|
Log-Analyse und Auswertung: Windows 7 Ordner plötzlich SchreibgeschütztWindows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML. |
25.03.2014, 20:27 | #16 |
| Windows 7 Ordner plötzlich SchreibgeschütztCode:
ATTFilter ESETSmartInstaller@High as downloader log: all ok # version=8 # OnlineScannerApp.exe=1.0.0.1 # OnlineScanner.ocx=1.0.0.6920 # api_version=3.0.2 # EOSSerial=e493330f89ed504f94330ec5d03a801a # engine=17585 # end=finished # remove_checked=false # archives_checked=true # unwanted_checked=false # unsafe_checked=false # antistealth_checked=true # utc_time=2014-03-25 08:46:37 # local_time=2014-03-25 09:46:37 (+0100, Mitteleuropäische Zeit) # country="Germany" # lang=1033 # osver=6.1.7601 NT Service Pack 1 # compatibility_mode=5893 16776574 100 94 333501 147367047 0 0 # scanned=728264 # found=1 # cleaned=0 # scan_time=49087 sh=9C1852F1469FE2A405492F586C0878F45C3C6CCE ft=1 fh=c71c001110b3f691 vn="a variant of Win32/Injected.F trojan" ac=I fn="C:\Users\user\Downloads\COMPUTER_BILD-Download-Manager_fuer_adwcleaner.exe" Code:
ATTFilter Results of screen317's Security Check version 0.99.80 Windows 7 Service Pack 1 x64 (UAC is disabled!) Internet Explorer 11 ``````````````Antivirus/Firewall Check:`````````````` Avira Desktop Antivirus up to date! (On Access scanning disabled!) `````````Anti-malware/Other Utilities Check:````````` DH Driver Cleaner Professional Edition Java 7 Update 45 Java version out of Date! Adobe Flash Player 11.9.900.170 Flash Player out of Date! Adobe Reader XI Google Chrome 33.0.1750.149 Google Chrome 33.0.1750.154 ````````Process Check: objlist.exe by Laurent```````` Avira Antivir avgnt.exe Avira Antivir avguard.exe `````````````````System Health check````````````````` Total Fragmentation on Drive C: ````````````````````End of Log`````````````````````` FRST Logfile: FRST Logfile: Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 13-03-2014 Ran by User (administrator) on User-PC on 25-03-2014 20:28:51 Running from C:\Users\User\Desktop Windows 7 Professional Service Pack 1 (X64) OS Language: German Standard Internet Explorer Version 11 Boot Mode: Normal ==================== Processes (Whitelisted) ================= (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe (Creative Technology Ltd) C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe (Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe (Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe (Nero AG) C:\Program Files (x86)\HTC\HTC Sync Manager\HSMServiceEntry.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe () C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe () C:\Windows\SysWOW64\PnkBstrA.exe (Protexis Inc.) C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe (TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe (Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE () C:\Program Files (x86)\HTC\HTC Sync Manager\HTC Sync\adb.exe (Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe (Logitech Inc.) C:\Program Files\Logitech Gaming Software\LCore.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe (Creative Technology Ltd) C:\Program Files (x86)\Creative\Shared Files\CTSched.exe (Creative Technology Ltd) C:\Windows\SysWOW64\Ctxfihlp.exe () C:\Program Files (x86)\Razer\Lachesis\razerhid.exe (Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe (ROCCAT GmbH) C:\Program Files (x86)\ROCCAT\Kone[+] Mouse\Kone[+]Monitor.exe (razercfg MFC Application) C:\Program Files (x86)\Razer\Lachesis\OSD.exe (Geek Software GmbH) C:\Program Files (x86)\PDF24\pdf24.exe (Wondershare) C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe (Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe () C:\Program Files (x86)\Razer\Lachesis\razertra.exe (Razer Inc.) C:\Program Files (x86)\Razer\Lachesis\razerofa.exe (Creative Technology Ltd) C:\Windows\SysWOW64\CTXFISPI.EXE (Logitech Inc.) C:\Program Files\Logitech Gaming Software\Applets\LCDRSS.exe (Logitech Inc.) C:\Program Files\Logitech Gaming Software\Applets\LCDClock.exe (Logitech Inc.) C:\Program Files\Logitech Gaming Software\Applets\LCDMedia.exe (Logitech Inc.) C:\Program Files\Logitech Gaming Software\Applets\LCDPop3.exe (Logitech Inc.) C:\Program Files\Logitech Gaming Software\Applets\LCDCountdown.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe (Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe (Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avmailc7.exe (Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avwebg7.exe (MAGIX AG) C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe (Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe (Avira Operations GmbH & Co. KG) C:\program files (x86)\avira\antivir desktop\avcenter.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Microsoft Corporation) C:\Windows\ehome\ehshell.exe (Microsoft Corporation) C:\Windows\ehome\ehRecvr.exe (Microsoft Corporation) C:\Windows\ehome\mcGlidHost.exe (Microsoft Corporation) C:\Windows\ehome\ehsched.exe (Microsoft Corporation) C:\Windows\eHome\EhTray.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ==================== Registry (Whitelisted) ================== HKLM\...\Run: [Launch LCore] - C:\Program Files\Logitech Gaming Software\LCore.exe [7406392 2012-11-29] (Logitech Inc.) HKLM\...\Run: [Nvtmru] - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe [1028384 2013-11-08] (NVIDIA Corporation) HKLM\...\Run: [ShadowPlay] - C:\Windows\system32\nvspcap64.dll [1100248 2013-12-10] (NVIDIA Corporation) HKLM\...\Run: [NvBackend] - C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2279712 2013-12-10] (NVIDIA Corporation) HKLM-x32\...\Run: [CTxfiHlp] - CTXFIHLP.EXE HKLM-x32\...\Run: [Lachesis] - C:\Program Files (x86)\Razer\Lachesis\razerhid.exe [248320 2009-11-10] () HKLM-x32\...\Run: [BCSSync] - C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [91520 2010-03-13] (Microsoft Corporation) HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation) HKLM-x32\...\Run: [RoccatKone+] - C:\Program Files (x86)\ROCCAT\Kone[+] Mouse\Kone[+]Monitor.EXE [552960 2011-07-12] (ROCCAT GmbH) HKLM-x32\...\Run: [PDFPrint] - C:\Program Files (x86)\PDF24\pdf24.exe [186408 2013-12-12] (Geek Software GmbH) HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated) HKLM-x32\...\Run: [Wondershare Helper Compact.exe] - C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe [1743648 2013-06-13] (Wondershare) HKLM-x32\...\Run: [CanonQuickMenu] - C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE [1282632 2013-07-23] (CANON INC.) HKLM-x32\...\Run: [avgnt] - C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [689744 2014-02-25] (Avira Operations GmbH & Co. KG) HKU\S-1-5-21-884858723-1613936228-1444445012-1001\...\Run: [CreativeTaskScheduler] - C:\Program Files (x86)\Creative\Shared Files\CTSched.exe [53341 2006-11-17] (Creative Technology Ltd) HKU\S-1-5-21-884858723-1613936228-1444445012-1001\...\Run: [Kies3PDLR.exe] - C:\Program Files (x86)\Samsung\Kies3\FirmwareUpdate\Kies3PDLR.exe [844360 2014-02-26] (Samsung) ==================== Internet (Whitelisted) ==================== HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe SearchScopes: HKLM - DefaultScope value is missing. SearchScopes: HKCU - URL hxxp://www.trovigo.com/Results.aspx?gd=&ctid=CT3324790&octid=EB_ORIGINAL_CTID&SearchSource=58&CUI=&UM=5&UP=SPED55CC5A-1239-4743-B656-B2A0E0675A2F&q={searchTerms}&SSPV= SearchScopes: HKCU - SuggestionsURL_JSON hxxp://suggest.search.conduit.com/CSuggestJson.ashx?prefix={searchTerms} BHO: Canon Easy-WebPrint EX BHO - {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\addon64\ewpexbho.dll (CANON INC.) BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation) BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.) BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation) BHO-x32: Canon Easy-WebPrint EX BHO - {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll (CANON INC.) BHO-x32: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation) BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation) BHO-x32: Microsoft-Konto-Anmelde-Hilfsprogramm - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.) BHO-x32: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation) BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation) Toolbar: HKLM - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\addon64\ewpexhlp.dll (CANON INC.) Toolbar: HKLM-x32 - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll (CANON INC.) Toolbar: HKCU - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\addon64\ewpexhlp.dll (CANON INC.) DPF: HKLM-x32 {D4B68B83-8710-488B-A692-D74B50BA558E} hxxp://ccfiles.creative.com/Web/softwareupdate/ocx/15113/CTPIDPDE.cab DPF: HKLM-x32 {E705A591-DA3C-4228-B0D5-A356DBA42FBF} hxxp://ccfiles.creative.com/Web/softwareupdate/su2/ocx/20015/CTSUEng.cab DPF: HKLM-x32 {F6ACF75C-C32C-447B-9BEF-46B766368D29} hxxp://ccfiles.creative.com/Web/softwareupdate/ocx/130321/CTPID.cab Tcpip\Parameters: [DhcpNameServer] 192.168.178.1 Chrome: ======= CHR Extension: (Google Docs) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-03-11] CHR Extension: (Google Drive) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-03-11] CHR Extension: (YouTube) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-03-11] CHR Extension: (Adblock Plus) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2014-03-21] CHR Extension: (Google-Suche) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-03-11] CHR Extension: (Google Wallet) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-03-11] CHR Extension: (Google Mail) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-03-11] ==================== Services (Whitelisted) ================= R2 AntiVirMailService; C:\Program Files (x86)\Avira\AntiVir Desktop\avmailc7.exe [910416 2014-02-25] (Avira Operations GmbH & Co. KG) R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [440400 2014-02-25] (Avira Operations GmbH & Co. KG) R2 AntiVirService; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [440400 2014-02-25] (Avira Operations GmbH & Co. KG) R2 AntiVirWebService; C:\Program Files (x86)\Avira\AntiVir Desktop\avwebg7.exe [1017424 2014-02-25] (Avira Operations GmbH & Co. KG) S3 becldr3Service; C:\Program Files (x86)\BCL Technologies\easyConverter SDK 3\Common\becldr.exe [176128 2011-04-19] () S4 DBService; C:\Program Files (x86)\Common Files\DATA BECKER Shared\DBService.exe [187456 2013-02-17] (DATA BECKER GmbH & Co KG) R2 HTCMonitorService; C:\Program Files (x86)\HTC\HTC Sync Manager\HSMServiceEntry.exe [87368 2013-01-29] (Nero AG) R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1494304 2013-12-10] (NVIDIA Corporation) R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [15129376 2013-12-10] (NVIDIA Corporation) R2 PassThru Service; C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe [167424 2012-12-07] () R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76888 2014-02-04] () ==================== Drivers (Whitelisted) ==================== R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [108440 2014-02-25] (Avira Operations GmbH & Co. KG) R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [131576 2014-02-25] (Avira Operations GmbH & Co. KG) R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [28600 2014-02-25] (Avira Operations GmbH & Co. KG) R2 avnetflt; C:\Windows\System32\DRIVERS\avnetflt.sys [84720 2014-02-25] (Avira Operations GmbH & Co. KG) S3 FsUsbExDisk; C:\Windows\SysWOW64\FsUsbExDisk.SYS [37344 2013-02-05] () R3 hcw66xxx; C:\Windows\System32\Drivers\hcw66x64.sys [758016 2011-02-08] (Hauppauge Computer Works, Inc.) R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [39200 2013-12-05] (NVIDIA Corporation) S3 uisp; C:\Windows\System32\Drivers\usbicp.sys [20480 2010-08-24] (Motorola) R3 VaneFltr; C:\Windows\System32\drivers\Lachesis.sys [29952 2009-10-16] (Razer (Asia-Pacific) Pte Ltd) S3 XFDriver64; C:\Program Files (x86)\Xfire2\XFDriver64.sys [17160 2013-03-14] (XFire) S3 catchme; \??\C:\ComboFix\catchme.sys [X] S3 dgderdrv; System32\drivers\dgderdrv.sys [X] S3 EagleX64; \??\C:\Windows\system32\drivers\EagleX64.sys [X] S3 GPU-Z; \??\C:\Users\User\AppData\Local\Temp\GPU-Z.sys [X] ==================== NetSvcs (Whitelisted) =================== ==================== One Month Created Files and Folders ======== 2014-03-25 16:38 - 2014-03-25 16:38 - 00006576 _____ () C:\Users\User\Downloads\relink.us__PB_-_ExploitedCollegeGirls.13.12.12.Myrtle.And.Brie.XXX.720p.MP4-KTR_d4427f0623b1fd04ddd46543cba144.dlc 2014-03-25 16:28 - 2014-03-25 16:28 - 00002072 _____ () C:\Users\User\Downloads\pb_216-uh2py2n050gc.dlc 2014-03-25 16:15 - 2014-03-25 16:15 - 00002066 _____ () C:\Users\Public\Desktop\Avira Control Center.lnk 2014-03-25 16:15 - 2014-03-25 16:15 - 00000000 ____D () C:\Users\User\AppData\Roaming\Avira 2014-03-25 16:15 - 2014-03-25 16:15 - 00000000 ____D () C:\ProgramData\Avira 2014-03-25 16:15 - 2014-03-25 16:15 - 00000000 ____D () C:\Program Files (x86)\Avira 2014-03-25 16:15 - 2014-02-25 11:47 - 00131576 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avipbb.sys 2014-03-25 16:15 - 2014-02-25 11:47 - 00108440 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avgntflt.sys 2014-03-25 16:15 - 2014-02-25 11:47 - 00084720 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avnetflt.sys 2014-03-25 16:15 - 2014-02-25 11:47 - 00028600 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avkmgr.sys 2014-03-25 16:11 - 2014-03-25 16:11 - 148418360 _____ () C:\Users\User\Downloads\avira_internet_security_suite_de.exe 2014-03-24 23:05 - 2014-03-24 23:05 - 00987442 _____ () C:\Users\User\Desktop\SecurityCheck.exe 2014-03-24 20:05 - 2014-03-24 20:05 - 02347384 _____ (ESET) C:\Users\User\Downloads\esetsmartinstaller_enu.exe 2014-03-23 18:52 - 2014-03-23 18:52 - 00000000 ____D () C:\ProgramData\APN 2014-03-23 18:43 - 2014-03-23 18:43 - 00002058 _____ () C:\Users\User\Desktop\JRT.txt 2014-03-23 18:34 - 2014-03-23 18:34 - 00000000 ____D () C:\Windows\ERUNT 2014-03-23 18:33 - 2014-03-23 18:33 - 01037734 _____ (Thisisu) C:\Users\User\Desktop\JRT.exe 2014-03-23 18:18 - 2014-03-23 18:18 - 07747104 _____ (Malwarebytes Corporation ) C:\Users\User\Downloads\mbam-rules.exe 2014-03-23 16:22 - 2014-03-23 16:22 - 00000000 ____D () C:\Users\User\AppData\Roaming\Malwarebytes 2014-03-23 16:21 - 2014-03-23 16:21 - 10285040 _____ (Malwarebytes Corporation ) C:\Users\User\Downloads\mbam-setup-1.75.0.1300.exe 2014-03-23 16:21 - 2014-03-23 16:21 - 00000000 ____D () C:\ProgramData\Malwarebytes 2014-03-23 11:50 - 2014-03-23 11:50 - 00046358 _____ () C:\Users\User\Downloads\ref=dvm_de_mer_site_adswmep_2_14 2014-03-23 11:50 - 2014-03-23 11:50 - 00046316 _____ () C:\Users\User\Downloads\ref=dvm_de_mer_site_adswmep_2_14 (1) 2014-03-22 13:26 - 2014-03-22 13:26 - 00027481 _____ () C:\ComboFix.txt 2014-03-22 13:18 - 2014-03-22 13:26 - 00000000 ____D () C:\Qoobox 2014-03-22 13:18 - 2014-03-22 13:25 - 00000000 ____D () C:\Windows\erdnt 2014-03-22 13:18 - 2011-06-26 07:45 - 00256000 _____ () C:\Windows\PEV.exe 2014-03-22 13:18 - 2010-11-07 18:20 - 00208896 _____ () C:\Windows\MBR.exe 2014-03-22 13:18 - 2009-04-20 05:56 - 00060416 _____ (NirSoft) C:\Windows\NIRCMD.exe 2014-03-22 13:18 - 2000-08-31 01:00 - 00518144 _____ (SteelWerX) C:\Windows\SWREG.exe 2014-03-22 13:18 - 2000-08-31 01:00 - 00406528 _____ (SteelWerX) C:\Windows\SWSC.exe 2014-03-22 13:18 - 2000-08-31 01:00 - 00098816 _____ () C:\Windows\sed.exe 2014-03-22 13:18 - 2000-08-31 01:00 - 00080412 _____ () C:\Windows\grep.exe 2014-03-22 13:18 - 2000-08-31 01:00 - 00068096 _____ () C:\Windows\zip.exe 2014-03-22 13:16 - 2014-03-22 13:16 - 05190052 ____R (Swearware) C:\Users\User\Desktop\ComboFix.exe 2014-03-21 15:07 - 2014-03-21 15:07 - 00001880 _____ () C:\Users\User\Downloads\relink.us__pb_148_38f5d8c26f6d911f4e47d51cbb5fb5 (1).dlc 2014-03-21 15:06 - 2014-03-21 15:06 - 00001880 _____ () C:\Users\User\Downloads\relink.us__pb_148_38f5d8c26f6d911f4e47d51cbb5fb5.dlc 2014-03-21 14:53 - 2014-03-23 21:26 - 00000000 ____D () C:\AdwCleaner 2014-03-21 14:52 - 2014-03-21 14:52 - 01950720 _____ () C:\Users\User\Desktop\AdwCleaner.exe 2014-03-21 14:07 - 2014-03-21 14:07 - 00709352 _____ ( ) C:\Users\User\Downloads\COMPUTER_BILD-Download-Manager_fuer_adwcleaner.exe 2014-03-20 23:40 - 2014-03-20 23:40 - 00499139 _____ () C:\Users\User\Downloads\home.php 2014-03-20 23:39 - 2014-03-20 23:39 - 00459633 _____ () C:\Users\User\Downloads\User.htm 2014-03-20 21:31 - 2014-03-20 21:32 - 00001106 _____ () C:\Users\Public\Desktop\Picasa 3.lnk 2014-03-20 21:29 - 2014-03-20 21:29 - 00613200 _____ (Chip Digital GmbH) C:\Users\User\Downloads\Picasa - CHIP-Downloader.exe 2014-03-20 21:25 - 2014-03-20 21:26 - 09993937 _____ (fCoder Group, Inc. ) C:\Users\User\Downloads\converter_de.exe 2014-03-20 21:20 - 2014-03-20 21:20 - 00001969 _____ () C:\Users\User\Desktop\Sync Folder.lnk 2014-03-20 21:20 - 2014-03-20 21:20 - 00000988 _____ () C:\Users\Public\Desktop\CR2 Converter.lnk 2014-03-20 21:20 - 2014-03-20 21:20 - 00000000 ____D () C:\Program Files (x86)\CR2 Converter 2014-03-20 21:19 - 2014-03-20 21:19 - 00949280 _____ (cr2converter.com ) C:\Users\User\Downloads\cr2converter_setup (1).exe 2014-03-20 21:19 - 2014-03-20 21:19 - 00930952 _____ (CNET Download.com) C:\Users\User\Downloads\cbsidlm-cbsi183-CR2_Converter-ORG-75712393.exe 2014-03-18 21:52 - 2014-03-18 21:52 - 00007895 _____ () C:\Users\User\Documents\ööö.eti 2014-03-18 21:51 - 2014-03-18 21:51 - 00001886 _____ () C:\Users\Public\Desktop\Canon Easy-PhotoPrint EX.lnk 2014-03-18 21:51 - 2014-03-18 21:51 - 00000000 ___HD () C:\ProgramData\CanonIJEPPEX2 2014-03-18 21:51 - 2014-03-18 21:51 - 00000000 ___HD () C:\ProgramData\CanonEPP 2014-03-18 21:50 - 2014-03-18 21:50 - 00000000 ____D () C:\Program Files\Canon 2014-03-18 21:49 - 2014-03-18 21:49 - 60362328 _____ () C:\Users\User\Downloads\eppx-win-4_1_6-de.exe 2014-03-18 21:49 - 2014-03-18 21:49 - 15900248 _____ () C:\Users\User\Downloads\ewpx-win-1_4_1-ea23.exe 2014-03-18 21:49 - 2014-03-18 21:49 - 09649736 _____ () C:\Users\User\Downloads\qm__-win-2_3_0-ea31_2.exe 2014-03-18 21:48 - 2014-03-18 21:48 - 17448088 _____ () C:\Users\User\Downloads\pd68-win-ip4900-2_56-ea24.exe 2014-03-16 02:38 - 2014-03-16 02:38 - 00185944 _____ (Лаборатория Касперского) C:\Users\User\Downloads\kss12.0.1.117abRU_EN_DE_FR_ES_IT_JA_PT_ZH_5623.exe 2014-03-16 02:32 - 2014-03-16 02:32 - 194045080 _____ (Kaspersky Lab) C:\Users\User\Downloads\pure13.0.2.558abcdDE_5372 (1).exe 2014-03-16 02:31 - 2014-03-16 02:32 - 194045080 _____ (Kaspersky Lab) C:\Users\User\Downloads\pure13.0.2.558abcdDE_5372.exe 2014-03-15 10:49 - 2014-03-15 10:49 - 00024757 _____ () C:\Users\User\Desktop\logflie.zip 2014-03-15 10:38 - 2014-03-15 10:38 - 00004646 _____ () C:\Users\User\Desktop\gmer ohne namen.txt 2014-03-15 10:37 - 2014-03-15 10:37 - 00048832 _____ () C:\Users\User\Desktop\Additionohne namen.txt 2014-03-15 10:36 - 2014-03-15 10:36 - 00071630 _____ () C:\Users\User\Desktop\FRST ohne name.txt 2014-03-15 10:31 - 2014-03-15 10:31 - 00004647 _____ () C:\Users\User\Desktop\gmer.txt 2014-03-15 10:25 - 2014-03-15 10:25 - 00380416 _____ () C:\Users\User\Desktop\Gmer-19357.exe 2014-03-15 10:17 - 2014-03-15 10:17 - 00048835 _____ () C:\Users\User\Desktop\Addition.txt 2014-03-15 10:16 - 2014-03-25 20:28 - 00014655 _____ () C:\Users\User\Desktop\FRST.txt 2014-03-15 10:16 - 2014-03-25 20:28 - 00000000 ____D () C:\FRST 2014-03-15 10:15 - 2014-03-15 10:15 - 02157056 _____ (Farbar) C:\Users\User\Desktop\FRST64.exe 2014-03-15 10:13 - 2014-03-15 10:14 - 00000472 _____ () C:\Users\User\Desktop\defogger_disable.log 2014-03-15 10:13 - 2014-03-15 10:13 - 00000000 _____ () C:\Users\User\defogger_reenable 2014-03-15 10:12 - 2014-03-15 10:12 - 00050477 _____ () C:\Users\User\Desktop\Defogger.exe 2014-03-13 12:22 - 2014-02-25 16:48 - 00144664 _____ (MAPILab Ltd. & Add-in Express Ltd.) C:\Windows\SysWOW64\secman.dll 2014-03-12 18:10 - 2014-03-01 07:05 - 23133696 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll 2014-03-12 18:10 - 2014-03-01 06:17 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb 2014-03-12 18:10 - 2014-03-01 06:16 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll 2014-03-12 18:10 - 2014-03-01 05:58 - 02765824 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll 2014-03-12 18:10 - 2014-03-01 05:52 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll 2014-03-12 18:10 - 2014-03-01 05:51 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll 2014-03-12 18:10 - 2014-03-01 05:42 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll 2014-03-12 18:10 - 2014-03-01 05:40 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll 2014-03-12 18:10 - 2014-03-01 05:37 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll 2014-03-12 18:10 - 2014-03-01 05:33 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe 2014-03-12 18:10 - 2014-03-01 05:33 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe 2014-03-12 18:10 - 2014-03-01 05:32 - 00708608 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll 2014-03-12 18:10 - 2014-03-01 05:30 - 17074688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll 2014-03-12 18:10 - 2014-03-01 05:23 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe 2014-03-12 18:10 - 2014-03-01 05:17 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe 2014-03-12 18:10 - 2014-03-01 05:11 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb 2014-03-12 18:10 - 2014-03-01 05:02 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll 2014-03-12 18:10 - 2014-03-01 04:54 - 05768704 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll 2014-03-12 18:10 - 2014-03-01 04:52 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll 2014-03-12 18:10 - 2014-03-01 04:51 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll 2014-03-12 18:10 - 2014-03-01 04:47 - 02168320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll 2014-03-12 18:10 - 2014-03-01 04:43 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll 2014-03-12 18:10 - 2014-03-01 04:43 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll 2014-03-12 18:10 - 2014-03-01 04:42 - 00627200 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll 2014-03-12 18:10 - 2014-03-01 04:40 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll 2014-03-12 18:10 - 2014-03-01 04:38 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe 2014-03-12 18:10 - 2014-03-01 04:37 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll 2014-03-12 18:10 - 2014-03-01 04:35 - 02041856 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl 2014-03-12 18:10 - 2014-03-01 04:18 - 13051904 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll 2014-03-12 18:10 - 2014-03-01 04:16 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll 2014-03-12 18:10 - 2014-03-01 04:14 - 04244480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll 2014-03-12 18:10 - 2014-03-01 04:10 - 02334208 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll 2014-03-12 18:10 - 2014-03-01 04:03 - 00524288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll 2014-03-12 18:10 - 2014-03-01 04:00 - 01964032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl 2014-03-12 18:10 - 2014-03-01 03:57 - 11266048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll 2014-03-12 18:10 - 2014-03-01 03:38 - 01393664 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll 2014-03-12 18:10 - 2014-03-01 03:32 - 01820160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll 2014-03-12 18:10 - 2014-03-01 03:27 - 01156096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll 2014-03-12 18:10 - 2014-03-01 03:25 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll 2014-03-12 18:10 - 2014-03-01 03:25 - 00703488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll 2014-03-12 18:10 - 2014-02-07 02:23 - 03156480 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys 2014-03-12 18:10 - 2014-02-04 03:32 - 01424384 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll 2014-03-12 18:10 - 2014-02-04 03:32 - 00624128 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll 2014-03-12 18:10 - 2014-02-04 03:04 - 01230336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll 2014-03-12 18:10 - 2014-02-04 03:04 - 00509440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qedit.dll 2014-03-12 18:10 - 2014-01-29 03:32 - 00484864 _____ (Microsoft Corporation) C:\Windows\system32\wer.dll 2014-03-12 18:10 - 2014-01-29 03:06 - 00381440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wer.dll 2014-03-12 18:10 - 2014-01-28 03:32 - 00228864 _____ (Microsoft Corporation) C:\Windows\system32\wwansvc.dll 2014-03-12 14:48 - 2014-03-12 14:48 - 00000000 ____D () C:\Users\User\AppData\Local\Blizzard 2014-03-11 21:44 - 2014-03-11 21:44 - 00005656 _____ () C:\Users\User\Downloads\relink.us__PB_-_GirlsDoPorn.E248.19.Years.Old.XXX.720p.WMV-KTR_3d33662e297d81609728b08348b7c3.dlc 2014-03-11 21:07 - 2014-03-11 21:07 - 04550656 _____ (Google Inc.) C:\Windows\SysWOW64\GPhotos.scr 2014-03-11 20:55 - 2014-03-20 21:32 - 00000000 ____D () C:\Users\User\AppData\Local\Google 2014-03-11 20:55 - 2014-03-20 21:31 - 00000000 ____D () C:\Program Files (x86)\Google 2014-03-11 20:55 - 2014-03-15 10:03 - 00002175 _____ () C:\Users\Public\Desktop\Google Chrome.lnk 2014-03-11 20:10 - 2014-03-04 12:32 - 00599840 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe 2014-03-11 20:07 - 2014-03-04 15:35 - 25255256 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll 2014-03-11 20:07 - 2014-03-04 15:35 - 23716640 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll 2014-03-11 20:07 - 2014-03-04 15:35 - 18302384 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll 2014-03-11 20:07 - 2014-03-04 15:35 - 17755424 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll 2014-03-11 20:07 - 2014-03-04 15:35 - 17561544 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll 2014-03-11 20:07 - 2014-03-04 15:35 - 15783992 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll 2014-03-11 20:07 - 2014-03-04 15:35 - 12708128 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys 2014-03-11 20:07 - 2014-03-04 15:35 - 11636176 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll 2014-03-11 20:07 - 2014-03-04 15:35 - 11589272 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll 2014-03-11 20:07 - 2014-03-04 15:35 - 09728064 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll 2014-03-11 20:07 - 2014-03-04 15:35 - 09690424 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll 2014-03-11 20:07 - 2014-03-04 15:35 - 03143456 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll 2014-03-11 20:07 - 2014-03-04 15:35 - 02958792 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll 2014-03-11 20:07 - 2014-03-04 15:35 - 02783008 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvenc.dll 2014-03-11 20:07 - 2014-03-04 15:35 - 02411976 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvenc.dll 2014-03-11 20:07 - 2014-03-04 15:35 - 01885472 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6433523.dll 2014-03-11 20:07 - 2014-03-04 15:35 - 01516488 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6433523.dll 2014-03-11 20:07 - 2014-03-04 15:35 - 00892704 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll 2014-03-11 20:07 - 2014-03-04 15:35 - 00877856 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll 2014-03-11 20:07 - 2014-03-04 15:35 - 00863064 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll 2014-03-11 20:07 - 2014-03-04 15:35 - 00846168 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll 2014-03-11 20:07 - 2014-03-04 15:35 - 00832936 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll 2014-03-11 20:07 - 2014-03-04 15:35 - 00353504 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll 2014-03-11 20:07 - 2014-03-04 15:35 - 00305600 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll 2014-03-11 20:07 - 2014-03-04 15:35 - 00174296 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll 2014-03-11 20:07 - 2014-03-04 15:35 - 00148016 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll 2014-03-11 00:08 - 2014-03-11 00:08 - 00001732 _____ () C:\Users\User\Downloads\relink.us__06-03-2014_006_279760f1ae68ab30c34fa3d2282e68 (1).dlc 2014-03-11 00:07 - 2014-03-11 00:07 - 00001732 _____ () C:\Users\User\Downloads\relink.us__06-03-2014_006_279760f1ae68ab30c34fa3d2282e68.dlc 2014-03-10 19:24 - 2014-03-10 19:24 - 00000792 _____ () C:\Users\Public\Desktop\Titanfall.lnk 2014-03-10 16:45 - 2014-02-08 19:34 - 01885472 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6433489.dll 2014-03-10 16:45 - 2014-02-08 19:34 - 01515296 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6433489.dll 2014-03-09 23:47 - 2014-03-09 23:47 - 00283648 _____ () C:\Windows\{125528D1-A7C7-11E3-B973-001D92F175B5} 2014-03-08 17:03 - 2014-03-08 17:03 - 16892157 _____ () C:\Users\User\Downloads\kisandroid_11.1.3.166_de (1).apk 2014-03-08 17:02 - 2014-03-08 17:03 - 16892157 _____ () C:\Users\User\Downloads\kisandroid_11.1.3.166_de.apk 2014-02-28 14:15 - 2014-03-25 19:13 - 00017568 _____ () C:\Windows\setupact.log 2014-02-28 14:15 - 2014-02-28 14:15 - 00000000 _____ () C:\Windows\setuperr.log 2014-02-28 11:11 - 2014-02-28 11:11 - 00007920 _____ () C:\Users\User\Downloads\dd41-5qfjeum12so.dlc 2014-02-28 11:01 - 2014-02-28 11:01 - 00006852 _____ () C:\Users\User\Downloads\relink.us__PB_-_DareDorm.14.02.07.Party.Time.XXX.HR.FLV-KTR_f594221e6db7a4d5870ddeafb2e697 (1).dlc 2014-02-28 11:00 - 2014-02-28 11:00 - 00006852 _____ () C:\Users\User\Downloads\relink.us__PB_-_DareDorm.14.02.07.Party.Time.XXX.HR.FLV-KTR_f594221e6db7a4d5870ddeafb2e697.dlc 2014-02-27 15:03 - 2014-02-27 15:03 - 00000000 ____D () C:\Users\User\Downloads\AVS Image Converter 3.0.2.270 + Patch 2014-02-27 14:31 - 2014-02-27 14:31 - 00008669 _____ () C:\Users\User\Downloads\QuickJPGfromCR2.zip 2014-02-27 14:16 - 2014-02-27 14:34 - 00000000 ____D () C:\Users\User\AppData\Roaming\RCP 6 2014-02-27 14:16 - 2014-02-27 14:28 - 00000000 ____D () C:\ProgramData\ReaConverter 2014-02-27 14:16 - 2014-02-27 14:16 - 29543885 _____ (ReaSoft ) C:\Users\User\Downloads\ReaConverter (1).exe 2014-02-27 14:15 - 2014-02-27 14:16 - 29543885 _____ (ReaSoft ) C:\Users\User\Downloads\ReaConverter.exe 2014-02-27 14:11 - 2014-02-27 14:12 - 49861264 _____ () C:\Users\User\Downloads\setup-contenta-converter-en-premium.exe 2014-02-27 14:09 - 2014-02-27 14:09 - 24638816 _____ (CANON INC.) C:\Users\User\Downloads\k8523dex.exe 2014-02-27 14:04 - 2014-02-27 14:05 - 15255792 _____ (Graphic-Region Development ) C:\Users\User\Downloads\batchconverter_setup.exe 2014-02-27 14:02 - 2014-02-27 14:02 - 02328552 _____ (Graphic-Region Development ) C:\Users\User\Downloads\ablerawer_setup.exe 2014-02-27 14:00 - 2014-02-27 14:00 - 00832856 _____ (Canon Inc ) C:\Users\User\Downloads\k6403enx.exe 2014-02-27 13:42 - 2014-02-27 13:42 - 00949280 _____ (cr2converter.com ) C:\Users\User\Downloads\cr2converter_setup.exe 2014-02-27 13:34 - 2014-02-27 13:34 - 00000769 _____ () C:\Users\User\Desktop\Nisan bilder bearbeitung - Verknüpfung.lnk 2014-02-25 14:31 - 2014-02-25 14:31 - 00000000 ____D () C:\Windows\de 2014-02-25 14:30 - 2014-02-25 14:30 - 00002156 _____ () C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft OneDrive.lnk 2014-02-24 21:56 - 2014-02-24 21:58 - 00000000 ____D () C:\Users\User\Documents\Wondershare Video Converter Pro 2014-02-24 21:56 - 2014-02-24 21:56 - 00000000 ____D () C:\Users\User\AppData\Roaming\Wondershare Video Converter Pro 2014-02-24 21:56 - 2014-02-24 21:56 - 00000000 ____D () C:\Users\User\AppData\Roaming\{950EB46C-6AC7-4ACC-AB36-9A6A77C08B6A} 2014-02-24 21:55 - 2014-02-24 21:58 - 00000000 ____D () C:\ProgramData\Wondershare Video Converter Pro 2014-02-24 21:55 - 2014-02-24 21:55 - 00001405 _____ () C:\Users\Public\Desktop\Wondershare Video Converter Pro.lnk 2014-02-24 21:55 - 2014-02-24 21:55 - 00000000 ____D () C:\Users\User\AppData\Local\Wondershare 2014-02-24 21:55 - 2014-02-24 21:55 - 00000000 ____D () C:\Program Files (x86)\Wondershare 2014-02-24 21:53 - 2014-02-24 21:54 - 38210696 _____ (Wondershare Software ) C:\Users\User\Downloads\vc2013_full891.exe 2014-02-24 14:12 - 2014-02-24 14:12 - 00517128 _____ () C:\Users\User\Downloads\Download.htm 2014-02-23 12:43 - 2014-02-23 12:43 - 00279552 _____ () C:\Windows\{3376F3B9-9C7F-11E3-9FA0-001D92F175B5} 2014-02-23 00:18 - 2014-02-23 00:18 - 00260412 _____ () C:\Windows\msxml4-KB2758694-enu.LOG ==================== One Month Modified Files and Folders ======= 2014-03-25 20:29 - 2014-03-15 10:16 - 00014655 _____ () C:\Users\User\Desktop\FRST.txt 2014-03-25 20:28 - 2014-03-15 10:16 - 00000000 ____D () C:\FRST 2014-03-25 20:00 - 2013-01-22 19:12 - 00001108 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job 2014-03-25 19:47 - 2013-03-04 20:19 - 00000884 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job 2014-03-25 19:32 - 2013-01-25 14:11 - 00000000 ____D () C:\ProgramData\Origin 2014-03-25 19:21 - 2009-07-14 05:45 - 00026368 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2014-03-25 19:21 - 2009-07-14 05:45 - 00026368 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2014-03-25 19:17 - 2013-01-22 18:31 - 01909212 _____ () C:\Windows\WindowsUpdate.log 2014-03-25 19:17 - 2009-07-14 18:58 - 11383356 _____ () C:\Windows\system32\perfh007.dat 2014-03-25 19:17 - 2009-07-14 18:58 - 03540902 _____ () C:\Windows\system32\perfc007.dat 2014-03-25 19:17 - 2009-07-14 06:13 - 00006488 _____ () C:\Windows\system32\PerfStringBackup.INI 2014-03-25 19:13 - 2014-02-28 14:15 - 00017568 _____ () C:\Windows\setupact.log 2014-03-25 19:13 - 2013-09-03 22:02 - 00000266 _____ () C:\Windows\Tasks\AutoKMS.job 2014-03-25 19:13 - 2013-03-24 23:06 - 00000000 ____D () C:\Users\User\AppData\Local\HTC MediaHub 2014-03-25 19:13 - 2013-01-22 19:12 - 00001104 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job 2014-03-25 19:13 - 2013-01-22 18:39 - 00000000 ____D () C:\ProgramData\NVIDIA 2014-03-25 19:13 - 2009-07-14 06:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT 2014-03-25 16:41 - 2013-02-19 00:43 - 00000000 ____D () C:\Users\User\AppData\Roaming\vlc 2014-03-25 16:38 - 2014-03-25 16:38 - 00006576 _____ () C:\Users\User\Downloads\relink.us__PB_-_ExploitedCollegeGirls.13.12.12.Myrtle.And.Brie.XXX.720p.MP4-KTR_d4427f0623b1fd04ddd46543cba144.dlc 2014-03-25 16:28 - 2014-03-25 16:28 - 00002072 _____ () C:\Users\User\Downloads\pb_216-uh2py2n050gc.dlc 2014-03-25 16:25 - 2013-01-22 19:18 - 00546850 _____ () C:\Windows\PFRO.log 2014-03-25 16:15 - 2014-03-25 16:15 - 00002066 _____ () C:\Users\Public\Desktop\Avira Control Center.lnk 2014-03-25 16:15 - 2014-03-25 16:15 - 00000000 ____D () C:\Users\User\AppData\Roaming\Avira 2014-03-25 16:15 - 2014-03-25 16:15 - 00000000 ____D () C:\ProgramData\Avira 2014-03-25 16:15 - 2014-03-25 16:15 - 00000000 ____D () C:\Program Files (x86)\Avira 2014-03-25 16:11 - 2014-03-25 16:11 - 148418360 _____ () C:\Users\User\Downloads\avira_internet_security_suite_de.exe 2014-03-25 02:25 - 2013-11-08 16:37 - 00003930 _____ () C:\Windows\System32\Tasks\User_Feed_Synchronization-{56878F6C-8182-4709-92D2-F1ACA418179A} 2014-03-24 23:05 - 2014-03-24 23:05 - 00987442 _____ () C:\Users\User\Desktop\SecurityCheck.exe 2014-03-24 23:05 - 2013-01-22 20:48 - 00000000 ____D () C:\Users\User\AppData\Roaming\TS3Client 2014-03-24 20:05 - 2014-03-24 20:05 - 02347384 _____ (ESET) C:\Users\User\Downloads\esetsmartinstaller_enu.exe 2014-03-24 01:53 - 2014-01-30 16:23 - 00000000 ____D () C:\Users\User\AppData\Local\Battle.net 2014-03-23 21:26 - 2014-03-21 14:53 - 00000000 ____D () C:\AdwCleaner 2014-03-23 18:52 - 2014-03-23 18:52 - 00000000 ____D () C:\ProgramData\APN 2014-03-23 18:48 - 2013-01-22 20:30 - 00000000 ____D () C:\ProgramData\Kaspersky Lab 2014-03-23 18:43 - 2014-03-23 18:43 - 00002058 _____ () C:\Users\User\Desktop\JRT.txt 2014-03-23 18:34 - 2014-03-23 18:34 - 00000000 ____D () C:\Windows\ERUNT 2014-03-23 18:33 - 2014-03-23 18:33 - 01037734 _____ (Thisisu) C:\Users\User\Desktop\JRT.exe 2014-03-23 18:18 - 2014-03-23 18:18 - 07747104 _____ (Malwarebytes Corporation ) C:\Users\User\Downloads\mbam-rules.exe 2014-03-23 18:15 - 2013-09-03 22:02 - 00000000 ____D () C:\Windows\AutoKMS 2014-03-23 16:22 - 2014-03-23 16:22 - 00000000 ____D () C:\Users\User\AppData\Roaming\Malwarebytes 2014-03-23 16:21 - 2014-03-23 16:21 - 10285040 _____ (Malwarebytes Corporation ) C:\Users\User\Downloads\mbam-setup-1.75.0.1300.exe 2014-03-23 16:21 - 2014-03-23 16:21 - 00000000 ____D () C:\ProgramData\Malwarebytes 2014-03-23 11:50 - 2014-03-23 11:50 - 00046358 _____ () C:\Users\User\Downloads\ref=dvm_de_mer_site_adswmep_2_14 2014-03-23 11:50 - 2014-03-23 11:50 - 00046316 _____ () C:\Users\User\Downloads\ref=dvm_de_mer_site_adswmep_2_14 (1) 2014-03-23 11:49 - 2013-09-03 22:02 - 00002896 _____ () C:\Windows\System32\Tasks\AutoKMS 2014-03-22 13:26 - 2014-03-22 13:26 - 00027481 _____ () C:\ComboFix.txt 2014-03-22 13:26 - 2014-03-22 13:18 - 00000000 ____D () C:\Qoobox 2014-03-22 13:26 - 2013-01-22 19:11 - 00000000 ____D () C:\Users\User\AppData\Local\Apps\2.0 2014-03-22 13:25 - 2014-03-22 13:18 - 00000000 ____D () C:\Windows\erdnt 2014-03-22 13:25 - 2009-07-14 03:34 - 00000215 _____ () C:\Windows\system.ini 2014-03-22 13:16 - 2014-03-22 13:16 - 05190052 ____R (Swearware) C:\Users\User\Desktop\ComboFix.exe 2014-03-21 15:07 - 2014-03-21 15:07 - 00001880 _____ () C:\Users\User\Downloads\relink.us__pb_148_38f5d8c26f6d911f4e47d51cbb5fb5 (1).dlc 2014-03-21 15:06 - 2014-03-21 15:06 - 00001880 _____ () C:\Users\User\Downloads\relink.us__pb_148_38f5d8c26f6d911f4e47d51cbb5fb5.dlc 2014-03-21 14:52 - 2014-03-21 14:52 - 01950720 _____ () C:\Users\User\Desktop\AdwCleaner.exe 2014-03-21 14:09 - 2013-01-22 18:31 - 00000000 ___RD () C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup 2014-03-21 14:07 - 2014-03-21 14:07 - 00709352 _____ ( ) C:\Users\User\Downloads\COMPUTER_BILD-Download-Manager_fuer_adwcleaner.exe 2014-03-20 23:40 - 2014-03-20 23:40 - 00499139 _____ () C:\Users\User\Downloads\home.php 2014-03-20 23:39 - 2014-03-20 23:39 - 00459633 _____ () C:\Users\User\Downloads\User.htm 2014-03-20 21:32 - 2014-03-20 21:31 - 00001106 _____ () C:\Users\Public\Desktop\Picasa 3.lnk 2014-03-20 21:32 - 2014-03-11 20:55 - 00000000 ____D () C:\Users\User\AppData\Local\Google 2014-03-20 21:31 - 2014-03-11 20:55 - 00000000 ____D () C:\Program Files (x86)\Google 2014-03-20 21:29 - 2014-03-20 21:29 - 00613200 _____ (Chip Digital GmbH) C:\Users\User\Downloads\Picasa - CHIP-Downloader.exe 2014-03-20 21:26 - 2014-03-20 21:25 - 09993937 _____ (fCoder Group, Inc. ) C:\Users\User\Downloads\converter_de.exe 2014-03-20 21:20 - 2014-03-20 21:20 - 00001969 _____ () C:\Users\User\Desktop\Sync Folder.lnk 2014-03-20 21:20 - 2014-03-20 21:20 - 00000988 _____ () C:\Users\Public\Desktop\CR2 Converter.lnk 2014-03-20 21:20 - 2014-03-20 21:20 - 00000000 ____D () C:\Program Files (x86)\CR2 Converter 2014-03-20 21:19 - 2014-03-20 21:19 - 00949280 _____ (cr2converter.com ) C:\Users\User\Downloads\cr2converter_setup (1).exe 2014-03-20 21:19 - 2014-03-20 21:19 - 00930952 _____ (CNET Download.com) C:\Users\User\Downloads\cbsidlm-cbsi183-CR2_Converter-ORG-75712393.exe 2014-03-18 21:56 - 2013-02-17 18:25 - 00004096 _____ () C:\Users\Public\Documents\00001030.LCS 2014-03-18 21:52 - 2014-03-18 21:52 - 00007895 _____ () C:\Users\User\Documents\ööö.eti 2014-03-18 21:51 - 2014-03-18 21:51 - 00001886 _____ () C:\Users\Public\Desktop\Canon Easy-PhotoPrint EX.lnk 2014-03-18 21:51 - 2014-03-18 21:51 - 00000000 ___HD () C:\ProgramData\CanonIJEPPEX2 2014-03-18 21:51 - 2014-03-18 21:51 - 00000000 ___HD () C:\ProgramData\CanonEPP 2014-03-18 21:50 - 2014-03-18 21:50 - 00000000 ____D () C:\Program Files\Canon 2014-03-18 21:50 - 2013-02-17 17:06 - 00000000 ____D () C:\Program Files (x86)\Canon 2014-03-18 21:50 - 2013-02-17 17:03 - 00002021 _____ () C:\Users\Public\Desktop\Canon Quick Menu.lnk 2014-03-18 21:49 - 2014-03-18 21:49 - 60362328 _____ () C:\Users\User\Downloads\eppx-win-4_1_6-de.exe 2014-03-18 21:49 - 2014-03-18 21:49 - 15900248 _____ () C:\Users\User\Downloads\ewpx-win-1_4_1-ea23.exe 2014-03-18 21:49 - 2014-03-18 21:49 - 09649736 _____ () C:\Users\User\Downloads\qm__-win-2_3_0-ea31_2.exe 2014-03-18 21:49 - 2013-02-17 17:03 - 00000000 ____D () C:\ProgramData\CanonIJWSpt 2014-03-18 21:48 - 2014-03-18 21:48 - 17448088 _____ () C:\Users\User\Downloads\pd68-win-ip4900-2_56-ea24.exe 2014-03-18 21:48 - 2013-06-01 12:37 - 00000000 ___HD () C:\Program Files\CanonBJ 2014-03-18 01:06 - 2013-08-14 17:32 - 00000000 ____D () C:\Windows\system32\MRT 2014-03-18 01:05 - 2013-01-22 18:51 - 90015360 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe 2014-03-16 02:40 - 2013-09-01 10:38 - 00000713 _____ () C:\Users\Public\Desktop\Guild Wars 2.lnk 2014-03-16 02:40 - 2013-02-19 00:43 - 00000915 _____ () C:\Users\Public\Desktop\VLC media player.lnk 2014-03-16 02:38 - 2014-03-16 02:38 - 00185944 _____ (Лаборатория Касперского) C:\Users\User\Downloads\kss12.0.1.117abRU_EN_DE_FR_ES_IT_JA_PT_ZH_5623.exe 2014-03-16 02:32 - 2014-03-16 02:32 - 194045080 _____ (Kaspersky Lab) C:\Users\User\Downloads\pure13.0.2.558abcdDE_5372 (1).exe 2014-03-16 02:32 - 2014-03-16 02:31 - 194045080 _____ (Kaspersky Lab) C:\Users\User\Downloads\pure13.0.2.558abcdDE_5372.exe 2014-03-16 02:32 - 2013-09-29 19:40 - 00000000 ____D () C:\ProgramData\Package Cache 2014-03-15 10:49 - 2014-03-15 10:49 - 00024757 _____ () C:\Users\User\Desktop\logflie.zip 2014-03-15 10:38 - 2014-03-15 10:38 - 00004646 _____ () C:\Users\User\Desktop\gmer ohne namen.txt 2014-03-15 10:37 - 2014-03-15 10:37 - 00048832 _____ () C:\Users\User\Desktop\Additionohne namen.txt 2014-03-15 10:36 - 2014-03-15 10:36 - 00071630 _____ () C:\Users\User\Desktop\FRST ohne name.txt 2014-03-15 10:31 - 2014-03-15 10:31 - 00004647 _____ () C:\Users\User\Desktop\gmer.txt 2014-03-15 10:25 - 2014-03-15 10:25 - 00380416 _____ () C:\Users\User\Desktop\Gmer-19357.exe 2014-03-15 10:17 - 2014-03-15 10:17 - 00048835 _____ () C:\Users\User\Desktop\Addition.txt 2014-03-15 10:15 - 2014-03-15 10:15 - 02157056 _____ (Farbar) C:\Users\User\Desktop\FRST64.exe 2014-03-15 10:14 - 2014-03-15 10:13 - 00000472 _____ () C:\Users\User\Desktop\defogger_disable.log 2014-03-15 10:13 - 2014-03-15 10:13 - 00000000 _____ () C:\Users\User\defogger_reenable 2014-03-15 10:13 - 2013-01-22 18:31 - 00000000 ____D () C:\Users\User 2014-03-15 10:12 - 2014-03-15 10:12 - 00050477 _____ () C:\Users\User\Desktop\Defogger.exe 2014-03-15 10:03 - 2014-03-11 20:55 - 00002175 _____ () C:\Users\Public\Desktop\Google Chrome.lnk 2014-03-15 09:47 - 2013-04-07 16:33 - 00000000 ____D () C:\Users\hedev 2014-03-14 11:21 - 2013-01-22 20:44 - 00000000 ____D () C:\Program Files\TeamSpeak 3 Client 2014-03-13 12:22 - 2013-11-29 18:10 - 00001969 _____ () C:\Users\Public\Desktop\Samsung Kies 3.lnk 2014-03-13 12:22 - 2013-02-22 11:32 - 00000000 ____D () C:\Users\User\AppData\Local\Downloaded Installations 2014-03-13 12:21 - 2013-02-22 11:39 - 00000000 ____D () C:\Users\User\Documents\samsung 2014-03-13 09:25 - 2013-02-02 23:32 - 00000000 ____D () C:\Program Files\Microsoft Silverlight 2014-03-13 09:25 - 2013-02-02 23:32 - 00000000 ____D () C:\Program Files (x86)\Microsoft Silverlight 2014-03-13 09:25 - 2009-07-14 05:45 - 00497464 _____ () C:\Windows\system32\FNTCACHE.DAT 2014-03-13 02:34 - 2013-09-03 21:54 - 00000000 ____D () C:\ProgramData\Microsoft Help 2014-03-13 00:02 - 2014-02-17 17:42 - 00000000 ____D () C:\Users\User\Documents\Respawn 2014-03-12 14:48 - 2014-03-12 14:48 - 00000000 ____D () C:\Users\User\AppData\Local\Blizzard 2014-03-11 21:44 - 2014-03-11 21:44 - 00005656 _____ () C:\Users\User\Downloads\relink.us__PB_-_GirlsDoPorn.E248.19.Years.Old.XXX.720p.WMV-KTR_3d33662e297d81609728b08348b7c3.dlc 2014-03-11 21:07 - 2014-03-11 21:07 - 04550656 _____ (Google Inc.) C:\Windows\SysWOW64\GPhotos.scr 2014-03-11 20:55 - 2013-01-22 19:12 - 00004104 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA 2014-03-11 20:55 - 2013-01-22 19:12 - 00003852 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore 2014-03-11 20:55 - 2013-01-22 19:11 - 00000000 ____D () C:\Users\User\AppData\Local\Deployment 2014-03-11 20:10 - 2013-01-22 18:39 - 00000000 ____D () C:\Program Files (x86)\NVIDIA Corporation 2014-03-11 00:08 - 2014-03-11 00:08 - 00001732 _____ () C:\Users\User\Downloads\relink.us__06-03-2014_006_279760f1ae68ab30c34fa3d2282e68 (1).dlc 2014-03-11 00:07 - 2014-03-11 00:07 - 00001732 _____ () C:\Users\User\Downloads\relink.us__06-03-2014_006_279760f1ae68ab30c34fa3d2282e68.dlc 2014-03-10 20:02 - 2013-01-25 15:31 - 00214392 _____ () C:\Windows\SysWOW64\PnkBstrB.exe 2014-03-10 19:29 - 2013-01-25 15:31 - 00214392 _____ () C:\Windows\SysWOW64\PnkBstrB.ex0 2014-03-10 19:24 - 2014-03-10 19:24 - 00000792 _____ () C:\Users\Public\Desktop\Titanfall.lnk 2014-03-10 18:56 - 2013-01-22 20:15 - 00769067 _____ () C:\Windows\DirectX.log 2014-03-09 23:47 - 2014-03-09 23:47 - 00283648 _____ () C:\Windows\{125528D1-A7C7-11E3-B973-001D92F175B5} 2014-03-08 17:03 - 2014-03-08 17:03 - 16892157 _____ () C:\Users\User\Downloads\kisandroid_11.1.3.166_de (1).apk 2014-03-08 17:03 - 2014-03-08 17:02 - 16892157 _____ () C:\Users\User\Downloads\kisandroid_11.1.3.166_de.apk 2014-03-06 22:42 - 2013-03-16 16:51 - 00000000 ____D () C:\Users\User\AppData\Roaming\dvdcss 2014-03-04 15:35 - 2014-03-11 20:07 - 25255256 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll 2014-03-04 15:35 - 2014-03-11 20:07 - 23716640 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll 2014-03-04 15:35 - 2014-03-11 20:07 - 18302384 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll 2014-03-04 15:35 - 2014-03-11 20:07 - 17755424 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll 2014-03-04 15:35 - 2014-03-11 20:07 - 17561544 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll 2014-03-04 15:35 - 2014-03-11 20:07 - 15783992 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll 2014-03-04 15:35 - 2014-03-11 20:07 - 12708128 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys 2014-03-04 15:35 - 2014-03-11 20:07 - 11636176 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll 2014-03-04 15:35 - 2014-03-11 20:07 - 11589272 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll 2014-03-04 15:35 - 2014-03-11 20:07 - 09728064 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll 2014-03-04 15:35 - 2014-03-11 20:07 - 09690424 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll 2014-03-04 15:35 - 2014-03-11 20:07 - 03143456 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll 2014-03-04 15:35 - 2014-03-11 20:07 - 02958792 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll 2014-03-04 15:35 - 2014-03-11 20:07 - 02783008 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvenc.dll 2014-03-04 15:35 - 2014-03-11 20:07 - 02411976 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvenc.dll 2014-03-04 15:35 - 2014-03-11 20:07 - 01885472 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6433523.dll 2014-03-04 15:35 - 2014-03-11 20:07 - 01516488 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6433523.dll 2014-03-04 15:35 - 2014-03-11 20:07 - 00892704 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll 2014-03-04 15:35 - 2014-03-11 20:07 - 00877856 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll 2014-03-04 15:35 - 2014-03-11 20:07 - 00863064 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll 2014-03-04 15:35 - 2014-03-11 20:07 - 00846168 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll 2014-03-04 15:35 - 2014-03-11 20:07 - 00832936 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll 2014-03-04 15:35 - 2014-03-11 20:07 - 00353504 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll 2014-03-04 15:35 - 2014-03-11 20:07 - 00305600 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll 2014-03-04 15:35 - 2014-03-11 20:07 - 00174296 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll 2014-03-04 15:35 - 2014-03-11 20:07 - 00148016 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll 2014-03-04 15:35 - 2013-10-09 19:00 - 14709720 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll 2014-03-04 15:35 - 2013-10-09 19:00 - 03093280 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll 2014-03-04 15:35 - 2013-10-09 19:00 - 02715264 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll 2014-03-04 15:35 - 2013-10-09 19:00 - 00947808 _____ (NVIDIA Corporation) C:\Windows\system32\nvumdshimx.dll 2014-03-04 15:35 - 2013-10-09 18:40 - 00062408 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll 2014-03-04 15:35 - 2013-10-09 18:40 - 00054216 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll 2014-03-04 15:35 - 2013-09-02 17:51 - 31474976 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll 2014-03-04 15:35 - 2013-09-02 17:51 - 00024544 _____ () C:\Windows\system32\nvinfo.pb 2014-03-04 14:06 - 2013-10-09 18:41 - 06714312 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll 2014-03-04 14:06 - 2013-10-09 18:41 - 03497816 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll 2014-03-04 14:05 - 2013-10-09 18:41 - 03649185 _____ () C:\Windows\system32\nvcoproc.bin 2014-03-04 14:05 - 2013-10-09 18:41 - 02558808 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll 2014-03-04 14:05 - 2013-10-09 18:41 - 00922968 _____ (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe 2014-03-04 14:05 - 2013-10-09 18:41 - 00386336 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll 2014-03-04 14:05 - 2013-10-09 18:41 - 00064968 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll 2014-03-04 12:32 - 2014-03-11 20:10 - 00599840 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe 2014-03-03 10:22 - 2014-01-30 16:32 - 00000000 ____D () C:\Users\User\Documents\Diablo III 2014-03-02 23:09 - 2013-02-01 23:41 - 00000000 ____D () C:\Users\User\AppData\Local\Windows Live 2014-03-01 07:05 - 2014-03-12 18:10 - 23133696 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll 2014-03-01 06:17 - 2014-03-12 18:10 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb 2014-03-01 06:16 - 2014-03-12 18:10 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll 2014-03-01 05:58 - 2014-03-12 18:10 - 02765824 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll 2014-03-01 05:52 - 2014-03-12 18:10 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll 2014-03-01 05:51 - 2014-03-12 18:10 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll 2014-03-01 05:42 - 2014-03-12 18:10 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll 2014-03-01 05:40 - 2014-03-12 18:10 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll 2014-03-01 05:37 - 2014-03-12 18:10 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll 2014-03-01 05:33 - 2014-03-12 18:10 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe 2014-03-01 05:33 - 2014-03-12 18:10 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe 2014-03-01 05:32 - 2014-03-12 18:10 - 00708608 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll 2014-03-01 05:30 - 2014-03-12 18:10 - 17074688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll 2014-03-01 05:23 - 2014-03-12 18:10 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe 2014-03-01 05:17 - 2014-03-12 18:10 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe 2014-03-01 05:11 - 2014-03-12 18:10 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb 2014-03-01 05:02 - 2014-03-12 18:10 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll 2014-03-01 04:54 - 2014-03-12 18:10 - 05768704 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll 2014-03-01 04:52 - 2014-03-12 18:10 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll 2014-03-01 04:51 - 2014-03-12 18:10 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll 2014-03-01 04:47 - 2014-03-12 18:10 - 02168320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll 2014-03-01 04:43 - 2014-03-12 18:10 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll 2014-03-01 04:43 - 2014-03-12 18:10 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll 2014-03-01 04:42 - 2014-03-12 18:10 - 00627200 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll 2014-03-01 04:40 - 2014-03-12 18:10 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll 2014-03-01 04:38 - 2014-03-12 18:10 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe 2014-03-01 04:37 - 2014-03-12 18:10 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll 2014-03-01 04:35 - 2014-03-12 18:10 - 02041856 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl 2014-03-01 04:18 - 2014-03-12 18:10 - 13051904 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll 2014-03-01 04:16 - 2014-03-12 18:10 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll 2014-03-01 04:14 - 2014-03-12 18:10 - 04244480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll 2014-03-01 04:10 - 2014-03-12 18:10 - 02334208 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll 2014-03-01 04:03 - 2014-03-12 18:10 - 00524288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll 2014-03-01 04:00 - 2014-03-12 18:10 - 01964032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl 2014-03-01 03:57 - 2014-03-12 18:10 - 11266048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll 2014-03-01 03:38 - 2014-03-12 18:10 - 01393664 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll 2014-03-01 03:32 - 2014-03-12 18:10 - 01820160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll 2014-03-01 03:27 - 2014-03-12 18:10 - 01156096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll 2014-03-01 03:25 - 2014-03-12 18:10 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll 2014-03-01 03:25 - 2014-03-12 18:10 - 00703488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll 2014-02-28 16:35 - 2013-01-22 19:11 - 00151536 _____ () C:\Users\User\AppData\Local\GDIPFONTCACHEV1.DAT 2014-02-28 14:15 - 2014-02-28 14:15 - 00000000 _____ () C:\Windows\setuperr.log 2014-02-28 11:11 - 2014-02-28 11:11 - 00007920 _____ () C:\Users\User\Downloads\dd41-5qfjeum12so.dlc 2014-02-28 11:01 - 2014-02-28 11:01 - 00006852 _____ () C:\Users\User\Downloads\relink.us__PB_-_DareDorm.14.02.07.Party.Time.XXX.HR.FLV-KTR_f594221e6db7a4d5870ddeafb2e697 (1).dlc 2014-02-28 11:00 - 2014-02-28 11:00 - 00006852 _____ () C:\Users\User\Downloads\relink.us__PB_-_DareDorm.14.02.07.Party.Time.XXX.HR.FLV-KTR_f594221e6db7a4d5870ddeafb2e697.dlc 2014-02-28 10:00 - 2013-01-22 19:58 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information 2014-02-28 09:58 - 2013-02-13 21:15 - 00000000 ____D () C:\Program Files (x86)\OpenOffice.org 3 2014-02-27 15:03 - 2014-02-27 15:03 - 00000000 ____D () C:\Users\User\Downloads\AVS Image Converter 3.0.2.270 + Patch 2014-02-27 14:34 - 2014-02-27 14:16 - 00000000 ____D () C:\Users\User\AppData\Roaming\RCP 6 2014-02-27 14:31 - 2014-02-27 14:31 - 00008669 _____ () C:\Users\User\Downloads\QuickJPGfromCR2.zip 2014-02-27 14:28 - 2014-02-27 14:16 - 00000000 ____D () C:\ProgramData\ReaConverter 2014-02-27 14:16 - 2014-02-27 14:16 - 29543885 _____ (ReaSoft ) C:\Users\User\Downloads\ReaConverter (1).exe 2014-02-27 14:16 - 2014-02-27 14:15 - 29543885 _____ (ReaSoft ) C:\Users\User\Downloads\ReaConverter.exe 2014-02-27 14:12 - 2014-02-27 14:11 - 49861264 _____ () C:\Users\User\Downloads\setup-contenta-converter-en-premium.exe 2014-02-27 14:09 - 2014-02-27 14:09 - 24638816 _____ (CANON INC.) C:\Users\User\Downloads\k8523dex.exe 2014-02-27 14:05 - 2014-02-27 14:04 - 15255792 _____ (Graphic-Region Development ) C:\Users\User\Downloads\batchconverter_setup.exe 2014-02-27 14:02 - 2014-02-27 14:02 - 02328552 _____ (Graphic-Region Development ) C:\Users\User\Downloads\ablerawer_setup.exe 2014-02-27 14:00 - 2014-02-27 14:00 - 00832856 _____ (Canon Inc ) C:\Users\User\Downloads\k6403enx.exe 2014-02-27 13:42 - 2014-02-27 13:42 - 00949280 _____ (cr2converter.com ) C:\Users\User\Downloads\cr2converter_setup.exe 2014-02-27 13:34 - 2014-02-27 13:34 - 00000769 _____ () C:\Users\User\Desktop\Nisan bilder bearbeitung - Verknüpfung.lnk 2014-02-25 16:48 - 2014-03-13 12:22 - 00144664 _____ (MAPILab Ltd. & Add-in Express Ltd.) C:\Windows\SysWOW64\secman.dll 2014-02-25 15:20 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\rescache 2014-02-25 14:31 - 2014-02-25 14:31 - 00000000 ____D () C:\Windows\de 2014-02-25 14:31 - 2013-02-01 23:44 - 00000000 ____D () C:\Program Files\Windows Live 2014-02-25 14:31 - 2013-02-01 23:44 - 00000000 ____D () C:\Program Files (x86)\Windows Live 2014-02-25 14:30 - 2014-02-25 14:30 - 00002156 _____ () C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft OneDrive.lnk 2014-02-25 11:47 - 2014-03-25 16:15 - 00131576 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avipbb.sys 2014-02-25 11:47 - 2014-03-25 16:15 - 00108440 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avgntflt.sys 2014-02-25 11:47 - 2014-03-25 16:15 - 00084720 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avnetflt.sys 2014-02-25 11:47 - 2014-03-25 16:15 - 00028600 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avkmgr.sys 2014-02-24 22:47 - 2014-02-21 23:32 - 00000000 ___RD () C:\Users\User\Documents\MAGIX 2014-02-24 22:47 - 2014-02-21 23:31 - 00000000 ____D () C:\Program Files (x86)\MAGIX 2014-02-24 21:58 - 2014-02-24 21:56 - 00000000 ____D () C:\Users\User\Documents\Wondershare Video Converter Pro 2014-02-24 21:58 - 2014-02-24 21:55 - 00000000 ____D () C:\ProgramData\Wondershare Video Converter Pro 2014-02-24 21:56 - 2014-02-24 21:56 - 00000000 ____D () C:\Users\User\AppData\Roaming\Wondershare Video Converter Pro 2014-02-24 21:56 - 2014-02-24 21:56 - 00000000 ____D () C:\Users\User\AppData\Roaming\{950EB46C-6AC7-4ACC-AB36-9A6A77C08B6A} 2014-02-24 21:55 - 2014-02-24 21:55 - 00001405 _____ () C:\Users\Public\Desktop\Wondershare Video Converter Pro.lnk 2014-02-24 21:55 - 2014-02-24 21:55 - 00000000 ____D () C:\Users\User\AppData\Local\Wondershare 2014-02-24 21:55 - 2014-02-24 21:55 - 00000000 ____D () C:\Program Files (x86)\Wondershare 2014-02-24 21:54 - 2014-02-24 21:53 - 38210696 _____ (Wondershare Software ) C:\Users\User\Downloads\vc2013_full891.exe 2014-02-24 20:16 - 2014-02-21 23:31 - 00000000 ____D () C:\ProgramData\MAGIX 2014-02-24 14:12 - 2014-02-24 14:12 - 00517128 _____ () C:\Users\User\Downloads\Download.htm 2014-02-23 12:43 - 2014-02-23 12:43 - 00279552 _____ () C:\Windows\{3376F3B9-9C7F-11E3-9FA0-001D92F175B5} 2014-02-23 12:39 - 2013-02-16 11:41 - 00000000 ____D () C:\Program Files (x86)\CDBurnerXP 2014-02-23 00:18 - 2014-02-23 00:18 - 00260412 _____ () C:\Windows\msxml4-KB2758694-enu.LOG Some content of TEMP: ==================== C:\Users\User\AppData\Local\Temp\avgnt.exe C:\Users\User\AppData\Local\Temp\Offercast_AVIRAV7_.exe C:\Users\User\AppData\Local\Temp\Quarantine.exe ==================== Bamital & volsnap Check ================= C:\Windows\System32\winlogon.exe => MD5 is legit C:\Windows\System32\wininit.exe => MD5 is legit C:\Windows\SysWOW64\wininit.exe => MD5 is legit C:\Windows\explorer.exe => MD5 is legit C:\Windows\SysWOW64\explorer.exe => MD5 is legit C:\Windows\System32\svchost.exe => MD5 is legit C:\Windows\SysWOW64\svchost.exe => MD5 is legit C:\Windows\System32\services.exe => MD5 is legit C:\Windows\System32\User32.dll => MD5 is legit C:\Windows\SysWOW64\User32.dll => MD5 is legit C:\Windows\System32\userinit.exe => MD5 is legit C:\Windows\SysWOW64\userinit.exe => MD5 is legit C:\Windows\System32\rpcss.dll => MD5 is legit C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit LastRegBack: 2014-03-22 11:45 ==================== End Of Log ============================ --- --- --- |
26.03.2014, 12:08 | #17 |
/// the machine /// TB-Ausbilder | Windows 7 Ordner plötzlich Schreibgeschützt Java und Flash updaten.
__________________Noch Probleme`?
__________________ |
26.03.2014, 16:35 | #18 |
| Windows 7 Ordner plötzlich SchreibgeschütztIch glaube wir haben den Ziel aus den Augen verloren... Da Steht Attribute: # Schreibgeschützt (betrifft nur Dateien im Ordner) Jeden Ordner den ich neu erstelle wird automatisch schreibgeschützt. |
27.03.2014, 12:15 | #19 | |
/// the machine /// TB-Ausbilder | Windows 7 Ordner plötzlich SchreibgeschütztZitat:
erstmal: sind die DInger auch wirklich schreibgeschützt oder kannst du die Ordner auch öffnen und löschen?
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
27.03.2014, 13:52 | #20 |
| Windows 7 Ordner plötzlich Schreibgeschützt Ich kann den Ordner löschen auch wenn da Dateien vorhanden sind. Komisch finde ich nur, das da Schreibgeschützt steht und es irritiert einen. Ich habe erst vermutet das es ein Virus oder Trojaner sein könnte... ( Schlimmstenfalls wäre, wenn es ein Trojaner ist was noch nicht enteckt worden ist ) |
28.03.2014, 09:21 | #21 |
/// the machine /// TB-Ausbilder | Windows 7 Ordner plötzlich Schreibgeschützt das is normal Das Schreibschutz-Kennzeichen wird von Windows verwendet, um sich zum Beispiel spezielle Ansichtsoptionen oder spezielle Attribute für diesen Ordner zu merken. Darum ist es auch nicht möglich, es zu entfernen. Es ist also kein Fehler, sondern das vorbestimmte Verhalten. Du könntest jetzt den Vollbesitz der Ordner übrnehmen, aber eigentlich macht es wenig Sinn
__________________ --> Windows 7 Ordner plötzlich Schreibgeschützt |
28.03.2014, 15:10 | #22 |
| Windows 7 Ordner plötzlich Schreibgeschützt Dieses verhalten von Windows hat mich wochenlang stutzig gemacht und es betrifft ja alle Ordner im System. Gut soweit, danke nochmal =) |
29.03.2014, 09:47 | #23 |
/// the machine /// TB-Ausbilder | Windows 7 Ordner plötzlich Schreibgeschützt Gern Geschehen
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
Themen zu Windows 7 Ordner plötzlich Schreibgeschützt |
adminstrationsrechte registry, anhang, brauch, erkannt, erstellt, forum, gmer, infos, kaspersky, link, lösung, neue, neuen, nichts, ordner, ordner rechte, plötzlich, problem, security, stick, thread, trojaner, trojaner -system repair, trotz, usb, usb stick, virus, windows, windows 7, windows 7 64 bit professional |