Zurück   Trojaner-Board > Malware entfernen > Log-Analyse und Auswertung
Windows XP: Link in DHL-Mail angeklickt - Problem mit Antivirensoftware und MBR-Befund

Windows XP: Link in DHL-Mail angeklickt - Problem mit Antivirensoftware und MBR-Befund


Log-Analyse und Auswertung: Windows XP: Link in DHL-Mail angeklickt - Problem mit Antivirensoftware und MBR-Befund

Windows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML.

Antwort
Seite 1 von 2 1 2
Alt 20.05.2015, 08:49   #1
trojanernick
 
Windows XP: Link in DHL-Mail angeklickt - Problem mit Antivirensoftware und MBR-Befund - Standard

Windows XP: Link in DHL-Mail angeklickt - Problem mit Antivirensoftware und MBR-Befund


Hallo,
meine Frau hat letzte Woche -vermutlich im Halbschlaf- einen Link in einer Junk-Mail mit DHL-Nachnahme-Paketnakündigung angeklickt, deshalb befürchtete ich einen Virus/Trojaner auf dem HP-Laptop zu haben. Beim anschliessenden Systemscan hat Avira auch einen Virus gefunden und in Qurantäne gestellt.
Danach trat folgendes Symptom auf: Avira Free Antivirus hatte plötzlich die Meldung "Lizenz ungültig" und liess sich nicht mehr updaten bzw. neu installieren.
Daraufhin hatte ich mich entschlossen, den Laptop neu aufzusetzen, nachdem ich zuvor alle relevanten Daten extern gesichert hatte. Das habe ich dann auch getan, über die HP-Recovery-Partition (D die Partition C: formatiert und aus der Recovery-Partition den Auslieferungszustand wieder installiert.
Nun habe ich nach Recherchen herausgefunden, dass dies ggf. nicht ausreicht, weil sich der Schädling auch in der MBR angesiedelt haben kann. Habe dies mit MBRCheck.exe geprüft und aufgrund der Meldung "unknown MBR-Code" bzw. "Found non-standard or infected MBR." kein gutes Gefühl, obwohl ich die Logs zugegeben nicht wirklich verstehe.
Avira findet seit der Neuinstallation keinen Virus mehr, Malwarebytes hat allerdings schon noch was gefunden.
Ich hoffe, dass ich bis hier alles richtig gemacht habe (habe versucht, mich strikt an euere Anleitung zu halten) und erbitte eure Hilfe, dass sich das mal ein Profi anschaut.
Habe soweit alle Scanprogramme ausgeführt und poste hier alles mir momentan an Logs vorliegende.
Danke im Voraus!

defogger_disable Log
Code:
ATTFilter
defogger_disable by jpshortstuff (23.02.10.1)
Log created at 21:27 on 19/05/2015 (Administrator)

Checking for autostart values...
HKCU\~\Run values retrieved.
HKLM\~\Run values retrieved.

Checking for services/drivers...


-=E.O.F=-

Alt 20.05.2015, 08:52   #2
schrauber
/// the machine
/// TB-Ausbilder
 
Windows XP: Link in DHL-Mail angeklickt - Problem mit Antivirensoftware und MBR-Befund - Standard

Windows XP: Link in DHL-Mail angeklickt - Problem mit Antivirensoftware und MBR-Befund


hi,

Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop: FRST Download FRST 32-Bit | FRST 64-Bit
(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)
  • Starte jetzt FRST.
  • Ändere ungefragt keine der Checkboxen und klicke auf Untersuchen.
  • Die Logdateien werden nun erstellt und befinden sich danach auf deinem Desktop.
  • Poste mir die FRST.txt und nach dem ersten Scan auch die Addition.txt in deinem Thread (#-Symbol im Eingabefenster der Webseite anklicken)

__________________

__________________
Alt 20.05.2015, 09:01   #3
trojanernick
 
Windows XP: Link in DHL-Mail angeklickt - Problem mit Antivirensoftware und MBR-Befund - Standard

Windows XP: Link in DHL-Mail angeklickt - Problem mit Antivirensoftware und MBR-Befund


Hallo Schrauber,

habe ich alles schon gemacht, habe nur nicht alle Logs in meinen Beitrag bekommen ;o(

FRST.txt
Code:
ATTFilter
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 19-05-2015
Ran by Administrator (administrator) on HP-LAPTOP on 19-05-2015 21:33:06
Running from C:\Dokumente und Einstellungen\Administrator\Desktop
Loaded Profiles: Administrator (Available profiles: Martina & Martina_2 & Administrator)
Platform: Microsoft Windows XP Professional Service Pack 3 (X86) OS Language: Deutsch (Deutschland)
Internet Explorer Version 8 (Default browser: FF)
Boot Mode: Safe Mode (with Networking)
Tutorial for Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Cognizance Corporation) C:\Programme\HPQ\IAM\Bin\asghost.exe
(Microsoft Corporation) C:\WINDOWS\system32\dllhost.exe
(Avira Operations GmbH & Co. KG) C:\Programme\Avira\Launcher\Avira.OE.Systray.exe
(Intel Corporation) C:\WINDOWS\system32\igfxsrvc.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [MsmqIntCert] => regsvr32 /s mqrt.dll
HKLM\...\Run: [SoundMAXPnP] => C:\Programme\Analog Devices\Core\smax4pnp.exe [925696 2005-05-20] (Analog Devices, Inc.)
HKLM\...\Run: [SoundMAX] => C:\Programme\Analog Devices\SoundMAX\Smax4.exe [716800 2005-05-06] (Analog Devices, Inc.)
HKLM\...\Run: [SunJavaUpdateSched] => C:\Programme\Java\jre1.5.0_06\bin\jusched.exe [36975 2005-11-10] (Sun Microsystems, Inc.)
HKLM\...\Run: [PTHOSTTR] => C:\Programme\HPQ\HP ProtectTools Security Manager\PTHOSTTR.EXE [122880 2006-02-14] (Hewlett-Packard Development Company, L.P.)
HKLM\...\Run: [HP Software Update] => C:\Programme\Hp\HP Software Update\HPWuSchd2.exe [49152 2005-02-16] (Hewlett-Packard Co.)
HKLM\...\Run: [DLA] => C:\WINDOWS\System32\DLA\DLACTRLW.EXE [122940 2005-08-31] (Sonic Solutions)
HKLM\...\Run: [SynTPEnh] => C:\Programme\Synaptics\SynTP\SynTPEnh.exe [761948 2006-03-03] (Synaptics, Inc.)
HKLM\...\Run: [igfxhkcmd] => C:\WINDOWS\system32\hkcmd.exe [77824 2006-03-23] (Intel Corporation)
HKLM\...\Run: [igfxpers] => C:\WINDOWS\system32\igfxpers.exe [118784 2006-03-23] (Intel Corporation)
HKLM\...\Run: [hpWirelessAssistant] => C:\Programme\hpq\HP Wireless Assistant\HP Wireless Assistant.exe [454656 2006-02-14] (Hewlett-Packard Development Company, L.P.)
HKLM\...\Run: [CognizanceTS] => rundll32.exe C:\PROGRA~1\HPQ\IAM\Bin\AsTsVcc.dll,RegisterModule
HKLM\...\Run: [QlbCtrl] => C:\Programme\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe [131072 2006-05-08] ( Hewlett-Packard Development Company, L.P.)
HKLM\...\Run: [Cpqset] => C:\Programme\HPQ\Default Settings\cpqset.exe [172094 2006-01-26] ()
HKLM\...\Run: [Recguard] => C:\WINDOWS\Sminst\Recguard.exe [1187840 2005-12-20] ()
HKLM\...\Run: [Reminder] => C:\WINDOWS\Creator\Remind_XP.exe [806912 2006-03-09] ()
HKLM\...\Run: [Scheduler] => C:\WINDOWS\SMINST\Scheduler.exe [892928 2006-02-15] ()
HKLM\...\Run: [WatchDog] => C:\Programme\InterVideo\DVD Check\DVDCheck.exe [184320 2005-11-08] (InterVideo Inc.)
HKLM\...\Run: [Avira Systray] => C:\Programme\Avira\Launcher\Avira.OE.Systray.exe [128760 2015-05-07] (Avira Operations GmbH & Co. KG)
HKLM\...\Run: [ISUSPM Startup] => C:\Programme\Gemeinsame Dateien\InstallShield\UpdateService\ISUSPM.exe [221184 2004-07-27] (InstallShield Software Corporation)
HKLM\...\Run: [ISUSScheduler] => C:\Programme\Gemeinsame Dateien\InstallShield\UpdateService\issch.exe [81920 2004-07-27] (InstallShield Software Corporation)
HKLM\...\Run: [avgnt] => C:\Programme\Avira\Antivirus\avgnt.exe [728312 2015-04-16] (Avira Operations GmbH & Co. KG)
HKLM\...\Run: [Adobe ARM] => C:\Programme\Gemeinsame Dateien\Adobe\ARM\1.0\AdobeARM.exe [959904 2014-05-08] (Adobe Systems Incorporated)
Winlogon\Notify\OneCard: C:\Programme\HPQ\IAM\Bin\AsWlnPkg.dll [2005-07-25] (Cognizance Corporation)
HKU\S-1-5-21-1310988380-3352743311-3678797310-500\...\Run: [CCleaner Monitoring] => C:\Programme\CCleaner\CCleaner.exe [6278424 2015-04-23] (Piriform Ltd)
HKU\S-1-5-21-1310988380-3352743311-3678797310-500\...\MountPoints2: G - G:\LaunchU3.exe -a
HKU\S-1-5-21-1310988380-3352743311-3678797310-500\...\MountPoints2: {5408a0ae-fb2f-11e4-890a-0019d212e72a} - G:\LaunchU3.exe -a
Lsa: [Notification Packages] scecli AsWlnPkg
Startup: C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Autostart\BTTray.lnk [2015-05-14]
ShortcutTarget: BTTray.lnk -> C:\Programme\WIDCOMM\Bluetooth Software\BTTray.exe (Broadcom Corporation.)
Startup: C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Autostart\DVD Check.lnk [2015-05-14]
ShortcutTarget: DVD Check.lnk -> C:\Programme\InterVideo\DVD Check\DVDCheck.exe (InterVideo Inc.)
ShellIconOverlayIdentifiers: [Dokument-Manager] -> {666C7833-A9B6-4AB4-94ED-DC238C81E925} => C:\Programme\HPQ\IAM\Bin\SFSShell.dll [2005-06-16] (Cognizance Corporation)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKU\S-1-5-21-1310988380-3352743311-3678797310-500\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.hp.com
HKU\S-1-5-21-1310988380-3352743311-3678797310-500\Software\Microsoft\Internet Explorer\Main,Search Bar = hxxp://www.google.com/ie
BHO: DriveLetterAccess -> {5CA3D70E-1895-11CF-8E15-001234567890} -> C:\WINDOWS\System32\DLA\DLASHX_W.DLL [2005-08-31] (Sonic Solutions)
BHO: SSVHelper Class -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Programme\Java\jre1.5.0_06\bin\ssv.dll [2005-11-10] (Sun Microsystems, Inc.)
BHO: HP Credential Manager for ProtectTools -> {DF21F1DB-80C6-11D3-9483-B03D0EC10000} -> C:\Programme\HPQ\IAM\Bin\ItIeAddIN.dll [2005-03-03] (Infineon Technologies AG)
Toolbar: HKU\S-1-5-21-1310988380-3352743311-3678797310-500 -> No Name - {C4069E3A-68F1-403E-B40E-20066696354B} -  No File
Toolbar: HKU\S-1-5-21-1310988380-3352743311-3678797310-500 -> No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} -  No File
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.5.0/jinstall-1_5_0_06-windows-i586.cab
DPF: {CAFEEFAC-0015-0000-0006-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.5.0/jinstall-1_5_0_06-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.5.0/jinstall-1_5_0_06-windows-i586.cab
Handler: http\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\SYSTEM\OLE DB\msdaipp.dll [2005-09-20] (Microsoft Corporation)
Handler: http\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\SYSTEM\OLE DB\msdaipp.dll [2005-09-20] (Microsoft Corporation)
Handler: https\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\SYSTEM\OLE DB\msdaipp.dll [2005-09-20] (Microsoft Corporation)
Handler: https\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\SYSTEM\OLE DB\msdaipp.dll [2005-09-20] (Microsoft Corporation)
Handler: ipp\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\SYSTEM\OLE DB\msdaipp.dll [2005-09-20] (Microsoft Corporation)
Handler: msdaipp\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\SYSTEM\OLE DB\msdaipp.dll [2005-09-20] (Microsoft Corporation)
Handler: msdaipp\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\SYSTEM\OLE DB\msdaipp.dll [2005-09-20] (Microsoft Corporation)
Filter: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\WINDOWS\system32\urlmon.dll [2014-03-06] (Microsoft Corporation)
Filter: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\WINDOWS\system32\urlmon.dll [2014-03-06] (Microsoft Corporation)
Winsock: Catalog9 01 C:\Programme\Avira\Antivirus\avsda.dll [507984 2015-05-16] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 02 C:\Programme\Avira\Antivirus\avsda.dll [507984 2015-05-16] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 20 C:\Programme\Avira\Antivirus\avsda.dll [507984 2015-05-16] (Avira Operations GmbH & Co. KG)

FireFox:
========
FF ProfilePath: C:\Dokumente und Einstellungen\Administrator\Anwendungsdaten\Mozilla\Firefox\Profiles\dh3yjhkl.default
FF Plugin: @google.com/npPicasa3,version=3.0.0 -> C:\Programme\Google\Picasa3\npPicasa3.dll [2015-02-13] (Google, Inc.)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Programme\Microsoft Silverlight\5.1.30214.0\npctrl.dll [2014-02-13] ( Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=2.2.1 -> C:\Programme\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin: Adobe Reader -> C:\Programme\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2014-08-05] (Adobe Systems Inc.)
FF Extension: Avira Browser Safety - C:\Dokumente und Einstellungen\Administrator\Anwendungsdaten\Mozilla\Firefox\Profiles\dh3yjhkl.default\Extensions\abs@avira.com [2015-05-15]
FF Extension: WOT - C:\Dokumente und Einstellungen\Administrator\Anwendungsdaten\Mozilla\Firefox\Profiles\dh3yjhkl.default\Extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7} [2015-05-15]
FF Extension: Adblock Plus - C:\Dokumente und Einstellungen\Administrator\Anwendungsdaten\Mozilla\Firefox\Profiles\dh3yjhkl.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2015-05-15]
FF Extension: BetterPrivacy - C:\Dokumente und Einstellungen\Administrator\Anwendungsdaten\Mozilla\Firefox\Profiles\dh3yjhkl.default\Extensions\{d40f5e7b-d2cf-4856-b441-cc613eeffbe3}.xpi [2015-05-15]

Chrome: 
=======
CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - https://clients2.google.com/service/update2/crx

========================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

S4 Alerter; C:\WINDOWS\system32\alrsvc.dll [17408 2008-04-14] (Microsoft Corporation) [File not signed]
S3 ALG; C:\WINDOWS\System32\alg.exe [44544 2008-04-14] (Microsoft Corporation) [File not signed]
S2 AntiVirMailService; C:\Programme\Avira\Antivirus\avmailc.exe [825856 2015-04-16] (Avira Operations GmbH & Co. KG)
S2 AntiVirSchedulerService; C:\Programme\Avira\Antivirus\sched.exe [434424 2015-04-16] (Avira Operations GmbH & Co. KG)
S2 AntiVirService; C:\Programme\Avira\Antivirus\avguard.exe [434424 2015-04-16] (Avira Operations GmbH & Co. KG)
S2 AntiVirWebService; C:\Programme\Avira\Antivirus\AVWEBGRD.EXE [1186040 2015-04-16] (Avira Operations GmbH & Co. KG)
S3 AppMgmt; C:\WINDOWS\System32\appmgmts.dll [175616 2008-04-14] (Microsoft Corporation) [File not signed]
S2 ASChannel; C:\Programme\HPQ\IAM\Bin\ASChnl.dll [117248 2005-06-01] (Cognizance Corporation) [File not signed]
S2 AudioSrv; C:\WINDOWS\System32\audiosrv.dll [42496 2008-04-14] (Microsoft Corporation) [File not signed]
S2 Avira.OE.ServiceHost; C:\Programme\Avira\Launcher\Avira.ServiceHost.exe [206584 2015-05-07] (Avira Operations GmbH & Co. KG)
S3 BITS; C:\WINDOWS\system32\qmgr.dll [409088 2008-04-14] (Microsoft Corporation) [File not signed]
S2 btwdins; C:\Programme\WIDCOMM\Bluetooth Software\bin\btwdins.exe [258103 2006-01-18] (Broadcom Corporation.) [File not signed]
S3 CiSvc; C:\WINDOWS\system32\cisvc.exe [5632 2008-04-14] (Microsoft Corporation) [File not signed]
S4 ClipSrv; C:\WINDOWS\system32\clipsrv.exe [33280 2008-04-14] (Microsoft Corporation) [File not signed]
R2 CryptSvc; C:\WINDOWS\System32\cryptsvc.dll [62464 2008-04-14] (Microsoft Corporation) [File not signed]
R2 Dhcp; C:\WINDOWS\System32\dhcpcsvc.dll [127488 2008-04-14] (Microsoft Corporation) [File not signed]
S3 dmadmin; C:\WINDOWS\System32\dmadmin.exe [225280 2008-04-14] (Microsoft Corp., Veritas Software) [File not signed]
R2 dmserver; C:\WINDOWS\System32\dmserver.dll [24064 2008-04-14] (Microsoft Corp.) [File not signed]
S3 Dot3svc; C:\WINDOWS\System32\dot3svc.dll [133120 2008-04-14] (Microsoft Corporation) [File not signed]
S3 EapHost; C:\WINDOWS\System32\eapsvc.dll [33792 2008-04-14] (Microsoft Corporation) [File not signed]
S2 ERSvc; C:\WINDOWS\System32\ersvc.dll [23040 2008-04-14] (Microsoft Corporation) [File not signed]
S3 gusvc; C:\Programme\Google\Common\Google Updater\GoogleUpdaterService.exe [136120 2015-02-13] (Google)
R2 helpsvc; C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll [38400 2008-04-14] (Microsoft Corporation) [File not signed]
S3 hkmsvc; C:\WINDOWS\System32\kmsvc.dll [61440 2008-04-14] (Microsoft Corporation) [File not signed]
S2 hpqwmiex; C:\Programme\Hewlett-Packard\Shared\hpqwmiex.exe [135168 2006-05-02] (Hewlett-Packard Development Company, L.P.) [File not signed]
S3 HTTPFilter; C:\WINDOWS\System32\w3ssl.dll [15872 2008-04-14] (Microsoft Corporation) [File not signed]
S3 IDriverT; C:\Programme\Gemeinsame Dateien\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [File not signed]
S3 ImapiService; C:\WINDOWS\system32\imapi.exe [150528 2008-04-14] (Microsoft Corporation) [File not signed]
S2 LightScribeService; C:\Programme\Gemeinsame Dateien\LightScribe\LSSrvc.exe [49152 2006-06-20] (Hewlett-Packard Company) [File not signed]
R2 LmHosts; C:\WINDOWS\System32\lmhsvc.dll [13824 2008-04-14] (Microsoft Corporation) [File not signed]
S2 MBAMService; C:\Programme\ Malwarebytes Anti-Malware \mbamservice.exe [1080120 2015-04-14] (Malwarebytes Corporation)
S4 Messenger; C:\WINDOWS\System32\msgsvc.dll [33792 2008-04-14] (Microsoft Corporation) [File not signed]
S3 mnmsrvc; C:\WINDOWS\system32\mnmsrvc.exe [32768 2008-04-14] (Microsoft Corporation) [File not signed]
S3 MozillaMaintenance; C:\Programme\Mozilla Maintenance Service\maintenanceservice.exe [148080 2015-05-16] (Mozilla Foundation)
S3 MSDTC; C:\WINDOWS\system32\msdtc.exe [6144 2008-04-14] (Microsoft Corporation) [File not signed]
S2 MSMQ; C:\WINDOWS\system32\mqsvc.exe [4608 2008-04-14] (Microsoft Corporation) [File not signed]
S2 MSMQTriggers; C:\WINDOWS\system32\mqtgsvc.exe [117248 2008-04-14] (Microsoft Corporation) [File not signed]
S3 napagent; C:\WINDOWS\System32\qagentrt.dll [294400 2008-04-14] (Microsoft Corporation) [File not signed]
S4 NetDDE; C:\WINDOWS\system32\netdde.exe [114176 2008-04-14] (Microsoft Corporation) [File not signed]
S4 NetDDEdsdm; C:\WINDOWS\system32\netdde.exe [114176 2008-04-14] (Microsoft Corporation) [File not signed]
S3 Netlogon; C:\WINDOWS\system32\lsass.exe [13312 2008-04-14] (Microsoft Corporation) [File not signed]
R3 Netman; C:\WINDOWS\System32\netman.dll [198144 2008-04-14] (Microsoft Corporation) [File not signed]
R3 NtLmSsp; C:\WINDOWS\system32\lsass.exe [13312 2008-04-14] (Microsoft Corporation) [File not signed]
S3 NtmsSvc; C:\WINDOWS\system32\ntmssvc.dll [438272 2008-04-14] (Microsoft Corporation) [File not signed]
S3 ose; C:\Programme\Gemeinsame Dateien\Microsoft Shared\Source Engine\OSE.EXE [89136 2003-07-28] (Microsoft Corporation)
S2 PCA; C:\WINDOWS\SMINST\PCAngel.exe [294912 2006-01-12] (SoftThinks) [File not signed]
S2 PolicyAgent; C:\WINDOWS\system32\lsass.exe [13312 2008-04-14] (Microsoft Corporation) [File not signed]
S2 ProtectedStorage; C:\WINDOWS\system32\lsass.exe [13312 2008-04-14] (Microsoft Corporation) [File not signed]
S3 RasAuto; C:\WINDOWS\System32\rasauto.dll [88576 2008-04-14] (Microsoft Corporation) [File not signed]
S3 RasMan; C:\WINDOWS\System32\rasmans.dll [186368 2008-04-14] (Microsoft Corporation) [File not signed]
S3 RDSessMgr; C:\WINDOWS\system32\sessmgr.exe [143360 2008-04-14] (Microsoft Corporation) [File not signed]
S4 RemoteAccess; C:\WINDOWS\System32\mprdim.dll [53248 2008-04-14] (Microsoft Corporation) [File not signed]
S2 RemoteRegistry; C:\WINDOWS\system32\regsvc.dll [59904 2008-04-14] (Microsoft Corporation) [File not signed]
S3 RpcLocator; C:\WINDOWS\system32\locator.exe [75264 2008-04-14] (Microsoft Corporation) [File not signed]
S3 RSVP; C:\WINDOWS\system32\rsvp.exe [132608 2004-08-04] (Microsoft Corporation) [File not signed]
S2 SamSs; C:\WINDOWS\system32\lsass.exe [13312 2008-04-14] (Microsoft Corporation) [File not signed]
S2 SCardSvr; C:\WINDOWS\System32\SCardSvr.exe [99840 2008-04-14] (Microsoft Corporation) [File not signed]
S2 Schedule; C:\WINDOWS\system32\schedsvc.dll [193536 2008-04-14] (Microsoft Corporation) [File not signed]
S2 seclogon; C:\WINDOWS\System32\seclogon.dll [18944 2008-04-14] (Microsoft Corporation) [File not signed]
S2 SENS; C:\WINDOWS\system32\sens.dll [39424 2008-04-14] (Microsoft Corporation) [File not signed]
R2 SharedAccess; C:\WINDOWS\System32\ipnathlp.dll [334336 2008-04-14] (Microsoft Corporation) [File not signed]
R2 srservice; C:\WINDOWS\system32\srsvc.dll [171520 2008-04-14] (Microsoft Corporation) [File not signed]
S3 SSDPSRV; C:\WINDOWS\System32\ssdpsrv.dll [71680 2008-04-14] (Microsoft Corporation) [File not signed]
S3 stisvc; C:\WINDOWS\system32\wiaservc.dll [334336 2008-04-14] (Microsoft Corporation) [File not signed]
S3 SysmonLog; C:\WINDOWS\system32\smlogsvc.exe [94208 2008-04-14] (Microsoft Corporation) [File not signed]
S3 TapiSrv; C:\WINDOWS\System32\tapisrv.dll [249856 2008-04-14] (Microsoft Corporation) [File not signed]
R3 TermService; C:\WINDOWS\System32\termsrv.dll [297472 2008-04-14] (Microsoft Corporation) [File not signed]
S4 TlntSvr; C:\WINDOWS\system32\tlntsvr.exe [75264 2008-04-14] (Microsoft Corporation) [File not signed]
S2 TrkWks; C:\WINDOWS\system32\trkwks.dll [90112 2008-04-14] (Microsoft Corporation) [File not signed]
S3 upnphost; C:\WINDOWS\System32\upnphost.dll [186880 2008-04-14] (Microsoft Corporation) [File not signed]
S3 UPS; C:\WINDOWS\System32\ups.exe [18432 2008-04-14] (Microsoft Corporation) [File not signed]
S3 VSS; C:\WINDOWS\System32\vssvc.exe [292864 2008-04-14] (Microsoft Corporation) [File not signed]
S2 W32Time; C:\WINDOWS\system32\w32time.dll [177152 2008-04-14] (Microsoft Corporation) [File not signed]
S2 WebClient; C:\WINDOWS\System32\webclnt.dll [68096 2008-04-14] (Microsoft Corporation) [File not signed]
R2 winmgmt; C:\WINDOWS\system32\wbem\WMIsvc.dll [145408 2008-04-14] (Microsoft Corporation) [File not signed]
S3 WmiApSrv; C:\WINDOWS\system32\wbem\wmiapsrv.exe [126464 2008-04-14] (Microsoft Corporation) [File not signed]
S2 WMPNetworkSvc; C:\Programme\Windows Media Player\WMPNetwk.exe [920576 2009-02-04] (Microsoft Corporation)
S2 wscsvc; C:\WINDOWS\system32\wscsvc.dll [80896 2008-04-14] (Microsoft Corporation) [File not signed]
S2 wuauserv; C:\WINDOWS\system32\wuauserv.dll [6656 2008-04-14] (Microsoft Corporation) [File not signed]
R2 WZCSVC; C:\WINDOWS\System32\wzcsvc.dll [483840 2008-04-14] (Microsoft Corporation) [File not signed]
S3 xmlprov; C:\WINDOWS\System32\xmlprov.dll [129024 2008-04-14] (Microsoft Corporation) [File not signed]

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R0 ACPI; C:\WINDOWS\System32\DRIVERS\ACPI.sys [188800 2008-04-14] (Microsoft Corporation) [File not signed]
R0 ACPIEC; C:\WINDOWS\System32\DRIVERS\ACPIEC.sys [12160 2004-08-04] (Microsoft Corporation) [File not signed]
S3 ADIHdAudAddService; C:\WINDOWS\System32\drivers\ADIHdAud.sys [176128 2006-02-28] (Analog Devices, Inc.) [File not signed]
S3 AEAudioService; C:\WINDOWS\System32\drivers\AEAudio.sys [152960 2005-06-07] (Andrea Electronics Corporation) [File not signed]
S3 aec; C:\WINDOWS\System32\drivers\aec.sys [142592 2008-04-13] (Microsoft Corporation) [File not signed]
S3 AgereSoftModem; C:\WINDOWS\System32\DRIVERS\AGRSM.sys [1155584 2006-07-31] (Agere Systems) [File not signed]
R0 AliIde; C:\WINDOWS\System32\DRIVERS\aliide.sys [5248 2001-08-17] (Acer Laboratories Inc.) [File not signed]
S3 Arp1394; C:\WINDOWS\System32\DRIVERS\arp1394.sys [60800 2008-04-14] (Microsoft Corporation) [File not signed]
S3 AsyncMac; C:\WINDOWS\System32\DRIVERS\asyncmac.sys [14336 2008-04-14] (Microsoft Corporation) [File not signed]
R0 atapi; C:\WINDOWS\System32\DRIVERS\atapi.sys [96512 2008-04-14] (Microsoft Corporation) [File not signed]
S3 Atmarpc; C:\WINDOWS\System32\DRIVERS\atmarpc.sys [59904 2008-04-14] (Microsoft Corporation) [File not signed]
S3 ATSWPDRV; C:\WINDOWS\System32\DRIVERS\ATSwpDrv.sys [130432 2006-03-30] (AuthenTec, Inc.) [File not signed]
S3 audstub; C:\WINDOWS\System32\DRIVERS\audstub.sys [3072 2001-08-17] (Microsoft Corporation) [File not signed]
S2 avgntflt; C:\WINDOWS\System32\DRIVERS\avgntflt.sys [107400 2015-04-16] (Avira Operations GmbH & Co. KG)
S1 avipbb; C:\WINDOWS\System32\DRIVERS\avipbb.sys [136216 2015-04-16] (Avira Operations GmbH & Co. KG)
S1 avkmgr; C:\WINDOWS\System32\DRIVERS\avkmgr.sys [37896 2015-04-16] (Avira Operations GmbH & Co. KG)
S3 b57w2k; C:\WINDOWS\System32\DRIVERS\b57xp32.sys [142720 2006-02-09] (Broadcom Corporation) [File not signed]
R3 bcm4sbxp; C:\WINDOWS\System32\DRIVERS\bcm4sbxp.sys [45312 2006-02-09] (Broadcom Corporation) [File not signed]
R1 Beep; C:\WINDOWS\system32\Drivers\Beep.sys [4224 2004-08-04] (Microsoft Corporation) [File not signed]
S3 BTKRNL; C:\WINDOWS\System32\DRIVERS\btkrnl.sys [1342570 2006-01-18] (Broadcom Corporation.) [File not signed]
S3 BTWUSB; C:\WINDOWS\System32\Drivers\btwusb.sys [57096 2006-01-19] (Broadcom Corporation.) [File not signed]
S4 cbidf2k; C:\WINDOWS\system32\Drivers\cbidf2k.sys [13952 2004-08-04] (Microsoft Corporation) [File not signed]
S1 Cdaudio; C:\WINDOWS\system32\Drivers\Cdaudio.sys [18688 2004-08-04] (Microsoft Corporation) [File not signed]
R4 Cdfs; C:\WINDOWS\system32\Drivers\Cdfs.sys [63744 2008-04-14] (Microsoft Corporation) [File not signed]
R1 Cdrom; C:\WINDOWS\System32\DRIVERS\cdrom.sys [62976 2008-04-14] (Microsoft Corporation) [File not signed]
S3 CmBatt; C:\WINDOWS\System32\DRIVERS\CmBatt.sys [13952 2008-04-14] (Microsoft Corporation) [File not signed]
R0 Compbatt; C:\WINDOWS\System32\DRIVERS\compbatt.sys [10240 2008-04-14] (Microsoft Corporation) [File not signed]
R0 Disk; C:\WINDOWS\System32\DRIVERS\disk.sys [36352 2008-04-14] (Microsoft Corporation) [File not signed]
S2 DLABOIOM; C:\WINDOWS\System32\DLA\DLABOIOM.SYS [25628 2005-08-31] (Sonic Solutions) [File not signed]
R1 DLACDBHM; C:\WINDOWS\System32\Drivers\DLACDBHM.SYS [5628 2005-08-25] (Sonic Solutions) [File not signed]
S2 DLADResN; C:\WINDOWS\System32\DLA\DLADResN.SYS [2496 2005-08-31] (Sonic Solutions) [File not signed]
S2 DLAIFS_M; C:\WINDOWS\System32\DLA\DLAIFS_M.SYS [86524 2005-08-31] (Sonic Solutions) [File not signed]
S2 DLAOPIOM; C:\WINDOWS\System32\DLA\DLAOPIOM.SYS [14684 2005-08-31] (Sonic Solutions) [File not signed]
S2 DLAPoolM; C:\WINDOWS\System32\DLA\DLAPoolM.SYS [6364 2005-08-31] (Sonic Solutions) [File not signed]
R1 DLARTL_N; C:\WINDOWS\System32\Drivers\DLARTL_N.SYS [22684 2005-08-25] (Sonic Solutions) [File not signed]
S2 DLAUDFAM; C:\WINDOWS\System32\DLA\DLAUDFAM.SYS [94332 2005-08-31] (Sonic Solutions) [File not signed]
S2 DLAUDF_M; C:\WINDOWS\System32\DLA\DLAUDF_M.SYS [87036 2005-08-31] (Sonic Solutions) [File not signed]
S4 dmboot; C:\WINDOWS\System32\drivers\dmboot.sys [800384 2008-04-14] (Microsoft Corp., Veritas Software) [File not signed]
R0 dmio; C:\WINDOWS\System32\drivers\dmio.sys [154112 2008-04-14] (Microsoft Corp., Veritas Software) [File not signed]
R0 dmload; C:\WINDOWS\System32\drivers\dmload.sys [5888 2004-08-04] (Microsoft Corp., Veritas Software.) [File not signed]
S3 DMusic; C:\WINDOWS\System32\drivers\DMusic.sys [52864 2008-04-14] (Microsoft Corporation) [File not signed]
S3 drmkaud; C:\WINDOWS\System32\drivers\drmkaud.sys [2944 2008-04-14] (Microsoft Corporation) [File not signed]
R0 DRVMCDB; C:\WINDOWS\System32\Drivers\DRVMCDB.SYS [88752 2005-08-30] (Sonic Solutions) [File not signed]
S2 DRVNDDM; C:\WINDOWS\System32\Drivers\DRVNDDM.SYS [40544 2005-08-12] (Sonic Solutions) [File not signed]
S1 eabfiltr; C:\WINDOWS\System32\DRIVERS\eabfiltr.sys [7808 2005-09-19] (Hewlett-Packard Development Company, L.P.) [File not signed]
S3 eabusb; C:\WINDOWS\System32\DRIVERS\eabusb.sys [5760 2005-09-19] (Hewlett-Packard Development Company, L.P.) [File not signed]
R4 Fastfat; C:\WINDOWS\system32\Drivers\Fastfat.sys [143744 2008-04-14] (Microsoft Corporation) [File not signed]
S3 Fdc; C:\WINDOWS\System32\DRIVERS\fdc.sys [27392 2008-04-14] (Microsoft Corporation) [File not signed]
S1 Fips; C:\WINDOWS\system32\Drivers\Fips.sys [44672 2008-04-14] (Microsoft Corporation) [File not signed]
S3 Flpydisk; C:\WINDOWS\System32\DRIVERS\flpydisk.sys [20480 2008-04-14] (Microsoft Corporation) [File not signed]
R0 FltMgr; C:\WINDOWS\System32\drivers\fltmgr.sys [129792 2008-04-14] (Microsoft Corporation) [File not signed]
U1 Fs_Rec; C:\WINDOWS\system32\Drivers\Fs_Rec.sys [7936 2004-08-04] (Microsoft Corporation) [File not signed]
R0 Ftdisk; C:\WINDOWS\System32\DRIVERS\ftdisk.sys [126336 2004-08-04] (Microsoft Corporation) [File not signed]
R3 Gpc; C:\WINDOWS\System32\DRIVERS\msgpc.sys [35072 2008-04-14] (Microsoft Corporation) [File not signed]
R3 HBtnKey; C:\WINDOWS\System32\DRIVERS\cpqbttn.sys [9344 2005-09-19] (Hewlett-Packard Development Company, L.P.) [File not signed]
R3 HDAudBus; C:\WINDOWS\System32\DRIVERS\HDAudBus.sys [144384 2008-04-13] (Windows (R) Server 2003 DDK provider) [File not signed]
S1 HWiNFO32; C:\WINDOWS\system32\drivers\HWiNFO32.SYS [23840 2015-05-15] (REALiX(tm))
R1 i8042prt; C:\WINDOWS\System32\DRIVERS\i8042prt.sys [52992 2008-04-14] (Microsoft Corporation) [File not signed]
S3 ialm; C:\WINDOWS\System32\DRIVERS\ialmnt5.sys [1166972 2006-03-23] (Intel Corporation) [File not signed]
R0 iaStor; C:\WINDOWS\System32\DRIVERS\iaStor.sys [874240 2005-10-12] (Intel Corporation) [File not signed]
R1 Imapi; C:\WINDOWS\System32\DRIVERS\imapi.sys [42112 2008-04-14] (Microsoft Corporation) [File not signed]
R0 IntelIde; C:\WINDOWS\System32\DRIVERS\intelide.sys [5504 2008-04-14] (Microsoft Corporation) [File not signed]
S1 intelppm; C:\WINDOWS\System32\DRIVERS\intelppm.sys [40448 2008-04-14] (Microsoft Corporation) [File not signed]
S3 Ip6Fw; C:\WINDOWS\System32\drivers\ip6fw.sys [36608 2008-04-14] (Microsoft Corporation) [File not signed]
S3 IpFilterDriver; C:\WINDOWS\System32\DRIVERS\ipfltdrv.sys [32896 2004-08-04] (Microsoft Corporation) [File not signed]
S3 IpInIp; C:\WINDOWS\System32\DRIVERS\ipinip.sys [20864 2008-04-14] (Microsoft Corporation) [File not signed]
R3 IpNat; C:\WINDOWS\System32\DRIVERS\ipnat.sys [152832 2008-04-14] (Microsoft Corporation) [File not signed]
R1 IPSec; C:\WINDOWS\System32\DRIVERS\ipsec.sys [75264 2008-04-14] (Microsoft Corporation) [File not signed]
S3 IRENUM; C:\WINDOWS\System32\DRIVERS\irenum.sys [11264 2008-04-14] (Microsoft Corporation) [File not signed]
R0 isapnp; C:\WINDOWS\System32\DRIVERS\isapnp.sys [37632 2008-04-14] (Microsoft Corporation) [File not signed]
R1 Kbdclass; C:\WINDOWS\System32\DRIVERS\kbdclass.sys [25216 2008-04-14] (Microsoft Corporation) [File not signed]
R1 kbdhid; C:\WINDOWS\System32\DRIVERS\kbdhid.sys [14720 2008-04-14] (Microsoft Corporation) [File not signed]
S3 kmixer; C:\WINDOWS\System32\drivers\kmixer.sys [172416 2008-04-14] (Microsoft Corporation) [File not signed]
S3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [23256 2015-04-14] (Malwarebytes Corporation)
S3 MBAMSwissArmy; C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys [119512 2015-05-17] (Malwarebytes Corporation)
S1 mnmdd; C:\WINDOWS\system32\Drivers\mnmdd.sys [4224 2004-08-04] (Microsoft Corporation) [File not signed]
S3 Modem; C:\WINDOWS\system32\Drivers\Modem.sys [30336 2008-04-14] (Microsoft Corporation) [File not signed]
R1 Mouclass; C:\WINDOWS\System32\DRIVERS\mouclass.sys [23552 2008-04-14] (Microsoft Corporation) [File not signed]
R0 MountMgr; C:\WINDOWS\system32\Drivers\MountMgr.sys [42368 2008-04-14] (Microsoft Corporation) [File not signed]
S3 MQAC; C:\WINDOWS\system32\drivers\mqac.sys [92544 2008-04-14] (Microsoft Corporation) [File not signed]
S3 MRxDAV; C:\WINDOWS\System32\DRIVERS\mrxdav.sys [180608 2008-04-14] (Microsoft Corporation) [File not signed]
S3 MSKSSRV; C:\WINDOWS\System32\drivers\MSKSSRV.sys [7552 2008-04-14] (Microsoft Corporation) [File not signed]
S3 MSPCLOCK; C:\WINDOWS\System32\drivers\MSPCLOCK.sys [5376 2008-04-14] (Microsoft Corporation) [File not signed]
S3 MSPQM; C:\WINDOWS\System32\drivers\MSPQM.sys [4992 2008-04-14] (Microsoft Corporation) [File not signed]
R3 mssmbios; C:\WINDOWS\System32\DRIVERS\mssmbios.sys [15488 2008-04-14] (Microsoft Corporation) [File not signed]
R0 NDIS; C:\WINDOWS\system32\Drivers\NDIS.sys [182656 2008-04-14] (Microsoft Corporation) [File not signed]
R3 Ndisuio; C:\WINDOWS\System32\DRIVERS\ndisuio.sys [14592 2008-04-14] (Microsoft Corporation) [File not signed]
R3 NdisWan; C:\WINDOWS\System32\DRIVERS\ndiswan.sys [91520 2008-04-14] (Microsoft Corporation) [File not signed]
R1 NetBIOS; C:\WINDOWS\System32\DRIVERS\netbios.sys [34688 2008-04-14] (Microsoft Corporation) [File not signed]
R1 NetBT; C:\WINDOWS\System32\DRIVERS\netbt.sys [162816 2008-04-14] (Microsoft Corporation) [File not signed]
S3 NIC1394; C:\WINDOWS\System32\DRIVERS\nic1394.sys [61824 2008-04-14] (Microsoft Corporation) [File not signed]
R1 Npfs; C:\WINDOWS\system32\Drivers\Npfs.sys [30848 2008-04-14] (Microsoft Corporation) [File not signed]
R4 Ntfs; C:\WINDOWS\system32\Drivers\Ntfs.sys [574976 2008-04-14] (Microsoft Corporation) [File not signed]
R1 Null; C:\WINDOWS\system32\Drivers\Null.sys [2944 2004-08-04] (Microsoft Corporation) [File not signed]
S3 NwlnkFlt; C:\WINDOWS\System32\DRIVERS\nwlnkflt.sys [12416 2004-08-04] (Microsoft Corporation) [File not signed]
S3 NwlnkFwd; C:\WINDOWS\System32\DRIVERS\nwlnkfwd.sys [32512 2004-08-04] (Microsoft Corporation) [File not signed]
R0 ohci1394; C:\WINDOWS\System32\DRIVERS\ohci1394.sys [61696 2008-04-14] (Microsoft Corporation) [File not signed]
S3 Parport; C:\WINDOWS\System32\DRIVERS\parport.sys [80384 2008-04-14] (Microsoft Corporation) [File not signed]
R0 PartMgr; C:\WINDOWS\system32\Drivers\PartMgr.sys [19712 2008-04-14] (Microsoft Corporation) [File not signed]
S4 ParVdm; C:\WINDOWS\system32\Drivers\ParVdm.sys [7040 2004-08-04] (Microsoft Corporation) [File not signed]
R0 PCI; C:\WINDOWS\System32\DRIVERS\pci.sys [68224 2008-04-14] (Microsoft Corporation) [File not signed]
R0 PCIIde; C:\WINDOWS\System32\DRIVERS\pciide.sys [3328 2001-08-17] (Microsoft Corporation) [File not signed]
R0 Pcmcia; C:\WINDOWS\System32\DRIVERS\pcmcia.sys [120576 2008-04-14] (Microsoft Corporation) [File not signed]
R3 PptpMiniport; C:\WINDOWS\System32\DRIVERS\raspptp.sys [48384 2008-04-14] (Microsoft Corporation) [File not signed]
R3 PSched; C:\WINDOWS\System32\DRIVERS\psched.sys [69120 2008-04-14] (Microsoft Corporation) [File not signed]
R3 Ptilink; C:\WINDOWS\System32\DRIVERS\ptilink.sys [17792 2004-08-04] (Parallel Technologies, Inc.) [File not signed]
R0 PxHelp20; C:\WINDOWS\System32\Drivers\PxHelp20.sys [20640 2005-04-25] (Sonic Solutions) [File not signed]
R1 RasAcd; C:\WINDOWS\System32\DRIVERS\rasacd.sys [8832 2004-08-04] (Microsoft Corporation) [File not signed]
S3 Rasirda; C:\WINDOWS\System32\DRIVERS\rasirda.sys [19584 2001-08-17] (Microsoft Corporation) [File not signed]
R3 Rasl2tp; C:\WINDOWS\System32\DRIVERS\rasl2tp.sys [51328 2008-04-14] (Microsoft Corporation) [File not signed]
R3 RasPppoe; C:\WINDOWS\System32\DRIVERS\raspppoe.sys [41472 2008-04-14] (Microsoft Corporation) [File not signed]
R3 Raspti; C:\WINDOWS\System32\DRIVERS\raspti.sys [16512 2004-08-04] (Microsoft Corporation) [File not signed]
R1 Rdbss; C:\WINDOWS\System32\DRIVERS\rdbss.sys [175744 2008-04-14] (Microsoft Corporation) [File not signed]
R1 RDPCDD; C:\WINDOWS\System32\DRIVERS\RDPCDD.sys [4224 2004-08-04] (Microsoft Corporation) [File not signed]
R3 rdpdr; C:\WINDOWS\System32\DRIVERS\rdpdr.sys [196224 2008-04-14] (Microsoft Corporation) [File not signed]
R1 redbook; C:\WINDOWS\System32\DRIVERS\redbook.sys [57728 2008-04-14] (Microsoft Corporation) [File not signed]
S3 sdbus; C:\WINDOWS\System32\DRIVERS\sdbus.sys [79232 2008-04-14] (Microsoft Corporation) [File not signed]
S3 Secdrv; C:\WINDOWS\System32\DRIVERS\secdrv.sys [20480 2008-04-13] (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.) [File not signed]
S3 serenum; C:\WINDOWS\System32\DRIVERS\serenum.sys [15744 2008-04-14] (Microsoft Corporation) [File not signed]
S1 Serial; C:\WINDOWS\System32\DRIVERS\serial.sys [65536 2008-04-14] (Microsoft Corporation) [File not signed]
S3 SMCIRDA; C:\WINDOWS\System32\DRIVERS\smcirda.sys [35913 2001-08-18] (SMC) [File not signed]
S3 splitter; C:\WINDOWS\System32\drivers\splitter.sys [6272 2008-04-14] (Microsoft Corporation) [File not signed]
R0 sr; C:\WINDOWS\System32\DRIVERS\sr.sys [73472 2008-04-14] (Microsoft Corporation) [File not signed]
S1 ssmdrv; C:\WINDOWS\System32\DRIVERS\ssmdrv.sys [28520 2015-04-16] (Avira GmbH)
R3 swenum; C:\WINDOWS\System32\DRIVERS\swenum.sys [4352 2008-04-14] (Microsoft Corporation) [File not signed]
S3 swmidi; C:\WINDOWS\System32\drivers\swmidi.sys [56576 2008-04-14] (Microsoft Corporation) [File not signed]
R3 SynTP; C:\WINDOWS\System32\DRIVERS\SynTP.sys [192736 2006-03-03] (Synaptics, Inc.) [File not signed]
S3 sysaudio; C:\WINDOWS\System32\drivers\sysaudio.sys [60800 2008-04-14] (Microsoft Corporation) [File not signed]
S3 TDPIPE; C:\WINDOWS\system32\Drivers\TDPIPE.sys [12040 2008-04-14] (Microsoft Corporation) [File not signed]
S3 TDTCP; C:\WINDOWS\system32\Drivers\TDTCP.sys [21896 2008-04-14] (Microsoft Corporation) [File not signed]
R1 TermDD; C:\WINDOWS\System32\DRIVERS\termdd.sys [40840 2008-04-14] (Microsoft Corporation) [File not signed]
R3 Update; C:\WINDOWS\System32\DRIVERS\update.sys [384768 2008-04-14] (Microsoft Corporation) [File not signed]
R3 usbhub; C:\WINDOWS\System32\DRIVERS\usbhub.sys [59520 2008-04-14] (Microsoft Corporation) [File not signed]
R3 USBSTOR; C:\WINDOWS\System32\DRIVERS\USBSTOR.SYS [26368 2008-04-14] (Microsoft Corporation) [File not signed]
R3 usbuhci; C:\WINDOWS\System32\DRIVERS\usbuhci.sys [20608 2008-04-14] (Microsoft Corporation) [File not signed]
R1 VgaSave; C:\WINDOWS\System32\drivers\vga.sys [20992 2008-04-14] (Microsoft Corporation) [File not signed]
R0 ViaIde; C:\WINDOWS\System32\DRIVERS\viaide.sys [5376 2008-04-14] (Microsoft Corporation) [File not signed]
R0 VolSnap; C:\WINDOWS\system32\Drivers\VolSnap.sys [53760 2008-04-14] (Microsoft Corporation) [File not signed]
R3 w39n51; C:\WINDOWS\System32\DRIVERS\w39n51.sys [1428096 2006-01-19] (Intel® Corporation) [File not signed]
S3 Wanarp; C:\WINDOWS\System32\DRIVERS\wanarp.sys [34560 2008-04-14] (Microsoft Corporation) [File not signed]
S3 wdmaud; C:\WINDOWS\System32\drivers\wdmaud.sys [83072 2008-04-14] (Microsoft Corporation) [File not signed]
R1 WmiAcpi; C:\WINDOWS\System32\DRIVERS\wmiacpi.sys [8832 2008-04-14] (Microsoft Corporation) [File not signed]
U5 BattC; C:\Windows\System32\Drivers\BattC.sys [16384 2008-04-14] (Microsoft Corporation) [File not signed]
S3 GTIPCI21; system32\DRIVERS\gtipci21.sys [X]
U5 ScsiPort; C:\WINDOWS\system32\drivers\scsiport.sys [96384 2008-04-14] (Microsoft Corporation) [File not signed]
S3 tifm21; system32\drivers\tifm21.sys [X]
U1 WS2IFSL; No ImagePath

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-05-19 21:33 - 2015-05-19 21:33 - 00035719 _____ () C:\Dokumente und Einstellungen\Administrator\Desktop\FRST.txt
2015-05-19 21:32 - 2015-05-19 21:33 - 00000000 ____D () C:\FRST
2015-05-19 21:32 - 2015-05-19 21:31 - 01146880 _____ (Farbar) C:\Dokumente und Einstellungen\Administrator\Desktop\FRST.exe
2015-05-19 21:27 - 2015-05-19 21:27 - 00000488 _____ () C:\Dokumente und Einstellungen\Administrator\Desktop\defogger_disable.log
2015-05-19 21:27 - 2015-05-19 21:27 - 00000000 _____ () C:\Dokumente und Einstellungen\Administrator\defogger_reenable
2015-05-19 21:26 - 2015-05-19 11:36 - 00050477 _____ () C:\Dokumente und Einstellungen\Administrator\Desktop\Defogger.exe
2015-05-19 20:01 - 2015-05-19 20:01 - 00000000 __SHD () C:\Dokumente und Einstellungen\Administrator\IETldCache
2015-05-19 20:00 - 2015-05-19 20:00 - 00000000 ____D () C:\WINDOWS\CSC
2015-05-19 18:48 - 2015-05-19 18:48 - 00000000 ____D () C:\WINDOWS\LastGood
2015-05-18 22:27 - 2015-05-18 22:27 - 00199582 _____ () C:\Dokumente und Einstellungen\LocalService\Lokale Einstellungen\Anwendungsdaten\WPFFontCache_v0400-S-1-5-21-1310988380-3352743311-3678797310-1006-0.dat
2015-05-18 22:26 - 2015-05-18 22:26 - 00000000 ____D () C:\Dokumente und Einstellungen\Martina_2\Lokale Einstellungen\Anwendungsdaten\Mozilla
2015-05-18 22:25 - 2015-05-18 22:25 - 00000000 ____D () C:\Dokumente und Einstellungen\Martina\Anwendungsdaten\U3
2015-05-18 22:20 - 2015-05-18 22:22 - 00000000 ____D () C:\Dokumente und Einstellungen\Martina_2\Anwendungsdaten\U3
2015-05-18 22:18 - 2015-05-18 22:18 - 00000354 _____ () C:\Dokumente und Einstellungen\Martina_2\Desktop\Eigene Dateien.lnk
2015-05-18 22:14 - 2015-05-18 22:14 - 00000000 ____D () C:\Dokumente und Einstellungen\Martina_2\Anwendungsdaten\Avira
2015-05-18 22:11 - 2015-05-18 22:26 - 00000000 ____D () C:\Dokumente und Einstellungen\Martina_2\Anwendungsdaten\Mozilla
2015-05-18 22:10 - 2015-05-18 22:11 - 00000000 ____D () C:\Dokumente und Einstellungen\Martina_2\Lokale Einstellungen\Anwendungsdaten\Thunderbird
2015-05-18 22:10 - 2015-05-18 22:10 - 00000000 ____D () C:\Dokumente und Einstellungen\Martina_2\Anwendungsdaten\Thunderbird
2015-05-18 22:08 - 2015-05-19 18:48 - 00000190 ___SH () C:\Dokumente und Einstellungen\Martina_2\ntuser.ini
2015-05-18 22:08 - 2015-05-19 18:48 - 00000000 ____D () C:\Dokumente und Einstellungen\Martina_2
2015-05-18 22:08 - 2015-05-19 13:21 - 00000000 ____D () C:\Dokumente und Einstellungen\Martina_2\Lokale Einstellungen\Temp
2015-05-18 22:08 - 2015-05-18 22:08 - 00000768 _____ () C:\Dokumente und Einstellungen\Martina_2\Startmenü\Programme\Windows Media Player.lnk
2015-05-18 22:08 - 2015-05-18 22:08 - 00000000 __SHD () C:\Dokumente und Einstellungen\Martina_2\Lokale Einstellungen\Verlauf
2015-05-18 22:08 - 2015-05-18 22:08 - 00000000 __SHD () C:\Dokumente und Einstellungen\Martina_2\IETldCache
2015-05-18 22:08 - 2015-05-18 22:08 - 00000000 ___RD () C:\Dokumente und Einstellungen\Martina_2\Startmenü\Programme
2015-05-18 22:08 - 2015-05-18 22:08 - 00000000 ___RD () C:\Dokumente und Einstellungen\Martina_2\Eigene Dateien\Eigene Musik
2015-05-18 22:08 - 2015-05-18 22:08 - 00000000 ___RD () C:\Dokumente und Einstellungen\Martina_2\Eigene Dateien\Eigene Bilder
2015-05-18 22:08 - 2015-05-15 08:01 - 00000000 ___RD () C:\Dokumente und Einstellungen\Martina_2\Startmenü\Programme\Zubehör
2015-05-18 22:08 - 2015-05-15 08:01 - 00000000 ___RD () C:\Dokumente und Einstellungen\Martina_2\Startmenü\Programme\Autostart
2015-05-18 22:08 - 2015-05-15 08:01 - 00000000 ___RD () C:\Dokumente und Einstellungen\Martina_2\Startmenü
2015-05-18 22:08 - 2015-05-15 08:01 - 00000000 ____D () C:\Dokumente und Einstellungen\Martina_2\Lokale Einstellungen\Anwendungsdaten\{3248F0A6-6813-11D6-A77B-00B0D0150060}
2015-05-18 22:08 - 2006-08-25 07:12 - 00000000 ___HD () C:\Dokumente und Einstellungen\Martina_2\Netzwerkumgebung
2015-05-18 22:08 - 2006-08-25 07:12 - 00000000 ___HD () C:\Dokumente und Einstellungen\Martina_2\Druckumgebung
2015-05-18 22:08 - 2006-08-25 07:12 - 00000000 ____D () C:\Dokumente und Einstellungen\Martina_2\Anwendungsdaten\SampleView
2015-05-18 22:08 - 2006-08-24 21:11 - 00000000 _____ () C:\Dokumente und Einstellungen\Martina_2\Lokale Einstellungen\Anwendungsdaten\QSwitch.txt
2015-05-18 22:08 - 2006-08-24 21:11 - 00000000 _____ () C:\Dokumente und Einstellungen\Martina_2\Lokale Einstellungen\Anwendungsdaten\DSwitch.txt
2015-05-18 22:08 - 2006-08-24 21:11 - 00000000 _____ () C:\Dokumente und Einstellungen\Martina_2\Lokale Einstellungen\Anwendungsdaten\AtStart.txt
2015-05-18 22:08 - 2006-08-24 20:52 - 00001491 _____ () C:\Dokumente und Einstellungen\Martina_2\Startmenü\Programme\Software Setup.lnk
2015-05-18 22:08 - 2006-08-24 20:41 - 00000146 _____ () C:\Dokumente und Einstellungen\Martina_2\Lokale Einstellungen\Anwendungsdaten\fusioncache.dat
2015-05-18 22:08 - 2004-08-07 07:53 - 00001503 _____ () C:\Dokumente und Einstellungen\Martina_2\Startmenü\Programme\Remoteunterstützung.lnk
2015-05-18 21:44 - 2015-05-18 21:48 - 00010572 _____ () C:\Dokumente und Einstellungen\Martina\Desktop\MBRCheck_05.18.15_21.44.10.txt
2015-05-18 21:43 - 2015-05-18 16:36 - 00080384 _____ () C:\Dokumente und Einstellungen\Martina\Desktop\MBRCheck.exe
2015-05-18 21:40 - 2015-05-18 21:40 - 00000757 _____ () C:\Dokumente und Einstellungen\Martina\Desktop\mbr.log
2015-05-18 21:37 - 2015-05-18 21:38 - 00000757 _____ () C:\mbr.log
2015-05-18 21:37 - 2015-05-18 21:38 - 00000757 _____ () C:\Dokumente und Einstellungen\Martina\mbr.log
2015-05-18 21:33 - 2015-05-18 16:35 - 00089088 _____ () C:\WINDOWS\system32\mbr.exe
2015-05-18 20:37 - 2015-05-18 20:37 - 00001804 _____ () C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Adobe Reader XI.lnk
2015-05-18 20:37 - 2015-05-18 20:37 - 00001714 _____ () C:\Dokumente und Einstellungen\All Users\Desktop\Adobe Reader XI.lnk
2015-05-18 20:36 - 2015-05-18 20:36 - 00000000 ____D () C:\Programme\Gemeinsame Dateien\Adobe
2015-05-18 20:35 - 2015-05-18 20:59 - 00000000 ____D () C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Adobe
2015-05-18 20:22 - 2015-05-18 20:22 - 00000348 _____ () C:\WINDOWS\spupdsvc.log
2015-05-18 20:22 - 2015-05-18 20:22 - 00000000 ____D () C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Windows Genuine Advantage
2015-05-18 20:19 - 2015-05-18 20:19 - 00000000 __SHD () C:\Dokumente und Einstellungen\Martina\PrivacIE
2015-05-18 20:12 - 2015-05-18 20:15 - 00046201 _____ () C:\WINDOWS\iis6.log
2015-05-18 20:12 - 2015-05-18 20:15 - 00014246 _____ () C:\WINDOWS\ocgen.log
2015-05-18 20:12 - 2015-05-18 20:15 - 00011018 _____ () C:\WINDOWS\FaxSetup.log
2015-05-18 20:12 - 2015-05-18 20:15 - 00009790 _____ () C:\WINDOWS\msmqinst.log
2015-05-18 20:12 - 2015-05-18 20:15 - 00008140 _____ () C:\WINDOWS\tsoc.log
2015-05-18 20:12 - 2015-05-18 20:15 - 00004566 _____ () C:\WINDOWS\imsins.log
2015-05-18 20:12 - 2015-05-18 20:15 - 00004383 _____ () C:\WINDOWS\comsetup.log
2015-05-18 20:12 - 2015-05-18 20:15 - 00003787 _____ () C:\WINDOWS\ntdtcsetup.log
2015-05-18 20:12 - 2015-05-18 20:15 - 00002161 _____ () C:\WINDOWS\netfxocm.log
2015-05-18 20:12 - 2015-05-18 20:15 - 00001302 _____ () C:\WINDOWS\ocmsn.log
2015-05-18 20:12 - 2015-05-18 20:15 - 00001207 _____ () C:\WINDOWS\MedCtrOC.log
2015-05-18 20:12 - 2015-05-18 20:15 - 00000828 _____ () C:\WINDOWS\msgsocm.log
2015-05-18 20:12 - 2015-05-18 20:15 - 00000311 _____ () C:\WINDOWS\tabletoc.log
2015-05-18 20:12 - 2015-05-18 20:12 - 00000000 _____ () C:\WINDOWS\setuperr.log
2015-05-18 20:12 - 2015-05-18 20:12 - 00000000 _____ () C:\WINDOWS\setupact.log
2015-05-18 20:07 - 2015-05-19 18:48 - 00188394 _____ () C:\WINDOWS\setupapi.log
2015-05-18 19:24 - 2015-05-18 19:24 - 00000000 ____D () C:\Dokumente und Einstellungen\Martina\Anwendungsdaten\Chip Digital GmbH
2015-05-18 19:23 - 2015-05-18 20:38 - 00000000 ____D () C:\Dokumente und Einstellungen\Martina\Lokale Einstellungen\Anwendungsdaten\Adobe
2015-05-17 21:19 - 2015-05-17 21:19 - 00000000 ____D () C:\Dokumente und Einstellungen\Martina\Lokale Einstellungen\Anwendungsdaten\Thunderbird
2015-05-17 21:19 - 2015-05-17 21:19 - 00000000 ____D () C:\Dokumente und Einstellungen\Martina\Anwendungsdaten\Thunderbird
2015-05-17 20:26 - 2015-05-17 20:26 - 00004653 _____ () C:\Dokumente und Einstellungen\Martina\Desktop\wsusofflineupdate_2.log
2015-05-17 13:39 - 2015-05-17 13:39 - 00000352 _____ () C:\Dokumente und Einstellungen\Martina\Desktop\Eigene Dateien.lnk
2015-05-17 00:19 - 2015-05-17 00:19 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2345886$
2015-05-17 00:18 - 2015-05-17 00:18 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB970430$
2015-05-17 00:05 - 2015-05-17 00:05 - 00007250 _____ () C:\Dokumente und Einstellungen\Martina\Desktop\wsusofflineupdate.log
2015-05-16 21:58 - 2015-05-16 21:58 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2834904-v2_WM11$
2015-05-16 21:57 - 2015-05-16 21:57 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2813347-v2$
2015-05-16 21:57 - 2015-05-16 21:57 - 00000000 ____D () C:\Programme\Microsoft CAPICOM 2.1.0.2
2015-05-16 21:49 - 2015-05-16 21:49 - 00000000 __HDC () C:\WINDOWS\$NtUninstallMSCompPackV1$
2015-05-16 21:49 - 2015-05-16 21:49 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB969084$
2015-05-16 21:49 - 2009-06-16 09:58 - 00018464 ____N (Microsoft Corporation) C:\WINDOWS\system32\spmsg.dll
2015-05-16 21:48 - 2015-05-16 21:48 - 00000000 __HDC () C:\WINDOWS\$NtUninstallwmp11$
2015-05-16 21:48 - 2015-05-16 21:48 - 00000000 ____D () C:\Programme\Windows Media Connect 2
2015-05-16 21:47 - 2015-05-16 21:47 - 00000000 __HDC () C:\WINDOWS\$NtUninstallWudf01000$
2015-05-16 21:47 - 2015-05-16 21:47 - 00000000 __HDC () C:\WINDOWS\$NtUninstallWMFDist11$
2015-05-16 21:47 - 2015-05-16 21:47 - 00000000 ____D () C:\WINDOWS\system32\LogFiles
2015-05-16 21:46 - 2015-05-16 21:46 - 00000000 ____D () C:\Programme\Microsoft Silverlight
2015-05-16 21:46 - 2015-05-16 21:46 - 00000000 ____D () C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Microsoft Silverlight
2015-05-16 21:46 - 2010-06-02 04:55 - 00527192 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_7.dll
2015-05-16 21:46 - 2010-06-02 04:55 - 00239960 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_7.dll
2015-05-16 21:46 - 2010-06-02 04:55 - 00074072 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_5.dll
2015-05-16 21:46 - 2010-05-26 11:41 - 02106216 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_43.dll
2015-05-16 21:46 - 2010-05-26 11:41 - 01998168 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_43.dll
2015-05-16 21:46 - 2010-05-26 11:41 - 01868128 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dcsx_43.dll
2015-05-16 21:46 - 2010-05-26 11:41 - 00470880 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_43.dll
2015-05-16 21:46 - 2010-05-26 11:41 - 00248672 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx11_43.dll
2015-05-16 21:46 - 2010-02-04 10:01 - 00074072 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_4.dll
2015-05-16 21:45 - 2010-02-04 10:01 - 00528216 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_6.dll
2015-05-16 21:45 - 2010-02-04 10:01 - 00238936 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_6.dll
2015-05-16 21:45 - 2010-02-04 10:01 - 00022360 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_7.dll
2015-05-16 21:45 - 2009-09-04 17:44 - 00515416 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_5.dll
2015-05-16 21:45 - 2009-09-04 17:44 - 00238936 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_5.dll
2015-05-16 21:45 - 2009-09-04 17:44 - 00069464 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_3.dll
2015-05-16 21:45 - 2009-09-04 17:29 - 05501792 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dcsx_42.dll
2015-05-16 21:45 - 2009-09-04 17:29 - 01974616 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_42.dll
2015-05-16 21:45 - 2009-09-04 17:29 - 01892184 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_42.dll
2015-05-16 21:45 - 2009-09-04 17:29 - 00453456 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_42.dll
2015-05-16 21:45 - 2009-09-04 17:29 - 00235344 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx11_42.dll
2015-05-16 21:45 - 2009-03-16 14:18 - 00517448 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_4.dll
2015-05-16 21:45 - 2009-03-16 14:18 - 00235352 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_4.dll
2015-05-16 21:45 - 2009-03-16 14:18 - 00022360 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_6.dll
2015-05-16 21:45 - 2009-03-09 15:27 - 04178264 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_41.dll
2015-05-16 21:45 - 2009-03-09 15:27 - 01846632 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_41.dll
2015-05-16 21:45 - 2009-03-09 15:27 - 00453456 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_41.dll
2015-05-16 21:45 - 2008-10-27 10:04 - 00514384 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_3.dll
2015-05-16 21:45 - 2008-10-27 10:04 - 00235856 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_3.dll
2015-05-16 21:45 - 2008-10-27 10:04 - 00070992 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_2.dll
2015-05-16 21:45 - 2008-10-27 10:04 - 00023376 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_5.dll
2015-05-16 21:45 - 2008-10-15 06:22 - 04379984 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_40.dll
2015-05-16 21:45 - 2008-10-15 06:22 - 02036576 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_40.dll
2015-05-16 21:45 - 2008-10-15 06:22 - 00452440 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_40.dll
2015-05-16 21:45 - 2008-07-31 10:41 - 00238088 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_2.dll
2015-05-16 21:45 - 2008-07-31 10:41 - 00068616 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_1.dll
2015-05-16 21:45 - 2008-07-31 10:40 - 00509448 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_2.dll
2015-05-16 21:45 - 2008-07-10 11:01 - 00467984 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_39.dll
2015-05-16 21:45 - 2008-07-10 11:00 - 03851784 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_39.dll
2015-05-16 21:45 - 2008-07-10 11:00 - 01493528 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_39.dll
2015-05-16 21:45 - 2008-05-30 14:19 - 00507400 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_1.dll
2015-05-16 21:45 - 2008-05-30 14:18 - 00238088 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_1.dll
2015-05-16 21:45 - 2008-05-30 14:17 - 00065032 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_0.dll
2015-05-16 21:45 - 2008-05-30 14:17 - 00025608 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_4.dll
2015-05-16 21:45 - 2008-05-30 14:11 - 03850760 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_38.dll
2015-05-16 21:45 - 2008-05-30 14:11 - 01491992 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_38.dll
2015-05-16 21:45 - 2008-05-30 14:11 - 00467984 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_38.dll
2015-05-16 21:45 - 2008-03-05 16:03 - 00479752 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_0.dll
2015-05-16 21:45 - 2008-03-05 16:03 - 00238088 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_0.dll
2015-05-16 21:45 - 2008-03-05 16:00 - 00025608 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_3.dll
2015-05-16 21:45 - 2008-03-05 15:56 - 03786760 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_37.dll
2015-05-16 21:45 - 2008-03-05 15:56 - 01420824 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_37.dll
2015-05-16 21:45 - 2008-02-05 23:07 - 00462864 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_37.dll
2015-05-16 21:45 - 2007-10-22 03:39 - 00267272 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_10.dll
2015-05-16 21:45 - 2007-10-22 03:37 - 00017928 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_2.dll
2015-05-16 21:45 - 2007-10-12 15:14 - 03734536 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_36.dll
2015-05-16 21:45 - 2007-10-12 15:14 - 01374232 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_36.dll
2015-05-16 21:45 - 2007-10-02 09:56 - 00444776 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_36.dll
2015-05-16 21:45 - 2007-07-20 00:57 - 00267112 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_9.dll
2015-05-16 21:45 - 2007-07-19 18:14 - 03727720 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_35.dll
2015-05-16 21:45 - 2007-07-19 18:14 - 01358192 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_35.dll
2015-05-16 21:45 - 2007-07-19 18:14 - 00444776 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_35.dll
2015-05-16 21:45 - 2007-06-20 20:46 - 00266088 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_8.dll
2015-05-16 21:45 - 2007-05-16 16:45 - 03497832 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_34.dll
2015-05-16 21:45 - 2007-05-16 16:45 - 01124720 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_34.dll
2015-05-16 21:45 - 2007-05-16 16:45 - 00443752 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_34.dll
2015-05-16 21:45 - 2007-04-04 18:55 - 00261480 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_7.dll
2015-05-16 21:45 - 2007-04-04 18:53 - 00081768 _____ (Microsoft Corporation) C:\WINDOWS\system32\xinput1_3.dll
2015-05-16 21:45 - 2007-03-15 16:57 - 00443752 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_33.dll
2015-05-16 21:45 - 2007-03-12 16:42 - 03495784 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_33.dll
2015-05-16 21:45 - 2007-03-12 16:42 - 01123696 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_33.dll
2015-05-16 21:45 - 2007-03-05 12:42 - 00015128 _____ (Microsoft Corporation) C:\WINDOWS\system32\x3daudio1_1.dll
2015-05-16 21:45 - 2007-01-24 15:27 - 00255848 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_6.dll
2015-05-16 21:45 - 2006-12-08 12:02 - 00251672 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_5.dll
2015-05-16 21:45 - 2006-11-29 13:06 - 03426072 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_32.dll
2015-05-16 21:45 - 2006-09-28 16:05 - 02414360 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_31.dll
2015-05-16 21:45 - 2006-09-28 16:05 - 00237848 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_4.dll
2015-05-16 21:45 - 2006-07-28 09:30 - 00236824 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_3.dll
2015-05-16 21:45 - 2006-07-28 09:30 - 00062744 _____ (Microsoft Corporation) C:\WINDOWS\system32\xinput1_2.dll
2015-05-16 21:45 - 2006-05-31 07:24 - 00230168 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_2.dll
2015-05-16 21:45 - 2006-03-31 12:40 - 02388176 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_30.dll
2015-05-16 21:45 - 2006-03-31 12:39 - 00229584 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_1.dll
2015-05-16 21:45 - 2006-03-31 12:39 - 00062672 _____ (Microsoft Corporation) C:\WINDOWS\system32\xinput1_1.dll
2015-05-16 21:45 - 2006-02-03 08:43 - 02332368 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_29.dll
2015-05-16 21:45 - 2006-02-03 08:42 - 00230096 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_0.dll
2015-05-16 21:45 - 2006-02-03 08:41 - 00014032 _____ (Microsoft Corporation) C:\WINDOWS\system32\x3daudio1_0.dll
2015-05-16 21:45 - 2005-12-05 18:09 - 02323664 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_28.dll
2015-05-16 21:45 - 2005-12-05 18:07 - 00061136 _____ (Microsoft Corporation) C:\WINDOWS\system32\xinput9_1_0.dll
2015-05-16 21:45 - 2005-07-22 19:59 - 02319568 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_27.dll
2015-05-16 21:45 - 2005-05-26 15:34 - 02297552 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_26.dll
2015-05-16 21:45 - 2005-03-18 17:19 - 02337488 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_25.dll
2015-05-16 21:45 - 2005-02-05 19:45 - 02222800 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_24.dll
2015-05-16 21:44 - 2015-05-16 21:44 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB942288-v3$
2015-05-16 20:48 - 2015-05-17 01:27 - 00000000 ____D () C:\Programme\Mozilla Firefox
2015-05-16 11:44 - 2015-05-19 13:05 - 00000226 _____ () C:\WINDOWS\Tasks\Ende des Supports für Microsoft Windows XP –  Benachrichtigung – Anmeldung.job
2015-05-16 11:44 - 2015-05-16 11:55 - 00000220 _____ () C:\WINDOWS\Tasks\Ende des Supports für Microsoft Windows XP – Monatliche Benachrichtigung.job
2015-05-16 10:57 - 2015-05-16 10:58 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2868626$
2015-05-16 10:57 - 2015-05-16 10:57 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB959426$
2015-05-16 10:57 - 2015-05-16 10:57 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB952954$
2015-05-16 10:57 - 2015-05-16 10:57 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB951376-v2$
2015-05-16 10:57 - 2015-05-16 10:57 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB946648$
2015-05-16 10:57 - 2015-05-16 10:57 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2922229$
2015-05-16 10:57 - 2015-05-16 10:57 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2712808$
2015-05-16 10:57 - 2015-05-16 10:57 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2387149$
2015-05-16 10:56 - 2015-05-16 10:56 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB960859$
2015-05-16 10:56 - 2015-05-16 10:56 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2659262$
2015-05-16 10:56 - 2015-05-16 10:56 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2564958$
2015-05-16 10:56 - 2015-05-16 10:56 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2479943$
2015-05-16 10:55 - 2015-05-16 10:55 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2934207$
2015-05-16 10:55 - 2015-05-16 10:55 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2916036$
2015-05-16 10:55 - 2015-05-16 10:55 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2478971$
2015-05-16 10:52 - 2015-05-16 10:52 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB923723$
2015-05-16 10:52 - 2015-05-16 10:52 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2834886$
2015-05-16 10:52 - 2015-05-16 10:52 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2631813$
2015-05-16 10:52 - 2015-05-16 10:52 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2585542$
2015-05-16 10:52 - 2015-05-16 10:52 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2544893-v2$
2015-05-16 10:52 - 2015-05-16 10:52 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2536276-v2$
2015-05-16 10:52 - 2015-05-16 10:52 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2296011$
2015-05-16 10:51 - 2015-05-16 10:52 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2691442$
2015-05-16 10:51 - 2015-05-16 10:51 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2900986$
2015-05-16 10:51 - 2015-05-16 10:51 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2115168$
2015-05-16 10:49 - 2015-05-16 10:49 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB975558_WM8$
2015-05-16 10:49 - 2015-05-16 10:49 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB955759$
2015-05-16 10:49 - 2015-05-16 10:49 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2847311$
2015-05-16 10:45 - 2015-05-16 10:45 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB974318$
2015-05-16 10:45 - 2015-05-16 10:45 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB969059$
2015-05-16 10:45 - 2015-05-16 10:45 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB951978$
2015-05-16 10:45 - 2015-05-16 10:45 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2378111_WM9$
2015-05-16 10:44 - 2015-05-16 10:44 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB950974$
2015-05-16 10:44 - 2015-05-16 10:44 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2898715$
2015-05-16 10:44 - 2015-05-16 10:44 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2834902-v2_WM10$
2015-05-16 10:44 - 2015-05-16 10:44 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2802968$
2015-05-16 10:44 - 2015-05-16 10:44 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2655992$
2015-05-16 10:44 - 2015-05-16 10:44 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2481109$
2015-05-16 10:44 - 2015-05-16 10:44 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2443105$
2015-05-16 10:44 - 2015-05-16 10:44 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2229593$
2015-05-16 10:43 - 2015-05-16 10:43 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB982132$
2015-05-16 10:43 - 2015-05-16 10:43 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB978338$
2015-05-16 10:43 - 2015-05-16 10:43 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB975713$
2015-05-16 10:43 - 2015-05-16 10:43 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB971657$
2015-05-16 10:43 - 2015-05-16 10:43 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB954155_WM9$
2015-05-16 10:43 - 2015-05-16 10:43 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2929961$
2015-05-16 10:43 - 2015-05-16 10:43 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2862335$
2015-05-16 10:43 - 2015-05-16 10:43 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2686509$
2015-05-16 10:43 - 2015-05-16 10:43 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2598479$
2015-05-16 10:43 - 2015-05-16 10:43 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2485663$
2015-05-16 10:42 - 2015-05-16 10:42 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB972270$
2015-05-16 10:42 - 2015-05-16 10:42 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2780091$
2015-05-16 10:42 - 2015-05-16 10:42 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2507938$
2015-05-16 10:40 - 2015-05-16 10:40 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB974112$
2015-05-16 10:40 - 2015-05-16 10:40 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB956572$
2015-05-16 10:39 - 2015-05-16 10:40 - 00006742 _____ () C:\WINDOWS\system32\TZLog.log
2015-05-16 10:39 - 2015-05-16 10:39 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB956844$
2015-05-16 10:39 - 2015-05-16 10:39 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2904266$
2015-05-16 10:39 - 2015-05-16 10:39 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2876217$
2015-05-16 10:39 - 2015-05-16 10:39 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2483185$
2015-05-16 10:39 - 2015-05-16 10:39 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2347290$
2015-05-16 10:35 - 2015-05-16 10:35 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB979687$
2015-05-16 10:35 - 2015-05-16 10:35 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB975025$
2015-05-16 10:35 - 2015-05-16 10:35 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB974571$
2015-05-16 10:35 - 2015-05-16 10:35 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB973869$
2015-05-16 10:35 - 2015-05-16 10:35 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB952004$
2015-05-16 10:35 - 2015-05-16 10:35 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2930275$
2015-05-16 10:35 - 2015-05-16 10:35 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2864063$
2015-05-16 10:35 - 2015-05-16 10:35 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2862152$
2015-05-16 10:35 - 2015-05-16 10:35 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2719985$
2015-05-16 10:34 - 2015-05-16 10:34 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB975560$
2015-05-16 10:34 - 2015-05-16 10:34 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2592799$
2015-05-16 10:31 - 2015-05-16 10:31 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB973507$
2015-05-16 10:30 - 2015-05-16 10:30 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB977816$
2015-05-16 10:30 - 2015-05-16 10:30 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB950762$
2015-05-16 10:30 - 2015-05-16 10:30 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB941569$
2015-05-16 10:30 - 2015-05-16 10:30 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2876331$
2015-05-16 10:30 - 2015-05-16 10:30 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2850869$
2015-05-16 10:30 - 2015-05-16 10:30 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2770660$
2015-05-16 10:30 - 2015-05-16 10:30 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2535512$
2015-05-16 10:29 - 2015-05-16 10:30 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2859537$
2015-05-16 10:29 - 2015-05-16 10:29 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2807986$
2015-05-16 10:29 - 2015-05-16 10:29 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2570947$
2015-05-16 10:25 - 2015-05-16 10:25 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB978695_WM9$
2015-05-16 10:25 - 2015-05-16 10:25 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB952287$
2015-05-16 10:25 - 2015-05-16 10:25 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2868038$
2015-05-16 10:25 - 2015-05-16 10:25 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2820917$
2015-05-16 10:23 - 2015-05-16 10:23 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB973904$
2015-05-16 10:23 - 2015-05-16 10:23 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2603381$
2015-05-16 10:22 - 2015-05-16 10:22 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB974392$
2015-05-16 10:22 - 2015-05-16 10:22 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB973540_WM9$
2015-05-16 10:22 - 2015-05-16 10:22 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2893294$
2015-05-16 10:22 - 2015-05-16 10:22 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2757638$
2015-05-16 10:22 - 2015-05-16 10:22 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2749655$
2015-05-16 10:22 - 2015-05-16 10:22 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2653956$
2015-05-16 10:22 - 2015-05-16 10:22 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2508429$
2015-05-16 10:22 - 2015-05-16 10:22 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2419632$
2015-05-16 10:21 - 2015-05-16 10:22 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB971029$
2015-05-16 10:21 - 2015-05-16 10:21 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB977914$
2015-05-16 10:21 - 2015-05-16 10:21 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB952069_WM9$
2015-05-16 10:21 - 2015-05-16 10:21 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2892075$
2015-05-16 10:21 - 2015-05-16 10:21 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2705219-v2$
2015-05-16 10:21 - 2015-05-16 10:21 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2698365$
2015-05-16 10:21 - 2015-05-16 10:21 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2619339$
2015-05-16 10:21 - 2015-05-16 10:21 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2506212$
2015-05-16 10:19 - 2015-05-16 10:19 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB979482$
2015-05-16 10:19 - 2015-05-16 10:19 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB979309$
2015-05-16 10:19 - 2015-05-16 10:19 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB978542$
2015-05-16 10:19 - 2015-05-16 10:19 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2727528$
2015-05-16 10:18 - 2015-05-16 10:18 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB981997$
2015-05-16 10:18 - 2015-05-16 10:18 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB978706$
2015-05-16 10:18 - 2015-05-16 10:18 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB973815$
2015-05-16 10:18 - 2015-05-16 10:18 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB960803$
2015-05-16 10:18 - 2015-05-16 10:18 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2862330$
2015-05-16 10:18 - 2015-05-16 10:18 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2813345$
2015-05-16 10:18 - 2015-05-16 10:18 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2723135-v2$
2015-05-16 10:18 - 2015-05-16 10:18 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2509553$
2015-05-16 10:17 - 2015-05-16 10:18 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2676562$
2015-05-16 10:15 - 2015-05-16 10:15 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB982665$
2015-05-16 10:12 - 2015-05-16 10:12 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2478960$
2015-05-16 10:12 - 2015-05-16 10:12 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2393802$
2015-05-16 10:11 - 2015-05-16 10:11 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB923561$
2015-05-16 10:11 - 2015-05-16 10:11 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2620712$
2015-05-16 10:11 - 2015-05-16 10:11 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2566454$
2015-05-16 10:10 - 2015-05-16 10:10 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2914368$
2015-05-16 10:10 - 2015-05-16 10:10 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2661637$
2015-05-16 10:09 - 2015-05-16 10:09 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2584146$
2015-05-16 10:07 - 2015-05-16 10:07 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB975467$
2015-05-16 10:06 - 2015-05-16 10:06 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB968389$
2015-05-16 10:05 - 2015-05-16 10:05 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2423089$
2015-05-16 10:04 - 2015-05-16 10:04 - 00000000 __SHD () C:\Dokumente und Einstellungen\NetworkService\IETldCache
2015-05-16 10:04 - 2015-05-16 10:04 - 00000000 __SHD () C:\Dokumente und Einstellungen\Martina\IETldCache
2015-05-16 10:02 - 2015-05-16 10:02 - 00000000 __SHD () C:\Dokumente und Einstellungen\LocalService\IETldCache
2015-05-16 10:00 - 2015-05-17 21:28 - 00199610 _____ () C:\Dokumente und Einstellungen\LocalService\Lokale Einstellungen\Anwendungsdaten\WPFFontCache_v0400-S-1-5-21-1310988380-3352743311-3678797310-1005-0.dat
2015-05-16 09:58 - 2015-05-16 21:58 - 00000000 ____D () C:\WINDOWS\ie8updates
2015-05-16 09:58 - 2015-05-16 09:58 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2467659$
2015-05-16 09:57 - 2015-05-16 10:00 - 00065536 _____ () C:\WINDOWS\system32\config\Internet.evt
2015-05-16 09:57 - 2015-05-16 09:57 - 00000000 __HDC () C:\WINDOWS\ie8
2015-05-16 09:46 - 2015-04-30 10:07 - 137310008 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2015-05-16 09:46 - 2014-03-06 19:58 - 00522240 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\jsdbgui.dll
2015-05-16 09:45 - 2014-03-06 19:58 - 11113472 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ieframe.dll
2015-05-16 09:45 - 2014-03-06 19:58 - 02006016 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\iertutil.dll
2015-05-16 09:45 - 2014-03-06 19:58 - 00743424 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\iedvtool.dll
2015-05-16 09:45 - 2014-03-06 19:58 - 00630272 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msfeeds.dll
2015-05-16 09:45 - 2014-03-06 19:58 - 00247808 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ieproxy.dll
2015-05-16 09:45 - 2014-03-06 19:58 - 00055296 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msfeedsbs.dll
2015-05-16 09:45 - 2014-03-06 19:58 - 00012800 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\xpshims.dll
2015-05-16 09:45 - 2011-08-16 12:45 - 00006144 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\iecompat.dll
2015-05-16 09:11 - 2008-06-14 19:32 - 00273024 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\bthport.sys
2015-05-16 09:07 - 2010-09-18 08:52 - 00954368 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mfc40.dll
2015-05-16 09:07 - 2010-09-18 08:52 - 00953856 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mfc40u.dll
2015-05-16 09:04 - 2014-02-27 01:28 - 00013312 ____N (Microsoft Corporation) C:\WINDOWS\system32\xp_eos.exe
2015-05-16 09:04 - 2014-02-27 01:28 - 00013312 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\xp_eos.exe
2015-05-16 09:02 - 2011-07-15 15:29 - 00456320 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mrxsmb.sys
2015-05-16 09:01 - 2010-08-23 18:11 - 00617472 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\comctl32.dll
2015-05-16 08:59 - 2009-11-21 17:54 - 00471552 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\aclayers.dll
2015-05-16 08:54 - 2013-07-03 04:12 - 00025088 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\hidparse.sys
2015-05-16 08:54 - 2013-07-03 03:59 - 00014976 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\usbscan.sys
2015-05-16 08:54 - 2010-06-14 16:31 - 00744448 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\helpsvc.exe
2015-05-16 08:53 - 2010-08-27 10:01 - 00119808 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\t2embed.dll
2015-05-16 08:53 - 2009-10-15 18:28 - 00081920 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fontsub.dll
2015-05-16 08:51 - 2009-03-06 16:19 - 00286720 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\pdh.dll
2015-05-16 08:51 - 2009-02-09 13:21 - 00111104 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\services.exe
2015-05-16 08:51 - 2009-02-09 12:51 - 00678400 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\advapi32.dll
2015-05-16 08:51 - 2009-02-09 12:51 - 00473600 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fastprox.dll
2015-05-16 08:51 - 2009-02-09 12:51 - 00453120 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wmiprvsd.dll
2015-05-16 08:51 - 2009-02-09 12:51 - 00401408 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\rpcss.dll
2015-05-16 08:51 - 2009-02-06 12:39 - 00035328 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\sc.exe
2015-05-16 08:51 - 2009-02-06 12:10 - 00227840 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wmiprvse.exe
2015-05-16 08:50 - 2009-06-21 23:45 - 00153088 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\triedit.dll
2015-05-16 08:43 - 2009-07-28 00:24 - 00128512 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\dhtmled.ocx
2015-05-16 08:40 - 2011-04-21 15:37 - 00105472 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mup.sys
2015-05-16 08:40 - 2008-05-08 16:02 - 00203136 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\rmcast.sys
2015-05-16 08:39 - 2013-02-12 02:32 - 00012928 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\usb8023x.sys
2015-05-16 08:39 - 2013-02-12 02:32 - 00012928 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\usb8023.sys
2015-05-16 08:34 - 2013-07-17 02:58 - 00123008 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\usbvideo.sys
2015-05-16 08:34 - 2013-07-17 02:58 - 00060160 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\usbaudio.sys
2015-05-16 08:34 - 2013-07-17 02:58 - 00046848 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\irbus.sys
2015-05-16 08:34 - 2008-05-01 16:34 - 00331776 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msadce.dll
2015-05-16 08:27 - 2012-05-28 20:16 - 00536576 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msado15.dll
2015-05-16 08:25 - 2015-05-16 08:25 - 00000000 ____D () C:\Dokumente und Einstellungen\Martina\Lokale Einstellungen\Anwendungsdaten\Mozilla
2015-05-16 08:25 - 2015-05-16 08:25 - 00000000 ____D () C:\Dokumente und Einstellungen\Martina\Anwendungsdaten\Mozilla
2015-05-16 08:24 - 2013-08-09 02:55 - 00144128 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\usbport.sys
2015-05-16 08:24 - 2013-08-09 02:55 - 00032384 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\usbccgp.sys
2015-05-16 08:24 - 2013-08-09 02:55 - 00005376 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\usbd.sys
2015-05-16 08:24 - 2012-07-04 16:05 - 00139784 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\rdpwd.sys
2015-05-16 08:24 - 2010-06-18 15:36 - 03558912 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\moviemk.exe
2015-05-16 08:24 - 2009-03-18 13:02 - 00030336 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\usbehci.sys
2015-05-16 08:21 - 2013-11-27 22:21 - 00040960 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ndproxy.sys
2015-05-16 08:21 - 2013-07-04 09:33 - 02195840 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ntoskrnl.exe
2015-05-16 08:21 - 2013-07-04 09:33 - 02152448 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ntkrnlmp.exe
2015-05-16 08:21 - 2013-07-04 09:33 - 02072448 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ntkrnlpa.exe
2015-05-16 08:21 - 2013-07-04 09:33 - 02031104 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ntkrpamp.exe
2015-05-16 08:21 - 2012-01-11 21:06 - 00003072 ____N () C:\WINDOWS\system32\iacenc.dll
2015-05-16 08:21 - 2012-01-11 21:06 - 00003072 ____N () C:\WINDOWS\system32\dllcache\iacenc.dll
2015-05-16 08:21 - 2011-07-08 16:02 - 00010496 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ndistapi.sys
2015-05-16 08:21 - 2010-12-09 17:15 - 00743936 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ntdll.dll
2015-05-16 08:21 - 2010-07-16 14:01 - 00220160 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wordpad.exe
2015-05-16 08:21 - 2009-11-21 17:54 - 01206508 ____N () C:\WINDOWS\system32\dllcache\sysmain.sdb
2015-05-16 08:20 - 2010-10-11 16:59 - 00045568 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wab.exe
2015-05-16 08:13 - 2015-05-16 08:13 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB898461$
2015-05-16 08:13 - 2015-05-16 08:13 - 00000000 ____D () C:\WINDOWS\system32\PreInstall
2015-05-16 01:16 - 2015-05-16 01:16 - 00000000 ____D () C:\Dokumente und Einstellungen\Martina\Anwendungsdaten\Avira
2015-05-16 01:16 - 2015-05-16 01:16 - 00000000 ____D () C:\Dokumente und Einstellungen\LocalService\Anwendungsdaten\Avira
2015-05-16 01:14 - 2015-04-16 15:23 - 00136216 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avipbb.sys
2015-05-16 01:14 - 2015-04-16 15:23 - 00107400 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avgntflt.sys
2015-05-16 01:14 - 2015-04-16 15:23 - 00037896 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avkmgr.sys
2015-05-16 01:14 - 2015-04-16 15:23 - 00028520 _____ (Avira GmbH) C:\WINDOWS\system32\Drivers\ssmdrv.sys
2015-05-16 01:03 - 2015-05-16 08:12 - 00000664 _____ () C:\WINDOWS\system32\d3d9caps.dat
2015-05-16 00:46 - 2015-05-18 19:24 - 00050584 _____ () C:\Dokumente und Einstellungen\Martina\Lokale Einstellungen\Anwendungsdaten\GDIPFONTCACHEV1.DAT
2015-05-16 00:45 - 2015-05-16 21:49 - 00000768 _____ () C:\Dokumente und Einstellungen\Martina\Startmenü\Programme\Windows Media Player.lnk
2015-05-16 00:43 - 2015-05-18 22:26 - 00000190 ___SH () C:\Dokumente und Einstellungen\Martina\ntuser.ini
2015-05-16 00:43 - 2015-05-18 22:26 - 00000000 ____D () C:\Dokumente und Einstellungen\Martina\Lokale Einstellungen\Temp
2015-05-16 00:43 - 2015-05-18 22:26 - 00000000 ____D () C:\Dokumente und Einstellungen\Martina
2015-05-16 00:43 - 2015-05-18 20:09 - 00203328 _____ () C:\WINDOWS\system32\FNTCACHE.DAT
2015-05-16 00:43 - 2015-05-16 21:49 - 00000000 ___RD () C:\Dokumente und Einstellungen\Martina\Startmenü\Programme
2015-05-16 00:43 - 2015-05-16 21:47 - 00000140 _____ () C:\Dokumente und Einstellungen\Martina\Lokale Einstellungen\Anwendungsdaten\fusioncache.dat
2015-05-16 00:43 - 2015-05-16 10:04 - 00000000 ___RD () C:\Dokumente und Einstellungen\Martina\Startmenü\Programme\Zubehör
2015-05-16 00:43 - 2015-05-16 10:04 - 00000000 ___RD () C:\Dokumente und Einstellungen\Martina\Eigene Dateien\Eigene Musik
2015-05-16 00:43 - 2015-05-16 10:04 - 00000000 ___RD () C:\Dokumente und Einstellungen\Martina\Eigene Dateien\Eigene Bilder
2015-05-16 00:43 - 2015-05-16 00:45 - 00000000 __SHD () C:\Dokumente und Einstellungen\Martina\Lokale Einstellungen\Verlauf
2015-05-16 00:43 - 2015-05-15 08:01 - 00000000 ___RD () C:\Dokumente und Einstellungen\Martina\Startmenü\Programme\Autostart
2015-05-16 00:43 - 2015-05-15 08:01 - 00000000 ___RD () C:\Dokumente und Einstellungen\Martina\Startmenü
2015-05-16 00:43 - 2015-05-15 08:01 - 00000000 ____D () C:\Dokumente und Einstellungen\Martina\Lokale Einstellungen\Anwendungsdaten\{3248F0A6-6813-11D6-A77B-00B0D0150060}
2015-05-16 00:43 - 2006-08-25 07:12 - 00000000 ___HD () C:\Dokumente und Einstellungen\Martina\Netzwerkumgebung
2015-05-16 00:43 - 2006-08-25 07:12 - 00000000 ___HD () C:\Dokumente und Einstellungen\Martina\Druckumgebung
2015-05-16 00:43 - 2006-08-25 07:12 - 00000000 ____D () C:\Dokumente und Einstellungen\Martina\Anwendungsdaten\SampleView
2015-05-16 00:43 - 2006-08-24 21:11 - 00000000 _____ () C:\Dokumente und Einstellungen\Martina\Lokale Einstellungen\Anwendungsdaten\QSwitch.txt
2015-05-16 00:43 - 2006-08-24 21:11 - 00000000 _____ () C:\Dokumente und Einstellungen\Martina\Lokale Einstellungen\Anwendungsdaten\DSwitch.txt
2015-05-16 00:43 - 2006-08-24 21:11 - 00000000 _____ () C:\Dokumente und Einstellungen\Martina\Lokale Einstellungen\Anwendungsdaten\AtStart.txt
2015-05-16 00:43 - 2006-08-24 20:52 - 00001491 _____ () C:\Dokumente und Einstellungen\Martina\Startmenü\Programme\Software Setup.lnk
2015-05-16 00:43 - 2004-08-07 07:53 - 00001503 _____ () C:\Dokumente und Einstellungen\Martina\Startmenü\Programme\Remoteunterstützung.lnk
2015-05-16 00:42 - 2015-05-18 22:27 - 00199582 _____ () C:\Dokumente und Einstellungen\LocalService\Lokale Einstellungen\Anwendungsdaten\WPFFontCache_v0400-System.dat
2015-05-16 00:42 - 2015-05-16 00:42 - 00417002 _____ () C:\Dokumente und Einstellungen\LocalService\Lokale Einstellungen\Anwendungsdaten\WPFFontCache_v0400-S-1-5-21-1310988380-3352743311-3678797310-500-0.dat
2015-05-15 23:53 - 2015-05-15 23:53 - 00000000 ____D () C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Powertoys for Windows XP
2015-05-15 23:53 - 2003-06-25 16:05 - 00266360 _____ (Microsoft Corporation) C:\WINDOWS\system32\TweakUI.exe
2015-05-15 23:38 - 2015-05-15 23:38 - 00000000 ____D () C:\Programme\MSECache
2015-05-15 23:35 - 2015-05-16 01:15 - 00000000 ____D () C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Avira
2015-05-15 23:35 - 2015-05-15 23:35 - 00000832 _____ () C:\Dokumente und Einstellungen\All Users\Desktop\Avira.lnk
2015-05-15 23:31 - 2015-05-16 00:02 - 00050584 _____ () C:\Dokumente und Einstellungen\Administrator\Lokale Einstellungen\Anwendungsdaten\GDIPFONTCACHEV1.DAT
2015-05-15 23:27 - 2015-05-15 23:27 - 00000400 _____ () C:\WINDOWS\ODBC.INI
2015-05-15 23:26 - 2015-05-15 23:26 - 00000000 ____D () C:\Programme\Gemeinsame Dateien\DESIGNER
2015-05-15 23:26 - 2015-05-15 23:26 - 00000000 ____D () C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Microsoft Office
2015-05-15 23:26 - 2007-04-09 13:23 - 00028040 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdimon.dll
2015-05-15 23:25 - 2015-05-15 23:38 - 00000000 ____D () C:\Programme\Microsoft Office
2015-05-15 23:25 - 2015-05-15 23:26 - 00000000 ____D () C:\WINDOWS\SHELLNEW
2015-05-15 23:12 - 2015-05-15 23:12 - 00000000 __RHD () C:\MSOCache
2015-05-15 23:08 - 2015-05-15 23:08 - 00000020 _____ () C:\WINDOWS\system32\d.scf
2015-05-15 23:08 - 2015-05-15 23:08 - 00000000 __RSH () C:\MSDOS.SYS
2015-05-15 23:08 - 2015-05-15 23:08 - 00000000 __RSH () C:\IO.SYS
2015-05-15 23:06 - 2015-05-15 23:06 - 00000000 ____D () C:\Dokumente und Einstellungen\Administrator\Registry_Change
2015-05-15 22:56 - 2015-05-19 13:05 - 00000280 _____ () C:\WINDOWS\Tasks\Driver Booster Update.job
2015-05-15 22:56 - 2015-05-15 22:59 - 00000278 _____ () C:\WINDOWS\Tasks\Driver Booster Scan.job
2015-05-15 22:56 - 2015-05-15 22:56 - 00023840 _____ (REALiX(tm)) C:\WINDOWS\system32\Drivers\HWiNFO32.SYS
2015-05-15 22:56 - 2015-05-15 22:56 - 00001749 _____ () C:\Dokumente und Einstellungen\All Users\Desktop\Driver Booster 2.lnk
2015-05-15 22:56 - 2015-05-15 22:56 - 00000000 ____D () C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Driver Booster 2
2015-05-15 22:56 - 2015-05-15 22:56 - 00000000 ____D () C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\ProductData
2015-05-15 22:56 - 2015-05-15 22:56 - 00000000 ____D () C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\IObit
2015-05-15 22:56 - 2015-05-15 22:56 - 00000000 ____D () C:\Dokumente und Einstellungen\Administrator\Anwendungsdaten\IObit
2015-05-15 22:55 - 2015-05-15 22:55 - 00000000 ____D () C:\Programme\IObit
2015-05-15 22:52 - 2015-05-15 22:52 - 00000731 _____ () C:\Dokumente und Einstellungen\All Users\Desktop\Picasa 3.lnk
2015-05-15 22:51 - 2015-05-15 22:51 - 00000000 ____D () C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Picasa 3
2015-05-15 22:51 - 2015-05-15 22:51 - 00000000 ____D () C:\Dokumente und Einstellungen\Administrator\Anwendungsdaten\vlc
2015-05-15 22:50 - 2015-05-15 22:50 - 00000691 _____ () C:\Dokumente und Einstellungen\All Users\Desktop\VLC media player.lnk
2015-05-15 22:50 - 2015-05-15 22:50 - 00000000 ____D () C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\VideoLAN
2015-05-15 22:49 - 2015-05-15 22:49 - 00000000 ____D () C:\Programme\VideoLAN
2015-05-15 22:48 - 2015-05-15 22:48 - 00000000 ____D () C:\Dokumente und Einstellungen\Administrator\Lokale Einstellungen\Anwendungsdaten\Adobe
2015-05-15 22:19 - 2015-05-15 22:32 - 00000000 ____D () C:\Dokumente und Einstellungen\Administrator\Anwendungsdaten\U3
2015-05-15 22:14 - 2015-05-15 22:14 - 00001638 _____ () C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Mozilla Thunderbird.lnk
2015-05-15 22:14 - 2015-05-15 22:14 - 00001632 _____ () C:\Dokumente und Einstellungen\All Users\Desktop\Mozilla Thunderbird.lnk
2015-05-15 22:14 - 2015-05-15 22:14 - 00000000 ____D () C:\Dokumente und Einstellungen\Administrator\Lokale Einstellungen\Anwendungsdaten\Thunderbird
2015-05-15 22:14 - 2015-05-15 22:14 - 00000000 ____D () C:\Dokumente und Einstellungen\Administrator\Anwendungsdaten\Thunderbird
2015-05-15 22:13 - 2015-05-15 22:14 - 00000000 ____D () C:\Programme\Mozilla Thunderbird
2015-05-15 21:52 - 2015-05-15 23:25 - 00000000 ____D () C:\Programme\Microsoft.NET
2015-05-15 21:05 - 2015-05-15 21:06 - 00000000 ____D () C:\AdwCleaner
2015-05-15 21:04 - 2015-05-17 09:07 - 00000000 ____D () C:\Programme\Mozilla Maintenance Service
2015-05-15 21:04 - 2015-05-15 21:05 - 00000000 ____D () C:\Dokumente und Einstellungen\Administrator\Anwendungsdaten\Mozilla
2015-05-15 21:04 - 2015-05-15 21:04 - 00000702 _____ () C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Mozilla Firefox.lnk
2015-05-15 21:04 - 2015-05-15 21:04 - 00000696 _____ () C:\Dokumente und Einstellungen\All Users\Desktop\Mozilla Firefox.lnk
2015-05-15 21:04 - 2015-05-15 21:04 - 00000000 ____D () C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Mozilla
2015-05-15 21:04 - 2015-05-15 21:04 - 00000000 ____D () C:\Dokumente und Einstellungen\Administrator\Lokale Einstellungen\Anwendungsdaten\Mozilla
2015-05-15 21:01 - 2015-05-15 21:01 - 00000000 ____D () C:\Dokumente und Einstellungen\Administrator\Lokale Einstellungen\Anwendungsdaten\Help
2015-05-15 21:01 - 2015-05-15 21:01 - 00000000 ____D () C:\Dokumente und Einstellungen\Administrator\Anwendungsdaten\Help
2015-05-15 20:26 - 2015-05-16 01:13 - 00000000 ____D () C:\Programme\Avira
2015-05-15 20:26 - 2015-05-16 01:13 - 00000000 ____D () C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Avira
2015-05-15 08:57 - 2015-05-15 08:57 - 00000654 _____ () C:\Dokumente und Einstellungen\All Users\Desktop\CCleaner.lnk
2015-05-15 08:57 - 2015-05-15 08:57 - 00000000 ____D () C:\Programme\CCleaner
2015-05-15 08:57 - 2015-05-15 08:57 - 00000000 ____D () C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\CCleaner
2015-05-15 08:55 - 2015-05-15 22:53 - 00001919 _____ () C:\WINDOWS\epplauncher.mif
2015-05-15 08:26 - 2015-05-15 08:26 - 00000060 _____ () C:\WINDOWS\system32\SYSDRV.DAT
2015-05-15 08:25 - 2015-05-15 08:25 - 00000000 ____D () C:\WINDOWS\i386
2015-05-15 08:24 - 2015-05-16 00:43 - 00000000 ____D () C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Package Cache
2015-05-15 08:22 - 2015-05-15 08:22 - 00000090 _____ () C:\WINDOWS\system32\spupdwxp.log
2015-05-15 00:48 - 2015-05-16 21:49 - 00000000 ____D () C:\WINDOWS\system32\de-de
2015-05-15 00:48 - 2015-05-15 00:48 - 00000000 ____D () C:\WINDOWS\system32\de
2015-05-15 00:48 - 2015-05-15 00:48 - 00000000 ____D () C:\WINDOWS\system32\bits
2015-05-15 00:48 - 2015-05-15 00:48 - 00000000 ____D () C:\WINDOWS\l2schemas
2015-05-15 00:48 - 2013-11-13 03:13 - 00046080 ____N (Microsoft Corporation) C:\WINDOWS\system32\tzchange.exe
2015-05-15 00:48 - 2013-07-17 02:58 - 00046848 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\irbus.sys
2015-05-15 00:48 - 2013-02-27 07:31 - 00131072 ____N (Microsoft Corporation) C:\WINDOWS\system32\aaclient.dll
2015-05-15 00:48 - 2013-02-27 07:31 - 00036864 ____N (Microsoft Corporation) C:\WINDOWS\system32\tsgqec.dll
2015-05-15 00:48 - 2012-11-06 04:01 - 01371648 ____N (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll
2015-05-15 00:48 - 2012-11-06 04:01 - 01371648 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msxml6.dll
2015-05-15 00:48 - 2009-01-07 18:21 - 00121856 _____ (Microsoft Corporation) C:\WINDOWS\system32\xmllite.dll
2015-05-15 00:48 - 2008-04-14 07:53 - 00073796 ____N (Smart Link) C:\WINDOWS\system32\slserv.exe
2015-05-15 00:48 - 2008-04-14 07:53 - 00032866 ____N (Smart Link) C:\WINDOWS\system32\slrundll.exe
2015-05-15 00:48 - 2008-04-14 07:53 - 00032866 ____N (Smart Link) C:\WINDOWS\slrundll.exe
2015-05-15 00:48 - 2008-04-14 07:53 - 00032768 ____N (Microsoft Corporation) C:\WINDOWS\system32\setupn.exe
2015-05-15 00:48 - 2008-04-14 07:53 - 00028672 ____N (Microsoft Corporation) C:\WINDOWS\system32\vidcap.ax
2015-05-15 00:48 - 2008-04-14 07:53 - 00028672 ____N (Microsoft Corporation) C:\WINDOWS\system32\verclsid.exe
2015-05-15 00:48 - 2008-04-14 07:53 - 00023040 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\ativmvxx.ax
2015-05-15 00:48 - 2008-04-14 07:53 - 00009728 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\ativdaxx.ax
2015-05-15 00:48 - 2008-04-14 07:52 - 04274816 ____N (NVIDIA Corporation) C:\WINDOWS\system32\nv4_disp.dll
2015-05-15 00:48 - 2008-04-14 07:52 - 01888992 ____N (ATI Technologies Inc. ) C:\WINDOWS\system32\ati3duag.dll
2015-05-15 00:48 - 2008-04-14 07:52 - 01737856 ____N (Matrox Graphics Inc.) C:\WINDOWS\system32\mtxparhd.dll
2015-05-15 00:48 - 2008-04-14 07:52 - 00870784 ____N (ATI Technologies Inc. ) C:\WINDOWS\system32\ati3d1ag.dll
2015-05-15 00:48 - 2008-04-14 07:52 - 00712704 ____N (Microsoft Corporation) C:\WINDOWS\system32\windowscodecs.dll
2015-05-15 00:48 - 2008-04-14 07:52 - 00651264 ____N (Microsoft Corporation) C:\WINDOWS\system32\dot3ui.dll
2015-05-15 00:48 - 2008-04-14 07:52 - 00516768 ____N (ATI Technologies Inc. ) C:\WINDOWS\system32\ativvaxx.dll
2015-05-15 00:48 - 2008-04-14 07:52 - 00412160 ____N (Microsoft Corporation) C:\WINDOWS\system32\photometadatahandler.dll
2015-05-15 00:48 - 2008-04-14 07:52 - 00397312 ____N (Microsoft Corporation) C:\WINDOWS\system32\mmcex.dll
2015-05-15 00:48 - 2008-04-14 07:52 - 00397056 ____N (S3 Graphics, Inc.) C:\WINDOWS\system32\s3gnb.dll
2015-05-15 00:48 - 2008-04-14 07:52 - 00377984 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\ati2dvaa.dll
2015-05-15 00:48 - 2008-04-14 07:52 - 00346112 ____N (Microsoft Corporation) C:\WINDOWS\system32\windowscodecsext.dll
2015-05-15 00:48 - 2008-04-14 07:52 - 00294400 ____N (Microsoft Corporation) C:\WINDOWS\system32\qagentrt.dll
2015-05-15 00:48 - 2008-04-14 07:52 - 00290304 ____N (Microsoft Corporation) C:\WINDOWS\system32\rhttpaa.dll
2015-05-15 00:48 - 2008-04-14 07:52 - 00286792 ____N (Smart Link) C:\WINDOWS\system32\slextspk.dll
2015-05-15 00:48 - 2008-04-14 07:52 - 00276992 ____N (Microsoft Corporation) C:\WINDOWS\system32\wmphoto.dll
2015-05-15 00:48 - 2008-04-14 07:52 - 00233472 ____N (Microsoft Corporation) C:\WINDOWS\system32\azroles.dll
2015-05-15 00:48 - 2008-04-14 07:52 - 00229376 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\ati2cqag.dll
2015-05-15 00:48 - 2008-04-14 07:52 - 00201728 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\ati2dvag.dll
2015-05-15 00:48 - 2008-04-14 07:52 - 00198656 ____N (Microsoft Corporation) C:\WINDOWS\system32\napmontr.dll
2015-05-15 00:48 - 2008-04-14 07:52 - 00188508 ____N (Smart Link) C:\WINDOWS\system32\slgen.dll
2015-05-15 00:48 - 2008-04-14 07:52 - 00184832 ____N (Microsoft Corporation) C:\WINDOWS\system32\eapp3hst.dll
2015-05-15 00:48 - 2008-04-14 07:52 - 00184320 ____N (Microsoft Corporation) C:\WINDOWS\system32\microsoft.managementconsole.dll
2015-05-15 00:48 - 2008-04-14 07:52 - 00182272 ____N (Microsoft Corporation) C:\WINDOWS\system32\eapphost.dll
2015-05-15 00:48 - 2008-04-14 07:52 - 00177664 ____N (Microsoft Corporation) C:\WINDOWS\system32\napstat.exe
2015-05-15 00:48 - 2008-04-14 07:52 - 00155136 ____N (Microsoft Corporation) C:\WINDOWS\system32\mssha.dll
2015-05-15 00:48 - 2008-04-14 07:52 - 00151040 ____N (Microsoft Corporation) C:\WINDOWS\system32\qagent.dll
2015-05-15 00:48 - 2008-04-14 07:52 - 00145408 ____N (Microsoft Corporation) C:\WINDOWS\system32\onex.dll
2015-05-15 00:48 - 2008-04-14 07:52 - 00133120 ____N (Microsoft Corporation) C:\WINDOWS\system32\dot3svc.dll
2015-05-15 00:48 - 2008-04-14 07:52 - 00126976 ____N (Microsoft Corporation) C:\WINDOWS\system32\eappcfg.dll
2015-05-15 00:48 - 2008-04-14 07:52 - 00106496 ____N (Microsoft Corporation) C:\WINDOWS\system32\mmcfxcommon.dll
2015-05-15 00:48 - 2008-04-14 07:52 - 00095232 ____N (Microsoft Corporation) C:\WINDOWS\system32\eappgnui.dll
2015-05-15 00:48 - 2008-04-14 07:52 - 00086016 ____N (Conexant) C:\WINDOWS\system32\mdmxsdk.dll
2015-05-15 00:48 - 2008-04-14 07:52 - 00076800 ____N (Microsoft Corporation) C:\WINDOWS\system32\qutil.dll
2015-05-15 00:48 - 2008-04-14 07:52 - 00073832 ____N (Smart Link) C:\WINDOWS\system32\slcoinst.dll
2015-05-15 00:48 - 2008-04-14 07:52 - 00069120 ____N (Microsoft Corporation) C:\WINDOWS\system32\wlanapi.dll
2015-05-15 00:48 - 2008-04-14 07:52 - 00062976 ____N (Microsoft Corporation) C:\WINDOWS\system32\dot3cfg.dll
2015-05-15 00:48 - 2008-04-14 07:52 - 00062464 ____N (Microsoft Corporation) C:\WINDOWS\system32\qcliprov.dll
2015-05-15 00:48 - 2008-04-14 07:52 - 00061952 ____N (Microsoft Corporation) C:\WINDOWS\system32\rasqec.dll
2015-05-15 00:48 - 2008-04-14 07:52 - 00061440 ____N (Microsoft Corporation) C:\WINDOWS\system32\kmsvc.dll
2015-05-15 00:48 - 2008-04-14 07:52 - 00059392 ____N (Microsoft Corporation) C:\WINDOWS\system32\eapqec.dll
2015-05-15 00:48 - 2008-04-14 07:52 - 00056832 ____N (Microsoft Corporation) C:\WINDOWS\system32\dot3msm.dll
2015-05-15 00:48 - 2008-04-14 07:52 - 00050688 ____N (Microsoft Corporation) C:\WINDOWS\system32\tspkg.dll
2015-05-15 00:48 - 2008-04-14 07:52 - 00048640 ____N (Microsoft Corporation) C:\WINDOWS\system32\dhcpqec.dll
2015-05-15 00:48 - 2008-04-14 07:52 - 00040960 ____N (Microsoft Corporation) C:\WINDOWS\system32\eappprxy.dll
2015-05-15 00:48 - 2008-04-14 07:52 - 00039936 ____N (Microsoft Corporation) C:\WINDOWS\system32\dot3gpclnt.dll
2015-05-15 00:48 - 2008-04-14 07:52 - 00039936 ____N (Microsoft Corporation) C:\WINDOWS\system32\dimsroam.dll
2015-05-15 00:48 - 2008-04-14 07:52 - 00037376 ____N (Microsoft Corporation) C:\WINDOWS\system32\l2gpstore.dll
2015-05-15 00:48 - 2008-04-14 07:52 - 00033792 ____N (Microsoft Corporation) C:\WINDOWS\system32\mmcperf.exe
2015-05-15 00:48 - 2008-04-14 07:52 - 00033792 ____N (Microsoft Corporation) C:\WINDOWS\system32\eapsvc.dll
2015-05-15 00:48 - 2008-04-14 07:52 - 00032768 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\ativtmxx.dll
2015-05-15 00:48 - 2008-04-14 07:52 - 00032285 ____N (Conexant Systems, Inc.) C:\WINDOWS\system32\hsfcisp2.dll
2015-05-15 00:48 - 2008-04-14 07:52 - 00030720 ____N (Microsoft Corporation) C:\WINDOWS\system32\eapolqec.dll
2015-05-15 00:48 - 2008-04-14 07:52 - 00030208 ____N (Microsoft Corporation) C:\WINDOWS\system32\napipsec.dll
2015-05-15 00:48 - 2008-04-14 07:52 - 00026112 ____N (Microsoft Corporation) C:\WINDOWS\system32\dot3api.dll
2015-05-15 00:48 - 2008-04-14 07:52 - 00019456 ____N (Microsoft Corporation) C:\WINDOWS\system32\dimsntfy.dll
2015-05-15 00:48 - 2008-04-14 07:52 - 00012800 ____N (Microsoft Corporation) C:\WINDOWS\system32\credssp.dll
2015-05-15 00:48 - 2008-04-14 07:52 - 00009216 ____N (Microsoft Corporation) C:\WINDOWS\system32\dot3dlg.dll
2015-05-15 00:48 - 2008-04-14 07:52 - 00007168 ____N (Microsoft Corporation) C:\WINDOWS\system32\bitsprx4.dll
2015-05-15 00:48 - 2008-04-14 07:50 - 00006144 ____N (Microsoft Corporation) C:\WINDOWS\system32\kbdpash.dll
2015-05-15 00:48 - 2008-04-14 07:50 - 00006144 ____N (Microsoft Corporation) C:\WINDOWS\system32\kbdnepr.dll
2015-05-15 00:48 - 2008-04-14 07:50 - 00006144 ____N (Microsoft Corporation) C:\WINDOWS\system32\kbdiultn.dll
2015-05-15 00:48 - 2008-04-14 07:50 - 00006144 ____N (Microsoft Corporation) C:\WINDOWS\system32\kbdbhc.dll
2015-05-15 00:48 - 2008-04-14 07:27 - 00093184 ____N (Microsoft Corporation) C:\WINDOWS\system32\msxml6r.dll
2015-05-15 00:48 - 2008-04-14 07:27 - 00093184 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msxml6r.dll
2015-05-15 00:48 - 2008-04-14 07:26 - 00081408 ____N (Microsoft Corporation) C:\WINDOWS\system32\msshavmsg.dll
2015-05-15 00:48 - 2008-04-14 00:13 - 00009728 ____N (Microsoft Corporation) C:\WINDOWS\system32\comsdupd.exe
2015-05-15 00:43 - 2015-05-15 00:43 - 00000000 ____D () C:\WINDOWS\ServicePackFiles
2015-05-15 00:39 - 2013-07-17 02:58 - 00123008 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbvideo.sys
2015-05-15 00:39 - 2013-02-12 02:32 - 00012928 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usb8023x.sys
2015-05-15 00:39 - 2008-06-14 19:32 - 00273024 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys
2015-05-15 00:39 - 2008-04-14 07:52 - 00025471 ____N (Intel(R) Corporation) C:\WINDOWS\system32\Drivers\atv04nt5.dll
2015-05-15 00:39 - 2008-04-14 07:52 - 00021183 ____N (Intel(R) Corporation) C:\WINDOWS\system32\Drivers\atv01nt5.dll
2015-05-15 00:39 - 2008-04-14 07:52 - 00017279 ____N (Intel(R) Corporation) C:\WINDOWS\system32\Drivers\atv10nt5.dll
2015-05-15 00:39 - 2008-04-14 07:52 - 00015423 ____N (Intel(R) Corporation) C:\WINDOWS\system32\Drivers\ch7xxnt5.dll
2015-05-15 00:39 - 2008-04-14 07:52 - 00014143 ____N (Intel(R) Corporation) C:\WINDOWS\system32\Drivers\atv06nt5.dll
2015-05-15 00:39 - 2008-04-14 07:52 - 00011359 ____N (Intel(R) Corporation) C:\WINDOWS\system32\Drivers\atv02nt5.dll
2015-05-15 00:39 - 2008-04-14 07:52 - 00011325 ____N (Intel(R) Corporation) C:\WINDOWS\system32\Drivers\vchnt5.dll
2015-05-15 00:39 - 2008-04-14 07:52 - 00004255 ____N (Intel(R) Corporation) C:\WINDOWS\system32\Drivers\adv01nt5.dll
2015-05-15 00:39 - 2008-04-14 07:52 - 00003967 ____N (Intel(R) Corporation) C:\WINDOWS\system32\Drivers\adv02nt5.dll
2015-05-15 00:39 - 2008-04-14 07:52 - 00003901 ____N (Intel(R) Corporation) C:\WINDOWS\system32\Drivers\siint5.dll
2015-05-15 00:39 - 2008-04-14 07:52 - 00003775 ____N (Intel(R) Corporation) C:\WINDOWS\system32\Drivers\adv11nt5.dll
2015-05-15 00:39 - 2008-04-14 07:52 - 00003711 ____N (Intel(R) Corporation) C:\WINDOWS\system32\Drivers\adv09nt5.dll
2015-05-15 00:39 - 2008-04-14 07:52 - 00003647 ____N (Intel(R) Corporation) C:\WINDOWS\system32\Drivers\adv07nt5.dll
2015-05-15 00:39 - 2008-04-14 07:52 - 00003615 ____N (Intel(R) Corporation) C:\WINDOWS\system32\Drivers\adv05nt5.dll
2015-05-15 00:39 - 2008-04-14 07:52 - 00003135 ____N (Intel(R) Corporation) C:\WINDOWS\system32\Drivers\adv08nt5.dll
2015-05-15 00:39 - 2008-04-14 07:24 - 00025856 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidbth.sys
2015-05-15 00:39 - 2008-04-14 07:21 - 00701952 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\ati2mtag.sys
2015-05-15 00:39 - 2008-04-14 07:21 - 00327168 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\ati2mtaa.sys
2015-05-15 00:39 - 2008-04-14 00:26 - 00030592 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rndismpx.sys
2015-05-15 00:39 - 2008-04-14 00:21 - 00101120 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthpan.sys
2015-05-15 00:39 - 2008-04-14 00:16 - 00059136 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rfcomm.sys
2015-05-15 00:39 - 2008-04-14 00:16 - 00037888 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthmodem.sys
2015-05-15 00:39 - 2008-04-14 00:16 - 00036480 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthprint.sys
2015-05-15 00:39 - 2008-04-14 00:16 - 00018944 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthusb.sys
2015-05-15 00:39 - 2008-04-14 00:16 - 00017024 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthenum.sys
2015-05-15 00:39 - 2008-04-14 00:15 - 00019200 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidir.sys
2015-05-15 00:39 - 2008-04-14 00:13 - 00014208 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wacompen.sys
2015-05-15 00:39 - 2008-04-14 00:13 - 00012672 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mutohpen.sys
2015-05-15 00:39 - 2008-04-14 00:06 - 00046464 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\gagp30kx.sys
2015-05-15 00:39 - 2008-04-14 00:06 - 00044928 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\agpcpq.sys
2015-05-15 00:39 - 2008-04-14 00:06 - 00044672 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\uagp35.sys
2015-05-15 00:39 - 2008-04-14 00:06 - 00043008 ____N (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\Drivers\amdagp.sys
2015-05-15 00:39 - 2008-04-14 00:06 - 00042752 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\alim1541.sys
2015-05-15 00:39 - 2008-04-14 00:06 - 00042368 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\agp440.sys
2015-05-15 00:39 - 2008-04-14 00:06 - 00042240 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\viaagp.sys
2015-05-15 00:39 - 2008-04-14 00:06 - 00040960 ____N (Silicon Integrated Systems Corporation) C:\WINDOWS\system32\Drivers\sisagp.sys
2015-05-15 00:39 - 2008-04-14 00:06 - 00005888 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\smbali.sys
2015-05-15 00:39 - 2008-04-13 23:53 - 01309184 ____N (Smart Link) C:\WINDOWS\system32\Drivers\mtlstrm.sys
2015-05-15 00:39 - 2008-04-13 23:53 - 01041536 ____N (Conexant Systems, Inc.) C:\WINDOWS\system32\Drivers\hsfdpsp2.sys
2015-05-15 00:39 - 2008-04-13 23:53 - 00685056 ____N (Conexant Systems, Inc.) C:\WINDOWS\system32\Drivers\hsfcxts2.sys
2015-05-15 00:39 - 2008-04-13 23:53 - 00404990 ____N (Smart Link) C:\WINDOWS\system32\Drivers\slntamr.sys
2015-05-15 00:39 - 2008-04-13 23:53 - 00220032 ____N (Conexant Systems, Inc.) C:\WINDOWS\system32\Drivers\hsfbs2s2.sys
2015-05-15 00:39 - 2008-04-13 23:53 - 00180360 ____N (Smart Link) C:\WINDOWS\system32\Drivers\ntmtlfax.sys
2015-05-15 00:39 - 2008-04-13 23:53 - 00129535 ____N (Smart Link) C:\WINDOWS\system32\Drivers\slnt7554.sys
2015-05-15 00:39 - 2008-04-13 23:53 - 00126686 ____N (Smart Link) C:\WINDOWS\system32\Drivers\mtlmnt5.sys
2015-05-15 00:39 - 2008-04-13 23:53 - 00095424 ____N (Smart Link) C:\WINDOWS\system32\Drivers\slnthal.sys
2015-05-15 00:39 - 2008-04-13 23:53 - 00013776 ____N (Smart Link) C:\WINDOWS\system32\Drivers\recagent.sys
2015-05-15 00:39 - 2008-04-13 23:53 - 00013240 ____N (Smart Link) C:\WINDOWS\system32\Drivers\slwdmsup.sys
2015-05-15 00:39 - 2008-04-13 23:53 - 00011868 ____N (Conexant) C:\WINDOWS\system32\Drivers\mdmxsdk.sys
2015-05-15 00:39 - 2008-04-13 22:04 - 01897408 ____N (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nv4_mini.sys
2015-05-15 00:39 - 2008-04-13 22:04 - 00452736 ____N (Matrox Graphics Inc.) C:\WINDOWS\system32\Drivers\mtxparhm.sys
2015-05-15 00:39 - 2008-04-13 22:04 - 00166912 ____N (S3 Graphics, Inc.) C:\WINDOWS\system32\Drivers\s3gnbm.sys
2015-05-15 00:39 - 2008-04-13 22:04 - 00104960 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\atinrvxx.sys
2015-05-15 00:39 - 2008-04-13 22:04 - 00073216 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\atintuxx.sys
2015-05-15 00:39 - 2008-04-13 22:04 - 00063663 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\ati1rvxx.sys
2015-05-15 00:39 - 2008-04-13 22:04 - 00063488 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\atinxsxx.sys
2015-05-15 00:39 - 2008-04-13 22:04 - 00057856 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\atinbtxx.sys
2015-05-15 00:39 - 2008-04-13 22:04 - 00056623 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\ati1btxx.sys
2015-05-15 00:39 - 2008-04-13 22:04 - 00052224 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\atinraxx.sys
2015-05-15 00:39 - 2008-04-13 22:04 - 00036463 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\ati1tuxx.sys
2015-05-15 00:39 - 2008-04-13 22:04 - 00034735 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\ati1xsxx.sys
2015-05-15 00:39 - 2008-04-13 22:04 - 00031744 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\atinxbxx.sys
2015-05-15 00:39 - 2008-04-13 22:04 - 00030671 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\ati1raxx.sys
2015-05-15 00:39 - 2008-04-13 22:04 - 00029455 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\ati1xbxx.sys
2015-05-15 00:39 - 2008-04-13 22:04 - 00028672 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\atinsnxx.sys
2015-05-15 00:39 - 2008-04-13 22:04 - 00026367 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\ati1snxx.sys
2015-05-15 00:39 - 2008-04-13 22:04 - 00025471 ____N (Intel(R) Corporation) C:\WINDOWS\system32\Drivers\watv10nt.sys
2015-05-15 00:39 - 2008-04-13 22:04 - 00022271 ____N (Intel(R) Corporation) C:\WINDOWS\system32\Drivers\watv06nt.sys
2015-05-15 00:39 - 2008-04-13 22:04 - 00021343 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\ati1ttxx.sys
2015-05-15 00:39 - 2008-04-13 22:04 - 00014336 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\atinpdxx.sys
2015-05-15 00:39 - 2008-04-13 22:04 - 00013824 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\atinttxx.sys
2015-05-15 00:39 - 2008-04-13 22:04 - 00013824 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\atinmdxx.sys
2015-05-15 00:39 - 2008-04-13 22:04 - 00012047 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\ati1pdxx.sys
2015-05-15 00:39 - 2008-04-13 22:04 - 00011935 ____N (Intel(R) Corporation) C:\WINDOWS\system32\Drivers\wadv11nt.sys
2015-05-15 00:39 - 2008-04-13 22:04 - 00011871 ____N (Intel(R) Corporation) C:\WINDOWS\system32\Drivers\wadv09nt.sys
2015-05-15 00:39 - 2008-04-13 22:04 - 00011807 ____N (Intel(R) Corporation) C:\WINDOWS\system32\Drivers\wadv07nt.sys
2015-05-15 00:39 - 2008-04-13 22:04 - 00011615 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\ati1mdxx.sys
2015-05-15 00:39 - 2008-04-13 22:04 - 00011295 ____N (Intel(R) Corporation) C:\WINDOWS\system32\Drivers\wadv08nt.sys
2015-05-15 00:39 - 2007-04-02 21:36 - 00129045 ____N () C:\WINDOWS\system32\Drivers\cxthsfs2.cty
2015-05-15 00:39 - 2006-12-29 20:21 - 00064352 ____N () C:\WINDOWS\system32\Drivers\ativmc20.cod
2015-05-15 00:39 - 2006-12-29 20:02 - 00067866 ____N () C:\WINDOWS\system32\Drivers\netwlan5.img
2015-05-15 00:31 - 2015-05-15 00:36 - 00000000 __HDC () C:\WINDOWS\$NtServicePackUninstall$
2015-05-15 00:19 - 2015-05-15 00:19 - 00001420 _____ () C:\Dokumente und Einstellungen\Administrator\Desktop\malwarebytes_protokoll_150514.txt
2015-05-14 23:51 - 2015-05-17 13:41 - 00119512 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2015-05-14 23:51 - 2015-05-14 23:51 - 00000749 _____ () C:\Dokumente und Einstellungen\All Users\Desktop\ Malwarebytes Anti-Malware .lnk
2015-05-14 23:51 - 2015-05-14 23:51 - 00000000 ____D () C:\Programme\ Malwarebytes Anti-Malware 
2015-05-14 23:51 - 2015-05-14 23:51 - 00000000 ____D () C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Malwarebytes
2015-05-14 23:51 - 2015-04-14 09:37 - 00120024 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbamchameleon.sys
2015-05-14 23:51 - 2015-04-14 09:37 - 00023256 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbam.sys
2015-05-14 23:49 - 2008-04-14 00:15 - 00026368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbstor.sys
2015-05-14 23:45 - 2015-05-14 23:46 - 00000100 _____ () C:\WINDOWS\system32\LuResult.txt
2015-05-14 23:45 - 2015-05-14 23:45 - 00000100 _____ () C:\Dokumente und Einstellungen\Administrator\LuResult.txt
2015-05-14 23:41 - 2015-05-15 22:51 - 00000000 ____D () C:\Dokumente und Einstellungen\Administrator\Lokale Einstellungen\Anwendungsdaten\Google
2015-05-14 23:41 - 2015-05-14 23:41 - 00000000 ____D () C:\WINDOWS\system32\appmgmt
2015-05-14 23:35 - 2015-05-14 23:35 - 00000884 _____ () C:\Dokumente und Einstellungen\All Users\Startmenü\Bluetooth-Umgebung.lnk
2015-05-14 23:34 - 2015-05-15 22:51 - 00000000 ____D () C:\Programme\Google
2015-05-14 23:34 - 2015-05-14 23:34 - 00000000 ____D () C:\Programme\WIDCOMM
2015-05-14 23:33 - 2015-05-14 23:33 - 00000000 ____D () C:\WINDOWS\tiinst
2015-05-14 23:33 - 2015-05-14 23:33 - 00000000 ____D () C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\InterVideo WinDVD
2015-05-14 23:33 - 2002-11-21 10:57 - 00204800 _____ () C:\WINDOWS\system32\IVIresizeW7.dll
2015-05-14 23:33 - 2002-11-21 10:57 - 00200704 _____ () C:\WINDOWS\system32\IVIresizeA6.dll
2015-05-14 23:33 - 2002-11-21 10:57 - 00192512 _____ () C:\WINDOWS\system32\IVIresizeP6.dll
2015-05-14 23:33 - 2002-11-21 10:57 - 00192512 _____ () C:\WINDOWS\system32\IVIresizeM6.dll
2015-05-14 23:33 - 2002-11-21 10:57 - 00188416 _____ () C:\WINDOWS\system32\IVIresizePX.dll
2015-05-14 23:33 - 2002-11-21 10:57 - 00020480 _____ () C:\WINDOWS\system32\IVIresize.dll
2015-05-14 23:32 - 2015-05-14 23:32 - 00001815 __RSH () C:\WINDOWS\system32\Drivers\103C_HP_NTBK_HP Compaq nx6310 (RH342ET#ABD)_YN_0U_QCNU6492BF2_E404611044_46_I30AA_SHP_VKBC Version 58.12_B68YDU Ver. F.09_T060915_WXP2_L407_M1016_J80_7Intel_8Core2 T5500_91.66_#150514_N14E4170C_(RH342ET#ABD).MRK
2015-05-14 23:32 - 2015-05-14 23:32 - 00000000 ____D () C:\Programme\InterVideo
2015-05-14 23:30 - 2015-05-15 08:01 - 00000000 ___RD () C:\Dokumente und Einstellungen\Default User\Eigene Dateien\Eigene Musik
2015-05-14 23:30 - 2015-05-15 08:01 - 00000000 ___RD () C:\Dokumente und Einstellungen\Default User\Eigene Dateien\Eigene Bilder
2015-05-14 23:30 - 2015-05-15 08:01 - 00000000 ____D () C:\Dokumente und Einstellungen\Default User\Lokale Einstellungen\Anwendungsdaten\{3248F0A6-6813-11D6-A77B-00B0D0150060}
2015-05-14 23:30 - 2006-08-25 07:12 - 00000000 ____D () C:\Dokumente und Einstellungen\Default User\Anwendungsdaten\SampleView
2015-05-14 23:30 - 2006-08-24 21:17 - 00000190 ___SH () C:\Dokumente und Einstellungen\Default User\ntuser.ini
2015-05-14 23:30 - 2006-08-24 21:11 - 00000000 _____ () C:\Dokumente und Einstellungen\Default User\Lokale Einstellungen\Anwendungsdaten\QSwitch.txt
2015-05-14 23:30 - 2006-08-24 21:11 - 00000000 _____ () C:\Dokumente und Einstellungen\Default User\Lokale Einstellungen\Anwendungsdaten\DSwitch.txt
2015-05-14 23:30 - 2006-08-24 21:11 - 00000000 _____ () C:\Dokumente und Einstellungen\Default User\Lokale Einstellungen\Anwendungsdaten\AtStart.txt
2015-05-14 23:30 - 2006-08-24 20:52 - 00001491 _____ () C:\Dokumente und Einstellungen\Default User\Startmenü\Programme\Software Setup.lnk
2015-05-14 23:30 - 2006-08-24 20:41 - 00000146 _____ () C:\Dokumente und Einstellungen\Default User\Lokale Einstellungen\Anwendungsdaten\fusioncache.dat
2015-05-14 23:30 - 2006-08-24 20:37 - 00000747 _____ () C:\Dokumente und Einstellungen\Default User\Startmenü\Programme\Internet Explorer.lnk
2015-05-14 23:30 - 2006-08-24 20:37 - 00000718 _____ () C:\Dokumente und Einstellungen\Default User\Startmenü\Programme\Outlook Express.lnk
__________________
Alt 20.05.2015, 09:13   #4
trojanernick
 
Windows XP: Link in DHL-Mail angeklickt - Problem mit Antivirensoftware und MBR-Befund - Standard

Windows XP: Link in DHL-Mail angeklickt - Problem mit Antivirensoftware und MBR-Befund


Frst.txt - Teil 2
Code:
ATTFilter
==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-05-19 21:33 - 2006-08-25 05:31 - 00000000 ____D () C:\Dokumente und Einstellungen\Administrator\Lokale Einstellungen\Temp
2015-05-19 21:27 - 2006-08-25 05:31 - 00000000 ____D () C:\Dokumente und Einstellungen\Administrator
2015-05-19 20:00 - 2006-08-24 21:10 - 00003564 _____ () C:\WINDOWS\system32\lsass.log
2015-05-19 18:48 - 2006-08-24 21:05 - 00065536 _____ () C:\WINDOWS\system32\config\Credenti.evt
2015-05-19 18:48 - 2004-08-07 08:08 - 01504492 _____ () C:\WINDOWS\WindowsUpdate.log
2015-05-19 18:48 - 2004-08-07 08:08 - 00022732 _____ () C:\WINDOWS\SchedLgU.Txt
2015-05-19 18:48 - 2004-08-07 08:08 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT
2015-05-19 13:29 - 2006-08-25 05:31 - 00000000 ____D () C:\WINDOWS\Microsoft.NET
2015-05-18 22:19 - 2006-08-25 05:31 - 00000000 ____D () C:\Programme\Gemeinsame Dateien\Microsoft Shared
2015-05-18 22:07 - 2004-08-07 08:08 - 00001158 _____ () C:\WINDOWS\system32\wpa.dbl
2015-05-18 21:27 - 2006-08-24 21:13 - 00000000 ____D () C:\WINDOWS\SMINST
2015-05-18 21:24 - 2004-08-07 08:04 - 01091506 _____ () C:\WINDOWS\system32\PerfStringBackup.INI
2015-05-18 20:58 - 2006-08-25 05:31 - 00000000 ____D () C:\WINDOWS\security
2015-05-18 20:37 - 2006-08-25 05:31 - 00000000 ___RD () C:\Dokumente und Einstellungen\All Users\Startmenü\Programme
2015-05-18 20:36 - 2006-08-24 20:52 - 00000000 ____D () C:\Programme\Adobe
2015-05-18 20:15 - 2006-08-25 05:31 - 00000000 ___RD () C:\Programme
2015-05-18 20:15 - 2006-08-25 05:31 - 00000000 ____D () C:\WINDOWS\Help
2015-05-18 19:21 - 2004-08-07 07:53 - 00000603 _____ () C:\WINDOWS\win.ini
2015-05-17 01:13 - 2006-08-24 20:36 - 00000000 ____D () C:\Dokumente und Einstellungen\NetworkService\Lokale Einstellungen\Temp
2015-05-17 00:09 - 2006-08-24 20:43 - 00000000 ___HD () C:\WINDOWS\$hf_mig$
2015-05-16 21:49 - 2004-08-07 07:52 - 00023392 _____ () C:\WINDOWS\system32\nscompat.tlb
2015-05-16 21:49 - 2004-08-07 07:52 - 00016832 _____ () C:\WINDOWS\system32\amcompat.tlb
2015-05-16 21:48 - 2006-08-25 05:31 - 00000000 __SHD () C:\Dokumente und Einstellungen\All Users\DRM
2015-05-16 21:47 - 2006-08-24 21:05 - 00000902 _____ () C:\WINDOWS\system32\InstallUtil.InstallLog
2015-05-16 21:47 - 2006-08-24 21:05 - 00000000 ____D () C:\Programme\Windows Media Connect
2015-05-16 21:46 - 2006-08-25 05:31 - 00000000 ____D () C:\WINDOWS\system32\DirectX
2015-05-16 21:44 - 2006-08-25 05:31 - 00000000 ____D () C:\WINDOWS\system32\mui
2015-05-16 13:25 - 2006-08-25 05:31 - 00000000 ____D () C:\WINDOWS\system32\inetsrv
2015-05-16 10:57 - 2006-08-25 05:31 - 00000000 ____D () C:\Programme\Messenger
2015-05-16 10:19 - 2006-08-25 05:31 - 00000000 ____D () C:\Programme\Outlook Express
2015-05-16 10:18 - 2006-08-25 05:31 - 00000000 ____D () C:\Programme\Movie Maker
2015-05-16 10:02 - 2006-08-24 20:36 - 00000000 __SHD () C:\Dokumente und Einstellungen\LocalService
2015-05-16 09:57 - 2006-08-25 05:31 - 00000000 ____D () C:\WINDOWS\Media
2015-05-16 00:42 - 2004-08-07 08:08 - 00000300 ___SH () C:\Dokumente und Einstellungen\Administrator\ntuser.ini
2015-05-15 23:25 - 2006-08-25 05:31 - 00000000 ____D () C:\WINDOWS\pchealth
2015-05-15 23:25 - 2006-08-25 05:31 - 00000000 ____D () C:\Programme\Gemeinsame Dateien\System
2015-05-15 23:12 - 2006-08-25 05:31 - 00000000 ____D () C:\WINDOWS\system
2015-05-15 23:12 - 2006-08-24 20:39 - 00000000 ___HD () C:\Programme\InstallShield Installation Information
2015-05-15 08:23 - 2006-08-25 05:31 - 00000000 __SHD () C:\Dokumente und Einstellungen\Administrator\Lokale Einstellungen\Verlauf
2015-05-15 08:22 - 2006-08-25 05:31 - 00000000 ___RD () C:\Dokumente und Einstellungen\Default User\Startmenü\Programme
2015-05-15 08:22 - 2006-08-25 05:31 - 00000000 ___RD () C:\Dokumente und Einstellungen\Administrator\Startmenü\Programme
2015-05-15 08:22 - 2006-08-25 05:31 - 00000000 ___RD () C:\Dokumente und Einstellungen\Administrator\Eigene Dateien\Eigene Musik
2015-05-15 08:22 - 2006-08-25 05:31 - 00000000 ___RD () C:\Dokumente und Einstellungen\Administrator\Eigene Dateien\Eigene Bilder
2015-05-15 08:22 - 2004-08-07 07:58 - 00000747 _____ () C:\Dokumente und Einstellungen\Administrator\Startmenü\Programme\Internet Explorer.lnk
2015-05-15 08:22 - 2004-08-07 07:58 - 00000718 _____ () C:\Dokumente und Einstellungen\Administrator\Startmenü\Programme\Outlook Express.lnk
2015-05-15 08:22 - 2004-08-07 07:52 - 00316640 _____ () C:\WINDOWS\WMSysPr9.prx
2015-05-15 08:21 - 2006-08-24 21:01 - 00000000 ____D () C:\Programme\Gemeinsame Dateien\Symantec Shared
2015-05-15 08:21 - 2006-08-24 21:01 - 00000000 ____D () C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Symantec
2015-05-15 08:14 - 2006-08-25 05:31 - 00000000 ___RD () C:\WINDOWS\Web
2015-05-15 08:14 - 2006-08-25 05:31 - 00000000 ____D () C:\WINDOWS\twain_32
2015-05-15 08:14 - 2006-08-25 05:31 - 00000000 ____D () C:\WINDOWS\system32\URTTemp
2015-05-15 08:14 - 2006-08-25 05:31 - 00000000 ____D () C:\WINDOWS\system32\spool
2015-05-15 08:14 - 2006-08-25 05:31 - 00000000 ____D () C:\WINDOWS\system32\ras
2015-05-15 08:14 - 2006-08-25 05:31 - 00000000 ____D () C:\WINDOWS\system32\MsDtc
2015-05-15 08:14 - 2006-08-25 05:31 - 00000000 ____D () C:\WINDOWS\system32\Macromed
2015-05-15 08:14 - 2006-08-25 05:31 - 00000000 ____D () C:\WINDOWS\system32\IME
2015-05-15 08:14 - 2006-08-25 05:31 - 00000000 ____D () C:\WINDOWS\system32\icsxml
2015-05-15 08:14 - 2006-08-25 05:31 - 00000000 ____D () C:\WINDOWS\system32\ias
2015-05-15 08:14 - 2006-08-24 20:55 - 00000000 ____D () C:\WINDOWS\system32\DLA
2015-05-15 08:14 - 2006-08-24 20:40 - 00000000 ____D () C:\WINDOWS\system32\msmq
2015-05-15 08:13 - 2006-08-25 05:31 - 00000000 ____D () C:\WINDOWS\system32\1033
2015-05-15 08:13 - 2006-08-25 05:31 - 00000000 ____D () C:\WINDOWS\system32\1031
2015-05-15 08:11 - 2006-08-25 05:31 - 00000000 ____D () C:\WINDOWS\Resources
2015-05-15 08:11 - 2006-08-25 05:31 - 00000000 ____D () C:\WINDOWS\repair
2015-05-15 08:11 - 2006-08-25 05:31 - 00000000 ____D () C:\WINDOWS\Provisioning
2015-05-15 08:11 - 2006-08-24 20:57 - 00000000 ____D () C:\WINDOWS\RegisteredPackages
2015-05-15 08:10 - 2006-08-25 05:31 - 00000000 ___RD () C:\WINDOWS\Offline Web Pages
2015-05-15 08:10 - 2006-08-25 05:31 - 00000000 ____D () C:\WINDOWS\java
2015-05-15 08:09 - 2006-08-24 20:53 - 00000000 ____D () C:\WINDOWS\Hewlett-Packard
2015-05-15 08:08 - 2006-08-25 05:31 - 00000000 ____D () C:\WINDOWS\Driver Cache
2015-05-15 08:08 - 2006-08-25 05:31 - 00000000 ____D () C:\WINDOWS\Cursors
2015-05-15 08:08 - 2006-08-24 21:13 - 00000000 ____D () C:\WINDOWS\CREATOR
2015-05-15 08:08 - 2006-08-24 20:45 - 00000000 ___HD () C:\WINDOWS\$NtUninstallKB913446$
2015-05-15 08:08 - 2006-08-24 20:45 - 00000000 ___HD () C:\WINDOWS\$NtUninstallKB912919$
2015-05-15 08:08 - 2006-08-24 20:45 - 00000000 ___HD () C:\WINDOWS\$NtUninstallKB911927$
2015-05-15 08:08 - 2006-08-24 20:45 - 00000000 ___HD () C:\WINDOWS\$NtUninstallKB910728$
2015-05-15 08:08 - 2006-08-24 20:45 - 00000000 ___HD () C:\WINDOWS\$NtUninstallKB908519$
2015-05-15 08:08 - 2006-08-24 20:45 - 00000000 ___HD () C:\WINDOWS\$NtUninstallKB904706$
2015-05-15 08:08 - 2006-08-24 20:45 - 00000000 ___HD () C:\WINDOWS\$NtUninstallKB896358$
2015-05-15 08:08 - 2006-08-24 20:45 - 00000000 ___HD () C:\WINDOWS\$NtUninstallKB887472$
2015-05-15 08:08 - 2006-08-24 20:45 - 00000000 ___HD () C:\WINDOWS\$NtUninstallKB886185$
2015-05-15 08:08 - 2006-08-24 20:45 - 00000000 ___HD () C:\WINDOWS\$NtUninstallKB885884$
2015-05-15 08:08 - 2006-08-24 20:44 - 00000000 ___HD () C:\WINDOWS\$NtUninstallKB901214$
2015-05-15 08:08 - 2006-08-24 20:44 - 00000000 ___HD () C:\WINDOWS\$NtUninstallKB896727$
2015-05-15 08:08 - 2006-08-24 20:44 - 00000000 ___HD () C:\WINDOWS\$NtUninstallKB896423$
2015-05-15 08:08 - 2006-08-24 20:44 - 00000000 ___HD () C:\WINDOWS\$NtUninstallKB893066$
2015-05-15 08:08 - 2006-08-24 20:43 - 00000000 ___HD () C:\WINDOWS\$NtUninstallKB911565$
2015-05-15 08:08 - 2006-08-24 20:43 - 00000000 ___HD () C:\WINDOWS\$NtUninstallKB891781$
2015-05-15 08:08 - 2006-08-24 20:43 - 00000000 ___HD () C:\WINDOWS\$NtUninstallKB873333$
2015-05-15 08:08 - 2006-08-24 20:41 - 00000000 ___HD () C:\WINDOWS\$NtUninstallKB888111WXPSP2$
2015-05-15 08:08 - 2006-08-24 20:40 - 00000000 ___HD () C:\WINDOWS\$NtUninstallKB918005$
2015-05-15 08:08 - 2006-08-24 20:40 - 00000000 ___HD () C:\WINDOWS\$NtUninstallKB915326$
2015-05-15 08:08 - 2006-08-24 20:40 - 00000000 ___HD () C:\WINDOWS\$NtUninstallKB889673$
2015-05-15 08:08 - 2006-08-24 20:40 - 00000000 ___HD () C:\WINDOWS\$NtUninstallKB888402$
2015-05-15 08:08 - 2006-08-24 20:39 - 00000000 ___HD () C:\WINDOWS\$NtUninstallKB912436$
2015-05-15 08:08 - 2006-08-24 20:39 - 00000000 ___HD () C:\WINDOWS\$NtUninstallKB896256$
2015-05-15 08:08 - 2006-08-24 20:39 - 00000000 ___HD () C:\WINDOWS\$NtUninstallKB892559$
2015-05-15 08:08 - 2006-08-24 20:39 - 00000000 ___HD () C:\WINDOWS\$NtUninstallKB888239$
2015-05-15 08:08 - 2006-08-24 20:39 - 00000000 ___HD () C:\WINDOWS\$NtUninstallKB885855$
2015-05-15 08:08 - 2006-08-24 20:39 - 00000000 ___HD () C:\WINDOWS\$NtUninstallKB885464$
2015-05-15 08:08 - 2006-08-24 20:39 - 00000000 ___HD () C:\WINDOWS\$NtUninstallKB884575$
2015-05-15 08:08 - 2006-08-24 20:39 - 00000000 ___HD () C:\WINDOWS\$NtUninstallKB883667$
2015-05-15 08:07 - 2006-08-25 05:31 - 00000000 ____D () C:\Programme\xerox
2015-05-15 08:07 - 2006-08-24 21:01 - 00000000 ___HD () C:\WINDOWS\$MSI31Uninstall_KB893803v2$
2015-05-15 08:07 - 2006-08-24 20:56 - 00000000 ____D () C:\Programme\Synaptics
2015-05-15 08:07 - 2006-08-24 20:45 - 00000000 ___HD () C:\WINDOWS\$NtUninstallKB913580$
2015-05-15 08:07 - 2006-08-24 20:44 - 00000000 ___HD () C:\WINDOWS\$NtUninstallKB903235$
2015-05-15 08:07 - 2006-08-24 20:44 - 00000000 ___HD () C:\WINDOWS\$NtUninstallKB901190$
2015-05-15 08:07 - 2006-08-24 20:44 - 00000000 ___HD () C:\WINDOWS\$NtUninstallKB896422$
2015-05-15 08:07 - 2006-08-24 20:44 - 00000000 ___HD () C:\WINDOWS\$NtUninstallKB894391$
2015-05-15 08:07 - 2006-08-24 20:43 - 00000000 ___HD () C:\WINDOWS\$NtUninstallKB911564$
2015-05-15 08:07 - 2006-08-24 20:43 - 00000000 ___HD () C:\WINDOWS\$NtUninstallKB888113$
2015-05-15 08:07 - 2006-08-24 20:43 - 00000000 ___HD () C:\WINDOWS\$NtUninstallKB885250$
2015-05-15 08:07 - 2006-08-24 20:42 - 00000000 ___HD () C:\WINDOWS\$NtUninstallKB896243$
2015-05-15 08:07 - 2006-08-24 20:39 - 00000000 ___HD () C:\WINDOWS\$NtUninstallKB909095$
2015-05-15 08:06 - 2006-08-25 05:31 - 00000000 ____D () C:\Programme\Online-Dienste
2015-05-15 08:06 - 2006-08-24 20:55 - 00000000 ____D () C:\Programme\Sonic
2015-05-15 08:05 - 2006-08-25 05:31 - 00000000 ____D () C:\Programme\MSN Gaming Zone
2015-05-15 08:05 - 2006-08-25 05:31 - 00000000 ____D () C:\Programme\MSN
2015-05-15 08:05 - 2006-08-25 05:31 - 00000000 ____D () C:\Programme\microsoft frontpage
2015-05-15 08:05 - 2006-08-24 20:55 - 00000000 ____D () C:\Programme\Gemeinsame Dateien\TiVo Shared
2015-05-15 08:05 - 2006-08-24 20:53 - 00000000 ____D () C:\Programme\Hp
2015-05-15 08:05 - 2006-08-24 20:46 - 00000000 ____D () C:\Programme\Java
2015-05-15 08:04 - 2006-08-25 05:31 - 00000000 ____D () C:\Programme\Gemeinsame Dateien\SpeechEngines
2015-05-15 08:04 - 2006-08-25 05:31 - 00000000 ____D () C:\Programme\Gemeinsame Dateien\ODBC
2015-05-15 08:04 - 2006-08-25 05:31 - 00000000 ____D () C:\Programme\Gemeinsame Dateien\MSSoap
2015-05-15 08:04 - 2006-08-25 05:31 - 00000000 ____D () C:\Programme\Gemeinsame Dateien\Dienste
2015-05-15 08:04 - 2006-08-24 21:05 - 00000000 ____D () C:\Programme\Gemeinsame Dateien\LightScribe
2015-05-15 08:04 - 2006-08-24 21:05 - 00000000 ____D () C:\Programme\Fingerprint Sensor
2015-05-15 08:04 - 2006-08-24 20:55 - 00000000 ____D () C:\Programme\Gemeinsame Dateien\SureThing Shared
2015-05-15 08:04 - 2006-08-24 20:55 - 00000000 ____D () C:\Programme\Gemeinsame Dateien\Sonic Shared
2015-05-15 08:04 - 2006-08-24 20:46 - 00000000 ____D () C:\Programme\Gemeinsame Dateien\Java
2015-05-15 08:04 - 2006-08-24 20:41 - 00000000 ____D () C:\Programme\Analog Devices
2015-05-15 08:04 - 2006-08-24 20:39 - 00000000 ____D () C:\Programme\Gemeinsame Dateien\InstallShield
2015-05-15 08:03 - 2004-08-07 09:58 - 00000000 ____D () C:\I386
2015-05-15 08:01 - 2006-08-25 05:31 - 00000000 ___SD () C:\Dokumente und Einstellungen\Default User\Lokale Einstellungen\Verlauf
2015-05-15 08:01 - 2006-08-25 05:31 - 00000000 ___RD () C:\Dokumente und Einstellungen\Default User\Startmenü\Programme\Zubehör
2015-05-15 08:01 - 2006-08-25 05:31 - 00000000 ___RD () C:\Dokumente und Einstellungen\Default User\Startmenü\Programme\Autostart
2015-05-15 08:01 - 2006-08-25 05:31 - 00000000 ___RD () C:\Dokumente und Einstellungen\Default User\Startmenü
2015-05-15 08:01 - 2006-08-25 05:31 - 00000000 ___RD () C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Verwaltung
2015-05-15 08:01 - 2006-08-25 05:31 - 00000000 ___RD () C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Spiele
2015-05-15 08:01 - 2006-08-25 05:31 - 00000000 ___RD () C:\Dokumente und Einstellungen\All Users\Dokumente
2015-05-15 08:01 - 2006-08-25 05:31 - 00000000 ___RD () C:\Dokumente und Einstellungen\Administrator\Startmenü\Programme\Zubehör
2015-05-15 08:01 - 2006-08-25 05:31 - 00000000 ___RD () C:\Dokumente und Einstellungen\Administrator\Startmenü\Programme\Autostart
2015-05-15 08:01 - 2006-08-25 05:31 - 00000000 ___RD () C:\Dokumente und Einstellungen\Administrator\Startmenü
2015-05-15 08:01 - 2006-08-25 05:31 - 00000000 ____D () C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\SBSI
2015-05-15 08:01 - 2006-08-24 21:13 - 00000000 ____D () C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\HP Backup & Recovery
2015-05-15 08:01 - 2006-08-24 21:05 - 00000000 ____D () C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\LightScribe Direct Disc Labeling
2015-05-15 08:01 - 2006-08-24 20:56 - 00000000 ____D () C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\InstallShield
2015-05-15 08:01 - 2006-08-24 20:55 - 00000000 ____D () C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Sonic
2015-05-15 08:01 - 2006-08-24 20:53 - 00000000 ____D () C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\HP
2015-05-15 08:01 - 2006-08-24 20:53 - 00000000 ____D () C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\hpqLog
2015-05-15 08:01 - 2006-08-24 20:46 - 00000000 ____D () C:\Dokumente und Einstellungen\Administrator\Lokale Einstellungen\Anwendungsdaten\{3248F0A6-6813-11D6-A77B-00B0D0150060}
2015-05-15 08:01 - 2006-08-24 20:41 - 00000000 ____D () C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\SoundMAX
2015-05-15 08:01 - 2006-08-24 20:36 - 00000000 __SHD () C:\Dokumente und Einstellungen\NetworkService
2015-05-15 07:57 - 2007-07-15 21:36 - 00000000 ____D () C:\My Backup -- 15-07-07 1236
2015-05-15 00:49 - 2006-08-25 05:31 - 00000000 ___RD () C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Zubehör
2015-05-15 00:49 - 2006-08-25 05:31 - 00000000 ___RD () C:\Dokumente und Einstellungen\All Users\Startmenü
2015-05-15 00:49 - 2004-08-07 07:53 - 00001563 _____ () C:\Dokumente und Einstellungen\All Users\Startmenü\Programmzugriff und -standards.lnk
2015-05-15 00:48 - 2006-08-25 05:31 - 00000000 ____D () C:\WINDOWS\system32\usmt
2015-05-15 00:48 - 2006-08-25 05:31 - 00000000 ____D () C:\WINDOWS\PeerNet
2015-05-15 00:48 - 2006-08-25 05:31 - 00000000 ____D () C:\WINDOWS\ime
2015-05-15 00:43 - 2006-08-25 05:31 - 00000000 ____D () C:\WINDOWS\system32\Restore
2015-05-15 00:43 - 2006-08-25 05:31 - 00000000 ____D () C:\WINDOWS\system32\npp
2015-05-15 00:43 - 2006-08-25 05:31 - 00000000 ____D () C:\WINDOWS\msagent
2015-05-15 00:42 - 2006-08-25 05:31 - 00000000 ____D () C:\WINDOWS\system32\Com
2015-05-15 00:42 - 2006-08-25 05:31 - 00000000 ____D () C:\WINDOWS\srchasst
2015-05-15 00:42 - 2006-08-25 05:31 - 00000000 ____D () C:\Programme\Windows NT
2015-05-15 00:42 - 2006-08-25 05:31 - 00000000 ____D () C:\Programme\NetMeeting
2015-05-15 00:38 - 2002-08-29 09:00 - 00251712 ___SH () C:\NTLDR
2015-05-15 00:36 - 2006-08-24 20:42 - 00000000 ____D () C:\WINDOWS\system32\ReinstallBackups
2015-05-14 23:42 - 2006-08-24 20:39 - 00000000 ____D () C:\Programme\Hewlett-Packard
2015-05-14 23:41 - 2006-08-25 05:31 - 00000000 ___RD () C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Autostart
2015-05-14 23:36 - 1999-03-30 20:17 - 00000000 ____D () C:\System.sav
2015-05-14 23:33 - 2004-08-07 07:58 - 00000772 _____ () C:\Dokumente und Einstellungen\Administrator\Startmenü\Programme\Windows Media Player.lnk
2015-05-14 23:31 - 2006-08-24 20:36 - 00000000 ___HD () C:\Dokumente und Einstellungen\LocalService\Lokale Einstellungen\Verlauf
2015-05-14 23:30 - 2004-08-07 07:47 - 00000211 __RSH () C:\boot.ini
2015-05-14 23:29 - 2006-08-25 05:31 - 00000000 ____D () C:\WINDOWS\Registration
2015-05-14 23:27 - 2006-08-24 20:39 - 00000000 ____D () C:\Programme\HPQ

==================== Files in the root of some directories =======

2006-08-24 21:11 - 2006-08-24 21:11 - 0000000 _____ () C:\Dokumente und Einstellungen\Administrator\Lokale Einstellungen\Anwendungsdaten\AtStart.txt
2006-08-24 21:11 - 2006-08-24 21:11 - 0000000 _____ () C:\Dokumente und Einstellungen\Administrator\Lokale Einstellungen\Anwendungsdaten\DSwitch.txt
2006-08-24 20:41 - 2006-08-24 20:41 - 0000146 _____ () C:\Dokumente und Einstellungen\Administrator\Lokale Einstellungen\Anwendungsdaten\fusioncache.dat
2006-08-24 21:11 - 2006-08-24 21:11 - 0000000 _____ () C:\Dokumente und Einstellungen\Administrator\Lokale Einstellungen\Anwendungsdaten\QSwitch.txt

Some content of TEMP:
====================
C:\Dokumente und Einstellungen\Administrator\Lokale Einstellungen\Temp\avgnt.exe
C:\Dokumente und Einstellungen\Martina\Lokale Einstellungen\Temp\avgnt.exe
C:\Dokumente und Einstellungen\Martina_2\Lokale Einstellungen\Temp\avgnt.exe
Code:
ATTFilter
==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\explorer.exe
[2004-08-04 10:00] - [2008-04-14 07:52] - 1036800 ____A (Microsoft Corporation) 418045a93cd87a352098ab7dabe1b53e     

C:\WINDOWS\system32\winlogon.exe
[2004-08-04 10:00] - [2008-04-14 07:53] - 0513024 ____A (Microsoft Corporation) f09a527b422e25c478e38caa0e44417a     

C:\WINDOWS\system32\svchost.exe
[2004-08-04 10:00] - [2008-04-14 07:53] - 0014336 ____A (Microsoft Corporation) 4fbc75b74479c7a6f829e0ca19df3366     

C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll
[2004-08-04 10:00] - [2008-04-14 07:52] - 0580096 ____A (Microsoft Corporation) b0050cc5340e3a0760dd8b417ff7aebd     

C:\WINDOWS\system32\userinit.exe
[2004-08-04 10:00] - [2008-04-14 07:53] - 0026624 ____A (Microsoft Corporation) 788f95312e26389d596c0fa55834e106     

C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys
[2004-08-04 10:00] - [2008-04-14 07:22] - 0053760 ____A (Microsoft Corporation) a5a712f4e880874a477af790b5186e1d     


==================== End Of Log ============================
Addition.txt
Code:
ATTFilter
Additional scan result of Farbar Recovery Scan Tool (x86) Version: 19-05-2015
Ran by Administrator at 2015-05-19 21:33:56
Running from C:\Dokumente und Einstellungen\Administrator\Desktop
Boot Mode: Safe Mode (with Networking)
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-1310988380-3352743311-3678797310-500 - Administrator - Enabled) => %SystemDrive%\Dokumente und Einstellungen\Administrator
ASPNET (S-1-5-21-1310988380-3352743311-3678797310-1003 - Limited - Enabled)
Gast (S-1-5-21-1310988380-3352743311-3678797310-501 - Limited - Disabled)
Hilfeassistent (S-1-5-21-1310988380-3352743311-3678797310-1004 - Limited - Disabled)
Martina (S-1-5-21-1310988380-3352743311-3678797310-1005 - Administrator - Enabled) => %SystemDrive%\Dokumente und Einstellungen\Martina
Martina_2 (S-1-5-21-1310988380-3352743311-3678797310-1006 - Limited - Enabled) => %SystemDrive%\Dokumente und Einstellungen\Martina_2
SUPPORT_388945a0 (S-1-5-21-1310988380-3352743311-3678797310-1002 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Avira Antivirus (Enabled - Up to date) {AD166499-45F9-482A-A743-FDD3350758C7}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe Reader XI (11.0.08) - Deutsch (HKLM\...\{AC76BA86-7AD7-1031-7B44-AB0000000001}) (Version: 11.0.08 - Adobe Systems Incorporated)
Agere Systems HDA Modem (HKLM\...\Agere Systems Soft Modem) (Version:  - )
Application Installer 4.00.B5 (HKLM\...\{E0DBC47C-ED3F-4A1B-A929-9A26DAAA14B3}) (Version: 4.00.B5 - Hewlett-Packard Company)
Avira (HKLM\...\{022ef99f-0db2-4efc-964d-5dd2da3151f6}) (Version: 1.1.37.30000 - Avira Operations GmbH & Co. KG)
Avira (Version: 1.1.37.30000 - Avira Operations GmbH & Co. KG) Hidden
Avira Antivirus (HKLM\...\Avira Antivirus) (Version: 15.0.10.434 - Avira Operations GmbH & Co. KG)
CCleaner (HKLM\...\CCleaner) (Version: 5.05 - Piriform)
Compatibility Pack für 2007 Office System (HKLM\...\{90120000-0020-0407-0000-0000000FF1CE}) (Version: 12.0.6514.5001 - Microsoft Corporation)
Driver Booster 2.3 (HKLM\...\Driver Booster_is1) (Version: 2.3 - IObit)
Hotfix für Windows XP (KB942288-v3) (HKLM\...\KB942288-v3) (Version: 3 - Microsoft Corporation)
Hotfix für Windows XP (KB952287) (HKLM\...\KB952287) (Version: 1 - Microsoft Corporation)
Hotfix für Windows XP (KB969084) (HKLM\...\KB969084) (Version: 3 - Microsoft Corporation)
HP Credential Manager for ProtectTools (HKLM\...\{B9F4C05D-E42F-4E9A-A73F-FDD9355319FB}) (Version: 1.5.0.631.36.F - Hewlett-Packard Development Company, L.P.)
HP Help and Support (HKLM\...\{A93C4E94-1005-489D-BEAA-B873C1AA6CFC}) (Version: 4.2.0009 - HPQ)
HP Integrated Module with Bluetooth wireless technology (HKLM\...\{3F4EC965-28EF-45C3-B063-04B25D4E9679}) (Version: 4.0.1.3300 - HP)
HP Notebook Accessories Product Tour (HKLM\...\{A7AD8CEF-72D7-4FE4-8A14-DDD09DC86074}) (Version: 11.00.0000 - Hewlett-Packard)
HP ProtectTools Security Manager 2.00 C3 (HKLM\...\{914E1AB1-DCA0-4A7D-935F-B58C4B887A2B}) (Version: 2.00 C3 - Hewlett-Packard Company)
HP Quick Launch Buttons 6.00 H1 (HKLM\...\{34D2AB40-150D-475D-AE32-BD23FB5EE355}) (Version: 6.00 H1 - Hewlett-Packard Company)
HP Software Update (HKLM\...\{BB85ED9C-AFC9-43BD-B8DC-258C3C7DF72E}) (Version: 3.0.7.014 - Hewlett-Packard)
HP User Guides 0015 (HKLM\...\{DB0781F5-06D2-49BB-87B5-00F3B834FC3B}) (Version: 1.04.0002 - Hewlett-Packard)
HP Wireless Assistant 2.00 E1 (HKLM\...\{4302B2DD-D958-40E3-BAF3-B07FFE1978CE}) (Version: 2.00 E1 - Hewlett-Packard Company)
HpSdpAppCoreApp (Version: 3.00.0000 - Hewlett-Packard) Hidden
Intel(R) Graphics Media Accelerator Driver (HKLM\...\{8A708DD8-A5E6-11D4-A706-000629E95E20}) (Version: 6.14.10.4543 - )
InterVideo DVD Check (HKLM\...\{5D97A4A7-C274-4B63-86D9-07A33435F505}) (Version:  - )
InterVideo WinDVD (HKLM\...\{91810AFC-A4F8-4EBA-A5AA-B198BBC81144}) (Version: 5.0-B11.672 - InterVideo Inc.)
J2SE Runtime Environment 5.0 Update 6 (HKLM\...\{3248F0A8-6813-11D6-A77B-00B0D0150060}) (Version: 1.5.0.60 - Sun Microsystems, Inc.)
LightScribe  1.4.105.1 (Version: 1.4.105.1 - Ihr Firmenname) Hidden
Malwarebytes Anti-Malware Version 2.1.6.1022 (HKLM\...\Malwarebytes Anti-Malware_is1) (Version: 2.1.6.1022 - Malwarebytes Corporation)
Microsoft .NET Framework 1.1 (HKLM\...\Microsoft .NET Framework 1.1  (1033)) (Version:  - )
Microsoft .NET Framework 1.1 German Language Pack (HKLM\...\{E78BFA60-5393-4C38-82AB-E8019E464EB4}) (Version: 1.1.4322 - Microsoft)
Microsoft .NET Framework 1.1 Security Update (KB2833941) (HKLM\...\M2833941) (Version:  - )
Microsoft .NET Framework 4 Client Profile (HKLM\...\Microsoft .NET Framework 4 Client Profile) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Client Profile DEU Language Pack (HKLM\...\Microsoft .NET Framework 4 Client Profile DEU Language Pack) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Extended (HKLM\...\Microsoft .NET Framework 4 Extended) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft Compression Client Pack 1.0 for Windows XP (HKLM\...\MSCompPackV1) (Version: 1 - Microsoft Corporation)
Microsoft Office Small Business Edition 2003 (HKLM\...\{91CA0407-6000-11D3-8CFE-0150048383C9}) (Version: 11.0.8173.0 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30214.0 - Microsoft Corporation)
Microsoft User-Mode Driver Framework Feature Pack 1.0 (HKLM\...\Wudf01000) (Version:  - Microsoft Corporation)
Mozilla Firefox 38.0.1 (x86 de) (HKLM\...\Mozilla Firefox 38.0.1 (x86 de)) (Version: 38.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 31.6.0 - Mozilla)
Mozilla Thunderbird 31.6.0 (x86 de) (HKLM\...\Mozilla Thunderbird 31.6.0 (x86 de)) (Version: 31.6.0 - Mozilla)
Picasa 3 (HKLM\...\Picasa 3) (Version: 3.9 - Google, Inc.)
Sicherheitsupdate für Microsoft Windows (KB2564958) (HKLM\...\KB2564958) (Version:  - Microsoft Corporation)
Sicherheitsupdate für Step by Step Interactive Training (KB923723) (HKLM\...\KB923723) (Version: 20050502.101010 - Microsoft Corporation)
Sicherheitsupdate für Windows Internet Explorer 8 (KB2510531) (HKLM\...\KB2510531-IE8) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows Internet Explorer 8 (KB2909210) (HKLM\...\KB2909210-IE8) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows Internet Explorer 8 (KB2909921) (HKLM\...\KB2909921-IE8) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows Internet Explorer 8 (KB2936068) (HKLM\...\KB2936068-IE8) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows Internet Explorer 8 (KB982381) (HKLM\...\KB982381-IE8) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows Media Player (KB2378111) (Version:  - Microsoft Corporation) Hidden
Sicherheitsupdate für Windows Media Player (KB2834902-v2) (Version:  - Microsoft Corporation) Hidden
Sicherheitsupdate für Windows Media Player (KB2834904-v2) (HKLM\...\KB2834904-v2_WM11) (Version:  - Microsoft Corporation)
Sicherheitsupdate für Windows Media Player (KB911564) (Version:  - Microsoft Corporation) Hidden
Sicherheitsupdate für Windows Media Player (KB952069) (Version:  - Microsoft Corporation) Hidden
Sicherheitsupdate für Windows Media Player (KB954155) (Version:  - Microsoft Corporation) Hidden
Sicherheitsupdate für Windows Media Player (KB973540) (Version:  - Microsoft Corporation) Hidden
Sicherheitsupdate für Windows Media Player (KB975558) (Version:  - Microsoft Corporation) Hidden
Sicherheitsupdate für Windows Media Player (KB978695) (Version:  - Microsoft Corporation) Hidden
Sicherheitsupdate für Windows Media Player 9 (KB911565) (Version:  - Microsoft Corporation) Hidden
Sicherheitsupdate für Windows XP (KB2115168) (HKLM\...\KB2115168) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2229593) (HKLM\...\KB2229593) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2296011) (HKLM\...\KB2296011) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2347290) (HKLM\...\KB2347290) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2387149) (HKLM\...\KB2387149) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2393802) (HKLM\...\KB2393802) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2419632) (HKLM\...\KB2419632) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2423089) (HKLM\...\KB2423089) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2443105) (HKLM\...\KB2443105) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2478960) (HKLM\...\KB2478960) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2478971) (HKLM\...\KB2478971) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2479943) (HKLM\...\KB2479943) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2481109) (HKLM\...\KB2481109) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2483185) (HKLM\...\KB2483185) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2485663) (HKLM\...\KB2485663) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2506212) (HKLM\...\KB2506212) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2507938) (HKLM\...\KB2507938) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2508429) (HKLM\...\KB2508429) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2509553) (HKLM\...\KB2509553) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2535512) (HKLM\...\KB2535512) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2536276-v2) (HKLM\...\KB2536276-v2) (Version: 2 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2544893-v2) (HKLM\...\KB2544893-v2) (Version: 2 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2566454) (HKLM\...\KB2566454) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2570947) (HKLM\...\KB2570947) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2584146) (HKLM\...\KB2584146) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2585542) (HKLM\...\KB2585542) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2592799) (HKLM\...\KB2592799) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2598479) (HKLM\...\KB2598479) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2603381) (HKLM\...\KB2603381) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2619339) (HKLM\...\KB2619339) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2620712) (HKLM\...\KB2620712) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2631813) (HKLM\...\KB2631813) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2653956) (HKLM\...\KB2653956) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2655992) (HKLM\...\KB2655992) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2659262) (HKLM\...\KB2659262) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2661637) (HKLM\...\KB2661637) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2676562) (HKLM\...\KB2676562) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2686509) (HKLM\...\KB2686509) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2691442) (HKLM\...\KB2691442) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2698365) (HKLM\...\KB2698365) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2705219-v2) (HKLM\...\KB2705219-v2) (Version: 2 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2712808) (HKLM\...\KB2712808) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2719985) (HKLM\...\KB2719985) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2723135-v2) (HKLM\...\KB2723135-v2) (Version: 2 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2727528) (HKLM\...\KB2727528) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2757638) (HKLM\...\KB2757638) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2770660) (HKLM\...\KB2770660) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2780091) (HKLM\...\KB2780091) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2802968) (HKLM\...\KB2802968) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2807986) (HKLM\...\KB2807986) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2813345) (HKLM\...\KB2813345) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2820917) (HKLM\...\KB2820917) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2834886) (HKLM\...\KB2834886) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2847311) (HKLM\...\KB2847311) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2850869) (HKLM\...\KB2850869) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2859537) (HKLM\...\KB2859537) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2862152) (HKLM\...\KB2862152) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2862330) (HKLM\...\KB2862330) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2862335) (HKLM\...\KB2862335) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2864063) (HKLM\...\KB2864063) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2868038) (HKLM\...\KB2868038) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2868626) (HKLM\...\KB2868626) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2876217) (HKLM\...\KB2876217) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2876331) (HKLM\...\KB2876331) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2892075) (HKLM\...\KB2892075) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2893294) (HKLM\...\KB2893294) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2898715) (HKLM\...\KB2898715) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2900986) (HKLM\...\KB2900986) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2914368) (HKLM\...\KB2914368) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2916036) (HKLM\...\KB2916036) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2922229) (HKLM\...\KB2922229) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2929961) (HKLM\...\KB2929961) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2930275) (HKLM\...\KB2930275) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB923561) (HKLM\...\KB923561) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB923789) (HKLM\...\KB923789) (Version:  - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB941569) (HKLM\...\KB941569) (Version:  - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB946648) (HKLM\...\KB946648) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB950762) (HKLM\...\KB950762) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB950974) (HKLM\...\KB950974) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB951376-v2) (HKLM\...\KB951376-v2) (Version: 2 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB952004) (HKLM\...\KB952004) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB952954) (HKLM\...\KB952954) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB956572) (HKLM\...\KB956572) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB956844) (HKLM\...\KB956844) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB959426) (HKLM\...\KB959426) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB960803) (HKLM\...\KB960803) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB960859) (HKLM\...\KB960859) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB969059) (HKLM\...\KB969059) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB970430) (HKLM\...\KB970430) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB971657) (HKLM\...\KB971657) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB972270) (HKLM\...\KB972270) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB973507) (HKLM\...\KB973507) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB973869) (HKLM\...\KB973869) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB973904) (HKLM\...\KB973904) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB974112) (HKLM\...\KB974112) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB974318) (HKLM\...\KB974318) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB974392) (HKLM\...\KB974392) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB974571) (HKLM\...\KB974571) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB975025) (HKLM\...\KB975025) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB975467) (HKLM\...\KB975467) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB975560) (HKLM\...\KB975560) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB975713) (HKLM\...\KB975713) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB977816) (HKLM\...\KB977816) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB977914) (HKLM\...\KB977914) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB978338) (HKLM\...\KB978338) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB978542) (HKLM\...\KB978542) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB978706) (HKLM\...\KB978706) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB979309) (HKLM\...\KB979309) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB979482) (HKLM\...\KB979482) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB979687) (HKLM\...\KB979687) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB981997) (HKLM\...\KB981997) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB982132) (HKLM\...\KB982132) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB982665) (HKLM\...\KB982665) (Version: 1 - Microsoft Corporation)
Sonic Audio Module (HKLM\...\{AB708C9B-97C8-4AC9-899B-DBF226AC9382}) (Version: 2.0.4 - Sonic Solutions)
Sonic Copy Module (HKLM\...\{B12665F4-4E93-4AB4-B7FC-37053B524629}) (Version: 2.0.4 - Sonic Solutions)
Sonic Data Module (HKLM\...\{075473F5-846A-448B-BCB3-104AA1760205}) (Version: 2.0.4 - Sonic Solutions)
Sonic DLA (HKLM\...\{1206EF92-2E83-4859-ACCB-2048C3CB7DA6}) (Version: 5.2.0 - Sonic Solutions)
Sonic Express Labeler (HKLM\...\{6675CA7F-E51B-4F6A-99D4-F8F0124C6EAA}) (Version: 2.0.0 - Sonic Solutions)
Sonic MyDVD Plus (HKLM\...\{21657574-BD54-48A2-9450-EB03B2C7FC29}) (Version: 6.2.0 - Sonic Solutions)
Sonic Update Manager (HKLM\...\{30465B6C-B53F-49A1-9EBA-A3F187AD502E}) (Version: 3.0.0 - Sonic Solutions)
SoundMAX (HKLM\...\{F0A37341-D692-11D4-A984-009027EC0A9C}) (Version: 5.10.01.4321 - Analog Devices)
ST Wiederherstellungs- & Sicherungsprogramme (HKLM\...\{3F9F7336-6DF8-476F-ABF6-C70A17FAF619}) (Version: 2.1Z - Hewlett-Packard Company )
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 8.2.16.4 - Synaptics)
Texas Instruments PCIxx21/x515/xx12 drivers. (HKLM\...\InstallShield_{48CF6549-B45D-4313-9927-EFCCC8A3493F}) (Version: 1.17.0000 - Texas Instruments Inc.)
TIPCI (Version: 1.17.0000 - Texas Instruments Inc.) Hidden
Tweak UI (HKLM\...\Tweak UI 2.10) (Version:  - )
Update für Windows Internet Explorer 8 (KB2598845) (HKLM\...\KB2598845-IE8) (Version: 1 - Microsoft Corporation)
Update für Windows XP (KB2345886) (HKLM\...\KB2345886) (Version: 1 - Microsoft Corporation)
Update für Windows XP (KB2467659) (HKLM\...\KB2467659) (Version: 1 - Microsoft Corporation)
Update für Windows XP (KB2749655) (HKLM\...\KB2749655) (Version: 1 - Microsoft Corporation)
Update für Windows XP (KB2813347-v2) (HKLM\...\KB2813347-v2) (Version: 2 - Microsoft Corporation)
Update für Windows XP (KB2904266) (HKLM\...\KB2904266) (Version: 1 - Microsoft Corporation)
Update für Windows XP (KB2934207) (HKLM\...\KB2934207) (Version: 1 - Microsoft Corporation)
Update für Windows XP (KB898461) (HKLM\...\KB898461) (Version: 1 - Microsoft Corporation)
Update für Windows XP (KB951978) (HKLM\...\KB951978) (Version: 1 - Microsoft Corporation)
Update für Windows XP (KB955759) (HKLM\...\KB955759) (Version: 1 - Microsoft Corporation)
Update für Windows XP (KB968389) (HKLM\...\KB968389) (Version: 1 - Microsoft Corporation)
Update für Windows XP (KB971029) (HKLM\...\KB971029) (Version: 1 - Microsoft Corporation)
Update für Windows XP (KB973815) (HKLM\...\KB973815) (Version: 1 - Microsoft Corporation)
VLC media player (HKLM\...\VLC media player) (Version: 2.2.1 - VideoLAN)
WebFldrs XP (Version: 9.50.7523 - Microsoft Corporation) Hidden
Windows Genuine Advantage Validation Tool (KB892130) (HKLM\...\KB892130) (Version:  - Microsoft Corporation)
Windows Genuine Advantage Validation Tool (KB892130) (HKLM\...\WGA) (Version: 1.7.0069.2 - Microsoft Corporation)
Windows Internet Explorer 8 (HKLM\...\ie8) (Version: 20090308.140743 - Microsoft Corporation)
Windows Media Format 11 runtime (HKLM\...\Windows Media Format Runtime) (Version:  - )
Windows Media Player 11 (HKLM\...\Windows Media Player) (Version:  - )
Windows XP Service Pack 3 (HKLM\...\Windows XP Service Pack) (Version: 20080414.031514 - Microsoft Corporation)

==================== Custom CLSID (selected items): ==========================

(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)


==================== Restore Points  =========================

14-05-2015 23:30:49 Systemprüfpunkt
14-05-2015 23:33:23 Installiert TIPCI
14-05-2015 23:41:22 Adobe Reader 7.0.5 - Deutsch wird entfernt
14-05-2015 23:41:50 Entfernt HP BIOS Configuration for ProtectTools
15-05-2015 00:37:07 Windows XP Service Pack 3 wurde installiert.
15-05-2015 23:08:51 Installiert Microsoft® Office Small Business Edition 2003
15-05-2015 23:25:39 Microsoft Office Small Business Edition 2003 wird installiert
15-05-2015 23:38:50 Compatibility Pack für 2007 Office System wird installiert
16-05-2015 08:12:53 Software Distribution Service 3.0
16-05-2015 09:46:36 Software Distribution Service 3.0
16-05-2015 09:57:27 Windows Internet Explorer 8 wurde installiert.
16-05-2015 09:58:05 Software Distribution Service 3.0
16-05-2015 10:05:09 Software Distribution Service 3.0
16-05-2015 11:46:32 Software Distribution Service 3.0
16-05-2015 11:53:20 Software Distribution Service 3.0
16-05-2015 12:00:03 Software Distribution Service 3.0
16-05-2015 12:05:31 Software Distribution Service 3.0
16-05-2015 13:22:54 Software Distribution Service 3.0
16-05-2015 13:31:47 Software Distribution Service 3.0
16-05-2015 18:26:26 Software Distribution Service 3.0
16-05-2015 21:44:38 Windows XP KB942288-v3 wurde installiert.
16-05-2015 21:45:22 DirectX wurde installiert
16-05-2015 21:47:17 Installed Windows Media Player 11
16-05-2015 21:47:33 Installed Windows XP Wudf01000.
16-05-2015 21:49:14 Installed Windows XP MSCompPackV1.
16-05-2015 21:49:24 Windows XP KB969084 wurde installiert.
16-05-2015 21:55:25 Windows XP KB956572 wurde installiert.
16-05-2015 21:55:42 Windows Media Player KB973540 wurde installiert.
16-05-2015 21:55:55 Windows Media Player KB954155 wurde installiert.
16-05-2015 21:56:04 Windows Media Player KB978695 wurde installiert.
16-05-2015 21:56:13 Windows Media Player KB975558 wurde installiert.
16-05-2015 21:56:26 Windows Media Player KB2378111 wurde installiert.
16-05-2015 21:56:45 Windows XP KB2393802 wurde installiert.
16-05-2015 21:56:59 Windows XP KB2510531 wurde installiert.
16-05-2015 21:57:25 Windows XP KB2676562 wurde installiert.
16-05-2015 21:57:40 Windows XP KB2813347-v2 wurde installiert.
16-05-2015 21:57:56 Windows XP KB2859537 wurde installiert.
16-05-2015 21:58:04 Windows Media Player KB2834904-v2 wurde installiert.
16-05-2015 21:58:16 Windows XP KB2862330 wurde installiert.
16-05-2015 21:58:29 Windows XP KB2909210 wurde installiert.
16-05-2015 21:58:55 Windows XP KB2936068 wurde installiert.
17-05-2015 00:07:22 Software Distribution Service 3.0
17-05-2015 00:18:10 Software Distribution Service 3.0
17-05-2015 01:24:22 Software Distribution Service 3.0
17-05-2015 01:45:10 Software Distribution Service 3.0
17-05-2015 13:57:22 Windows XP KB2862330 wurde installiert.
17-05-2015 14:09:30 Software Distribution Service 3.0
17-05-2015 20:27:28 Software Distribution Service 3.0
17-05-2015 20:34:13 Software Distribution Service 3.0
18-05-2015 19:22:35 Druckertreiber Microsoft Office Document Image Writ installiert
18-05-2015 20:07:30 Software Distribution Service 3.0
18-05-2015 20:22:10 Software Distribution Service 3.0
18-05-2015 20:24:12 Software Distribution Service 3.0
18-05-2015 21:08:38 Software Distribution Service 3.0
18-05-2015 22:07:38 Software Distribution Service 3.0
19-05-2015 18:48:06 Software Distribution Service 3.0

==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2004-08-04 10:00 - 2004-08-04 10:00 - 00000820 ____A C:\WINDOWS\system32\Drivers\etc\hosts
127.0.0.1       localhost

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\Driver Booster Scan.job => C:\Programme\IObit\Driver Booster\Scheduler.exe
Task: C:\WINDOWS\Tasks\Driver Booster Update.job => C:\Programme\IObit\Driver Booster\AutoUpdate.exe
Task: C:\WINDOWS\Tasks\Ende des Supports für Microsoft Windows XP –  Benachrichtigung – Anmeldung.job => C:\WINDOWS\system32\xp_eos.exe
Task: C:\WINDOWS\Tasks\Ende des Supports für Microsoft Windows XP – Monatliche Benachrichtigung.job => C:\WINDOWS\system32\xp_eos.exe

==================== Loaded Modules (Whitelisted) ==============


==================== Safe Mode (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Option => "OptionValue"="2"

==================== EXE Association (Whitelisted) ===============

(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, the associated entry will be removed from the registry.)


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-1310988380-3352743311-3678797310-500\Control Panel\Desktop\\Wallpaper -> C:\WINDOWS\HP Cityscape.bmp
DNS Servers: Media is not connected to internet.

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)

MSCONFIG\startupreg: MSMSGS => "C:\Programme\Messenger\msmsgs.exe" /background

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)

DomainProfile\AuthorizedApplications: [C:\WINDOWS\system32\mqsvc.exe] => Enabled:Message Queuing
StandardProfile\AuthorizedApplications: [C:\WINDOWS\SMINST\Scheduler.exe] => Enabled:Scheduler 
StandardProfile\AuthorizedApplications: [C:\WINDOWS\system32\mqsvc.exe] => Disabled:Message Queuing
StandardProfile\AuthorizedApplications: [C:\WINDOWS\Network Diagnostic\xpnetdiag.exe] => Disabled:@xpsp3res.dll,-20000
StandardProfile\AuthorizedApplications: [C:\Programme\Mozilla Firefox\firefox.exe] => Enabled:Firefox (C:\Programme\Mozilla Firefox)
DomainProfile\GloballyOpenPorts: [1900:UDP] => :LocalSubNet:Enabled:@xpsp2res.dll,-22007
DomainProfile\GloballyOpenPorts: [2869:TCP] => :LocalSubNet:Enabled:@xpsp2res.dll,-22008
DomainProfile\GloballyOpenPorts: [10243:TCP] => :LocalSubNet:Enabled:Windows Media Player-Netzwerkfreigabedienst
DomainProfile\GloballyOpenPorts: [10280:UDP] => :LocalSubNet:Enabled:Windows Media Player-Netzwerkfreigabedienst
DomainProfile\GloballyOpenPorts: [10281:UDP] => :LocalSubNet:Enabled:Windows Media Player-Netzwerkfreigabedienst
DomainProfile\GloballyOpenPorts: [10282:UDP] => :LocalSubNet:Enabled:Windows Media Player-Netzwerkfreigabedienst
DomainProfile\GloballyOpenPorts: [10283:UDP] => :LocalSubNet:Enabled:Windows Media Player-Netzwerkfreigabedienst
DomainProfile\GloballyOpenPorts: [10284:UDP] => :LocalSubNet:Enabled:Windows Media Player-Netzwerkfreigabedienst
StandardProfile\GloballyOpenPorts: [1900:UDP] => :LocalSubNet:Enabled:@xpsp2res.dll,-22007
StandardProfile\GloballyOpenPorts: [2869:TCP] => :LocalSubNet:Enabled:@xpsp2res.dll,-22008
StandardProfile\GloballyOpenPorts: [10243:TCP] => :LocalSubNet:Enabled:Windows Media Player-Netzwerkfreigabedienst
StandardProfile\GloballyOpenPorts: [10280:UDP] => :LocalSubNet:Enabled:Windows Media Player-Netzwerkfreigabedienst
StandardProfile\GloballyOpenPorts: [10281:UDP] => :LocalSubNet:Enabled:Windows Media Player-Netzwerkfreigabedienst
StandardProfile\GloballyOpenPorts: [10282:UDP] => :LocalSubNet:Enabled:Windows Media Player-Netzwerkfreigabedienst
StandardProfile\GloballyOpenPorts: [10283:UDP] => :LocalSubNet:Enabled:Windows Media Player-Netzwerkfreigabedienst
StandardProfile\GloballyOpenPorts: [10284:UDP] => :LocalSubNet:Enabled:Windows Media Player-Netzwerkfreigabedienst

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (05/18/2015 10:08:28 PM) (Source: $(ProductName) Service Host) (EventID: 0) (User: )
Description: Fehler beim Verarbeiten von Sitzungsänderung. System.ComponentModel.Win32Exception (0x80004005): Key (Users\S-1-5-21-1310988380-3352743311-3678797310-1006\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall) could not be opened Error: 87, Hive: Users, Key: S-1-5-21-1310988380-3352743311-3678797310-1006\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall
   bei Avira.OE.WinCore.Utility.RegistryValueWatcher.CheckResultAndThrowWin32Exception(Int32 result, String message)
   bei Avira.OE.WinCore.Utility.RegistryValueWatcher.OpenRegKey()
   bei Avira.OE.WinCore.Utility.RegistryValueWatcher.Start()
   bei Avira.OE.ServiceHost.AppInfoRepositoryFactory.CreateRegistryAppInfoRepository(RegistryHive registryHive, String registryPath, RegistryView registryView)
   bei Avira.OE.ServiceHost.DesktopApplications.UpdateUserAppInfoRepository(String userSid)
   bei Avira.OE.ServiceHost.DesktopApplications.UpdateOnNewUserSid(String userSid)
   bei Avira.OE.ServiceHost.DesktopApplications.OnSessionChange(Int32 sessionId, SessionChangeReason reason)
   bei Avira.OE...

Error: (05/18/2015 08:40:48 PM) (Source: MsiInstaller) (EventID: 10005) (User: HP-LAPTOP)
Description: Product: EMET 5.2 -- This setup requires the .NET Framework version v4.0.  Please install the .NET Framework and run this setup again.

Error: (05/16/2015 10:12:57 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Stillstehende Anwendung firefox.exe, Version 38.0.0.5606, Stillstandmodul hungapp, Version 0.0.0.0, Stillstandadresse 0x00000000.

Error: (05/16/2015 10:12:57 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Stillstehende Anwendung firefox.exe, Version 38.0.0.5606, Stillstandmodul hungapp, Version 0.0.0.0, Stillstandadresse 0x00000000.

Error: (05/16/2015 10:12:57 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Stillstehende Anwendung firefox.exe, Version 38.0.0.5606, Stillstandmodul hungapp, Version 0.0.0.0, Stillstandadresse 0x00000000.

Error: (05/16/2015 10:12:31 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Stillstehende Anwendung firefox.exe, Version 38.0.0.5606, Stillstandmodul hungapp, Version 0.0.0.0, Stillstandadresse 0x00000000.

Error: (05/16/2015 10:12:25 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Stillstehende Anwendung firefox.exe, Version 38.0.0.5606, Stillstandmodul hungapp, Version 0.0.0.0, Stillstandadresse 0x00000000.

Error: (05/16/2015 10:12:20 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Stillstehende Anwendung firefox.exe, Version 38.0.0.5606, Stillstandmodul hungapp, Version 0.0.0.0, Stillstandadresse 0x00000000.

Error: (05/16/2015 10:11:52 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Stillstehende Anwendung firefox.exe, Version 38.0.0.5606, Stillstandmodul hungapp, Version 0.0.0.0, Stillstandadresse 0x00000000.

Error: (05/16/2015 10:11:50 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Stillstehende Anwendung firefox.exe, Version 38.0.0.5606, Stillstandmodul hungapp, Version 0.0.0.0, Stillstandadresse 0x00000000.


System errors:
=============
Error: (05/14/2015 11:47:46 PM) (Source: DCOM) (EventID: 10010) (User: NT-AUTORITÄT)
Description: Der Server "{62F84090-A87D-4FA9-BF65-2AAB91B61CE5}" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden.


Microsoft Office Sessions:
=========================
Error: (05/18/2015 10:08:28 PM) (Source: $(ProductName) Service Host) (EventID: 0) (User: )
Description: Fehler beim Verarbeiten von Sitzungsänderung. System.ComponentModel.Win32Exception (0x80004005): Key (Users\S-1-5-21-1310988380-3352743311-3678797310-1006\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall) could not be opened Error: 87, Hive: Users, Key: S-1-5-21-1310988380-3352743311-3678797310-1006\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall
   bei Avira.OE.WinCore.Utility.RegistryValueWatcher.CheckResultAndThrowWin32Exception(Int32 result, String message)
   bei Avira.OE.WinCore.Utility.RegistryValueWatcher.OpenRegKey()
   bei Avira.OE.WinCore.Utility.RegistryValueWatcher.Start()
   bei Avira.OE.ServiceHost.AppInfoRepositoryFactory.CreateRegistryAppInfoRepository(RegistryHive registryHive, String registryPath, RegistryView registryView)
   bei Avira.OE.ServiceHost.DesktopApplications.UpdateUserAppInfoRepository(String userSid)
   bei Avira.OE.ServiceHost.DesktopApplications.UpdateOnNewUserSid(String userSid)
   bei Avira.OE.ServiceHost.DesktopApplications.OnSessionChange(Int32 sessionId, SessionChangeReason reason)
   bei Avira.OE...

Error: (05/18/2015 08:40:48 PM) (Source: MsiInstaller) (EventID: 10005) (User: HP-LAPTOP)
Description: Product: EMET 5.2 -- This setup requires the .NET Framework version v4.0.  Please install the .NET Framework and run this setup again.(NULL)(NULL)(NULL)(NULL)

Error: (05/16/2015 10:12:57 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: firefox.exe38.0.0.5606hungapp0.0.0.000000000

Error: (05/16/2015 10:12:57 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: firefox.exe38.0.0.5606hungapp0.0.0.000000000

Error: (05/16/2015 10:12:57 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: firefox.exe38.0.0.5606hungapp0.0.0.000000000

Error: (05/16/2015 10:12:31 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: firefox.exe38.0.0.5606hungapp0.0.0.000000000

Error: (05/16/2015 10:12:25 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: firefox.exe38.0.0.5606hungapp0.0.0.000000000

Error: (05/16/2015 10:12:20 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: firefox.exe38.0.0.5606hungapp0.0.0.000000000

Error: (05/16/2015 10:11:52 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: firefox.exe38.0.0.5606hungapp0.0.0.000000000

Error: (05/16/2015 10:11:50 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: firefox.exe38.0.0.5606hungapp0.0.0.000000000


==================== Memory info =========================== 

Processor: Intel(R) Core(TM)2 CPU T5500 @ 1.66GHz
Percentage of memory in use: 25%
Total physical RAM: 1015.36 MB
Available physical RAM: 756.31 MB
Total Pagefile: 2444.91 MB
Available Pagefile: 2312.95 MB
Total Virtual: 2047.88 MB
Available Virtual: 1947.46 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:67.14 GB) (Free:46.57 GB) NTFS ==>[Drive with boot components (Windows XP)]
Drive d: (HP_RECOVERY) (Fixed) (Total:7.38 GB) (Free:0.57 GB) NTFS ==>[Drive with boot components (Windows XP)]
Drive f: () (Removable) (Total:0.94 GB) (Free:0.86 GB) FAT

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 74.5 GB) (Disk ID: B0C9B0C9)
Partition 1: (Active) - (Size=67.1 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=7.4 GB) - (Type=07 NTFS)

========================================================
Disk: 1 (Size: 964 MB) (Disk ID: 91F72D24)
Partition 1: (Not Active) - (Size=964 MB) - (Type=06)

==================== End Of Log ============================
Gmer.txt:
Code:
ATTFilter
GMER 2.1.19357 - hxxp://www.gmer.net
Rootkit scan 2015-05-19 22:52:38
Windows 5.1.2600 Service Pack 3 \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-0 ST98823A rev.7.24 74,53GB
Running: Gmer-19357.exe; Driver: C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\uxlyipod.sys


---- Devices - GMER 2.1 ----

AttachedDevice  \Driver\Kbdclass \Device\KeyboardClass0  SynTP.sys

---- Disk sectors - GMER 2.1 ----

Disk            \Device\Harddisk0\DR0                    unknown MBR code

---- EOF - GMER 2.1 ----
mbam.txt:
Code:
ATTFilter
 Malwarebytes Anti-Malware 
www.malwarebytes.org

Suchlauf Datum: 14.05.2015
Suchlauf-Zeit: 23:52:39
Logdatei: malwarebytes_protokoll_150514.txt
Administrator: Ja

Version: 2.01.6.1022
Malware Datenbank: v2015.03.09.05
Rootkit Datenbank: v2015.02.25.01
Lizenz: Kostenlos
Malware Schutz: Deaktiviert
Bösartiger Webseiten Schutz: Deaktiviert
Selbstschutz: Deaktiviert

Betriebssystem: Windows XP Service Pack 2
CPU: x86
Dateisystem: NTFS
Benutzer: Administrator

Suchlauf-Art: Bedrohungs-Suchlauf
Ergebnis: Abgeschlossen
Durchsuchte Objekte: 294085
Verstrichene Zeit: 24 Min, 31 Sek

Speicher: Aktiviert
Autostart: Aktiviert
Dateisystem: Aktiviert
Archive: Aktiviert
Rootkits: Deaktiviert
Heuristik: Aktiviert
PUP: Aktiviert
PUM: Aktiviert

Prozesse: 0
(Keine schädliche Elemente gefunden)

Module: 0
(Keine schädliche Elemente gefunden)

Registrierungsschlüssel: 0
(Keine schädliche Elemente gefunden)

Registrierungswerte: 0
(Keine schädliche Elemente gefunden)

Registrierungsdaten: 1
PUM.Hijack.StartMenu, HKU\S-1-5-21-1310988380-3352743311-3678797310-500\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\ADVANCED|StartMenuLogoff, 1, Gut: (0), Schlecht: (1),,[f782152ef496aa8c1fc5f7e67293cc34]

Ordner: 0
(Keine schädliche Elemente gefunden)

Dateien: 0
(Keine schädliche Elemente gefunden)

Physische Sektoren: 0
(Keine schädliche Elemente gefunden)


(end)
MBR Log:
Code:
ATTFilter
Stealth MBR rootkit/Mebroot/Sinowal/TDL4 detector 0.4.2 by Gmer, hxxp://www.gmer.net
Windows 5.1.2600 Disk: ST98823A rev.7.24 -> Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-0 

device: opened successfully
user: MBR read successfully

Disk trace:
called modules: ntkrnlpa.exe CLASSPNP.SYS disk.sys ACPI.sys hal.dll iaStor.sys 
C:\WINDOWS\system32\drivers\iaStor.sys Intel Corporation Intel Matrix Storage Manager driver
1 ntkrnlpa!IofCallDriver[0x804EF200] -> \Device\Harddisk0\DR0[0x86497AB8]
3 CLASSPNP[0xF75E7FD7] -> ntkrnlpa!IofCallDriver[0x804EF200] -> \Device\00000085[0x865189F8]
5 ACPI[0xF745D620] -> ntkrnlpa!IofCallDriver[0x804EF200] -> \Device\Ide\IAAStorageDevice-0[0x86516030]
kernel: MBR read successfully
user & kernel MBR OK
MBRCheck.txt:
Code:
ATTFilter
MBRCheck, version 1.2.3
(c) 2010, AD

Command-line:			
Windows Version:		Windows XP Professional
Windows Information:		Service Pack 3 (build 2600)
Logical Drives Mask:		0x0000001c

Kernel Drivers (total 149):
  0x804D7000 \WINDOWS\system32\ntkrnlpa.exe
  0x806E6000 \WINDOWS\system32\hal.dll
  0xF7A87000 \WINDOWS\system32\KDCOM.DLL
  0xF7997000 \WINDOWS\system32\BOOTVID.dll
  0xF7457000 ACPI.sys
  0xF7A89000 \WINDOWS\system32\DRIVERS\WMILIB.SYS
  0xF7446000 pci.sys
  0xF7587000 isapnp.sys
  0xF7597000 ohci1394.sys
  0xF75A7000 \WINDOWS\system32\DRIVERS\1394BUS.SYS
  0xF799B000 compbatt.sys
  0xF799F000 \WINDOWS\system32\DRIVERS\BATTC.SYS
  0xF7B4F000 pciide.sys
  0xF7807000 \WINDOWS\system32\DRIVERS\PCIIDEX.SYS
  0xF7A8B000 intelide.sys
  0xF7A8D000 viaide.sys
  0xF7A8F000 aliide.sys
  0xF7428000 pcmcia.sys
  0xF75B7000 MountMgr.sys
  0xF7409000 ftdisk.sys
  0xF7A91000 dmload.sys
  0xF73E3000 dmio.sys
  0xF79A3000 ACPIEC.sys
  0xF7B50000 \WINDOWS\system32\DRIVERS\OPRGHDLR.SYS
  0xF780F000 PartMgr.sys
  0xF75C7000 VolSnap.sys
  0xF73CB000 atapi.sys
  0xF72F5000 iaStor.sys
  0xF75D7000 disk.sys
  0xF75E7000 \WINDOWS\system32\DRIVERS\CLASSPNP.SYS
  0xF72D5000 fltmgr.sys
  0xF72C3000 sr.sys
  0xF72AD000 DRVMCDB.SYS
  0xF7817000 PxHelp20.sys
  0xF7296000 KSecDD.sys
  0xF7209000 Ntfs.sys
  0xF71DC000 NDIS.sys
  0xF71C2000 Mup.sys
  0xF7617000 \SystemRoot\system32\DRIVERS\nic1394.sys
  0xF77B7000 \SystemRoot\system32\DRIVERS\intelppm.sys
  0xF63C5000 \SystemRoot\system32\DRIVERS\ialmnt5.sys
  0xF63B1000 \SystemRoot\system32\DRIVERS\VIDEOPRT.SYS
  0xF6389000 \SystemRoot\system32\DRIVERS\HDAudBus.sys
  0xF622C000 \SystemRoot\system32\DRIVERS\w39n51.sys
  0xF78E7000 \SystemRoot\system32\DRIVERS\usbuhci.sys
  0xF6208000 \SystemRoot\system32\DRIVERS\USBPORT.SYS
  0xF78EF000 \SystemRoot\system32\DRIVERS\usbehci.sys
  0xF77C7000 \SystemRoot\system32\DRIVERS\bcm4sbxp.sys
  0xF77D7000 \SystemRoot\system32\DRIVERS\i8042prt.sys
  0xF78F7000 \SystemRoot\system32\DRIVERS\kbdclass.sys
  0xF61D8000 \SystemRoot\system32\DRIVERS\SynTP.sys
  0xF7AC5000 \SystemRoot\system32\DRIVERS\USBD.SYS
  0xF78FF000 \SystemRoot\system32\DRIVERS\mouclass.sys
  0xF77E7000 \SystemRoot\system32\DRIVERS\imapi.sys
  0xF7AC7000 \SystemRoot\System32\Drivers\DLACDBHM.SYS
  0xF77F7000 \SystemRoot\system32\DRIVERS\cdrom.sys
  0xF7627000 \SystemRoot\system32\DRIVERS\redbook.sys
  0xF61B5000 \SystemRoot\system32\DRIVERS\ks.sys
  0xF7186000 \SystemRoot\system32\DRIVERS\cpqbttn.sys
  0xF7637000 \SystemRoot\system32\DRIVERS\HIDCLASS.SYS
  0xF7907000 \SystemRoot\system32\DRIVERS\HIDPARSE.SYS
  0xF7182000 \SystemRoot\system32\DRIVERS\CmBatt.sys
  0xF717E000 \SystemRoot\system32\DRIVERS\wmiacpi.sys
  0xF6070000 \SystemRoot\system32\DRIVERS\btkrnl.sys
  0xF7B72000 \SystemRoot\system32\DRIVERS\audstub.sys
  0xF7647000 \SystemRoot\system32\DRIVERS\rasl2tp.sys
  0xF717A000 \SystemRoot\system32\DRIVERS\ndistapi.sys
  0xF6059000 \SystemRoot\system32\DRIVERS\ndiswan.sys
  0xF6C68000 \SystemRoot\system32\DRIVERS\raspppoe.sys
  0xF6C58000 \SystemRoot\system32\DRIVERS\raspptp.sys
  0xF790F000 \SystemRoot\system32\DRIVERS\TDI.SYS
  0xF6048000 \SystemRoot\system32\DRIVERS\psched.sys
  0xF6C48000 \SystemRoot\system32\DRIVERS\msgpc.sys
  0xF7917000 \SystemRoot\system32\DRIVERS\ptilink.sys
  0xF791F000 \SystemRoot\system32\DRIVERS\raspti.sys
  0xF6018000 \SystemRoot\system32\DRIVERS\rdpdr.sys
  0xF6C38000 \SystemRoot\system32\DRIVERS\termdd.sys
  0xF7AC9000 \SystemRoot\system32\DRIVERS\swenum.sys
  0xF5FBA000 \SystemRoot\system32\DRIVERS\update.sys
  0xF711D000 \SystemRoot\system32\DRIVERS\mssmbios.sys
  0xF7111000 \SystemRoot\system32\DRIVERS\kbdhid.sys
  0xF6803000 \SystemRoot\System32\Drivers\NDProxy.SYS
  0xA623F000 \SystemRoot\system32\drivers\ADIHdAud.sys
  0xA621B000 \SystemRoot\system32\drivers\portcls.sys
  0xA8F4D000 \SystemRoot\system32\drivers\drmk.sys
  0xA61F5000 \SystemRoot\system32\drivers\AEAudio.sys
  0xA60DA000 \SystemRoot\system32\DRIVERS\AGRSM.sys
  0xA987F000 \SystemRoot\System32\Drivers\Modem.SYS
  0xA8F2D000 \SystemRoot\system32\DRIVERS\usbhub.sys
  0xF7B33000 \SystemRoot\System32\Drivers\Fs_Rec.SYS
  0xA6992000 \SystemRoot\System32\Drivers\Null.SYS
  0xF7B35000 \SystemRoot\System32\Drivers\Beep.SYS
  0xA7FAC000 \SystemRoot\System32\Drivers\DLARTL_N.SYS
  0xA7FA4000 \SystemRoot\System32\drivers\vga.sys
  0xF7B37000 \SystemRoot\System32\Drivers\mnmdd.SYS
  0xF7B39000 \SystemRoot\System32\DRIVERS\RDPCDD.sys
  0xA7F9C000 \SystemRoot\System32\Drivers\Msfs.SYS
  0xA7F94000 \SystemRoot\System32\Drivers\Npfs.SYS
  0xA9FFA000 \SystemRoot\system32\DRIVERS\rasacd.sys
  0xA607F000 \SystemRoot\system32\DRIVERS\ipsec.sys
  0xA6026000 \SystemRoot\system32\DRIVERS\tcpip.sys
  0xA6000000 \SystemRoot\system32\DRIVERS\ipnat.sys
  0xA5FD8000 \SystemRoot\system32\DRIVERS\netbt.sys
  0xA5FB6000 \SystemRoot\System32\drivers\afd.sys
  0xA8F1D000 \SystemRoot\system32\DRIVERS\netbios.sys
  0xF7B3B000 \SystemRoot\system32\DRIVERS\eabfiltr.sys
  0xA7F8C000 \SystemRoot\system32\DRIVERS\ssmdrv.sys
  0xA5F8B000 \SystemRoot\system32\DRIVERS\rdbss.sys
  0xA5F1B000 \SystemRoot\system32\DRIVERS\mrxsmb.sys
  0xA7F84000 \??\C:\WINDOWS\system32\drivers\HWiNFO32.SYS
  0xA8EFD000 \SystemRoot\System32\Drivers\Fips.SYS
  0xA8EED000 \SystemRoot\system32\DRIVERS\wanarp.sys
  0xA8EDD000 \SystemRoot\system32\DRIVERS\arp1394.sys
  0xA7D2D000 \SystemRoot\system32\DRIVERS\avkmgr.sys
  0xA5EF7000 \SystemRoot\system32\DRIVERS\avipbb.sys
  0x9EF6B000 \SystemRoot\System32\Drivers\Cdfs.SYS
  0x9D8C7000 \SystemRoot\System32\Drivers\dump_iaStor.sys
  0xBF800000 \SystemRoot\System32\win32k.sys
  0x9EE54000 \SystemRoot\System32\drivers\Dxapi.sys
  0x9EE24000 \SystemRoot\System32\watchdog.sys
  0xBF000000 \SystemRoot\System32\drivers\dxg.sys
  0xF7C38000 \SystemRoot\System32\drivers\dxgthk.sys
  0xBF021000 \SystemRoot\System32\ialmdnt5.dll
  0xBF012000 \SystemRoot\System32\ialmrnt5.dll
  0xBF043000 \SystemRoot\System32\ialmdev5.DLL
  0xBF07E000 \SystemRoot\System32\ialmdd5.DLL
  0x9D8A8000 \SystemRoot\system32\DRIVERS\avgntflt.sys
  0xF6823000 \??\C:\WINDOWS\system32\drivers\mbam.sys
  0xF6813000 \SystemRoot\System32\Drivers\DRVNDDM.SYS
  0xF7C0C000 \SystemRoot\System32\DLA\DLADResN.SYS
  0x9D892000 \SystemRoot\System32\DLA\DLAIFS_M.SYS
  0xF718E000 \SystemRoot\System32\DLA\DLAOPIOM.SYS
  0xF7B47000 \SystemRoot\System32\DLA\DLAPoolM.SYS
  0xF7927000 \SystemRoot\System32\DLA\DLABOIOM.SYS
  0x9D87A000 \SystemRoot\System32\DLA\DLAUDFAM.SYS
  0x9D864000 \SystemRoot\System32\DLA\DLAUDF_M.SYS
  0xA4250000 \SystemRoot\system32\DRIVERS\ndisuio.sys
  0x9D7E7000 \SystemRoot\system32\DRIVERS\mrxdav.sys
  0x9D72E000 \SystemRoot\System32\Drivers\HTTP.sys
  0x9D686000 \SystemRoot\system32\DRIVERS\srv.sys
  0x9D61F000 \??\C:\WINDOWS\system32\drivers\mqac.sys
  0x9D5ED000 \??\C:\WINDOWS\system32\drivers\RMCast.sys
  0x9D2B8000 \SystemRoot\system32\drivers\wdmaud.sys
  0x9EF9B000 \SystemRoot\system32\drivers\sysaudio.sys
  0xF78C7000 \SystemRoot\system32\DRIVERS\USBSTOR.SYS
  0x9C593000 \SystemRoot\System32\Drivers\Fastfat.SYS
  0x9E3BB000 \??\C:\DOKUME~1\Martina\LOKALE~1\Temp\mbr.sys
  0x9C26D000 \SystemRoot\system32\drivers\kmixer.sys
  0x7C910000 \WINDOWS\system32\ntdll.dll

Processes (total 57):
       0 System Idle Process
       4 System
     784 C:\WINDOWS\system32\smss.exe
     856 csrss.exe
     884 C:\WINDOWS\system32\winlogon.exe
     928 C:\WINDOWS\system32\services.exe
     940 C:\WINDOWS\system32\lsass.exe
    1144 C:\WINDOWS\system32\svchost.exe
    1212 svchost.exe
    1292 C:\WINDOWS\system32\svchost.exe
    1384 svchost.exe
    1480 svchost.exe
    1516 dllhost.exe
    1772 C:\WINDOWS\system32\spoolsv.exe
    1840 scardsvr.exe
    1856 C:\Programme\Avira\Antivirus\sched.exe
    1932 svchost.exe
     576 msdtc.exe
     636 C:\Programme\Avira\Antivirus\avguard.exe
     648 C:\WINDOWS\system32\svchost.exe
     668 C:\Programme\WIDCOMM\Bluetooth Software\bin\btwdins.exe
     692 C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
     776 C:\WINDOWS\system32\svchost.exe
     824 C:\Programme\Gemeinsame Dateien\LightScribe\LSSrvc.exe
    1676 C:\WINDOWS\system32\mqsvc.exe
     164 C:\Programme\Avira\Launcher\Avira.ServiceHost.exe
    2000 C:\Programme\Hewlett-Packard\Shared\hpqwmiex.exe
    1328 C:\WINDOWS\system32\mqtgsvc.exe
    2056 wmpnetwk.exe
    2796 C:\WINDOWS\explorer.exe
    2844 C:\Programme\HPQ\IAM\Bin\asghost.exe
    3004 C:\Programme\Avira\Antivirus\avshadow.exe
    3028 C:\Programme\Analog Devices\Core\smax4pnp.exe
    3048 C:\Programme\Java\jre1.5.0_06\bin\jusched.exe
    3060 C:\Programme\HPQ\HP ProtectTools Security Manager\pthosttr.exe
    3092 C:\Programme\Hp\HP Software Update\hpwuSchd2.exe
    3132 C:\WINDOWS\system32\DLA\DLACTRLW.EXE
    3140 C:\Programme\Synaptics\SynTP\SynTPEnh.exe
    3152 C:\WINDOWS\system32\igfxtray.exe
    3160 C:\WINDOWS\system32\hkcmd.exe
    3188 C:\WINDOWS\system32\igfxpers.exe
    3196 C:\Programme\HPQ\HP Wireless Assistant\HP Wireless Assistant.exe
    3216 C:\Programme\Hewlett-Packard\HP Quick Launch Buttons\QLBCTRL.exe
    3256 C:\WINDOWS\SMINST\Scheduler.exe
    3356 C:\Programme\Gemeinsame Dateien\InstallShield\UpdateService\issch.exe
    3364 C:\Programme\Avira\Antivirus\avgnt.exe
    3392 C:\WINDOWS\system32\igfxsrvc.exe
    3492 C:\WINDOWS\system32\ctfmon.exe
    3524 C:\Programme\CCleaner\CCleaner.exe
    3624 C:\Programme\WIDCOMM\Bluetooth Software\BTTray.exe
    3952 wmiprvse.exe
    3848 C:\PROGRA~1\HPQ\Shared\HPQTOA~1.EXE
    2936 alg.exe
    1260 C:\WINDOWS\system32\wuauclt.exe
    2896 C:\Programme\Mozilla Firefox\firefox.exe
    1628 C:\WINDOWS\system32\wscntfy.exe
    2940 C:\Dokumente und Einstellungen\Martina\Desktop\MBRCheck.exe

\\.\C: --> \\.\PhysicalDrive0 at offset 0x00000000`00007e00  (NTFS)
\\.\D: --> \\.\PhysicalDrive0 at offset 0x00000010`c9422000  (NTFS)

PhysicalDrive0 Model Number: ST98823AS, Rev: 7.24    

      Size  Device Name          MBR Status
  --------------------------------------------
     74 GB  \\.\PhysicalDrive0   Unknown MBR code
            SHA1: 909AA1564C33E51D85A1C8D76C2859643DFA987D


Found non-standard or infected MBR.
Enter 'Y' and hit ENTER for more options, or 'N' to exit: 
Options:
  [1] Dump the MBR of a physical disk to file.
  [2] Restore the MBR of a physical disk with a standard boot code.
  [3] Exit.

Enter your choice: 

Done!
Geändert von trojanernick (20.05.2015 um 09:08 Uhr) Grund: - Fortsetzung

Alt 20.05.2015, 20:34   #5
schrauber
/// the machine
/// TB-Ausbilder
 
Windows XP: Link in DHL-Mail angeklickt - Problem mit Antivirensoftware und MBR-Befund - Standard

Windows XP: Link in DHL-Mail angeklickt - Problem mit Antivirensoftware und MBR-Befund


hi,

Downloade dir bitte TDSSKiller TDSSKiller.exe und speichere diese Datei auf dem Desktop
  • Starte die TDSSKiller.exe - Einstellen wie in der Anleitung zu TDSSKiller beschrieben.
  • Drücke Start Scan
  • Sollten infizierte Objekte gefunden werden, wähle keinesfalls Cure. Wähle Skip und klicke auf Continue.
    TDSSKiller wird eine Logfile auf deinem Systemlaufwerk speichern (Meistens C:\)
    Als Beispiel: C:\TDSSKiller.<Version_Datum_Uhrzeit>log.txt
Poste den Inhalt bitte in jedem Fall hier in deinen Thread.

__________________
gruß,
schrauber

Proud Member of UNITE and ASAP since 2009

Spenden
Anleitungen und Hilfestellungen
Trojaner-Board Facebook-Seite

Keine Hilfestellung via PM!

Alt 20.05.2015, 21:09   #6
trojanernick
 
Windows XP: Link in DHL-Mail angeklickt - Problem mit Antivirensoftware und MBR-Befund - Standard

Windows XP: Link in DHL-Mail angeklickt - Problem mit Antivirensoftware und MBR-Befund


Hi,

TDSSKiller.txt - Teil 1:
Code:
ATTFilter
21:52:59.0390 0x04a8  TDSS rootkit removing tool 3.0.0.44 Jan 22 2015 08:27:04
21:53:01.0953 0x04a8  ============================================================
21:53:01.0953 0x04a8  Current date / time: 2015/05/20 21:53:01.0953
21:53:01.0953 0x04a8  SystemInfo:
21:53:01.0953 0x04a8  
21:53:01.0953 0x04a8  OS Version: 5.1.2600 ServicePack: 3.0
21:53:01.0953 0x04a8  Product type: Workstation
21:53:01.0953 0x04a8  ComputerName: HP-LAPTOP
21:53:01.0953 0x04a8  UserName: Administrator
21:53:01.0953 0x04a8  Windows directory: C:\WINDOWS
21:53:01.0953 0x04a8  System windows directory: C:\WINDOWS
21:53:01.0953 0x04a8  Processor architecture: Intel x86
21:53:01.0953 0x04a8  Number of processors: 2
21:53:01.0953 0x04a8  Page size: 0x1000
21:53:01.0953 0x04a8  Boot type: Safe boot with network
21:53:01.0953 0x04a8  ============================================================
21:53:02.0171 0x04a8  KLMD registered as C:\WINDOWS\system32\drivers\80455366.sys
21:53:02.0218 0x04a8  System UUID: {FBBCD9CF-9782-360E-BFEB-0AD1D9CFF98F}
21:53:02.0718 0x04a8  Drive \Device\Harddisk0\DR0 - Size: 0x12A1F16000 ( 74.53 Gb ), SectorSize: 0x200, Cylinders: 0x2861, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xF0, Type 'K0', Flags 0x00000050
21:53:02.0718 0x04a8  Drive \Device\Harddisk1\DR9 - Size: 0x3C3FFE00 ( 0.94 Gb ), SectorSize: 0x200, Cylinders: 0x7A, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
21:53:02.0718 0x04a8  ============================================================
21:53:02.0718 0x04a8  \Device\Harddisk0\DR0:
21:53:02.0718 0x04a8  MBR partitions:
21:53:02.0718 0x04a8  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x864A0D1
21:53:02.0718 0x04a8  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x864A110, BlocksNum 0xEC4000
21:53:02.0718 0x04a8  \Device\Harddisk1\DR9:
21:53:02.0718 0x04a8  MBR partitions:
21:53:02.0718 0x04a8  \Device\Harddisk1\DR9\Partition1: MBR, Type 0x6, StartLBA 0x3F, BlocksNum 0x1E1FC0
21:53:02.0718 0x04a8  ============================================================
21:53:02.0718 0x04a8  C: <-> \Device\Harddisk0\DR0\Partition1
21:53:02.0718 0x04a8  D: <-> \Device\Harddisk0\DR0\Partition2
21:53:02.0718 0x04a8  ============================================================
21:53:02.0718 0x04a8  Initialize success
21:53:02.0718 0x04a8  ============================================================
21:54:40.0468 0x06f8  ============================================================
21:54:40.0468 0x06f8  Scan started
21:54:40.0468 0x06f8  Mode: Manual; SigCheck; TDLFS; 
21:54:40.0468 0x06f8  ============================================================
21:54:40.0468 0x06f8  KSN ping started
21:54:40.0796 0x06f8  KSN ping finished: false
21:54:40.0953 0x06f8  ================ Scan system memory ========================
21:54:40.0953 0x06f8  System memory - ok
21:54:40.0953 0x06f8  ================ Scan services =============================
21:54:41.0203 0x06f8  Abiosdsk - ok
21:54:41.0203 0x06f8  abp480n5 - ok
21:54:41.0281 0x06f8  [ AC407F1A62C3A300B4F2B5A9F1D55B2C, 31F5FC61B37E22100B3A52A590295A7E827FFC581FA9960C64B9032452AAECED ] ACPI            C:\WINDOWS\system32\DRIVERS\ACPI.sys
21:54:41.0875 0x06f8  ACPI - detected UnsignedFile.Multi.Generic ( 1 )
21:54:42.0078 0x06f8  Object is SCO, delete is not allowed
21:54:42.0078 0x06f8  ACPI ( UnsignedFile.Multi.Generic ) - warning
21:54:42.0125 0x06f8  [ 9E1CA3160DAFB159CA14F83B1E317F75, 13B3E897B0E819BF734449416D9EC6EBCAC89538EC69BF48C068593B82D57004 ] ACPIEC          C:\WINDOWS\system32\DRIVERS\ACPIEC.sys
21:54:42.0125 0x06f8  ACPIEC - detected UnsignedFile.Multi.Generic ( 1 )
21:54:42.0125 0x06f8  ACPIEC ( UnsignedFile.Multi.Generic ) - warning
21:54:42.0125 0x06f8  Force sending object to P2P due to detect: ACPIEC
21:54:42.0140 0x06f8  Object send P2P result: false
21:54:42.0187 0x06f8  [ 761D5BBDB6A5867C9F8EBBB545AF7B34, 496F2DB4A253F5B802DD1E194CD60A476737E085CADC417DEAD3BE6AF716EA02 ] ADIHdAudAddService C:\WINDOWS\system32\drivers\ADIHdAud.sys
21:54:42.0187 0x06f8  ADIHdAudAddService - detected UnsignedFile.Multi.Generic ( 1 )
21:54:42.0187 0x06f8  ADIHdAudAddService ( UnsignedFile.Multi.Generic ) - warning
21:54:42.0203 0x06f8  adpu160m - ok
21:54:42.0218 0x06f8  [ C984DE22ED71414ABC42C1E03D412E33, E9591CE4C04441DE415B8CA91C79C25408C1A0F202AF671BD35F740AA96C0E30 ] AEAudioService  C:\WINDOWS\system32\drivers\AEAudio.sys
21:54:42.0250 0x06f8  AEAudioService - detected UnsignedFile.Multi.Generic ( 1 )
21:54:42.0250 0x06f8  AEAudioService ( UnsignedFile.Multi.Generic ) - warning
21:54:42.0250 0x06f8  Force sending object to P2P due to detect: AEAudioService
21:54:42.0250 0x06f8  Object send P2P result: false
21:54:42.0312 0x06f8  [ 8BED39E3C35D6A489438B8141717A557, 1B5796E56B0927360CE0759641B1151828BC0A9E45620D2B2D880491F5CE33D0 ] aec             C:\WINDOWS\system32\drivers\aec.sys
21:54:42.0312 0x06f8  aec - detected UnsignedFile.Multi.Generic ( 1 )
21:54:42.0312 0x06f8  aec ( UnsignedFile.Multi.Generic ) - warning
21:54:42.0375 0x06f8  [ 1E44BC1E83D8FD2305F8D452DB109CF9, CF5EC07E0B589FA2A4701C6CFD69E893FC3ABF274AD57AE3C13FFE49063B02C8 ] AFD             C:\WINDOWS\System32\drivers\afd.sys
21:54:42.0640 0x06f8  AFD - ok
21:54:42.0750 0x06f8  [ 4458FCB8A00DA31FDCC086449274C40D, 5863A45A24102A482DF8B90D4134C998B3ABE41A5CBB0933E8D488451C07EA4B ] AgereSoftModem  C:\WINDOWS\system32\DRIVERS\AGRSM.sys
21:54:42.0890 0x06f8  AgereSoftModem - detected UnsignedFile.Multi.Generic ( 1 )
21:54:42.0890 0x06f8  AgereSoftModem ( UnsignedFile.Multi.Generic ) - warning
21:54:42.0906 0x06f8  Aha154x - ok
21:54:42.0906 0x06f8  aic78u2 - ok
21:54:42.0921 0x06f8  aic78xx - ok
21:54:42.0968 0x06f8  [ 738D80CC01D7BC7584BE917B7F544394, DCC17AAEF5CDDF52FAAC3CC6904EF421CD595F66318A2370BEE261D5C3A8E340 ] Alerter         C:\WINDOWS\system32\alrsvc.dll
21:54:42.0968 0x06f8  Alerter - detected UnsignedFile.Multi.Generic ( 1 )
21:54:42.0968 0x06f8  Alerter ( UnsignedFile.Multi.Generic ) - warning
21:54:42.0968 0x06f8  Force sending object to P2P due to detect: Alerter
21:54:42.0968 0x06f8  Object send P2P result: false
21:54:43.0000 0x06f8  [ 190CD73D4984F94D823F9444980513E5, 93A32C2495CCA094F768BA707C74DA5C00B8A88A9236DD1A297439A7C2E6C6FA ] ALG             C:\WINDOWS\System32\alg.exe
21:54:43.0015 0x06f8  ALG - detected UnsignedFile.Multi.Generic ( 1 )
21:54:43.0015 0x06f8  ALG ( UnsignedFile.Multi.Generic ) - warning
21:54:43.0015 0x06f8  Force sending object to P2P due to detect: ALG
21:54:43.0015 0x06f8  Object send P2P result: false
21:54:43.0031 0x06f8  [ 1140AB9938809700B46BB88E46D72A96, 369379ECC5941ACE984A7F31EAABB66A2E693EDBADA639B86D26FD681D45608E ] AliIde          C:\WINDOWS\system32\DRIVERS\aliide.sys
21:54:43.0031 0x06f8  AliIde - detected UnsignedFile.Multi.Generic ( 1 )
21:54:43.0031 0x06f8  AliIde ( UnsignedFile.Multi.Generic ) - warning
21:54:43.0031 0x06f8  amsint - ok
21:54:43.0234 0x06f8  [ 4428DC966DD5D0659AA7CA913D1D7652, 267D0F64354A105A2A64AB41607E3EB22CF8B448D2EBEC62C31829F03736836D ] AntiVirMailService C:\Programme\Avira\Antivirus\avmailc.exe
21:54:43.0359 0x06f8  AntiVirMailService - ok
21:54:43.0453 0x06f8  [ EC705D6ED3A7F3D9AE42F6239707D9FE, B50F6BB0FC308E7403B1807DF2AAF87BEDE0B044128C580970A26801CCABC43F ] AntiVirSchedulerService C:\Programme\Avira\Antivirus\sched.exe
21:54:43.0546 0x06f8  AntiVirSchedulerService - ok
21:54:43.0593 0x06f8  [ EC705D6ED3A7F3D9AE42F6239707D9FE, B50F6BB0FC308E7403B1807DF2AAF87BEDE0B044128C580970A26801CCABC43F ] AntiVirService  C:\Programme\Avira\Antivirus\avguard.exe
21:54:43.0640 0x06f8  AntiVirService - ok
21:54:43.0718 0x06f8  [ 266C0506DF8BA3990E12885E64EE4420, 60995CFE54B8594179BEAB06C4498CBF997B0C85147E5DD747CE238C89F6979D ] AntiVirWebService C:\Programme\Avira\Antivirus\AVWEBGRD.EXE
21:54:43.0812 0x06f8  AntiVirWebService - ok
21:54:43.0875 0x06f8  [ D45960BE52C3C610D361977057F98C54, 9186589B502F46B47672CFB8EBD558D51B0F3CBFE4E0DDBA625A4265236518CE ] AppMgmt         C:\WINDOWS\System32\appmgmts.dll
21:54:43.0921 0x06f8  AppMgmt - detected UnsignedFile.Multi.Generic ( 1 )
21:54:43.0921 0x06f8  AppMgmt ( UnsignedFile.Multi.Generic ) - warning
21:54:43.0937 0x06f8  [ B5B8A80875C1DEDEDA8B02765642C32F, AD0C71D73B1B8225351FBF4FFB43001A32B4DAE69504C59970CD2428BB33D4EF ] Arp1394         C:\WINDOWS\system32\DRIVERS\arp1394.sys
21:54:43.0953 0x06f8  Arp1394 - detected UnsignedFile.Multi.Generic ( 1 )
21:54:43.0953 0x06f8  Arp1394 ( UnsignedFile.Multi.Generic ) - warning
21:54:43.0953 0x06f8  asc - ok
21:54:43.0968 0x06f8  asc3350p - ok
21:54:43.0984 0x06f8  asc3550 - ok
21:54:44.0125 0x06f8  [ 47589CC135E28532AFC39394BBF87F0D, 75368012C742E8F6488813638A9996EE0CB83A18051618E5B351FDD2FA8D76C6 ] ASChannel       C:\Programme\HPQ\IAM\Bin\ASChnl.dll
21:54:44.0125 0x06f8  ASChannel - detected UnsignedFile.Multi.Generic ( 1 )
21:54:44.0125 0x06f8  ASChannel ( UnsignedFile.Multi.Generic ) - warning
21:54:44.0421 0x06f8  [ 776ACEFA0CA9DF0FAA51A5FB2F435705, 72DF7ED6B085BC468994F5B3189506FD726A9A17A9C42ACA1E420D787691361D ] aspnet_state    C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe
21:54:44.0468 0x06f8  aspnet_state - ok
21:54:44.0515 0x06f8  [ B153AFFAC761E7F5FCFA822B9C4E97BC, 7E60F572A6B3C6219E3C86225AA37243AFFD74337DB7F108B04778042E5CC959 ] AsyncMac        C:\WINDOWS\system32\DRIVERS\asyncmac.sys
21:54:44.0531 0x06f8  AsyncMac - detected UnsignedFile.Multi.Generic ( 1 )
21:54:44.0531 0x06f8  Object is SCO, delete is not allowed
21:54:44.0531 0x06f8  AsyncMac ( UnsignedFile.Multi.Generic ) - warning
21:54:44.0546 0x06f8  [ 9F3A2F5AA6875C72BF062C712CFA2674, B4DF1D2C56A593C6B54DE57395E3B51D288F547842893B32B0F59228A0CF70B9 ] atapi           C:\WINDOWS\system32\DRIVERS\atapi.sys
21:54:44.0562 0x06f8  atapi - detected UnsignedFile.Multi.Generic ( 1 )
21:54:44.0562 0x06f8  Object is SCO, delete is not allowed
21:54:44.0562 0x06f8  atapi ( UnsignedFile.Multi.Generic ) - warning
21:54:44.0562 0x06f8  Force sending object to P2P due to detect: atapi
21:54:44.0562 0x06f8  Object send P2P result: false
21:54:44.0562 0x06f8  Atdisk - ok
21:54:44.0609 0x06f8  [ 9916C1225104BA14794209CFA8012159, 5D6F05F715C52A16D05CAE15C3DFE77A139A7F27F7AE710EC9A10F9EE05115A1 ] Atmarpc         C:\WINDOWS\system32\DRIVERS\atmarpc.sys
21:54:44.0609 0x06f8  Atmarpc - detected UnsignedFile.Multi.Generic ( 1 )
21:54:44.0609 0x06f8  Atmarpc ( UnsignedFile.Multi.Generic ) - warning
21:54:44.0671 0x06f8  [ 002ECB6F1197A7754CC87F2073F41841, 963E38747747268F86E86F1C09682912C4616601A661577E112BB26DC7AFB23F ] ATSWPDRV        C:\WINDOWS\system32\DRIVERS\ATSwpDrv.sys
21:54:44.0687 0x06f8  ATSWPDRV - detected UnsignedFile.Multi.Generic ( 1 )
21:54:44.0687 0x06f8  ATSWPDRV ( UnsignedFile.Multi.Generic ) - warning
21:54:44.0687 0x06f8  Force sending object to P2P due to detect: ATSWPDRV
21:54:44.0687 0x06f8  Object send P2P result: false
21:54:44.0734 0x06f8  [ 58ED0D5452DF7BE732193E7999C6B9A4, 254E2ECF592DDA2E3E6CA9F6F3E77926E2265586A7937BA95199ED47BCDE69A3 ] AudioSrv        C:\WINDOWS\System32\audiosrv.dll
21:54:44.0734 0x06f8  AudioSrv - detected UnsignedFile.Multi.Generic ( 1 )
21:54:44.0734 0x06f8  Object is SCO, delete is not allowed
21:54:44.0734 0x06f8  AudioSrv ( UnsignedFile.Multi.Generic ) - warning
21:54:44.0750 0x06f8  [ D9F724AA26C010A217C97606B160ED68, 329B5118F2409731D06FDAE85B6ADD64A048292801BCB3546651CEB303111695 ] audstub         C:\WINDOWS\system32\DRIVERS\audstub.sys
21:54:44.0750 0x06f8  audstub - detected UnsignedFile.Multi.Generic ( 1 )
21:54:44.0750 0x06f8  audstub ( UnsignedFile.Multi.Generic ) - warning
21:54:44.0812 0x06f8  [ EC17E91BC9026C5ED580FB2B13E341AB, 2D9421AE05F3D4A8DBD69D73B4B562EA4F93FBD12AB2F77C52DA8B411626EBF1 ] avgntflt        C:\WINDOWS\system32\DRIVERS\avgntflt.sys
21:54:45.0140 0x06f8  avgntflt - ok
21:54:45.0187 0x06f8  [ 7BAA36ED6C6098899D9E1269A61085C3, 2D101F1C6C79B0BD722BDB5939344F65728EC2F5B747B6619640775E6FDEFC0A ] avipbb          C:\WINDOWS\system32\DRIVERS\avipbb.sys
21:54:45.0203 0x06f8  avipbb - ok
21:54:45.0312 0x06f8  [ 7E7520D15E0D509A5B42C28F270A29B5, 6542BF31BB6B5D967EC21B7B11CE6CF8F3BDB81DF06CA8D1FB4956DA4D66F244 ] Avira.OE.ServiceHost C:\Programme\Avira\Launcher\Avira.ServiceHost.exe
21:54:45.0328 0x06f8  Avira.OE.ServiceHost - ok
21:54:45.0359 0x06f8  [ F80F5DCA8A5D9D93CC5BE933D20CAF05, 2AFBB2D62127FACBCABBB3E78F3568A6BA016ED4A97A1490BAA29A1EFB7A4408 ] avkmgr          C:\WINDOWS\system32\DRIVERS\avkmgr.sys
21:54:45.0375 0x06f8  avkmgr - ok
21:54:45.0406 0x06f8  [ C0ACD392ECE55784884CC208AAFA06CE, B87B47062E2BAFED50D0A9CC83D00B986298A2A9E33B52D5EA331CDC5C046C56 ] b57w2k          C:\WINDOWS\system32\DRIVERS\b57xp32.sys
21:54:45.0437 0x06f8  b57w2k - detected UnsignedFile.Multi.Generic ( 1 )
21:54:45.0437 0x06f8  b57w2k ( UnsignedFile.Multi.Generic ) - warning
21:54:45.0500 0x06f8  [ C768C8A463D32C219CE291645A0621A4, 04878E954E36731445F216017E4FB89686461D6FFD1815803EFBC9DAFAD4CD1E ] bcm4sbxp        C:\WINDOWS\system32\DRIVERS\bcm4sbxp.sys
21:54:45.0500 0x06f8  bcm4sbxp - detected UnsignedFile.Multi.Generic ( 1 )
21:54:45.0500 0x06f8  bcm4sbxp ( UnsignedFile.Multi.Generic ) - warning
21:54:45.0546 0x06f8  [ DA1F27D85E0D1525F6621372E7B685E9, 5A81A46A3BDD19DAFC6C87D277267A5D44F3A1B5302F2CC1111D84B7BAD5610D ] Beep            C:\WINDOWS\system32\drivers\Beep.sys
21:54:45.0546 0x06f8  Beep - detected UnsignedFile.Multi.Generic ( 1 )
21:54:45.0546 0x06f8  Beep ( UnsignedFile.Multi.Generic ) - warning
21:54:45.0546 0x06f8  Force sending object to P2P due to detect: Beep
21:54:45.0546 0x06f8  Object send P2P result: false
21:54:45.0656 0x06f8  [ D6F603772A789BB3228F310D650B8BD1, A539025C70FD998A9B8703DE05CAE5E99BC721D8852EA561EBC2DD20CB371D2E ] BITS            C:\WINDOWS\system32\qmgr.dll
21:54:45.0781 0x06f8  BITS - detected UnsignedFile.Multi.Generic ( 1 )
21:54:45.0781 0x06f8  BITS ( UnsignedFile.Multi.Generic ) - warning
21:54:45.0828 0x06f8  [ B71549F23736ADF83A571061C47777FD, A1D0320736EE777030A543DCA086367EB5A5B6F95088B9C22D8E09326C3A39A9 ] Browser         C:\WINDOWS\System32\browser.dll
21:54:45.0890 0x06f8  Browser - ok
21:54:46.0031 0x06f8  [ 42884A5E3555CFEC2E97CB08C7CD8957, 97ED05471BFF97EC35A676CD93E35A11A696F5155E83C1215C7066FEB76CABFB ] BTKRNL          C:\WINDOWS\system32\DRIVERS\btkrnl.sys
21:54:46.0156 0x06f8  BTKRNL - detected UnsignedFile.Multi.Generic ( 1 )
21:54:46.0156 0x06f8  BTKRNL ( UnsignedFile.Multi.Generic ) - warning
21:54:46.0328 0x06f8  [ D2467DBABD2D6064085C3F38036C4683, F6E003BC279DB11AAF0815F0F04AE8BA8868220814B1BC79D28A89CCDB3BBB18 ] btwdins         C:\Programme\WIDCOMM\Bluetooth Software\bin\btwdins.exe
21:54:46.0359 0x06f8  btwdins - detected UnsignedFile.Multi.Generic ( 1 )
21:54:46.0359 0x06f8  btwdins ( UnsignedFile.Multi.Generic ) - warning
21:54:46.0390 0x06f8  [ 1F5796135B955348BA0622D2EACE3E47, 0A771C6EF6928CBDE07D79F22A4E1CC9D88D9567F17156B473E7ACD50C8453F6 ] BTWUSB          C:\WINDOWS\system32\Drivers\btwusb.sys
21:54:46.0390 0x06f8  BTWUSB - detected UnsignedFile.Multi.Generic ( 1 )
21:54:46.0390 0x06f8  BTWUSB ( UnsignedFile.Multi.Generic ) - warning
21:54:46.0421 0x06f8  [ 90A673FC8E12A79AFBED2576F6A7AAF9, BDE7858A3457DB979FEDD8577FA6321BF72848E4A7BF9F173C78A6A10CBB3EBE ] cbidf2k         C:\WINDOWS\system32\drivers\cbidf2k.sys
21:54:46.0421 0x06f8  cbidf2k - detected UnsignedFile.Multi.Generic ( 1 )
21:54:46.0421 0x06f8  cbidf2k ( UnsignedFile.Multi.Generic ) - warning
21:54:46.0437 0x06f8  cd20xrnt - ok
21:54:46.0468 0x06f8  [ C1B486A7658353D33A10CC15211A873B, AA4DD9E7AAE5AAB1146B360B17001F975D2F29A1281CF7B13E7136480410F347 ] Cdaudio         C:\WINDOWS\system32\drivers\Cdaudio.sys
21:54:46.0468 0x06f8  Cdaudio - detected UnsignedFile.Multi.Generic ( 1 )
21:54:46.0468 0x06f8  Cdaudio ( UnsignedFile.Multi.Generic ) - warning
21:54:46.0531 0x06f8  [ C885B02847F5D2FD45A24E219ED93B32, B26B2F8E3A831E2B65EB0C5195B0645CD50E22615CE79C9B0B391CD563B121DB ] Cdfs            C:\WINDOWS\system32\drivers\Cdfs.sys
21:54:46.0531 0x06f8  Cdfs - detected UnsignedFile.Multi.Generic ( 1 )
21:54:46.0531 0x06f8  Object is SCO, delete is not allowed
21:54:46.0531 0x06f8  Cdfs ( UnsignedFile.Multi.Generic ) - warning
21:54:46.0531 0x06f8  Force sending object to P2P due to detect: Cdfs
21:54:46.0531 0x06f8  Object send P2P result: false
21:54:46.0578 0x06f8  [ 1F4260CC5B42272D71F79E570A27A4FE, B51C2A3ED3C309953D0EA45869C8E464C10F2533DADE9E0286AF674979098D1D ] Cdrom           C:\WINDOWS\system32\DRIVERS\cdrom.sys
21:54:46.0593 0x06f8  Cdrom - detected UnsignedFile.Multi.Generic ( 1 )
21:54:46.0593 0x06f8  Object is SCO, delete is not allowed
21:54:46.0593 0x06f8  Cdrom ( UnsignedFile.Multi.Generic ) - warning
21:54:46.0593 0x06f8  Force sending object to P2P due to detect: Cdrom
21:54:46.0593 0x06f8  Object send P2P result: false
21:54:46.0609 0x06f8  Changer - ok
21:54:46.0656 0x06f8  [ 28E3040D1F1CA2008CD6B29DFEBC9A5E, ACB458E8A11AA2143734A5A0281973D95158E6402A6453F98F9832D1E19B01F9 ] CiSvc           C:\WINDOWS\system32\cisvc.exe
21:54:46.0671 0x06f8  CiSvc - detected UnsignedFile.Multi.Generic ( 1 )
21:54:46.0671 0x06f8  CiSvc ( UnsignedFile.Multi.Generic ) - warning
21:54:46.0671 0x06f8  [ 778A30ED3C134EB7E406AFC407E9997D, 3E6AD115AB2596EB001BC21AEADDBC75F27C42DB90C986B7AD17743CE631234E ] ClipSrv         C:\WINDOWS\system32\clipsrv.exe
21:54:46.0671 0x06f8  ClipSrv - detected UnsignedFile.Multi.Generic ( 1 )
21:54:46.0671 0x06f8  ClipSrv ( UnsignedFile.Multi.Generic ) - warning
21:54:46.0671 0x06f8  Force sending object to P2P due to detect: ClipSrv
21:54:46.0671 0x06f8  Object send P2P result: false
21:54:46.0750 0x06f8  [ C5A75EB48E2344ABDC162BDA79E16841, 6070A8AAFD38FBC6A68A2B10C20117612354DF21B4492D90CA522BFB6870D726 ] clr_optimization_v4.0.30319_32 C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
21:54:46.0968 0x06f8  clr_optimization_v4.0.30319_32 - ok
21:54:47.0000 0x06f8  [ 0F6C187D38D98F8DF904589A5F94D411, DB987093446216CEE913AC27503BF7E23E5A62DF169B355730285DAB64F6ED28 ] CmBatt          C:\WINDOWS\system32\DRIVERS\CmBatt.sys
21:54:47.0000 0x06f8  CmBatt - detected UnsignedFile.Multi.Generic ( 1 )
21:54:47.0000 0x06f8  CmBatt ( UnsignedFile.Multi.Generic ) - warning
21:54:47.0000 0x06f8  CmdIde - ok
21:54:47.0031 0x06f8  [ 6E4C9F21F0FAE8940661144F41B13203, 731202A0DD021FCF9287FEA631212603AAAC23F9E7F76B2882F913B18A971F1C ] Compbatt        C:\WINDOWS\system32\DRIVERS\compbatt.sys
21:54:47.0031 0x06f8  Compbatt - detected UnsignedFile.Multi.Generic ( 1 )
21:54:47.0031 0x06f8  Compbatt ( UnsignedFile.Multi.Generic ) - warning
21:54:47.0031 0x06f8  COMSysApp - ok
21:54:47.0062 0x06f8  Cpqarray - ok
21:54:47.0125 0x06f8  [ 611F824E5C703A5A899F84C5F1699E4D, 9EFA5612FE58E9974E4CC13D39D91D7B5DEA3ED66BEFBED3AAE6D2800FD8162A ] CryptSvc        C:\WINDOWS\System32\cryptsvc.dll
21:54:47.0140 0x06f8  CryptSvc - detected UnsignedFile.Multi.Generic ( 1 )
21:54:47.0140 0x06f8  CryptSvc ( UnsignedFile.Multi.Generic ) - warning
21:54:47.0140 0x06f8  dac2w2k - ok
21:54:47.0156 0x06f8  dac960nt - ok
21:54:47.0234 0x06f8  [ 3127AFBF2C1ED0AB14A1BBB7AAECB85B, ECFBACE3CBF2384948EA1C445BDA3955EB4F44A9874286E6537C67DC1283E5B0 ] DcomLaunch      C:\WINDOWS\system32\rpcss.dll
21:54:47.0375 0x06f8  DcomLaunch - ok
21:54:47.0421 0x06f8  [ C29A1C9B75BA38FA37F8C44405DEC360, 7476D8BC4380CDE56764B2034AF3741DA4ED00F315E41C9A02B5EAD04374F241 ] Dhcp            C:\WINDOWS\System32\dhcpcsvc.dll
21:54:47.0484 0x06f8  Dhcp - detected UnsignedFile.Multi.Generic ( 1 )
21:54:47.0484 0x06f8  Object is SCO, delete is not allowed
21:54:47.0484 0x06f8  Dhcp ( UnsignedFile.Multi.Generic ) - warning
21:54:47.0531 0x06f8  [ 044452051F3E02E7963599FC8F4F3E25, 584BDDB074618BE76454CF90E74829CFF588B5B5FAEB793E2F7AAD26352DD689 ] Disk            C:\WINDOWS\system32\DRIVERS\disk.sys
21:54:47.0546 0x06f8  Disk - detected UnsignedFile.Multi.Generic ( 1 )
21:54:47.0546 0x06f8  Object is SCO, delete is not allowed
21:54:47.0546 0x06f8  Disk ( UnsignedFile.Multi.Generic ) - warning
21:54:47.0640 0x06f8  [ 244B6285B14E06A9BA81B3ED9B9A3B38, BEC423C8F1EAE77F5E3F0F9695C7965BBD1C177E57BF4E601D0ADD31B10160DF ] DLABOIOM        C:\WINDOWS\system32\DLA\DLABOIOM.SYS
21:54:47.0640 0x06f8  DLABOIOM - detected UnsignedFile.Multi.Generic ( 1 )
21:54:47.0640 0x06f8  DLABOIOM ( UnsignedFile.Multi.Generic ) - warning
21:54:47.0671 0x06f8  [ D979BEBCF7EDCC9C9EE1857D1A68C67B, 936450704E4F2ADA6FB87F827C042FEC67F67C83D361F858F5F41AA6E8B7256D ] DLACDBHM        C:\WINDOWS\system32\Drivers\DLACDBHM.SYS
21:54:47.0671 0x06f8  DLACDBHM - detected UnsignedFile.Multi.Generic ( 1 )
21:54:47.0671 0x06f8  DLACDBHM ( UnsignedFile.Multi.Generic ) - warning
21:54:47.0671 0x06f8  Force sending object to P2P due to detect: DLACDBHM
21:54:47.0671 0x06f8  Object send P2P result: false
21:54:47.0703 0x06f8  [ BE6FA594AA49EFA8D5EF032DFE0A678D, 3F644192D7CD0855B27951F5887563A5B2CB578320342C2F74ABD0547E846DC7 ] DLADResN        C:\WINDOWS\system32\DLA\DLADResN.SYS
21:54:47.0703 0x06f8  DLADResN - detected UnsignedFile.Multi.Generic ( 1 )
21:54:47.0703 0x06f8  DLADResN ( UnsignedFile.Multi.Generic ) - warning
21:54:47.0703 0x06f8  Force sending object to P2P due to detect: DLADResN
21:54:47.0703 0x06f8  Object send P2P result: false
21:54:47.0718 0x06f8  [ 46CDF41AB0F616168F2C03EDB590643A, 59856D2C5A8D306FD362866FC9717A183D9964754DB3DCA667C2C4E0F333EF13 ] DLAIFS_M        C:\WINDOWS\system32\DLA\DLAIFS_M.SYS
21:54:47.0718 0x06f8  DLAIFS_M - detected UnsignedFile.Multi.Generic ( 1 )
21:54:47.0718 0x06f8  DLAIFS_M ( UnsignedFile.Multi.Generic ) - warning
21:54:47.0750 0x06f8  [ 94F39387819A9AE05C788CFD7EA4E16B, E64AAAAF0C6CF5E1C9D44C9A93CC5995B94643574979444AC9C2EADF4712ED48 ] DLAOPIOM        C:\WINDOWS\system32\DLA\DLAOPIOM.SYS
21:54:47.0750 0x06f8  DLAOPIOM - detected UnsignedFile.Multi.Generic ( 1 )
21:54:47.0750 0x06f8  DLAOPIOM ( UnsignedFile.Multi.Generic ) - warning
21:54:47.0765 0x06f8  [ F4DCC4DF6B27EE4E3D08258ECDDECB1F, 823FDC4688977A3F7C5895BFF03FC49999311FD85D32D653AB998D99B505D885 ] DLAPoolM        C:\WINDOWS\system32\DLA\DLAPoolM.SYS
21:54:47.0781 0x06f8  DLAPoolM - detected UnsignedFile.Multi.Generic ( 1 )
21:54:47.0781 0x06f8  DLAPoolM ( UnsignedFile.Multi.Generic ) - warning
21:54:47.0796 0x06f8  [ 7EE0852AE8907689DF25049DCD2342E8, A5F08D78200F5CB02539C87EA574EB34F0C330C290D7BE5D21ED42B0E04E5CF4 ] DLARTL_N        C:\WINDOWS\system32\Drivers\DLARTL_N.SYS
21:54:47.0796 0x06f8  DLARTL_N - detected UnsignedFile.Multi.Generic ( 1 )
21:54:47.0796 0x06f8  DLARTL_N ( UnsignedFile.Multi.Generic ) - warning
21:54:47.0812 0x06f8  [ BDE11A8C697C5E22AEDF34CA3FDB5940, CB3D2709BB6299FED9EAA3D25335D3088006EF8313D22D4C274B7B1F011C834E ] DLAUDFAM        C:\WINDOWS\system32\DLA\DLAUDFAM.SYS
21:54:47.0812 0x06f8  DLAUDFAM - detected UnsignedFile.Multi.Generic ( 1 )
21:54:47.0812 0x06f8  DLAUDFAM ( UnsignedFile.Multi.Generic ) - warning
21:54:47.0828 0x06f8  [ 069D67EED1CEC572DC28CB5582B5AA96, 6FB880B930199AD4D1EC3BB8E214FD0BB5D0BD28C4EC6A5A373A5B65C4717354 ] DLAUDF_M        C:\WINDOWS\system32\DLA\DLAUDF_M.SYS
21:54:47.0828 0x06f8  DLAUDF_M - detected UnsignedFile.Multi.Generic ( 1 )
21:54:47.0828 0x06f8  DLAUDF_M ( UnsignedFile.Multi.Generic ) - warning
21:54:47.0843 0x06f8  dmadmin - ok
21:54:47.0953 0x06f8  [ 0DCFC8395A99FECBB1EF771CEC7FE4EA, 89B0AEE5BE01B9FE4FF2989FF16DB6121721ACDFCE6D9655C0ACD321D8C308BE ] dmboot          C:\WINDOWS\system32\drivers\dmboot.sys
21:54:48.0000 0x06f8  dmboot - detected UnsignedFile.Multi.Generic ( 1 )
21:54:48.0000 0x06f8  dmboot ( UnsignedFile.Multi.Generic ) - warning
21:54:48.0000 0x06f8  Force sending object to P2P due to detect: dmboot
21:54:48.0000 0x06f8  Object send P2P result: false
21:54:48.0046 0x06f8  [ 53720AB12B48719D00E327DA470A619A, 800264866A6267C9000A85D00095D57908D059D737E5F28C9C4049B884C46228 ] dmio            C:\WINDOWS\system32\drivers\dmio.sys
21:54:48.0062 0x06f8  dmio - detected UnsignedFile.Multi.Generic ( 1 )
21:54:48.0062 0x06f8  Object is SCO, delete is not allowed
21:54:48.0062 0x06f8  dmio ( UnsignedFile.Multi.Generic ) - warning
21:54:48.0062 0x06f8  Force sending object to P2P due to detect: dmio
21:54:48.0062 0x06f8  Object send P2P result: false
21:54:48.0093 0x06f8  [ E9317282A63CA4D188C0DF5E09C6AC5F, D41E002F555FE9015EF620975255F58BB79198CA1FF0E09EC950CB450FF77CF7 ] dmload          C:\WINDOWS\system32\drivers\dmload.sys
21:54:48.0109 0x06f8  dmload - detected UnsignedFile.Multi.Generic ( 1 )
21:54:48.0109 0x06f8  dmload ( UnsignedFile.Multi.Generic ) - warning
21:54:48.0140 0x06f8  [ 25C83FFBBA13B554EB6D59A9B2E2EE78, 9FBD655ED3E9163AE11EC207F283E387EFBA5A23108EC790BAE4846B35E66F16 ] dmserver        C:\WINDOWS\System32\dmserver.dll
21:54:48.0156 0x06f8  dmserver - detected UnsignedFile.Multi.Generic ( 1 )
21:54:48.0156 0x06f8  dmserver ( UnsignedFile.Multi.Generic ) - warning
21:54:48.0218 0x06f8  [ 8A208DFCF89792A484E76C40E5F50B45, 4E40E2EB38C6254E7CAA488200E89EE7DEBBBA773890BC6A84313CC68178D54F ] DMusic          C:\WINDOWS\system32\drivers\DMusic.sys
21:54:48.0218 0x06f8  DMusic - detected UnsignedFile.Multi.Generic ( 1 )
21:54:48.0218 0x06f8  DMusic ( UnsignedFile.Multi.Generic ) - warning
21:54:48.0265 0x06f8  [ 407F3227AC618FD1CA54B335B083DE07, 96B8E734648FE9A4EBA59C096C8779BD1A11A93A6303AFD438A406C8122D36C6 ] Dnscache        C:\WINDOWS\System32\dnsrslvr.dll
21:54:48.0296 0x06f8  Dnscache - ok
21:54:48.0359 0x06f8  [ 676E36C4FF5BCEA1900F44182B9723E6, 740CF18BD40E00FEA26CF0E6340C5D18F7D0B4390055FAEEC258B3AA790C4AE9 ] Dot3svc         C:\WINDOWS\System32\dot3svc.dll
21:54:48.0359 0x06f8  Dot3svc - detected UnsignedFile.Multi.Generic ( 1 )
21:54:48.0359 0x06f8  Dot3svc ( UnsignedFile.Multi.Generic ) - warning
21:54:48.0375 0x06f8  dpti2o - ok
21:54:48.0406 0x06f8  [ 8F5FCFF8E8848AFAC920905FBD9D33C8, C8C6FB97AB0871C8C88A2201525A5CF10D5131CB6980D32692ED7A8F58399AD5 ] drmkaud         C:\WINDOWS\system32\drivers\drmkaud.sys
21:54:48.0406 0x06f8  drmkaud - detected UnsignedFile.Multi.Generic ( 1 )
21:54:48.0406 0x06f8  drmkaud ( UnsignedFile.Multi.Generic ) - warning
21:54:48.0406 0x06f8  Force sending object to P2P due to detect: drmkaud
21:54:48.0406 0x06f8  Object send P2P result: false
21:54:48.0453 0x06f8  [ FE923D5529144D47B907663D2838C032, 58102F40157C948412C8F1B50B065172190EFE9D4A2401D13070E592E15EBB65 ] DRVMCDB         C:\WINDOWS\system32\Drivers\DRVMCDB.SYS
21:54:48.0468 0x06f8  DRVMCDB - detected UnsignedFile.Multi.Generic ( 1 )
21:54:48.0468 0x06f8  DRVMCDB ( UnsignedFile.Multi.Generic ) - warning
21:54:48.0468 0x06f8  [ B4869D320428CDC5EC4D7F5E808E99B5, A84D1D65E84C0B17CE48188AD95DF52E1FEF785E6C6415E028CB5F7F4F31C466 ] DRVNDDM         C:\WINDOWS\system32\Drivers\DRVNDDM.SYS
21:54:48.0484 0x06f8  DRVNDDM - detected UnsignedFile.Multi.Generic ( 1 )
21:54:48.0484 0x06f8  DRVNDDM ( UnsignedFile.Multi.Generic ) - warning
21:54:48.0484 0x06f8  Force sending object to P2P due to detect: DRVNDDM
21:54:48.0484 0x06f8  Object send P2P result: false
21:54:48.0515 0x06f8  [ B5CB3084046146FD2587D8C9B219FEB4, 8233F47FDD9DB112CEEB62EED755648E3B35032DFABAD2DCD3F6C6952D0D7D42 ] eabfiltr        C:\WINDOWS\system32\DRIVERS\eabfiltr.sys
21:54:48.0515 0x06f8  eabfiltr - detected UnsignedFile.Multi.Generic ( 1 )
21:54:48.0515 0x06f8  eabfiltr ( UnsignedFile.Multi.Generic ) - warning
21:54:48.0546 0x06f8  [ 231F4547AE1E4B3E60ECA66C3A96D218, FE13CB79024F3C1DFBD26AC4DE8AB2A00FF36D5805C7EF300B7AF2D24B3A2B92 ] eabusb          C:\WINDOWS\system32\DRIVERS\eabusb.sys
21:54:48.0546 0x06f8  eabusb - detected UnsignedFile.Multi.Generic ( 1 )
21:54:48.0546 0x06f8  eabusb ( UnsignedFile.Multi.Generic ) - warning
21:54:48.0593 0x06f8  [ 4E4F2FDDAB0A0736D7671134DCCE91FB, 8E2C57D1A006856C47CBDD5765A9DD317DB205B26DA8BFC70555A506257A1CD9 ] EapHost         C:\WINDOWS\System32\eapsvc.dll
21:54:48.0593 0x06f8  EapHost - detected UnsignedFile.Multi.Generic ( 1 )
21:54:48.0593 0x06f8  EapHost ( UnsignedFile.Multi.Generic ) - warning
21:54:48.0640 0x06f8  [ 877C18558D70587AA7823A1A308AC96B, 6B336A62112988D855513F45153F73F8470C41A448E9B7438B4A8EC1813AABF1 ] ERSvc           C:\WINDOWS\System32\ersvc.dll
21:54:48.0640 0x06f8  ERSvc - detected UnsignedFile.Multi.Generic ( 1 )
21:54:48.0640 0x06f8  ERSvc ( UnsignedFile.Multi.Generic ) - warning
21:54:48.0640 0x06f8  Force sending object to P2P due to detect: ERSvc
21:54:48.0640 0x06f8  Object send P2P result: false
21:54:48.0703 0x06f8  [ A3EDBE9053889FB24AB22492472B39DC, 6F2ED6E04BDE2FCA2A8BF9BD2D1D6923DE6EAECB46F582B6C0BD1CF364D65C9E ] Eventlog        C:\WINDOWS\system32\services.exe
21:54:48.0750 0x06f8  Eventlog - ok
21:54:48.0765 0x06f8  [ AF4F6B5739D18CA7972AB53E091CBC74, A399E2CC026730D3A429727AAB48093B9F1E5DD8EB6336519C7F16182FDB3905 ] EventSystem     C:\WINDOWS\system32\es.dll
21:54:48.0828 0x06f8  EventSystem - ok
21:54:48.0890 0x06f8  [ 38D332A6D56AF32635675F132548343E, E6909DB836AF679B4F4D62C7396D6C82769CC7ABB8C919C2AABFE934FCE268F6 ] Fastfat         C:\WINDOWS\system32\drivers\Fastfat.sys
21:54:48.0890 0x06f8  Fastfat - detected UnsignedFile.Multi.Generic ( 1 )
21:54:48.0890 0x06f8  Object is SCO, delete is not allowed
21:54:48.0890 0x06f8  Fastfat ( UnsignedFile.Multi.Generic ) - warning
21:54:48.0953 0x06f8  [ 2DB7D303C36DDD055215052F118E8E75, BE6E7BBE12A7A4EDF1F1C2935350603970C7426BBCA7A1A6644BB8999123AF17 ] FastUserSwitchingCompatibility C:\WINDOWS\System32\shsvcs.dll
21:54:49.0000 0x06f8  FastUserSwitchingCompatibility - ok
21:54:49.0046 0x06f8  [ 92CDD60B6730B9F50F6A1A0C1F8CDC81, 8307A532AB4D05CBBCE206DC2759497708BF5AAA880BD00F0E4F281D8578A1F5 ] Fdc             C:\WINDOWS\system32\DRIVERS\fdc.sys
21:54:49.0046 0x06f8  Fdc - detected UnsignedFile.Multi.Generic ( 1 )
21:54:49.0046 0x06f8  Object is SCO, delete is not allowed
21:54:49.0046 0x06f8  Fdc ( UnsignedFile.Multi.Generic ) - warning
21:54:49.0078 0x06f8  [ B0678A548587C5F1967B0D70BACAD6C1, 7E49910212ED87313F926E4800EA8D34809C287A686CA69B82B79C1A6451F88C ] Fips            C:\WINDOWS\system32\drivers\Fips.sys
21:54:49.0078 0x06f8  Fips - detected UnsignedFile.Multi.Generic ( 1 )
21:54:49.0078 0x06f8  Fips ( UnsignedFile.Multi.Generic ) - warning
21:54:49.0078 0x06f8  Force sending object to P2P due to detect: Fips
21:54:49.0093 0x06f8  Object send P2P result: false
21:54:49.0109 0x06f8  [ 9D27E7B80BFCDF1CDD9B555862D5E7F0, 69C271AD5BCEBFD8AE5A769BDD7EC51256DA3A8ADAD5D12E5C0D13F4E82D8805 ] Flpydisk        C:\WINDOWS\system32\DRIVERS\flpydisk.sys
21:54:49.0109 0x06f8  Flpydisk - detected UnsignedFile.Multi.Generic ( 1 )
21:54:49.0109 0x06f8  Object is SCO, delete is not allowed
21:54:49.0109 0x06f8  Flpydisk ( UnsignedFile.Multi.Generic ) - warning
21:54:49.0109 0x06f8  Force sending object to P2P due to detect: Flpydisk
21:54:49.0109 0x06f8  Object send P2P result: false
21:54:49.0171 0x06f8  [ B2CF4B0786F8212CB92ED2B50C6DB6B0, 280F5CF8A90F7BEDE73ADD0DD0F8952088133A7CA9A3D3B7041957E33B36845D ] FltMgr          C:\WINDOWS\system32\drivers\fltmgr.sys
21:54:49.0187 0x06f8  FltMgr - detected UnsignedFile.Multi.Generic ( 1 )
21:54:49.0187 0x06f8  Object is SCO, delete is not allowed
21:54:49.0187 0x06f8  FltMgr ( UnsignedFile.Multi.Generic ) - warning
21:54:49.0250 0x06f8  [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A, EC635E071201A766845D48973772CBE0958942B4162F3F5F70660D114CC877E0 ] Fs_Rec          C:\WINDOWS\system32\drivers\Fs_Rec.sys
21:54:49.0250 0x06f8  Fs_Rec - detected UnsignedFile.Multi.Generic ( 1 )
21:54:49.0250 0x06f8  Object is SCO, delete is not allowed
21:54:49.0250 0x06f8  Fs_Rec ( UnsignedFile.Multi.Generic ) - warning
21:54:49.0265 0x06f8  [ 8F1955CE42E1484714B542F341647778, 8EB3F99625F409D3032561E8AB44BEFBFBFBA4EC873C2151C92A5CAAF7F2AA55 ] Ftdisk          C:\WINDOWS\system32\DRIVERS\ftdisk.sys
21:54:49.0281 0x06f8  Ftdisk - detected UnsignedFile.Multi.Generic ( 1 )
21:54:49.0281 0x06f8  Object is SCO, delete is not allowed
21:54:49.0281 0x06f8  Ftdisk ( UnsignedFile.Multi.Generic ) - warning
21:54:49.0296 0x06f8  [ 0A02C63C8B144BD8C86B103DEE7C86A2, 7A3235DD3E1995DD72B212FAEB3ECA2A974434DE9BF6D269EA11BA65A80E7E50 ] Gpc             C:\WINDOWS\system32\DRIVERS\msgpc.sys
21:54:49.0296 0x06f8  Gpc - detected UnsignedFile.Multi.Generic ( 1 )
21:54:49.0296 0x06f8  Gpc ( UnsignedFile.Multi.Generic ) - warning
21:54:49.0312 0x06f8  GTIPCI21 - ok
21:54:49.0375 0x06f8  [ C1B577B2169900F4CF7190C39F085794, 73E104B96A48F4C80D8C37254ECB0891D15C0D2F0C251B57C168F90D60316447 ] gusvc           C:\Programme\Google\Common\Google Updater\GoogleUpdaterService.exe
21:54:49.0390 0x06f8  gusvc - ok
21:54:49.0421 0x06f8  [ 4D4D97671C63C3AF869B3518E6054204, 2163373A69DDF2A6E63B20003B1D6E5ECC775D8D6A426BE81CEDE9A5A79E872E ] HBtnKey         C:\WINDOWS\system32\DRIVERS\cpqbttn.sys
21:54:49.0421 0x06f8  HBtnKey - detected UnsignedFile.Multi.Generic ( 1 )
21:54:49.0421 0x06f8  HBtnKey ( UnsignedFile.Multi.Generic ) - warning
21:54:49.0453 0x06f8  [ 573C7D0A32852B48F3058CFD8026F511, BC384BBA394AFDCDA1A9ABC858C692AA84A1F0A31AF3DDF7F38D120C027927FB ] HDAudBus        C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
21:54:49.0468 0x06f8  HDAudBus - detected UnsignedFile.Multi.Generic ( 1 )
21:54:49.0468 0x06f8  HDAudBus ( UnsignedFile.Multi.Generic ) - warning
21:54:49.0609 0x06f8  [ CB66BF85BF599BEFD6C6A57C2E20357F, 55D3A0F9279FF316766F42548FCB61C452942B08A37590C4892DF110BE4E53C6 ] helpsvc         C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
21:54:49.0609 0x06f8  helpsvc - detected UnsignedFile.Multi.Generic ( 1 )
21:54:49.0609 0x06f8  helpsvc ( UnsignedFile.Multi.Generic ) - warning
21:54:49.0625 0x06f8  HidServ - ok
21:54:49.0671 0x06f8  [ ED29F14101523A6E0E808107405D452C, B8FA987637787BEECC2EB06D36293DAC355523392B49A8C5A9491EEE961917E9 ] hkmsvc          C:\WINDOWS\System32\kmsvc.dll
21:54:49.0671 0x06f8  hkmsvc - detected UnsignedFile.Multi.Generic ( 1 )
21:54:49.0671 0x06f8  hkmsvc ( UnsignedFile.Multi.Generic ) - warning
21:54:49.0687 0x06f8  hpn - ok
21:54:49.0781 0x06f8  [ 04C1DCBB226C6AE647B794833CE3CEB6, 7C89908766962169FA877D1A78C3628EDBAE2B25A3BBEE6DBB1D19C272A428D0 ] hpqwmiex        C:\Programme\Hewlett-Packard\Shared\hpqwmiex.exe
21:54:49.0796 0x06f8  hpqwmiex - detected UnsignedFile.Multi.Generic ( 1 )
21:54:49.0796 0x06f8  hpqwmiex ( UnsignedFile.Multi.Generic ) - warning
21:54:49.0828 0x06f8  [ F80A415EF82CD06FFAF0D971528EAD38, 524D9E9201572929522F6805011783711B7C0F76308B924C89CF75F4B7A1FDF3 ] HTTP            C:\WINDOWS\system32\Drivers\HTTP.sys
21:54:49.0875 0x06f8  HTTP - ok
21:54:49.0875 0x06f8  [ 9E4ADB854CEBCFB81A4B36718FEECD16, 677AB64460775686F8366D6BF35D420A2486C3F07338A00A7C2788A5142B9F08 ] HTTPFilter      C:\WINDOWS\System32\w3ssl.dll
21:54:49.0890 0x06f8  HTTPFilter - detected UnsignedFile.Multi.Generic ( 1 )
21:54:49.0890 0x06f8  HTTPFilter ( UnsignedFile.Multi.Generic ) - warning
21:54:49.0890 0x06f8  Force sending object to P2P due to detect: HTTPFilter
21:54:49.0890 0x06f8  Object send P2P result: false
21:54:49.0953 0x06f8  [ 6FFB351C9C9BB88E91785F4CD7396D31, 699DA017B48CD0531174ACFE1EB74F09D5B55FC62FF0C5D77EB21256BE692854 ] HWiNFO32        C:\WINDOWS\system32\drivers\HWiNFO32.SYS
21:54:49.0984 0x06f8  HWiNFO32 - ok
21:54:49.0984 0x06f8  i2omgmt - ok
21:54:50.0000 0x06f8  i2omp - ok
21:54:50.0046 0x06f8  [ E283B97CFBEB86C1D86BAED5F7846A92, 7664F791D08C80DF1E52B34BE69F073AA645610C4BD975F498254807602374AB ] i8042prt        C:\WINDOWS\system32\DRIVERS\i8042prt.sys
21:54:50.0046 0x06f8  i8042prt - detected UnsignedFile.Multi.Generic ( 1 )
21:54:50.0046 0x06f8  Object is SCO, delete is not allowed
21:54:50.0046 0x06f8  i8042prt ( UnsignedFile.Multi.Generic ) - warning
21:54:50.0156 0x06f8  [ 0F0194C4B635C10C3F785E4FEE52D641, A450D84AF1E2ECC59046B7DFAEF04AD0E70043A57BB2C954E4D8596D59979B48 ] ialm            C:\WINDOWS\system32\DRIVERS\ialmnt5.sys
21:54:50.0265 0x06f8  ialm - detected UnsignedFile.Multi.Generic ( 1 )
21:54:50.0265 0x06f8  ialm ( UnsignedFile.Multi.Generic ) - warning
21:54:50.0375 0x06f8  [ 309C4D86D989FB1FCF64BD30DC81C51B, 90412120B005D5178E27EFD09D52005BE6CE1965E5CBB59612EAD02C5896A8A7 ] iaStor          C:\WINDOWS\system32\DRIVERS\iaStor.sys
21:54:50.0453 0x06f8  iaStor - detected UnsignedFile.Multi.Generic ( 1 )
21:54:50.0453 0x06f8  iaStor ( UnsignedFile.Multi.Generic ) - warning
21:54:50.0453 0x06f8  Force sending object to P2P due to detect: iaStor
21:54:50.0468 0x06f8  Object send P2P result: false
21:54:50.0531 0x06f8  [ 1CF03C69B49ACB70C722DF92755C0C8C, C227850C133F29BB9DED91A26A22AE077FD69629CEF35B67D305F016C4BDAA81 ] IDriverT        C:\Programme\Gemeinsame Dateien\InstallShield\Driver\11\Intel 32\IDriverT.exe
21:54:50.0531 0x06f8  IDriverT - detected UnsignedFile.Multi.Generic ( 1 )
21:54:50.0531 0x06f8  IDriverT ( UnsignedFile.Multi.Generic ) - warning
21:54:50.0562 0x06f8  [ 083A052659F5310DD8B6A6CB05EDCF8E, 48D39B03FFB6FAA1529B774443BA12618AE3982D9F65A7B9D18F2269F78B31F4 ] Imapi           C:\WINDOWS\system32\DRIVERS\imapi.sys
21:54:50.0562 0x06f8  Imapi - detected UnsignedFile.Multi.Generic ( 1 )
21:54:50.0562 0x06f8  Imapi ( UnsignedFile.Multi.Generic ) - warning
21:54:50.0562 0x06f8  Force sending object to P2P due to detect: Imapi
21:54:50.0562 0x06f8  Object send P2P result: false
21:54:50.0625 0x06f8  [ D4B413AA210C21E46AEDD2BA5B68D38E, 2309622867AA8FC832A729FA78F48742D4BD6CA0DAFBFB9DDB0772D671E1ED75 ] ImapiService    C:\WINDOWS\system32\imapi.exe
21:54:50.0625 0x06f8  ImapiService - detected UnsignedFile.Multi.Generic ( 1 )
21:54:50.0625 0x06f8  ImapiService ( UnsignedFile.Multi.Generic ) - warning
21:54:50.0625 0x06f8  Force sending object to P2P due to detect: ImapiService
21:54:50.0625 0x06f8  Object send P2P result: false
21:54:50.0640 0x06f8  ini910u - ok
21:54:50.0687 0x06f8  [ 69C4E3C9E67A1F103B94E14FDD5F3213, 894ABDDBF95E3FFE59A4621AF94AFA7E6F6D780420845078622C76624C0326D2 ] IntelIde        C:\WINDOWS\system32\DRIVERS\intelide.sys
21:54:50.0703 0x06f8  IntelIde - detected UnsignedFile.Multi.Generic ( 1 )
21:54:50.0703 0x06f8  Object is SCO, delete is not allowed
21:54:50.0703 0x06f8  IntelIde ( UnsignedFile.Multi.Generic ) - warning
21:54:50.0781 0x06f8  [ 4C7D2750158ED6E7AD642D97BFFAE351, C05E4799752F090DCB632F07F62ADE38D31534621064D269AD535CA0BDFED448 ] intelppm        C:\WINDOWS\system32\DRIVERS\intelppm.sys
21:54:50.0781 0x06f8  intelppm - detected UnsignedFile.Multi.Generic ( 1 )
21:54:50.0781 0x06f8  Object is SCO, delete is not allowed
21:54:50.0781 0x06f8  intelppm ( UnsignedFile.Multi.Generic ) - warning
21:54:50.0781 0x06f8  Force sending object to P2P due to detect: intelppm
21:54:50.0781 0x06f8  Object send P2P result: false
21:54:50.0812 0x06f8  [ 3BB22519A194418D5FEC05D800A19AD0, F6662F440950596DC1382DD1DB5D7891CCEA30A6062BEA942C18445B5F0D8B16 ] Ip6Fw           C:\WINDOWS\system32\drivers\ip6fw.sys
21:54:50.0812 0x06f8  Ip6Fw - detected UnsignedFile.Multi.Generic ( 1 )
21:54:50.0812 0x06f8  Ip6Fw ( UnsignedFile.Multi.Generic ) - warning
21:54:50.0812 0x06f8  Force sending object to P2P due to detect: Ip6Fw
21:54:50.0812 0x06f8  Object send P2P result: false
21:54:50.0843 0x06f8  [ 731F22BA402EE4B62748ADAF6363C182, 5C3BEBD008A5BE4DC2F92076FF41A10DDC01E10EC7E6552213CFA11970811848 ] IpFilterDriver  C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
21:54:50.0859 0x06f8  IpFilterDriver - detected UnsignedFile.Multi.Generic ( 1 )
21:54:50.0859 0x06f8  Object is SCO, delete is not allowed
21:54:50.0859 0x06f8  IpFilterDriver ( UnsignedFile.Multi.Generic ) - warning
21:54:50.0875 0x06f8  [ B87AB476DCF76E72010632B5550955F5, E6E74D3A86A7917A8BAED44F8E97CCD2EB171E4E4B27E9907F60D1523FAF319A ] IpInIp          C:\WINDOWS\system32\DRIVERS\ipinip.sys
21:54:50.0875 0x06f8  IpInIp - detected UnsignedFile.Multi.Generic ( 1 )
21:54:50.0875 0x06f8  IpInIp ( UnsignedFile.Multi.Generic ) - warning
21:54:50.0906 0x06f8  [ CC748EA12C6EFFDE940EE98098BF96BB, AF523E21C25D9A1715EFEA573E4F52AF5D4FC9F28A2D613F5DB629C186C439E0 ] IpNat           C:\WINDOWS\system32\DRIVERS\ipnat.sys
21:54:50.0921 0x06f8  IpNat - detected UnsignedFile.Multi.Generic ( 1 )
21:54:50.0921 0x06f8  Object is SCO, delete is not allowed
21:54:50.0921 0x06f8  IpNat ( UnsignedFile.Multi.Generic ) - warning
21:54:50.0953 0x06f8  [ 23C74D75E36E7158768DD63D92789A91, 394D296F38E7D8EFD91A6EEC301D9CE6AF910E35EB9819F1A9E3363863AEDFDC ] IPSec           C:\WINDOWS\system32\DRIVERS\ipsec.sys
21:54:50.0953 0x06f8  IPSec - detected UnsignedFile.Multi.Generic ( 1 )
21:54:50.0953 0x06f8  IPSec ( UnsignedFile.Multi.Generic ) - warning
21:54:51.0000 0x06f8  [ C93C9FF7B04D772627A3646D89F7BF89, 805FA48E7A46D4F10240BF880A2468F53DEA36E83004399228AB70DB7D20544A ] IRENUM          C:\WINDOWS\system32\DRIVERS\irenum.sys
21:54:51.0000 0x06f8  IRENUM - detected UnsignedFile.Multi.Generic ( 1 )
21:54:51.0000 0x06f8  Object is SCO, delete is not allowed
21:54:51.0000 0x06f8  IRENUM ( UnsignedFile.Multi.Generic ) - warning
21:54:51.0031 0x06f8  [ 6DFB88F64135C525433E87648BDA30DE, 8233EEFBEF36AAA152F2C55D23D7118F0DE40C9C22EB5D9793405A4770889540 ] isapnp          C:\WINDOWS\system32\DRIVERS\isapnp.sys
21:54:51.0031 0x06f8  isapnp - detected UnsignedFile.Multi.Generic ( 1 )
21:54:51.0031 0x06f8  Object is SCO, delete is not allowed
21:54:51.0031 0x06f8  isapnp ( UnsignedFile.Multi.Generic ) - warning
21:54:51.0031 0x06f8  Force sending object to P2P due to detect: isapnp
21:54:51.0031 0x06f8  Object send P2P result: false
21:54:51.0062 0x06f8  [ 1704D8C4C8807B889E43C649B478A452, E854C90CD301F42BE2520CEDAD35E49DF2D43606CF4EEED861B74882118D04D1 ] Kbdclass        C:\WINDOWS\system32\DRIVERS\kbdclass.sys
21:54:51.0062 0x06f8  Kbdclass - detected UnsignedFile.Multi.Generic ( 1 )
21:54:51.0062 0x06f8  Object is SCO, delete is not allowed
21:54:51.0062 0x06f8  Kbdclass ( UnsignedFile.Multi.Generic ) - warning
21:54:51.0109 0x06f8  [ B6D6C117D771C98130497265F26D1882, E79CC4EA5C088F988BA61F80764F9CAD9B78BC56A7E17DD54622C75483BC5DF4 ] kbdhid          C:\WINDOWS\system32\DRIVERS\kbdhid.sys
21:54:51.0109 0x06f8  kbdhid - detected UnsignedFile.Multi.Generic ( 1 )
21:54:51.0109 0x06f8  kbdhid ( UnsignedFile.Multi.Generic ) - warning
21:54:51.0140 0x06f8  [ 692BCF44383D056AED41B045A323D378, 1A99DEE83FFAF64E73067FC049C0A4CE07D94E4AE31EFA17B38CEFA9E41D67DC ] kmixer          C:\WINDOWS\system32\drivers\kmixer.sys
21:54:51.0140 0x06f8  kmixer - detected UnsignedFile.Multi.Generic ( 1 )
21:54:51.0140 0x06f8  kmixer ( UnsignedFile.Multi.Generic ) - warning
21:54:51.0187 0x06f8  [ B467646C54CC746128904E1654C750C1, 3BD71BE3663EA23463D236D8A2A2E42DFA10C502BDB4B6E131FAF0FBA748219E ] KSecDD          C:\WINDOWS\system32\drivers\KSecDD.sys
21:54:51.0234 0x06f8  KSecDD - ok
21:54:51.0281 0x06f8  [ 2BBDCB79900990F0716DFCB714E72DE7, 6283789201164A9254632D9A3C8A54FE697717D5F8D5A37804D924DC2B70C8E3 ] lanmanserver    C:\WINDOWS\System32\srvsvc.dll
21:54:51.0328 0x06f8  lanmanserver - ok
21:54:51.0375 0x06f8  [ 1869B14B06B44B44AF70548E1EA3303F, 4D63B4DAF580C86F86837C7D1753E2105B4C52E26D4CA0CAAFE83755EFF7AFBE ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll
21:54:51.0437 0x06f8  lanmanworkstation - ok
21:54:51.0437 0x06f8  lbrtfdc - ok
21:54:51.0531 0x06f8  [ 5D4B38A8D8525356798F5E560C3A3090, 74E4D2ADA6242508BDF9C12EB050BC0F13C8A70D9CC635759E6331C462A246E4 ] LightScribeService C:\Programme\Gemeinsame Dateien\LightScribe\LSSrvc.exe
21:54:51.0531 0x06f8  LightScribeService - detected UnsignedFile.Multi.Generic ( 1 )
21:54:51.0531 0x06f8  LightScribeService ( UnsignedFile.Multi.Generic ) - warning
21:54:51.0562 0x06f8  [ 636714B7D43C8D0C80449123FD266920, F06F6C7DC49B26EFCAC3570C67BA9BD934F62C6F382DA4DD2AB302C7B970F414 ] LmHosts         C:\WINDOWS\System32\lmhsvc.dll
21:54:51.0578 0x06f8  LmHosts - detected UnsignedFile.Multi.Generic ( 1 )
21:54:51.0578 0x06f8  Object is SCO, delete is not allowed
21:54:51.0578 0x06f8  LmHosts ( UnsignedFile.Multi.Generic ) - warning
21:54:51.0640 0x06f8  [ 3C21F7E95FFCA33EF1A83AA33D9663CF, C843116969E1CDBA45AEF98B33BEDBA9200C62CDB52CD7056CE6768A1EF3A637 ] MBAMProtector   C:\WINDOWS\system32\drivers\mbam.sys
21:54:51.0656 0x06f8  MBAMProtector - ok
21:54:51.0734 0x06f8  [ 2B983F067AEE3F9EB4DF5E97F45D21D1, 0B9ED0E91FF01A5445927650113E320C3C0EA16F1401AA55A509DDBF704DF22F ] MBAMService     C:\Programme\ Malwarebytes Anti-Malware \mbamservice.exe
21:54:51.0875 0x06f8  MBAMService - ok
21:54:51.0968 0x06f8  [ 04B309A1A653177994630C2773E659F1, 1D9F81D2DF513FE177E5308E3DE0CE416109F87FDBD00FE7453FEB6074216C3C ] MBAMSwissArmy   C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys
21:54:52.0000 0x06f8  MBAMSwissArmy - ok
21:54:52.0031 0x06f8  [ B7550A7107281D170CE85524B1488C98, A3854B16A65436BEF6BEDE918B43B3BE8F00D303660DB5831DD376271DC43239 ] Messenger       C:\WINDOWS\System32\msgsvc.dll
21:54:52.0031 0x06f8  Messenger - detected UnsignedFile.Multi.Generic ( 1 )
21:54:52.0031 0x06f8  Messenger ( UnsignedFile.Multi.Generic ) - warning
21:54:52.0078 0x06f8  [ 4AE068242760A1FB6E1A44BF4E16AFA6, 1FB771162B96AAF787AC24867B818DF8511F0780BB094FA9A38C11D8DBFE68BC ] mnmdd           C:\WINDOWS\system32\drivers\mnmdd.sys
21:54:52.0078 0x06f8  mnmdd - detected UnsignedFile.Multi.Generic ( 1 )
21:54:52.0078 0x06f8  mnmdd ( UnsignedFile.Multi.Generic ) - warning
21:54:52.0125 0x06f8  [ C2F1D365FD96791B037EE504868065D3, 87BD87E08FD00D115524B049F1A3A719AB86557D68968E7090CD0F271F985CAF ] mnmsrvc         C:\WINDOWS\system32\mnmsrvc.exe
21:54:52.0125 0x06f8  mnmsrvc - detected UnsignedFile.Multi.Generic ( 1 )
21:54:52.0125 0x06f8  mnmsrvc ( UnsignedFile.Multi.Generic ) - warning
21:54:52.0140 0x06f8  [ 6FB74EBD4EC57A6F1781DE3852CC3362, 0454509D9A31E0202C08AE17294E2682F227D177A3C73B303E4C8332757AFCA1 ] Modem           C:\WINDOWS\system32\drivers\Modem.sys
21:54:52.0140 0x06f8  Modem - detected UnsignedFile.Multi.Generic ( 1 )
21:54:52.0140 0x06f8  Object is SCO, delete is not allowed
21:54:52.0140 0x06f8  Modem ( UnsignedFile.Multi.Generic ) - warning
21:54:52.0156 0x06f8  [ B24CE8005DEAB254C0251E15CB71D802, 6804A8ABDAD5EC846E7F8077D1EE9BA45D6226ACFF42C70BE3DE7C8980EF9EC4 ] Mouclass        C:\WINDOWS\system32\DRIVERS\mouclass.sys
21:54:52.0171 0x06f8  Mouclass - detected UnsignedFile.Multi.Generic ( 1 )
21:54:52.0171 0x06f8  Object is SCO, delete is not allowed
21:54:52.0171 0x06f8  Mouclass ( UnsignedFile.Multi.Generic ) - warning
21:54:52.0187 0x06f8  [ A80B9A0BAD1B73637DBCBBA7DF72D3FD, 2A5E15ED2C24C6C65EF2F7E1FD93374774076C9D8D451E4422561F4D269C012F ] MountMgr        C:\WINDOWS\system32\drivers\MountMgr.sys
21:54:52.0187 0x06f8  MountMgr - detected UnsignedFile.Multi.Generic ( 1 )
21:54:52.0187 0x06f8  Object is SCO, delete is not allowed
21:54:52.0187 0x06f8  MountMgr ( UnsignedFile.Multi.Generic ) - warning
21:54:52.0265 0x06f8  [ DD370A8148862150BA81A3F5C56A1E40, F56B84297BDC32266CB69D10FB2D66B8B332D60CAB7E64E4E3AC2BB749BBD31B ] MozillaMaintenance C:\Programme\Mozilla Maintenance Service\maintenanceservice.exe
21:54:52.0281 0x06f8  MozillaMaintenance - ok
21:54:52.0343 0x06f8  [ 70C14F5CCA5CF73F8A645C73A01D8726, 7849C06480EEB96C0D06689E5DB80DDCACC5DD077CE6DFA25CCB7BDF3378C962 ] MQAC            C:\WINDOWS\system32\drivers\mqac.sys
21:54:52.0359 0x06f8  MQAC - detected UnsignedFile.Multi.Generic ( 1 )
21:54:52.0359 0x06f8  MQAC ( UnsignedFile.Multi.Generic ) - warning
21:54:52.0359 0x06f8  Force sending object to P2P due to detect: MQAC
21:54:52.0359 0x06f8  Object send P2P result: false
21:54:52.0375 0x06f8  mraid35x - ok
21:54:52.0390 0x06f8  [ 11D42BB6206F33FBB3BA0288D3EF81BD, 76ABCFB62C5AC549F58C231F72A99882CDEB74928104B77FE52554765C2B1A22 ] MRxDAV          C:\WINDOWS\system32\DRIVERS\mrxdav.sys
21:54:52.0406 0x06f8  MRxDAV - detected UnsignedFile.Multi.Generic ( 1 )
21:54:52.0406 0x06f8  Object is SCO, delete is not allowed
21:54:52.0406 0x06f8  MRxDAV ( UnsignedFile.Multi.Generic ) - warning
21:54:52.0406 0x06f8  Force sending object to P2P due to detect: MRxDAV
21:54:52.0406 0x06f8  Object send P2P result: false
21:54:52.0468 0x06f8  [ 7D304A5EB4344EBEEAB53A2FE3FFB9F0, DB9B186F7076D7B94F45041AF7B77C1AD2CAB504D683B459C6CB1C22840ED170 ] MRxSmb          C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
21:54:52.0531 0x06f8  MRxSmb - ok
21:54:52.0578 0x06f8  [ 35A031AF38C55F92D28AA03EE9F12CC9, 97245D204C886EE8DCCC2DEAC80A0E358A7E0C1982F77389DA50DCF091FC9DDC ] MSDTC           C:\WINDOWS\system32\msdtc.exe
21:54:52.0578 0x06f8  MSDTC - detected UnsignedFile.Multi.Generic ( 1 )
21:54:52.0578 0x06f8  Object is SCO, delete is not allowed
21:54:52.0578 0x06f8  MSDTC ( UnsignedFile.Multi.Generic ) - warning
21:54:52.0609 0x06f8  [ C941EA2454BA8350021D774DAF0F1027, C940E978C7B66A713A0FDAB54B5F995DF59D089AFCD96221DD3222948CD49BBD ] Msfs            C:\WINDOWS\system32\drivers\Msfs.sys
21:54:52.0609 0x06f8  Msfs - detected UnsignedFile.Multi.Generic ( 1 )
21:54:52.0609 0x06f8  Object is SCO, delete is not allowed
21:54:52.0609 0x06f8  Msfs ( UnsignedFile.Multi.Generic ) - warning
21:54:52.0609 0x06f8  Force sending object to P2P due to detect: Msfs
21:54:52.0609 0x06f8  Object send P2P result: false
21:54:52.0625 0x06f8  MSIServer - ok
21:54:52.0671 0x06f8  [ D1575E71568F4D9E14CA56B7B0453BF1, 4ABE0E24786C0D39FA2B885447E56204CA6942FB175E534DCE675D7BCF0B176A ] MSKSSRV         C:\WINDOWS\system32\drivers\MSKSSRV.sys
21:54:52.0687 0x06f8  MSKSSRV - detected UnsignedFile.Multi.Generic ( 1 )
21:54:52.0687 0x06f8  Object is SCO, delete is not allowed
21:54:52.0687 0x06f8  MSKSSRV ( UnsignedFile.Multi.Generic ) - warning
21:54:52.0734 0x06f8  [ 0DCA65CF0B5E016192DFC8D184544FB6, 87F43121AAF56A6F3CFED5BEFCA402D6933CFABE63522CABD20CA3E4ABA68C6B ] MSMQ            C:\WINDOWS\system32\mqsvc.exe
21:54:52.0734 0x06f8  MSMQ - detected UnsignedFile.Multi.Generic ( 1 )
21:54:52.0734 0x06f8  MSMQ ( UnsignedFile.Multi.Generic ) - warning
21:54:52.0765 0x06f8  [ 7E68E3D511CF98CCD613DE1253DA4247, 5062E5288DCECE191D0D86808ACBA3802CC23B3EA10FAD3AB6D20166649EDEEA ] MSMQTriggers    C:\WINDOWS\system32\mqtgsvc.exe
21:54:52.0765 0x06f8  MSMQTriggers - detected UnsignedFile.Multi.Generic ( 1 )
21:54:52.0765 0x06f8  MSMQTriggers ( UnsignedFile.Multi.Generic ) - warning
21:54:52.0796 0x06f8  [ 325BB26842FC7CCC1FCCE2C457317F3E, C07BE560513B1FB91D756494F0BA4AEEB2E1998DE0E1C21EE83DB1183B0CEE91 ] MSPCLOCK        C:\WINDOWS\system32\drivers\MSPCLOCK.sys
21:54:52.0796 0x06f8  MSPCLOCK - detected UnsignedFile.Multi.Generic ( 1 )
21:54:52.0796 0x06f8  Object is SCO, delete is not allowed
21:54:52.0796 0x06f8  MSPCLOCK ( UnsignedFile.Multi.Generic ) - warning
21:54:52.0828 0x06f8  [ BAD59648BA099DA4A17680B39730CB3D, 9AD4C7C94C186C8815D0BC75DCAFB962158DA6935A244BA243EDDDEB33F9816C ] MSPQM           C:\WINDOWS\system32\drivers\MSPQM.sys
21:54:52.0828 0x06f8  MSPQM - detected UnsignedFile.Multi.Generic ( 1 )
21:54:52.0828 0x06f8  Object is SCO, delete is not allowed
21:54:52.0828 0x06f8  MSPQM ( UnsignedFile.Multi.Generic ) - warning
21:54:52.0859 0x06f8  [ AF5F4F3F14A8EA2C26DE30F7A1E17136, AC93A1E4ABB0D038B772E429015567E44CC2EDB66C54DBE23A5F98176FAC1520 ] mssmbios        C:\WINDOWS\system32\DRIVERS\mssmbios.sys
21:54:52.0859 0x06f8  mssmbios - detected UnsignedFile.Multi.Generic ( 1 )
21:54:52.0859 0x06f8  Object is SCO, delete is not allowed
21:54:52.0859 0x06f8  mssmbios ( UnsignedFile.Multi.Generic ) - warning
21:54:52.0921 0x06f8  [ DE6A75F5C270E756C5508D94B6CF68F5, FCC972DDC36C2C44D836913F10004C2C33B11C54DEFFF0C63E0FDF901D2F9261 ] Mup             C:\WINDOWS\system32\drivers\Mup.sys
21:54:52.0953 0x06f8  Mup - ok
21:54:53.0046 0x06f8  [ 46BB15AE2AC7D025D6D2567B876817BD, 102A101B96D1078C98FA0F871C801A9A8538E20E5686AB0C7680B2F6C92B3165 ] napagent        C:\WINDOWS\System32\qagentrt.dll
21:54:53.0062 0x06f8  napagent - detected UnsignedFile.Multi.Generic ( 1 )
21:54:53.0062 0x06f8  napagent ( UnsignedFile.Multi.Generic ) - warning
21:54:53.0062 0x06f8  Force sending object to P2P due to detect: napagent
21:54:53.0062 0x06f8  Object send P2P result: false
21:54:53.0109 0x06f8  [ 1DF7F42665C94B825322FAE71721130D, FE0DCB728471465B39A42A7511F4133021FBA5DF88F88BCB5FE2FF34CFD713F9 ] NDIS            C:\WINDOWS\system32\drivers\NDIS.sys
21:54:53.0125 0x06f8  NDIS - detected UnsignedFile.Multi.Generic ( 1 )
21:54:53.0125 0x06f8  Object is SCO, delete is not allowed
21:54:53.0125 0x06f8  NDIS ( UnsignedFile.Multi.Generic ) - warning
21:54:53.0171 0x06f8  [ 0109C4F3850DFBAB279542515386AE22, 4F6DB1E499AC853FD36FD603FBB6D3AC9BDCEB298C7FE1FB59A9236CB46729B2 ] NdisTapi        C:\WINDOWS\system32\DRIVERS\ndistapi.sys
21:54:53.0187 0x06f8  NdisTapi - ok
21:54:53.0203 0x06f8  [ F927A4434C5028758A842943EF1A3849, B1AA3AF150C05307461774925901789456B0CCCD03A5E71ADA4AB58455962BEE ] Ndisuio         C:\WINDOWS\system32\DRIVERS\ndisuio.sys
21:54:53.0218 0x06f8  Ndisuio - detected UnsignedFile.Multi.Generic ( 1 )
21:54:53.0218 0x06f8  Object is SCO, delete is not allowed
21:54:53.0218 0x06f8  Ndisuio ( UnsignedFile.Multi.Generic ) - warning
21:54:53.0234 0x06f8  [ EDC1531A49C80614B2CFDA43CA8659AB, 494042F790F33721328B4451E79842E21919681CC421A4F9633EC4D383E06097 ] NdisWan         C:\WINDOWS\system32\DRIVERS\ndiswan.sys
21:54:53.0250 0x06f8  NdisWan - detected UnsignedFile.Multi.Generic ( 1 )
21:54:53.0250 0x06f8  Object is SCO, delete is not allowed
21:54:53.0250 0x06f8  NdisWan ( UnsignedFile.Multi.Generic ) - warning
21:54:53.0250 0x06f8  Force sending object to P2P due to detect: NdisWan
21:54:53.0250 0x06f8  Object send P2P result: false
21:54:53.0265 0x06f8  [ 2F597BB467E05B1FE3830EABD821B8E0, 141497F5A49D47CCE3C9289644F4BD838DCB238F6D8E847FC006652E21FE02AC ] NDProxy         C:\WINDOWS\system32\drivers\NDProxy.sys
21:54:53.0296 0x06f8  NDProxy - ok
21:54:53.0312 0x06f8  [ 5D81CF9A2F1A3A756B66CF684911CDF0, 7989C36607CAEA17AFA2C1C9904145CA0714A54B9F712D9D4C1AB140D0B2CC0C ] NetBIOS         C:\WINDOWS\system32\DRIVERS\netbios.sys
21:54:53.0312 0x06f8  NetBIOS - detected UnsignedFile.Multi.Generic ( 1 )
21:54:53.0312 0x06f8  Object is SCO, delete is not allowed
21:54:53.0312 0x06f8  NetBIOS ( UnsignedFile.Multi.Generic ) - warning
21:54:53.0343 0x06f8  [ 74B2B2F5BEA5E9A3DC021D685551BD3D, 7932B71F98B4122BE88F576BF6D745A757AE378A48924B7F4358837B75640A82 ] NetBT           C:\WINDOWS\system32\DRIVERS\netbt.sys
21:54:53.0359 0x06f8  NetBT - detected UnsignedFile.Multi.Generic ( 1 )
21:54:53.0359 0x06f8  Object is SCO, delete is not allowed
21:54:53.0359 0x06f8  NetBT ( UnsignedFile.Multi.Generic ) - warning
21:54:53.0406 0x06f8  [ 8ACE4251BFFD09CE75679FE940E996CC, 81969521B5EAEA09ECA63058BE9697BB69AF2596339CA9DF0CFEDC031DCFDC7E ] NetDDE          C:\WINDOWS\system32\netdde.exe
21:54:53.0421 0x06f8  NetDDE - detected UnsignedFile.Multi.Generic ( 1 )
21:54:53.0421 0x06f8  NetDDE ( UnsignedFile.Multi.Generic ) - warning
21:54:53.0437 0x06f8  [ 8ACE4251BFFD09CE75679FE940E996CC, 81969521B5EAEA09ECA63058BE9697BB69AF2596339CA9DF0CFEDC031DCFDC7E ] NetDDEdsdm      C:\WINDOWS\system32\netdde.exe
21:54:53.0437 0x06f8  NetDDEdsdm - detected UnsignedFile.Multi.Generic ( 1 )
21:54:53.0437 0x06f8  NetDDEdsdm ( UnsignedFile.Multi.Generic ) - warning
21:54:53.0437 0x06f8  Force sending object to P2P due to detect: NetDDEdsdm
21:54:53.0453 0x06f8  Object send P2P result: false
21:54:53.0515 0x06f8  [ AFB8261B56CBA0D86AEB6DF682AF9785, 104D96F1F19DD4CE492064ACC9634406A019EAE20B42D03198E400E661897127 ] Netlogon        C:\WINDOWS\system32\lsass.exe
21:54:53.0515 0x06f8  Netlogon - detected UnsignedFile.Multi.Generic ( 1 )
21:54:53.0515 0x06f8  Object is SCO, delete is not allowed
21:54:53.0515 0x06f8  Netlogon ( UnsignedFile.Multi.Generic ) - warning
21:54:53.0515 0x06f8  Force sending object to P2P due to detect: Netlogon
21:54:53.0515 0x06f8  Object send P2P result: false
21:54:53.0546 0x06f8  [ E6D88F1F6745BF00B57E7855A2AB696C, 12A5EDD853600FF5EBF91E127077745AE1E61E66DBC1D4D4306570F171AF4A39 ] Netman          C:\WINDOWS\System32\netman.dll
21:54:53.0546 0x06f8  Netman - detected UnsignedFile.Multi.Generic ( 1 )
21:54:53.0546 0x06f8  Netman ( UnsignedFile.Multi.Generic ) - warning
21:54:53.0578 0x06f8  [ E9E47CFB2D461FA0FC75B7A74C6383EA, 544136F5BFD4DC23D45E90F12FA48B82FD9EAEA9EAF3E0F5F0BD27E23D672C3E ] NIC1394         C:\WINDOWS\system32\DRIVERS\nic1394.sys
21:54:53.0578 0x06f8  NIC1394 - detected UnsignedFile.Multi.Generic ( 1 )
21:54:53.0578 0x06f8  NIC1394 ( UnsignedFile.Multi.Generic ) - warning
21:54:53.0640 0x06f8  [ F1B67B6B0751AE0E6E964B02821206A3, 3D5A7593ABDEE2047C5738671C85DC8B95A4ECF58D5D7B04EEE13A689839A540 ] Nla             C:\WINDOWS\System32\mswsock.dll
21:54:53.0671 0x06f8  Nla - ok
21:54:53.0703 0x06f8  [ 3182D64AE053D6FB034F44B6DEF8034A, 4ADFC76965BA2A5F488E71789A4E4EA702A74AF42725F72130D1CA919406CF19 ] Npfs            C:\WINDOWS\system32\drivers\Npfs.sys
21:54:53.0703 0x06f8  Npfs - detected UnsignedFile.Multi.Generic ( 1 )
21:54:53.0703 0x06f8  Object is SCO, delete is not allowed
21:54:53.0703 0x06f8  Npfs ( UnsignedFile.Multi.Generic ) - warning
21:54:53.0734 0x06f8  [ 78A08DD6A8D65E697C18E1DB01C5CDCA, E0E6F3ED05068E32F1D5C2D2B38CDEF4536B8656DB6756C66CF6B40B60C8F3DA ] Ntfs            C:\WINDOWS\system32\drivers\Ntfs.sys
21:54:53.0765 0x06f8  Ntfs - detected UnsignedFile.Multi.Generic ( 1 )
21:54:53.0765 0x06f8  Object is SCO, delete is not allowed
21:54:53.0765 0x06f8  Ntfs ( UnsignedFile.Multi.Generic ) - warning
21:54:53.0781 0x06f8  [ AFB8261B56CBA0D86AEB6DF682AF9785, 104D96F1F19DD4CE492064ACC9634406A019EAE20B42D03198E400E661897127 ] NtLmSsp         C:\WINDOWS\system32\lsass.exe
21:54:53.0781 0x06f8  NtLmSsp - detected UnsignedFile.Multi.Generic ( 1 )
21:54:53.0781 0x06f8  Object is SCO, delete is not allowed
21:54:53.0781 0x06f8  NtLmSsp ( UnsignedFile.Multi.Generic ) - warning
21:54:53.0781 0x06f8  Force sending object to P2P due to detect: NtLmSsp
21:54:53.0781 0x06f8  Object send P2P result: false
21:54:53.0875 0x06f8  [ 56AF4064996FA5BAC9C449B1514B4770, 154602EFEC22728503D4ABA025DF711B0F2CFC983F5E3BF25F2A4BCD1AE250EC ] NtmsSvc         C:\WINDOWS\system32\ntmssvc.dll
21:54:53.0921 0x06f8  NtmsSvc - detected UnsignedFile.Multi.Generic ( 1 )
21:54:53.0921 0x06f8  NtmsSvc ( UnsignedFile.Multi.Generic ) - warning
21:54:53.0984 0x06f8  [ 73C1E1F395918BC2C6DD67AF7591A3AD, B21133A75253EC15E2DFF66D3B480AB1A7E1A2360476C810E7AA55D0F0EB08D4 ] Null            C:\WINDOWS\system32\drivers\Null.sys
21:54:53.0984 0x06f8  Null - detected UnsignedFile.Multi.Generic ( 1 )
21:54:53.0984 0x06f8  Object is SCO, delete is not allowed
21:54:53.0984 0x06f8  Null ( UnsignedFile.Multi.Generic ) - warning
21:54:53.0984 0x06f8  Force sending object to P2P due to detect: Null
21:54:53.0984 0x06f8  Object send P2P result: false
21:54:54.0000 0x06f8  [ B305F3FAD35083837EF46A0BBCE2FC57, 9D0E0E666D652D0FC9EAB97280A5D67AAF61D6B21929DF7CF8ED72A367720464 ] NwlnkFlt        C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
21:54:54.0015 0x06f8  NwlnkFlt - detected UnsignedFile.Multi.Generic ( 1 )
21:54:54.0015 0x06f8  NwlnkFlt ( UnsignedFile.Multi.Generic ) - warning
21:54:54.0015 0x06f8  Force sending object to P2P due to detect: NwlnkFlt
21:54:54.0015 0x06f8  Object send P2P result: false
21:54:54.0015 0x06f8  [ C99B3415198D1AAB7227F2C88FD664B9, DD8DA4B5E804F134AB9233859544C025062902DFC3E8FB8A09A67337A4E73F55 ] NwlnkFwd        C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
21:54:54.0015 0x06f8  NwlnkFwd - detected UnsignedFile.Multi.Generic ( 1 )
21:54:54.0015 0x06f8  NwlnkFwd ( UnsignedFile.Multi.Generic ) - warning
21:54:54.0031 0x06f8  [ CA33832DF41AFB202EE7AEB05145922F, 9DD0089C2E13C7F81214C3B5A4A61276292052F9BBFEA7FCD0F6AA27815D5F95 ] ohci1394        C:\WINDOWS\system32\DRIVERS\ohci1394.sys
21:54:54.0031 0x06f8  ohci1394 - detected UnsignedFile.Multi.Generic ( 1 )
21:54:54.0031 0x06f8  ohci1394 ( UnsignedFile.Multi.Generic ) - warning
21:54:54.0125 0x06f8  [ 7A56CF3E3F12E8AF599963B16F50FB6A, 882C82BAE96D263138D4C0D6C425458B770B7B9C8E9C1D28AC918BF6BE94A5C2 ] ose             C:\Programme\Gemeinsame Dateien\Microsoft Shared\Source Engine\OSE.EXE
21:54:54.0140 0x06f8  ose - ok
21:54:54.0187 0x06f8  [ F84785660305B9B903FB3BCA8BA29837, BDBDE61076800415D98759077E9E039C80B55DBE68E31F8BF44A909C6C3D3276 ] Parport         C:\WINDOWS\system32\DRIVERS\parport.sys
21:54:54.0187 0x06f8  Parport - detected UnsignedFile.Multi.Generic ( 1 )
21:54:54.0187 0x06f8  Object is SCO, delete is not allowed
21:54:54.0187 0x06f8  Parport ( UnsignedFile.Multi.Generic ) - warning
21:54:54.0203 0x06f8  [ BEB3BA25197665D82EC7065B724171C6, 7E71C13BA30CD95CEE8A9CC85E6F48A01F30EDEAADEE69D80AE828BF97E5A5CA ] PartMgr         C:\WINDOWS\system32\drivers\PartMgr.sys
21:54:54.0203 0x06f8  PartMgr - detected UnsignedFile.Multi.Generic ( 1 )
21:54:54.0203 0x06f8  Object is SCO, delete is not allowed
21:54:54.0203 0x06f8  PartMgr ( UnsignedFile.Multi.Generic ) - warning
21:54:54.0234 0x06f8  [ C2BF987829099A3EAA2CA6A0A90ECB4F, 1DF21EA8E43875CFEECD869407429F82FB449707CFB845718499468E699BAAAA ] ParVdm          C:\WINDOWS\system32\drivers\ParVdm.sys
21:54:54.0250 0x06f8  ParVdm - detected UnsignedFile.Multi.Generic ( 1 )
21:54:54.0250 0x06f8  Object is SCO, delete is not allowed
21:54:54.0250 0x06f8  ParVdm ( UnsignedFile.Multi.Generic ) - warning
21:54:54.0328 0x06f8  [ 5EEB45F500E3E97153CB75723F8CA185, 97FA86B80D37BF9ADC51CC7EBA07479EE8746BCD9C68A0A8D1A9E56CF02EE933 ] PCA             C:\WINDOWS\SMINST\PCAngel.exe
21:54:54.0343 0x06f8  PCA - detected UnsignedFile.Multi.Generic ( 1 )
21:54:54.0343 0x06f8  PCA ( UnsignedFile.Multi.Generic ) - warning
21:54:54.0375 0x06f8  [ 387E8DEDC343AA2D1EFBC30580273ACD, 5F3E642BDB759777E570ED5B22AC7E93CDCD362708F281657AD7BAB44EDEC802 ] PCI             C:\WINDOWS\system32\DRIVERS\pci.sys
21:54:54.0375 0x06f8  PCI - detected UnsignedFile.Multi.Generic ( 1 )
21:54:54.0375 0x06f8  Object is SCO, delete is not allowed
21:54:54.0375 0x06f8  PCI ( UnsignedFile.Multi.Generic ) - warning
21:54:54.0390 0x06f8  PCIDump - ok
21:54:54.0406 0x06f8  [ 59BA86D9A61CBCF4DF8E598C331F5B82, 822D11C5CE77BFD7B2F25350CCBF92B0B9388EEA6D86ED220B768C720976D839 ] PCIIde          C:\WINDOWS\system32\DRIVERS\pciide.sys
21:54:54.0406 0x06f8  PCIIde - detected UnsignedFile.Multi.Generic ( 1 )
21:54:54.0406 0x06f8  PCIIde ( UnsignedFile.Multi.Generic ) - warning
21:54:54.0453 0x06f8  [ A2A966B77D61847D61A3051DF87C8C97, 6CED7CA26DC62B0AAFC83A2E07336DAD25954491201BB8E06103971F3F0B8B51 ] Pcmcia          C:\WINDOWS\system32\DRIVERS\pcmcia.sys
21:54:54.0484 0x06f8  Pcmcia - detected UnsignedFile.Multi.Generic ( 1 )
21:54:54.0484 0x06f8  Object is SCO, delete is not allowed
21:54:54.0484 0x06f8  Pcmcia ( UnsignedFile.Multi.Generic ) - warning
21:54:54.0484 0x06f8  Force sending object to P2P due to detect: Pcmcia
21:54:54.0484 0x06f8  Object send P2P result: false
21:54:54.0500 0x06f8  PDCOMP - ok
21:54:54.0500 0x06f8  PDFRAME - ok
21:54:54.0515 0x06f8  PDRELI - ok
21:54:54.0531 0x06f8  PDRFRAME - ok
21:54:54.0546 0x06f8  perc2 - ok
21:54:54.0546 0x06f8  perc2hib - ok
21:54:54.0625 0x06f8  [ A3EDBE9053889FB24AB22492472B39DC, 6F2ED6E04BDE2FCA2A8BF9BD2D1D6923DE6EAECB46F582B6C0BD1CF364D65C9E ] PlugPlay        C:\WINDOWS\system32\services.exe
21:54:54.0640 0x06f8  PlugPlay - ok
21:54:54.0640 0x06f8  [ AFB8261B56CBA0D86AEB6DF682AF9785, 104D96F1F19DD4CE492064ACC9634406A019EAE20B42D03198E400E661897127 ] PolicyAgent     C:\WINDOWS\system32\lsass.exe
21:54:54.0640 0x06f8  PolicyAgent - detected UnsignedFile.Multi.Generic ( 1 )
21:54:54.0640 0x06f8  Object is SCO, delete is not allowed
21:54:54.0640 0x06f8  PolicyAgent ( UnsignedFile.Multi.Generic ) - warning
21:54:54.0656 0x06f8  [ EFEEC01B1D3CF84F16DDD24D9D9D8F99, C5F0C8C66A3AF7E7BB04CEDE4AC5306F8387AB384A2107DC5BE413AAE968EFF1 ] PptpMiniport    C:\WINDOWS\system32\DRIVERS\raspptp.sys
21:54:54.0671 0x06f8  PptpMiniport - detected UnsignedFile.Multi.Generic ( 1 )
21:54:54.0671 0x06f8  Object is SCO, delete is not allowed
21:54:54.0671 0x06f8  PptpMiniport ( UnsignedFile.Multi.Generic ) - warning
21:54:54.0671 0x06f8  [ AFB8261B56CBA0D86AEB6DF682AF9785, 104D96F1F19DD4CE492064ACC9634406A019EAE20B42D03198E400E661897127 ] ProtectedStorage C:\WINDOWS\system32\lsass.exe
21:54:54.0671 0x06f8  ProtectedStorage - detected UnsignedFile.Multi.Generic ( 1 )
21:54:54.0671 0x06f8  Object is SCO, delete is not allowed
21:54:54.0671 0x06f8  ProtectedStorage ( UnsignedFile.Multi.Generic ) - warning
21:54:54.0687 0x06f8  [ 09298EC810B07E5D582CB3A3F9255424, 35473A1BE25AC289474090EB0806AC6B3035DC33D1F3DF97A14BF1E361AC6AC3 ] PSched          C:\WINDOWS\system32\DRIVERS\psched.sys
21:54:54.0687 0x06f8  PSched - detected UnsignedFile.Multi.Generic ( 1 )
21:54:54.0703 0x06f8  PSched ( UnsignedFile.Multi.Generic ) - warning
21:54:54.0703 0x06f8  Force sending object to P2P due to detect: PSched
21:54:54.0703 0x06f8  Object send P2P result: false
21:54:54.0703 0x06f8  [ 80D317BD1C3DBC5D4FE7B1678C60CADD, DA76804B55D0CAB3DDD01EFC06673764AE4860693375C658B6063FB14AF7F12C ] Ptilink         C:\WINDOWS\system32\DRIVERS\ptilink.sys
21:54:54.0718 0x06f8  Ptilink - detected UnsignedFile.Multi.Generic ( 1 )
21:54:54.0718 0x06f8  Ptilink ( UnsignedFile.Multi.Generic ) - warning
21:54:54.0718 0x06f8  [ 86724469CD077901706854974CD13C3E, 23C6B45928E43AC2893033DFC4265C2C87B3D185CB20553B9EAB818A46FB8C18 ] PxHelp20        C:\WINDOWS\system32\Drivers\PxHelp20.sys
21:54:54.0718 0x06f8  PxHelp20 - detected UnsignedFile.Multi.Generic ( 1 )
21:54:54.0718 0x06f8  PxHelp20 ( UnsignedFile.Multi.Generic ) - warning
21:54:54.0718 0x06f8  Force sending object to P2P due to detect: PxHelp20
21:54:54.0718 0x06f8  Object send P2P result: false
21:54:54.0734 0x06f8  ql1080 - ok
21:54:54.0750 0x06f8  Ql10wnt - ok
21:54:54.0750 0x06f8  ql12160 - ok
21:54:54.0765 0x06f8  ql1240 - ok
21:54:54.0781 0x06f8  ql1280 - ok
21:54:54.0828 0x06f8  [ FE0D99D6F31E4FAD8159F690D68DED9C, 998685622ABE631984B7E4DBF91AB3594B1F574378D75EB9F6265F4650470692 ] RasAcd          C:\WINDOWS\system32\DRIVERS\rasacd.sys
21:54:54.0843 0x06f8  RasAcd - detected UnsignedFile.Multi.Generic ( 1 )
21:54:54.0843 0x06f8  Object is SCO, delete is not allowed
21:54:54.0843 0x06f8  RasAcd ( UnsignedFile.Multi.Generic ) - warning
21:54:54.0843 0x06f8  Force sending object to P2P due to detect: RasAcd
21:54:54.0843 0x06f8  Object send P2P result: false
21:54:54.0875 0x06f8  [ F5BA6CACCDB66C8F048E867563203246, AFEAD8FC02313F7EBC8F9F39E7ED2868852B480BE3902FA7BD0AFD81492AB243 ] RasAuto         C:\WINDOWS\System32\rasauto.dll
21:54:54.0890 0x06f8  RasAuto - detected UnsignedFile.Multi.Generic ( 1 )
21:54:54.0890 0x06f8  Object is SCO, delete is not allowed
21:54:54.0890 0x06f8  RasAuto ( UnsignedFile.Multi.Generic ) - warning
21:54:54.0906 0x06f8  [ 0207D26DDF796A193CCD9F83047BB5FC, 13613036BCB869FBD7229A0FE25D324710308385D8C35E5D990A40E52BE040DF ] Rasirda         C:\WINDOWS\system32\DRIVERS\rasirda.sys
21:54:54.0906 0x06f8  Rasirda - detected UnsignedFile.Multi.Generic ( 1 )
21:54:54.0906 0x06f8  Rasirda ( UnsignedFile.Multi.Generic ) - warning
21:54:54.0906 0x06f8  Force sending object to P2P due to detect: Rasirda
21:54:54.0906 0x06f8  Object send P2P result: false
21:54:54.0937 0x06f8  [ 11B4A627BC9614B885C4969BFA5FF8A6, EAE0A412A2B0F68919C32A96B3A08CC1A06585E4998819F5C9051745F63FF5AD ] Rasl2tp         C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
21:54:54.0937 0x06f8  Rasl2tp - detected UnsignedFile.Multi.Generic ( 1 )
21:54:54.0937 0x06f8  Object is SCO, delete is not allowed
21:54:54.0937 0x06f8  Rasl2tp ( UnsignedFile.Multi.Generic ) - warning
21:54:54.0937 0x06f8  Force sending object to P2P due to detect: Rasl2tp
21:54:54.0937 0x06f8  Object send P2P result: false
21:54:55.0000 0x06f8  [ F9A7B66EA345726EDB5862A46B1ECCD5, 5D35429D394D36A1692A7E219BA1A85CD8096FEAE0F90BFE036A63118FEDBF57 ] RasMan          C:\WINDOWS\System32\rasmans.dll
21:54:55.0015 0x06f8  RasMan - detected UnsignedFile.Multi.Generic ( 1 )
21:54:55.0015 0x06f8  Object is SCO, delete is not allowed
21:54:55.0015 0x06f8  RasMan ( UnsignedFile.Multi.Generic ) - warning
21:54:55.0015 0x06f8  [ 5BC962F2654137C9909C3D4603587DEE, A5CE5653D0105240F5E86CFAAB89E7917D42D939E2F27A5A7D6979289CA651B8 ] RasPppoe        C:\WINDOWS\system32\DRIVERS\raspppoe.sys
21:54:55.0015 0x06f8  RasPppoe - detected UnsignedFile.Multi.Generic ( 1 )
21:54:55.0015 0x06f8  Object is SCO, delete is not allowed
21:54:55.0015 0x06f8  RasPppoe ( UnsignedFile.Multi.Generic ) - warning
21:54:55.0015 0x06f8  Force sending object to P2P due to detect: RasPppoe
21:54:55.0031 0x06f8  Object send P2P result: false
21:54:55.0046 0x06f8  [ FDBB1D60066FCFBB7452FD8F9829B242, 10A2DACF944BD000032EBA8C095CB3D879CC55B28C377ADF6E52E508E47444DB ] Raspti          C:\WINDOWS\system32\DRIVERS\raspti.sys
21:54:55.0046 0x06f8  Raspti - detected UnsignedFile.Multi.Generic ( 1 )
21:54:55.0046 0x06f8  Raspti ( UnsignedFile.Multi.Generic ) - warning
21:54:55.0093 0x06f8  [ 7AD224AD1A1437FE28D89CF22B17780A, 6645235CA27D671954E3557FA37082881C3D7D47492C71264CD8CB8D108EC801 ] Rdbss           C:\WINDOWS\system32\DRIVERS\rdbss.sys
21:54:55.0093 0x06f8  Rdbss - detected UnsignedFile.Multi.Generic ( 1 )
21:54:55.0093 0x06f8  Object is SCO, delete is not allowed
21:54:55.0093 0x06f8  Rdbss ( UnsignedFile.Multi.Generic ) - warning
21:54:55.0109 0x06f8  [ 4912D5B403614CE99C28420F75353332, 975341ECD660209987B5E5171B8315E032439E408CBE8A5986E67AF767F373BB ] RDPCDD          C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
21:54:55.0109 0x06f8  RDPCDD - detected UnsignedFile.Multi.Generic ( 1 )
21:54:55.0109 0x06f8  Object is SCO, delete is not allowed
21:54:55.0109 0x06f8  RDPCDD ( UnsignedFile.Multi.Generic ) - warning
21:54:55.0140 0x06f8  [ 15CABD0F7C00C47C70124907916AF3F1, 66B5C978B7FB6359AD8BAC9F568FE9D469E358FEAB07B1F129BA9E85F1DF723E ] rdpdr           C:\WINDOWS\system32\DRIVERS\rdpdr.sys
21:54:55.0156 0x06f8  rdpdr - detected UnsignedFile.Multi.Generic ( 1 )
21:54:55.0156 0x06f8  Object is SCO, delete is not allowed
21:54:55.0156 0x06f8  rdpdr ( UnsignedFile.Multi.Generic ) - warning
21:54:55.0203 0x06f8  [ 43AF5212BD8FB5BA6EED9754358BD8F7, AF330F61CECA4AFA359CEABC5EB3227E6B56A9A2DCE50701381D665122D7356D ] RDPWD           C:\WINDOWS\system32\drivers\RDPWD.sys
21:54:55.0296 0x06f8  RDPWD - ok
21:54:55.0343 0x06f8  [ 263AF18AF0F3DB99F574C95F284CCEC9, 2BFA9952E97EFEB386FC56EC2C125080CD12DAC078DBE43C395CB4D9F22165D3 ] RDSessMgr       C:\WINDOWS\system32\sessmgr.exe
21:54:55.0343 0x06f8  RDSessMgr - detected UnsignedFile.Multi.Generic ( 1 )
21:54:55.0343 0x06f8  RDSessMgr ( UnsignedFile.Multi.Generic ) - warning
21:54:55.0343 0x06f8  Force sending object to P2P due to detect: RDSessMgr
21:54:55.0343 0x06f8  Object send P2P result: false
21:54:55.0406 0x06f8  [ ED761D453856F795A7FE056E42C36365, EF026585B33415D8FCE94A9F27D7A4396C7C35C88E06A4CF0FEA702401E8597A ] redbook         C:\WINDOWS\system32\DRIVERS\redbook.sys
21:54:55.0406 0x06f8  redbook - detected UnsignedFile.Multi.Generic ( 1 )
21:54:55.0406 0x06f8  redbook ( UnsignedFile.Multi.Generic ) - warning
21:54:55.0468 0x06f8  [ 0E97EC96D6942CEEC2D188CC2EB69A01, D4253B4420BEF19451A55AB91E4834482181A31A31134F6E2AFE05C8E20C81A5 ] RemoteAccess    C:\WINDOWS\System32\mprdim.dll
21:54:55.0468 0x06f8  RemoteAccess - detected UnsignedFile.Multi.Generic ( 1 )
21:54:55.0468 0x06f8  Object is SCO, delete is not allowed
21:54:55.0468 0x06f8  RemoteAccess ( UnsignedFile.Multi.Generic ) - warning
21:54:55.0515 0x06f8  [ E4CD1F3D84E1C2CA0B8CF7501E201593, 649CC0B04F94D407EB6B4C7FDE2C6E4D2B1531307BC67C5775E44D66EF2E4F8A ] RemoteRegistry  C:\WINDOWS\system32\regsvc.dll
21:54:55.0531 0x06f8  RemoteRegistry - detected UnsignedFile.Multi.Generic ( 1 )
21:54:55.0531 0x06f8  RemoteRegistry ( UnsignedFile.Multi.Generic ) - warning
21:54:55.0531 0x06f8  Force sending object to P2P due to detect: RemoteRegistry
21:54:55.0531 0x06f8  Object send P2P result: false
21:54:55.0609 0x06f8  [ 96F7A9A7BF0C9C0440A967440065D33C, E3B0A0337BE05E48C7BD9E6D5A08173F1E5FAAC89526DAC3D87D21D1B55D524E ] RMCAST          C:\WINDOWS\system32\drivers\RMCast.sys
21:54:55.0671 0x06f8  RMCAST - ok
21:54:55.0687 0x06f8  [ 2A02E21867497DF20B8FC95631395169, D89E2D17ED4E1C727847C0E92D2DF68AEB70BF0B956BD2FE024ED70A961759D2 ] RpcLocator      C:\WINDOWS\system32\locator.exe
21:54:55.0703 0x06f8  RpcLocator - detected UnsignedFile.Multi.Generic ( 1 )
21:54:55.0703 0x06f8  RpcLocator ( UnsignedFile.Multi.Generic ) - warning
21:54:55.0703 0x06f8  Force sending object to P2P due to detect: RpcLocator
21:54:55.0703 0x06f8  Object send P2P result: false
21:54:55.0750 0x06f8  [ 3127AFBF2C1ED0AB14A1BBB7AAECB85B, ECFBACE3CBF2384948EA1C445BDA3955EB4F44A9874286E6537C67DC1283E5B0 ] RpcSs           C:\WINDOWS\system32\rpcss.dll
21:54:55.0781 0x06f8  RpcSs - ok
21:54:55.0812 0x06f8  [ 4BDD71B4B521521499DFD14735C4F398, 7B1498D3C67E56D05B58B7DA319ECB0117C37963AABB0E59B42831C087469DA1 ] RSVP            C:\WINDOWS\system32\rsvp.exe
21:54:55.0828 0x06f8  RSVP - detected UnsignedFile.Multi.Generic ( 1 )
21:54:55.0828 0x06f8  RSVP ( UnsignedFile.Multi.Generic ) - warning
21:54:55.0875 0x06f8  [ AFB8261B56CBA0D86AEB6DF682AF9785, 104D96F1F19DD4CE492064ACC9634406A019EAE20B42D03198E400E661897127 ] SamSs           C:\WINDOWS\system32\lsass.exe
21:54:55.0875 0x06f8  SamSs - detected UnsignedFile.Multi.Generic ( 1 )
21:54:55.0875 0x06f8  Object is SCO, delete is not allowed
21:54:55.0875 0x06f8  SamSs ( UnsignedFile.Multi.Generic ) - warning
21:54:55.0890 0x06f8  [ DCEC079FAD95D36C8DD5CB6D779DFE32, F8546552D939A225853A0CE4913701A93738DF02C999D16E141E9A828814BBC6 ] SCardSvr        C:\WINDOWS\System32\SCardSvr.exe
21:54:55.0906 0x06f8  SCardSvr - detected UnsignedFile.Multi.Generic ( 1 )
21:54:55.0906 0x06f8  SCardSvr ( UnsignedFile.Multi.Generic ) - warning
21:54:55.0968 0x06f8  [ A050194A44D7FA8D7186ED2F4E8367AE, BCDF56D5A2F9E202DC67E7FE4BCC617BCC0BDFF2D221A621020068B17B2855BB ] Schedule        C:\WINDOWS\system32\schedsvc.dll
21:54:55.0984 0x06f8  Schedule - detected UnsignedFile.Multi.Generic ( 1 )
21:54:55.0984 0x06f8  Schedule ( UnsignedFile.Multi.Generic ) - warning
21:54:55.0984 0x06f8  Force sending object to P2P due to detect: Schedule
21:54:55.0984 0x06f8  Object send P2P result: false
21:54:56.0078 0x06f8  [ 8D04819A3CE51B9EB47E5689B44D43C4, B0588AF967A7611F05BC8A8AD0C945DBB7BF995D7DA5C28FD0D007E33BF1F502 ] sdbus           C:\WINDOWS\system32\DRIVERS\sdbus.sys
21:54:56.0078 0x06f8  sdbus - detected UnsignedFile.Multi.Generic ( 1 )
21:54:56.0078 0x06f8  sdbus ( UnsignedFile.Multi.Generic ) - warning
21:54:56.0125 0x06f8  [ 90A3935D05B494A5A39D37E71F09A677, F72733A69BC6E1A2BB91D7632FF3463C12563F60FDCC00A2CDD67FF20D479952 ] Secdrv          C:\WINDOWS\system32\DRIVERS\secdrv.sys
21:54:56.0125 0x06f8  Secdrv - detected UnsignedFile.Multi.Generic ( 1 )
21:54:56.0125 0x06f8  Secdrv ( UnsignedFile.Multi.Generic ) - warning
21:54:56.0125 0x06f8  Force sending object to P2P due to detect: Secdrv
21:54:56.0125 0x06f8  Object send P2P result: false
21:54:56.0140 0x06f8  [ BEE4CFD1D48C23B44CF4B974B0B79B2B, DF3B02D713F8A4602BE75F004074D5DF79AFF2D58FF37110B2A6AC29F680758B ] seclogon        C:\WINDOWS\System32\seclogon.dll
21:54:56.0156 0x06f8  seclogon - detected UnsignedFile.Multi.Generic ( 1 )
21:54:56.0171 0x06f8  Object is SCO, delete is not allowed
21:54:56.0171 0x06f8  seclogon ( UnsignedFile.Multi.Generic ) - warning
21:54:56.0187 0x06f8  [ 2AAC9B6ED9EDDFFB721D6452E34D67E3, 95D83F054A6610328D56E56CD948A6618C590231853E56FC20E7557DB61384A4 ]
TDSSKiller.txt - Teil 2:
Code:
ATTFilter
21:54:56.0203 0x06f8  SENS - detected UnsignedFile.Multi.Generic ( 1 )
21:54:56.0203 0x06f8  Object is SCO, delete is not allowed
21:54:56.0203 0x06f8  SENS ( UnsignedFile.Multi.Generic ) - warning
21:54:56.0218 0x06f8  [ 0F29512CCD6BEAD730039FB4BD2C85CE, 4F98AE390D1B14A755700DD6CEFB9CF921F0404AF2145D2D7E5F52394F87C6A5 ] serenum         C:\WINDOWS\system32\DRIVERS\serenum.sys
21:54:56.0234 0x06f8  serenum - detected UnsignedFile.Multi.Generic ( 1 )
21:54:56.0234 0x06f8  Object is SCO, delete is not allowed
21:54:56.0234 0x06f8  serenum ( UnsignedFile.Multi.Generic ) - warning
21:54:56.0250 0x06f8  [ CF24EB4F0412C82BCD1F4F35A025E31D, B74CB094126F5C23F601C34D53B2DF5BE3E5918230AC9DCFCFFA8E66B3A0FA25 ] Serial          C:\WINDOWS\system32\DRIVERS\serial.sys
21:54:56.0265 0x06f8  Serial - detected UnsignedFile.Multi.Generic ( 1 )
21:54:56.0265 0x06f8  Object is SCO, delete is not allowed
21:54:56.0265 0x06f8  Serial ( UnsignedFile.Multi.Generic ) - warning
21:54:56.0343 0x06f8  [ 8E6B8C671615D126FDC553D1E2DE5562, CEEC0067514555D5CA489F50E3D7562FCA8DB8E952C3C878604C9277FC77959F ] Sfloppy         C:\WINDOWS\system32\drivers\Sfloppy.sys
21:54:56.0343 0x06f8  Sfloppy - detected UnsignedFile.Multi.Generic ( 1 )
21:54:56.0343 0x06f8  Object is SCO, delete is not allowed
21:54:56.0343 0x06f8  Sfloppy ( UnsignedFile.Multi.Generic ) - warning
21:54:56.0343 0x06f8  Force sending object to P2P due to detect: Sfloppy
21:54:56.0343 0x06f8  Object send P2P result: false
21:54:56.0406 0x06f8  [ CAD058D5F8B889A87CA3EB3CF624DCEF, A7CDCF44261D1F4D820927253EA8EBB63714B7BAFF8B08DE073507D9A7EEA5BB ] SharedAccess    C:\WINDOWS\System32\ipnathlp.dll
21:54:56.0437 0x06f8  SharedAccess - detected UnsignedFile.Multi.Generic ( 1 )
21:54:56.0437 0x06f8  Object is SCO, delete is not allowed
21:54:56.0437 0x06f8  SharedAccess ( UnsignedFile.Multi.Generic ) - warning
21:54:56.0437 0x06f8  Force sending object to P2P due to detect: SharedAccess
21:54:56.0437 0x06f8  Object send P2P result: false
21:54:56.0484 0x06f8  [ 2DB7D303C36DDD055215052F118E8E75, BE6E7BBE12A7A4EDF1F1C2935350603970C7426BBCA7A1A6644BB8999123AF17 ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
21:54:56.0500 0x06f8  ShellHWDetection - ok
21:54:56.0500 0x06f8  Simbad - ok
21:54:56.0546 0x06f8  [ D03A4CDB1B089E3F6C23501339506E5E, 7264A840DAF2AAF19DAC52B3A445A1BEB588C10778287FABF9C0CEFC5FE99F06 ] SMCIRDA         C:\WINDOWS\system32\DRIVERS\smcirda.sys
21:54:56.0546 0x06f8  SMCIRDA - detected UnsignedFile.Multi.Generic ( 1 )
21:54:56.0546 0x06f8  SMCIRDA ( UnsignedFile.Multi.Generic ) - warning
21:54:56.0546 0x06f8  Force sending object to P2P due to detect: SMCIRDA
21:54:56.0546 0x06f8  Object send P2P result: false
21:54:56.0562 0x06f8  Sparrow - ok
21:54:56.0609 0x06f8  [ AB8B92451ECB048A4D1DE7C3FFCB4A9F, DD17733CBB370FCA08F0296704D7CBEACA3C8F76D0ABE4761C3B1FFDF7481D9E ] splitter        C:\WINDOWS\system32\drivers\splitter.sys
21:54:56.0625 0x06f8  splitter - detected UnsignedFile.Multi.Generic ( 1 )
21:54:56.0625 0x06f8  splitter ( UnsignedFile.Multi.Generic ) - warning
21:54:56.0671 0x06f8  [ 60784F891563FB1B767F70117FC2428F, E0B07F08E60FFBAD36C2E58180F4B2A16DCA47716044CBE0213DF7B74D742F1F ] Spooler         C:\WINDOWS\system32\spoolsv.exe
21:54:56.0703 0x06f8  Spooler - ok
21:54:56.0718 0x06f8  [ 50FA898F8C032796D3B1B9951BB5A90F, 1C86273EC19EB96D6DB9CE6670C00683B77C99C42CC2F7E75BC50872B93446B1 ] sr              C:\WINDOWS\system32\DRIVERS\sr.sys
21:54:56.0734 0x06f8  sr - detected UnsignedFile.Multi.Generic ( 1 )
21:54:56.0734 0x06f8  sr ( UnsignedFile.Multi.Generic ) - warning
21:54:56.0781 0x06f8  [ FE77A85495065F3AD59C5C65B6C54182, EB4BAF992F961B2FD5D24BFCB6BCB2142BC32933139A818835FEAB190E4283BB ] srservice       C:\WINDOWS\system32\srsvc.dll
21:54:56.0796 0x06f8  srservice - detected UnsignedFile.Multi.Generic ( 1 )
21:54:56.0796 0x06f8  srservice ( UnsignedFile.Multi.Generic ) - warning
21:54:56.0843 0x06f8  [ 47DDFC2F003F7F9F0592C6874962A2E7, 17C643BD4EB09B5666FE41817DC785BE04A6E491CE79E8E5A702CDBD98E1BDD7 ] Srv             C:\WINDOWS\system32\DRIVERS\srv.sys
21:54:56.0921 0x06f8  Srv - ok
21:54:56.0937 0x06f8  [ 4DF5B05DFAEC29E13E1ED6F6EE12C500, 2971D7D45D6942D310D47DBD19B9680D2D29527E79B86133C72217FD29259465 ] SSDPSRV         C:\WINDOWS\System32\ssdpsrv.dll
21:54:56.0937 0x06f8  SSDPSRV - detected UnsignedFile.Multi.Generic ( 1 )
21:54:56.0937 0x06f8  SSDPSRV ( UnsignedFile.Multi.Generic ) - warning
21:54:56.0984 0x06f8  [ A36EE93698802CD899F98BFD553D8185, 224CFED921EA230FF8025D259E34968FD2C0FD34BB3A918FB4B9B8BA42BEA5D3 ] ssmdrv          C:\WINDOWS\system32\DRIVERS\ssmdrv.sys
21:54:57.0000 0x06f8  ssmdrv - ok
21:54:57.0093 0x06f8  [ BC2C5985611C5356B24AEB370953DED9, 15CBAB8166827DC098E2B16AB6F49A1441A4CB52AF3588F0AD964CAB596DFE10 ] stisvc          C:\WINDOWS\system32\wiaservc.dll
21:54:57.0109 0x06f8  stisvc - detected UnsignedFile.Multi.Generic ( 1 )
21:54:57.0109 0x06f8  Object is SCO, delete is not allowed
21:54:57.0109 0x06f8  stisvc ( UnsignedFile.Multi.Generic ) - warning
21:54:57.0187 0x06f8  [ 3941D127AEF12E93ADDF6FE6EE027E0F, EA1F0E32E1C5E90FA4AAC421DEBBE086512340758D3217A6334E886BCE638B51 ] swenum          C:\WINDOWS\system32\DRIVERS\swenum.sys
21:54:57.0187 0x06f8  swenum - detected UnsignedFile.Multi.Generic ( 1 )
21:54:57.0187 0x06f8  Object is SCO, delete is not allowed
21:54:57.0187 0x06f8  swenum ( UnsignedFile.Multi.Generic ) - warning
21:54:57.0203 0x06f8  [ 8CE882BCC6CF8A62F2B2323D95CB3D01, B408550A581F3DA222355964AFA4E976AD8471F0AA37573C42C4948AE5A23A3B ] swmidi          C:\WINDOWS\system32\drivers\swmidi.sys
21:54:57.0203 0x06f8  swmidi - detected UnsignedFile.Multi.Generic ( 1 )
21:54:57.0203 0x06f8  swmidi ( UnsignedFile.Multi.Generic ) - warning
21:54:57.0218 0x06f8  SwPrv - ok
21:54:57.0234 0x06f8  symc810 - ok
21:54:57.0250 0x06f8  symc8xx - ok
21:54:57.0265 0x06f8  sym_hi - ok
21:54:57.0265 0x06f8  sym_u3 - ok
21:54:57.0328 0x06f8  [ C9A1785CC0D7A040DD0FDBFEAA8BE135, B52395022362E5E9FD8EB6217FD1ED715690AE7A3F9A897C2B937002F0044DCD ] SynTP           C:\WINDOWS\system32\DRIVERS\SynTP.sys
21:54:57.0343 0x06f8  SynTP - detected UnsignedFile.Multi.Generic ( 1 )
21:54:57.0343 0x06f8  SynTP ( UnsignedFile.Multi.Generic ) - warning
21:54:57.0375 0x06f8  [ 8B83F3ED0F1688B4958F77CD6D2BF290, 546D3602183702B4F53E84413CFA2C933D64C8540378E54A8DCD148F3F36A2DA ] sysaudio        C:\WINDOWS\system32\drivers\sysaudio.sys
21:54:57.0375 0x06f8  sysaudio - detected UnsignedFile.Multi.Generic ( 1 )
21:54:57.0375 0x06f8  sysaudio ( UnsignedFile.Multi.Generic ) - warning
21:54:57.0375 0x06f8  Force sending object to P2P due to detect: sysaudio
21:54:57.0375 0x06f8  Object send P2P result: false
21:54:57.0421 0x06f8  [ 2903FFFA2523926D6219428040DCE6B9, 4F13181931B0499F6C3F08138054DBCD1F84CB9806999A9172B80DE79D446F62 ] SysmonLog       C:\WINDOWS\system32\smlogsvc.exe
21:54:57.0437 0x06f8  SysmonLog - detected UnsignedFile.Multi.Generic ( 1 )
21:54:57.0437 0x06f8  SysmonLog ( UnsignedFile.Multi.Generic ) - warning
21:54:57.0484 0x06f8  [ 05903CAC4B98908D55EA5774775B382E, AC3666CBD894D737874A5998DC7F46A0A51A7B23B1835FC735B9AD503A2191CC ] TapiSrv         C:\WINDOWS\System32\tapisrv.dll
21:54:57.0500 0x06f8  TapiSrv - detected UnsignedFile.Multi.Generic ( 1 )
21:54:57.0500 0x06f8  TapiSrv ( UnsignedFile.Multi.Generic ) - warning
21:54:57.0578 0x06f8  [ 9AEFA14BD6B182D61E3119FA5F436D3D, EA29E49434585409272E7901AF89771FE9D6E911A7DC44AB3C7020CFF8A44552 ] Tcpip           C:\WINDOWS\system32\DRIVERS\tcpip.sys
21:54:57.0625 0x06f8  Tcpip - ok
21:54:57.0687 0x06f8  [ 6471A66807F5E104E4885F5B67349397, F35CBFFB8BB235CCE30EF94A5273333900DD49FD506BF9D55D99A320B8A53A5A ] TDPIPE          C:\WINDOWS\system32\drivers\TDPIPE.sys
21:54:57.0687 0x06f8  TDPIPE - detected UnsignedFile.Multi.Generic ( 1 )
21:54:57.0687 0x06f8  Object is SCO, delete is not allowed
21:54:57.0687 0x06f8  TDPIPE ( UnsignedFile.Multi.Generic ) - warning
21:54:57.0687 0x06f8  Force sending object to P2P due to detect: TDPIPE
21:54:57.0687 0x06f8  Object send P2P result: false
21:54:57.0718 0x06f8  [ C56B6D0402371CF3700EB322EF3AAF61, 7743FA4C734BCE38EFB1CA69BC17364D8421E2CD172F856F7E38E7AE1EE93F2F ] TDTCP           C:\WINDOWS\system32\drivers\TDTCP.sys
21:54:57.0718 0x06f8  TDTCP - detected UnsignedFile.Multi.Generic ( 1 )
21:54:57.0718 0x06f8  Object is SCO, delete is not allowed
21:54:57.0718 0x06f8  TDTCP ( UnsignedFile.Multi.Generic ) - warning
21:54:57.0750 0x06f8  [ 88155247177638048422893737429D9E, B6D4E8691917946332C2208D01F8C8281978C1AD1E9951C5D99DF0D49AC34B3B ] TermDD          C:\WINDOWS\system32\DRIVERS\termdd.sys
21:54:57.0750 0x06f8  TermDD - detected UnsignedFile.Multi.Generic ( 1 )
21:54:57.0750 0x06f8  Object is SCO, delete is not allowed
21:54:57.0750 0x06f8  TermDD ( UnsignedFile.Multi.Generic ) - warning
21:54:57.0828 0x06f8  [ B7DE02C863D8F5A005A7BF375375A6A4, 6DE05A7B28CA5A78D58536347FC47F15883EEDBEF487CEA0117CC280FC582DCC ] TermService     C:\WINDOWS\System32\termsrv.dll
21:54:57.0843 0x06f8  TermService - detected UnsignedFile.Multi.Generic ( 1 )
21:54:57.0843 0x06f8  Object is SCO, delete is not allowed
21:54:57.0843 0x06f8  TermService ( UnsignedFile.Multi.Generic ) - warning
21:54:57.0890 0x06f8  [ 2DB7D303C36DDD055215052F118E8E75, BE6E7BBE12A7A4EDF1F1C2935350603970C7426BBCA7A1A6644BB8999123AF17 ] Themes          C:\WINDOWS\System32\shsvcs.dll
21:54:57.0906 0x06f8  Themes - ok
21:54:57.0906 0x06f8  tifm21 - ok
21:54:57.0953 0x06f8  [ 03681A1CE77F51586903869A5AB1DEAB, E2EC0A481412166B654682C2F3D953E96E757466135CBD2D813B967EDB13C721 ] TlntSvr         C:\WINDOWS\system32\tlntsvr.exe
21:54:57.0968 0x06f8  TlntSvr - detected UnsignedFile.Multi.Generic ( 1 )
21:54:57.0968 0x06f8  TlntSvr ( UnsignedFile.Multi.Generic ) - warning
21:54:57.0968 0x06f8  TosIde - ok
21:54:58.0015 0x06f8  [ 626504572B175867F30F3215C04B3E2F, 47E87CE9BC666D5CB5953C5D497DC00A7CC28F8EC0A064B3E47700279C5C4B91 ] TrkWks          C:\WINDOWS\system32\trkwks.dll
21:54:58.0031 0x06f8  TrkWks - detected UnsignedFile.Multi.Generic ( 1 )
21:54:58.0031 0x06f8  Object is SCO, delete is not allowed
21:54:58.0031 0x06f8  TrkWks ( UnsignedFile.Multi.Generic ) - warning
21:54:58.0031 0x06f8  Force sending object to P2P due to detect: TrkWks
21:54:58.0031 0x06f8  Object send P2P result: false
21:54:58.0093 0x06f8  [ 5787B80C2E3C5E2F56C2A233D91FA2C9, 3774905CF77954DFCECDA5BCC7CDE3D0ED72712BFAAD85ADAE5246306447E46C ] Udfs            C:\WINDOWS\system32\drivers\Udfs.sys
21:54:58.0109 0x06f8  Udfs - detected UnsignedFile.Multi.Generic ( 1 )
21:54:58.0109 0x06f8  Object is SCO, delete is not allowed
21:54:58.0109 0x06f8  Udfs ( UnsignedFile.Multi.Generic ) - warning
21:54:58.0109 0x06f8  Force sending object to P2P due to detect: Udfs
21:54:58.0109 0x06f8  Object send P2P result: false
21:54:58.0109 0x06f8  ultra - ok
21:54:58.0203 0x06f8  [ 402DDC88356B1BAC0EE3DD1580C76A31, 32A686595710336A6BFD54C03F552AE39439611662F84EF5D24193AE5665C6F3 ] Update          C:\WINDOWS\system32\DRIVERS\update.sys
21:54:58.0218 0x06f8  Update - detected UnsignedFile.Multi.Generic ( 1 )
21:54:58.0218 0x06f8  Update ( UnsignedFile.Multi.Generic ) - warning
21:54:58.0281 0x06f8  [ 1DFD8975D8C89214B98D9387C1125B49, 0B6B268487C8E45E9B86BF4A0A9DB669E0E45D600DE3C82B63F9986CA9E01082 ] upnphost        C:\WINDOWS\System32\upnphost.dll
21:54:58.0296 0x06f8  upnphost - detected UnsignedFile.Multi.Generic ( 1 )
21:54:58.0296 0x06f8  upnphost ( UnsignedFile.Multi.Generic ) - warning
21:54:58.0296 0x06f8  [ 9B11E6118958E63E1FEF129466E2BDA7, 97168BCE3F4A9BB9E6500F05E34851FB957B219C598944FADC28AC0011C0503B ] UPS             C:\WINDOWS\System32\ups.exe
21:54:58.0312 0x06f8  UPS - detected UnsignedFile.Multi.Generic ( 1 )
21:54:58.0312 0x06f8  UPS ( UnsignedFile.Multi.Generic ) - warning
21:54:58.0312 0x06f8  Force sending object to P2P due to detect: UPS
21:54:58.0312 0x06f8  Object send P2P result: false
21:54:58.0375 0x06f8  [ 4BAC8DF07F1D8434FC640E677A62204E, 76C1351AF6752224BF59DEEE0F8665FE699F3DFD679F5BCD01C7D9383E6402A4 ] usbehci         C:\WINDOWS\system32\DRIVERS\usbehci.sys
21:54:58.0437 0x06f8  usbehci - ok
21:54:58.0484 0x06f8  [ 1AB3CDDE553B6E064D2E754EFE20285C, A99C4528C4227B1E96847614745AAFACD3C5F1BDFE435214DBF78740FFB300FE ] usbhub          C:\WINDOWS\system32\DRIVERS\usbhub.sys
21:54:58.0500 0x06f8  usbhub - detected UnsignedFile.Multi.Generic ( 1 )
21:54:58.0500 0x06f8  usbhub ( UnsignedFile.Multi.Generic ) - warning
21:54:58.0515 0x06f8  [ A32426D9B14A089EAA1D922E0C5801A9, ED1DC52EE45F8EAD3AEC4B1F817BB25634141CF48295494C5947DCE6CF7A9817 ] USBSTOR         C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
21:54:58.0515 0x06f8  USBSTOR - detected UnsignedFile.Multi.Generic ( 1 )
21:54:58.0515 0x06f8  USBSTOR ( UnsignedFile.Multi.Generic ) - warning
21:54:58.0515 0x06f8  Force sending object to P2P due to detect: USBSTOR
21:54:58.0515 0x06f8  Object send P2P result: false
21:54:58.0531 0x06f8  [ 26496F9DEE2D787FC3E61AD54821FFE6, 8BE7FF647470B9A951CBB478FAF83D657A15CC78037F42348A6B738F21D523DA ] usbuhci         C:\WINDOWS\system32\DRIVERS\usbuhci.sys
21:54:58.0531 0x06f8  usbuhci - detected UnsignedFile.Multi.Generic ( 1 )
21:54:58.0531 0x06f8  usbuhci ( UnsignedFile.Multi.Generic ) - warning
21:54:58.0546 0x06f8  [ 0D3A8FAFCEACD8B7625CD549757A7DF1, B9CFDEFCD66AA139F3DC2F967B184669532922563AD5A71769BABDC4370D065E ] VgaSave         C:\WINDOWS\System32\drivers\vga.sys
21:54:58.0546 0x06f8  VgaSave - detected UnsignedFile.Multi.Generic ( 1 )
21:54:58.0546 0x06f8  Object is SCO, delete is not allowed
21:54:58.0546 0x06f8  VgaSave ( UnsignedFile.Multi.Generic ) - warning
21:54:58.0593 0x06f8  [ 3B3EFCDA263B8AC14FDF9CBDD0791B2E, FC7FFD53FCC0F81587EFF26A43C141D25C43DBC68311520CE2BCDD739CA58CA9 ] ViaIde          C:\WINDOWS\system32\DRIVERS\viaide.sys
21:54:58.0593 0x06f8  ViaIde - detected UnsignedFile.Multi.Generic ( 1 )
21:54:58.0593 0x06f8  ViaIde ( UnsignedFile.Multi.Generic ) - warning
21:54:58.0593 0x06f8  [ A5A712F4E880874A477AF790B5186E1D, FE885ED04C3EAFC379787F836738A2769E43D07CF52DD917D90C38E001957A5E ] VolSnap         C:\WINDOWS\system32\drivers\VolSnap.sys
21:54:58.0609 0x06f8  VolSnap - detected UnsignedFile.Multi.Generic ( 1 )
21:54:58.0609 0x06f8  Object is SCO, delete is not allowed
21:54:58.0609 0x06f8  VolSnap ( UnsignedFile.Multi.Generic ) - warning
21:54:58.0609 0x06f8  Force sending object to P2P due to detect: VolSnap
21:54:58.0609 0x06f8  Object send P2P result: false
21:54:58.0687 0x06f8  [ 68F106273BE29E7B7EF8266977268E78, 1488AB7A654EBC94C73E1D494067189ACB95BC233980110CAC4C0297CDC4115A ] VSS             C:\WINDOWS\System32\vssvc.exe
21:54:58.0703 0x06f8  VSS - detected UnsignedFile.Multi.Generic ( 1 )
21:54:58.0703 0x06f8  Object is SCO, delete is not allowed
21:54:58.0703 0x06f8  VSS ( UnsignedFile.Multi.Generic ) - warning
21:54:58.0750 0x06f8  [ 7B353059E665F8B7AD2BBEAEF597CF45, 84A4311F18A4B8DCB364741DEA7D18E2363F19564B2EF25214965DC729527068 ] W32Time         C:\WINDOWS\system32\w32time.dll
21:54:58.0750 0x06f8  W32Time - detected UnsignedFile.Multi.Generic ( 1 )
21:54:58.0750 0x06f8  Object is SCO, delete is not allowed
21:54:58.0750 0x06f8  W32Time ( UnsignedFile.Multi.Generic ) - warning
21:54:58.0890 0x06f8  [ B1F126E7E28877106D60E6FF3998D033, 1F59798DF18994AA720522CC5FBA5B79F9BD167DBBC2B9D670F796E1DFD10C0C ] w39n51          C:\WINDOWS\system32\DRIVERS\w39n51.sys
21:54:59.0031 0x06f8  w39n51 - detected UnsignedFile.Multi.Generic ( 1 )
21:54:59.0031 0x06f8  w39n51 ( UnsignedFile.Multi.Generic ) - warning
21:54:59.0093 0x06f8  [ E20B95BAEDB550F32DD489265C1DA1F6, 5589B2067E6C9FBA290D8C5EADDC198EBAF39C50C3CD7D2BC5CDA7CBFBC445E5 ] Wanarp          C:\WINDOWS\system32\DRIVERS\wanarp.sys
21:54:59.0093 0x06f8  Wanarp - detected UnsignedFile.Multi.Generic ( 1 )
21:54:59.0093 0x06f8  Object is SCO, delete is not allowed
21:54:59.0093 0x06f8  Wanarp ( UnsignedFile.Multi.Generic ) - warning
21:54:59.0093 0x06f8  Force sending object to P2P due to detect: Wanarp
21:54:59.0093 0x06f8  Object send P2P result: false
21:54:59.0093 0x06f8  WDICA - ok
21:54:59.0125 0x06f8  [ 6768ACF64B18196494413695F0C3A00F, 3A8F8586F1D997D19A8478345338D2AECD785AEABDB61531DD3F92003D3230A5 ] wdmaud          C:\WINDOWS\system32\drivers\wdmaud.sys
21:54:59.0140 0x06f8  wdmaud - detected UnsignedFile.Multi.Generic ( 1 )
21:54:59.0140 0x06f8  wdmaud ( UnsignedFile.Multi.Generic ) - warning
21:54:59.0140 0x06f8  Force sending object to P2P due to detect: wdmaud
21:54:59.0140 0x06f8  Object send P2P result: false
21:54:59.0156 0x06f8  [ 81727C9873E3905A2FFC1EBD07265002, 6AC2383A1DCBB7FA3DB90FBB874C8E1819F5B7492717FF41E303EFC7BF72F93E ] WebClient       C:\WINDOWS\System32\webclnt.dll
21:54:59.0171 0x06f8  WebClient - detected UnsignedFile.Multi.Generic ( 1 )
21:54:59.0171 0x06f8  Object is SCO, delete is not allowed
21:54:59.0171 0x06f8  WebClient ( UnsignedFile.Multi.Generic ) - warning
21:54:59.0281 0x06f8  [ 6F3F3973D97714CC5F906A19FE883729, 7817118BE94D0F6FAE0F9CE48AD70FFE0AEF886CCE09C666768FAB61047F992F ] winmgmt         C:\WINDOWS\system32\wbem\WMIsvc.dll
21:54:59.0296 0x06f8  winmgmt - detected UnsignedFile.Multi.Generic ( 1 )
21:54:59.0296 0x06f8  Object is SCO, delete is not allowed
21:54:59.0296 0x06f8  winmgmt ( UnsignedFile.Multi.Generic ) - warning
21:54:59.0359 0x06f8  [ 051B1BDECD6DEE18C771B5D5EC7F044D, E9D4870C7E4E6119B274CF788D564BE9C48EA63790F5D6A2E987EB6DF7C93200 ] WmdmPmSN        C:\WINDOWS\system32\MsPMSNSv.dll
21:54:59.0453 0x06f8  WmdmPmSN - ok
21:54:59.0515 0x06f8  [ FFA4D901D46D07A5BAB2D8307FBB51A6, 53C6D04D111EDF774C7F7EEB8D032B372E6244774D56B1B34CF1236027EC9450 ] Wmi             C:\WINDOWS\System32\advapi32.dll
21:54:59.0625 0x06f8  Wmi - ok
21:54:59.0656 0x06f8  [ C42584FD66CE9E17403AEBCA199F7BDB, E3F2E1066F36AE5D33D4482239B2E556BE0C137923C9A120DFB36EC82F2E77B0 ] WmiAcpi         C:\WINDOWS\system32\DRIVERS\wmiacpi.sys
21:54:59.0656 0x06f8  WmiAcpi - detected UnsignedFile.Multi.Generic ( 1 )
21:54:59.0656 0x06f8  WmiAcpi ( UnsignedFile.Multi.Generic ) - warning
21:54:59.0687 0x06f8  [ 93908111BA57A6E60EC2FA2DE202105C, F395F25F18D15C6B9FEDB45FD31E10295FFE5517E2BC86ACAC11904EA0664BE2 ] WmiApSrv        C:\WINDOWS\system32\wbem\wmiapsrv.exe
21:54:59.0703 0x06f8  WmiApSrv - detected UnsignedFile.Multi.Generic ( 1 )
21:54:59.0703 0x06f8  Object is SCO, delete is not allowed
21:54:59.0703 0x06f8  WmiApSrv ( UnsignedFile.Multi.Generic ) - warning
21:54:59.0703 0x06f8  Force sending object to P2P due to detect: WmiApSrv
21:54:59.0703 0x06f8  Object send P2P result: false
21:54:59.0859 0x06f8  [ D3DBD6E76F4BE9BEE67EB631488B5F29, 2270C37EAA8BA4727C21E101AB0CA03E61F8B1AF2AB979EF697DCF6F0D88C3B4 ] WMPNetworkSvc   C:\Programme\Windows Media Player\WMPNetwk.exe
21:54:59.0984 0x06f8  WMPNetworkSvc - ok
21:55:00.0125 0x06f8  [ 15673BD0B86150CB8E27766059C72A9B, 56C23289A8BFF4945EE532CF6D62D3EC81B827CA15A359F30A327789F9FE9CAF ] WPFFontCache_v0400 C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
21:55:00.0203 0x06f8  WPFFontCache_v0400 - ok
21:55:00.0265 0x06f8  [ 300B3E84FAF1A5C1F791C159BA28035D, 0194856BDF94C1F274AF70AD558290ACDACDDEA331BD66FEB8E167ABD1E36786 ] wscsvc          C:\WINDOWS\system32\wscsvc.dll
21:55:00.0265 0x06f8  wscsvc - detected UnsignedFile.Multi.Generic ( 1 )
21:55:00.0265 0x06f8  Object is SCO, delete is not allowed
21:55:00.0265 0x06f8  wscsvc ( UnsignedFile.Multi.Generic ) - warning
21:55:00.0281 0x06f8  [ 7B4FE05202AA6BF9F4DFD0E6A0D8A085, A1DB8909FA73337DB613D01824945485186654364A4DF129B8CB913CF87D1D2E ] wuauserv        C:\WINDOWS\system32\wuauserv.dll
21:55:00.0312 0x06f8  wuauserv - detected UnsignedFile.Multi.Generic ( 1 )
21:55:00.0312 0x06f8  wuauserv ( UnsignedFile.Multi.Generic ) - warning
21:55:00.0343 0x06f8  [ F15FEAFFFBB3644CCC80C5DA584E6311, 79B3E9AF35976CE49921E9BEA3BA3B4A8AF762FD3F284B62954038B5FFB32471 ] WudfPf          C:\WINDOWS\system32\DRIVERS\WudfPf.sys
21:55:00.0359 0x06f8  WudfPf - ok
21:55:00.0390 0x06f8  [ 28B524262BCE6DE1F7EF9F510BA3985B, AEFF02B899801A63CBB262757C3D4369E38BFF0690BD085DE60E873DFBE3C3F4 ] WudfRd          C:\WINDOWS\system32\DRIVERS\wudfrd.sys
21:55:00.0406 0x06f8  WudfRd - ok
21:55:00.0453 0x06f8  [ 05231C04253C5BC30B26CBAAE680ED89, 5C03C2D7E0B573646D32F4093E2FF2C3BA391C39F5BA37D67F69D38E357FCC3D ] WudfSvc         C:\WINDOWS\System32\WUDFSvc.dll
21:55:00.0468 0x06f8  WudfSvc - ok
21:55:00.0546 0x06f8  [ C4F109C005F6725162D2D12CA751E4A7, AC996B44338328BDD4442FE48406F286A64526F0EC77BE00A19FA7FDB0407CFE ] WZCSVC          C:\WINDOWS\System32\wzcsvc.dll
21:55:00.0718 0x06f8  WZCSVC - detected UnsignedFile.Multi.Generic ( 1 )
21:55:00.0718 0x06f8  WZCSVC ( UnsignedFile.Multi.Generic ) - warning
21:55:00.0718 0x06f8  Force sending object to P2P due to detect: WZCSVC
21:55:00.0718 0x06f8  Object send P2P result: false
21:55:00.0796 0x06f8  [ 0ADA34871A2E1CD2CAAFED1237A47750, 45BEF8649078BD74C1A347B5F2D3A1958E5A7DCD6C6BA8A2E0CAD277A929C64E ] xmlprov         C:\WINDOWS\System32\xmlprov.dll
21:55:00.0812 0x06f8  xmlprov - detected UnsignedFile.Multi.Generic ( 1 )
21:55:00.0812 0x06f8  xmlprov ( UnsignedFile.Multi.Generic ) - warning
21:55:00.0812 0x06f8  Force sending object to P2P due to detect: xmlprov
21:55:00.0812 0x06f8  Object send P2P result: false
21:55:00.0828 0x06f8  ================ Scan global ===============================
21:55:00.0875 0x06f8  [ 2C60091CA5F67C3032EAB3B30390C27F, 9E205C8E67F4B61FCFA2A82AA1968D522C3B6410D7075BE813F7F1564D61632E ] C:\WINDOWS\system32\basesrv.dll
21:55:00.0937 0x06f8  [ E62178BC21EAC63A3B9A2DBD46C1B505, CAA5480CC4DAA37758F0CF445F865FD6F4630080B044EF2E606C2F62DAA4061A ] C:\WINDOWS\system32\winsrv.dll
21:55:00.0968 0x06f8  [ E62178BC21EAC63A3B9A2DBD46C1B505, CAA5480CC4DAA37758F0CF445F865FD6F4630080B044EF2E606C2F62DAA4061A ] C:\WINDOWS\system32\winsrv.dll
21:55:01.0015 0x06f8  [ A3EDBE9053889FB24AB22492472B39DC, 6F2ED6E04BDE2FCA2A8BF9BD2D1D6923DE6EAECB46F582B6C0BD1CF364D65C9E ] C:\WINDOWS\system32\services.exe
21:55:01.0015 0x06f8  [ Global ] - ok
21:55:01.0015 0x06f8  ================ Scan MBR ==================================
21:55:01.0046 0x06f8  [ 14C6601BDCC8A8484143829F2700ED2C ] \Device\Harddisk0\DR0
21:55:01.0265 0x06f8  \Device\Harddisk0\DR0 - ok
21:55:01.0281 0x06f8  [ E5FA06ACA0D60BA9C870D0EF3D9898C9 ] \Device\Harddisk1\DR9
21:55:01.0375 0x06f8  \Device\Harddisk1\DR9 - ok
21:55:01.0375 0x06f8  ================ Scan VBR ==================================
21:55:01.0375 0x06f8  [ 6010EA634BED2AECCB03230848BAD59E ] \Device\Harddisk0\DR0\Partition1
21:55:01.0375 0x06f8  \Device\Harddisk0\DR0\Partition1 - ok
21:55:01.0421 0x06f8  [ 6CD4451C7C66AFB076B106D23EF39FC4 ] \Device\Harddisk0\DR0\Partition2
21:55:01.0437 0x06f8  \Device\Harddisk0\DR0\Partition2 - ok
21:55:01.0453 0x06f8  [ E2C855A73A6C78361174C3C8BADD594E ] \Device\Harddisk1\DR9\Partition1
21:55:01.0453 0x06f8  \Device\Harddisk1\DR9\Partition1 - ok
21:55:01.0453 0x06f8  ================ Scan generic autorun ======================
21:55:01.0453 0x06f8  MsmqIntCert - ok
21:55:01.0562 0x06f8  [ 115332A83AC2726FA974D30DB4BFD8DE, D86869A8CA6824CF8D3703420FCF6EC3E7E70CEEF05E230BDE1250C4550C7356 ] C:\Programme\Analog Devices\Core\smax4pnp.exe
21:55:01.0671 0x06f8  SoundMAXPnP - detected UnsignedFile.Multi.Generic ( 1 )
21:55:01.0671 0x06f8  SoundMAXPnP ( UnsignedFile.Multi.Generic ) - warning
21:55:01.0671 0x06f8  Force sending object to P2P due to detect: C:\Programme\Analog Devices\Core\smax4pnp.exe
21:55:01.0687 0x06f8  Object send P2P result: false
21:55:01.0781 0x06f8  [ 81A5A2CA780340784969D2EDCAB0800F, A0D575999B6EA0AA8457EEA2BF014A2180B1D5B05845C38570878E5A80566677 ] C:\Programme\Analog Devices\SoundMAX\Smax4.exe
21:55:01.0812 0x06f8  SoundMAX - detected UnsignedFile.Multi.Generic ( 1 )
21:55:01.0812 0x06f8  SoundMAX ( UnsignedFile.Multi.Generic ) - warning
21:55:01.0875 0x06f8  [ 61A3A9D5D98BF0331DF5B716144A8100, E6F1908841333F6D6426FE4D8626435AE6F64C475DCEE1FF32C4C1331BF7941F ] C:\Programme\Java\jre1.5.0_06\bin\jusched.exe
21:55:01.0890 0x06f8  SunJavaUpdateSched - detected UnsignedFile.Multi.Generic ( 1 )
21:55:01.0890 0x06f8  SunJavaUpdateSched ( UnsignedFile.Multi.Generic ) - warning
21:55:01.0953 0x06f8  [ BB67160E7435501180B488CE0E182DF4, 9C16B34946CAD400FDF27FF222171819ED1979B1EF0D2E0653E4137E44EB7C38 ] C:\Programme\HPQ\HP ProtectTools Security Manager\PTHOSTTR.EXE
21:55:01.0968 0x06f8  PTHOSTTR - detected UnsignedFile.Multi.Generic ( 1 )
21:55:01.0968 0x06f8  PTHOSTTR ( UnsignedFile.Multi.Generic ) - warning
21:55:02.0000 0x06f8  [ 821F73B833C4DAEBC33C1A9A4B16BB5A, B581041DA43D1CB5455B4AB8A999A574725BC742FF324FD12FDB2ED6371F5129 ] C:\Programme\Hp\HP Software Update\HPWuSchd2.exe
21:55:02.0000 0x06f8  HP Software Update - detected UnsignedFile.Multi.Generic ( 1 )
21:55:02.0000 0x06f8  HP Software Update ( UnsignedFile.Multi.Generic ) - warning
21:55:02.0015 0x06f8  [ F1EE6DBD988AD3C36AA18C595FFB597E, F9F3FDFA270EE74736EEEADF56AA066975B7DF60A19E02053E7436FC15E5E3F4 ] C:\WINDOWS\System32\DLA\DLACTRLW.EXE
21:55:02.0015 0x06f8  DLA - detected UnsignedFile.Multi.Generic ( 1 )
21:55:02.0015 0x06f8  DLA ( UnsignedFile.Multi.Generic ) - warning
21:55:02.0140 0x06f8  [ DB81B078A7A8CA80C5AA8554CEE66694, 4A568A5695AFAFB62D8FD8B140846090345C250FFF2A2D9EBE33ADC8959F5AD6 ] C:\Programme\Synaptics\SynTP\SynTPEnh.exe
21:55:02.0234 0x06f8  SynTPEnh - detected UnsignedFile.Multi.Generic ( 1 )
21:55:02.0234 0x06f8  SynTPEnh ( UnsignedFile.Multi.Generic ) - warning
21:55:02.0250 0x06f8  [ 54F1F98C4AD8F99BBBE8FBB62B38733F, 6F61C16C42F2C885BFF3696AAF0A7DDD626FA5D0847CEFB3D588915671A610DC ] C:\WINDOWS\system32\igfxtray.exe
21:55:02.0265 0x06f8  igfxtray - detected UnsignedFile.Multi.Generic ( 1 )
21:55:02.0265 0x06f8  igfxtray ( UnsignedFile.Multi.Generic ) - warning
21:55:02.0296 0x06f8  [ D9F3DB62D1B361D82CD82A347EA6218D, B01C69802F53F4256B4F4228FC05118758F2C63173FCBD8475A678B538D5F56F ] C:\WINDOWS\system32\hkcmd.exe
21:55:02.0296 0x06f8  igfxhkcmd - detected UnsignedFile.Multi.Generic ( 1 )
21:55:02.0296 0x06f8  igfxhkcmd ( UnsignedFile.Multi.Generic ) - warning
21:55:02.0328 0x06f8  [ 32FB9368F485A7FE944EB6678B61734B, E077FCFFD6FAC834CC6F26E1E019596C0C258BDC9FDAF66A79BBAAC2B67CDF15 ] C:\WINDOWS\system32\igfxpers.exe
21:55:02.0343 0x06f8  igfxpers - detected UnsignedFile.Multi.Generic ( 1 )
21:55:02.0343 0x06f8  igfxpers ( UnsignedFile.Multi.Generic ) - warning
21:55:02.0343 0x06f8  Force sending object to P2P due to detect: C:\WINDOWS\system32\igfxpers.exe
21:55:02.0343 0x06f8  Object send P2P result: false
21:55:02.0406 0x06f8  [ 3EC8642B4920A072F75358EEDD43587D, 3236E1A0FED8E287FE10D97CFBAF3AD863DFFDDC006DE5B9A4882FA35D7E6F2D ] C:\Programme\hpq\HP Wireless Assistant\HP Wireless Assistant.exe
21:55:02.0468 0x06f8  hpWirelessAssistant - detected UnsignedFile.Multi.Generic ( 1 )
21:55:02.0468 0x06f8  hpWirelessAssistant ( UnsignedFile.Multi.Generic ) - warning
21:55:02.0484 0x06f8  CognizanceTS - ok
21:55:02.0578 0x06f8  [ 29807914A72BD208DB979A64F94EADC0, B7DE10A7DAE07D442942379BC486772DCB2817EE5DF32A432F0BE34B6DD9F4F1 ] C:\Programme\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe
21:55:02.0593 0x06f8  QlbCtrl - detected UnsignedFile.Multi.Generic ( 1 )
21:55:02.0593 0x06f8  QlbCtrl ( UnsignedFile.Multi.Generic ) - warning
21:55:02.0625 0x06f8  [ 03C9FAD0EA8572CAF0547A8DCD392EDB, 0DBED95F4C5AF825E03337CCC7AC46E4B30BC109ABDA46654E66B9FFE995E521 ] C:\Programme\HPQ\Default Settings\cpqset.exe
21:55:02.0640 0x06f8  Cpqset - detected UnsignedFile.Multi.Generic ( 1 )
21:55:02.0640 0x06f8  Cpqset ( UnsignedFile.Multi.Generic ) - warning
21:55:02.0734 0x06f8  [ EF7F8D837998221691F9706F0DCDA7F4, 9A3934A0CCB7E401DF08F2731983C06338AB5721F63ABDEF768A2A159FD53CF1 ] C:\WINDOWS\Sminst\Recguard.exe
21:55:02.0875 0x06f8  Recguard - detected UnsignedFile.Multi.Generic ( 1 )
21:55:02.0875 0x06f8  Recguard ( UnsignedFile.Multi.Generic ) - warning
21:55:02.0875 0x06f8  Force sending object to P2P due to detect: C:\WINDOWS\Sminst\Recguard.exe
21:55:02.0890 0x06f8  Object send P2P result: false
21:55:03.0046 0x06f8  [ DD561F978820B036473E45C3EE9D36CB, CAA68CDCDDFAD7988DCC2A43A73F25925E6B1CDFC5CE7747C8ED9AAF4EFF3707 ] C:\WINDOWS\Creator\Remind_XP.exe
21:55:03.0156 0x06f8  Reminder - detected UnsignedFile.Multi.Generic ( 1 )
21:55:03.0156 0x06f8  Reminder ( UnsignedFile.Multi.Generic ) - warning
21:55:03.0234 0x06f8  [ 8C453D114162391EE5E6C132A499C647, 33B5E5808F3FACCF46B69DEE759BF081B83835FB7D4933D0FD342A7441BA2A7B ] C:\WINDOWS\SMINST\Scheduler.exe
21:55:03.0312 0x06f8  Scheduler - detected UnsignedFile.Multi.Generic ( 1 )
21:55:03.0312 0x06f8  Scheduler ( UnsignedFile.Multi.Generic ) - warning
21:55:03.0359 0x06f8  [ 4ADAFC1BDEFD39711A66D9604EE7E1D2, 87D232D095229A45A0FF0125F3AC9415031AEA0C79A3C0B6F361283FA2B150D7 ] C:\Programme\InterVideo\DVD Check\DVDCheck.exe
21:55:03.0359 0x06f8  WatchDog - detected UnsignedFile.Multi.Generic ( 1 )
21:55:03.0359 0x06f8  WatchDog ( UnsignedFile.Multi.Generic ) - warning
21:55:03.0406 0x06f8  [ 39D710CEC714D4C20641300760CB3DB3, 3FC2CFD320B69A4761173C6E376DEF3080CBC9283A395B2657968C6C6051F6DF ] C:\Programme\Avira\Launcher\Avira.OE.Systray.exe
21:55:03.0437 0x06f8  Avira Systray - ok
21:55:03.0546 0x06f8  [ FB9E5C251CF6C37749F296BACB34A69B, D6FAD9C7406071291095811D0FECEA8940365C8E345D7C099853FCE2D1FE4412 ] C:\PROGRA~1\GEMEIN~1\INSTAL~1\UPDATE~1\ISUSPM.exe
21:55:03.0546 0x06f8  ISUSPM Startup - detected UnsignedFile.Multi.Generic ( 1 )
21:55:03.0546 0x06f8  ISUSPM Startup ( UnsignedFile.Multi.Generic ) - warning
21:55:03.0546 0x06f8  Force sending object to P2P due to detect: C:\PROGRA~1\GEMEIN~1\INSTAL~1\UPDATE~1\ISUSPM.exe
21:55:03.0562 0x06f8  Object send P2P result: false
21:55:03.0562 0x06f8  [ 763DAB43BDAB27316DBF3373192823D7, 373BB81315C125189B1DB19F03088DEDBCC528C56F7297791912896DBA859C99 ] C:\Programme\Gemeinsame Dateien\InstallShield\UpdateService\issch.exe
21:55:03.0578 0x06f8  ISUSScheduler - detected UnsignedFile.Multi.Generic ( 1 )
21:55:03.0578 0x06f8  ISUSScheduler ( UnsignedFile.Multi.Generic ) - warning
21:55:03.0687 0x06f8  [ 66177D4C99FD8B578C7C56DE445E4D5D, 003D0254D7C693A72DE84CB76858F8D67D9FD62206F1B56DF7F5D0FA834C3BA7 ] C:\Programme\Avira\Antivirus\avgnt.exe
21:55:03.0750 0x06f8  avgnt - ok
21:55:03.0937 0x06f8  [ 048EA4B978851788E9F5E8E4F081DF7A, EB62719AC0DCC18FF056F2CD84438BF14B61E38F0619617C81961C6257BDFCEC ] C:\Programme\Gemeinsame Dateien\Adobe\ARM\1.0\AdobeARM.exe
21:55:04.0000 0x06f8  Adobe ARM - ok
21:55:04.0031 0x06f8  [ 01B4E6E990B6C5EA8856D96C7FD044B2, 2266296FD3C8E0DFA657F21406EE4E494477870DFAF7C65BEBCB6FBA8CADC7C6 ] C:\WINDOWS\system32\CTFMON.EXE
21:55:04.0031 0x06f8  CTFMON.EXE - detected UnsignedFile.Multi.Generic ( 1 )
21:55:04.0031 0x06f8  CTFMON.EXE ( UnsignedFile.Multi.Generic ) - warning
21:55:04.0031 0x06f8  Force sending object to P2P due to detect: C:\WINDOWS\system32\CTFMON.EXE
21:55:04.0031 0x06f8  Object send P2P result: false
21:55:04.0046 0x06f8  [ 01B4E6E990B6C5EA8856D96C7FD044B2, 2266296FD3C8E0DFA657F21406EE4E494477870DFAF7C65BEBCB6FBA8CADC7C6 ] C:\WINDOWS\system32\CTFMON.EXE
21:55:04.0046 0x06f8  CTFMON.EXE - detected UnsignedFile.Multi.Generic ( 1 )
21:55:04.0046 0x06f8  CTFMON.EXE ( UnsignedFile.Multi.Generic ) - warning
21:55:04.0046 0x06f8  [ 01B4E6E990B6C5EA8856D96C7FD044B2, 2266296FD3C8E0DFA657F21406EE4E494477870DFAF7C65BEBCB6FBA8CADC7C6 ] C:\WINDOWS\system32\ctfmon.exe
21:55:04.0046 0x06f8  CTFMON.EXE - detected UnsignedFile.Multi.Generic ( 1 )
21:55:04.0046 0x06f8  CTFMON.EXE ( UnsignedFile.Multi.Generic ) - warning
21:55:04.0046 0x06f8  Force sending object to P2P due to detect: C:\WINDOWS\system32\ctfmon.exe
21:55:04.0062 0x06f8  Object send P2P result: false
21:55:04.0453 0x06f8  [ 1F014EA12ECB13C909DA9395E9CD3D18, FA4E7090E3778A954AB82B304B9E3711F35E30E5DE7B9020F4E820B6E3B1CF85 ] C:\Programme\CCleaner\CCleaner.exe
21:55:05.0000 0x06f8  CCleaner Monitoring - ok
21:55:05.0015 0x06f8  [ 01B4E6E990B6C5EA8856D96C7FD044B2, 2266296FD3C8E0DFA657F21406EE4E494477870DFAF7C65BEBCB6FBA8CADC7C6 ] C:\WINDOWS\system32\ctfmon.exe
21:55:05.0031 0x06f8  CTFMON.EXE - detected UnsignedFile.Multi.Generic ( 1 )
21:55:05.0031 0x06f8  CTFMON.EXE ( UnsignedFile.Multi.Generic ) - warning
21:55:05.0187 0x06f8  [ E2AA953ED6A296B6BF399A783B32CCDE, 123380F79427FB05BB17699B34EF07E38C587A26C6380FA9311EF1F5E4F6A129 ] C:\Programme\Messenger\msmsgs.exe
21:55:05.0343 0x06f8  MSMSGS - detected UnsignedFile.Multi.Generic ( 1 )
21:55:05.0343 0x06f8  MSMSGS ( UnsignedFile.Multi.Generic ) - warning
21:55:05.0765 0x06f8  [ 1F014EA12ECB13C909DA9395E9CD3D18, FA4E7090E3778A954AB82B304B9E3711F35E30E5DE7B9020F4E820B6E3B1CF85 ] C:\Programme\CCleaner\CCleaner.exe
21:55:06.0093 0x06f8  CCleaner Monitoring - ok
21:55:06.0125 0x06f8  [ 01B4E6E990B6C5EA8856D96C7FD044B2, 2266296FD3C8E0DFA657F21406EE4E494477870DFAF7C65BEBCB6FBA8CADC7C6 ] C:\WINDOWS\system32\ctfmon.exe
21:55:06.0125 0x06f8  CTFMON.EXE - detected UnsignedFile.Multi.Generic ( 1 )
21:55:06.0125 0x06f8  CTFMON.EXE ( UnsignedFile.Multi.Generic ) - warning
21:55:06.0531 0x06f8  [ 1F014EA12ECB13C909DA9395E9CD3D18, FA4E7090E3778A954AB82B304B9E3711F35E30E5DE7B9020F4E820B6E3B1CF85 ] C:\Programme\CCleaner\CCleaner.exe
21:55:06.0875 0x06f8  CCleaner Monitoring - ok
21:55:07.0000 0x06f8  AV detected via SS1: Avira Antivirus, 15.0.10.414, enabled, updated
21:55:07.0000 0x06f8  Win FW state via NFM: enabled
21:55:07.0000 0x06f8  ============================================================
21:55:07.0000 0x06f8  Scan finished
21:55:07.0000 0x06f8  ============================================================
21:55:07.0015 0x056c  Detected object count: 233
21:55:07.0015 0x056c  Actual detected object count: 233
21:56:45.0625 0x056c  ACPI ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:45.0625 0x056c  ACPI ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:45.0625 0x056c  ACPIEC ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:45.0625 0x056c  ACPIEC ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:45.0625 0x056c  ADIHdAudAddService ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:45.0625 0x056c  ADIHdAudAddService ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:45.0640 0x056c  AEAudioService ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:45.0640 0x056c  AEAudioService ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:45.0640 0x056c  aec ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:45.0640 0x056c  aec ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:45.0640 0x056c  AgereSoftModem ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:45.0640 0x056c  AgereSoftModem ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:45.0656 0x056c  Alerter ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:45.0656 0x056c  Alerter ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:45.0656 0x056c  ALG ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:45.0656 0x056c  ALG ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:45.0656 0x056c  AliIde ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:45.0656 0x056c  AliIde ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:45.0671 0x056c  AppMgmt ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:45.0671 0x056c  AppMgmt ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:45.0671 0x056c  Arp1394 ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:45.0671 0x056c  Arp1394 ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:45.0671 0x056c  ASChannel ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:45.0671 0x056c  ASChannel ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:45.0671 0x056c  AsyncMac ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:45.0671 0x056c  AsyncMac ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:45.0687 0x056c  atapi ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:45.0687 0x056c  atapi ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:45.0687 0x056c  Atmarpc ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:45.0687 0x056c  Atmarpc ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:45.0687 0x056c  ATSWPDRV ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:45.0687 0x056c  ATSWPDRV ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:45.0703 0x056c  AudioSrv ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:45.0703 0x056c  AudioSrv ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:45.0703 0x056c  audstub ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:45.0703 0x056c  audstub ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:45.0703 0x056c  b57w2k ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:45.0703 0x056c  b57w2k ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:45.0718 0x056c  bcm4sbxp ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:45.0718 0x056c  bcm4sbxp ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:45.0718 0x056c  Beep ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:45.0718 0x056c  Beep ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:45.0718 0x056c  BITS ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:45.0718 0x056c  BITS ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:45.0734 0x056c  BTKRNL ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:45.0734 0x056c  BTKRNL ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:45.0734 0x056c  btwdins ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:45.0734 0x056c  btwdins ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:45.0734 0x056c  BTWUSB ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:45.0734 0x056c  BTWUSB ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:45.0750 0x056c  cbidf2k ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:45.0750 0x056c  cbidf2k ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:45.0750 0x056c  Cdaudio ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:45.0750 0x056c  Cdaudio ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:45.0750 0x056c  Cdfs ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:45.0750 0x056c  Cdfs ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:45.0765 0x056c  Cdrom ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:45.0765 0x056c  Cdrom ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:45.0765 0x056c  CiSvc ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:45.0765 0x056c  CiSvc ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:45.0765 0x056c  ClipSrv ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:45.0765 0x056c  ClipSrv ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:45.0781 0x056c  CmBatt ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:45.0781 0x056c  CmBatt ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:45.0781 0x056c  Compbatt ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:45.0781 0x056c  Compbatt ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:45.0781 0x056c  CryptSvc ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:45.0781 0x056c  CryptSvc ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:45.0796 0x056c  Dhcp ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:45.0796 0x056c  Dhcp ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:45.0796 0x056c  Disk ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:45.0796 0x056c  Disk ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:45.0796 0x056c  DLABOIOM ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:45.0796 0x056c  DLABOIOM ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:45.0796 0x056c  DLACDBHM ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:45.0796 0x056c  DLACDBHM ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:45.0812 0x056c  DLADResN ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:45.0812 0x056c  DLADResN ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:45.0812 0x056c  DLAIFS_M ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:45.0812 0x056c  DLAIFS_M ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:45.0812 0x056c  DLAOPIOM ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:45.0812 0x056c  DLAOPIOM ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:45.0828 0x056c  DLAPoolM ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:45.0828 0x056c  DLAPoolM ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:45.0828 0x056c  DLARTL_N ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:45.0828 0x056c  DLARTL_N ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:45.0828 0x056c  DLAUDFAM ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:45.0828 0x056c  DLAUDFAM ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:45.0843 0x056c  DLAUDF_M ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:45.0843 0x056c  DLAUDF_M ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:45.0843 0x056c  dmboot ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:45.0843 0x056c  dmboot ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:45.0843 0x056c  dmio ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:45.0843 0x056c  dmio ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:45.0859 0x056c  dmload ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:45.0859 0x056c  dmload ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:45.0859 0x056c  dmserver ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:45.0859 0x056c  dmserver ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:45.0859 0x056c  DMusic ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:45.0859 0x056c  DMusic ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:45.0875 0x056c  Dot3svc ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:45.0875 0x056c  Dot3svc ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:45.0875 0x056c  drmkaud ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:45.0875 0x056c  drmkaud ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:45.0875 0x056c  DRVMCDB ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:45.0875 0x056c  DRVMCDB ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:45.0875 0x056c  DRVNDDM ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:45.0875 0x056c  DRVNDDM ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:45.0890 0x056c  eabfiltr ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:45.0890 0x056c  eabfiltr ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:45.0890 0x056c  eabusb ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:45.0890 0x056c  eabusb ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:45.0890 0x056c  EapHost ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:45.0890 0x056c  EapHost ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:45.0906 0x056c  ERSvc ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:45.0906 0x056c  ERSvc ( UnsignedFile.Multi.Generic ) - User select action: Skip
Geändert von trojanernick (20.05.2015 um 21:32 Uhr) Grund: Ergänzung LogFile

Alt 20.05.2015, 21:50   #7
trojanernick
 
Windows XP: Link in DHL-Mail angeklickt - Problem mit Antivirensoftware und MBR-Befund - Standard

Windows XP: Link in DHL-Mail angeklickt - Problem mit Antivirensoftware und MBR-Befund


TDSSKiller.txt - Teil 3:
Code:
ATTFilter
21:56:45.0906 0x056c  Fastfat ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:45.0906 0x056c  Fastfat ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:45.0906 0x056c  Fdc ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:45.0906 0x056c  Fdc ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:45.0921 0x056c  Fips ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:45.0921 0x056c  Fips ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:45.0921 0x056c  Flpydisk ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:45.0921 0x056c  Flpydisk ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:45.0921 0x056c  FltMgr ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:45.0921 0x056c  FltMgr ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:45.0921 0x056c  Fs_Rec ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:45.0921 0x056c  Fs_Rec ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:45.0937 0x056c  Ftdisk ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:45.0937 0x056c  Ftdisk ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:45.0937 0x056c  Gpc ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:45.0937 0x056c  Gpc ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:45.0937 0x056c  HBtnKey ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:45.0937 0x056c  HBtnKey ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:45.0953 0x056c  HDAudBus ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:45.0953 0x056c  HDAudBus ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:45.0953 0x056c  helpsvc ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:45.0953 0x056c  helpsvc ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:45.0953 0x056c  hkmsvc ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:45.0953 0x056c  hkmsvc ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:45.0968 0x056c  hpqwmiex ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:45.0968 0x056c  hpqwmiex ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:45.0968 0x056c  HTTPFilter ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:45.0968 0x056c  HTTPFilter ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:45.0968 0x056c  i8042prt ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:45.0968 0x056c  i8042prt ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:45.0984 0x056c  ialm ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:45.0984 0x056c  ialm ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:45.0984 0x056c  iaStor ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:45.0984 0x056c  iaStor ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:45.0984 0x056c  IDriverT ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:45.0984 0x056c  IDriverT ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:46.0000 0x056c  Imapi ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:46.0000 0x056c  Imapi ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:46.0000 0x056c  ImapiService ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:46.0000 0x056c  ImapiService ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:46.0000 0x056c  IntelIde ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:46.0000 0x056c  IntelIde ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:46.0015 0x056c  intelppm ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:46.0015 0x056c  intelppm ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:46.0015 0x056c  Ip6Fw ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:46.0015 0x056c  Ip6Fw ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:46.0015 0x056c  IpFilterDriver ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:46.0015 0x056c  IpFilterDriver ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:46.0031 0x056c  IpInIp ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:46.0031 0x056c  IpInIp ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:46.0031 0x056c  IpNat ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:46.0031 0x056c  IpNat ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:46.0031 0x056c  IPSec ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:46.0031 0x056c  IPSec ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:46.0046 0x056c  IRENUM ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:46.0046 0x056c  IRENUM ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:46.0046 0x056c  isapnp ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:46.0046 0x056c  isapnp ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:46.0046 0x056c  Kbdclass ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:46.0046 0x056c  Kbdclass ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:46.0062 0x056c  kbdhid ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:46.0062 0x056c  kbdhid ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:46.0062 0x056c  kmixer ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:46.0062 0x056c  kmixer ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:46.0062 0x056c  LightScribeService ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:46.0062 0x056c  LightScribeService ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:46.0062 0x056c  LmHosts ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:46.0062 0x056c  LmHosts ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:46.0078 0x056c  Messenger ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:46.0078 0x056c  Messenger ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:46.0078 0x056c  mnmdd ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:46.0078 0x056c  mnmdd ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:46.0078 0x056c  mnmsrvc ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:46.0078 0x056c  mnmsrvc ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:46.0093 0x056c  Modem ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:46.0093 0x056c  Modem ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:46.0093 0x056c  Mouclass ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:46.0093 0x056c  Mouclass ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:46.0093 0x056c  MountMgr ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:46.0093 0x056c  MountMgr ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:46.0109 0x056c  MQAC ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:46.0109 0x056c  MQAC ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:46.0109 0x056c  MRxDAV ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:46.0109 0x056c  MRxDAV ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:46.0109 0x056c  MSDTC ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:46.0109 0x056c  MSDTC ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:46.0125 0x056c  Msfs ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:46.0125 0x056c  Msfs ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:46.0125 0x056c  MSKSSRV ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:46.0125 0x056c  MSKSSRV ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:46.0125 0x056c  MSMQ ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:46.0125 0x056c  MSMQ ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:46.0140 0x056c  MSMQTriggers ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:46.0140 0x056c  MSMQTriggers ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:46.0140 0x056c  MSPCLOCK ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:46.0140 0x056c  MSPCLOCK ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:46.0140 0x056c  MSPQM ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:46.0140 0x056c  MSPQM ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:46.0156 0x056c  mssmbios ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:46.0156 0x056c  mssmbios ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:46.0156 0x056c  napagent ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:46.0156 0x056c  napagent ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:46.0156 0x056c  NDIS ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:46.0156 0x056c  NDIS ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:46.0171 0x056c  Ndisuio ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:46.0171 0x056c  Ndisuio ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:46.0171 0x056c  NdisWan ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:46.0171 0x056c  NdisWan ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:46.0171 0x056c  NetBIOS ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:46.0171 0x056c  NetBIOS ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:46.0187 0x056c  NetBT ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:46.0187 0x056c  NetBT ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:46.0187 0x056c  NetDDE ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:46.0187 0x056c  NetDDE ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:46.0187 0x056c  NetDDEdsdm ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:46.0187 0x056c  NetDDEdsdm ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:46.0187 0x056c  Netlogon ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:46.0187 0x056c  Netlogon ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:46.0203 0x056c  Netman ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:46.0203 0x056c  Netman ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:46.0203 0x056c  NIC1394 ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:46.0203 0x056c  NIC1394 ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:46.0203 0x056c  Npfs ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:46.0203 0x056c  Npfs ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:46.0218 0x056c  Ntfs ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:46.0218 0x056c  Ntfs ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:46.0218 0x056c  NtLmSsp ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:46.0218 0x056c  NtLmSsp ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:46.0218 0x056c  NtmsSvc ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:46.0218 0x056c  NtmsSvc ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:46.0234 0x056c  Null ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:46.0234 0x056c  Null ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:46.0234 0x056c  NwlnkFlt ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:46.0234 0x056c  NwlnkFlt ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:46.0234 0x056c  NwlnkFwd ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:46.0234 0x056c  NwlnkFwd ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:46.0250 0x056c  ohci1394 ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:46.0250 0x056c  ohci1394 ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:46.0250 0x056c  Parport ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:46.0250 0x056c  Parport ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:46.0250 0x056c  PartMgr ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:46.0250 0x056c  PartMgr ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:46.0265 0x056c  ParVdm ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:46.0265 0x056c  ParVdm ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:46.0265 0x056c  PCA ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:46.0265 0x056c  PCA ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:46.0265 0x056c  PCI ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:46.0265 0x056c  PCI ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:46.0281 0x056c  PCIIde ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:46.0281 0x056c  PCIIde ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:46.0281 0x056c  Pcmcia ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:46.0281 0x056c  Pcmcia ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:46.0281 0x056c  PolicyAgent ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:46.0281 0x056c  PolicyAgent ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:46.0296 0x056c  PptpMiniport ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:46.0296 0x056c  PptpMiniport ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:46.0296 0x056c  ProtectedStorage ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:46.0296 0x056c  ProtectedStorage ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:46.0296 0x056c  PSched ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:46.0296 0x056c  PSched ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:46.0312 0x056c  Ptilink ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:46.0312 0x056c  Ptilink ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:46.0312 0x056c  PxHelp20 ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:46.0312 0x056c  PxHelp20 ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:46.0312 0x056c  RasAcd ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:46.0312 0x056c  RasAcd ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:46.0312 0x056c  RasAuto ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:46.0312 0x056c  RasAuto ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:46.0328 0x056c  Rasirda ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:46.0328 0x056c  Rasirda ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:46.0328 0x056c  Rasl2tp ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:46.0328 0x056c  Rasl2tp ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:46.0328 0x056c  RasMan ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:46.0328 0x056c  RasMan ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:46.0343 0x056c  RasPppoe ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:46.0343 0x056c  RasPppoe ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:46.0343 0x056c  Raspti ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:46.0343 0x056c  Raspti ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:46.0343 0x056c  Rdbss ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:46.0343 0x056c  Rdbss ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:46.0359 0x056c  RDPCDD ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:46.0359 0x056c  RDPCDD ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:46.0359 0x056c  rdpdr ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:46.0359 0x056c  rdpdr ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:46.0359 0x056c  RDSessMgr ( UnsignedFile.Multi.Generic ) - skipped by user
TDSSKiller.txt - Teil 4:
Code:
ATTFilter
21:56:46.0359 0x056c  RDSessMgr ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:46.0375 0x056c  redbook ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:46.0375 0x056c  redbook ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:46.0375 0x056c  RemoteAccess ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:46.0375 0x056c  RemoteAccess ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:46.0375 0x056c  RemoteRegistry ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:46.0375 0x056c  RemoteRegistry ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:46.0375 0x056c  RpcLocator ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:46.0375 0x056c  RpcLocator ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:46.0390 0x056c  RSVP ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:46.0390 0x056c  RSVP ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:46.0390 0x056c  SamSs ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:46.0390 0x056c  SamSs ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:46.0390 0x056c  SCardSvr ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:46.0390 0x056c  SCardSvr ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:46.0406 0x056c  Schedule ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:46.0406 0x056c  Schedule ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:46.0406 0x056c  sdbus ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:46.0406 0x056c  sdbus ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:46.0406 0x056c  Secdrv ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:46.0406 0x056c  Secdrv ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:46.0421 0x056c  seclogon ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:46.0421 0x056c  seclogon ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:46.0421 0x056c  SENS ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:46.0421 0x056c  SENS ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:46.0421 0x056c  serenum ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:46.0421 0x056c  serenum ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:46.0421 0x056c  Serial ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:46.0421 0x056c  Serial ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:46.0437 0x056c  Sfloppy ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:46.0437 0x056c  Sfloppy ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:46.0437 0x056c  SharedAccess ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:46.0437 0x056c  SharedAccess ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:46.0437 0x056c  SMCIRDA ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:46.0437 0x056c  SMCIRDA ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:46.0453 0x056c  splitter ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:46.0453 0x056c  splitter ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:46.0453 0x056c  sr ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:46.0453 0x056c  sr ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:46.0453 0x056c  srservice ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:46.0453 0x056c  srservice ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:46.0468 0x056c  SSDPSRV ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:46.0468 0x056c  SSDPSRV ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:46.0468 0x056c  stisvc ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:46.0468 0x056c  stisvc ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:46.0468 0x056c  swenum ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:46.0468 0x056c  swenum ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:46.0484 0x056c  swmidi ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:46.0484 0x056c  swmidi ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:46.0484 0x056c  SynTP ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:46.0484 0x056c  SynTP ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:46.0484 0x056c  sysaudio ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:46.0484 0x056c  sysaudio ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:46.0500 0x056c  SysmonLog ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:46.0500 0x056c  SysmonLog ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:46.0500 0x056c  TapiSrv ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:46.0500 0x056c  TapiSrv ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:46.0500 0x056c  TDPIPE ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:46.0500 0x056c  TDPIPE ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:46.0515 0x056c  TDTCP ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:46.0515 0x056c  TDTCP ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:46.0515 0x056c  TermDD ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:46.0515 0x056c  TermDD ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:46.0515 0x056c  TermService ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:46.0515 0x056c  TermService ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:46.0515 0x056c  TlntSvr ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:46.0515 0x056c  TlntSvr ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:46.0531 0x056c  TrkWks ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:46.0531 0x056c  TrkWks ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:46.0531 0x056c  Udfs ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:46.0531 0x056c  Udfs ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:46.0531 0x056c  Update ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:46.0531 0x056c  Update ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:46.0546 0x056c  upnphost ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:46.0546 0x056c  upnphost ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:46.0546 0x056c  UPS ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:46.0546 0x056c  UPS ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:46.0546 0x056c  usbhub ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:46.0546 0x056c  usbhub ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:46.0562 0x056c  USBSTOR ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:46.0562 0x056c  USBSTOR ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:46.0562 0x056c  usbuhci ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:46.0562 0x056c  usbuhci ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:46.0562 0x056c  VgaSave ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:46.0562 0x056c  VgaSave ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:46.0578 0x056c  ViaIde ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:46.0578 0x056c  ViaIde ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:46.0578 0x056c  VolSnap ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:46.0578 0x056c  VolSnap ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:46.0578 0x056c  VSS ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:46.0578 0x056c  VSS ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:46.0593 0x056c  W32Time ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:46.0593 0x056c  W32Time ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:46.0593 0x056c  w39n51 ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:46.0593 0x056c  w39n51 ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:46.0593 0x056c  Wanarp ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:46.0593 0x056c  Wanarp ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:46.0609 0x056c  wdmaud ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:46.0609 0x056c  wdmaud ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:46.0609 0x056c  WebClient ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:46.0609 0x056c  WebClient ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:46.0609 0x056c  winmgmt ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:46.0609 0x056c  winmgmt ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:46.0625 0x056c  WmiAcpi ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:46.0625 0x056c  WmiAcpi ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:46.0625 0x056c  WmiApSrv ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:46.0625 0x056c  WmiApSrv ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:46.0625 0x056c  wscsvc ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:46.0625 0x056c  wscsvc ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:46.0640 0x056c  wuauserv ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:46.0640 0x056c  wuauserv ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:46.0640 0x056c  WZCSVC ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:46.0640 0x056c  WZCSVC ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:46.0640 0x056c  xmlprov ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:46.0640 0x056c  xmlprov ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:46.0640 0x056c  SoundMAXPnP ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:46.0640 0x056c  SoundMAXPnP ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:46.0656 0x056c  SoundMAX ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:46.0656 0x056c  SoundMAX ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:46.0656 0x056c  SunJavaUpdateSched ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:46.0656 0x056c  SunJavaUpdateSched ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:46.0656 0x056c  PTHOSTTR ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:46.0656 0x056c  PTHOSTTR ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:46.0671 0x056c  HP Software Update ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:46.0671 0x056c  HP Software Update ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:46.0671 0x056c  DLA ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:46.0671 0x056c  DLA ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:46.0671 0x056c  SynTPEnh ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:46.0671 0x056c  SynTPEnh ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:46.0687 0x056c  igfxtray ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:46.0687 0x056c  igfxtray ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:46.0687 0x056c  igfxhkcmd ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:46.0687 0x056c  igfxhkcmd ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:46.0687 0x056c  igfxpers ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:46.0687 0x056c  igfxpers ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:46.0703 0x056c  hpWirelessAssistant ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:46.0703 0x056c  hpWirelessAssistant ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:46.0703 0x056c  QlbCtrl ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:46.0703 0x056c  QlbCtrl ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:46.0703 0x056c  Cpqset ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:46.0703 0x056c  Cpqset ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:46.0718 0x056c  Recguard ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:46.0718 0x056c  Recguard ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:46.0718 0x056c  Reminder ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:46.0718 0x056c  Reminder ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:46.0718 0x056c  Scheduler ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:46.0718 0x056c  Scheduler ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:46.0734 0x056c  WatchDog ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:46.0734 0x056c  WatchDog ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:46.0734 0x056c  ISUSPM Startup ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:46.0734 0x056c  ISUSPM Startup ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:46.0734 0x056c  ISUSScheduler ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:46.0734 0x056c  ISUSScheduler ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:46.0750 0x056c  CTFMON.EXE ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:46.0750 0x056c  CTFMON.EXE ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:46.0750 0x056c  CTFMON.EXE ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:46.0750 0x056c  CTFMON.EXE ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:46.0750 0x056c  CTFMON.EXE ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:46.0750 0x056c  CTFMON.EXE ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:46.0750 0x056c  CTFMON.EXE ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:46.0750 0x056c  CTFMON.EXE ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:46.0765 0x056c  MSMSGS ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:46.0765 0x056c  MSMSGS ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:56:46.0765 0x056c  CTFMON.EXE ( UnsignedFile.Multi.Generic ) - skipped by user
21:56:46.0765 0x056c  CTFMON.EXE ( UnsignedFile.Multi.Generic ) - User select action: Skip
Danke und Gruß
trojanernick

Alt 21.05.2015, 11:36   #8
schrauber
/// the machine
/// TB-Ausbilder
 
Windows XP: Link in DHL-Mail angeklickt - Problem mit Antivirensoftware und MBR-Befund - Standard

Windows XP: Link in DHL-Mail angeklickt - Problem mit Antivirensoftware und MBR-Befund


hi,

Scan mit Combofix
WARNUNG an die MITLESER:
Combofix sollte ausschließlich ausgeführt werden, wenn dies von einem Teammitglied angewiesen wurde!

Downloade dir bitte Combofix vom folgenden Downloadspiegel: Link
  • WICHTIG: Speichere Combofix auf deinem Desktop
  • Deaktiviere bitte alle deine Antivirensoftware sowie Malware/Spyware Scanner. Diese können Combofix bei der Arbeit stören.
  • Starte die Combofix.exe und folge den Anweisungen auf dem Bildschirm.
  • Combofix wird überprüfen, ob die Microsoft Windows Wiederherstellungskonsole installiert ist.
    Ist diese nicht installiert, erlaube Combofix diese herunter zu laden und zu installieren. Folge dazu einfach den Anweisungen und aktzeptiere die Endbenutzer-Lizenz.
    Bei heutiger Malware ist dies sehr empfehlenswert, da diese uns eine Möglichkeit bietet, dein System zu reparieren, falls etwas schief geht.
    Bestätige die Information, dass die Wiederherstellungskonsole installiert wurde mit Ja.
    Hinweis: Ist diese bereits installiert, wird Combofix mit der Malwareentfernung fortfahren.
  • Während Combofix läuft bitte nicht am Computer arbeiten, die Maus bewegen oder ins Combofixfenster klicken!
  • Wenn Combofix fertig ist, wird es eine Logfile erstellen.
  • Bitte poste die C:\Combofix.txt in deiner nächsten Antwort.
Hinweis: Solltest du nach dem Neustart folgende Fehlermeldung erhalten
Es wurde versucht, einen Registrierungsschlüssel einem ungültigen Vorgang zu unterziehen, der zum Löschen markiert wurde.
starte den Rechner einfach neu. Dies sollte das Problem beheben.

__________________
gruß,
schrauber

Proud Member of UNITE and ASAP since 2009

Spenden
Anleitungen und Hilfestellungen
Trojaner-Board Facebook-Seite

Keine Hilfestellung via PM!

Alt 21.05.2015, 20:10   #9
trojanernick
 
Windows XP: Link in DHL-Mail angeklickt - Problem mit Antivirensoftware und MBR-Befund - Standard

Windows XP: Link in DHL-Mail angeklickt - Problem mit Antivirensoftware und MBR-Befund


Hi,

hier das Combofix-Log:
Code:
ATTFilter
ComboFix 15-05-13.01 - Martina 21.05.2015  20:47:44.1.2 - x86
Microsoft Windows XP Professional  5.1.2600.3.1252.49.1031.18.1015.509 [GMT 2:00]
ausgeführt von:: c:\dokumente und einstellungen\Martina\Desktop\ComboFix.exe
AV: Avira Antivirus *Disabled/Updated* {AD166499-45F9-482A-A743-FDD3350758C7}
 * Neuer Wiederherstellungspunkt wurde erstellt
.
.
((((((((((((((((((((((((((((((((((((   Weitere Löschungen   ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\dokume~1\Martina\LOKALE~1\Temp\avgnt.exe\Avira.OE.ExtApi.dll
c:\dokumente und einstellungen\Martina\Lokale Einstellungen\Temp\avgnt.exe\Avira.OE.ExtApi.dll
c:\windows\$msi31uninstall_kb893803v2$
c:\windows\$msi31uninstall_kb893803v2$\msi.dll
c:\windows\$msi31uninstall_kb893803v2$\msiexec.exe
c:\windows\$msi31uninstall_kb893803v2$\msihnd.dll
c:\windows\$msi31uninstall_kb893803v2$\msimsg.dll
c:\windows\$msi31uninstall_kb893803v2$\msisip.dll
c:\windows\$msi31uninstall_kb893803v2$\reg00013
c:\windows\$msi31uninstall_kb893803v2$\reg00014
c:\windows\$msi31uninstall_kb893803v2$\reg00015
c:\windows\$msi31uninstall_kb893803v2$\reg00016
c:\windows\$msi31uninstall_kb893803v2$\reg00017
c:\windows\$msi31uninstall_kb893803v2$\reg00018
c:\windows\$msi31uninstall_kb893803v2$\reg00019
c:\windows\$msi31uninstall_kb893803v2$\reg00020
c:\windows\$msi31uninstall_kb893803v2$\reg00021
c:\windows\$msi31uninstall_kb893803v2$\reg00022
c:\windows\$msi31uninstall_kb893803v2$\reg00023
c:\windows\$msi31uninstall_kb893803v2$\reg00024
c:\windows\$msi31uninstall_kb893803v2$\reg00025
c:\windows\$msi31uninstall_kb893803v2$\reg00026
c:\windows\$msi31uninstall_kb893803v2$\reg00027
c:\windows\$msi31uninstall_kb893803v2$\reg00028
c:\windows\$msi31uninstall_kb893803v2$\reg00029
c:\windows\$msi31uninstall_kb893803v2$\reg00030
c:\windows\$msi31uninstall_kb893803v2$\reg00031
c:\windows\$msi31uninstall_kb893803v2$\reg00032
c:\windows\$msi31uninstall_kb893803v2$\reg00033
c:\windows\$msi31uninstall_kb893803v2$\reg00034
c:\windows\$msi31uninstall_kb893803v2$\reg00035
c:\windows\$msi31uninstall_kb893803v2$\reg00036
c:\windows\$msi31uninstall_kb893803v2$\reg00037
c:\windows\$msi31uninstall_kb893803v2$\reg00038
c:\windows\$msi31uninstall_kb893803v2$\reg00039
c:\windows\$msi31uninstall_kb893803v2$\reg00040
c:\windows\$msi31uninstall_kb893803v2$\reg00041
c:\windows\$msi31uninstall_kb893803v2$\reg00042
c:\windows\$msi31uninstall_kb893803v2$\reg00043
c:\windows\$msi31uninstall_kb893803v2$\reg00044
c:\windows\$msi31uninstall_kb893803v2$\reg00045
c:\windows\$msi31uninstall_kb893803v2$\reg00046
c:\windows\$msi31uninstall_kb893803v2$\reg00047
c:\windows\$msi31uninstall_kb893803v2$\reg00048
c:\windows\$msi31uninstall_kb893803v2$\reg00051
c:\windows\$msi31uninstall_kb893803v2$\reg00052
c:\windows\$msi31uninstall_kb893803v2$\reg00053
c:\windows\$msi31uninstall_kb893803v2$\reg00054
c:\windows\$msi31uninstall_kb893803v2$\reg00055
c:\windows\$msi31uninstall_kb893803v2$\reg00056
c:\windows\$msi31uninstall_kb893803v2$\reg00057
c:\windows\$msi31uninstall_kb893803v2$\reg00058
c:\windows\$msi31uninstall_kb893803v2$\reg00059
c:\windows\$msi31uninstall_kb893803v2$\reg00060
c:\windows\$msi31uninstall_kb893803v2$\reg00061
c:\windows\$msi31uninstall_kb893803v2$\reg00062
c:\windows\$msi31uninstall_kb893803v2$\reg00063
c:\windows\$msi31uninstall_kb893803v2$\reg00064
c:\windows\$msi31uninstall_kb893803v2$\reg00065
c:\windows\$msi31uninstall_kb893803v2$\reg00066
c:\windows\$msi31uninstall_kb893803v2$\reg00067
c:\windows\$msi31uninstall_kb893803v2$\reg00068
c:\windows\$msi31uninstall_kb893803v2$\reg00069
c:\windows\$msi31uninstall_kb893803v2$\reg00070
c:\windows\$msi31uninstall_kb893803v2$\reg00071
c:\windows\$msi31uninstall_kb893803v2$\reg00072
c:\windows\$msi31uninstall_kb893803v2$\reg00073
c:\windows\$msi31uninstall_kb893803v2$\reg00074
c:\windows\$msi31uninstall_kb893803v2$\reg00075
c:\windows\$msi31uninstall_kb893803v2$\reg00076
c:\windows\$msi31uninstall_kb893803v2$\reg00077
c:\windows\$msi31uninstall_kb893803v2$\reg00078
c:\windows\$msi31uninstall_kb893803v2$\reg00079
c:\windows\$msi31uninstall_kb893803v2$\reg00080
c:\windows\$msi31uninstall_kb893803v2$\reg00081
c:\windows\$msi31uninstall_kb893803v2$\reg00082
c:\windows\$msi31uninstall_kb893803v2$\reg00083
c:\windows\$msi31uninstall_kb893803v2$\reg00084
c:\windows\$msi31uninstall_kb893803v2$\reg00085
c:\windows\$msi31uninstall_kb893803v2$\reg00086
c:\windows\$msi31uninstall_kb893803v2$\reg00087
c:\windows\$msi31uninstall_kb893803v2$\reg00088
c:\windows\$msi31uninstall_kb893803v2$\reg00089
c:\windows\$msi31uninstall_kb893803v2$\reg00090
c:\windows\$msi31uninstall_kb893803v2$\reg00091
c:\windows\$msi31uninstall_kb893803v2$\reg00092
c:\windows\$msi31uninstall_kb893803v2$\reg00093
c:\windows\$msi31uninstall_kb893803v2$\reg00094
c:\windows\$msi31uninstall_kb893803v2$\reg00095
c:\windows\$msi31uninstall_kb893803v2$\reg00096
c:\windows\$msi31uninstall_kb893803v2$\reg00097
c:\windows\$msi31uninstall_kb893803v2$\reg00098
c:\windows\$msi31uninstall_kb893803v2$\reg00099
c:\windows\$msi31uninstall_kb893803v2$\reg00100
c:\windows\$msi31uninstall_kb893803v2$\reg00101
c:\windows\$msi31uninstall_kb893803v2$\reg00102
c:\windows\$msi31uninstall_kb893803v2$\reg00103
c:\windows\$msi31uninstall_kb893803v2$\reg00104
c:\windows\$msi31uninstall_kb893803v2$\reg00105
c:\windows\$msi31uninstall_kb893803v2$\reg00106
c:\windows\$msi31uninstall_kb893803v2$\reg00107
c:\windows\$msi31uninstall_kb893803v2$\reg00108
c:\windows\$msi31uninstall_kb893803v2$\reg00109
c:\windows\$msi31uninstall_kb893803v2$\reg00110
c:\windows\$msi31uninstall_kb893803v2$\reg00111
c:\windows\$msi31uninstall_kb893803v2$\reg00112
c:\windows\$msi31uninstall_kb893803v2$\reg00113
c:\windows\$msi31uninstall_kb893803v2$\reg00114
c:\windows\$msi31uninstall_kb893803v2$\reg00115
c:\windows\$msi31uninstall_kb893803v2$\reg00116
c:\windows\$msi31uninstall_kb893803v2$\spuninst\spuninst.exe
c:\windows\$msi31uninstall_kb893803v2$\spuninst\spuninst.inf
c:\windows\$msi31uninstall_kb893803v2$\spuninst\spuninst.txt
c:\windows\$msi31uninstall_kb893803v2$\spuninst\updspapi.dll
c:\windows\IsUn0407.exe
c:\windows\system32\SET2F4.tmp
c:\windows\system32\SET2F5.tmp
c:\windows\system32\SET2F6.tmp
c:\windows\system32\SETED8.tmp
D:\autorun.inf
.
.
(((((((((((((((((((((((   Dateien erstellt von 2015-04-21 bis 2015-05-21  ))))))))))))))))))))))))))))))
.
.
2015-05-19 19:36 . 2015-05-19 19:36	--------	d-----w-	c:\dokumente und einstellungen\Administrator\Anwendungsdaten\Avira
2015-05-19 19:32 . 2015-05-19 19:34	--------	d-----w-	C:\FRST
2015-05-19 18:01 . 2015-05-19 18:01	--------	d-sh--w-	c:\dokumente und einstellungen\Administrator\IETldCache
2015-05-18 19:33 . 2015-05-18 14:35	89088	----a-w-	c:\windows\system32\mbr.exe
2015-05-18 18:36 . 2015-05-18 18:36	--------	d-----w-	c:\programme\Gemeinsame Dateien\Adobe
2015-05-16 19:57 . 2015-05-16 19:57	--------	d-----w-	c:\programme\Microsoft CAPICOM 2.1.0.2
2015-05-16 19:49 . 2008-04-14 05:52	26624	----a-w-	c:\dokumente und einstellungen\LocalService\Anwendungsdaten\Microsoft\UPnP Device Host\upnphost\udhisapi.dll
2015-05-16 19:48 . 2015-05-16 19:48	--------	d-----w-	c:\programme\Windows Media Connect 2
2015-05-16 19:47 . 2015-05-16 19:48	--------	d-----w-	c:\windows\system32\drivers\UMDF
2015-05-16 19:47 . 2015-05-16 19:47	--------	d-----w-	c:\windows\system32\LogFiles
2015-05-16 19:46 . 2015-05-16 19:46	--------	d-----w-	c:\programme\Microsoft Silverlight
2015-05-16 19:46 . 2010-06-02 02:55	74072	----a-w-	c:\windows\system32\XAPOFX1_5.dll
2015-05-16 19:46 . 2010-06-02 02:55	527192	----a-w-	c:\windows\system32\XAudio2_7.dll
2015-05-16 19:46 . 2010-06-02 02:55	239960	----a-w-	c:\windows\system32\xactengine3_7.dll
2015-05-16 19:46 . 2010-05-26 09:41	2106216	----a-w-	c:\windows\system32\D3DCompiler_43.dll
2015-05-16 19:46 . 2010-05-26 09:41	1868128	----a-w-	c:\windows\system32\d3dcsx_43.dll
2015-05-16 19:46 . 2010-05-26 09:41	470880	----a-w-	c:\windows\system32\d3dx10_43.dll
2015-05-16 19:46 . 2010-05-26 09:41	248672	----a-w-	c:\windows\system32\d3dx11_43.dll
2015-05-16 19:46 . 2010-05-26 09:41	1998168	----a-w-	c:\windows\system32\D3DX9_43.dll
2015-05-16 19:46 . 2010-02-04 08:01	74072	----a-w-	c:\windows\system32\XAPOFX1_4.dll
2015-05-16 08:04 . 2015-05-16 08:04	--------	d-sh--w-	c:\dokumente und einstellungen\NetworkService\IETldCache
2015-05-16 08:02 . 2015-05-16 08:02	--------	d-sh--w-	c:\dokumente und einstellungen\LocalService\IETldCache
2015-05-16 07:57 . 2015-05-16 07:57	--------	dc-h--w-	c:\windows\ie8
2015-05-16 07:46 . 2014-03-06 17:58	522240	------w-	c:\windows\system32\dllcache\jsdbgui.dll
2015-05-16 07:45 . 2011-08-16 10:45	6144	------w-	c:\windows\system32\dllcache\iecompat.dll
2015-05-16 07:45 . 2014-03-06 17:58	55296	------w-	c:\windows\system32\dllcache\msfeedsbs.dll
2015-05-16 07:45 . 2014-03-06 17:58	630272	------w-	c:\windows\system32\dllcache\msfeeds.dll
2015-05-16 07:45 . 2014-03-06 17:58	12800	------w-	c:\windows\system32\dllcache\xpshims.dll
2015-05-16 07:45 . 2014-03-06 17:58	743424	------w-	c:\windows\system32\dllcache\iedvtool.dll
2015-05-16 07:45 . 2014-03-06 17:58	247808	------w-	c:\windows\system32\dllcache\ieproxy.dll
2015-05-16 07:45 . 2014-03-06 17:58	2006016	------w-	c:\windows\system32\dllcache\iertutil.dll
2015-05-16 07:45 . 2014-03-06 17:58	11113472	------w-	c:\windows\system32\dllcache\ieframe.dll
2015-05-16 07:11 . 2008-06-14 17:32	273024	------w-	c:\windows\system32\dllcache\bthport.sys
2015-05-16 07:07 . 2010-09-18 06:52	954368	------w-	c:\windows\system32\dllcache\mfc40.dll
2015-05-16 07:07 . 2010-09-18 06:52	953856	------w-	c:\windows\system32\dllcache\mfc40u.dll
2015-05-16 07:04 . 2014-02-26 23:28	13312	------w-	c:\windows\system32\xp_eos.exe
2015-05-16 07:04 . 2014-02-26 23:28	13312	------w-	c:\windows\system32\dllcache\xp_eos.exe
2015-05-16 07:02 . 2011-07-15 13:29	456320	------w-	c:\windows\system32\dllcache\mrxsmb.sys
2015-05-16 07:01 . 2010-08-23 16:11	617472	------w-	c:\windows\system32\dllcache\comctl32.dll
2015-05-16 06:59 . 2009-11-21 15:54	471552	------w-	c:\windows\system32\dllcache\aclayers.dll
2015-05-16 06:54 . 2010-06-14 14:31	744448	------w-	c:\windows\system32\dllcache\helpsvc.exe
2015-05-16 06:54 . 2013-07-03 02:12	25088	------w-	c:\windows\system32\dllcache\hidparse.sys
2015-05-16 06:54 . 2013-07-03 01:59	14976	------w-	c:\windows\system32\dllcache\usbscan.sys
2015-05-16 06:53 . 2010-08-27 08:01	119808	------w-	c:\windows\system32\dllcache\t2embed.dll
2015-05-16 06:53 . 2009-10-15 16:28	81920	------w-	c:\windows\system32\dllcache\fontsub.dll
2015-05-16 06:51 . 2009-02-06 10:10	227840	------w-	c:\windows\system32\dllcache\wmiprvse.exe
2015-05-16 06:51 . 2009-03-06 14:19	286720	------w-	c:\windows\system32\dllcache\pdh.dll
2015-05-16 06:51 . 2009-02-09 11:21	111104	------w-	c:\windows\system32\dllcache\services.exe
2015-05-16 06:51 . 2009-02-09 10:51	401408	------w-	c:\windows\system32\dllcache\rpcss.dll
2015-05-16 06:51 . 2009-02-09 10:51	678400	------w-	c:\windows\system32\dllcache\advapi32.dll
2015-05-16 06:51 . 2009-02-09 10:51	473600	------w-	c:\windows\system32\dllcache\fastprox.dll
2015-05-16 06:51 . 2009-02-06 10:39	35328	------w-	c:\windows\system32\dllcache\sc.exe
2015-05-16 06:51 . 2009-02-09 10:51	453120	------w-	c:\windows\system32\dllcache\wmiprvsd.dll
2015-05-16 06:50 . 2009-06-21 21:45	153088	------w-	c:\windows\system32\dllcache\triedit.dll
2015-05-16 06:40 . 2011-04-21 13:37	105472	------w-	c:\windows\system32\dllcache\mup.sys
2015-05-16 06:40 . 2008-05-08 14:02	203136	------w-	c:\windows\system32\dllcache\rmcast.sys
2015-05-16 06:39 . 2013-02-12 00:32	12928	------w-	c:\windows\system32\dllcache\usb8023x.sys
2015-05-16 06:39 . 2013-02-12 00:32	12928	------w-	c:\windows\system32\dllcache\usb8023.sys
2015-05-16 06:34 . 2008-05-01 14:34	331776	------w-	c:\windows\system32\dllcache\msadce.dll
2015-05-16 06:34 . 2013-07-17 00:58	123008	------w-	c:\windows\system32\dllcache\usbvideo.sys
2015-05-16 06:34 . 2013-07-17 00:58	46848	------w-	c:\windows\system32\dllcache\irbus.sys
2015-05-16 06:34 . 2013-07-17 00:58	60160	------w-	c:\windows\system32\dllcache\usbaudio.sys
2015-05-16 06:27 . 2012-05-28 18:16	536576	------w-	c:\windows\system32\dllcache\msado15.dll
2015-05-16 06:24 . 2010-06-18 13:36	3558912	------w-	c:\windows\system32\dllcache\moviemk.exe
2015-05-16 06:24 . 2012-07-04 14:05	139784	------w-	c:\windows\system32\dllcache\rdpwd.sys
2015-05-16 06:24 . 2013-08-09 00:55	144128	------w-	c:\windows\system32\dllcache\usbport.sys
2015-05-16 06:24 . 2013-08-09 00:55	32384	------w-	c:\windows\system32\dllcache\usbccgp.sys
2015-05-16 06:24 . 2013-08-09 00:55	5376	------w-	c:\windows\system32\dllcache\usbd.sys
2015-05-16 06:24 . 2009-03-18 11:02	30336	------w-	c:\windows\system32\dllcache\usbehci.sys
2015-05-16 06:21 . 2010-12-09 15:15	743936	------w-	c:\windows\system32\dllcache\ntdll.dll
2015-05-16 06:21 . 2013-07-04 07:33	2195840	------w-	c:\windows\system32\dllcache\ntoskrnl.exe
2015-05-16 06:21 . 2013-07-04 07:33	2072448	------w-	c:\windows\system32\dllcache\ntkrnlpa.exe
2015-05-16 06:21 . 2013-07-04 07:33	2152448	------w-	c:\windows\system32\dllcache\ntkrnlmp.exe
2015-05-16 06:21 . 2013-07-04 07:33	2031104	------w-	c:\windows\system32\dllcache\ntkrpamp.exe
2015-05-16 06:21 . 2010-07-16 12:01	220160	------w-	c:\windows\system32\dllcache\wordpad.exe
2015-05-16 06:21 . 2011-07-08 14:02	10496	------w-	c:\windows\system32\dllcache\ndistapi.sys
2015-05-16 06:21 . 2012-01-11 19:06	3072	------w-	c:\windows\system32\iacenc.dll
2015-05-16 06:21 . 2012-01-11 19:06	3072	------w-	c:\windows\system32\dllcache\iacenc.dll
2015-05-16 06:21 . 2013-11-27 20:21	40960	------w-	c:\windows\system32\dllcache\ndproxy.sys
2015-05-16 06:20 . 2010-10-11 14:59	45568	------w-	c:\windows\system32\dllcache\wab.exe
2015-05-15 23:16 . 2015-05-15 23:16	--------	d-----w-	c:\dokumente und einstellungen\LocalService\Anwendungsdaten\Avira
2015-05-15 23:14 . 2015-04-16 13:23	37896	----a-w-	c:\windows\system32\drivers\avkmgr.sys
2015-05-15 23:14 . 2015-04-16 13:23	136216	----a-w-	c:\windows\system32\drivers\avipbb.sys
2015-05-15 23:14 . 2015-04-16 13:23	107400	----a-w-	c:\windows\system32\drivers\avgntflt.sys
2015-05-15 22:43 . 2015-05-21 18:56	--------	d-----w-	c:\dokumente und einstellungen\Martina
2015-05-15 21:53 . 2003-06-25 14:05	266360	----a-w-	c:\windows\system32\TweakUI.exe
2015-05-15 21:38 . 2015-05-15 21:38	--------	d-----w-	c:\programme\MSECache
2015-05-15 21:26 . 2007-04-09 11:23	28552	----a-w-	c:\windows\system32\Spool\prtprocs\w32x86\mdippr.dll
2015-05-15 21:26 . 2007-04-09 11:23	28040	----a-w-	c:\windows\system32\mdimon.dll
2015-05-15 21:25 . 2015-05-15 21:26	--------	d-----w-	c:\windows\SHELLNEW
2015-05-15 21:12 . 2015-05-15 21:12	--------	d-----r-	C:\MSOCache
2015-05-15 21:06 . 2015-05-15 21:06	--------	d-----w-	c:\dokumente und einstellungen\Administrator\Registry_Change
2015-05-15 20:56 . 2015-05-15 20:56	--------	d-----w-	c:\dokumente und einstellungen\All Users\Anwendungsdaten\ProductData
2015-05-15 20:56 . 2015-05-15 20:56	23840	----a-w-	c:\windows\system32\drivers\HWiNFO32.SYS
2015-05-15 20:56 . 2015-05-15 20:56	--------	d-----w-	c:\dokumente und einstellungen\Administrator\LocalLow
2015-05-15 20:56 . 2015-05-15 20:56	--------	d-----w-	c:\dokumente und einstellungen\All Users\Anwendungsdaten\IObit
2015-05-15 20:56 . 2015-05-15 20:56	--------	d-----w-	c:\dokumente und einstellungen\Administrator\Anwendungsdaten\IObit
2015-05-15 20:55 . 2015-05-15 20:55	--------	d-----w-	c:\programme\IObit
2015-05-15 20:51 . 2015-05-15 20:51	--------	d-----w-	c:\dokumente und einstellungen\Administrator\Anwendungsdaten\vlc
2015-05-15 20:49 . 2015-05-15 20:49	--------	d-----w-	c:\programme\VideoLAN
2015-05-15 20:48 . 2015-05-15 20:48	--------	d-----w-	c:\dokumente und einstellungen\Administrator\Lokale Einstellungen\Anwendungsdaten\Adobe
2015-05-15 20:19 . 2015-05-15 20:32	--------	d-----w-	c:\dokumente und einstellungen\Administrator\Anwendungsdaten\U3
2015-05-15 20:16 . 2015-05-15 20:16	--------	d-----w-	c:\dokumente und einstellungen\Administrator\Lokale Einstellungen\Anwendungsdaten\Identities
2015-05-15 20:14 . 2015-05-15 20:14	--------	d-----w-	c:\dokumente und einstellungen\Administrator\Lokale Einstellungen\Anwendungsdaten\Thunderbird
2015-05-15 20:14 . 2015-05-15 20:14	--------	d-----w-	c:\dokumente und einstellungen\Administrator\Anwendungsdaten\Thunderbird
2015-05-15 20:13 . 2015-05-15 20:14	--------	d-----w-	c:\programme\Mozilla Thunderbird
2015-05-15 19:52 . 2015-05-15 21:25	--------	d-----w-	c:\programme\Microsoft.NET
2015-05-15 19:05 . 2015-05-15 19:06	--------	d-----w-	C:\AdwCleaner
2015-05-15 19:04 . 2015-05-15 19:04	--------	d-----w-	c:\dokumente und einstellungen\Administrator\Lokale Einstellungen\Anwendungsdaten\Mozilla
2015-05-15 19:04 . 2015-05-17 07:07	--------	d-----w-	c:\programme\Mozilla Maintenance Service
2015-05-15 19:01 . 2015-05-15 19:01	--------	d-----w-	c:\dokumente und einstellungen\Administrator\Lokale Einstellungen\Anwendungsdaten\Help
2015-05-15 18:26 . 2015-05-15 23:13	--------	d-----w-	c:\programme\Avira
2015-05-15 18:26 . 2015-05-15 23:13	--------	d-----w-	c:\dokumente und einstellungen\All Users\Anwendungsdaten\Avira
2015-05-15 06:57 . 2015-05-15 06:57	--------	d-----w-	c:\programme\CCleaner
2015-05-15 06:25 . 2015-05-15 06:25	--------	d-----w-	c:\windows\i386
2015-05-15 06:24 . 2015-05-15 22:43	--------	d-----w-	c:\dokumente und einstellungen\All Users\Anwendungsdaten\Package Cache
2015-05-14 22:43 . 2015-05-14 22:43	--------	d-----w-	c:\windows\ServicePackFiles
2015-05-14 21:51 . 2015-05-17 11:41	119512	----a-w-	c:\windows\system32\drivers\MBAMSwissArmy.sys
2015-05-14 21:51 . 2015-05-14 21:51	--------	d-----w-	c:\programme\ Malwarebytes Anti-Malware 
2015-05-14 21:51 . 2015-05-14 21:51	--------	d-----w-	c:\dokumente und einstellungen\All Users\Anwendungsdaten\Malwarebytes
2015-05-14 21:51 . 2015-04-14 07:37	120024	----a-w-	c:\windows\system32\drivers\mbamchameleon.sys
2015-05-14 21:51 . 2015-04-14 07:37	23256	----a-w-	c:\windows\system32\drivers\mbam.sys
2015-05-14 21:41 . 2015-05-15 20:51	--------	d-----w-	c:\dokumente und einstellungen\Administrator\Lokale Einstellungen\Anwendungsdaten\Google
2015-05-14 21:34 . 2015-05-14 21:34	--------	d-----w-	c:\programme\WIDCOMM
2015-05-14 21:34 . 2015-05-15 20:51	--------	d-----w-	c:\programme\Google
.
.
((((((((((((((((((((((((((((((((((((   Find3M Bericht   ))))))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
.
------- Sigcheck -------
Note: Unsigned files aren't necessarily malware.
.
[-] 2008-04-13 . 9F3A2F5AA6875C72BF062C712CFA2674 . 96512 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\atapi.sys
[-] 2008-04-13 . 9F3A2F5AA6875C72BF062C712CFA2674 . 96512 . . [5.1.2600.5512] . . c:\windows\system32\drivers\atapi.sys
[-] 2004-08-03 . CDFE4411A69C224BD1D11B2DA92DAC51 . 95360 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\atapi.sys
.
[-] 2008-04-13 . B153AFFAC761E7F5FCFA822B9C4E97BC . 14336 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\asyncmac.sys
[-] 2008-04-13 . B153AFFAC761E7F5FCFA822B9C4E97BC . 14336 . . [5.1.2600.5512] . . c:\windows\system32\drivers\asyncmac.sys
[-] 2004-08-04 . 02000ABF34AF4C218C35D257024807D6 . 14336 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\asyncmac.sys
.
[-] 2004-08-04 . DA1F27D85E0D1525F6621372E7B685E9 . 4224 . . [5.1.2600.0] . . c:\windows\system32\drivers\beep.sys
.
[-] 2008-04-14 . 1704D8C4C8807B889E43C649B478A452 . 25216 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\kbdclass.sys
[-] 2008-04-14 . 1704D8C4C8807B889E43C649B478A452 . 25216 . . [5.1.2600.5512] . . c:\windows\system32\drivers\kbdclass.sys
[-] 2004-08-04 . B128FC0A5CD83F669D5DE4B58F77C7D6 . 25216 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\kbdclass.sys
.
[-] 2008-04-13 . 1DF7F42665C94B825322FAE71721130D . 182656 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\ndis.sys
[-] 2008-04-13 . 1DF7F42665C94B825322FAE71721130D . 182656 . . [5.1.2600.5512] . . c:\windows\system32\drivers\ndis.sys
[-] 2006-01-10 . AA898F84D2B59129FB92E143A2C73434 . 182528 . . [5.1.2600.2824] . . c:\windows\$NtServicePackUninstall$\ndis.sys
[-] 2004-08-04 . 558635D3AF1C7546D26067D5D9B6959E . 182912 . . [5.1.2600.2180] . . c:\windows\$NtUninstallKB912436$\ndis.sys
.
[-] 2008-04-13 . 78A08DD6A8D65E697C18E1DB01C5CDCA . 574976 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\ntfs.sys
[-] 2008-04-13 . 78A08DD6A8D65E697C18E1DB01C5CDCA . 574976 . . [5.1.2600.5512] . . c:\windows\system32\drivers\ntfs.sys
[-] 2004-08-04 . B78BE402C3F63DD55521F73876951CDD . 574592 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\ntfs.sys
.
[-] 2004-08-04 . 73C1E1F395918BC2C6DD67AF7591A3AD . 2944 . . [5.1.2600.0] . . c:\windows\system32\drivers\null.sys
.
[-] 2008-04-14 . AFB8261B56CBA0D86AEB6DF682AF9785 . 13312 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\lsass.exe
[-] 2008-04-14 . AFB8261B56CBA0D86AEB6DF682AF9785 . 13312 . . [5.1.2600.5512] . . c:\windows\system32\lsass.exe
[-] 2004-08-04 . 183805EB05BCA5A1E4AAAED4D2BE3690 . 13312 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\lsass.exe
.
[-] 2008-04-14 . E6D88F1F6745BF00B57E7855A2AB696C . 198144 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\netman.dll
[-] 2008-04-14 . E6D88F1F6745BF00B57E7855A2AB696C . 198144 . . [5.1.2600.5512] . . c:\windows\system32\netman.dll
[-] 2004-08-04 . CDF4DA6B518105343FE9E8AFBBF8FBF4 . 198144 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\netman.dll
.
[-] 2008-04-14 05:52 . D0DE8A2EC95184E5193BB4B3112E29DF . 846848 . . [2001.12.4414.700] . . c:\windows\ServicePackFiles\i386\comres.dll
[-] 2008-04-14 05:52 . D0DE8A2EC95184E5193BB4B3112E29DF . 846848 . . [2001.12.4414.700] . . c:\windows\system32\comres.dll
[-] 2004-08-04 08:00 . 4B9D9E2708019763C5A72DA776DB1158 . 846848 . . [2001.12.4414.258] . . c:\windows\$NtServicePackUninstall$\comres.dll
.
[-] 2008-04-14 . D6F603772A789BB3228F310D650B8BD1 . 409088 . . [6.7.2600.5512] . . c:\windows\ServicePackFiles\i386\qmgr.dll
[-] 2008-04-14 . D6F603772A789BB3228F310D650B8BD1 . 409088 . . [6.7.2600.5512] . . c:\windows\system32\qmgr.dll
[-] 2008-04-14 . D6F603772A789BB3228F310D650B8BD1 . 409088 . . [6.7.2600.5512] . . c:\windows\system32\bits\qmgr.dll
[-] 2004-08-04 . 3A5E54A9AB96EF2D273B58136FB58EFE . 382464 . . [6.6.2600.2180] . . c:\windows\$NtServicePackUninstall$\qmgr.dll
.
[-] 2008-04-14 . F09A527B422E25C478E38CAA0E44417A . 513024 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\winlogon.exe
[-] 2008-04-14 . F09A527B422E25C478E38CAA0E44417A . 513024 . . [5.1.2600.5512] . . c:\windows\system32\winlogon.exe
[-] 2004-08-04 . 2B6A0BAF33A9918F09442D873848FF72 . 507392 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\winlogon.exe
.
[-] 2008-04-13 . 23C74D75E36E7158768DD63D92789A91 . 75264 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\ipsec.sys
[-] 2008-04-13 . 23C74D75E36E7158768DD63D92789A91 . 75264 . . [5.1.2600.5512] . . c:\windows\system32\drivers\ipsec.sys
[-] 2004-08-04 . 64537AA5C003A6AFEEE1DF819062D0D1 . 74752 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\ipsec.sys
.
[-] 2008-04-14 . 611F824E5C703A5A899F84C5F1699E4D . 62464 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\cryptsvc.dll
[-] 2008-04-14 . 611F824E5C703A5A899F84C5F1699E4D . 62464 . . [5.1.2600.5512] . . c:\windows\system32\cryptsvc.dll
[-] 2004-08-04 . 1A5F9DB98DF7955B4C7CBDBF2C638238 . 60416 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\cryptsvc.dll
.
[-] 2008-04-14 . F9954695D246B33A5BF105029A4C6AB6 . 110080 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\imm32.dll
[-] 2008-04-14 . F9954695D246B33A5BF105029A4C6AB6 . 110080 . . [5.1.2600.5512] . . c:\windows\system32\imm32.dll
[-] 2004-08-04 . 94101D13A1818A9D08337EEC12ED277A . 110080 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\imm32.dll
.
[-] 2008-04-14 . 5543A9D4A1D0F9F84092482A9373A024 . 19968 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\linkinfo.dll
[-] 2008-04-14 . 5543A9D4A1D0F9F84092482A9373A024 . 19968 . . [5.1.2600.5512] . . c:\windows\system32\linkinfo.dll
[-] 2004-08-04 . 3898FFF548E2968CB3AC5A71D7F4E425 . 18944 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\linkinfo.dll
.
[-] 2008-04-14 . F38F3C47BBFFD748C1359AB171C3A630 . 22016 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\lpk.dll
[-] 2008-04-14 . F38F3C47BBFFD748C1359AB171C3A630 . 22016 . . [5.1.2600.5512] . . c:\windows\system32\lpk.dll
[-] 2004-08-04 . B4AD65C79F85C61D32C015B11E03CAAD . 22016 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\lpk.dll
.
[-] 2008-04-14 . C6A6E53A0C34EC87883137A6CB87AE5E . 343040 . . [7.0.2600.5512] . . c:\windows\ServicePackFiles\i386\msvcrt.dll
[-] 2008-04-14 . C6A6E53A0C34EC87883137A6CB87AE5E . 343040 . . [7.0.2600.5512] . . c:\windows\system32\msvcrt.dll
[-] 2008-04-14 . C536AAD8A71608FE33CD956214EDD366 . 343040 . . [7.0.2600.5512] . . c:\windows\WinSxS\x86_Microsoft.Windows.CPlusPlusRuntime_6595b64144ccf1df_7.0.2600.5512_x-ww_3fd60d63\msvcrt.dll
[-] 2004-08-04 . B30BAA48E5063E71C76280E34E7E4802 . 343040 . . [7.0.2600.2180] . . c:\windows\$NtServicePackUninstall$\msvcrt.dll
[-] 2004-08-04 . 4200BE3808F6406DBE45A7B88DAE5035 . 322560 . . [7.0.2600.0] . . c:\windows\WinSxS\x86_Microsoft.Windows.CPlusPlusRuntime_6595b64144ccf1df_7.0.0.0_x-ww_2726e76a\msvcrt.dll
[-] 2004-08-04 . 365B3C43810E1CF41B3BE1E7180F583B . 343040 . . [7.0.2600.2180] . . c:\windows\WinSxS\x86_Microsoft.Windows.CPlusPlusRuntime_6595b64144ccf1df_7.0.2600.2180_x-ww_b2505ed9\msvcrt.dll
.
[-] 2008-04-14 . 0098D35F91DEAB9C127360A877F2CF84 . 407040 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\netlogon.dll
[-] 2008-04-14 . 0098D35F91DEAB9C127360A877F2CF84 . 407040 . . [5.1.2600.5512] . . c:\windows\system32\netlogon.dll
[-] 2004-08-04 . D27395EDCD3416AFD125A9370DCB585C . 407040 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\netlogon.dll
.
[-] 2008-04-14 . C8C0BDABC966B6C24D337DF0A0A399E1 . 17408 . . [6.00.2900.5512] . . c:\windows\ServicePackFiles\i386\powrprof.dll
[-] 2008-04-14 . C8C0BDABC966B6C24D337DF0A0A399E1 . 17408 . . [6.00.2900.5512] . . c:\windows\system32\powrprof.dll
[-] 2004-08-04 . 5604574D490B798BD9A946B021A766AD . 17408 . . [6.00.2900.2180] . . c:\windows\$NtServicePackUninstall$\powrprof.dll
.
[-] 2008-04-14 . 5132443DF6FC3771A17AB4AE55DCBC28 . 187904 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\scecli.dll
[-] 2008-04-14 . 5132443DF6FC3771A17AB4AE55DCBC28 . 187904 . . [5.1.2600.5512] . . c:\windows\system32\scecli.dll
[-] 2004-08-04 . 64DC26B3CF7BCCAD431CE360A4C625D5 . 186880 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\scecli.dll
.
[-] 2008-04-14 . 44161A59DC33AC2EA9C95438ADFFFB7F . 5120 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\sfc.dll
[-] 2008-04-14 . 44161A59DC33AC2EA9C95438ADFFFB7F . 5120 . . [5.1.2600.5512] . . c:\windows\system32\sfc.dll
[-] 2004-08-04 . F62934BC94299083EBFC8810242D8640 . 5120 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\sfc.dll
.
[-] 2008-04-14 . 4FBC75B74479C7A6F829E0CA19DF3366 . 14336 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\svchost.exe
[-] 2008-04-14 . 4FBC75B74479C7A6F829E0CA19DF3366 . 14336 . . [5.1.2600.5512] . . c:\windows\system32\svchost.exe
[-] 2004-08-04 . 65A819B121EB6FDAB4400EA42BDFFE64 . 14336 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\svchost.exe
.
[-] 2008-04-14 . 05903CAC4B98908D55EA5774775B382E . 249856 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\tapisrv.dll
[-] 2008-04-14 . 05903CAC4B98908D55EA5774775B382E . 249856 . . [5.1.2600.5512] . . c:\windows\system32\tapisrv.dll
[-] 2004-08-04 . 4584E2A5FE662AB3E7C32936E1449043 . 246272 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\tapisrv.dll
.
[-] 2008-04-14 . B0050CC5340E3A0760DD8B417FF7AEBD . 580096 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\user32.dll
[-] 2008-04-14 . B0050CC5340E3A0760DD8B417FF7AEBD . 580096 . . [5.1.2600.5512] . . c:\windows\system32\user32.dll
[-] 2004-08-04 . 56785FD5236D7B22CF471A6DA9DB46D8 . 578560 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\user32.dll
.
[-] 2008-04-14 . 788F95312E26389D596C0FA55834E106 . 26624 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\userinit.exe
[-] 2008-04-14 . 788F95312E26389D596C0FA55834E106 . 26624 . . [5.1.2600.5512] . . c:\windows\system32\userinit.exe
[-] 2004-08-04 . D1E53DC57143F2584B1DD53B036C0633 . 25088 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\userinit.exe
.
[-] 2008-04-14 . 6A35E2D6F5F052C84EC2CEB296389439 . 82432 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\ws2_32.dll
[-] 2008-04-14 . 6A35E2D6F5F052C84EC2CEB296389439 . 82432 . . [5.1.2600.5512] . . c:\windows\system32\ws2_32.dll
[-] 2004-08-04 . D569240A22421D5F670BB6FB6DD522B5 . 82944 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\ws2_32.dll
.
[-] 2008-04-14 . C7D8A0517CBF16B84F657DE87EBE9D4B . 19968 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\ws2help.dll
[-] 2008-04-14 . C7D8A0517CBF16B84F657DE87EBE9D4B . 19968 . . [5.1.2600.5512] . . c:\windows\system32\ws2help.dll
[-] 2004-08-04 . B3ADA72D1E3E10A8F6430669DFC38ED0 . 19968 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\ws2help.dll
.
[-] 2008-04-14 . 418045A93CD87A352098AB7DABE1B53E . 1036800 . . [6.00.2900.5512] . . c:\windows\explorer.exe
[-] 2008-04-14 . 418045A93CD87A352098AB7DABE1B53E . 1036800 . . [6.00.2900.5512] . . c:\windows\ServicePackFiles\i386\explorer.exe
[-] 2004-08-04 . 22FE1BE02EADDE1632E478E4125639E0 . 1035264 . . [6.00.2900.2180] . . c:\windows\$NtServicePackUninstall$\explorer.exe
.
[-] 2008-04-14 . AD9226BF3CED13636083BB9C76E9D2A2 . 153600 . . [5.1.2600.5512] . . c:\windows\regedit.exe
[-] 2008-04-14 . AD9226BF3CED13636083BB9C76E9D2A2 . 153600 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\regedit.exe
[-] 2004-08-04 . 8193CE5FB09E83F2699FD65BBCBE2FD2 . 153600 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\regedit.exe
.
[-] 2008-04-14 . 671ABB33C712B1585A5BF7ADD36AD96E . 4096 . . [5.3.2600.5512] . . c:\windows\ServicePackFiles\i386\ksuser.dll
[-] 2008-04-14 . 671ABB33C712B1585A5BF7ADD36AD96E . 4096 . . [5.3.2600.5512] . . c:\windows\system32\ksuser.dll
[-] 2004-08-03 . 4721744CE11F385073F6F9F7831752C7 . 4096 . . [5.3.2600.2180] . . c:\windows\$NtServicePackUninstall$\ksuser.dll
.
[-] 2008-04-14 . 01B4E6E990B6C5EA8856D96C7FD044B2 . 15360 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\ctfmon.exe
[-] 2008-04-14 . 01B4E6E990B6C5EA8856D96C7FD044B2 . 15360 . . [5.1.2600.5512] . . c:\windows\system32\ctfmon.exe
[-] 2004-08-04 . 7CE20569925DF6789C31799F0C538F29 . 15360 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\ctfmon.exe
.
[-] 2008-04-14 . DC4E223F5813150073FB5CC63D13293B . 4608 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\msimg32.dll
[-] 2008-04-14 . DC4E223F5813150073FB5CC63D13293B . 4608 . . [5.1.2600.5512] . . c:\windows\system32\msimg32.dll
[-] 2004-08-04 . 3B8A9C87027BF8D6D156BE5FA6E8EBC6 . 4608 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\msimg32.dll
.
[-] 2008-04-14 . FE77A85495065F3AD59C5C65B6C54182 . 171520 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\srsvc.dll
[-] 2008-04-14 . FE77A85495065F3AD59C5C65B6C54182 . 171520 . . [5.1.2600.5512] . . c:\windows\system32\srsvc.dll
[-] 2004-11-17 . E150E7618328562598F4CE0B5851B5CD . 171520 . . [5.1.2600.2567] . . c:\windows\$NtServicePackUninstall$\srsvc.dll
[-] 2004-08-04 . 015F302C4CF961F20C3F98F3A7CA7917 . 171008 . . [5.1.2600.2180] . . c:\windows\$NtUninstallKB888402$\srsvc.dll
.
[-] 2008-04-14 . EDAFBE25FB6480CE68F688BA691890DC . 13824 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\wscntfy.exe
[-] 2008-04-14 . EDAFBE25FB6480CE68F688BA691890DC . 13824 . . [5.1.2600.5512] . . c:\windows\system32\wscntfy.exe
[-] 2004-08-04 . 7D3E0BEB62799112F5C9FF717D72BF29 . 13824 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\wscntfy.exe
.
[-] 2008-04-14 . 0ADA34871A2E1CD2CAAFED1237A47750 . 129024 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\xmlprov.dll
[-] 2008-04-14 . 0ADA34871A2E1CD2CAAFED1237A47750 . 129024 . . [5.1.2600.5512] . . c:\windows\system32\xmlprov.dll
[-] 2004-08-04 . 8302DE1C64618D72346DD0034DBC5D9B . 129536 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\xmlprov.dll
.
[-] 2008-04-14 . 275CAC40038A2643833B5F48FB474857 . 177152 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\msctfime.ime
[-] 2008-04-14 . 275CAC40038A2643833B5F48FB474857 . 177152 . . [5.1.2600.5512] . . c:\windows\system32\msctfime.ime
[-] 2004-08-04 . C7329927E2C73450323565DCFE17D78E . 177152 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\msctfime.ime
.
[-] 2008-04-14 . 04955AA695448C181B367D964AF158AA . 56320 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\eventlog.dll
[-] 2008-04-14 . 04955AA695448C181B367D964AF158AA . 56320 . . [5.1.2600.5512] . . c:\windows\system32\eventlog.dll
[-] 2004-08-04 . B932C077D5A65B71B4512544AC404CB4 . 55808 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\eventlog.dll
.
[-] 2008-04-14 . 5251425B86EA4A3532B8BB8D14044E61 . 1571840 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\sfcfiles.dll
[-] 2008-04-14 . 5251425B86EA4A3532B8BB8D14044E61 . 1571840 . . [5.1.2600.5512] . . c:\windows\system32\sfcfiles.dll
[-] 2004-08-04 . 80F7B7198B869C07C98627AF812D68B6 . 1548288 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\sfcfiles.dll
.
[-] 2008-04-13 . 23C74D75E36E7158768DD63D92789A91 . 75264 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\ipsec.sys
[-] 2008-04-13 . 23C74D75E36E7158768DD63D92789A91 . 75264 . . [5.1.2600.5512] . . c:\windows\system32\drivers\ipsec.sys
[-] 2004-08-04 . 64537AA5C003A6AFEEE1DF819062D0D1 . 74752 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\ipsec.sys
.
[-] 2008-04-14 . E4CD1F3D84E1C2CA0B8CF7501E201593 . 59904 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\regsvc.dll
[-] 2008-04-14 . E4CD1F3D84E1C2CA0B8CF7501E201593 . 59904 . . [5.1.2600.5512] . . c:\windows\system32\regsvc.dll
[-] 2004-08-04 . AE81CF7D7CFA79CD03E8FB99788A7E09 . 59904 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\regsvc.dll
.
[-] 2008-04-14 . A050194A44D7FA8D7186ED2F4E8367AE . 193536 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\schedsvc.dll
[-] 2008-04-14 . A050194A44D7FA8D7186ED2F4E8367AE . 193536 . . [5.1.2600.5512] . . c:\windows\system32\schedsvc.dll
[-] 2004-08-04 . D5E73842F38E24457C63FEF8CEFFBE19 . 192000 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\schedsvc.dll
.
[-] 2008-04-14 . 4DF5B05DFAEC29E13E1ED6F6EE12C500 . 71680 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\ssdpsrv.dll
[-] 2008-04-14 . 4DF5B05DFAEC29E13E1ED6F6EE12C500 . 71680 . . [5.1.2600.5512] . . c:\windows\system32\ssdpsrv.dll
[-] 2004-08-04 . 6FA03B462B2FFFE2627171B7FE73EE29 . 71680 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\ssdpsrv.dll
.
[-] 2008-04-14 . B7DE02C863D8F5A005A7BF375375A6A4 . 297472 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\termsrv.dll
[-] 2008-04-14 . B7DE02C863D8F5A005A7BF375375A6A4 . 297472 . . [5.1.2600.5512] . . c:\windows\system32\termsrv.dll
[-] 2004-08-04 . 1850BC10DE5DCCCEDE063FC2D0F2CEDA . 297472 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\termsrv.dll
.
[-] 2008-04-14 . 0DAF0705D7B39C94E287913226688804 . 348672 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\hnetcfg.dll
[-] 2008-04-14 . 0DAF0705D7B39C94E287913226688804 . 348672 . . [5.1.2600.5512] . . c:\windows\system32\hnetcfg.dll
[-] 2004-08-04 . AE93E415220A4C0112768A0DEE36D28D . 348672 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\hnetcfg.dll
.
[-] 2008-04-14 . D45960BE52C3C610D361977057F98C54 . 175616 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\appmgmts.dll
[-] 2008-04-14 . D45960BE52C3C610D361977057F98C54 . 175616 . . [5.1.2600.5512] . . c:\windows\system32\appmgmts.dll
[-] 2004-08-04 . BECD5328E7869807D6557BE4FE60C72F . 175616 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\appmgmts.dll
.
[-] 2004-08-04 . 9E1CA3160DAFB159CA14F83B1E317F75 . 12160 . . [5.1.2600.0] . . c:\windows\system32\drivers\acpiec.sys
.
[-] 2008-04-13 20:09 . 8BED39E3C35D6A489438B8141717A557 . 142592 . . [5.1.2601.3142] . . c:\windows\ServicePackFiles\i386\aec.sys
[-] 2008-04-13 20:09 . 8BED39E3C35D6A489438B8141717A557 . 142592 . . [5.1.2601.3142] . . c:\windows\system32\drivers\aec.sys
[-] 2004-08-03 20:39 . 841F385C6CFAF66B58FBD898722BB4F0 . 142464 . . [5.1.2601.2078] . . c:\windows\$NtServicePackUninstall$\aec.sys
.
[-] 2008-04-13 . 08FD04AA961BDC77FB983F328334E3D7 . 42368 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\agp440.sys
[-] 2008-04-13 . 08FD04AA961BDC77FB983F328334E3D7 . 42368 . . [5.1.2600.5512] . . c:\windows\system32\drivers\agp440.sys
.
[-] 2008-04-13 . 3BB22519A194418D5FEC05D800A19AD0 . 36608 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\ip6fw.sys
[-] 2008-04-13 . 3BB22519A194418D5FEC05D800A19AD0 . 36608 . . [5.1.2600.5512] . . c:\windows\system32\drivers\ip6fw.sys
[-] 2004-08-04 . 4448006B6BC60E6C027932CFC38D6855 . 29056 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\ip6fw.sys
.
[-] 2008-04-14 . B7550A7107281D170CE85524B1488C98 . 33792 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\msgsvc.dll
[-] 2008-04-14 . B7550A7107281D170CE85524B1488C98 . 33792 . . [5.1.2600.5512] . . c:\windows\system32\msgsvc.dll
[-] 2004-08-04 . E5215AB942C5AC5F7EB0E54871D7A27C . 33792 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\msgsvc.dll
.
[-] 2008-04-14 05:52 . 56AF4064996FA5BAC9C449B1514B4770 . 438272 . . [5.1.2400.5512] . . c:\windows\ServicePackFiles\i386\ntmssvc.dll
[-] 2008-04-14 05:52 . 56AF4064996FA5BAC9C449B1514B4770 . 438272 . . [5.1.2400.5512] . . c:\windows\system32\ntmssvc.dll
[-] 2004-08-04 08:00 . 428AA946A8D9F32DBB4260C8E6E13377 . 438272 . . [5.1.2400.2180] . . c:\windows\$NtServicePackUninstall$\ntmssvc.dll
.
[-] 2008-04-14 . 1DFD8975D8C89214B98D9387C1125B49 . 186880 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\upnphost.dll
[-] 2008-04-14 . 1DFD8975D8C89214B98D9387C1125B49 . 186880 . . [5.1.2600.5512] . . c:\windows\system32\upnphost.dll
[-] 2004-08-04 . 09D4A2D7C5A8ABEC227D118765FAADDF . 185856 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\upnphost.dll
.
[-] 2008-04-14 . 9236E736EDB57BE7D1EF6274410E3BAC . 367616 . . [5.3.2600.5512] . . c:\windows\ServicePackFiles\i386\dsound.dll
[-] 2008-04-14 . 9236E736EDB57BE7D1EF6274410E3BAC . 367616 . . [5.3.2600.5512] . . c:\windows\system32\dsound.dll
[-] 2004-08-04 . 7DB3393F98E4211F5CE8F003DE0615CF . 367616 . . [5.3.2600.2180] . . c:\windows\$NtServicePackUninstall$\dsound.dll
.
[-] 2008-04-14 . 36969CF86E51EC8ED202B40F2FA80AA6 . 1689088 . . [5.03.2600.5512] . . c:\windows\ServicePackFiles\i386\d3d9.dll
[-] 2008-04-14 . 36969CF86E51EC8ED202B40F2FA80AA6 . 1689088 . . [5.03.2600.5512] . . c:\windows\system32\d3d9.dll
[-] 2004-08-04 . 20AE7889467887B869F30308EEED9A2A . 1689088 . . [5.03.2600.2180] . . c:\windows\$NtServicePackUninstall$\d3d9.dll
.
[-] 2008-04-14 . 4A37188B83B00DD9CFBA049687AD0DAF . 279552 . . [5.03.2600.5512] . . c:\windows\ServicePackFiles\i386\ddraw.dll
[-] 2008-04-14 . 4A37188B83B00DD9CFBA049687AD0DAF . 279552 . . [5.03.2600.5512] . . c:\windows\system32\ddraw.dll
[-] 2004-08-04 . CAC545A56482DE01640E6B791DE19944 . 266240 . . [5.03.2600.2180] . . c:\windows\$NtServicePackUninstall$\ddraw.dll
.
[-] 2008-04-14 05:52 . 5D7F5A46975D2E59A6FECB6C231D200F . 84992 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\olepro32.dll
[-] 2008-04-14 05:52 . 5D7F5A46975D2E59A6FECB6C231D200F . 84992 . . [5.1.2600.5512] . . c:\windows\system32\olepro32.dll
[-] 2004-08-04 08:00 . 1404D3DD4ED4F5E2A938B43794049A81 . 83456 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\olepro32.dll
.
[-] 2008-04-14 . C47FD93010649AC0D79022D9B69ADBE4 . 41984 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\perfctrs.dll
[-] 2008-04-14 . C47FD93010649AC0D79022D9B69ADBE4 . 41984 . . [5.1.2600.5512] . . c:\windows\system32\perfctrs.dll
[-] 2004-08-04 . 007BFD01772B5202C5CE4F208A2F3F46 . 41984 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\perfctrs.dll
.
[-] 2008-04-14 . F86000634319F71535BCE6B06995EE99 . 18944 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\version.dll
[-] 2008-04-14 . F86000634319F71535BCE6B06995EE99 . 18944 . . [5.1.2600.5512] . . c:\windows\system32\version.dll
[-] 2004-08-04 . 4EF2FDC0A085C8339ED4D9C59CE8FC60 . 18944 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\version.dll
.
[-] 2008-04-14 . FE77A85495065F3AD59C5C65B6C54182 . 171520 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\srsvc.dll
[-] 2008-04-14 . FE77A85495065F3AD59C5C65B6C54182 . 171520 . . [5.1.2600.5512] . . c:\windows\system32\srsvc.dll
[-] 2004-11-17 . E150E7618328562598F4CE0B5851B5CD . 171520 . . [5.1.2600.2567] . . c:\windows\$NtServicePackUninstall$\srsvc.dll
[-] 2004-08-04 . 015F302C4CF961F20C3F98F3A7CA7917 . 171008 . . [5.1.2600.2180] . . c:\windows\$NtUninstallKB888402$\srsvc.dll
.
[-] 2008-04-14 . 7B353059E665F8B7AD2BBEAEF597CF45 . 177152 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\w32time.dll
[-] 2008-04-14 . 7B353059E665F8B7AD2BBEAEF597CF45 . 177152 . . [5.1.2600.5512] . . c:\windows\system32\w32time.dll
[-] 2004-08-04 . C6D874CD2A5B83CD11CDEBD28A638584 . 176640 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\w32time.dll
.
[-] 2008-04-14 . BC2C5985611C5356B24AEB370953DED9 . 334336 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\wiaservc.dll
[-] 2008-04-14 . BC2C5985611C5356B24AEB370953DED9 . 334336 . . [5.1.2600.5512] . . c:\windows\system32\wiaservc.dll
[-] 2004-08-04 . 7E751068ADA60FC77638622E86A7CD9E . 333824 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\wiaservc.dll
.
[-] 2008-04-14 . 2CF969B9BF1EF069075DCDCE309FAAE1 . 18944 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\midimap.dll
[-] 2008-04-14 . 2CF969B9BF1EF069075DCDCE309FAAE1 . 18944 . . [5.1.2600.5512] . . c:\windows\system32\midimap.dll
[-] 2004-08-04 . 32641AE4D340C1AC2D9B3A3BD71F5C47 . 18944 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\midimap.dll
.
[-] 2008-04-14 . 469FED8597896DB77B49384BE90E2E0A . 7680 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\rasadhlp.dll
[-] 2008-04-14 . 469FED8597896DB77B49384BE90E2E0A . 7680 . . [5.1.2600.5512] . . c:\windows\system32\rasadhlp.dll
[-] 2004-08-04 . 84028E2EBE7A25494766673A5FF4B304 . 8192 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\rasadhlp.dll
.
[-] 2008-04-14 . 02AF8A799D173C2D0C71F399C03AC9E1 . 19456 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\wshtcpip.dll
[-] 2008-04-14 . 02AF8A799D173C2D0C71F399C03AC9E1 . 19456 . . [5.1.2600.5512] . . c:\windows\system32\wshtcpip.dll
[-] 2004-08-04 . 3FEADE4D0B41D22E8B8460739A9B4FEE . 19968 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\wshtcpip.dll
.
((((((((((((((((((((((((((((   Autostartpunkte der Registrierung   ))))))))))))))))))))))))))))))))))))))))
.
.
*Hinweis* leere Einträge & legitime Standardeinträge werden nicht angezeigt. 
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"CCleaner Monitoring"="c:\programme\CCleaner\CCleaner.exe" [2015-04-23 6278424]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"MsmqIntCert"="mqrt.dll" [2008-04-14 177152]
"SoundMAXPnP"="c:\programme\Analog Devices\Core\smax4pnp.exe" [2005-05-20 925696]
"SunJavaUpdateSched"="c:\programme\Java\jre1.5.0_06\bin\jusched.exe" [2005-11-10 36975]
"PTHOSTTR"="c:\programme\HPQ\HP ProtectTools Security Manager\PTHOSTTR.EXE" [2006-02-14 122880]
"HP Software Update"="c:\programme\Hp\HP Software Update\HPWuSchd2.exe" [2005-02-16 49152]
"DLA"="c:\windows\System32\DLA\DLACTRLW.EXE" [2005-08-31 122940]
"SynTPEnh"="c:\programme\Synaptics\SynTP\SynTPEnh.exe" [2006-03-03 761948]
"igfxtray"="c:\windows\system32\igfxtray.exe" [2006-03-23 94208]
"igfxhkcmd"="c:\windows\system32\hkcmd.exe" [2006-03-23 77824]
"igfxpers"="c:\windows\system32\igfxpers.exe" [2006-03-23 118784]
"hpWirelessAssistant"="c:\programme\hpq\HP Wireless Assistant\HP Wireless Assistant.exe" [2006-02-14 454656]
"CognizanceTS"="c:\progra~1\HPQ\IAM\Bin\AsTsVcc.dll" [2003-12-22 17920]
"QlbCtrl"="c:\programme\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe" [2006-05-08 131072]
"Cpqset"="c:\programme\HPQ\Default Settings\cpqset.exe" [2006-01-26 172094]
"Recguard"="c:\windows\Sminst\Recguard.exe" [2005-12-20 1187840]
"Reminder"="c:\windows\Creator\Remind_XP.exe" [2006-03-09 806912]
"Scheduler"="c:\windows\SMINST\Scheduler.exe" [2006-02-15 892928]
"WatchDog"="c:\programme\InterVideo\DVD Check\DVDCheck.exe" [2005-11-08 184320]
"Avira Systray"="c:\programme\Avira\Launcher\Avira.OE.Systray.exe" [2015-05-07 128760]
"ISUSPM Startup"="c:\progra~1\GEMEIN~1\INSTAL~1\UPDATE~1\ISUSPM.exe" [2004-07-27 221184]
"ISUSScheduler"="c:\programme\Gemeinsame Dateien\InstallShield\UpdateService\issch.exe" [2004-07-27 81920]
"avgnt"="c:\programme\Avira\Antivirus\avgnt.exe" [2015-04-16 728312]
"Adobe ARM"="c:\programme\Gemeinsame Dateien\Adobe\ARM\1.0\AdobeARM.exe" [2014-05-08 959904]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]
.
c:\dokumente und einstellungen\All Users\Startmenü\Programme\Autostart\
BTTray.lnk - c:\programme\WIDCOMM\Bluetooth Software\BTTray.exe [2006-1-18 581693]
DVD Check.lnk - c:\programme\InterVideo\DVD Check\DVDCheck.exe [2015-5-14 184320]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\OneCard]
2005-07-25 18:41	40960	----a-w-	c:\programme\HPQ\IAM\Bin\AsWlnPkg.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MSMSGS]
2008-04-14 05:52	1695232	--sh--w-	c:\programme\Messenger\msmsgs.exe
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\WINDOWS\\SMINST\\Scheduler.exe"=
"c:\\WINDOWS\\system32\\mqsvc.exe"=
"c:\\WINDOWS\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Programme\\Mozilla Firefox\\firefox.exe"=
.
R1 avkmgr;avkmgr;c:\windows\system32\drivers\avkmgr.sys [16.05.2015 01:14 37896]
R1 HWiNFO32;HWiNFO32/64 Kernel Driver;c:\windows\system32\drivers\HWiNFO32.SYS [15.05.2015 22:56 23840]
R2 AntiVirSchedulerService;Avira Planer;c:\programme\Avira\Antivirus\sched.exe [16.05.2015 01:14 434424]
R2 ASChannel;Lokaler Verbindungskanal;c:\windows\System32\svchost.exe -k Cognizance [04.08.2004 10:00 14336]
R2 Avira.OE.ServiceHost;Avira Service Host;c:\programme\Avira\Launcher\Avira.ServiceHost.exe [07.05.2015 16:39 206584]
R3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [14.05.2015 23:51 23256]
S2 AntiVirMailService;Avira Email-Schutz;c:\programme\Avira\Antivirus\avmailc.exe [16.05.2015 01:14 825856]
S2 AntiVirWebService;Avira Browser-Schutz;c:\programme\Avira\Antivirus\avwebgrd.exe [16.05.2015 01:14 1186040]
S2 MBAMService;MBAMService;c:\programme\ Malwarebytes Anti-Malware \mbamservice.exe [14.05.2015 23:51 1080120]
S3 GTIPCI21;GTIPCI21;c:\windows\system32\DRIVERS\gtipci21.sys --> c:\windows\system32\DRIVERS\gtipci21.sys [?]
S3 MBAMSwissArmy;MBAMSwissArmy;c:\windows\system32\drivers\MBAMSwissArmy.sys [14.05.2015 23:51 119512]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
Cognizance	REG_MULTI_SZ   	ASChannel
.
Inhalt des "geplante Tasks" Ordners
.
2015-05-15 c:\windows\Tasks\Driver Booster Scan.job
- c:\programme\IObit\Driver Booster\Scheduler.exe [2015-05-15 08:26]
.
2015-05-21 c:\windows\Tasks\Driver Booster Update.job
- c:\programme\IObit\Driver Booster\AutoUpdate.exe [2015-05-15 11:25]
.
2015-05-21 c:\windows\Tasks\Ende des Supports für Microsoft Windows XP –  Benachrichtigung – Anmeldung.job
- c:\windows\system32\xp_eos.exe [2015-05-16 23:28]
.
2015-05-16 c:\windows\Tasks\Ende des Supports für Microsoft Windows XP – Monatliche Benachrichtigung.job
- c:\windows\system32\xp_eos.exe [2015-05-16 23:28]
.
.
------- Zusätzlicher Suchlauf -------
.
uStart Page = https://www.google.com/
uInternet Connection Wizard,ShellNext = hxxp://www.hp.com/
IE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.scr/200
IE: Nach Microsoft &Excel exportieren - c:\progra~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
LSP: c:\programme\Avira\Antivirus\avsda.dll
FF - ProfilePath - c:\dokumente und einstellungen\Martina\Anwendungsdaten\Mozilla\Firefox\Profiles\8uk32wj9.default\
FF - prefs.js: browser.startup.homepage - www.google.de
.
- - - - Entfernte verwaiste Registrierungseinträge - - - -
.
AddRemove-Microsoft Interactive Training - c:\windows\IsUn0407.exe
.
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, hxxp://www.gmer.net
Rootkit scan 2015-05-21 21:00
Windows 5.1.2600 Service Pack 3 NTFS
.
Scanne versteckte Prozesse... 
.
Scanne versteckte Autostarteinträge... 
.
HKLM\Software\Microsoft\Windows\CurrentVersion\Run
  Cpqset = c:\programme\HPQ\Default Settings\cpqset.exe????????hY????^?n??|?????? ??4B??????????????hB?????hY? 
.
Scanne versteckte Dateien... 
.
Scan erfolgreich abgeschlossen
versteckte Dateien: 0
.
**************************************************************************
.
--------------------- Gesperrte Registrierungsschluessel ---------------------
.
[HKEY_LOCAL_MACHINE\software\Microsoft\Windows\CurrentVersion\Installer\UserData\LocalSystem\Components\€–€|ÿÿÿÿÀ•€|ù•6~*]
"7040AC1900063D11C8EF10054038389C"="C?\\WINDOWS\\system32\\FM20ENU.DLL"
.
--------------------- Durch laufende Prozesse gestartete DLLs ---------------------
.
- - - - - - - > 'winlogon.exe'(880)
c:\programme\HPQ\IAM\Bin\AsWlnPkg.dll
c:\windows\system32\msi.dll
c:\programme\HPQ\IAM\Bin\ASChnl.dll
c:\programme\HPQ\IAM\Bin\ItMsg.dll
.
- - - - - - - > 'lsass.exe'(936)
c:\programme\Avira\Antivirus\avsda.dll
.
- - - - - - - > 'explorer.exe'(2648)
c:\programme\HPQ\IAM\Bin\SFSShell.dll
c:\programme\HPQ\IAM\bin\ItMsg.dll
c:\programme\HPQ\IAM\bin\1031\SFSShell.dll
c:\windows\system32\msi.dll
c:\windows\system32\webcheck.dll
c:\windows\system32\WPDShServiceObj.dll
c:\windows\system32\btncopy.dll
c:\windows\system32\PortableDeviceTypes.dll
c:\windows\system32\PortableDeviceApi.dll
.
------------------------ Weitere laufende Prozesse ------------------------
.
c:\windows\system32\DllHost.exe
c:\windows\System32\SCardSvr.exe
c:\windows\system32\msdtc.exe
c:\programme\Avira\Antivirus\avguard.exe
c:\programme\HPQ\IAM\bin\asghost.exe
c:\programme\WIDCOMM\Bluetooth Software\bin\btwdins.exe
c:\programme\Gemeinsame Dateien\LightScribe\LSSrvc.exe
c:\windows\system32\mqsvc.exe
c:\programme\Hewlett-Packard\Shared\hpqwmiex.exe
c:\programme\Windows Media Player\WMPNetwk.exe
c:\windows\system32\mqtgsvc.exe
c:\windows\system32\igfxsrvc.exe
c:\progra~1\WIDCOMM\BLUETO~1\BTSTAC~1.EXE
c:\progra~1\HPQ\Shared\HPQTOA~1.EXE
c:\programme\Avira\Antivirus\avshadow.exe
.
**************************************************************************
.
Zeit der Fertigstellung: 2015-05-21  21:05:00 - PC wurde neu gestartet
ComboFix-quarantined-files.txt  2015-05-21 19:04
.
Vor Suchlauf: 11 Verzeichnis(se), 48.809.742.336 Bytes frei
Nach Suchlauf: 13 Verzeichnis(se), 48.973.766.656 Bytes frei
.
WindowsXP-KB310994-SP2-Pro-BootDisk-DEU.exe
[boot loader]
timeout=2
default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS
[operating systems]
c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons
UnsupportedDebug="do not select this" /debug
multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP Professional" /noexecute=optin /fastdetect
.
- - End Of File - - 10DC3EBC62DEFE7710A87A2FC7187823
14C6601BDCC8A8484143829F2700ED2C
Danke und Gruß
trojanernick

Alt 22.05.2015, 19:18   #10
schrauber
/// the machine
/// TB-Ausbilder
 
Windows XP: Link in DHL-Mail angeklickt - Problem mit Antivirensoftware und MBR-Befund - Standard

Windows XP: Link in DHL-Mail angeklickt - Problem mit Antivirensoftware und MBR-Befund


Downloade Dir bitte Malwarebytes Anti-Malware
  • Installiere das Programm in den vorgegebenen Pfad. (Bebilderte Anleitung zu MBAM)
  • Starte Malwarebytes' Anti-Malware (MBAM).
  • Klicke im Anschluss auf Scannen, wähle den Bedrohungssuchlauf aus und klicke auf Suchlauf starten.
  • Lass am Ende des Suchlaufs alle Funde (falls vorhanden) in die Quarantäne verschieben. Klicke dazu auf Auswahl entfernen.
  • Lass deinen Rechner ggf. neu starten, um die Bereinigung abzuschließen.
  • Starte MBAM, klicke auf Verlauf und dann auf Anwendungsprotokolle.
  • Wähle das neueste Scan-Protokoll aus und klicke auf Export. Wähle Textdatei (.txt) aus und speichere die Datei als mbam.txt auf dem Desktop ab. Das Logfile von MBAM findest du hier.
  • Füge den Inhalt der mbam.txt mit deiner nächsten Antwort hinzu.


Downloade Dir bitte AdwCleaner Logo Icon AdwCleaner auf deinen Desktop.
  • Schließe alle offenen Programme und Browser. Bebilderte Anleitung zu AdwCleaner.
  • Starte die AdwCleaner.exe mit einem Doppelklick.
  • Stimme den Nutzungsbedingungen zu.
  • Klicke auf Optionen und vergewissere dich, dass die folgenden Punkte ausgewählt sind:
    • "Tracing" Schlüssel löschen
    • Winsock Einstellungen zurücksetzen
    • Proxy Einstellungen zurücksetzen
    • Internet Explorer Richtlinien zurücksetzen
    • Chrome Richtlinien zurücksetzen
    • Stelle sicher, dass alle 5 Optionen wie hier dargestellt, ausgewählt sind
  • Klicke auf Suchlauf und warte bis dieser abgeschlossen ist.
  • Klicke nun auf Löschen und bestätige auftretende Hinweise mit Ok.
  • Dein Rechner wird automatisch neu gestartet. Nach dem Neustart öffnet sich eine Textdatei. Poste mir deren Inhalt mit deiner nächsten Antwort.
  • Die Logdatei findest du auch unter C:\AdwCleaner\AdwCleaner[Cx].txt. (x = fortlaufende Nummer).

Beende bitte Deine Schutzsoftware um eventuelle Konflikte zu vermeiden.
Bitte lade Junkware Removal Tool auf Deinen Desktop

  • Starte das Tool mit Doppelklick. Ab Windows Vista (oder höher) bitte mit Rechtsklick "als Administrator ausführen" starten.
  • Drücke eine beliebige Taste, um das Tool zu starten.
  • Je nach System kann der Scan eine Weile dauern.
  • Wenn das Tool fertig ist wird das Logfile (JRT.txt) auf dem Desktop gespeichert und automatisch geöffnet.
  • Bitte poste den Inhalt der JRT.txt in Deiner nächsten Antwort.


und ein frisches FRST log bitte.
__________________
gruß,
schrauber

Proud Member of UNITE and ASAP since 2009

Spenden
Anleitungen und Hilfestellungen
Trojaner-Board Facebook-Seite

Keine Hilfestellung via PM!

Alt 22.05.2015, 21:04   #11
trojanernick
 
Windows XP: Link in DHL-Mail angeklickt - Problem mit Antivirensoftware und MBR-Befund - Standard

Windows XP: Link in DHL-Mail angeklickt - Problem mit Antivirensoftware und MBR-Befund


Hi,

hier die gewünschten Log-Files:

mbam.txt:
Code:
ATTFilter
 Malwarebytes Anti-Malware 
www.malwarebytes.org

Suchlauf Datum: 22.05.2015
Suchlauf-Zeit: 20:40:03
Logdatei: malwarebytes_protokoll_150522.txt
Administrator: Ja

Version: 2.01.6.1022
Malware Datenbank: v2015.05.22.04
Rootkit Datenbank: v2015.05.16.01
Lizenz: Kostenlos
Malware Schutz: Deaktiviert
Bösartiger Webseiten Schutz: Deaktiviert
Selbstschutz: Deaktiviert

Betriebssystem: Windows XP Service Pack 3
CPU: x86
Dateisystem: NTFS
Benutzer: Martina

Suchlauf-Art: Bedrohungs-Suchlauf
Ergebnis: Abgeschlossen
Durchsuchte Objekte: 422621
Verstrichene Zeit: 26 Min, 17 Sek

Speicher: Aktiviert
Autostart: Aktiviert
Dateisystem: Aktiviert
Archive: Aktiviert
Rootkits: Aktiviert
Heuristik: Aktiviert
PUP: Aktiviert
PUM: Aktiviert

Prozesse: 0
(Keine schädliche Elemente gefunden)

Module: 0
(Keine schädliche Elemente gefunden)

Registrierungsschlüssel: 0
(Keine schädliche Elemente gefunden)

Registrierungswerte: 0
(Keine schädliche Elemente gefunden)

Registrierungsdaten: 1
PUM.Hijack.StartMenu, HKU\S-1-5-21-1310988380-3352743311-3678797310-1006\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\ADVANCED|StartMenuLogoff, 1, Gut: (0), Schlecht: (1),Ersetzt,[08a4f3a3bdcd360095a25bc857af7888]

Ordner: 0
(Keine schädliche Elemente gefunden)

Dateien: 0
(Keine schädliche Elemente gefunden)

Physische Sektoren: 0
(Keine schädliche Elemente gefunden)


(end)
AdwCleaner.txt:
Code:
ATTFilter
# AdwCleaner v4.205 - Logfile created 22/05/2015 at 21:24:30
# Updated 21/05/2015 by Xplode
# Database : 2015-05-21.2 [Server]
# Operating system : Microsoft Windows XP Service Pack 3 (x86)
# Username : Martina - HP-LAPTOP
# Running from : C:\Dokumente und Einstellungen\Martina\Desktop\AdwCleaner_4.205.exe
# Option : Cleaning

***** [ Services ] *****


***** [ Files / Folders ] *****


***** [ Scheduled tasks ] *****


***** [ Shortcuts ] *****


***** [ Registry ] *****

Key Deleted : HKCU\Software\OCS

***** [ Web browsers ] *****

-\\ Internet Explorer v8.0.6001.18702


-\\ Mozilla Firefox v38.0.1 (x86 de)


*************************

AdwCleaner[R0].txt - [738 bytes] - [15/05/2015 21:06:01]
AdwCleaner[R1].txt - [869 bytes] - [22/05/2015 21:22:38]
AdwCleaner[S0].txt - [797 bytes] - [22/05/2015 21:24:30]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [855  bytes] ##########
JRT.txt:
Code:
ATTFilter
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.7.3 (05.18.2015:1)
OS: Microsoft Windows XP x86
Ran by Martina on 22.05.2015 at 21:29:42,82
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Tasks

Successfully deleted: [Task] C:\WINDOWS\tasks\Driver Booster Scan.job
Successfully deleted: [Task] C:\WINDOWS\tasks\Driver Booster Update.job



~~~ Registry Values



~~~ Registry Keys



~~~ Files

Successfully deleted: [File] C:\WINDOWS\wininit.ini



~~~ Folders





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 22.05.2015 at 21:32:28,87
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Addition.txt:
Code:
ATTFilter
Additional scan result of Farbar Recovery Scan Tool (x86) Version: 19-05-2015
Ran by Martina at 2015-05-22 21:39:15
Running from C:\Dokumente und Einstellungen\Martina\Desktop
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-1310988380-3352743311-3678797310-500 - Administrator - Enabled) => %SystemDrive%\Dokumente und Einstellungen\Administrator
ASPNET (S-1-5-21-1310988380-3352743311-3678797310-1003 - Limited - Enabled)
Gast (S-1-5-21-1310988380-3352743311-3678797310-501 - Limited - Disabled)
Hilfeassistent (S-1-5-21-1310988380-3352743311-3678797310-1004 - Limited - Disabled)
Martina (S-1-5-21-1310988380-3352743311-3678797310-1005 - Administrator - Enabled) => %SystemDrive%\Dokumente und Einstellungen\Martina
Martina_2 (S-1-5-21-1310988380-3352743311-3678797310-1006 - Limited - Enabled) => %SystemDrive%\Dokumente und Einstellungen\Martina_2
SUPPORT_388945a0 (S-1-5-21-1310988380-3352743311-3678797310-1002 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Avira Antivirus (Disabled - Up to date) {AD166499-45F9-482A-A743-FDD3350758C7}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe Reader XI (11.0.08) - Deutsch (HKLM\...\{AC76BA86-7AD7-1031-7B44-AB0000000001}) (Version: 11.0.08 - Adobe Systems Incorporated)
Agere Systems HDA Modem (HKLM\...\Agere Systems Soft Modem) (Version:  - )
Application Installer 4.00.B5 (HKLM\...\{E0DBC47C-ED3F-4A1B-A929-9A26DAAA14B3}) (Version: 4.00.B5 - Hewlett-Packard Company)
Avira (HKLM\...\{022ef99f-0db2-4efc-964d-5dd2da3151f6}) (Version: 1.1.37.30000 - Avira Operations GmbH & Co. KG)
Avira (Version: 1.1.37.30000 - Avira Operations GmbH & Co. KG) Hidden
Avira Antivirus (HKLM\...\Avira Antivirus) (Version: 15.0.10.434 - Avira Operations GmbH & Co. KG)
CCleaner (HKLM\...\CCleaner) (Version: 5.05 - Piriform)
Compatibility Pack für 2007 Office System (HKLM\...\{90120000-0020-0407-0000-0000000FF1CE}) (Version: 12.0.6514.5001 - Microsoft Corporation)
Driver Booster 2.3 (HKLM\...\Driver Booster_is1) (Version: 2.3 - IObit)
Hotfix für Windows XP (KB942288-v3) (HKLM\...\KB942288-v3) (Version: 3 - Microsoft Corporation)
Hotfix für Windows XP (KB952287) (HKLM\...\KB952287) (Version: 1 - Microsoft Corporation)
Hotfix für Windows XP (KB969084) (HKLM\...\KB969084) (Version: 3 - Microsoft Corporation)
HP Credential Manager for ProtectTools (HKLM\...\{B9F4C05D-E42F-4E9A-A73F-FDD9355319FB}) (Version: 1.5.0.631.36.F - Hewlett-Packard Development Company, L.P.)
HP Help and Support (HKLM\...\{A93C4E94-1005-489D-BEAA-B873C1AA6CFC}) (Version: 4.2.0009 - HPQ)
HP Integrated Module with Bluetooth wireless technology (HKLM\...\{3F4EC965-28EF-45C3-B063-04B25D4E9679}) (Version: 4.0.1.3300 - HP)
HP Notebook Accessories Product Tour (HKLM\...\{A7AD8CEF-72D7-4FE4-8A14-DDD09DC86074}) (Version: 11.00.0000 - Hewlett-Packard)
HP ProtectTools Security Manager 2.00 C3 (HKLM\...\{914E1AB1-DCA0-4A7D-935F-B58C4B887A2B}) (Version: 2.00 C3 - Hewlett-Packard Company)
HP Quick Launch Buttons 6.00 H1 (HKLM\...\{34D2AB40-150D-475D-AE32-BD23FB5EE355}) (Version: 6.00 H1 - Hewlett-Packard Company)
HP Software Update (HKLM\...\{BB85ED9C-AFC9-43BD-B8DC-258C3C7DF72E}) (Version: 3.0.7.014 - Hewlett-Packard)
HP User Guides 0015 (HKLM\...\{DB0781F5-06D2-49BB-87B5-00F3B834FC3B}) (Version: 1.04.0002 - Hewlett-Packard)
HP Wireless Assistant 2.00 E1 (HKLM\...\{4302B2DD-D958-40E3-BAF3-B07FFE1978CE}) (Version: 2.00 E1 - Hewlett-Packard Company)
HpSdpAppCoreApp (Version: 3.00.0000 - Hewlett-Packard) Hidden
Intel(R) Graphics Media Accelerator Driver (HKLM\...\{8A708DD8-A5E6-11D4-A706-000629E95E20}) (Version: 6.14.10.4543 - )
InterVideo DVD Check (HKLM\...\{5D97A4A7-C274-4B63-86D9-07A33435F505}) (Version:  - )
InterVideo WinDVD (HKLM\...\{91810AFC-A4F8-4EBA-A5AA-B198BBC81144}) (Version: 5.0-B11.672 - InterVideo Inc.)
J2SE Runtime Environment 5.0 Update 6 (HKLM\...\{3248F0A8-6813-11D6-A77B-00B0D0150060}) (Version: 1.5.0.60 - Sun Microsystems, Inc.)
LightScribe  1.4.105.1 (Version: 1.4.105.1 - Ihr Firmenname) Hidden
Malwarebytes Anti-Malware Version 2.1.6.1022 (HKLM\...\Malwarebytes Anti-Malware_is1) (Version: 2.1.6.1022 - Malwarebytes Corporation)
Microsoft .NET Framework 1.1 (HKLM\...\Microsoft .NET Framework 1.1  (1033)) (Version:  - )
Microsoft .NET Framework 1.1 German Language Pack (HKLM\...\{E78BFA60-5393-4C38-82AB-E8019E464EB4}) (Version: 1.1.4322 - Microsoft)
Microsoft .NET Framework 1.1 Security Update (KB2833941) (HKLM\...\M2833941) (Version:  - )
Microsoft .NET Framework 4 Client Profile (HKLM\...\Microsoft .NET Framework 4 Client Profile) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Client Profile DEU Language Pack (HKLM\...\Microsoft .NET Framework 4 Client Profile DEU Language Pack) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Extended (HKLM\...\Microsoft .NET Framework 4 Extended) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft Compression Client Pack 1.0 for Windows XP (HKLM\...\MSCompPackV1) (Version: 1 - Microsoft Corporation)
Microsoft Office Small Business Edition 2003 (HKLM\...\{91CA0407-6000-11D3-8CFE-0150048383C9}) (Version: 11.0.8173.0 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30214.0 - Microsoft Corporation)
Microsoft User-Mode Driver Framework Feature Pack 1.0 (HKLM\...\Wudf01000) (Version:  - Microsoft Corporation)
Mozilla Firefox 38.0.1 (x86 de) (HKLM\...\Mozilla Firefox 38.0.1 (x86 de)) (Version: 38.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 31.6.0 - Mozilla)
Mozilla Thunderbird 31.6.0 (x86 de) (HKLM\...\Mozilla Thunderbird 31.6.0 (x86 de)) (Version: 31.6.0 - Mozilla)
Picasa 3 (HKLM\...\Picasa 3) (Version: 3.9 - Google, Inc.)
Sicherheitsupdate für Microsoft Windows (KB2564958) (HKLM\...\KB2564958) (Version:  - Microsoft Corporation)
Sicherheitsupdate für Step by Step Interactive Training (KB923723) (HKLM\...\KB923723) (Version: 20050502.101010 - Microsoft Corporation)
Sicherheitsupdate für Windows Internet Explorer 8 (KB2510531) (HKLM\...\KB2510531-IE8) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows Internet Explorer 8 (KB2909210) (HKLM\...\KB2909210-IE8) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows Internet Explorer 8 (KB2909921) (HKLM\...\KB2909921-IE8) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows Internet Explorer 8 (KB2936068) (HKLM\...\KB2936068-IE8) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows Internet Explorer 8 (KB982381) (HKLM\...\KB982381-IE8) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows Media Player (KB2378111) (Version:  - Microsoft Corporation) Hidden
Sicherheitsupdate für Windows Media Player (KB2834902-v2) (Version:  - Microsoft Corporation) Hidden
Sicherheitsupdate für Windows Media Player (KB2834904-v2) (HKLM\...\KB2834904-v2_WM11) (Version:  - Microsoft Corporation)
Sicherheitsupdate für Windows Media Player (KB911564) (Version:  - Microsoft Corporation) Hidden
Sicherheitsupdate für Windows Media Player (KB952069) (Version:  - Microsoft Corporation) Hidden
Sicherheitsupdate für Windows Media Player (KB954155) (Version:  - Microsoft Corporation) Hidden
Sicherheitsupdate für Windows Media Player (KB973540) (Version:  - Microsoft Corporation) Hidden
Sicherheitsupdate für Windows Media Player (KB975558) (Version:  - Microsoft Corporation) Hidden
Sicherheitsupdate für Windows Media Player (KB978695) (Version:  - Microsoft Corporation) Hidden
Sicherheitsupdate für Windows Media Player 9 (KB911565) (Version:  - Microsoft Corporation) Hidden
Sicherheitsupdate für Windows XP (KB2115168) (HKLM\...\KB2115168) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2229593) (HKLM\...\KB2229593) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2296011) (HKLM\...\KB2296011) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2347290) (HKLM\...\KB2347290) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2387149) (HKLM\...\KB2387149) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2393802) (HKLM\...\KB2393802) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2419632) (HKLM\...\KB2419632) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2423089) (HKLM\...\KB2423089) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2443105) (HKLM\...\KB2443105) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2478960) (HKLM\...\KB2478960) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2478971) (HKLM\...\KB2478971) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2479943) (HKLM\...\KB2479943) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2481109) (HKLM\...\KB2481109) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2483185) (HKLM\...\KB2483185) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2485663) (HKLM\...\KB2485663) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2506212) (HKLM\...\KB2506212) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2507938) (HKLM\...\KB2507938) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2508429) (HKLM\...\KB2508429) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2509553) (HKLM\...\KB2509553) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2535512) (HKLM\...\KB2535512) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2536276-v2) (HKLM\...\KB2536276-v2) (Version: 2 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2544893-v2) (HKLM\...\KB2544893-v2) (Version: 2 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2566454) (HKLM\...\KB2566454) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2570947) (HKLM\...\KB2570947) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2584146) (HKLM\...\KB2584146) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2585542) (HKLM\...\KB2585542) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2592799) (HKLM\...\KB2592799) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2598479) (HKLM\...\KB2598479) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2603381) (HKLM\...\KB2603381) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2619339) (HKLM\...\KB2619339) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2620712) (HKLM\...\KB2620712) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2631813) (HKLM\...\KB2631813) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2653956) (HKLM\...\KB2653956) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2655992) (HKLM\...\KB2655992) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2659262) (HKLM\...\KB2659262) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2661637) (HKLM\...\KB2661637) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2676562) (HKLM\...\KB2676562) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2686509) (HKLM\...\KB2686509) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2691442) (HKLM\...\KB2691442) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2698365) (HKLM\...\KB2698365) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2705219-v2) (HKLM\...\KB2705219-v2) (Version: 2 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2712808) (HKLM\...\KB2712808) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2719985) (HKLM\...\KB2719985) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2723135-v2) (HKLM\...\KB2723135-v2) (Version: 2 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2727528) (HKLM\...\KB2727528) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2757638) (HKLM\...\KB2757638) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2770660) (HKLM\...\KB2770660) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2780091) (HKLM\...\KB2780091) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2802968) (HKLM\...\KB2802968) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2807986) (HKLM\...\KB2807986) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2813345) (HKLM\...\KB2813345) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2820917) (HKLM\...\KB2820917) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2834886) (HKLM\...\KB2834886) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2847311) (HKLM\...\KB2847311) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2850869) (HKLM\...\KB2850869) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2859537) (HKLM\...\KB2859537) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2862152) (HKLM\...\KB2862152) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2862330) (HKLM\...\KB2862330) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2862335) (HKLM\...\KB2862335) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2864063) (HKLM\...\KB2864063) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2868038) (HKLM\...\KB2868038) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2868626) (HKLM\...\KB2868626) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2876217) (HKLM\...\KB2876217) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2876331) (HKLM\...\KB2876331) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2892075) (HKLM\...\KB2892075) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2893294) (HKLM\...\KB2893294) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2898715) (HKLM\...\KB2898715) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2900986) (HKLM\...\KB2900986) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2914368) (HKLM\...\KB2914368) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2916036) (HKLM\...\KB2916036) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2922229) (HKLM\...\KB2922229) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2929961) (HKLM\...\KB2929961) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2930275) (HKLM\...\KB2930275) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB923561) (HKLM\...\KB923561) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB923789) (HKLM\...\KB923789) (Version:  - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB941569) (HKLM\...\KB941569) (Version:  - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB946648) (HKLM\...\KB946648) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB950762) (HKLM\...\KB950762) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB950974) (HKLM\...\KB950974) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB951376-v2) (HKLM\...\KB951376-v2) (Version: 2 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB952004) (HKLM\...\KB952004) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB952954) (HKLM\...\KB952954) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB956572) (HKLM\...\KB956572) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB956844) (HKLM\...\KB956844) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB959426) (HKLM\...\KB959426) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB960803) (HKLM\...\KB960803) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB960859) (HKLM\...\KB960859) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB969059) (HKLM\...\KB969059) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB970430) (HKLM\...\KB970430) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB971657) (HKLM\...\KB971657) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB972270) (HKLM\...\KB972270) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB973507) (HKLM\...\KB973507) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB973869) (HKLM\...\KB973869) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB973904) (HKLM\...\KB973904) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB974112) (HKLM\...\KB974112) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB974318) (HKLM\...\KB974318) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB974392) (HKLM\...\KB974392) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB974571) (HKLM\...\KB974571) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB975025) (HKLM\...\KB975025) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB975467) (HKLM\...\KB975467) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB975560) (HKLM\...\KB975560) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB975713) (HKLM\...\KB975713) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB977816) (HKLM\...\KB977816) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB977914) (HKLM\...\KB977914) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB978338) (HKLM\...\KB978338) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB978542) (HKLM\...\KB978542) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB978706) (HKLM\...\KB978706) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB979309) (HKLM\...\KB979309) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB979482) (HKLM\...\KB979482) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB979687) (HKLM\...\KB979687) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB981997) (HKLM\...\KB981997) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB982132) (HKLM\...\KB982132) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB982665) (HKLM\...\KB982665) (Version: 1 - Microsoft Corporation)
Sonic Audio Module (HKLM\...\{AB708C9B-97C8-4AC9-899B-DBF226AC9382}) (Version: 2.0.4 - Sonic Solutions)
Sonic Copy Module (HKLM\...\{B12665F4-4E93-4AB4-B7FC-37053B524629}) (Version: 2.0.4 - Sonic Solutions)
Sonic Data Module (HKLM\...\{075473F5-846A-448B-BCB3-104AA1760205}) (Version: 2.0.4 - Sonic Solutions)
Sonic DLA (HKLM\...\{1206EF92-2E83-4859-ACCB-2048C3CB7DA6}) (Version: 5.2.0 - Sonic Solutions)
Sonic Express Labeler (HKLM\...\{6675CA7F-E51B-4F6A-99D4-F8F0124C6EAA}) (Version: 2.0.0 - Sonic Solutions)
Sonic MyDVD Plus (HKLM\...\{21657574-BD54-48A2-9450-EB03B2C7FC29}) (Version: 6.2.0 - Sonic Solutions)
Sonic Update Manager (HKLM\...\{30465B6C-B53F-49A1-9EBA-A3F187AD502E}) (Version: 3.0.0 - Sonic Solutions)
SoundMAX (HKLM\...\{F0A37341-D692-11D4-A984-009027EC0A9C}) (Version: 5.10.01.4321 - Analog Devices)
ST Wiederherstellungs- & Sicherungsprogramme (HKLM\...\{3F9F7336-6DF8-476F-ABF6-C70A17FAF619}) (Version: 2.1Z - Hewlett-Packard Company )
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 8.2.16.4 - Synaptics)
Texas Instruments PCIxx21/x515/xx12 drivers. (HKLM\...\InstallShield_{48CF6549-B45D-4313-9927-EFCCC8A3493F}) (Version: 1.17.0000 - Texas Instruments Inc.)
TIPCI (Version: 1.17.0000 - Texas Instruments Inc.) Hidden
Tweak UI (HKLM\...\Tweak UI 2.10) (Version:  - )
Update für Windows Internet Explorer 8 (KB2598845) (HKLM\...\KB2598845-IE8) (Version: 1 - Microsoft Corporation)
Update für Windows XP (KB2345886) (HKLM\...\KB2345886) (Version: 1 - Microsoft Corporation)
Update für Windows XP (KB2467659) (HKLM\...\KB2467659) (Version: 1 - Microsoft Corporation)
Update für Windows XP (KB2749655) (HKLM\...\KB2749655) (Version: 1 - Microsoft Corporation)
Update für Windows XP (KB2813347-v2) (HKLM\...\KB2813347-v2) (Version: 2 - Microsoft Corporation)
Update für Windows XP (KB2904266) (HKLM\...\KB2904266) (Version: 1 - Microsoft Corporation)
Update für Windows XP (KB2934207) (HKLM\...\KB2934207) (Version: 1 - Microsoft Corporation)
Update für Windows XP (KB898461) (HKLM\...\KB898461) (Version: 1 - Microsoft Corporation)
Update für Windows XP (KB951978) (HKLM\...\KB951978) (Version: 1 - Microsoft Corporation)
Update für Windows XP (KB955759) (HKLM\...\KB955759) (Version: 1 - Microsoft Corporation)
Update für Windows XP (KB968389) (HKLM\...\KB968389) (Version: 1 - Microsoft Corporation)
Update für Windows XP (KB971029) (HKLM\...\KB971029) (Version: 1 - Microsoft Corporation)
Update für Windows XP (KB973815) (HKLM\...\KB973815) (Version: 1 - Microsoft Corporation)
VLC media player (HKLM\...\VLC media player) (Version: 2.2.1 - VideoLAN)
WebFldrs XP (Version: 9.50.7523 - Microsoft Corporation) Hidden
Windows Genuine Advantage Validation Tool (KB892130) (HKLM\...\KB892130) (Version:  - Microsoft Corporation)
Windows Genuine Advantage Validation Tool (KB892130) (HKLM\...\WGA) (Version: 1.7.0069.2 - Microsoft Corporation)
Windows Internet Explorer 8 (HKLM\...\ie8) (Version: 20090308.140743 - Microsoft Corporation)
Windows Media Format 11 runtime (HKLM\...\Windows Media Format Runtime) (Version:  - )
Windows Media Player 11 (HKLM\...\Windows Media Player) (Version:  - )
Windows XP Service Pack 3 (HKLM\...\Windows XP Service Pack) (Version: 20080414.031514 - Microsoft Corporation)

==================== Custom CLSID (selected items): ==========================

(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)


==================== Restore Points  =========================

14-05-2015 23:30:49 Systemprüfpunkt
14-05-2015 23:33:23 Installiert TIPCI
14-05-2015 23:41:22 Adobe Reader 7.0.5 - Deutsch wird entfernt
14-05-2015 23:41:50 Entfernt HP BIOS Configuration for ProtectTools
15-05-2015 00:37:07 Windows XP Service Pack 3 wurde installiert.
15-05-2015 23:08:51 Installiert Microsoft® Office Small Business Edition 2003
15-05-2015 23:25:39 Microsoft Office Small Business Edition 2003 wird installiert
15-05-2015 23:38:50 Compatibility Pack für 2007 Office System wird installiert
16-05-2015 08:12:53 Software Distribution Service 3.0
16-05-2015 09:46:36 Software Distribution Service 3.0
16-05-2015 09:57:27 Windows Internet Explorer 8 wurde installiert.
16-05-2015 09:58:05 Software Distribution Service 3.0
16-05-2015 10:05:09 Software Distribution Service 3.0
16-05-2015 11:46:32 Software Distribution Service 3.0
16-05-2015 11:53:20 Software Distribution Service 3.0
16-05-2015 12:00:03 Software Distribution Service 3.0
16-05-2015 12:05:31 Software Distribution Service 3.0
16-05-2015 13:22:54 Software Distribution Service 3.0
16-05-2015 13:31:47 Software Distribution Service 3.0
16-05-2015 18:26:26 Software Distribution Service 3.0
16-05-2015 21:44:38 Windows XP KB942288-v3 wurde installiert.
16-05-2015 21:45:22 DirectX wurde installiert
16-05-2015 21:47:17 Installed Windows Media Player 11
16-05-2015 21:47:33 Installed Windows XP Wudf01000.
16-05-2015 21:49:14 Installed Windows XP MSCompPackV1.
16-05-2015 21:49:24 Windows XP KB969084 wurde installiert.
16-05-2015 21:55:25 Windows XP KB956572 wurde installiert.
16-05-2015 21:55:42 Windows Media Player KB973540 wurde installiert.
16-05-2015 21:55:55 Windows Media Player KB954155 wurde installiert.
16-05-2015 21:56:04 Windows Media Player KB978695 wurde installiert.
16-05-2015 21:56:13 Windows Media Player KB975558 wurde installiert.
16-05-2015 21:56:26 Windows Media Player KB2378111 wurde installiert.
16-05-2015 21:56:45 Windows XP KB2393802 wurde installiert.
16-05-2015 21:56:59 Windows XP KB2510531 wurde installiert.
16-05-2015 21:57:25 Windows XP KB2676562 wurde installiert.
16-05-2015 21:57:40 Windows XP KB2813347-v2 wurde installiert.
16-05-2015 21:57:56 Windows XP KB2859537 wurde installiert.
16-05-2015 21:58:04 Windows Media Player KB2834904-v2 wurde installiert.
16-05-2015 21:58:16 Windows XP KB2862330 wurde installiert.
16-05-2015 21:58:29 Windows XP KB2909210 wurde installiert.
16-05-2015 21:58:55 Windows XP KB2936068 wurde installiert.
17-05-2015 00:07:22 Software Distribution Service 3.0
17-05-2015 00:18:10 Software Distribution Service 3.0
17-05-2015 01:24:22 Software Distribution Service 3.0
17-05-2015 01:45:10 Software Distribution Service 3.0
17-05-2015 13:57:22 Windows XP KB2862330 wurde installiert.
17-05-2015 14:09:30 Software Distribution Service 3.0
17-05-2015 20:27:28 Software Distribution Service 3.0
17-05-2015 20:34:13 Software Distribution Service 3.0
18-05-2015 19:22:35 Druckertreiber Microsoft Office Document Image Writ installiert
18-05-2015 20:07:30 Software Distribution Service 3.0
18-05-2015 20:22:10 Software Distribution Service 3.0
18-05-2015 20:24:12 Software Distribution Service 3.0
18-05-2015 21:08:38 Software Distribution Service 3.0
18-05-2015 22:07:38 Software Distribution Service 3.0
19-05-2015 18:48:06 Software Distribution Service 3.0
21-05-2015 20:33:30 ComboFix created restore point
21-05-2015 22:06:05 Software Distribution Service 3.0

==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2004-08-04 10:00 - 2015-05-21 20:58 - 00000027 ____A C:\WINDOWS\system32\Drivers\etc\hosts
127.0.0.1       localhost

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\Ende des Supports für Microsoft Windows XP –  Benachrichtigung – Anmeldung.job => C:\WINDOWS\system32\xp_eos.exe
Task: C:\WINDOWS\Tasks\Ende des Supports für Microsoft Windows XP – Monatliche Benachrichtigung.job => C:\WINDOWS\system32\xp_eos.exe

==================== Loaded Modules (Whitelisted) ==============

2015-04-08 21:53 - 2015-04-08 21:53 - 00057344 _____ () C:\Programme\CCleaner\lang\lang-1031.dll
2006-08-24 20:59 - 2005-12-23 13:44 - 00491606 _____ () C:\Programme\HPQ\Shared\HpqToaster.exe

==================== Safe Mode (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)


==================== EXE Association (Whitelisted) ===============

(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, the associated entry will be removed from the registry.)


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-1310988380-3352743311-3678797310-1005\Control Panel\Desktop\\Wallpaper -> C:\WINDOWS\HP Cityscape.bmp
DNS Servers: Media is not connected to internet.

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)

MSCONFIG\startupreg: MSMSGS => "C:\Programme\Messenger\msmsgs.exe" /background

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)

DomainProfile\AuthorizedApplications: [C:\WINDOWS\system32\mqsvc.exe] => Enabled:Message Queuing
StandardProfile\AuthorizedApplications: [C:\WINDOWS\SMINST\Scheduler.exe] => Enabled:Scheduler 
StandardProfile\AuthorizedApplications: [C:\WINDOWS\system32\mqsvc.exe] => Disabled:Message Queuing
StandardProfile\AuthorizedApplications: [C:\WINDOWS\Network Diagnostic\xpnetdiag.exe] => Disabled:@xpsp3res.dll,-20000
StandardProfile\AuthorizedApplications: [C:\Programme\Mozilla Firefox\firefox.exe] => Enabled:Firefox (C:\Programme\Mozilla Firefox)
DomainProfile\GloballyOpenPorts: [1900:UDP] => :LocalSubNet:Enabled:@xpsp2res.dll,-22007
DomainProfile\GloballyOpenPorts: [2869:TCP] => :LocalSubNet:Enabled:@xpsp2res.dll,-22008
DomainProfile\GloballyOpenPorts: [10243:TCP] => :LocalSubNet:Enabled:Windows Media Player-Netzwerkfreigabedienst
DomainProfile\GloballyOpenPorts: [10280:UDP] => :LocalSubNet:Enabled:Windows Media Player-Netzwerkfreigabedienst
DomainProfile\GloballyOpenPorts: [10281:UDP] => :LocalSubNet:Enabled:Windows Media Player-Netzwerkfreigabedienst
DomainProfile\GloballyOpenPorts: [10282:UDP] => :LocalSubNet:Enabled:Windows Media Player-Netzwerkfreigabedienst
DomainProfile\GloballyOpenPorts: [10283:UDP] => :LocalSubNet:Enabled:Windows Media Player-Netzwerkfreigabedienst
DomainProfile\GloballyOpenPorts: [10284:UDP] => :LocalSubNet:Enabled:Windows Media Player-Netzwerkfreigabedienst
StandardProfile\GloballyOpenPorts: [1900:UDP] => :LocalSubNet:Enabled:@xpsp2res.dll,-22007
StandardProfile\GloballyOpenPorts: [2869:TCP] => :LocalSubNet:Enabled:@xpsp2res.dll,-22008
StandardProfile\GloballyOpenPorts: [10243:TCP] => :LocalSubNet:Enabled:Windows Media Player-Netzwerkfreigabedienst
StandardProfile\GloballyOpenPorts: [10280:UDP] => :LocalSubNet:Enabled:Windows Media Player-Netzwerkfreigabedienst
StandardProfile\GloballyOpenPorts: [10281:UDP] => :LocalSubNet:Enabled:Windows Media Player-Netzwerkfreigabedienst
StandardProfile\GloballyOpenPorts: [10282:UDP] => :LocalSubNet:Enabled:Windows Media Player-Netzwerkfreigabedienst
StandardProfile\GloballyOpenPorts: [10283:UDP] => :LocalSubNet:Enabled:Windows Media Player-Netzwerkfreigabedienst
StandardProfile\GloballyOpenPorts: [10284:UDP] => :LocalSubNet:Enabled:Windows Media Player-Netzwerkfreigabedienst

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (05/18/2015 10:08:28 PM) (Source: $(ProductName) Service Host) (EventID: 0) (User: )
Description: Fehler beim Verarbeiten von Sitzungsänderung. System.ComponentModel.Win32Exception (0x80004005): Key (Users\S-1-5-21-1310988380-3352743311-3678797310-1006\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall) could not be opened Error: 87, Hive: Users, Key: S-1-5-21-1310988380-3352743311-3678797310-1006\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall
   bei Avira.OE.WinCore.Utility.RegistryValueWatcher.CheckResultAndThrowWin32Exception(Int32 result, String message)
   bei Avira.OE.WinCore.Utility.RegistryValueWatcher.OpenRegKey()
   bei Avira.OE.WinCore.Utility.RegistryValueWatcher.Start()
   bei Avira.OE.ServiceHost.AppInfoRepositoryFactory.CreateRegistryAppInfoRepository(RegistryHive registryHive, String registryPath, RegistryView registryView)
   bei Avira.OE.ServiceHost.DesktopApplications.UpdateUserAppInfoRepository(String userSid)
   bei Avira.OE.ServiceHost.DesktopApplications.UpdateOnNewUserSid(String userSid)
   bei Avira.OE.ServiceHost.DesktopApplications.OnSessionChange(Int32 sessionId, SessionChangeReason reason)
   bei Avira.OE...

Error: (05/18/2015 08:40:48 PM) (Source: MsiInstaller) (EventID: 10005) (User: HP-LAPTOP)
Description: Product: EMET 5.2 -- This setup requires the .NET Framework version v4.0.  Please install the .NET Framework and run this setup again.

Error: (05/16/2015 10:12:57 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Stillstehende Anwendung firefox.exe, Version 38.0.0.5606, Stillstandmodul hungapp, Version 0.0.0.0, Stillstandadresse 0x00000000.

Error: (05/16/2015 10:12:57 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Stillstehende Anwendung firefox.exe, Version 38.0.0.5606, Stillstandmodul hungapp, Version 0.0.0.0, Stillstandadresse 0x00000000.

Error: (05/16/2015 10:12:57 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Stillstehende Anwendung firefox.exe, Version 38.0.0.5606, Stillstandmodul hungapp, Version 0.0.0.0, Stillstandadresse 0x00000000.

Error: (05/16/2015 10:12:31 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Stillstehende Anwendung firefox.exe, Version 38.0.0.5606, Stillstandmodul hungapp, Version 0.0.0.0, Stillstandadresse 0x00000000.

Error: (05/16/2015 10:12:25 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Stillstehende Anwendung firefox.exe, Version 38.0.0.5606, Stillstandmodul hungapp, Version 0.0.0.0, Stillstandadresse 0x00000000.

Error: (05/16/2015 10:12:20 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Stillstehende Anwendung firefox.exe, Version 38.0.0.5606, Stillstandmodul hungapp, Version 0.0.0.0, Stillstandadresse 0x00000000.

Error: (05/16/2015 10:11:52 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Stillstehende Anwendung firefox.exe, Version 38.0.0.5606, Stillstandmodul hungapp, Version 0.0.0.0, Stillstandadresse 0x00000000.

Error: (05/16/2015 10:11:50 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Stillstehende Anwendung firefox.exe, Version 38.0.0.5606, Stillstandmodul hungapp, Version 0.0.0.0, Stillstandadresse 0x00000000.


System errors:
=============
Error: (05/22/2015 09:30:13 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Windows Media Player-Netzwerkfreigabedienst" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 30000 Millisekunden durchgeführt: Starten Sie den Dienst neu..

Error: (05/22/2015 09:30:13 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "Message Queuing Triggers" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.

Error: (05/22/2015 09:30:13 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "hpqwmiex" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.

Error: (05/22/2015 09:30:13 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Avira Service Host" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000 Millisekunden durchgeführt: Starten Sie den Dienst neu..

Error: (05/22/2015 09:30:13 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "Message Queuing" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.

Error: (05/22/2015 09:30:13 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Bluetooth Service" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 60000 Millisekunden durchgeführt: Starten Sie den Dienst neu..

Error: (05/22/2015 09:30:13 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "LightScribeService Direct Disc Labeling Service" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.

Error: (05/22/2015 09:30:12 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "Smartcard" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.

Error: (05/22/2015 09:30:12 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "Druckwarteschlange" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.

Error: (05/22/2015 09:24:31 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Windows Presentation Foundation Font Cache 4.0.0.0" wurde unerwartet beendet. Dies ist bereits 2 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 0 Millisekunden durchgeführt: Starten Sie den Dienst neu..


Microsoft Office Sessions:
=========================
Error: (05/18/2015 10:08:28 PM) (Source: $(ProductName) Service Host) (EventID: 0) (User: )
Description: Fehler beim Verarbeiten von Sitzungsänderung. System.ComponentModel.Win32Exception (0x80004005): Key (Users\S-1-5-21-1310988380-3352743311-3678797310-1006\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall) could not be opened Error: 87, Hive: Users, Key: S-1-5-21-1310988380-3352743311-3678797310-1006\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall
   bei Avira.OE.WinCore.Utility.RegistryValueWatcher.CheckResultAndThrowWin32Exception(Int32 result, String message)
   bei Avira.OE.WinCore.Utility.RegistryValueWatcher.OpenRegKey()
   bei Avira.OE.WinCore.Utility.RegistryValueWatcher.Start()
   bei Avira.OE.ServiceHost.AppInfoRepositoryFactory.CreateRegistryAppInfoRepository(RegistryHive registryHive, String registryPath, RegistryView registryView)
   bei Avira.OE.ServiceHost.DesktopApplications.UpdateUserAppInfoRepository(String userSid)
   bei Avira.OE.ServiceHost.DesktopApplications.UpdateOnNewUserSid(String userSid)
   bei Avira.OE.ServiceHost.DesktopApplications.OnSessionChange(Int32 sessionId, SessionChangeReason reason)
   bei Avira.OE...

Error: (05/18/2015 08:40:48 PM) (Source: MsiInstaller) (EventID: 10005) (User: HP-LAPTOP)
Description: Product: EMET 5.2 -- This setup requires the .NET Framework version v4.0.  Please install the .NET Framework and run this setup again.(NULL)(NULL)(NULL)(NULL)

Error: (05/16/2015 10:12:57 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: firefox.exe38.0.0.5606hungapp0.0.0.000000000

Error: (05/16/2015 10:12:57 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: firefox.exe38.0.0.5606hungapp0.0.0.000000000

Error: (05/16/2015 10:12:57 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: firefox.exe38.0.0.5606hungapp0.0.0.000000000

Error: (05/16/2015 10:12:31 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: firefox.exe38.0.0.5606hungapp0.0.0.000000000

Error: (05/16/2015 10:12:25 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: firefox.exe38.0.0.5606hungapp0.0.0.000000000

Error: (05/16/2015 10:12:20 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: firefox.exe38.0.0.5606hungapp0.0.0.000000000

Error: (05/16/2015 10:11:52 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: firefox.exe38.0.0.5606hungapp0.0.0.000000000

Error: (05/16/2015 10:11:50 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: firefox.exe38.0.0.5606hungapp0.0.0.000000000


==================== Memory info =========================== 

Processor: Intel(R) Core(TM)2 CPU T5500 @ 1.66GHz
Percentage of memory in use: 34%
Total physical RAM: 1015.36 MB
Available physical RAM: 665.95 MB
Total Pagefile: 2441.46 MB
Available Pagefile: 1937.43 MB
Total Virtual: 2047.88 MB
Available Virtual: 1947.91 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:67.14 GB) (Free:45.57 GB) NTFS ==>[Drive with boot components (Windows XP)]
Drive d: (HP_RECOVERY) (Fixed) (Total:7.38 GB) (Free:0.57 GB) NTFS ==>[Drive with boot components (Windows XP)]
Drive f: () (Removable) (Total:0.94 GB) (Free:0.86 GB) FAT

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 74.5 GB) (Disk ID: B0C9B0C9)
Partition 1: (Active) - (Size=67.1 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=7.4 GB) - (Type=07 NTFS)

========================================================
Disk: 1 (Size: 964 MB) (Disk ID: 91F72D24)
Partition 1: (Not Active) - (Size=964 MB) - (Type=06)

==================== End Of Log ============================
FRST.txt - Teil 1:
Code:
ATTFilter
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 19-05-2015
Ran by Martina (administrator) on HP-LAPTOP on 22-05-2015 21:38:48
Running from C:\Dokumente und Einstellungen\Martina\Desktop
Loaded Profiles: Martina (Available profiles: Martina & Martina_2 & Administrator)
Platform: Microsoft Windows XP Professional Service Pack 3 (X86) OS Language: Deutsch (Deutschland)
Internet Explorer Version 8 (Default browser: IE)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Avira Operations GmbH & Co. KG) C:\Programme\Avira\Antivirus\sched.exe
(Avira Operations GmbH & Co. KG) C:\Programme\Avira\Antivirus\avguard.exe
(Sonic Solutions) C:\WINDOWS\system32\DLA\DLACTRLW.EXE
(Intel Corporation) C:\WINDOWS\system32\hkcmd.exe
(Avira Operations GmbH & Co. KG) C:\Programme\Avira\Antivirus\avgnt.exe
(Piriform Ltd) C:\Programme\CCleaner\CCleaner.exe
() C:\PROGRA~1\HPQ\Shared\HPQTOA~1.EXE
(Avira Operations GmbH & Co. KG) C:\Programme\Avira\Antivirus\avshadow.exe
(Microsoft Corporation) C:\WINDOWS\system32\wscntfy.exe
(Avira Operations GmbH & Co. KG) C:\Programme\Avira\Launcher\Avira.ServiceHost.exe
(Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
(Microsoft Corporation) C:\Programme\Windows Media Player\wmpnetwk.exe
(Broadcom Corporation.) C:\Programme\WIDCOMM\Bluetooth Software\bin\btwdins.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [MsmqIntCert] => regsvr32 /s mqrt.dll
HKLM\...\Run: [SoundMAXPnP] => C:\Programme\Analog Devices\Core\smax4pnp.exe [925696 2005-05-20] (Analog Devices, Inc.)
HKLM\...\Run: [SunJavaUpdateSched] => C:\Programme\Java\jre1.5.0_06\bin\jusched.exe [36975 2005-11-10] (Sun Microsystems, Inc.)
HKLM\...\Run: [PTHOSTTR] => C:\Programme\HPQ\HP ProtectTools Security Manager\PTHOSTTR.EXE [122880 2006-02-14] (Hewlett-Packard Development Company, L.P.)
HKLM\...\Run: [HP Software Update] => C:\Programme\Hp\HP Software Update\HPWuSchd2.exe [49152 2005-02-16] (Hewlett-Packard Co.)
HKLM\...\Run: [DLA] => C:\WINDOWS\System32\DLA\DLACTRLW.EXE [122940 2005-08-31] (Sonic Solutions)
HKLM\...\Run: [SynTPEnh] => C:\Programme\Synaptics\SynTP\SynTPEnh.exe [761948 2006-03-03] (Synaptics, Inc.)
HKLM\...\Run: [igfxhkcmd] => C:\WINDOWS\system32\hkcmd.exe [77824 2006-03-23] (Intel Corporation)
HKLM\...\Run: [igfxpers] => C:\WINDOWS\system32\igfxpers.exe [118784 2006-03-23] (Intel Corporation)
HKLM\...\Run: [hpWirelessAssistant] => C:\Programme\hpq\HP Wireless Assistant\HP Wireless Assistant.exe [454656 2006-02-14] (Hewlett-Packard Development Company, L.P.)
HKLM\...\Run: [CognizanceTS] => rundll32.exe C:\PROGRA~1\HPQ\IAM\Bin\AsTsVcc.dll,RegisterModule
HKLM\...\Run: [QlbCtrl] => C:\Programme\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe [131072 2006-05-08] ( Hewlett-Packard Development Company, L.P.)
HKLM\...\Run: [Cpqset] => C:\Programme\HPQ\Default Settings\cpqset.exe [172094 2006-01-26] ()
HKLM\...\Run: [Recguard] => C:\WINDOWS\Sminst\Recguard.exe [1187840 2005-12-20] ()
HKLM\...\Run: [Reminder] => C:\WINDOWS\Creator\Remind_XP.exe [806912 2006-03-09] ()
HKLM\...\Run: [Scheduler] => C:\WINDOWS\SMINST\Scheduler.exe [892928 2006-02-15] ()
HKLM\...\Run: [WatchDog] => C:\Programme\InterVideo\DVD Check\DVDCheck.exe [184320 2005-11-08] (InterVideo Inc.)
HKLM\...\Run: [Avira Systray] => C:\Programme\Avira\Launcher\Avira.OE.Systray.exe [128760 2015-05-07] (Avira Operations GmbH & Co. KG)
HKLM\...\Run: [ISUSPM Startup] => C:\Programme\Gemeinsame Dateien\InstallShield\UpdateService\ISUSPM.exe [221184 2004-07-27] (InstallShield Software Corporation)
HKLM\...\Run: [ISUSScheduler] => C:\Programme\Gemeinsame Dateien\InstallShield\UpdateService\issch.exe [81920 2004-07-27] (InstallShield Software Corporation)
HKLM\...\Run: [avgnt] => C:\Programme\Avira\Antivirus\avgnt.exe [728312 2015-04-16] (Avira Operations GmbH & Co. KG)
HKLM\...\Run: [Adobe ARM] => C:\Programme\Gemeinsame Dateien\Adobe\ARM\1.0\AdobeARM.exe [959904 2014-05-08] (Adobe Systems Incorporated)
Winlogon\Notify\OneCard: C:\Programme\HPQ\IAM\Bin\AsWlnPkg.dll [2005-07-25] (Cognizance Corporation)
HKU\S-1-5-21-1310988380-3352743311-3678797310-1005\...\Run: [CCleaner Monitoring] => C:\Programme\CCleaner\CCleaner.exe [6278424 2015-04-23] (Piriform Ltd)
Startup: C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Autostart\BTTray.lnk [2015-05-14]
ShortcutTarget: BTTray.lnk -> C:\Programme\WIDCOMM\Bluetooth Software\BTTray.exe (Broadcom Corporation.)
Startup: C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Autostart\DVD Check.lnk [2015-05-14]
ShortcutTarget: DVD Check.lnk -> C:\Programme\InterVideo\DVD Check\DVDCheck.exe (InterVideo Inc.)
ShellIconOverlayIdentifiers: [Dokument-Manager] -> {666C7833-A9B6-4AB4-94ED-DC238C81E925} => C:\Programme\HPQ\IAM\Bin\SFSShell.dll [2005-06-16] (Cognizance Corporation)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKU\S-1-5-21-1310988380-3352743311-3678797310-1005\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=msnhome
HKU\S-1-5-21-1310988380-3352743311-3678797310-1005\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.com/
HKU\S-1-5-21-1310988380-3352743311-3678797310-1005\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
BHO: DriveLetterAccess -> {5CA3D70E-1895-11CF-8E15-001234567890} -> C:\WINDOWS\System32\DLA\DLASHX_W.DLL [2005-08-31] (Sonic Solutions)
BHO: SSVHelper Class -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Programme\Java\jre1.5.0_06\bin\ssv.dll [2005-11-10] (Sun Microsystems, Inc.)
BHO: HP Credential Manager for ProtectTools -> {DF21F1DB-80C6-11D3-9483-B03D0EC10000} -> C:\Programme\HPQ\IAM\Bin\ItIeAddIN.dll [2005-03-03] (Infineon Technologies AG)
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.5.0/jinstall-1_5_0_06-windows-i586.cab
DPF: {CAFEEFAC-0015-0000-0006-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.5.0/jinstall-1_5_0_06-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.5.0/jinstall-1_5_0_06-windows-i586.cab
Handler: http\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\SYSTEM\OLE DB\msdaipp.dll [2005-09-20] (Microsoft Corporation)
Handler: http\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\SYSTEM\OLE DB\msdaipp.dll [2005-09-20] (Microsoft Corporation)
Handler: https\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\SYSTEM\OLE DB\msdaipp.dll [2005-09-20] (Microsoft Corporation)
Handler: https\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\SYSTEM\OLE DB\msdaipp.dll [2005-09-20] (Microsoft Corporation)
Handler: ipp\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\SYSTEM\OLE DB\msdaipp.dll [2005-09-20] (Microsoft Corporation)
Handler: msdaipp\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\SYSTEM\OLE DB\msdaipp.dll [2005-09-20] (Microsoft Corporation)
Handler: msdaipp\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\SYSTEM\OLE DB\msdaipp.dll [2005-09-20] (Microsoft Corporation)
Filter: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\WINDOWS\system32\urlmon.dll [2014-03-06] (Microsoft Corporation)
Filter: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\WINDOWS\system32\urlmon.dll [2014-03-06] (Microsoft Corporation)

FireFox:
========
FF ProfilePath: C:\Dokumente und Einstellungen\Martina\Anwendungsdaten\Mozilla\Firefox\Profiles\8uk32wj9.default
FF Homepage: www.google.de
FF Plugin: @google.com/npPicasa3,version=3.0.0 -> C:\Programme\Google\Picasa3\npPicasa3.dll [2015-02-13] (Google, Inc.)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Programme\Microsoft Silverlight\5.1.30214.0\npctrl.dll [2014-02-13] ( Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=2.2.1 -> C:\Programme\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin: Adobe Reader -> C:\Programme\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2014-08-05] (Adobe Systems Inc.)
FF Extension: Avira Browser Safety - C:\Dokumente und Einstellungen\Martina\Anwendungsdaten\Mozilla\Firefox\Profiles\8uk32wj9.default\Extensions\abs@avira.com [2015-05-16]

Chrome: 
=======
CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - https://clients2.google.com/service/update2/crx

========================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

S4 Alerter; C:\WINDOWS\system32\alrsvc.dll [17408 2008-04-14] (Microsoft Corporation) [File not signed]
R3 ALG; C:\WINDOWS\System32\alg.exe [44544 2008-04-14] (Microsoft Corporation) [File not signed]
S2 AntiVirMailService; C:\Programme\Avira\Antivirus\avmailc.exe [825856 2015-04-16] (Avira Operations GmbH & Co. KG)
R2 AntiVirSchedulerService; C:\Programme\Avira\Antivirus\sched.exe [434424 2015-04-16] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Programme\Avira\Antivirus\avguard.exe [434424 2015-04-16] (Avira Operations GmbH & Co. KG)
S2 AntiVirWebService; C:\Programme\Avira\Antivirus\AVWEBGRD.EXE [1186040 2015-04-16] (Avira Operations GmbH & Co. KG)
S3 AppMgmt; C:\WINDOWS\System32\appmgmts.dll [175616 2008-04-14] (Microsoft Corporation) [File not signed]
R2 ASChannel; C:\Programme\HPQ\IAM\Bin\ASChnl.dll [117248 2005-06-01] (Cognizance Corporation) [File not signed]
R2 AudioSrv; C:\WINDOWS\System32\audiosrv.dll [42496 2008-04-14] (Microsoft Corporation) [File not signed]
R2 Avira.OE.ServiceHost; C:\Programme\Avira\Launcher\Avira.ServiceHost.exe [206584 2015-05-07] (Avira Operations GmbH & Co. KG)
S3 BITS; C:\WINDOWS\system32\qmgr.dll [409088 2008-04-14] (Microsoft Corporation) [File not signed]
R2 btwdins; C:\Programme\WIDCOMM\Bluetooth Software\bin\btwdins.exe [258103 2006-01-18] (Broadcom Corporation.) [File not signed]
S3 CiSvc; C:\WINDOWS\system32\cisvc.exe [5632 2008-04-14] (Microsoft Corporation) [File not signed]
S3 ClipSrv; C:\WINDOWS\system32\clipsrv.exe [33280 2008-04-14] (Microsoft Corporation) [File not signed]
R2 CryptSvc; C:\WINDOWS\System32\cryptsvc.dll [62464 2008-04-14] (Microsoft Corporation) [File not signed]
R2 Dhcp; C:\WINDOWS\System32\dhcpcsvc.dll [127488 2008-04-14] (Microsoft Corporation) [File not signed]
S3 dmadmin; C:\WINDOWS\System32\dmadmin.exe [225280 2008-04-14] (Microsoft Corp., Veritas Software) [File not signed]
R2 dmserver; C:\WINDOWS\System32\dmserver.dll [24064 2008-04-14] (Microsoft Corp.) [File not signed]
S3 Dot3svc; C:\WINDOWS\System32\dot3svc.dll [133120 2008-04-14] (Microsoft Corporation) [File not signed]
S3 EapHost; C:\WINDOWS\System32\eapsvc.dll [33792 2008-04-14] (Microsoft Corporation) [File not signed]
R2 ERSvc; C:\WINDOWS\System32\ersvc.dll [23040 2008-04-14] (Microsoft Corporation) [File not signed]
S3 gusvc; C:\Programme\Google\Common\Google Updater\GoogleUpdaterService.exe [136120 2015-02-13] (Google)
R2 helpsvc; C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll [38400 2008-04-14] (Microsoft Corporation) [File not signed]
S3 hkmsvc; C:\WINDOWS\System32\kmsvc.dll [61440 2008-04-14] (Microsoft Corporation) [File not signed]
S2 hpqwmiex; C:\Programme\Hewlett-Packard\Shared\hpqwmiex.exe [135168 2006-05-02] (Hewlett-Packard Development Company, L.P.) [File not signed]
R3 HTTPFilter; C:\WINDOWS\System32\w3ssl.dll [15872 2008-04-14] (Microsoft Corporation) [File not signed]
S3 IDriverT; C:\Programme\Gemeinsame Dateien\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [File not signed]
S3 ImapiService; C:\WINDOWS\system32\imapi.exe [150528 2008-04-14] (Microsoft Corporation) [File not signed]
S2 LightScribeService; C:\Programme\Gemeinsame Dateien\LightScribe\LSSrvc.exe [49152 2006-06-20] (Hewlett-Packard Company) [File not signed]
R2 LmHosts; C:\WINDOWS\System32\lmhsvc.dll [13824 2008-04-14] (Microsoft Corporation) [File not signed]
S2 MBAMService; C:\Programme\ Malwarebytes Anti-Malware \mbamservice.exe [1080120 2015-04-14] (Malwarebytes Corporation)
S4 Messenger; C:\WINDOWS\System32\msgsvc.dll [33792 2008-04-14] (Microsoft Corporation) [File not signed]
S3 mnmsrvc; C:\WINDOWS\system32\mnmsrvc.exe [32768 2008-04-14] (Microsoft Corporation) [File not signed]
S3 MozillaMaintenance; C:\Programme\Mozilla Maintenance Service\maintenanceservice.exe [148080 2015-05-16] (Mozilla Foundation)
R3 MSDTC; C:\WINDOWS\system32\msdtc.exe [6144 2008-04-14] (Microsoft Corporation) [File not signed]
S2 MSMQ; C:\WINDOWS\system32\mqsvc.exe [4608 2008-04-14] (Microsoft Corporation) [File not signed]
S2 MSMQTriggers; C:\WINDOWS\system32\mqtgsvc.exe [117248 2008-04-14] (Microsoft Corporation) [File not signed]
S3 napagent; C:\WINDOWS\System32\qagentrt.dll [294400 2008-04-14] (Microsoft Corporation) [File not signed]
S4 NetDDE; C:\WINDOWS\system32\netdde.exe [114176 2008-04-14] (Microsoft Corporation) [File not signed]
S4 NetDDEdsdm; C:\WINDOWS\system32\netdde.exe [114176 2008-04-14] (Microsoft Corporation) [File not signed]
S3 Netlogon; C:\WINDOWS\system32\lsass.exe [13312 2008-04-14] (Microsoft Corporation) [File not signed]
R3 Netman; C:\WINDOWS\System32\netman.dll [198144 2008-04-14] (Microsoft Corporation) [File not signed]
R3 NtLmSsp; C:\WINDOWS\system32\lsass.exe [13312 2008-04-14] (Microsoft Corporation) [File not signed]
S3 NtmsSvc; C:\WINDOWS\system32\ntmssvc.dll [438272 2008-04-14] (Microsoft Corporation) [File not signed]
S3 ose; C:\Programme\Gemeinsame Dateien\Microsoft Shared\Source Engine\OSE.EXE [89136 2003-07-28] (Microsoft Corporation)
S2 PCA; C:\WINDOWS\SMINST\PCAngel.exe [294912 2006-01-12] (SoftThinks) [File not signed]
R2 PolicyAgent; C:\WINDOWS\system32\lsass.exe [13312 2008-04-14] (Microsoft Corporation) [File not signed]
R2 ProtectedStorage; C:\WINDOWS\system32\lsass.exe [13312 2008-04-14] (Microsoft Corporation) [File not signed]
S3 RasAuto; C:\WINDOWS\System32\rasauto.dll [88576 2008-04-14] (Microsoft Corporation) [File not signed]
R3 RasMan; C:\WINDOWS\System32\rasmans.dll [186368 2008-04-14] (Microsoft Corporation) [File not signed]
S3 RDSessMgr; C:\WINDOWS\system32\sessmgr.exe [143360 2008-04-14] (Microsoft Corporation) [File not signed]
S4 RemoteAccess; C:\WINDOWS\System32\mprdim.dll [53248 2008-04-14] (Microsoft Corporation) [File not signed]
R2 RemoteRegistry; C:\WINDOWS\system32\regsvc.dll [59904 2008-04-14] (Microsoft Corporation) [File not signed]
S3 RpcLocator; C:\WINDOWS\system32\locator.exe [75264 2008-04-14] (Microsoft Corporation) [File not signed]
S3 RSVP; C:\WINDOWS\system32\rsvp.exe [132608 2004-08-04] (Microsoft Corporation) [File not signed]
R2 SamSs; C:\WINDOWS\system32\lsass.exe [13312 2008-04-14] (Microsoft Corporation) [File not signed]
S2 SCardSvr; C:\WINDOWS\System32\SCardSvr.exe [99840 2008-04-14] (Microsoft Corporation) [File not signed]
R2 Schedule; C:\WINDOWS\system32\schedsvc.dll [193536 2008-04-14] (Microsoft Corporation) [File not signed]
R2 seclogon; C:\WINDOWS\System32\seclogon.dll [18944 2008-04-14] (Microsoft Corporation) [File not signed]
R2 SENS; C:\WINDOWS\system32\sens.dll [39424 2008-04-14] (Microsoft Corporation) [File not signed]
R2 SharedAccess; C:\WINDOWS\System32\ipnathlp.dll [334336 2008-04-14] (Microsoft Corporation) [File not signed]
R2 srservice; C:\WINDOWS\system32\srsvc.dll [171520 2008-04-14] (Microsoft Corporation) [File not signed]
R3 SSDPSRV; C:\WINDOWS\System32\ssdpsrv.dll [71680 2008-04-14] (Microsoft Corporation) [File not signed]
S3 stisvc; C:\WINDOWS\system32\wiaservc.dll [334336 2008-04-14] (Microsoft Corporation) [File not signed]
S3 SysmonLog; C:\WINDOWS\system32\smlogsvc.exe [94208 2008-04-14] (Microsoft Corporation) [File not signed]
R3 TapiSrv; C:\WINDOWS\System32\tapisrv.dll [249856 2008-04-14] (Microsoft Corporation) [File not signed]
R3 TermService; C:\WINDOWS\System32\termsrv.dll [297472 2008-04-14] (Microsoft Corporation) [File not signed]
S3 TlntSvr; C:\WINDOWS\system32\tlntsvr.exe [75264 2008-04-14] (Microsoft Corporation) [File not signed]
R2 TrkWks; C:\WINDOWS\system32\trkwks.dll [90112 2008-04-14] (Microsoft Corporation) [File not signed]
R3 upnphost; C:\WINDOWS\System32\upnphost.dll [186880 2008-04-14] (Microsoft Corporation) [File not signed]
S3 UPS; C:\WINDOWS\System32\ups.exe [18432 2008-04-14] (Microsoft Corporation) [File not signed]
S3 VSS; C:\WINDOWS\System32\vssvc.exe [292864 2008-04-14] (Microsoft Corporation) [File not signed]
R2 W32Time; C:\WINDOWS\system32\w32time.dll [177152 2008-04-14] (Microsoft Corporation) [File not signed]
U2 WebClient; C:\WINDOWS\System32\webclnt.dll [68096 2008-04-14] (Microsoft Corporation) [File not signed]
R2 winmgmt; C:\WINDOWS\system32\wbem\WMIsvc.dll [145408 2008-04-14] (Microsoft Corporation) [File not signed]
S3 WmiApSrv; C:\WINDOWS\system32\wbem\wmiapsrv.exe [126464 2008-04-14] (Microsoft Corporation) [File not signed]
R2 WMPNetworkSvc; C:\Programme\Windows Media Player\WMPNetwk.exe [920576 2009-02-04] (Microsoft Corporation)
R2 wscsvc; C:\WINDOWS\system32\wscsvc.dll [80896 2008-04-14] (Microsoft Corporation) [File not signed]
R2 wuauserv; C:\WINDOWS\system32\wuauserv.dll [6656 2008-04-14] (Microsoft Corporation) [File not signed]
R2 WZCSVC; C:\WINDOWS\System32\wzcsvc.dll [483840 2008-04-14] (Microsoft Corporation) [File not signed]
S3 xmlprov; C:\WINDOWS\System32\xmlprov.dll [129024 2008-04-14] (Microsoft Corporation) [File not signed]

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R0 ACPI; C:\WINDOWS\System32\DRIVERS\ACPI.sys [188800 2008-04-14] (Microsoft Corporation) [File not signed]
R0 ACPIEC; C:\WINDOWS\System32\DRIVERS\ACPIEC.sys [12160 2004-08-04] (Microsoft Corporation) [File not signed]
R3 ADIHdAudAddService; C:\WINDOWS\System32\drivers\ADIHdAud.sys [176128 2006-02-28] (Analog Devices, Inc.) [File not signed]
R3 AEAudioService; C:\WINDOWS\System32\drivers\AEAudio.sys [152960 2005-06-07] (Andrea Electronics Corporation) [File not signed]
S3 aec; C:\WINDOWS\System32\drivers\aec.sys [142592 2008-04-13] (Microsoft Corporation) [File not signed]
R3 AgereSoftModem; C:\WINDOWS\System32\DRIVERS\AGRSM.sys [1155584 2006-07-31] (Agere Systems) [File not signed]
R0 AliIde; C:\WINDOWS\System32\DRIVERS\aliide.sys [5248 2001-08-17] (Acer Laboratories Inc.) [File not signed]
R3 Arp1394; C:\WINDOWS\System32\DRIVERS\arp1394.sys [60800 2008-04-14] (Microsoft Corporation) [File not signed]
S3 AsyncMac; C:\WINDOWS\System32\DRIVERS\asyncmac.sys [14336 2008-04-14] (Microsoft Corporation) [File not signed]
R0 atapi; C:\WINDOWS\System32\DRIVERS\atapi.sys [96512 2008-04-14] (Microsoft Corporation) [File not signed]
S3 Atmarpc; C:\WINDOWS\System32\DRIVERS\atmarpc.sys [59904 2008-04-14] (Microsoft Corporation) [File not signed]
S3 ATSWPDRV; C:\WINDOWS\System32\DRIVERS\ATSwpDrv.sys [130432 2006-03-30] (AuthenTec, Inc.) [File not signed]
R3 audstub; C:\WINDOWS\System32\DRIVERS\audstub.sys [3072 2001-08-17] (Microsoft Corporation) [File not signed]
R2 avgntflt; C:\WINDOWS\System32\DRIVERS\avgntflt.sys [107400 2015-04-16] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\WINDOWS\System32\DRIVERS\avipbb.sys [136216 2015-04-16] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\WINDOWS\System32\DRIVERS\avkmgr.sys [37896 2015-04-16] (Avira Operations GmbH & Co. KG)
S3 b57w2k; C:\WINDOWS\System32\DRIVERS\b57xp32.sys [142720 2006-02-09] (Broadcom Corporation) [File not signed]
R3 bcm4sbxp; C:\WINDOWS\System32\DRIVERS\bcm4sbxp.sys [45312 2006-02-09] (Broadcom Corporation) [File not signed]
R1 Beep; C:\WINDOWS\system32\Drivers\Beep.sys [4224 2004-08-04] (Microsoft Corporation) [File not signed]
R3 BTKRNL; C:\WINDOWS\System32\DRIVERS\btkrnl.sys [1342570 2006-01-18] (Broadcom Corporation.) [File not signed]
S3 BTWUSB; C:\WINDOWS\System32\Drivers\btwusb.sys [57096 2006-01-19] (Broadcom Corporation.) [File not signed]
S1 Cdaudio; C:\WINDOWS\system32\Drivers\Cdaudio.sys [18688 2004-08-04] (Microsoft Corporation) [File not signed]
R4 Cdfs; C:\WINDOWS\system32\Drivers\Cdfs.sys [63744 2008-04-14] (Microsoft Corporation) [File not signed]
R1 Cdrom; C:\WINDOWS\System32\DRIVERS\cdrom.sys [62976 2008-04-14] (Microsoft Corporation) [File not signed]
R3 CmBatt; C:\WINDOWS\System32\DRIVERS\CmBatt.sys [13952 2008-04-14] (Microsoft Corporation) [File not signed]
R0 Compbatt; C:\WINDOWS\System32\DRIVERS\compbatt.sys [10240 2008-04-14] (Microsoft Corporation) [File not signed]
R0 Disk; C:\WINDOWS\System32\DRIVERS\disk.sys [36352 2008-04-14] (Microsoft Corporation) [File not signed]
R2 DLABOIOM; C:\WINDOWS\System32\DLA\DLABOIOM.SYS [25628 2005-08-31] (Sonic Solutions) [File not signed]
R1 DLACDBHM; C:\WINDOWS\System32\Drivers\DLACDBHM.SYS [5628 2005-08-25] (Sonic Solutions) [File not signed]
R2 DLADResN; C:\WINDOWS\System32\DLA\DLADResN.SYS [2496 2005-08-31] (Sonic Solutions) [File not signed]
R2 DLAIFS_M; C:\WINDOWS\System32\DLA\DLAIFS_M.SYS [86524 2005-08-31] (Sonic Solutions) [File not signed]
R2 DLAOPIOM; C:\WINDOWS\System32\DLA\DLAOPIOM.SYS [14684 2005-08-31] (Sonic Solutions) [File not signed]
R2 DLAPoolM; C:\WINDOWS\System32\DLA\DLAPoolM.SYS [6364 2005-08-31] (Sonic Solutions) [File not signed]
R1 DLARTL_N; C:\WINDOWS\System32\Drivers\DLARTL_N.SYS [22684 2005-08-25] (Sonic Solutions) [File not signed]
R2 DLAUDFAM; C:\WINDOWS\System32\DLA\DLAUDFAM.SYS [94332 2005-08-31] (Sonic Solutions) [File not signed]
R2 DLAUDF_M; C:\WINDOWS\System32\DLA\DLAUDF_M.SYS [87036 2005-08-31] (Sonic Solutions) [File not signed]
S4 dmboot; C:\WINDOWS\System32\drivers\dmboot.sys [800384 2008-04-14] (Microsoft Corp., Veritas Software) [File not signed]
R0 dmio; C:\WINDOWS\System32\drivers\dmio.sys [154112 2008-04-14] (Microsoft Corp., Veritas Software) [File not signed]
R0 dmload; C:\WINDOWS\System32\drivers\dmload.sys [5888 2004-08-04] (Microsoft Corp., Veritas Software.) [File not signed]
S3 DMusic; C:\WINDOWS\System32\drivers\DMusic.sys [52864 2008-04-14] (Microsoft Corporation) [File not signed]
S3 drmkaud; C:\WINDOWS\System32\drivers\drmkaud.sys [2944 2008-04-14] (Microsoft Corporation) [File not signed]
R0 DRVMCDB; C:\WINDOWS\System32\Drivers\DRVMCDB.SYS [88752 2005-08-30] (Sonic Solutions) [File not signed]
R2 DRVNDDM; C:\WINDOWS\System32\Drivers\DRVNDDM.SYS [40544 2005-08-12] (Sonic Solutions) [File not signed]
R1 eabfiltr; C:\WINDOWS\System32\DRIVERS\eabfiltr.sys [7808 2005-09-19] (Hewlett-Packard Development Company, L.P.) [File not signed]
S3 eabusb; C:\WINDOWS\System32\DRIVERS\eabusb.sys [5760 2005-09-19] (Hewlett-Packard Development Company, L.P.) [File not signed]
R4 Fastfat; C:\WINDOWS\system32\Drivers\Fastfat.sys [143744 2008-04-14] (Microsoft Corporation) [File not signed]
S3 Fdc; C:\WINDOWS\System32\DRIVERS\fdc.sys [27392 2008-04-14] (Microsoft Corporation) [File not signed]
R1 Fips; C:\WINDOWS\system32\Drivers\Fips.sys [44672 2008-04-14] (Microsoft Corporation) [File not signed]
S3 Flpydisk; C:\WINDOWS\System32\DRIVERS\flpydisk.sys [20480 2008-04-14] (Microsoft Corporation) [File not signed]
R0 FltMgr; C:\WINDOWS\System32\drivers\fltmgr.sys [129792 2008-04-14] (Microsoft Corporation) [File not signed]
U1 Fs_Rec; C:\WINDOWS\system32\Drivers\Fs_Rec.sys [7936 2004-08-04] (Microsoft Corporation) [File not signed]
R0 Ftdisk; C:\WINDOWS\System32\DRIVERS\ftdisk.sys [126336 2004-08-04] (Microsoft Corporation) [File not signed]
R3 Gpc; C:\WINDOWS\System32\DRIVERS\msgpc.sys [35072 2008-04-14] (Microsoft Corporation) [File not signed]
R3 HBtnKey; C:\WINDOWS\System32\DRIVERS\cpqbttn.sys [9344 2005-09-19] (Hewlett-Packard Development Company, L.P.) [File not signed]
R3 HDAudBus; C:\WINDOWS\System32\DRIVERS\HDAudBus.sys [144384 2008-04-13] (Windows (R) Server 2003 DDK provider) [File not signed]
R1 HWiNFO32; C:\WINDOWS\system32\drivers\HWiNFO32.SYS [23840 2015-05-15] (REALiX(tm))
R1 i8042prt; C:\WINDOWS\System32\DRIVERS\i8042prt.sys [52992 2008-04-14] (Microsoft Corporation) [File not signed]
R3 ialm; C:\WINDOWS\System32\DRIVERS\ialmnt5.sys [1166972 2006-03-23] (Intel Corporation) [File not signed]
R0 iaStor; C:\WINDOWS\System32\DRIVERS\iaStor.sys [874240 2005-10-12] (Intel Corporation) [File not signed]
R1 Imapi; C:\WINDOWS\System32\DRIVERS\imapi.sys [42112 2008-04-14] (Microsoft Corporation) [File not signed]
R0 IntelIde; C:\WINDOWS\System32\DRIVERS\intelide.sys [5504 2008-04-14] (Microsoft Corporation) [File not signed]
R1 intelppm; C:\WINDOWS\System32\DRIVERS\intelppm.sys [40448 2008-04-14] (Microsoft Corporation) [File not signed]
S3 Ip6Fw; C:\WINDOWS\System32\drivers\ip6fw.sys [36608 2008-04-14] (Microsoft Corporation) [File not signed]
S3 IpFilterDriver; C:\WINDOWS\System32\DRIVERS\ipfltdrv.sys [32896 2004-08-04] (Microsoft Corporation) [File not signed]
S3 IpInIp; C:\WINDOWS\System32\DRIVERS\ipinip.sys [20864 2008-04-14] (Microsoft Corporation) [File not signed]
R3 IpNat; C:\WINDOWS\System32\DRIVERS\ipnat.sys [152832 2008-04-14] (Microsoft Corporation) [File not signed]
R1 IPSec; C:\WINDOWS\System32\DRIVERS\ipsec.sys [75264 2008-04-14] (Microsoft Corporation) [File not signed]
S3 IRENUM; C:\WINDOWS\System32\DRIVERS\irenum.sys [11264 2008-04-14] (Microsoft Corporation) [File not signed]
R0 isapnp; C:\WINDOWS\System32\DRIVERS\isapnp.sys [37632 2008-04-14] (Microsoft Corporation) [File not signed]
R1 Kbdclass; C:\WINDOWS\System32\DRIVERS\kbdclass.sys [25216 2008-04-14] (Microsoft Corporation) [File not signed]
R1 kbdhid; C:\WINDOWS\System32\DRIVERS\kbdhid.sys [14720 2008-04-14] (Microsoft Corporation) [File not signed]
R3 kmixer; C:\WINDOWS\System32\drivers\kmixer.sys [172416 2008-04-14] (Microsoft Corporation) [File not signed]
R3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [23256 2015-04-14] (Malwarebytes Corporation)
R1 mnmdd; C:\WINDOWS\system32\Drivers\mnmdd.sys [4224 2004-08-04] (Microsoft Corporation) [File not signed]
R3 Modem; C:\WINDOWS\system32\Drivers\Modem.sys [30336 2008-04-14] (Microsoft Corporation) [File not signed]
R1 Mouclass; C:\WINDOWS\System32\DRIVERS\mouclass.sys [23552 2008-04-14] (Microsoft Corporation) [File not signed]
R0 MountMgr; C:\WINDOWS\system32\Drivers\MountMgr.sys [42368 2008-04-14] (Microsoft Corporation) [File not signed]
R3 MQAC; C:\WINDOWS\system32\drivers\mqac.sys [92544 2008-04-14] (Microsoft Corporation) [File not signed]
R3 MRxDAV; C:\WINDOWS\System32\DRIVERS\mrxdav.sys [180608 2008-04-14] (Microsoft Corporation) [File not signed]
S3 MSKSSRV; C:\WINDOWS\System32\drivers\MSKSSRV.sys [7552 2008-04-14] (Microsoft Corporation) [File not signed]
S3 MSPCLOCK; C:\WINDOWS\System32\drivers\MSPCLOCK.sys [5376 2008-04-14] (Microsoft Corporation) [File not signed]
S3 MSPQM; C:\WINDOWS\System32\drivers\MSPQM.sys [4992 2008-04-14] (Microsoft Corporation) [File not signed]
R3 mssmbios; C:\WINDOWS\System32\DRIVERS\mssmbios.sys [15488 2008-04-14] (Microsoft Corporation) [File not signed]
R0 NDIS; C:\WINDOWS\system32\Drivers\NDIS.sys [182656 2008-04-14] (Microsoft Corporation) [File not signed]
R3 Ndisuio; C:\WINDOWS\System32\DRIVERS\ndisuio.sys [14592 2008-04-14] (Microsoft Corporation) [File not signed]
R3 NdisWan; C:\WINDOWS\System32\DRIVERS\ndiswan.sys [91520 2008-04-14] (Microsoft Corporation) [File not signed]
R1 NetBIOS; C:\WINDOWS\System32\DRIVERS\netbios.sys [34688 2008-04-14] (Microsoft Corporation) [File not signed]
R1 NetBT; C:\WINDOWS\System32\DRIVERS\netbt.sys [162816 2008-04-14] (Microsoft Corporation) [File not signed]
R3 NIC1394; C:\WINDOWS\System32\DRIVERS\nic1394.sys [61824 2008-04-14] (Microsoft Corporation) [File not signed]
R1 Npfs; C:\WINDOWS\system32\Drivers\Npfs.sys [30848 2008-04-14] (Microsoft Corporation) [File not signed]
R4 Ntfs; C:\WINDOWS\system32\Drivers\Ntfs.sys [574976 2008-04-14] (Microsoft Corporation) [File not signed]
R1 Null; C:\WINDOWS\system32\Drivers\Null.sys [2944 2004-08-04] (Microsoft Corporation) [File not signed]
S3 NwlnkFlt; C:\WINDOWS\System32\DRIVERS\nwlnkflt.sys [12416 2004-08-04] (Microsoft Corporation) [File not signed]
S3 NwlnkFwd; C:\WINDOWS\System32\DRIVERS\nwlnkfwd.sys [32512 2004-08-04] (Microsoft Corporation) [File not signed]
R0 ohci1394; C:\WINDOWS\System32\DRIVERS\ohci1394.sys [61696 2008-04-14] (Microsoft Corporation) [File not signed]
S3 Parport; C:\WINDOWS\System32\DRIVERS\parport.sys [80384 2008-04-14] (Microsoft Corporation) [File not signed]
R0 PartMgr; C:\WINDOWS\system32\Drivers\PartMgr.sys [19712 2008-04-14] (Microsoft Corporation) [File not signed]
S4 ParVdm; C:\WINDOWS\system32\Drivers\ParVdm.sys [7040 2004-08-04] (Microsoft Corporation) [File not signed]
R0 PCI; C:\WINDOWS\System32\DRIVERS\pci.sys [68224 2008-04-14] (Microsoft Corporation) [File not signed]
R0 PCIIde; C:\WINDOWS\System32\DRIVERS\pciide.sys [3328 2001-08-17] (Microsoft Corporation) [File not signed]
R0 Pcmcia; C:\WINDOWS\System32\DRIVERS\pcmcia.sys [120576 2008-04-14] (Microsoft Corporation) [File not signed]
R3 PptpMiniport; C:\WINDOWS\System32\DRIVERS\raspptp.sys [48384 2008-04-14] (Microsoft Corporation) [File not signed]
R3 PSched; C:\WINDOWS\System32\DRIVERS\psched.sys [69120 2008-04-14] (Microsoft Corporation) [File not signed]
R3 Ptilink; C:\WINDOWS\System32\DRIVERS\ptilink.sys [17792 2004-08-04] (Parallel Technologies, Inc.) [File not signed]
R0 PxHelp20; C:\WINDOWS\System32\Drivers\PxHelp20.sys [20640 2005-04-25] (Sonic Solutions) [File not signed]
R1 RasAcd; C:\WINDOWS\System32\DRIVERS\rasacd.sys [8832 2004-08-04] (Microsoft Corporation) [File not signed]
S3 Rasirda; C:\WINDOWS\System32\DRIVERS\rasirda.sys [19584 2001-08-17] (Microsoft Corporation) [File not signed]
R3 Rasl2tp; C:\WINDOWS\System32\DRIVERS\rasl2tp.sys [51328 2008-04-14] (Microsoft Corporation) [File not signed]
R3 RasPppoe; C:\WINDOWS\System32\DRIVERS\raspppoe.sys [41472 2008-04-14] (Microsoft Corporation) [File not signed]
R3 Raspti; C:\WINDOWS\System32\DRIVERS\raspti.sys [16512 2004-08-04] (Microsoft Corporation) [File not signed]
R1 Rdbss; C:\WINDOWS\System32\DRIVERS\rdbss.sys [175744 2008-04-14] (Microsoft Corporation) [File not signed]
R1 RDPCDD; C:\WINDOWS\System32\DRIVERS\RDPCDD.sys [4224 2004-08-04] (Microsoft Corporation) [File not signed]
R3 rdpdr; C:\WINDOWS\System32\DRIVERS\rdpdr.sys [196224 2008-04-14] (Microsoft Corporation) [File not signed]
R1 redbook; C:\WINDOWS\System32\DRIVERS\redbook.sys [57728 2008-04-14] (Microsoft Corporation) [File not signed]
S3 sdbus; C:\WINDOWS\System32\DRIVERS\sdbus.sys [79232 2008-04-14] (Microsoft Corporation) [File not signed]
S3 Secdrv; C:\WINDOWS\System32\DRIVERS\secdrv.sys [20480 2008-04-13] (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.) [File not signed]
S3 serenum; C:\WINDOWS\System32\DRIVERS\serenum.sys [15744 2008-04-14] (Microsoft Corporation) [File not signed]
S1 Serial; C:\WINDOWS\System32\DRIVERS\serial.sys [65536 2008-04-14] (Microsoft Corporation) [File not signed]
S3 SMCIRDA; C:\WINDOWS\System32\DRIVERS\smcirda.sys [35913 2001-08-18] (SMC) [File not signed]
S3 splitter; C:\WINDOWS\System32\drivers\splitter.sys [6272 2008-04-14] (Microsoft Corporation) [File not signed]
R0 sr; C:\WINDOWS\System32\DRIVERS\sr.sys [73472 2008-04-14] (Microsoft Corporation) [File not signed]
R1 ssmdrv; C:\WINDOWS\System32\DRIVERS\ssmdrv.sys [28520 2015-04-16] (Avira GmbH)
R3 swenum; C:\WINDOWS\System32\DRIVERS\swenum.sys [4352 2008-04-14] (Microsoft Corporation) [File not signed]
S3 swmidi; C:\WINDOWS\System32\drivers\swmidi.sys [56576 2008-04-14] (Microsoft Corporation) [File not signed]
R3 SynTP; C:\WINDOWS\System32\DRIVERS\SynTP.sys [192736 2006-03-03] (Synaptics, Inc.) [File not signed]
R3 sysaudio; C:\WINDOWS\System32\drivers\sysaudio.sys [60800 2008-04-14] (Microsoft Corporation) [File not signed]
S3 TDPIPE; C:\WINDOWS\system32\Drivers\TDPIPE.sys [12040 2008-04-14] (Microsoft Corporation) [File not signed]
S3 TDTCP; C:\WINDOWS\system32\Drivers\TDTCP.sys [21896 2008-04-14] (Microsoft Corporation) [File not signed]
R1 TermDD; C:\WINDOWS\System32\DRIVERS\termdd.sys [40840 2008-04-14] (Microsoft Corporation) [File not signed]
R3 Update; C:\WINDOWS\System32\DRIVERS\update.sys [384768 2008-04-14] (Microsoft Corporation) [File not signed]
R3 usbhub; C:\WINDOWS\System32\DRIVERS\usbhub.sys [59520 2008-04-14] (Microsoft Corporation) [File not signed]
R3 USBSTOR; C:\WINDOWS\System32\DRIVERS\USBSTOR.SYS [26368 2008-04-14] (Microsoft Corporation) [File not signed]
R3 usbuhci; C:\WINDOWS\System32\DRIVERS\usbuhci.sys [20608 2008-04-14] (Microsoft Corporation) [File not signed]
R1 VgaSave; C:\WINDOWS\System32\drivers\vga.sys [20992 2008-04-14] (Microsoft Corporation) [File not signed]
R0 ViaIde; C:\WINDOWS\System32\DRIVERS\viaide.sys [5376 2008-04-14] (Microsoft Corporation) [File not signed]
R0 VolSnap; C:\WINDOWS\system32\Drivers\VolSnap.sys [53760 2008-04-14] (Microsoft Corporation) [File not signed]
R3 w39n51; C:\WINDOWS\System32\DRIVERS\w39n51.sys [1428096 2006-01-19] (Intel® Corporation) [File not signed]
R3 Wanarp; C:\WINDOWS\System32\DRIVERS\wanarp.sys [34560 2008-04-14] (Microsoft Corporation) [File not signed]
R3 wdmaud; C:\WINDOWS\System32\drivers\wdmaud.sys [83072 2008-04-14] (Microsoft Corporation) [File not signed]
R1 WmiAcpi; C:\WINDOWS\System32\DRIVERS\wmiacpi.sys [8832 2008-04-14] (Microsoft Corporation) [File not signed]
R1 WS2IFSL; C:\WINDOWS\System32\drivers\ws2ifsl.sys [12032 2004-08-04] (Microsoft Corporation) [File not signed]
U5 BattC; C:\Windows\System32\Drivers\BattC.sys [16384 2008-04-14] (Microsoft Corporation) [File not signed]
S3 catchme; \??\C:\ComboFix\catchme.sys [X]
S3 GTIPCI21; system32\DRIVERS\gtipci21.sys [X]
U5 ScsiPort; C:\WINDOWS\system32\drivers\scsiport.sys [96384 2008-04-14] (Microsoft Corporation) [File not signed]
S3 tifm21; system32\drivers\tifm21.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)

Alt 22.05.2015, 21:08   #12
trojanernick
 
Windows XP: Link in DHL-Mail angeklickt - Problem mit Antivirensoftware und MBR-Befund - Standard

Windows XP: Link in DHL-Mail angeklickt - Problem mit Antivirensoftware und MBR-Befund


FRST.txt - Teil 2:
Code:
ATTFilter
==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-05-22 21:38 - 2015-05-22 21:38 - 00035340 _____ () C:\Dokumente und Einstellungen\Martina\Desktop\FRST.txt
2015-05-22 21:38 - 2015-05-19 21:31 - 01146880 _____ (Farbar) C:\Dokumente und Einstellungen\Martina\Desktop\FRST.exe
2015-05-22 21:32 - 2015-05-22 21:32 - 00000801 _____ () C:\Dokumente und Einstellungen\Martina\Desktop\JRT.txt
2015-05-22 21:29 - 2015-05-22 21:29 - 00000000 ____D () C:\RegBackup
2015-05-22 20:45 - 2015-05-22 20:38 - 02222592 _____ () C:\Dokumente und Einstellungen\Martina\Desktop\AdwCleaner_4.205.exe
2015-05-22 20:34 - 2015-05-19 13:33 - 02720186 _____ (Thisisu) C:\Dokumente und Einstellungen\Martina\Desktop\JRT.exe
2015-05-21 21:05 - 2015-05-22 20:38 - 00000000 ____D () C:\Dokumente und Einstellungen\NetworkService\Lokale Einstellungen\temp
2015-05-21 21:05 - 2015-05-21 21:05 - 00052576 _____ () C:\ComboFix.txt
2015-05-21 21:05 - 2015-05-21 21:05 - 00000000 ____D () C:\Dokumente und Einstellungen\Martina_2\Lokale Einstellungen\temp
2015-05-21 21:05 - 2015-05-21 21:05 - 00000000 ____D () C:\Dokumente und Einstellungen\LocalService\Lokale Einstellungen\temp
2015-05-21 21:05 - 2015-05-21 21:05 - 00000000 ____D () C:\Dokumente und Einstellungen\Administrator\Lokale Einstellungen\temp
2015-05-21 20:56 - 2015-05-22 21:38 - 00000000 ____D () C:\Dokumente und Einstellungen\Martina\Lokale Einstellungen\temp
2015-05-21 20:38 - 2015-05-21 20:38 - 00000000 _RSHD () C:\cmdcons
2015-05-21 20:38 - 2015-05-14 23:30 - 00000211 _____ () C:\Boot.bak
2015-05-21 20:38 - 2004-08-03 23:00 - 00262448 __RSH () C:\cmldr
2015-05-21 20:33 - 2011-06-26 08:45 - 00256000 _____ () C:\WINDOWS\PEV.exe
2015-05-21 20:33 - 2010-11-07 19:20 - 00208896 _____ () C:\WINDOWS\MBR.exe
2015-05-21 20:33 - 2009-04-20 06:56 - 00060416 _____ (NirSoft) C:\WINDOWS\NIRCMD.exe
2015-05-21 20:33 - 2000-08-31 02:00 - 00518144 _____ (SteelWerX) C:\WINDOWS\SWREG.exe
2015-05-21 20:33 - 2000-08-31 02:00 - 00406528 _____ (SteelWerX) C:\WINDOWS\SWSC.exe
2015-05-21 20:33 - 2000-08-31 02:00 - 00212480 _____ (SteelWerX) C:\WINDOWS\SWXCACLS.exe
2015-05-21 20:33 - 2000-08-31 02:00 - 00098816 _____ () C:\WINDOWS\sed.exe
2015-05-21 20:33 - 2000-08-31 02:00 - 00080412 _____ () C:\WINDOWS\grep.exe
2015-05-21 20:33 - 2000-08-31 02:00 - 00068096 _____ () C:\WINDOWS\zip.exe
2015-05-21 20:31 - 2015-05-21 20:31 - 00000000 ____D () C:\Dokumente und Einstellungen\Martina\Eigene Dateien\Bluetooth-Exchange-Ordner
2015-05-21 20:31 - 2015-05-21 20:31 - 00000000 ____D () C:\Dokumente und Einstellungen\Martina\Bluetooth Software
2015-05-21 19:47 - 2015-05-21 21:05 - 00000000 ____D () C:\Qoobox
2015-05-21 19:47 - 2015-05-21 21:03 - 00000000 ____D () C:\WINDOWS\erdnt
2015-05-21 19:47 - 2015-05-21 19:47 - 00000000 ___RD () C:\Dokumente und Einstellungen\Martina\Startmenü\Programme\Verwaltung
2015-05-21 19:46 - 2015-05-19 13:29 - 05623645 ____R (Swearware) C:\Dokumente und Einstellungen\Martina\Desktop\ComboFix.exe
2015-05-20 21:49 - 2015-05-19 14:14 - 04197016 _____ (Kaspersky Lab ZAO) C:\Dokumente und Einstellungen\Administrator\Desktop\tdsskiller.exe
2015-05-19 22:53 - 2015-05-19 22:53 - 00000515 _____ () C:\Dokumente und Einstellungen\Administrator\Desktop\gmer.txt
2015-05-19 21:39 - 2015-05-19 11:42 - 00380416 _____ () C:\Dokumente und Einstellungen\Administrator\Desktop\Gmer-19357.exe
2015-05-19 21:36 - 2015-05-19 21:36 - 00000000 ____D () C:\Dokumente und Einstellungen\Administrator\Anwendungsdaten\Avira
2015-05-19 21:33 - 2015-05-19 21:34 - 00130839 _____ () C:\Dokumente und Einstellungen\Administrator\Desktop\FRST.txt
2015-05-19 21:33 - 2015-05-19 21:34 - 00039050 _____ () C:\Dokumente und Einstellungen\Administrator\Desktop\Addition.txt
2015-05-19 21:32 - 2015-05-22 21:38 - 00000000 ____D () C:\FRST
2015-05-19 21:32 - 2015-05-19 21:31 - 01146880 _____ (Farbar) C:\Dokumente und Einstellungen\Administrator\Desktop\FRST.exe
2015-05-19 21:27 - 2015-05-19 21:27 - 00000488 _____ () C:\Dokumente und Einstellungen\Administrator\Desktop\defogger_disable.log
2015-05-19 21:27 - 2015-05-19 21:27 - 00000000 _____ () C:\Dokumente und Einstellungen\Administrator\defogger_reenable
2015-05-19 21:26 - 2015-05-19 11:36 - 00050477 _____ () C:\Dokumente und Einstellungen\Administrator\Desktop\Defogger.exe
2015-05-19 20:01 - 2015-05-19 20:01 - 00000000 __SHD () C:\Dokumente und Einstellungen\Administrator\IETldCache
2015-05-19 20:00 - 2015-05-19 20:00 - 00000000 __SHD () C:\WINDOWS\CSC
2015-05-18 22:27 - 2015-05-18 22:27 - 00199582 _____ () C:\Dokumente und Einstellungen\LocalService\Lokale Einstellungen\Anwendungsdaten\WPFFontCache_v0400-S-1-5-21-1310988380-3352743311-3678797310-1006-0.dat
2015-05-18 22:26 - 2015-05-18 22:26 - 00000000 ____D () C:\Dokumente und Einstellungen\Martina_2\Lokale Einstellungen\Anwendungsdaten\Mozilla
2015-05-18 22:25 - 2015-05-18 22:25 - 00000000 ____D () C:\Dokumente und Einstellungen\Martina\Anwendungsdaten\U3
2015-05-18 22:20 - 2015-05-18 22:22 - 00000000 ____D () C:\Dokumente und Einstellungen\Martina_2\Anwendungsdaten\U3
2015-05-18 22:18 - 2015-05-18 22:18 - 00000354 _____ () C:\Dokumente und Einstellungen\Martina_2\Desktop\Eigene Dateien.lnk
2015-05-18 22:14 - 2015-05-18 22:14 - 00000000 ____D () C:\Dokumente und Einstellungen\Martina_2\Anwendungsdaten\Avira
2015-05-18 22:11 - 2015-05-18 22:26 - 00000000 ____D () C:\Dokumente und Einstellungen\Martina_2\Anwendungsdaten\Mozilla
2015-05-18 22:10 - 2015-05-18 22:11 - 00000000 ____D () C:\Dokumente und Einstellungen\Martina_2\Lokale Einstellungen\Anwendungsdaten\Thunderbird
2015-05-18 22:10 - 2015-05-18 22:10 - 00000000 ____D () C:\Dokumente und Einstellungen\Martina_2\Anwendungsdaten\Thunderbird
2015-05-18 22:08 - 2015-05-19 18:48 - 00000190 ___SH () C:\Dokumente und Einstellungen\Martina_2\ntuser.ini
2015-05-18 22:08 - 2015-05-19 18:48 - 00000000 ____D () C:\Dokumente und Einstellungen\Martina_2
2015-05-18 22:08 - 2015-05-18 22:08 - 00000768 _____ () C:\Dokumente und Einstellungen\Martina_2\Startmenü\Programme\Windows Media Player.lnk
2015-05-18 22:08 - 2015-05-18 22:08 - 00000000 __SHD () C:\Dokumente und Einstellungen\Martina_2\Lokale Einstellungen\Verlauf
2015-05-18 22:08 - 2015-05-18 22:08 - 00000000 __SHD () C:\Dokumente und Einstellungen\Martina_2\IETldCache
2015-05-18 22:08 - 2015-05-18 22:08 - 00000000 ___RD () C:\Dokumente und Einstellungen\Martina_2\Startmenü\Programme
2015-05-18 22:08 - 2015-05-18 22:08 - 00000000 ___RD () C:\Dokumente und Einstellungen\Martina_2\Eigene Dateien\Eigene Musik
2015-05-18 22:08 - 2015-05-18 22:08 - 00000000 ___RD () C:\Dokumente und Einstellungen\Martina_2\Eigene Dateien\Eigene Bilder
2015-05-18 22:08 - 2015-05-15 08:01 - 00000000 ___RD () C:\Dokumente und Einstellungen\Martina_2\Startmenü\Programme\Zubehör
2015-05-18 22:08 - 2015-05-15 08:01 - 00000000 ___RD () C:\Dokumente und Einstellungen\Martina_2\Startmenü\Programme\Autostart
2015-05-18 22:08 - 2015-05-15 08:01 - 00000000 ___RD () C:\Dokumente und Einstellungen\Martina_2\Startmenü
2015-05-18 22:08 - 2015-05-15 08:01 - 00000000 ____D () C:\Dokumente und Einstellungen\Martina_2\Lokale Einstellungen\Anwendungsdaten\{3248F0A6-6813-11D6-A77B-00B0D0150060}
2015-05-18 22:08 - 2006-08-25 07:12 - 00000000 ___HD () C:\Dokumente und Einstellungen\Martina_2\Netzwerkumgebung
2015-05-18 22:08 - 2006-08-25 07:12 - 00000000 ___HD () C:\Dokumente und Einstellungen\Martina_2\Druckumgebung
2015-05-18 22:08 - 2006-08-25 07:12 - 00000000 ____D () C:\Dokumente und Einstellungen\Martina_2\Anwendungsdaten\SampleView
2015-05-18 22:08 - 2006-08-24 21:11 - 00000000 _____ () C:\Dokumente und Einstellungen\Martina_2\Lokale Einstellungen\Anwendungsdaten\QSwitch.txt
2015-05-18 22:08 - 2006-08-24 21:11 - 00000000 _____ () C:\Dokumente und Einstellungen\Martina_2\Lokale Einstellungen\Anwendungsdaten\DSwitch.txt
2015-05-18 22:08 - 2006-08-24 21:11 - 00000000 _____ () C:\Dokumente und Einstellungen\Martina_2\Lokale Einstellungen\Anwendungsdaten\AtStart.txt
2015-05-18 22:08 - 2006-08-24 20:52 - 00001491 _____ () C:\Dokumente und Einstellungen\Martina_2\Startmenü\Programme\Software Setup.lnk
2015-05-18 22:08 - 2006-08-24 20:41 - 00000146 _____ () C:\Dokumente und Einstellungen\Martina_2\Lokale Einstellungen\Anwendungsdaten\fusioncache.dat
2015-05-18 22:08 - 2004-08-07 07:53 - 00001503 _____ () C:\Dokumente und Einstellungen\Martina_2\Startmenü\Programme\Remoteunterstützung.lnk
2015-05-18 21:44 - 2015-05-18 21:48 - 00010572 _____ () C:\Dokumente und Einstellungen\Martina\Desktop\MBRCheck_05.18.15_21.44.10.txt
2015-05-18 21:43 - 2015-05-18 16:36 - 00080384 _____ () C:\Dokumente und Einstellungen\Martina\Desktop\MBRCheck.exe
2015-05-18 21:40 - 2015-05-18 21:40 - 00000757 _____ () C:\Dokumente und Einstellungen\Martina\Desktop\mbr.log
2015-05-18 21:37 - 2015-05-18 21:38 - 00000757 _____ () C:\mbr.log
2015-05-18 21:37 - 2015-05-18 21:38 - 00000757 _____ () C:\Dokumente und Einstellungen\Martina\mbr.log
2015-05-18 21:33 - 2015-05-18 16:35 - 00089088 _____ () C:\WINDOWS\system32\mbr.exe
2015-05-18 20:37 - 2015-05-18 20:37 - 00001804 _____ () C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Adobe Reader XI.lnk
2015-05-18 20:37 - 2015-05-18 20:37 - 00001714 _____ () C:\Dokumente und Einstellungen\All Users\Desktop\Adobe Reader XI.lnk
2015-05-18 20:36 - 2015-05-18 20:36 - 00000000 ____D () C:\Programme\Gemeinsame Dateien\Adobe
2015-05-18 20:35 - 2015-05-18 20:59 - 00000000 ____D () C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Adobe
2015-05-18 20:22 - 2015-05-18 20:22 - 00000348 _____ () C:\WINDOWS\spupdsvc.log
2015-05-18 20:22 - 2015-05-18 20:22 - 00000000 ____D () C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Windows Genuine Advantage
2015-05-18 20:19 - 2015-05-18 20:19 - 00000000 __SHD () C:\Dokumente und Einstellungen\Martina\PrivacIE
2015-05-18 20:12 - 2015-05-18 20:15 - 00046201 _____ () C:\WINDOWS\iis6.log
2015-05-18 20:12 - 2015-05-18 20:15 - 00014246 _____ () C:\WINDOWS\ocgen.log
2015-05-18 20:12 - 2015-05-18 20:15 - 00011018 _____ () C:\WINDOWS\FaxSetup.log
2015-05-18 20:12 - 2015-05-18 20:15 - 00009790 _____ () C:\WINDOWS\msmqinst.log
2015-05-18 20:12 - 2015-05-18 20:15 - 00008140 _____ () C:\WINDOWS\tsoc.log
2015-05-18 20:12 - 2015-05-18 20:15 - 00004566 _____ () C:\WINDOWS\imsins.log
2015-05-18 20:12 - 2015-05-18 20:15 - 00004383 _____ () C:\WINDOWS\comsetup.log
2015-05-18 20:12 - 2015-05-18 20:15 - 00003787 _____ () C:\WINDOWS\ntdtcsetup.log
2015-05-18 20:12 - 2015-05-18 20:15 - 00002161 _____ () C:\WINDOWS\netfxocm.log
2015-05-18 20:12 - 2015-05-18 20:15 - 00001302 _____ () C:\WINDOWS\ocmsn.log
2015-05-18 20:12 - 2015-05-18 20:15 - 00001207 _____ () C:\WINDOWS\MedCtrOC.log
2015-05-18 20:12 - 2015-05-18 20:15 - 00000828 _____ () C:\WINDOWS\msgsocm.log
2015-05-18 20:12 - 2015-05-18 20:15 - 00000311 _____ () C:\WINDOWS\tabletoc.log
2015-05-18 20:12 - 2015-05-18 20:12 - 00000000 _____ () C:\WINDOWS\setuperr.log
2015-05-18 20:12 - 2015-05-18 20:12 - 00000000 _____ () C:\WINDOWS\setupact.log
2015-05-18 20:07 - 2015-05-22 21:28 - 00214578 _____ () C:\WINDOWS\setupapi.log
2015-05-18 19:24 - 2015-05-18 19:24 - 00000000 ____D () C:\Dokumente und Einstellungen\Martina\Anwendungsdaten\Chip Digital GmbH
2015-05-18 19:23 - 2015-05-18 20:38 - 00000000 ____D () C:\Dokumente und Einstellungen\Martina\Lokale Einstellungen\Anwendungsdaten\Adobe
2015-05-17 21:19 - 2015-05-17 21:19 - 00000000 ____D () C:\Dokumente und Einstellungen\Martina\Lokale Einstellungen\Anwendungsdaten\Thunderbird
2015-05-17 21:19 - 2015-05-17 21:19 - 00000000 ____D () C:\Dokumente und Einstellungen\Martina\Anwendungsdaten\Thunderbird
2015-05-17 20:26 - 2015-05-17 20:26 - 00004653 _____ () C:\Dokumente und Einstellungen\Martina\Desktop\wsusofflineupdate_2.log
2015-05-17 13:39 - 2015-05-17 13:39 - 00000352 _____ () C:\Dokumente und Einstellungen\Martina\Desktop\Eigene Dateien.lnk
2015-05-17 00:19 - 2015-05-17 00:19 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2345886$
2015-05-17 00:18 - 2015-05-17 00:18 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB970430$
2015-05-17 00:05 - 2015-05-17 00:05 - 00007250 _____ () C:\Dokumente und Einstellungen\Martina\Desktop\wsusofflineupdate.log
2015-05-16 21:58 - 2015-05-16 21:58 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2834904-v2_WM11$
2015-05-16 21:57 - 2015-05-16 21:57 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2813347-v2$
2015-05-16 21:57 - 2015-05-16 21:57 - 00000000 ____D () C:\Programme\Microsoft CAPICOM 2.1.0.2
2015-05-16 21:49 - 2015-05-16 21:49 - 00000000 __HDC () C:\WINDOWS\$NtUninstallMSCompPackV1$
2015-05-16 21:49 - 2015-05-16 21:49 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB969084$
2015-05-16 21:49 - 2009-06-16 09:58 - 00018464 ____N (Microsoft Corporation) C:\WINDOWS\system32\spmsg.dll
2015-05-16 21:48 - 2015-05-16 21:48 - 00000000 __HDC () C:\WINDOWS\$NtUninstallwmp11$
2015-05-16 21:48 - 2015-05-16 21:48 - 00000000 ____D () C:\Programme\Windows Media Connect 2
2015-05-16 21:47 - 2015-05-16 21:47 - 00000000 __HDC () C:\WINDOWS\$NtUninstallWudf01000$
2015-05-16 21:47 - 2015-05-16 21:47 - 00000000 __HDC () C:\WINDOWS\$NtUninstallWMFDist11$
2015-05-16 21:47 - 2015-05-16 21:47 - 00000000 ____D () C:\WINDOWS\system32\LogFiles
2015-05-16 21:46 - 2015-05-16 21:46 - 00000000 ____D () C:\Programme\Microsoft Silverlight
2015-05-16 21:46 - 2015-05-16 21:46 - 00000000 ____D () C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Microsoft Silverlight
2015-05-16 21:46 - 2010-06-02 04:55 - 00527192 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_7.dll
2015-05-16 21:46 - 2010-06-02 04:55 - 00239960 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_7.dll
2015-05-16 21:46 - 2010-06-02 04:55 - 00074072 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_5.dll
2015-05-16 21:46 - 2010-05-26 11:41 - 02106216 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_43.dll
2015-05-16 21:46 - 2010-05-26 11:41 - 01998168 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_43.dll
2015-05-16 21:46 - 2010-05-26 11:41 - 01868128 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dcsx_43.dll
2015-05-16 21:46 - 2010-05-26 11:41 - 00470880 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_43.dll
2015-05-16 21:46 - 2010-05-26 11:41 - 00248672 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx11_43.dll
2015-05-16 21:46 - 2010-02-04 10:01 - 00074072 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_4.dll
2015-05-16 21:45 - 2010-02-04 10:01 - 00528216 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_6.dll
2015-05-16 21:45 - 2010-02-04 10:01 - 00238936 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_6.dll
2015-05-16 21:45 - 2010-02-04 10:01 - 00022360 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_7.dll
2015-05-16 21:45 - 2009-09-04 17:44 - 00515416 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_5.dll
2015-05-16 21:45 - 2009-09-04 17:44 - 00238936 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_5.dll
2015-05-16 21:45 - 2009-09-04 17:44 - 00069464 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_3.dll
2015-05-16 21:45 - 2009-09-04 17:29 - 05501792 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dcsx_42.dll
2015-05-16 21:45 - 2009-09-04 17:29 - 01974616 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_42.dll
2015-05-16 21:45 - 2009-09-04 17:29 - 01892184 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_42.dll
2015-05-16 21:45 - 2009-09-04 17:29 - 00453456 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_42.dll
2015-05-16 21:45 - 2009-09-04 17:29 - 00235344 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx11_42.dll
2015-05-16 21:45 - 2009-03-16 14:18 - 00517448 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_4.dll
2015-05-16 21:45 - 2009-03-16 14:18 - 00235352 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_4.dll
2015-05-16 21:45 - 2009-03-16 14:18 - 00022360 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_6.dll
2015-05-16 21:45 - 2009-03-09 15:27 - 04178264 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_41.dll
2015-05-16 21:45 - 2009-03-09 15:27 - 01846632 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_41.dll
2015-05-16 21:45 - 2009-03-09 15:27 - 00453456 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_41.dll
2015-05-16 21:45 - 2008-10-27 10:04 - 00514384 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_3.dll
2015-05-16 21:45 - 2008-10-27 10:04 - 00235856 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_3.dll
2015-05-16 21:45 - 2008-10-27 10:04 - 00070992 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_2.dll
2015-05-16 21:45 - 2008-10-27 10:04 - 00023376 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_5.dll
2015-05-16 21:45 - 2008-10-15 06:22 - 04379984 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_40.dll
2015-05-16 21:45 - 2008-10-15 06:22 - 02036576 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_40.dll
2015-05-16 21:45 - 2008-10-15 06:22 - 00452440 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_40.dll
2015-05-16 21:45 - 2008-07-31 10:41 - 00238088 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_2.dll
2015-05-16 21:45 - 2008-07-31 10:41 - 00068616 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_1.dll
2015-05-16 21:45 - 2008-07-31 10:40 - 00509448 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_2.dll
2015-05-16 21:45 - 2008-07-10 11:01 - 00467984 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_39.dll
2015-05-16 21:45 - 2008-07-10 11:00 - 03851784 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_39.dll
2015-05-16 21:45 - 2008-07-10 11:00 - 01493528 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_39.dll
2015-05-16 21:45 - 2008-05-30 14:19 - 00507400 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_1.dll
2015-05-16 21:45 - 2008-05-30 14:18 - 00238088 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_1.dll
2015-05-16 21:45 - 2008-05-30 14:17 - 00065032 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_0.dll
2015-05-16 21:45 - 2008-05-30 14:17 - 00025608 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_4.dll
2015-05-16 21:45 - 2008-05-30 14:11 - 03850760 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_38.dll
2015-05-16 21:45 - 2008-05-30 14:11 - 01491992 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_38.dll
2015-05-16 21:45 - 2008-05-30 14:11 - 00467984 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_38.dll
2015-05-16 21:45 - 2008-03-05 16:03 - 00479752 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_0.dll
2015-05-16 21:45 - 2008-03-05 16:03 - 00238088 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_0.dll
2015-05-16 21:45 - 2008-03-05 16:00 - 00025608 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_3.dll
2015-05-16 21:45 - 2008-03-05 15:56 - 03786760 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_37.dll
2015-05-16 21:45 - 2008-03-05 15:56 - 01420824 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_37.dll
2015-05-16 21:45 - 2008-02-05 23:07 - 00462864 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_37.dll
2015-05-16 21:45 - 2007-10-22 03:39 - 00267272 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_10.dll
2015-05-16 21:45 - 2007-10-22 03:37 - 00017928 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_2.dll
2015-05-16 21:45 - 2007-10-12 15:14 - 03734536 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_36.dll
2015-05-16 21:45 - 2007-10-12 15:14 - 01374232 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_36.dll
2015-05-16 21:45 - 2007-10-02 09:56 - 00444776 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_36.dll
2015-05-16 21:45 - 2007-07-20 00:57 - 00267112 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_9.dll
2015-05-16 21:45 - 2007-07-19 18:14 - 03727720 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_35.dll
2015-05-16 21:45 - 2007-07-19 18:14 - 01358192 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_35.dll
2015-05-16 21:45 - 2007-07-19 18:14 - 00444776 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_35.dll
2015-05-16 21:45 - 2007-06-20 20:46 - 00266088 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_8.dll
2015-05-16 21:45 - 2007-05-16 16:45 - 03497832 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_34.dll
2015-05-16 21:45 - 2007-05-16 16:45 - 01124720 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_34.dll
2015-05-16 21:45 - 2007-05-16 16:45 - 00443752 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_34.dll
2015-05-16 21:45 - 2007-04-04 18:55 - 00261480 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_7.dll
2015-05-16 21:45 - 2007-04-04 18:53 - 00081768 _____ (Microsoft Corporation) C:\WINDOWS\system32\xinput1_3.dll
2015-05-16 21:45 - 2007-03-15 16:57 - 00443752 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_33.dll
2015-05-16 21:45 - 2007-03-12 16:42 - 03495784 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_33.dll
2015-05-16 21:45 - 2007-03-12 16:42 - 01123696 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_33.dll
2015-05-16 21:45 - 2007-03-05 12:42 - 00015128 _____ (Microsoft Corporation) C:\WINDOWS\system32\x3daudio1_1.dll
2015-05-16 21:45 - 2007-01-24 15:27 - 00255848 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_6.dll
2015-05-16 21:45 - 2006-12-08 12:02 - 00251672 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_5.dll
2015-05-16 21:45 - 2006-11-29 13:06 - 03426072 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_32.dll
2015-05-16 21:45 - 2006-09-28 16:05 - 02414360 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_31.dll
2015-05-16 21:45 - 2006-09-28 16:05 - 00237848 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_4.dll
2015-05-16 21:45 - 2006-07-28 09:30 - 00236824 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_3.dll
2015-05-16 21:45 - 2006-07-28 09:30 - 00062744 _____ (Microsoft Corporation) C:\WINDOWS\system32\xinput1_2.dll
2015-05-16 21:45 - 2006-05-31 07:24 - 00230168 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_2.dll
2015-05-16 21:45 - 2006-03-31 12:40 - 02388176 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_30.dll
2015-05-16 21:45 - 2006-03-31 12:39 - 00229584 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_1.dll
2015-05-16 21:45 - 2006-03-31 12:39 - 00062672 _____ (Microsoft Corporation) C:\WINDOWS\system32\xinput1_1.dll
2015-05-16 21:45 - 2006-02-03 08:43 - 02332368 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_29.dll
2015-05-16 21:45 - 2006-02-03 08:42 - 00230096 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_0.dll
2015-05-16 21:45 - 2006-02-03 08:41 - 00014032 _____ (Microsoft Corporation) C:\WINDOWS\system32\x3daudio1_0.dll
2015-05-16 21:45 - 2005-12-05 18:09 - 02323664 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_28.dll
2015-05-16 21:45 - 2005-12-05 18:07 - 00061136 _____ (Microsoft Corporation) C:\WINDOWS\system32\xinput9_1_0.dll
2015-05-16 21:45 - 2005-07-22 19:59 - 02319568 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_27.dll
2015-05-16 21:45 - 2005-05-26 15:34 - 02297552 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_26.dll
2015-05-16 21:45 - 2005-03-18 17:19 - 02337488 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_25.dll
2015-05-16 21:45 - 2005-02-05 19:45 - 02222800 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_24.dll
2015-05-16 21:44 - 2015-05-16 21:44 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB942288-v3$
2015-05-16 20:48 - 2015-05-17 01:27 - 00000000 ____D () C:\Programme\Mozilla Firefox
2015-05-16 11:44 - 2015-05-22 21:26 - 00000226 _____ () C:\WINDOWS\Tasks\Ende des Supports für Microsoft Windows XP –  Benachrichtigung – Anmeldung.job
2015-05-16 11:44 - 2015-05-16 11:55 - 00000220 _____ () C:\WINDOWS\Tasks\Ende des Supports für Microsoft Windows XP – Monatliche Benachrichtigung.job
2015-05-16 10:57 - 2015-05-16 10:58 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2868626$
2015-05-16 10:57 - 2015-05-16 10:57 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB959426$
2015-05-16 10:57 - 2015-05-16 10:57 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB952954$
2015-05-16 10:57 - 2015-05-16 10:57 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB951376-v2$
2015-05-16 10:57 - 2015-05-16 10:57 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB946648$
2015-05-16 10:57 - 2015-05-16 10:57 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2922229$
2015-05-16 10:57 - 2015-05-16 10:57 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2712808$
2015-05-16 10:57 - 2015-05-16 10:57 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2387149$
2015-05-16 10:56 - 2015-05-16 10:56 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB960859$
2015-05-16 10:56 - 2015-05-16 10:56 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2659262$
2015-05-16 10:56 - 2015-05-16 10:56 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2564958$
2015-05-16 10:56 - 2015-05-16 10:56 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2479943$
2015-05-16 10:55 - 2015-05-16 10:55 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2934207$
2015-05-16 10:55 - 2015-05-16 10:55 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2916036$
2015-05-16 10:55 - 2015-05-16 10:55 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2478971$
2015-05-16 10:52 - 2015-05-16 10:52 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB923723$
2015-05-16 10:52 - 2015-05-16 10:52 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2834886$
2015-05-16 10:52 - 2015-05-16 10:52 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2631813$
2015-05-16 10:52 - 2015-05-16 10:52 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2585542$
2015-05-16 10:52 - 2015-05-16 10:52 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2544893-v2$
2015-05-16 10:52 - 2015-05-16 10:52 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2536276-v2$
2015-05-16 10:52 - 2015-05-16 10:52 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2296011$
2015-05-16 10:51 - 2015-05-16 10:52 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2691442$
2015-05-16 10:51 - 2015-05-16 10:51 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2900986$
2015-05-16 10:51 - 2015-05-16 10:51 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2115168$
2015-05-16 10:49 - 2015-05-16 10:49 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB975558_WM8$
2015-05-16 10:49 - 2015-05-16 10:49 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB955759$
2015-05-16 10:49 - 2015-05-16 10:49 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2847311$
2015-05-16 10:45 - 2015-05-16 10:45 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB974318$
2015-05-16 10:45 - 2015-05-16 10:45 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB969059$
2015-05-16 10:45 - 2015-05-16 10:45 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB951978$
2015-05-16 10:45 - 2015-05-16 10:45 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2378111_WM9$
2015-05-16 10:44 - 2015-05-16 10:44 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB950974$
2015-05-16 10:44 - 2015-05-16 10:44 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2898715$
2015-05-16 10:44 - 2015-05-16 10:44 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2834902-v2_WM10$
2015-05-16 10:44 - 2015-05-16 10:44 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2802968$
2015-05-16 10:44 - 2015-05-16 10:44 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2655992$
2015-05-16 10:44 - 2015-05-16 10:44 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2481109$
2015-05-16 10:44 - 2015-05-16 10:44 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2443105$
2015-05-16 10:44 - 2015-05-16 10:44 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2229593$
2015-05-16 10:43 - 2015-05-16 10:43 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB982132$
2015-05-16 10:43 - 2015-05-16 10:43 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB978338$
2015-05-16 10:43 - 2015-05-16 10:43 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB975713$
2015-05-16 10:43 - 2015-05-16 10:43 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB971657$
2015-05-16 10:43 - 2015-05-16 10:43 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB954155_WM9$
2015-05-16 10:43 - 2015-05-16 10:43 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2929961$
2015-05-16 10:43 - 2015-05-16 10:43 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2862335$
2015-05-16 10:43 - 2015-05-16 10:43 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2686509$
2015-05-16 10:43 - 2015-05-16 10:43 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2598479$
2015-05-16 10:43 - 2015-05-16 10:43 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2485663$
2015-05-16 10:42 - 2015-05-16 10:42 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB972270$
2015-05-16 10:42 - 2015-05-16 10:42 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2780091$
2015-05-16 10:42 - 2015-05-16 10:42 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2507938$
2015-05-16 10:40 - 2015-05-16 10:40 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB974112$
2015-05-16 10:40 - 2015-05-16 10:40 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB956572$
2015-05-16 10:39 - 2015-05-16 10:40 - 00006742 _____ () C:\WINDOWS\system32\TZLog.log
2015-05-16 10:39 - 2015-05-16 10:39 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB956844$
2015-05-16 10:39 - 2015-05-16 10:39 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2904266$
2015-05-16 10:39 - 2015-05-16 10:39 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2876217$
2015-05-16 10:39 - 2015-05-16 10:39 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2483185$
2015-05-16 10:39 - 2015-05-16 10:39 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2347290$
2015-05-16 10:35 - 2015-05-16 10:35 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB979687$
2015-05-16 10:35 - 2015-05-16 10:35 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB975025$
2015-05-16 10:35 - 2015-05-16 10:35 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB974571$
2015-05-16 10:35 - 2015-05-16 10:35 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB973869$
2015-05-16 10:35 - 2015-05-16 10:35 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB952004$
2015-05-16 10:35 - 2015-05-16 10:35 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2930275$
2015-05-16 10:35 - 2015-05-16 10:35 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2864063$
2015-05-16 10:35 - 2015-05-16 10:35 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2862152$
2015-05-16 10:35 - 2015-05-16 10:35 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2719985$
2015-05-16 10:34 - 2015-05-16 10:34 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB975560$
2015-05-16 10:34 - 2015-05-16 10:34 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2592799$
2015-05-16 10:31 - 2015-05-16 10:31 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB973507$
2015-05-16 10:30 - 2015-05-16 10:30 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB977816$
2015-05-16 10:30 - 2015-05-16 10:30 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB950762$
2015-05-16 10:30 - 2015-05-16 10:30 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB941569$
2015-05-16 10:30 - 2015-05-16 10:30 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2876331$
2015-05-16 10:30 - 2015-05-16 10:30 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2850869$
2015-05-16 10:30 - 2015-05-16 10:30 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2770660$
2015-05-16 10:30 - 2015-05-16 10:30 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2535512$
2015-05-16 10:29 - 2015-05-16 10:30 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2859537$
2015-05-16 10:29 - 2015-05-16 10:29 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2807986$
2015-05-16 10:29 - 2015-05-16 10:29 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2570947$
2015-05-16 10:25 - 2015-05-16 10:25 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB978695_WM9$
2015-05-16 10:25 - 2015-05-16 10:25 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB952287$
2015-05-16 10:25 - 2015-05-16 10:25 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2868038$
2015-05-16 10:25 - 2015-05-16 10:25 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2820917$
2015-05-16 10:23 - 2015-05-16 10:23 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB973904$
2015-05-16 10:23 - 2015-05-16 10:23 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2603381$
2015-05-16 10:22 - 2015-05-16 10:22 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB974392$
2015-05-16 10:22 - 2015-05-16 10:22 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB973540_WM9$
2015-05-16 10:22 - 2015-05-16 10:22 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2893294$
2015-05-16 10:22 - 2015-05-16 10:22 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2757638$
2015-05-16 10:22 - 2015-05-16 10:22 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2749655$
2015-05-16 10:22 - 2015-05-16 10:22 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2653956$
2015-05-16 10:22 - 2015-05-16 10:22 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2508429$
2015-05-16 10:22 - 2015-05-16 10:22 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2419632$
2015-05-16 10:21 - 2015-05-16 10:22 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB971029$
2015-05-16 10:21 - 2015-05-16 10:21 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB977914$
2015-05-16 10:21 - 2015-05-16 10:21 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB952069_WM9$
2015-05-16 10:21 - 2015-05-16 10:21 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2892075$
2015-05-16 10:21 - 2015-05-16 10:21 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2705219-v2$
2015-05-16 10:21 - 2015-05-16 10:21 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2698365$
2015-05-16 10:21 - 2015-05-16 10:21 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2619339$
2015-05-16 10:21 - 2015-05-16 10:21 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2506212$
2015-05-16 10:19 - 2015-05-16 10:19 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB979482$
2015-05-16 10:19 - 2015-05-16 10:19 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB979309$
2015-05-16 10:19 - 2015-05-16 10:19 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB978542$
2015-05-16 10:19 - 2015-05-16 10:19 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2727528$
2015-05-16 10:18 - 2015-05-16 10:18 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB981997$
2015-05-16 10:18 - 2015-05-16 10:18 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB978706$
2015-05-16 10:18 - 2015-05-16 10:18 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB973815$
2015-05-16 10:18 - 2015-05-16 10:18 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB960803$
2015-05-16 10:18 - 2015-05-16 10:18 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2862330$
2015-05-16 10:18 - 2015-05-16 10:18 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2813345$
2015-05-16 10:18 - 2015-05-16 10:18 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2723135-v2$
2015-05-16 10:18 - 2015-05-16 10:18 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2509553$
2015-05-16 10:17 - 2015-05-16 10:18 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2676562$
2015-05-16 10:15 - 2015-05-16 10:15 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB982665$
2015-05-16 10:12 - 2015-05-16 10:12 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2478960$
2015-05-16 10:12 - 2015-05-16 10:12 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2393802$
2015-05-16 10:11 - 2015-05-16 10:11 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB923561$
2015-05-16 10:11 - 2015-05-16 10:11 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2620712$
2015-05-16 10:11 - 2015-05-16 10:11 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2566454$
2015-05-16 10:10 - 2015-05-16 10:10 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2914368$
2015-05-16 10:10 - 2015-05-16 10:10 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2661637$
2015-05-16 10:09 - 2015-05-16 10:09 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2584146$
2015-05-16 10:07 - 2015-05-16 10:07 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB975467$
2015-05-16 10:06 - 2015-05-16 10:06 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB968389$
2015-05-16 10:05 - 2015-05-16 10:05 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2423089$
2015-05-16 10:04 - 2015-05-16 10:04 - 00000000 __SHD () C:\Dokumente und Einstellungen\NetworkService\IETldCache
2015-05-16 10:04 - 2015-05-16 10:04 - 00000000 __SHD () C:\Dokumente und Einstellungen\Martina\IETldCache
2015-05-16 10:02 - 2015-05-16 10:02 - 00000000 __SHD () C:\Dokumente und Einstellungen\LocalService\IETldCache
2015-05-16 10:00 - 2015-05-21 20:57 - 00398918 _____ () C:\Dokumente und Einstellungen\LocalService\Lokale Einstellungen\Anwendungsdaten\WPFFontCache_v0400-S-1-5-21-1310988380-3352743311-3678797310-1005-0.dat
2015-05-16 09:58 - 2015-05-16 21:58 - 00000000 ____D () C:\WINDOWS\ie8updates
2015-05-16 09:58 - 2015-05-16 09:58 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2467659$
2015-05-16 09:57 - 2015-05-16 10:00 - 00065536 _____ () C:\WINDOWS\system32\config\Internet.evt
2015-05-16 09:57 - 2015-05-16 09:57 - 00000000 __HDC () C:\WINDOWS\ie8
2015-05-16 09:46 - 2015-04-30 10:07 - 137310008 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2015-05-16 09:46 - 2014-03-06 19:58 - 00522240 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\jsdbgui.dll
2015-05-16 09:45 - 2014-03-06 19:58 - 11113472 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ieframe.dll
2015-05-16 09:45 - 2014-03-06 19:58 - 02006016 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\iertutil.dll
2015-05-16 09:45 - 2014-03-06 19:58 - 00743424 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\iedvtool.dll
2015-05-16 09:45 - 2014-03-06 19:58 - 00630272 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msfeeds.dll
2015-05-16 09:45 - 2014-03-06 19:58 - 00247808 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ieproxy.dll
2015-05-16 09:45 - 2014-03-06 19:58 - 00055296 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msfeedsbs.dll
2015-05-16 09:45 - 2014-03-06 19:58 - 00012800 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\xpshims.dll
2015-05-16 09:45 - 2011-08-16 12:45 - 00006144 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\iecompat.dll
2015-05-16 09:11 - 2008-06-14 19:32 - 00273024 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\bthport.sys
2015-05-16 09:07 - 2010-09-18 08:52 - 00954368 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mfc40.dll
2015-05-16 09:07 - 2010-09-18 08:52 - 00953856 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mfc40u.dll
2015-05-16 09:04 - 2014-02-27 01:28 - 00013312 ____N (Microsoft Corporation) C:\WINDOWS\system32\xp_eos.exe
2015-05-16 09:04 - 2014-02-27 01:28 - 00013312 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\xp_eos.exe
2015-05-16 09:02 - 2011-07-15 15:29 - 00456320 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mrxsmb.sys
2015-05-16 09:01 - 2010-08-23 18:11 - 00617472 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\comctl32.dll
2015-05-16 08:59 - 2009-11-21 17:54 - 00471552 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\aclayers.dll
2015-05-16 08:54 - 2013-07-03 04:12 - 00025088 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\hidparse.sys
2015-05-16 08:54 - 2013-07-03 03:59 - 00014976 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\usbscan.sys
2015-05-16 08:54 - 2010-06-14 16:31 - 00744448 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\helpsvc.exe
2015-05-16 08:53 - 2010-08-27 10:01 - 00119808 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\t2embed.dll
2015-05-16 08:53 - 2009-10-15 18:28 - 00081920 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fontsub.dll
2015-05-16 08:51 - 2009-03-06 16:19 - 00286720 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\pdh.dll
2015-05-16 08:51 - 2009-02-09 13:21 - 00111104 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\services.exe
2015-05-16 08:51 - 2009-02-09 12:51 - 00678400 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\advapi32.dll
2015-05-16 08:51 - 2009-02-09 12:51 - 00473600 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fastprox.dll
2015-05-16 08:51 - 2009-02-09 12:51 - 00453120 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wmiprvsd.dll
2015-05-16 08:51 - 2009-02-09 12:51 - 00401408 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\rpcss.dll
2015-05-16 08:51 - 2009-02-06 12:39 - 00035328 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\sc.exe
2015-05-16 08:51 - 2009-02-06 12:10 - 00227840 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wmiprvse.exe
2015-05-16 08:50 - 2009-06-21 23:45 - 00153088 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\triedit.dll
2015-05-16 08:43 - 2009-07-28 00:24 - 00128512 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\dhtmled.ocx
2015-05-16 08:40 - 2011-04-21 15:37 - 00105472 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mup.sys
2015-05-16 08:40 - 2008-05-08 16:02 - 00203136 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\rmcast.sys
2015-05-16 08:39 - 2013-02-12 02:32 - 00012928 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\usb8023x.sys
2015-05-16 08:39 - 2013-02-12 02:32 - 00012928 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\usb8023.sys
2015-05-16 08:34 - 2013-07-17 02:58 - 00123008 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\usbvideo.sys
2015-05-16 08:34 - 2013-07-17 02:58 - 00060160 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\usbaudio.sys
2015-05-16 08:34 - 2013-07-17 02:58 - 00046848 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\irbus.sys
2015-05-16 08:34 - 2008-05-01 16:34 - 00331776 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msadce.dll
2015-05-16 08:27 - 2012-05-28 20:16 - 00536576 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msado15.dll
2015-05-16 08:25 - 2015-05-16 08:25 - 00000000 ____D () C:\Dokumente und Einstellungen\Martina\Lokale Einstellungen\Anwendungsdaten\Mozilla
2015-05-16 08:25 - 2015-05-16 08:25 - 00000000 ____D () C:\Dokumente und Einstellungen\Martina\Anwendungsdaten\Mozilla
2015-05-16 08:24 - 2013-08-09 02:55 - 00144128 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\usbport.sys
2015-05-16 08:24 - 2013-08-09 02:55 - 00032384 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\usbccgp.sys
2015-05-16 08:24 - 2013-08-09 02:55 - 00005376 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\usbd.sys
2015-05-16 08:24 - 2012-07-04 16:05 - 00139784 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\rdpwd.sys
2015-05-16 08:24 - 2010-06-18 15:36 - 03558912 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\moviemk.exe
2015-05-16 08:24 - 2009-03-18 13:02 - 00030336 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\usbehci.sys
2015-05-16 08:21 - 2013-11-27 22:21 - 00040960 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ndproxy.sys
2015-05-16 08:21 - 2013-07-04 09:33 - 02195840 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ntoskrnl.exe
2015-05-16 08:21 - 2013-07-04 09:33 - 02152448 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ntkrnlmp.exe
2015-05-16 08:21 - 2013-07-04 09:33 - 02072448 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ntkrnlpa.exe
2015-05-16 08:21 - 2013-07-04 09:33 - 02031104 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ntkrpamp.exe
2015-05-16 08:21 - 2012-01-11 21:06 - 00003072 ____N () C:\WINDOWS\system32\iacenc.dll
2015-05-16 08:21 - 2012-01-11 21:06 - 00003072 ____N () C:\WINDOWS\system32\dllcache\iacenc.dll
2015-05-16 08:21 - 2011-07-08 16:02 - 00010496 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ndistapi.sys
2015-05-16 08:21 - 2010-12-09 17:15 - 00743936 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ntdll.dll
2015-05-16 08:21 - 2010-07-16 14:01 - 00220160 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wordpad.exe
2015-05-16 08:21 - 2009-11-21 17:54 - 01206508 ____N () C:\WINDOWS\system32\dllcache\sysmain.sdb
2015-05-16 08:20 - 2010-10-11 16:59 - 00045568 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wab.exe
2015-05-16 08:13 - 2015-05-16 08:13 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB898461$
2015-05-16 08:13 - 2015-05-16 08:13 - 00000000 ____D () C:\WINDOWS\system32\PreInstall
2015-05-16 01:16 - 2015-05-16 01:16 - 00000000 ____D () C:\Dokumente und Einstellungen\Martina\Anwendungsdaten\Avira
2015-05-16 01:16 - 2015-05-16 01:16 - 00000000 ____D () C:\Dokumente und Einstellungen\LocalService\Anwendungsdaten\Avira
2015-05-16 01:14 - 2015-04-16 15:23 - 00136216 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avipbb.sys
2015-05-16 01:14 - 2015-04-16 15:23 - 00107400 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avgntflt.sys
2015-05-16 01:14 - 2015-04-16 15:23 - 00037896 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avkmgr.sys
2015-05-16 01:14 - 2015-04-16 15:23 - 00028520 _____ (Avira GmbH) C:\WINDOWS\system32\Drivers\ssmdrv.sys
2015-05-16 01:03 - 2015-05-16 08:12 - 00000664 _____ () C:\WINDOWS\system32\d3d9caps.dat
2015-05-16 00:46 - 2015-05-18 19:24 - 00050584 _____ () C:\Dokumente und Einstellungen\Martina\Lokale Einstellungen\Anwendungsdaten\GDIPFONTCACHEV1.DAT
2015-05-16 00:45 - 2015-05-16 21:49 - 00000768 _____ () C:\Dokumente und Einstellungen\Martina\Startmenü\Programme\Windows Media Player.lnk
2015-05-16 00:43 - 2015-05-22 21:25 - 00000190 ___SH () C:\Dokumente und Einstellungen\Martina\ntuser.ini
2015-05-16 00:43 - 2015-05-22 21:25 - 00000000 ____D () C:\Dokumente und Einstellungen\Martina
2015-05-16 00:43 - 2015-05-21 19:47 - 00000000 ___RD () C:\Dokumente und Einstellungen\Martina\Startmenü\Programme
2015-05-16 00:43 - 2015-05-18 20:09 - 00203328 _____ () C:\WINDOWS\system32\FNTCACHE.DAT
2015-05-16 00:43 - 2015-05-16 21:47 - 00000140 _____ () C:\Dokumente und Einstellungen\Martina\Lokale Einstellungen\Anwendungsdaten\fusioncache.dat
2015-05-16 00:43 - 2015-05-16 10:04 - 00000000 ___RD () C:\Dokumente und Einstellungen\Martina\Startmenü\Programme\Zubehör
2015-05-16 00:43 - 2015-05-16 10:04 - 00000000 ___RD () C:\Dokumente und Einstellungen\Martina\Eigene Dateien\Eigene Musik
2015-05-16 00:43 - 2015-05-16 10:04 - 00000000 ___RD () C:\Dokumente und Einstellungen\Martina\Eigene Dateien\Eigene Bilder
2015-05-16 00:43 - 2015-05-16 00:45 - 00000000 __SHD () C:\Dokumente und Einstellungen\Martina\Lokale Einstellungen\Verlauf
2015-05-16 00:43 - 2015-05-15 08:01 - 00000000 ___RD () C:\Dokumente und Einstellungen\Martina\Startmenü\Programme\Autostart
2015-05-16 00:43 - 2015-05-15 08:01 - 00000000 ___RD () C:\Dokumente und Einstellungen\Martina\Startmenü
2015-05-16 00:43 - 2015-05-15 08:01 - 00000000 ____D () C:\Dokumente und Einstellungen\Martina\Lokale Einstellungen\Anwendungsdaten\{3248F0A6-6813-11D6-A77B-00B0D0150060}
2015-05-16 00:43 - 2006-08-25 07:12 - 00000000 ___HD () C:\Dokumente und Einstellungen\Martina\Netzwerkumgebung
2015-05-16 00:43 - 2006-08-25 07:12 - 00000000 ___HD () C:\Dokumente und Einstellungen\Martina\Druckumgebung
2015-05-16 00:43 - 2006-08-25 07:12 - 00000000 ____D () C:\Dokumente und Einstellungen\Martina\Anwendungsdaten\SampleView
2015-05-16 00:43 - 2006-08-24 21:11 - 00000000 _____ () C:\Dokumente und Einstellungen\Martina\Lokale Einstellungen\Anwendungsdaten\QSwitch.txt
2015-05-16 00:43 - 2006-08-24 21:11 - 00000000 _____ () C:\Dokumente und Einstellungen\Martina\Lokale Einstellungen\Anwendungsdaten\DSwitch.txt
2015-05-16 00:43 - 2006-08-24 21:11 - 00000000 _____ () C:\Dokumente und Einstellungen\Martina\Lokale Einstellungen\Anwendungsdaten\AtStart.txt
2015-05-16 00:43 - 2006-08-24 20:52 - 00001491 _____ () C:\Dokumente und Einstellungen\Martina\Startmenü\Programme\Software Setup.lnk
2015-05-16 00:43 - 2004-08-07 07:53 - 00001503 _____ () C:\Dokumente und Einstellungen\Martina\Startmenü\Programme\Remoteunterstützung.lnk
2015-05-16 00:42 - 2015-05-22 21:25 - 00199582 _____ () C:\Dokumente und Einstellungen\LocalService\Lokale Einstellungen\Anwendungsdaten\WPFFontCache_v0400-System.dat
2015-05-16 00:42 - 2015-05-16 00:42 - 00417002 _____ () C:\Dokumente und Einstellungen\LocalService\Lokale Einstellungen\Anwendungsdaten\WPFFontCache_v0400-S-1-5-21-1310988380-3352743311-3678797310-500-0.dat
2015-05-15 23:53 - 2015-05-15 23:53 - 00000000 ____D () C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Powertoys for Windows XP
2015-05-15 23:53 - 2003-06-25 16:05 - 00266360 _____ (Microsoft Corporation) C:\WINDOWS\system32\TweakUI.exe
2015-05-15 23:38 - 2015-05-15 23:38 - 00000000 ____D () C:\Programme\MSECache
2015-05-15 23:35 - 2015-05-16 01:15 - 00000000 ____D () C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Avira
2015-05-15 23:35 - 2015-05-15 23:35 - 00000832 _____ () C:\Dokumente und Einstellungen\All Users\Desktop\Avira.lnk
2015-05-15 23:31 - 2015-05-16 00:02 - 00050584 _____ () C:\Dokumente und Einstellungen\Administrator\Lokale Einstellungen\Anwendungsdaten\GDIPFONTCACHEV1.DAT
2015-05-15 23:27 - 2015-05-15 23:27 - 00000400 _____ () C:\WINDOWS\ODBC.INI
2015-05-15 23:26 - 2015-05-15 23:26 - 00000000 ____D () C:\Programme\Gemeinsame Dateien\DESIGNER
2015-05-15 23:26 - 2015-05-15 23:26 - 00000000 ____D () C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Microsoft Office
2015-05-15 23:26 - 2007-04-09 13:23 - 00028040 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdimon.dll
2015-05-15 23:25 - 2015-05-15 23:38 - 00000000 ____D () C:\Programme\Microsoft Office
2015-05-15 23:25 - 2015-05-15 23:26 - 00000000 ____D () C:\WINDOWS\SHELLNEW
2015-05-15 23:12 - 2015-05-15 23:12 - 00000000 ___RD () C:\MSOCache
2015-05-15 23:08 - 2015-05-15 23:08 - 00000020 _____ () C:\WINDOWS\system32\d.scf
2015-05-15 23:08 - 2015-05-15 23:08 - 00000000 __RSH () C:\MSDOS.SYS
2015-05-15 23:08 - 2015-05-15 23:08 - 00000000 __RSH () C:\IO.SYS
2015-05-15 23:06 - 2015-05-15 23:06 - 00000000 ____D () C:\Dokumente und Einstellungen\Administrator\Registry_Change
2015-05-15 22:56 - 2015-05-15 22:56 - 00023840 _____ (REALiX(tm)) C:\WINDOWS\system32\Drivers\HWiNFO32.SYS
2015-05-15 22:56 - 2015-05-15 22:56 - 00001749 _____ () C:\Dokumente und Einstellungen\All Users\Desktop\Driver Booster 2.lnk
2015-05-15 22:56 - 2015-05-15 22:56 - 00000000 ____D () C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Driver Booster 2
2015-05-15 22:56 - 2015-05-15 22:56 - 00000000 ____D () C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\ProductData
2015-05-15 22:56 - 2015-05-15 22:56 - 00000000 ____D () C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\IObit
2015-05-15 22:56 - 2015-05-15 22:56 - 00000000 ____D () C:\Dokumente und Einstellungen\Administrator\Anwendungsdaten\IObit
2015-05-15 22:55 - 2015-05-15 22:55 - 00000000 ____D () C:\Programme\IObit
2015-05-15 22:52 - 2015-05-15 22:52 - 00000731 _____ () C:\Dokumente und Einstellungen\All Users\Desktop\Picasa 3.lnk
2015-05-15 22:51 - 2015-05-15 22:51 - 00000000 ____D () C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Picasa 3
2015-05-15 22:51 - 2015-05-15 22:51 - 00000000 ____D () C:\Dokumente und Einstellungen\Administrator\Anwendungsdaten\vlc
2015-05-15 22:50 - 2015-05-15 22:50 - 00000691 _____ () C:\Dokumente und Einstellungen\All Users\Desktop\VLC media player.lnk
2015-05-15 22:50 - 2015-05-15 22:50 - 00000000 ____D () C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\VideoLAN
2015-05-15 22:49 - 2015-05-15 22:49 - 00000000 ____D () C:\Programme\VideoLAN
2015-05-15 22:48 - 2015-05-15 22:48 - 00000000 ____D () C:\Dokumente und Einstellungen\Administrator\Lokale Einstellungen\Anwendungsdaten\Adobe
2015-05-15 22:19 - 2015-05-15 22:32 - 00000000 ____D () C:\Dokumente und Einstellungen\Administrator\Anwendungsdaten\U3
2015-05-15 22:14 - 2015-05-15 22:14 - 00001638 _____ () C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Mozilla Thunderbird.lnk
2015-05-15 22:14 - 2015-05-15 22:14 - 00001632 _____ () C:\Dokumente und Einstellungen\All Users\Desktop\Mozilla Thunderbird.lnk
2015-05-15 22:14 - 2015-05-15 22:14 - 00000000 ____D () C:\Dokumente und Einstellungen\Administrator\Lokale Einstellungen\Anwendungsdaten\Thunderbird
2015-05-15 22:14 - 2015-05-15 22:14 - 00000000 ____D () C:\Dokumente und Einstellungen\Administrator\Anwendungsdaten\Thunderbird
2015-05-15 22:13 - 2015-05-15 22:14 - 00000000 ____D () C:\Programme\Mozilla Thunderbird
2015-05-15 21:52 - 2015-05-15 23:25 - 00000000 ____D () C:\Programme\Microsoft.NET
2015-05-15 21:05 - 2015-05-22 21:24 - 00000000 ____D () C:\AdwCleaner
2015-05-15 21:04 - 2015-05-17 09:07 - 00000000 ____D () C:\Programme\Mozilla Maintenance Service
2015-05-15 21:04 - 2015-05-15 21:05 - 00000000 ____D () C:\Dokumente und Einstellungen\Administrator\Anwendungsdaten\Mozilla
2015-05-15 21:04 - 2015-05-15 21:04 - 00000702 _____ () C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Mozilla Firefox.lnk
2015-05-15 21:04 - 2015-05-15 21:04 - 00000696 _____ () C:\Dokumente und Einstellungen\All Users\Desktop\Mozilla Firefox.lnk
2015-05-15 21:04 - 2015-05-15 21:04 - 00000000 ____D () C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Mozilla
2015-05-15 21:04 - 2015-05-15 21:04 - 00000000 ____D () C:\Dokumente und Einstellungen\Administrator\Lokale Einstellungen\Anwendungsdaten\Mozilla
2015-05-15 21:01 - 2015-05-15 21:01 - 00000000 ____D () C:\Dokumente und Einstellungen\Administrator\Lokale Einstellungen\Anwendungsdaten\Help
2015-05-15 21:01 - 2015-05-15 21:01 - 00000000 ____D () C:\Dokumente und Einstellungen\Administrator\Anwendungsdaten\Help
2015-05-15 20:26 - 2015-05-16 01:13 - 00000000 ____D () C:\Programme\Avira
2015-05-15 20:26 - 2015-05-16 01:13 - 00000000 ____D () C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Avira
2015-05-15 08:57 - 2015-05-15 08:57 - 00000654 _____ () C:\Dokumente und Einstellungen\All Users\Desktop\CCleaner.lnk
2015-05-15 08:57 - 2015-05-15 08:57 - 00000000 ____D () C:\Programme\CCleaner
2015-05-15 08:57 - 2015-05-15 08:57 - 00000000 ____D () C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\CCleaner
2015-05-15 08:55 - 2015-05-15 22:53 - 00001919 _____ () C:\WINDOWS\epplauncher.mif
2015-05-15 08:26 - 2015-05-15 08:26 - 00000060 _____ () C:\WINDOWS\system32\SYSDRV.DAT
2015-05-15 08:25 - 2015-05-15 08:25 - 00000000 ____D () C:\WINDOWS\i386
2015-05-15 08:24 - 2015-05-16 00:43 - 00000000 ____D () C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Package Cache
2015-05-15 08:22 - 2015-05-15 08:22 - 00000090 _____ () C:\WINDOWS\system32\spupdwxp.log
2015-05-15 00:48 - 2015-05-16 21:49 - 00000000 ____D () C:\WINDOWS\system32\de-de
2015-05-15 00:48 - 2015-05-15 00:48 - 00000000 ____D () C:\WINDOWS\system32\de
2015-05-15 00:48 - 2015-05-15 00:48 - 00000000 ____D () C:\WINDOWS\system32\bits
2015-05-15 00:48 - 2015-05-15 00:48 - 00000000 ____D () C:\WINDOWS\l2schemas
2015-05-15 00:48 - 2013-11-13 03:13 - 00046080 ____N (Microsoft Corporation) C:\WINDOWS\system32\tzchange.exe
2015-05-15 00:48 - 2013-07-17 02:58 - 00046848 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\irbus.sys
2015-05-15 00:48 - 2013-02-27 07:31 - 00131072 ____N (Microsoft Corporation) C:\WINDOWS\system32\aaclient.dll
2015-05-15 00:48 - 2013-02-27 07:31 - 00036864 ____N (Microsoft Corporation) C:\WINDOWS\system32\tsgqec.dll
2015-05-15 00:48 - 2012-11-06 04:01 - 01371648 ____N (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll
2015-05-15 00:48 - 2012-11-06 04:01 - 01371648 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msxml6.dll
2015-05-15 00:48 - 2009-01-07 18:21 - 00121856 _____ (Microsoft Corporation) C:\WINDOWS\system32\xmllite.dll
2015-05-15 00:48 - 2008-04-14 07:53 - 00073796 ____N (Smart Link) C:\WINDOWS\system32\slserv.exe
2015-05-15 00:48 - 2008-04-14 07:53 - 00032866 ____N (Smart Link) C:\WINDOWS\system32\slrundll.exe
2015-05-15 00:48 - 2008-04-14 07:53 - 00032866 ____N (Smart Link) C:\WINDOWS\slrundll.exe
2015-05-15 00:48 - 2008-04-14 07:53 - 00032768 ____N (Microsoft Corporation) C:\WINDOWS\system32\setupn.exe
2015-05-15 00:48 - 2008-04-14 07:53 - 00028672 ____N (Microsoft Corporation) C:\WINDOWS\system32\vidcap.ax
2015-05-15 00:48 - 2008-04-14 07:53 - 00028672 ____N (Microsoft Corporation) C:\WINDOWS\system32\verclsid.exe
2015-05-15 00:48 - 2008-04-14 07:53 - 00023040 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\ativmvxx.ax
2015-05-15 00:48 - 2008-04-14 07:53 - 00009728 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\ativdaxx.ax
2015-05-15 00:48 - 2008-04-14 07:52 - 04274816 ____N (NVIDIA Corporation) C:\WINDOWS\system32\nv4_disp.dll
2015-05-15 00:48 - 2008-04-14 07:52 - 01888992 ____N (ATI Technologies Inc. ) C:\WINDOWS\system32\ati3duag.dll
2015-05-15 00:48 - 2008-04-14 07:52 - 01737856 ____N (Matrox Graphics Inc.) C:\WINDOWS\system32\mtxparhd.dll
2015-05-15 00:48 - 2008-04-14 07:52 - 00870784 ____N (ATI Technologies Inc. ) C:\WINDOWS\system32\ati3d1ag.dll
2015-05-15 00:48 - 2008-04-14 07:52 - 00712704 ____N (Microsoft Corporation) C:\WINDOWS\system32\windowscodecs.dll
2015-05-15 00:48 - 2008-04-14 07:52 - 00651264 ____N (Microsoft Corporation) C:\WINDOWS\system32\dot3ui.dll
2015-05-15 00:48 - 2008-04-14 07:52 - 00516768 ____N (ATI Technologies Inc. ) C:\WINDOWS\system32\ativvaxx.dll
2015-05-15 00:48 - 2008-04-14 07:52 - 00412160 ____N (Microsoft Corporation) C:\WINDOWS\system32\photometadatahandler.dll
2015-05-15 00:48 - 2008-04-14 07:52 - 00397312 ____N (Microsoft Corporation) C:\WINDOWS\system32\mmcex.dll
2015-05-15 00:48 - 2008-04-14 07:52 - 00397056 ____N (S3 Graphics, Inc.) C:\WINDOWS\system32\s3gnb.dll
2015-05-15 00:48 - 2008-04-14 07:52 - 00377984 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\ati2dvaa.dll
2015-05-15 00:48 - 2008-04-14 07:52 - 00346112 ____N (Microsoft Corporation) C:\WINDOWS\system32\windowscodecsext.dll
2015-05-15 00:48 - 2008-04-14 07:52 - 00294400 ____N (Microsoft Corporation) C:\WINDOWS\system32\qagentrt.dll
2015-05-15 00:48 - 2008-04-14 07:52 - 00290304 ____N (Microsoft Corporation) C:\WINDOWS\system32\rhttpaa.dll
2015-05-15 00:48 - 2008-04-14 07:52 - 00286792 ____N (Smart Link) C:\WINDOWS\system32\slextspk.dll
2015-05-15 00:48 - 2008-04-14 07:52 - 00276992 ____N (Microsoft Corporation) C:\WINDOWS\system32\wmphoto.dll
2015-05-15 00:48 - 2008-04-14 07:52 - 00233472 ____N (Microsoft Corporation) C:\WINDOWS\system32\azroles.dll
2015-05-15 00:48 - 2008-04-14 07:52 - 00229376 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\ati2cqag.dll
2015-05-15 00:48 - 2008-04-14 07:52 - 00201728 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\ati2dvag.dll
2015-05-15 00:48 - 2008-04-14 07:52 - 00198656 ____N (Microsoft Corporation) C:\WINDOWS\system32\napmontr.dll
2015-05-15 00:48 - 2008-04-14 07:52 - 00188508 ____N (Smart Link) C:\WINDOWS\system32\slgen.dll
2015-05-15 00:48 - 2008-04-14 07:52 - 00184832 ____N (Microsoft Corporation) C:\WINDOWS\system32\eapp3hst.dll
2015-05-15 00:48 - 2008-04-14 07:52 - 00184320 ____N (Microsoft Corporation) C:\WINDOWS\system32\microsoft.managementconsole.dll
2015-05-15 00:48 - 2008-04-14 07:52 - 00182272 ____N (Microsoft Corporation) C:\WINDOWS\system32\eapphost.dll
2015-05-15 00:48 - 2008-04-14 07:52 - 00177664 ____N (Microsoft Corporation) C:\WINDOWS\system32\napstat.exe
2015-05-15 00:48 - 2008-04-14 07:52 - 00155136 ____N (Microsoft Corporation) C:\WINDOWS\system32\mssha.dll
2015-05-15 00:48 - 2008-04-14 07:52 - 00151040 ____N (Microsoft Corporation) C:\WINDOWS\system32\qagent.dll
2015-05-15 00:48 - 2008-04-14 07:52 - 00145408 ____N (Microsoft Corporation) C:\WINDOWS\system32\onex.dll
2015-05-15 00:48 - 2008-04-14 07:52 - 00133120 ____N (Microsoft Corporation) C:\WINDOWS\system32\dot3svc.dll
2015-05-15 00:48 - 2008-04-14 07:52 - 00126976 ____N (Microsoft Corporation) C:\WINDOWS\system32\eappcfg.dll
2015-05-15 00:48 - 2008-04-14 07:52 - 00106496 ____N (Microsoft Corporation) C:\WINDOWS\system32\mmcfxcommon.dll
2015-05-15 00:48 - 2008-04-14 07:52 - 00095232 ____N (Microsoft Corporation) C:\WINDOWS\system32\eappgnui.dll
2015-05-15 00:48 - 2008-04-14 07:52 - 00086016 ____N (Conexant) C:\WINDOWS\system32\mdmxsdk.dll
2015-05-15 00:48 - 2008-04-14 07:52 - 00076800 ____N (Microsoft Corporation) C:\WINDOWS\system32\qutil.dll
2015-05-15 00:48 - 2008-04-14 07:52 - 00073832 ____N (Smart Link) C:\WINDOWS\system32\slcoinst.dll
2015-05-15 00:48 - 2008-04-14 07:52 - 00069120 ____N (Microsoft Corporation) C:\WINDOWS\system32\wlanapi.dll
2015-05-15 00:48 - 2008-04-14 07:52 - 00062976 ____N (Microsoft Corporation) C:\WINDOWS\system32\dot3cfg.dll
2015-05-15 00:48 - 2008-04-14 07:52 - 00062464 ____N (Microsoft Corporation) C:\WINDOWS\system32\qcliprov.dll
2015-05-15 00:48 - 2008-04-14 07:52 - 00061952 ____N (Microsoft Corporation) C:\WINDOWS\system32\rasqec.dll
2015-05-15 00:48 - 2008-04-14 07:52 - 00061440 ____N (Microsoft Corporation) C:\WINDOWS\system32\kmsvc.dll
2015-05-15 00:48 - 2008-04-14 07:52 - 00059392 ____N (Microsoft Corporation) C:\WINDOWS\system32\eapqec.dll
2015-05-15 00:48 - 2008-04-14 07:52 - 00056832 ____N (Microsoft Corporation) C:\WINDOWS\system32\dot3msm.dll
2015-05-15 00:48 - 2008-04-14 07:52 - 00050688 ____N (Microsoft Corporation) C:\WINDOWS\system32\tspkg.dll
2015-05-15 00:48 - 2008-04-14 07:52 - 00048640 ____N (Microsoft Corporation) C:\WINDOWS\system32\dhcpqec.dll
2015-05-15 00:48 - 2008-04-14 07:52 - 00040960 ____N (Microsoft Corporation) C:\WINDOWS\system32\eappprxy.dll
2015-05-15 00:48 - 2008-04-14 07:52 - 00039936 ____N (Microsoft Corporation) C:\WINDOWS\system32\dot3gpclnt.dll
2015-05-15 00:48 - 2008-04-14 07:52 - 00039936 ____N (Microsoft Corporation) C:\WINDOWS\system32\dimsroam.dll
2015-05-15 00:48 - 2008-04-14 07:52 - 00037376 ____N (Microsoft Corporation) C:\WINDOWS\system32\l2gpstore.dll
2015-05-15 00:48 - 2008-04-14 07:52 - 00033792 ____N (Microsoft Corporation) C:\WINDOWS\system32\mmcperf.exe
2015-05-15 00:48 - 2008-04-14 07:52 - 00033792 ____N (Microsoft Corporation) C:\WINDOWS\system32\eapsvc.dll
2015-05-15 00:48 - 2008-04-14 07:52 - 00032768 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\ativtmxx.dll
2015-05-15 00:48 - 2008-04-14 07:52 - 00032285 ____N (Conexant Systems, Inc.) C:\WINDOWS\system32\hsfcisp2.dll
2015-05-15 00:48 - 2008-04-14 07:52 - 00030720 ____N (Microsoft Corporation) C:\WINDOWS\system32\eapolqec.dll
2015-05-15 00:48 - 2008-04-14 07:52 - 00030208 ____N (Microsoft Corporation) C:\WINDOWS\system32\napipsec.dll
2015-05-15 00:48 - 2008-04-14 07:52 - 00026112 ____N (Microsoft Corporation) C:\WINDOWS\system32\dot3api.dll
2015-05-15 00:48 - 2008-04-14 07:52 - 00019456 ____N (Microsoft Corporation) C:\WINDOWS\system32\dimsntfy.dll
2015-05-15 00:48 - 2008-04-14 07:52 - 00012800 ____N (Microsoft Corporation) C:\WINDOWS\system32\credssp.dll
2015-05-15 00:48 - 2008-04-14 07:52 - 00009216 ____N (Microsoft Corporation) C:\WINDOWS\system32\dot3dlg.dll
2015-05-15 00:48 - 2008-04-14 07:52 - 00007168 ____N (Microsoft Corporation) C:\WINDOWS\system32\bitsprx4.dll
2015-05-15 00:48 - 2008-04-14 07:50 - 00006144 ____N (Microsoft Corporation) C:\WINDOWS\system32\kbdpash.dll
2015-05-15 00:48 - 2008-04-14 07:50 - 00006144 ____N (Microsoft Corporation) C:\WINDOWS\system32\kbdnepr.dll
2015-05-15 00:48 - 2008-04-14 07:50 - 00006144 ____N (Microsoft Corporation) C:\WINDOWS\system32\kbdiultn.dll
2015-05-15 00:48 - 2008-04-14 07:50 - 00006144 ____N (Microsoft Corporation) C:\WINDOWS\system32\kbdbhc.dll
2015-05-15 00:48 - 2008-04-14 07:27 - 00093184 ____N (Microsoft Corporation) C:\WINDOWS\system32\msxml6r.dll
2015-05-15 00:48 - 2008-04-14 07:27 - 00093184 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msxml6r.dll
2015-05-15 00:48 - 2008-04-14 07:26 - 00081408 ____N (Microsoft Corporation) C:\WINDOWS\system32\msshavmsg.dll
2015-05-15 00:48 - 2008-04-14 00:13 - 00009728 ____N (Microsoft Corporation) C:\WINDOWS\system32\comsdupd.exe
2015-05-15 00:43 - 2015-05-15 00:43 - 00000000 ____D () C:\WINDOWS\ServicePackFiles
2015-05-15 00:39 - 2013-07-17 02:58 - 00123008 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbvideo.sys
2015-05-15 00:39 - 2013-02-12 02:32 - 00012928 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usb8023x.sys
2015-05-15 00:39 - 2008-06-14 19:32 - 00273024 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys
2015-05-15 00:39 - 2008-04-14 07:52 - 00025471 ____N (Intel(R) Corporation) C:\WINDOWS\system32\Drivers\atv04nt5.dll
2015-05-15 00:39 - 2008-04-14 07:52 - 00021183 ____N (Intel(R) Corporation) C:\WINDOWS\system32\Drivers\atv01nt5.dll
2015-05-15 00:39 - 2008-04-14 07:52 - 00017279 ____N (Intel(R) Corporation) C:\WINDOWS\system32\Drivers\atv10nt5.dll
2015-05-15 00:39 - 2008-04-14 07:52 - 00015423 ____N (Intel(R) Corporation) C:\WINDOWS\system32\Drivers\ch7xxnt5.dll
2015-05-15 00:39 - 2008-04-14 07:52 - 00014143 ____N (Intel(R) Corporation) C:\WINDOWS\system32\Drivers\atv06nt5.dll
2015-05-15 00:39 - 2008-04-14 07:52 - 00011359 ____N (Intel(R) Corporation) C:\WINDOWS\system32\Drivers\atv02nt5.dll
2015-05-15 00:39 - 2008-04-14 07:52 - 00011325 ____N (Intel(R) Corporation) C:\WINDOWS\system32\Drivers\vchnt5.dll
2015-05-15 00:39 - 2008-04-14 07:52 - 00004255 ____N (Intel(R) Corporation) C:\WINDOWS\system32\Drivers\adv01nt5.dll
2015-05-15 00:39 - 2008-04-14 07:52 - 00003967 ____N (Intel(R) Corporation) C:\WINDOWS\system32\Drivers\adv02nt5.dll
2015-05-15 00:39 - 2008-04-14 07:52 - 00003901 ____N (Intel(R) Corporation) C:\WINDOWS\system32\Drivers\siint5.dll
2015-05-15 00:39 - 2008-04-14 07:52 - 00003775 ____N (Intel(R) Corporation) C:\WINDOWS\system32\Drivers\adv11nt5.dll
2015-05-15 00:39 - 2008-04-14 07:52 - 00003711 ____N (Intel(R) Corporation) C:\WINDOWS\system32\Drivers\adv09nt5.dll
2015-05-15 00:39 - 2008-04-14 07:52 - 00003647 ____N (Intel(R) Corporation) C:\WINDOWS\system32\Drivers\adv07nt5.dll
2015-05-15 00:39 - 2008-04-14 07:52 - 00003615 ____N (Intel(R) Corporation) C:\WINDOWS\system32\Drivers\adv05nt5.dll
2015-05-15 00:39 - 2008-04-14 07:52 - 00003135 ____N (Intel(R) Corporation) C:\WINDOWS\system32\Drivers\adv08nt5.dll
2015-05-15 00:39 - 2008-04-14 07:24 - 00025856 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidbth.sys
2015-05-15 00:39 - 2008-04-14 07:21 - 00701952 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\ati2mtag.sys
2015-05-15 00:39 - 2008-04-14 07:21 - 00327168 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\ati2mtaa.sys
2015-05-15 00:39 - 2008-04-14 00:26 - 00030592 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rndismpx.sys
2015-05-15 00:39 - 2008-04-14 00:21 - 00101120 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthpan.sys
2015-05-15 00:39 - 2008-04-14 00:16 - 00059136 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rfcomm.sys
2015-05-15 00:39 - 2008-04-14 00:16 - 00037888 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthmodem.sys
2015-05-15 00:39 - 2008-04-14 00:16 - 00036480 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthprint.sys
2015-05-15 00:39 - 2008-04-14 00:16 - 00018944 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthusb.sys
2015-05-15 00:39 - 2008-04-14 00:16 - 00017024 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthenum.sys
2015-05-15 00:39 - 2008-04-14 00:15 - 00019200 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidir.sys
2015-05-15 00:39 - 2008-04-14 00:13 - 00014208 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wacompen.sys
2015-05-15 00:39 - 2008-04-14 00:13 - 00012672 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mutohpen.sys
2015-05-15 00:39 - 2008-04-14 00:06 - 00046464 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\gagp30kx.sys
2015-05-15 00:39 - 2008-04-14 00:06 - 00044928 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\agpcpq.sys
2015-05-15 00:39 - 2008-04-14 00:06 - 00044672 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\uagp35.sys
2015-05-15 00:39 - 2008-04-14 00:06 - 00043008 ____N (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\Drivers\amdagp.sys
2015-05-15 00:39 - 2008-04-14 00:06 - 00042752 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\alim1541.sys
2015-05-15 00:39 - 2008-04-14 00:06 - 00042368 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\agp440.sys
2015-05-15 00:39 - 2008-04-14 00:06 - 00042240 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\viaagp.sys
2015-05-15 00:39 - 2008-04-14 00:06 - 00040960 ____N (Silicon Integrated Systems Corporation) C:\WINDOWS\system32\Drivers\sisagp.sys
2015-05-15 00:39 - 2008-04-14 00:06 - 00005888 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\smbali.sys
2015-05-15 00:39 - 2008-04-13 23:53 - 01309184 ____N (Smart Link) C:\WINDOWS\system32\Drivers\mtlstrm.sys
2015-05-15 00:39 - 2008-04-13 23:53 - 01041536 ____N (Conexant Systems, Inc.) C:\WINDOWS\system32\Drivers\hsfdpsp2.sys
2015-05-15 00:39 - 2008-04-13 23:53 - 00685056 ____N (Conexant Systems, Inc.) C:\WINDOWS\system32\Drivers\hsfcxts2.sys
2015-05-15 00:39 - 2008-04-13 23:53 - 00404990 ____N (Smart Link) C:\WINDOWS\system32\Drivers\slntamr.sys
2015-05-15 00:39 - 2008-04-13 23:53 - 00220032 ____N (Conexant Systems, Inc.) C:\WINDOWS\system32\Drivers\hsfbs2s2.sys
2015-05-15 00:39 - 2008-04-13 23:53 - 00180360 ____N (Smart Link) C:\WINDOWS\system32\Drivers\ntmtlfax.sys
2015-05-15 00:39 - 2008-04-13 23:53 - 00129535 ____N (Smart Link) C:\WINDOWS\system32\Drivers\slnt7554.sys
2015-05-15 00:39 - 2008-04-13 23:53 - 00126686 ____N (Smart Link) C:\WINDOWS\system32\Drivers\mtlmnt5.sys
2015-05-15 00:39 - 2008-04-13 23:53 - 00095424 ____N (Smart Link) C:\WINDOWS\system32\Drivers\slnthal.sys
2015-05-15 00:39 - 2008-04-13 23:53 - 00013776 ____N (Smart Link) C:\WINDOWS\system32\Drivers\recagent.sys
2015-05-15 00:39 - 2008-04-13 23:53 - 00013240 ____N (Smart Link) C:\WINDOWS\system32\Drivers\slwdmsup.sys
2015-05-15 00:39 - 2008-04-13 23:53 - 00011868 ____N (Conexant) C:\WINDOWS\system32\Drivers\mdmxsdk.sys
2015-05-15 00:39 - 2008-04-13 22:04 - 01897408 ____N (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nv4_mini.sys
2015-05-15 00:39 - 2008-04-13 22:04 - 00452736 ____N (Matrox Graphics Inc.) C:\WINDOWS\system32\Drivers\mtxparhm.sys
2015-05-15 00:39 - 2008-04-13 22:04 - 00166912 ____N (S3 Graphics, Inc.) C:\WINDOWS\system32\Drivers\s3gnbm.sys
2015-05-15 00:39 - 2008-04-13 22:04 - 00104960 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\atinrvxx.sys
2015-05-15 00:39 - 2008-04-13 22:04 - 00073216 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\atintuxx.sys
2015-05-15 00:39 - 2008-04-13 22:04 - 00063663 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\ati1rvxx.sys
2015-05-15 00:39 - 2008-04-13 22:04 - 00063488 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\atinxsxx.sys
2015-05-15 00:39 - 2008-04-13 22:04 - 00057856 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\atinbtxx.sys
2015-05-15 00:39 - 2008-04-13 22:04 - 00056623 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\ati1btxx.sys
2015-05-15 00:39 - 2008-04-13 22:04 - 00052224 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\atinraxx.sys
2015-05-15 00:39 - 2008-04-13 22:04 - 00036463 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\ati1tuxx.sys
2015-05-15 00:39 - 2008-04-13 22:04 - 00034735 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\ati1xsxx.sys
2015-05-15 00:39 - 2008-04-13 22:04 - 00031744 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\atinxbxx.sys
2015-05-15 00:39 - 2008-04-13 22:04 - 00030671 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\ati1raxx.sys
2015-05-15 00:39 - 2008-04-13 22:04 - 00029455 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\ati1xbxx.sys
2015-05-15 00:39 - 2008-04-13 22:04 - 00028672 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\atinsnxx.sys
2015-05-15 00:39 - 2008-04-13 22:04 - 00026367 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\ati1snxx.sys
2015-05-15 00:39 - 2008-04-13 22:04 - 00025471 ____N (Intel(R) Corporation) C:\WINDOWS\system32\Drivers\watv10nt.sys
2015-05-15 00:39 - 2008-04-13 22:04 - 00022271 ____N (Intel(R) Corporation) C:\WINDOWS\system32\Drivers\watv06nt.sys
2015-05-15 00:39 - 2008-04-13 22:04 - 00021343 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\ati1ttxx.sys
2015-05-15 00:39 - 2008-04-13 22:04 - 00014336 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\atinpdxx.sys
2015-05-15 00:39 - 2008-04-13 22:04 - 00013824 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\atinttxx.sys
2015-05-15 00:39 - 2008-04-13 22:04 - 00013824 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\atinmdxx.sys
2015-05-15 00:39 - 2008-04-13 22:04 - 00012047 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\ati1pdxx.sys
2015-05-15 00:39 - 2008-04-13 22:04 - 00011935 ____N (Intel(R) Corporation) C:\WINDOWS\system32\Drivers\wadv11nt.sys
2015-05-15 00:39 - 2008-04-13 22:04 - 00011871 ____N (Intel(R) Corporation) C:\WINDOWS\system32\Drivers\wadv09nt.sys
2015-05-15 00:39 - 2008-04-13 22:04 - 00011807 ____N (Intel(R) Corporation) C:\WINDOWS\system32\Drivers\wadv07nt.sys
2015-05-15 00:39 - 2008-04-13 22:04 - 00011615 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\ati1mdxx.sys
2015-05-15 00:39 - 2008-04-13 22:04 - 00011295 ____N (Intel(R) Corporation) C:\WINDOWS\system32\Drivers\wadv08nt.sys
2015-05-15 00:39 - 2007-04-02 21:36 - 00129045 ____N () C:\WINDOWS\system32\Drivers\cxthsfs2.cty
2015-05-15 00:39 - 2006-12-29 20:21 - 00064352 ____N () C:\WINDOWS\system32\Drivers\ativmc20.cod
2015-05-15 00:39 - 2006-12-29 20:02 - 00067866 ____N () C:\WINDOWS\system32\Drivers\netwlan5.img
2015-05-15 00:31 - 2015-05-15 00:36 - 00000000 __HDC () C:\WINDOWS\$NtServicePackUninstall$
2015-05-15 00:19 - 2015-05-15 00:19 - 00001420 _____ () C:\Dokumente und Einstellungen\Administrator\Desktop\malwarebytes_protokoll_150514.txt
2015-05-14 23:51 - 2015-05-22 20:37 - 00119512 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2015-05-14 23:51 - 2015-05-14 23:51 - 00000749 _____ () C:\Dokumente und Einstellungen\All Users\Desktop\ Malwarebytes Anti-Malware .lnk
2015-05-14 23:51 - 2015-05-14 23:51 - 00000000 ____D () C:\Programme\ Malwarebytes Anti-Malware 
2015-05-14 23:51 - 2015-05-14 23:51 - 00000000 ____D () C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Malwarebytes
2015-05-14 23:51 - 2015-04-14 09:37 - 00120024 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbamchameleon.sys
2015-05-14 23:51 - 2015-04-14 09:37 - 00023256 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbam.sys
2015-05-14 23:49 - 2008-04-14 00:15 - 00026368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbstor.sys
2015-05-14 23:45 - 2015-05-14 23:46 - 00000100 _____ () C:\WINDOWS\system32\LuResult.txt
2015-05-14 23:45 - 2015-05-14 23:45 - 00000100 _____ () C:\Dokumente und Einstellungen\Administrator\LuResult.txt
2015-05-14 23:41 - 2015-05-15 22:51 - 00000000 ____D () C:\Dokumente und Einstellungen\Administrator\Lokale Einstellungen\Anwendungsdaten\Google
2015-05-14 23:41 - 2015-05-14 23:41 - 00000000 ____D () C:\WINDOWS\system32\appmgmt
2015-05-14 23:35 - 2015-05-14 23:35 - 00000884 _____ () C:\Dokumente und Einstellungen\All Users\Startmenü\Bluetooth-Umgebung.lnk
2015-05-14 23:34 - 2015-05-15 22:51 - 00000000 ____D () C:\Programme\Google
2015-05-14 23:34 - 2015-05-14 23:34 - 00000000 ____D () C:\Programme\WIDCOMM
2015-05-14 23:33 - 2015-05-14 23:33 - 00000000 ____D () C:\WINDOWS\tiinst
2015-05-14 23:33 - 2015-05-14 23:33 - 00000000 ____D () C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\InterVideo WinDVD
2015-05-14 23:33 - 2002-11-21 10:57 - 00204800 _____ () C:\WINDOWS\system32\IVIresizeW7.dll
2015-05-14 23:33 - 2002-11-21 10:57 - 00200704 _____ () C:\WINDOWS\system32\IVIresizeA6.dll
2015-05-14 23:33 - 2002-11-21 10:57 - 00192512 _____ () C:\WINDOWS\system32\IVIresizeP6.dll
2015-05-14 23:33 - 2002-11-21 10:57 - 00192512 _____ () C:\WINDOWS\system32\IVIresizeM6.dll
2015-05-14 23:33 - 2002-11-21 10:57 - 00188416 _____ () C:\WINDOWS\system32\IVIresizePX.dll
2015-05-14 23:33 - 2002-11-21 10:57 - 00020480 _____ () C:\WINDOWS\system32\IVIresize.dll
2015-05-14 23:32 - 2015-05-14 23:32 - 00001815 __RSH () C:\WINDOWS\system32\Drivers\103C_HP_NTBK_HP Compaq nx6310 (RH342ET#ABD)_YN_0U_QCNU6492BF2_E404611044_46_I30AA_SHP_VKBC Version 58.12_B68YDU Ver. F.09_T060915_WXP2_L407_M1016_J80_7Intel_8Core2 T5500_91.66_#150514_N14E4170C_(RH342ET#ABD).MRK
2015-05-14 23:32 - 2015-05-14 23:32 - 00000000 ____D () C:\Programme\InterVideo
2015-05-14 23:30 - 2015-05-15 08:01 - 00000000 ___RD () C:\Dokumente und Einstellungen\Default User\Eigene Dateien\Eigene Musik
2015-05-14 23:30 - 2015-05-15 08:01 - 00000000 ___RD () C:\Dokumente und Einstellungen\Default User\Eigene Dateien\Eigene Bilder
2015-05-14 23:30 - 2015-05-15 08:01 - 00000000 ____D () C:\Dokumente und Einstellungen\Default User\Lokale Einstellungen\Anwendungsdaten\{3248F0A6-6813-11D6-A77B-00B0D0150060}
2015-05-14 23:30 - 2006-08-25 07:12 - 00000000 ____D () C:\Dokumente und Einstellungen\Default User\Anwendungsdaten\SampleView
2015-05-14 23:30 - 2006-08-24 21:17 - 00000190 ___SH () C:\Dokumente und Einstellungen\Default User\ntuser.ini
2015-05-14 23:30 - 2006-08-24 21:11 - 00000000 _____ () C:\Dokumente und Einstellungen\Default User\Lokale Einstellungen\Anwendungsdaten\QSwitch.txt
2015-05-14 23:30 - 2006-08-24 21:11 - 00000000 _____ () C:\Dokumente und Einstellungen\Default User\Lokale Einstellungen\Anwendungsdaten\DSwitch.txt
2015-05-14 23:30 - 2006-08-24 21:11 - 00000000 _____ () C:\Dokumente und Einstellungen\Default User\Lokale Einstellungen\Anwendungsdaten\AtStart.txt
2015-05-14 23:30 - 2006-08-24 20:52 - 00001491 _____ () C:\Dokumente und Einstellungen\Default User\Startmenü\Programme\Software Setup.lnk
2015-05-14 23:30 - 2006-08-24 20:41 - 00000146 _____ () C:\Dokumente und Einstellungen\Default User\Lokale Einstellungen\Anwendungsdaten\fusioncache.dat
2015-05-14 23:30 - 2006-08-24 20:37 - 00000747 _____ () C:\Dokumente und Einstellungen\Default User\Startmenü\Programme\Internet Explorer.lnk
2015-05-14 23:30 - 2006-08-24 20:37 - 00000718 _____ () C:\Dokumente und Einstellungen\Default User\Startmenü\Programme\Outlook Express.lnk

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-05-22 21:30 - 2004-08-07 08:08 - 01567552 _____ () C:\WINDOWS\WindowsUpdate.log
2015-05-22 21:26 - 2006-08-24 21:13 - 00000000 ____D () C:\WINDOWS\SMINST
2015-05-22 21:26 - 2004-08-07 08:08 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT
2015-05-22 21:25 - 2006-08-24 21:05 - 00065536 _____ () C:\WINDOWS\system32\config\Credenti.evt
2015-05-22 21:25 - 2004-08-07 08:08 - 00026058 _____ () C:\WINDOWS\SchedLgU.Txt
2015-05-22 20:24 - 2006-08-24 20:36 - 00000000 __SHD () C:\Dokumente und Einstellungen\LocalService
2015-05-21 20:59 - 2004-08-07 08:43 - 00000227 _____ () C:\WINDOWS\system.ini
2015-05-21 20:38 - 2004-08-07 07:47 - 00000327 __RSH () C:\boot.ini
2015-05-21 20:25 - 2006-08-24 21:10 - 00003960 _____ () C:\WINDOWS\system32\lsass.log
2015-05-20 22:53 - 2004-08-07 08:08 - 00000300 ___SH () C:\Dokumente und Einstellungen\Administrator\ntuser.ini
2015-05-20 21:41 - 2004-08-07 08:08 - 00001158 _____ () C:\WINDOWS\system32\wpa.dbl
2015-05-19 21:27 - 2006-08-25 05:31 - 00000000 ____D () C:\Dokumente und Einstellungen\Administrator
2015-05-19 13:29 - 2006-08-25 05:31 - 00000000 ____D () C:\WINDOWS\Microsoft.NET
2015-05-18 22:19 - 2006-08-25 05:31 - 00000000 ____D () C:\Programme\Gemeinsame Dateien\Microsoft Shared
2015-05-18 21:24 - 2004-08-07 08:04 - 01091506 _____ () C:\WINDOWS\system32\PerfStringBackup.INI
2015-05-18 20:58 - 2006-08-25 05:31 - 00000000 ____D () C:\WINDOWS\security
2015-05-18 20:37 - 2006-08-25 05:31 - 00000000 ___RD () C:\Dokumente und Einstellungen\All Users\Startmenü\Programme
2015-05-18 20:36 - 2006-08-24 20:52 - 00000000 ____D () C:\Programme\Adobe
2015-05-18 20:15 - 2006-08-25 05:31 - 00000000 ___RD () C:\Programme
2015-05-18 20:15 - 2006-08-25 05:31 - 00000000 ____D () C:\WINDOWS\Help
2015-05-18 19:21 - 2004-08-07 07:53 - 00000603 _____ () C:\WINDOWS\win.ini
2015-05-17 00:09 - 2006-08-24 20:43 - 00000000 ___HD () C:\WINDOWS\$hf_mig$
2015-05-16 21:49 - 2004-08-07 07:52 - 00023392 _____ () C:\WINDOWS\system32\nscompat.tlb
2015-05-16 21:49 - 2004-08-07 07:52 - 00016832 _____ () C:\WINDOWS\system32\amcompat.tlb
2015-05-16 21:48 - 2006-08-25 05:31 - 00000000 __SHD () C:\Dokumente und Einstellungen\All Users\DRM
2015-05-16 21:47 - 2006-08-24 21:05 - 00000902 _____ () C:\WINDOWS\system32\InstallUtil.InstallLog
2015-05-16 21:47 - 2006-08-24 21:05 - 00000000 ____D () C:\Programme\Windows Media Connect
2015-05-16 21:46 - 2006-08-25 05:31 - 00000000 ____D () C:\WINDOWS\system32\DirectX
2015-05-16 21:44 - 2006-08-25 05:31 - 00000000 ____D () C:\WINDOWS\system32\mui
2015-05-16 13:25 - 2006-08-25 05:31 - 00000000 ____D () C:\WINDOWS\system32\inetsrv
2015-05-16 10:57 - 2006-08-25 05:31 - 00000000 ____D () C:\Programme\Messenger
2015-05-16 10:19 - 2006-08-25 05:31 - 00000000 ____D () C:\Programme\Outlook Express
2015-05-16 10:18 - 2006-08-25 05:31 - 00000000 ____D () C:\Programme\Movie Maker
2015-05-16 09:57 - 2006-08-25 05:31 - 00000000 ____D () C:\WINDOWS\Media
2015-05-15 23:25 - 2006-08-25 05:31 - 00000000 ____D () C:\WINDOWS\pchealth
2015-05-15 23:25 - 2006-08-25 05:31 - 00000000 ____D () C:\Programme\Gemeinsame Dateien\System
2015-05-15 23:12 - 2006-08-25 05:31 - 00000000 ____D () C:\WINDOWS\system
2015-05-15 23:12 - 2006-08-24 20:39 - 00000000 ___HD () C:\Programme\InstallShield Installation Information
2015-05-15 08:23 - 2006-08-25 05:31 - 00000000 __SHD () C:\Dokumente und Einstellungen\Administrator\Lokale Einstellungen\Verlauf
2015-05-15 08:22 - 2006-08-25 05:31 - 00000000 ___RD () C:\Dokumente und Einstellungen\Default User\Startmenü\Programme
2015-05-15 08:22 - 2006-08-25 05:31 - 00000000 ___RD () C:\Dokumente und Einstellungen\Administrator\Startmenü\Programme
2015-05-15 08:22 - 2006-08-25 05:31 - 00000000 ___RD () C:\Dokumente und Einstellungen\Administrator\Eigene Dateien\Eigene Musik
2015-05-15 08:22 - 2006-08-25 05:31 - 00000000 ___RD () C:\Dokumente und Einstellungen\Administrator\Eigene Dateien\Eigene Bilder
2015-05-15 08:22 - 2004-08-07 07:58 - 00000747 _____ () C:\Dokumente und Einstellungen\Administrator\Startmenü\Programme\Internet Explorer.lnk
2015-05-15 08:22 - 2004-08-07 07:58 - 00000718 _____ () C:\Dokumente und Einstellungen\Administrator\Startmenü\Programme\Outlook Express.lnk
2015-05-15 08:22 - 2004-08-07 07:52 - 00316640 _____ () C:\WINDOWS\WMSysPr9.prx
2015-05-15 08:21 - 2006-08-24 21:01 - 00000000 ____D () C:\Programme\Gemeinsame Dateien\Symantec Shared
2015-05-15 08:21 - 2006-08-24 21:01 - 00000000 ____D () C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Symantec
2015-05-15 08:14 - 2006-08-25 05:31 - 00000000 ___RD () C:\WINDOWS\Web
2015-05-15 08:14 - 2006-08-25 05:31 - 00000000 ____D () C:\WINDOWS\twain_32
2015-05-15 08:14 - 2006-08-25 05:31 - 00000000 ____D () C:\WINDOWS\system32\URTTemp
2015-05-15 08:14 - 2006-08-25 05:31 - 00000000 ____D () C:\WINDOWS\system32\spool
2015-05-15 08:14 - 2006-08-25 05:31 - 00000000 ____D () C:\WINDOWS\system32\ras
2015-05-15 08:14 - 2006-08-25 05:31 - 00000000 ____D () C:\WINDOWS\system32\MsDtc
2015-05-15 08:14 - 2006-08-25 05:31 - 00000000 ____D () C:\WINDOWS\system32\Macromed
2015-05-15 08:14 - 2006-08-25 05:31 - 00000000 ____D () C:\WINDOWS\system32\IME
2015-05-15 08:14 - 2006-08-25 05:31 - 00000000 ____D () C:\WINDOWS\system32\icsxml
2015-05-15 08:14 - 2006-08-25 05:31 - 00000000 ____D () C:\WINDOWS\system32\ias
2015-05-15 08:14 - 2006-08-24 20:55 - 00000000 ____D () C:\WINDOWS\system32\DLA
2015-05-15 08:14 - 2006-08-24 20:40 - 00000000 ____D () C:\WINDOWS\system32\msmq
2015-05-15 08:13 - 2006-08-25 05:31 - 00000000 ____D () C:\WINDOWS\system32\1033
2015-05-15 08:13 - 2006-08-25 05:31 - 00000000 ____D () C:\WINDOWS\system32\1031
2015-05-15 08:11 - 2006-08-25 05:31 - 00000000 ____D () C:\WINDOWS\Resources
2015-05-15 08:11 - 2006-08-25 05:31 - 00000000 ____D () C:\WINDOWS\repair
2015-05-15 08:11 - 2006-08-25 05:31 - 00000000 ____D () C:\WINDOWS\Provisioning
2015-05-15 08:11 - 2006-08-24 20:57 - 00000000 ____D () C:\WINDOWS\RegisteredPackages
2015-05-15 08:10 - 2006-08-25 05:31 - 00000000 ___RD () C:\WINDOWS\Offline Web Pages
2015-05-15 08:10 - 2006-08-25 05:31 - 00000000 ____D () C:\WINDOWS\java
2015-05-15 08:09 - 2006-08-24 20:53 - 00000000 ____D () C:\WINDOWS\Hewlett-Packard
2015-05-15 08:08 - 2006-08-25 05:31 - 00000000 ____D () C:\WINDOWS\Driver Cache
2015-05-15 08:08 - 2006-08-25 05:31 - 00000000 ____D () C:\WINDOWS\Cursors
2015-05-15 08:08 - 2006-08-24 21:13 - 00000000 ____D () C:\WINDOWS\CREATOR
2015-05-15 08:08 - 2006-08-24 20:45 - 00000000 ___HD () C:\WINDOWS\$NtUninstallKB913446$
2015-05-15 08:08 - 2006-08-24 20:45 - 00000000 ___HD () C:\WINDOWS\$NtUninstallKB912919$
2015-05-15 08:08 - 2006-08-24 20:45 - 00000000 ___HD () C:\WINDOWS\$NtUninstallKB911927$
2015-05-15 08:08 - 2006-08-24 20:45 - 00000000 ___HD () C:\WINDOWS\$NtUninstallKB910728$
2015-05-15 08:08 - 2006-08-24 20:45 - 00000000 ___HD () C:\WINDOWS\$NtUninstallKB908519$
2015-05-15 08:08 - 2006-08-24 20:45 - 00000000 ___HD () C:\WINDOWS\$NtUninstallKB904706$
2015-05-15 08:08 - 2006-08-24 20:45 - 00000000 ___HD () C:\WINDOWS\$NtUninstallKB896358$
2015-05-15 08:08 - 2006-08-24 20:45 - 00000000 ___HD () C:\WINDOWS\$NtUninstallKB887472$
2015-05-15 08:08 - 2006-08-24 20:45 - 00000000 ___HD () C:\WINDOWS\$NtUninstallKB886185$
2015-05-15 08:08 - 2006-08-24 20:45 - 00000000 ___HD () C:\WINDOWS\$NtUninstallKB885884$
2015-05-15 08:08 - 2006-08-24 20:44 - 00000000 ___HD () C:\WINDOWS\$NtUninstallKB901214$
2015-05-15 08:08 - 2006-08-24 20:44 - 00000000 ___HD () C:\WINDOWS\$NtUninstallKB896727$
2015-05-15 08:08 - 2006-08-24 20:44 - 00000000 ___HD () C:\WINDOWS\$NtUninstallKB896423$
2015-05-15 08:08 - 2006-08-24 20:44 - 00000000 ___HD () C:\WINDOWS\$NtUninstallKB893066$
2015-05-15 08:08 - 2006-08-24 20:43 - 00000000 ___HD () C:\WINDOWS\$NtUninstallKB911565$
2015-05-15 08:08 - 2006-08-24 20:43 - 00000000 ___HD () C:\WINDOWS\$NtUninstallKB891781$
2015-05-15 08:08 - 2006-08-24 20:43 - 00000000 ___HD () C:\WINDOWS\$NtUninstallKB873333$
2015-05-15 08:08 - 2006-08-24 20:41 - 00000000 ___HD () C:\WINDOWS\$NtUninstallKB888111WXPSP2$
2015-05-15 08:08 - 2006-08-24 20:40 - 00000000 ___HD () C:\WINDOWS\$NtUninstallKB918005$
2015-05-15 08:08 - 2006-08-24 20:40 - 00000000 ___HD () C:\WINDOWS\$NtUninstallKB915326$
2015-05-15 08:08 - 2006-08-24 20:40 - 00000000 ___HD () C:\WINDOWS\$NtUninstallKB889673$
2015-05-15 08:08 - 2006-08-24 20:40 - 00000000 ___HD () C:\WINDOWS\$NtUninstallKB888402$
2015-05-15 08:08 - 2006-08-24 20:39 - 00000000 ___HD () C:\WINDOWS\$NtUninstallKB912436$
2015-05-15 08:08 - 2006-08-24 20:39 - 00000000 ___HD () C:\WINDOWS\$NtUninstallKB896256$
2015-05-15 08:08 - 2006-08-24 20:39 - 00000000 ___HD () C:\WINDOWS\$NtUninstallKB892559$
2015-05-15 08:08 - 2006-08-24 20:39 - 00000000 ___HD () C:\WINDOWS\$NtUninstallKB888239$
2015-05-15 08:08 - 2006-08-24 20:39 - 00000000 ___HD () C:\WINDOWS\$NtUninstallKB885855$
2015-05-15 08:08 - 2006-08-24 20:39 - 00000000 ___HD () C:\WINDOWS\$NtUninstallKB885464$
2015-05-15 08:08 - 2006-08-24 20:39 - 00000000 ___HD () C:\WINDOWS\$NtUninstallKB884575$
2015-05-15 08:08 - 2006-08-24 20:39 - 00000000 ___HD () C:\WINDOWS\$NtUninstallKB883667$
2015-05-15 08:07 - 2006-08-25 05:31 - 00000000 ____D () C:\Programme\xerox
2015-05-15 08:07 - 2006-08-24 20:56 - 00000000 ____D () C:\Programme\Synaptics
2015-05-15 08:07 - 2006-08-24 20:45 - 00000000 ___HD () C:\WINDOWS\$NtUninstallKB913580$
2015-05-15 08:07 - 2006-08-24 20:44 - 00000000 ___HD () C:\WINDOWS\$NtUninstallKB903235$
2015-05-15 08:07 - 2006-08-24 20:44 - 00000000 ___HD () C:\WINDOWS\$NtUninstallKB901190$
2015-05-15 08:07 - 2006-08-24 20:44 - 00000000 ___HD () C:\WINDOWS\$NtUninstallKB896422$
2015-05-15 08:07 - 2006-08-24 20:44 - 00000000 ___HD () C:\WINDOWS\$NtUninstallKB894391$
2015-05-15 08:07 - 2006-08-24 20:43 - 00000000 ___HD () C:\WINDOWS\$NtUninstallKB911564$
2015-05-15 08:07 - 2006-08-24 20:43 - 00000000 ___HD () C:\WINDOWS\$NtUninstallKB888113$
2015-05-15 08:07 - 2006-08-24 20:43 - 00000000 ___HD () C:\WINDOWS\$NtUninstallKB885250$
2015-05-15 08:07 - 2006-08-24 20:42 - 00000000 ___HD () C:\WINDOWS\$NtUninstallKB896243$
2015-05-15 08:07 - 2006-08-24 20:39 - 00000000 ___HD () C:\WINDOWS\$NtUninstallKB909095$
2015-05-15 08:06 - 2006-08-25 05:31 - 00000000 ____D () C:\Programme\Online-Dienste
2015-05-15 08:06 - 2006-08-24 20:55 - 00000000 ____D () C:\Programme\Sonic
2015-05-15 08:05 - 2006-08-25 05:31 - 00000000 ____D () C:\Programme\MSN Gaming Zone
2015-05-15 08:05 - 2006-08-25 05:31 - 00000000 ____D () C:\Programme\MSN
2015-05-15 08:05 - 2006-08-25 05:31 - 00000000 ____D () C:\Programme\microsoft frontpage
2015-05-15 08:05 - 2006-08-24 20:55 - 00000000 ____D () C:\Programme\Gemeinsame Dateien\TiVo Shared
2015-05-15 08:05 - 2006-08-24 20:53 - 00000000 ____D () C:\Programme\Hp
2015-05-15 08:05 - 2006-08-24 20:46 - 00000000 ____D () C:\Programme\Java
2015-05-15 08:04 - 2006-08-25 05:31 - 00000000 ____D () C:\Programme\Gemeinsame Dateien\SpeechEngines
2015-05-15 08:04 - 2006-08-25 05:31 - 00000000 ____D () C:\Programme\Gemeinsame Dateien\ODBC
2015-05-15 08:04 - 2006-08-25 05:31 - 00000000 ____D () C:\Programme\Gemeinsame Dateien\MSSoap
2015-05-15 08:04 - 2006-08-25 05:31 - 00000000 ____D () C:\Programme\Gemeinsame Dateien\Dienste
2015-05-15 08:04 - 2006-08-24 21:05 - 00000000 ____D () C:\Programme\Gemeinsame Dateien\LightScribe
2015-05-15 08:04 - 2006-08-24 21:05 - 00000000 ____D () C:\Programme\Fingerprint Sensor
2015-05-15 08:04 - 2006-08-24 20:55 - 00000000 ____D () C:\Programme\Gemeinsame Dateien\SureThing Shared
2015-05-15 08:04 - 2006-08-24 20:55 - 00000000 ____D () C:\Programme\Gemeinsame Dateien\Sonic Shared
2015-05-15 08:04 - 2006-08-24 20:46 - 00000000 ____D () C:\Programme\Gemeinsame Dateien\Java
2015-05-15 08:04 - 2006-08-24 20:41 - 00000000 ____D () C:\Programme\Analog Devices
2015-05-15 08:04 - 2006-08-24 20:39 - 00000000 ____D () C:\Programme\Gemeinsame Dateien\InstallShield
2015-05-15 08:03 - 2004-08-07 09:58 - 00000000 ____D () C:\I386
2015-05-15 08:01 - 2006-08-25 05:31 - 00000000 ___SD () C:\Dokumente und Einstellungen\Default User\Lokale Einstellungen\Verlauf
2015-05-15 08:01 - 2006-08-25 05:31 - 00000000 ___RD () C:\Dokumente und Einstellungen\Default User\Startmenü\Programme\Zubehör
2015-05-15 08:01 - 2006-08-25 05:31 - 00000000 ___RD () C:\Dokumente und Einstellungen\Default User\Startmenü\Programme\Autostart
2015-05-15 08:01 - 2006-08-25 05:31 - 00000000 ___RD () C:\Dokumente und Einstellungen\Default User\Startmenü
2015-05-15 08:01 - 2006-08-25 05:31 - 00000000 ___RD () C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Verwaltung
2015-05-15 08:01 - 2006-08-25 05:31 - 00000000 ___RD () C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Spiele
2015-05-15 08:01 - 2006-08-25 05:31 - 00000000 ___RD () C:\Dokumente und Einstellungen\All Users\Dokumente
2015-05-15 08:01 - 2006-08-25 05:31 - 00000000 ___RD () C:\Dokumente und Einstellungen\Administrator\Startmenü\Programme\Zubehör
2015-05-15 08:01 - 2006-08-25 05:31 - 00000000 ___RD () C:\Dokumente und Einstellungen\Administrator\Startmenü\Programme\Autostart
2015-05-15 08:01 - 2006-08-25 05:31 - 00000000 ___RD () C:\Dokumente und Einstellungen\Administrator\Startmenü
2015-05-15 08:01 - 2006-08-25 05:31 - 00000000 ____D () C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\SBSI
2015-05-15 08:01 - 2006-08-24 21:13 - 00000000 ____D () C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\HP Backup & Recovery
2015-05-15 08:01 - 2006-08-24 21:05 - 00000000 ____D () C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\LightScribe Direct Disc Labeling
2015-05-15 08:01 - 2006-08-24 20:56 - 00000000 ____D () C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\InstallShield
2015-05-15 08:01 - 2006-08-24 20:55 - 00000000 ____D () C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Sonic
2015-05-15 08:01 - 2006-08-24 20:53 - 00000000 ____D () C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\HP
2015-05-15 08:01 - 2006-08-24 20:53 - 00000000 ____D () C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\hpqLog
2015-05-15 08:01 - 2006-08-24 20:46 - 00000000 ____D () C:\Dokumente und Einstellungen\Administrator\Lokale Einstellungen\Anwendungsdaten\{3248F0A6-6813-11D6-A77B-00B0D0150060}
2015-05-15 08:01 - 2006-08-24 20:41 - 00000000 ____D () C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\SoundMAX
2015-05-15 08:01 - 2006-08-24 20:36 - 00000000 __SHD () C:\Dokumente und Einstellungen\NetworkService
2015-05-15 07:57 - 2007-07-15 21:36 - 00000000 ____D () C:\My Backup -- 15-07-07 1236
2015-05-15 00:49 - 2006-08-25 05:31 - 00000000 ___RD () C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Zubehör
2015-05-15 00:49 - 2006-08-25 05:31 - 00000000 ___RD () C:\Dokumente und Einstellungen\All Users\Startmenü
2015-05-15 00:49 - 2004-08-07 07:53 - 00001563 _____ () C:\Dokumente und Einstellungen\All Users\Startmenü\Programmzugriff und -standards.lnk
2015-05-15 00:48 - 2006-08-25 05:31 - 00000000 ____D () C:\WINDOWS\system32\usmt
2015-05-15 00:48 - 2006-08-25 05:31 - 00000000 ____D () C:\WINDOWS\PeerNet
2015-05-15 00:48 - 2006-08-25 05:31 - 00000000 ____D () C:\WINDOWS\ime
2015-05-15 00:43 - 2006-08-25 05:31 - 00000000 ____D () C:\WINDOWS\system32\Restore
2015-05-15 00:43 - 2006-08-25 05:31 - 00000000 ____D () C:\WINDOWS\system32\npp
2015-05-15 00:43 - 2006-08-25 05:31 - 00000000 ____D () C:\WINDOWS\msagent
2015-05-15 00:42 - 2006-08-25 05:31 - 00000000 ____D () C:\WINDOWS\system32\Com
2015-05-15 00:42 - 2006-08-25 05:31 - 00000000 ____D () C:\WINDOWS\srchasst
2015-05-15 00:42 - 2006-08-25 05:31 - 00000000 ____D () C:\Programme\Windows NT
2015-05-15 00:42 - 2006-08-25 05:31 - 00000000 ____D () C:\Programme\NetMeeting
2015-05-15 00:38 - 2002-08-29 09:00 - 00251712 ___SH () C:\NTLDR
2015-05-15 00:36 - 2006-08-24 20:42 - 00000000 ____D () C:\WINDOWS\system32\ReinstallBackups
2015-05-14 23:42 - 2006-08-24 20:39 - 00000000 ____D () C:\Programme\Hewlett-Packard
2015-05-14 23:41 - 2006-08-25 05:31 - 00000000 ___RD () C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Autostart
2015-05-14 23:36 - 1999-03-30 20:17 - 00000000 ____D () C:\System.sav
2015-05-14 23:33 - 2004-08-07 07:58 - 00000772 _____ () C:\Dokumente und Einstellungen\Administrator\Startmenü\Programme\Windows Media Player.lnk
2015-05-14 23:31 - 2006-08-24 20:36 - 00000000 __SHD () C:\Dokumente und Einstellungen\LocalService\Lokale Einstellungen\Verlauf
2015-05-14 23:29 - 2006-08-25 05:31 - 00000000 ____D () C:\WINDOWS\Registration
2015-05-14 23:27 - 2006-08-24 20:39 - 00000000 ____D () C:\Programme\HPQ

==================== Files in the root of some directories =======

2015-05-16 00:43 - 2006-08-24 21:11 - 0000000 _____ () C:\Dokumente und Einstellungen\Martina\Lokale Einstellungen\Anwendungsdaten\AtStart.txt
2015-05-16 00:43 - 2006-08-24 21:11 - 0000000 _____ () C:\Dokumente und Einstellungen\Martina\Lokale Einstellungen\Anwendungsdaten\DSwitch.txt
2015-05-16 00:43 - 2015-05-16 21:47 - 0000140 _____ () C:\Dokumente und Einstellungen\Martina\Lokale Einstellungen\Anwendungsdaten\fusioncache.dat
2015-05-16 00:43 - 2006-08-24 21:11 - 0000000 _____ () C:\Dokumente und Einstellungen\Martina\Lokale Einstellungen\Anwendungsdaten\QSwitch.txt

Some content of TEMP:
====================
C:\Dokumente und Einstellungen\Martina\Lokale Einstellungen\temp\avgnt.exe
C:\Dokumente und Einstellungen\Martina\Lokale Einstellungen\temp\Quarantine.exe
C:\Dokumente und Einstellungen\Martina\Lokale Einstellungen\temp\sqlite3.dll


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\explorer.exe
[2004-08-04 10:00] - [2008-04-14 07:52] - 1036800 ____A (Microsoft Corporation) 418045a93cd87a352098ab7dabe1b53e     

C:\WINDOWS\system32\winlogon.exe
[2004-08-04 10:00] - [2008-04-14 07:53] - 0513024 ____A (Microsoft Corporation) f09a527b422e25c478e38caa0e44417a     

C:\WINDOWS\system32\svchost.exe
[2004-08-04 10:00] - [2008-04-14 07:53] - 0014336 ____A (Microsoft Corporation) 4fbc75b74479c7a6f829e0ca19df3366     

C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll
[2004-08-04 10:00] - [2008-04-14 07:52] - 0580096 ____A (Microsoft Corporation) b0050cc5340e3a0760dd8b417ff7aebd     

C:\WINDOWS\system32\userinit.exe
[2004-08-04 10:00] - [2008-04-14 07:53] - 0026624 ____A (Microsoft Corporation) 788f95312e26389d596c0fa55834e106     

C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys
[2004-08-04 10:00] - [2008-04-14 07:22] - 0053760 ____A (Microsoft Corporation) a5a712f4e880874a477af790b5186e1d     


==================== End Of Log ============================
Danke und Gruß
trojanernick

Alt 23.05.2015, 19:47   #13
schrauber
/// the machine
/// TB-Ausbilder
 
Windows XP: Link in DHL-Mail angeklickt - Problem mit Antivirensoftware und MBR-Befund - Standard

Windows XP: Link in DHL-Mail angeklickt - Problem mit Antivirensoftware und MBR-Befund



ESET Online Scanner

  • Hier findest du eine bebilderte Anleitung zu ESET Online Scanner
  • Lade und starte Eset Online Scanner
  • Setze einen Haken bei Ja, ich bin mit den Nutzungsbedingungen einverstanden und klicke auf Starten.
  • Aktiviere die "Erkennung von eventuell unerwünschten Anwendungen" und wähle folgende Einstellungen.
  • Klicke auf Starten.
  • Die Signaturen werden heruntergeladen, der Scan beginnt automatisch.
  • Klicke am Ende des Suchlaufs auf Fertig stellen.
  • Schließe das Fenster von ESET.
  • Explorer öffnen.
  • C:\Programme\Eset\EsetOnlineScanner\log.txt (bei 64 Bit auch C:\Programme (x86)\Eset\EsetOnlineScanner\log.txt) suchen und mit Deinem Editor öffnen (bebildert).
  • Logfile hier posten.
  • Deinstallation: Systemsteuerung => Software / Programme deinstallieren => Eset Online Scanner V3 entfernen.
  • Manuell folgenden Ordner löschen und Papierkorb leeren => C:\Programme\Eset


Downloade Dir bitte SecurityCheck und:

  • Speichere es auf dem Desktop.
  • Starte SecurityCheck.exe und folge den Anweisungen in der DOS-Box.
  • Wenn der Scan beendet wurde sollte sich ein Textdokument (checkup.txt) öffnen.
Poste den Inhalt bitte hier.

und ein frisches FRST log bitte. Noch Probleme?
__________________
gruß,
schrauber

Proud Member of UNITE and ASAP since 2009

Spenden
Anleitungen und Hilfestellungen
Trojaner-Board Facebook-Seite

Keine Hilfestellung via PM!

Alt 24.05.2015, 10:23   #14
trojanernick
 
Windows XP: Link in DHL-Mail angeklickt - Problem mit Antivirensoftware und MBR-Befund - Standard

Windows XP: Link in DHL-Mail angeklickt - Problem mit Antivirensoftware und MBR-Befund


Hi Schrauber und frohe Pfingsten ;o)

Hier nun meine aktuellen Log-posts:
ESET-Log:
Code:
ATTFilter
ESETSmartInstaller@High as downloader log:
Can not open internetESETSmartInstaller@High as downloader log:
Can not open internet# product=EOS
# version=8
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.7623
# api_version=3.0.2
# EOSSerial=eca8f1ff6941754aad8155e10727fe1c
# engine=23990
# end=stopped
# remove_checked=false
# archives_checked=true
# unwanted_checked=true
# unsafe_checked=false
# antistealth_checked=true
# utc_time=2015-05-23 09:02:25
# local_time=2015-05-23 11:02:25 (+0100, Westeuropäische Sommerzeit)
# country="Germany"
# lang=1031
# osver=5.1.2600 NT Service Pack 3
# scanned=2011
# found=0
# cleaned=0
# scan_time=3989
ESETSmartInstaller@High as downloader log:
all ok
ESETSmartInstaller@High as downloader log:
all ok
# product=EOS
# version=8
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.7623
# api_version=3.0.2
# EOSSerial=eca8f1ff6941754aad8155e10727fe1c
# engine=23990
# end=finished
# remove_checked=false
# archives_checked=true
# unwanted_checked=true
# unsafe_checked=false
# antistealth_checked=true
# utc_time=2015-05-23 11:21:46
# local_time=2015-05-24 01:21:46 (+0100, Westeuropäische Sommerzeit)
# country="Germany"
# lang=1031
# osver=5.1.2600 NT Service Pack 3
# scanned=64346
# found=4
# cleaned=0
# scan_time=8137
sh=6A7746A58A89C160776C0F77730AD1E9756F3217 ft=1 fh=a503180354173763 vn="Variante von Win32/DownloadSponsor.C evtl. unerwünschte Anwendung" ac=I fn="C:\System Volume Information\_restore{B32AEE6A-215A-4A68-95FC-9CABBF245D43}\RP44\A0007500.exe"
sh=47B19AB97028D8925579BED54EFEE88C8107D6B6 ft=1 fh=34f71966959b3eb8 vn="Variante von Win32/DownloadSponsor.C evtl. unerwünschte Anwendung" ac=I fn="C:\System Volume Information\_restore{B32AEE6A-215A-4A68-95FC-9CABBF245D43}\RP50\A0007935.exe"
sh=47B19AB97028D8925579BED54EFEE88C8107D6B6 ft=1 fh=34f71966959b3eb8 vn="Variante von Win32/DownloadSponsor.C evtl. unerwünschte Anwendung" ac=I fn="C:\System Volume Information\_restore{B32AEE6A-215A-4A68-95FC-9CABBF245D43}\RP53\A0008066.exe"
sh=47B19AB97028D8925579BED54EFEE88C8107D6B6 ft=1 fh=34f71966959b3eb8 vn="Variante von Win32/DownloadSponsor.C evtl. unerwünschte Anwendung" ac=I fn="C:\System Volume Information\_restore{B32AEE6A-215A-4A68-95FC-9CABBF245D43}\RP57\A0009058.exe"
SecurityCheck-Log:
Code:
ATTFilter
 Results of screen317's Security Check version 1.001  
 Windows XP Service Pack 3 x86   
 Internet Explorer 8  
``````````````Antivirus/Firewall Check:`````````````` 
Avira Antivirus   
 Antivirus up to date!  
`````````Anti-malware/Other Utilities Check:````````` 
 CCleaner     
 Adobe Reader XI  
 Mozilla Firefox (38.0.1) 
 Mozilla Thunderbird (31.6.0) 
````````Process Check: objlist.exe by Laurent````````  
 Avira Antivir avgnt.exe 
 Avira Antivir avguard.exe 
 Avira Antivirus sched.exe  
 Avira Antivirus avshadow.exe  
`````````````````System Health check````````````````` 
 Total Fragmentation on Drive C::  
````````````````````End of Log``````````````````````
FRST-Log Teil 1:
Code:
ATTFilter
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 19-05-2015
Ran by Martina (administrator) on HP-LAPTOP on 24-05-2015 01:38:02
Running from C:\Dokumente und Einstellungen\Martina\Desktop
Loaded Profiles: Martina & Martina_2 (Available profiles: Martina & Martina_2 & Administrator)
Platform: Microsoft Windows XP Professional Service Pack 3 (X86) OS Language: Deutsch (Deutschland)
Internet Explorer Version 8 (Default browser: IE)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Microsoft Corporation) C:\WINDOWS\system32\dllhost.exe
(Microsoft Corporation) C:\WINDOWS\system32\scardsvr.exe
(Avira Operations GmbH & Co. KG) C:\Programme\Avira\Antivirus\sched.exe
(Avira Operations GmbH & Co. KG) C:\Programme\Avira\Antivirus\avguard.exe
(Broadcom Corporation.) C:\Programme\WIDCOMM\Bluetooth Software\bin\btwdins.exe
(Hewlett-Packard Company) C:\Programme\Gemeinsame Dateien\LightScribe\LSSrvc.exe
(Microsoft Corporation) C:\WINDOWS\system32\mqsvc.exe
(Hewlett-Packard Development Company, L.P.) C:\Programme\Hewlett-Packard\Shared\hpqwmiex.exe
(Microsoft Corporation) C:\Programme\Windows Media Player\wmpnetwk.exe
(Microsoft Corporation) C:\WINDOWS\system32\mqtgsvc.exe
(Avira Operations GmbH & Co. KG) C:\Programme\Avira\Antivirus\avshadow.exe
(Cognizance Corporation) C:\Programme\HPQ\IAM\Bin\asghost.exe
(Analog Devices, Inc.) C:\Programme\Analog Devices\Core\smax4pnp.exe
(Sun Microsystems, Inc.) C:\Programme\Java\jre1.5.0_06\bin\jusched.exe
(Hewlett-Packard Development Company, L.P.) C:\Programme\HPQ\HP ProtectTools Security Manager\pthosttr.exe
(Hewlett-Packard Co.) C:\Programme\Hp\HP Software Update\hpwuSchd2.exe
(Sonic Solutions) C:\WINDOWS\system32\DLA\DLACTRLW.EXE
(Synaptics, Inc.) C:\Programme\Synaptics\SynTP\SynTPEnh.exe
(Intel Corporation) C:\WINDOWS\system32\igfxtray.exe
(Intel Corporation) C:\WINDOWS\system32\hkcmd.exe
(Intel Corporation) C:\WINDOWS\system32\igfxsrvc.exe
(Intel Corporation) C:\WINDOWS\system32\igfxpers.exe
(Hewlett-Packard Development Company, L.P.) C:\Programme\HPQ\HP Wireless Assistant\HP Wireless Assistant.exe
( Hewlett-Packard Development Company, L.P.) C:\Programme\Hewlett-Packard\HP Quick Launch Buttons\QLBCTRL.exe
() C:\WINDOWS\SMINST\Scheduler.exe
(InstallShield Software Corporation) C:\Programme\Gemeinsame Dateien\InstallShield\UpdateService\issch.exe
() C:\PROGRA~1\HPQ\Shared\HPQTOA~1.EXE
(Avira Operations GmbH & Co. KG) C:\Programme\Avira\Antivirus\avgnt.exe
(Broadcom Corporation.) C:\Programme\WIDCOMM\Bluetooth Software\BTTray.exe
(Broadcom Corporation.) C:\PROGRA~1\WIDCOMM\BLUETO~1\BTSTAC~1.EXE
(Microsoft Corporation) C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
(Avira Operations GmbH & Co. KG) C:\Programme\Avira\Launcher\Avira.ServiceHost.exe
(Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
(Mozilla Corporation) C:\Programme\Mozilla Firefox\firefox.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [MsmqIntCert] => regsvr32 /s mqrt.dll
HKLM\...\Run: [SoundMAXPnP] => C:\Programme\Analog Devices\Core\smax4pnp.exe [925696 2005-05-20] (Analog Devices, Inc.)
HKLM\...\Run: [SunJavaUpdateSched] => C:\Programme\Java\jre1.5.0_06\bin\jusched.exe [36975 2005-11-10] (Sun Microsystems, Inc.)
HKLM\...\Run: [PTHOSTTR] => C:\Programme\HPQ\HP ProtectTools Security Manager\PTHOSTTR.EXE [122880 2006-02-14] (Hewlett-Packard Development Company, L.P.)
HKLM\...\Run: [HP Software Update] => C:\Programme\Hp\HP Software Update\HPWuSchd2.exe [49152 2005-02-16] (Hewlett-Packard Co.)
HKLM\...\Run: [DLA] => C:\WINDOWS\System32\DLA\DLACTRLW.EXE [122940 2005-08-31] (Sonic Solutions)
HKLM\...\Run: [SynTPEnh] => C:\Programme\Synaptics\SynTP\SynTPEnh.exe [761948 2006-03-03] (Synaptics, Inc.)
HKLM\...\Run: [igfxhkcmd] => C:\WINDOWS\system32\hkcmd.exe [77824 2006-03-23] (Intel Corporation)
HKLM\...\Run: [igfxpers] => C:\WINDOWS\system32\igfxpers.exe [118784 2006-03-23] (Intel Corporation)
HKLM\...\Run: [hpWirelessAssistant] => C:\Programme\hpq\HP Wireless Assistant\HP Wireless Assistant.exe [454656 2006-02-14] (Hewlett-Packard Development Company, L.P.)
HKLM\...\Run: [CognizanceTS] => rundll32.exe C:\PROGRA~1\HPQ\IAM\Bin\AsTsVcc.dll,RegisterModule
HKLM\...\Run: [QlbCtrl] => C:\Programme\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe [131072 2006-05-08] ( Hewlett-Packard Development Company, L.P.)
HKLM\...\Run: [Cpqset] => C:\Programme\HPQ\Default Settings\cpqset.exe [172094 2006-01-26] ()
HKLM\...\Run: [Recguard] => C:\WINDOWS\Sminst\Recguard.exe [1187840 2005-12-20] ()
HKLM\...\Run: [Reminder] => C:\WINDOWS\Creator\Remind_XP.exe [806912 2006-03-09] ()
HKLM\...\Run: [Scheduler] => C:\WINDOWS\SMINST\Scheduler.exe [892928 2006-02-15] ()
HKLM\...\Run: [WatchDog] => C:\Programme\InterVideo\DVD Check\DVDCheck.exe [184320 2005-11-08] (InterVideo Inc.)
HKLM\...\Run: [Avira Systray] => C:\Programme\Avira\Launcher\Avira.OE.Systray.exe [128760 2015-05-07] (Avira Operations GmbH & Co. KG)
HKLM\...\Run: [ISUSPM Startup] => C:\Programme\Gemeinsame Dateien\InstallShield\UpdateService\ISUSPM.exe [221184 2004-07-27] (InstallShield Software Corporation)
HKLM\...\Run: [ISUSScheduler] => C:\Programme\Gemeinsame Dateien\InstallShield\UpdateService\issch.exe [81920 2004-07-27] (InstallShield Software Corporation)
HKLM\...\Run: [avgnt] => C:\Programme\Avira\Antivirus\avgnt.exe [728312 2015-04-16] (Avira Operations GmbH & Co. KG)
HKLM\...\Run: [Adobe ARM] => C:\Programme\Gemeinsame Dateien\Adobe\ARM\1.0\AdobeARM.exe [959904 2014-05-08] (Adobe Systems Incorporated)
Winlogon\Notify\OneCard: C:\Programme\HPQ\IAM\Bin\AsWlnPkg.dll [2005-07-25] (Cognizance Corporation)
HKLM\...\Policies\Explorer: [NoCDBurning] 0
HKU\S-1-5-21-1310988380-3352743311-3678797310-1005\...\Run: [CCleaner Monitoring] => C:\Programme\CCleaner\CCleaner.exe [6278424 2015-04-23] (Piriform Ltd)
HKU\S-1-5-21-1310988380-3352743311-3678797310-1006\...\Run: [MSMSGS] => C:\Programme\Messenger\msmsgs.exe [1695232 2008-04-14] (Microsoft Corporation)
HKU\S-1-5-21-1310988380-3352743311-3678797310-1006\...\Run: [CCleaner Monitoring] => C:\Programme\CCleaner\CCleaner.exe [6278424 2015-04-23] (Piriform Ltd)
Startup: C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Autostart\BTTray.lnk [2015-05-14]
ShortcutTarget: BTTray.lnk -> C:\Programme\WIDCOMM\Bluetooth Software\BTTray.exe (Broadcom Corporation.)
Startup: C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Autostart\DVD Check.lnk [2015-05-14]
ShortcutTarget: DVD Check.lnk -> C:\Programme\InterVideo\DVD Check\DVDCheck.exe (InterVideo Inc.)
ShellIconOverlayIdentifiers: [Dokument-Manager] -> {666C7833-A9B6-4AB4-94ED-DC238C81E925} => C:\Programme\HPQ\IAM\Bin\SFSShell.dll [2005-06-16] (Cognizance Corporation)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKU\S-1-5-21-1310988380-3352743311-3678797310-1005\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=msnhome
HKU\S-1-5-21-1310988380-3352743311-3678797310-1005\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.com/
HKU\S-1-5-21-1310988380-3352743311-3678797310-1005\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\S-1-5-21-1310988380-3352743311-3678797310-1006\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.hp.com
HKU\S-1-5-21-1310988380-3352743311-3678797310-1006\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
BHO: DriveLetterAccess -> {5CA3D70E-1895-11CF-8E15-001234567890} -> C:\WINDOWS\System32\DLA\DLASHX_W.DLL [2005-08-31] (Sonic Solutions)
BHO: SSVHelper Class -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Programme\Java\jre1.5.0_06\bin\ssv.dll [2005-11-10] (Sun Microsystems, Inc.)
BHO: HP Credential Manager for ProtectTools -> {DF21F1DB-80C6-11D3-9483-B03D0EC10000} -> C:\Programme\HPQ\IAM\Bin\ItIeAddIN.dll [2005-03-03] (Infineon Technologies AG)
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.5.0/jinstall-1_5_0_06-windows-i586.cab
DPF: {CAFEEFAC-0015-0000-0006-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.5.0/jinstall-1_5_0_06-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.5.0/jinstall-1_5_0_06-windows-i586.cab
Handler: http\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\SYSTEM\OLE DB\msdaipp.dll [2005-09-20] (Microsoft Corporation)
Handler: http\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\SYSTEM\OLE DB\msdaipp.dll [2005-09-20] (Microsoft Corporation)
Handler: https\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\SYSTEM\OLE DB\msdaipp.dll [2005-09-20] (Microsoft Corporation)
Handler: https\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\SYSTEM\OLE DB\msdaipp.dll [2005-09-20] (Microsoft Corporation)
Handler: ipp\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\SYSTEM\OLE DB\msdaipp.dll [2005-09-20] (Microsoft Corporation)
Handler: msdaipp\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\SYSTEM\OLE DB\msdaipp.dll [2005-09-20] (Microsoft Corporation)
Handler: msdaipp\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\SYSTEM\OLE DB\msdaipp.dll [2005-09-20] (Microsoft Corporation)
Filter: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\WINDOWS\system32\urlmon.dll [2014-03-06] (Microsoft Corporation)
Filter: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\WINDOWS\system32\urlmon.dll [2014-03-06] (Microsoft Corporation)

FireFox:
========
FF ProfilePath: C:\Dokumente und Einstellungen\Martina\Anwendungsdaten\Mozilla\Firefox\Profiles\8uk32wj9.default
FF Homepage: www.google.de
FF Plugin: @google.com/npPicasa3,version=3.0.0 -> C:\Programme\Google\Picasa3\npPicasa3.dll [2015-02-13] (Google, Inc.)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Programme\Microsoft Silverlight\5.1.30214.0\npctrl.dll [2014-02-13] ( Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=2.2.1 -> C:\Programme\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin: Adobe Reader -> C:\Programme\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2014-08-05] (Adobe Systems Inc.)
FF Extension: Avira Browser Safety - C:\Dokumente und Einstellungen\Martina\Anwendungsdaten\Mozilla\Firefox\Profiles\8uk32wj9.default\Extensions\abs@avira.com [2015-05-16]

Chrome: 
=======
CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - https://clients2.google.com/service/update2/crx

========================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

S4 Alerter; C:\WINDOWS\system32\alrsvc.dll [17408 2008-04-14] (Microsoft Corporation) [File not signed]
R3 ALG; C:\WINDOWS\System32\alg.exe [44544 2008-04-14] (Microsoft Corporation) [File not signed]
S2 AntiVirMailService; C:\Programme\Avira\Antivirus\avmailc.exe [825856 2015-04-16] (Avira Operations GmbH & Co. KG)
R2 AntiVirSchedulerService; C:\Programme\Avira\Antivirus\sched.exe [434424 2015-04-16] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Programme\Avira\Antivirus\avguard.exe [434424 2015-04-16] (Avira Operations GmbH & Co. KG)
S2 AntiVirWebService; C:\Programme\Avira\Antivirus\AVWEBGRD.EXE [1186040 2015-04-16] (Avira Operations GmbH & Co. KG)
S3 AppMgmt; C:\WINDOWS\System32\appmgmts.dll [175616 2008-04-14] (Microsoft Corporation) [File not signed]
R2 ASChannel; C:\Programme\HPQ\IAM\Bin\ASChnl.dll [117248 2005-06-01] (Cognizance Corporation) [File not signed]
R2 AudioSrv; C:\WINDOWS\System32\audiosrv.dll [42496 2008-04-14] (Microsoft Corporation) [File not signed]
R2 Avira.OE.ServiceHost; C:\Programme\Avira\Launcher\Avira.ServiceHost.exe [206584 2015-05-07] (Avira Operations GmbH & Co. KG)
R3 BITS; C:\WINDOWS\system32\qmgr.dll [409088 2008-04-14] (Microsoft Corporation) [File not signed]
R2 btwdins; C:\Programme\WIDCOMM\Bluetooth Software\bin\btwdins.exe [258103 2006-01-18] (Broadcom Corporation.) [File not signed]
S3 CiSvc; C:\WINDOWS\system32\cisvc.exe [5632 2008-04-14] (Microsoft Corporation) [File not signed]
S3 ClipSrv; C:\WINDOWS\system32\clipsrv.exe [33280 2008-04-14] (Microsoft Corporation) [File not signed]
R2 CryptSvc; C:\WINDOWS\System32\cryptsvc.dll [62464 2008-04-14] (Microsoft Corporation) [File not signed]
R2 Dhcp; C:\WINDOWS\System32\dhcpcsvc.dll [127488 2008-04-14] (Microsoft Corporation) [File not signed]
S3 dmadmin; C:\WINDOWS\System32\dmadmin.exe [225280 2008-04-14] (Microsoft Corp., Veritas Software) [File not signed]
R2 dmserver; C:\WINDOWS\System32\dmserver.dll [24064 2008-04-14] (Microsoft Corp.) [File not signed]
S3 Dot3svc; C:\WINDOWS\System32\dot3svc.dll [133120 2008-04-14] (Microsoft Corporation) [File not signed]
S3 EapHost; C:\WINDOWS\System32\eapsvc.dll [33792 2008-04-14] (Microsoft Corporation) [File not signed]
R2 ERSvc; C:\WINDOWS\System32\ersvc.dll [23040 2008-04-14] (Microsoft Corporation) [File not signed]
S3 gusvc; C:\Programme\Google\Common\Google Updater\GoogleUpdaterService.exe [136120 2015-02-13] (Google)
R2 helpsvc; C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll [38400 2008-04-14] (Microsoft Corporation) [File not signed]
S3 hkmsvc; C:\WINDOWS\System32\kmsvc.dll [61440 2008-04-14] (Microsoft Corporation) [File not signed]
R2 hpqwmiex; C:\Programme\Hewlett-Packard\Shared\hpqwmiex.exe [135168 2006-05-02] (Hewlett-Packard Development Company, L.P.) [File not signed]
R3 HTTPFilter; C:\WINDOWS\System32\w3ssl.dll [15872 2008-04-14] (Microsoft Corporation) [File not signed]
S3 IDriverT; C:\Programme\Gemeinsame Dateien\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [File not signed]
S3 ImapiService; C:\WINDOWS\system32\imapi.exe [150528 2008-04-14] (Microsoft Corporation) [File not signed]
R2 LightScribeService; C:\Programme\Gemeinsame Dateien\LightScribe\LSSrvc.exe [49152 2006-06-20] (Hewlett-Packard Company) [File not signed]
R2 LmHosts; C:\WINDOWS\System32\lmhsvc.dll [13824 2008-04-14] (Microsoft Corporation) [File not signed]
S2 MBAMService; C:\Programme\ Malwarebytes Anti-Malware \mbamservice.exe [1080120 2015-04-14] (Malwarebytes Corporation)
S4 Messenger; C:\WINDOWS\System32\msgsvc.dll [33792 2008-04-14] (Microsoft Corporation) [File not signed]
S3 mnmsrvc; C:\WINDOWS\system32\mnmsrvc.exe [32768 2008-04-14] (Microsoft Corporation) [File not signed]
S3 MozillaMaintenance; C:\Programme\Mozilla Maintenance Service\maintenanceservice.exe [148080 2015-05-16] (Mozilla Foundation)
R3 MSDTC; C:\WINDOWS\system32\msdtc.exe [6144 2008-04-14] (Microsoft Corporation) [File not signed]
R2 MSMQ; C:\WINDOWS\system32\mqsvc.exe [4608 2008-04-14] (Microsoft Corporation) [File not signed]
R2 MSMQTriggers; C:\WINDOWS\system32\mqtgsvc.exe [117248 2008-04-14] (Microsoft Corporation) [File not signed]
S3 napagent; C:\WINDOWS\System32\qagentrt.dll [294400 2008-04-14] (Microsoft Corporation) [File not signed]
S4 NetDDE; C:\WINDOWS\system32\netdde.exe [114176 2008-04-14] (Microsoft Corporation) [File not signed]
S4 NetDDEdsdm; C:\WINDOWS\system32\netdde.exe [114176 2008-04-14] (Microsoft Corporation) [File not signed]
S3 Netlogon; C:\WINDOWS\system32\lsass.exe [13312 2008-04-14] (Microsoft Corporation) [File not signed]
R3 Netman; C:\WINDOWS\System32\netman.dll [198144 2008-04-14] (Microsoft Corporation) [File not signed]
R3 NtLmSsp; C:\WINDOWS\system32\lsass.exe [13312 2008-04-14] (Microsoft Corporation) [File not signed]
S3 NtmsSvc; C:\WINDOWS\system32\ntmssvc.dll [438272 2008-04-14] (Microsoft Corporation) [File not signed]
S3 ose; C:\Programme\Gemeinsame Dateien\Microsoft Shared\Source Engine\OSE.EXE [89136 2003-07-28] (Microsoft Corporation)
S2 PCA; C:\WINDOWS\SMINST\PCAngel.exe [294912 2006-01-12] (SoftThinks) [File not signed]
R2 PolicyAgent; C:\WINDOWS\system32\lsass.exe [13312 2008-04-14] (Microsoft Corporation) [File not signed]
R2 ProtectedStorage; C:\WINDOWS\system32\lsass.exe [13312 2008-04-14] (Microsoft Corporation) [File not signed]
S3 RasAuto; C:\WINDOWS\System32\rasauto.dll [88576 2008-04-14] (Microsoft Corporation) [File not signed]
R3 RasMan; C:\WINDOWS\System32\rasmans.dll [186368 2008-04-14] (Microsoft Corporation) [File not signed]
S3 RDSessMgr; C:\WINDOWS\system32\sessmgr.exe [143360 2008-04-14] (Microsoft Corporation) [File not signed]
S4 RemoteAccess; C:\WINDOWS\System32\mprdim.dll [53248 2008-04-14] (Microsoft Corporation) [File not signed]
R2 RemoteRegistry; C:\WINDOWS\system32\regsvc.dll [59904 2008-04-14] (Microsoft Corporation) [File not signed]
S3 RpcLocator; C:\WINDOWS\system32\locator.exe [75264 2008-04-14] (Microsoft Corporation) [File not signed]
S3 RSVP; C:\WINDOWS\system32\rsvp.exe [132608 2004-08-04] (Microsoft Corporation) [File not signed]
R2 SamSs; C:\WINDOWS\system32\lsass.exe [13312 2008-04-14] (Microsoft Corporation) [File not signed]
R2 SCardSvr; C:\WINDOWS\System32\SCardSvr.exe [99840 2008-04-14] (Microsoft Corporation) [File not signed]
R2 Schedule; C:\WINDOWS\system32\schedsvc.dll [193536 2008-04-14] (Microsoft Corporation) [File not signed]
R2 seclogon; C:\WINDOWS\System32\seclogon.dll [18944 2008-04-14] (Microsoft Corporation) [File not signed]
R2 SENS; C:\WINDOWS\system32\sens.dll [39424 2008-04-14] (Microsoft Corporation) [File not signed]
R2 SharedAccess; C:\WINDOWS\System32\ipnathlp.dll [334336 2008-04-14] (Microsoft Corporation) [File not signed]
R2 srservice; C:\WINDOWS\system32\srsvc.dll [171520 2008-04-14] (Microsoft Corporation) [File not signed]
R3 SSDPSRV; C:\WINDOWS\System32\ssdpsrv.dll [71680 2008-04-14] (Microsoft Corporation) [File not signed]
S3 stisvc; C:\WINDOWS\system32\wiaservc.dll [334336 2008-04-14] (Microsoft Corporation) [File not signed]
S3 SysmonLog; C:\WINDOWS\system32\smlogsvc.exe [94208 2008-04-14] (Microsoft Corporation) [File not signed]
R3 TapiSrv; C:\WINDOWS\System32\tapisrv.dll [249856 2008-04-14] (Microsoft Corporation) [File not signed]
R3 TermService; C:\WINDOWS\System32\termsrv.dll [297472 2008-04-14] (Microsoft Corporation) [File not signed]
S3 TlntSvr; C:\WINDOWS\system32\tlntsvr.exe [75264 2008-04-14] (Microsoft Corporation) [File not signed]
R2 TrkWks; C:\WINDOWS\system32\trkwks.dll [90112 2008-04-14] (Microsoft Corporation) [File not signed]
R3 upnphost; C:\WINDOWS\System32\upnphost.dll [186880 2008-04-14] (Microsoft Corporation) [File not signed]
S3 UPS; C:\WINDOWS\System32\ups.exe [18432 2008-04-14] (Microsoft Corporation) [File not signed]
S3 VSS; C:\WINDOWS\System32\vssvc.exe [292864 2008-04-14] (Microsoft Corporation) [File not signed]
R2 W32Time; C:\WINDOWS\system32\w32time.dll [177152 2008-04-14] (Microsoft Corporation) [File not signed]
R2 WebClient; C:\WINDOWS\System32\webclnt.dll [68096 2008-04-14] (Microsoft Corporation) [File not signed]
R2 winmgmt; C:\WINDOWS\system32\wbem\WMIsvc.dll [145408 2008-04-14] (Microsoft Corporation) [File not signed]
S3 WmiApSrv; C:\WINDOWS\system32\wbem\wmiapsrv.exe [126464 2008-04-14] (Microsoft Corporation) [File not signed]
R2 WMPNetworkSvc; C:\Programme\Windows Media Player\WMPNetwk.exe [920576 2009-02-04] (Microsoft Corporation)
R2 wscsvc; C:\WINDOWS\system32\wscsvc.dll [80896 2008-04-14] (Microsoft Corporation) [File not signed]
R2 wuauserv; C:\WINDOWS\system32\wuauserv.dll [6656 2008-04-14] (Microsoft Corporation) [File not signed]
R2 WZCSVC; C:\WINDOWS\System32\wzcsvc.dll [483840 2008-04-14] (Microsoft Corporation) [File not signed]
S3 xmlprov; C:\WINDOWS\System32\xmlprov.dll [129024 2008-04-14] (Microsoft Corporation) [File not signed]

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R0 ACPI; C:\WINDOWS\System32\DRIVERS\ACPI.sys [188800 2008-04-14] (Microsoft Corporation) [File not signed]
R0 ACPIEC; C:\WINDOWS\System32\DRIVERS\ACPIEC.sys [12160 2004-08-04] (Microsoft Corporation) [File not signed]
R3 ADIHdAudAddService; C:\WINDOWS\System32\drivers\ADIHdAud.sys [176128 2006-02-28] (Analog Devices, Inc.) [File not signed]
R3 AEAudioService; C:\WINDOWS\System32\drivers\AEAudio.sys [152960 2005-06-07] (Andrea Electronics Corporation) [File not signed]
S3 aec; C:\WINDOWS\System32\drivers\aec.sys [142592 2008-04-13] (Microsoft Corporation) [File not signed]
R3 AgereSoftModem; C:\WINDOWS\System32\DRIVERS\AGRSM.sys [1155584 2006-07-31] (Agere Systems) [File not signed]
R0 AliIde; C:\WINDOWS\System32\DRIVERS\aliide.sys [5248 2001-08-17] (Acer Laboratories Inc.) [File not signed]
R3 Arp1394; C:\WINDOWS\System32\DRIVERS\arp1394.sys [60800 2008-04-14] (Microsoft Corporation) [File not signed]
S3 AsyncMac; C:\WINDOWS\System32\DRIVERS\asyncmac.sys [14336 2008-04-14] (Microsoft Corporation) [File not signed]
R0 atapi; C:\WINDOWS\System32\DRIVERS\atapi.sys [96512 2008-04-14] (Microsoft Corporation) [File not signed]
S3 Atmarpc; C:\WINDOWS\System32\DRIVERS\atmarpc.sys [59904 2008-04-14] (Microsoft Corporation) [File not signed]
S3 ATSWPDRV; C:\WINDOWS\System32\DRIVERS\ATSwpDrv.sys [130432 2006-03-30] (AuthenTec, Inc.) [File not signed]
R3 audstub; C:\WINDOWS\System32\DRIVERS\audstub.sys [3072 2001-08-17] (Microsoft Corporation) [File not signed]
R2 avgntflt; C:\WINDOWS\System32\DRIVERS\avgntflt.sys [107400 2015-04-16] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\WINDOWS\System32\DRIVERS\avipbb.sys [136216 2015-04-16] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\WINDOWS\System32\DRIVERS\avkmgr.sys [37896 2015-04-16] (Avira Operations GmbH & Co. KG)
S3 b57w2k; C:\WINDOWS\System32\DRIVERS\b57xp32.sys [142720 2006-02-09] (Broadcom Corporation) [File not signed]
R3 bcm4sbxp; C:\WINDOWS\System32\DRIVERS\bcm4sbxp.sys [45312 2006-02-09] (Broadcom Corporation) [File not signed]
R1 Beep; C:\WINDOWS\system32\Drivers\Beep.sys [4224 2004-08-04] (Microsoft Corporation) [File not signed]
R3 BTKRNL; C:\WINDOWS\System32\DRIVERS\btkrnl.sys [1342570 2006-01-18] (Broadcom Corporation.) [File not signed]
S3 BTWUSB; C:\WINDOWS\System32\Drivers\btwusb.sys [57096 2006-01-19] (Broadcom Corporation.) [File not signed]
S1 Cdaudio; C:\WINDOWS\system32\Drivers\Cdaudio.sys [18688 2004-08-04] (Microsoft Corporation) [File not signed]
R4 Cdfs; C:\WINDOWS\system32\Drivers\Cdfs.sys [63744 2008-04-14] (Microsoft Corporation) [File not signed]
R1 Cdrom; C:\WINDOWS\System32\DRIVERS\cdrom.sys [62976 2008-04-14] (Microsoft Corporation) [File not signed]
R3 CmBatt; C:\WINDOWS\System32\DRIVERS\CmBatt.sys [13952 2008-04-14] (Microsoft Corporation) [File not signed]
R0 Compbatt; C:\WINDOWS\System32\DRIVERS\compbatt.sys [10240 2008-04-14] (Microsoft Corporation) [File not signed]
R0 Disk; C:\WINDOWS\System32\DRIVERS\disk.sys [36352 2008-04-14] (Microsoft Corporation) [File not signed]
R2 DLABOIOM; C:\WINDOWS\System32\DLA\DLABOIOM.SYS [25628 2005-08-31] (Sonic Solutions) [File not signed]
R1 DLACDBHM; C:\WINDOWS\System32\Drivers\DLACDBHM.SYS [5628 2005-08-25] (Sonic Solutions) [File not signed]
R2 DLADResN; C:\WINDOWS\System32\DLA\DLADResN.SYS [2496 2005-08-31] (Sonic Solutions) [File not signed]
R2 DLAIFS_M; C:\WINDOWS\System32\DLA\DLAIFS_M.SYS [86524 2005-08-31] (Sonic Solutions) [File not signed]
R2 DLAOPIOM; C:\WINDOWS\System32\DLA\DLAOPIOM.SYS [14684 2005-08-31] (Sonic Solutions) [File not signed]
R2 DLAPoolM; C:\WINDOWS\System32\DLA\DLAPoolM.SYS [6364 2005-08-31] (Sonic Solutions) [File not signed]
R1 DLARTL_N; C:\WINDOWS\System32\Drivers\DLARTL_N.SYS [22684 2005-08-25] (Sonic Solutions) [File not signed]
R2 DLAUDFAM; C:\WINDOWS\System32\DLA\DLAUDFAM.SYS [94332 2005-08-31] (Sonic Solutions) [File not signed]
R2 DLAUDF_M; C:\WINDOWS\System32\DLA\DLAUDF_M.SYS [87036 2005-08-31] (Sonic Solutions) [File not signed]
S4 dmboot; C:\WINDOWS\System32\drivers\dmboot.sys [800384 2008-04-14] (Microsoft Corp., Veritas Software) [File not signed]
R0 dmio; C:\WINDOWS\System32\drivers\dmio.sys [154112 2008-04-14] (Microsoft Corp., Veritas Software) [File not signed]
R0 dmload; C:\WINDOWS\System32\drivers\dmload.sys [5888 2004-08-04] (Microsoft Corp., Veritas Software.) [File not signed]
S3 DMusic; C:\WINDOWS\System32\drivers\DMusic.sys [52864 2008-04-14] (Microsoft Corporation) [File not signed]
S3 drmkaud; C:\WINDOWS\System32\drivers\drmkaud.sys [2944 2008-04-14] (Microsoft Corporation) [File not signed]
R0 DRVMCDB; C:\WINDOWS\System32\Drivers\DRVMCDB.SYS [88752 2005-08-30] (Sonic Solutions) [File not signed]
R2 DRVNDDM; C:\WINDOWS\System32\Drivers\DRVNDDM.SYS [40544 2005-08-12] (Sonic Solutions) [File not signed]
R1 eabfiltr; C:\WINDOWS\System32\DRIVERS\eabfiltr.sys [7808 2005-09-19] (Hewlett-Packard Development Company, L.P.) [File not signed]
S3 eabusb; C:\WINDOWS\System32\DRIVERS\eabusb.sys [5760 2005-09-19] (Hewlett-Packard Development Company, L.P.) [File not signed]
R4 Fastfat; C:\WINDOWS\system32\Drivers\Fastfat.sys [143744 2008-04-14] (Microsoft Corporation) [File not signed]
S3 Fdc; C:\WINDOWS\System32\DRIVERS\fdc.sys [27392 2008-04-14] (Microsoft Corporation) [File not signed]
R1 Fips; C:\WINDOWS\system32\Drivers\Fips.sys [44672 2008-04-14] (Microsoft Corporation) [File not signed]
S3 Flpydisk; C:\WINDOWS\System32\DRIVERS\flpydisk.sys [20480 2008-04-14] (Microsoft Corporation) [File not signed]
R0 FltMgr; C:\WINDOWS\System32\drivers\fltmgr.sys [129792 2008-04-14] (Microsoft Corporation) [File not signed]
U1 Fs_Rec; C:\WINDOWS\system32\Drivers\Fs_Rec.sys [7936 2004-08-04] (Microsoft Corporation) [File not signed]
R0 Ftdisk; C:\WINDOWS\System32\DRIVERS\ftdisk.sys [126336 2004-08-04] (Microsoft Corporation) [File not signed]
R3 Gpc; C:\WINDOWS\System32\DRIVERS\msgpc.sys [35072 2008-04-14] (Microsoft Corporation) [File not signed]
R3 HBtnKey; C:\WINDOWS\System32\DRIVERS\cpqbttn.sys [9344 2005-09-19] (Hewlett-Packard Development Company, L.P.) [File not signed]
R3 HDAudBus; C:\WINDOWS\System32\DRIVERS\HDAudBus.sys [144384 2008-04-13] (Windows (R) Server 2003 DDK provider) [File not signed]
R1 HWiNFO32; C:\WINDOWS\system32\drivers\HWiNFO32.SYS [23840 2015-05-15] (REALiX(tm))
R1 i8042prt; C:\WINDOWS\System32\DRIVERS\i8042prt.sys [52992 2008-04-14] (Microsoft Corporation) [File not signed]
R3 ialm; C:\WINDOWS\System32\DRIVERS\ialmnt5.sys [1166972 2006-03-23] (Intel Corporation) [File not signed]
R0 iaStor; C:\WINDOWS\System32\DRIVERS\iaStor.sys [874240 2005-10-12] (Intel Corporation) [File not signed]
R1 Imapi; C:\WINDOWS\System32\DRIVERS\imapi.sys [42112 2008-04-14] (Microsoft Corporation) [File not signed]
R0 IntelIde; C:\WINDOWS\System32\DRIVERS\intelide.sys [5504 2008-04-14] (Microsoft Corporation) [File not signed]
R1 intelppm; C:\WINDOWS\System32\DRIVERS\intelppm.sys [40448 2008-04-14] (Microsoft Corporation) [File not signed]
S3 Ip6Fw; C:\WINDOWS\System32\drivers\ip6fw.sys [36608 2008-04-14] (Microsoft Corporation) [File not signed]
S3 IpFilterDriver; C:\WINDOWS\System32\DRIVERS\ipfltdrv.sys [32896 2004-08-04] (Microsoft Corporation) [File not signed]
S3 IpInIp; C:\WINDOWS\System32\DRIVERS\ipinip.sys [20864 2008-04-14] (Microsoft Corporation) [File not signed]
R3 IpNat; C:\WINDOWS\System32\DRIVERS\ipnat.sys [152832 2008-04-14] (Microsoft Corporation) [File not signed]
R1 IPSec; C:\WINDOWS\System32\DRIVERS\ipsec.sys [75264 2008-04-14] (Microsoft Corporation) [File not signed]
S3 IRENUM; C:\WINDOWS\System32\DRIVERS\irenum.sys [11264 2008-04-14] (Microsoft Corporation) [File not signed]
R0 isapnp; C:\WINDOWS\System32\DRIVERS\isapnp.sys [37632 2008-04-14] (Microsoft Corporation) [File not signed]
R1 Kbdclass; C:\WINDOWS\System32\DRIVERS\kbdclass.sys [25216 2008-04-14] (Microsoft Corporation) [File not signed]
R1 kbdhid; C:\WINDOWS\System32\DRIVERS\kbdhid.sys [14720 2008-04-14] (Microsoft Corporation) [File not signed]
R3 kmixer; C:\WINDOWS\System32\drivers\kmixer.sys [172416 2008-04-14] (Microsoft Corporation) [File not signed]
R3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [23256 2015-04-14] (Malwarebytes Corporation)
R1 mnmdd; C:\WINDOWS\system32\Drivers\mnmdd.sys [4224 2004-08-04] (Microsoft Corporation) [File not signed]
R3 Modem; C:\WINDOWS\system32\Drivers\Modem.sys [30336 2008-04-14] (Microsoft Corporation) [File not signed]
R1 Mouclass; C:\WINDOWS\System32\DRIVERS\mouclass.sys [23552 2008-04-14] (Microsoft Corporation) [File not signed]
R0 MountMgr; C:\WINDOWS\system32\Drivers\MountMgr.sys [42368 2008-04-14] (Microsoft Corporation) [File not signed]
R3 MQAC; C:\WINDOWS\system32\drivers\mqac.sys [92544 2008-04-14] (Microsoft Corporation) [File not signed]
R3 MRxDAV; C:\WINDOWS\System32\DRIVERS\mrxdav.sys [180608 2008-04-14] (Microsoft Corporation) [File not signed]
S3 MSKSSRV; C:\WINDOWS\System32\drivers\MSKSSRV.sys [7552 2008-04-14] (Microsoft Corporation) [File not signed]
S3 MSPCLOCK; C:\WINDOWS\System32\drivers\MSPCLOCK.sys [5376 2008-04-14] (Microsoft Corporation) [File not signed]
S3 MSPQM; C:\WINDOWS\System32\drivers\MSPQM.sys [4992 2008-04-14] (Microsoft Corporation) [File not signed]
R3 mssmbios; C:\WINDOWS\System32\DRIVERS\mssmbios.sys [15488 2008-04-14] (Microsoft Corporation) [File not signed]
R0 NDIS; C:\WINDOWS\system32\Drivers\NDIS.sys [182656 2008-04-14] (Microsoft Corporation) [File not signed]
R3 Ndisuio; C:\WINDOWS\System32\DRIVERS\ndisuio.sys [14592 2008-04-14] (Microsoft Corporation) [File not signed]
R3 NdisWan; C:\WINDOWS\System32\DRIVERS\ndiswan.sys [91520 2008-04-14] (Microsoft Corporation) [File not signed]
R1 NetBIOS; C:\WINDOWS\System32\DRIVERS\netbios.sys [34688 2008-04-14] (Microsoft Corporation) [File not signed]
R1 NetBT; C:\WINDOWS\System32\DRIVERS\netbt.sys [162816 2008-04-14] (Microsoft Corporation) [File not signed]
R3 NIC1394; C:\WINDOWS\System32\DRIVERS\nic1394.sys [61824 2008-04-14] (Microsoft Corporation) [File not signed]
R1 Npfs; C:\WINDOWS\system32\Drivers\Npfs.sys [30848 2008-04-14] (Microsoft Corporation) [File not signed]
R4 Ntfs; C:\WINDOWS\system32\Drivers\Ntfs.sys [574976 2008-04-14] (Microsoft Corporation) [File not signed]
R1 Null; C:\WINDOWS\system32\Drivers\Null.sys [2944 2004-08-04] (Microsoft Corporation) [File not signed]
S3 NwlnkFlt; C:\WINDOWS\System32\DRIVERS\nwlnkflt.sys [12416 2004-08-04] (Microsoft Corporation) [File not signed]
S3 NwlnkFwd; C:\WINDOWS\System32\DRIVERS\nwlnkfwd.sys [32512 2004-08-04] (Microsoft Corporation) [File not signed]
R0 ohci1394; C:\WINDOWS\System32\DRIVERS\ohci1394.sys [61696 2008-04-14] (Microsoft Corporation) [File not signed]
S3 Parport; C:\WINDOWS\System32\DRIVERS\parport.sys [80384 2008-04-14] (Microsoft Corporation) [File not signed]
R0 PartMgr; C:\WINDOWS\system32\Drivers\PartMgr.sys [19712 2008-04-14] (Microsoft Corporation) [File not signed]
S4 ParVdm; C:\WINDOWS\system32\Drivers\ParVdm.sys [7040 2004-08-04] (Microsoft Corporation) [File not signed]
R0 PCI; C:\WINDOWS\System32\DRIVERS\pci.sys [68224 2008-04-14] (Microsoft Corporation) [File not signed]
R0 PCIIde; C:\WINDOWS\System32\DRIVERS\pciide.sys [3328 2001-08-17] (Microsoft Corporation) [File not signed]
R0 Pcmcia; C:\WINDOWS\System32\DRIVERS\pcmcia.sys [120576 2008-04-14] (Microsoft Corporation) [File not signed]
R3 PptpMiniport; C:\WINDOWS\System32\DRIVERS\raspptp.sys [48384 2008-04-14] (Microsoft Corporation) [File not signed]
R3 PSched; C:\WINDOWS\System32\DRIVERS\psched.sys [69120 2008-04-14] (Microsoft Corporation) [File not signed]
R3 Ptilink; C:\WINDOWS\System32\DRIVERS\ptilink.sys [17792 2004-08-04] (Parallel Technologies, Inc.) [File not signed]
R0 PxHelp20; C:\WINDOWS\System32\Drivers\PxHelp20.sys [20640 2005-04-25] (Sonic Solutions) [File not signed]
R1 RasAcd; C:\WINDOWS\System32\DRIVERS\rasacd.sys [8832 2004-08-04] (Microsoft Corporation) [File not signed]
S3 Rasirda; C:\WINDOWS\System32\DRIVERS\rasirda.sys [19584 2001-08-17] (Microsoft Corporation) [File not signed]
R3 Rasl2tp; C:\WINDOWS\System32\DRIVERS\rasl2tp.sys [51328 2008-04-14] (Microsoft Corporation) [File not signed]
R3 RasPppoe; C:\WINDOWS\System32\DRIVERS\raspppoe.sys [41472 2008-04-14] (Microsoft Corporation) [File not signed]
R3 Raspti; C:\WINDOWS\System32\DRIVERS\raspti.sys [16512 2004-08-04] (Microsoft Corporation) [File not signed]
R1 Rdbss; C:\WINDOWS\System32\DRIVERS\rdbss.sys [175744 2008-04-14] (Microsoft Corporation) [File not signed]
R1 RDPCDD; C:\WINDOWS\System32\DRIVERS\RDPCDD.sys [4224 2004-08-04] (Microsoft Corporation) [File not signed]
R3 rdpdr; C:\WINDOWS\System32\DRIVERS\rdpdr.sys [196224 2008-04-14] (Microsoft Corporation) [File not signed]
R1 redbook; C:\WINDOWS\System32\DRIVERS\redbook.sys [57728 2008-04-14] (Microsoft Corporation) [File not signed]
S3 sdbus; C:\WINDOWS\System32\DRIVERS\sdbus.sys [79232 2008-04-14] (Microsoft Corporation) [File not signed]
S3 Secdrv; C:\WINDOWS\System32\DRIVERS\secdrv.sys [20480 2008-04-13] (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.) [File not signed]
S3 serenum; C:\WINDOWS\System32\DRIVERS\serenum.sys [15744 2008-04-14] (Microsoft Corporation) [File not signed]
S1 Serial; C:\WINDOWS\System32\DRIVERS\serial.sys [65536 2008-04-14] (Microsoft Corporation) [File not signed]
S3 SMCIRDA; C:\WINDOWS\System32\DRIVERS\smcirda.sys [35913 2001-08-18] (SMC) [File not signed]
S3 splitter; C:\WINDOWS\System32\drivers\splitter.sys [6272 2008-04-14] (Microsoft Corporation) [File not signed]
R0 sr; C:\WINDOWS\System32\DRIVERS\sr.sys [73472 2008-04-14] (Microsoft Corporation) [File not signed]
R1 ssmdrv; C:\WINDOWS\System32\DRIVERS\ssmdrv.sys [28520 2015-04-16] (Avira GmbH)
R3 swenum; C:\WINDOWS\System32\DRIVERS\swenum.sys [4352 2008-04-14] (Microsoft Corporation) [File not signed]
S3 swmidi; C:\WINDOWS\System32\drivers\swmidi.sys [56576 2008-04-14] (Microsoft Corporation) [File not signed]
R3 SynTP; C:\WINDOWS\System32\DRIVERS\SynTP.sys [192736 2006-03-03] (Synaptics, Inc.) [File not signed]
R3 sysaudio; C:\WINDOWS\System32\drivers\sysaudio.sys [60800 2008-04-14] (Microsoft Corporation) [File not signed]
S3 TDPIPE; C:\WINDOWS\system32\Drivers\TDPIPE.sys [12040 2008-04-14] (Microsoft Corporation) [File not signed]
S3 TDTCP; C:\WINDOWS\system32\Drivers\TDTCP.sys [21896 2008-04-14] (Microsoft Corporation) [File not signed]
R1 TermDD; C:\WINDOWS\System32\DRIVERS\termdd.sys [40840 2008-04-14] (Microsoft Corporation) [File not signed]
R3 Update; C:\WINDOWS\System32\DRIVERS\update.sys [384768 2008-04-14] (Microsoft Corporation) [File not signed]
R3 usbhub; C:\WINDOWS\System32\DRIVERS\usbhub.sys [59520 2008-04-14] (Microsoft Corporation) [File not signed]
R3 USBSTOR; C:\WINDOWS\System32\DRIVERS\USBSTOR.SYS [26368 2008-04-14] (Microsoft Corporation) [File not signed]
R3 usbuhci; C:\WINDOWS\System32\DRIVERS\usbuhci.sys [20608 2008-04-14] (Microsoft Corporation) [File not signed]
R1 VgaSave; C:\WINDOWS\System32\drivers\vga.sys [20992 2008-04-14] (Microsoft Corporation) [File not signed]
R0 ViaIde; C:\WINDOWS\System32\DRIVERS\viaide.sys [5376 2008-04-14] (Microsoft Corporation) [File not signed]
R0 VolSnap; C:\WINDOWS\system32\Drivers\VolSnap.sys [53760 2008-04-14] (Microsoft Corporation) [File not signed]
R3 w39n51; C:\WINDOWS\System32\DRIVERS\w39n51.sys [1428096 2006-01-19] (Intel® Corporation) [File not signed]
R3 Wanarp; C:\WINDOWS\System32\DRIVERS\wanarp.sys [34560 2008-04-14] (Microsoft Corporation) [File not signed]
R3 wdmaud; C:\WINDOWS\System32\drivers\wdmaud.sys [83072 2008-04-14] (Microsoft Corporation) [File not signed]
R1 WmiAcpi; C:\WINDOWS\System32\DRIVERS\wmiacpi.sys [8832 2008-04-14] (Microsoft Corporation) [File not signed]
R1 WS2IFSL; C:\WINDOWS\System32\drivers\ws2ifsl.sys [12032 2004-08-04] (Microsoft Corporation) [File not signed]
U5 BattC; C:\Windows\System32\Drivers\BattC.sys [16384 2008-04-14] (Microsoft Corporation) [File not signed]
S3 catchme; \??\C:\ComboFix\catchme.sys [X]
S3 GTIPCI21; system32\DRIVERS\gtipci21.sys [X]
U5 ScsiPort; C:\WINDOWS\system32\drivers\scsiport.sys [96384 2008-04-14] (Microsoft Corporation) [File not signed]
S3 tifm21; system32\drivers\tifm21.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)

Alt 24.05.2015, 10:27   #15
trojanernick
 
Windows XP: Link in DHL-Mail angeklickt - Problem mit Antivirensoftware und MBR-Befund - Standard

Windows XP: Link in DHL-Mail angeklickt - Problem mit Antivirensoftware und MBR-Befund


FRST-Log Teil2:
Code:
ATTFilter
==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-05-24 01:38 - 2015-05-24 01:38 - 00037572 _____ () C:\Dokumente und Einstellungen\Martina\Desktop\FRST.txt
2015-05-23 21:43 - 2015-05-19 13:58 - 00852630 _____ () C:\Dokumente und Einstellungen\Martina\Desktop\SecurityCheck.exe
2015-05-23 21:33 - 2015-05-19 13:37 - 02347384 _____ (ESET) C:\Dokumente und Einstellungen\Martina\Desktop\esetsmartinstaller_deu.exe
2015-05-23 21:27 - 2015-05-23 21:27 - 00000000 ____D () C:\Programme\ESET
2015-05-22 22:14 - 2015-05-22 22:14 - 00050584 _____ () C:\Dokumente und Einstellungen\Martina_2\Lokale Einstellungen\Anwendungsdaten\GDIPFONTCACHEV1.DAT
2015-05-22 22:13 - 2015-05-22 22:13 - 00000000 ____D () C:\Dokumente und Einstellungen\Martina_2\Eigene Dateien\Bluetooth-Exchange-Ordner
2015-05-22 22:13 - 2015-05-22 22:13 - 00000000 ____D () C:\Dokumente und Einstellungen\Martina_2\Bluetooth Software
2015-05-22 22:11 - 2015-05-22 22:11 - 00008985 _____ () C:\Dokumente und Einstellungen\Martina\Desktop\MBRCheck_05.22.15_22.11.32.txt
2015-05-22 21:38 - 2015-05-19 21:31 - 01146880 _____ (Farbar) C:\Dokumente und Einstellungen\Martina\Desktop\FRST.exe
2015-05-22 21:32 - 2015-05-22 21:32 - 00000801 _____ () C:\Dokumente und Einstellungen\Martina\Desktop\JRT.txt
2015-05-22 21:29 - 2015-05-22 21:29 - 00000000 ____D () C:\RegBackup
2015-05-22 20:45 - 2015-05-22 20:38 - 02222592 _____ () C:\Dokumente und Einstellungen\Martina\Desktop\AdwCleaner_4.205.exe
2015-05-22 20:34 - 2015-05-19 13:33 - 02720186 _____ (Thisisu) C:\Dokumente und Einstellungen\Martina\Desktop\JRT.exe
2015-05-21 21:05 - 2015-05-24 00:15 - 00000000 ____D () C:\Dokumente und Einstellungen\Martina_2\Lokale Einstellungen\temp
2015-05-21 21:05 - 2015-05-22 20:38 - 00000000 ____D () C:\Dokumente und Einstellungen\NetworkService\Lokale Einstellungen\temp
2015-05-21 21:05 - 2015-05-21 21:05 - 00052576 _____ () C:\ComboFix.txt
2015-05-21 21:05 - 2015-05-21 21:05 - 00000000 ____D () C:\Dokumente und Einstellungen\LocalService\Lokale Einstellungen\temp
2015-05-21 21:05 - 2015-05-21 21:05 - 00000000 ____D () C:\Dokumente und Einstellungen\Administrator\Lokale Einstellungen\temp
2015-05-21 20:56 - 2015-05-24 01:38 - 00000000 ____D () C:\Dokumente und Einstellungen\Martina\Lokale Einstellungen\temp
2015-05-21 20:38 - 2015-05-21 20:38 - 00000000 _RSHD () C:\cmdcons
2015-05-21 20:38 - 2015-05-14 23:30 - 00000211 _____ () C:\Boot.bak
2015-05-21 20:38 - 2004-08-03 23:00 - 00262448 __RSH () C:\cmldr
2015-05-21 20:33 - 2011-06-26 08:45 - 00256000 _____ () C:\WINDOWS\PEV.exe
2015-05-21 20:33 - 2010-11-07 19:20 - 00208896 _____ () C:\WINDOWS\MBR.exe
2015-05-21 20:33 - 2009-04-20 06:56 - 00060416 _____ (NirSoft) C:\WINDOWS\NIRCMD.exe
2015-05-21 20:33 - 2000-08-31 02:00 - 00518144 _____ (SteelWerX) C:\WINDOWS\SWREG.exe
2015-05-21 20:33 - 2000-08-31 02:00 - 00406528 _____ (SteelWerX) C:\WINDOWS\SWSC.exe
2015-05-21 20:33 - 2000-08-31 02:00 - 00212480 _____ (SteelWerX) C:\WINDOWS\SWXCACLS.exe
2015-05-21 20:33 - 2000-08-31 02:00 - 00098816 _____ () C:\WINDOWS\sed.exe
2015-05-21 20:33 - 2000-08-31 02:00 - 00080412 _____ () C:\WINDOWS\grep.exe
2015-05-21 20:33 - 2000-08-31 02:00 - 00068096 _____ () C:\WINDOWS\zip.exe
2015-05-21 20:31 - 2015-05-21 20:31 - 00000000 ____D () C:\Dokumente und Einstellungen\Martina\Eigene Dateien\Bluetooth-Exchange-Ordner
2015-05-21 20:31 - 2015-05-21 20:31 - 00000000 ____D () C:\Dokumente und Einstellungen\Martina\Bluetooth Software
2015-05-21 19:47 - 2015-05-21 21:05 - 00000000 ____D () C:\Qoobox
2015-05-21 19:47 - 2015-05-21 21:03 - 00000000 ____D () C:\WINDOWS\erdnt
2015-05-21 19:47 - 2015-05-21 19:47 - 00000000 ___RD () C:\Dokumente und Einstellungen\Martina\Startmenü\Programme\Verwaltung
2015-05-21 19:46 - 2015-05-19 13:29 - 05623645 ____R (Swearware) C:\Dokumente und Einstellungen\Martina\Desktop\ComboFix.exe
2015-05-20 21:49 - 2015-05-19 14:14 - 04197016 _____ (Kaspersky Lab ZAO) C:\Dokumente und Einstellungen\Administrator\Desktop\tdsskiller.exe
2015-05-19 22:53 - 2015-05-19 22:53 - 00000515 _____ () C:\Dokumente und Einstellungen\Administrator\Desktop\gmer.txt
2015-05-19 21:39 - 2015-05-19 11:42 - 00380416 _____ () C:\Dokumente und Einstellungen\Administrator\Desktop\Gmer-19357.exe
2015-05-19 21:36 - 2015-05-19 21:36 - 00000000 ____D () C:\Dokumente und Einstellungen\Administrator\Anwendungsdaten\Avira
2015-05-19 21:33 - 2015-05-19 21:34 - 00130839 _____ () C:\Dokumente und Einstellungen\Administrator\Desktop\FRST.txt
2015-05-19 21:33 - 2015-05-19 21:34 - 00039050 _____ () C:\Dokumente und Einstellungen\Administrator\Desktop\Addition.txt
2015-05-19 21:32 - 2015-05-24 01:38 - 00000000 ____D () C:\FRST
2015-05-19 21:32 - 2015-05-19 21:31 - 01146880 _____ (Farbar) C:\Dokumente und Einstellungen\Administrator\Desktop\FRST.exe
2015-05-19 21:27 - 2015-05-19 21:27 - 00000488 _____ () C:\Dokumente und Einstellungen\Administrator\Desktop\defogger_disable.log
2015-05-19 21:27 - 2015-05-19 21:27 - 00000000 _____ () C:\Dokumente und Einstellungen\Administrator\defogger_reenable
2015-05-19 21:26 - 2015-05-19 11:36 - 00050477 _____ () C:\Dokumente und Einstellungen\Administrator\Desktop\Defogger.exe
2015-05-19 20:01 - 2015-05-19 20:01 - 00000000 __SHD () C:\Dokumente und Einstellungen\Administrator\IETldCache
2015-05-19 20:00 - 2015-05-19 20:00 - 00000000 __SHD () C:\WINDOWS\CSC
2015-05-18 22:27 - 2015-05-22 22:31 - 00199582 _____ () C:\Dokumente und Einstellungen\LocalService\Lokale Einstellungen\Anwendungsdaten\WPFFontCache_v0400-S-1-5-21-1310988380-3352743311-3678797310-1006-0.dat
2015-05-18 22:26 - 2015-05-18 22:26 - 00000000 ____D () C:\Dokumente und Einstellungen\Martina_2\Lokale Einstellungen\Anwendungsdaten\Mozilla
2015-05-18 22:25 - 2015-05-18 22:25 - 00000000 ____D () C:\Dokumente und Einstellungen\Martina\Anwendungsdaten\U3
2015-05-18 22:20 - 2015-05-18 22:22 - 00000000 ____D () C:\Dokumente und Einstellungen\Martina_2\Anwendungsdaten\U3
2015-05-18 22:18 - 2015-05-18 22:18 - 00000354 _____ () C:\Dokumente und Einstellungen\Martina_2\Desktop\Eigene Dateien.lnk
2015-05-18 22:14 - 2015-05-18 22:14 - 00000000 ____D () C:\Dokumente und Einstellungen\Martina_2\Anwendungsdaten\Avira
2015-05-18 22:11 - 2015-05-18 22:26 - 00000000 ____D () C:\Dokumente und Einstellungen\Martina_2\Anwendungsdaten\Mozilla
2015-05-18 22:10 - 2015-05-18 22:11 - 00000000 ____D () C:\Dokumente und Einstellungen\Martina_2\Lokale Einstellungen\Anwendungsdaten\Thunderbird
2015-05-18 22:10 - 2015-05-18 22:10 - 00000000 ____D () C:\Dokumente und Einstellungen\Martina_2\Anwendungsdaten\Thunderbird
2015-05-18 22:08 - 2015-05-24 00:15 - 00000190 ___SH () C:\Dokumente und Einstellungen\Martina_2\ntuser.ini
2015-05-18 22:08 - 2015-05-24 00:15 - 00000000 ____D () C:\Dokumente und Einstellungen\Martina_2
2015-05-18 22:08 - 2015-05-18 22:08 - 00000768 _____ () C:\Dokumente und Einstellungen\Martina_2\Startmenü\Programme\Windows Media Player.lnk
2015-05-18 22:08 - 2015-05-18 22:08 - 00000000 __SHD () C:\Dokumente und Einstellungen\Martina_2\Lokale Einstellungen\Verlauf
2015-05-18 22:08 - 2015-05-18 22:08 - 00000000 __SHD () C:\Dokumente und Einstellungen\Martina_2\IETldCache
2015-05-18 22:08 - 2015-05-18 22:08 - 00000000 ___RD () C:\Dokumente und Einstellungen\Martina_2\Startmenü\Programme
2015-05-18 22:08 - 2015-05-18 22:08 - 00000000 ___RD () C:\Dokumente und Einstellungen\Martina_2\Eigene Dateien\Eigene Musik
2015-05-18 22:08 - 2015-05-18 22:08 - 00000000 ___RD () C:\Dokumente und Einstellungen\Martina_2\Eigene Dateien\Eigene Bilder
2015-05-18 22:08 - 2015-05-15 08:01 - 00000000 ___RD () C:\Dokumente und Einstellungen\Martina_2\Startmenü\Programme\Zubehör
2015-05-18 22:08 - 2015-05-15 08:01 - 00000000 ___RD () C:\Dokumente und Einstellungen\Martina_2\Startmenü\Programme\Autostart
2015-05-18 22:08 - 2015-05-15 08:01 - 00000000 ___RD () C:\Dokumente und Einstellungen\Martina_2\Startmenü
2015-05-18 22:08 - 2015-05-15 08:01 - 00000000 ____D () C:\Dokumente und Einstellungen\Martina_2\Lokale Einstellungen\Anwendungsdaten\{3248F0A6-6813-11D6-A77B-00B0D0150060}
2015-05-18 22:08 - 2006-08-25 07:12 - 00000000 ___HD () C:\Dokumente und Einstellungen\Martina_2\Netzwerkumgebung
2015-05-18 22:08 - 2006-08-25 07:12 - 00000000 ___HD () C:\Dokumente und Einstellungen\Martina_2\Druckumgebung
2015-05-18 22:08 - 2006-08-25 07:12 - 00000000 ____D () C:\Dokumente und Einstellungen\Martina_2\Anwendungsdaten\SampleView
2015-05-18 22:08 - 2006-08-24 21:11 - 00000000 _____ () C:\Dokumente und Einstellungen\Martina_2\Lokale Einstellungen\Anwendungsdaten\QSwitch.txt
2015-05-18 22:08 - 2006-08-24 21:11 - 00000000 _____ () C:\Dokumente und Einstellungen\Martina_2\Lokale Einstellungen\Anwendungsdaten\DSwitch.txt
2015-05-18 22:08 - 2006-08-24 21:11 - 00000000 _____ () C:\Dokumente und Einstellungen\Martina_2\Lokale Einstellungen\Anwendungsdaten\AtStart.txt
2015-05-18 22:08 - 2006-08-24 20:52 - 00001491 _____ () C:\Dokumente und Einstellungen\Martina_2\Startmenü\Programme\Software Setup.lnk
2015-05-18 22:08 - 2006-08-24 20:41 - 00000146 _____ () C:\Dokumente und Einstellungen\Martina_2\Lokale Einstellungen\Anwendungsdaten\fusioncache.dat
2015-05-18 22:08 - 2004-08-07 07:53 - 00001503 _____ () C:\Dokumente und Einstellungen\Martina_2\Startmenü\Programme\Remoteunterstützung.lnk
2015-05-18 21:44 - 2015-05-18 21:48 - 00010572 _____ () C:\Dokumente und Einstellungen\Martina\Desktop\MBRCheck_05.18.15_21.44.10.txt
2015-05-18 21:43 - 2015-05-18 16:36 - 00080384 _____ () C:\Dokumente und Einstellungen\Martina\Desktop\MBRCheck.exe
2015-05-18 21:40 - 2015-05-18 21:40 - 00000757 _____ () C:\Dokumente und Einstellungen\Martina\Desktop\mbr.log
2015-05-18 21:37 - 2015-05-18 21:38 - 00000757 _____ () C:\mbr.log
2015-05-18 21:37 - 2015-05-18 21:38 - 00000757 _____ () C:\Dokumente und Einstellungen\Martina\mbr.log
2015-05-18 21:33 - 2015-05-18 16:35 - 00089088 _____ () C:\WINDOWS\system32\mbr.exe
2015-05-18 20:37 - 2015-05-18 20:37 - 00001804 _____ () C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Adobe Reader XI.lnk
2015-05-18 20:37 - 2015-05-18 20:37 - 00001714 _____ () C:\Dokumente und Einstellungen\All Users\Desktop\Adobe Reader XI.lnk
2015-05-18 20:36 - 2015-05-18 20:36 - 00000000 ____D () C:\Programme\Gemeinsame Dateien\Adobe
2015-05-18 20:35 - 2015-05-18 20:59 - 00000000 ____D () C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Adobe
2015-05-18 20:22 - 2015-05-18 20:22 - 00000348 _____ () C:\WINDOWS\spupdsvc.log
2015-05-18 20:22 - 2015-05-18 20:22 - 00000000 ____D () C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Windows Genuine Advantage
2015-05-18 20:19 - 2015-05-18 20:19 - 00000000 __SHD () C:\Dokumente und Einstellungen\Martina\PrivacIE
2015-05-18 20:12 - 2015-05-18 20:15 - 00046201 _____ () C:\WINDOWS\iis6.log
2015-05-18 20:12 - 2015-05-18 20:15 - 00014246 _____ () C:\WINDOWS\ocgen.log
2015-05-18 20:12 - 2015-05-18 20:15 - 00011018 _____ () C:\WINDOWS\FaxSetup.log
2015-05-18 20:12 - 2015-05-18 20:15 - 00009790 _____ () C:\WINDOWS\msmqinst.log
2015-05-18 20:12 - 2015-05-18 20:15 - 00008140 _____ () C:\WINDOWS\tsoc.log
2015-05-18 20:12 - 2015-05-18 20:15 - 00004566 _____ () C:\WINDOWS\imsins.log
2015-05-18 20:12 - 2015-05-18 20:15 - 00004383 _____ () C:\WINDOWS\comsetup.log
2015-05-18 20:12 - 2015-05-18 20:15 - 00003787 _____ () C:\WINDOWS\ntdtcsetup.log
2015-05-18 20:12 - 2015-05-18 20:15 - 00002161 _____ () C:\WINDOWS\netfxocm.log
2015-05-18 20:12 - 2015-05-18 20:15 - 00001302 _____ () C:\WINDOWS\ocmsn.log
2015-05-18 20:12 - 2015-05-18 20:15 - 00001207 _____ () C:\WINDOWS\MedCtrOC.log
2015-05-18 20:12 - 2015-05-18 20:15 - 00000828 _____ () C:\WINDOWS\msgsocm.log
2015-05-18 20:12 - 2015-05-18 20:15 - 00000311 _____ () C:\WINDOWS\tabletoc.log
2015-05-18 20:12 - 2015-05-18 20:12 - 00000000 _____ () C:\WINDOWS\setuperr.log
2015-05-18 20:12 - 2015-05-18 20:12 - 00000000 _____ () C:\WINDOWS\setupact.log
2015-05-18 20:07 - 2015-05-23 21:25 - 00228829 _____ () C:\WINDOWS\setupapi.log
2015-05-18 19:24 - 2015-05-18 19:24 - 00000000 ____D () C:\Dokumente und Einstellungen\Martina\Anwendungsdaten\Chip Digital GmbH
2015-05-18 19:23 - 2015-05-18 20:38 - 00000000 ____D () C:\Dokumente und Einstellungen\Martina\Lokale Einstellungen\Anwendungsdaten\Adobe
2015-05-17 21:19 - 2015-05-17 21:19 - 00000000 ____D () C:\Dokumente und Einstellungen\Martina\Lokale Einstellungen\Anwendungsdaten\Thunderbird
2015-05-17 21:19 - 2015-05-17 21:19 - 00000000 ____D () C:\Dokumente und Einstellungen\Martina\Anwendungsdaten\Thunderbird
2015-05-17 20:26 - 2015-05-17 20:26 - 00004653 _____ () C:\Dokumente und Einstellungen\Martina\Desktop\wsusofflineupdate_2.log
2015-05-17 13:39 - 2015-05-17 13:39 - 00000352 _____ () C:\Dokumente und Einstellungen\Martina\Desktop\Eigene Dateien.lnk
2015-05-17 00:19 - 2015-05-17 00:19 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2345886$
2015-05-17 00:18 - 2015-05-17 00:18 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB970430$
2015-05-17 00:05 - 2015-05-17 00:05 - 00007250 _____ () C:\Dokumente und Einstellungen\Martina\Desktop\wsusofflineupdate.log
2015-05-16 21:58 - 2015-05-16 21:58 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2834904-v2_WM11$
2015-05-16 21:57 - 2015-05-16 21:57 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2813347-v2$
2015-05-16 21:57 - 2015-05-16 21:57 - 00000000 ____D () C:\Programme\Microsoft CAPICOM 2.1.0.2
2015-05-16 21:49 - 2015-05-16 21:49 - 00000000 __HDC () C:\WINDOWS\$NtUninstallMSCompPackV1$
2015-05-16 21:49 - 2015-05-16 21:49 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB969084$
2015-05-16 21:49 - 2009-06-16 09:58 - 00018464 ____N (Microsoft Corporation) C:\WINDOWS\system32\spmsg.dll
2015-05-16 21:48 - 2015-05-16 21:48 - 00000000 __HDC () C:\WINDOWS\$NtUninstallwmp11$
2015-05-16 21:48 - 2015-05-16 21:48 - 00000000 ____D () C:\Programme\Windows Media Connect 2
2015-05-16 21:47 - 2015-05-16 21:47 - 00000000 __HDC () C:\WINDOWS\$NtUninstallWudf01000$
2015-05-16 21:47 - 2015-05-16 21:47 - 00000000 __HDC () C:\WINDOWS\$NtUninstallWMFDist11$
2015-05-16 21:47 - 2015-05-16 21:47 - 00000000 ____D () C:\WINDOWS\system32\LogFiles
2015-05-16 21:46 - 2015-05-16 21:46 - 00000000 ____D () C:\Programme\Microsoft Silverlight
2015-05-16 21:46 - 2015-05-16 21:46 - 00000000 ____D () C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Microsoft Silverlight
2015-05-16 21:46 - 2010-06-02 04:55 - 00527192 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_7.dll
2015-05-16 21:46 - 2010-06-02 04:55 - 00239960 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_7.dll
2015-05-16 21:46 - 2010-06-02 04:55 - 00074072 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_5.dll
2015-05-16 21:46 - 2010-05-26 11:41 - 02106216 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_43.dll
2015-05-16 21:46 - 2010-05-26 11:41 - 01998168 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_43.dll
2015-05-16 21:46 - 2010-05-26 11:41 - 01868128 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dcsx_43.dll
2015-05-16 21:46 - 2010-05-26 11:41 - 00470880 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_43.dll
2015-05-16 21:46 - 2010-05-26 11:41 - 00248672 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx11_43.dll
2015-05-16 21:46 - 2010-02-04 10:01 - 00074072 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_4.dll
2015-05-16 21:45 - 2010-02-04 10:01 - 00528216 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_6.dll
2015-05-16 21:45 - 2010-02-04 10:01 - 00238936 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_6.dll
2015-05-16 21:45 - 2010-02-04 10:01 - 00022360 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_7.dll
2015-05-16 21:45 - 2009-09-04 17:44 - 00515416 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_5.dll
2015-05-16 21:45 - 2009-09-04 17:44 - 00238936 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_5.dll
2015-05-16 21:45 - 2009-09-04 17:44 - 00069464 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_3.dll
2015-05-16 21:45 - 2009-09-04 17:29 - 05501792 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dcsx_42.dll
2015-05-16 21:45 - 2009-09-04 17:29 - 01974616 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_42.dll
2015-05-16 21:45 - 2009-09-04 17:29 - 01892184 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_42.dll
2015-05-16 21:45 - 2009-09-04 17:29 - 00453456 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_42.dll
2015-05-16 21:45 - 2009-09-04 17:29 - 00235344 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx11_42.dll
2015-05-16 21:45 - 2009-03-16 14:18 - 00517448 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_4.dll
2015-05-16 21:45 - 2009-03-16 14:18 - 00235352 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_4.dll
2015-05-16 21:45 - 2009-03-16 14:18 - 00022360 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_6.dll
2015-05-16 21:45 - 2009-03-09 15:27 - 04178264 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_41.dll
2015-05-16 21:45 - 2009-03-09 15:27 - 01846632 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_41.dll
2015-05-16 21:45 - 2009-03-09 15:27 - 00453456 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_41.dll
2015-05-16 21:45 - 2008-10-27 10:04 - 00514384 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_3.dll
2015-05-16 21:45 - 2008-10-27 10:04 - 00235856 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_3.dll
2015-05-16 21:45 - 2008-10-27 10:04 - 00070992 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_2.dll
2015-05-16 21:45 - 2008-10-27 10:04 - 00023376 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_5.dll
2015-05-16 21:45 - 2008-10-15 06:22 - 04379984 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_40.dll
2015-05-16 21:45 - 2008-10-15 06:22 - 02036576 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_40.dll
2015-05-16 21:45 - 2008-10-15 06:22 - 00452440 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_40.dll
2015-05-16 21:45 - 2008-07-31 10:41 - 00238088 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_2.dll
2015-05-16 21:45 - 2008-07-31 10:41 - 00068616 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_1.dll
2015-05-16 21:45 - 2008-07-31 10:40 - 00509448 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_2.dll
2015-05-16 21:45 - 2008-07-10 11:01 - 00467984 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_39.dll
2015-05-16 21:45 - 2008-07-10 11:00 - 03851784 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_39.dll
2015-05-16 21:45 - 2008-07-10 11:00 - 01493528 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_39.dll
2015-05-16 21:45 - 2008-05-30 14:19 - 00507400 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_1.dll
2015-05-16 21:45 - 2008-05-30 14:18 - 00238088 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_1.dll
2015-05-16 21:45 - 2008-05-30 14:17 - 00065032 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_0.dll
2015-05-16 21:45 - 2008-05-30 14:17 - 00025608 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_4.dll
2015-05-16 21:45 - 2008-05-30 14:11 - 03850760 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_38.dll
2015-05-16 21:45 - 2008-05-30 14:11 - 01491992 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_38.dll
2015-05-16 21:45 - 2008-05-30 14:11 - 00467984 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_38.dll
2015-05-16 21:45 - 2008-03-05 16:03 - 00479752 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_0.dll
2015-05-16 21:45 - 2008-03-05 16:03 - 00238088 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_0.dll
2015-05-16 21:45 - 2008-03-05 16:00 - 00025608 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_3.dll
2015-05-16 21:45 - 2008-03-05 15:56 - 03786760 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_37.dll
2015-05-16 21:45 - 2008-03-05 15:56 - 01420824 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_37.dll
2015-05-16 21:45 - 2008-02-05 23:07 - 00462864 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_37.dll
2015-05-16 21:45 - 2007-10-22 03:39 - 00267272 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_10.dll
2015-05-16 21:45 - 2007-10-22 03:37 - 00017928 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_2.dll
2015-05-16 21:45 - 2007-10-12 15:14 - 03734536 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_36.dll
2015-05-16 21:45 - 2007-10-12 15:14 - 01374232 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_36.dll
2015-05-16 21:45 - 2007-10-02 09:56 - 00444776 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_36.dll
2015-05-16 21:45 - 2007-07-20 00:57 - 00267112 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_9.dll
2015-05-16 21:45 - 2007-07-19 18:14 - 03727720 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_35.dll
2015-05-16 21:45 - 2007-07-19 18:14 - 01358192 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_35.dll
2015-05-16 21:45 - 2007-07-19 18:14 - 00444776 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_35.dll
2015-05-16 21:45 - 2007-06-20 20:46 - 00266088 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_8.dll
2015-05-16 21:45 - 2007-05-16 16:45 - 03497832 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_34.dll
2015-05-16 21:45 - 2007-05-16 16:45 - 01124720 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_34.dll
2015-05-16 21:45 - 2007-05-16 16:45 - 00443752 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_34.dll
2015-05-16 21:45 - 2007-04-04 18:55 - 00261480 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_7.dll
2015-05-16 21:45 - 2007-04-04 18:53 - 00081768 _____ (Microsoft Corporation) C:\WINDOWS\system32\xinput1_3.dll
2015-05-16 21:45 - 2007-03-15 16:57 - 00443752 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_33.dll
2015-05-16 21:45 - 2007-03-12 16:42 - 03495784 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_33.dll
2015-05-16 21:45 - 2007-03-12 16:42 - 01123696 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_33.dll
2015-05-16 21:45 - 2007-03-05 12:42 - 00015128 _____ (Microsoft Corporation) C:\WINDOWS\system32\x3daudio1_1.dll
2015-05-16 21:45 - 2007-01-24 15:27 - 00255848 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_6.dll
2015-05-16 21:45 - 2006-12-08 12:02 - 00251672 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_5.dll
2015-05-16 21:45 - 2006-11-29 13:06 - 03426072 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_32.dll
2015-05-16 21:45 - 2006-09-28 16:05 - 02414360 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_31.dll
2015-05-16 21:45 - 2006-09-28 16:05 - 00237848 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_4.dll
2015-05-16 21:45 - 2006-07-28 09:30 - 00236824 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_3.dll
2015-05-16 21:45 - 2006-07-28 09:30 - 00062744 _____ (Microsoft Corporation) C:\WINDOWS\system32\xinput1_2.dll
2015-05-16 21:45 - 2006-05-31 07:24 - 00230168 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_2.dll
2015-05-16 21:45 - 2006-03-31 12:40 - 02388176 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_30.dll
2015-05-16 21:45 - 2006-03-31 12:39 - 00229584 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_1.dll
2015-05-16 21:45 - 2006-03-31 12:39 - 00062672 _____ (Microsoft Corporation) C:\WINDOWS\system32\xinput1_1.dll
2015-05-16 21:45 - 2006-02-03 08:43 - 02332368 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_29.dll
2015-05-16 21:45 - 2006-02-03 08:42 - 00230096 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_0.dll
2015-05-16 21:45 - 2006-02-03 08:41 - 00014032 _____ (Microsoft Corporation) C:\WINDOWS\system32\x3daudio1_0.dll
2015-05-16 21:45 - 2005-12-05 18:09 - 02323664 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_28.dll
2015-05-16 21:45 - 2005-12-05 18:07 - 00061136 _____ (Microsoft Corporation) C:\WINDOWS\system32\xinput9_1_0.dll
2015-05-16 21:45 - 2005-07-22 19:59 - 02319568 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_27.dll
2015-05-16 21:45 - 2005-05-26 15:34 - 02297552 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_26.dll
2015-05-16 21:45 - 2005-03-18 17:19 - 02337488 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_25.dll
2015-05-16 21:45 - 2005-02-05 19:45 - 02222800 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_24.dll
2015-05-16 21:44 - 2015-05-16 21:44 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB942288-v3$
2015-05-16 20:48 - 2015-05-17 01:27 - 00000000 ____D () C:\Programme\Mozilla Firefox
2015-05-16 11:44 - 2015-05-23 21:25 - 00000226 _____ () C:\WINDOWS\Tasks\Ende des Supports für Microsoft Windows XP –  Benachrichtigung – Anmeldung.job
2015-05-16 11:44 - 2015-05-16 11:55 - 00000220 _____ () C:\WINDOWS\Tasks\Ende des Supports für Microsoft Windows XP – Monatliche Benachrichtigung.job
2015-05-16 10:57 - 2015-05-16 10:58 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2868626$
2015-05-16 10:57 - 2015-05-16 10:57 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB959426$
2015-05-16 10:57 - 2015-05-16 10:57 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB952954$
2015-05-16 10:57 - 2015-05-16 10:57 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB951376-v2$
2015-05-16 10:57 - 2015-05-16 10:57 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB946648$
2015-05-16 10:57 - 2015-05-16 10:57 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2922229$
2015-05-16 10:57 - 2015-05-16 10:57 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2712808$
2015-05-16 10:57 - 2015-05-16 10:57 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2387149$
2015-05-16 10:56 - 2015-05-16 10:56 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB960859$
2015-05-16 10:56 - 2015-05-16 10:56 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2659262$
2015-05-16 10:56 - 2015-05-16 10:56 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2564958$
2015-05-16 10:56 - 2015-05-16 10:56 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2479943$
2015-05-16 10:55 - 2015-05-16 10:55 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2934207$
2015-05-16 10:55 - 2015-05-16 10:55 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2916036$
2015-05-16 10:55 - 2015-05-16 10:55 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2478971$
2015-05-16 10:52 - 2015-05-16 10:52 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB923723$
2015-05-16 10:52 - 2015-05-16 10:52 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2834886$
2015-05-16 10:52 - 2015-05-16 10:52 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2631813$
2015-05-16 10:52 - 2015-05-16 10:52 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2585542$
2015-05-16 10:52 - 2015-05-16 10:52 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2544893-v2$
2015-05-16 10:52 - 2015-05-16 10:52 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2536276-v2$
2015-05-16 10:52 - 2015-05-16 10:52 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2296011$
2015-05-16 10:51 - 2015-05-16 10:52 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2691442$
2015-05-16 10:51 - 2015-05-16 10:51 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2900986$
2015-05-16 10:51 - 2015-05-16 10:51 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2115168$
2015-05-16 10:49 - 2015-05-16 10:49 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB975558_WM8$
2015-05-16 10:49 - 2015-05-16 10:49 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB955759$
2015-05-16 10:49 - 2015-05-16 10:49 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2847311$
2015-05-16 10:45 - 2015-05-16 10:45 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB974318$
2015-05-16 10:45 - 2015-05-16 10:45 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB969059$
2015-05-16 10:45 - 2015-05-16 10:45 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB951978$
2015-05-16 10:45 - 2015-05-16 10:45 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2378111_WM9$
2015-05-16 10:44 - 2015-05-16 10:44 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB950974$
2015-05-16 10:44 - 2015-05-16 10:44 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2898715$
2015-05-16 10:44 - 2015-05-16 10:44 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2834902-v2_WM10$
2015-05-16 10:44 - 2015-05-16 10:44 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2802968$
2015-05-16 10:44 - 2015-05-16 10:44 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2655992$
2015-05-16 10:44 - 2015-05-16 10:44 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2481109$
2015-05-16 10:44 - 2015-05-16 10:44 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2443105$
2015-05-16 10:44 - 2015-05-16 10:44 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2229593$
2015-05-16 10:43 - 2015-05-16 10:43 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB982132$
2015-05-16 10:43 - 2015-05-16 10:43 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB978338$
2015-05-16 10:43 - 2015-05-16 10:43 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB975713$
2015-05-16 10:43 - 2015-05-16 10:43 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB971657$
2015-05-16 10:43 - 2015-05-16 10:43 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB954155_WM9$
2015-05-16 10:43 - 2015-05-16 10:43 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2929961$
2015-05-16 10:43 - 2015-05-16 10:43 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2862335$
2015-05-16 10:43 - 2015-05-16 10:43 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2686509$
2015-05-16 10:43 - 2015-05-16 10:43 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2598479$
2015-05-16 10:43 - 2015-05-16 10:43 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2485663$
2015-05-16 10:42 - 2015-05-16 10:42 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB972270$
2015-05-16 10:42 - 2015-05-16 10:42 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2780091$
2015-05-16 10:42 - 2015-05-16 10:42 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2507938$
2015-05-16 10:40 - 2015-05-16 10:40 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB974112$
2015-05-16 10:40 - 2015-05-16 10:40 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB956572$
2015-05-16 10:39 - 2015-05-16 10:40 - 00006742 _____ () C:\WINDOWS\system32\TZLog.log
2015-05-16 10:39 - 2015-05-16 10:39 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB956844$
2015-05-16 10:39 - 2015-05-16 10:39 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2904266$
2015-05-16 10:39 - 2015-05-16 10:39 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2876217$
2015-05-16 10:39 - 2015-05-16 10:39 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2483185$
2015-05-16 10:39 - 2015-05-16 10:39 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2347290$
2015-05-16 10:35 - 2015-05-16 10:35 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB979687$
2015-05-16 10:35 - 2015-05-16 10:35 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB975025$
2015-05-16 10:35 - 2015-05-16 10:35 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB974571$
2015-05-16 10:35 - 2015-05-16 10:35 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB973869$
2015-05-16 10:35 - 2015-05-16 10:35 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB952004$
2015-05-16 10:35 - 2015-05-16 10:35 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2930275$
2015-05-16 10:35 - 2015-05-16 10:35 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2864063$
2015-05-16 10:35 - 2015-05-16 10:35 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2862152$
2015-05-16 10:35 - 2015-05-16 10:35 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2719985$
2015-05-16 10:34 - 2015-05-16 10:34 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB975560$
2015-05-16 10:34 - 2015-05-16 10:34 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2592799$
2015-05-16 10:31 - 2015-05-16 10:31 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB973507$
2015-05-16 10:30 - 2015-05-16 10:30 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB977816$
2015-05-16 10:30 - 2015-05-16 10:30 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB950762$
2015-05-16 10:30 - 2015-05-16 10:30 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB941569$
2015-05-16 10:30 - 2015-05-16 10:30 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2876331$
2015-05-16 10:30 - 2015-05-16 10:30 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2850869$
2015-05-16 10:30 - 2015-05-16 10:30 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2770660$
2015-05-16 10:30 - 2015-05-16 10:30 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2535512$
2015-05-16 10:29 - 2015-05-16 10:30 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2859537$
2015-05-16 10:29 - 2015-05-16 10:29 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2807986$
2015-05-16 10:29 - 2015-05-16 10:29 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2570947$
2015-05-16 10:25 - 2015-05-16 10:25 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB978695_WM9$
2015-05-16 10:25 - 2015-05-16 10:25 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB952287$
2015-05-16 10:25 - 2015-05-16 10:25 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2868038$
2015-05-16 10:25 - 2015-05-16 10:25 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2820917$
2015-05-16 10:23 - 2015-05-16 10:23 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB973904$
2015-05-16 10:23 - 2015-05-16 10:23 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2603381$
2015-05-16 10:22 - 2015-05-16 10:22 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB974392$
2015-05-16 10:22 - 2015-05-16 10:22 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB973540_WM9$
2015-05-16 10:22 - 2015-05-16 10:22 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2893294$
2015-05-16 10:22 - 2015-05-16 10:22 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2757638$
2015-05-16 10:22 - 2015-05-16 10:22 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2749655$
2015-05-16 10:22 - 2015-05-16 10:22 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2653956$
2015-05-16 10:22 - 2015-05-16 10:22 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2508429$
2015-05-16 10:22 - 2015-05-16 10:22 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2419632$
2015-05-16 10:21 - 2015-05-16 10:22 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB971029$
2015-05-16 10:21 - 2015-05-16 10:21 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB977914$
2015-05-16 10:21 - 2015-05-16 10:21 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB952069_WM9$
2015-05-16 10:21 - 2015-05-16 10:21 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2892075$
2015-05-16 10:21 - 2015-05-16 10:21 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2705219-v2$
2015-05-16 10:21 - 2015-05-16 10:21 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2698365$
2015-05-16 10:21 - 2015-05-16 10:21 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2619339$
2015-05-16 10:21 - 2015-05-16 10:21 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2506212$
2015-05-16 10:19 - 2015-05-16 10:19 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB979482$
2015-05-16 10:19 - 2015-05-16 10:19 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB979309$
2015-05-16 10:19 - 2015-05-16 10:19 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB978542$
2015-05-16 10:19 - 2015-05-16 10:19 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2727528$
2015-05-16 10:18 - 2015-05-16 10:18 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB981997$
2015-05-16 10:18 - 2015-05-16 10:18 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB978706$
2015-05-16 10:18 - 2015-05-16 10:18 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB973815$
2015-05-16 10:18 - 2015-05-16 10:18 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB960803$
2015-05-16 10:18 - 2015-05-16 10:18 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2862330$
2015-05-16 10:18 - 2015-05-16 10:18 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2813345$
2015-05-16 10:18 - 2015-05-16 10:18 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2723135-v2$
2015-05-16 10:18 - 2015-05-16 10:18 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2509553$
2015-05-16 10:17 - 2015-05-16 10:18 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2676562$
2015-05-16 10:15 - 2015-05-16 10:15 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB982665$
2015-05-16 10:12 - 2015-05-16 10:12 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2478960$
2015-05-16 10:12 - 2015-05-16 10:12 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2393802$
2015-05-16 10:11 - 2015-05-16 10:11 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB923561$
2015-05-16 10:11 - 2015-05-16 10:11 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2620712$
2015-05-16 10:11 - 2015-05-16 10:11 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2566454$
2015-05-16 10:10 - 2015-05-16 10:10 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2914368$
2015-05-16 10:10 - 2015-05-16 10:10 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2661637$
2015-05-16 10:09 - 2015-05-16 10:09 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2584146$
2015-05-16 10:07 - 2015-05-16 10:07 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB975467$
2015-05-16 10:06 - 2015-05-16 10:06 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB968389$
2015-05-16 10:05 - 2015-05-16 10:05 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2423089$
2015-05-16 10:04 - 2015-05-16 10:04 - 00000000 __SHD () C:\Dokumente und Einstellungen\NetworkService\IETldCache
2015-05-16 10:04 - 2015-05-16 10:04 - 00000000 __SHD () C:\Dokumente und Einstellungen\Martina\IETldCache
2015-05-16 10:02 - 2015-05-16 10:02 - 00000000 __SHD () C:\Dokumente und Einstellungen\LocalService\IETldCache
2015-05-16 10:00 - 2015-05-22 22:31 - 00398918 _____ () C:\Dokumente und Einstellungen\LocalService\Lokale Einstellungen\Anwendungsdaten\WPFFontCache_v0400-S-1-5-21-1310988380-3352743311-3678797310-1005-0.dat
2015-05-16 09:58 - 2015-05-16 21:58 - 00000000 ____D () C:\WINDOWS\ie8updates
2015-05-16 09:58 - 2015-05-16 09:58 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2467659$
2015-05-16 09:57 - 2015-05-16 10:00 - 00065536 _____ () C:\WINDOWS\system32\config\Internet.evt
2015-05-16 09:57 - 2015-05-16 09:57 - 00000000 __HDC () C:\WINDOWS\ie8
2015-05-16 09:46 - 2015-04-30 10:07 - 137310008 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2015-05-16 09:46 - 2014-03-06 19:58 - 00522240 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\jsdbgui.dll
2015-05-16 09:45 - 2014-03-06 19:58 - 11113472 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ieframe.dll
2015-05-16 09:45 - 2014-03-06 19:58 - 02006016 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\iertutil.dll
2015-05-16 09:45 - 2014-03-06 19:58 - 00743424 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\iedvtool.dll
2015-05-16 09:45 - 2014-03-06 19:58 - 00630272 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msfeeds.dll
2015-05-16 09:45 - 2014-03-06 19:58 - 00247808 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ieproxy.dll
2015-05-16 09:45 - 2014-03-06 19:58 - 00055296 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msfeedsbs.dll
2015-05-16 09:45 - 2014-03-06 19:58 - 00012800 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\xpshims.dll
2015-05-16 09:45 - 2011-08-16 12:45 - 00006144 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\iecompat.dll
2015-05-16 09:11 - 2008-06-14 19:32 - 00273024 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\bthport.sys
2015-05-16 09:07 - 2010-09-18 08:52 - 00954368 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mfc40.dll
2015-05-16 09:07 - 2010-09-18 08:52 - 00953856 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mfc40u.dll
2015-05-16 09:04 - 2014-02-27 01:28 - 00013312 ____N (Microsoft Corporation) C:\WINDOWS\system32\xp_eos.exe
2015-05-16 09:04 - 2014-02-27 01:28 - 00013312 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\xp_eos.exe
2015-05-16 09:02 - 2011-07-15 15:29 - 00456320 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mrxsmb.sys
2015-05-16 09:01 - 2010-08-23 18:11 - 00617472 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\comctl32.dll
2015-05-16 08:59 - 2009-11-21 17:54 - 00471552 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\aclayers.dll
2015-05-16 08:54 - 2013-07-03 04:12 - 00025088 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\hidparse.sys
2015-05-16 08:54 - 2013-07-03 03:59 - 00014976 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\usbscan.sys
2015-05-16 08:54 - 2010-06-14 16:31 - 00744448 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\helpsvc.exe
2015-05-16 08:53 - 2010-08-27 10:01 - 00119808 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\t2embed.dll
2015-05-16 08:53 - 2009-10-15 18:28 - 00081920 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fontsub.dll
2015-05-16 08:51 - 2009-03-06 16:19 - 00286720 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\pdh.dll
2015-05-16 08:51 - 2009-02-09 13:21 - 00111104 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\services.exe
2015-05-16 08:51 - 2009-02-09 12:51 - 00678400 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\advapi32.dll
2015-05-16 08:51 - 2009-02-09 12:51 - 00473600 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fastprox.dll
2015-05-16 08:51 - 2009-02-09 12:51 - 00453120 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wmiprvsd.dll
2015-05-16 08:51 - 2009-02-09 12:51 - 00401408 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\rpcss.dll
2015-05-16 08:51 - 2009-02-06 12:39 - 00035328 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\sc.exe
2015-05-16 08:51 - 2009-02-06 12:10 - 00227840 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wmiprvse.exe
2015-05-16 08:50 - 2009-06-21 23:45 - 00153088 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\triedit.dll
2015-05-16 08:43 - 2009-07-28 00:24 - 00128512 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\dhtmled.ocx
2015-05-16 08:40 - 2011-04-21 15:37 - 00105472 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mup.sys
2015-05-16 08:40 - 2008-05-08 16:02 - 00203136 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\rmcast.sys
2015-05-16 08:39 - 2013-02-12 02:32 - 00012928 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\usb8023x.sys
2015-05-16 08:39 - 2013-02-12 02:32 - 00012928 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\usb8023.sys
2015-05-16 08:34 - 2013-07-17 02:58 - 00123008 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\usbvideo.sys
2015-05-16 08:34 - 2013-07-17 02:58 - 00060160 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\usbaudio.sys
2015-05-16 08:34 - 2013-07-17 02:58 - 00046848 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\irbus.sys
2015-05-16 08:34 - 2008-05-01 16:34 - 00331776 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msadce.dll
2015-05-16 08:27 - 2012-05-28 20:16 - 00536576 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msado15.dll
2015-05-16 08:25 - 2015-05-16 08:25 - 00000000 ____D () C:\Dokumente und Einstellungen\Martina\Lokale Einstellungen\Anwendungsdaten\Mozilla
2015-05-16 08:25 - 2015-05-16 08:25 - 00000000 ____D () C:\Dokumente und Einstellungen\Martina\Anwendungsdaten\Mozilla
2015-05-16 08:24 - 2013-08-09 02:55 - 00144128 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\usbport.sys
2015-05-16 08:24 - 2013-08-09 02:55 - 00032384 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\usbccgp.sys
2015-05-16 08:24 - 2013-08-09 02:55 - 00005376 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\usbd.sys
2015-05-16 08:24 - 2012-07-04 16:05 - 00139784 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\rdpwd.sys
2015-05-16 08:24 - 2010-06-18 15:36 - 03558912 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\moviemk.exe
2015-05-16 08:24 - 2009-03-18 13:02 - 00030336 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\usbehci.sys
2015-05-16 08:21 - 2013-11-27 22:21 - 00040960 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ndproxy.sys
2015-05-16 08:21 - 2013-07-04 09:33 - 02195840 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ntoskrnl.exe
2015-05-16 08:21 - 2013-07-04 09:33 - 02152448 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ntkrnlmp.exe
2015-05-16 08:21 - 2013-07-04 09:33 - 02072448 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ntkrnlpa.exe
2015-05-16 08:21 - 2013-07-04 09:33 - 02031104 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ntkrpamp.exe
2015-05-16 08:21 - 2012-01-11 21:06 - 00003072 ____N () C:\WINDOWS\system32\iacenc.dll
2015-05-16 08:21 - 2012-01-11 21:06 - 00003072 ____N () C:\WINDOWS\system32\dllcache\iacenc.dll
2015-05-16 08:21 - 2011-07-08 16:02 - 00010496 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ndistapi.sys
2015-05-16 08:21 - 2010-12-09 17:15 - 00743936 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ntdll.dll
2015-05-16 08:21 - 2010-07-16 14:01 - 00220160 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wordpad.exe
2015-05-16 08:21 - 2009-11-21 17:54 - 01206508 ____N () C:\WINDOWS\system32\dllcache\sysmain.sdb
2015-05-16 08:20 - 2010-10-11 16:59 - 00045568 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wab.exe
2015-05-16 08:13 - 2015-05-16 08:13 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB898461$
2015-05-16 08:13 - 2015-05-16 08:13 - 00000000 ____D () C:\WINDOWS\system32\PreInstall
2015-05-16 01:16 - 2015-05-16 01:16 - 00000000 ____D () C:\Dokumente und Einstellungen\Martina\Anwendungsdaten\Avira
2015-05-16 01:16 - 2015-05-16 01:16 - 00000000 ____D () C:\Dokumente und Einstellungen\LocalService\Anwendungsdaten\Avira
2015-05-16 01:14 - 2015-04-16 15:23 - 00136216 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avipbb.sys
2015-05-16 01:14 - 2015-04-16 15:23 - 00107400 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avgntflt.sys
2015-05-16 01:14 - 2015-04-16 15:23 - 00037896 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avkmgr.sys
2015-05-16 01:14 - 2015-04-16 15:23 - 00028520 _____ (Avira GmbH) C:\WINDOWS\system32\Drivers\ssmdrv.sys
2015-05-16 01:03 - 2015-05-16 08:12 - 00000664 _____ () C:\WINDOWS\system32\d3d9caps.dat
2015-05-16 00:46 - 2015-05-18 19:24 - 00050584 _____ () C:\Dokumente und Einstellungen\Martina\Lokale Einstellungen\Anwendungsdaten\GDIPFONTCACHEV1.DAT
2015-05-16 00:45 - 2015-05-16 21:49 - 00000768 _____ () C:\Dokumente und Einstellungen\Martina\Startmenü\Programme\Windows Media Player.lnk
2015-05-16 00:43 - 2015-05-22 22:21 - 00000190 ___SH () C:\Dokumente und Einstellungen\Martina\ntuser.ini
2015-05-16 00:43 - 2015-05-22 22:21 - 00000000 ___RD () C:\Dokumente und Einstellungen\Martina\Startmenü\Programme
2015-05-16 00:43 - 2015-05-22 22:21 - 00000000 ____D () C:\Dokumente und Einstellungen\Martina
2015-05-16 00:43 - 2015-05-18 20:09 - 00203328 _____ () C:\WINDOWS\system32\FNTCACHE.DAT
2015-05-16 00:43 - 2015-05-16 21:47 - 00000140 _____ () C:\Dokumente und Einstellungen\Martina\Lokale Einstellungen\Anwendungsdaten\fusioncache.dat
2015-05-16 00:43 - 2015-05-16 10:04 - 00000000 ___RD () C:\Dokumente und Einstellungen\Martina\Startmenü\Programme\Zubehör
2015-05-16 00:43 - 2015-05-16 10:04 - 00000000 ___RD () C:\Dokumente und Einstellungen\Martina\Eigene Dateien\Eigene Musik
2015-05-16 00:43 - 2015-05-16 10:04 - 00000000 ___RD () C:\Dokumente und Einstellungen\Martina\Eigene Dateien\Eigene Bilder
2015-05-16 00:43 - 2015-05-16 00:45 - 00000000 __SHD () C:\Dokumente und Einstellungen\Martina\Lokale Einstellungen\Verlauf
2015-05-16 00:43 - 2015-05-15 08:01 - 00000000 ___RD () C:\Dokumente und Einstellungen\Martina\Startmenü\Programme\Autostart
2015-05-16 00:43 - 2015-05-15 08:01 - 00000000 ___RD () C:\Dokumente und Einstellungen\Martina\Startmenü
2015-05-16 00:43 - 2015-05-15 08:01 - 00000000 ____D () C:\Dokumente und Einstellungen\Martina\Lokale Einstellungen\Anwendungsdaten\{3248F0A6-6813-11D6-A77B-00B0D0150060}
2015-05-16 00:43 - 2006-08-25 07:12 - 00000000 ___HD () C:\Dokumente und Einstellungen\Martina\Netzwerkumgebung
2015-05-16 00:43 - 2006-08-25 07:12 - 00000000 ___HD () C:\Dokumente und Einstellungen\Martina\Druckumgebung
2015-05-16 00:43 - 2006-08-25 07:12 - 00000000 ____D () C:\Dokumente und Einstellungen\Martina\Anwendungsdaten\SampleView
2015-05-16 00:43 - 2006-08-24 21:11 - 00000000 _____ () C:\Dokumente und Einstellungen\Martina\Lokale Einstellungen\Anwendungsdaten\QSwitch.txt
2015-05-16 00:43 - 2006-08-24 21:11 - 00000000 _____ () C:\Dokumente und Einstellungen\Martina\Lokale Einstellungen\Anwendungsdaten\DSwitch.txt
2015-05-16 00:43 - 2006-08-24 21:11 - 00000000 _____ () C:\Dokumente und Einstellungen\Martina\Lokale Einstellungen\Anwendungsdaten\AtStart.txt
2015-05-16 00:43 - 2006-08-24 20:52 - 00001491 _____ () C:\Dokumente und Einstellungen\Martina\Startmenü\Programme\Software Setup.lnk
2015-05-16 00:43 - 2004-08-07 07:53 - 00001503 _____ () C:\Dokumente und Einstellungen\Martina\Startmenü\Programme\Remoteunterstützung.lnk
2015-05-16 00:42 - 2015-05-22 22:31 - 00199582 _____ () C:\Dokumente und Einstellungen\LocalService\Lokale Einstellungen\Anwendungsdaten\WPFFontCache_v0400-System.dat
2015-05-16 00:42 - 2015-05-16 00:42 - 00417002 _____ () C:\Dokumente und Einstellungen\LocalService\Lokale Einstellungen\Anwendungsdaten\WPFFontCache_v0400-S-1-5-21-1310988380-3352743311-3678797310-500-0.dat
2015-05-15 23:53 - 2015-05-15 23:53 - 00000000 ____D () C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Powertoys for Windows XP
2015-05-15 23:53 - 2003-06-25 16:05 - 00266360 _____ (Microsoft Corporation) C:\WINDOWS\system32\TweakUI.exe
2015-05-15 23:38 - 2015-05-15 23:38 - 00000000 ____D () C:\Programme\MSECache
2015-05-15 23:35 - 2015-05-16 01:15 - 00000000 ____D () C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Avira
2015-05-15 23:35 - 2015-05-15 23:35 - 00000832 _____ () C:\Dokumente und Einstellungen\All Users\Desktop\Avira.lnk
2015-05-15 23:31 - 2015-05-16 00:02 - 00050584 _____ () C:\Dokumente und Einstellungen\Administrator\Lokale Einstellungen\Anwendungsdaten\GDIPFONTCACHEV1.DAT
2015-05-15 23:27 - 2015-05-15 23:27 - 00000400 _____ () C:\WINDOWS\ODBC.INI
2015-05-15 23:26 - 2015-05-15 23:26 - 00000000 ____D () C:\Programme\Gemeinsame Dateien\DESIGNER
2015-05-15 23:26 - 2015-05-15 23:26 - 00000000 ____D () C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Microsoft Office
2015-05-15 23:26 - 2007-04-09 13:23 - 00028040 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdimon.dll
2015-05-15 23:25 - 2015-05-15 23:38 - 00000000 ____D () C:\Programme\Microsoft Office
2015-05-15 23:25 - 2015-05-15 23:26 - 00000000 ____D () C:\WINDOWS\SHELLNEW
2015-05-15 23:12 - 2015-05-15 23:12 - 00000000 ___RD () C:\MSOCache
2015-05-15 23:08 - 2015-05-15 23:08 - 00000020 _____ () C:\WINDOWS\system32\d.scf
2015-05-15 23:08 - 2015-05-15 23:08 - 00000000 __RSH () C:\MSDOS.SYS
2015-05-15 23:08 - 2015-05-15 23:08 - 00000000 __RSH () C:\IO.SYS
2015-05-15 23:06 - 2015-05-15 23:06 - 00000000 ____D () C:\Dokumente und Einstellungen\Administrator\Registry_Change
2015-05-15 22:56 - 2015-05-15 22:56 - 00023840 _____ (REALiX(tm)) C:\WINDOWS\system32\Drivers\HWiNFO32.SYS
2015-05-15 22:56 - 2015-05-15 22:56 - 00001749 _____ () C:\Dokumente und Einstellungen\All Users\Desktop\Driver Booster 2.lnk
2015-05-15 22:56 - 2015-05-15 22:56 - 00000000 ____D () C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Driver Booster 2
2015-05-15 22:56 - 2015-05-15 22:56 - 00000000 ____D () C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\ProductData
2015-05-15 22:56 - 2015-05-15 22:56 - 00000000 ____D () C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\IObit
2015-05-15 22:56 - 2015-05-15 22:56 - 00000000 ____D () C:\Dokumente und Einstellungen\Administrator\Anwendungsdaten\IObit
2015-05-15 22:55 - 2015-05-15 22:55 - 00000000 ____D () C:\Programme\IObit
2015-05-15 22:52 - 2015-05-15 22:52 - 00000731 _____ () C:\Dokumente und Einstellungen\All Users\Desktop\Picasa 3.lnk
2015-05-15 22:51 - 2015-05-15 22:51 - 00000000 ____D () C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Picasa 3
2015-05-15 22:51 - 2015-05-15 22:51 - 00000000 ____D () C:\Dokumente und Einstellungen\Administrator\Anwendungsdaten\vlc
2015-05-15 22:50 - 2015-05-15 22:50 - 00000691 _____ () C:\Dokumente und Einstellungen\All Users\Desktop\VLC media player.lnk
2015-05-15 22:50 - 2015-05-15 22:50 - 00000000 ____D () C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\VideoLAN
2015-05-15 22:49 - 2015-05-15 22:49 - 00000000 ____D () C:\Programme\VideoLAN
2015-05-15 22:48 - 2015-05-15 22:48 - 00000000 ____D () C:\Dokumente und Einstellungen\Administrator\Lokale Einstellungen\Anwendungsdaten\Adobe
2015-05-15 22:19 - 2015-05-15 22:32 - 00000000 ____D () C:\Dokumente und Einstellungen\Administrator\Anwendungsdaten\U3
2015-05-15 22:14 - 2015-05-15 22:14 - 00001638 _____ () C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Mozilla Thunderbird.lnk
2015-05-15 22:14 - 2015-05-15 22:14 - 00001632 _____ () C:\Dokumente und Einstellungen\All Users\Desktop\Mozilla Thunderbird.lnk
2015-05-15 22:14 - 2015-05-15 22:14 - 00000000 ____D () C:\Dokumente und Einstellungen\Administrator\Lokale Einstellungen\Anwendungsdaten\Thunderbird
2015-05-15 22:14 - 2015-05-15 22:14 - 00000000 ____D () C:\Dokumente und Einstellungen\Administrator\Anwendungsdaten\Thunderbird
2015-05-15 22:13 - 2015-05-15 22:14 - 00000000 ____D () C:\Programme\Mozilla Thunderbird
2015-05-15 21:52 - 2015-05-15 23:25 - 00000000 ____D () C:\Programme\Microsoft.NET
2015-05-15 21:05 - 2015-05-22 21:24 - 00000000 ____D () C:\AdwCleaner
2015-05-15 21:04 - 2015-05-17 09:07 - 00000000 ____D () C:\Programme\Mozilla Maintenance Service
2015-05-15 21:04 - 2015-05-15 21:05 - 00000000 ____D () C:\Dokumente und Einstellungen\Administrator\Anwendungsdaten\Mozilla
2015-05-15 21:04 - 2015-05-15 21:04 - 00000702 _____ () C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Mozilla Firefox.lnk
2015-05-15 21:04 - 2015-05-15 21:04 - 00000696 _____ () C:\Dokumente und Einstellungen\All Users\Desktop\Mozilla Firefox.lnk
2015-05-15 21:04 - 2015-05-15 21:04 - 00000000 ____D () C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Mozilla
2015-05-15 21:04 - 2015-05-15 21:04 - 00000000 ____D () C:\Dokumente und Einstellungen\Administrator\Lokale Einstellungen\Anwendungsdaten\Mozilla
2015-05-15 21:01 - 2015-05-15 21:01 - 00000000 ____D () C:\Dokumente und Einstellungen\Administrator\Lokale Einstellungen\Anwendungsdaten\Help
2015-05-15 21:01 - 2015-05-15 21:01 - 00000000 ____D () C:\Dokumente und Einstellungen\Administrator\Anwendungsdaten\Help
2015-05-15 20:26 - 2015-05-16 01:13 - 00000000 ____D () C:\Programme\Avira
2015-05-15 20:26 - 2015-05-16 01:13 - 00000000 ____D () C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Avira
2015-05-15 08:57 - 2015-05-15 08:57 - 00000654 _____ () C:\Dokumente und Einstellungen\All Users\Desktop\CCleaner.lnk
2015-05-15 08:57 - 2015-05-15 08:57 - 00000000 ____D () C:\Programme\CCleaner
2015-05-15 08:57 - 2015-05-15 08:57 - 00000000 ____D () C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\CCleaner
2015-05-15 08:55 - 2015-05-15 22:53 - 00001919 _____ () C:\WINDOWS\epplauncher.mif
2015-05-15 08:26 - 2015-05-15 08:26 - 00000060 _____ () C:\WINDOWS\system32\SYSDRV.DAT
2015-05-15 08:25 - 2015-05-15 08:25 - 00000000 ____D () C:\WINDOWS\i386
2015-05-15 08:24 - 2015-05-16 00:43 - 00000000 ____D () C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Package Cache
2015-05-15 08:22 - 2015-05-15 08:22 - 00000090 _____ () C:\WINDOWS\system32\spupdwxp.log
2015-05-15 00:48 - 2015-05-16 21:49 - 00000000 ____D () C:\WINDOWS\system32\de-de
2015-05-15 00:48 - 2015-05-15 00:48 - 00000000 ____D () C:\WINDOWS\system32\de
2015-05-15 00:48 - 2015-05-15 00:48 - 00000000 ____D () C:\WINDOWS\system32\bits
2015-05-15 00:48 - 2015-05-15 00:48 - 00000000 ____D () C:\WINDOWS\l2schemas
2015-05-15 00:48 - 2013-11-13 03:13 - 00046080 ____N (Microsoft Corporation) C:\WINDOWS\system32\tzchange.exe
2015-05-15 00:48 - 2013-07-17 02:58 - 00046848 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\irbus.sys
2015-05-15 00:48 - 2013-02-27 07:31 - 00131072 ____N (Microsoft Corporation) C:\WINDOWS\system32\aaclient.dll
2015-05-15 00:48 - 2013-02-27 07:31 - 00036864 ____N (Microsoft Corporation) C:\WINDOWS\system32\tsgqec.dll
2015-05-15 00:48 - 2012-11-06 04:01 - 01371648 ____N (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll
2015-05-15 00:48 - 2012-11-06 04:01 - 01371648 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msxml6.dll
2015-05-15 00:48 - 2009-01-07 18:21 - 00121856 _____ (Microsoft Corporation) C:\WINDOWS\system32\xmllite.dll
2015-05-15 00:48 - 2008-04-14 07:53 - 00073796 ____N (Smart Link) C:\WINDOWS\system32\slserv.exe
2015-05-15 00:48 - 2008-04-14 07:53 - 00032866 ____N (Smart Link) C:\WINDOWS\system32\slrundll.exe
2015-05-15 00:48 - 2008-04-14 07:53 - 00032866 ____N (Smart Link) C:\WINDOWS\slrundll.exe
2015-05-15 00:48 - 2008-04-14 07:53 - 00032768 ____N (Microsoft Corporation) C:\WINDOWS\system32\setupn.exe
2015-05-15 00:48 - 2008-04-14 07:53 - 00028672 ____N (Microsoft Corporation) C:\WINDOWS\system32\vidcap.ax
2015-05-15 00:48 - 2008-04-14 07:53 - 00028672 ____N (Microsoft Corporation) C:\WINDOWS\system32\verclsid.exe
2015-05-15 00:48 - 2008-04-14 07:53 - 00023040 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\ativmvxx.ax
2015-05-15 00:48 - 2008-04-14 07:53 - 00009728 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\ativdaxx.ax
2015-05-15 00:48 - 2008-04-14 07:52 - 04274816 ____N (NVIDIA Corporation) C:\WINDOWS\system32\nv4_disp.dll
2015-05-15 00:48 - 2008-04-14 07:52 - 01888992 ____N (ATI Technologies Inc. ) C:\WINDOWS\system32\ati3duag.dll
2015-05-15 00:48 - 2008-04-14 07:52 - 01737856 ____N (Matrox Graphics Inc.) C:\WINDOWS\system32\mtxparhd.dll
2015-05-15 00:48 - 2008-04-14 07:52 - 00870784 ____N (ATI Technologies Inc. ) C:\WINDOWS\system32\ati3d1ag.dll
2015-05-15 00:48 - 2008-04-14 07:52 - 00712704 ____N (Microsoft Corporation) C:\WINDOWS\system32\windowscodecs.dll
2015-05-15 00:48 - 2008-04-14 07:52 - 00651264 ____N (Microsoft Corporation) C:\WINDOWS\system32\dot3ui.dll
2015-05-15 00:48 - 2008-04-14 07:52 - 00516768 ____N (ATI Technologies Inc. ) C:\WINDOWS\system32\ativvaxx.dll
2015-05-15 00:48 - 2008-04-14 07:52 - 00412160 ____N (Microsoft Corporation) C:\WINDOWS\system32\photometadatahandler.dll
2015-05-15 00:48 - 2008-04-14 07:52 - 00397312 ____N (Microsoft Corporation) C:\WINDOWS\system32\mmcex.dll
2015-05-15 00:48 - 2008-04-14 07:52 - 00397056 ____N (S3 Graphics, Inc.) C:\WINDOWS\system32\s3gnb.dll
2015-05-15 00:48 - 2008-04-14 07:52 - 00377984 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\ati2dvaa.dll
2015-05-15 00:48 - 2008-04-14 07:52 - 00346112 ____N (Microsoft Corporation) C:\WINDOWS\system32\windowscodecsext.dll
2015-05-15 00:48 - 2008-04-14 07:52 - 00294400 ____N (Microsoft Corporation) C:\WINDOWS\system32\qagentrt.dll
2015-05-15 00:48 - 2008-04-14 07:52 - 00290304 ____N (Microsoft Corporation) C:\WINDOWS\system32\rhttpaa.dll
2015-05-15 00:48 - 2008-04-14 07:52 - 00286792 ____N (Smart Link) C:\WINDOWS\system32\slextspk.dll
2015-05-15 00:48 - 2008-04-14 07:52 - 00276992 ____N (Microsoft Corporation) C:\WINDOWS\system32\wmphoto.dll
2015-05-15 00:48 - 2008-04-14 07:52 - 00233472 ____N (Microsoft Corporation) C:\WINDOWS\system32\azroles.dll
2015-05-15 00:48 - 2008-04-14 07:52 - 00229376 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\ati2cqag.dll
2015-05-15 00:48 - 2008-04-14 07:52 - 00201728 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\ati2dvag.dll
2015-05-15 00:48 - 2008-04-14 07:52 - 00198656 ____N (Microsoft Corporation) C:\WINDOWS\system32\napmontr.dll
2015-05-15 00:48 - 2008-04-14 07:52 - 00188508 ____N (Smart Link) C:\WINDOWS\system32\slgen.dll
2015-05-15 00:48 - 2008-04-14 07:52 - 00184832 ____N (Microsoft Corporation) C:\WINDOWS\system32\eapp3hst.dll
2015-05-15 00:48 - 2008-04-14 07:52 - 00184320 ____N (Microsoft Corporation) C:\WINDOWS\system32\microsoft.managementconsole.dll
2015-05-15 00:48 - 2008-04-14 07:52 - 00182272 ____N (Microsoft Corporation) C:\WINDOWS\system32\eapphost.dll
2015-05-15 00:48 - 2008-04-14 07:52 - 00177664 ____N (Microsoft Corporation) C:\WINDOWS\system32\napstat.exe
2015-05-15 00:48 - 2008-04-14 07:52 - 00155136 ____N (Microsoft Corporation) C:\WINDOWS\system32\mssha.dll
2015-05-15 00:48 - 2008-04-14 07:52 - 00151040 ____N (Microsoft Corporation) C:\WINDOWS\system32\qagent.dll
2015-05-15 00:48 - 2008-04-14 07:52 - 00145408 ____N (Microsoft Corporation) C:\WINDOWS\system32\onex.dll
2015-05-15 00:48 - 2008-04-14 07:52 - 00133120 ____N (Microsoft Corporation) C:\WINDOWS\system32\dot3svc.dll
2015-05-15 00:48 - 2008-04-14 07:52 - 00126976 ____N (Microsoft Corporation) C:\WINDOWS\system32\eappcfg.dll
2015-05-15 00:48 - 2008-04-14 07:52 - 00106496 ____N (Microsoft Corporation) C:\WINDOWS\system32\mmcfxcommon.dll
2015-05-15 00:48 - 2008-04-14 07:52 - 00095232 ____N (Microsoft Corporation) C:\WINDOWS\system32\eappgnui.dll
2015-05-15 00:48 - 2008-04-14 07:52 - 00086016 ____N (Conexant) C:\WINDOWS\system32\mdmxsdk.dll
2015-05-15 00:48 - 2008-04-14 07:52 - 00076800 ____N (Microsoft Corporation) C:\WINDOWS\system32\qutil.dll
2015-05-15 00:48 - 2008-04-14 07:52 - 00073832 ____N (Smart Link) C:\WINDOWS\system32\slcoinst.dll
2015-05-15 00:48 - 2008-04-14 07:52 - 00069120 ____N (Microsoft Corporation) C:\WINDOWS\system32\wlanapi.dll
2015-05-15 00:48 - 2008-04-14 07:52 - 00062976 ____N (Microsoft Corporation) C:\WINDOWS\system32\dot3cfg.dll
2015-05-15 00:48 - 2008-04-14 07:52 - 00062464 ____N (Microsoft Corporation) C:\WINDOWS\system32\qcliprov.dll
2015-05-15 00:48 - 2008-04-14 07:52 - 00061952 ____N (Microsoft Corporation) C:\WINDOWS\system32\rasqec.dll
2015-05-15 00:48 - 2008-04-14 07:52 - 00061440 ____N (Microsoft Corporation) C:\WINDOWS\system32\kmsvc.dll
2015-05-15 00:48 - 2008-04-14 07:52 - 00059392 ____N (Microsoft Corporation) C:\WINDOWS\system32\eapqec.dll
2015-05-15 00:48 - 2008-04-14 07:52 - 00056832 ____N (Microsoft Corporation) C:\WINDOWS\system32\dot3msm.dll
2015-05-15 00:48 - 2008-04-14 07:52 - 00050688 ____N (Microsoft Corporation) C:\WINDOWS\system32\tspkg.dll
2015-05-15 00:48 - 2008-04-14 07:52 - 00048640 ____N (Microsoft Corporation) C:\WINDOWS\system32\dhcpqec.dll
2015-05-15 00:48 - 2008-04-14 07:52 - 00040960 ____N (Microsoft Corporation) C:\WINDOWS\system32\eappprxy.dll
2015-05-15 00:48 - 2008-04-14 07:52 - 00039936 ____N (Microsoft Corporation) C:\WINDOWS\system32\dot3gpclnt.dll
2015-05-15 00:48 - 2008-04-14 07:52 - 00039936 ____N (Microsoft Corporation) C:\WINDOWS\system32\dimsroam.dll
2015-05-15 00:48 - 2008-04-14 07:52 - 00037376 ____N (Microsoft Corporation) C:\WINDOWS\system32\l2gpstore.dll
2015-05-15 00:48 - 2008-04-14 07:52 - 00033792 ____N (Microsoft Corporation) C:\WINDOWS\system32\mmcperf.exe
2015-05-15 00:48 - 2008-04-14 07:52 - 00033792 ____N (Microsoft Corporation) C:\WINDOWS\system32\eapsvc.dll
2015-05-15 00:48 - 2008-04-14 07:52 - 00032768 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\ativtmxx.dll
2015-05-15 00:48 - 2008-04-14 07:52 - 00032285 ____N (Conexant Systems, Inc.) C:\WINDOWS\system32\hsfcisp2.dll
2015-05-15 00:48 - 2008-04-14 07:52 - 00030720 ____N (Microsoft Corporation) C:\WINDOWS\system32\eapolqec.dll
2015-05-15 00:48 - 2008-04-14 07:52 - 00030208 ____N (Microsoft Corporation) C:\WINDOWS\system32\napipsec.dll
2015-05-15 00:48 - 2008-04-14 07:52 - 00026112 ____N (Microsoft Corporation) C:\WINDOWS\system32\dot3api.dll
2015-05-15 00:48 - 2008-04-14 07:52 - 00019456 ____N (Microsoft Corporation) C:\WINDOWS\system32\dimsntfy.dll
2015-05-15 00:48 - 2008-04-14 07:52 - 00012800 ____N (Microsoft Corporation) C:\WINDOWS\system32\credssp.dll
2015-05-15 00:48 - 2008-04-14 07:52 - 00009216 ____N (Microsoft Corporation) C:\WINDOWS\system32\dot3dlg.dll
2015-05-15 00:48 - 2008-04-14 07:52 - 00007168 ____N (Microsoft Corporation) C:\WINDOWS\system32\bitsprx4.dll
2015-05-15 00:48 - 2008-04-14 07:50 - 00006144 ____N (Microsoft Corporation) C:\WINDOWS\system32\kbdpash.dll
2015-05-15 00:48 - 2008-04-14 07:50 - 00006144 ____N (Microsoft Corporation) C:\WINDOWS\system32\kbdnepr.dll
2015-05-15 00:48 - 2008-04-14 07:50 - 00006144 ____N (Microsoft Corporation) C:\WINDOWS\system32\kbdiultn.dll
2015-05-15 00:48 - 2008-04-14 07:50 - 00006144 ____N (Microsoft Corporation) C:\WINDOWS\system32\kbdbhc.dll
2015-05-15 00:48 - 2008-04-14 07:27 - 00093184 ____N (Microsoft Corporation) C:\WINDOWS\system32\msxml6r.dll
2015-05-15 00:48 - 2008-04-14 07:27 - 00093184 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msxml6r.dll
2015-05-15 00:48 - 2008-04-14 07:26 - 00081408 ____N (Microsoft Corporation) C:\WINDOWS\system32\msshavmsg.dll
2015-05-15 00:48 - 2008-04-14 00:13 - 00009728 ____N (Microsoft Corporation) C:\WINDOWS\system32\comsdupd.exe
2015-05-15 00:43 - 2015-05-15 00:43 - 00000000 ____D () C:\WINDOWS\ServicePackFiles
2015-05-15 00:39 - 2013-07-17 02:58 - 00123008 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbvideo.sys
2015-05-15 00:39 - 2013-02-12 02:32 - 00012928 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usb8023x.sys
2015-05-15 00:39 - 2008-06-14 19:32 - 00273024 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys
2015-05-15 00:39 - 2008-04-14 07:52 - 00025471 ____N (Intel(R) Corporation) C:\WINDOWS\system32\Drivers\atv04nt5.dll
2015-05-15 00:39 - 2008-04-14 07:52 - 00021183 ____N (Intel(R) Corporation) C:\WINDOWS\system32\Drivers\atv01nt5.dll
2015-05-15 00:39 - 2008-04-14 07:52 - 00017279 ____N (Intel(R) Corporation) C:\WINDOWS\system32\Drivers\atv10nt5.dll
2015-05-15 00:39 - 2008-04-14 07:52 - 00015423 ____N (Intel(R) Corporation) C:\WINDOWS\system32\Drivers\ch7xxnt5.dll
2015-05-15 00:39 - 2008-04-14 07:52 - 00014143 ____N (Intel(R) Corporation) C:\WINDOWS\system32\Drivers\atv06nt5.dll
2015-05-15 00:39 - 2008-04-14 07:52 - 00011359 ____N (Intel(R) Corporation) C:\WINDOWS\system32\Drivers\atv02nt5.dll
2015-05-15 00:39 - 2008-04-14 07:52 - 00011325 ____N (Intel(R) Corporation) C:\WINDOWS\system32\Drivers\vchnt5.dll
2015-05-15 00:39 - 2008-04-14 07:52 - 00004255 ____N (Intel(R) Corporation) C:\WINDOWS\system32\Drivers\adv01nt5.dll
2015-05-15 00:39 - 2008-04-14 07:52 - 00003967 ____N (Intel(R) Corporation) C:\WINDOWS\system32\Drivers\adv02nt5.dll
2015-05-15 00:39 - 2008-04-14 07:52 - 00003901 ____N (Intel(R) Corporation) C:\WINDOWS\system32\Drivers\siint5.dll
2015-05-15 00:39 - 2008-04-14 07:52 - 00003775 ____N (Intel(R) Corporation) C:\WINDOWS\system32\Drivers\adv11nt5.dll
2015-05-15 00:39 - 2008-04-14 07:52 - 00003711 ____N (Intel(R) Corporation) C:\WINDOWS\system32\Drivers\adv09nt5.dll
2015-05-15 00:39 - 2008-04-14 07:52 - 00003647 ____N (Intel(R) Corporation) C:\WINDOWS\system32\Drivers\adv07nt5.dll
2015-05-15 00:39 - 2008-04-14 07:52 - 00003615 ____N (Intel(R) Corporation) C:\WINDOWS\system32\Drivers\adv05nt5.dll
2015-05-15 00:39 - 2008-04-14 07:52 - 00003135 ____N (Intel(R) Corporation) C:\WINDOWS\system32\Drivers\adv08nt5.dll
2015-05-15 00:39 - 2008-04-14 07:24 - 00025856 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidbth.sys
2015-05-15 00:39 - 2008-04-14 07:21 - 00701952 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\ati2mtag.sys
2015-05-15 00:39 - 2008-04-14 07:21 - 00327168 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\ati2mtaa.sys
2015-05-15 00:39 - 2008-04-14 00:26 - 00030592 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rndismpx.sys
2015-05-15 00:39 - 2008-04-14 00:21 - 00101120 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthpan.sys
2015-05-15 00:39 - 2008-04-14 00:16 - 00059136 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rfcomm.sys
2015-05-15 00:39 - 2008-04-14 00:16 - 00037888 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthmodem.sys
2015-05-15 00:39 - 2008-04-14 00:16 - 00036480 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthprint.sys
2015-05-15 00:39 - 2008-04-14 00:16 - 00018944 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthusb.sys
2015-05-15 00:39 - 2008-04-14 00:16 - 00017024 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthenum.sys
2015-05-15 00:39 - 2008-04-14 00:15 - 00019200 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidir.sys
2015-05-15 00:39 - 2008-04-14 00:13 - 00014208 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wacompen.sys
2015-05-15 00:39 - 2008-04-14 00:13 - 00012672 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mutohpen.sys
2015-05-15 00:39 - 2008-04-14 00:06 - 00046464 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\gagp30kx.sys
2015-05-15 00:39 - 2008-04-14 00:06 - 00044928 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\agpcpq.sys
2015-05-15 00:39 - 2008-04-14 00:06 - 00044672 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\uagp35.sys
2015-05-15 00:39 - 2008-04-14 00:06 - 00043008 ____N (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\Drivers\amdagp.sys
2015-05-15 00:39 - 2008-04-14 00:06 - 00042752 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\alim1541.sys
2015-05-15 00:39 - 2008-04-14 00:06 - 00042368 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\agp440.sys
2015-05-15 00:39 - 2008-04-14 00:06 - 00042240 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\viaagp.sys
2015-05-15 00:39 - 2008-04-14 00:06 - 00040960 ____N (Silicon Integrated Systems Corporation) C:\WINDOWS\system32\Drivers\sisagp.sys
2015-05-15 00:39 - 2008-04-14 00:06 - 00005888 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\smbali.sys
2015-05-15 00:39 - 2008-04-13 23:53 - 01309184 ____N (Smart Link) C:\WINDOWS\system32\Drivers\mtlstrm.sys
2015-05-15 00:39 - 2008-04-13 23:53 - 01041536 ____N (Conexant Systems, Inc.) C:\WINDOWS\system32\Drivers\hsfdpsp2.sys
2015-05-15 00:39 - 2008-04-13 23:53 - 00685056 ____N (Conexant Systems, Inc.) C:\WINDOWS\system32\Drivers\hsfcxts2.sys
2015-05-15 00:39 - 2008-04-13 23:53 - 00404990 ____N (Smart Link) C:\WINDOWS\system32\Drivers\slntamr.sys
2015-05-15 00:39 - 2008-04-13 23:53 - 00220032 ____N (Conexant Systems, Inc.) C:\WINDOWS\system32\Drivers\hsfbs2s2.sys
2015-05-15 00:39 - 2008-04-13 23:53 - 00180360 ____N (Smart Link) C:\WINDOWS\system32\Drivers\ntmtlfax.sys
2015-05-15 00:39 - 2008-04-13 23:53 - 00129535 ____N (Smart Link) C:\WINDOWS\system32\Drivers\slnt7554.sys
2015-05-15 00:39 - 2008-04-13 23:53 - 00126686 ____N (Smart Link) C:\WINDOWS\system32\Drivers\mtlmnt5.sys
2015-05-15 00:39 - 2008-04-13 23:53 - 00095424 ____N (Smart Link) C:\WINDOWS\system32\Drivers\slnthal.sys
2015-05-15 00:39 - 2008-04-13 23:53 - 00013776 ____N (Smart Link) C:\WINDOWS\system32\Drivers\recagent.sys
2015-05-15 00:39 - 2008-04-13 23:53 - 00013240 ____N (Smart Link) C:\WINDOWS\system32\Drivers\slwdmsup.sys
2015-05-15 00:39 - 2008-04-13 23:53 - 00011868 ____N (Conexant) C:\WINDOWS\system32\Drivers\mdmxsdk.sys
2015-05-15 00:39 - 2008-04-13 22:04 - 01897408 ____N (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nv4_mini.sys
2015-05-15 00:39 - 2008-04-13 22:04 - 00452736 ____N (Matrox Graphics Inc.) C:\WINDOWS\system32\Drivers\mtxparhm.sys
2015-05-15 00:39 - 2008-04-13 22:04 - 00166912 ____N (S3 Graphics, Inc.) C:\WINDOWS\system32\Drivers\s3gnbm.sys
2015-05-15 00:39 - 2008-04-13 22:04 - 00104960 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\atinrvxx.sys
2015-05-15 00:39 - 2008-04-13 22:04 - 00073216 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\atintuxx.sys
2015-05-15 00:39 - 2008-04-13 22:04 - 00063663 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\ati1rvxx.sys
2015-05-15 00:39 - 2008-04-13 22:04 - 00063488 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\atinxsxx.sys
2015-05-15 00:39 - 2008-04-13 22:04 - 00057856 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\atinbtxx.sys
2015-05-15 00:39 - 2008-04-13 22:04 - 00056623 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\ati1btxx.sys
2015-05-15 00:39 - 2008-04-13 22:04 - 00052224 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\atinraxx.sys
2015-05-15 00:39 - 2008-04-13 22:04 - 00036463 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\ati1tuxx.sys
2015-05-15 00:39 - 2008-04-13 22:04 - 00034735 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\ati1xsxx.sys
2015-05-15 00:39 - 2008-04-13 22:04 - 00031744 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\atinxbxx.sys
2015-05-15 00:39 - 2008-04-13 22:04 - 00030671 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\ati1raxx.sys
2015-05-15 00:39 - 2008-04-13 22:04 - 00029455 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\ati1xbxx.sys
2015-05-15 00:39 - 2008-04-13 22:04 - 00028672 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\atinsnxx.sys
2015-05-15 00:39 - 2008-04-13 22:04 - 00026367 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\ati1snxx.sys
2015-05-15 00:39 - 2008-04-13 22:04 - 00025471 ____N (Intel(R) Corporation) C:\WINDOWS\system32\Drivers\watv10nt.sys
2015-05-15 00:39 - 2008-04-13 22:04 - 00022271 ____N (Intel(R) Corporation) C:\WINDOWS\system32\Drivers\watv06nt.sys
2015-05-15 00:39 - 2008-04-13 22:04 - 00021343 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\ati1ttxx.sys
2015-05-15 00:39 - 2008-04-13 22:04 - 00014336 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\atinpdxx.sys
2015-05-15 00:39 - 2008-04-13 22:04 - 00013824 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\atinttxx.sys
2015-05-15 00:39 - 2008-04-13 22:04 - 00013824 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\atinmdxx.sys
2015-05-15 00:39 - 2008-04-13 22:04 - 00012047 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\ati1pdxx.sys
2015-05-15 00:39 - 2008-04-13 22:04 - 00011935 ____N (Intel(R) Corporation) C:\WINDOWS\system32\Drivers\wadv11nt.sys
2015-05-15 00:39 - 2008-04-13 22:04 - 00011871 ____N (Intel(R) Corporation) C:\WINDOWS\system32\Drivers\wadv09nt.sys
2015-05-15 00:39 - 2008-04-13 22:04 - 00011807 ____N (Intel(R) Corporation) C:\WINDOWS\system32\Drivers\wadv07nt.sys
2015-05-15 00:39 - 2008-04-13 22:04 - 00011615 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\ati1mdxx.sys
2015-05-15 00:39 - 2008-04-13 22:04 - 00011295 ____N (Intel(R) Corporation) C:\WINDOWS\system32\Drivers\wadv08nt.sys
2015-05-15 00:39 - 2007-04-02 21:36 - 00129045 ____N () C:\WINDOWS\system32\Drivers\cxthsfs2.cty
2015-05-15 00:39 - 2006-12-29 20:21 - 00064352 ____N () C:\WINDOWS\system32\Drivers\ativmc20.cod
2015-05-15 00:39 - 2006-12-29 20:02 - 00067866 ____N () C:\WINDOWS\system32\Drivers\netwlan5.img
2015-05-15 00:31 - 2015-05-15 00:36 - 00000000 __HDC () C:\WINDOWS\$NtServicePackUninstall$
2015-05-15 00:19 - 2015-05-15 00:19 - 00001420 _____ () C:\Dokumente und Einstellungen\Administrator\Desktop\malwarebytes_protokoll_150514.txt
2015-05-14 23:51 - 2015-05-22 20:37 - 00119512 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2015-05-14 23:51 - 2015-05-14 23:51 - 00000749 _____ () C:\Dokumente und Einstellungen\All Users\Desktop\ Malwarebytes Anti-Malware .lnk
2015-05-14 23:51 - 2015-05-14 23:51 - 00000000 ____D () C:\Programme\ Malwarebytes Anti-Malware 
2015-05-14 23:51 - 2015-05-14 23:51 - 00000000 ____D () C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Malwarebytes
2015-05-14 23:51 - 2015-04-14 09:37 - 00120024 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbamchameleon.sys
2015-05-14 23:51 - 2015-04-14 09:37 - 00023256 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbam.sys
2015-05-14 23:49 - 2008-04-14 00:15 - 00026368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbstor.sys
2015-05-14 23:45 - 2015-05-14 23:46 - 00000100 _____ () C:\WINDOWS\system32\LuResult.txt
2015-05-14 23:45 - 2015-05-14 23:45 - 00000100 _____ () C:\Dokumente und Einstellungen\Administrator\LuResult.txt
2015-05-14 23:41 - 2015-05-15 22:51 - 00000000 ____D () C:\Dokumente und Einstellungen\Administrator\Lokale Einstellungen\Anwendungsdaten\Google
2015-05-14 23:41 - 2015-05-14 23:41 - 00000000 ____D () C:\WINDOWS\system32\appmgmt
2015-05-14 23:35 - 2015-05-14 23:35 - 00000884 _____ () C:\Dokumente und Einstellungen\All Users\Startmenü\Bluetooth-Umgebung.lnk
2015-05-14 23:34 - 2015-05-15 22:51 - 00000000 ____D () C:\Programme\Google
2015-05-14 23:34 - 2015-05-14 23:34 - 00000000 ____D () C:\Programme\WIDCOMM
2015-05-14 23:33 - 2015-05-14 23:33 - 00000000 ____D () C:\WINDOWS\tiinst
2015-05-14 23:33 - 2015-05-14 23:33 - 00000000 ____D () C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\InterVideo WinDVD
2015-05-14 23:33 - 2002-11-21 10:57 - 00204800 _____ () C:\WINDOWS\system32\IVIresizeW7.dll
2015-05-14 23:33 - 2002-11-21 10:57 - 00200704 _____ () C:\WINDOWS\system32\IVIresizeA6.dll
2015-05-14 23:33 - 2002-11-21 10:57 - 00192512 _____ () C:\WINDOWS\system32\IVIresizeP6.dll
2015-05-14 23:33 - 2002-11-21 10:57 - 00192512 _____ () C:\WINDOWS\system32\IVIresizeM6.dll
2015-05-14 23:33 - 2002-11-21 10:57 - 00188416 _____ () C:\WINDOWS\system32\IVIresizePX.dll
2015-05-14 23:33 - 2002-11-21 10:57 - 00020480 _____ () C:\WINDOWS\system32\IVIresize.dll
2015-05-14 23:32 - 2015-05-14 23:32 - 00001815 __RSH () C:\WINDOWS\system32\Drivers\103C_HP_NTBK_HP Compaq nx6310 (RH342ET#ABD)_YN_0U_QCNU6492BF2_E404611044_46_I30AA_SHP_VKBC Version 58.12_B68YDU Ver. F.09_T060915_WXP2_L407_M1016_J80_7Intel_8Core2 T5500_91.66_#150514_N14E4170C_(RH342ET#ABD).MRK
2015-05-14 23:32 - 2015-05-14 23:32 - 00000000 ____D () C:\Programme\InterVideo
2015-05-14 23:30 - 2015-05-15 08:01 - 00000000 ___RD () C:\Dokumente und Einstellungen\Default User\Eigene Dateien\Eigene Musik
2015-05-14 23:30 - 2015-05-15 08:01 - 00000000 ___RD () C:\Dokumente und Einstellungen\Default User\Eigene Dateien\Eigene Bilder
2015-05-14 23:30 - 2015-05-15 08:01 - 00000000 ____D () C:\Dokumente und Einstellungen\Default User\Lokale Einstellungen\Anwendungsdaten\{3248F0A6-6813-11D6-A77B-00B0D0150060}
2015-05-14 23:30 - 2006-08-25 07:12 - 00000000 ____D () C:\Dokumente und Einstellungen\Default User\Anwendungsdaten\SampleView
2015-05-14 23:30 - 2006-08-24 21:17 - 00000190 ___SH () C:\Dokumente und Einstellungen\Default User\ntuser.ini
2015-05-14 23:30 - 2006-08-24 21:11 - 00000000 _____ () C:\Dokumente und Einstellungen\Default User\Lokale Einstellungen\Anwendungsdaten\QSwitch.txt
2015-05-14 23:30 - 2006-08-24 21:11 - 00000000 _____ () C:\Dokumente und Einstellungen\Default User\Lokale Einstellungen\Anwendungsdaten\DSwitch.txt
2015-05-14 23:30 - 2006-08-24 21:11 - 00000000 _____ () C:\Dokumente und Einstellungen\Default User\Lokale Einstellungen\Anwendungsdaten\AtStart.txt
2015-05-14 23:30 - 2006-08-24 20:52 - 00001491 _____ () C:\Dokumente und Einstellungen\Default User\Startmenü\Programme\Software Setup.lnk
2015-05-14 23:30 - 2006-08-24 20:41 - 00000146 _____ () C:\Dokumente und Einstellungen\Default User\Lokale Einstellungen\Anwendungsdaten\fusioncache.dat
2015-05-14 23:30 - 2006-08-24 20:37 - 00000747 _____ () C:\Dokumente und Einstellungen\Default User\Startmenü\Programme\Internet Explorer.lnk
2015-05-14 23:30 - 2006-08-24 20:37 - 00000718 _____ () C:\Dokumente und Einstellungen\Default User\Startmenü\Programme\Outlook Express.lnk

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-05-24 01:27 - 2004-08-07 08:08 - 01596842 _____ () C:\WINDOWS\WindowsUpdate.log
2015-05-23 21:27 - 2006-08-25 05:31 - 00000000 ___RD () C:\Programme
2015-05-23 21:25 - 2006-08-24 21:13 - 00000000 ____D () C:\WINDOWS\SMINST
2015-05-23 21:24 - 2004-08-07 08:08 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT
2015-05-22 22:31 - 2006-08-24 21:05 - 00065536 _____ () C:\WINDOWS\system32\config\Credenti.evt
2015-05-22 22:31 - 2004-08-07 08:08 - 00026916 _____ () C:\WINDOWS\SchedLgU.Txt
2015-05-22 20:24 - 2006-08-24 20:36 - 00000000 __SHD () C:\Dokumente und Einstellungen\LocalService
2015-05-21 20:59 - 2004-08-07 08:43 - 00000227 _____ () C:\WINDOWS\system.ini
2015-05-21 20:38 - 2004-08-07 07:47 - 00000327 __RSH () C:\boot.ini
2015-05-21 20:25 - 2006-08-24 21:10 - 00003960 _____ () C:\WINDOWS\system32\lsass.log
2015-05-20 22:53 - 2004-08-07 08:08 - 00000300 ___SH () C:\Dokumente und Einstellungen\Administrator\ntuser.ini
2015-05-20 21:41 - 2004-08-07 08:08 - 00001158 _____ () C:\WINDOWS\system32\wpa.dbl
2015-05-19 21:27 - 2006-08-25 05:31 - 00000000 ____D () C:\Dokumente und Einstellungen\Administrator
2015-05-19 13:29 - 2006-08-25 05:31 - 00000000 ____D () C:\WINDOWS\Microsoft.NET
2015-05-18 22:19 - 2006-08-25 05:31 - 00000000 ____D () C:\Programme\Gemeinsame Dateien\Microsoft Shared
2015-05-18 21:24 - 2004-08-07 08:04 - 01091506 _____ () C:\WINDOWS\system32\PerfStringBackup.INI
2015-05-18 20:58 - 2006-08-25 05:31 - 00000000 ____D () C:\WINDOWS\security
2015-05-18 20:37 - 2006-08-25 05:31 - 00000000 ___RD () C:\Dokumente und Einstellungen\All Users\Startmenü\Programme
2015-05-18 20:36 - 2006-08-24 20:52 - 00000000 ____D () C:\Programme\Adobe
2015-05-18 20:15 - 2006-08-25 05:31 - 00000000 ____D () C:\WINDOWS\Help
2015-05-18 19:21 - 2004-08-07 07:53 - 00000603 _____ () C:\WINDOWS\win.ini
2015-05-17 00:09 - 2006-08-24 20:43 - 00000000 ___HD () C:\WINDOWS\$hf_mig$
2015-05-16 21:49 - 2004-08-07 07:52 - 00023392 _____ () C:\WINDOWS\system32\nscompat.tlb
2015-05-16 21:49 - 2004-08-07 07:52 - 00016832 _____ () C:\WINDOWS\system32\amcompat.tlb
2015-05-16 21:48 - 2006-08-25 05:31 - 00000000 __SHD () C:\Dokumente und Einstellungen\All Users\DRM
2015-05-16 21:47 - 2006-08-24 21:05 - 00000902 _____ () C:\WINDOWS\system32\InstallUtil.InstallLog
2015-05-16 21:47 - 2006-08-24 21:05 - 00000000 ____D () C:\Programme\Windows Media Connect
2015-05-16 21:46 - 2006-08-25 05:31 - 00000000 ____D () C:\WINDOWS\system32\DirectX
2015-05-16 21:44 - 2006-08-25 05:31 - 00000000 ____D () C:\WINDOWS\system32\mui
2015-05-16 13:25 - 2006-08-25 05:31 - 00000000 ____D () C:\WINDOWS\system32\inetsrv
2015-05-16 10:57 - 2006-08-25 05:31 - 00000000 ____D () C:\Programme\Messenger
2015-05-16 10:19 - 2006-08-25 05:31 - 00000000 ____D () C:\Programme\Outlook Express
2015-05-16 10:18 - 2006-08-25 05:31 - 00000000 ____D () C:\Programme\Movie Maker
2015-05-16 09:57 - 2006-08-25 05:31 - 00000000 ____D () C:\WINDOWS\Media
2015-05-15 23:25 - 2006-08-25 05:31 - 00000000 ____D () C:\WINDOWS\pchealth
2015-05-15 23:25 - 2006-08-25 05:31 - 00000000 ____D () C:\Programme\Gemeinsame Dateien\System
2015-05-15 23:12 - 2006-08-25 05:31 - 00000000 ____D () C:\WINDOWS\system
2015-05-15 23:12 - 2006-08-24 20:39 - 00000000 ___HD () C:\Programme\InstallShield Installation Information
2015-05-15 08:23 - 2006-08-25 05:31 - 00000000 __SHD () C:\Dokumente und Einstellungen\Administrator\Lokale Einstellungen\Verlauf
2015-05-15 08:22 - 2006-08-25 05:31 - 00000000 ___RD () C:\Dokumente und Einstellungen\Default User\Startmenü\Programme
2015-05-15 08:22 - 2006-08-25 05:31 - 00000000 ___RD () C:\Dokumente und Einstellungen\Administrator\Startmenü\Programme
2015-05-15 08:22 - 2006-08-25 05:31 - 00000000 ___RD () C:\Dokumente und Einstellungen\Administrator\Eigene Dateien\Eigene Musik
2015-05-15 08:22 - 2006-08-25 05:31 - 00000000 ___RD () C:\Dokumente und Einstellungen\Administrator\Eigene Dateien\Eigene Bilder
2015-05-15 08:22 - 2004-08-07 07:58 - 00000747 _____ () C:\Dokumente und Einstellungen\Administrator\Startmenü\Programme\Internet Explorer.lnk
2015-05-15 08:22 - 2004-08-07 07:58 - 00000718 _____ () C:\Dokumente und Einstellungen\Administrator\Startmenü\Programme\Outlook Express.lnk
2015-05-15 08:22 - 2004-08-07 07:52 - 00316640 _____ () C:\WINDOWS\WMSysPr9.prx
2015-05-15 08:21 - 2006-08-24 21:01 - 00000000 ____D () C:\Programme\Gemeinsame Dateien\Symantec Shared
2015-05-15 08:21 - 2006-08-24 21:01 - 00000000 ____D () C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Symantec
2015-05-15 08:14 - 2006-08-25 05:31 - 00000000 ___RD () C:\WINDOWS\Web
2015-05-15 08:14 - 2006-08-25 05:31 - 00000000 ____D () C:\WINDOWS\twain_32
2015-05-15 08:14 - 2006-08-25 05:31 - 00000000 ____D () C:\WINDOWS\system32\URTTemp
2015-05-15 08:14 - 2006-08-25 05:31 - 00000000 ____D () C:\WINDOWS\system32\spool
2015-05-15 08:14 - 2006-08-25 05:31 - 00000000 ____D () C:\WINDOWS\system32\ras
2015-05-15 08:14 - 2006-08-25 05:31 - 00000000 ____D () C:\WINDOWS\system32\MsDtc
2015-05-15 08:14 - 2006-08-25 05:31 - 00000000 ____D () C:\WINDOWS\system32\Macromed
2015-05-15 08:14 - 2006-08-25 05:31 - 00000000 ____D () C:\WINDOWS\system32\IME
2015-05-15 08:14 - 2006-08-25 05:31 - 00000000 ____D () C:\WINDOWS\system32\icsxml
2015-05-15 08:14 - 2006-08-25 05:31 - 00000000 ____D () C:\WINDOWS\system32\ias
2015-05-15 08:14 - 2006-08-24 20:55 - 00000000 ____D () C:\WINDOWS\system32\DLA
2015-05-15 08:14 - 2006-08-24 20:40 - 00000000 ____D () C:\WINDOWS\system32\msmq
2015-05-15 08:13 - 2006-08-25 05:31 - 00000000 ____D () C:\WINDOWS\system32\1033
2015-05-15 08:13 - 2006-08-25 05:31 - 00000000 ____D () C:\WINDOWS\system32\1031
2015-05-15 08:11 - 2006-08-25 05:31 - 00000000 ____D () C:\WINDOWS\Resources
2015-05-15 08:11 - 2006-08-25 05:31 - 00000000 ____D () C:\WINDOWS\repair
2015-05-15 08:11 - 2006-08-25 05:31 - 00000000 ____D () C:\WINDOWS\Provisioning
2015-05-15 08:11 - 2006-08-24 20:57 - 00000000 ____D () C:\WINDOWS\RegisteredPackages
2015-05-15 08:10 - 2006-08-25 05:31 - 00000000 ___RD () C:\WINDOWS\Offline Web Pages
2015-05-15 08:10 - 2006-08-25 05:31 - 00000000 ____D () C:\WINDOWS\java
2015-05-15 08:09 - 2006-08-24 20:53 - 00000000 ____D () C:\WINDOWS\Hewlett-Packard
2015-05-15 08:08 - 2006-08-25 05:31 - 00000000 ____D () C:\WINDOWS\Driver Cache
2015-05-15 08:08 - 2006-08-25 05:31 - 00000000 ____D () C:\WINDOWS\Cursors
2015-05-15 08:08 - 2006-08-24 21:13 - 00000000 ____D () C:\WINDOWS\CREATOR
2015-05-15 08:08 - 2006-08-24 20:45 - 00000000 ___HD () C:\WINDOWS\$NtUninstallKB913446$
2015-05-15 08:08 - 2006-08-24 20:45 - 00000000 ___HD () C:\WINDOWS\$NtUninstallKB912919$
2015-05-15 08:08 - 2006-08-24 20:45 - 00000000 ___HD () C:\WINDOWS\$NtUninstallKB911927$
2015-05-15 08:08 - 2006-08-24 20:45 - 00000000 ___HD () C:\WINDOWS\$NtUninstallKB910728$
2015-05-15 08:08 - 2006-08-24 20:45 - 00000000 ___HD () C:\WINDOWS\$NtUninstallKB908519$
2015-05-15 08:08 - 2006-08-24 20:45 - 00000000 ___HD () C:\WINDOWS\$NtUninstallKB904706$
2015-05-15 08:08 - 2006-08-24 20:45 - 00000000 ___HD () C:\WINDOWS\$NtUninstallKB896358$
2015-05-15 08:08 - 2006-08-24 20:45 - 00000000 ___HD () C:\WINDOWS\$NtUninstallKB887472$
2015-05-15 08:08 - 2006-08-24 20:45 - 00000000 ___HD () C:\WINDOWS\$NtUninstallKB886185$
2015-05-15 08:08 - 2006-08-24 20:45 - 00000000 ___HD () C:\WINDOWS\$NtUninstallKB885884$
2015-05-15 08:08 - 2006-08-24 20:44 - 00000000 ___HD () C:\WINDOWS\$NtUninstallKB901214$
2015-05-15 08:08 - 2006-08-24 20:44 - 00000000 ___HD () C:\WINDOWS\$NtUninstallKB896727$
2015-05-15 08:08 - 2006-08-24 20:44 - 00000000 ___HD () C:\WINDOWS\$NtUninstallKB896423$
2015-05-15 08:08 - 2006-08-24 20:44 - 00000000 ___HD () C:\WINDOWS\$NtUninstallKB893066$
2015-05-15 08:08 - 2006-08-24 20:43 - 00000000 ___HD () C:\WINDOWS\$NtUninstallKB911565$
2015-05-15 08:08 - 2006-08-24 20:43 - 00000000 ___HD () C:\WINDOWS\$NtUninstallKB891781$
2015-05-15 08:08 - 2006-08-24 20:43 - 00000000 ___HD () C:\WINDOWS\$NtUninstallKB873333$
2015-05-15 08:08 - 2006-08-24 20:41 - 00000000 ___HD () C:\WINDOWS\$NtUninstallKB888111WXPSP2$
2015-05-15 08:08 - 2006-08-24 20:40 - 00000000 ___HD () C:\WINDOWS\$NtUninstallKB918005$
2015-05-15 08:08 - 2006-08-24 20:40 - 00000000 ___HD () C:\WINDOWS\$NtUninstallKB915326$
2015-05-15 08:08 - 2006-08-24 20:40 - 00000000 ___HD () C:\WINDOWS\$NtUninstallKB889673$
2015-05-15 08:08 - 2006-08-24 20:40 - 00000000 ___HD () C:\WINDOWS\$NtUninstallKB888402$
2015-05-15 08:08 - 2006-08-24 20:39 - 00000000 ___HD () C:\WINDOWS\$NtUninstallKB912436$
2015-05-15 08:08 - 2006-08-24 20:39 - 00000000 ___HD () C:\WINDOWS\$NtUninstallKB896256$
2015-05-15 08:08 - 2006-08-24 20:39 - 00000000 ___HD () C:\WINDOWS\$NtUninstallKB892559$
2015-05-15 08:08 - 2006-08-24 20:39 - 00000000 ___HD () C:\WINDOWS\$NtUninstallKB888239$
2015-05-15 08:08 - 2006-08-24 20:39 - 00000000 ___HD () C:\WINDOWS\$NtUninstallKB885855$
2015-05-15 08:08 - 2006-08-24 20:39 - 00000000 ___HD () C:\WINDOWS\$NtUninstallKB885464$
2015-05-15 08:08 - 2006-08-24 20:39 - 00000000 ___HD () C:\WINDOWS\$NtUninstallKB884575$
2015-05-15 08:08 - 2006-08-24 20:39 - 00000000 ___HD () C:\WINDOWS\$NtUninstallKB883667$
2015-05-15 08:07 - 2006-08-25 05:31 - 00000000 ____D () C:\Programme\xerox
2015-05-15 08:07 - 2006-08-24 20:56 - 00000000 ____D () C:\Programme\Synaptics
2015-05-15 08:07 - 2006-08-24 20:45 - 00000000 ___HD () C:\WINDOWS\$NtUninstallKB913580$
2015-05-15 08:07 - 2006-08-24 20:44 - 00000000 ___HD () C:\WINDOWS\$NtUninstallKB903235$
2015-05-15 08:07 - 2006-08-24 20:44 - 00000000 ___HD () C:\WINDOWS\$NtUninstallKB901190$
2015-05-15 08:07 - 2006-08-24 20:44 - 00000000 ___HD () C:\WINDOWS\$NtUninstallKB896422$
2015-05-15 08:07 - 2006-08-24 20:44 - 00000000 ___HD () C:\WINDOWS\$NtUninstallKB894391$
2015-05-15 08:07 - 2006-08-24 20:43 - 00000000 ___HD () C:\WINDOWS\$NtUninstallKB911564$
2015-05-15 08:07 - 2006-08-24 20:43 - 00000000 ___HD () C:\WINDOWS\$NtUninstallKB888113$
2015-05-15 08:07 - 2006-08-24 20:43 - 00000000 ___HD () C:\WINDOWS\$NtUninstallKB885250$
2015-05-15 08:07 - 2006-08-24 20:42 - 00000000 ___HD () C:\WINDOWS\$NtUninstallKB896243$
2015-05-15 08:07 - 2006-08-24 20:39 - 00000000 ___HD () C:\WINDOWS\$NtUninstallKB909095$
2015-05-15 08:06 - 2006-08-25 05:31 - 00000000 ____D () C:\Programme\Online-Dienste
2015-05-15 08:06 - 2006-08-24 20:55 - 00000000 ____D () C:\Programme\Sonic
2015-05-15 08:05 - 2006-08-25 05:31 - 00000000 ____D () C:\Programme\MSN Gaming Zone
2015-05-15 08:05 - 2006-08-25 05:31 - 00000000 ____D () C:\Programme\MSN
2015-05-15 08:05 - 2006-08-25 05:31 - 00000000 ____D () C:\Programme\microsoft frontpage
2015-05-15 08:05 - 2006-08-24 20:55 - 00000000 ____D () C:\Programme\Gemeinsame Dateien\TiVo Shared
2015-05-15 08:05 - 2006-08-24 20:53 - 00000000 ____D () C:\Programme\Hp
2015-05-15 08:05 - 2006-08-24 20:46 - 00000000 ____D () C:\Programme\Java
2015-05-15 08:04 - 2006-08-25 05:31 - 00000000 ____D () C:\Programme\Gemeinsame Dateien\SpeechEngines
2015-05-15 08:04 - 2006-08-25 05:31 - 00000000 ____D () C:\Programme\Gemeinsame Dateien\ODBC
2015-05-15 08:04 - 2006-08-25 05:31 - 00000000 ____D () C:\Programme\Gemeinsame Dateien\MSSoap
2015-05-15 08:04 - 2006-08-25 05:31 - 00000000 ____D () C:\Programme\Gemeinsame Dateien\Dienste
2015-05-15 08:04 - 2006-08-24 21:05 - 00000000 ____D () C:\Programme\Gemeinsame Dateien\LightScribe
2015-05-15 08:04 - 2006-08-24 21:05 - 00000000 ____D () C:\Programme\Fingerprint Sensor
2015-05-15 08:04 - 2006-08-24 20:55 - 00000000 ____D () C:\Programme\Gemeinsame Dateien\SureThing Shared
2015-05-15 08:04 - 2006-08-24 20:55 - 00000000 ____D () C:\Programme\Gemeinsame Dateien\Sonic Shared
2015-05-15 08:04 - 2006-08-24 20:46 - 00000000 ____D () C:\Programme\Gemeinsame Dateien\Java
2015-05-15 08:04 - 2006-08-24 20:41 - 00000000 ____D () C:\Programme\Analog Devices
2015-05-15 08:04 - 2006-08-24 20:39 - 00000000 ____D () C:\Programme\Gemeinsame Dateien\InstallShield
2015-05-15 08:03 - 2004-08-07 09:58 - 00000000 ____D () C:\I386
2015-05-15 08:01 - 2006-08-25 05:31 - 00000000 ___SD () C:\Dokumente und Einstellungen\Default User\Lokale Einstellungen\Verlauf
2015-05-15 08:01 - 2006-08-25 05:31 - 00000000 ___RD () C:\Dokumente und Einstellungen\Default User\Startmenü\Programme\Zubehör
2015-05-15 08:01 - 2006-08-25 05:31 - 00000000 ___RD () C:\Dokumente und Einstellungen\Default User\Startmenü\Programme\Autostart
2015-05-15 08:01 - 2006-08-25 05:31 - 00000000 ___RD () C:\Dokumente und Einstellungen\Default User\Startmenü
2015-05-15 08:01 - 2006-08-25 05:31 - 00000000 ___RD () C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Verwaltung
2015-05-15 08:01 - 2006-08-25 05:31 - 00000000 ___RD () C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Spiele
2015-05-15 08:01 - 2006-08-25 05:31 - 00000000 ___RD () C:\Dokumente und Einstellungen\All Users\Dokumente
2015-05-15 08:01 - 2006-08-25 05:31 - 00000000 ___RD () C:\Dokumente und Einstellungen\Administrator\Startmenü\Programme\Zubehör
2015-05-15 08:01 - 2006-08-25 05:31 - 00000000 ___RD () C:\Dokumente und Einstellungen\Administrator\Startmenü\Programme\Autostart
2015-05-15 08:01 - 2006-08-25 05:31 - 00000000 ___RD () C:\Dokumente und Einstellungen\Administrator\Startmenü
2015-05-15 08:01 - 2006-08-25 05:31 - 00000000 ____D () C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\SBSI
2015-05-15 08:01 - 2006-08-24 21:13 - 00000000 ____D () C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\HP Backup & Recovery
2015-05-15 08:01 - 2006-08-24 21:05 - 00000000 ____D () C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\LightScribe Direct Disc Labeling
2015-05-15 08:01 - 2006-08-24 20:56 - 00000000 ____D () C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\InstallShield
2015-05-15 08:01 - 2006-08-24 20:55 - 00000000 ____D () C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Sonic
2015-05-15 08:01 - 2006-08-24 20:53 - 00000000 ____D () C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\HP
2015-05-15 08:01 - 2006-08-24 20:53 - 00000000 ____D () C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\hpqLog
2015-05-15 08:01 - 2006-08-24 20:46 - 00000000 ____D () C:\Dokumente und Einstellungen\Administrator\Lokale Einstellungen\Anwendungsdaten\{3248F0A6-6813-11D6-A77B-00B0D0150060}
2015-05-15 08:01 - 2006-08-24 20:41 - 00000000 ____D () C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\SoundMAX
2015-05-15 08:01 - 2006-08-24 20:36 - 00000000 __SHD () C:\Dokumente und Einstellungen\NetworkService
2015-05-15 07:57 - 2007-07-15 21:36 - 00000000 ____D () C:\My Backup -- 15-07-07 1236
2015-05-15 00:49 - 2006-08-25 05:31 - 00000000 ___RD () C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Zubehör
2015-05-15 00:49 - 2006-08-25 05:31 - 00000000 ___RD () C:\Dokumente und Einstellungen\All Users\Startmenü
2015-05-15 00:49 - 2004-08-07 07:53 - 00001563 _____ () C:\Dokumente und Einstellungen\All Users\Startmenü\Programmzugriff und -standards.lnk
2015-05-15 00:48 - 2006-08-25 05:31 - 00000000 ____D () C:\WINDOWS\system32\usmt
2015-05-15 00:48 - 2006-08-25 05:31 - 00000000 ____D () C:\WINDOWS\PeerNet
2015-05-15 00:48 - 2006-08-25 05:31 - 00000000 ____D () C:\WINDOWS\ime
2015-05-15 00:43 - 2006-08-25 05:31 - 00000000 ____D () C:\WINDOWS\system32\Restore
2015-05-15 00:43 - 2006-08-25 05:31 - 00000000 ____D () C:\WINDOWS\system32\npp
2015-05-15 00:43 - 2006-08-25 05:31 - 00000000 ____D () C:\WINDOWS\msagent
2015-05-15 00:42 - 2006-08-25 05:31 - 00000000 ____D () C:\WINDOWS\system32\Com
2015-05-15 00:42 - 2006-08-25 05:31 - 00000000 ____D () C:\WINDOWS\srchasst
2015-05-15 00:42 - 2006-08-25 05:31 - 00000000 ____D () C:\Programme\Windows NT
2015-05-15 00:42 - 2006-08-25 05:31 - 00000000 ____D () C:\Programme\NetMeeting
2015-05-15 00:38 - 2002-08-29 09:00 - 00251712 ___SH () C:\NTLDR
2015-05-15 00:36 - 2006-08-24 20:42 - 00000000 ____D () C:\WINDOWS\system32\ReinstallBackups
2015-05-14 23:42 - 2006-08-24 20:39 - 00000000 ____D () C:\Programme\Hewlett-Packard
2015-05-14 23:41 - 2006-08-25 05:31 - 00000000 ___RD () C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Autostart
2015-05-14 23:36 - 1999-03-30 20:17 - 00000000 ____D () C:\System.sav
2015-05-14 23:33 - 2004-08-07 07:58 - 00000772 _____ () C:\Dokumente und Einstellungen\Administrator\Startmenü\Programme\Windows Media Player.lnk
2015-05-14 23:31 - 2006-08-24 20:36 - 00000000 __SHD () C:\Dokumente und Einstellungen\LocalService\Lokale Einstellungen\Verlauf
2015-05-14 23:29 - 2006-08-25 05:31 - 00000000 ____D () C:\WINDOWS\Registration
2015-05-14 23:27 - 2006-08-24 20:39 - 00000000 ____D () C:\Programme\HPQ

==================== Files in the root of some directories =======

2015-05-16 00:43 - 2006-08-24 21:11 - 0000000 _____ () C:\Dokumente und Einstellungen\Martina\Lokale Einstellungen\Anwendungsdaten\AtStart.txt
2015-05-16 00:43 - 2006-08-24 21:11 - 0000000 _____ () C:\Dokumente und Einstellungen\Martina\Lokale Einstellungen\Anwendungsdaten\DSwitch.txt
2015-05-16 00:43 - 2015-05-16 21:47 - 0000140 _____ () C:\Dokumente und Einstellungen\Martina\Lokale Einstellungen\Anwendungsdaten\fusioncache.dat
2015-05-16 00:43 - 2006-08-24 21:11 - 0000000 _____ () C:\Dokumente und Einstellungen\Martina\Lokale Einstellungen\Anwendungsdaten\QSwitch.txt

Some content of TEMP:
====================
C:\Dokumente und Einstellungen\Martina\Lokale Einstellungen\temp\avgnt.exe
C:\Dokumente und Einstellungen\Martina\Lokale Einstellungen\temp\Quarantine.exe
C:\Dokumente und Einstellungen\Martina\Lokale Einstellungen\temp\sqlite3.dll
C:\Dokumente und Einstellungen\Martina_2\Lokale Einstellungen\temp\avgnt.exe


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\explorer.exe
[2004-08-04 10:00] - [2008-04-14 07:52] - 1036800 ____A (Microsoft Corporation) 418045a93cd87a352098ab7dabe1b53e     

C:\WINDOWS\system32\winlogon.exe
[2004-08-04 10:00] - [2008-04-14 07:53] - 0513024 ____A (Microsoft Corporation) f09a527b422e25c478e38caa0e44417a     

C:\WINDOWS\system32\svchost.exe
[2004-08-04 10:00] - [2008-04-14 07:53] - 0014336 ____A (Microsoft Corporation) 4fbc75b74479c7a6f829e0ca19df3366     

C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll
[2004-08-04 10:00] - [2008-04-14 07:52] - 0580096 ____A (Microsoft Corporation) b0050cc5340e3a0760dd8b417ff7aebd     

C:\WINDOWS\system32\userinit.exe
[2004-08-04 10:00] - [2008-04-14 07:53] - 0026624 ____A (Microsoft Corporation) 788f95312e26389d596c0fa55834e106     

C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys
[2004-08-04 10:00] - [2008-04-14 07:22] - 0053760 ____A (Microsoft Corporation) a5a712f4e880874a477af790b5186e1d     


==================== End Of Log ============================
Pobleme habe ich insofern noch, als dass die ursprünglichen Meldungen von MBR-Check bzgl. des "Unknown MBR code" bzw. "Found non-standard or infected MBR." unverändert zu sein scheinen!?

Muss das so?

Danke und Gruß
trojanernick

Antwort
Seite 1 von 2 1 2

Themen zu Windows XP: Link in DHL-Mail angeklickt - Problem mit Antivirensoftware und MBR-Befund
administrator, anleitung, antivirus, autostart, avira, folge, free, infected, link, lizenz, malwarebytes, meldung, neu, neuinstallation, nicht mehr, plötzlich, problem, profi, programme, schädling, software, update, updaten, windows, windows xp


« Pop Ups und Weiterleitung zu Werbeseiten, schadsoftware installiert durch streaming software, Widerherstellung nicht möglich. | Rechner langsam, Tastatur und Maus reagieren verzögert »


Ähnliche Themen: Windows XP: Link in DHL-Mail angeklickt - Problem mit Antivirensoftware und MBR-Befund


  1. DHL Mail Link angeklickt
    Log-Analyse und Auswertung - 27.05.2015 (18)
  2. DHL-Paketankündigung Mail - versehentlich Link angeklickt
    Plagegeister aller Art und deren Bekämpfung - 10.05.2015 (9)
  3. DHL E-mail geöffnet und link angeklickt
    Log-Analyse und Auswertung - 08.05.2015 (14)
  4. Phishing Mail DHL Link angeklickt
    Log-Analyse und Auswertung - 26.03.2015 (13)
  5. Mail DHL Link angeklickt
    Log-Analyse und Auswertung - 26.03.2015 (9)
  6. Windows 7: Verdächtiger Link in E-Mail angeklickt - Spybot Warnung
    Plagegeister aller Art und deren Bekämpfung - 15.03.2015 (15)
  7. DHL Phishing Mail Link angeklickt
    Plagegeister aller Art und deren Bekämpfung - 15.03.2015 (7)
  8. DHL Mail bekommen und den Link angeklickt / geöffnet :(
    Log-Analyse und Auswertung - 05.03.2015 (13)
  9. Amazon Phishing Mail Link angeklickt
    Plagegeister aller Art und deren Bekämpfung - 24.06.2014 (11)
  10. Link in E-mail angeklickt
    Log-Analyse und Auswertung - 15.04.2014 (8)
  11. Link in Pishing Mail angeklickt
    Plagegeister aller Art und deren Bekämpfung - 16.03.2014 (7)
  12. Link in E-Mail angeklickt, infizierte Dateien gefunden
    Plagegeister aller Art und deren Bekämpfung - 11.03.2014 (9)
  13. Spam Mail Link angeklickt
    Log-Analyse und Auswertung - 05.03.2014 (10)
  14. Windows 7: Amazon Phishing-Mail Link angeklickt
    Log-Analyse und Auswertung - 16.02.2014 (11)
  15. Phishing Mail von WoW Link angeklickt!
    Plagegeister aller Art und deren Bekämpfung - 07.07.2013 (4)
  16. Link in GMX-Mail angeklickt - Folgen???
    Plagegeister aller Art und deren Bekämpfung - 08.03.2013 (15)
  17. In Phishing-Mail den Link angeklickt :( Panik
    Plagegeister aller Art und deren Bekämpfung - 19.02.2013 (34)
Anleitungen und Tipps

- Für alle Hilfesuchenden! Was beachten?

- Anleitung: MyStartSearch.com entfernen

- Anleitung: WebSearches löschen

- Hilfe: iStartSurf entfernen – so gehts!

- Anleitung: Omiga Plus richtig entfernen

- Browser Viren entfernen


Zum Thema Windows XP: Link in DHL-Mail angeklickt - Problem mit Antivirensoftware und MBR-Befund - Hallo, meine Frau hat letzte Woche -vermutlich im Halbschlaf- einen Link in einer Junk-Mail mit DHL-Nachnahme-Paketnakündigung angeklickt, deshalb befürchtete ich einen Virus/Trojaner auf dem HP-Laptop zu haben. Beim anschliessenden Systemscan - Windows XP: Link in DHL-Mail angeklickt - Problem mit Antivirensoftware und MBR-Befund...
Archiv
Du betrachtest: Windows XP: Link in DHL-Mail angeklickt - Problem mit Antivirensoftware und MBR-Befund auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130 131