Zurück   Trojaner-Board > Malware entfernen > Log-Analyse und Auswertung
Windows 7 Start bleibt in DOS Fenster hängen

Windows 7 Start bleibt in DOS Fenster hängen


Log-Analyse und Auswertung: Windows 7 Start bleibt in DOS Fenster hängen

Windows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML.

 
Vorheriger Beitrag Vorheriger Beitrag   Nächster Beitrag Nächster Beitrag
Alt 17.06.2013, 11:47   #1
Frideus
 
Windows 7 Start bleibt in DOS Fenster hängen - Standard

Windows 7 Start bleibt in DOS Fenster hängen


Code:
ATTFilter
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 16-06-2013 01
Ran by SYSTEM on 17-06-2013 12:31:57
Running from F:\
Windows 7 Home Premium (X64) OS Language: German Standard
Internet Explorer Version 9
Boot Mode: Recovery

The current controlset is ControlSet001
ATTENTION!:=====> FRST is updated to run from normal or Safe mode to produce a full FRST.txt log and an extra Addition.txt log.

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [TPwrMain] %ProgramFiles%\TOSHIBA\Power Saver\TPwrMain.EXE [567720 2010-11-05] (TOSHIBA Corporation)
HKLM\...\Run: [HSON] %ProgramFiles%\TOSHIBA\TBS\HSON.exe [296824 2010-09-25] (TOSHIBA Corporation)
HKLM\...\Run: [SmoothView] %ProgramFiles%\Toshiba\SmoothView\SmoothView.exe [570680 2009-08-13] (TOSHIBA Corporation)
HKLM\...\Run: [00TCrdMain] %ProgramFiles%\TOSHIBA\FlashCards\TCrdMain.exe [915320 2010-10-28] (TOSHIBA Corporation)
HKLM\...\Run: [SynTPEnh] %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe [2107176 2010-03-11] (Synaptics Incorporated)
HKLM\...\Run: [SmartFaceVWatcher] %ProgramFiles%\Toshiba\SmartFaceV\SmartFaceVWatcher.exe [238080 2009-10-19] (TOSHIBA Corporation)
HKLM\...\Run: [Teco] "%ProgramFiles%\TOSHIBA\TECO\Teco.exe" /r [1519016 2010-07-28] (TOSHIBA Corporation)
HKLM\...\Run: [TosSENotify] C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosWaitSrv.exe [709976 2010-02-05] (TOSHIBA Corporation)
HKLM\...\Run: [TosWaitSrv] %ProgramFiles%\TOSHIBA\TPHM\TosWaitSrv.exe [711576 2010-11-16] (TOSHIBA Corporation)
HKLM\...\Run: [TosNC] %ProgramFiles%\Toshiba\BulletinBoard\TosNcCore.exe [597416 2010-11-16] (TOSHIBA Corporation)
HKLM\...\Run: [TosReelTimeMonitor] %ProgramFiles%\TOSHIBA\ReelTime\TosReelTimeMonitor.exe [38304 2010-07-09] (TOSHIBA Corporation)
HKLM\...\Run: [TosVolRegulator] C:\Program Files\TOSHIBA\TosVolRegulator\TosVolRegulator.exe [24376 2009-11-11] (TOSHIBA Corporation)
HKLM\...\Run: [Toshiba TEMPRO] C:\Program Files (x86)\Toshiba TEMPRO\TemproTray.exe [1050072 2010-05-11] (Toshiba Europe GmbH)
HKLM\...\Run: [Toshiba Registration] C:\Program Files\Toshiba\Registration\ToshibaReminder.exe [136136 2010-04-19] (Toshiba Europe GmbH)
HKLM-x32\...\Run: [NBAgent] "C:\Program Files (x86)\Nero\Nero 10\Nero BackItUp\NBAgent.exe" /WinStart [1234216 2010-09-02] (Nero AG)
HKLM-x32\...\Run: [Microsoft Default Manager] "C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Default Manager\DefMgr.exe" -resume [288088 2009-11-11] (Microsoft Corporation)
HKLM-x32\...\Run: [KeNotify] C:\Program Files (x86)\TOSHIBA\Utilities\KeNotify.exe [35440 2010-09-14] (TOSHIBA CORPORATION)
HKLM-x32\...\Run: [ITSecMng] %ProgramFiles%\TOSHIBA\Bluetooth Toshiba Stack\ItSecMng.exe /START [83336 2009-07-22] (TOSHIBA CORPORATION)
HKLM-x32\...\Run: [TSleepSrv] %ProgramFiles(x86)%\TOSHIBA\TOSHIBA Sleep Utility\TSleepSrv.exe [x]
HKLM-x32\...\Run: [TRCMan] C:\Program Files (x86)\TOSHIBA\TRCMan\TRCMan.exe [714104 2010-11-02] (TOSHIBA Corporation)
HKLM-x32\...\Run: [TWebCamera] "C:\Program Files (x86)\TOSHIBA\TOSHIBA Web Camera Application\TWebCamera.exe" autorun [2475384 2010-11-02] (TOSHIBA CORPORATION.)
HKLM-x32\...\Run: [KiesTrayAgent] C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe [3508112 2011-09-29] (Samsung Electronics Co., Ltd.)
HKLM-x32\...\Run: [DATAMNGR] C:\PROGRA~2\WI3C8A~1\Datamngr\DATAMN~1.EXE [1694608 2011-11-09] (Bandoo Media, inc)
HKLM-x32\...\Run: [SweetIM] C:\Program Files (x86)\SweetIM\Messenger\SweetIM.exe [114992 2011-08-01] (SweetIM Technologies Ltd.)
HKLM-x32\...\Run: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" [59280 2012-11-28] (Apple Inc.)
HKLM-x32\...\Run: [HP Software Update] C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [49208 2011-10-28] (Hewlett-Packard)
HKLM-x32\...\Run: []  [x]
HKLM-x32\...\Run: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe" [152544 2012-12-12] (Apple Inc.)
HKLM-x32\...\Run: [Anvi Smart Defender] C:\Program Files (x86)\Anvisoft\Anvi Smart Defender\ASDTray.exe [1563720 2013-06-08] (Anvisoft)
HKLM-x32\...\Run: [Anvi AD Blocker] "C:\Program Files (x86)\Anvisoft\Anvi Smart Defender\toolbox\adblocker\ADBlockerTray.exe" -tray [1245904 2013-06-07] (Anvisoft)
HKU\Berzad\...\Run: [swg] "C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [39408 2011-10-07] (Google Inc.)
HKU\Berzad\...\Run: [KiesPDLR] C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe [20880 2011-09-29] ()
HKU\Berzad\...\Run: [HP Photosmart 7520 series (NET)] "C:\Program Files\HP\HP Photosmart 7520 series\Bin\ScanToPCActivationApp.exe" -deviceID "CN27I1B0TS05VV:NW" -scfn "HP Photosmart 7520 series (NET)" -AutoStart 1 [2552168 2012-05-08] (Hewlett-Packard Co.)
HKU\Berzad\...\Run: [GoogleChromeAutoLaunch_2FEB5AF89226646721D99EFE4DB694EE] "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-startup-window [825808 2013-05-29] (Google Inc.)
HKU\Berzad\...\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun [18642024 2013-02-28] (Skype Technologies S.A.)
HKU\Berzad\...\Run: [Optimizer Pro] C:\Program Files (x86)\Optimizer Pro\OptProLauncher.exe [81952 2012-10-21] (PC Utilities Pro)
HKU\Berzad\...\Run: [Driver Pro] C:\Program Files (x86)\Driver Pro\DPLauncher.exe [340512 2012-10-30] (PC Utilities Pro)
HKU\Berzad\...\Winlogon: [Userinit] C:\Windows\system32\userinit.exe [30720 2010-11-20] (Microsoft Corporation)
HKU\Berzad\...\Winlogon: [Shell] cmd.exe [345088 2010-11-20] (Microsoft Corporation) <==== ATTENTION 
HKU\Default\...\Run: [TOSHIBA Online Product Information] C:\Program Files (x86)\TOSHIBA\TOSHIBA Online Product Information\topi.exe [4581280 2010-03-03] (TOSHIBA)
HKU\Default User\...\Run: [TOSHIBA Online Product Information] C:\Program Files (x86)\TOSHIBA\TOSHIBA Online Product Information\topi.exe [4581280 2010-03-03] (TOSHIBA)
HKU\Public\...\Winlogon: [Userinit] C:\Windows\system32\userinit.exe [30720 2010-11-20] (Microsoft Corporation)
HKU\UpdatusUser\...\Run: [TOSHIBA Online Product Information] C:\Program Files (x86)\TOSHIBA\TOSHIBA Online Product Information\topi.exe [4581280 2010-03-03] (TOSHIBA)
HKU\UpdatusUser\...\Run: []  [x]
HKU\UpdatusUser\...\Run: [swg] "C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [39408 2011-10-07] (Google Inc.)
HKU\UpdatusUser\...\Run: [KiesPDLR] C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe [20880 2011-09-29] ()
HKU\UpdatusUser\...\Run: [HP Photosmart 7520 series (NET)] "C:\Program Files\HP\HP Photosmart 7520 series\Bin\ScanToPCActivationApp.exe" -deviceID "CN27I1B0TS05VV:NW" -scfn "HP Photosmart 7520 series (NET)" -AutoStart 1 [2552168 2012-05-08] (Hewlett-Packard Co.)
HKU\UpdatusUser\...\Run: [GoogleChromeAutoLaunch_2FEB5AF89226646721D99EFE4DB694EE] "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-startup-window [825808 2013-05-29] (Google Inc.)
HKU\UpdatusUser\...\Run: [Browser Infrastructure Helper] C:\Users\UpdatusUser\AppData\Local\Smartbar\Application\QuickShare.exe startup [x]
HKU\UpdatusUser\...\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun [18642024 2013-02-28] (Skype Technologies S.A.)
HKU\UpdatusUser\...\RunOnce: [SysOff] C:\Windows\SysWOW64\SYSPREP\ClosespV.exe [x]
HKU\UpdatusUser\...\RunOnce: [FlashPlayerUpdate] C:\windows\SysWOW64\Macromed\Flash\FlashUtil11f_ActiveX.exe -update activex [250016 2012-03-03] (Adobe Systems, Inc.)
HKU\UpdatusUser\...\Winlogon: [Userinit] C:\Windows\system32\userinit.exe [30720 2010-11-20] (Microsoft Corporation)
Startup: C:\Users\Berzad\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Tintenwarnungen überwachen - HP Photosmart 7520 series (Netzwerk).lnk
ShortcutTarget: Tintenwarnungen überwachen - HP Photosmart 7520 series (Netzwerk).lnk -> C:\Program Files\HP\HP Photosmart 7520 series\bin\HPStatusBL.dll (Hewlett-Packard Co.)
Startup: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\TRDCReminder.lnk
ShortcutTarget: TRDCReminder.lnk -> C:\Program Files (x86)\TOSHIBA\TRDCReminder\TRDCReminder.exe (TOSHIBA Europe)
Startup: C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\TRDCReminder.lnk
ShortcutTarget: TRDCReminder.lnk -> C:\Program Files (x86)\TOSHIBA\TRDCReminder\TRDCReminder.exe (TOSHIBA Europe)

==================== Services (Whitelisted) =================

S2 AdblockerSrv; C:\Program Files (x86)\Anvisoft\Anvi Smart Defender\toolbox\adblocker\ADBlockerSrv.exe [315600 2013-06-07] ()
S2 asdsrv; C:\Program Files (x86)\Anvisoft\Anvi Smart Defender\ASDSrv.exe [739400 2013-06-08] (Anvisoft)
S2 IBUpdaterService; C:\ProgramData\IBUpdaterService\ibsvc.exe [601056 2012-11-04] ()
S2 NIS; C:\Program Files (x86)\Norton Internet Security\Engine\20.3.1.22\ccSvcHst.exe [144520 2012-12-24] (Symantec Corporation)
S3 TemproMonitoringService; C:\Program Files (x86)\Toshiba TEMPRO\TemproSvc.exe [124368 2010-05-11] (Toshiba Europe GmbH)
S2 TuneUp.UtilitiesSvc; C:\Program Files (x86)\TuneUp Utilities 2013\TuneUpUtilitiesService64.exe [2401632 2012-11-29] (TuneUp Software)

==================== Drivers (Whitelisted) ====================

S2 asdnet; C:\windows\system32\DRIVERS\asdnet.sys [19280 2012-09-07] ()
S2 asdnet; C:\windows\system32\DRIVERS\asdnet.sys [19280 2012-09-07] ()
S1 asdrm; C:\Windows\System32\DRIVERS\asdrm.sys [18768 2012-11-07] (Anvisoft)
S2 asdrs; C:\windows\system32\DRIVERS\asdrs.sys [23376 2012-11-07] (Anvisoft)
S2 asdrs; C:\windows\system32\DRIVERS\asdrs.sys [23376 2012-11-07] (Anvisoft)
S2 asdws; C:\windows\system32\DRIVERS\asdws.sys [17232 2012-11-07] ()
S2 asdws; C:\windows\system32\DRIVERS\asdws.sys [17232 2012-11-07] ()
S1 BHDrvx64; C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.1.0.24\Definitions\BASHDefs\20130531.001\BHDrvx64.sys [1393240 2013-05-31] (Symantec Corporation)
S1 BHDrvx64; C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.1.0.24\Definitions\BASHDefs\20130531.001\BHDrvx64.sys [1393240 2013-05-31] (Symantec Corporation)
S1 ccSet_NIS; C:\Windows\system32\drivers\NISx64\1403010.016\ccSetx64.sys [168096 2012-11-16] (Symantec Corporation)
S1 eeCtrl; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [484512 2013-03-25] (Symantec Corporation)
S1 eeCtrl; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [484512 2013-03-25] (Symantec Corporation)
S3 EraserUtilRebootDrv; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [138912 2012-12-29] (Symantec Corporation)
S1 IDSVia64; C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.1.0.24\Definitions\IPSDefs\20130614.001\IDSvia64.sys [513184 2013-05-14] (Symantec Corporation)
S1 IDSVia64; C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.1.0.24\Definitions\IPSDefs\20130614.001\IDSvia64.sys [513184 2013-05-14] (Symantec Corporation)
S3 mod7700; C:\Windows\System32\Drivers\dvb7700all.sys [961536 2009-06-11] (DiBcom)
S3 NAVENG; C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.1.0.24\Definitions\VirusDefs\20130616.008\ENG64.SYS [126040 2013-05-22] (Symantec Corporation)
S3 NAVENG; C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.1.0.24\Definitions\VirusDefs\20130616.008\ENG64.SYS [126040 2013-05-22] (Symantec Corporation)
S3 NAVEX15; C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.1.0.24\Definitions\VirusDefs\20130616.008\EX64.SYS [2098776 2013-05-22] (Symantec Corporation)
S3 NAVEX15; C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.1.0.24\Definitions\VirusDefs\20130616.008\EX64.SYS [2098776 2013-05-22] (Symantec Corporation)
S1 SRTSP; C:\Windows\System32\Drivers\NISx64\1403010.016\SRTSP64.SYS [796248 2013-01-29] (Symantec Corporation)
S1 SRTSPX; C:\Windows\system32\drivers\NISx64\1403010.016\SRTSPX64.SYS [36952 2013-01-29] (Symantec Corporation)
S0 SymDS; C:\Windows\System32\drivers\NISx64\1403010.016\SYMDS64.SYS [493656 2013-01-22] (Symantec Corporation)
S0 SymEFA; C:\Windows\System32\drivers\NISx64\1403010.016\SYMEFA64.SYS [1139800 2013-01-31] (Symantec Corporation)
S3 SymEvent; C:\windows\system32\Drivers\SYMEVENT64x86.SYS [177312 2012-12-29] (Symantec Corporation)
S1 SymIRON; C:\Windows\system32\drivers\NISx64\1403010.016\Ironx64.SYS [224416 2012-11-16] (Symantec Corporation)
S1 SymNetS; C:\Windows\System32\Drivers\NISx64\1403010.016\SYMNETS.SYS [432800 2013-01-31] (Symantec Corporation)
S3 TuneUpUtilitiesDrv; C:\Program Files (x86)\TuneUp Utilities 2013\TuneUpUtilitiesDriver64.sys [11880 2012-08-28] (TuneUp Software)
S3 Tosrfcom; No ImagePath

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2013-06-17 12:31 - 2013-06-17 12:31 - 00000000 ____D C:\FRST
2013-06-17 08:22 - 2013-06-17 08:22 - 00001511 ____A C:\Users\Public\Desktop\Anvi AD Blocker.lnk
2013-06-17 08:22 - 2013-06-17 08:22 - 00000000 ____D C:\Users\Berzad\AppData\Roaming\Anvisoft
2013-06-17 08:22 - 2012-09-07 06:52 - 00019280 ____A C:\Windows\System32\Drivers\asdnet.sys
2013-06-17 08:21 - 2013-06-17 08:21 - 00001195 ____A C:\Users\Public\Desktop\Anvi Smart Defender.lnk
2013-06-17 08:21 - 2013-06-17 08:21 - 00000000 ____D C:\ProgramData\Anvisoft
2013-06-17 08:21 - 2013-06-17 08:21 - 00000000 ____D C:\Program Files (x86)\Anvisoft
2013-06-17 08:21 - 2012-11-07 08:16 - 00023376 ____A (Anvisoft) C:\Windows\System32\Drivers\asdrs.sys
2013-06-17 08:21 - 2012-11-07 08:16 - 00018768 ____A (Anvisoft) C:\Windows\System32\Drivers\asdrm.sys
2013-06-17 08:21 - 2012-11-07 08:16 - 00017232 ____A C:\Windows\System32\Drivers\asdws.sys
2013-06-16 14:38 - 2013-06-08 15:08 - 01365504 ____A (Microsoft Corporation) C:\Windows\System32\urlmon.dll
2013-06-16 14:38 - 2013-06-08 15:07 - 19233792 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.dll
2013-06-16 14:38 - 2013-06-08 15:06 - 15404544 ____A (Microsoft Corporation) C:\Windows\System32\ieframe.dll
2013-06-16 14:38 - 2013-06-08 15:06 - 02648064 ____A (Microsoft Corporation) C:\Windows\System32\iertutil.dll
2013-06-16 14:38 - 2013-06-08 15:06 - 00526336 ____A (Microsoft Corporation) C:\Windows\System32\ieui.dll
2013-06-16 14:38 - 2013-06-08 13:28 - 02706432 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.tlb
2013-06-16 14:38 - 2013-06-08 12:42 - 01141248 ____A (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-06-16 14:38 - 2013-06-08 12:40 - 14327808 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-06-16 14:38 - 2013-06-08 12:40 - 13760512 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-06-16 14:38 - 2013-06-08 12:40 - 02046976 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-06-16 14:38 - 2013-06-08 12:40 - 00391168 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-06-16 14:38 - 2013-06-08 12:13 - 02706432 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-06-16 14:29 - 2013-06-16 14:31 - 25747872 ____A C:\asdsetup.exe
2013-06-16 14:25 - 2013-06-16 14:25 - 83099648 ____A C:\Windows\System32\config\software.bhv
2013-06-16 14:25 - 2013-06-16 14:25 - 21233664 ____A C:\Windows\System32\config\system.bhv
2013-06-16 14:25 - 2013-06-16 14:25 - 01048576 ____A C:\Windows\System32\config\default.bhv
2013-06-16 14:25 - 2013-06-16 14:25 - 00262144 ____A C:\Windows\System32\config\security.bhv
2013-06-16 14:25 - 2013-06-16 14:25 - 00057344 ____A C:\Windows\System32\config\sam.bhv
2013-06-16 14:01 - 2013-06-16 14:01 - 00000000 ___AD C:\$Anvi Rescue Disk$
2013-06-15 03:11 - 2013-06-15 03:11 - 01026187 ____A C:\ProgramData\2433f433
2013-06-15 03:11 - 2013-06-15 03:11 - 01026172 ____A C:\Users\Berzad\AppData\Local\2433f433
2013-06-15 03:11 - 2013-06-15 03:11 - 01026163 ____A C:\Users\Berzad\AppData\Roaming\2433f433
2013-06-14 07:15 - 2013-06-14 07:15 - 00000000 ____D C:\Users\Berzad\AppData\Local\{7E12ABBB-FE77-4230-8416-431944D16180}
2013-06-14 06:08 - 2013-05-17 02:25 - 00690688 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-06-14 06:08 - 2013-05-17 02:25 - 00493056 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-06-14 06:08 - 2013-05-17 02:25 - 00109056 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-06-14 06:08 - 2013-05-17 02:25 - 00061440 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-06-14 06:08 - 2013-05-17 02:25 - 00033280 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-06-14 06:08 - 2013-05-17 01:59 - 00051712 ____A (Microsoft Corporation) C:\Windows\System32\ie4uinit.exe
2013-06-14 06:08 - 2013-05-17 01:58 - 03958784 ____A (Microsoft Corporation) C:\Windows\System32\jscript9.dll
2013-06-14 06:08 - 2013-05-17 01:58 - 00855552 ____A (Microsoft Corporation) C:\Windows\System32\jscript.dll
2013-06-14 06:08 - 2013-05-17 01:58 - 00603136 ____A (Microsoft Corporation) C:\Windows\System32\msfeeds.dll
2013-06-14 06:08 - 2013-05-17 01:58 - 00136704 ____A (Microsoft Corporation) C:\Windows\System32\iesysprep.dll
2013-06-14 06:08 - 2013-05-17 01:58 - 00067072 ____A (Microsoft Corporation) C:\Windows\System32\iesetup.dll
2013-06-14 06:08 - 2013-05-17 01:58 - 00039936 ____A (Microsoft Corporation) C:\Windows\System32\iernonce.dll
2013-06-14 06:08 - 2013-05-14 13:23 - 00089600 ____A (Microsoft Corporation) C:\Windows\System32\RegisterIEPKEYs.exe
2013-06-14 06:08 - 2013-05-14 09:40 - 00071680 ____A (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2013-06-14 06:07 - 2013-05-17 02:25 - 02877440 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-06-14 06:07 - 2013-05-17 02:25 - 01767936 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-06-14 06:07 - 2013-05-17 02:25 - 00039424 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-06-14 06:07 - 2013-05-17 01:59 - 02241024 ____A (Microsoft Corporation) C:\Windows\System32\wininet.dll
2013-06-14 06:07 - 2013-05-17 01:58 - 00053248 ____A (Microsoft Corporation) C:\Windows\System32\jsproxy.dll
2013-06-13 18:16 - 2013-05-13 06:51 - 01464320 ____A (Microsoft Corporation) C:\Windows\System32\crypt32.dll
2013-06-13 18:16 - 2013-05-13 06:51 - 00184320 ____A (Microsoft Corporation) C:\Windows\System32\cryptsvc.dll
2013-06-13 18:16 - 2013-05-13 06:51 - 00139776 ____A (Microsoft Corporation) C:\Windows\System32\cryptnet.dll
2013-06-13 18:16 - 2013-05-13 06:50 - 00052224 ____A (Microsoft Corporation) C:\Windows\System32\certenc.dll
2013-06-13 18:16 - 2013-05-13 05:45 - 01160192 ____A (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2013-06-13 18:16 - 2013-05-13 05:45 - 00140288 ____A (Microsoft Corporation) C:\Windows\SysWOW64\cryptsvc.dll
2013-06-13 18:16 - 2013-05-13 05:45 - 00103936 ____A (Microsoft Corporation) C:\Windows\SysWOW64\cryptnet.dll
2013-06-13 18:16 - 2013-05-13 04:43 - 01192448 ____A (Microsoft Corporation) C:\Windows\System32\certutil.exe
2013-06-13 18:16 - 2013-05-13 04:08 - 00903168 ____A (Microsoft Corporation) C:\Windows\SysWOW64\certutil.exe
2013-06-13 18:16 - 2013-05-13 04:08 - 00043008 ____A (Microsoft Corporation) C:\Windows\SysWOW64\certenc.dll
2013-06-13 18:16 - 2013-05-10 06:49 - 00030720 ____A (Microsoft Corporation) C:\Windows\System32\cryptdlg.dll
2013-06-13 18:16 - 2013-05-10 04:20 - 00024576 ____A (Microsoft Corporation) C:\Windows\SysWOW64\cryptdlg.dll
2013-06-13 18:16 - 2013-05-08 07:39 - 01910632 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\tcpip.sys
2013-06-13 18:16 - 2013-04-26 06:51 - 00751104 ____A (Microsoft Corporation) C:\Windows\System32\win32spl.dll
2013-06-13 18:16 - 2013-04-26 05:55 - 00492544 ____A (Microsoft Corporation) C:\Windows\SysWOW64\win32spl.dll
2013-06-13 18:16 - 2013-04-26 00:30 - 01505280 ____A (Microsoft Corporation) C:\Windows\SysWOW64\d3d11.dll
2013-06-13 18:16 - 2013-04-17 08:02 - 01230336 ____A (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2013-06-13 18:16 - 2013-04-17 07:24 - 01424384 ____A (Microsoft Corporation) C:\Windows\System32\WindowsCodecs.dll
2013-06-13 18:16 - 2013-03-31 23:52 - 01887232 ____A (Microsoft Corporation) C:\Windows\System32\d3d11.dll
2013-06-10 21:06 - 2013-06-10 21:06 - 00000000 ____D C:\Users\Berzad\AppData\Local\{EC80B424-2399-4723-9978-1EBF7506E66C}
2013-06-07 16:09 - 2013-06-07 16:09 - 00000000 ____D C:\Users\Berzad\AppData\Local\{E44907DB-B932-40F4-9AE8-6E4937C2C6E3}
2013-06-04 18:49 - 2013-06-04 18:49 - 00040718 ____A C:\Users\Berzad\Desktop\Anmeldung und Aufnahmeprüfungen.htm
2013-06-04 18:49 - 2013-06-04 18:49 - 00000000 ____D C:\Users\Berzad\Desktop\Anmeldung und Aufnahmeprüfungen_files
2013-06-02 10:56 - 2013-06-02 10:56 - 00000000 ____D C:\Users\Berzad\AppData\Local\{3260FBAB-AC74-4C89-AB95-C005DA44F30B}
2013-05-31 23:53 - 2013-05-31 23:53 - 00000000 ____D C:\Users\Berzad\AppData\Local\{A1A14F73-6958-490D-930B-CEAD64512372}
2013-05-25 10:13 - 2013-05-25 10:13 - 00000000 ____D C:\Users\Berzad\AppData\Local\{85FE38E4-3011-4E04-B3D1-8D9553F10D50}
2013-05-25 08:06 - 2013-05-25 08:06 - 01509376 ____A (Microsoft Corporation) C:\Windows\System32\inetcpl.cpl
2013-05-25 08:06 - 2013-05-25 08:06 - 01441280 ____A (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2013-05-25 08:06 - 2013-05-25 08:06 - 01400416 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2013-05-25 08:06 - 2013-05-25 08:06 - 01400416 ____A (Microsoft Corporation) C:\Windows\System32\ieapfltr.dat
2013-05-25 08:06 - 2013-05-25 08:06 - 01054720 ____A (Microsoft Corporation) C:\Windows\System32\MsSpellCheckingFacility.exe
2013-05-25 08:06 - 2013-05-25 08:06 - 00905728 ____A (Microsoft Corporation) C:\Windows\System32\mshtmlmedia.dll
2013-05-25 08:06 - 2013-05-25 08:06 - 00762368 ____A (Microsoft Corporation) C:\Windows\System32\ieapfltr.dll
2013-05-25 08:06 - 2013-05-25 08:06 - 00719360 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2013-05-25 08:06 - 2013-05-25 08:06 - 00629248 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2013-05-25 08:06 - 2013-05-25 08:06 - 00599552 ____A (Microsoft Corporation) C:\Windows\System32\vbscript.dll
2013-05-25 08:06 - 2013-05-25 08:06 - 00523264 ____A (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2013-05-25 08:06 - 2013-05-25 08:06 - 00452096 ____A (Microsoft Corporation) C:\Windows\System32\dxtmsft.dll
2013-05-25 08:06 - 2013-05-25 08:06 - 00441856 ____A (Microsoft Corporation) C:\Windows\System32\html.iec
2013-05-25 08:06 - 2013-05-25 08:06 - 00361984 ____A (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2013-05-25 08:06 - 2013-05-25 08:06 - 00357888 ____A (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2013-05-25 08:06 - 2013-05-25 08:06 - 00281600 ____A (Microsoft Corporation) C:\Windows\System32\dxtrans.dll
2013-05-25 08:06 - 2013-05-25 08:06 - 00270848 ____A (Microsoft Corporation) C:\Windows\System32\iedkcs32.dll
2013-05-25 08:06 - 2013-05-25 08:06 - 00247296 ____A (Microsoft Corporation) C:\Windows\System32\webcheck.dll
2013-05-25 08:06 - 2013-05-25 08:06 - 00242200 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2013-05-25 08:06 - 2013-05-25 08:06 - 00235008 ____A (Microsoft Corporation) C:\Windows\System32\url.dll
2013-05-25 08:06 - 2013-05-25 08:06 - 00232960 ____A (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2013-05-25 08:06 - 2013-05-25 08:06 - 00226816 ____A (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2013-05-25 08:06 - 2013-05-25 08:06 - 00226304 ____A (Microsoft Corporation) C:\Windows\System32\elshyph.dll
2013-05-25 08:06 - 2013-05-25 08:06 - 00216064 ____A (Microsoft Corporation) C:\Windows\System32\msls31.dll
2013-05-25 08:06 - 2013-05-25 08:06 - 00204800 ____A (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2013-05-25 08:06 - 2013-05-25 08:06 - 00197120 ____A (Microsoft Corporation) C:\Windows\System32\msrating.dll
2013-05-25 08:06 - 2013-05-25 08:06 - 00185344 ____A (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
2013-05-25 08:06 - 2013-05-25 08:06 - 00173568 ____A (Microsoft Corporation) C:\Windows\System32\ieUnatt.exe
2013-05-25 08:06 - 2013-05-25 08:06 - 00167424 ____A (Microsoft Corporation) C:\Windows\System32\iexpress.exe
2013-05-25 08:06 - 2013-05-25 08:06 - 00163840 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2013-05-25 08:06 - 2013-05-25 08:06 - 00158720 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2013-05-25 08:06 - 2013-05-25 08:06 - 00150528 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2013-05-25 08:06 - 2013-05-25 08:06 - 00149504 ____A (Microsoft Corporation) C:\Windows\System32\occache.dll
2013-05-25 08:06 - 2013-05-25 08:06 - 00144896 ____A (Microsoft Corporation) C:\Windows\System32\wextract.exe
2013-05-25 08:06 - 2013-05-25 08:06 - 00138752 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2013-05-25 08:06 - 2013-05-25 08:06 - 00137216 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2013-05-25 08:06 - 2013-05-25 08:06 - 00136192 ____A (Microsoft Corporation) C:\Windows\System32\iepeers.dll
2013-05-25 08:06 - 2013-05-25 08:06 - 00135680 ____A (Microsoft Corporation) C:\Windows\System32\IEAdvpack.dll
2013-05-25 08:06 - 2013-05-25 08:06 - 00125440 ____A (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2013-05-25 08:06 - 2013-05-25 08:06 - 00117248 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2013-05-25 08:06 - 2013-05-25 08:06 - 00110592 ____A (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2013-05-25 08:06 - 2013-05-25 08:06 - 00102912 ____A (Microsoft Corporation) C:\Windows\System32\inseng.dll
2013-05-25 08:06 - 2013-05-25 08:06 - 00097280 ____A (Microsoft Corporation) C:\Windows\System32\mshtmled.dll
2013-05-25 08:06 - 2013-05-25 08:06 - 00092160 ____A (Microsoft Corporation) C:\Windows\System32\SetIEInstalledDate.exe
2013-05-25 08:06 - 2013-05-25 08:06 - 00082432 ____A (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2013-05-25 08:06 - 2013-05-25 08:06 - 00081408 ____A (Microsoft Corporation) C:\Windows\System32\icardie.dll
2013-05-25 08:06 - 2013-05-25 08:06 - 00079872 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2013-05-25 08:06 - 2013-05-25 08:06 - 00077312 ____A (Microsoft Corporation) C:\Windows\System32\tdc.ocx
2013-05-25 08:06 - 2013-05-25 08:06 - 00073728 ____A (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2013-05-25 08:06 - 2013-05-25 08:06 - 00069120 ____A (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2013-05-25 08:06 - 2013-05-25 08:06 - 00062976 ____A (Microsoft Corporation) C:\Windows\System32\pngfilt.dll
2013-05-25 08:06 - 2013-05-25 08:06 - 00061952 ____A (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2013-05-25 08:06 - 2013-05-25 08:06 - 00057344 ____A (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2013-05-25 08:06 - 2013-05-25 08:06 - 00052224 ____A (Microsoft Corporation) C:\Windows\System32\msfeedsbs.dll
2013-05-25 08:06 - 2013-05-25 08:06 - 00051200 ____A (Microsoft Corporation) C:\Windows\System32\imgutil.dll
2013-05-25 08:06 - 2013-05-25 08:06 - 00048640 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2013-05-25 08:06 - 2013-05-25 08:06 - 00048640 ____A (Microsoft Corporation) C:\Windows\System32\mshtmler.dll
2013-05-25 08:06 - 2013-05-25 08:06 - 00041984 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2013-05-25 08:06 - 2013-05-25 08:06 - 00038400 ____A (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2013-05-25 08:06 - 2013-05-25 08:06 - 00027648 ____A (Microsoft Corporation) C:\Windows\System32\licmgr10.dll
2013-05-25 08:06 - 2013-05-25 08:06 - 00023040 ____A (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2013-05-25 08:06 - 2013-05-25 08:06 - 00013824 ____A (Microsoft Corporation) C:\Windows\System32\mshta.exe
2013-05-25 08:06 - 2013-05-25 08:06 - 00012800 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2013-05-25 08:06 - 2013-05-25 08:06 - 00012800 ____A (Microsoft Corporation) C:\Windows\System32\msfeedssync.exe
2013-05-25 08:06 - 2013-05-25 08:06 - 00011776 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2013-05-25 08:04 - 2013-05-25 08:04 - 03928064 ____A (Microsoft Corporation) C:\Windows\System32\d2d1.dll
2013-05-25 08:04 - 2013-05-25 08:04 - 03419136 ____A (Microsoft Corporation) C:\Windows\SysWOW64\d2d1.dll
2013-05-25 08:04 - 2013-05-25 08:04 - 02776576 ____A (Microsoft Corporation) C:\Windows\System32\msmpeg2vdec.dll
2013-05-25 08:04 - 2013-05-25 08:04 - 02565120 ____A (Microsoft Corporation) C:\Windows\System32\d3d10warp.dll
2013-05-25 08:04 - 2013-05-25 08:04 - 02284544 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2vdec.dll
2013-05-25 08:04 - 2013-05-25 08:04 - 01988096 ____A (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll
2013-05-25 08:04 - 2013-05-25 08:04 - 01682432 ____A (Microsoft Corporation) C:\Windows\System32\XpsPrint.dll
2013-05-25 08:04 - 2013-05-25 08:04 - 01643520 ____A (Microsoft Corporation) C:\Windows\System32\DWrite.dll
2013-05-25 08:04 - 2013-05-25 08:04 - 01247744 ____A (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2013-05-25 08:04 - 2013-05-25 08:04 - 01238528 ____A (Microsoft Corporation) C:\Windows\System32\d3d10.dll
2013-05-25 08:04 - 2013-05-25 08:04 - 01175552 ____A (Microsoft Corporation) C:\Windows\System32\FntCache.dll
2013-05-25 08:04 - 2013-05-25 08:04 - 01158144 ____A (Microsoft Corporation) C:\Windows\SysWOW64\XpsPrint.dll
2013-05-25 08:04 - 2013-05-25 08:04 - 01080832 ____A (Microsoft Corporation) C:\Windows\SysWOW64\d3d10.dll
2013-05-25 08:04 - 2013-05-25 08:04 - 00648192 ____A (Microsoft Corporation) C:\Windows\System32\d3d10level9.dll
2013-05-25 08:04 - 2013-05-25 08:04 - 00604160 ____A (Microsoft Corporation) C:\Windows\SysWOW64\d3d10level9.dll
2013-05-25 08:04 - 2013-05-25 08:04 - 00522752 ____A (Microsoft Corporation) C:\Windows\System32\XpsGdiConverter.dll
2013-05-25 08:04 - 2013-05-25 08:04 - 00465920 ____A (Microsoft Corporation) C:\Windows\System32\WMPhoto.dll
2013-05-25 08:04 - 2013-05-25 08:04 - 00417792 ____A (Microsoft Corporation) C:\Windows\SysWOW64\WMPhoto.dll
2013-05-25 08:04 - 2013-05-25 08:04 - 00364544 ____A (Microsoft Corporation) C:\Windows\SysWOW64\XpsGdiConverter.dll
2013-05-25 08:04 - 2013-05-25 08:04 - 00363008 ____A (Microsoft Corporation) C:\Windows\System32\dxgi.dll
2013-05-25 08:04 - 2013-05-25 08:04 - 00333312 ____A (Microsoft Corporation) C:\Windows\System32\d3d10_1core.dll
2013-05-25 08:04 - 2013-05-25 08:04 - 00296960 ____A (Microsoft Corporation) C:\Windows\System32\d3d10core.dll
2013-05-25 08:04 - 2013-05-25 08:04 - 00293376 ____A (Microsoft Corporation) C:\Windows\SysWOW64\dxgi.dll
2013-05-25 08:04 - 2013-05-25 08:04 - 00249856 ____A (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1core.dll
2013-05-25 08:04 - 2013-05-25 08:04 - 00245248 ____A (Microsoft Corporation) C:\Windows\System32\WindowsCodecsExt.dll
2013-05-25 08:04 - 2013-05-25 08:04 - 00221184 ____A (Microsoft Corporation) C:\Windows\System32\UIAnimation.dll
2013-05-25 08:04 - 2013-05-25 08:04 - 00220160 ____A (Microsoft Corporation) C:\Windows\SysWOW64\d3d10core.dll
2013-05-25 08:04 - 2013-05-25 08:04 - 00207872 ____A (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecsExt.dll
2013-05-25 08:04 - 2013-05-25 08:04 - 00194560 ____A (Microsoft Corporation) C:\Windows\System32\d3d10_1.dll
2013-05-25 08:04 - 2013-05-25 08:04 - 00187392 ____A (Microsoft Corporation) C:\Windows\SysWOW64\UIAnimation.dll
2013-05-25 08:04 - 2013-05-25 08:04 - 00161792 ____A (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1.dll
2013-05-25 08:04 - 2013-05-25 08:04 - 00010752 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll
2013-05-25 08:04 - 2013-05-25 08:04 - 00010752 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-downlevel-advapi32-l1-1-0.dll
2013-05-25 08:04 - 2013-05-25 08:04 - 00009728 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2013-05-25 08:04 - 2013-05-25 08:04 - 00009728 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2013-05-25 08:04 - 2013-05-25 08:04 - 00005632 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2013-05-25 08:04 - 2013-05-25 08:04 - 00005632 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-ole32-l1-1-0.dll
2013-05-25 08:04 - 2013-05-25 08:04 - 00005632 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2013-05-25 08:04 - 2013-05-25 08:04 - 00005632 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-downlevel-ole32-l1-1-0.dll
2013-05-25 08:04 - 2013-05-25 08:04 - 00004096 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-user32-l1-1-0.dll
2013-05-25 08:04 - 2013-05-25 08:04 - 00004096 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-downlevel-user32-l1-1-0.dll
2013-05-25 08:04 - 2013-05-25 08:04 - 00003584 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll
2013-05-25 08:04 - 2013-05-25 08:04 - 00003584 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-downlevel-advapi32-l2-1-0.dll
2013-05-25 08:04 - 2013-05-25 08:04 - 00003072 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-version-l1-1-0.dll
2013-05-25 08:04 - 2013-05-25 08:04 - 00003072 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shell32-l1-1-0.dll
2013-05-25 08:04 - 2013-05-25 08:04 - 00003072 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-downlevel-version-l1-1-0.dll
2013-05-25 08:04 - 2013-05-25 08:04 - 00003072 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-downlevel-shell32-l1-1-0.dll
2013-05-25 08:04 - 2013-05-25 08:04 - 00002560 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll
2013-05-25 08:04 - 2013-05-25 08:04 - 00002560 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-downlevel-normaliz-l1-1-0.dll
2013-05-23 13:22 - 2013-05-23 13:22 - 00006097 ____A C:\Users\Berzad\Desktop\Coop Pronto Dietikon.odt
2013-05-23 13:19 - 2013-05-23 13:19 - 00043773 ____A C:\Users\Berzad\Desktop\Catering.odt
2013-05-23 13:19 - 2013-05-23 13:19 - 00006206 ____A C:\Users\Berzad\Downloads\Coop Pronto Dietikon.odt
2013-05-23 13:15 - 2013-05-23 13:19 - 00043780 ____A C:\Users\Berzad\Downloads\Catering.odt
2013-05-23 13:05 - 2013-05-23 13:05 - 00041569 ____A C:\Users\Berzad\Downloads\Tabellarischer Lebenslauf.odt
2013-05-23 13:01 - 2013-05-23 13:05 - 00006136 ____A C:\Users\Berzad\Desktop\Migros Bremgarten.odt
2013-05-23 12:48 - 2013-05-23 12:48 - 00006177 ____A C:\Users\Berzad\Downloads\Migros Bremgarten.odt
2013-05-20 19:42 - 2013-05-20 19:42 - 00000000 ____D C:\Users\Berzad\AppData\Local\{FB4322FE-A008-4B0E-BDFB-A598151FA650}
2013-05-20 15:57 - 2013-04-10 07:01 - 00983400 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\dxgkrnl.sys
2013-05-20 15:57 - 2013-04-10 07:01 - 00265064 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\dxgmms1.sys
2013-05-20 15:57 - 2011-02-03 12:25 - 00144384 ____A (Microsoft Corporation) C:\Windows\System32\cdd.dll
2013-05-20 15:56 - 2013-03-19 06:53 - 00230400 ____A (Microsoft Corporation) C:\Windows\System32\wwansvc.dll
2013-05-20 15:56 - 2013-03-19 06:53 - 00048640 ____A (Microsoft Corporation) C:\Windows\System32\wwanprotdim.dll
2013-05-20 15:56 - 2013-02-27 07:02 - 00111448 ____A (Microsoft Corporation) C:\Windows\System32\consent.exe
2013-05-20 15:56 - 2013-02-27 06:52 - 14172672 ____A (Microsoft Corporation) C:\Windows\System32\shell32.dll
2013-05-20 15:56 - 2013-02-27 06:52 - 00197120 ____A (Microsoft Corporation) C:\Windows\System32\shdocvw.dll
2013-05-20 15:56 - 2013-02-27 06:48 - 01930752 ____A (Microsoft Corporation) C:\Windows\System32\authui.dll
2013-05-20 15:56 - 2013-02-27 06:47 - 00070144 ____A (Microsoft Corporation) C:\Windows\System32\appinfo.dll
2013-05-20 15:56 - 2013-02-27 05:55 - 12872704 ____A (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2013-05-20 15:56 - 2013-02-27 05:55 - 00180224 ____A (Microsoft Corporation) C:\Windows\SysWOW64\shdocvw.dll
2013-05-20 15:56 - 2013-02-27 05:49 - 01796096 ____A (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2013-05-20 15:56 - 2012-10-09 19:17 - 00226816 ____A (Microsoft Corporation) C:\Windows\System32\dhcpcore6.dll
2013-05-20 15:56 - 2012-10-09 19:17 - 00055296 ____A (Microsoft Corporation) C:\Windows\System32\dhcpcsvc6.dll
2013-05-20 15:56 - 2012-10-09 18:40 - 00193536 ____A (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcore6.dll
2013-05-20 15:56 - 2012-10-09 18:40 - 00044032 ____A (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcsvc6.dll
2013-05-20 15:55 - 2013-04-10 04:30 - 03153920 ____A (Microsoft Corporation) C:\Windows\System32\win32k.sys
2013-05-20 15:55 - 2012-10-03 18:44 - 00303104 ____A (Microsoft Corporation) C:\Windows\System32\nlasvc.dll
2013-05-20 15:55 - 2012-10-03 18:44 - 00246272 ____A (Microsoft Corporation) C:\Windows\System32\netcorehc.dll
2013-05-20 15:55 - 2012-10-03 18:44 - 00216576 ____A (Microsoft Corporation) C:\Windows\System32\ncsi.dll
2013-05-20 15:55 - 2012-10-03 18:44 - 00070656 ____A (Microsoft Corporation) C:\Windows\System32\nlaapi.dll
2013-05-20 15:55 - 2012-10-03 18:44 - 00018944 ____A (Microsoft Corporation) C:\Windows\System32\netevent.dll
2013-05-20 15:55 - 2012-10-03 18:42 - 00569344 ____A (Microsoft Corporation) C:\Windows\System32\iphlpsvc.dll
2013-05-20 15:55 - 2012-10-03 17:42 - 00175104 ____A (Microsoft Corporation) C:\Windows\SysWOW64\netcorehc.dll
2013-05-20 15:55 - 2012-10-03 17:42 - 00156672 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ncsi.dll
2013-05-20 15:55 - 2012-10-03 17:42 - 00018944 ____A (Microsoft Corporation) C:\Windows\SysWOW64\netevent.dll
2013-05-20 15:55 - 2012-10-03 17:07 - 00045568 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\tcpipreg.sys
2013-05-20 15:55 - 2012-08-22 19:12 - 00950128 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\ndis.sys
2013-05-20 15:55 - 2012-08-21 22:01 - 00245760 ____A (Microsoft Corporation) C:\Windows\System32\OxpsConverter.exe
2013-05-20 15:55 - 2012-07-04 21:26 - 00041472 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\RNDISMP.sys
2013-05-20 15:55 - 2012-01-13 08:12 - 00052224 ____A (Microsoft Corporation) C:\Windows\SysWOW64\nlaapi.dll
2013-05-20 15:53 - 2012-11-23 04:13 - 00068608 ____A (Microsoft Corporation) C:\Windows\System32\taskhost.exe
2013-05-20 13:00 - 2013-05-20 13:00 - 00000000 ____D C:\Windows\System32\SPReview
2013-05-19 19:12 - 2013-05-19 19:12 - 00000000 ____D C:\Users\Berzad\AppData\Local\{DFE502C6-C7E1-405E-8853-8BF78AF18071}
2013-05-18 13:38 - 2013-05-18 13:39 - 00000000 ____D C:\Users\Berzad\AppData\Local\{8090E542-B953-4931-A526-00FC5AD949F3}

==================== One Month Modified Files and Folders =======

2013-06-17 12:31 - 2013-06-17 12:31 - 00000000 ____D C:\FRST
2013-06-17 11:27 - 2011-03-03 14:26 - 01597186 ____A C:\Windows\WindowsUpdate.log
2013-06-17 11:26 - 2009-07-14 18:58 - 00697542 ____A C:\Windows\System32\perfh007.dat
2013-06-17 11:26 - 2009-07-14 18:58 - 00148548 ____A C:\Windows\System32\perfc007.dat
2013-06-17 11:26 - 2009-07-14 06:13 - 01614924 ____A C:\Windows\System32\PerfStringBackup.INI
2013-06-17 11:20 - 2011-10-07 23:30 - 00000000 ____D C:\Users\Berzad\AppData\Roaming\Skype
2013-06-17 11:16 - 2009-07-14 05:45 - 00016304 ___AH C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-06-17 11:16 - 2009-07-14 05:45 - 00016304 ___AH C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-06-17 11:07 - 2012-12-28 16:34 - 00000340 ____A C:\Windows\Tasks\HP Photo Creations Communicator.job
2013-06-17 11:07 - 2011-10-07 20:46 - 00001110 ____A C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-06-17 10:37 - 2012-12-29 14:34 - 00000000 ____D C:\Windows\System32\Drivers\NISx64
2013-06-17 08:42 - 2011-10-07 20:46 - 00001106 ____A C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-06-17 08:42 - 2009-07-14 06:08 - 00000006 ___AH C:\Windows\Tasks\SA.DAT
2013-06-17 08:42 - 2009-07-14 05:51 - 00109637 ____A C:\Windows\setupact.log
2013-06-17 08:36 - 2011-01-06 06:10 - 02215576 ____A C:\Windows\PFRO.log
2013-06-17 08:22 - 2013-06-17 08:22 - 00001511 ____A C:\Users\Public\Desktop\Anvi AD Blocker.lnk
2013-06-17 08:22 - 2013-06-17 08:22 - 00000000 ____D C:\Users\Berzad\AppData\Roaming\Anvisoft
2013-06-17 08:21 - 2013-06-17 08:21 - 00001195 ____A C:\Users\Public\Desktop\Anvi Smart Defender.lnk
2013-06-17 08:21 - 2013-06-17 08:21 - 00000000 ____D C:\ProgramData\Anvisoft
2013-06-17 08:21 - 2013-06-17 08:21 - 00000000 ____D C:\Program Files (x86)\Anvisoft
2013-06-16 17:07 - 2011-10-07 18:50 - 00000000 ____D C:\users\Berzad
2013-06-16 14:31 - 2013-06-16 14:29 - 25747872 ____A C:\asdsetup.exe
2013-06-16 14:25 - 2013-06-16 14:25 - 83099648 ____A C:\Windows\System32\config\software.bhv
2013-06-16 14:25 - 2013-06-16 14:25 - 21233664 ____A C:\Windows\System32\config\system.bhv
2013-06-16 14:25 - 2013-06-16 14:25 - 01048576 ____A C:\Windows\System32\config\default.bhv
2013-06-16 14:25 - 2013-06-16 14:25 - 00262144 ____A C:\Windows\System32\config\security.bhv
2013-06-16 14:25 - 2013-06-16 14:25 - 00057344 ____A C:\Windows\System32\config\sam.bhv
2013-06-16 14:01 - 2013-06-16 14:01 - 00000000 ___AD C:\$Anvi Rescue Disk$
2013-06-16 11:43 - 2009-07-14 05:45 - 00311104 ____A C:\Windows\System32\FNTCACHE.DAT
2013-06-15 03:11 - 2013-06-15 03:11 - 01026187 ____A C:\ProgramData\2433f433
2013-06-15 03:11 - 2013-06-15 03:11 - 01026172 ____A C:\Users\Berzad\AppData\Local\2433f433
2013-06-15 03:11 - 2013-06-15 03:11 - 01026163 ____A C:\Users\Berzad\AppData\Roaming\2433f433
2013-06-14 22:19 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\rescache
2013-06-14 07:15 - 2013-06-14 07:15 - 00000000 ____D C:\Users\Berzad\AppData\Local\{7E12ABBB-FE77-4230-8416-431944D16180}
2013-06-14 06:08 - 2012-03-04 16:22 - 75825640 ____A (Microsoft Corporation) C:\Windows\System32\MRT.exe
2013-06-10 21:06 - 2013-06-10 21:06 - 00000000 ____D C:\Users\Berzad\AppData\Local\{EC80B424-2399-4723-9978-1EBF7506E66C}
2013-06-08 15:08 - 2013-06-16 14:38 - 01365504 ____A (Microsoft Corporation) C:\Windows\System32\urlmon.dll
2013-06-08 15:07 - 2013-06-16 14:38 - 19233792 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.dll
2013-06-08 15:06 - 2013-06-16 14:38 - 15404544 ____A (Microsoft Corporation) C:\Windows\System32\ieframe.dll
2013-06-08 15:06 - 2013-06-16 14:38 - 02648064 ____A (Microsoft Corporation) C:\Windows\System32\iertutil.dll
2013-06-08 15:06 - 2013-06-16 14:38 - 00526336 ____A (Microsoft Corporation) C:\Windows\System32\ieui.dll
2013-06-08 13:28 - 2013-06-16 14:38 - 02706432 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.tlb
2013-06-08 12:42 - 2013-06-16 14:38 - 01141248 ____A (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-06-08 12:40 - 2013-06-16 14:38 - 14327808 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-06-08 12:40 - 2013-06-16 14:38 - 13760512 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-06-08 12:40 - 2013-06-16 14:38 - 02046976 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-06-08 12:40 - 2013-06-16 14:38 - 00391168 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-06-08 12:13 - 2013-06-16 14:38 - 02706432 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-06-07 16:09 - 2013-06-07 16:09 - 00000000 ____D C:\Users\Berzad\AppData\Local\{E44907DB-B932-40F4-9AE8-6E4937C2C6E3}
2013-06-07 00:42 - 2012-03-15 18:09 - 00002194 ____A C:\Users\Public\Desktop\Google Chrome.lnk
2013-06-04 22:44 - 2013-03-21 16:42 - 00000000 ____D C:\ProgramData\BrrowSe2seavue
2013-06-04 22:43 - 2013-03-21 16:42 - 00000000 ____D C:\ProgramData\EybbookBrooWyssE
2013-06-04 18:49 - 2013-06-04 18:49 - 00040718 ____A C:\Users\Berzad\Desktop\Anmeldung und Aufnahmeprüfungen.htm
2013-06-04 18:49 - 2013-06-04 18:49 - 00000000 ____D C:\Users\Berzad\Desktop\Anmeldung und Aufnahmeprüfungen_files
2013-06-02 22:58 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\System32\NDF
2013-06-02 16:12 - 2012-12-28 23:14 - 00000000 ___AD C:\Users\Berzad\TTCB
2013-06-02 10:56 - 2013-06-02 10:56 - 00000000 ____D C:\Users\Berzad\AppData\Local\{3260FBAB-AC74-4C89-AB95-C005DA44F30B}
2013-05-31 23:53 - 2013-05-31 23:53 - 00000000 ____D C:\Users\Berzad\AppData\Local\{A1A14F73-6958-490D-930B-CEAD64512372}
2013-05-29 21:45 - 2012-12-28 22:32 - 00000000 ____D C:\Users\Berzad\Documents\Arnela
2013-05-29 09:09 - 2012-12-29 16:25 - 00000000 ____D C:\Users\Berzad\AppData\Local\CrashDumps
2013-05-25 10:13 - 2013-05-25 10:13 - 00000000 ____D C:\Users\Berzad\AppData\Local\{85FE38E4-3011-4E04-B3D1-8D9553F10D50}
2013-05-25 08:43 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\SysWOW64\zh-HK
2013-05-25 08:43 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\SysWOW64\tr-TR
2013-05-25 08:43 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\System32\zh-HK
2013-05-25 08:43 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\System32\tr-TR
2013-05-25 08:43 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\PolicyDefinitions
2013-05-25 08:15 - 2012-12-23 10:58 - 00015760 ____A C:\Windows\IE10_main.log
2013-05-25 08:06 - 2013-05-25 08:06 - 01509376 ____A (Microsoft Corporation) C:\Windows\System32\inetcpl.cpl
2013-05-25 08:06 - 2013-05-25 08:06 - 01441280 ____A (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2013-05-25 08:06 - 2013-05-25 08:06 - 01400416 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2013-05-25 08:06 - 2013-05-25 08:06 - 01400416 ____A (Microsoft Corporation) C:\Windows\System32\ieapfltr.dat
2013-05-25 08:06 - 2013-05-25 08:06 - 01054720 ____A (Microsoft Corporation) C:\Windows\System32\MsSpellCheckingFacility.exe
2013-05-25 08:06 - 2013-05-25 08:06 - 00905728 ____A (Microsoft Corporation) C:\Windows\System32\mshtmlmedia.dll
2013-05-25 08:06 - 2013-05-25 08:06 - 00762368 ____A (Microsoft Corporation) C:\Windows\System32\ieapfltr.dll
2013-05-25 08:06 - 2013-05-25 08:06 - 00719360 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2013-05-25 08:06 - 2013-05-25 08:06 - 00629248 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2013-05-25 08:06 - 2013-05-25 08:06 - 00599552 ____A (Microsoft Corporation) C:\Windows\System32\vbscript.dll
2013-05-25 08:06 - 2013-05-25 08:06 - 00523264 ____A (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2013-05-25 08:06 - 2013-05-25 08:06 - 00452096 ____A (Microsoft Corporation) C:\Windows\System32\dxtmsft.dll
2013-05-25 08:06 - 2013-05-25 08:06 - 00441856 ____A (Microsoft Corporation) C:\Windows\System32\html.iec
2013-05-25 08:06 - 2013-05-25 08:06 - 00361984 ____A (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2013-05-25 08:06 - 2013-05-25 08:06 - 00357888 ____A (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2013-05-25 08:06 - 2013-05-25 08:06 - 00281600 ____A (Microsoft Corporation) C:\Windows\System32\dxtrans.dll
2013-05-25 08:06 - 2013-05-25 08:06 - 00270848 ____A (Microsoft Corporation) C:\Windows\System32\iedkcs32.dll
2013-05-25 08:06 - 2013-05-25 08:06 - 00247296 ____A (Microsoft Corporation) C:\Windows\System32\webcheck.dll
2013-05-25 08:06 - 2013-05-25 08:06 - 00242200 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2013-05-25 08:06 - 2013-05-25 08:06 - 00235008 ____A (Microsoft Corporation) C:\Windows\System32\url.dll
2013-05-25 08:06 - 2013-05-25 08:06 - 00232960 ____A (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2013-05-25 08:06 - 2013-05-25 08:06 - 00226816 ____A (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2013-05-25 08:06 - 2013-05-25 08:06 - 00226304 ____A (Microsoft Corporation) C:\Windows\System32\elshyph.dll
2013-05-25 08:06 - 2013-05-25 08:06 - 00216064 ____A (Microsoft Corporation) C:\Windows\System32\msls31.dll
2013-05-25 08:06 - 2013-05-25 08:06 - 00204800 ____A (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2013-05-25 08:06 - 2013-05-25 08:06 - 00197120 ____A (Microsoft Corporation) C:\Windows\System32\msrating.dll
2013-05-25 08:06 - 2013-05-25 08:06 - 00185344 ____A (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
2013-05-25 08:06 - 2013-05-25 08:06 - 00173568 ____A (Microsoft Corporation) C:\Windows\System32\ieUnatt.exe
2013-05-25 08:06 - 2013-05-25 08:06 - 00167424 ____A (Microsoft Corporation) C:\Windows\System32\iexpress.exe
2013-05-25 08:06 - 2013-05-25 08:06 - 00163840 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2013-05-25 08:06 - 2013-05-25 08:06 - 00158720 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2013-05-25 08:06 - 2013-05-25 08:06 - 00150528 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2013-05-25 08:06 - 2013-05-25 08:06 - 00149504 ____A (Microsoft Corporation) C:\Windows\System32\occache.dll
2013-05-25 08:06 - 2013-05-25 08:06 - 00144896 ____A (Microsoft Corporation) C:\Windows\System32\wextract.exe
2013-05-25 08:06 - 2013-05-25 08:06 - 00138752 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2013-05-25 08:06 - 2013-05-25 08:06 - 00137216 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2013-05-25 08:06 - 2013-05-25 08:06 - 00136192 ____A (Microsoft Corporation) C:\Windows\System32\iepeers.dll
2013-05-25 08:06 - 2013-05-25 08:06 - 00135680 ____A (Microsoft Corporation) C:\Windows\System32\IEAdvpack.dll
2013-05-25 08:06 - 2013-05-25 08:06 - 00125440 ____A (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2013-05-25 08:06 - 2013-05-25 08:06 - 00117248 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2013-05-25 08:06 - 2013-05-25 08:06 - 00110592 ____A (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2013-05-25 08:06 - 2013-05-25 08:06 - 00102912 ____A (Microsoft Corporation) C:\Windows\System32\inseng.dll
2013-05-25 08:06 - 2013-05-25 08:06 - 00097280 ____A (Microsoft Corporation) C:\Windows\System32\mshtmled.dll
2013-05-25 08:06 - 2013-05-25 08:06 - 00092160 ____A (Microsoft Corporation) C:\Windows\System32\SetIEInstalledDate.exe
2013-05-25 08:06 - 2013-05-25 08:06 - 00082432 ____A (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2013-05-25 08:06 - 2013-05-25 08:06 - 00081408 ____A (Microsoft Corporation) C:\Windows\System32\icardie.dll
2013-05-25 08:06 - 2013-05-25 08:06 - 00079872 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2013-05-25 08:06 - 2013-05-25 08:06 - 00077312 ____A (Microsoft Corporation) C:\Windows\System32\tdc.ocx
2013-05-25 08:06 - 2013-05-25 08:06 - 00073728 ____A (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2013-05-25 08:06 - 2013-05-25 08:06 - 00069120 ____A (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2013-05-25 08:06 - 2013-05-25 08:06 - 00062976 ____A (Microsoft Corporation) C:\Windows\System32\pngfilt.dll
2013-05-25 08:06 - 2013-05-25 08:06 - 00061952 ____A (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2013-05-25 08:06 - 2013-05-25 08:06 - 00057344 ____A (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2013-05-25 08:06 - 2013-05-25 08:06 - 00052224 ____A (Microsoft Corporation) C:\Windows\System32\msfeedsbs.dll
2013-05-25 08:06 - 2013-05-25 08:06 - 00051200 ____A (Microsoft Corporation) C:\Windows\System32\imgutil.dll
2013-05-25 08:06 - 2013-05-25 08:06 - 00048640 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2013-05-25 08:06 - 2013-05-25 08:06 - 00048640 ____A (Microsoft Corporation) C:\Windows\System32\mshtmler.dll
2013-05-25 08:06 - 2013-05-25 08:06 - 00041984 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2013-05-25 08:06 - 2013-05-25 08:06 - 00038400 ____A (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2013-05-25 08:06 - 2013-05-25 08:06 - 00027648 ____A (Microsoft Corporation) C:\Windows\System32\licmgr10.dll
2013-05-25 08:06 - 2013-05-25 08:06 - 00023040 ____A (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2013-05-25 08:06 - 2013-05-25 08:06 - 00013824 ____A (Microsoft Corporation) C:\Windows\System32\mshta.exe
2013-05-25 08:06 - 2013-05-25 08:06 - 00012800 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2013-05-25 08:06 - 2013-05-25 08:06 - 00012800 ____A (Microsoft Corporation) C:\Windows\System32\msfeedssync.exe
2013-05-25 08:06 - 2013-05-25 08:06 - 00011776 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2013-05-25 08:04 - 2013-05-25 08:04 - 03928064 ____A (Microsoft Corporation) C:\Windows\System32\d2d1.dll
2013-05-25 08:04 - 2013-05-25 08:04 - 03419136 ____A (Microsoft Corporation) C:\Windows\SysWOW64\d2d1.dll
2013-05-25 08:04 - 2013-05-25 08:04 - 02776576 ____A (Microsoft Corporation) C:\Windows\System32\msmpeg2vdec.dll
2013-05-25 08:04 - 2013-05-25 08:04 - 02565120 ____A (Microsoft Corporation) C:\Windows\System32\d3d10warp.dll
2013-05-25 08:04 - 2013-05-25 08:04 - 02284544 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2vdec.dll
2013-05-25 08:04 - 2013-05-25 08:04 - 01988096 ____A (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll
2013-05-25 08:04 - 2013-05-25 08:04 - 01682432 ____A (Microsoft Corporation) C:\Windows\System32\XpsPrint.dll
2013-05-25 08:04 - 2013-05-25 08:04 - 01643520 ____A (Microsoft Corporation) C:\Windows\System32\DWrite.dll
2013-05-25 08:04 - 2013-05-25 08:04 - 01247744 ____A (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2013-05-25 08:04 - 2013-05-25 08:04 - 01238528 ____A (Microsoft Corporation) C:\Windows\System32\d3d10.dll
2013-05-25 08:04 - 2013-05-25 08:04 - 01175552 ____A (Microsoft Corporation) C:\Windows\System32\FntCache.dll
2013-05-25 08:04 - 2013-05-25 08:04 - 01158144 ____A (Microsoft Corporation) C:\Windows\SysWOW64\XpsPrint.dll
2013-05-25 08:04 - 2013-05-25 08:04 - 01080832 ____A (Microsoft Corporation) C:\Windows\SysWOW64\d3d10.dll
2013-05-25 08:04 - 2013-05-25 08:04 - 00648192 ____A (Microsoft Corporation) C:\Windows\System32\d3d10level9.dll
2013-05-25 08:04 - 2013-05-25 08:04 - 00604160 ____A (Microsoft Corporation) C:\Windows\SysWOW64\d3d10level9.dll
2013-05-25 08:04 - 2013-05-25 08:04 - 00522752 ____A (Microsoft Corporation) C:\Windows\System32\XpsGdiConverter.dll
2013-05-25 08:04 - 2013-05-25 08:04 - 00465920 ____A (Microsoft Corporation) C:\Windows\System32\WMPhoto.dll
2013-05-25 08:04 - 2013-05-25 08:04 - 00417792 ____A (Microsoft Corporation) C:\Windows\SysWOW64\WMPhoto.dll
2013-05-25 08:04 - 2013-05-25 08:04 - 00364544 ____A (Microsoft Corporation) C:\Windows\SysWOW64\XpsGdiConverter.dll
2013-05-25 08:04 - 2013-05-25 08:04 - 00363008 ____A (Microsoft Corporation) C:\Windows\System32\dxgi.dll
2013-05-25 08:04 - 2013-05-25 08:04 - 00333312 ____A (Microsoft Corporation) C:\Windows\System32\d3d10_1core.dll
2013-05-25 08:04 - 2013-05-25 08:04 - 00296960 ____A (Microsoft Corporation) C:\Windows\System32\d3d10core.dll
2013-05-25 08:04 - 2013-05-25 08:04 - 00293376 ____A (Microsoft Corporation) C:\Windows\SysWOW64\dxgi.dll
2013-05-25 08:04 - 2013-05-25 08:04 - 00249856 ____A (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1core.dll
2013-05-25 08:04 - 2013-05-25 08:04 - 00245248 ____A (Microsoft Corporation) C:\Windows\System32\WindowsCodecsExt.dll
2013-05-25 08:04 - 2013-05-25 08:04 - 00221184 ____A (Microsoft Corporation) C:\Windows\System32\UIAnimation.dll
2013-05-25 08:04 - 2013-05-25 08:04 - 00220160 ____A (Microsoft Corporation) C:\Windows\SysWOW64\d3d10core.dll
2013-05-25 08:04 - 2013-05-25 08:04 - 00207872 ____A (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecsExt.dll
2013-05-25 08:04 - 2013-05-25 08:04 - 00194560 ____A (Microsoft Corporation) C:\Windows\System32\d3d10_1.dll
2013-05-25 08:04 - 2013-05-25 08:04 - 00187392 ____A (Microsoft Corporation) C:\Windows\SysWOW64\UIAnimation.dll
2013-05-25 08:04 - 2013-05-25 08:04 - 00161792 ____A (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1.dll
2013-05-25 08:04 - 2013-05-25 08:04 - 00010752 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll
2013-05-25 08:04 - 2013-05-25 08:04 - 00010752 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-downlevel-advapi32-l1-1-0.dll
2013-05-25 08:04 - 2013-05-25 08:04 - 00009728 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2013-05-25 08:04 - 2013-05-25 08:04 - 00009728 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2013-05-25 08:04 - 2013-05-25 08:04 - 00005632 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2013-05-25 08:04 - 2013-05-25 08:04 - 00005632 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-ole32-l1-1-0.dll
2013-05-25 08:04 - 2013-05-25 08:04 - 00005632 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2013-05-25 08:04 - 2013-05-25 08:04 - 00005632 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-downlevel-ole32-l1-1-0.dll
2013-05-25 08:04 - 2013-05-25 08:04 - 00004096 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-user32-l1-1-0.dll
2013-05-25 08:04 - 2013-05-25 08:04 - 00004096 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-downlevel-user32-l1-1-0.dll
2013-05-25 08:04 - 2013-05-25 08:04 - 00003584 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll
2013-05-25 08:04 - 2013-05-25 08:04 - 00003584 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-downlevel-advapi32-l2-1-0.dll
2013-05-25 08:04 - 2013-05-25 08:04 - 00003072 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-version-l1-1-0.dll
2013-05-25 08:04 - 2013-05-25 08:04 - 00003072 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shell32-l1-1-0.dll
2013-05-25 08:04 - 2013-05-25 08:04 - 00003072 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-downlevel-version-l1-1-0.dll
2013-05-25 08:04 - 2013-05-25 08:04 - 00003072 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-downlevel-shell32-l1-1-0.dll
2013-05-25 08:04 - 2013-05-25 08:04 - 00002560 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll
2013-05-25 08:04 - 2013-05-25 08:04 - 00002560 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-downlevel-normaliz-l1-1-0.dll
2013-05-23 13:27 - 2011-11-07 20:19 - 00000000 ____D C:\Users\Berzad\AppData\Roaming\SoftGrid Client
2013-05-23 13:22 - 2013-05-23 13:22 - 00006097 ____A C:\Users\Berzad\Desktop\Coop Pronto Dietikon.odt
2013-05-23 13:19 - 2013-05-23 13:19 - 00043773 ____A C:\Users\Berzad\Desktop\Catering.odt
2013-05-23 13:19 - 2013-05-23 13:19 - 00006206 ____A C:\Users\Berzad\Downloads\Coop Pronto Dietikon.odt
2013-05-23 13:19 - 2013-05-23 13:15 - 00043780 ____A C:\Users\Berzad\Downloads\Catering.odt
2013-05-23 13:05 - 2013-05-23 13:05 - 00041569 ____A C:\Users\Berzad\Downloads\Tabellarischer Lebenslauf.odt
2013-05-23 13:05 - 2013-05-23 13:01 - 00006136 ____A C:\Users\Berzad\Desktop\Migros Bremgarten.odt
2013-05-23 12:48 - 2013-05-23 12:48 - 00006177 ____A C:\Users\Berzad\Downloads\Migros Bremgarten.odt
2013-05-20 19:42 - 2013-05-20 19:42 - 00000000 ____D C:\Users\Berzad\AppData\Local\{FB4322FE-A008-4B0E-BDFB-A598151FA650}
2013-05-20 13:34 - 2009-07-14 19:18 - 00000000 ____D C:\Program Files\Windows Journal
2013-05-20 13:34 - 2009-07-14 06:32 - 00000000 ____D C:\Program Files\Windows Sidebar
2013-05-20 13:34 - 2009-07-14 06:32 - 00000000 ____D C:\Program Files\Windows Portable Devices
2013-05-20 13:34 - 2009-07-14 06:32 - 00000000 ____D C:\Program Files\Windows Photo Viewer
2013-05-20 13:34 - 2009-07-14 06:32 - 00000000 ____D C:\Program Files\Windows Defender
2013-05-20 13:34 - 2009-07-14 06:32 - 00000000 ____D C:\Program Files\DVD Maker
2013-05-20 13:34 - 2009-07-14 06:32 - 00000000 ____D C:\Program Files (x86)\Windows Sidebar
2013-05-20 13:34 - 2009-07-14 06:32 - 00000000 ____D C:\Program Files (x86)\Windows Portable Devices
2013-05-20 13:34 - 2009-07-14 06:32 - 00000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2013-05-20 13:34 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\servicing
2013-05-20 13:34 - 2009-07-14 04:20 - 00000000 ____D C:\Program Files\Common Files\System
2013-05-20 13:33 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\SysWOW64\sppui
2013-05-20 13:33 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\SysWOW64\Setup
2013-05-20 13:33 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\SysWOW64\oobe
2013-05-20 13:33 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\SysWOW64\migwiz
2013-05-20 13:33 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\SysWOW64\manifeststore
2013-05-20 13:33 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\SysWOW64\Dism
2013-05-20 13:33 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\SysWOW64\AdvancedInstallers
2013-05-20 13:33 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\System32\sppui
2013-05-20 13:33 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\System32\Setup
2013-05-20 13:33 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\System32\oobe
2013-05-20 13:33 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\System32\manifeststore
2013-05-20 13:33 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\System32\AdvancedInstallers
2013-05-20 13:32 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\System32\migwiz
2013-05-20 13:32 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\System32\Dism
2013-05-20 13:11 - 2009-07-14 03:36 - 00175616 ____A (Microsoft Corporation) C:\Windows\System32\msclmd.dll
2013-05-20 13:11 - 2009-07-14 03:36 - 00152576 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msclmd.dll
2013-05-20 13:00 - 2013-05-20 13:00 - 00000000 ____D C:\Windows\System32\SPReview
2013-05-19 19:12 - 2013-05-19 19:12 - 00000000 ____D C:\Users\Berzad\AppData\Local\{DFE502C6-C7E1-405E-8853-8BF78AF18071}
2013-05-18 14:11 - 2011-11-07 20:19 - 01592818 ____A C:\Windows\SysWOW64\PerfStringBackup.INI
2013-05-18 13:39 - 2013-05-18 13:38 - 00000000 ____D C:\Users\Berzad\AppData\Local\{8090E542-B953-4931-A526-00FC5AD949F3}

Files to move or delete:
====================
C:\ProgramData\9900265.bat
C:\ProgramData\9900265.pad

==================== Known DLLs (Whitelisted) ================


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit

==================== EXE ASSOCIATION =====================

HKLM\...\.exe: exefile => OK
HKLM\...\exefile\DefaultIcon: %1 => OK
HKLM\...\exefile\open\command: "%1" %* => OK

==================== Restore Points  =========================

Restore point made on: 2013-05-22 07:54:24
Restore point made on: 2013-05-25 08:00:07
Restore point made on: 2013-06-14 06:06:48
Restore point made on: 2013-06-16 14:38:08
Restore point made on: 2013-06-16 18:01:06
Restore point made on: 2013-06-16 19:42:57

==================== Memory info =========================== 

Percentage of memory in use: 15%
Total physical RAM: 4002.69 MB
Available physical RAM: 3392.05 MB
Total Pagefile: 4000.84 MB
Available Pagefile: 3375.79 MB
Total Virtual: 8192 MB
Available Virtual: 8191.85 MB

==================== Drives ================================

Drive c: (TI30717400A) (Fixed) (Total:406.68 GB) (Free:334.69 GB) NTFS (Disk=0 Partition=2) ==>[System with boot components (obtained from reading drive)]
Drive d: (System) (Fixed) (Total:1.46 GB) (Free:1.11 GB) NTFS (Disk=0 Partition=1) ==>[System with boot components (obtained from reading drive)]
Drive f: (SARDU) (Removable) (Total:7.51 GB) (Free:5.35 GB) FAT32 (Disk=1 Partition=1)
Drive x: (Boot) (Fixed) (Total:0.03 GB) (Free:0.03 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or Vista) (Size: 466 GB) (Disk ID: 2AC9BBE8)
Partition 1: (Active) - (Size=1 GB) - (Type=27)
Partition 2: (Not Active) - (Size=407 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=45 GB) - (Type=17)
Partition 4: (Not Active) - (Size=12 GB) - (Type=17)

========================================================
Disk: 1 (Size: 8 GB) (Disk ID: 0291611F)
Partition 1: (Active) - (Size=8 GB) - (Type=0C)


LastRegBack: 2013-06-14 22:12

==================== End Of Log ============================

 

Themen zu Windows 7 Start bleibt in DOS Fenster hängen
adobe, alert, association, autorun, bandoo, browser, defender, desktop, dos fenster, driver pro, explorer, farbar, farbar recovery scan tool, frst.txt, google, home, hängen, log, microsoft, netzwerk, optimizer pro, registry, scan, security, services.exe, smartbar, software, svchost.exe, symantec, system, vista, windows, winlogon, winlogon.exe


« Java-Virus (JAVA/Lamar.RI ; JAVA/Jogek.WK usw.) | Antivir: 'TR/Jorik.Bublik.cq' freenet.de Spam »


Ähnliche Themen: Windows 7 Start bleibt in DOS Fenster hängen


  1. Windows 8, 64 Bit bleibt ständig hängen
    Log-Analyse und Auswertung - 17.09.2015 (8)
  2. Windows 7 bleibt öfters hängen, Arbeitsspeicher voll
    Plagegeister aller Art und deren Bekämpfung - 02.09.2015 (39)
  3. WIN7 Prof nach Java Up 8 /51 bleibt beim Start hängen Raid1
    Alles rund um Windows - 26.07.2015 (3)
  4. Windows 8 bleibt ständig hängen
    Plagegeister aller Art und deren Bekämpfung - 08.04.2015 (14)
  5. Windows 7: sweet-page.com virus und pc bleibt öfters hängen
    Log-Analyse und Auswertung - 01.10.2014 (10)
  6. Windows 8 bleibt im Anmeldebildschirm hängen
    Alles rund um Windows - 13.05.2014 (0)
  7. Windows Vista bleibt einfach Hängen
    Plagegeister aller Art und deren Bekämpfung - 11.12.2013 (3)
  8. Windows XP: PC bleibt bei Bundestrojaner hängen.
    Log-Analyse und Auswertung - 23.10.2013 (3)
  9. Windows 7 Rechner bleibt im Boot-Menü hängen, Fehlermeldung Windows failed to start, Status: 0xc000000f
    Log-Analyse und Auswertung - 05.10.2013 (7)
  10. Windows XP bleibt komplett hängen
    Alles rund um Windows - 03.03.2013 (2)
  11. Windows XP bleibt komplett hängen
    Plagegeister aller Art und deren Bekämpfung - 24.02.2013 (19)
  12. Trojaner Dropper, Windows 7 64Bit bleibt hängen.
    Log-Analyse und Auswertung - 18.06.2012 (1)
  13. Windows 7 bleibt jedesmal hängen
    Log-Analyse und Auswertung - 05.04.2012 (9)
  14. Windows bleibt nach Start hängen
    Log-Analyse und Auswertung - 12.03.2010 (1)
  15. Nach Start von XP und klick auf Benutzerkonto bleibt er genau dort hängen
    Plagegeister aller Art und deren Bekämpfung - 19.05.2009 (0)
  16. Windows bleibt hängen nach Anmeldung
    Alles rund um Windows - 06.01.2008 (1)
  17. Windows bleibt hängen !! Bitte schaut mal nach
    Mülltonne - 05.01.2008 (0)
Anleitungen und Tipps

- Für alle Hilfesuchenden! Was beachten?

- Anleitung: MyStartSearch.com entfernen

- Anleitung: WebSearches löschen

- Hilfe: iStartSurf entfernen – so gehts!

- Anleitung: Omiga Plus richtig entfernen

- Browser Viren entfernen


Zum Thema Windows 7 Start bleibt in DOS Fenster hängen - Code: Alles auswählen Aufklappen ATTFilter Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 16-06-2013 01 Ran by SYSTEM on 17-06-2013 12:31:57 Running from F:\ Windows 7 Home Premium - Windows 7 Start bleibt in DOS Fenster hängen...
Archiv
Du betrachtest: Windows 7 Start bleibt in DOS Fenster hängen auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19