-06-01 21:06 - 00024576 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\krnlprov.dll
2014-07-11 12:55 - 2006-06-01 21:06 - 00024576 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\icwrmind.exe
2014-07-11 12:55 - 2006-06-01 21:06 - 00023040 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\lpdsvc.dll
2014-07-11 12:55 - 2006-06-01 21:06 - 00022016 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\evntrprv.dll
2014-07-11 12:55 - 2006-06-01 21:06 - 00020480 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msdatt.dll
2014-07-11 12:55 - 2006-06-01 21:06 - 00020480 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\inetwiz.exe
2014-07-11 12:55 - 2006-06-01 21:06 - 00019968 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\lprmon.dll
2014-07-11 12:55 - 2006-06-01 21:06 - 00018944 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wbemprox.dll
2014-07-11 12:55 - 2006-06-01 21:06 - 00017408 _____ (Microsoft Corp.) C:\WINDOWS\system32\dllcache\ocmsn.dll
2014-07-11 12:55 - 2006-06-01 21:06 - 00016896 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mofcomp.exe
2014-07-11 12:55 - 2006-06-01 21:06 - 00016384 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msdasqlr.dll
2014-07-11 12:55 - 2006-06-01 21:06 - 00016384 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msdaorar.dll
2014-07-11 12:55 - 2006-06-01 21:06 - 00015872 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ocgen.dll
2014-07-11 12:55 - 2006-06-01 21:06 - 00015360 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\nppagent.exe
2014-07-11 12:55 - 2006-06-01 21:06 - 00015360 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msgrocm.dll
2014-07-11 12:55 - 2006-06-01 21:06 - 00014043 _____ () C:\WINDOWS\system32\dllcache\ims.cat
2014-07-11 12:55 - 2006-06-01 21:06 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\npwmsdrm.dll
2014-07-11 12:55 - 2006-06-01 21:06 - 00009581 _____ () C:\WINDOWS\system32\dllcache\msmsgs.cat
2014-07-11 12:55 - 2006-06-01 21:06 - 00008704 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\snmptrap.exe
2014-07-11 12:55 - 2006-06-01 21:06 - 00007680 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wmiapres.dll
2014-07-11 12:55 - 2006-06-01 21:06 - 00007680 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\migregdb.exe
2014-07-11 12:55 - 2006-06-01 21:06 - 00007245 _____ () C:\WINDOWS\system32\dllcache\mstsweb.cat
2014-07-11 12:55 - 2006-06-01 21:06 - 00007168 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdibm02.dll
2014-07-11 12:55 - 2006-06-01 21:06 - 00006656 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdlk41a.dll
2014-07-11 12:55 - 2006-06-01 21:06 - 00006144 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\snmpmib.dll
2014-07-11 12:55 - 2006-06-01 21:06 - 00006144 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdlk41j.dll
2014-07-11 12:55 - 2006-06-01 21:06 - 00006144 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdax2.dll
2014-07-11 12:55 - 2006-06-01 21:06 - 00006144 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbd106n.dll
2014-07-11 12:55 - 2006-06-01 21:06 - 00006144 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbd101.dll
2014-07-11 12:55 - 2006-06-01 21:06 - 00004639 _____ () C:\WINDOWS\system32\dllcache\mplayer2.exe
2014-07-11 12:55 - 2006-06-01 21:06 - 00004096 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msdaurl.dll
2014-07-11 12:55 - 2006-06-01 21:06 - 00004096 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msdasc.dll
2014-07-11 12:55 - 2006-06-01 21:06 - 00004096 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msdaer.dll
2014-07-11 12:55 - 2006-06-01 21:06 - 00004096 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msdaenum.dll
2014-07-11 12:55 - 2006-06-01 21:06 - 00004096 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msdadc.dll
2014-07-11 12:55 - 2003-03-24 16:52 - 00032827 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\tcptest.exe
2014-07-11 12:55 - 2003-03-24 16:52 - 00020536 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\shtml.dll
2014-07-11 12:55 - 2003-03-24 16:52 - 00016437 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\shtml.exe
2014-07-11 12:54 - 2010-04-16 17:35 - 01056256 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\danim.dll
2014-07-11 12:54 - 2010-04-16 17:35 - 01056256 _____ (Microsoft Corporation) C:\WINDOWS\system32\danim.dll
2014-07-11 12:54 - 2010-04-16 17:35 - 01023488 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\browseui.dll
2014-07-11 12:54 - 2010-04-16 17:35 - 01023488 _____ (Microsoft Corporation) C:\WINDOWS\system32\browseui.dll
2014-07-11 12:54 - 2010-04-16 17:35 - 00357888 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtmsft.dll
2014-07-11 12:54 - 2010-04-16 17:35 - 00357888 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\dxtmsft.dll
2014-07-11 12:54 - 2010-04-16 17:35 - 00251392 _____ (Microsoft Corporation) C:\WINDOWS\system32\iepeers.dll
2014-07-11 12:54 - 2010-04-16 17:35 - 00251392 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\iepeers.dll
2014-07-11 12:54 - 2010-04-16 17:35 - 00205312 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtrans.dll
2014-07-11 12:54 - 2010-04-16 17:35 - 00205312 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\dxtrans.dll
2014-07-11 12:54 - 2010-04-16 17:35 - 00152064 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\cdfview.dll
2014-07-11 12:54 - 2010-04-16 17:35 - 00152064 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdfview.dll
2014-07-11 12:54 - 2010-03-05 16:54 - 00065536 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\asycfilt.dll
2014-07-11 12:54 - 2010-03-05 16:54 - 00065536 _____ (Microsoft Corporation) C:\WINDOWS\system32\asycfilt.dll
2014-07-11 12:54 - 2010-02-12 06:45 - 00100864 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\6to4svc.dll
2014-07-11 12:54 - 2010-02-12 06:45 - 00100864 _____ (Microsoft Corporation) C:\WINDOWS\system32\6to4svc.dll
2014-07-11 12:54 - 2010-01-13 16:08 - 00086016 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\cabview.dll
2014-07-11 12:54 - 2010-01-13 16:08 - 00086016 _____ (Microsoft Corporation) C:\WINDOWS\system32\cabview.dll
2014-07-11 12:54 - 2009-11-27 18:37 - 00085504 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\avifil32.dll
2014-07-11 12:54 - 2009-11-27 18:37 - 00085504 _____ (Microsoft Corporation) C:\WINDOWS\system32\avifil32.dll
2014-07-11 12:54 - 2009-10-15 19:20 - 00082432 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontsub.dll
2014-07-11 12:54 - 2009-10-15 19:20 - 00082432 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fontsub.dll
2014-07-11 12:54 - 2008-10-23 14:59 - 00283648 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32.dll
2014-07-11 12:54 - 2008-10-23 14:59 - 00283648 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\gdi32.dll
2014-07-11 12:54 - 2008-07-07 22:30 - 00253952 _____ (Microsoft Corporation) C:\WINDOWS\system32\es.dll
2014-07-11 12:54 - 2008-07-07 22:30 - 00253952 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\es.dll
2014-07-11 12:54 - 2008-06-20 19:39 - 00148992 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsapi.dll
2014-07-11 12:54 - 2008-06-20 19:39 - 00148992 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\dnsapi.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 02067968 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\cdosys.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 02067968 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdosys.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 01502208 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\diskcopy.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 01502208 _____ (Microsoft Corporation) C:\WINDOWS\system32\diskcopy.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 01298432 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxdiag.exe
2014-07-11 12:54 - 2006-06-01 21:06 - 01298432 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\dxdiag.exe
2014-07-11 12:54 - 2006-06-01 21:06 - 01294336 _____ (Microsoft Corporation) C:\WINDOWS\system32\dsound3d.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 01294336 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\dsound3d.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 01267200 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\comsvcs.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 01267200 _____ (Microsoft Corporation) C:\WINDOWS\system32\comsvcs.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 01227264 _____ (Microsoft Corporation) C:\WINDOWS\system32\dx8vb.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 01227264 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\dx8vb.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 01179648 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\d3d8.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 01179648 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d8.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 01094144 _____ (Microsoft Corporation) C:\WINDOWS\system32\esent.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 01094144 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\esent.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 01035264 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\explorer.exe
2014-07-11 12:54 - 2006-06-01 21:06 - 01035264 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2014-07-11 12:54 - 2006-06-01 21:06 - 00846848 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\comres.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00846848 _____ (Microsoft Corporation) C:\WINDOWS\system32\comres.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00825344 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\d3dim700.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00825344 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dim700.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00640000 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\dbghelp.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00640000 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbghelp.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00625152 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\catsrvut.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00625152 _____ (Microsoft Corporation) C:\WINDOWS\system32\catsrvut.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00619008 _____ (Microsoft Corporation) C:\WINDOWS\system32\dx7vb.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00619008 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\dx7vb.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00617984 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\autofmt.exe
2014-07-11 12:54 - 2006-06-01 21:06 - 00617984 _____ (Microsoft Corporation) C:\WINDOWS\system32\autofmt.exe
2014-07-11 12:54 - 2006-06-01 21:06 - 00614912 _____ (Microsoft Corporation) C:\WINDOWS\system32\h323msp.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00614912 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\h323msp.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00602624 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\crypt32.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00602624 _____ (Microsoft Corporation) C:\WINDOWS\system32\crypt32.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00562688 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msobmain.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00555008 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\appwiz.cpl
2014-07-11 12:54 - 2006-06-01 21:06 - 00555008 _____ (Microsoft Corporation) C:\WINDOWS\system32\appwiz.cpl
2014-07-11 12:54 - 2006-06-01 21:06 - 00546304 _____ (Microsoft Corporation) C:\WINDOWS\system32\hhctrl.ocx
2014-07-11 12:54 - 2006-06-01 21:06 - 00546304 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\hhctrl.ocx
2014-07-11 12:54 - 2006-06-01 21:06 - 00540160 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\comuid.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00540160 _____ (Microsoft Corporation) C:\WINDOWS\system32\comuid.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00530944 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\cryptui.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00530944 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptui.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00498688 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\clbcatq.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00498688 _____ (Microsoft Corporation) C:\WINDOWS\system32\clbcatq.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00498205 _____ () C:\WINDOWS\system32\dxmasf.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00498205 _____ () C:\WINDOWS\system32\dllcache\dxmasf.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00466432 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\certmgr.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00466432 _____ (Microsoft Corporation) C:\WINDOWS\system32\certmgr.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00460728 _____ () C:\WINDOWS\system32\dllcache\micross.ttf
2014-07-11 12:54 - 2006-06-01 21:06 - 00398848 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\dhcpmon.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00398848 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpmon.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00386560 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontext.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00386560 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fontext.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00383140 _____ () C:\WINDOWS\system32\dllcache\tahoma.ttf
2014-07-11 12:54 - 2006-06-01 21:06 - 00380957 _____ (Microsoft Corporation) C:\WINDOWS\system32\expsrv.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00380957 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\expsrv.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00375296 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnet.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00375296 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\dpnet.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00367616 _____ (Microsoft Corporation) C:\WINDOWS\system32\dsound.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00367616 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\dsound.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00356352 _____ (Hilgraeve, Inc.) C:\WINDOWS\system32\hypertrm.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00355436 _____ () C:\WINDOWS\system32\dllcache\tahomabd.ttf
2014-07-11 12:54 - 2006-06-01 21:06 - 00353792 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\cmdial32.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00353792 _____ (Microsoft Corporation) C:\WINDOWS\system32\cmdial32.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00348672 _____ (Microsoft Corporation) C:\WINDOWS\system32\hnetcfg.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00348672 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\hnetcfg.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00345600 _____ (Microsoft Corporation) C:\WINDOWS\system32\filemgmt.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00345600 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\filemgmt.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00345600 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\confmsp.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00345600 _____ (Microsoft Corporation) C:\WINDOWS\system32\confmsp.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00338432 _____ (Microsoft Corporation) C:\WINDOWS\system32\hnetwiz.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00338432 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\hnetwiz.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00334848 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\cscui.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00334848 _____ (Microsoft Corporation) C:\WINDOWS\system32\cscui.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00323584 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00323584 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\iedkcs32.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00304128 _____ (Microsoft Corporation) C:\WINDOWS\system32\duser.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00304128 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\duser.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00288768 _____ (Microsoft Corporation) C:\WINDOWS\winhlp32.exe
2014-07-11 12:54 - 2006-06-01 21:06 - 00288768 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\winhlp32.exe
2014-07-11 12:54 - 2006-06-01 21:06 - 00288256 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\devmgr.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00288256 _____ (Microsoft Corporation) C:\WINDOWS\system32\devmgr.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00273920 _____ (Microsoft Corp.) C:\WINDOWS\system32\dmdlgs.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00273920 _____ (Microsoft Corp.) C:\WINDOWS\system32\dllcache\dmdlgs.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00266240 _____ (Microsoft Corporation) C:\WINDOWS\system32\h323.tsp
2014-07-11 12:54 - 2006-06-01 21:06 - 00266240 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\h323.tsp
2014-07-11 12:54 - 2006-06-01 21:06 - 00266240 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ddraw.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00266240 _____ (Microsoft Corporation) C:\WINDOWS\system32\ddraw.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00263680 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\adsnt.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00263680 _____ (Microsoft Corporation) C:\WINDOWS\system32\adsnt.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00254976 _____ (Microsoft Corporation) C:\WINDOWS\system32\icm32.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00254976 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\icm32.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00253440 _____ () C:\WINDOWS\system32\dllcache\compatui.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00253440 _____ () C:\WINDOWS\system32\compatui.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00247296 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\migwiz.exe
2014-07-11 12:54 - 2006-06-01 21:06 - 00240128 _____ (Microsoft Corporation) C:\WINDOWS\system32\dsquery.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00240128 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\dsquery.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00230912 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\compstui.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00230912 _____ (Microsoft Corporation) C:\WINDOWS\system32\compstui.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00229888 _____ (Microsoft Corporation) C:\WINDOWS\system32\dplayx.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00229888 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\dplayx.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00225792 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\catsrv.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00225792 _____ (Microsoft Corporation) C:\WINDOWS\system32\catsrv.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00225280 _____ (Microsoft Corp., Veritas Software) C:\WINDOWS\system32\dmadmin.exe
2014-07-11 12:54 - 2006-06-01 21:06 - 00225280 _____ (Microsoft Corp., Veritas Software) C:\WINDOWS\system32\dllcache\dmadmin.exe
2014-07-11 12:54 - 2006-06-01 21:06 - 00220672 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieaksie.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00220672 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ieaksie.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00217088 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\sqlxmlx.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00214016 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpvoice.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00214016 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\dpvoice.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00204288 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\script.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00201216 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\migism.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00200704 _____ (Microsoft Corp.) C:\WINDOWS\system32\dmdskmgr.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00200704 _____ (Microsoft Corp.) C:\WINDOWS\system32\dllcache\dmdskmgr.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00198144 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\certcli.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00198144 _____ (Microsoft Corporation) C:\WINDOWS\system32\certcli.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00195584 _____ (Microsoft Corporation) C:\WINDOWS\system32\eudcedit.exe
2014-07-11 12:54 - 2006-06-01 21:06 - 00195584 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\eudcedit.exe
2014-07-11 12:54 - 2006-06-01 21:06 - 00194560 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\activeds.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00194560 _____ (Microsoft Corporation) C:\WINDOWS\system32\activeds.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00189440 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\cmprops.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00189440 _____ (Microsoft Corporation) C:\WINDOWS\system32\cmprops.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00188416 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\accwiz.exe
2014-07-11 12:54 - 2006-06-01 21:06 - 00188416 _____ (Microsoft Corporation) C:\WINDOWS\system32\accwiz.exe
2014-07-11 12:54 - 2006-06-01 21:06 - 00186880 _____ (Microsoft Corporation) C:\WINDOWS\system32\els.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00186880 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\els.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00186368 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\dinput8.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00186368 _____ (Microsoft Corporation) C:\WINDOWS\system32\dinput8.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00181760 _____ (Microsoft Corporation) C:\WINDOWS\system32\dsdmo.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00181760 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\dsdmo.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00181248 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmime.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00181248 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\dmime.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00180224 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwwin.exe
2014-07-11 12:54 - 2006-06-01 21:06 - 00180224 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\dwwin.exe
2014-07-11 12:54 - 2006-06-01 21:06 - 00175616 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\adsldp.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00175616 _____ (Microsoft Corporation) C:\WINDOWS\system32\adsldp.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00169984 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\diskpart.exe

Jona333 · 16.07.2014, 10:10

Code:

ATTFilter

2014-07-11 12:54 - 2006-06-01 21:06 - 00169984 _____ (Microsoft Corporation) C:\WINDOWS\system32\diskpart.exe
2014-07-11 12:54 - 2006-06-01 21:06 - 00169472 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\sysmod.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00165376 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\credui.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00165376 _____ (Microsoft Corporation) C:\WINDOWS\system32\credui.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00163328 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\dinput.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00163328 _____ (Microsoft Corporation) C:\WINDOWS\system32\dinput.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00157184 _____ (Microsoft Corporation) C:\WINDOWS\system32\hdwwiz.cpl
2014-07-11 12:54 - 2006-06-01 21:06 - 00157184 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\hdwwiz.cpl
2014-07-11 12:54 - 2006-06-01 21:06 - 00153600 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\regedit.exe
2014-07-11 12:54 - 2006-06-01 21:06 - 00153600 _____ (Microsoft Corporation) C:\WINDOWS\regedit.exe
2014-07-11 12:54 - 2006-06-01 21:06 - 00153088 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\daxctle.ocx
2014-07-11 12:54 - 2006-06-01 21:06 - 00153088 _____ (Microsoft Corporation) C:\WINDOWS\system32\daxctle.ocx
2014-07-11 12:54 - 2006-06-01 21:06 - 00152064 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\datime.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00152064 _____ (Microsoft Corporation) C:\WINDOWS\system32\datime.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00150016 _____ (Microsoft Corporation) C:\WINDOWS\system32\imapi.exe
2014-07-11 12:54 - 2006-06-01 21:06 - 00150016 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\imapi.exe
2014-07-11 12:54 - 2006-06-01 21:06 - 00149504 _____ (Microsoft Corporation) C:\WINDOWS\system32\dskquoui.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00149504 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\dskquoui.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00147456 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\comsnap.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00147456 _____ (Microsoft Corporation) C:\WINDOWS\system32\comsnap.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00146432 _____ (Microsoft Corporation) C:\WINDOWS\system32\hotplug.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00146432 _____ (Microsoft Corporation) C:\WINDOWS\system32\dsprop.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00146432 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\hotplug.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00146432 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\dsprop.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00146432 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\capesnpn.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00146432 _____ (Microsoft Corporation) C:\WINDOWS\system32\capesnpn.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00143360 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\adsldpc.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00143360 _____ (Microsoft Corporation) C:\WINDOWS\system32\adsldpc.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00139264 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieakeng.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00139264 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ieakeng.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00137216 _____ (Microsoft Corporation) C:\WINDOWS\system32\dssenh.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00137216 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\dssenh.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00135680 _____ (Microsoft Corporation) C:\WINDOWS\system32\ifmon.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00135680 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ifmon.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00126976 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\apphelp.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00126976 _____ (Microsoft Corporation) C:\WINDOWS\system32\apphelp.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00125440 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\guitrn.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00123904 _____ (Microsoft Corp. and Executive Software International, Inc.) C:\WINDOWS\system32\dllcache\dfrgui.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00123904 _____ (Microsoft Corp. and Executive Software International, Inc.) C:\WINDOWS\system32\dfrgui.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00122880 _____ (Microsoft Corporation) C:\WINDOWS\system32\glu32.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00122880 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\glu32.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00122368 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msobcomm.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00121856 _____ (Microsoft Corporation) C:\WINDOWS\system32\exts.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00121856 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\exts.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00121344 _____ (Microsoft Corporation) C:\WINDOWS\system32\idq.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00121344 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\idq.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00120320 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\aclui.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00120320 _____ (Microsoft Corporation) C:\WINDOWS\system32\aclui.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00119808 _____ (Microsoft Corporation) C:\WINDOWS\system32\iasrad.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00119808 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\iasrad.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00116736 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpvvox.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00116736 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\dpvvox.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00116224 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\asctrls.ocx
2014-07-11 12:54 - 2006-06-01 21:06 - 00116224 _____ (Microsoft Corporation) C:\WINDOWS\system32\asctrls.ocx
2014-07-11 12:54 - 2006-06-01 21:06 - 00114688 _____ (Microsoft Corporation) C:\WINDOWS\system32\iexpress.exe
2014-07-11 12:54 - 2006-06-01 21:06 - 00114688 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\iexpress.exe
2014-07-11 12:54 - 2006-06-01 21:06 - 00113664 _____ (Microsoft Corporation) C:\WINDOWS\system32\dsuiext.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00113664 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\dsuiext.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00113152 _____ (Microsoft) C:\WINDOWS\system32\dllcache\dgnet.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00113152 _____ (Microsoft) C:\WINDOWS\system32\dgnet.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00110592 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\dbnetlib.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00110592 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbnetlib.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00110080 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\clbcatex.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00110080 _____ (Microsoft Corporation) C:\WINDOWS\system32\clbcatex.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00109568 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\cic.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00109568 _____ (Microsoft Corporation) C:\WINDOWS\system32\cic.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00105984 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmstyle.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00105984 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\dmstyle.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00104960 _____ (Microsoft Corporation und Executive Software International, Inc.) C:\WINDOWS\system32\dllcache\dfrgntfs.exe
2014-07-11 12:54 - 2006-06-01 21:06 - 00104960 _____ (Microsoft Corporation und Executive Software International, Inc.) C:\WINDOWS\system32\dfrgntfs.exe
2014-07-11 12:54 - 2006-06-01 21:06 - 00104448 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmusic.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00104448 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\dmusic.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00104448 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\clipbrd.exe
2014-07-11 12:54 - 2006-06-01 21:06 - 00104448 _____ (Microsoft Corporation) C:\WINDOWS\system32\clipbrd.exe
2014-07-11 12:54 - 2006-06-01 21:06 - 00103936 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\migload.exe
2014-07-11 12:54 - 2006-06-01 21:06 - 00103424 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmsynth.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00103424 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\dmsynth.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00102912 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\cscdll.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00102912 _____ (Microsoft Corporation) C:\WINDOWS\system32\cscdll.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00102400 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\advpack.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00102400 _____ (Microsoft Corporation) C:\WINDOWS\system32\advpack.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00101888 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\actxprxy.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00101888 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00098304 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\cscript.exe
2014-07-11 12:54 - 2006-06-01 21:06 - 00098304 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ahui.exe
2014-07-11 12:54 - 2006-06-01 21:06 - 00098304 _____ (Microsoft Corporation) C:\WINDOWS\system32\cscript.exe
2014-07-11 12:54 - 2006-06-01 21:06 - 00098304 _____ (Microsoft Corporation) C:\WINDOWS\system32\ahui.exe
2014-07-11 12:54 - 2006-06-01 21:06 - 00097792 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\comrepl.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00097792 _____ (Microsoft Corporation) C:\WINDOWS\system32\comrepl.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00093184 _____ (Microsoft Corporation) C:\WINDOWS\system32\dskquota.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00093184 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\dskquota.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00088576 _____ (Microsoft Corporation) C:\WINDOWS\system32\fldrclnr.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00088576 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fldrclnr.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00085504 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\diantz.exe
2014-07-11 12:54 - 2006-06-01 21:06 - 00085504 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\catsrvps.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00085504 _____ (Microsoft Corporation) C:\WINDOWS\system32\diantz.exe
2014-07-11 12:54 - 2006-06-01 21:06 - 00085504 _____ (Microsoft Corporation) C:\WINDOWS\system32\catsrvps.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00083456 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpvsetup.exe
2014-07-11 12:54 - 2006-06-01 21:06 - 00083456 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\dpvsetup.exe
2014-07-11 12:54 - 2006-06-01 21:06 - 00082432 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmscript.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00082432 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\dmscript.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00082432 _____ (Microsoft Corporation und Executive Software International, Inc.) C:\WINDOWS\system32\dllcache\dfrgfat.exe
2014-07-11 12:54 - 2006-06-01 21:06 - 00082432 _____ (Microsoft Corporation und Executive Software International, Inc.) C:\WINDOWS\system32\dfrgfat.exe
2014-07-11 12:54 - 2006-06-01 21:06 - 00081920 _____ (Microsoft Corporation) C:\WINDOWS\system32\ils.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00081920 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ils.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00080896 _____ (Microsoft Corporation) C:\WINDOWS\system32\faultrep.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00080896 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\faultrep.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00080384 _____ (Radius Inc.) C:\WINDOWS\system32\iccvid.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00078336 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\browsewm.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00078336 _____ (Microsoft Corporation) C:\WINDOWS\system32\browsewm.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00077824 _____ (Microsoft Corporation) C:\WINDOWS\system32\cliconfg.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00077312 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\browser.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00077312 _____ (Microsoft Corporation) C:\WINDOWS\system32\browser.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00076800 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\cryptdlg.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00076800 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptdlg.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00074240 _____ (Microsoft Corporation) C:\WINDOWS\system32\dsdmoprp.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00074240 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\dsdmoprp.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00073728 _____ (Microsoft Corporation) C:\WINDOWS\system32\icwdial.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00073728 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\icwdial.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00070656 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\access.cpl
2014-07-11 12:54 - 2006-06-01 21:06 - 00070656 _____ (Microsoft Corporation) C:\WINDOWS\system32\access.cpl
2014-07-11 12:54 - 2006-06-01 21:06 - 00070656 _____ () C:\WINDOWS\system32\dllcache\amstream.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00070656 _____ () C:\WINDOWS\system32\amstream.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00069120 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ciodm.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00069120 _____ (Microsoft Corporation) C:\WINDOWS\system32\ciodm.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00068608 _____ (Microsoft Corporation) C:\WINDOWS\system32\hlink.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00068608 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\hlink.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00068608 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\digest.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00068608 _____ (Microsoft Corporation) C:\WINDOWS\system32\digest.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\browselc.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\adsmsext.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\browselc.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\adsmsext.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00066048 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\cleanmgr.exe
2014-07-11 12:54 - 2006-06-01 21:06 - 00066048 _____ (Microsoft Corporation) C:\WINDOWS\system32\cleanmgr.exe
2014-07-11 12:54 - 2006-06-01 21:06 - 00065536 _____ (Microsoft Corporation) C:\WINDOWS\system32\icwphbk.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00065536 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\icwphbk.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00065536 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\cmstp.exe
2014-07-11 12:54 - 2006-06-01 21:06 - 00065536 _____ (Microsoft Corporation) C:\WINDOWS\system32\cmstp.exe
2014-07-11 12:54 - 2006-06-01 21:06 - 00064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\iesetup.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\iesetup.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00063488 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\cryptnet.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00063488 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptnet.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00061440 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcompos.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00061440 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\dmcompos.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00061440 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\admparse.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00061440 _____ (Microsoft Corporation) C:\WINDOWS\system32\admparse.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00060928 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnhupnp.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00060928 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\dpnhupnp.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00060416 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\cryptsvc.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00060416 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\colbact.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00060416 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptsvc.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00060416 _____ (Microsoft Corporation) C:\WINDOWS\system32\colbact.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00059904 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\devenum.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00059904 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\cabinet.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00059904 _____ (Microsoft Corporation) C:\WINDOWS\system32\devenum.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00059904 _____ (Microsoft Corporation) C:\WINDOWS\system32\cabinet.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00059392 _____ (Microsoft Corp.) C:\WINDOWS\system32\dmutil.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00057856 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpwsockx.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00057856 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\dpwsockx.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00057856 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\clusapi.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00057856 _____ (Microsoft Corporation) C:\WINDOWS\system32\clusapi.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00056832 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\authz.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00056832 _____ (Microsoft Corporation) C:\WINDOWS\system32\authz.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00055808 _____ (Microsoft Corporation) C:\WINDOWS\system32\eventlog.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00055808 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\eventlog.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00054784 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\dataclen.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00054784 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\cryptext.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00054784 _____ (Microsoft Corporation) C:\WINDOWS\system32\dataclen.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00054784 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptext.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00052736 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\basesrv.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00052736 _____ (Microsoft Corporation) C:\WINDOWS\system32\basesrv.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00052224 _____ (Microsoft Corporation) C:\WINDOWS\system32\dssec.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00052224 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\dssec.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00051712 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\oobebaln.exe
2014-07-11 12:54 - 2006-06-01 21:06 - 00051712 _____ (Microsoft Corporation) C:\WINDOWS\system32\cnbjmon.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00050688 _____ (Twain-Arbeitsgruppe) C:\WINDOWS\twain_32.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00050688 _____ (Twain-Arbeitsgruppe) C:\WINDOWS\system32\dllcache\twain_32.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00050688 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\camocx.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00050688 _____ (Microsoft Corporation) C:\WINDOWS\system32\camocx.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00049152 _____ (Microsoft Corporation) C:\WINDOWS\system32\iernonce.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00049152 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\iernonce.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00048640 _____ (Microsoft Corporation) C:\WINDOWS\system32\docprop2.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00048640 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\docprop2.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00047104 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\cmdl32.exe
2014-07-11 12:54 - 2006-06-01 21:06 - 00047104 _____ (Microsoft Corporation) C:\WINDOWS\system32\cmdl32.exe
2014-07-11 12:54 - 2006-06-01 21:06 - 00045568 _____ (Microsoft Corporation) C:\WINDOWS\system32\extrac32.exe
2014-07-11 12:54 - 2006-06-01 21:06 - 00045568 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsrslvr.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00045568 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\extrac32.exe
2014-07-11 12:54 - 2006-06-01 21:06 - 00045568 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\dnsrslvr.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00045083 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\dispex.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00045083 _____ (Microsoft Corporation) C:\WINDOWS\system32\dispex.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00044544 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\alg.exe
2014-07-11 12:54 - 2006-06-01 21:06 - 00044544 _____ (Microsoft Corporation) C:\WINDOWS\system32\alg.exe
2014-07-11 12:54 - 2006-06-01 21:06 - 00043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\htui.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\htui.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00042496 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\audiosrv.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00042496 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00041472 _____ (Microsoft Corporation) C:\WINDOWS\system32\hhsetup.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00041472 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\hhsetup.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00040960 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\cmutil.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00040960 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\cmmon32.exe
2014-07-11 12:54 - 2006-06-01 21:06 - 00040960 _____ (Microsoft Corporation) C:\WINDOWS\system32\cmutil.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00040960 _____ (Microsoft Corporation) C:\WINDOWS\system32\cmmon32.exe
2014-07-11 12:54 - 2006-06-01 21:06 - 00039424 _____ (Microsoft Corporation) C:\WINDOWS\system32\grpconv.exe
2014-07-11 12:54 - 2006-06-01 21:06 - 00039424 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\grpconv.exe
2014-07-11 12:54 - 2006-06-01 21:06 - 00039424 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\cfgbkend.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00039424 _____ (Microsoft Corporation) C:\WINDOWS\system32\cfgbkend.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00038912 _____ (Microsoft Corp. und Executive Software International, Inc.) C:\WINDOWS\system32\dllcache\dfrgsnap.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00038912 _____ (Microsoft Corp. und Executive Software International, Inc.) C:\WINDOWS\system32\dfrgsnap.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00036921 _____ (Microsoft Corporation) C:\WINDOWS\system32\imeshare.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00036921 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\imeshare.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00035840 _____ (Microsoft Corporation) C:\WINDOWS\system32\imgutil.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00035840 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmloader.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00035840 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\imgutil.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00035840 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\dmloader.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00035328 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnhpast.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00035328 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\dpnhpast.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00035328 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\corpol.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00035328 _____ (Microsoft Corporation) C:\WINDOWS\system32\corpol.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2014-07-11 12:54 - 2006-06-01 21:06 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ie4uinit.exe
2014-07-11 12:54 - 2006-06-01 21:06 - 00033280 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\cryptdll.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00033280 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\clipsrv.exe
2014-07-11 12:54 - 2006-06-01 21:06 - 00033280 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptdll.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00033280 _____ (Microsoft Corporation) C:\WINDOWS\system32\clipsrv.exe
2014-07-11 12:54 - 2006-06-01 21:06 - 00031744 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ddeshare.exe
2014-07-11 12:54 - 2006-06-01 21:06 - 00031744 _____ (Microsoft Corporation) C:\WINDOWS\system32\ddeshare.exe
2014-07-11 12:54 - 2006-06-01 21:06 - 00030720 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msobshel.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\dplaysvr.exe
2014-07-11 12:54 - 2006-06-01 21:06 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\dplaysvr.exe
2014-07-11 12:54 - 2006-06-01 21:06 - 00030208 _____ (Adobe Systems) C:\WINDOWS\system32\dllcache\atmlib.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00030208 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00029696 _____ (Microsoft Corporation) C:\WINDOWS\system32\hidphone.tsp
2014-07-11 12:54 - 2006-06-01 21:06 - 00029696 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\hidphone.tsp
2014-07-11 12:54 - 2006-06-01 21:06 - 00028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmband.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\dmband.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\dfsshlex.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\batmeter.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\dfsshlex.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbnmpntw.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\batmeter.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00028160 _____ (Microsoft Corporation) C:\WINDOWS\system32\findstr.exe
2014-07-11 12:54 - 2006-06-01 21:06 - 00028160 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msoobe.exe
2014-07-11 12:54 - 2006-06-01 21:06 - 00028160 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\findstr.exe
2014-07-11 12:54 - 2006-06-01 21:06 - 00027648 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\conime.exe
2014-07-11 12:54 - 2006-06-01 21:06 - 00027648 _____ (Microsoft Corporation) C:\WINDOWS\system32\conime.exe
2014-07-11 12:54 - 2006-06-01 21:06 - 00027136 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ddrawex.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00027136 _____ (Microsoft Corporation) C:\WINDOWS\system32\ddrawex.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00025600 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\comaddin.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00025600 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\at.exe
2014-07-11 12:54 - 2006-06-01 21:06 - 00025600 _____ (Microsoft Corporation) C:\WINDOWS\system32\comaddin.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00025600 _____ (Microsoft Corporation) C:\WINDOWS\system32\at.exe
2014-07-11 12:54 - 2006-06-01 21:06 - 00025088 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\davclnt.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00025088 _____ (Microsoft Corporation) C:\WINDOWS\system32\davclnt.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00025088 _____ (Microsoft Corp. and Executive Software International, Inc.) C:\WINDOWS\system32\dllcache\defrag.exe
2014-07-11 12:54 - 2006-06-01 21:06 - 00025088 _____ (Microsoft Corp. and Executive Software International, Inc.) C:\WINDOWS\system32\defrag.exe
2014-07-11 12:54 - 2006-06-01 21:06 - 00024576 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbmsrpcn.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00024064 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpmodemx.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00024064 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\dpmodemx.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00024064 _____ (Microsoft Corp.) C:\WINDOWS\system32\dmserver.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00024064 _____ (Microsoft Corp.) C:\WINDOWS\system32\dllcache\dmserver.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00023040 _____ (Microsoft Corporation) C:\WINDOWS\system32\ersvc.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00023040 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ersvc.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00021504 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontview.exe
2014-07-11 12:54 - 2006-06-01 21:06 - 00021504 _____ (Microsoft Corporation) C:\WINDOWS\system32\feclient.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00021504 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpvacm.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00021504 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fontview.exe
2014-07-11 12:54 - 2006-06-01 21:06 - 00021504 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\feclient.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00021504 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\dpvacm.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00020992 _____ (Microsoft Corporation) C:\WINDOWS\system32\hid.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00020480 _____ (Microsoft Corporation) C:\WINDOWS\system32\cliconfg.exe
2014-07-11 12:54 - 2006-06-01 21:06 - 00019968 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\log.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00019456 _____ (Microsoft Corporation) C:\WINDOWS\system32\dswave.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00019456 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\dswave.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00018944 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msobweb.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00018432 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnsvr.exe
2014-07-11 12:54 - 2006-06-01 21:06 - 00018432 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\dpnsvr.exe
2014-07-11 12:54 - 2006-06-01 21:06 - 00017920 _____ (Microsoft Corporation) C:\WINDOWS\system32\dvdupgrd.exe
2014-07-11 12:54 - 2006-06-01 21:06 - 00017920 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\dvdupgrd.exe
2014-07-11 12:54 - 2006-06-01 21:06 - 00017408 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\bidispl.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00017408 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\alrsvc.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00017408 _____ (Microsoft Corporation) C:\WINDOWS\system32\bidispl.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00017408 _____ (Microsoft Corporation) C:\WINDOWS\system32\alrsvc.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00016896 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\cfgmgr32.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00016896 _____ (Microsoft Corporation) C:\WINDOWS\system32\cfgmgr32.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00016384 _____ (Microsoft Corporation) C:\WINDOWS\system32\imaadp32.acm
2014-07-11 12:54 - 2006-06-01 21:06 - 00016384 _____ (Microsoft Corporation) C:\WINDOWS\system32\help.exe
2014-07-11 12:54 - 2006-06-01 21:06 - 00016384 _____ (Microsoft Corporation) C:\WINDOWS\system32\ds32gt.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00016384 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msobdl.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00016384 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\help.exe
2014-07-11 12:54 - 2006-06-01 21:06 - 00016384 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ds32gt.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00015872 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\cmcfg32.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00015872 _____ (Microsoft Corporation) C:\WINDOWS\system32\cmcfg32.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00015872 _____ (Microsoft Corp.) C:\WINDOWS\system32\dmremote.exe
2014-07-11 12:54 - 2006-06-01 21:06 - 00015872 _____ (Microsoft Corp.) C:\WINDOWS\system32\dllcache\dmremote.exe
2014-07-11 12:54 - 2006-06-01 21:06 - 00015360 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ctfmon.exe
2014-07-11 12:54 - 2006-06-01 21:06 - 00015360 _____ (Microsoft Corporation) C:\WINDOWS\system32\ctfmon.exe
2014-07-11 12:54 - 2006-06-01 21:06 - 00014336 _____ (Microsoft Corporation) C:\WINDOWS\system32\drprov.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00014336 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\drprov.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00011264 _____ (Microsoft Corporation) C:\WINDOWS\system32\icaapi.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00011264 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\icaapi.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00011264 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\autolfn.exe
2014-07-11 12:54 - 2006-06-01 21:06 - 00011264 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\attrib.exe
2014-07-11 12:54 - 2006-06-01 21:06 - 00011264 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\atmadm.exe
2014-07-11 12:54 - 2006-06-01 21:06 - 00011264 _____ (Microsoft Corporation) C:\WINDOWS\system32\autolfn.exe
2014-07-11 12:54 - 2006-06-01 21:06 - 00011264 _____ (Microsoft Corporation) C:\WINDOWS\system32\attrib.exe
2014-07-11 12:54 - 2006-06-01 21:06 - 00011264 _____ (Microsoft Corporation) C:\WINDOWS\system32\atmadm.exe
2014-07-11 12:54 - 2006-06-01 21:06 - 00010752 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpkrsrc.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00010752 _____ (Microsoft Corporation) C:\WINDOWS\system32\dumprep.exe
2014-07-11 12:54 - 2006-06-01 21:06 - 00010752 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\hh.exe
2014-07-11 12:54 - 2006-06-01 21:06 - 00010752 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\gpkrsrc.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00010752 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\dumprep.exe
2014-07-11 12:54 - 2006-06-01 21:06 - 00010752 _____ (Microsoft Corporation) C:\WINDOWS\hh.exe
2014-07-11 12:54 - 2006-06-01 21:06 - 00009344 _____ (Microsoft Corporation) C:\WINDOWS\system32\framebuf.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00009344 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\framebuf.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00008704 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\dciman32.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00008704 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\batt.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00008704 _____ (Microsoft Corporation) C:\WINDOWS\system32\dciman32.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00008704 _____ (Microsoft Corporation) C:\WINDOWS\system32\batt.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00008192 _____ (Microsoft Corporation) C:\WINDOWS\system32\igmpagnt.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00008192 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\igmpagnt.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00008192 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\d3d8thk.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00008192 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d8thk.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00007168 _____ (Microsoft Corporation) C:\WINDOWS\system32\forcedos.exe
2014-07-11 12:54 - 2006-06-01 21:06 - 00007168 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\forcedos.exe
2014-07-11 12:54 - 2006-06-01 21:06 - 00006144 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\csrss.exe
2014-07-11 12:54 - 2006-06-01 21:06 - 00006144 _____ (Microsoft Corporation) C:\WINDOWS\system32\csrss.exe
2014-07-11 12:54 - 2006-06-01 21:06 - 00005632 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\cisvc.exe
2014-07-11 12:54 - 2006-06-01 21:06 - 00005632 _____ (Microsoft Corporation) C:\WINDOWS\system32\cisvc.exe
2014-07-11 12:54 - 2006-06-01 21:06 - 00005120 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllhost.exe
2014-07-11 12:54 - 2006-06-01 21:06 - 00005120 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\dllhost.exe
2014-07-11 12:54 - 2006-06-01 21:06 - 00005120 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\dcomcnfg.exe
2014-07-11 12:54 - 2006-06-01 21:06 - 00005120 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcomcnfg.exe
2014-07-11 12:54 - 2006-06-01 21:06 - 00004096 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\actmovie.exe
2014-07-11 12:54 - 2006-06-01 21:06 - 00004096 _____ (Microsoft Corporation) C:\WINDOWS\system32\actmovie.exe
2014-07-11 12:54 - 2006-06-01 21:06 - 00003584 _____ (Microsoft Corporation) C:\WINDOWS\system32\icmp.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00003584 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnlobby.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00003584 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnaddr.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00003584 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\icmp.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00003584 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\dpnlobby.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00003584 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\dpnaddr.dll
2014-07-11 12:54 - 2006-06-01 21:06 - 00001788 _____ () C:\WINDOWS\system32\dcache.bin
2014-07-11 12:53 - 2010-04-16 17:35 - 03086336 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2014-07-11 12:53 - 2010-04-16 17:35 - 03086336 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mshtml.dll
2014-07-11 12:53 - 2010-04-16 17:35 - 00532480 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstime.dll
2014-07-11 12:53 - 2010-04-16 17:35 - 00532480 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mstime.dll
2014-07-11 12:53 - 2010-04-16 17:35 - 00449024 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
2014-07-11 12:53 - 2010-04-16 17:35 - 00449024 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mshtmled.dll
2014-07-11 12:53 - 2010-04-16 17:35 - 00146432 _____ (Microsoft Corporation) C:\WINDOWS\system32\msrating.dll
2014-07-11 12:53 - 2010-04-16 17:35 - 00146432 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msrating.dll
2014-07-11 12:53 - 2010-04-16 17:35 - 00096768 _____ (Microsoft Corporation) C:\WINDOWS\system32\inseng.dll
2014-07-11 12:53 - 2010-04-16 17:35 - 00096768 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\inseng.dll
2014-07-11 12:53 - 2010-04-16 17:35 - 00039424 _____ (Microsoft Corporation) C:\WINDOWS\system32\pngfilt.dll
2014-07-11 12:53 - 2010-04-16 17:35 - 00039424 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\pngfilt.dll
2014-07-11 12:53 - 2010-04-16 17:35 - 00016384 _____ (Microsoft Corporation) C:\WINDOWS\system32\jsproxy.dll
2014-07-11 12:53 - 2010-04-16 17:35 - 00016384 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\jsproxy.dll
2014-07-11 12:53 - 2010-02-05 20:38 - 01296896 _____ (Microsoft Corporation) C:\WINDOWS\system32\quartz.dll
2014-07-11 12:53 - 2010-02-05 20:38 - 01296896 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\quartz.dll
2014-07-11 12:53 - 2010-01-29 17:06 - 00683520 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcomm.dll
2014-07-11 12:53 - 2010-01-29 17:06 - 00683520 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\inetcomm.dll
2014-07-11 12:53 - 2009-12-17 09:57 - 00346624 _____ (Microsoft Corporation) C:\WINDOWS\system32\mspaint.exe
2014-07-11 12:53 - 2009-12-17 09:57 - 00346624 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mspaint.exe
2014-07-11 12:53 - 2009-11-27 19:33 - 00017920 _____ (Microsoft Corporation) C:\WINDOWS\system32\msyuv.dll
2014-07-11 12:53 - 2009-11-27 19:33 - 00017920 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msyuv.dll
2014-07-11 12:53 - 2009-11-27 18:37 - 00048128 _____ (Microsoft Corporation) C:\WINDOWS\system32\iyuv_32.dll
2014-07-11 12:53 - 2009-11-27 18:37 - 00048128 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\iyuv_32.dll
2014-07-11 12:53 - 2009-11-27 18:37 - 00011264 _____ (Microsoft Corporation) C:\WINDOWS\system32\msrle32.dll
2014-07-11 12:53 - 2009-11-27 18:37 - 00011264 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msrle32.dll
2014-07-11 12:53 - 2009-10-13 12:51 - 00267776 _____ (Microsoft Corporation) C:\WINDOWS\system32\oakley.dll
2014-07-11 12:53 - 2009-10-13 12:51 - 00267776 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\oakley.dll
2014-07-11 12:53 - 2009-10-12 15:51 - 00069632 _____ (Microsoft Corporation) C:\WINDOWS\system32\raschap.dll
2014-07-11 12:53 - 2009-10-12 15:51 - 00069632 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\raschap.dll
2014-07-11 12:53 - 2009-09-04 22:45 - 00058880 _____ (Microsoft Corporation) C:\WINDOWS\system32\msasn1.dll
2014-07-11 12:53 - 2009-09-04 22:45 - 00058880 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msasn1.dll
2014-07-11 12:53 - 2009-08-21 08:50 - 00450560 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2014-07-11 12:53 - 2009-08-21 08:50 - 00450560 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\jscript.dll
2014-07-11 12:53 - 2009-08-05 11:05 - 00206336 _____ (Microsoft Corporation) C:\WINDOWS\system32\mswebdvd.dll
2014-07-11 12:53 - 2009-08-05 11:05 - 00206336 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mswebdvd.dll
2014-07-11 12:53 - 2009-07-17 18:25 - 01441792 _____ (Microsoft Corporation) C:\WINDOWS\system32\query.dll
2014-07-11 12:53 - 2009-07-17 18:25 - 01441792 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\query.dll
2014-07-11 12:53 - 2009-06-25 10:44 - 00298496 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2014-07-11 12:53 - 2009-06-25 10:44 - 00298496 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kerberos.dll
2014-07-11 12:53 - 2009-03-06 16:44 - 00286208 _____ (Microsoft Corporation) C:\WINDOWS\system32\pdh.dll
2014-07-11 12:53 - 2009-03-06 16:44 - 00286208 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\pdh.dll
2014-07-11 12:53 - 2008-10-15 18:57 - 00332800 _____ (Microsoft Corporation) C:\WINDOWS\system32\netapi32.dll
2014-07-11 12:53 - 2008-10-15 18:57 - 00332800 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\netapi32.dll
2014-07-11 12:53 - 2008-06-24 18:22 - 00074240 _____ (Microsoft Corporation) C:\WINDOWS\system32\mscms.dll
2014-07-11 12:53 - 2008-06-24 18:22 - 00074240 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mscms.dll
2014-07-11 12:53 - 2008-06-20 19:39 - 00247296 _____ (Microsoft Corporation) C:\WINDOWS\system32\mswsock.dll
2014-07-11 12:53 - 2008-06-20 19:39 - 00247296 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mswsock.dll
2014-07-11 12:53 - 2008-06-12 16:16 - 00956928 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdtctm.dll
2014-07-11 12:53 - 2008-06-12 16:16 - 00956928 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msdtctm.dll
2014-07-11 12:53 - 2008-06-12 16:16 - 00428032 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdtcprx.dll
2014-07-11 12:53 - 2008-06-12 16:16 - 00428032 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msdtcprx.dll
2014-07-11 12:53 - 2008-06-12 16:16 - 00161792 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdtcuiu.dll
2014-07-11 12:53 - 2008-06-12 16:16 - 00161792 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msdtcuiu.dll
2014-07-11 12:53 - 2008-06-12 16:16 - 00091648 _____ (Microsoft Corporation) C:\WINDOWS\system32\mtxoci.dll
2014-07-11 12:53 - 2008-06-12 16:16 - 00091648 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mtxoci.dll
2014-07-11 12:53 - 2008-06-12 16:16 - 00066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\mtxclu.dll
2014-07-11 12:53 - 2008-06-12 16:16 - 00066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mtxclu.dll
2014-07-11 12:53 - 2008-06-12 16:16 - 00058880 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdtclog.dll
2014-07-11 12:53 - 2008-06-12 16:16 - 00058880 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msdtclog.dll
2014-07-11 12:53 - 2006-10-04 15:33 - 00216576 _____ (Microsoft Corporation) C:\WINDOWS\system32\osk.exe
2014-07-11 12:53 - 2006-10-04 15:33 - 00216576 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\osk.exe
2014-07-11 12:53 - 2006-10-04 15:33 - 00073216 _____ (Microsoft Corporation) C:\WINDOWS\system32\magnify.exe
2014-07-11 12:53 - 2006-10-04 15:33 - 00073216 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\magnify.exe
2014-07-11 12:53 - 2006-10-04 15:32 - 00055296 _____ (Microsoft Corporation) C:\WINDOWS\system32\narrator.exe
2014-07-11 12:53 - 2006-10-04 15:32 - 00055296 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\narrator.exe
2014-07-11 12:53 - 2006-06-01 21:06 - 02890240 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 02890240 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msi.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 01726976 _____ (Microsoft Corporation) C:\WINDOWS\system32\netshell.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 01726976 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\netshell.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 01507356 _____ (Microsoft Corporation) C:\WINDOWS\system32\msjet40.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 01507356 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msjet40.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 01392671 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvbvm60.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 01351168 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2014-07-11 12:53 - 2006-06-01 21:06 - 01351168 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mshtml.tlb
2014-07-11 12:53 - 2006-06-01 21:06 - 01285120 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 01285120 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ole32.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 01197568 _____ (Microsoft Corporation) C:\WINDOWS\system32\mmcndmgr.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 01197568 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mmcndmgr.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 01028096 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfc42.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 01028096 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mfc42.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 01024000 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfc42u.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 01024000 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mfc42u.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 01002496 _____ (Microsoft Corporation) C:\WINDOWS\system32\msgina.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 01002496 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msgina.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00924432 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfc40u.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00924432 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mfc40u.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00884736 _____ (Microsoft Corporation) C:\WINDOWS\system32\msimsg.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00884736 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msimsg.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00883712 _____ (Microsoft Corporation) C:\WINDOWS\system32\netplwiz.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00883712 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\netplwiz.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00844314 _____ () C:\WINDOWS\system32\msdxm.ocx
2014-07-11 12:53 - 2006-06-01 21:06 - 00844314 _____ () C:\WINDOWS\system32\dllcache\msdxm.ocx
2014-07-11 12:53 - 2006-06-01 21:06 - 00831519 _____ (Microsoft Corporation) C:\WINDOWS\system32\mswdat10.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00831519 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mswdat10.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00815616 _____ (Microsoft Corporation) C:\WINDOWS\system32\mmc.exe
2014-07-11 12:53 - 2006-06-01 21:06 - 00815616 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mmc.exe
2014-07-11 12:53 - 2006-06-01 21:06 - 00733696 _____ () C:\WINDOWS\system32\qedwipes.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00733696 _____ () C:\WINDOWS\system32\dllcache\qedwipes.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00713728 _____ (Microsoft Corporation) C:\WINDOWS\system32\opengl32.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00713728 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\opengl32.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00701440 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml2.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00701440 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msxml2.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00633344 _____ (Microsoft Corporation) C:\WINDOWS\system32\netcfgx.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00633344 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\netcfgx.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00625152 _____ (Microsoft Corporation) C:\WINDOWS\system32\mmsys.cpl
2014-07-11 12:53 - 2006-06-01 21:06 - 00625152 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mmsys.cpl
2014-07-11 12:53 - 2006-06-01 21:06 - 00614429 _____ (Microsoft Corporation) C:\WINDOWS\system32\mswstr10.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00614429 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mswstr10.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00586240 _____ (Microsoft Corporation) C:\WINDOWS\system32\mlang.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00586240 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mlang.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00563200 _____ (Microsoft Corporation) C:\WINDOWS\system32\qedit.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00563200 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\qedit.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00552989 _____ (Microsoft Corporation) C:\WINDOWS\system32\msrepl40.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00552989 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msrepl40.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00515072 _____ (Microsoft Corporation) C:\WINDOWS\system32\logonui.exe
2014-07-11 12:53 - 2006-06-01 21:06 - 00515072 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\logonui.exe
2014-07-11 12:53 - 2006-06-01 21:06 - 00512029 _____ (Microsoft Corporation) C:\WINDOWS\system32\msexch40.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00512029 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msexch40.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00506368 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00506368 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msxml.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00497664 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntmsmgr.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00497664 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ntmsmgr.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00438272 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntmssvc.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00438272 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ntmssvc.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00425472 _____ (Microsoft Corporation) C:\WINDOWS\system32\licdll.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00425472 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\licdll.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00421919 _____ (Microsoft Corporation) C:\WINDOWS\system32\msrd2x40.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00421919 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msrd2x40.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00413696 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcp60.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00413696 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msvcp60.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00407040 _____ (Microsoft Corporation) C:\WINDOWS\system32\netlogon.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00407040 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\netlogon.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00399872 _____ (Microsoft Corporation) C:\WINDOWS\system32\lmrt.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00399872 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\lmrt.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00387584 _____ (Microsoft Corporation) C:\WINDOWS\system32\ipsmsnap.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00387584 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ipsmsnap.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00386048 _____ (Microsoft Corporation) C:\WINDOWS\system32\qdvd.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00386048 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\qdvd.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00361472 _____ (Microsoft Corporation) C:\WINDOWS\system32\ipsecsnp.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00361472 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ipsecsnp.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00359424 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2014-07-11 12:53 - 2006-06-01 21:06 - 00359424 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\inetcpl.cpl
2014-07-11 12:53 - 2006-06-01 21:06 - 00358976 _____ (Microsoft Corporation) C:\WINDOWS\system32\msjetoledb40.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00348189 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxbde40.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00348189 _____ (Microsoft Corporation) C:\WINDOWS\system32\mspbde40.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00348189 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msxbde40.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00348189 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mspbde40.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00345600 _____ (Microsoft Corporation) C:\WINDOWS\system32\ippromon.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00345600 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ippromon.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00343040 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcrt.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00343040 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msvcrt.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00334336 _____ (Microsoft Corporation) C:\WINDOWS\system32\ipnathlp.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00334336 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ipnathlp.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00333312 _____ (Microsoft Corporation) C:\WINDOWS\system32\netsetup.exe
2014-07-11 12:53 - 2006-06-01 21:06 - 00333312 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\netsetup.exe
2014-07-11 12:53 - 2006-06-01 21:06 - 00319517 _____ (Microsoft Corporation) C:\WINDOWS\system32\msexcl40.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00319517 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msexcl40.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00315423 _____ (Microsoft Corporation) C:\WINDOWS\system32\msrd3x40.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00315423 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msrd3x40.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00299008 _____ (Microsoft Corporation) C:\WINDOWS\system32\msh263.drv
2014-07-11 12:53 - 2006-06-01 21:06 - 00294400 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00294400 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msctf.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00290816 _____ (Microsoft Corporation) C:\WINDOWS\system32\msnsspc.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00290816 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msnsspc.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00288768 _____ (Microsoft Corporation) C:\WINDOWS\system32\objsel.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00288768 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\objsel.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00282624 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcfg.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00282624 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\inetcfg.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00280064 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstask.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00280064 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mstask.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00279040 _____ (Microsoft Corporation) C:\WINDOWS\system32\qdv.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00279040 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\qdv.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00278559 _____ (Microsoft Corporation) C:\WINDOWS\system32\odbcjt32.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00278559 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\odbcjt32.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00271360 _____ (Microsoft Corporation) C:\WINDOWS\system32\msihnd.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00271360 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msihnd.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00262144 _____ (Microsoft Corporation) C:\WINDOWS\system32\mpg4ds32.ax
2014-07-11 12:53 - 2006-06-01 21:06 - 00262144 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mpg4ds32.ax
2014-07-11 12:53 - 2006-06-01 21:06 - 00260096 _____ (Microsoft Corporation) C:\WINDOWS\system32\nusrmgr.cpl
2014-07-11 12:53 - 2006-06-01 21:06 - 00260096 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\nusrmgr.cpl
2014-07-11 12:53 - 2006-06-01 21:06 - 00258077 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstext40.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00258077 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mstext40.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00252928 _____ (Microsoft Corporation) C:\WINDOWS\system32\msoeacct.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00252928 _____ (Microsoft Corporation) C:\WINDOWS\system32\msieftp.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00252928 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msoeacct.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00252928 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msieftp.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00251392 _____ (Microsoft Corporation) C:\WINDOWS\system32\newdev.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00251392 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\newdev.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00249856 _____ (Microsoft Corporation) C:\WINDOWS\system32\odbc32.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00249856 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\odbc32.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00245760 _____ (Microsoft Corporation) C:\WINDOWS\system32\netui1.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00245760 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\netui1.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00241693 _____ (Microsoft Corporation) C:\WINDOWS\system32\msjtes40.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00241693 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msjtes40.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00226304 _____ (Microsoft Corporation) C:\WINDOWS\system32\localsec.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00226304 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\localsec.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00221184 _____ (Microsoft Corporation) C:\WINDOWS\system32\msadds32.ax
2014-07-11 12:53 - 2006-06-01 21:06 - 00221184 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msadds32.ax
2014-07-11 12:53 - 2006-06-01 21:06 - 00220672 _____ (Microsoft Corporation) C:\WINDOWS\system32\logon.scr
2014-07-11 12:53 - 2006-06-01 21:06 - 00220672 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\logon.scr
2014-07-11 12:53 - 2006-06-01 21:06 - 00216064 _____ (Microsoft Corporation) C:\WINDOWS\system32\moricons.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00216064 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\moricons.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00213023 _____ (Microsoft Corporation) C:\WINDOWS\system32\msltus40.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00213023 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msltus40.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00209408 _____ (Microsoft Corporation) C:\WINDOWS\system32\mobsync.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00209408 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mobsync.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00197632 _____ (Microsoft Corporation) C:\WINDOWS\system32\netman.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00197632 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\netman.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00196096 _____ (Microsoft Corporation) C:\WINDOWS\system32\msutb.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00196096 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msutb.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00192512 _____ (Microsoft Corporation) C:\WINDOWS\system32\qcap.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00192512 _____ (Microsoft Corporation) C:\WINDOWS\system32\msh261.drv
2014-07-11 12:53 - 2006-06-01 21:06 - 00192512 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\qcap.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00184320 _____ (Microsoft Corporation) C:\WINDOWS\system32\ipsecsvc.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00184320 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ipsecsvc.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00180255 _____ (Microsoft Corporation) C:\WINDOWS\system32\msjint40.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00180255 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msjint40.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00180224 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntmsdba.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00180224 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ntmsdba.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00172032 _____ (Microsoft Corporation) C:\WINDOWS\system32\photowiz.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00172032 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\photowiz.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00169984 _____ (Microsoft Corporation) C:\WINDOWS\system32\iprtrmgr.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00169984 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\iprtrmgr.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00159232 _____ (Microsoft Corporation) C:\WINDOWS\system32\msimtf.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00159232 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msimtf.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00156672 _____ (Microsoft Corporation) C:\WINDOWS\system32\modemui.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00156672 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\modemui.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00156160 _____ (Microsoft Corporation) C:\WINDOWS\system32\keymgr.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00156160 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\keymgr.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00155136 _____ (Microsoft Corporation) C:\WINDOWS\system32\itircl.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00155136 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\itircl.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00154112 _____ (Microsoft Corporation) C:\WINDOWS\system32\ipmontr.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00154112 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ipmontr.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00151552 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdart.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00151552 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msdart.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00148992 _____ () C:\WINDOWS\system32\mpg2splt.ax
2014-07-11 12:53 - 2006-06-01 21:06 - 00148992 _____ () C:\WINDOWS\system32\dllcache\mpg2splt.ax
2014-07-11 12:53 - 2006-06-01 21:06 - 00147456 _____ (Microsoft Corporation) C:\WINDOWS\system32\odbctrac.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00147456 _____ (Microsoft Corporation) C:\WINDOWS\system32\initpki.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00147456 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\odbctrac.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00147456 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\initpki.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00145920 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntshrui.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00145920 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ntshrui.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00144896 _____ (Microsoft Corporation) C:\WINDOWS\system32\netid.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00144896 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\netid.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00144896 _____ (America Online) C:\WINDOWS\system32\jgdw400.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00144384 _____ (Microsoft Corporation) C:\WINDOWS\system32\mobsync.exe
2014-07-11 12:53 - 2006-06-01 21:06 - 00144384 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mobsync.exe
2014-07-11 12:53 - 2006-06-01 21:06 - 00143360 _____ (Microsoft Corporation) C:\WINDOWS\system32\msorcl32.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00143360 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msorcl32.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00137216 _____ (Microsoft Corporation) C:\WINDOWS\system32\itss.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00137216 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\itss.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00135168 _____ (Microsoft Corporation) C:\WINDOWS\system32\odbcconf.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00135168 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\odbcconf.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00133120 _____ (Microsoft Corporation) C:\WINDOWS\system32\intl.cpl
2014-07-11 12:53 - 2006-06-01 21:06 - 00133120 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\intl.cpl
2014-07-11 12:53 - 2006-06-01 21:06 - 00127488 _____ (Microsoft Corporation) C:\WINDOWS\system32\input.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00127488 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\input.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00124928 _____ (Microsoft Corporation) C:\WINDOWS\system32\net1.exe
2014-07-11 12:53 - 2006-06-01 21:06 - 00124928 _____ (Microsoft Corporation) C:\WINDOWS\system32\mplay32.exe
2014-07-11 12:53 - 2006-06-01 21:06 - 00124928 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\net1.exe
2014-07-11 12:53 - 2006-06-01 21:06 - 00124928 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mplay32.exe
2014-07-11 12:53 - 2006-06-01 21:06 - 00121856 _____ (Microsoft Corporation) C:\WINDOWS\system32\oledlg.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00121856 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvfw32.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00121856 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\oledlg.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00121856 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msvfw32.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00121344 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdminst.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00121344 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mdminst.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00120832 _____ (Microsoft Corporation) C:\WINDOWS\system32\offfilt.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00120832 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\offfilt.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00119296 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntmarta.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00119296 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ntmarta.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00117248 _____ (Microsoft Corporation) C:\WINDOWS\system32\powercfg.cpl
2014-07-11 12:53 - 2006-06-01 21:06 - 00117248 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\powercfg.cpl
2014-07-11 12:53 - 2006-06-01 21:06 - 00115712 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstlsapi.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00115712 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mstlsapi.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00114176 _____ (Microsoft Corporation) C:\WINDOWS\system32\netdde.exe
2014-07-11 12:53 - 2006-06-01 21:06 - 00114176 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\netdde.exe
2014-07-11 12:53 - 2006-06-01 21:06 - 00110080 _____ (Microsoft Corporation) C:\WINDOWS\system32\imm32.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00110080 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\imm32.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00109568 _____ (Microsoft Corporation) C:\WINDOWS\system32\progman.exe
2014-07-11 12:53 - 2006-06-01 21:06 - 00109568 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\progman.exe
2014-07-11 12:53 - 2006-06-01 21:06 - 00108544 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleprn.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00108544 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\oleprn.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00106496 _____ (Microsoft Corporation) C:\WINDOWS\system32\odbccp32.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00106496 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\odbccp32.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00105984 _____ (Microsoft Corporation) C:\WINDOWS\system32\polstore.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00105984 _____ (Microsoft Corporation) C:\WINDOWS\system32\msoert2.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00105984 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\polstore.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00105984 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msoert2.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00103936 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlhtml.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00103936 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\nlhtml.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00102400 _____ (Microsoft Corporation) C:\WINDOWS\system32\odbcint.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00102400 _____ (Microsoft Corporation) C:\WINDOWS\system32\msscript.ocx
2014-07-11 12:53 - 2006-06-01 21:06 - 00102400 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\odbcint.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00102400 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msscript.ocx
2014-07-11 12:53 - 2006-06-01 21:06 - 00099840 _____ (Microsoft Corporation) C:\WINDOWS\system32\loadperf.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00099840 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\loadperf.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00099328 _____ (Microsoft Corporation) C:\WINDOWS\system32\psbase.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00099328 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\psbase.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00097792 _____ (Microsoft Corporation) C:\WINDOWS\system32\occache.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00097792 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\occache.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00095744 _____ (Microsoft Corporation) C:\WINDOWS\system32\iphlpapi.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00095744 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\iphlpapi.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00091136 _____ (Microsoft Corporation) C:\WINDOWS\system32\mydocs.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00091136 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mydocs.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00088064 _____ (Microsoft Corporation) C:\WINDOWS\system32\netsh.exe
2014-07-11 12:53 - 2006-06-01 21:06 - 00088064 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\netsh.exe
2014-07-11 12:53 - 2006-06-01 21:06 - 00087040 _____ (Microsoft Corporation) C:\WINDOWS\system32\mprapi.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00087040 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mprapi.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00086016 _____ (Microsoft Corporation) C:\WINDOWS\system32\msapsspc.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00086016 _____ (Microsoft Corporation) C:\WINDOWS\system32\isign32.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00086016 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msapsspc.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00086016 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\isign32.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00085504 _____ (Microsoft Corporation) C:\WINDOWS\system32\mciavi32.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00085504 _____ (Microsoft Corporation) C:\WINDOWS\system32\makecab.exe
2014-07-11 12:53 - 2006-06-01 21:06 - 00085504 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mciavi32.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00085504 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\makecab.exe
2014-07-11 12:53 - 2006-06-01 21:06 - 00083456 _____ (Microsoft Corporation) C:\WINDOWS\system32\olepro32.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00083456 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\olepro32.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00081920 _____ (Microsoft Corporation) C:\WINDOWS\system32\netui0.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00081920 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\netui0.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00081920 _____ (Intel Corporation) C:\WINDOWS\system32\proctexe.ocx
2014-07-11 12:53 - 2006-06-01 21:06 - 00081920 _____ (Intel Corporation) C:\WINDOWS\system32\dllcache\proctexe.ocx
2014-07-11 12:53 - 2006-06-01 21:06 - 00078848 _____ (Microsoft Corporation) C:\WINDOWS\system32\msiexec.exe
2014-07-11 12:53 - 2006-06-01 21:06 - 00078848 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msiexec.exe
2014-07-11 12:53 - 2006-06-01 21:06 - 00077824 _____ (Microsoft Corporation) C:\WINDOWS\system32\mmcbase.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00077824 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mmcbase.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00075264 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetpp.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00075264 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\inetpp.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00074752 _____ (Microsoft Corporation) C:\WINDOWS\system32\olecli32.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00074752 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\olecli32.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00072704 _____ (Microsoft Corporation) C:\WINDOWS\system32\msw3prt.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00072704 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msw3prt.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00072192 _____ (Microsoft Corporation) C:\WINDOWS\system32\msacm32.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00072192 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msacm32.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00070144 _____ (Microsoft Corporation) C:\WINDOWS\system32\notepad.exe
2014-07-11 12:53 - 2006-06-01 21:06 - 00070144 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\notepad.exe
2014-07-11 12:53 - 2006-06-01 21:06 - 00070144 _____ (Microsoft Corporation) C:\WINDOWS\notepad.exe
2014-07-11 12:53 - 2006-06-01 21:06 - 00069632 _____ (Microsoft Corporation) C:\WINDOWS\system32\odbcconf.exe
2014-07-11 12:53 - 2006-06-01 21:06 - 00069632 _____ (Microsoft Corporation) C:\WINDOWS\system32\msscds32.ax
2014-07-11 12:53 - 2006-06-01 21:06 - 00069632 _____ (Microsoft Corporation) C:\WINDOWS\system32\msconf.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00069632 _____ (Microsoft Corporation) C:\WINDOWS\system32\joy.cpl
2014-07-11 12:53 - 2006-06-01 21:06 - 00069632 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\odbcconf.exe
2014-07-11 12:53 - 2006-06-01 21:06 - 00069632 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msscds32.ax
2014-07-11 12:53 - 2006-06-01 21:06 - 00069632 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msconf.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00069632 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\joy.cpl
2014-07-11 12:53 - 2006-06-01 21:06 - 00069120 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctfp.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00069120 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msctfp.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\osuninst.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\osuninst.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00067072 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdsapi.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00067072 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ntdsapi.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00065536 _____ (Microsoft Corporation) C:\WINDOWS\system32\pautoenr.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00065536 _____ (Microsoft Corporation) C:\WINDOWS\system32\odbccu32.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00065536 _____ (Microsoft Corporation) C:\WINDOWS\system32\odbccr32.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00065536 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\pautoenr.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00065536 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\odbccu32.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00065536 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\odbccr32.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00062976 _____ (Microsoft Corporation) C:\WINDOWS\system32\ocmanage.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00062976 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ocmanage.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00061440 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcrt40.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00061440 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msvcrt40.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00060928 _____ (Microsoft Corporation) C:\WINDOWS\system32\miglibnt.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00060928 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\miglibnt.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00059904 _____ (Microsoft Corporation) C:\WINDOWS\system32\packager.exe
2014-07-11 12:53 - 2006-06-01 21:06 - 00059904 _____ (Microsoft Corporation) C:\WINDOWS\system32\mpr.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00059904 _____ (Microsoft Corporation) C:\WINDOWS\system32\ipv6mon.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00059904 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\packager.exe
2014-07-11 12:53 - 2006-06-01 21:06 - 00059904 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mpr.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00059904 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ipv6mon.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00058880 _____ (Microsoft Corporation) C:\WINDOWS\system32\licwmi.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00058880 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\licwmi.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00058368 _____ (Microsoft Corporation) C:\WINDOWS\system32\ipconfig.exe
2014-07-11 12:53 - 2006-06-01 21:06 - 00058368 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ipconfig.exe
2014-07-11 12:53 - 2006-06-01 21:06 - 00057616 _____ (Microsoft Corporation) C:\WINDOWS\system32\odbcji32.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00057616 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\odbcji32.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00057344 _____ (Microsoft Corporation) C:\WINDOWS\system32\ndptsp.tsp
2014-07-11 12:53 - 2006-06-01 21:06 - 00057344 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmler.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00057344 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ndptsp.tsp
2014-07-11 12:53 - 2006-06-01 21:06 - 00057344 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mshtmler.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00055296 _____ (Microsoft Corporation) C:\WINDOWS\system32\npptools.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00055296 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\npptools.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00054784 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcirt.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00054784 _____ (Microsoft Corporation) C:\WINDOWS\system32\ixsso.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00054784 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msvcirt.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00054784 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ixsso.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00053279 _____ (Microsoft Corporation) C:\WINDOWS\system32\msjter40.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00053279 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msjter40.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00053248 _____ (Microsoft Corporation) C:\WINDOWS\system32\ipv6.exe
2014-07-11 12:53 - 2006-06-01 21:06 - 00053248 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ipv6.exe
2014-07-11 12:53 - 2006-06-01 21:06 - 00051712 _____ (Microsoft Corporation) C:\WINDOWS\system32\msident.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00051712 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetres.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00051712 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msident.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00051712 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\inetres.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00050688 _____ (Microsoft Corporation) C:\WINDOWS\system32\proquota.exe
2014-07-11 12:53 - 2006-06-01 21:06 - 00050688 _____ (Microsoft Corporation) C:\WINDOWS\system32\mmcshext.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00050688 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\proquota.exe
2014-07-11 12:53 - 2006-06-01 21:06 - 00050688 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mmcshext.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00049152 _____ (Microsoft Corporation) C:\WINDOWS\system32\mprdim.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00049152 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mprdim.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00048128 _____ (Microsoft Corporation) C:\WINDOWS\system32\msprivs.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00048128 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msprivs.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00044032 _____ (Microsoft Corporation) C:\WINDOWS\system32\racpldlg.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00044032 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\racpldlg.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00043520 _____ (Microsoft Corporation) C:\WINDOWS\system32\pstorec.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00043520 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntlanman.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00043520 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\pstorec.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00043520 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ntlanman.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00042496 _____ (Microsoft Corporation) C:\WINDOWS\system32\net.exe
2014-07-11 12:53 - 2006-06-01 21:06 - 00042496 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\net.exe
2014-07-11 12:53 - 2006-06-01 21:06 - 00042496 _____ (Johnson-Grace Company) C:\WINDOWS\system32\jgpl400.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00040960 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntmsapi.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00040960 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ntmsapi.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00039936 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf3216.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00039936 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mf3216.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00037376 _____ (Microsoft Corporation) C:\WINDOWS\system32\netstat.exe
2014-07-11 12:53 - 2006-06-01 21:06 - 00037376 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\netstat.exe
2014-07-11 12:53 - 2006-06-01 21:06 - 00036864 _____ (Microsoft Corporation) C:\WINDOWS\system32\mscpxl32.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00036864 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mscpxl32.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00036352 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncobjapi.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00036352 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ncobjapi.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00035328 _____ (Microsoft Corporation) C:\WINDOWS\system32\pid.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00035328 _____ (Microsoft Corporation) C:\WINDOWS\system32\perfproc.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00035328 _____ (Microsoft Corporation) C:\WINDOWS\system32\mciqtz32.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00035328 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\perfproc.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00035328 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mciqtz32.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00034816 _____ (Microsoft Corporation) C:\WINDOWS\system32\pstorsvc.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00034816 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\pstorsvc.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00034560 _____ (Microsoft Corporation) C:\WINDOWS\system32\mnmdd.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00034560 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mnmdd.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00033280 _____ (Microsoft Corporation) C:\WINDOWS\system32\kmddsp.tsp
2014-07-11 12:53 - 2006-06-01 21:06 - 00033280 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetmib1.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00033280 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kmddsp.tsp
2014-07-11 12:53 - 2006-06-01 21:06 - 00033280 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\inetmib1.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\system32\odbccp32.cpl
2014-07-11 12:53 - 2006-06-01 21:06 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\system32\odbcad32.exe
2014-07-11 12:53 - 2006-06-01 21:06 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\system32\mnmsrvc.exe
2014-07-11 12:53 - 2006-06-01 21:06 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\odbccp32.cpl
2014-07-11 12:53 - 2006-06-01 21:06 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\odbcad32.exe
2014-07-11 12:53 - 2006-06-01 21:06 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mnmsrvc.exe
2014-07-11 12:53 - 2006-06-01 21:06 - 00032768 _____ (Intel Corporation) C:\WINDOWS\system32\isrdbg32.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00032768 _____ (Intel Corporation) C:\WINDOWS\system32\dllcache\isrdbg32.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\mspatcha.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mspatcha.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00029184 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshta.exe
2014-07-11 12:53 - 2006-06-01 21:06 - 00029184 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mshta.exe
2014-07-11 12:53 - 2006-06-01 21:06 - 00028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\nmmkcert.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\nmmkcert.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00027648 _____ (Microsoft Corporation) C:\WINDOWS\system32\profmap.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00027648 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\profmap.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00027136 _____ (Microsoft Corporation) C:\WINDOWS\system32\perfdisk.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00027136 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\perfdisk.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\perfos.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\perfos.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00025600 _____ (Microsoft Corporation) C:\WINDOWS\system32\mslbui.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00025600 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mslbui.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00025088 _____ (Microsoft Corporation) C:\WINDOWS\system32\mtxlegih.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00025088 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mtxlegih.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00024576 _____ (Microsoft Corporation) C:\WINDOWS\system32\odbcbcp.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00024576 _____ (Microsoft Corporation) C:\WINDOWS\system32\msorc32r.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00024576 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msorc32r.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00024064 _____ (Microsoft Corporation) C:\WINDOWS\system32\ipxroute.exe
2014-07-11 12:53 - 2006-06-01 21:06 - 00024064 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ipxroute.exe
2014-07-11 12:53 - 2006-06-01 21:06 - 00023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\mciwave.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mciwave.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00023040 _____ (Microsoft Corporation) C:\WINDOWS\system32\psapi.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00023040 _____ (Microsoft Corporation) C:\WINDOWS\system32\mciseq.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00023040 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\psapi.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00023040 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mciseq.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00022528 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcsubs.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00022528 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mfcsubs.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00022016 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpk.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00022016 _____ (Microsoft Corporation) C:\WINDOWS\system32\licmgr10.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00022016 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\lpk.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00022016 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\licmgr10.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00020992 _____ (Microsoft Corporation) C:\WINDOWS\system32\ipxwan.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00020992 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ipxwan.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00020511 _____ (Microsoft Corporation) C:\WINDOWS\system32\odtext32.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00020511 _____ (Microsoft Corporation) C:\WINDOWS\system32\oddbse32.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00020511 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\odtext32.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00020511 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\oddbse32.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00020510 _____ (Microsoft Corporation) C:\WINDOWS\system32\odpdx32.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00020510 _____ (Microsoft Corporation) C:\WINDOWS\system32\odfox32.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00020510 _____ (Microsoft Corporation) C:\WINDOWS\system32\odexl32.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00020510 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\odpdx32.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00020510 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\odfox32.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00020510 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\odexl32.dll
2014-07-11 12:53 - 2006-06-01 21:06 - 00020480 _____ (Microsoft Corporation) C:\WINDOWS\system32\qprocess.exe
2014-07-11 12:53 - 2006-06-01 21:06 - 00020480 _____ (Microsoft Corporation) C:\WINDOWS\system32\mtxdm.dll

Jona333 · 16.07.2014, 10:11

weiter im nächsten Beitrag

11.07.2014, 13:48	#10
schrauber /// the machine /// TB-Ausbilder	Windows XP : Windows Explorer öffnet Werbung Dann jetzt bitte ein frisches FRST log. Was machen die Probleme? __________________ gruß, schrauber *Proud Member of UNITE and ASAP since 2009* Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM!

Windows XP : Windows Explorer öffnet Werbung

Log-Analyse und Auswertung: Windows XP : Windows Explorer öffnet Werbung