Suisa Virus blockiert meinen Windows 7 Rechner in jedem Modus meines Laptops

Huskeychi · 22.04.2012, 17:19

Hallo

Ja ich werde jetzt dann gleichd as Log posten war die letzten Tage geschäftlich unterwegs, sorry.

Hier das Log:

Scan result of Farbar Recovery Scan Tool (FRST written by farbar) Version: 16-04-2012
Ran by David at 22-04-2012 18:47:12
Running from F:\
(X86) OS Language: German Standard
Attention: Could not load system hive.FEHLER: Der Prozess kann nicht auf die Datei zugreifen, da sie von einem anderen Prozess verwendet wird.

Attention: The tool is not run from recovery environment and will not function properly.

========================== Registry (Whitelisted) =============

HKLM\...\Winlogon: [Userinit] [x]
HKLM\...\Winlogon: [Shell]

================================ Services (Whitelisted) ==================

========================== Drivers (Whitelisted) =============

========================== NetSvcs (Whitelisted) ===========

============ One Month Created Files and Folders ==============

2012-04-22 18:46 - 2011-08-21 19:31 - 0000000 ____D C:\Users\David\AppData\Local\{0A70500B-8C44-466C-A6E5-29014A6610E3}
2012-04-22 18:46 - 2011-05-29 18:53 - 0000000 ____D C:\Users\David\AppData\Local\{75580811-E74C-4082-B102-98CB6F457A9C}
2012-04-22 18:34 - 2011-10-07 15:26 - 0000000 ____D C:\Users\David\AppData\Local\{8EB94645-DE0E-4463-94F5-443919F18E11}
2012-04-22 18:34 - 2011-09-07 18:37 - 0000000 ____D C:\Users\David\AppData\Local\{356CE8D9-4112-4097-AAF2-765ADDD5EA9B}
2012-04-18 16:45 - 2011-09-11 18:53 - 0031744 ____A C:\Users\David\Desktop\Löschdienst_summary.doc
2012-04-18 15:50 - 2012-04-18 15:36 - 0066048 ____A C:\Users\David\Desktop\HD_Lektionsvorbereitung_Loeschdienst_Druckl_.xls
2012-04-18 15:46 - 2012-04-18 15:36 - 0084480 ____A C:\Users\David\Desktop\TLF_übersicht.ppt
2012-04-18 15:01 - 2011-09-22 19:42 - 0047616 ____A C:\Users\David\Desktop\TLF_Einsatz_summary.doc
2012-04-18 10:53 - 2012-02-09 23:42 - 0060928 ____A C:\Users\David\Desktop\HD_Lektionsvorbereitung_Einsatz_TLF.xls
2012-04-17 14:28 - 2012-02-27 20:30 - 0000000 ____D C:\Users\David\AppData\Local\{AE6F1A14-B387-42A5-9BE2-B363942ADF31}
2012-04-17 14:28 - 2011-09-01 17:50 - 0000000 ____D C:\Users\David\AppData\Local\{5C6E33D0-2969-423C-AE54-8CD930F9D738}
2012-04-17 14:11 - 2012-01-02 21:25 - 0000000 ____D C:\Users\David\AppData\Local\{0B5E58C9-5824-4864-A6B9-53BCE7ED6F7E}
2012-04-17 14:11 - 2011-11-18 00:20 - 0000000 ____D C:\Users\David\AppData\Local\{018C9489-7539-4670-AC85-DF146FFD71DF}
2012-04-17 11:50 - 2012-04-16 06:24 - 0000000 ____D C:\FRST
2012-04-16 03:28 - 2010-11-23 20:06 - 0058782 ____A C:\OTL.Txt
2012-04-16 03:28 - 2010-10-17 21:26 - 0019538 ____A C:\Extras.Txt
2012-04-15 19:22 - 2012-04-15 19:22 - 0065536 __ASH C:\Windows\System32\config\COMPONENTS{88a6a1c9-57bd-11e0-af24-001e3777819a}.TxR.blf
2012-04-09 18:56 - 2011-08-31 15:34 - 0000000 ____D C:\Users\David\AppData\Local\{2334A902-3CBD-4FFB-88A5-1BA3953D4778}
2012-04-09 18:56 - 2011-06-17 22:28 - 0000000 ____D C:\Users\David\AppData\Local\{000D2179-8D69-4DD7-BFB9-973877490E25}
2012-04-09 18:15 - 2012-04-04 22:03 - 0000000 ____D C:\Users\David\AppData\Local\{EDE744F5-A7FF-439D-A315-C8E88E1EDD4F}
2012-04-09 18:15 - 2011-08-16 22:27 - 0000000 ____D C:\Users\David\AppData\Local\{DE16C105-7869-49D1-9242-FE6602AE2914}
2012-04-04 22:02 - 2012-03-01 08:19 - 0000000 ____D C:\Users\David\AppData\Local\{E6C1F8E9-6C64-4F63-9877-BCF8F0F14338}
2012-04-03 18:52 - 2012-01-11 20:45 - 0000000 ____D C:\Users\David\AppData\Local\{F5EE9A91-B0EF-4686-B9F3-47CBEA6D74C7}
2012-04-03 18:52 - 2011-11-20 21:27 - 0000000 ____D C:\Users\David\AppData\Local\{387FD345-4B38-4A24-9A04-054264FFA7F0}
2012-04-02 19:35 - 2012-04-02 19:36 - 0000000 ____D C:\Users\David\AppData\Local\{3E858585-37B1-4A13-B89E-20407A7CB151}
2012-04-02 19:35 - 2011-08-20 09:01 - 0000000 ____D C:\Users\David\AppData\Local\{3E32F5DD-FB69-457E-A624-2F123CB7A8D9}
2012-04-01 18:52 - 2011-10-22 10:30 - 0000000 ____D C:\Users\David\AppData\Local\{901E1C5F-D0DD-4C2B-A668-C00B7C9C67B6}
2012-04-01 18:51 - 2011-10-15 11:33 - 0000000 ____D C:\Users\David\AppData\Local\{5567838F-7506-43E0-B61B-8EDF976DD6F1}
2012-04-01 18:47 - 2012-04-22 18:42 - 0000000 ____D C:\Program Files\iPod
2012-04-01 18:47 - 2012-04-01 18:47 - 0000000 ____D C:\Program Files\iTunes
2012-04-01 18:47 - 2011-11-22 20:19 - 0001753 ____A C:\Users\Public\Desktop\iTunes.lnk

============ 3 Months Modified Files and Folders ===============

2012-04-22 18:47 - 2012-04-22 18:46 - 0000000 ____D C:\Users\David\AppData\Local\{0A70500B-8C44-466C-A6E5-29014A6610E3}
2012-04-22 18:47 - 2012-04-17 11:50 - 0000000 ____D C:\FRST
2012-04-22 18:46 - 2012-04-22 18:46 - 0000000 ____D C:\Users\David\AppData\Local\{75580811-E74C-4082-B102-98CB6F457A9C}
2012-04-22 18:46 - 2009-07-14 06:39 - 0030023 ____A C:\Windows\setupact.log
2012-04-22 18:45 - 2011-01-16 21:31 - 0000000 ____D C:\Users\David\AppData\Roaming\Skype
2012-04-22 18:45 - 2010-11-16 22:58 - 0001092 ____A C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2012-04-22 18:44 - 2010-10-17 21:26 - 0000000 ____D C:\users\David
2012-04-22 18:44 - 2010-10-17 21:18 - 2414682112 __ASH C:\hiberfil.sys
2012-04-22 18:44 - 2009-07-14 06:53 - 0000006 ___AH C:\Windows\Tasks\SA.DAT
2012-04-22 18:44 - 2009-07-14 04:37 - 0000000 ____D C:\Windows\System32\wfp
2012-04-22 18:44 - 2009-07-14 04:37 - 0000000 ____D C:\Windows\System32\config\TxR
2012-04-22 18:42 - 2010-10-17 21:45 - 0000000 ____D C:\Windows\System32\Drivers\N360
2012-04-22 18:42 - 2010-10-17 21:39 - 0000000 ____D C:\Users\All Users\Norton
2012-04-22 18:42 - 2010-10-17 21:39 - 0000000 ____D C:\ProgramData\Norton
2012-04-22 18:42 - 2009-07-14 04:37 - 0000000 ____D C:\Windows\System32\DriverStore
2012-04-22 18:41 - 2009-07-14 04:37 - 0000000 ____D C:\Windows\registration
2012-04-22 18:41 - 2009-07-14 04:37 - 0000000 ____D C:\Windows\Microsoft.NET
2012-04-22 18:39 - 2010-11-23 20:04 - 0000000 ____D C:\Users\All Users\MySQL
2012-04-22 18:39 - 2010-11-23 20:04 - 0000000 ____D C:\ProgramData\MySQL
2012-04-22 18:38 - 2009-07-14 06:34 - 0014848 ___AH C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2012-04-22 18:38 - 2009-07-14 06:34 - 0014848 ___AH C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2012-04-22 18:34 - 2012-04-22 18:34 - 0000000 ____D C:\Users\David\AppData\Local\{8EB94645-DE0E-4463-94F5-443919F18E11}
2012-04-22 18:34 - 2012-04-22 18:34 - 0000000 ____D C:\Users\David\AppData\Local\{356CE8D9-4112-4097-AAF2-765ADDD5EA9B}
2012-04-18 17:00 - 2012-04-18 16:45 - 0031744 ____A C:\Users\David\Desktop\Löschdienst_summary.doc
2012-04-18 16:41 - 2012-04-18 15:50 - 0066048 ____A C:\Users\David\Desktop\HD_Lektionsvorbereitung_Loeschdienst_Druckl_.xls
2012-04-18 15:47 - 2012-04-18 15:46 - 0084480 ____A C:\Users\David\Desktop\TLF_übersicht.ppt
2012-04-18 15:36 - 2012-04-18 15:01 - 0047616 ____A C:\Users\David\Desktop\TLF_Einsatz_summary.doc
2012-04-18 15:36 - 2012-04-18 10:53 - 0060928 ____A C:\Users\David\Desktop\HD_Lektionsvorbereitung_Einsatz_TLF.xls
2012-04-17 14:28 - 2012-04-17 14:28 - 0000000 ____D C:\Users\David\AppData\Local\{AE6F1A14-B387-42A5-9BE2-B363942ADF31}
2012-04-17 14:28 - 2012-04-17 14:28 - 0000000 ____D C:\Users\David\AppData\Local\{5C6E33D0-2969-423C-AE54-8CD930F9D738}
2012-04-17 14:11 - 2012-04-17 14:11 - 0000000 ____D C:\Users\David\AppData\Local\{0B5E58C9-5824-4864-A6B9-53BCE7ED6F7E}
2012-04-17 14:11 - 2012-04-17 14:11 - 0000000 ____D C:\Users\David\AppData\Local\{018C9489-7539-4670-AC85-DF146FFD71DF}
2012-04-16 06:24 - 2012-04-16 03:28 - 0058782 ____A C:\OTL.Txt
2012-04-16 06:24 - 2012-04-16 03:28 - 0019538 ____A C:\Extras.Txt
2012-04-15 19:22 - 2012-04-15 19:22 - 0065536 __ASH C:\Windows\System32\config\COMPONENTS{88a6a1c9-57bd-11e0-af24-001e3777819a}.TxR.blf
2012-04-09 18:56 - 2012-04-09 18:56 - 0000000 ____D C:\Users\David\AppData\Local\{2334A902-3CBD-4FFB-88A5-1BA3953D4778}
2012-04-09 18:56 - 2012-04-09 18:56 - 0000000 ____D C:\Users\David\AppData\Local\{000D2179-8D69-4DD7-BFB9-973877490E25}
2012-04-09 18:16 - 2012-04-09 18:15 - 0000000 ____D C:\Users\David\AppData\Local\{DE16C105-7869-49D1-9242-FE6602AE2914}
2012-04-09 18:15 - 2012-04-09 18:15 - 0000000 ____D C:\Users\David\AppData\Local\{EDE744F5-A7FF-439D-A315-C8E88E1EDD4F}
2012-04-05 19:59 - 2012-02-27 19:45 - 0000000 ____D C:\Users\All Users\CanonIJPLM
2012-04-05 19:59 - 2012-02-27 19:45 - 0000000 ____D C:\ProgramData\CanonIJPLM
2012-04-04 22:03 - 2012-04-04 22:02 - 0000000 ____D C:\Users\David\AppData\Local\{E6C1F8E9-6C64-4F63-9877-BCF8F0F14338}
2012-04-04 22:03 - 2010-11-16 22:58 - 0001096 ____A C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2012-04-04 22:02 - 2010-10-17 21:21 - 1118539 ____A C:\Windows\WindowsUpdate.log
2012-04-03 18:52 - 2012-04-03 18:52 - 0000000 ____D C:\Users\David\AppData\Local\{F5EE9A91-B0EF-4686-B9F3-47CBEA6D74C7}
2012-04-03 18:52 - 2012-04-03 18:52 - 0000000 ____D C:\Users\David\AppData\Local\{387FD345-4B38-4A24-9A04-054264FFA7F0}
2012-04-02 19:36 - 2012-04-02 19:35 - 0000000 ____D C:\Users\David\AppData\Local\{3E32F5DD-FB69-457E-A624-2F123CB7A8D9}
2012-04-02 19:35 - 2012-04-02 19:35 - 0000000 ____D C:\Users\David\AppData\Local\{3E858585-37B1-4A13-B89E-20407A7CB151}
2012-04-01 18:54 - 2010-10-17 21:31 - 1498506 ____A C:\Windows\System32\PerfStringBackup.INI
2012-04-01 18:52 - 2012-04-01 18:52 - 0000000 ____D C:\Users\David\AppData\Local\{901E1C5F-D0DD-4C2B-A668-C00B7C9C67B6}
2012-04-01 18:51 - 2012-04-01 18:51 - 0000000 ____D C:\Users\David\AppData\Local\{5567838F-7506-43E0-B61B-8EDF976DD6F1}
2012-04-01 18:51 - 2010-10-17 22:13 - 0000000 ____D C:\Users\David\AppData\Roaming\Apple Computer
2012-04-01 18:47 - 2012-04-01 18:47 - 0001753 ____A C:\Users\Public\Desktop\iTunes.lnk
2012-04-01 18:47 - 2012-04-01 18:47 - 0000000 ____D C:\Program Files\iTunes
2012-04-01 18:47 - 2012-04-01 18:47 - 0000000 ____D C:\Program Files\iPod
2012-04-01 18:47 - 2010-10-17 22:11 - 0000000 ____D C:\Program Files\Common Files\Apple
2012-03-21 23:40 - 2012-03-21 23:40 - 0000000 ____D C:\Users\David\AppData\Local\{98FAB908-9C9F-454E-A0C9-4123F9EF0C36}
2012-03-21 23:40 - 2012-03-21 23:40 - 0000000 ____D C:\Users\David\AppData\Local\{7157B293-6B76-49F9-A3FA-45E3C335658C}
2012-03-21 23:38 - 2009-07-14 06:33 - 0411440 ____A C:\Windows\System32\FNTCACHE.DAT
2012-03-21 23:37 - 2010-10-17 21:47 - 0035272 ____A C:\Windows\PFRO.log
2012-03-18 19:20 - 2012-03-18 19:20 - 0020111 ____A C:\Users\David\Desktop\BFTV Bild.png
2012-03-15 21:30 - 2012-03-15 21:30 - 0016896 ____A C:\Users\David\Desktop\Ferien BK.xls
2012-03-15 21:09 - 2009-07-14 04:04 - 0000499 ____A C:\Windows\win.ini
2012-03-12 23:40 - 2012-03-12 23:40 - 0000000 ____D C:\Users\David\AppData\Local\{3103B713-3633-4AB6-A301-C681BCD74556}
2012-03-12 23:40 - 2012-03-12 23:39 - 0000000 ____D C:\Users\David\AppData\Local\{DA59A69E-0B75-4F7F-B595-EA85EE63DBDD}
2012-03-12 20:04 - 2012-03-12 20:04 - 0000000 ____D C:\Users\David\AppData\Local\{45455288-F40B-4EB8-B98D-1EE7CC9B20AC}
2012-03-12 20:04 - 2012-03-12 20:03 - 0000000 ____D C:\Users\David\AppData\Local\{3654259C-2062-4A2F-84FD-4BD65EBB3AE2}
2012-03-12 19:57 - 2009-07-14 04:37 - 0000000 ____D C:\Windows\System32\de-DE
2012-03-11 20:22 - 2012-03-11 20:19 - 0004638 ____A C:\Windows\IE9_main.log
2012-03-11 20:21 - 2012-03-11 20:21 - 9705472 ____A (Microsoft Corporation) C:\Windows\System32\ieframe.dll
2012-03-11 20:21 - 2012-03-11 20:21 - 3695416 ____A (Microsoft Corporation) C:\Windows\System32\ieapfltr.dat
2012-03-11 20:21 - 2012-03-11 20:21 - 2382848 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.tlb
2012-03-11 20:21 - 2012-03-11 20:21 - 1798656 ____A (Microsoft Corporation) C:\Windows\System32\jscript9.dll
2012-03-11 20:21 - 2012-03-11 20:21 - 1792000 ____A (Microsoft Corporation) C:\Windows\System32\iertutil.dll
2012-03-11 20:21 - 2012-03-11 20:21 - 1427456 ____A (Microsoft Corporation) C:\Windows\System32\inetcpl.cpl
2012-03-11 20:21 - 2012-03-11 20:21 - 12282368 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.dll
2012-03-11 20:21 - 2012-03-11 20:21 - 1127424 ____A (Microsoft Corporation) C:\Windows\System32\wininet.dll
2012-03-11 20:21 - 2012-03-11 20:21 - 1103360 ____A (Microsoft Corporation) C:\Windows\System32\urlmon.dll
2012-03-11 20:21 - 2012-03-11 20:21 - 0716800 ____A (Microsoft Corporation) C:\Windows\System32\jscript.dll
2012-03-11 20:21 - 2012-03-11 20:21 - 0580608 ____A (Microsoft Corporation) C:\Windows\System32\msfeeds.dll
2012-03-11 20:21 - 2012-03-11 20:21 - 0434176 ____A (Microsoft Corporation) C:\Windows\System32\ieapfltr.dll
2012-03-11 20:21 - 2012-03-11 20:21 - 0420864 ____A (Microsoft Corporation) C:\Windows\System32\vbscript.dll
2012-03-11 20:21 - 2012-03-11 20:21 - 0367104 ____A (Microsoft Corporation) C:\Windows\System32\html.iec
2012-03-11 20:21 - 2012-03-11 20:21 - 0353792 ____A (Microsoft Corporation) C:\Windows\System32\dxtmsft.dll
2012-03-11 20:21 - 2012-03-11 20:21 - 0353584 ____A (Microsoft Corporation) C:\Windows\System32\iedkcs32.dll
2012-03-11 20:21 - 2012-03-11 20:21 - 0231936 ____A (Microsoft Corporation) C:\Windows\System32\url.dll
2012-03-11 20:21 - 2012-03-11 20:21 - 0227840 ____A (Microsoft Corporation) C:\Windows\System32\ieaksie.dll
2012-03-11 20:21 - 2012-03-11 20:21 - 0223232 ____A (Microsoft Corporation) C:\Windows\System32\dxtrans.dll
2012-03-11 20:21 - 2012-03-11 20:21 - 0203776 ____A (Microsoft Corporation) C:\Windows\System32\webcheck.dll
2012-03-11 20:21 - 2012-03-11 20:21 - 0176640 ____A (Microsoft Corporation) C:\Windows\System32\ieui.dll
2012-03-11 20:21 - 2012-03-11 20:21 - 0163840 ____A (Microsoft Corporation) C:\Windows\System32\ieakui.dll
2012-03-11 20:21 - 2012-03-11 20:21 - 0162304 ____A (Microsoft Corporation) C:\Windows\System32\msrating.dll
2012-03-11 20:21 - 2012-03-11 20:21 - 0161792 ____A (Microsoft Corporation) C:\Windows\System32\msls31.dll
2012-03-11 20:21 - 2012-03-11 20:21 - 0152064 ____A (Microsoft Corporation) C:\Windows\System32\wextract.exe
2012-03-11 20:21 - 2012-03-11 20:21 - 0150528 ____A (Microsoft Corporation) C:\Windows\System32\iexpress.exe
2012-03-11 20:21 - 2012-03-11 20:21 - 0142848 ____A (Microsoft Corporation) C:\Windows\System32\ieUnatt.exe
2012-03-11 20:21 - 2012-03-11 20:21 - 0130560 ____A (Microsoft Corporation) C:\Windows\System32\ieakeng.dll
2012-03-11 20:21 - 2012-03-11 20:21 - 0123392 ____A (Microsoft Corporation) C:\Windows\System32\occache.dll
2012-03-11 20:21 - 2012-03-11 20:21 - 0118784 ____A (Microsoft Corporation) C:\Windows\System32\iepeers.dll
2012-03-11 20:21 - 2012-03-11 20:21 - 0110592 ____A (Microsoft Corporation) C:\Windows\System32\IEAdvpack.dll
2012-03-11 20:21 - 2012-03-11 20:21 - 0101888 ____A (Microsoft Corporation) C:\Windows\System32\admparse.dll
2012-03-11 20:21 - 2012-03-11 20:21 - 0086528 ____A (Microsoft Corporation) C:\Windows\System32\iesysprep.dll
2012-03-11 20:21 - 2012-03-11 20:21 - 0078848 ____A (Microsoft Corporation) C:\Windows\System32\inseng.dll
2012-03-11 20:21 - 2012-03-11 20:21 - 0076800 ____A (Microsoft Corporation) C:\Windows\System32\SetIEInstalledDate.exe
2012-03-11 20:21 - 2012-03-11 20:21 - 0074752 ____A (Microsoft Corporation) C:\Windows\System32\RegisterIEPKEYs.exe
2012-03-11 20:21 - 2012-03-11 20:21 - 0074752 ____A (Microsoft Corporation) C:\Windows\System32\iesetup.dll
2012-03-11 20:21 - 2012-03-11 20:21 - 0074240 ____A (Microsoft Corporation) C:\Windows\System32\ie4uinit.exe
2012-03-11 20:21 - 2012-03-11 20:21 - 0072822 ____A C:\Windows\System32\ieuinit.inf
2012-03-11 20:21 - 2012-03-11 20:21 - 0072704 ____A (Microsoft Corporation) C:\Windows\System32\mshtmled.dll
2012-03-11 20:21 - 2012-03-11 20:21 - 0066048 ____A (Microsoft Corporation) C:\Windows\System32\icardie.dll
2012-03-11 20:21 - 2012-03-11 20:21 - 0065024 ____A (Microsoft Corporation) C:\Windows\System32\jsproxy.dll
2012-03-11 20:21 - 2012-03-11 20:21 - 0063488 ____A (Microsoft Corporation) C:\Windows\System32\tdc.ocx
2012-03-11 20:21 - 2012-03-11 20:21 - 0054272 ____A (Microsoft Corporation) C:\Windows\System32\pngfilt.dll
2012-03-11 20:21 - 2012-03-11 20:21 - 0048640 ____A (Microsoft Corporation) C:\Windows\System32\mshtmler.dll
2012-03-11 20:21 - 2012-03-11 20:21 - 0041472 ____A (Microsoft Corporation) C:\Windows\System32\msfeedsbs.dll
2012-03-11 20:21 - 2012-03-11 20:21 - 0035840 ____A (Microsoft Corporation) C:\Windows\System32\imgutil.dll
2012-03-11 20:21 - 2012-03-11 20:21 - 0031744 ____A (Microsoft Corporation) C:\Windows\System32\iernonce.dll
2012-03-11 20:21 - 2012-03-11 20:21 - 0023552 ____A (Microsoft Corporation) C:\Windows\System32\licmgr10.dll
2012-03-11 20:21 - 2012-03-11 20:21 - 0011776 ____A (Microsoft Corporation) C:\Windows\System32\mshta.exe
2012-03-11 20:21 - 2012-03-11 20:21 - 0010752 ____A (Microsoft Corporation) C:\Windows\System32\msfeedssync.exe
2012-03-11 20:16 - 2012-03-11 20:16 - 0000000 ____D C:\Users\David\AppData\Local\{B277AD36-4091-4267-BB62-D3A3938991A5}
2012-03-11 20:16 - 2012-03-11 20:16 - 0000000 ____D C:\Users\David\AppData\Local\{67DEEC2F-697A-4DF5-8A58-5972D3AC8C36}
2012-03-04 14:34 - 2012-03-04 12:55 - 0029184 ____A C:\Users\David\Desktop\Lebenslauf_new.doc
2012-03-04 14:33 - 2012-03-04 13:47 - 3247104 ____A C:\Users\David\Desktop\Bewerbung Deckblatt.ppt
2012-03-04 12:39 - 2012-03-04 12:39 - 0034816 ____A C:\Users\David\Desktop\Lebenslauf für Stellenbewerbung.doc
2012-03-03 21:31 - 2012-03-03 19:01 - 0027648 ____A C:\Users\David\Desktop\Bewerbung.doc
2012-03-01 08:20 - 2012-03-01 08:20 - 0000000 ____D C:\Users\David\AppData\Local\{5680FBC4-027C-4F66-BEEF-7DC854273244}
2012-03-01 08:19 - 2012-03-01 08:19 - 0000000 ____D C:\Users\David\AppData\Local\{E67A1408-01B9-481F-AD60-0307030544ED}
2012-02-27 20:30 - 2012-02-27 20:30 - 0000000 ____D C:\Users\David\AppData\Local\{ADE0BEF9-57A7-4E7A-956D-CFDAD5D295C1}
2012-02-27 20:30 - 2012-02-27 20:30 - 0000000 ____D C:\Users\David\AppData\Local\{5A04F38F-4864-4DD8-A1E8-E26786F380E0}
2012-02-27 19:47 - 2012-02-27 19:47 - 0000000 ___HD C:\Users\All Users\CanonIJMyPrinter
2012-02-27 19:47 - 2012-02-27 19:47 - 0000000 ___HD C:\ProgramData\CanonIJMyPrinter
2012-02-27 19:47 - 2011-10-09 19:31 - 0000000 ____D C:\Program Files\Canon
2012-02-27 19:45 - 2012-02-27 19:45 - 0000000 ___HD C:\Users\All Users\CanonIJFAX
2012-02-27 19:45 - 2012-02-27 19:45 - 0000000 ___HD C:\ProgramData\CanonIJFAX
2012-02-27 19:45 - 2012-02-27 19:45 - 0000000 ____D C:\Users\All Users\Canon IJ Network Tool
2012-02-27 19:45 - 2012-02-27 19:45 - 0000000 ____D C:\ProgramData\Canon IJ Network Tool
2012-02-27 19:45 - 2009-07-14 06:52 - 0000000 ____D C:\Windows\twain_32
2012-02-27 19:45 - 2009-07-14 04:37 - 0000000 __RSD C:\Windows\Media
2012-02-27 19:43 - 2012-02-27 19:43 - 0000000 ____D C:\Users\All Users\CanonIJWSpt
2012-02-27 19:43 - 2012-02-27 19:43 - 0000000 ____D C:\ProgramData\CanonIJWSpt
2012-02-27 19:40 - 2012-02-27 19:40 - 0000000 ___HD C:\Windows\System32\CanonIJ Uninstaller Information
2012-02-27 19:39 - 2012-02-27 19:39 - 0000000 ___HD C:\Program Files\CanonBJ
2012-02-27 19:39 - 2012-02-27 19:39 - 0000000 ____D C:\Windows\System32\STRING
2012-02-19 21:59 - 2011-12-06 20:55 - 0414368 ____A (Adobe Systems Incorporated) C:\Windows\System32\FlashPlayerCPLApp.cpl
2012-02-19 21:58 - 2012-02-19 21:58 - 0000000 ____D C:\Users\David\AppData\Local\{8FB367EC-FD00-4DF6-842D-51FAC52AD592}
2012-02-19 21:57 - 2012-02-19 21:57 - 0000000 ____D C:\Users\David\AppData\Local\{853A0345-6631-4E86-94B5-6289CC0F830D}
2012-02-19 21:55 - 2010-10-17 21:26 - 0000174 ___SH C:\Users\David\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\desktop.ini
2012-02-19 21:54 - 2010-10-17 21:45 - 0002322 ____A C:\Users\Public\Desktop\Norton 360.lnk
2012-02-19 21:53 - 2010-10-17 21:57 - 0000000 ____D C:\Program Files\Microsoft Silverlight
2012-02-19 21:50 - 2012-02-19 21:39 - 0007597 ____A C:\Users\David\AppData\Local\Resmon.ResmonCfg
2012-02-19 21:46 - 2011-06-17 23:21 - 0000000 ___HD C:\Program Files\InstallShield Installation Information
2012-02-19 21:44 - 2012-02-19 21:44 - 0000000 ____D C:\Users\David\AppData\Local\ElevatedDiagnostics
2012-02-15 11:01 - 2012-02-15 11:01 - 4547944 ____A (Apple, Inc.) C:\Windows\System32\usbaaplrc.dll
2012-02-15 11:01 - 2012-02-15 11:01 - 0043520 ____A (Apple, Inc.) C:\Windows\System32\Drivers\usbaapl.sys
2012-02-15 07:44 - 2012-03-13 23:51 - 0826368 ____A (Microsoft Corporation) C:\Windows\System32\rdpcore.dll
2012-02-15 06:22 - 2012-03-13 23:51 - 0177152 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\rdpwd.sys
2012-02-15 06:22 - 2012-03-13 23:51 - 0024064 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\tdtcp.sys
2012-02-15 01:41 - 2012-02-15 01:40 - 0000000 ____D C:\Users\David\AppData\Local\{2CC84989-B0F1-4FEF-88D4-3DD5B893C7FE}
2012-02-15 01:40 - 2012-02-15 01:40 - 0000000 ____D C:\Users\David\AppData\Local\{3ACF1AAA-29AE-4EB2-9DBA-FD144ADDBB96}
2012-02-10 07:41 - 2012-03-14 19:56 - 1170944 ____A (Microsoft Corporation) C:\Windows\System32\d3d10warp.dll
2012-02-10 07:41 - 2012-03-14 19:56 - 1074176 ____A (Microsoft Corporation) C:\Windows\System32\DWrite.dll
2012-02-10 07:41 - 2012-03-14 19:56 - 0739840 ____A (Microsoft Corporation) C:\Windows\System32\d2d1.dll
2012-02-10 07:41 - 2012-03-14 19:56 - 0218624 ____A (Microsoft Corporation) C:\Windows\System32\d3d10_1core.dll
2012-02-10 07:41 - 2012-03-14 19:56 - 0161792 ____A (Microsoft Corporation) C:\Windows\System32\d3d10_1.dll
2012-02-09 23:42 - 2012-02-09 23:33 - 1220096 ____A C:\Users\David\Desktop\Gutschein für 1mal.doc
2012-02-07 23:22 - 2010-10-17 21:45 - 0000000 ____D C:\Program Files\Symantec
2012-02-07 23:21 - 2010-10-17 21:45 - 0126584 ____A (Symantec Corporation) C:\Windows\System32\Drivers\SYMEVENT.SYS
2012-02-07 23:21 - 2010-10-17 21:45 - 0007468 ____A C:\Windows\System32\Drivers\SYMEVENT.CAT
2012-02-07 23:21 - 2010-10-17 21:45 - 0000806 ____A C:\Windows\System32\Drivers\SYMEVENT.INF
2012-02-07 23:18 - 2011-06-17 16:58 - 0001940 ____A C:\Users\David\AppData\Local\{96C87F53-AC72-4604-A9CC-186A49F17F3C}.ini
2012-02-03 10:34 - 2010-11-22 20:46 - 0000000 ____D C:\Users\David\Desktop\Feuerwehr
2012-02-03 06:01 - 2012-03-14 19:57 - 2341376 ____A (Microsoft Corporation) C:\Windows\System32\win32k.sys
2012-01-31 21:57 - 2012-01-31 21:57 - 0006451 ____A C:\Users\David\Desktop\Rechnungsausgang.PNG
2012-01-29 12:47 - 2012-01-29 12:47 - 0024487 ____A C:\Users\David\Desktop\Offiziersvorbereitungskurs_AdF_Programm_2012_BFVDT_v0.2[1].pdf
2012-01-25 07:44 - 2012-03-13 23:51 - 0129536 ____A (Microsoft Corporation) C:\Windows\System32\rdpcorekmts.dll
2012-01-25 07:44 - 2012-03-13 23:51 - 0057856 ____A (Microsoft Corporation) C:\Windows\System32\rdpwsx.dll
2012-01-25 07:40 - 2012-03-13 23:51 - 0008192 ____A (Microsoft Corporation) C:\Windows\System32\rdrmemptylst.exe

========================= Known DLLs (Whitelisted) ============

========================= Bamital & volsnap Check ============

C:\Windows\explorer.exe => MD5 is legit

C:\Windows\System32\winlogon.exe => MD5 is legit

C:\Windows\System32\wininit.exe => MD5 is legit

C:\Windows\System32\svchost.exe => MD5 is legit

C:\Windows\System32\User32.dll
[2009-07-14 01:24] - [2009-07-14 03:16] - 0811520 ____A (Microsoft Corporation) 34B7E222E81FAFA885F0C5F2CFA56861

C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit

========================= Memory info ======================

Percentage of memory in use: 26%
Total physical RAM: 3070.43 MB
Available physical RAM: 2248.35 MB
Total Pagefile: 6139.14 MB
Available Pagefile: 5167.84 MB
Total Virtual: 2047.88 MB
Available Virtual: 1958.08 MB

======================= Partitions =========================

1 Drive c: () (Fixed) (Total:223.13 GB) (Free:156.33 GB) NTFS ==>[Drive with boot components (obtanied from BCD)]
2 Drive d: (HP_RECOVERY) (Fixed) (Total:9.75 GB) (Free:2.79 GB) NTFS ==>[System with boot components (obtained from reading drive)]
4 Drive f: () (Removable) (Total:1.89 GB) (Free:0.36 GB) FAT

Datentr„ger ### Status Gr”áe Frei Dyn GPT
--------------- ------------- ------- ------- --- ---
Datentr„ger 0 Online 232 GB 1024 KB
Datentr„ger 1 Online 1936 MB 0 B

Partitions of Disk 0:
===============

Partition ### Typ Gr”áe Offset
------------- ---------------- ------- -------
Partition 1 Prim„r 223 GB 31 KB
Partition 2 Prim„r 9 GB 223 GB

======================================================================================================

Disk: 0
Partition 1
Typ : 07
Versteckt: Nein
Aktiv : Ja

Volume ### Bst Bezeichnung DS Typ Gr”áe Status Info
---------- --- ----------- ----- ---------- ------- --------- --------
* Volume 1 C NTFS Partition 223 GB Fehlerfre System (partition with boot components)

======================================================================================================

Disk: 0
Partition 2
Typ : 07
Versteckt: Nein
Aktiv : Nein

Volume ### Bst Bezeichnung DS Typ Gr”áe Status Info
---------- --- ----------- ----- ---------- ------- --------- --------
* Volume 2 D HP_RECOVERY NTFS Partition 9 GB Fehlerfre

======================================================================================================

Partitions of Disk 1:
===============

Partition ### Typ Gr”áe Offset
------------- ---------------- ------- -------
Partition 1 Prim„r 1935 MB 16 KB

======================================================================================================

Disk: 1
Partition 1
Typ : 06
Versteckt: Nein
Aktiv : Ja

Volume ### Bst Bezeichnung DS Typ Gr”áe Status Info
---------- --- ----------- ----- ---------- ------- --------- --------
* Volume 3 F FAT Wechselmed 1935 MB Fehlerfre

======================================================================================================

==========================================================

Last Boot: 2011-07-04 16:17

======================= End Of Log ==========================

Suisa Virus blockiert meinen Windows 7 Rechner in jedem Modus meines Laptops

Plagegeister aller Art und deren Bekämpfung: Suisa Virus blockiert meinen Windows 7 Rechner in jedem Modus meines Laptops

Suisa Virus blockiert meinen Windows 7 Rechner in jedem Modus meines Laptops

Ähnliche Themen: Suisa Virus blockiert meinen Windows 7 Rechner in jedem Modus meines Laptops