| |
| |||||||
Plagegeister aller Art und deren Bekämpfung: Avira kann TR/ATRAPS.Gen2 nicht löschenWindows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen. |
 |
07.07.2013, 10:07
| #1 |
| |  Avira kann TR/ATRAPS.Gen2 nicht löschen Hallo an alle ich bin neu hier habe mich gerade angemeldet weil ich mir einen sehr unangenehmen Gesellen eingefangen habe und ich am verzweifeln bin  .Avira Antivier bringt ständig neue Funde von Vieren und wenn ich sie lösche sind sie dann leider auch bald wieder da. Die Profies unter euch sind meine letzte Chance und können mir hoffentlich helfen!!Anhang 57558 Anhang 57559 Anhang 57560 Anhang 57561 Anhang 57562 Vielen Dank schon mal im Vorr aus |
|
07.07.2013, 10:13
| #2 |
| /// the machine /// TB-Ausbilder    | Avira kann TR/ATRAPS.Gen2 nicht löschen Hi,
__________________Logs immer in den THread posten.  So funktioniert es:Posten in CODE-Tags Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR, 7Z-Archive zu packen erschwert mir massiv die Arbeit, es sei denn natürlich die Datei wäre ansonsten zu gross für das Forum. Um die Logfiles in eine CODE-Box zu stellen gehe so vor:
Downloade dir bitte  TDSSKiller.exe und speichere diese Datei auf dem Desktop
__________________ |
|
07.07.2013, 20:52
| #3 |
| | Avira kann TR/ATRAPS.Gen2 nicht löschen Hi,
__________________erst mal vielen dank für die schnelle Antwort und sorry, daß ich die Logs falsch gepostet habe kommt nicht wieder vor  . Ich habe alles so gemacht wie beschrieben, hoffentlich passt das so. Schon mal danke im vorraus für die Mühe.Code:
ATTFilter 21:16:31.0467 4788 TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
21:16:33.0467 4788 ============================================================
21:16:33.0467 4788 Current date / time: 2013/07/07 21:16:33.0467
21:16:33.0467 4788 SystemInfo:
21:16:33.0467 4788
21:16:33.0467 4788 OS Version: 6.1.7601 ServicePack: 1.0
21:16:33.0467 4788 Product type: Workstation
21:16:33.0467 4788 ComputerName: HUGO-PC
21:16:33.0467 4788 UserName: Hugo
21:16:33.0467 4788 Windows directory: C:\Windows
21:16:33.0467 4788 System windows directory: C:\Windows
21:16:33.0467 4788 Running under WOW64
21:16:33.0467 4788 Processor architecture: Intel x64
21:16:33.0467 4788 Number of processors: 4
21:16:33.0467 4788 Page size: 0x1000
21:16:33.0467 4788 Boot type: Normal boot
21:16:33.0467 4788 ============================================================
21:16:34.0367 4788 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
21:16:34.0397 4788 ============================================================
21:16:34.0397 4788 \Device\Harddisk0\DR0:
21:16:34.0397 4788 MBR partitions:
21:16:34.0427 4788 \Device\Harddisk0\DR0\Partition1: MBR, Type 0xB, StartLBA 0x3789314D, BlocksNum 0x2AF1AF4
21:16:34.0427 4788 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x378930CF
21:16:34.0427 4788 ============================================================
21:16:34.0457 4788 C: <-> \Device\Harddisk0\DR0\Partition2
21:16:34.0477 4788 D: <-> \Device\Harddisk0\DR0\Partition1
21:16:34.0477 4788 ============================================================
21:16:34.0477 4788 Initialize success
21:16:34.0477 4788 ============================================================
21:16:46.0917 4892 ============================================================
21:16:46.0917 4892 Scan started
21:16:46.0917 4892 Mode: Manual; SigCheck; TDLFS;
21:16:46.0917 4892 ============================================================
21:16:47.0257 4892 ================ Scan system memory ========================
21:16:47.0267 4892 System memory - ok
21:16:47.0267 4892 ================ Scan services =============================
21:16:47.0387 4892 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\DRIVERS\1394ohci.sys
21:16:47.0437 4892 1394ohci - ok
21:16:47.0457 4892 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
21:16:47.0467 4892 ACPI - ok
21:16:47.0487 4892 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
21:16:47.0497 4892 AcpiPmi - ok
21:16:47.0557 4892 [ ADDA5E1951B90D3D23C56D3CF0622ADC ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
21:16:47.0567 4892 AdobeARMservice - ok
21:16:47.0637 4892 [ 9915504F602D277EE47FD843A677FD15 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
21:16:47.0647 4892 AdobeFlashPlayerUpdateSvc - ok
21:16:47.0677 4892 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
21:16:47.0697 4892 adp94xx - ok
21:16:47.0707 4892 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\drivers\adpahci.sys
21:16:47.0727 4892 adpahci - ok
21:16:47.0737 4892 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\drivers\adpu320.sys
21:16:47.0757 4892 adpu320 - ok
21:16:47.0787 4892 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
21:16:47.0827 4892 AeLookupSvc - ok
21:16:47.0867 4892 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys
21:16:47.0887 4892 AFD - ok
21:16:47.0917 4892 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
21:16:47.0927 4892 agp440 - ok
21:16:47.0957 4892 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
21:16:47.0967 4892 ALG - ok
21:16:47.0977 4892 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
21:16:47.0987 4892 aliide - ok
21:16:48.0007 4892 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
21:16:48.0017 4892 amdide - ok
21:16:48.0027 4892 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\drivers\amdk8.sys
21:16:48.0037 4892 AmdK8 - ok
21:16:48.0037 4892 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\drivers\amdppm.sys
21:16:48.0057 4892 AmdPPM - ok
21:16:48.0077 4892 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
21:16:48.0087 4892 amdsata - ok
21:16:48.0107 4892 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\drivers\amdsbs.sys
21:16:48.0117 4892 amdsbs - ok
21:16:48.0127 4892 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
21:16:48.0137 4892 amdxata - ok
21:16:48.0227 4892 [ FE9932692FC61C2203EC9884D414F700 ] AntiVirSchedulerService C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
21:16:48.0237 4892 AntiVirSchedulerService - ok
21:16:48.0267 4892 [ B1F8B58F27971B7E316DD316687886EC ] AntiVirService C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
21:16:48.0277 4892 AntiVirService - ok
21:16:48.0297 4892 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
21:16:48.0327 4892 AppID - ok
21:16:48.0357 4892 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
21:16:48.0387 4892 AppIDSvc - ok
21:16:48.0437 4892 [ 9D2A2369AB4B08A4905FE72DB104498F ] Appinfo C:\Windows\System32\appinfo.dll
21:16:48.0457 4892 Appinfo - ok
21:16:48.0487 4892 [ 4ABA3E75A76195A3E38ED2766C962899 ] AppMgmt C:\Windows\System32\appmgmts.dll
21:16:48.0497 4892 AppMgmt - ok
21:16:48.0527 4892 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\drivers\arc.sys
21:16:48.0537 4892 arc - ok
21:16:48.0547 4892 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\drivers\arcsas.sys
21:16:48.0557 4892 arcsas - ok
21:16:48.0567 4892 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
21:16:48.0597 4892 AsyncMac - ok
21:16:48.0617 4892 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
21:16:48.0627 4892 atapi - ok
21:16:48.0657 4892 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
21:16:48.0687 4892 AudioEndpointBuilder - ok
21:16:48.0707 4892 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
21:16:48.0747 4892 AudioSrv - ok
21:16:48.0767 4892 [ 09E6069EF94B345061B4BD3CEBD974C8 ] avgntflt C:\Windows\system32\DRIVERS\avgntflt.sys
21:16:48.0787 4892 avgntflt - ok
21:16:48.0817 4892 [ 488486DAD09A5B6C6DBB8B990A8B2307 ] avipbb C:\Windows\system32\DRIVERS\avipbb.sys
21:16:48.0827 4892 avipbb - ok
21:16:48.0837 4892 [ 490FA25161BF3E51993EB724ECF0ACEB ] avkmgr C:\Windows\system32\DRIVERS\avkmgr.sys
21:16:48.0847 4892 avkmgr - ok
21:16:48.0857 4892 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
21:16:48.0877 4892 AxInstSV - ok
21:16:48.0907 4892 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\drivers\bxvbda.sys
21:16:48.0927 4892 b06bdrv - ok
21:16:48.0947 4892 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
21:16:48.0967 4892 b57nd60a - ok
21:16:48.0987 4892 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
21:16:48.0997 4892 BDESVC - ok
21:16:49.0017 4892 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
21:16:49.0047 4892 Beep - ok
21:16:49.0077 4892 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll
21:16:49.0117 4892 BFE - ok
21:16:49.0147 4892 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\system32\qmgr.dll
21:16:49.0187 4892 BITS - ok
21:16:49.0197 4892 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
21:16:49.0207 4892 blbdrive - ok
21:16:49.0237 4892 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
21:16:49.0247 4892 bowser - ok
21:16:49.0257 4892 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\drivers\BrFiltLo.sys
21:16:49.0267 4892 BrFiltLo - ok
21:16:49.0277 4892 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\drivers\BrFiltUp.sys
21:16:49.0287 4892 BrFiltUp - ok
21:16:49.0297 4892 [ 5C2F352A4E961D72518261257AAE204B ] BridgeMP C:\Windows\system32\DRIVERS\bridge.sys
21:16:49.0327 4892 BridgeMP - ok
21:16:49.0357 4892 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll
21:16:49.0367 4892 Browser - ok
21:16:49.0387 4892 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
21:16:49.0407 4892 Brserid - ok
21:16:49.0407 4892 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
21:16:49.0427 4892 BrSerWdm - ok
21:16:49.0427 4892 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
21:16:49.0437 4892 BrUsbMdm - ok
21:16:49.0447 4892 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
21:16:49.0457 4892 BrUsbSer - ok
21:16:49.0467 4892 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys
21:16:49.0477 4892 BTHMODEM - ok
21:16:49.0497 4892 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
21:16:49.0527 4892 bthserv - ok
21:16:49.0527 4892 catchme - ok
21:16:49.0547 4892 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
21:16:49.0577 4892 cdfs - ok
21:16:49.0597 4892 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
21:16:49.0617 4892 cdrom - ok
21:16:49.0627 4892 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
21:16:49.0667 4892 CertPropSvc - ok
21:16:49.0697 4892 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\drivers\circlass.sys
21:16:49.0707 4892 circlass - ok
21:16:49.0727 4892 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
21:16:49.0737 4892 CLFS - ok
21:16:49.0797 4892 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
21:16:49.0807 4892 clr_optimization_v2.0.50727_32 - ok
21:16:49.0847 4892 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
21:16:49.0857 4892 clr_optimization_v2.0.50727_64 - ok
21:16:49.0927 4892 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
21:16:49.0937 4892 clr_optimization_v4.0.30319_32 - ok
21:16:49.0957 4892 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
21:16:49.0967 4892 clr_optimization_v4.0.30319_64 - ok
21:16:49.0967 4892 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\drivers\CmBatt.sys
21:16:49.0987 4892 CmBatt - ok
21:16:50.0007 4892 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
21:16:50.0017 4892 cmdide - ok
21:16:50.0047 4892 [ AAFCB52FE0037207FB6FBEA070D25EFE ] CNG C:\Windows\system32\Drivers\cng.sys
21:16:50.0067 4892 CNG - ok
21:16:50.0087 4892 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\drivers\compbatt.sys
21:16:50.0097 4892 Compbatt - ok
21:16:50.0107 4892 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\DRIVERS\CompositeBus.sys
21:16:50.0127 4892 CompositeBus - ok
21:16:50.0137 4892 COMSysApp - ok
21:16:50.0147 4892 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
21:16:50.0157 4892 crcdisk - ok
21:16:50.0197 4892 [ D8129C49798CBBFB2E4351D4B7B8EF9C ] CryptSvc C:\Windows\system32\cryptsvc.dll
21:16:50.0207 4892 CryptSvc - ok
21:16:50.0237 4892 [ 54DA3DFD29ED9F1619B6F53F3CE55E49 ] CSC C:\Windows\system32\drivers\csc.sys
21:16:50.0247 4892 CSC - ok
21:16:50.0277 4892 [ 3AB183AB4D2C79DCF459CD2C1266B043 ] CscService C:\Windows\System32\cscsvc.dll
21:16:50.0297 4892 CscService - ok
21:16:50.0327 4892 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
21:16:50.0367 4892 DcomLaunch - ok
21:16:50.0397 4892 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
21:16:50.0427 4892 defragsvc - ok
21:16:50.0437 4892 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
21:16:50.0477 4892 DfsC - ok
21:16:50.0487 4892 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
21:16:50.0507 4892 Dhcp - ok
21:16:50.0517 4892 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
21:16:50.0547 4892 discache - ok
21:16:50.0567 4892 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\drivers\disk.sys
21:16:50.0577 4892 Disk - ok
21:16:50.0607 4892 [ 5DB085A8A6600BE6401F2B24EECB5415 ] dmvsc C:\Windows\system32\drivers\dmvsc.sys
21:16:50.0617 4892 dmvsc - ok
21:16:50.0637 4892 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
21:16:50.0647 4892 Dnscache - ok
21:16:50.0667 4892 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
21:16:50.0707 4892 dot3svc - ok
21:16:50.0727 4892 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
21:16:50.0757 4892 DPS - ok
21:16:50.0787 4892 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
21:16:50.0807 4892 drmkaud - ok
21:16:50.0857 4892 [ AF2E16242AA723F68F461B6EAE2EAD3D ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
21:16:50.0877 4892 DXGKrnl - ok
21:16:50.0897 4892 [ 416A2007878ED1D6FC5DDDB9E1F6DB3E ] e1express C:\Windows\system32\DRIVERS\e1e6032e.sys
21:16:50.0907 4892 e1express - ok
21:16:50.0927 4892 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
21:16:50.0957 4892 EapHost - ok
21:16:51.0047 4892 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\drivers\evbda.sys
21:16:51.0097 4892 ebdrv - ok
21:16:51.0107 4892 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe
21:16:51.0117 4892 EFS - ok
21:16:51.0177 4892 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
21:16:51.0197 4892 ehRecvr - ok
21:16:51.0207 4892 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
21:16:51.0227 4892 ehSched - ok
21:16:51.0247 4892 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\drivers\elxstor.sys
21:16:51.0267 4892 elxstor - ok
21:16:51.0277 4892 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
21:16:51.0297 4892 ErrDev - ok
21:16:51.0317 4892 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
21:16:51.0347 4892 EventSystem - ok
21:16:51.0357 4892 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
21:16:51.0387 4892 exfat - ok
21:16:51.0437 4892 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
21:16:51.0467 4892 fastfat - ok
21:16:51.0597 4892 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
21:16:51.0617 4892 Fax - ok
21:16:51.0627 4892 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\drivers\fdc.sys
21:16:51.0637 4892 fdc - ok
21:16:51.0657 4892 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
21:16:51.0687 4892 fdPHost - ok
21:16:51.0697 4892 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
21:16:51.0727 4892 FDResPub - ok
21:16:51.0737 4892 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
21:16:51.0747 4892 FileInfo - ok
21:16:51.0757 4892 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
21:16:51.0797 4892 Filetrace - ok
21:16:51.0817 4892 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\drivers\flpydisk.sys
21:16:51.0827 4892 flpydisk - ok
21:16:51.0847 4892 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
21:16:51.0867 4892 FltMgr - ok
21:16:51.0917 4892 [ C4C183E6551084039EC862DA1C945E3D ] FontCache C:\Windows\system32\FntCache.dll
21:16:51.0947 4892 FontCache - ok
21:16:51.0987 4892 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
21:16:51.0997 4892 FontCache3.0.0.0 - ok
21:16:52.0007 4892 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
21:16:52.0027 4892 FsDepends - ok
21:16:52.0047 4892 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
21:16:52.0057 4892 Fs_Rec - ok
21:16:52.0087 4892 [ 8F6322049018354F45F05A2FD2D4E5E0 ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
21:16:52.0097 4892 fvevol - ok
21:16:52.0127 4892 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
21:16:52.0137 4892 gagp30kx - ok
21:16:52.0167 4892 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
21:16:52.0207 4892 gpsvc - ok
21:16:52.0217 4892 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
21:16:52.0227 4892 hcw85cir - ok
21:16:52.0267 4892 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
21:16:52.0287 4892 HdAudAddService - ok
21:16:52.0307 4892 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
21:16:52.0327 4892 HDAudBus - ok
21:16:52.0327 4892 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\drivers\HidBatt.sys
21:16:52.0337 4892 HidBatt - ok
21:16:52.0347 4892 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\drivers\hidbth.sys
21:16:52.0367 4892 HidBth - ok
21:16:52.0387 4892 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\drivers\hidir.sys
21:16:52.0407 4892 HidIr - ok
21:16:52.0437 4892 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\System32\hidserv.dll
21:16:52.0467 4892 hidserv - ok
21:16:52.0517 4892 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
21:16:52.0537 4892 HidUsb - ok
21:16:52.0557 4892 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
21:16:52.0587 4892 hkmsvc - ok
21:16:52.0597 4892 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
21:16:52.0607 4892 HomeGroupListener - ok
21:16:52.0637 4892 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
21:16:52.0657 4892 HomeGroupProvider - ok
21:16:52.0677 4892 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
21:16:52.0687 4892 HpSAMD - ok
21:16:52.0727 4892 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
21:16:52.0767 4892 HTTP - ok
21:16:52.0777 4892 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
21:16:52.0787 4892 hwpolicy - ok
21:16:52.0807 4892 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
21:16:52.0817 4892 i8042prt - ok
21:16:52.0847 4892 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
21:16:52.0857 4892 iaStorV - ok
21:16:52.0897 4892 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
21:16:52.0917 4892 idsvc - ok
21:16:52.0937 4892 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\drivers\iirsp.sys
21:16:52.0947 4892 iirsp - ok
21:16:52.0987 4892 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll
21:16:53.0027 4892 IKEEXT - ok
21:16:53.0117 4892 [ F2744FD54BE1580BE05916D1C755C92A ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
21:16:53.0167 4892 IntcAzAudAddService - ok
21:16:53.0167 4892 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\DRIVERS\intelide.sys
21:16:53.0177 4892 intelide - ok
21:16:53.0207 4892 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
21:16:53.0217 4892 intelppm - ok
21:16:53.0227 4892 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
21:16:53.0257 4892 IPBusEnum - ok
21:16:53.0267 4892 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
21:16:53.0297 4892 IpFilterDriver - ok
21:16:53.0347 4892 [ 08C2957BB30058E663720C5606885653 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
21:16:53.0367 4892 iphlpsvc - ok
21:16:53.0367 4892 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
21:16:53.0387 4892 IPMIDRV - ok
21:16:53.0387 4892 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
21:16:53.0427 4892 IPNAT - ok
21:16:53.0437 4892 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
21:16:53.0457 4892 IRENUM - ok
21:16:53.0467 4892 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
21:16:53.0477 4892 isapnp - ok
21:16:53.0497 4892 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
21:16:53.0517 4892 iScsiPrt - ok
21:16:53.0537 4892 [ D596D915CF091DA1F8CE4BD38BB5D509 ] iusb3hcs C:\Windows\system32\DRIVERS\iusb3hcs.sys
21:16:53.0547 4892 iusb3hcs - ok
21:16:53.0567 4892 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
21:16:53.0577 4892 kbdclass - ok
21:16:53.0597 4892 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
21:16:53.0617 4892 kbdhid - ok
21:16:53.0627 4892 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe
21:16:53.0637 4892 KeyIso - ok
21:16:53.0657 4892 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
21:16:53.0677 4892 KSecDD - ok
21:16:53.0687 4892 [ 7EFB9333E4ECCE6AE4AE9D777D9E553E ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
21:16:53.0707 4892 KSecPkg - ok
21:16:53.0717 4892 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
21:16:53.0747 4892 ksthunk - ok
21:16:53.0777 4892 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
21:16:53.0807 4892 KtmRm - ok
21:16:53.0847 4892 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\System32\srvsvc.dll
21:16:53.0877 4892 LanmanServer - ok
21:16:53.0897 4892 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
21:16:53.0927 4892 LanmanWorkstation - ok
21:16:53.0947 4892 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
21:16:53.0987 4892 lltdio - ok
21:16:54.0007 4892 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
21:16:54.0047 4892 lltdsvc - ok
21:16:54.0057 4892 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
21:16:54.0097 4892 lmhosts - ok
21:16:54.0117 4892 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
21:16:54.0127 4892 LSI_FC - ok
21:16:54.0147 4892 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
21:16:54.0157 4892 LSI_SAS - ok
21:16:54.0167 4892 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\drivers\lsi_sas2.sys
21:16:54.0177 4892 LSI_SAS2 - ok
21:16:54.0197 4892 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
21:16:54.0207 4892 LSI_SCSI - ok
21:16:54.0217 4892 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
21:16:54.0247 4892 luafv - ok
21:16:54.0277 4892 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
21:16:54.0287 4892 Mcx2Svc - ok
21:16:54.0307 4892 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\drivers\megasas.sys
21:16:54.0317 4892 megasas - ok
21:16:54.0417 4892 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\drivers\MegaSR.sys
21:16:54.0437 4892 MegaSR - ok
21:16:54.0457 4892 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
21:16:54.0497 4892 MMCSS - ok
21:16:54.0507 4892 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
21:16:54.0537 4892 Modem - ok
21:16:54.0547 4892 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
21:16:54.0557 4892 monitor - ok
21:16:54.0577 4892 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
21:16:54.0587 4892 mouclass - ok
21:16:54.0597 4892 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
21:16:54.0617 4892 mouhid - ok
21:16:54.0617 4892 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
21:16:54.0627 4892 mountmgr - ok
21:16:54.0677 4892 [ 528A5C2570F468155A1B3CF0A2FF5EBD ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
21:16:54.0697 4892 MozillaMaintenance - ok
21:16:54.0707 4892 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
21:16:54.0717 4892 mpio - ok
21:16:54.0727 4892 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
21:16:54.0767 4892 mpsdrv - ok
21:16:54.0797 4892 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll
21:16:54.0837 4892 MpsSvc - ok
21:16:54.0867 4892 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
21:16:54.0877 4892 MRxDAV - ok
21:16:54.0917 4892 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
21:16:54.0927 4892 mrxsmb - ok
21:16:54.0937 4892 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
21:16:54.0957 4892 mrxsmb10 - ok
21:16:54.0967 4892 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
21:16:54.0977 4892 mrxsmb20 - ok
21:16:54.0997 4892 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys
21:16:55.0007 4892 msahci - ok
21:16:55.0017 4892 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
21:16:55.0027 4892 msdsm - ok
21:16:55.0047 4892 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
21:16:55.0057 4892 MSDTC - ok
21:16:55.0067 4892 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
21:16:55.0097 4892 Msfs - ok
21:16:55.0137 4892 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
21:16:55.0167 4892 mshidkmdf - ok
21:16:55.0167 4892 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
21:16:55.0177 4892 msisadrv - ok
21:16:55.0227 4892 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
21:16:55.0257 4892 MSiSCSI - ok
21:16:55.0267 4892 msiserver - ok
21:16:55.0287 4892 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
21:16:55.0317 4892 MSKSSRV - ok
21:16:55.0337 4892 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
21:16:55.0367 4892 MSPCLOCK - ok
21:16:55.0377 4892 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
21:16:55.0407 4892 MSPQM - ok
21:16:55.0417 4892 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
21:16:55.0437 4892 MsRPC - ok
21:16:55.0447 4892 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
21:16:55.0457 4892 mssmbios - ok
21:16:55.0477 4892 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
21:16:55.0507 4892 MSTEE - ok
21:16:55.0517 4892 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\drivers\MTConfig.sys
21:16:55.0527 4892 MTConfig - ok
21:16:55.0537 4892 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
21:16:55.0547 4892 Mup - ok
21:16:55.0567 4892 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
21:16:55.0607 4892 napagent - ok
21:16:55.0647 4892 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
21:16:55.0667 4892 NativeWifiP - ok
21:16:55.0717 4892 [ 1BBBF640BC0E0B750537BAECE8D66C18 ] NAUpdate C:\Program Files (x86)\Nero\Update\NASvc.exe
21:16:55.0737 4892 NAUpdate - ok
21:16:55.0747 4892 [ 7B2D90BBBBED11C8DFBA441D34AE901E ] NBVol C:\Windows\system32\DRIVERS\NBVol.sys
21:16:55.0757 4892 NBVol - ok
21:16:55.0847 4892 [ 4FE7B5757279D82C4D171E9F7FD52A75 ] NBVolUp C:\Windows\system32\DRIVERS\NBVolUp.sys
21:16:55.0857 4892 NBVolUp - ok
21:16:55.0907 4892 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\Windows\system32\drivers\ndis.sys
21:16:55.0927 4892 NDIS - ok
21:16:55.0947 4892 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
21:16:55.0987 4892 NdisCap - ok
21:16:55.0997 4892 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
21:16:56.0037 4892 NdisTapi - ok
21:16:56.0077 4892 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
21:16:56.0107 4892 Ndisuio - ok
21:16:56.0127 4892 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
21:16:56.0157 4892 NdisWan - ok
21:16:56.0187 4892 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
21:16:56.0217 4892 NDProxy - ok
21:16:56.0227 4892 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
21:16:56.0257 4892 NetBIOS - ok
21:16:56.0277 4892 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
21:16:56.0307 4892 NetBT - ok
21:16:56.0327 4892 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe
21:16:56.0337 4892 Netlogon - ok
21:16:56.0387 4892 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
21:16:56.0417 4892 Netman - ok
21:16:56.0427 4892 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
21:16:56.0467 4892 netprofm - ok
21:16:56.0547 4892 [ C7D577CB6058454228C7693DA086EF51 ] netr28ux C:\Windows\system32\DRIVERS\netr28ux.sys
21:16:56.0587 4892 netr28ux - ok
21:16:56.0617 4892 [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
21:16:56.0627 4892 NetTcpPortSharing - ok
21:16:56.0647 4892 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
21:16:56.0657 4892 nfrd960 - ok
21:16:56.0877 4892 [ 97E0383BD4CB6CF411DC8776992B8BD7 ] NIHardwareService C:\Program Files\Common Files\Native Instruments\Hardware\NIHardwareService.exe
21:16:56.0977 4892 NIHardwareService - ok
21:16:57.0007 4892 [ 8AD77806D336673F270DB31645267293 ] NlaSvc C:\Windows\System32\nlasvc.dll
21:16:57.0017 4892 NlaSvc - ok
21:16:57.0027 4892 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
21:16:57.0057 4892 Npfs - ok
21:16:57.0077 4892 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
21:16:57.0107 4892 nsi - ok
21:16:57.0117 4892 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
21:16:57.0147 4892 nsiproxy - ok
21:16:57.0207 4892 [ B98F8C6E31CD07B2E6F71F7F648E38C0 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
21:16:57.0237 4892 Ntfs - ok
21:16:57.0247 4892 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
21:16:57.0277 4892 Null - ok
21:16:57.0307 4892 [ 786DB821BFD57C0551DBBE4F75384A7D ] nusb3hub C:\Windows\system32\drivers\nusb3hub.sys
21:16:57.0317 4892 nusb3hub - ok
21:16:57.0327 4892 [ DAA8005CAF745042BB427A1ED7433354 ] nusb3xhc C:\Windows\system32\drivers\nusb3xhc.sys
21:16:57.0337 4892 nusb3xhc - ok
21:16:57.0597 4892 [ FCBA1C22727939E7CFF9EB08FE9692AB ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys
21:16:57.0757 4892 nvlddmkm - ok
21:16:57.0797 4892 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys
21:16:57.0807 4892 nvraid - ok
21:16:57.0827 4892 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys
21:16:57.0837 4892 nvstor - ok
21:16:57.0877 4892 [ 10C232F6CFFD51D2332898AE7AE0FF23 ] nvsvc C:\Windows\system32\nvvsvc.exe
21:16:57.0907 4892 nvsvc - ok
21:16:57.0977 4892 [ 4789E020D2617046862D1790FC235FF6 ] nvUpdatusService C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
21:16:57.0997 4892 nvUpdatusService - ok
21:16:58.0017 4892 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
21:16:58.0027 4892 nv_agp - ok
21:16:58.0037 4892 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
21:16:58.0047 4892 ohci1394 - ok
21:16:58.0077 4892 [ DA345DE3B450E9E1691E7B9956D8FFC3 ] OMSI download service C:\Program Files (x86)\Sony Ericsson\Sony Ericsson PC Suite\SupServ.exe
21:16:58.0087 4892 OMSI download service ( UnsignedFile.Multi.Generic ) - warning
21:16:58.0087 4892 OMSI download service - detected UnsignedFile.Multi.Generic (1)
21:16:58.0117 4892 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
21:16:58.0127 4892 p2pimsvc - ok
21:16:58.0147 4892 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
21:16:58.0167 4892 p2psvc - ok
21:16:58.0177 4892 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\drivers\parport.sys
21:16:58.0187 4892 Parport - ok
21:16:58.0207 4892 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys
21:16:58.0227 4892 partmgr - ok
21:16:58.0237 4892 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
21:16:58.0257 4892 PcaSvc - ok
21:16:58.0277 4892 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
21:16:58.0287 4892 pci - ok
21:16:58.0287 4892 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
21:16:58.0297 4892 pciide - ok
21:16:58.0317 4892 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
21:16:58.0327 4892 pcmcia - ok
21:16:58.0337 4892 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
21:16:58.0347 4892 pcw - ok
21:16:58.0367 4892 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
21:16:58.0407 4892 PEAUTH - ok
21:16:58.0587 4892 [ B9B0A4299DD2D76A4243F75FD54DC680 ] PeerDistSvc C:\Windows\system32\peerdistsvc.dll
21:16:58.0607 4892 PeerDistSvc - ok
21:16:58.0677 4892 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
21:16:58.0687 4892 PerfHost - ok
21:16:58.0757 4892 [ 1E81496AFF9D7FA2B4C4032B746DE5B9 ] Ph3xIB64 C:\Windows\system32\DRIVERS\Ph3xIB64.sys
21:16:58.0787 4892 Ph3xIB64 - ok
21:16:58.0827 4892 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
21:16:58.0867 4892 pla - ok
21:16:58.0907 4892 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
21:16:58.0917 4892 PlugPlay - ok
21:16:58.0927 4892 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
21:16:58.0937 4892 PNRPAutoReg - ok
21:16:58.0957 4892 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
21:16:58.0977 4892 PNRPsvc - ok
21:16:59.0017 4892 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
21:16:59.0047 4892 PolicyAgent - ok
21:16:59.0077 4892 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
21:16:59.0117 4892 Power - ok
21:16:59.0127 4892 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
21:16:59.0167 4892 PptpMiniport - ok
21:16:59.0187 4892 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\drivers\processr.sys
21:16:59.0197 4892 Processor - ok
21:16:59.0217 4892 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll
21:16:59.0227 4892 ProfSvc - ok
21:16:59.0237 4892 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
21:16:59.0247 4892 ProtectedStorage - ok
21:16:59.0277 4892 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
21:16:59.0307 4892 Psched - ok
21:16:59.0347 4892 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\drivers\ql2300.sys
21:16:59.0377 4892 ql2300 - ok
21:16:59.0397 4892 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\drivers\ql40xx.sys
21:16:59.0407 4892 ql40xx - ok
21:16:59.0417 4892 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
21:16:59.0437 4892 QWAVE - ok
21:16:59.0457 4892 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
21:16:59.0467 4892 QWAVEdrv - ok
21:16:59.0487 4892 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
21:16:59.0517 4892 RasAcd - ok
21:16:59.0547 4892 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
21:16:59.0577 4892 RasAgileVpn - ok
21:16:59.0597 4892 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
21:16:59.0627 4892 RasAuto - ok
21:16:59.0637 4892 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
21:16:59.0667 4892 Rasl2tp - ok
21:16:59.0707 4892 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
21:16:59.0737 4892 RasMan - ok
21:16:59.0747 4892 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
21:16:59.0777 4892 RasPppoe - ok
21:16:59.0777 4892 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
21:16:59.0817 4892 RasSstp - ok
21:16:59.0837 4892 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
21:16:59.0867 4892 rdbss - ok
21:16:59.0867 4892 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
21:16:59.0887 4892 rdpbus - ok
21:16:59.0897 4892 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
21:16:59.0927 4892 RDPCDD - ok
21:16:59.0957 4892 [ 1B6163C503398B23FF8B939C67747683 ] RDPDR C:\Windows\system32\drivers\rdpdr.sys
21:16:59.0967 4892 RDPDR - ok
21:16:59.0977 4892 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
21:17:00.0007 4892 RDPENCDD - ok
21:17:00.0017 4892 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
21:17:00.0047 4892 RDPREFMP - ok
21:17:00.0067 4892 [ 313F68E1A3E6345A4F47A36B07062F34 ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
21:17:00.0077 4892 RdpVideoMiniport - ok
21:17:00.0137 4892 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
21:17:00.0147 4892 RDPWD - ok
21:17:00.0177 4892 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
21:17:00.0187 4892 rdyboost - ok
21:17:00.0217 4892 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
21:17:00.0247 4892 RemoteAccess - ok
21:17:00.0267 4892 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
21:17:00.0307 4892 RemoteRegistry - ok
21:17:00.0317 4892 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
21:17:00.0347 4892 RpcEptMapper - ok
21:17:00.0377 4892 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
21:17:00.0387 4892 RpcLocator - ok
21:17:00.0417 4892 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll
21:17:00.0457 4892 RpcSs - ok
21:17:00.0467 4892 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
21:17:00.0497 4892 rspndr - ok
21:17:00.0537 4892 [ EE082E06A82FF630351D1E0EBBD3D8D0 ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys
21:17:00.0557 4892 RTL8167 - ok
21:17:00.0577 4892 [ E60C0A09F997826C7627B244195AB581 ] s3cap C:\Windows\system32\drivers\vms3cap.sys
21:17:00.0587 4892 s3cap - ok
21:17:00.0607 4892 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe
21:17:00.0617 4892 SamSs - ok
21:17:00.0637 4892 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
21:17:00.0647 4892 sbp2port - ok
21:17:00.0657 4892 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
21:17:00.0697 4892 SCardSvr - ok
21:17:00.0707 4892 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
21:17:00.0737 4892 scfilter - ok
21:17:00.0777 4892 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
21:17:00.0817 4892 Schedule - ok
21:17:00.0837 4892 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
21:17:00.0867 4892 SCPolicySvc - ok
21:17:00.0887 4892 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
21:17:00.0897 4892 SDRSVC - ok
21:17:00.0907 4892 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
21:17:00.0937 4892 secdrv - ok
21:17:00.0957 4892 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
21:17:00.0987 4892 seclogon - ok
21:17:01.0017 4892 [ EDE7A1D2715AAC2190D51DC07AFD44E3 ] seehcri C:\Windows\system32\DRIVERS\seehcri.sys
21:17:01.0037 4892 seehcri - ok
21:17:01.0047 4892 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\system32\sens.dll
21:17:01.0087 4892 SENS - ok
21:17:01.0097 4892 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
21:17:01.0107 4892 SensrSvc - ok
21:17:01.0107 4892 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
21:17:01.0127 4892 Serenum - ok
21:17:01.0147 4892 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
21:17:01.0157 4892 Serial - ok
21:17:01.0187 4892 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\drivers\sermouse.sys
21:17:01.0197 4892 sermouse - ok
21:17:01.0237 4892 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
21:17:01.0267 4892 SessionEnv - ok
21:17:01.0267 4892 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
21:17:01.0287 4892 sffdisk - ok
21:17:01.0287 4892 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
21:17:01.0307 4892 sffp_mmc - ok
21:17:01.0307 4892 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
21:17:01.0317 4892 sffp_sd - ok
21:17:01.0327 4892 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\drivers\sfloppy.sys
21:17:01.0337 4892 sfloppy - ok
21:17:01.0377 4892 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
21:17:01.0417 4892 SharedAccess - ok
21:17:01.0437 4892 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
21:17:01.0477 4892 ShellHWDetection - ok
21:17:01.0497 4892 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\drivers\SiSRaid2.sys
21:17:01.0507 4892 SiSRaid2 - ok
21:17:01.0517 4892 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
21:17:01.0527 4892 SiSRaid4 - ok
21:17:01.0547 4892 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
21:17:01.0577 4892 Smb - ok
21:17:01.0597 4892 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
21:17:01.0617 4892 SNMPTRAP - ok
21:17:01.0627 4892 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
21:17:01.0637 4892 spldr - ok
21:17:01.0667 4892 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\Windows\System32\spoolsv.exe
21:17:01.0687 4892 Spooler - ok
21:17:01.0767 4892 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
21:17:01.0827 4892 sppsvc - ok
21:17:01.0847 4892 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
21:17:01.0877 4892 sppuinotify - ok
21:17:01.0897 4892 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
21:17:01.0907 4892 srv - ok
21:17:01.0937 4892 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
21:17:01.0947 4892 srv2 - ok
21:17:01.0957 4892 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
21:17:01.0977 4892 srvnet - ok
21:17:01.0997 4892 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
21:17:02.0037 4892 SSDPSRV - ok
21:17:02.0047 4892 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
21:17:02.0077 4892 SstpSvc - ok
21:17:02.0117 4892 [ 5A19667A580B1CE886EAF968B9743F45 ] Stereo Service C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
21:17:02.0127 4892 Stereo Service - ok
21:17:02.0147 4892 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\drivers\stexstor.sys
21:17:02.0157 4892 stexstor - ok
21:17:02.0187 4892 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
21:17:02.0217 4892 stisvc - ok
21:17:02.0227 4892 [ 7785DC213270D2FC066538DAF94087E7 ] storflt C:\Windows\system32\drivers\vmstorfl.sys
21:17:02.0237 4892 storflt - ok
21:17:02.0247 4892 [ D34E4943D5AC096C8EDEEBFD80D76E23 ] storvsc C:\Windows\system32\drivers\storvsc.sys
21:17:02.0267 4892 storvsc - ok
21:17:02.0277 4892 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\DRIVERS\swenum.sys
21:17:02.0287 4892 swenum - ok
21:17:02.0317 4892 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
21:17:02.0357 4892 swprv - ok
21:17:02.0377 4892 [ C3A39C4079305480972D29C44B868C78 ] Synth3dVsc C:\Windows\system32\drivers\synth3dvsc.sys
21:17:02.0387 4892 Synth3dVsc - ok
21:17:02.0427 4892 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
21:17:02.0467 4892 SysMain - ok
21:17:02.0477 4892 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
21:17:02.0497 4892 TabletInputService - ok
21:17:02.0517 4892 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
21:17:02.0557 4892 TapiSrv - ok
21:17:02.0567 4892 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
21:17:02.0597 4892 TBS - ok
21:17:02.0657 4892 [ 9849EA3843A2ADBDD1497E97A85D8CAE ] Tcpip C:\Windows\system32\drivers\tcpip.sys
21:17:02.0697 4892 Tcpip - ok
21:17:02.0757 4892 [ 9849EA3843A2ADBDD1497E97A85D8CAE ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
21:17:02.0797 4892 TCPIP6 - ok
21:17:02.0817 4892 [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
21:17:02.0837 4892 tcpipreg - ok
21:17:02.0847 4892 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
21:17:02.0867 4892 TDPIPE - ok
21:17:02.0887 4892 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
21:17:02.0897 4892 TDTCP - ok
21:17:02.0917 4892 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
21:17:02.0957 4892 tdx - ok
21:17:02.0967 4892 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
21:17:02.0977 4892 TermDD - ok
21:17:03.0007 4892 [ EF4469AB69EB15E5D3754E6AEAFBCD3D ] terminpt C:\Windows\system32\drivers\terminpt.sys
21:17:03.0017 4892 terminpt - ok
21:17:03.0047 4892 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
21:17:03.0087 4892 TermService - ok
21:17:03.0097 4892 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
21:17:03.0117 4892 Themes - ok
21:17:03.0127 4892 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
21:17:03.0157 4892 THREADORDER - ok
21:17:03.0177 4892 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
21:17:03.0217 4892 TrkWks - ok
21:17:03.0257 4892 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
21:17:03.0297 4892 TrustedInstaller - ok
21:17:03.0317 4892 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
21:17:03.0347 4892 tssecsrv - ok
21:17:03.0377 4892 [ 17C6B51CBCCDED95B3CC14E22791F85E ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
21:17:03.0387 4892 TsUsbFlt - ok
21:17:03.0407 4892 [ AD64450A4ABE076F5CB34CC08EEACB07 ] TsUsbGD C:\Windows\system32\drivers\TsUsbGD.sys
21:17:03.0417 4892 TsUsbGD - ok
21:17:03.0457 4892 [ E1748D04AE40118B62BC18AC86032192 ] tsusbhub C:\Windows\system32\drivers\tsusbhub.sys
21:17:03.0467 4892 tsusbhub - ok
21:17:03.0807 4892 [ 50D8102EECC446F160C8C31AF927242D ] TuneUp.UtilitiesSvc C:\Program Files (x86)\TuneUp Utilities 2013\TuneUpUtilitiesService64.exe
21:17:03.0847 4892 TuneUp.UtilitiesSvc - ok
21:17:03.0867 4892 [ 7BC3381C0713F613B31ACDE38B71CB53 ] TuneUpUtilitiesDrv C:\Program Files (x86)\TuneUp Utilities 2013\TuneUpUtilitiesDriver64.sys
21:17:03.0877 4892 TuneUpUtilitiesDrv - ok
21:17:03.0897 4892 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
21:17:03.0927 4892 tunnel - ok
21:17:03.0937 4892 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\drivers\uagp35.sys
21:17:03.0957 4892 uagp35 - ok
21:17:03.0967 4892 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
21:17:03.0997 4892 udfs - ok
21:17:04.0037 4892 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
21:17:04.0047 4892 UI0Detect - ok
21:17:04.0087 4892 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
21:17:04.0097 4892 uliagpkx - ok
21:17:04.0157 4892 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
21:17:04.0177 4892 umbus - ok
21:17:04.0187 4892 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\drivers\umpass.sys
21:17:04.0197 4892 UmPass - ok
21:17:04.0217 4892 [ A293DCD756D04D8492A750D03B9A297C ] UmRdpService C:\Windows\System32\umrdp.dll
21:17:04.0227 4892 UmRdpService - ok
21:17:04.0247 4892 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
21:17:04.0287 4892 upnphost - ok
21:17:04.0327 4892 [ 82E8F44688E6FAC57B5B7C6FC7ADBC2A ] usbaudio C:\Windows\system32\drivers\usbaudio.sys
21:17:04.0337 4892 usbaudio - ok
21:17:04.0357 4892 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
21:17:04.0367 4892 usbccgp - ok
21:17:04.0417 4892 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
21:17:04.0437 4892 usbcir - ok
21:17:04.0477 4892 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
21:17:04.0487 4892 usbehci - ok
21:17:04.0537 4892 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
21:17:04.0557 4892 usbhub - ok
21:17:04.0627 4892 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\Windows\system32\drivers\usbohci.sys
21:17:04.0637 4892 usbohci - ok
21:17:04.0707 4892 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
21:17:04.0727 4892 usbprint - ok
21:17:04.0747 4892 [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
21:17:04.0767 4892 usbscan - ok
21:17:04.0787 4892 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
21:17:04.0797 4892 USBSTOR - ok
21:17:04.0807 4892 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys
21:17:04.0817 4892 usbuhci - ok
21:17:04.0867 4892 [ 7B28E2FBE75115660FAB31079C0A9F29 ] usb_rndisx C:\Windows\system32\DRIVERS\usb8023x.sys
21:17:04.0877 4892 usb_rndisx - ok
21:17:04.0897 4892 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
21:17:04.0927 4892 UxSms - ok
21:17:04.0967 4892 [ CC3A994F4733FF4CD8CAF09DF892E61C ] UxTuneUp C:\Windows\System32\uxtuneup.dll
21:17:04.0977 4892 UxTuneUp - ok
21:17:04.0987 4892 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe
21:17:04.0997 4892 VaultSvc - ok
21:17:05.0017 4892 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
21:17:05.0027 4892 vdrvroot - ok
21:17:05.0047 4892 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe
21:17:05.0087 4892 vds - ok
21:17:05.0097 4892 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
21:17:05.0107 4892 vga - ok
21:17:05.0127 4892 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
21:17:05.0157 4892 VgaSave - ok
21:17:05.0167 4892 VGPU - ok
21:17:05.0177 4892 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
21:17:05.0187 4892 vhdmp - ok
21:17:05.0197 4892 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys
21:17:05.0207 4892 viaide - ok
21:17:05.0237 4892 [ 86EA3E79AE350FEA5331A1303054005F ] vmbus C:\Windows\system32\drivers\vmbus.sys
21:17:05.0247 4892 vmbus - ok
21:17:05.0267 4892 [ 7DE90B48F210D29649380545DB45A187 ] VMBusHID C:\Windows\system32\drivers\VMBusHID.sys
21:17:05.0277 4892 VMBusHID - ok
21:17:05.0277 4892 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
21:17:05.0287 4892 volmgr - ok
21:17:05.0297 4892 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
21:17:05.0317 4892 volmgrx - ok
21:17:05.0337 4892 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
21:17:05.0357 4892 volsnap - ok
21:17:05.0387 4892 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
21:17:05.0397 4892 vsmraid - ok
21:17:05.0437 4892 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe
21:17:05.0487 4892 VSS - ok
21:17:05.0497 4892 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
21:17:05.0517 4892 vwifibus - ok
21:17:05.0537 4892 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
21:17:05.0547 4892 vwififlt - ok
21:17:05.0557 4892 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
21:17:05.0597 4892 W32Time - ok
21:17:05.0617 4892 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\drivers\wacompen.sys
21:17:05.0627 4892 WacomPen - ok
21:17:05.0647 4892 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
21:17:05.0677 4892 WANARP - ok
21:17:05.0677 4892 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
21:17:05.0717 4892 Wanarpv6 - ok
21:17:05.0757 4892 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe
21:17:05.0787 4892 wbengine - ok
21:17:05.0807 4892 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
21:17:05.0827 4892 WbioSrvc - ok
21:17:05.0837 4892 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll
21:17:05.0857 4892 wcncsvc - ok
21:17:05.0877 4892 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
21:17:05.0887 4892 WcsPlugInService - ok
21:17:05.0897 4892 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\drivers\wd.sys
21:17:05.0907 4892 Wd - ok
21:17:05.0927 4892 [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
21:17:05.0957 4892 Wdf01000 - ok
21:17:05.0967 4892 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
21:17:05.0987 4892 WdiServiceHost - ok
21:17:05.0997 4892 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
21:17:06.0007 4892 WdiSystemHost - ok
21:17:06.0027 4892 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll
21:17:06.0047 4892 WebClient - ok
21:17:06.0067 4892 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
21:17:06.0097 4892 Wecsvc - ok
21:17:06.0117 4892 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
21:17:06.0157 4892 wercplsupport - ok
21:17:06.0177 4892 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
21:17:06.0207 4892 WerSvc - ok
21:17:06.0217 4892 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
21:17:06.0257 4892 WfpLwf - ok
21:17:06.0277 4892 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
21:17:06.0287 4892 WIMMount - ok
21:17:06.0307 4892 WinDefend - ok
21:17:06.0307 4892 WinHttpAutoProxySvc - ok
21:17:06.0367 4892 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
21:17:06.0397 4892 Winmgmt - ok
21:17:06.0457 4892 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll
21:17:06.0517 4892 WinRM - ok
21:17:06.0557 4892 [ FE88B288356E7B47B74B13372ADD906D ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
21:17:06.0567 4892 WinUsb - ok
21:17:06.0597 4892 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
21:17:06.0627 4892 Wlansvc - ok
21:17:06.0627 4892 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
21:17:06.0647 4892 WmiAcpi - ok
21:17:06.0657 4892 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
21:17:06.0667 4892 wmiApSrv - ok
21:17:06.0687 4892 WMPNetworkSvc - ok
21:17:06.0707 4892 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
21:17:06.0717 4892 WPCSvc - ok
21:17:06.0727 4892 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
21:17:06.0747 4892 WPDBusEnum - ok
21:17:06.0757 4892 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
21:17:06.0787 4892 ws2ifsl - ok
21:17:06.0817 4892 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\Windows\system32\wscsvc.dll
21:17:06.0837 4892 wscsvc - ok
21:17:06.0837 4892 WSearch - ok
21:17:06.0907 4892 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
21:17:06.0957 4892 wuauserv - ok
21:17:06.0987 4892 [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
21:17:06.0997 4892 WudfPf - ok
21:17:07.0017 4892 [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
21:17:07.0037 4892 WUDFRd - ok
21:17:07.0057 4892 [ B20F051B03A966392364C83F009F7D17 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
21:17:07.0067 4892 wudfsvc - ok
21:17:07.0097 4892 [ FE90B750AB808FB9DD8FBB428B5FF83B ] WwanSvc C:\Windows\System32\wwansvc.dll
21:17:07.0117 4892 WwanSvc - ok
21:17:07.0127 4892 [ 6533F30045B0A234783BD8B4069F0433 ] XUIF C:\Windows\system32\Drivers\x10ufx2.sys
21:17:07.0137 4892 XUIF - ok
21:17:07.0147 4892 ================ Scan global ===============================
21:17:07.0177 4892 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
21:17:07.0207 4892 [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\system32\winsrv.dll
21:17:07.0217 4892 [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\system32\winsrv.dll
21:17:07.0237 4892 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
21:17:07.0267 4892 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
21:17:07.0277 4892 [Global] - ok
21:17:07.0277 4892 ================ Scan MBR ==================================
21:17:07.0297 4892 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
21:17:07.0537 4892 \Device\Harddisk0\DR0 - ok
21:17:07.0537 4892 ================ Scan VBR ==================================
21:17:07.0547 4892 [ C8D6EE12809A92735CF6B362F07AFB6C ] \Device\Harddisk0\DR0\Partition1
21:17:07.0547 4892 \Device\Harddisk0\DR0\Partition1 - ok
21:17:07.0557 4892 [ 42CCD9485FB7BDD9CD77EC03527407FE ] \Device\Harddisk0\DR0\Partition2
21:17:07.0557 4892 \Device\Harddisk0\DR0\Partition2 - ok
21:17:07.0557 4892 ============================================================
21:17:07.0557 4892 Scan finished
21:17:07.0557 4892 ============================================================
21:17:07.0567 3832 Detected object count: 1
21:17:07.0567 3832 Actual detected object count: 1
21:17:49.0097 3832 OMSI download service ( UnsignedFile.Multi.Generic ) - skipped by user
21:17:49.0097 3832 OMSI download service ( UnsignedFile.Multi.Generic ) - User select action: Skip
|
|
07.07.2013, 20:57
| #4 |
| /// the machine /// TB-Ausbilder | Avira kann TR/ATRAPS.Gen2 nicht löschen Hi, Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop:  FRST 32-Bit | FRST 64-Bit(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
08.07.2013, 20:03
| #5 |
| | Avira kann TR/ATRAPS.Gen2 nicht löschen Hallo hier die geforderten Logs FRST Logfile: Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 08-07-2013
Ran by Hugo (administrator) on 08-07-2013 20:49:19
Running from C:\Users\Hugo\Desktop
Windows 7 Ultimate Service Pack 1 (X64) OS Language: German Standard
Internet Explorer Version 10
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
(Native Instruments GmbH) C:\Program Files\Common Files\Native Instruments\Hardware\NIHardwareService.exe
() C:\Program Files (x86)\Sony Ericsson\Sony Ericsson PC Suite\SupServ.exe
() C:\Program Files (x86)\Hardcopy\hcdll2_ex_x64.exe
() C:\Program Files (x86)\Hardcopy\hcdll2_ex_Win32.exe
(TuneUp Software) C:\Program Files (x86)\TuneUp Utilities 2013\TuneUpUtilitiesService64.exe
(TuneUp Software) C:\Program Files (x86)\TuneUp Utilities 2013\TuneUpUtilitiesApp64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(sw4you) C:\Program Files (x86)\Hardcopy\hardcopy.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe
(Nero AG) C:\Program Files (x86)\Nero\Update\NASvc.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_7_700_224.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_7_700_224.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s [8306208 2009-10-21] (Realtek Semiconductor)
HKLM Group Policy restriction on software: C:\Program Files (x86)\Avira\AntiVir Desktop\avnotify.exe <====== ATTENTION
HKLM Group Policy restriction on software: %HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRoot% <====== ATTENTION
HKLM Group Policy restriction on software: %HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ProgramFilesDir% <====== ATTENTION
HKCU\...\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun [1475584 2010-11-21] (Microsoft Corporation)
HKCU\...\Run: [Sony Ericsson PC Suite] "C:\Program Files (x86)\Sony Ericsson\Sony Ericsson PC Suite\SEPCSuite.exe" /systray /nologon [466944 2011-06-17] (Sony Ericsson Mobile Communications AB)
HKLM-x32\...\Run: [avgnt] "C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe" /min [345144 2013-06-26] (Avira Operations GmbH & Co. KG)
Startup: C:\ProgramData\Start Menu\Programs\Startup\Hardcopy.LNK
ShortcutTarget: Hardcopy.LNK -> C:\Program Files (x86)\Hardcopy\hardcopy.exe (sw4you)
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://blekko.com/ws/?source=5f97ddbe&tbp=homepage&u=92013be1000000000000000000000000
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
URLSearchHook: (No Name) - {dc84d6f4-abf5-441d-bdef-65f3f4d7aabe} - No File
HKCU SearchScopes: DefaultScope {5556DF4E-218B-479F-A077-FB29C13A8F2F} URL = hxxp://blekko.com/ws/?source=5f97ddbe&tbp=rbox&u=92013be1000000000000000000000000&q={searchTerms}&r=497
SearchScopes: HKCU - {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} URL = hxxp://www.delta-search.com/?q={searchTerms}&affID=119370&babsrc=SP_ss&mntrId=92013be1000000000000000000000000
SearchScopes: HKCU - {5556DF4E-218B-479F-A077-FB29C13A8F2F} URL = hxxp://blekko.com/ws/?source=5f97ddbe&tbp=rbox&u=92013be1000000000000000000000000&q={searchTerms}&r=497
SearchScopes: HKCU - {59D4C137-30C3-4B32-8E39-3BF77112D003} URL = hxxp://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT3175297&CUI=UN10854294767861158
SearchScopes: HKCU - {73C4D5B8-5B18-4754-8B3F-695D61B7DBCE} URL = hxxp://websearch.ask.com/redirect?client=ie&tb=AVR-4&o=APN10261&src=crm&q={searchTerms}&locale=de_DE&apn_ptnrs=^AGS&apn_dtid=^YYYYYY^YY^DE&apn_uid=8ad91ed9-8619-4e5a-83da-ab1296f06192&apn_sauid=FCF23FC6-B7FD-454C-9136-53FD9C463EEE
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO: DVDVideoSoft WebPageAdjuster Class - {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} - C:\Program Files (x86)\Common Files\DVDVideoSoft\bin\IEDownloadMenuAndBtns64.dll (DVDVideoSoft Ltd.)
BHO-x32: JDownloader Toolbar - {dc84d6f4-abf5-441d-bdef-65f3f4d7aabe} - C:\Program Files (x86)\JDownloader\prxtbJDo1.dll (Conduit Ltd.)
BHO-x32: DVDVideoSoft WebPageAdjuster Class - {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} - C:\Program Files (x86)\Common Files\DVDVideoSoft\bin\IEDownloadMenuAndBtns.dll (DVDVideoSoft Ltd.)
Toolbar: HKLM-x32 - JDownloader Toolbar - {dc84d6f4-abf5-441d-bdef-65f3f4d7aabe} - C:\Program Files (x86)\JDownloader\prxtbJDo1.dll (Conduit Ltd.)
Toolbar: HKCU - No Name - {DC84D6F4-ABF5-441D-BDEF-65F3F4D7AABE} - No File
Winsock: Catalog5 01 %SystemRoot%\System32\mswsock.dll [232448] (Microsoft Corporation) ATTENTION: The LibraryPath should be "%SystemRoot%\system32\NLAapi.dll"
Winsock: Catalog5-x64 01 %SystemRoot%\System32\mswsock.dll [326144] (Microsoft Corporation) ATTENTION: The LibraryPath should be "%SystemRoot%\system32\NLAapi.dll"
Tcpip\..\Interfaces\{A600A043-1D3A-44D6-8C18-CAB38C55DBC4}: [NameServer]217.0.43.97 217.0.43.113
FireFox:
========
FF ProfilePath: C:\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\attpgko0.default
FF user.js: detected! => C:\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\attpgko0.default\user.js
FF Homepage: about:home
FF Keyword.URL: hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT3175297&SearchSource=2&CUI=UN21635615346373179&UM=UM_ID&q=
FF NetworkProxy: "autoconfig_url", "data:text/javascript,function%20FindProxyForURL(url%2C%20host)%20%7Bif%20((url.indexOf('proxmate%3Dactive')%20!%3D%20-1%20%26%26%20url.indexOf('amazonaws.com')%20%3D%3D%20-1)%20%7C%7C%20(url.indexOf('proxmate%3Dus')%20!%3D%20-1)%20%7C%7C%20host%20%3D%3D%20's.hulu.com'%20%7C%7C%20url.indexOf('discoverymedia.com')%20!%3D%20-1%20%7C%7C%20url.indexOf('southparkstudios.com')%20!%3D%20-1%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fwww.mtv.com*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fmedia.mtvnservices.com*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fgrooveshark.com*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fretro.grooveshark.com*')%20%7C%7C%20url.indexOf('play.google.com')%20!%3D%20-1%20%7C%7C%20(url.indexOf('turntable.fm')%20!%3D%20-1%20%26%26%20url.indexOf('static.turntable.fm')%20%3D%3D%20-1%20%26%26%20url.indexOf('s3.amazonaws.com')%20%3D%3D%20-1%20%26%26%20url.indexOf('ping.chartbeat.net')%20%3D%3D%20-1)%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fsongza.com*')%20%7C%7C%20url.indexOf('.brightcove.com')%20!%3D%20-1%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fwww.iheart.com*')%20%7C%7C%20host%20%3D%3D%20'www.pandora.com'%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fwww.crunchyroll.com*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fwww.funimation.com*')%20%7C%7C%20shExpMatch(url%2C%20'https%3A%2F%2Fsecure.funimation.com*')%20%7C%7C%20url.indexOf('vevo.com')%20!%3D%20-1)%20%7B%20return%20'PROXY%20ab-us17.personalitycores.com%3A8000%3B%20PROXY%20ab-us13.personalitycores.com%3A8000%3B%20PROXY%20ab-us03.personalitycores.com%3A8000%3B%20PROXY%20ab-us14.personalitycores.com%3A8000%3B%20PROXY%20ab-us08.personalitycores.com%3A8000%3B%20PROXY%20ab-us12.personalitycores.com%3A8000%3B%20PROXY%20ab-us02.personalitycores.com%3A8000%3B%20PROXY%20ab-us07.personalitycores.com%3A8000%3B%20PROXY%20ab-us11.personalitycores.com%3A8000%3B%20PROXY%20ab-us10.personalitycores.com%3A8000%3B%20PROXY%20ab-us01.personalitycores.com%3A8000%3B%20PROXY%20ab-us15.personalitycores.com%3A8000%3B%20PROXY%20ab-us18.personalitycores.com%3A8000%3B%20PROXY%20ab-us09.personalitycores.com%3A8000%3B%20PROXY%20ab-us16.personalitycores.com%3A8000'%3B%7D%20%20else%20%7B%20return%20'DIRECT'%3B%20%7D%7D"
FF NetworkProxy: "type", 2
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_7_700_224.dll ()
FF Plugin: @java.com/DTPlugin,version=10.11.2 - C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.11.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.20125.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=2.0.5 - C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_7_700_224.dll ()
FF Plugin-x32: @adobe.com/ShockwavePlayer - C:\Windows\SysWOW64\Adobe\Director\np32dsw_1200112.dll (Adobe Systems, Inc.)
FF Plugin-x32: @java.com/DTPlugin,version=1.6.0_39 - C:\Windows\SysWOW64\npdeployJava1.dll (Sun Microsystems, Inc.)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files (x86)\Microsoft Silverlight\5.1.20125.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @Nero.com/KM - C:\PROGRA~2\COMMON~1\Nero\BROWSE~1\NPBROW~1.DLL (Nero AG)
FF Plugin-x32: @nvidia.com/3DVision - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF SearchPlugin: C:\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\attpgko0.default\searchplugins\delta.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\searchplugins\babylon.xml
FF Extension: JDownloader - C:\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\attpgko0.default\Extensions\{dc84d6f4-abf5-441d-bdef-65f3f4d7aabe}
FF Extension: jid1-QpHD8URtZWJC2A - C:\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\attpgko0.default\Extensions\jid1-QpHD8URtZWJC2A@jetpack.xpi
FF Extension: newtabgoogle - C:\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\attpgko0.default\Extensions\newtabgoogle@graememcc.co.uk.xpi
FF Extension: passwordcategories - C:\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\attpgko0.default\Extensions\passwordcategories@daniel.dawson.xpi
FF Extension: savedpasswordeditor - C:\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\attpgko0.default\Extensions\savedpasswordeditor@daniel.dawson.xpi
FF Extension: youtube2mp3 - C:\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\attpgko0.default\Extensions\youtube2mp3@mondayx.de.xpi
FF Extension: No Name - C:\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\attpgko0.default\Extensions\{097d3191-e6fa-4728-9826-b533d755359d}.xpi
FF Extension: No Name - C:\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\attpgko0.default\Extensions\{19503e42-ca3c-4c27-b1e2-9cdb2170ee34}.xpi
FF Extension: No Name - C:\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\attpgko0.default\Extensions\{5C655500-E712-41e7-9349-CE462F844B19}.xpi
FF Extension: No Name - C:\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\attpgko0.default\Extensions\{6d96bb5e-1175-4ebf-8ab5-5f56f1c79f65}.xpi
FF Extension: No Name - C:\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\attpgko0.default\Extensions\{9AA46F4F-4DC7-4c06-97AF-5035170634FE}.xpi
FF Extension: No Name - C:\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\attpgko0.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
FF Extension: Default - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
FF HKLM-x32\...\Firefox\Extensions: [{ACAA314B-EEBA-48e4-AD47-84E31C44796C}] C:\Program Files (x86)\Common Files\DVDVideoSoft\plugins\ff\
FF Extension: No Name - C:\Program Files (x86)\Common Files\DVDVideoSoft\plugins\ff\
==================== Services (Whitelisted) =================
R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [84024 2013-06-26] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [108088 2013-06-26] (Avira Operations GmbH & Co. KG)
R2 OMSI download service; C:\Program Files (x86)\Sony Ericsson\Sony Ericsson PC Suite\SupServ.exe [90112 2009-04-30] ()
R2 TuneUp.UtilitiesSvc; C:\Program Files (x86)\TuneUp Utilities 2013\TuneUpUtilitiesService64.exe [2402080 2013-01-28] (TuneUp Software)
==================== Drivers (Whitelisted) ====================
R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [100712 2013-03-29] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [130016 2013-03-29] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [28600 2013-03-29] (Avira Operations GmbH & Co. KG)
S3 Ph3xIB64; C:\Windows\System32\DRIVERS\Ph3xIB64.sys [1627520 2009-06-10] (NXP Semiconductors)
R3 seehcri; C:\Windows\System32\DRIVERS\seehcri.sys [34032 2008-01-09] (Sony Ericsson Mobile Communications)
R3 TuneUpUtilitiesDrv; C:\Program Files (x86)\TuneUp Utilities 2013\TuneUpUtilitiesDriver64.sys [11880 2012-11-16] (TuneUp Software)
R3 XUIF; C:\Windows\System32\Drivers\x10ufx2.sys [33048 2006-11-30] (X10 Wireless Technology, Inc.)
S3 catchme; \??\C:\ComboFix\catchme.sys [x]
S3 VGPU; System32\drivers\rdvgkmd.sys [x]
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2013-07-08 20:34 - 2013-07-08 20:34 - 00000056 ____A C:\Windows\setupact.log
2013-07-08 20:34 - 2013-07-08 20:34 - 00000000 ____A C:\Windows\setuperr.log
2013-07-08 20:33 - 2013-07-08 20:33 - 00000656 ____A C:\Windows\PFRO.log
2013-07-08 20:17 - 2013-07-08 20:16 - 01934554 ____A (Farbar) C:\Users\Hugo\Desktop\FRST64.exe
2013-07-08 20:14 - 2013-07-08 20:16 - 01934554 ____A (Farbar) C:\Users\Hugo\Downloads\FRST64.exe
2013-07-07 21:16 - 2013-07-07 01:43 - 02237968 ____A (Kaspersky Lab ZAO) C:\Users\Hugo\Desktop\tdsskiller.exe
2013-07-07 17:56 - 2013-07-07 19:46 - 1268514860 ____A C:\Users\Hugo\2013-07-07_17h56m02.wav
2013-07-07 09:31 - 2013-03-16 16:20 - 00013618 ____A C:\Windows\swsetup.in_
2013-07-07 00:06 - 2013-07-07 00:06 - 00000869 ____A C:\Users\Public\Desktop\CPUID CPU-Z.lnk
2013-07-07 00:06 - 2013-07-07 00:06 - 00000000 ____D C:\Program Files\CPUID
2013-07-06 23:49 - 2013-07-06 23:50 - 01432424 ____A ( ) C:\Users\Hugo\Downloads\cpu-z_1.65-setup-en.exe
2013-07-06 23:29 - 2013-07-06 23:32 - 06704432 ____A C:\Users\Hugo\Downloads\hc.exe
2013-07-06 18:50 - 2013-07-06 18:50 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-07-06 14:58 - 2013-07-07 09:30 - 00000000 ____D C:\Users\Hugo\Downloads\zum Virus killen
2013-07-06 13:34 - 2013-07-06 14:43 - 00000000 ____D C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2013-07-06 13:33 - 2013-07-06 13:33 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-07-06 13:29 - 2013-07-06 13:29 - 00000000 ____D C:\Users\Hugo\Downloads\mbar-1.06.0.1004
2013-07-06 13:14 - 2013-07-06 13:14 - 00024639 ____A C:\ComboFix.txt
2013-07-06 12:54 - 2011-06-26 08:45 - 00256000 ____A C:\Windows\PEV.exe
2013-07-06 12:54 - 2010-11-07 19:20 - 00208896 ____A C:\Windows\MBR.exe
2013-07-06 12:54 - 2009-04-20 06:56 - 00060416 ____A (NirSoft) C:\Windows\NIRCMD.exe
2013-07-06 12:54 - 2000-08-31 02:00 - 00518144 ____A (SteelWerX) C:\Windows\SWREG.exe
2013-07-06 12:54 - 2000-08-31 02:00 - 00406528 ____A (SteelWerX) C:\Windows\SWSC.exe
2013-07-06 12:54 - 2000-08-31 02:00 - 00098816 ____A C:\Windows\sed.exe
2013-07-06 12:54 - 2000-08-31 02:00 - 00080412 ____A C:\Windows\grep.exe
2013-07-06 12:54 - 2000-08-31 02:00 - 00068096 ____A C:\Windows\zip.exe
2013-07-06 12:36 - 2013-07-06 13:15 - 00000000 ____D C:\Qoobox
2013-07-06 12:36 - 2013-07-06 13:11 - 00000000 ____D C:\Windows\erdnt
2013-07-06 11:54 - 2013-07-06 12:17 - 00000000 ____D C:\FRST
2013-07-06 11:09 - 2013-07-06 11:09 - 00000000 ____A C:\Users\Hugo\Neues Textdokument.txt
2013-07-05 16:43 - 2013-07-05 16:43 - 00007830 ____A C:\Users\Hugo\Downloads\hijackthis.log
2013-07-05 16:41 - 2013-07-05 16:41 - 00388608 ____A (Trend Micro Inc.) C:\Users\Hugo\Downloads\hijackthis.exe
2013-06-30 08:18 - 2013-06-30 09:10 - 01672030 ____A C:\Users\Hugo\2013-06-30_8h18m25.wav
2013-06-30 08:10 - 2013-07-08 20:33 - 00089667 ____A C:\Windows\WindowsUpdate.log
2013-06-30 07:10 - 2013-06-30 07:10 - 75890688 ____A C:\Users\Hugo\2013-06-30_7h10m18.wav
2013-06-30 06:55 - 2013-06-30 08:11 - 97174374 ____A C:\Users\Hugo\2013-06-30_6h55m02.wav
2013-06-30 06:43 - 2013-06-30 07:07 - 00213854 ____A C:\Users\Hugo\2013-06-30_6h43m39.wav
2013-06-30 06:13 - 2013-06-30 06:40 - 00361310 ____A C:\Users\Hugo\2013-06-30_6h13m42.wav
2013-06-30 05:59 - 2013-06-30 06:06 - 80101420 ____A C:\Users\Hugo\2013-06-30_5h59m03.wav
2013-06-30 05:56 - 2013-06-30 05:57 - 08962092 ____A C:\Users\Hugo\2013-06-30_5h56m47.wav
2013-06-29 18:33 - 2013-07-05 17:57 - 00000000 __HDC C:\ProgramData\{18E5420F-B6DC-45F1-9618-C199435ED6E3}
2013-06-29 18:33 - 2013-06-29 18:33 - 00000839 ____A C:\Users\Public\Desktop\Traktor 2.lnk
2013-06-29 18:27 - 2013-07-05 17:57 - 00000000 __HDC C:\ProgramData\{BC91DE36-9EA0-4BE4-9C95-C3ABA1C65900}
2013-06-29 18:27 - 2013-06-29 18:27 - 00001094 ____A C:\Users\Public\Desktop\Controller Editor.lnk
2013-06-29 18:26 - 2013-07-05 17:57 - 00000000 __HDC C:\ProgramData\{F2610326-6A40-4BBC-9FBC-7F05356A912A}
2013-06-29 18:26 - 2013-06-29 18:26 - 00001059 ____A C:\Users\Public\Desktop\Service Center.lnk
2013-06-23 22:08 - 2013-06-23 22:08 - 00063282 ____A C:\Users\Hugo\Documents\Samples.nml
2013-06-23 22:08 - 2013-06-23 09:57 - 06018338 ____A C:\Users\Hugo\Documents\Nacim Ladj - Animal(360p_H.264-AAC) 2013-06-23 09-56-43.wav
2013-06-23 22:08 - 2013-06-23 09:50 - 00679954 ____A C:\Users\Hugo\Documents\Nacim Ladj - Animal(360p_H.264-AAC) 2013-06-23 09-50-43.wav
2013-06-23 22:08 - 2013-06-23 08:48 - 00764778 ____A C:\Users\Hugo\Documents\Glitter - Religions Of This World(720p_H.264-AAC) 2013-06-23 08-14-17.wav
2013-06-23 22:08 - 2013-06-23 07:54 - 00001860 ____A C:\Users\Hugo\Documents\Boris - Broken Lose (Original Mix) [Tronic](720p_H.264-AAC) 2013-06-23 07-54-41.wav
2013-06-23 22:08 - 2013-06-23 06:08 - 02797924 ____A C:\Users\Hugo\Documents\Aka Aka - Nightgirl(240p_H.264-AAC) 2013-06-23 02-27-29.wav
2013-06-23 22:08 - 2013-06-23 06:08 - 00086804 ____A C:\Users\Hugo\Documents\Aka Aka - Nightgirl(240p_H.264-AAC) 2013-06-23 02-26-08.wav
2013-06-23 22:08 - 2013-06-23 05:47 - 00418566 ____A C:\Users\Hugo\Documents\Moses - Ice Crystals ( Original Mix ) - EERF Promo(720p_H.264-AAC) 2013-06-23 05-47-15.wav
2013-06-23 22:08 - 2013-06-23 05:47 - 00418564 ____A C:\Users\Hugo\Documents\Moses - Ice Crystals ( Original Mix ) - EERF Promo(720p_H.264-AAC) 2013-06-23 05-46-29.wav
2013-06-23 22:08 - 2013-06-23 04:26 - 02882638 ____A C:\Users\Hugo\Documents\Aka Aka - Nightgirl(240p_H.264-AAC) 2013-06-23 02-21-42.wav
2013-06-23 22:08 - 2013-06-23 04:24 - 00340986 ____A C:\Users\Hugo\Documents\Hobo Duress Duress MINUS118(360p_H.264-AAC) 2013-06-23 04-24-05.wav
2013-06-23 22:08 - 2013-06-23 04:23 - 00340970 ____A C:\Users\Hugo\Documents\Hobo Duress Duress MINUS118(360p_H.264-AAC) 2013-06-23 04-23-40.wav
2013-06-23 22:08 - 2013-06-23 03:01 - 03051938 ____A C:\Users\Hugo\Documents\Aka Aka - Nightgirl(240p_H.264-AAC) 2013-06-23 02-25-27.wav
2013-06-23 22:08 - 2013-06-23 02:01 - 02757318 ____A C:\Users\Hugo\Documents\Gaiser - Mfnstmp (Original Mix) HD(360p_H.264-AAC) 2013-06-23 01-31-01.wav
2013-06-23 22:08 - 2013-06-23 01:59 - 02734530 ____A C:\Users\Hugo\Documents\DJ Hal - Girls & Boogie(360p_H.264-AAC) 2013-06-23 01-11-04.wav
2013-06-23 22:08 - 2013-06-23 00:43 - 02734498 ____A C:\Users\Hugo\Documents\DJ Hal - Girls & Boogie(360p_H.264-AAC) 2013-06-23 00-43-23.wav
2013-06-23 22:08 - 2013-06-23 00:28 - 00172904 ____A C:\Users\Hugo\Documents\Monkey Safari - Fat Papa (Original Mix)(720p_H.264-AAC) 2013-06-23 00-01-13.wav
2013-06-23 22:08 - 2013-06-23 00:24 - 01360376 ____A C:\Users\Hugo\Documents\Format_B - Octopussy _ HD(360p_H.264-AAC) 2013-06-23 00-24-20.wav
2013-06-23 22:08 - 2013-06-23 00:18 - 00256746 ____A C:\Users\Hugo\Documents\Format_B - Octopussy _ HD(360p_H.264-AAC) 2013-06-23 00-18-10.wav
2013-06-23 22:08 - 2013-06-23 00:14 - 00044500 ____A C:\Users\Hugo\Documents\Format_B - Octopussy _ HD(360p_H.264-AAC) 2013-06-23 00-14-26.wav
2013-06-23 22:08 - 2013-06-22 02:37 - 00042752 ____A C:\Users\Hugo\Documents\Stanke - DJ St@nke mix739 MINIMALISTICA SESSION 12.02.13. 2013-06-22 02-37-44.wav
2013-06-23 22:08 - 2013-06-14 23:13 - 02681172 ____A C:\Users\Hugo\Documents\Patrik Soderbom - Another Level (Avrosse Remix)(720p_H.264-AAC) 2013-06-14 21-45-08.wav
2013-06-23 22:08 - 2013-06-14 10:01 - 00689970 ____A C:\Users\Hugo\Documents\Minicut - Swagg!(720p_H.264-AAC) 2013-06-14 10-01-00.wav
2013-06-23 22:08 - 2013-06-14 09:39 - 00491058 ____A C:\Users\Hugo\Documents\Avrosse - 600km (Original Mix)(360p_H.264-AAC) 2013-06-13 23-13-09.wav
2013-06-23 22:08 - 2013-06-14 08:43 - 02905356 ____A C:\Users\Hugo\Documents\Loop Recorder 2013-06-01 02-10-51.wav
2013-06-23 22:08 - 2013-06-14 08:28 - 02928606 ____A C:\Users\Hugo\Documents\Loop Recorder 2013-06-14 07-20-56.wav
2013-06-23 22:08 - 2013-06-14 08:28 - 01465036 ____A C:\Users\Hugo\Documents\Loop Recorder 2013-06-14 07-04-38.wav
2013-06-23 22:08 - 2013-06-14 08:28 - 01465020 ____A C:\Users\Hugo\Documents\Loop Recorder 2013-06-14 07-01-50.wav
2013-06-23 22:08 - 2013-06-14 08:28 - 00710758 ____A C:\Users\Hugo\Documents\Loop Recorder 2013-06-01 20-13-47.wav
2013-06-23 22:08 - 2013-06-14 08:26 - 00362278 ____A C:\Users\Hugo\Documents\Coronita _) Lépegetős(360p_H.264-AAC) 2013-05-27 23-00-09.wav
2013-06-23 22:08 - 2013-06-14 06:59 - 01465084 ____A C:\Users\Hugo\Documents\Loop Recorder 2013-06-14 06-59-26.wav
2013-06-23 22:08 - 2013-06-09 00:19 - 00338326 ____A C:\Users\Hugo\Documents\Corner - Defrost (Original Mix)(240p_H.264-AAC) 2013-06-09 00-19-21.wav
2013-06-23 22:08 - 2013-05-31 23:41 - 02951970 ____A C:\Users\Hugo\Documents\Loop Recorder 2013-05-31 23-40-23.wav
2013-06-23 22:08 - 2013-05-31 20:18 - 00332518 ____A C:\Users\Hugo\Documents\test 7 2013-05-31 20-18-13.wav
2013-06-23 22:08 - 2013-05-31 20:16 - 00332494 ____A C:\Users\Hugo\Documents\test 7 2013-05-31 20-16-00.wav
2013-06-23 22:08 - 2013-05-31 12:58 - 00380414 ____A C:\Users\Hugo\Documents\Jus Deelax & Luis Gee - Ola K Ase (Original Mix)(360p_H.264-AAC) 2013-05-31 12-58-38.wav
2013-06-23 22:08 - 2013-05-26 21:01 - 00663524 ____A C:\Users\Hugo\Documents\Vengeance Minimal House Vol. 2 2013-04-03 04-50-49.wav
2013-06-23 07:20 - 2013-06-23 21:18 - 00000000 ____D C:\Users\Hugo\AppData\Local\WindowsApplication45
2013-06-23 07:14 - 2013-06-23 21:10 - 00000000 ____D C:\Users\Hugo\Downloads\program djvc
2013-06-20 07:55 - 2013-05-17 03:25 - 00690688 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-06-20 07:55 - 2013-05-17 03:25 - 00493056 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-06-20 07:55 - 2013-05-17 03:25 - 00109056 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-06-20 07:55 - 2013-05-17 03:25 - 00061440 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-06-20 07:55 - 2013-05-17 03:25 - 00033280 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-06-20 07:55 - 2013-05-17 02:59 - 00051712 ____A (Microsoft Corporation) C:\Windows\System32\ie4uinit.exe
2013-06-20 07:55 - 2013-05-17 02:58 - 00855552 ____A (Microsoft Corporation) C:\Windows\System32\jscript.dll
2013-06-20 07:55 - 2013-05-17 02:58 - 00603136 ____A (Microsoft Corporation) C:\Windows\System32\msfeeds.dll
2013-06-20 07:55 - 2013-05-17 02:58 - 00136704 ____A (Microsoft Corporation) C:\Windows\System32\iesysprep.dll
2013-06-20 07:55 - 2013-05-17 02:58 - 00067072 ____A (Microsoft Corporation) C:\Windows\System32\iesetup.dll
2013-06-20 07:55 - 2013-05-17 02:58 - 00039936 ____A (Microsoft Corporation) C:\Windows\System32\iernonce.dll
2013-06-20 07:55 - 2013-05-14 14:23 - 00089600 ____A (Microsoft Corporation) C:\Windows\System32\RegisterIEPKEYs.exe
2013-06-20 07:55 - 2013-05-14 10:40 - 00071680 ____A (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2013-06-20 07:54 - 2013-05-17 03:25 - 02877440 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-06-20 07:54 - 2013-05-17 03:25 - 01767936 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-06-20 07:54 - 2013-05-17 03:25 - 00039424 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-06-20 07:54 - 2013-05-17 02:59 - 02241024 ____A (Microsoft Corporation) C:\Windows\System32\wininet.dll
2013-06-20 07:54 - 2013-05-17 02:58 - 03958784 ____A (Microsoft Corporation) C:\Windows\System32\jscript9.dll
2013-06-20 07:54 - 2013-05-17 02:58 - 00053248 ____A (Microsoft Corporation) C:\Windows\System32\jsproxy.dll
2013-06-20 07:51 - 2013-06-08 16:08 - 01365504 ____A (Microsoft Corporation) C:\Windows\System32\urlmon.dll
2013-06-20 07:51 - 2013-06-08 16:07 - 19233792 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.dll
2013-06-20 07:51 - 2013-06-08 16:06 - 15404544 ____A (Microsoft Corporation) C:\Windows\System32\ieframe.dll
2013-06-20 07:51 - 2013-06-08 16:06 - 02648064 ____A (Microsoft Corporation) C:\Windows\System32\iertutil.dll
2013-06-20 07:51 - 2013-06-08 16:06 - 00526336 ____A (Microsoft Corporation) C:\Windows\System32\ieui.dll
2013-06-20 07:51 - 2013-06-08 14:28 - 02706432 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.tlb
2013-06-20 07:51 - 2013-06-08 13:42 - 01141248 ____A (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-06-20 07:51 - 2013-06-08 13:40 - 14327808 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-06-20 07:51 - 2013-06-08 13:40 - 13760512 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-06-20 07:51 - 2013-06-08 13:40 - 02046976 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-06-20 07:51 - 2013-06-08 13:40 - 00391168 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-06-20 07:51 - 2013-06-08 13:13 - 02706432 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-06-15 20:40 - 2013-06-22 18:38 - 1105315104 ____A C:\Users\Hugo\2013-06-15_20h40m55.wav
2013-06-13 20:14 - 2013-06-13 20:17 - 376111104 ____A C:\Users\Hugo\test 7.wav___tmp
2013-06-13 10:27 - 2013-01-04 08:11 - 02284544 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2vdec.dll.bak
2013-06-13 10:27 - 2009-07-14 03:15 - 00970240 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2adec.dll.bak
2013-06-13 10:26 - 2013-01-04 08:11 - 02776576 ____A (Microsoft Corporation) C:\Windows\System32\msmpeg2vdec.dll.bak
2013-06-13 10:26 - 2009-07-14 03:41 - 01307136 ____A (Microsoft Corporation) C:\Windows\System32\msmpeg2adec.dll.bak
2013-06-13 03:01 - 2013-06-13 03:01 - 00000000 ____D C:\Users\Hugo\AppData\Roaming\Shark007
2013-06-13 03:01 - 2013-06-13 03:01 - 00000000 ____D C:\ProgramData\Shark007
2013-06-13 03:01 - 2013-05-31 11:00 - 01922048 ____A (xy-VSFilter Team) C:\Windows\System32\VSFilter.dll
2013-06-13 03:01 - 2013-05-27 15:08 - 00127488 ____A C:\Windows\System32\ff_vfw.dll
2013-06-13 03:01 - 2013-04-05 21:27 - 02231296 ____A C:\Windows\System32\ac3filter.acm.new
2013-06-13 03:01 - 2013-04-05 21:27 - 02231296 ____A C:\Windows\System32\ac3filter.acm
2013-06-13 03:01 - 2013-03-17 10:22 - 03554304 ____A (x264vfw project) C:\Windows\System32\x264vfw.dll
2013-06-13 03:01 - 2012-07-21 12:55 - 00180736 ____A (fccHandler) C:\Windows\System32\ac3acm.acm
2013-06-13 03:01 - 2012-07-21 12:54 - 00361472 ____A (fccHandler) C:\Windows\System32\aacacm.acm
2013-06-13 03:01 - 2012-07-17 15:21 - 00206336 ____A C:\Windows\System32\unrar64.dll
2013-06-13 03:01 - 2011-12-07 20:37 - 00148992 ____A ( ) C:\Windows\System32\lagarith.dll
2013-06-13 03:01 - 2009-08-11 18:22 - 00580096 ____A C:\Windows\System32\ac3filter.acm.old
2013-06-13 03:01 - 2009-01-22 22:51 - 00124909 ____A (Open Source Software community project) C:\Windows\System32\pthreadGC2.dll
2013-06-13 02:57 - 2013-06-13 02:58 - 00000000 ____D C:\Users\Hugo\AppData\Roaming\Advanced
2013-06-13 02:57 - 2013-04-05 21:26 - 01679360 ____A C:\Windows\SysWOW64\ac3filter.acm.new
2013-06-13 02:56 - 2013-06-13 02:56 - 00000000 ____D C:\Program Files (x86)\Shark007
2013-06-13 02:55 - 2013-06-13 02:58 - 00000000 ____D C:\ProgramData\Advanced
2013-06-12 17:58 - 2013-05-13 07:51 - 01464320 ____A (Microsoft Corporation) C:\Windows\System32\crypt32.dll
2013-06-12 17:58 - 2013-05-13 07:51 - 00184320 ____A (Microsoft Corporation) C:\Windows\System32\cryptsvc.dll
2013-06-12 17:58 - 2013-05-13 07:51 - 00139776 ____A (Microsoft Corporation) C:\Windows\System32\cryptnet.dll
2013-06-12 17:58 - 2013-05-13 07:50 - 00052224 ____A (Microsoft Corporation) C:\Windows\System32\certenc.dll
2013-06-12 17:58 - 2013-05-13 06:45 - 01160192 ____A (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2013-06-12 17:58 - 2013-05-13 06:45 - 00140288 ____A (Microsoft Corporation) C:\Windows\SysWOW64\cryptsvc.dll
2013-06-12 17:58 - 2013-05-13 06:45 - 00103936 ____A (Microsoft Corporation) C:\Windows\SysWOW64\cryptnet.dll
2013-06-12 17:58 - 2013-05-13 05:43 - 01192448 ____A (Microsoft Corporation) C:\Windows\System32\certutil.exe
2013-06-12 17:58 - 2013-05-13 05:08 - 00903168 ____A (Microsoft Corporation) C:\Windows\SysWOW64\certutil.exe
2013-06-12 17:58 - 2013-05-13 05:08 - 00043008 ____A (Microsoft Corporation) C:\Windows\SysWOW64\certenc.dll
2013-06-12 17:44 - 2013-04-17 09:02 - 01230336 ____A (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2013-06-12 17:44 - 2013-04-17 08:24 - 01424384 ____A (Microsoft Corporation) C:\Windows\System32\WindowsCodecs.dll
2013-06-12 17:06 - 2013-05-10 07:49 - 00030720 ____A (Microsoft Corporation) C:\Windows\System32\cryptdlg.dll
2013-06-12 17:06 - 2013-05-10 05:20 - 00024576 ____A (Microsoft Corporation) C:\Windows\SysWOW64\cryptdlg.dll
2013-06-12 16:27 - 2013-04-26 01:30 - 01505280 ____A (Microsoft Corporation) C:\Windows\SysWOW64\d3d11.dll
2013-06-12 16:27 - 2013-04-01 00:52 - 01887232 ____A (Microsoft Corporation) C:\Windows\System32\d3d11.dll
2013-06-12 14:51 - 2013-05-08 08:39 - 01910632 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\tcpip.sys
2013-06-12 13:37 - 2013-04-26 07:51 - 00751104 ____A (Microsoft Corporation) C:\Windows\System32\win32spl.dll
2013-06-12 13:37 - 2013-04-26 06:55 - 00492544 ____A (Microsoft Corporation) C:\Windows\SysWOW64\win32spl.dll
2013-06-09 22:27 - 2013-06-09 23:52 - 621232128 ____A C:\Users\Hugo\2013-06-09_14h45m34_07h42m12.wav
2013-06-09 21:30 - 2013-06-09 22:27 - 665583660 ____A C:\Users\Hugo\2013-06-09_14h45m34_06h44m26.wav
2013-06-09 20:32 - 2013-06-09 21:30 - 665583660 ____A C:\Users\Hugo\2013-06-09_14h45m34_05h46m39.wav
2013-06-09 19:34 - 2013-06-09 20:32 - 665583660 ____A C:\Users\Hugo\2013-06-09_14h45m34_04h48m53.wav
2013-06-09 18:36 - 2013-06-09 19:34 - 665583660 ____A C:\Users\Hugo\2013-06-09_14h45m34_03h51m06.wav
2013-06-09 17:38 - 2013-06-09 18:36 - 665583660 ____A C:\Users\Hugo\2013-06-09_14h45m34_02h53m19.wav
2013-06-09 16:41 - 2013-06-09 17:38 - 665583660 ____A C:\Users\Hugo\2013-06-09_14h45m34_01h55m33.wav
2013-06-09 15:43 - 2013-06-09 16:41 - 665583660 ____A C:\Users\Hugo\2013-06-09_14h45m34_00h57m46.wav
2013-06-09 14:45 - 2013-06-09 15:43 - 665583660 ____A C:\Users\Hugo\2013-06-09_14h45m34.wav
2013-06-09 14:45 - 2013-06-09 14:45 - 00589868 ____A C:\Users\Hugo\2013-06-09_14h45m27.wav
2013-06-08 19:21 - 2013-06-08 19:21 - 00000043 ____A C:\Users\Hugo\Downloads\playlist.m3u
2013-06-08 01:28 - 2013-06-22 12:10 - 00000000 ____D C:\Users\Hugo\AppData\Roaming\AllDup
==================== One Month Modified Files and Folders =======
2013-07-08 20:42 - 2009-07-14 06:45 - 00026496 ___AH C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-07-08 20:42 - 2009-07-14 06:45 - 00026496 ___AH C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-07-08 20:38 - 2013-06-30 08:10 - 00089667 ____A C:\Windows\WindowsUpdate.log
2013-07-08 20:34 - 2013-07-08 20:34 - 00000056 ____A C:\Windows\setupact.log
2013-07-08 20:34 - 2013-07-08 20:34 - 00000000 ____A C:\Windows\setuperr.log
2013-07-08 20:34 - 2013-02-02 00:53 - 00000000 ____D C:\ProgramData\NVIDIA
2013-07-08 20:34 - 2009-07-14 07:08 - 00000006 ___AH C:\Windows\Tasks\SA.DAT
2013-07-08 20:33 - 2013-07-08 20:33 - 00000656 ____A C:\Windows\PFRO.log
2013-07-08 20:33 - 2013-02-01 21:47 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2013-07-08 20:31 - 2013-02-13 03:22 - 00000000 ____D C:\Program Files (x86)\JDownloader 2
2013-07-08 20:19 - 2013-02-02 01:21 - 00000884 ____A C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-07-08 20:16 - 2013-07-08 20:17 - 01934554 ____A (Farbar) C:\Users\Hugo\Desktop\FRST64.exe
2013-07-08 20:16 - 2013-07-08 20:14 - 01934554 ____A (Farbar) C:\Users\Hugo\Downloads\FRST64.exe
2013-07-08 20:07 - 2013-02-02 19:26 - 00000000 ____D C:\Users\Hugo\Downloads\JDownloader
2013-07-07 19:46 - 2013-07-07 17:56 - 1268514860 ____A C:\Users\Hugo\2013-07-07_17h56m02.wav
2013-07-07 17:56 - 2013-02-01 19:52 - 00000000 ____D C:\users\Hugo
2013-07-07 09:30 - 2013-07-06 14:58 - 00000000 ____D C:\Users\Hugo\Downloads\zum Virus killen
2013-07-07 07:37 - 2013-03-02 00:29 - 00000000 ____D C:\Program Files (x86)\Hardcopy
2013-07-07 01:43 - 2013-07-07 21:16 - 02237968 ____A (Kaspersky Lab ZAO) C:\Users\Hugo\Desktop\tdsskiller.exe
2013-07-07 00:06 - 2013-07-07 00:06 - 00000869 ____A C:\Users\Public\Desktop\CPUID CPU-Z.lnk
2013-07-07 00:06 - 2013-07-07 00:06 - 00000000 ____D C:\Program Files\CPUID
2013-07-06 23:50 - 2013-07-06 23:49 - 01432424 ____A ( ) C:\Users\Hugo\Downloads\cpu-z_1.65-setup-en.exe
2013-07-06 23:32 - 2013-07-06 23:29 - 06704432 ____A C:\Users\Hugo\Downloads\hc.exe
2013-07-06 21:55 - 2013-04-14 18:21 - 00000000 ____D C:\Users\Hugo\Downloads\sampels kopien
2013-07-06 18:50 - 2013-07-06 18:50 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-07-06 18:25 - 2013-02-02 04:19 - 00653928 ____A C:\Windows\System32\perfh007.dat
2013-07-06 18:25 - 2013-02-02 04:19 - 00129800 ____A C:\Windows\System32\perfc007.dat
2013-07-06 18:25 - 2009-07-14 07:13 - 01498332 ____A C:\Windows\System32\PerfStringBackup.INI
2013-07-06 16:18 - 2013-02-23 17:53 - 00000000 ____D C:\Users\Hugo\AppData\Roaming\vlc
2013-07-06 14:43 - 2013-07-06 13:34 - 00000000 ____D C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2013-07-06 13:33 - 2013-07-06 13:33 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-07-06 13:29 - 2013-07-06 13:29 - 00000000 ____D C:\Users\Hugo\Downloads\mbar-1.06.0.1004
2013-07-06 13:15 - 2013-07-06 12:36 - 00000000 ____D C:\Qoobox
2013-07-06 13:14 - 2013-07-06 13:14 - 00024639 ____A C:\ComboFix.txt
2013-07-06 13:11 - 2013-07-06 12:36 - 00000000 ____D C:\Windows\erdnt
2013-07-06 13:07 - 2009-07-14 04:34 - 00000215 ____A C:\Windows\system.ini
2013-07-06 12:17 - 2013-07-06 11:54 - 00000000 ____D C:\FRST
2013-07-06 11:09 - 2013-07-06 11:09 - 00000000 ____A C:\Users\Hugo\Neues Textdokument.txt
2013-07-05 17:57 - 2013-06-29 18:33 - 00000000 __HDC C:\ProgramData\{18E5420F-B6DC-45F1-9618-C199435ED6E3}
2013-07-05 17:57 - 2013-06-29 18:27 - 00000000 __HDC C:\ProgramData\{BC91DE36-9EA0-4BE4-9C95-C3ABA1C65900}
2013-07-05 17:57 - 2013-06-29 18:26 - 00000000 __HDC C:\ProgramData\{F2610326-6A40-4BBC-9FBC-7F05356A912A}
2013-07-05 16:43 - 2013-07-05 16:43 - 00007830 ____A C:\Users\Hugo\Downloads\hijackthis.log
2013-07-05 16:42 - 2013-02-01 19:52 - 00000000 ____D C:\Users\Hugo\AppData\Local\VirtualStore
2013-07-05 16:41 - 2013-07-05 16:41 - 00388608 ____A (Trend Micro Inc.) C:\Users\Hugo\Downloads\hijackthis.exe
2013-06-30 09:10 - 2013-06-30 08:18 - 01672030 ____A C:\Users\Hugo\2013-06-30_8h18m25.wav
2013-06-30 08:11 - 2013-06-30 06:55 - 97174374 ____A C:\Users\Hugo\2013-06-30_6h55m02.wav
2013-06-30 07:10 - 2013-06-30 07:10 - 75890688 ____A C:\Users\Hugo\2013-06-30_7h10m18.wav
2013-06-30 07:07 - 2013-06-30 06:43 - 00213854 ____A C:\Users\Hugo\2013-06-30_6h43m39.wav
2013-06-30 06:40 - 2013-06-30 06:13 - 00361310 ____A C:\Users\Hugo\2013-06-30_6h13m42.wav
2013-06-30 06:06 - 2013-06-30 05:59 - 80101420 ____A C:\Users\Hugo\2013-06-30_5h59m03.wav
2013-06-30 05:57 - 2013-06-30 05:56 - 08962092 ____A C:\Users\Hugo\2013-06-30_5h56m47.wav
2013-06-29 23:42 - 2013-04-13 22:03 - 00000000 ____D C:\Users\Hugo\Documents\VirtualDJ
2013-06-29 19:23 - 2013-05-27 22:15 - 00000000 ____D C:\Users\Hugo\Documents\Native Instruments
2013-06-29 18:33 - 2013-06-29 18:33 - 00000839 ____A C:\Users\Public\Desktop\Traktor 2.lnk
2013-06-29 18:28 - 2013-05-27 22:09 - 00000000 ____D C:\Program Files\Traktor 2
2013-06-29 18:27 - 2013-06-29 18:27 - 00001094 ____A C:\Users\Public\Desktop\Controller Editor.lnk
2013-06-29 18:26 - 2013-06-29 18:26 - 00001059 ____A C:\Users\Public\Desktop\Service Center.lnk
2013-06-29 18:26 - 2013-05-28 19:42 - 00000000 ____D C:\Program Files\Native Instruments
2013-06-29 18:26 - 2013-04-02 07:42 - 00000000 ____D C:\Program Files\Common Files\Native Instruments
2013-06-29 15:11 - 2013-04-13 05:14 - 00000000 ____D C:\Users\Hugo\Downloads\Viedeos und Programm Native Instruments
2013-06-26 12:41 - 2013-05-02 11:35 - 00083672 ____A (Avira Operations GmbH & Co. KG) C:\Windows\System32\Drivers\avnetflt.sys
2013-06-23 22:08 - 2013-06-23 22:08 - 00063282 ____A C:\Users\Hugo\Documents\Samples.nml
2013-06-23 21:18 - 2013-06-23 07:20 - 00000000 ____D C:\Users\Hugo\AppData\Local\WindowsApplication45
2013-06-23 21:10 - 2013-06-23 07:14 - 00000000 ____D C:\Users\Hugo\Downloads\program djvc
2013-06-23 09:57 - 2013-06-23 22:08 - 06018338 ____A C:\Users\Hugo\Documents\Nacim Ladj - Animal(360p_H.264-AAC) 2013-06-23 09-56-43.wav
2013-06-23 09:50 - 2013-06-23 22:08 - 00679954 ____A C:\Users\Hugo\Documents\Nacim Ladj - Animal(360p_H.264-AAC) 2013-06-23 09-50-43.wav
2013-06-23 08:48 - 2013-06-23 22:08 - 00764778 ____A C:\Users\Hugo\Documents\Glitter - Religions Of This World(720p_H.264-AAC) 2013-06-23 08-14-17.wav
2013-06-23 07:54 - 2013-06-23 22:08 - 00001860 ____A C:\Users\Hugo\Documents\Boris - Broken Lose (Original Mix) [Tronic](720p_H.264-AAC) 2013-06-23 07-54-41.wav
2013-06-23 06:08 - 2013-06-23 22:08 - 02797924 ____A C:\Users\Hugo\Documents\Aka Aka - Nightgirl(240p_H.264-AAC) 2013-06-23 02-27-29.wav
2013-06-23 06:08 - 2013-06-23 22:08 - 00086804 ____A C:\Users\Hugo\Documents\Aka Aka - Nightgirl(240p_H.264-AAC) 2013-06-23 02-26-08.wav
2013-06-23 05:47 - 2013-06-23 22:08 - 00418566 ____A C:\Users\Hugo\Documents\Moses - Ice Crystals ( Original Mix ) - EERF Promo(720p_H.264-AAC) 2013-06-23 05-47-15.wav
2013-06-23 05:47 - 2013-06-23 22:08 - 00418564 ____A C:\Users\Hugo\Documents\Moses - Ice Crystals ( Original Mix ) - EERF Promo(720p_H.264-AAC) 2013-06-23 05-46-29.wav
2013-06-23 04:26 - 2013-06-23 22:08 - 02882638 ____A C:\Users\Hugo\Documents\Aka Aka - Nightgirl(240p_H.264-AAC) 2013-06-23 02-21-42.wav
2013-06-23 04:24 - 2013-06-23 22:08 - 00340986 ____A C:\Users\Hugo\Documents\Hobo Duress Duress MINUS118(360p_H.264-AAC) 2013-06-23 04-24-05.wav
2013-06-23 04:23 - 2013-06-23 22:08 - 00340970 ____A C:\Users\Hugo\Documents\Hobo Duress Duress MINUS118(360p_H.264-AAC) 2013-06-23 04-23-40.wav
2013-06-23 03:01 - 2013-06-23 22:08 - 03051938 ____A C:\Users\Hugo\Documents\Aka Aka - Nightgirl(240p_H.264-AAC) 2013-06-23 02-25-27.wav
2013-06-23 02:01 - 2013-06-23 22:08 - 02757318 ____A C:\Users\Hugo\Documents\Gaiser - Mfnstmp (Original Mix) HD(360p_H.264-AAC) 2013-06-23 01-31-01.wav
2013-06-23 01:59 - 2013-06-23 22:08 - 02734530 ____A C:\Users\Hugo\Documents\DJ Hal - Girls & Boogie(360p_H.264-AAC) 2013-06-23 01-11-04.wav
2013-06-23 00:43 - 2013-06-23 22:08 - 02734498 ____A C:\Users\Hugo\Documents\DJ Hal - Girls & Boogie(360p_H.264-AAC) 2013-06-23 00-43-23.wav
2013-06-23 00:28 - 2013-06-23 22:08 - 00172904 ____A C:\Users\Hugo\Documents\Monkey Safari - Fat Papa (Original Mix)(720p_H.264-AAC) 2013-06-23 00-01-13.wav
2013-06-23 00:24 - 2013-06-23 22:08 - 01360376 ____A C:\Users\Hugo\Documents\Format_B - Octopussy _ HD(360p_H.264-AAC) 2013-06-23 00-24-20.wav
2013-06-23 00:18 - 2013-06-23 22:08 - 00256746 ____A C:\Users\Hugo\Documents\Format_B - Octopussy _ HD(360p_H.264-AAC) 2013-06-23 00-18-10.wav
2013-06-23 00:14 - 2013-06-23 22:08 - 00044500 ____A C:\Users\Hugo\Documents\Format_B - Octopussy _ HD(360p_H.264-AAC) 2013-06-23 00-14-26.wav
2013-06-22 18:38 - 2013-06-15 20:40 - 1105315104 ____A C:\Users\Hugo\2013-06-15_20h40m55.wav
2013-06-22 12:22 - 2013-04-13 05:18 - 00000000 ____D C:\Users\Hugo\Downloads\alles für VirtualDJ Pro 7.4
2013-06-22 12:10 - 2013-06-08 01:28 - 00000000 ____D C:\Users\Hugo\AppData\Roaming\AllDup
2013-06-22 02:37 - 2013-06-23 22:08 - 00042752 ____A C:\Users\Hugo\Documents\Stanke - DJ St@nke mix739 MINIMALISTICA SESSION 12.02.13. 2013-06-22 02-37-44.wav
2013-06-20 19:00 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\rescache
2013-06-20 07:55 - 2013-02-02 01:17 - 75825640 ____A (Microsoft Corporation) C:\Windows\System32\MRT.exe
2013-06-14 23:13 - 2013-06-23 22:08 - 02681172 ____A C:\Users\Hugo\Documents\Patrik Soderbom - Another Level (Avrosse Remix)(720p_H.264-AAC) 2013-06-14 21-45-08.wav
2013-06-14 12:38 - 2013-06-01 03:49 - 1351749134 ____A C:\Users\Hugo\test 9.wav
2013-06-14 10:01 - 2013-06-23 22:08 - 00689970 ____A C:\Users\Hugo\Documents\Minicut - Swagg!(720p_H.264-AAC) 2013-06-14 10-01-00.wav
2013-06-14 09:39 - 2013-06-23 22:08 - 00491058 ____A C:\Users\Hugo\Documents\Avrosse - 600km (Original Mix)(360p_H.264-AAC) 2013-06-13 23-13-09.wav
2013-06-14 08:43 - 2013-06-23 22:08 - 02905356 ____A C:\Users\Hugo\Documents\Loop Recorder 2013-06-01 02-10-51.wav
2013-06-14 08:28 - 2013-06-23 22:08 - 02928606 ____A C:\Users\Hugo\Documents\Loop Recorder 2013-06-14 07-20-56.wav
2013-06-14 08:28 - 2013-06-23 22:08 - 01465036 ____A C:\Users\Hugo\Documents\Loop Recorder 2013-06-14 07-04-38.wav
2013-06-14 08:28 - 2013-06-23 22:08 - 01465020 ____A C:\Users\Hugo\Documents\Loop Recorder 2013-06-14 07-01-50.wav
2013-06-14 08:28 - 2013-06-23 22:08 - 00710758 ____A C:\Users\Hugo\Documents\Loop Recorder 2013-06-01 20-13-47.wav
2013-06-14 08:26 - 2013-06-23 22:08 - 00362278 ____A C:\Users\Hugo\Documents\Coronita _) Lépegetős(360p_H.264-AAC) 2013-05-27 23-00-09.wav
2013-06-14 06:59 - 2013-06-23 22:08 - 01465084 ____A C:\Users\Hugo\Documents\Loop Recorder 2013-06-14 06-59-26.wav
2013-06-13 20:48 - 2013-04-02 07:42 - 00000000 ____D C:\ProgramData\Native Instruments
2013-06-13 20:17 - 2013-06-13 20:14 - 376111104 ____A C:\Users\Hugo\test 7.wav___tmp
2013-06-13 19:43 - 2013-02-02 00:50 - 00000000 ____D C:\Users\Hugo\Downloads\AKTUELLE PROGRAMME 01.02.2013
2013-06-13 04:20 - 2013-02-02 01:21 - 00692104 ____A (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2013-06-13 04:20 - 2013-02-02 01:21 - 00071048 ____A (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2013-06-13 03:01 - 2013-06-13 03:01 - 00000000 ____D C:\Users\Hugo\AppData\Roaming\Shark007
2013-06-13 03:01 - 2013-06-13 03:01 - 00000000 ____D C:\ProgramData\Shark007
2013-06-13 03:01 - 2013-03-16 15:49 - 00012288 ____A C:\Users\Hugo\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2013-06-13 03:01 - 2013-02-09 15:26 - 00000000 ____D C:\Program Files\Shark007
2013-06-13 02:58 - 2013-06-13 02:57 - 00000000 ____D C:\Users\Hugo\AppData\Roaming\Advanced
2013-06-13 02:58 - 2013-06-13 02:55 - 00000000 ____D C:\ProgramData\Advanced
2013-06-13 02:56 - 2013-06-13 02:56 - 00000000 ____D C:\Program Files (x86)\Shark007
2013-06-13 02:51 - 2013-02-02 02:16 - 00001712 ____A C:\Users\Hugo\Desktop\MPC-HC x64.lnk
2013-06-13 02:51 - 2013-02-02 02:16 - 00000000 ____D C:\Program Files\MPC-HC
2013-06-09 23:52 - 2013-06-09 22:27 - 621232128 ____A C:\Users\Hugo\2013-06-09_14h45m34_07h42m12.wav
2013-06-09 22:27 - 2013-06-09 21:30 - 665583660 ____A C:\Users\Hugo\2013-06-09_14h45m34_06h44m26.wav
2013-06-09 21:30 - 2013-06-09 20:32 - 665583660 ____A C:\Users\Hugo\2013-06-09_14h45m34_05h46m39.wav
2013-06-09 20:32 - 2013-06-09 19:34 - 665583660 ____A C:\Users\Hugo\2013-06-09_14h45m34_04h48m53.wav
2013-06-09 19:34 - 2013-06-09 18:36 - 665583660 ____A C:\Users\Hugo\2013-06-09_14h45m34_03h51m06.wav
2013-06-09 18:36 - 2013-06-09 17:38 - 665583660 ____A C:\Users\Hugo\2013-06-09_14h45m34_02h53m19.wav
2013-06-09 17:38 - 2013-06-09 16:41 - 665583660 ____A C:\Users\Hugo\2013-06-09_14h45m34_01h55m33.wav
2013-06-09 16:41 - 2013-06-09 15:43 - 665583660 ____A C:\Users\Hugo\2013-06-09_14h45m34_00h57m46.wav
2013-06-09 15:43 - 2013-06-09 14:45 - 665583660 ____A C:\Users\Hugo\2013-06-09_14h45m34.wav
2013-06-09 14:45 - 2013-06-09 14:45 - 00589868 ____A C:\Users\Hugo\2013-06-09_14h45m27.wav
2013-06-09 00:19 - 2013-06-23 22:08 - 00338326 ____A C:\Users\Hugo\Documents\Corner - Defrost (Original Mix)(240p_H.264-AAC) 2013-06-09 00-19-21.wav
2013-06-08 19:21 - 2013-06-08 19:21 - 00000043 ____A C:\Users\Hugo\Downloads\playlist.m3u
2013-06-08 16:08 - 2013-06-20 07:51 - 01365504 ____A (Microsoft Corporation) C:\Windows\System32\urlmon.dll
2013-06-08 16:07 - 2013-06-20 07:51 - 19233792 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.dll
2013-06-08 16:06 - 2013-06-20 07:51 - 15404544 ____A (Microsoft Corporation) C:\Windows\System32\ieframe.dll
2013-06-08 16:06 - 2013-06-20 07:51 - 02648064 ____A (Microsoft Corporation) C:\Windows\System32\iertutil.dll
2013-06-08 16:06 - 2013-06-20 07:51 - 00526336 ____A (Microsoft Corporation) C:\Windows\System32\ieui.dll
2013-06-08 14:28 - 2013-06-20 07:51 - 02706432 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.tlb
2013-06-08 13:42 - 2013-06-20 07:51 - 01141248 ____A (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-06-08 13:40 - 2013-06-20 07:51 - 14327808 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-06-08 13:40 - 2013-06-20 07:51 - 13760512 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-06-08 13:40 - 2013-06-20 07:51 - 02046976 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-06-08 13:40 - 2013-06-20 07:51 - 00391168 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-06-08 13:13 - 2013-06-20 07:51 - 02706432 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
==================== Bamital & volsnap Check =================
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
LastRegBack: 2013-07-03 00:32
==================== End Of Log ============================
Code:
ATTFilter Additional scan result of Farbar Recovery Scan Tool (x64) Version: 08-07-2013
Ran by Hugo at 2013-07-08 20:53:13
Running from C:\Users\Hugo\Desktop
Boot Mode: Normal
==========================================================
==================== Installed Programs =======================
Components v4.1.6 (Version: 4.1.6)
7-Zip 9.20 (x64 edition) (Version: 9.20.00.0)
abgx360 v1.0.6 (x32)
Adobe Flash Player 11 ActiveX (x32 Version: 11.7.700.224)
Adobe Flash Player 11 Plugin (x32 Version: 11.7.700.224)
Adobe Reader XI (11.0.03) - Deutsch (x32 Version: 11.0.03)
Adobe Shockwave Player 12.0 (x32 Version: 12.0.0.112)
AllDup 3.3.0 (x32 Version: 3.3.0)
Audacity 2.0.3 (x32 Version: 2.0.3)
Avanquest update (x32 Version: 1.33)
Avira Free Antivirus (x32 Version: 13.0.0.3737)
CCleaner (Version: 3.10)
CPUID CPU-Z 1.65.0
DVD-Cover v.1.5.1.6 (x32)
DVDFab 8.2.1.0 (07/09/2012) Qt (x32)
DVDFab Media Player 1.0.2.2 (13/09/2012) (x32)
Free Studio version 2013 (x32 Version: 6.0.0.128)
Hardcopy (x32 Version: 2013.06.27)
High-Definition Video Playback (x32 Version: 11.1.10400.2.65)
ImgBurn (x32 Version: 2.5.7.0)
Java 7 Update 11 (64-bit) (Version: 7.0.110)
JDownloader 2 (x32 Version: 2)
JDownloader Toolbar (x32 Version: 6.11.2.6)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft .NET Framework 4 Client Profile DEU Language Pack (Version: 4.0.30319)
Microsoft Silverlight (Version: 5.1.20125.0)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.61001)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (x32 Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (x32 Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (x32 Version: 9.0.30729.6161)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (x32 Version: 10.0.40219)
Mozilla Firefox 22.0 (x86 de) (x32 Version: 22.0)
Mozilla Maintenance Service (x32 Version: 22.0)
MPC-HC 1.6.7.7114 (9eb64ec) (64-bit) (Version: 1.6.7.7114)
Native Instruments VC 160 FX (Version: 1.0.0.246)
Nero 11 (x32 Version: 11.0.15500)
Nero 11 Cliparts (x32 Version: 11.0.11200.12.0)
Nero 11 Disc Menus 1 (x32 Version: 11.0.11200.12.0)
Nero 11 Disc Menus 2 (x32 Version: 11.0.11200.12.0)
Nero 11 Disc Menus 3 (x32 Version: 11.0.11200.12.0)
Nero 11 Disc Menus Basic (x32 Version: 11.0.11200.12.0)
Nero 11 Effects Basic (x32 Version: 11.0.11200.12.0)
Nero 11 Image Samples (x32 Version: 11.0.11200.12.0)
Nero 11 Kwik Themes 1 (x32 Version: 11.0.11200.12.0)
Nero 11 Kwik Themes 2 (x32 Version: 11.0.11200.12.0)
Nero 11 Kwik Themes 3 (x32 Version: 11.0.11200.12.0)
Nero 11 Kwik Themes 4 (x32 Version: 11.0.11200.12.0)
Nero 11 Kwik Themes Basic (x32 Version: 11.0.11200.12.0)
Nero 11 PiP Effects 1 (x32 Version: 11.0.11200.12.0)
Nero 11 PiP Effects Basic (x32 Version: 11.0.11300.12.0)
Nero 11 Video Samples (x32 Version: 11.0.11200.12.0)
Nero 11 Video Transitions 1 (x32 Version: 11.0.11200.12.0)
Nero Audio Pack 1 (x32 Version: 11.0.11500.110.0)
Nero BackItUp 11 (x32 Version: 6.0.16000.13.100)
Nero BackItUp 11 Help (CHM) (x32 Version: 11.0.10200)
Nero Backup Drivers (Version: 1.0.10000.1.0)
Nero Burning ROM 11 (x32 Version: 11.0.12200.23.100)
Nero Burning ROM 11 Help (CHM) (x32 Version: 11.0.10300)
Nero ControlCenter 11 (x32 Version: 11.0.12300.0.23)
Nero ControlCenter 11 Help (CHM) (x32 Version: 11.0.10300)
Nero Core Components 11 (x32 Version: 11.0.15000.1.12)
Nero CoverDesigner 11 (x32 Version: 6.0.10800.11.100)
Nero CoverDesigner 11 Help (CHM) (x32 Version: 11.0.10300)
Nero Express 11 (x32 Version: 11.0.11700.23.100)
Nero Express 11 Help (CHM) (x32 Version: 11.0.10300)
Nero Kwik Media (x32 Version: 1.10.19300.93.100)
Nero Kwik Media Help (CHM) (x32 Version: 11.0.10200)
Nero Recode 11 (x32 Version: 5.0.13300.32.100)
Nero Recode 11 Help (CHM) (x32 Version: 11.0.10300)
Nero RescueAgent 11 (x32 Version: 4.0.10600.10.100)
Nero RescueAgent 11 Help (CHM) (x32 Version: 11.0.10400)
Nero SoundTrax 11 (x32 Version: 5.0.10400.4.100)
Nero SoundTrax 11 Help (CHM) (x32 Version: 11.0.10400)
Nero Update (x32 Version: 11.0.10623.22.0)
Nero Video 11 (x32 Version: 8.0.14000.21.100)
Nero Video 11 Help (CHM) (x32 Version: 11.0.10300)
Nero WaveEditor 11 (x32 Version: 6.0.10800.5.100)
Nero WaveEditor 11 Help (CHM) (x32 Version: 11.0.10400)
nero.prerequisites.msi (x32 Version: 11.0.20007)
NVIDIA 3D Vision Treiber 311.06 (Version: 311.06)
NVIDIA Grafiktreiber 311.06 (Version: 311.06)
NVIDIA Install Application (Version: 2.1002.108.688)
NVIDIA Stereoscopic 3D Driver (x32 Version: 7.17.13.1106)
NVIDIA Systemsteuerung 311.06 (Version: 311.06)
NVIDIA Update 1.11.3 (Version: 1.11.3)
NVIDIA Update Components (Version: 1.11.3)
OpenOffice.org 3.3 (x32 Version: 3.3.9567)
Realtek High Definition Audio Driver (x32 Version: 6.0.1.6482)
Shark007 Advanced Codecs (x32 Version: 4.1.6)
Sony Ericsson PC Suite 6.012.00 (x32 Version: 6.012.00)
swMSM (x32 Version: 12.0.0.1)
TuneUp Utilities 2013 (x32 Version: 13.0.3020.2)
TuneUp Utilities Language Pack (de-DE) (x32 Version: 13.0.3020.2)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939) (x32 Version: 1)
VirtualDJ PRO Full (x32 Version: 7.3)
VLC media player 2.0.5 (Version: 2.0.5)
welcome (x32 Version: 11.0.21500.0.4)
WinRAR 4.20 (64-Bit) (Version: 4.20.0)
==================== Restore Points =========================
==================== Hosts content: ==========================
2009-07-14 04:34 - 2013-07-06 13:07 - 00000027 ____A C:\Windows\system32\Drivers\etc\hosts
127.0.0.1 localhost
==================== Scheduled Tasks (whitelisted) =============
Task: {052EBC89-A317-4F38-8579-2741F64706D6} - System32\Tasks\hcdll2_ex_x64 => C:\Program Files (x86)\Hardcopy\hcdll2_ex_x64.exe [2012-11-08] ()
Task: {0F08BD73-1531-4B36-A0EC-8B417B8B926D} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-06-13] (Adobe Systems Incorporated)
Task: {14407FDB-4DC8-490F-950F-7C9A93B5AAAF} - System32\Tasks\TuneUpUtilities_Task_BkGndMaintenance2013 => C:\Program Files (x86)\TuneUp Utilities 2013\OneClick.exe [2013-01-28] (TuneUp Software)
Task: {1F8CDEE7-AEC0-4929-9B02-4F4B36B91C5E} - System32\Tasks\{ADD814F2-9EC6-4016-8232-0E2366447DC9} => C:\Program Files (x86)\JDownloader 2\JDownloader 2.exe [2012-05-28] (AppWork GmbH)
Task: {74C15C98-2A09-4012-A16F-A61FAB789F23} - System32\Tasks\hcdll2_ex_Win32 => C:\Program Files (x86)\Hardcopy\hcdll2_ex_Win32.exe [2012-11-08] ()
Task: {EDA79FCC-A11D-4D66-B5E4-E1D4A65470DA} - System32\Tasks\Adobe-Online-Aktualisierungsprogramm => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-04-04] (Adobe Systems Incorporated)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
==================== Faulty Device Manager Devices =============
Name: Creatix SAA7131, Triple Capture Device
Description: Creatix SAA7131, Triple Capture Device
Class Guid: {4d36e96c-e325-11ce-bfc1-08002be10318}
Manufacturer: Creatix
Service: Ph3xIB64
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
==================== Event log errors: =========================
Application errors:
==================
Error: (07/08/2013 08:35:49 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (07/08/2013 08:35:04 PM) (Source: Windows Search Service) (User: )
Description: Der Index kann nicht initialisiert werden.
Details:
Der Inhaltsindexkatalog ist fehlerhaft. (HRESULT : 0xc0041801) (0xc0041801)
Error: (07/08/2013 08:35:04 PM) (Source: Windows Search Service) (User: )
Description: Die Anwendung kann nicht initialisiert werden.
Kontext: Windows Anwendung
Details:
Der Inhaltsindexkatalog ist fehlerhaft. (HRESULT : 0xc0041801) (0xc0041801)
Error: (07/08/2013 08:35:04 PM) (Source: Windows Search Service) (User: )
Description: Das Gatherer-Objekt kann nicht initialisiert werden.
Kontext: Windows Anwendung, SystemIndex Katalog
Details:
Der Inhaltsindexkatalog ist fehlerhaft. (HRESULT : 0xc0041801) (0xc0041801)
Error: (07/08/2013 08:35:04 PM) (Source: Windows Search Service) (User: )
Description: Plug-In in <Search.TripoliIndexer> kann nicht initialisiert werden.
Kontext: Windows Anwendung, SystemIndex Katalog
Details:
Element nicht gefunden. (HRESULT : 0x80070490) (0x80070490)
Error: (07/08/2013 08:35:03 PM) (Source: Windows Search Service) (User: )
Description: Plug-In in <Search.JetPropStore> kann nicht initialisiert werden.
Kontext: Windows Anwendung, SystemIndex Katalog
Details:
Der Inhaltsindexkatalog ist fehlerhaft. (HRESULT : 0xc0041801) (0xc0041801)
Error: (07/08/2013 08:35:03 PM) (Source: Windows Search Service) (User: )
Description: Die Eigenschaftenspeicherdaten können von Windows Search nicht geladen werden.
Kontext: Windows Anwendung, SystemIndex Katalog
Details:
Die Inhaltsindexdatenbank ist fehlerhaft. (HRESULT : 0xc0041800) (0xc0041800)
Error: (07/08/2013 08:35:03 PM) (Source: Windows Search Service) (User: )
Description: Windows Search wird aufgrund eines Problems bei der Indizierung The catalog is corrupt beendet.
Details:
Der Inhaltsindexkatalog ist fehlerhaft. (HRESULT : 0xc0041801) (0xc0041801)
Error: (07/08/2013 08:35:03 PM) (Source: Windows Search Service) (User: )
Description: Vom Suchdienst wurden beschädigte Datendateien im Index {id=4700} erkannt. Vom Dienst wird versucht, dieses Problem durch Neuerstellung des Indexes automatisch zu beheben.
Details:
Der Inhaltsindexkatalog ist fehlerhaft. (HRESULT : 0xc0041801) (0xc0041801)
Error: (07/08/2013 08:35:02 PM) (Source: Windows Search Service) (User: )
Description: Der Jet-Eigenschaftenspeicher kann von Windows Search nicht geöffnet werden.
Details:
0x%08x (0xc0041800 - Die Inhaltsindexdatenbank ist fehlerhaft. (HRESULT : 0xc0041800))
System errors:
=============
Error: (07/08/2013 08:37:00 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "NVIDIA Update Service Daemon" wurde aufgrund folgenden Fehlers nicht gestartet:
%%1069
Error: (07/08/2013 08:37:00 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "nvUpdatusService" konnte sich nicht als ".\UpdatusUser" mit dem aktuellen Kennwort aufgrund des folgenden Fehlers anmelden:
%%1330
Vergewissern Sie sich, dass der Dienst richtig konfiguriert ist im Dienste-Snap-In in der Microsoft Management Console (MMC).
Error: (07/08/2013 08:35:04 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Windows Search" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 30000 Millisekunden durchgeführt: Neustart des Diensts.
Error: (07/08/2013 08:35:04 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Windows Search" wurde mit folgendem dienstspezifischem Fehler beendet: %%-1073473535.
Error: (07/08/2013 07:17:52 PM) (Source: volsnap) (User: )
Description: Die Schattenkopien von Volume "C:" wurden abgebrochen, weil der Schattenkopiespeicher nicht auf ein benutzerdefiniertes Limit vergrößert werden konnte.
Error: (07/06/2013 01:30:11 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "NVIDIA Update Service Daemon" wurde aufgrund folgenden Fehlers nicht gestartet:
%%1069
Error: (07/06/2013 01:30:11 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "nvUpdatusService" konnte sich nicht als ".\UpdatusUser" mit dem aktuellen Kennwort aufgrund des folgenden Fehlers anmelden:
%%1330
Vergewissern Sie sich, dass der Dienst richtig konfiguriert ist im Dienste-Snap-In in der Microsoft Management Console (MMC).
Error: (07/06/2013 01:09:15 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "NVIDIA Update Service Daemon" wurde aufgrund folgenden Fehlers nicht gestartet:
%%1069
Error: (07/06/2013 01:09:15 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "nvUpdatusService" konnte sich nicht als ".\UpdatusUser" mit dem aktuellen Kennwort aufgrund des folgenden Fehlers anmelden:
%%1330
Vergewissern Sie sich, dass der Dienst richtig konfiguriert ist im Dienste-Snap-In in der Microsoft Management Console (MMC).
Error: (07/06/2013 01:06:51 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "WinDefend" wurde mit folgendem Fehler beendet:
%%5
Microsoft Office Sessions:
=========================
Error: (07/08/2013 08:35:49 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (07/08/2013 08:35:04 PM) (Source: Windows Search Service)(User: )
Description:
Details:
Der Inhaltsindexkatalog ist fehlerhaft. (HRESULT : 0xc0041801) (0xc0041801)
Error: (07/08/2013 08:35:04 PM) (Source: Windows Search Service)(User: )
Description: Kontext: Windows Anwendung
Details:
Der Inhaltsindexkatalog ist fehlerhaft. (HRESULT : 0xc0041801) (0xc0041801)
Error: (07/08/2013 08:35:04 PM) (Source: Windows Search Service)(User: )
Description: Kontext: Windows Anwendung, SystemIndex Katalog
Details:
Der Inhaltsindexkatalog ist fehlerhaft. (HRESULT : 0xc0041801) (0xc0041801)
Error: (07/08/2013 08:35:04 PM) (Source: Windows Search Service)(User: )
Description: Kontext: Windows Anwendung, SystemIndex Katalog
Details:
Element nicht gefunden. (HRESULT : 0x80070490) (0x80070490)
Search.TripoliIndexer
Error: (07/08/2013 08:35:03 PM) (Source: Windows Search Service)(User: )
Description: Kontext: Windows Anwendung, SystemIndex Katalog
Details:
Der Inhaltsindexkatalog ist fehlerhaft. (HRESULT : 0xc0041801) (0xc0041801)
Search.JetPropStore
Error: (07/08/2013 08:35:03 PM) (Source: Windows Search Service)(User: )
Description: Kontext: Windows Anwendung, SystemIndex Katalog
Details:
Die Inhaltsindexdatenbank ist fehlerhaft. (HRESULT : 0xc0041800) (0xc0041800)
Error: (07/08/2013 08:35:03 PM) (Source: Windows Search Service)(User: )
Description:
Details:
Der Inhaltsindexkatalog ist fehlerhaft. (HRESULT : 0xc0041801) (0xc0041801)
The catalog is corrupt
Error: (07/08/2013 08:35:03 PM) (Source: Windows Search Service)(User: )
Description:
Details:
Der Inhaltsindexkatalog ist fehlerhaft. (HRESULT : 0xc0041801) (0xc0041801)
4700
Error: (07/08/2013 08:35:02 PM) (Source: Windows Search Service)(User: )
Description:
Details:
0x%08x (0xc0041800 - Die Inhaltsindexdatenbank ist fehlerhaft. (HRESULT : 0xc0041800))
CodeIntegrity Errors:
===================================
Date: 2013-07-06 13:04:32.765
Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume1\ComboFix\catchme.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.
Date: 2013-07-06 13:04:32.718
Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume1\ComboFix\catchme.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.
==================== Memory info ===========================
Percentage of memory in use: 37%
Total physical RAM: 3070.18 MB
Available physical RAM: 1907.6 MB
Total Pagefile: 6138.54 MB
Available Pagefile: 4819.42 MB
Total Virtual: 8192 MB
Available Virtual: 8191.84 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:444.29 GB) (Free:134.88 GB) NTFS (Disk=0 Partition=1) ==>[Drive with boot components (obtained from BCD)]
Drive d: (RECOVER) (Fixed) (Total:21.46 GB) (Free:12.66 GB) FAT32 (Disk=0 Partition=2)
Drive e: (NIVC160100) (CDROM) (Total:0.15 GB) (Free:0 GB) CDFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 466 GB) (Disk ID: BBC58B91)
Partition 1: (Not Active) - (Size=21 GB) - (Type=OF Extended)
Partition 2: (Active) - (Size=444 GB) - (Type=07 NTFS)
==================== End Of Log ============================
|
|
08.07.2013, 21:24
| #6 |
| /// the machine /// TB-Ausbilder | Avira kann TR/ATRAPS.Gen2 nicht löschen Drücke bitte die Windowstaste + R Taste und schreibe notepad in das Ausführen Fenster. Kopiere nun folgenden Text aus der Code-Box in das leere Textdokument Code:
ATTFilter HKLM Group Policy restriction on software: C:\Program Files (x86)\Avira\AntiVir Desktop\avnotify.exe <====== ATTENTION
HKLM Group Policy restriction on software: %HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRoot% <====== ATTENTION
HKLM Group Policy restriction on software: %HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ProgramFilesDir% <====== ATTENTION
Winsock: Catalog5 01 %SystemRoot%\System32\mswsock.dll [232448] (Microsoft Corporation) ATTENTION: The LibraryPath should be "%SystemRoot%\system32\NLAapi.dll"
Winsock: Catalog5-x64 01 %SystemRoot%\System32\mswsock.dll [326144] (Microsoft Corporation) ATTENTION: The LibraryPath should be "%SystemRoot%\system32\NLAapi.dll"
Speichere diese bitte als Fixlist.txt auf deinem Desktop (oder dem Verzeichnis in dem sich FRST befindet).
Downloade Dir bitte  AdwCleaner auf deinen Desktop.
Beende bitte Deine Schutzsoftware um eventuelle Konflikte zu vermeiden.
und ein frisches FRST log bitte.
__________________ --> Avira kann TR/ATRAPS.Gen2 nicht löschen |
|
09.07.2013, 20:24
| #7 |
| | Avira kann TR/ATRAPS.Gen2 nicht löschen Hi, so alles erledigt wenn ich nichts falsch gemacht habe  .Code:
ATTFilter Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 08-07-2013
Ran by Hugo at 2013-07-09 20:08:27 Run:2
Running from C:\Users\Hugo\Desktop
Boot Mode: Normal
==============================================
HKLM => Group Policy Restriction on software restored successfully.
HKLM => Group Policy Restriction on software restored successfully.
HKLM => Group Policy Restriction on software restored successfully.
Winsock: Catalog5 entry 000000000001\\LibraryPath was set successfully to %SystemRoot%\system32\NLAapi.dll
Winsock: Catalog5-x64 entry 000000000001\\LibraryPath was set successfully to %SystemRoot%\system32\NLAapi.dll
==== End of Fixlog ====
Code:
ATTFilter # AdwCleaner v2.304 - Datei am 09/07/2013 um 20:21:24 erstellt
# Aktualisiert am 03/07/2013 von Xplode
# Betriebssystem : Windows 7 Ultimate Service Pack 1 (64 bits)
# Benutzer : Hugo - HUGO-PC
# Bootmodus : Normal
# Ausgeführt unter : C:\Users\Hugo\Desktop\adwcleaner.exe
# Option [Löschen]
**** [Dienste] ****
***** [Dateien / Ordner] *****
Datei Gelöscht : C:\END
Datei Gelöscht : C:\Program Files (x86)\Mozilla Firefox\searchplugins\babylon.xml
Datei Gelöscht : C:\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\attpgko0.default\searchplugins\delta.xml
Ordner Gelöscht : C:\Program Files (x86)\Conduit
Ordner Gelöscht : C:\Program Files (x86)\Iminent
Ordner Gelöscht : C:\Program Files (x86)\JDownloader
Ordner Gelöscht : C:\ProgramData\Babylon
Ordner Gelöscht : C:\ProgramData\Tarma Installer
Ordner Gelöscht : C:\Users\Hugo\AppData\Local\Conduit
Ordner Gelöscht : C:\Users\Hugo\AppData\Local\Wajam
Ordner Gelöscht : C:\Users\Hugo\AppData\LocalLow\Conduit
Ordner Gelöscht : C:\Users\Hugo\AppData\LocalLow\JDownloader
Ordner Gelöscht : C:\Users\Hugo\AppData\Roaming\Babylon
Ordner Gelöscht : C:\Users\Hugo\AppData\Roaming\dvdvideosoftiehelpers
Ordner Gelöscht : C:\Users\Hugo\AppData\Roaming\Iminent
Ordner Gelöscht : C:\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\attpgko0.default\CT3175297
Ordner Gelöscht : C:\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\attpgko0.default\extensions\{dc84d6f4-abf5-441d-bdef-65f3f4d7aabe}
Ordner Gelöscht : C:\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\attpgko0.default\jetpack
Ordner Gelöscht : C:\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\attpgko0.default\Smartbar
***** [Registrierungsdatenbank] *****
Schlüssel Gelöscht : HKCU\Software\APN PIP
Schlüssel Gelöscht : HKCU\Software\AppDataLow\Software\Conduit
Schlüssel Gelöscht : HKCU\Software\AppDataLow\Software\ConduitSearchScopes
Schlüssel Gelöscht : HKCU\Software\AppDataLow\Software\JDownloader
Schlüssel Gelöscht : HKCU\Software\AppDataLow\Software\SmartBar
Schlüssel Gelöscht : HKCU\Software\AppDataLow\Toolbar
Schlüssel Gelöscht : HKCU\Software\BI
Schlüssel Gelöscht : HKCU\Software\Conduit
Schlüssel Gelöscht : HKCU\Software\Iminent
Schlüssel Gelöscht : HKCU\Software\InstallCore
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{DC84D6F4-ABF5-441D-BDEF-65F3F4D7AABE}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{DC84D6F4-ABF5-441D-BDEF-65F3F4D7AABE}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}
Schlüssel Gelöscht : HKLM\Software\Babylon
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{1005247F-A178-490A-8DC3-6BAF09EA427B}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{D616A4A2-7B38-4DBC-9093-6FE7A4A21B17}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Prod.cap
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Toolbar.CT3175297
Schlüssel Gelöscht : HKLM\Software\Conduit
Schlüssel Gelöscht : HKLM\Software\Iminent
Schlüssel Gelöscht : HKLM\Software\JDownloader
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extensions\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\blekko_1311013_RASAPI32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\blekko_1311013_RASMANCS
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\ConduitInstaller_RASAPI32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\ConduitInstaller_RASMANCS
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\Iminent_nonsearch_RASAPI32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\Iminent_nonsearch_RASMANCS
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\Iminent_RASAPI32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\Iminent_RASMANCS
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\MyBabylontb_RASAPI32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\MyBabylontb_RASMANCS
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\WajamUpdater_RASAPI32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\WajamUpdater_RASMANCS
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{9D94D82B-A3B2-424A-9A79-5A8F0C8B2E1B}
Schlüssel Gelöscht : HKLM\Software\PIP
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{02054E11-5113-4BE3-8153-AA8DFB5D3761}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{9D94D82B-A3B2-424A-9A79-5A8F0C8B2E1B}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{DC84D6F4-ABF5-441D-BDEF-65F3F4D7AABE}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{021B4049-F57D-4565-A693-FD3B04786BFA}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{0362AA09-808D-48E9-B360-FB51A8CBCE09}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{06844020-CD0B-3D3D-A7FE-371153013E49}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{0ADC01BB-303B-3F8E-93DA-12C140E85460}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{10D3722F-23E6-3901-B6C1-FF6567121920}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{1675E62B-F911-3B7B-A046-EB57261212F3}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{192929F2-9273-3894-91B0-F54671C4C861}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{2932897E-3036-43D9-8A64-B06447992065}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{2DE92D29-A042-3C37-BFF8-07C7D8893EFA}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{32B80AD6-1214-45F4-994E-78A5D482C000}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{3A8E103F-B2B7-3BEF-B3B0-88E29B2420E4}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{478CE5D3-D38E-3FFE-8DBE-8C4A0F1C4D8D}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{48B7DA4E-69ED-39E3-BAD5-3E3EFF22CFB0}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{5982F405-44E4-3BBB-BAC4-CF8141CBBC5C}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{5D8C3CC3-3C05-38A1-B244-924A23115FE9}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{641593AF-D9FD-30F7-B783-36E16F7A2E08}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{711FC48A-1356-3932-94D8-A8B733DBC7E4}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{72227B7F-1F02-3560-95F5-592E68BACC0C}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{7B5E8CE3-4722-4C0E-A236-A6FF731BEF37}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{890D4F59-5ED0-3CB4-8E0E-74A5A86E7ED0}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{8C68913C-AC3C-4494-8B9C-984D87C85003}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{8D019513-083F-4AA5-933F-7D43A6DA82C4}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{923F6FB8-A390-370E-A0D2-DD505432481D}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{9BBB26EF-B178-35D6-9D3D-B485F4279FE5}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{A62DDBE0-8D2A-339A-B089-8CBCC5CD322A}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{A82AD04D-0B8E-3A49-947B-6A69A8A9C96D}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{ADEB3CC9-A05D-4FCC-BD09-9025456AA3EA}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{B06D4521-D09C-3F41-8E39-9D784CCA2A75}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{C06DAD42-6F39-4CE1-83CC-9A8B9105E556}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{C2E799D0-43A5-3477-8A98-FC5F3677F35C}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{D16107CD-2AD5-46A8-BA59-303B7C32C500}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{D25B101F-8188-3B43-9D85-201F372BC205}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{D2BA7595-5E44-3F1E-880F-03B3139FA5ED}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{D35F5C81-17D9-3E1C-A1FC-4472542E1D25}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{D8FA96CA-B250-312C-AF34-4FF1DD72589D}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{DAFC1E63-3359-416D-9BC2-E7DCA6F7B0F3}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{DC5E5C44-80FD-3697-9E65-9F286D92F3E7}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{E1B4C9DE-D741-385F-981E-6745FACE6F01}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{E7B623F5-9715-3F9F-A671-D1485A39F8A2}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{ED916A7B-7C68-3198-B87D-2DABC30A5587}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{EFA1BDB2-BB3D-3D9A-8EB5-D0D22E0F64F4}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{F4CBF4DD-F8FE-35BA-BB7E-68304DAAB70B}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{FC32005D-E27C-32E0-ADFA-152F598B75E7}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\jpmbfleldcgkldadpdinhjjopdfpjfjp
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{68B81CCD-A80C-4060-8947-5AE69ED01199}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A6EDD078-B15D-4913-BAAA-3C460B47D797}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{B26AF799-141A-4110-9AE1-D4300F9B6AD9}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E6B969FB-6D33-48D2-9061-8BBD4899EB08}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DC84D6F4-ABF5-441D-BDEF-65F3F4D7AABE}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\JDownloader Toolbar
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{021B4049-F57D-4565-A693-FD3B04786BFA}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{0362AA09-808D-48E9-B360-FB51A8CBCE09}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{06844020-CD0B-3D3D-A7FE-371153013E49}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{0ADC01BB-303B-3F8E-93DA-12C140E85460}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{10D3722F-23E6-3901-B6C1-FF6567121920}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{1675E62B-F911-3B7B-A046-EB57261212F3}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{192929F2-9273-3894-91B0-F54671C4C861}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{2932897E-3036-43D9-8A64-B06447992065}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{2DE92D29-A042-3C37-BFF8-07C7D8893EFA}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{32B80AD6-1214-45F4-994E-78A5D482C000}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{3A8E103F-B2B7-3BEF-B3B0-88E29B2420E4}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{478CE5D3-D38E-3FFE-8DBE-8C4A0F1C4D8D}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{48B7DA4E-69ED-39E3-BAD5-3E3EFF22CFB0}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{5982F405-44E4-3BBB-BAC4-CF8141CBBC5C}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{5D8C3CC3-3C05-38A1-B244-924A23115FE9}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{641593AF-D9FD-30F7-B783-36E16F7A2E08}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{711FC48A-1356-3932-94D8-A8B733DBC7E4}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{72227B7F-1F02-3560-95F5-592E68BACC0C}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{7B5E8CE3-4722-4C0E-A236-A6FF731BEF37}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{890D4F59-5ED0-3CB4-8E0E-74A5A86E7ED0}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{8C68913C-AC3C-4494-8B9C-984D87C85003}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{8D019513-083F-4AA5-933F-7D43A6DA82C4}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{923F6FB8-A390-370E-A0D2-DD505432481D}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{9BBB26EF-B178-35D6-9D3D-B485F4279FE5}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{A62DDBE0-8D2A-339A-B089-8CBCC5CD322A}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{A82AD04D-0B8E-3A49-947B-6A69A8A9C96D}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{ADEB3CC9-A05D-4FCC-BD09-9025456AA3EA}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{B06D4521-D09C-3F41-8E39-9D784CCA2A75}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{C06DAD42-6F39-4CE1-83CC-9A8B9105E556}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{C2E799D0-43A5-3477-8A98-FC5F3677F35C}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{D16107CD-2AD5-46A8-BA59-303B7C32C500}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{D25B101F-8188-3B43-9D85-201F372BC205}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{D2BA7595-5E44-3F1E-880F-03B3139FA5ED}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{D35F5C81-17D9-3E1C-A1FC-4472542E1D25}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{D8FA96CA-B250-312C-AF34-4FF1DD72589D}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{DAFC1E63-3359-416D-9BC2-E7DCA6F7B0F3}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{DC5E5C44-80FD-3697-9E65-9F286D92F3E7}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{E1B4C9DE-D741-385F-981E-6745FACE6F01}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{E7B623F5-9715-3F9F-A671-D1485A39F8A2}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{ED916A7B-7C68-3198-B87D-2DABC30A5587}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{EFA1BDB2-BB3D-3D9A-8EB5-D0D22E0F64F4}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{F4CBF4DD-F8FE-35BA-BB7E-68304DAAB70B}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{FC32005D-E27C-32E0-ADFA-152F598B75E7}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}
Wert Gelöscht : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{DC84D6F4-ABF5-441D-BDEF-65F3F4D7AABE}]
Wert Gelöscht : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{DC84D6F4-ABF5-441D-BDEF-65F3F4D7AABE}]
Wert Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks [{DC84D6F4-ABF5-441D-BDEF-65F3F4D7AABE}]
Wert Gelöscht : HKLM\SOFTWARE\Mozilla\Firefox\extensions [{acaa314b-eeba-48e4-ad47-84e31c44796c}]
Wert Gelöscht : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar [{DC84D6F4-ABF5-441D-BDEF-65F3F4D7AABE}]
***** [Internet Browser] *****
-\\ Internet Explorer v10.0.9200.16611
Ersetzt : [HKCU\Software\Microsoft\Internet Explorer\Main - Start Page] = hxxp://blekko.com/ws/?source=5f97ddbe&tbp=homepage&u=92013be1000000000000000000000000 --> hxxp://www.google.com
-\\ Mozilla Firefox v22.0 (de)
Datei : C:\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\attpgko0.default\prefs.js
C:\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\attpgko0.default\user.js ... Gelöscht !
Gelöscht : user_pref("CT3175297.3175297a129713834391838668000000paramsGK1.enc", "eyJ1cGRhdGVSZXFUaW1lIjoxMzczMz[...]
Gelöscht : user_pref("CT3175297.3175297a129713834391838668000000twitterTemplate_notify_followers.enc", "MHgwMDM[...]
Gelöscht : user_pref("CT3175297.3175297a129713834391838668000000twitterTemplate_notify_followers_count.enc", "M[...]
Gelöscht : user_pref("CT3175297.3175297a129713834391838668000000twitterTemplate_notify_following.enc", "MHgwMDM[...]
Gelöscht : user_pref("CT3175297.3175297a129713834391838668000000twitterTemplate_notify_following_count.enc", "M[...]
Gelöscht : user_pref("CT3175297.3175297a129713834391838668000000twitterTemplate_notify_home.enc", "MHgwMDMzLDB4[...]
Gelöscht : user_pref("CT3175297.3175297a129713834391838668000000twitterTemplate_notify_home_count.enc", "MTU=")[...]
Gelöscht : user_pref("CT3175297.ENABALE_HISTORY", "{\"dataType\":\"string\",\"data\":\"true\"}");
Gelöscht : user_pref("CT3175297.ENABLE_RETURN_WEB_SEARCH_ON_THE_PAGE", "{\"dataType\":\"string\",\"data\":\"tru[...]
Gelöscht : user_pref("CT3175297.FF19Solved", "true");
Gelöscht : user_pref("CT3175297.FirstTime", "true");
Gelöscht : user_pref("CT3175297.FirstTimeFF3", "true");
Gelöscht : user_pref("CT3175297.LoginRevertSettingsEnabled", true);
Gelöscht : user_pref("CT3175297.RevertSettingsEnabled", true);
Gelöscht : user_pref("CT3175297.UserID", "UN21635615346373179");
Gelöscht : user_pref("CT3175297.addressBarTakeOverEnabledInHidden", "true");
Gelöscht : user_pref("CT3175297.addressUrlXPETakeover", "true");
Gelöscht : user_pref("CT3175297.autoDisableScopes", -1);
Gelöscht : user_pref("CT3175297.countryCode", "DE");
Gelöscht : user_pref("CT3175297.defaultSearch", "false");
Gelöscht : user_pref("CT3175297.embeddedsData", "[{\"appId\":\"10000002\",\"apiPermissions\":{\"crossDomainAjax[...]
Gelöscht : user_pref("CT3175297.enableAlerts", "true");
Gelöscht : user_pref("CT3175297.enableFix404ByUser", "FALSE");
Gelöscht : user_pref("CT3175297.enableSearchFromAddressBar", "true");
Gelöscht : user_pref("CT3175297.firstTimeDialogOpened", "true");
Gelöscht : user_pref("CT3175297.fixPageNotFoundError", "true");
Gelöscht : user_pref("CT3175297.fixPageNotFoundErrorByUser", "true");
Gelöscht : user_pref("CT3175297.fixPageNotFoundErrorInHidden", "true");
Gelöscht : user_pref("CT3175297.fixUrls", true);
Gelöscht : user_pref("CT3175297.fullUserID", "UN21635615346373179.UP.20130628204740");
Gelöscht : user_pref("CT3175297.homepageuserchanged", true);
Gelöscht : user_pref("CT3175297.installDate", "3/2/2013 8:16:02");
Gelöscht : user_pref("CT3175297.installId", "ct3175297_jdownloader.exe");
Gelöscht : user_pref("CT3175297.installType", "conduitnsisintegration");
Gelöscht : user_pref("CT3175297.isCheckedStartAsHidden", true);
Gelöscht : user_pref("CT3175297.isEnableAllDialogs", "{\"dataType\":\"string\",\"data\":\"true\"}");
Gelöscht : user_pref("CT3175297.isFirstTimeToolbarLoading", "false");
Gelöscht : user_pref("CT3175297.isToolbarShrinked", "{\"dataType\":\"string\",\"data\":\"false\"}");
Gelöscht : user_pref("CT3175297.jdownloader.gk.cached.response.enc", "ew0KICAiZGF0YSIgOiB7DQogICAgInBhdXNlIiA6I[...]
Gelöscht : user_pref("CT3175297.jdownloader.gk.cached.response.expires.enc", "VGh1IE1hciAyOCAyMDEzIDIzOjI4OjEwI[...]
Gelöscht : user_pref("CT3175297.keyword", "true");
Gelöscht : user_pref("CT3175297.lastNewTabSettings", "{\"isEnabled\":true,\"newTabUrl\":\"hxxp://search.conduit[...]
Gelöscht : user_pref("CT3175297.lastVersion", "10.16.4.519");
Gelöscht : user_pref("CT3175297.mam_gk_installer_preapproved.enc", "ZmFsc2U=");
Gelöscht : user_pref("CT3175297.migrateAppsAndComponents", true);
Gelöscht : user_pref("CT3175297.navigationAliasesJson", "{\"EB_SEARCH_TERM\":\"Zurück \\t \\tTrojaner-Board > [...]
Gelöscht : user_pref("CT3175297.openThankYouPage", "false");
Gelöscht : user_pref("CT3175297.openUninstallPage", "true");
Gelöscht : user_pref("CT3175297.revertSettingsEnabled", "false");
Gelöscht : user_pref("CT3175297.search.searchAppId", "10000002");
Gelöscht : user_pref("CT3175297.search.searchCount", "0");
Gelöscht : user_pref("CT3175297.searchInNewTabEnabledByUser", "true");
Gelöscht : user_pref("CT3175297.searchInNewTabEnabledInHidden", "true");
Gelöscht : user_pref("CT3175297.searchSuggestEnabledByUser", "true");
Gelöscht : user_pref("CT3175297.searchUserMode", "UM_ID");
Gelöscht : user_pref("CT3175297.selectToSearchBoxEnabled", "{\"dataType\":\"string\",\"data\":\"true\"}");
Gelöscht : user_pref("CT3175297.serviceLayer_service_login_isFirstLoginInvoked", "{\"dataType\":\"boolean\",\"d[...]
Gelöscht : user_pref("CT3175297.serviceLayer_service_login_loginCount", "{\"dataType\":\"number\",\"data\":\"4\[...]
Gelöscht : user_pref("CT3175297.serviceLayer_service_toolbarGrouping_activeCTID", "{\"dataType\":\"string\",\"d[...]
Gelöscht : user_pref("CT3175297.serviceLayer_service_toolbarGrouping_activeDownloadUrl", "{\"dataType\":\"strin[...]
Gelöscht : user_pref("CT3175297.serviceLayer_service_toolbarGrouping_activeToolbarName", "{\"dataType\":\"strin[...]
Gelöscht : user_pref("CT3175297.serviceLayer_service_toolbarGrouping_invoked", "{\"dataType\":\"string\",\"data[...]
Gelöscht : user_pref("CT3175297.serviceLayer_service_usage_toolbarUsageCount", "{\"dataType\":\"number\",\"data[...]
Gelöscht : user_pref("CT3175297.serviceLayer_services_Configuration_lastUpdate", "1373392519589");
Gelöscht : user_pref("CT3175297.serviceLayer_services_appTrackingFirstTime_lastUpdate", "1373106322888");
Gelöscht : user_pref("CT3175297.serviceLayer_services_appsMetadata_lastUpdate", "1373392404106");
Gelöscht : user_pref("CT3175297.serviceLayer_services_gottenAppsContextMenu_lastUpdate", "1373106322893");
Gelöscht : user_pref("CT3175297.serviceLayer_services_location_lastUpdate", "1372364129485");
Gelöscht : user_pref("CT3175297.serviceLayer_services_login_10.14.42.7_lastUpdate", "1360693764594");
Gelöscht : user_pref("CT3175297.serviceLayer_services_login_10.14.65.43_lastUpdate", "1364318597082");
Gelöscht : user_pref("CT3175297.serviceLayer_services_login_10.15.0.562_lastUpdate", "1372417086198");
Gelöscht : user_pref("CT3175297.serviceLayer_services_login_10.15.2.523_lastUpdate", "1369561696717");
Gelöscht : user_pref("CT3175297.serviceLayer_services_login_10.16.4.519_lastUpdate", "1373392518585");
Gelöscht : user_pref("CT3175297.serviceLayer_services_otherAppsContextMenu_lastUpdate", "1373106322935");
Gelöscht : user_pref("CT3175297.serviceLayer_services_searchAPI_lastUpdate", "1373392518729");
Gelöscht : user_pref("CT3175297.serviceLayer_services_serviceMap_lastUpdate", "1373392518455");
Gelöscht : user_pref("CT3175297.serviceLayer_services_setupAPI_lastUpdate", "1364318457507");
Gelöscht : user_pref("CT3175297.serviceLayer_services_toolbarContextMenu_lastUpdate", "1373106322848");
Gelöscht : user_pref("CT3175297.serviceLayer_services_toolbarSettings_lastUpdate", "1373392404031");
Gelöscht : user_pref("CT3175297.serviceLayer_services_translation_lastUpdate", "1373392520538");
Gelöscht : user_pref("CT3175297.settingsINI", true);
Gelöscht : user_pref("CT3175297.shouldFirstTimeDialog", "false");
Gelöscht : user_pref("CT3175297.showToolbarPermission", "false");
Gelöscht : user_pref("CT3175297.smartbar.CTID", "CT3175297");
Gelöscht : user_pref("CT3175297.smartbar.Uninstall", "0");
Gelöscht : user_pref("CT3175297.smartbar.toolbarName", "JDownloader ");
Gelöscht : user_pref("CT3175297.startPage", "false");
Gelöscht : user_pref("CT3175297.toolbarBornServerTime", "3-2-2013");
Gelöscht : user_pref("CT3175297.toolbarCurrentServerTime", "9-7-2013");
Gelöscht : user_pref("CT3175297.toolbarLoginClientTime", "Tue Mar 26 2013 22:06:19 GMT+0100");
Gelöscht : user_pref("CT3175297.twitterTemplate_3175297a129713834391838668000000_DailyActivity.enc", "MTM3MzM5M[...]
Gelöscht : user_pref("CT3175297.twitterTemplate_3175297a129713834391838668000000_LifetimeSent.enc", "VFJVRQ==")[...]
Gelöscht : user_pref("CT3175297_Firefox.csv", "[{\"from\":\"Abs Layer\",\"action\":\"loading toolbar\",\"time\"[...]
Gelöscht : user_pref("ct3175297.UserID", "UN21635615346373179");
Gelöscht : user_pref("extensions.BabylonToolbar_i.newTab", true);
Gelöscht : user_pref("extensions.BabylonToolbar_i.newTabUrl", "hxxp://www.delta-search.com/?affID=119370&babsrc[...]
Gelöscht : user_pref("extensions.delta.admin", false);
Gelöscht : user_pref("extensions.delta.aflt", "babsst");
Gelöscht : user_pref("extensions.delta.appId", "{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}");
Gelöscht : user_pref("extensions.delta.autoRvrt", "false");
Gelöscht : user_pref("extensions.delta.dfltLng", "en");
Gelöscht : user_pref("extensions.delta.excTlbr", false);
Gelöscht : user_pref("extensions.delta.id", "92013be1000000000000000000000000");
Gelöscht : user_pref("extensions.delta.instlDay", "15738");
Gelöscht : user_pref("extensions.delta.instlRef", "sst");
Gelöscht : user_pref("extensions.delta.newTab", false);
Gelöscht : user_pref("extensions.delta.prdct", "delta");
Gelöscht : user_pref("extensions.delta.prtnrId", "delta");
Gelöscht : user_pref("extensions.delta.rvrt", "false");
Gelöscht : user_pref("extensions.delta.smplGrp", "none");
Gelöscht : user_pref("extensions.delta.tlbrId", "base");
Gelöscht : user_pref("extensions.delta.tlbrSrchUrl", "");
Gelöscht : user_pref("extensions.delta.vrsn", "1.8.10.0");
Gelöscht : user_pref("extensions.delta.vrsnTs", "1.8.10.04:05:13");
Gelöscht : user_pref("extensions.delta.vrsni", "1.8.10.0");
Gelöscht : user_pref("extensions.spamfreesearch.hmpgUrl", "hxxp://blekko.com/ws/?source=5f97ddbe&tbp=homepage&u[...]
Gelöscht : user_pref("extensions.spamfreesearch.keyWordUrl", "hxxp://blekko.com/ws/?source=5f97ddbe&tbp=rbox&u=[...]
Gelöscht : user_pref("extensions.spamfreesearch.prtnrId", "blekko");
Gelöscht : user_pref("extensions.spamfreesearch.srchPrvdr", "blekko");
Gelöscht : user_pref("extensions.spamfreesearch.tlbrSrchUrl", "hxxp://blekko.com/ws/?source=5f97ddbe&tbp=main&u[...]
Gelöscht : user_pref("keyword.URL", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT3175297&SearchSource=2&CU[...]
Gelöscht : user_pref("smartBar.searchInNewTabOwner", "CT3175297");
Gelöscht : user_pref("smartbar.conduitSearchAddressUrlList", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT[...]
Gelöscht : user_pref("smartbar.machineId", "BWJYSCLYI5XQZRSP5DNTRGT7J7RCME9NZYN0JH4VBQK2WKTRQM2MUXEAQ9BYVWYVOVT[...]
*************************
AdwCleaner[S1].txt - [26588 octets] - [09/07/2013 20:21:24]
########## EOF - C:\AdwCleaner[S1].txt - [26649 octets] ##########
Code:
ATTFilter ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 5.0.2 (07.09.2013:1)
OS: Windows 7 Ultimate x64
Ran by Hugo on 09.07.2013 at 20:33:01,87
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
~~~ Services
~~~ Registry Values
~~~ Registry Keys
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{5556DF4E-218B-479F-A077-FB29C13A8F2F}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{59D4C137-30C3-4B32-8E39-3BF77112D003}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{73C4D5B8-5B18-4754-8B3F-695D61B7DBCE}
~~~ Files
~~~ Folders
Successfully deleted: [Folder] "C:\Windows\syswow64\ai_recyclebin"
~~~ FireFox
Successfully deleted: [File] "C:\Users\Hugo\AppData\Roaming\mozilla\firefox\profiles\attpgko0.default\extensions\jid1-QpHD8URtZWJC2A@jetpack.xpi"
Emptied folder: C:\Users\Hugo\AppData\Roaming\mozilla\firefox\profiles\attpgko0.default\minidumps [42 files]
~~~ Event Viewer Logs were cleared
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 09.07.2013 at 20:36:05,64
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
FRST Logfile: FRST Logfile: Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 08-07-2013
Ran by Hugo (administrator) on 09-07-2013 20:45:29
Running from C:\Users\Hugo\Desktop
Windows 7 Ultimate Service Pack 1 (X64) OS Language: German Standard
Internet Explorer Version 10
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
(Native Instruments GmbH) C:\Program Files\Common Files\Native Instruments\Hardware\NIHardwareService.exe
() C:\Program Files (x86)\Sony Ericsson\Sony Ericsson PC Suite\SupServ.exe
() C:\Program Files (x86)\Hardcopy\hcdll2_ex_Win32.exe
() C:\Program Files (x86)\Hardcopy\hcdll2_ex_x64.exe
(TuneUp Software) C:\Program Files (x86)\TuneUp Utilities 2013\TuneUpUtilitiesService64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(sw4you) C:\Program Files (x86)\Hardcopy\hardcopy.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
(TuneUp Software) C:\Program Files (x86)\TuneUp Utilities 2013\TuneUpUtilitiesApp64.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe
(Nero AG) C:\Program Files (x86)\Nero\Update\NASvc.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s [8306208 2009-10-21] (Realtek Semiconductor)
HKCU\...\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun [1475584 2010-11-21] (Microsoft Corporation)
HKCU\...\Run: [Sony Ericsson PC Suite] "C:\Program Files (x86)\Sony Ericsson\Sony Ericsson PC Suite\SEPCSuite.exe" /systray /nologon [466944 2011-06-17] (Sony Ericsson Mobile Communications AB)
HKCU\...\Policies\system: [DisableRegistryTools] 0
HKCU\...\Policies\system: [DisableTaskMgr] 0
HKLM-x32\...\Run: [avgnt] "C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe" /min [345144 2013-06-26] (Avira Operations GmbH & Co. KG)
Startup: C:\ProgramData\Start Menu\Programs\Startup\Hardcopy.LNK
ShortcutTarget: Hardcopy.LNK -> C:\Program Files (x86)\Hardcopy\hardcopy.exe (sw4you)
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Tcpip\..\Interfaces\{A600A043-1D3A-44D6-8C18-CAB38C55DBC4}: [NameServer]217.0.43.97 217.0.43.113
FireFox:
========
FF ProfilePath: C:\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\attpgko0.default
FF Homepage: about:home
FF NetworkProxy: "autoconfig_url", "data:text/javascript,function%20FindProxyForURL(url%2C%20host)%20%7Bif%20(url.indexOf('southparkstudios.com')%20!%3D%20-1%20%7C%7C%20(url.indexOf('turntable.fm')%20!%3D%20-1%20%26%26%20url.indexOf('static.turntable.fm')%20%3D%3D%20-1%20%26%26%20url.indexOf('s3.amazonaws.com')%20%3D%3D%20-1%20%26%26%20url.indexOf('ping.chartbeat.net')%20%3D%3D%20-1)%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fwww.funimation.com*')%20%7C%7C%20shExpMatch(url%2C%20'https%3A%2F%2Fsecure.funimation.com*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fwww.rdio.com*')%20%7C%7C%20host%20%3D%3D%20's.hulu.com'%20%7C%7C%20url.indexOf('vevo.com')%20!%3D%20-1%20%7C%7C%20host%20%3D%3D%20'www.pandora.com'%20%7C%7C%20shExpMatch(url%2C%20'https%3A%2F%2Fwww.daisuki.net*')%20%7C%7C%20(url.indexOf('proxmate%3Dactive')%20!%3D%20-1%20%26%26%20url.indexOf('amazonaws.com')%20%3D%3D%20-1)%20%7C%7C%20(url.indexOf('proxmate%3Dus')%20!%3D%20-1)%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fsongza.com*')%20%7C%7C%20url.indexOf('discoverymedia.com')%20!%3D%20-1%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fwww.iheart.com*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fwww.mtv.com*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fmedia.mtvnservices.com*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fwww.crunchyroll.com*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fgrooveshark.com*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fretro.grooveshark.com*')%20%7C%7C%20url.indexOf('play.google.com')%20!%3D%20-1%20%7C%7C%20url.indexOf('.brightcove.com')%20!%3D%20-1)%20%7B%20return%20'PROXY%20ab-us09.personalitycores.com%3A8000%3B%20PROXY%20ab-us03.personalitycores.com%3A8000%3B%20PROXY%20ab-us17.personalitycores.com%3A8000%3B%20PROXY%20ab-us10.personalitycores.com%3A8000%3B%20PROXY%20ab-us08.personalitycores.com%3A8000%3B%20PROXY%20ab-us14.personalitycores.com%3A8000%3B%20PROXY%20ab-us12.personalitycores.com%3A8000%3B%20PROXY%20ab-us11.personalitycores.com%3A8000%3B%20PROXY%20ab-us13.personalitycores.com%3A8000%3B%20PROXY%20ab-us07.personalitycores.com%3A8000%3B%20PROXY%20ab-us02.personalitycores.com%3A8000%3B%20PROXY%20ab-us18.personalitycores.com%3A8000%3B%20PROXY%20ab-us16.personalitycores.com%3A8000%3B%20PROXY%20ab-us01.personalitycores.com%3A8000%3B%20PROXY%20ab-us15.personalitycores.com%3A8000'%3B%7D%20%20else%20%7B%20return%20'DIRECT'%3B%20%7D%7D"
FF NetworkProxy: "type", 2
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_7_700_224.dll ()
FF Plugin: @java.com/DTPlugin,version=10.11.2 - C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.11.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.20125.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=2.0.5 - C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_7_700_224.dll ()
FF Plugin-x32: @adobe.com/ShockwavePlayer - C:\Windows\SysWOW64\Adobe\Director\np32dsw_1200112.dll (Adobe Systems, Inc.)
FF Plugin-x32: @java.com/DTPlugin,version=1.6.0_39 - C:\Windows\SysWOW64\npdeployJava1.dll (Sun Microsystems, Inc.)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files (x86)\Microsoft Silverlight\5.1.20125.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @Nero.com/KM - C:\PROGRA~2\COMMON~1\Nero\BROWSE~1\NPBROW~1.DLL (Nero AG)
FF Plugin-x32: @nvidia.com/3DVision - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Extension: newtabgoogle - C:\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\attpgko0.default\Extensions\newtabgoogle@graememcc.co.uk.xpi
FF Extension: passwordcategories - C:\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\attpgko0.default\Extensions\passwordcategories@daniel.dawson.xpi
FF Extension: savedpasswordeditor - C:\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\attpgko0.default\Extensions\savedpasswordeditor@daniel.dawson.xpi
FF Extension: youtube2mp3 - C:\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\attpgko0.default\Extensions\youtube2mp3@mondayx.de.xpi
FF Extension: No Name - C:\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\attpgko0.default\Extensions\{097d3191-e6fa-4728-9826-b533d755359d}.xpi
FF Extension: No Name - C:\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\attpgko0.default\Extensions\{19503e42-ca3c-4c27-b1e2-9cdb2170ee34}.xpi
FF Extension: No Name - C:\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\attpgko0.default\Extensions\{5C655500-E712-41e7-9349-CE462F844B19}.xpi
FF Extension: No Name - C:\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\attpgko0.default\Extensions\{6d96bb5e-1175-4ebf-8ab5-5f56f1c79f65}.xpi
FF Extension: No Name - C:\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\attpgko0.default\Extensions\{9AA46F4F-4DC7-4c06-97AF-5035170634FE}.xpi
FF Extension: No Name - C:\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\attpgko0.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
FF Extension: Default - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
==================== Services (Whitelisted) =================
R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [84024 2013-06-26] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [108088 2013-06-26] (Avira Operations GmbH & Co. KG)
R2 OMSI download service; C:\Program Files (x86)\Sony Ericsson\Sony Ericsson PC Suite\SupServ.exe [90112 2009-04-30] ()
R2 TuneUp.UtilitiesSvc; C:\Program Files (x86)\TuneUp Utilities 2013\TuneUpUtilitiesService64.exe [2402080 2013-01-28] (TuneUp Software)
==================== Drivers (Whitelisted) ====================
R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [100712 2013-03-29] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [130016 2013-03-29] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [28600 2013-03-29] (Avira Operations GmbH & Co. KG)
S3 Ph3xIB64; C:\Windows\System32\DRIVERS\Ph3xIB64.sys [1627520 2009-06-10] (NXP Semiconductors)
R3 seehcri; C:\Windows\System32\DRIVERS\seehcri.sys [34032 2008-01-09] (Sony Ericsson Mobile Communications)
R3 TuneUpUtilitiesDrv; C:\Program Files (x86)\TuneUp Utilities 2013\TuneUpUtilitiesDriver64.sys [11880 2012-11-16] (TuneUp Software)
R3 XUIF; C:\Windows\System32\Drivers\x10ufx2.sys [33048 2006-11-30] (X10 Wireless Technology, Inc.)
S3 catchme; \??\C:\ComboFix\catchme.sys [x]
S3 VGPU; System32\drivers\rdvgkmd.sys [x]
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2013-07-09 20:36 - 2013-07-09 20:36 - 00001406 ____A C:\Users\Hugo\Desktop\JRT.txt
2013-07-09 20:32 - 2013-07-09 20:32 - 00000000 ____D C:\Windows\ERUNT
2013-07-09 20:30 - 2013-07-09 20:30 - 00364446 ____A C:\Users\Hugo\Desktop\Fehlermeldung beim Start.hcp
2013-07-09 20:29 - 2013-07-09 20:29 - 00026627 ____A C:\Users\Hugo\Desktop\AdwCleaner[S1].txt
2013-07-09 20:21 - 2013-07-09 20:22 - 00026627 ____A C:\AdwCleaner[S1].txt
2013-07-09 20:21 - 2013-07-09 20:21 - 01880478 ____A C:\Users\Hugo\Desktop\Anleitung.hcp
2013-07-09 20:19 - 2013-07-09 20:19 - 00002409 ____A C:\Users\Hugo\Desktop\Hardcopy.LNK
2013-07-09 20:15 - 2013-07-09 20:13 - 00552389 ____A (Oleg N. Scherbakov) C:\Users\Hugo\Desktop\JRT.exe
2013-07-09 20:15 - 2013-07-09 20:11 - 00650027 ____A C:\Users\Hugo\Desktop\adwcleaner.exe
2013-07-09 20:13 - 2013-07-09 20:13 - 00552389 ____A (Oleg N. Scherbakov) C:\Users\Hugo\Downloads\JRT.exe
2013-07-09 20:11 - 2013-07-09 20:11 - 00650027 ____A C:\Users\Hugo\Downloads\adwcleaner.exe
2013-07-09 19:54 - 2013-07-09 19:54 - 00320790 ____A C:\Users\Hugo\Virusmeldung.hcp
2013-07-09 19:53 - 2013-07-09 19:53 - 00000000 ____A C:\Users\Hugo\Neues Textdokument (2).txt
2013-07-08 20:34 - 2013-07-09 20:24 - 00000112 ____A C:\Windows\setupact.log
2013-07-08 20:34 - 2013-07-08 20:34 - 00000000 ____A C:\Windows\setuperr.log
2013-07-08 20:33 - 2013-07-08 20:33 - 00000656 ____A C:\Windows\PFRO.log
2013-07-08 20:17 - 2013-07-08 20:16 - 01934554 ____A (Farbar) C:\Users\Hugo\Desktop\FRST64.exe
2013-07-08 20:14 - 2013-07-08 20:16 - 01934554 ____A (Farbar) C:\Users\Hugo\Downloads\FRST64.exe
2013-07-07 21:16 - 2013-07-07 01:43 - 02237968 ____A (Kaspersky Lab ZAO) C:\Users\Hugo\Desktop\tdsskiller.exe
2013-07-07 17:56 - 2013-07-07 19:46 - 1268514860 ____A C:\Users\Hugo\2013-07-07_17h56m02.wav
2013-07-07 09:31 - 2013-03-16 16:20 - 00013618 ____A C:\Windows\swsetup.in_
2013-07-07 00:06 - 2013-07-07 00:06 - 00000869 ____A C:\Users\Public\Desktop\CPUID CPU-Z.lnk
2013-07-07 00:06 - 2013-07-07 00:06 - 00000000 ____D C:\Program Files\CPUID
2013-07-06 23:49 - 2013-07-06 23:50 - 01432424 ____A ( ) C:\Users\Hugo\Downloads\cpu-z_1.65-setup-en.exe
2013-07-06 23:29 - 2013-07-06 23:32 - 06704432 ____A C:\Users\Hugo\Downloads\hc.exe
2013-07-06 18:50 - 2013-07-06 18:50 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-07-06 14:58 - 2013-07-07 09:30 - 00000000 ____D C:\Users\Hugo\Downloads\zum Virus killen
2013-07-06 13:34 - 2013-07-06 14:43 - 00000000 ____D C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2013-07-06 13:33 - 2013-07-06 13:33 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-07-06 13:29 - 2013-07-06 13:29 - 00000000 ____D C:\Users\Hugo\Downloads\mbar-1.06.0.1004
2013-07-06 13:14 - 2013-07-06 13:14 - 00024639 ____A C:\ComboFix.txt
2013-07-06 12:54 - 2011-06-26 08:45 - 00256000 ____A C:\Windows\PEV.exe
2013-07-06 12:54 - 2010-11-07 19:20 - 00208896 ____A C:\Windows\MBR.exe
2013-07-06 12:54 - 2009-04-20 06:56 - 00060416 ____A (NirSoft) C:\Windows\NIRCMD.exe
2013-07-06 12:54 - 2000-08-31 02:00 - 00518144 ____A (SteelWerX) C:\Windows\SWREG.exe
2013-07-06 12:54 - 2000-08-31 02:00 - 00406528 ____A (SteelWerX) C:\Windows\SWSC.exe
2013-07-06 12:54 - 2000-08-31 02:00 - 00098816 ____A C:\Windows\sed.exe
2013-07-06 12:54 - 2000-08-31 02:00 - 00080412 ____A C:\Windows\grep.exe
2013-07-06 12:54 - 2000-08-31 02:00 - 00068096 ____A C:\Windows\zip.exe
2013-07-06 12:36 - 2013-07-06 13:15 - 00000000 ____D C:\Qoobox
2013-07-06 12:36 - 2013-07-06 13:11 - 00000000 ____D C:\Windows\erdnt
2013-07-06 11:54 - 2013-07-06 12:17 - 00000000 ____D C:\FRST
2013-07-06 11:09 - 2013-07-06 11:09 - 00000000 ____A C:\Users\Hugo\Neues Textdokument.txt
2013-07-05 16:43 - 2013-07-05 16:43 - 00007830 ____A C:\Users\Hugo\Downloads\hijackthis.log
2013-07-05 16:41 - 2013-07-05 16:41 - 00388608 ____A (Trend Micro Inc.) C:\Users\Hugo\Downloads\hijackthis.exe
2013-06-30 08:18 - 2013-06-30 09:10 - 01672030 ____A C:\Users\Hugo\2013-06-30_8h18m25.wav
2013-06-30 08:10 - 2013-07-09 20:24 - 00112330 ____A C:\Windows\WindowsUpdate.log
2013-06-30 07:10 - 2013-06-30 07:10 - 75890688 ____A C:\Users\Hugo\2013-06-30_7h10m18.wav
2013-06-30 06:55 - 2013-06-30 08:11 - 97174374 ____A C:\Users\Hugo\2013-06-30_6h55m02.wav
2013-06-30 06:43 - 2013-06-30 07:07 - 00213854 ____A C:\Users\Hugo\2013-06-30_6h43m39.wav
2013-06-30 06:13 - 2013-06-30 06:40 - 00361310 ____A C:\Users\Hugo\2013-06-30_6h13m42.wav
2013-06-30 05:59 - 2013-06-30 06:06 - 80101420 ____A C:\Users\Hugo\2013-06-30_5h59m03.wav
2013-06-30 05:56 - 2013-06-30 05:57 - 08962092 ____A C:\Users\Hugo\2013-06-30_5h56m47.wav
2013-06-29 18:33 - 2013-07-05 17:57 - 00000000 __HDC C:\ProgramData\{18E5420F-B6DC-45F1-9618-C199435ED6E3}
2013-06-29 18:33 - 2013-06-29 18:33 - 00000839 ____A C:\Users\Public\Desktop\Traktor 2.lnk
2013-06-29 18:27 - 2013-07-05 17:57 - 00000000 __HDC C:\ProgramData\{BC91DE36-9EA0-4BE4-9C95-C3ABA1C65900}
2013-06-29 18:27 - 2013-06-29 18:27 - 00001094 ____A C:\Users\Public\Desktop\Controller Editor.lnk
2013-06-29 18:26 - 2013-07-05 17:57 - 00000000 __HDC C:\ProgramData\{F2610326-6A40-4BBC-9FBC-7F05356A912A}
2013-06-29 18:26 - 2013-06-29 18:26 - 00001059 ____A C:\Users\Public\Desktop\Service Center.lnk
2013-06-23 22:08 - 2013-06-23 22:08 - 00063282 ____A C:\Users\Hugo\Documents\Samples.nml
2013-06-23 22:08 - 2013-06-23 09:57 - 06018338 ____A C:\Users\Hugo\Documents\Nacim Ladj - Animal(360p_H.264-AAC) 2013-06-23 09-56-43.wav
2013-06-23 22:08 - 2013-06-23 09:50 - 00679954 ____A C:\Users\Hugo\Documents\Nacim Ladj - Animal(360p_H.264-AAC) 2013-06-23 09-50-43.wav
2013-06-23 22:08 - 2013-06-23 08:48 - 00764778 ____A C:\Users\Hugo\Documents\Glitter - Religions Of This World(720p_H.264-AAC) 2013-06-23 08-14-17.wav
2013-06-23 22:08 - 2013-06-23 07:54 - 00001860 ____A C:\Users\Hugo\Documents\Boris - Broken Lose (Original Mix) [Tronic](720p_H.264-AAC) 2013-06-23 07-54-41.wav
2013-06-23 22:08 - 2013-06-23 06:08 - 02797924 ____A C:\Users\Hugo\Documents\Aka Aka - Nightgirl(240p_H.264-AAC) 2013-06-23 02-27-29.wav
2013-06-23 22:08 - 2013-06-23 06:08 - 00086804 ____A C:\Users\Hugo\Documents\Aka Aka - Nightgirl(240p_H.264-AAC) 2013-06-23 02-26-08.wav
2013-06-23 22:08 - 2013-06-23 05:47 - 00418566 ____A C:\Users\Hugo\Documents\Moses - Ice Crystals ( Original Mix ) - EERF Promo(720p_H.264-AAC) 2013-06-23 05-47-15.wav
2013-06-23 22:08 - 2013-06-23 05:47 - 00418564 ____A C:\Users\Hugo\Documents\Moses - Ice Crystals ( Original Mix ) - EERF Promo(720p_H.264-AAC) 2013-06-23 05-46-29.wav
2013-06-23 22:08 - 2013-06-23 04:26 - 02882638 ____A C:\Users\Hugo\Documents\Aka Aka - Nightgirl(240p_H.264-AAC) 2013-06-23 02-21-42.wav
2013-06-23 22:08 - 2013-06-23 04:24 - 00340986 ____A C:\Users\Hugo\Documents\Hobo Duress Duress MINUS118(360p_H.264-AAC) 2013-06-23 04-24-05.wav
2013-06-23 22:08 - 2013-06-23 04:23 - 00340970 ____A C:\Users\Hugo\Documents\Hobo Duress Duress MINUS118(360p_H.264-AAC) 2013-06-23 04-23-40.wav
2013-06-23 22:08 - 2013-06-23 03:01 - 03051938 ____A C:\Users\Hugo\Documents\Aka Aka - Nightgirl(240p_H.264-AAC) 2013-06-23 02-25-27.wav
2013-06-23 22:08 - 2013-06-23 02:01 - 02757318 ____A C:\Users\Hugo\Documents\Gaiser - Mfnstmp (Original Mix) HD(360p_H.264-AAC) 2013-06-23 01-31-01.wav
2013-06-23 22:08 - 2013-06-23 01:59 - 02734530 ____A C:\Users\Hugo\Documents\DJ Hal - Girls & Boogie(360p_H.264-AAC) 2013-06-23 01-11-04.wav
2013-06-23 22:08 - 2013-06-23 00:43 - 02734498 ____A C:\Users\Hugo\Documents\DJ Hal - Girls & Boogie(360p_H.264-AAC) 2013-06-23 00-43-23.wav
2013-06-23 22:08 - 2013-06-23 00:28 - 00172904 ____A C:\Users\Hugo\Documents\Monkey Safari - Fat Papa (Original Mix)(720p_H.264-AAC) 2013-06-23 00-01-13.wav
2013-06-23 22:08 - 2013-06-23 00:24 - 01360376 ____A C:\Users\Hugo\Documents\Format_B - Octopussy _ HD(360p_H.264-AAC) 2013-06-23 00-24-20.wav
2013-06-23 22:08 - 2013-06-23 00:18 - 00256746 ____A C:\Users\Hugo\Documents\Format_B - Octopussy _ HD(360p_H.264-AAC) 2013-06-23 00-18-10.wav
2013-06-23 22:08 - 2013-06-23 00:14 - 00044500 ____A C:\Users\Hugo\Documents\Format_B - Octopussy _ HD(360p_H.264-AAC) 2013-06-23 00-14-26.wav
2013-06-23 22:08 - 2013-06-22 02:37 - 00042752 ____A C:\Users\Hugo\Documents\Stanke - DJ St@nke mix739 MINIMALISTICA SESSION 12.02.13. 2013-06-22 02-37-44.wav
2013-06-23 22:08 - 2013-06-14 23:13 - 02681172 ____A C:\Users\Hugo\Documents\Patrik Soderbom - Another Level (Avrosse Remix)(720p_H.264-AAC) 2013-06-14 21-45-08.wav
2013-06-23 22:08 - 2013-06-14 10:01 - 00689970 ____A C:\Users\Hugo\Documents\Minicut - Swagg!(720p_H.264-AAC) 2013-06-14 10-01-00.wav
2013-06-23 22:08 - 2013-06-14 09:39 - 00491058 ____A C:\Users\Hugo\Documents\Avrosse - 600km (Original Mix)(360p_H.264-AAC) 2013-06-13 23-13-09.wav
2013-06-23 22:08 - 2013-06-14 08:43 - 02905356 ____A C:\Users\Hugo\Documents\Loop Recorder 2013-06-01 02-10-51.wav
2013-06-23 22:08 - 2013-06-14 08:28 - 02928606 ____A C:\Users\Hugo\Documents\Loop Recorder 2013-06-14 07-20-56.wav
2013-06-23 22:08 - 2013-06-14 08:28 - 01465036 ____A C:\Users\Hugo\Documents\Loop Recorder 2013-06-14 07-04-38.wav
2013-06-23 22:08 - 2013-06-14 08:28 - 01465020 ____A C:\Users\Hugo\Documents\Loop Recorder 2013-06-14 07-01-50.wav
2013-06-23 22:08 - 2013-06-14 08:28 - 00710758 ____A C:\Users\Hugo\Documents\Loop Recorder 2013-06-01 20-13-47.wav
2013-06-23 22:08 - 2013-06-14 08:26 - 00362278 ____A C:\Users\Hugo\Documents\Coronita _) Lépegetős(360p_H.264-AAC) 2013-05-27 23-00-09.wav
2013-06-23 22:08 - 2013-06-14 06:59 - 01465084 ____A C:\Users\Hugo\Documents\Loop Recorder 2013-06-14 06-59-26.wav
2013-06-23 22:08 - 2013-06-09 00:19 - 00338326 ____A C:\Users\Hugo\Documents\Corner - Defrost (Original Mix)(240p_H.264-AAC) 2013-06-09 00-19-21.wav
2013-06-23 22:08 - 2013-05-31 23:41 - 02951970 ____A C:\Users\Hugo\Documents\Loop Recorder 2013-05-31 23-40-23.wav
2013-06-23 22:08 - 2013-05-31 20:18 - 00332518 ____A C:\Users\Hugo\Documents\test 7 2013-05-31 20-18-13.wav
2013-06-23 22:08 - 2013-05-31 20:16 - 00332494 ____A C:\Users\Hugo\Documents\test 7 2013-05-31 20-16-00.wav
2013-06-23 22:08 - 2013-05-31 12:58 - 00380414 ____A C:\Users\Hugo\Documents\Jus Deelax & Luis Gee - Ola K Ase (Original Mix)(360p_H.264-AAC) 2013-05-31 12-58-38.wav
2013-06-23 22:08 - 2013-05-26 21:01 - 00663524 ____A C:\Users\Hugo\Documents\Vengeance Minimal House Vol. 2 2013-04-03 04-50-49.wav
2013-06-23 07:20 - 2013-06-23 21:18 - 00000000 ____D C:\Users\Hugo\AppData\Local\WindowsApplication45
2013-06-23 07:14 - 2013-06-23 21:10 - 00000000 ____D C:\Users\Hugo\Downloads\program djvc
2013-06-20 07:55 - 2013-05-17 03:25 - 00690688 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-06-20 07:55 - 2013-05-17 03:25 - 00493056 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-06-20 07:55 - 2013-05-17 03:25 - 00109056 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-06-20 07:55 - 2013-05-17 03:25 - 00061440 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-06-20 07:55 - 2013-05-17 03:25 - 00033280 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-06-20 07:55 - 2013-05-17 02:59 - 00051712 ____A (Microsoft Corporation) C:\Windows\System32\ie4uinit.exe
2013-06-20 07:55 - 2013-05-17 02:58 - 00855552 ____A (Microsoft Corporation) C:\Windows\System32\jscript.dll
2013-06-20 07:55 - 2013-05-17 02:58 - 00603136 ____A (Microsoft Corporation) C:\Windows\System32\msfeeds.dll
2013-06-20 07:55 - 2013-05-17 02:58 - 00136704 ____A (Microsoft Corporation) C:\Windows\System32\iesysprep.dll
2013-06-20 07:55 - 2013-05-17 02:58 - 00067072 ____A (Microsoft Corporation) C:\Windows\System32\iesetup.dll
2013-06-20 07:55 - 2013-05-17 02:58 - 00039936 ____A (Microsoft Corporation) C:\Windows\System32\iernonce.dll
2013-06-20 07:55 - 2013-05-14 14:23 - 00089600 ____A (Microsoft Corporation) C:\Windows\System32\RegisterIEPKEYs.exe
2013-06-20 07:55 - 2013-05-14 10:40 - 00071680 ____A (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2013-06-20 07:54 - 2013-05-17 03:25 - 02877440 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-06-20 07:54 - 2013-05-17 03:25 - 01767936 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-06-20 07:54 - 2013-05-17 03:25 - 00039424 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-06-20 07:54 - 2013-05-17 02:59 - 02241024 ____A (Microsoft Corporation) C:\Windows\System32\wininet.dll
2013-06-20 07:54 - 2013-05-17 02:58 - 03958784 ____A (Microsoft Corporation) C:\Windows\System32\jscript9.dll
2013-06-20 07:54 - 2013-05-17 02:58 - 00053248 ____A (Microsoft Corporation) C:\Windows\System32\jsproxy.dll
2013-06-20 07:51 - 2013-06-08 16:08 - 01365504 ____A (Microsoft Corporation) C:\Windows\System32\urlmon.dll
2013-06-20 07:51 - 2013-06-08 16:07 - 19233792 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.dll
2013-06-20 07:51 - 2013-06-08 16:06 - 15404544 ____A (Microsoft Corporation) C:\Windows\System32\ieframe.dll
2013-06-20 07:51 - 2013-06-08 16:06 - 02648064 ____A (Microsoft Corporation) C:\Windows\System32\iertutil.dll
2013-06-20 07:51 - 2013-06-08 16:06 - 00526336 ____A (Microsoft Corporation) C:\Windows\System32\ieui.dll
2013-06-20 07:51 - 2013-06-08 14:28 - 02706432 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.tlb
2013-06-20 07:51 - 2013-06-08 13:42 - 01141248 ____A (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-06-20 07:51 - 2013-06-08 13:40 - 14327808 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-06-20 07:51 - 2013-06-08 13:40 - 13760512 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-06-20 07:51 - 2013-06-08 13:40 - 02046976 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-06-20 07:51 - 2013-06-08 13:40 - 00391168 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-06-20 07:51 - 2013-06-08 13:13 - 02706432 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-06-15 20:40 - 2013-06-22 18:38 - 1105315104 ____A C:\Users\Hugo\2013-06-15_20h40m55.wav
2013-06-13 20:14 - 2013-06-13 20:17 - 376111104 ____A C:\Users\Hugo\test 7.wav___tmp
2013-06-13 10:27 - 2013-01-04 08:11 - 02284544 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2vdec.dll.bak
2013-06-13 10:27 - 2009-07-14 03:15 - 00970240 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2adec.dll.bak
2013-06-13 10:26 - 2013-01-04 08:11 - 02776576 ____A (Microsoft Corporation) C:\Windows\System32\msmpeg2vdec.dll.bak
2013-06-13 10:26 - 2009-07-14 03:41 - 01307136 ____A (Microsoft Corporation) C:\Windows\System32\msmpeg2adec.dll.bak
2013-06-13 03:01 - 2013-06-13 03:01 - 00000000 ____D C:\Users\Hugo\AppData\Roaming\Shark007
2013-06-13 03:01 - 2013-06-13 03:01 - 00000000 ____D C:\ProgramData\Shark007
2013-06-13 03:01 - 2013-05-31 11:00 - 01922048 ____A (xy-VSFilter Team) C:\Windows\System32\VSFilter.dll
2013-06-13 03:01 - 2013-05-27 15:08 - 00127488 ____A C:\Windows\System32\ff_vfw.dll
2013-06-13 03:01 - 2013-04-05 21:27 - 02231296 ____A C:\Windows\System32\ac3filter.acm.new
2013-06-13 03:01 - 2013-04-05 21:27 - 02231296 ____A C:\Windows\System32\ac3filter.acm
2013-06-13 03:01 - 2013-03-17 10:22 - 03554304 ____A (x264vfw project) C:\Windows\System32\x264vfw.dll
2013-06-13 03:01 - 2012-07-21 12:55 - 00180736 ____A (fccHandler) C:\Windows\System32\ac3acm.acm
2013-06-13 03:01 - 2012-07-21 12:54 - 00361472 ____A (fccHandler) C:\Windows\System32\aacacm.acm
2013-06-13 03:01 - 2012-07-17 15:21 - 00206336 ____A C:\Windows\System32\unrar64.dll
2013-06-13 03:01 - 2011-12-07 20:37 - 00148992 ____A ( ) C:\Windows\System32\lagarith.dll
2013-06-13 03:01 - 2009-08-11 18:22 - 00580096 ____A C:\Windows\System32\ac3filter.acm.old
2013-06-13 03:01 - 2009-01-22 22:51 - 00124909 ____A (Open Source Software community project) C:\Windows\System32\pthreadGC2.dll
2013-06-13 02:57 - 2013-06-13 02:58 - 00000000 ____D C:\Users\Hugo\AppData\Roaming\Advanced
2013-06-13 02:57 - 2013-04-05 21:26 - 01679360 ____A C:\Windows\SysWOW64\ac3filter.acm.new
2013-06-13 02:56 - 2013-06-13 02:56 - 00000000 ____D C:\Program Files (x86)\Shark007
2013-06-13 02:55 - 2013-06-13 02:58 - 00000000 ____D C:\ProgramData\Advanced
2013-06-12 17:58 - 2013-05-13 07:51 - 01464320 ____A (Microsoft Corporation) C:\Windows\System32\crypt32.dll
2013-06-12 17:58 - 2013-05-13 07:51 - 00184320 ____A (Microsoft Corporation) C:\Windows\System32\cryptsvc.dll
2013-06-12 17:58 - 2013-05-13 07:51 - 00139776 ____A (Microsoft Corporation) C:\Windows\System32\cryptnet.dll
2013-06-12 17:58 - 2013-05-13 07:50 - 00052224 ____A (Microsoft Corporation) C:\Windows\System32\certenc.dll
2013-06-12 17:58 - 2013-05-13 06:45 - 01160192 ____A (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2013-06-12 17:58 - 2013-05-13 06:45 - 00140288 ____A (Microsoft Corporation) C:\Windows\SysWOW64\cryptsvc.dll
2013-06-12 17:58 - 2013-05-13 06:45 - 00103936 ____A (Microsoft Corporation) C:\Windows\SysWOW64\cryptnet.dll
2013-06-12 17:58 - 2013-05-13 05:43 - 01192448 ____A (Microsoft Corporation) C:\Windows\System32\certutil.exe
2013-06-12 17:58 - 2013-05-13 05:08 - 00903168 ____A (Microsoft Corporation) C:\Windows\SysWOW64\certutil.exe
2013-06-12 17:58 - 2013-05-13 05:08 - 00043008 ____A (Microsoft Corporation) C:\Windows\SysWOW64\certenc.dll
2013-06-12 17:44 - 2013-04-17 09:02 - 01230336 ____A (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2013-06-12 17:44 - 2013-04-17 08:24 - 01424384 ____A (Microsoft Corporation) C:\Windows\System32\WindowsCodecs.dll
2013-06-12 17:06 - 2013-05-10 07:49 - 00030720 ____A (Microsoft Corporation) C:\Windows\System32\cryptdlg.dll
2013-06-12 17:06 - 2013-05-10 05:20 - 00024576 ____A (Microsoft Corporation) C:\Windows\SysWOW64\cryptdlg.dll
2013-06-12 16:27 - 2013-04-26 01:30 - 01505280 ____A (Microsoft Corporation) C:\Windows\SysWOW64\d3d11.dll
2013-06-12 16:27 - 2013-04-01 00:52 - 01887232 ____A (Microsoft Corporation) C:\Windows\System32\d3d11.dll
2013-06-12 14:51 - 2013-05-08 08:39 - 01910632 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\tcpip.sys
2013-06-12 13:37 - 2013-04-26 07:51 - 00751104 ____A (Microsoft Corporation) C:\Windows\System32\win32spl.dll
2013-06-12 13:37 - 2013-04-26 06:55 - 00492544 ____A (Microsoft Corporation) C:\Windows\SysWOW64\win32spl.dll
2013-06-09 22:27 - 2013-06-09 23:52 - 621232128 ____A C:\Users\Hugo\2013-06-09_14h45m34_07h42m12.wav
2013-06-09 21:30 - 2013-06-09 22:27 - 665583660 ____A C:\Users\Hugo\2013-06-09_14h45m34_06h44m26.wav
2013-06-09 20:32 - 2013-06-09 21:30 - 665583660 ____A C:\Users\Hugo\2013-06-09_14h45m34_05h46m39.wav
2013-06-09 19:34 - 2013-06-09 20:32 - 665583660 ____A C:\Users\Hugo\2013-06-09_14h45m34_04h48m53.wav
2013-06-09 18:36 - 2013-06-09 19:34 - 665583660 ____A C:\Users\Hugo\2013-06-09_14h45m34_03h51m06.wav
2013-06-09 17:38 - 2013-06-09 18:36 - 665583660 ____A C:\Users\Hugo\2013-06-09_14h45m34_02h53m19.wav
2013-06-09 16:41 - 2013-06-09 17:38 - 665583660 ____A C:\Users\Hugo\2013-06-09_14h45m34_01h55m33.wav
2013-06-09 15:43 - 2013-06-09 16:41 - 665583660 ____A C:\Users\Hugo\2013-06-09_14h45m34_00h57m46.wav
2013-06-09 14:45 - 2013-06-09 15:43 - 665583660 ____A C:\Users\Hugo\2013-06-09_14h45m34.wav
2013-06-09 14:45 - 2013-06-09 14:45 - 00589868 ____A C:\Users\Hugo\2013-06-09_14h45m27.wav
==================== One Month Modified Files and Folders =======
2013-07-09 20:36 - 2013-07-09 20:36 - 00001406 ____A C:\Users\Hugo\Desktop\JRT.txt
2013-07-09 20:32 - 2013-07-09 20:32 - 00000000 ____D C:\Windows\ERUNT
2013-07-09 20:32 - 2009-07-14 06:45 - 00026496 ___AH C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-07-09 20:32 - 2009-07-14 06:45 - 00026496 ___AH C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-07-09 20:30 - 2013-07-09 20:30 - 00364446 ____A C:\Users\Hugo\Desktop\Fehlermeldung beim Start.hcp
2013-07-09 20:29 - 2013-07-09 20:29 - 00026627 ____A C:\Users\Hugo\Desktop\AdwCleaner[S1].txt
2013-07-09 20:28 - 2013-06-30 08:10 - 00112330 ____A C:\Windows\WindowsUpdate.log
2013-07-09 20:24 - 2013-07-08 20:34 - 00000112 ____A C:\Windows\setupact.log
2013-07-09 20:24 - 2013-02-02 00:53 - 00000000 ____D C:\ProgramData\NVIDIA
2013-07-09 20:24 - 2009-07-14 07:08 - 00000006 ___AH C:\Windows\Tasks\SA.DAT
2013-07-09 20:22 - 2013-07-09 20:21 - 00026627 ____A C:\AdwCleaner[S1].txt
2013-07-09 20:21 - 2013-07-09 20:21 - 01880478 ____A C:\Users\Hugo\Desktop\Anleitung.hcp
2013-07-09 20:19 - 2013-07-09 20:19 - 00002409 ____A C:\Users\Hugo\Desktop\Hardcopy.LNK
2013-07-09 20:19 - 2013-02-02 01:21 - 00000884 ____A C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-07-09 20:13 - 2013-07-09 20:15 - 00552389 ____A (Oleg N. Scherbakov) C:\Users\Hugo\Desktop\JRT.exe
2013-07-09 20:13 - 2013-07-09 20:13 - 00552389 ____A (Oleg N. Scherbakov) C:\Users\Hugo\Downloads\JRT.exe
2013-07-09 20:11 - 2013-07-09 20:15 - 00650027 ____A C:\Users\Hugo\Desktop\adwcleaner.exe
2013-07-09 20:11 - 2013-07-09 20:11 - 00650027 ____A C:\Users\Hugo\Downloads\adwcleaner.exe
2013-07-09 20:11 - 2013-02-13 03:22 - 00000000 ____D C:\Program Files (x86)\JDownloader 2
2013-07-09 19:54 - 2013-07-09 19:54 - 00320790 ____A C:\Users\Hugo\Virusmeldung.hcp
2013-07-09 19:54 - 2013-02-01 19:52 - 00000000 ____D C:\users\Hugo
2013-07-09 19:53 - 2013-07-09 19:53 - 00000000 ____A C:\Users\Hugo\Neues Textdokument (2).txt
2013-07-09 19:53 - 2013-02-12 21:15 - 00000000 ____D C:\Users\Hugo\.swt
2013-07-09 19:13 - 2013-02-02 19:26 - 00000000 ____D C:\Users\Hugo\Downloads\JDownloader
2013-07-08 20:34 - 2013-07-08 20:34 - 00000000 ____A C:\Windows\setuperr.log
2013-07-08 20:33 - 2013-07-08 20:33 - 00000656 ____A C:\Windows\PFRO.log
2013-07-08 20:33 - 2013-02-01 21:47 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2013-07-08 20:16 - 2013-07-08 20:17 - 01934554 ____A (Farbar) C:\Users\Hugo\Desktop\FRST64.exe
2013-07-08 20:16 - 2013-07-08 20:14 - 01934554 ____A (Farbar) C:\Users\Hugo\Downloads\FRST64.exe
2013-07-07 19:46 - 2013-07-07 17:56 - 1268514860 ____A C:\Users\Hugo\2013-07-07_17h56m02.wav
2013-07-07 09:30 - 2013-07-06 14:58 - 00000000 ____D C:\Users\Hugo\Downloads\zum Virus killen
2013-07-07 07:37 - 2013-03-02 00:29 - 00000000 ____D C:\Program Files (x86)\Hardcopy
2013-07-07 01:43 - 2013-07-07 21:16 - 02237968 ____A (Kaspersky Lab ZAO) C:\Users\Hugo\Desktop\tdsskiller.exe
2013-07-07 00:06 - 2013-07-07 00:06 - 00000869 ____A C:\Users\Public\Desktop\CPUID CPU-Z.lnk
2013-07-07 00:06 - 2013-07-07 00:06 - 00000000 ____D C:\Program Files\CPUID
2013-07-06 23:50 - 2013-07-06 23:49 - 01432424 ____A ( ) C:\Users\Hugo\Downloads\cpu-z_1.65-setup-en.exe
2013-07-06 23:32 - 2013-07-06 23:29 - 06704432 ____A C:\Users\Hugo\Downloads\hc.exe
2013-07-06 21:55 - 2013-04-14 18:21 - 00000000 ____D C:\Users\Hugo\Downloads\sampels kopien
2013-07-06 18:50 - 2013-07-06 18:50 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-07-06 18:25 - 2013-02-02 04:19 - 00653928 ____A C:\Windows\System32\perfh007.dat
2013-07-06 18:25 - 2013-02-02 04:19 - 00129800 ____A C:\Windows\System32\perfc007.dat
2013-07-06 18:25 - 2009-07-14 07:13 - 01498332 ____A C:\Windows\System32\PerfStringBackup.INI
2013-07-06 16:18 - 2013-02-23 17:53 - 00000000 ____D C:\Users\Hugo\AppData\Roaming\vlc
2013-07-06 14:43 - 2013-07-06 13:34 - 00000000 ____D C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2013-07-06 13:33 - 2013-07-06 13:33 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-07-06 13:29 - 2013-07-06 13:29 - 00000000 ____D C:\Users\Hugo\Downloads\mbar-1.06.0.1004
2013-07-06 13:15 - 2013-07-06 12:36 - 00000000 ____D C:\Qoobox
2013-07-06 13:14 - 2013-07-06 13:14 - 00024639 ____A C:\ComboFix.txt
2013-07-06 13:11 - 2013-07-06 12:36 - 00000000 ____D C:\Windows\erdnt
2013-07-06 13:07 - 2009-07-14 04:34 - 00000215 ____A C:\Windows\system.ini
2013-07-06 12:17 - 2013-07-06 11:54 - 00000000 ____D C:\FRST
2013-07-06 11:09 - 2013-07-06 11:09 - 00000000 ____A C:\Users\Hugo\Neues Textdokument.txt
2013-07-05 17:57 - 2013-06-29 18:33 - 00000000 __HDC C:\ProgramData\{18E5420F-B6DC-45F1-9618-C199435ED6E3}
2013-07-05 17:57 - 2013-06-29 18:27 - 00000000 __HDC C:\ProgramData\{BC91DE36-9EA0-4BE4-9C95-C3ABA1C65900}
2013-07-05 17:57 - 2013-06-29 18:26 - 00000000 __HDC C:\ProgramData\{F2610326-6A40-4BBC-9FBC-7F05356A912A}
2013-07-05 16:43 - 2013-07-05 16:43 - 00007830 ____A C:\Users\Hugo\Downloads\hijackthis.log
2013-07-05 16:42 - 2013-02-01 19:52 - 00000000 ____D C:\Users\Hugo\AppData\Local\VirtualStore
2013-07-05 16:41 - 2013-07-05 16:41 - 00388608 ____A (Trend Micro Inc.) C:\Users\Hugo\Downloads\hijackthis.exe
2013-06-30 09:10 - 2013-06-30 08:18 - 01672030 ____A C:\Users\Hugo\2013-06-30_8h18m25.wav
2013-06-30 08:11 - 2013-06-30 06:55 - 97174374 ____A C:\Users\Hugo\2013-06-30_6h55m02.wav
2013-06-30 07:10 - 2013-06-30 07:10 - 75890688 ____A C:\Users\Hugo\2013-06-30_7h10m18.wav
2013-06-30 07:07 - 2013-06-30 06:43 - 00213854 ____A C:\Users\Hugo\2013-06-30_6h43m39.wav
2013-06-30 06:40 - 2013-06-30 06:13 - 00361310 ____A C:\Users\Hugo\2013-06-30_6h13m42.wav
2013-06-30 06:06 - 2013-06-30 05:59 - 80101420 ____A C:\Users\Hugo\2013-06-30_5h59m03.wav
2013-06-30 05:57 - 2013-06-30 05:56 - 08962092 ____A C:\Users\Hugo\2013-06-30_5h56m47.wav
2013-06-29 23:42 - 2013-04-13 22:03 - 00000000 ____D C:\Users\Hugo\Documents\VirtualDJ
2013-06-29 19:23 - 2013-05-27 22:15 - 00000000 ____D C:\Users\Hugo\Documents\Native Instruments
2013-06-29 18:33 - 2013-06-29 18:33 - 00000839 ____A C:\Users\Public\Desktop\Traktor 2.lnk
2013-06-29 18:28 - 2013-05-27 22:09 - 00000000 ____D C:\Program Files\Traktor 2
2013-06-29 18:27 - 2013-06-29 18:27 - 00001094 ____A C:\Users\Public\Desktop\Controller Editor.lnk
2013-06-29 18:26 - 2013-06-29 18:26 - 00001059 ____A C:\Users\Public\Desktop\Service Center.lnk
2013-06-29 18:26 - 2013-05-28 19:42 - 00000000 ____D C:\Program Files\Native Instruments
2013-06-29 18:26 - 2013-04-02 07:42 - 00000000 ____D C:\Program Files\Common Files\Native Instruments
2013-06-29 15:11 - 2013-04-13 05:14 - 00000000 ____D C:\Users\Hugo\Downloads\Viedeos und Programm Native Instruments
2013-06-26 12:41 - 2013-05-02 11:35 - 00083672 ____A (Avira Operations GmbH & Co. KG) C:\Windows\System32\Drivers\avnetflt.sys
2013-06-23 22:08 - 2013-06-23 22:08 - 00063282 ____A C:\Users\Hugo\Documents\Samples.nml
2013-06-23 21:18 - 2013-06-23 07:20 - 00000000 ____D C:\Users\Hugo\AppData\Local\WindowsApplication45
2013-06-23 21:10 - 2013-06-23 07:14 - 00000000 ____D C:\Users\Hugo\Downloads\program djvc
2013-06-23 09:57 - 2013-06-23 22:08 - 06018338 ____A C:\Users\Hugo\Documents\Nacim Ladj - Animal(360p_H.264-AAC) 2013-06-23 09-56-43.wav
2013-06-23 09:50 - 2013-06-23 22:08 - 00679954 ____A C:\Users\Hugo\Documents\Nacim Ladj - Animal(360p_H.264-AAC) 2013-06-23 09-50-43.wav
2013-06-23 08:48 - 2013-06-23 22:08 - 00764778 ____A C:\Users\Hugo\Documents\Glitter - Religions Of This World(720p_H.264-AAC) 2013-06-23 08-14-17.wav
2013-06-23 07:54 - 2013-06-23 22:08 - 00001860 ____A C:\Users\Hugo\Documents\Boris - Broken Lose (Original Mix) [Tronic](720p_H.264-AAC) 2013-06-23 07-54-41.wav
2013-06-23 06:08 - 2013-06-23 22:08 - 02797924 ____A C:\Users\Hugo\Documents\Aka Aka - Nightgirl(240p_H.264-AAC) 2013-06-23 02-27-29.wav
2013-06-23 06:08 - 2013-06-23 22:08 - 00086804 ____A C:\Users\Hugo\Documents\Aka Aka - Nightgirl(240p_H.264-AAC) 2013-06-23 02-26-08.wav
2013-06-23 05:47 - 2013-06-23 22:08 - 00418566 ____A C:\Users\Hugo\Documents\Moses - Ice Crystals ( Original Mix ) - EERF Promo(720p_H.264-AAC) 2013-06-23 05-47-15.wav
2013-06-23 05:47 - 2013-06-23 22:08 - 00418564 ____A C:\Users\Hugo\Documents\Moses - Ice Crystals ( Original Mix ) - EERF Promo(720p_H.264-AAC) 2013-06-23 05-46-29.wav
2013-06-23 04:26 - 2013-06-23 22:08 - 02882638 ____A C:\Users\Hugo\Documents\Aka Aka - Nightgirl(240p_H.264-AAC) 2013-06-23 02-21-42.wav
2013-06-23 04:24 - 2013-06-23 22:08 - 00340986 ____A C:\Users\Hugo\Documents\Hobo Duress Duress MINUS118(360p_H.264-AAC) 2013-06-23 04-24-05.wav
2013-06-23 04:23 - 2013-06-23 22:08 - 00340970 ____A C:\Users\Hugo\Documents\Hobo Duress Duress MINUS118(360p_H.264-AAC) 2013-06-23 04-23-40.wav
2013-06-23 03:01 - 2013-06-23 22:08 - 03051938 ____A C:\Users\Hugo\Documents\Aka Aka - Nightgirl(240p_H.264-AAC) 2013-06-23 02-25-27.wav
2013-06-23 02:01 - 2013-06-23 22:08 - 02757318 ____A C:\Users\Hugo\Documents\Gaiser - Mfnstmp (Original Mix) HD(360p_H.264-AAC) 2013-06-23 01-31-01.wav
2013-06-23 01:59 - 2013-06-23 22:08 - 02734530 ____A C:\Users\Hugo\Documents\DJ Hal - Girls & Boogie(360p_H.264-AAC) 2013-06-23 01-11-04.wav
2013-06-23 00:43 - 2013-06-23 22:08 - 02734498 ____A C:\Users\Hugo\Documents\DJ Hal - Girls & Boogie(360p_H.264-AAC) 2013-06-23 00-43-23.wav
2013-06-23 00:28 - 2013-06-23 22:08 - 00172904 ____A C:\Users\Hugo\Documents\Monkey Safari - Fat Papa (Original Mix)(720p_H.264-AAC) 2013-06-23 00-01-13.wav
2013-06-23 00:24 - 2013-06-23 22:08 - 01360376 ____A C:\Users\Hugo\Documents\Format_B - Octopussy _ HD(360p_H.264-AAC) 2013-06-23 00-24-20.wav
2013-06-23 00:18 - 2013-06-23 22:08 - 00256746 ____A C:\Users\Hugo\Documents\Format_B - Octopussy _ HD(360p_H.264-AAC) 2013-06-23 00-18-10.wav
2013-06-23 00:14 - 2013-06-23 22:08 - 00044500 ____A C:\Users\Hugo\Documents\Format_B - Octopussy _ HD(360p_H.264-AAC) 2013-06-23 00-14-26.wav
2013-06-22 18:38 - 2013-06-15 20:40 - 1105315104 ____A C:\Users\Hugo\2013-06-15_20h40m55.wav
2013-06-22 12:22 - 2013-04-13 05:18 - 00000000 ____D C:\Users\Hugo\Downloads\alles für VirtualDJ Pro 7.4
2013-06-22 12:10 - 2013-06-08 01:28 - 00000000 ____D C:\Users\Hugo\AppData\Roaming\AllDup
2013-06-22 02:37 - 2013-06-23 22:08 - 00042752 ____A C:\Users\Hugo\Documents\Stanke - DJ St@nke mix739 MINIMALISTICA SESSION 12.02.13. 2013-06-22 02-37-44.wav
2013-06-20 19:00 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\rescache
2013-06-20 07:55 - 2013-02-02 01:17 - 75825640 ____A (Microsoft Corporation) C:\Windows\System32\MRT.exe
2013-06-14 23:13 - 2013-06-23 22:08 - 02681172 ____A C:\Users\Hugo\Documents\Patrik Soderbom - Another Level (Avrosse Remix)(720p_H.264-AAC) 2013-06-14 21-45-08.wav
2013-06-14 12:38 - 2013-06-01 03:49 - 1351749134 ____A C:\Users\Hugo\test 9.wav
2013-06-14 10:01 - 2013-06-23 22:08 - 00689970 ____A C:\Users\Hugo\Documents\Minicut - Swagg!(720p_H.264-AAC) 2013-06-14 10-01-00.wav
2013-06-14 09:39 - 2013-06-23 22:08 - 00491058 ____A C:\Users\Hugo\Documents\Avrosse - 600km (Original Mix)(360p_H.264-AAC) 2013-06-13 23-13-09.wav
2013-06-14 08:43 - 2013-06-23 22:08 - 02905356 ____A C:\Users\Hugo\Documents\Loop Recorder 2013-06-01 02-10-51.wav
2013-06-14 08:28 - 2013-06-23 22:08 - 02928606 ____A C:\Users\Hugo\Documents\Loop Recorder 2013-06-14 07-20-56.wav
2013-06-14 08:28 - 2013-06-23 22:08 - 01465036 ____A C:\Users\Hugo\Documents\Loop Recorder 2013-06-14 07-04-38.wav
2013-06-14 08:28 - 2013-06-23 22:08 - 01465020 ____A C:\Users\Hugo\Documents\Loop Recorder 2013-06-14 07-01-50.wav
2013-06-14 08:28 - 2013-06-23 22:08 - 00710758 ____A C:\Users\Hugo\Documents\Loop Recorder 2013-06-01 20-13-47.wav
2013-06-14 08:26 - 2013-06-23 22:08 - 00362278 ____A C:\Users\Hugo\Documents\Coronita _) Lépegetős(360p_H.264-AAC) 2013-05-27 23-00-09.wav
2013-06-14 06:59 - 2013-06-23 22:08 - 01465084 ____A C:\Users\Hugo\Documents\Loop Recorder 2013-06-14 06-59-26.wav
2013-06-13 20:48 - 2013-04-02 07:42 - 00000000 ____D C:\ProgramData\Native Instruments
2013-06-13 20:17 - 2013-06-13 20:14 - 376111104 ____A C:\Users\Hugo\test 7.wav___tmp
2013-06-13 19:43 - 2013-02-02 00:50 - 00000000 ____D C:\Users\Hugo\Downloads\AKTUELLE PROGRAMME 01.02.2013
2013-06-13 04:20 - 2013-02-02 01:21 - 00692104 ____A (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2013-06-13 04:20 - 2013-02-02 01:21 - 00071048 ____A (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2013-06-13 03:01 - 2013-06-13 03:01 - 00000000 ____D C:\Users\Hugo\AppData\Roaming\Shark007
2013-06-13 03:01 - 2013-06-13 03:01 - 00000000 ____D C:\ProgramData\Shark007
2013-06-13 03:01 - 2013-03-16 15:49 - 00012288 ____A C:\Users\Hugo\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2013-06-13 03:01 - 2013-02-09 15:26 - 00000000 ____D C:\Program Files\Shark007
2013-06-13 02:58 - 2013-06-13 02:57 - 00000000 ____D C:\Users\Hugo\AppData\Roaming\Advanced
2013-06-13 02:58 - 2013-06-13 02:55 - 00000000 ____D C:\ProgramData\Advanced
2013-06-13 02:56 - 2013-06-13 02:56 - 00000000 ____D C:\Program Files (x86)\Shark007
2013-06-13 02:51 - 2013-02-02 02:16 - 00001712 ____A C:\Users\Hugo\Desktop\MPC-HC x64.lnk
2013-06-13 02:51 - 2013-02-02 02:16 - 00000000 ____D C:\Program Files\MPC-HC
2013-06-09 23:52 - 2013-06-09 22:27 - 621232128 ____A C:\Users\Hugo\2013-06-09_14h45m34_07h42m12.wav
2013-06-09 22:27 - 2013-06-09 21:30 - 665583660 ____A C:\Users\Hugo\2013-06-09_14h45m34_06h44m26.wav
2013-06-09 21:30 - 2013-06-09 20:32 - 665583660 ____A C:\Users\Hugo\2013-06-09_14h45m34_05h46m39.wav
2013-06-09 20:32 - 2013-06-09 19:34 - 665583660 ____A C:\Users\Hugo\2013-06-09_14h45m34_04h48m53.wav
2013-06-09 19:34 - 2013-06-09 18:36 - 665583660 ____A C:\Users\Hugo\2013-06-09_14h45m34_03h51m06.wav
2013-06-09 18:36 - 2013-06-09 17:38 - 665583660 ____A C:\Users\Hugo\2013-06-09_14h45m34_02h53m19.wav
2013-06-09 17:38 - 2013-06-09 16:41 - 665583660 ____A C:\Users\Hugo\2013-06-09_14h45m34_01h55m33.wav
2013-06-09 16:41 - 2013-06-09 15:43 - 665583660 ____A C:\Users\Hugo\2013-06-09_14h45m34_00h57m46.wav
2013-06-09 15:43 - 2013-06-09 14:45 - 665583660 ____A C:\Users\Hugo\2013-06-09_14h45m34.wav
2013-06-09 14:45 - 2013-06-09 14:45 - 00589868 ____A C:\Users\Hugo\2013-06-09_14h45m27.wav
2013-06-09 00:19 - 2013-06-23 22:08 - 00338326 ____A C:\Users\Hugo\Documents\Corner - Defrost (Original Mix)(240p_H.264-AAC) 2013-06-09 00-19-21.wav
==================== Bamital & volsnap Check =================
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
LastRegBack: 2013-07-03 00:32
==================== End Of Log ============================
--- --- --- Ich habe beim Neustart eine merkwürdige Meldung vielleicht sagt ihnen die was?   Gruß Felix |
|
10.07.2013, 08:25
| #8 |
| /// the machine /// TB-Ausbilder | Avira kann TR/ATRAPS.Gen2 nicht löschen Alles von Sony Ericsson deinstallieren und wenn benötigt neu installieren. Drücke bitte die Windowstaste + R Taste und schreibe notepad in das Ausführen Fenster. Kopiere nun folgenden Text aus der Code-Box in das leere Textdokument Code:
ATTFilter HKCU\...\Run: [Sony Ericsson PC Suite] "C:\Program Files (x86)\Sony Ericsson\Sony Ericsson PC Suite\SEPCSuite.exe" /systray /nologon [466944 2011-06-17] (Sony Ericsson Mobile Communications AB)
FF NetworkProxy: "autoconfig_url", "data:text/javascript,function%20FindProxyForURL(url%2C%20host)%20%7Bif%20(url.indexOf('southparkstudios.com')%20!%3D%20-1%20%7C%7C%20(url.indexOf('turntable.fm')%20!%3D%20-1%20%26%26%20url.indexOf('static.turntable.fm')%20%3D%3D%20-1%20%26%26%20url.indexOf('s3.amazonaws.com')%20%3D%3D%20-1%20%26%26%20url.indexOf('ping.chartbeat.net')%20%3D%3D%20-1)%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fwww.funimation.com*')%20%7C%7C%20shExpMatch(url%2C%20'https%3A%2F%2Fsecure.funimation.com*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fwww.rdio.com*')%20%7C%7C%20host%20%3D%3D%20's.hulu.com'%20%7C%7C%20url.indexOf('vevo.com')%20!%3D%20-1%20%7C%7C%20host%20%3D%3D%20'www.pandora.com'%20%7C%7C%20shExpMatch(url%2C%20'https%3A%2F%2Fwww.daisuki.net*')%20%7C%7C%20(url.indexOf('proxmate%3Dactive')%20!%3D%20-1%20%26%26%20url.indexOf('amazonaws.com')%20%3D%3D%20-1)%20%7C%7C%20(url.indexOf('proxmate%3Dus')%20!%3D%20-1)%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fsongza.com*')%20%7C%7C%20url.indexOf('discoverymedia.com')%20!%3D%20-1%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fwww.iheart.com*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fwww.mtv.com*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fmedia.mtvnservices.com*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fwww.crunchyroll.com*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fgrooveshark.com*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fretro.grooveshark.com*')%20%7C%7C%20url.indexOf('play.google.com')%20!%3D%20-1%20%7C%7C%20url.indexOf('.brightcove.com')%20!%3D%20-1)%20%7B%20return%20'PROXY%20ab-us09.personalitycores.com%3A8000%3B%20PROXY%20ab-us03.personalitycores.com%3A8000%3B%20PROXY%20ab-us17.personalitycores.com%3A8000%3B%20PROXY%20ab-us10.personalitycores.com%3A8000%3B%20PROXY%20ab-us08.personalitycores.com%3A8000%3B%20PROXY%20ab-us14.personalitycores.com%3A8000%3B%20PROXY%20ab-us12.personalitycores.com%3A8000%3B%20PROXY%20ab-us11.personalitycores.com%3A8000%3B%20PROXY%20ab-us13.personalitycores.com%3A8000%3B%20PROXY%20ab-us07.personalitycores.com%3A8000%3B%20PROXY%20ab-us02.personalitycores.com%3A8000%3B%20PROXY%20ab-us18.personalitycores.com%3A8000%3B%20PROXY%20ab-us16.personalitycores.com%3A8000%3B%20PROXY%20ab-us01.personalitycores.com%3A8000%3B%20PROXY%20ab-us15.personalitycores.com%3A8000'%3B%7D%20%20else%20%7B%20return%20'DIRECT'%3B%20%7D%7D"
FF NetworkProxy: "type", 2
Speichere diese bitte als Fixlist.txt auf deinem Desktop (oder dem Verzeichnis in dem sich FRST befindet).
ESET Online Scanner
Downloade Dir bitte  SecurityCheck und:
und ein frisches FRST Log bitte. Noch Probleme?
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
11.07.2013, 20:27
| #9 |
| | Avira kann TR/ATRAPS.Gen2 nicht löschen Hallo, so alles erledigt hoffe ich. Das hat ganz schön lange gedauert mit dem Scan  .Code:
ATTFilter Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 08-07-2013
Ran by Hugo at 2013-07-10 22:24:29 Run:3
Running from C:\Users\Hugo\Desktop
Boot Mode: Normal
==============================================
HKCU\Software\Microsoft\Windows\CurrentVersion\Run\\Sony Ericsson PC Suite] "C:\Program Files (x86)\Sony Ericsson\Sony Ericsson PC Suite\SEPCSuite.exe" /systray /nologon [466944 2011-06-17 => Value not found.
Firefox Proxy settings were reset.
Firefox Proxy settings were reset.
==== End of Fixlog ====
Code:
ATTFilter # version=8
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.6920
# api_version=3.0.2
# EOSSerial=fbb010fa142e9c45aeb5115d7d8c13de
# engine=14346
# end=finished
# remove_checked=false
# archives_checked=true
# unwanted_checked=false
# unsafe_checked=false
# antistealth_checked=true
# utc_time=2013-07-11 09:43:38
# local_time=2013-07-11 11:43:38 (+0100, Mitteleuropäische Sommerzeit)
# country="Germany"
# lang=1033
# osver=6.1.7601 NT Service Pack 1
# compatibility_mode=1799 16775165 100 96 0 144207123 20747 0
# compatibility_mode=5893 16776574 100 94 13767849 125165668 0 0
# scanned=331128
# found=6
# cleaned=0
# scan_time=13255
sh=810E28D4E7B28D658DC48A82F0C65B46149AAE89 ft=1 fh=120d32a29875bbd8 vn="Win64/Conedex.B trojan" ac=I fn="C:\FRST\Quarantine\000000cb.@"
sh=061A3739739904F13A5B9ADCBF4AC2E8A3157B18 ft=1 fh=3f70b78fb0084ee4 vn="Win64/Sirefef.AW trojan" ac=I fn="C:\FRST\Quarantine\80000000.@"
sh=B13BD8868B583578C5146AFB237DC55B85512158 ft=1 fh=cc5cb84c7733d7f0 vn="a variant of Win32/Sirefef.FV trojan" ac=I fn="C:\FRST\Quarantine\80000032.@"
sh=48C3E4403B2099D7CE9BBB89FF0F0CCBF77981F4 ft=1 fh=1d52409ede4e2f84 vn="Win64/Sirefef.AN trojan" ac=I fn="C:\FRST\Quarantine\80000064.@"
sh=9890E9E53D36CD6F9CCA6941F45F5CBE16537563 ft=1 fh=ad2fb30c827e538e vn="Win32/StartPage.OIE trojan" ac=I fn="L:\Neuer Ordner\Sicherung Festplatte\downloads\Programme\vlc-1.1.4-win32.exe"
sh=EFDDF8B6F30E64A80D999FD9D15F490303BE68D2 ft=0 fh=0000000000000000 vn="Win32/Reveton.J trojan" ac=I fn="L:\Neuer Ordner\Sicherung Festplatte\downloads\Programme\HijackThis\backups\backup-20121117-202404-690-ctfmon.lnk"
Code:
ATTFilter C:\FRST\Quarantine\000000cb.@ Win64/Conedex.B trojan
C:\FRST\Quarantine\80000000.@ Win64/Sirefef.AW trojan
C:\FRST\Quarantine\80000032.@ a variant of Win32/Sirefef.FV trojan
C:\FRST\Quarantine\80000064.@ Win64/Sirefef.AN trojan
L:\Neuer Ordner\Sicherung Festplatte\downloads\Programme\vlc-1.1.4-win32.exe Win32/StartPage.OIE trojan
L:\Neuer Ordner\Sicherung Festplatte\downloads\Programme\HijackThis\backups\backup-20121117-202404-690-ctfmon.lnk Win32/Reveton.J trojan
und weiter gehts: Code:
ATTFilter Results of screen317's Security Check version 0.99.68
Windows 7 Service Pack 1 x64 (UAC is enabled)
Internet Explorer 10
``````````````Antivirus/Firewall Check:``````````````
Avira Desktop
Antivirus up to date!
`````````Anti-malware/Other Utilities Check:`````````
TuneUp Utilities 2013
TuneUp Utilities Language Pack (de-DE)
Adobe Flash Player 11.7.700.224
Adobe Reader XI
Mozilla Firefox (22.0)
````````Process Check: objlist.exe by Laurent````````
Avira Antivir avgnt.exe
Avira Antivir avguard.exe
`````````````````System Health check`````````````````
Total Fragmentation on Drive C:
````````````````````End of Log``````````````````````
FRST Logfile: FRST Logfile: Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 08-07-2013
Ran by Hugo (administrator) on 11-07-2013 21:33:48
Running from C:\Users\Hugo\Desktop
Windows 7 Ultimate Service Pack 1 (X64) OS Language: German Standard
Internet Explorer Version 10
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
(Native Instruments GmbH) C:\Program Files\Common Files\Native Instruments\Hardware\NIHardwareService.exe
() C:\Program Files (x86)\Hardcopy\hcdll2_ex_Win32.exe
() C:\Program Files (x86)\Hardcopy\hcdll2_ex_x64.exe
(TuneUp Software) C:\Program Files (x86)\TuneUp Utilities 2013\TuneUpUtilitiesService64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(sw4you) C:\Program Files (x86)\Hardcopy\hardcopy.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(TuneUp Software) C:\Program Files (x86)\TuneUp Utilities 2013\TuneUpUtilitiesApp64.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe
(Nero AG) C:\Program Files (x86)\Nero\Update\NASvc.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Microsoft Corporation) C:\Windows\SysWOW64\notepad.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s [8306208 2009-10-21] (Realtek Semiconductor)
HKLM-x32\...\Runonce: [InstallShieldSetup] C:\PROGRA~2\INSTAL~1\{76E41~1\Setup.exe -rebootC:\PROGRA~2\INSTAL~1\{76E41~1\reboot.ini [x]
HKCU\...\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun [1475584 2010-11-21] (Microsoft Corporation)
HKCU\...\Policies\system: [DisableRegistryTools] 0
HKCU\...\Policies\system: [DisableTaskMgr] 0
HKLM-x32\...\Run: [avgnt] "C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe" /min [345144 2013-06-26] (Avira Operations GmbH & Co. KG)
Startup: C:\ProgramData\Start Menu\Programs\Startup\Hardcopy.LNK
ShortcutTarget: Hardcopy.LNK -> C:\Program Files (x86)\Hardcopy\hardcopy.exe (sw4you)
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Tcpip\..\Interfaces\{A600A043-1D3A-44D6-8C18-CAB38C55DBC4}: [NameServer]217.0.43.97 217.0.43.113
FireFox:
========
FF ProfilePath: C:\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\attpgko0.default
FF Homepage: about:home
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_7_700_224.dll ()
FF Plugin: @java.com/DTPlugin,version=10.11.2 - C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.11.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.20125.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=2.0.5 - C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_7_700_224.dll ()
FF Plugin-x32: @adobe.com/ShockwavePlayer - C:\Windows\SysWOW64\Adobe\Director\np32dsw_1200112.dll (Adobe Systems, Inc.)
FF Plugin-x32: @java.com/DTPlugin,version=1.6.0_39 - C:\Windows\SysWOW64\npdeployJava1.dll (Sun Microsystems, Inc.)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files (x86)\Microsoft Silverlight\5.1.20125.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @Nero.com/KM - C:\PROGRA~2\COMMON~1\Nero\BROWSE~1\NPBROW~1.DLL (Nero AG)
FF Plugin-x32: @nvidia.com/3DVision - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Extension: newtabgoogle - C:\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\attpgko0.default\Extensions\newtabgoogle@graememcc.co.uk.xpi
FF Extension: passwordcategories - C:\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\attpgko0.default\Extensions\passwordcategories@daniel.dawson.xpi
FF Extension: savedpasswordeditor - C:\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\attpgko0.default\Extensions\savedpasswordeditor@daniel.dawson.xpi
FF Extension: youtube2mp3 - C:\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\attpgko0.default\Extensions\youtube2mp3@mondayx.de.xpi
FF Extension: No Name - C:\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\attpgko0.default\Extensions\{097d3191-e6fa-4728-9826-b533d755359d}.xpi
FF Extension: No Name - C:\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\attpgko0.default\Extensions\{19503e42-ca3c-4c27-b1e2-9cdb2170ee34}.xpi
FF Extension: No Name - C:\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\attpgko0.default\Extensions\{5C655500-E712-41e7-9349-CE462F844B19}.xpi
FF Extension: No Name - C:\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\attpgko0.default\Extensions\{6d96bb5e-1175-4ebf-8ab5-5f56f1c79f65}.xpi
FF Extension: No Name - C:\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\attpgko0.default\Extensions\{9AA46F4F-4DC7-4c06-97AF-5035170634FE}.xpi
FF Extension: No Name - C:\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\attpgko0.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
FF Extension: Default - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
==================== Services (Whitelisted) =================
R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [84024 2013-06-26] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [108088 2013-06-26] (Avira Operations GmbH & Co. KG)
R2 TuneUp.UtilitiesSvc; C:\Program Files (x86)\TuneUp Utilities 2013\TuneUpUtilitiesService64.exe [2402080 2013-01-28] (TuneUp Software)
==================== Drivers (Whitelisted) ====================
R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [100712 2013-03-29] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [130016 2013-03-29] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [28600 2013-03-29] (Avira Operations GmbH & Co. KG)
S3 Ph3xIB64; C:\Windows\System32\DRIVERS\Ph3xIB64.sys [1627520 2009-06-10] (NXP Semiconductors)
R3 seehcri; C:\Windows\System32\DRIVERS\seehcri.sys [34032 2008-01-09] (Sony Ericsson Mobile Communications)
R3 TuneUpUtilitiesDrv; C:\Program Files (x86)\TuneUp Utilities 2013\TuneUpUtilitiesDriver64.sys [11880 2012-11-16] (TuneUp Software)
R3 XUIF; C:\Windows\System32\Drivers\x10ufx2.sys [33048 2006-11-30] (X10 Wireless Technology, Inc.)
S3 catchme; \??\C:\ComboFix\catchme.sys [x]
S3 VGPU; System32\drivers\rdvgkmd.sys [x]
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2013-07-10 22:48 - 2013-07-10 22:48 - 02347384 ____A (ESET) C:\Users\Hugo\Desktop\esetsmartinstaller_enu.exe
2013-07-10 22:47 - 2013-07-10 22:48 - 02347384 ____A (ESET) C:\Users\Hugo\Downloads\esetsmartinstaller_enu.exe
2013-07-10 22:46 - 2013-07-10 22:45 - 00890988 ____A C:\Users\Hugo\Desktop\SecurityCheck.exe
2013-07-10 22:45 - 2013-07-10 22:45 - 00890988 ____A C:\Users\Hugo\Downloads\SecurityCheck.exe
2013-07-10 22:14 - 2013-07-10 22:14 - 00094582 ____A C:\Windows\DPINST.LOG
2013-07-09 20:32 - 2013-07-09 20:32 - 00000000 ____D C:\Windows\ERUNT
2013-07-09 20:21 - 2013-07-09 20:22 - 00026627 ____A C:\AdwCleaner[S1].txt
2013-07-09 20:21 - 2013-07-09 20:21 - 01880478 ____A C:\Users\Hugo\Desktop\Anleitung.hcp
2013-07-09 20:19 - 2013-07-09 20:19 - 00002409 ____A C:\Users\Hugo\Desktop\Hardcopy.LNK
2013-07-09 20:15 - 2013-07-09 20:13 - 00552389 ____A (Oleg N. Scherbakov) C:\Users\Hugo\Desktop\JRT.exe
2013-07-09 20:15 - 2013-07-09 20:11 - 00650027 ____A C:\Users\Hugo\Desktop\adwcleaner.exe
2013-07-09 20:13 - 2013-07-09 20:13 - 00552389 ____A (Oleg N. Scherbakov) C:\Users\Hugo\Downloads\JRT.exe
2013-07-09 20:11 - 2013-07-09 20:11 - 00650027 ____A C:\Users\Hugo\Downloads\adwcleaner.exe
2013-07-09 19:54 - 2013-07-09 19:54 - 00320790 ____A C:\Users\Hugo\Virusmeldung.hcp
2013-07-09 19:53 - 2013-07-09 19:53 - 00000000 ____A C:\Users\Hugo\Neues Textdokument (2).txt
2013-07-08 20:34 - 2013-07-09 20:48 - 00000168 ____A C:\Windows\setupact.log
2013-07-08 20:34 - 2013-07-08 20:34 - 00000000 ____A C:\Windows\setuperr.log
2013-07-08 20:33 - 2013-07-08 20:33 - 00000656 ____A C:\Windows\PFRO.log
2013-07-08 20:17 - 2013-07-08 20:16 - 01934554 ____A (Farbar) C:\Users\Hugo\Desktop\FRST64.exe
2013-07-08 20:14 - 2013-07-08 20:16 - 01934554 ____A (Farbar) C:\Users\Hugo\Downloads\FRST64.exe
2013-07-07 21:16 - 2013-07-07 01:43 - 02237968 ____A (Kaspersky Lab ZAO) C:\Users\Hugo\Desktop\tdsskiller.exe
2013-07-07 17:56 - 2013-07-07 19:46 - 1268514860 ____A C:\Users\Hugo\2013-07-07_17h56m02.wav
2013-07-07 09:31 - 2013-03-16 16:20 - 00013618 ____A C:\Windows\swsetup.in_
2013-07-07 00:06 - 2013-07-07 00:06 - 00000869 ____A C:\Users\Public\Desktop\CPUID CPU-Z.lnk
2013-07-07 00:06 - 2013-07-07 00:06 - 00000000 ____D C:\Program Files\CPUID
2013-07-06 23:49 - 2013-07-06 23:50 - 01432424 ____A ( ) C:\Users\Hugo\Downloads\cpu-z_1.65-setup-en.exe
2013-07-06 23:29 - 2013-07-06 23:32 - 06704432 ____A C:\Users\Hugo\Downloads\hc.exe
2013-07-06 18:50 - 2013-07-06 18:50 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-07-06 14:58 - 2013-07-10 22:18 - 00000000 ____D C:\Users\Hugo\Downloads\zum Virus killen
2013-07-06 13:34 - 2013-07-06 14:43 - 00000000 ____D C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2013-07-06 13:33 - 2013-07-06 13:33 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-07-06 13:29 - 2013-07-06 13:29 - 00000000 ____D C:\Users\Hugo\Downloads\mbar-1.06.0.1004
2013-07-06 13:14 - 2013-07-06 13:14 - 00024639 ____A C:\ComboFix.txt
2013-07-06 12:54 - 2011-06-26 08:45 - 00256000 ____A C:\Windows\PEV.exe
2013-07-06 12:54 - 2010-11-07 19:20 - 00208896 ____A C:\Windows\MBR.exe
2013-07-06 12:54 - 2009-04-20 06:56 - 00060416 ____A (NirSoft) C:\Windows\NIRCMD.exe
2013-07-06 12:54 - 2000-08-31 02:00 - 00518144 ____A (SteelWerX) C:\Windows\SWREG.exe
2013-07-06 12:54 - 2000-08-31 02:00 - 00406528 ____A (SteelWerX) C:\Windows\SWSC.exe
2013-07-06 12:54 - 2000-08-31 02:00 - 00098816 ____A C:\Windows\sed.exe
2013-07-06 12:54 - 2000-08-31 02:00 - 00080412 ____A C:\Windows\grep.exe
2013-07-06 12:54 - 2000-08-31 02:00 - 00068096 ____A C:\Windows\zip.exe
2013-07-06 12:36 - 2013-07-06 13:15 - 00000000 ____D C:\Qoobox
2013-07-06 12:36 - 2013-07-06 13:11 - 00000000 ____D C:\Windows\erdnt
2013-07-06 11:54 - 2013-07-06 12:17 - 00000000 ____D C:\FRST
2013-07-06 11:09 - 2013-07-06 11:09 - 00000000 ____A C:\Users\Hugo\Neues Textdokument.txt
2013-07-05 16:43 - 2013-07-05 16:43 - 00007830 ____A C:\Users\Hugo\Downloads\hijackthis.log
2013-07-05 16:41 - 2013-07-05 16:41 - 00388608 ____A (Trend Micro Inc.) C:\Users\Hugo\Downloads\hijackthis.exe
2013-06-30 08:18 - 2013-06-30 09:10 - 01672030 ____A C:\Users\Hugo\2013-06-30_8h18m25.wav
2013-06-30 08:10 - 2013-07-11 21:00 - 00841340 ____A C:\Windows\WindowsUpdate.log
2013-06-30 07:10 - 2013-06-30 07:10 - 75890688 ____A C:\Users\Hugo\2013-06-30_7h10m18.wav
2013-06-30 06:55 - 2013-06-30 08:11 - 97174374 ____A C:\Users\Hugo\2013-06-30_6h55m02.wav
2013-06-30 06:43 - 2013-06-30 07:07 - 00213854 ____A C:\Users\Hugo\2013-06-30_6h43m39.wav
2013-06-30 06:13 - 2013-06-30 06:40 - 00361310 ____A C:\Users\Hugo\2013-06-30_6h13m42.wav
2013-06-30 05:59 - 2013-06-30 06:06 - 80101420 ____A C:\Users\Hugo\2013-06-30_5h59m03.wav
2013-06-30 05:56 - 2013-06-30 05:57 - 08962092 ____A C:\Users\Hugo\2013-06-30_5h56m47.wav
2013-06-29 18:33 - 2013-07-05 17:57 - 00000000 __HDC C:\ProgramData\{18E5420F-B6DC-45F1-9618-C199435ED6E3}
2013-06-29 18:33 - 2013-06-29 18:33 - 00000839 ____A C:\Users\Public\Desktop\Traktor 2.lnk
2013-06-29 18:27 - 2013-07-05 17:57 - 00000000 __HDC C:\ProgramData\{BC91DE36-9EA0-4BE4-9C95-C3ABA1C65900}
2013-06-29 18:27 - 2013-06-29 18:27 - 00001094 ____A C:\Users\Public\Desktop\Controller Editor.lnk
2013-06-29 18:26 - 2013-07-05 17:57 - 00000000 __HDC C:\ProgramData\{F2610326-6A40-4BBC-9FBC-7F05356A912A}
2013-06-29 18:26 - 2013-06-29 18:26 - 00001059 ____A C:\Users\Public\Desktop\Service Center.lnk
2013-06-23 22:08 - 2013-06-23 22:08 - 00063282 ____A C:\Users\Hugo\Documents\Samples.nml
2013-06-23 22:08 - 2013-06-23 09:57 - 06018338 ____A C:\Users\Hugo\Documents\Nacim Ladj - Animal(360p_H.264-AAC) 2013-06-23 09-56-43.wav
2013-06-23 22:08 - 2013-06-23 09:50 - 00679954 ____A C:\Users\Hugo\Documents\Nacim Ladj - Animal(360p_H.264-AAC) 2013-06-23 09-50-43.wav
2013-06-23 22:08 - 2013-06-23 08:48 - 00764778 ____A C:\Users\Hugo\Documents\Glitter - Religions Of This World(720p_H.264-AAC) 2013-06-23 08-14-17.wav
2013-06-23 22:08 - 2013-06-23 07:54 - 00001860 ____A C:\Users\Hugo\Documents\Boris - Broken Lose (Original Mix) [Tronic](720p_H.264-AAC) 2013-06-23 07-54-41.wav
2013-06-23 22:08 - 2013-06-23 06:08 - 02797924 ____A C:\Users\Hugo\Documents\Aka Aka - Nightgirl(240p_H.264-AAC) 2013-06-23 02-27-29.wav
2013-06-23 22:08 - 2013-06-23 06:08 - 00086804 ____A C:\Users\Hugo\Documents\Aka Aka - Nightgirl(240p_H.264-AAC) 2013-06-23 02-26-08.wav
2013-06-23 22:08 - 2013-06-23 05:47 - 00418566 ____A C:\Users\Hugo\Documents\Moses - Ice Crystals ( Original Mix ) - EERF Promo(720p_H.264-AAC) 2013-06-23 05-47-15.wav
2013-06-23 22:08 - 2013-06-23 05:47 - 00418564 ____A C:\Users\Hugo\Documents\Moses - Ice Crystals ( Original Mix ) - EERF Promo(720p_H.264-AAC) 2013-06-23 05-46-29.wav
2013-06-23 22:08 - 2013-06-23 04:26 - 02882638 ____A C:\Users\Hugo\Documents\Aka Aka - Nightgirl(240p_H.264-AAC) 2013-06-23 02-21-42.wav
2013-06-23 22:08 - 2013-06-23 04:24 - 00340986 ____A C:\Users\Hugo\Documents\Hobo Duress Duress MINUS118(360p_H.264-AAC) 2013-06-23 04-24-05.wav
2013-06-23 22:08 - 2013-06-23 04:23 - 00340970 ____A C:\Users\Hugo\Documents\Hobo Duress Duress MINUS118(360p_H.264-AAC) 2013-06-23 04-23-40.wav
2013-06-23 22:08 - 2013-06-23 03:01 - 03051938 ____A C:\Users\Hugo\Documents\Aka Aka - Nightgirl(240p_H.264-AAC) 2013-06-23 02-25-27.wav
2013-06-23 22:08 - 2013-06-23 02:01 - 02757318 ____A C:\Users\Hugo\Documents\Gaiser - Mfnstmp (Original Mix) HD(360p_H.264-AAC) 2013-06-23 01-31-01.wav
2013-06-23 22:08 - 2013-06-23 01:59 - 02734530 ____A C:\Users\Hugo\Documents\DJ Hal - Girls & Boogie(360p_H.264-AAC) 2013-06-23 01-11-04.wav
2013-06-23 22:08 - 2013-06-23 00:43 - 02734498 ____A C:\Users\Hugo\Documents\DJ Hal - Girls & Boogie(360p_H.264-AAC) 2013-06-23 00-43-23.wav
2013-06-23 22:08 - 2013-06-23 00:28 - 00172904 ____A C:\Users\Hugo\Documents\Monkey Safari - Fat Papa (Original Mix)(720p_H.264-AAC) 2013-06-23 00-01-13.wav
2013-06-23 22:08 - 2013-06-23 00:24 - 01360376 ____A C:\Users\Hugo\Documents\Format_B - Octopussy _ HD(360p_H.264-AAC) 2013-06-23 00-24-20.wav
2013-06-23 22:08 - 2013-06-23 00:18 - 00256746 ____A C:\Users\Hugo\Documents\Format_B - Octopussy _ HD(360p_H.264-AAC) 2013-06-23 00-18-10.wav
2013-06-23 22:08 - 2013-06-23 00:14 - 00044500 ____A C:\Users\Hugo\Documents\Format_B - Octopussy _ HD(360p_H.264-AAC) 2013-06-23 00-14-26.wav
2013-06-23 22:08 - 2013-06-22 02:37 - 00042752 ____A C:\Users\Hugo\Documents\Stanke - DJ St@nke mix739 MINIMALISTICA SESSION 12.02.13. 2013-06-22 02-37-44.wav
2013-06-23 22:08 - 2013-06-14 23:13 - 02681172 ____A C:\Users\Hugo\Documents\Patrik Soderbom - Another Level (Avrosse Remix)(720p_H.264-AAC) 2013-06-14 21-45-08.wav
2013-06-23 22:08 - 2013-06-14 10:01 - 00689970 ____A C:\Users\Hugo\Documents\Minicut - Swagg!(720p_H.264-AAC) 2013-06-14 10-01-00.wav
2013-06-23 22:08 - 2013-06-14 09:39 - 00491058 ____A C:\Users\Hugo\Documents\Avrosse - 600km (Original Mix)(360p_H.264-AAC) 2013-06-13 23-13-09.wav
2013-06-23 22:08 - 2013-06-14 08:43 - 02905356 ____A C:\Users\Hugo\Documents\Loop Recorder 2013-06-01 02-10-51.wav
2013-06-23 22:08 - 2013-06-14 08:28 - 02928606 ____A C:\Users\Hugo\Documents\Loop Recorder 2013-06-14 07-20-56.wav
2013-06-23 22:08 - 2013-06-14 08:28 - 01465036 ____A C:\Users\Hugo\Documents\Loop Recorder 2013-06-14 07-04-38.wav
2013-06-23 22:08 - 2013-06-14 08:28 - 01465020 ____A C:\Users\Hugo\Documents\Loop Recorder 2013-06-14 07-01-50.wav
2013-06-23 22:08 - 2013-06-14 08:28 - 00710758 ____A C:\Users\Hugo\Documents\Loop Recorder 2013-06-01 20-13-47.wav
2013-06-23 22:08 - 2013-06-14 08:26 - 00362278 ____A C:\Users\Hugo\Documents\Coronita _) Lépegetős(360p_H.264-AAC) 2013-05-27 23-00-09.wav
2013-06-23 22:08 - 2013-06-14 06:59 - 01465084 ____A C:\Users\Hugo\Documents\Loop Recorder 2013-06-14 06-59-26.wav
2013-06-23 22:08 - 2013-06-09 00:19 - 00338326 ____A C:\Users\Hugo\Documents\Corner - Defrost (Original Mix)(240p_H.264-AAC) 2013-06-09 00-19-21.wav
2013-06-23 22:08 - 2013-05-31 23:41 - 02951970 ____A C:\Users\Hugo\Documents\Loop Recorder 2013-05-31 23-40-23.wav
2013-06-23 22:08 - 2013-05-31 20:18 - 00332518 ____A C:\Users\Hugo\Documents\test 7 2013-05-31 20-18-13.wav
2013-06-23 22:08 - 2013-05-31 20:16 - 00332494 ____A C:\Users\Hugo\Documents\test 7 2013-05-31 20-16-00.wav
2013-06-23 22:08 - 2013-05-31 12:58 - 00380414 ____A C:\Users\Hugo\Documents\Jus Deelax & Luis Gee - Ola K Ase (Original Mix)(360p_H.264-AAC) 2013-05-31 12-58-38.wav
2013-06-23 22:08 - 2013-05-26 21:01 - 00663524 ____A C:\Users\Hugo\Documents\Vengeance Minimal House Vol. 2 2013-04-03 04-50-49.wav
2013-06-23 07:20 - 2013-06-23 21:18 - 00000000 ____D C:\Users\Hugo\AppData\Local\WindowsApplication45
2013-06-23 07:14 - 2013-06-23 21:10 - 00000000 ____D C:\Users\Hugo\Downloads\program djvc
2013-06-20 07:55 - 2013-05-17 03:25 - 00690688 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-06-20 07:55 - 2013-05-17 03:25 - 00493056 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-06-20 07:55 - 2013-05-17 03:25 - 00109056 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-06-20 07:55 - 2013-05-17 03:25 - 00061440 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-06-20 07:55 - 2013-05-17 03:25 - 00033280 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-06-20 07:55 - 2013-05-17 02:59 - 00051712 ____A (Microsoft Corporation) C:\Windows\System32\ie4uinit.exe
2013-06-20 07:55 - 2013-05-17 02:58 - 00855552 ____A (Microsoft Corporation) C:\Windows\System32\jscript.dll
2013-06-20 07:55 - 2013-05-17 02:58 - 00603136 ____A (Microsoft Corporation) C:\Windows\System32\msfeeds.dll
2013-06-20 07:55 - 2013-05-17 02:58 - 00136704 ____A (Microsoft Corporation) C:\Windows\System32\iesysprep.dll
2013-06-20 07:55 - 2013-05-17 02:58 - 00067072 ____A (Microsoft Corporation) C:\Windows\System32\iesetup.dll
2013-06-20 07:55 - 2013-05-17 02:58 - 00039936 ____A (Microsoft Corporation) C:\Windows\System32\iernonce.dll
2013-06-20 07:55 - 2013-05-14 14:23 - 00089600 ____A (Microsoft Corporation) C:\Windows\System32\RegisterIEPKEYs.exe
2013-06-20 07:55 - 2013-05-14 10:40 - 00071680 ____A (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2013-06-20 07:54 - 2013-05-17 03:25 - 02877440 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-06-20 07:54 - 2013-05-17 03:25 - 01767936 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-06-20 07:54 - 2013-05-17 03:25 - 00039424 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-06-20 07:54 - 2013-05-17 02:59 - 02241024 ____A (Microsoft Corporation) C:\Windows\System32\wininet.dll
2013-06-20 07:54 - 2013-05-17 02:58 - 03958784 ____A (Microsoft Corporation) C:\Windows\System32\jscript9.dll
2013-06-20 07:54 - 2013-05-17 02:58 - 00053248 ____A (Microsoft Corporation) C:\Windows\System32\jsproxy.dll
2013-06-20 07:51 - 2013-06-08 16:08 - 01365504 ____A (Microsoft Corporation) C:\Windows\System32\urlmon.dll
2013-06-20 07:51 - 2013-06-08 16:07 - 19233792 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.dll
2013-06-20 07:51 - 2013-06-08 16:06 - 15404544 ____A (Microsoft Corporation) C:\Windows\System32\ieframe.dll
2013-06-20 07:51 - 2013-06-08 16:06 - 02648064 ____A (Microsoft Corporation) C:\Windows\System32\iertutil.dll
2013-06-20 07:51 - 2013-06-08 16:06 - 00526336 ____A (Microsoft Corporation) C:\Windows\System32\ieui.dll
2013-06-20 07:51 - 2013-06-08 14:28 - 02706432 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.tlb
2013-06-20 07:51 - 2013-06-08 13:42 - 01141248 ____A (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-06-20 07:51 - 2013-06-08 13:40 - 14327808 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-06-20 07:51 - 2013-06-08 13:40 - 13760512 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-06-20 07:51 - 2013-06-08 13:40 - 02046976 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-06-20 07:51 - 2013-06-08 13:40 - 00391168 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-06-20 07:51 - 2013-06-08 13:13 - 02706432 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-06-15 20:40 - 2013-06-22 18:38 - 1105315104 ____A C:\Users\Hugo\2013-06-15_20h40m55.wav
2013-06-13 20:14 - 2013-06-13 20:17 - 376111104 ____A C:\Users\Hugo\test 7.wav___tmp
2013-06-13 10:27 - 2013-01-04 08:11 - 02284544 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2vdec.dll.bak
2013-06-13 10:27 - 2009-07-14 03:15 - 00970240 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2adec.dll.bak
2013-06-13 10:26 - 2013-01-04 08:11 - 02776576 ____A (Microsoft Corporation) C:\Windows\System32\msmpeg2vdec.dll.bak
2013-06-13 10:26 - 2009-07-14 03:41 - 01307136 ____A (Microsoft Corporation) C:\Windows\System32\msmpeg2adec.dll.bak
2013-06-13 03:01 - 2013-06-13 03:01 - 00000000 ____D C:\Users\Hugo\AppData\Roaming\Shark007
2013-06-13 03:01 - 2013-06-13 03:01 - 00000000 ____D C:\ProgramData\Shark007
2013-06-13 03:01 - 2013-05-31 11:00 - 01922048 ____A (xy-VSFilter Team) C:\Windows\System32\VSFilter.dll
2013-06-13 03:01 - 2013-05-27 15:08 - 00127488 ____A C:\Windows\System32\ff_vfw.dll
2013-06-13 03:01 - 2013-04-05 21:27 - 02231296 ____A C:\Windows\System32\ac3filter.acm.new
2013-06-13 03:01 - 2013-04-05 21:27 - 02231296 ____A C:\Windows\System32\ac3filter.acm
2013-06-13 03:01 - 2013-03-17 10:22 - 03554304 ____A (x264vfw project) C:\Windows\System32\x264vfw.dll
2013-06-13 03:01 - 2012-07-21 12:55 - 00180736 ____A (fccHandler) C:\Windows\System32\ac3acm.acm
2013-06-13 03:01 - 2012-07-21 12:54 - 00361472 ____A (fccHandler) C:\Windows\System32\aacacm.acm
2013-06-13 03:01 - 2012-07-17 15:21 - 00206336 ____A C:\Windows\System32\unrar64.dll
2013-06-13 03:01 - 2011-12-07 20:37 - 00148992 ____A ( ) C:\Windows\System32\lagarith.dll
2013-06-13 03:01 - 2009-08-11 18:22 - 00580096 ____A C:\Windows\System32\ac3filter.acm.old
2013-06-13 03:01 - 2009-01-22 22:51 - 00124909 ____A (Open Source Software community project) C:\Windows\System32\pthreadGC2.dll
2013-06-13 02:57 - 2013-06-13 02:58 - 00000000 ____D C:\Users\Hugo\AppData\Roaming\Advanced
2013-06-13 02:57 - 2013-04-05 21:26 - 01679360 ____A C:\Windows\SysWOW64\ac3filter.acm.new
2013-06-13 02:56 - 2013-06-13 02:56 - 00000000 ____D C:\Program Files (x86)\Shark007
2013-06-13 02:55 - 2013-06-13 02:58 - 00000000 ____D C:\ProgramData\Advanced
2013-06-12 17:58 - 2013-05-13 07:51 - 01464320 ____A (Microsoft Corporation) C:\Windows\System32\crypt32.dll
2013-06-12 17:58 - 2013-05-13 07:51 - 00184320 ____A (Microsoft Corporation) C:\Windows\System32\cryptsvc.dll
2013-06-12 17:58 - 2013-05-13 07:51 - 00139776 ____A (Microsoft Corporation) C:\Windows\System32\cryptnet.dll
2013-06-12 17:58 - 2013-05-13 07:50 - 00052224 ____A (Microsoft Corporation) C:\Windows\System32\certenc.dll
2013-06-12 17:58 - 2013-05-13 06:45 - 01160192 ____A (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2013-06-12 17:58 - 2013-05-13 06:45 - 00140288 ____A (Microsoft Corporation) C:\Windows\SysWOW64\cryptsvc.dll
2013-06-12 17:58 - 2013-05-13 06:45 - 00103936 ____A (Microsoft Corporation) C:\Windows\SysWOW64\cryptnet.dll
2013-06-12 17:58 - 2013-05-13 05:43 - 01192448 ____A (Microsoft Corporation) C:\Windows\System32\certutil.exe
2013-06-12 17:58 - 2013-05-13 05:08 - 00903168 ____A (Microsoft Corporation) C:\Windows\SysWOW64\certutil.exe
2013-06-12 17:58 - 2013-05-13 05:08 - 00043008 ____A (Microsoft Corporation) C:\Windows\SysWOW64\certenc.dll
2013-06-12 17:44 - 2013-04-17 09:02 - 01230336 ____A (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2013-06-12 17:44 - 2013-04-17 08:24 - 01424384 ____A (Microsoft Corporation) C:\Windows\System32\WindowsCodecs.dll
2013-06-12 17:06 - 2013-05-10 07:49 - 00030720 ____A (Microsoft Corporation) C:\Windows\System32\cryptdlg.dll
2013-06-12 17:06 - 2013-05-10 05:20 - 00024576 ____A (Microsoft Corporation) C:\Windows\SysWOW64\cryptdlg.dll
2013-06-12 16:27 - 2013-04-26 01:30 - 01505280 ____A (Microsoft Corporation) C:\Windows\SysWOW64\d3d11.dll
2013-06-12 16:27 - 2013-04-01 00:52 - 01887232 ____A (Microsoft Corporation) C:\Windows\System32\d3d11.dll
2013-06-12 14:51 - 2013-05-08 08:39 - 01910632 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\tcpip.sys
2013-06-12 13:37 - 2013-04-26 07:51 - 00751104 ____A (Microsoft Corporation) C:\Windows\System32\win32spl.dll
2013-06-12 13:37 - 2013-04-26 06:55 - 00492544 ____A (Microsoft Corporation) C:\Windows\SysWOW64\win32spl.dll
==================== One Month Modified Files and Folders =======
2013-07-11 21:19 - 2013-02-02 01:21 - 00000884 ____A C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-07-11 21:00 - 2013-06-30 08:10 - 00841340 ____A C:\Windows\WindowsUpdate.log
2013-07-11 18:56 - 2013-02-02 04:19 - 00653928 ____A C:\Windows\System32\perfh007.dat
2013-07-11 18:56 - 2013-02-02 04:19 - 00129800 ____A C:\Windows\System32\perfc007.dat
2013-07-11 18:56 - 2009-07-14 07:13 - 01498332 ____A C:\Windows\System32\PerfStringBackup.INI
2013-07-10 22:48 - 2013-07-10 22:48 - 02347384 ____A (ESET) C:\Users\Hugo\Desktop\esetsmartinstaller_enu.exe
2013-07-10 22:48 - 2013-07-10 22:47 - 02347384 ____A (ESET) C:\Users\Hugo\Downloads\esetsmartinstaller_enu.exe
2013-07-10 22:47 - 2013-02-13 03:22 - 00000000 ____D C:\Program Files (x86)\JDownloader 2
2013-07-10 22:45 - 2013-07-10 22:46 - 00890988 ____A C:\Users\Hugo\Desktop\SecurityCheck.exe
2013-07-10 22:45 - 2013-07-10 22:45 - 00890988 ____A C:\Users\Hugo\Downloads\SecurityCheck.exe
2013-07-10 22:32 - 2013-02-02 19:26 - 00000000 ____D C:\Users\Hugo\Downloads\JDownloader
2013-07-10 22:18 - 2013-07-06 14:58 - 00000000 ____D C:\Users\Hugo\Downloads\zum Virus killen
2013-07-10 22:14 - 2013-07-10 22:14 - 00094582 ____A C:\Windows\DPINST.LOG
2013-07-09 20:55 - 2009-07-14 06:45 - 00026496 ___AH C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-07-09 20:55 - 2009-07-14 06:45 - 00026496 ___AH C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-07-09 20:48 - 2013-07-08 20:34 - 00000168 ____A C:\Windows\setupact.log
2013-07-09 20:48 - 2013-02-02 00:53 - 00000000 ____D C:\ProgramData\NVIDIA
2013-07-09 20:48 - 2009-07-14 07:08 - 00000006 ___AH C:\Windows\Tasks\SA.DAT
2013-07-09 20:32 - 2013-07-09 20:32 - 00000000 ____D C:\Windows\ERUNT
2013-07-09 20:22 - 2013-07-09 20:21 - 00026627 ____A C:\AdwCleaner[S1].txt
2013-07-09 20:21 - 2013-07-09 20:21 - 01880478 ____A C:\Users\Hugo\Desktop\Anleitung.hcp
2013-07-09 20:19 - 2013-07-09 20:19 - 00002409 ____A C:\Users\Hugo\Desktop\Hardcopy.LNK
2013-07-09 20:13 - 2013-07-09 20:15 - 00552389 ____A (Oleg N. Scherbakov) C:\Users\Hugo\Desktop\JRT.exe
2013-07-09 20:13 - 2013-07-09 20:13 - 00552389 ____A (Oleg N. Scherbakov) C:\Users\Hugo\Downloads\JRT.exe
2013-07-09 20:11 - 2013-07-09 20:15 - 00650027 ____A C:\Users\Hugo\Desktop\adwcleaner.exe
2013-07-09 20:11 - 2013-07-09 20:11 - 00650027 ____A C:\Users\Hugo\Downloads\adwcleaner.exe
2013-07-09 19:54 - 2013-07-09 19:54 - 00320790 ____A C:\Users\Hugo\Virusmeldung.hcp
2013-07-09 19:54 - 2013-02-01 19:52 - 00000000 ____D C:\users\Hugo
2013-07-09 19:53 - 2013-07-09 19:53 - 00000000 ____A C:\Users\Hugo\Neues Textdokument (2).txt
2013-07-09 19:53 - 2013-02-12 21:15 - 00000000 ____D C:\Users\Hugo\.swt
2013-07-08 20:34 - 2013-07-08 20:34 - 00000000 ____A C:\Windows\setuperr.log
2013-07-08 20:33 - 2013-07-08 20:33 - 00000656 ____A C:\Windows\PFRO.log
2013-07-08 20:33 - 2013-02-01 21:47 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2013-07-08 20:16 - 2013-07-08 20:17 - 01934554 ____A (Farbar) C:\Users\Hugo\Desktop\FRST64.exe
2013-07-08 20:16 - 2013-07-08 20:14 - 01934554 ____A (Farbar) C:\Users\Hugo\Downloads\FRST64.exe
2013-07-07 19:46 - 2013-07-07 17:56 - 1268514860 ____A C:\Users\Hugo\2013-07-07_17h56m02.wav
2013-07-07 07:37 - 2013-03-02 00:29 - 00000000 ____D C:\Program Files (x86)\Hardcopy
2013-07-07 01:43 - 2013-07-07 21:16 - 02237968 ____A (Kaspersky Lab ZAO) C:\Users\Hugo\Desktop\tdsskiller.exe
2013-07-07 00:06 - 2013-07-07 00:06 - 00000869 ____A C:\Users\Public\Desktop\CPUID CPU-Z.lnk
2013-07-07 00:06 - 2013-07-07 00:06 - 00000000 ____D C:\Program Files\CPUID
2013-07-06 23:50 - 2013-07-06 23:49 - 01432424 ____A ( ) C:\Users\Hugo\Downloads\cpu-z_1.65-setup-en.exe
2013-07-06 23:32 - 2013-07-06 23:29 - 06704432 ____A C:\Users\Hugo\Downloads\hc.exe
2013-07-06 21:55 - 2013-04-14 18:21 - 00000000 ____D C:\Users\Hugo\Downloads\sampels kopien
2013-07-06 18:50 - 2013-07-06 18:50 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-07-06 16:18 - 2013-02-23 17:53 - 00000000 ____D C:\Users\Hugo\AppData\Roaming\vlc
2013-07-06 14:43 - 2013-07-06 13:34 - 00000000 ____D C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2013-07-06 13:33 - 2013-07-06 13:33 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-07-06 13:29 - 2013-07-06 13:29 - 00000000 ____D C:\Users\Hugo\Downloads\mbar-1.06.0.1004
2013-07-06 13:15 - 2013-07-06 12:36 - 00000000 ____D C:\Qoobox
2013-07-06 13:14 - 2013-07-06 13:14 - 00024639 ____A C:\ComboFix.txt
2013-07-06 13:11 - 2013-07-06 12:36 - 00000000 ____D C:\Windows\erdnt
2013-07-06 13:07 - 2009-07-14 04:34 - 00000215 ____A C:\Windows\system.ini
2013-07-06 12:17 - 2013-07-06 11:54 - 00000000 ____D C:\FRST
2013-07-06 11:09 - 2013-07-06 11:09 - 00000000 ____A C:\Users\Hugo\Neues Textdokument.txt
2013-07-05 17:57 - 2013-06-29 18:33 - 00000000 __HDC C:\ProgramData\{18E5420F-B6DC-45F1-9618-C199435ED6E3}
2013-07-05 17:57 - 2013-06-29 18:27 - 00000000 __HDC C:\ProgramData\{BC91DE36-9EA0-4BE4-9C95-C3ABA1C65900}
2013-07-05 17:57 - 2013-06-29 18:26 - 00000000 __HDC C:\ProgramData\{F2610326-6A40-4BBC-9FBC-7F05356A912A}
2013-07-05 16:43 - 2013-07-05 16:43 - 00007830 ____A C:\Users\Hugo\Downloads\hijackthis.log
2013-07-05 16:42 - 2013-02-01 19:52 - 00000000 ____D C:\Users\Hugo\AppData\Local\VirtualStore
2013-07-05 16:41 - 2013-07-05 16:41 - 00388608 ____A (Trend Micro Inc.) C:\Users\Hugo\Downloads\hijackthis.exe
2013-06-30 09:10 - 2013-06-30 08:18 - 01672030 ____A C:\Users\Hugo\2013-06-30_8h18m25.wav
2013-06-30 08:11 - 2013-06-30 06:55 - 97174374 ____A C:\Users\Hugo\2013-06-30_6h55m02.wav
2013-06-30 07:10 - 2013-06-30 07:10 - 75890688 ____A C:\Users\Hugo\2013-06-30_7h10m18.wav
2013-06-30 07:07 - 2013-06-30 06:43 - 00213854 ____A C:\Users\Hugo\2013-06-30_6h43m39.wav
2013-06-30 06:40 - 2013-06-30 06:13 - 00361310 ____A C:\Users\Hugo\2013-06-30_6h13m42.wav
2013-06-30 06:06 - 2013-06-30 05:59 - 80101420 ____A C:\Users\Hugo\2013-06-30_5h59m03.wav
2013-06-30 05:57 - 2013-06-30 05:56 - 08962092 ____A C:\Users\Hugo\2013-06-30_5h56m47.wav
2013-06-29 23:42 - 2013-04-13 22:03 - 00000000 ____D C:\Users\Hugo\Documents\VirtualDJ
2013-06-29 19:23 - 2013-05-27 22:15 - 00000000 ____D C:\Users\Hugo\Documents\Native Instruments
2013-06-29 18:33 - 2013-06-29 18:33 - 00000839 ____A C:\Users\Public\Desktop\Traktor 2.lnk
2013-06-29 18:28 - 2013-05-27 22:09 - 00000000 ____D C:\Program Files\Traktor 2
2013-06-29 18:27 - 2013-06-29 18:27 - 00001094 ____A C:\Users\Public\Desktop\Controller Editor.lnk
2013-06-29 18:26 - 2013-06-29 18:26 - 00001059 ____A C:\Users\Public\Desktop\Service Center.lnk
2013-06-29 18:26 - 2013-05-28 19:42 - 00000000 ____D C:\Program Files\Native Instruments
2013-06-29 18:26 - 2013-04-02 07:42 - 00000000 ____D C:\Program Files\Common Files\Native Instruments
2013-06-29 15:11 - 2013-04-13 05:14 - 00000000 ____D C:\Users\Hugo\Downloads\Viedeos und Programm Native Instruments
2013-06-26 12:41 - 2013-05-02 11:35 - 00083672 ____A (Avira Operations GmbH & Co. KG) C:\Windows\System32\Drivers\avnetflt.sys
2013-06-23 22:08 - 2013-06-23 22:08 - 00063282 ____A C:\Users\Hugo\Documents\Samples.nml
2013-06-23 21:18 - 2013-06-23 07:20 - 00000000 ____D C:\Users\Hugo\AppData\Local\WindowsApplication45
2013-06-23 21:10 - 2013-06-23 07:14 - 00000000 ____D C:\Users\Hugo\Downloads\program djvc
2013-06-23 09:57 - 2013-06-23 22:08 - 06018338 ____A C:\Users\Hugo\Documents\Nacim Ladj - Animal(360p_H.264-AAC) 2013-06-23 09-56-43.wav
2013-06-23 09:50 - 2013-06-23 22:08 - 00679954 ____A C:\Users\Hugo\Documents\Nacim Ladj - Animal(360p_H.264-AAC) 2013-06-23 09-50-43.wav
2013-06-23 08:48 - 2013-06-23 22:08 - 00764778 ____A C:\Users\Hugo\Documents\Glitter - Religions Of This World(720p_H.264-AAC) 2013-06-23 08-14-17.wav
2013-06-23 07:54 - 2013-06-23 22:08 - 00001860 ____A C:\Users\Hugo\Documents\Boris - Broken Lose (Original Mix) [Tronic](720p_H.264-AAC) 2013-06-23 07-54-41.wav
2013-06-23 06:08 - 2013-06-23 22:08 - 02797924 ____A C:\Users\Hugo\Documents\Aka Aka - Nightgirl(240p_H.264-AAC) 2013-06-23 02-27-29.wav
2013-06-23 06:08 - 2013-06-23 22:08 - 00086804 ____A C:\Users\Hugo\Documents\Aka Aka - Nightgirl(240p_H.264-AAC) 2013-06-23 02-26-08.wav
2013-06-23 05:47 - 2013-06-23 22:08 - 00418566 ____A C:\Users\Hugo\Documents\Moses - Ice Crystals ( Original Mix ) - EERF Promo(720p_H.264-AAC) 2013-06-23 05-47-15.wav
2013-06-23 05:47 - 2013-06-23 22:08 - 00418564 ____A C:\Users\Hugo\Documents\Moses - Ice Crystals ( Original Mix ) - EERF Promo(720p_H.264-AAC) 2013-06-23 05-46-29.wav
2013-06-23 04:26 - 2013-06-23 22:08 - 02882638 ____A C:\Users\Hugo\Documents\Aka Aka - Nightgirl(240p_H.264-AAC) 2013-06-23 02-21-42.wav
2013-06-23 04:24 - 2013-06-23 22:08 - 00340986 ____A C:\Users\Hugo\Documents\Hobo Duress Duress MINUS118(360p_H.264-AAC) 2013-06-23 04-24-05.wav
2013-06-23 04:23 - 2013-06-23 22:08 - 00340970 ____A C:\Users\Hugo\Documents\Hobo Duress Duress MINUS118(360p_H.264-AAC) 2013-06-23 04-23-40.wav
2013-06-23 03:01 - 2013-06-23 22:08 - 03051938 ____A C:\Users\Hugo\Documents\Aka Aka - Nightgirl(240p_H.264-AAC) 2013-06-23 02-25-27.wav
2013-06-23 02:01 - 2013-06-23 22:08 - 02757318 ____A C:\Users\Hugo\Documents\Gaiser - Mfnstmp (Original Mix) HD(360p_H.264-AAC) 2013-06-23 01-31-01.wav
2013-06-23 01:59 - 2013-06-23 22:08 - 02734530 ____A C:\Users\Hugo\Documents\DJ Hal - Girls & Boogie(360p_H.264-AAC) 2013-06-23 01-11-04.wav
2013-06-23 00:43 - 2013-06-23 22:08 - 02734498 ____A C:\Users\Hugo\Documents\DJ Hal - Girls & Boogie(360p_H.264-AAC) 2013-06-23 00-43-23.wav
2013-06-23 00:28 - 2013-06-23 22:08 - 00172904 ____A C:\Users\Hugo\Documents\Monkey Safari - Fat Papa (Original Mix)(720p_H.264-AAC) 2013-06-23 00-01-13.wav
2013-06-23 00:24 - 2013-06-23 22:08 - 01360376 ____A C:\Users\Hugo\Documents\Format_B - Octopussy _ HD(360p_H.264-AAC) 2013-06-23 00-24-20.wav
2013-06-23 00:18 - 2013-06-23 22:08 - 00256746 ____A C:\Users\Hugo\Documents\Format_B - Octopussy _ HD(360p_H.264-AAC) 2013-06-23 00-18-10.wav
2013-06-23 00:14 - 2013-06-23 22:08 - 00044500 ____A C:\Users\Hugo\Documents\Format_B - Octopussy _ HD(360p_H.264-AAC) 2013-06-23 00-14-26.wav
2013-06-22 18:38 - 2013-06-15 20:40 - 1105315104 ____A C:\Users\Hugo\2013-06-15_20h40m55.wav
2013-06-22 12:22 - 2013-04-13 05:18 - 00000000 ____D C:\Users\Hugo\Downloads\alles für VirtualDJ Pro 7.4
2013-06-22 12:10 - 2013-06-08 01:28 - 00000000 ____D C:\Users\Hugo\AppData\Roaming\AllDup
2013-06-22 02:37 - 2013-06-23 22:08 - 00042752 ____A C:\Users\Hugo\Documents\Stanke - DJ St@nke mix739 MINIMALISTICA SESSION 12.02.13. 2013-06-22 02-37-44.wav
2013-06-20 19:00 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\rescache
2013-06-20 07:55 - 2013-02-02 01:17 - 75825640 ____A (Microsoft Corporation) C:\Windows\System32\MRT.exe
2013-06-14 23:13 - 2013-06-23 22:08 - 02681172 ____A C:\Users\Hugo\Documents\Patrik Soderbom - Another Level (Avrosse Remix)(720p_H.264-AAC) 2013-06-14 21-45-08.wav
2013-06-14 12:38 - 2013-06-01 03:49 - 1351749134 ____A C:\Users\Hugo\test 9.wav
2013-06-14 10:01 - 2013-06-23 22:08 - 00689970 ____A C:\Users\Hugo\Documents\Minicut - Swagg!(720p_H.264-AAC) 2013-06-14 10-01-00.wav
2013-06-14 09:39 - 2013-06-23 22:08 - 00491058 ____A C:\Users\Hugo\Documents\Avrosse - 600km (Original Mix)(360p_H.264-AAC) 2013-06-13 23-13-09.wav
2013-06-14 08:43 - 2013-06-23 22:08 - 02905356 ____A C:\Users\Hugo\Documents\Loop Recorder 2013-06-01 02-10-51.wav
2013-06-14 08:28 - 2013-06-23 22:08 - 02928606 ____A C:\Users\Hugo\Documents\Loop Recorder 2013-06-14 07-20-56.wav
2013-06-14 08:28 - 2013-06-23 22:08 - 01465036 ____A C:\Users\Hugo\Documents\Loop Recorder 2013-06-14 07-04-38.wav
2013-06-14 08:28 - 2013-06-23 22:08 - 01465020 ____A C:\Users\Hugo\Documents\Loop Recorder 2013-06-14 07-01-50.wav
2013-06-14 08:28 - 2013-06-23 22:08 - 00710758 ____A C:\Users\Hugo\Documents\Loop Recorder 2013-06-01 20-13-47.wav
2013-06-14 08:26 - 2013-06-23 22:08 - 00362278 ____A C:\Users\Hugo\Documents\Coronita _) Lépegetős(360p_H.264-AAC) 2013-05-27 23-00-09.wav
2013-06-14 06:59 - 2013-06-23 22:08 - 01465084 ____A C:\Users\Hugo\Documents\Loop Recorder 2013-06-14 06-59-26.wav
2013-06-13 20:48 - 2013-04-02 07:42 - 00000000 ____D C:\ProgramData\Native Instruments
2013-06-13 20:17 - 2013-06-13 20:14 - 376111104 ____A C:\Users\Hugo\test 7.wav___tmp
2013-06-13 19:43 - 2013-02-02 00:50 - 00000000 ____D C:\Users\Hugo\Downloads\AKTUELLE PROGRAMME 01.02.2013
2013-06-13 04:20 - 2013-02-02 01:21 - 00692104 ____A (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2013-06-13 04:20 - 2013-02-02 01:21 - 00071048 ____A (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2013-06-13 03:01 - 2013-06-13 03:01 - 00000000 ____D C:\Users\Hugo\AppData\Roaming\Shark007
2013-06-13 03:01 - 2013-06-13 03:01 - 00000000 ____D C:\ProgramData\Shark007
2013-06-13 03:01 - 2013-03-16 15:49 - 00012288 ____A C:\Users\Hugo\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2013-06-13 03:01 - 2013-02-09 15:26 - 00000000 ____D C:\Program Files\Shark007
2013-06-13 02:58 - 2013-06-13 02:57 - 00000000 ____D C:\Users\Hugo\AppData\Roaming\Advanced
2013-06-13 02:58 - 2013-06-13 02:55 - 00000000 ____D C:\ProgramData\Advanced
2013-06-13 02:56 - 2013-06-13 02:56 - 00000000 ____D C:\Program Files (x86)\Shark007
2013-06-13 02:51 - 2013-02-02 02:16 - 00001712 ____A C:\Users\Hugo\Desktop\MPC-HC x64.lnk
2013-06-13 02:51 - 2013-02-02 02:16 - 00000000 ____D C:\Program Files\MPC-HC
==================== Bamital & volsnap Check =================
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
LastRegBack: 2013-07-03 00:32
==================== End Of Log ============================
--- --- --- Des ist ja echt übel was da alles nötig ist um den Rechner wieder zu säubern ich bin echt unendlich dankbar für die hammer Hilfe. Also Avira meldet schon lnger nix mehr haben wier´s geschafft? Hoffentlich |
|
12.07.2013, 09:42
| #10 |
| /// the machine /// TB-Ausbilder | Avira kann TR/ATRAPS.Gen2 nicht löschen Die Sicherung Neuer Ordner auf L würd ich löschen. Fertig Die Reihenfolge ist hier entscheidend.
Hier noch ein paar Tipps zur Absicherung deines Systems. Ich kann garnicht zu oft erwähnen, wie wichtig es ist, dass dein System Up to Date ist.
Anti- Viren Software
Zusätzlicher Schutz
Sicheres Browsen
Alternative Browser Andere Browser tendieren zu etwas mehr Sicherheit als der IE, da diese keine Active X Elemente verwenden. Diese können von Spyware zur Infektion deines Systems missbraucht werden.
Performance Bereinige regelmäßig deine Temp Files. Ich empfehle hierzu TFC Halte dich fern von jedlichen Registry Cleanern. Diese Schaden deinem System mehr als sie helfen. Hier ein paar ( englishe ) Links Miekemoes Blogspot ( MVP ) Bill Castner ( MVP ) Don'ts
Hinweis: Bitte gib mir eine kurze Rückmeldung wenn alles erledigt ist und keine Fragen mehr vorhanden sind, so das ich diesen Thread aus meinen Abos löschen kann.
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
13.07.2013, 15:07
| #11 |
| | Avira kann TR/ATRAPS.Gen2 nicht löschen Hallo bitte meinen Thread noch nicht aus ihren Abos löschen. Ich komme nicht vor Montag dazu alles wie beschrieben abzuschließen. Danke |
|
13.07.2013, 15:23
| #12 |
| /// the machine /// TB-Ausbilder | Avira kann TR/ATRAPS.Gen2 nicht löschen Kein Thema
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
14.07.2013, 13:07
| #13 |
| | Avira kann TR/ATRAPS.Gen2 nicht löschen Hi Schrauber, so alles erledigt bin doch schon heute dazu gekommen  . So wie es aussieht läuft alles perfekt sogar die Meldung beim Start ist verschwunden  . Ich bin wirklich schwer beeindruckt und rundum zufrieden . Tausend dank auch für die Tipps um die Systemsicherheit zu verbessern echt super . Es ist wirklich toll das es so was wie euch gibt die ohne Hintergedanken einfach nur helfen, was ja leider sehr selten geworden ist im www, wo man sonst ständig auf der Hut seien muss um nicht abgezockt zu werden. Ich werde gleich mal per Paypal eine Spende anweisen um mich für die professionelle Betreuung zu bedanken und euch zu unterstützen.   |
|
14.07.2013, 18:29
| #14 |
| /// the machine /// TB-Ausbilder | Avira kann TR/ATRAPS.Gen2 nicht löschen Gern geschehen und danke
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
| Themen zu Avira kann TR/ATRAPS.Gen2 nicht löschen |
| eingefangen, gemeldet, löschen, nicht löschen, tr/atraps.gen, tr/atraps.gen2, unangenehme, verzweifel, verzweifeln, vieren, win32/reveton.j, win32/sirefef.fv, win32/startpage.oie, win64/conedex.b, win64/sirefef.an, win64/sirefef.aw |
Linear-Darstellung
