Zurück   Trojaner-Board > Malware entfernen > Log-Analyse und Auswertung
Interpolvirus auf Windows 7. Abgesicherte Modus fährt immer sofort herunter.

Interpolvirus auf Windows 7. Abgesicherte Modus fährt immer sofort herunter.


Log-Analyse und Auswertung: Interpolvirus auf Windows 7. Abgesicherte Modus fährt immer sofort herunter.

Windows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML.

 
Vorheriger Beitrag Vorheriger Beitrag   Nächster Beitrag Nächster Beitrag
Alt 14.07.2013, 20:12   #1
Misty007
 
Interpolvirus auf Windows 7. Abgesicherte Modus fährt immer sofort herunter. - Standard

Interpolvirus auf Windows 7. Abgesicherte Modus fährt immer sofort herunter.


Ich habe bereits das Ligfile mit frst64 erstellt. Poste es hier und bitte um Hilfe,
Danke.
FRST Logfile:
Code:
ATTFilter
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 14-07-2013
Ran by SYSTEM on 14-07-2013 20:15:54
Running from I:\
Windows 7 Home Premium (X64) OS Language: German Standard
Internet Explorer Version 10
Boot Mode: Recovery

The current controlset is ControlSet001
ATTENTION!:=====> FRST is updated to run from normal or Safe mode to produce a full FRST.txt log and an extra Addition.txt log.

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [mwlDaemon] - C:\Program Files (x86)\EgisTec\MyWinLocker 3\x86\mwlDaemon.exe [349480 2009-09-10] (Egis Technology Inc.)
HKLM\...\Run: [RtHDVCpl] - C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s [8312352 2009-11-02] (Realtek Semiconductor)
HKLM\...\Run: [SynTPEnh] - %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe [1842472 2009-09-17] (Synaptics Incorporated)
HKLM\...\Run: [PLFSetI] - C:\Windows\PLFSetI.exe [200704 2009-11-20] ()
HKLM\...\Run: [ePower_DMC] - C:\Program Files\Acer\Empowering Technology\ePower\ePower_DMC.exe [492032 2009-07-20] (Acer Inc.)
Winlogon\Notify\ScCertProp: wlnotify.dll [X]
HKLM-x32\...\Run: [Adobe Reader Speed Launcher] - "c:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe" [35696 2009-02-27] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [EgisTecLiveUpdate] - "C:\Program Files (x86)\EgisTec Egis Software Update\EgisUpdate.exe" [199464 2009-08-04] (Egis Technology Inc.)
HKLM-x32\...\Run: [StartCCC] - "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun [98304 2009-09-08] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [LManager] - C:\Program Files (x86)\Launch Manager\LManager.exe [1218056 2009-08-27] (Dritek System Inc.)
HKLM-x32\...\Run: [avgnt] - "C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe" /min [348664 2012-08-07] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [SunJavaUpdateSched] - "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" [254896 2012-09-17] (Sun Microsystems, Inc.)
HKU\Default\...\RunOnce: [ScrSav] - C:\Program Files (x86)\Acer\Screensaver\run_Acer.exe /default [x]
HKU\Default User\...\RunOnce: [ScrSav] - C:\Program Files (x86)\Acer\Screensaver\run_Acer.exe /default [x]
HKU\Martha und Leo\...\Run: [Global Registration] - "C:\Program Files (x86)\Acer\Registration\GREG.exe" BOOT [x]
HKU\Martha und Leo\...\Winlogon: [Shell] explorer.exe,C:\Users\Martha und Leo\AppData\Roaming\cache.dat [73728 2011-11-16] () <==== ATTENTION 
Startup: C:\Users\Martha und Leo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk
ShortcutTarget: Dropbox.lnk ->  (No File)
Startup: C:\Users\Martha und Leo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OpenOffice.org 3.2.lnk
ShortcutTarget: OpenOffice.org 3.2.lnk -> C:\Program Files (x86)\OpenOffice.org 3\program\quickstart.exe ()

==================== Services (Whitelisted) =================

S2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [86224 2012-05-08] (Avira Operations GmbH & Co. KG)
S2 AntiVirService; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [110032 2012-05-08] (Avira Operations GmbH & Co. KG)
S2 ETService; C:\Program Files\Acer\Empowering Technology\Service\ETService.exe [24576 2009-08-11] ()
S3 MWLService; C:\Program Files (x86)\EgisTec\MyWinLocker 3\x86\\MWLService.exe [305448 2009-09-10] (Egis Technology Inc.)

==================== Drivers (Whitelisted) ====================

S2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [98848 2012-05-08] (Avira GmbH)
S1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [132832 2012-05-08] (Avira GmbH)
S1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [27760 2011-09-16] (Avira GmbH)
S3 hidshim; C:\Windows\System32\DRIVERS\hidshim.sys [6656 2009-07-20] (Windows (R) Win 7 DDK provider)
S2 int15; C:\Windows\SysWOW64\drivers\int15_64.sys [17952 2008-09-30] (Acer, Inc.)
S2 int15; C:\Windows\SysWOW64\drivers\int15_64.sys [17952 2008-09-30] (Acer, Inc.)
S3 nuvotonhidgeneric; C:\Windows\System32\DRIVERS\nuvotonhidgeneric.sys [25088 2009-07-20] (Nuvoton Technology Corporation)
S3 S332x64; C:\Windows\System32\DRIVERS\S332x64.sys [78080 2009-11-09] (SCM Microsystems Inc.)

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2013-07-14 20:15 - 2013-07-14 20:15 - 00000000 ____D C:\FRST
2013-07-12 03:34 - 2013-07-12 03:34 - 19238912 _____ (Microsoft Corporation) C:\Windows\System32\mshtml.dll
2013-07-12 03:34 - 2013-07-12 03:34 - 15404032 _____ (Microsoft Corporation) C:\Windows\System32\ieframe.dll
2013-07-12 03:34 - 2013-07-12 03:34 - 14329856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-07-12 03:34 - 2013-07-12 03:34 - 13760512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-07-12 03:34 - 2013-07-12 03:34 - 03958784 _____ (Microsoft Corporation) C:\Windows\System32\jscript9.dll
2013-07-12 03:34 - 2013-07-12 03:34 - 02877440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-07-12 03:34 - 2013-07-12 03:34 - 02706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-07-12 03:34 - 2013-07-12 03:34 - 02706432 _____ (Microsoft Corporation) C:\Windows\System32\mshtml.tlb
2013-07-12 03:34 - 2013-07-12 03:34 - 02648576 _____ (Microsoft Corporation) C:\Windows\System32\iertutil.dll
2013-07-12 03:34 - 2013-07-12 03:34 - 02241024 _____ (Microsoft Corporation) C:\Windows\System32\wininet.dll
2013-07-12 03:34 - 2013-07-12 03:34 - 02046976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-07-12 03:34 - 2013-07-12 03:34 - 01767936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-07-12 03:34 - 2013-07-12 03:34 - 01509376 _____ (Microsoft Corporation) C:\Windows\System32\inetcpl.cpl
2013-07-12 03:34 - 2013-07-12 03:34 - 01441280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2013-07-12 03:34 - 2013-07-12 03:34 - 01400416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2013-07-12 03:34 - 2013-07-12 03:34 - 01400416 _____ (Microsoft Corporation) C:\Windows\System32\ieapfltr.dat
2013-07-12 03:34 - 2013-07-12 03:34 - 01365504 _____ (Microsoft Corporation) C:\Windows\System32\urlmon.dll
2013-07-12 03:34 - 2013-07-12 03:34 - 01141248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-07-12 03:34 - 2013-07-12 03:34 - 01054720 _____ (Microsoft Corporation) C:\Windows\System32\MsSpellCheckingFacility.exe
2013-07-12 03:34 - 2013-07-12 03:34 - 00905728 _____ (Microsoft Corporation) C:\Windows\System32\mshtmlmedia.dll
2013-07-12 03:34 - 2013-07-12 03:34 - 00855552 _____ (Microsoft Corporation) C:\Windows\System32\jscript.dll
2013-07-12 03:34 - 2013-07-12 03:34 - 00762368 _____ (Microsoft Corporation) C:\Windows\System32\ieapfltr.dll
2013-07-12 03:34 - 2013-07-12 03:34 - 00719360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2013-07-12 03:34 - 2013-07-12 03:34 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-07-12 03:34 - 2013-07-12 03:34 - 00629248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2013-07-12 03:34 - 2013-07-12 03:34 - 00603136 _____ (Microsoft Corporation) C:\Windows\System32\msfeeds.dll
2013-07-12 03:34 - 2013-07-12 03:34 - 00599552 _____ (Microsoft Corporation) C:\Windows\System32\vbscript.dll
2013-07-12 03:34 - 2013-07-12 03:34 - 00526336 _____ (Microsoft Corporation) C:\Windows\System32\ieui.dll
2013-07-12 03:34 - 2013-07-12 03:34 - 00523264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2013-07-12 03:34 - 2013-07-12 03:34 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-07-12 03:34 - 2013-07-12 03:34 - 00452096 _____ (Microsoft Corporation) C:\Windows\System32\dxtmsft.dll
2013-07-12 03:34 - 2013-07-12 03:34 - 00441856 _____ (Microsoft Corporation) C:\Windows\System32\html.iec
2013-07-12 03:34 - 2013-07-12 03:34 - 00391168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-07-12 03:34 - 2013-07-12 03:34 - 00361984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2013-07-12 03:34 - 2013-07-12 03:34 - 00357888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2013-07-12 03:34 - 2013-07-12 03:34 - 00281600 _____ (Microsoft Corporation) C:\Windows\System32\dxtrans.dll
2013-07-12 03:34 - 2013-07-12 03:34 - 00270848 _____ (Microsoft Corporation) C:\Windows\System32\iedkcs32.dll
2013-07-12 03:34 - 2013-07-12 03:34 - 00247296 _____ (Microsoft Corporation) C:\Windows\System32\webcheck.dll
2013-07-12 03:34 - 2013-07-12 03:34 - 00242200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2013-07-12 03:34 - 2013-07-12 03:34 - 00235008 _____ (Microsoft Corporation) C:\Windows\System32\url.dll
2013-07-12 03:34 - 2013-07-12 03:34 - 00232960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2013-07-12 03:34 - 2013-07-12 03:34 - 00226816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2013-07-12 03:34 - 2013-07-12 03:34 - 00226304 _____ (Microsoft Corporation) C:\Windows\System32\elshyph.dll
2013-07-12 03:34 - 2013-07-12 03:34 - 00216064 _____ (Microsoft Corporation) C:\Windows\System32\msls31.dll
2013-07-12 03:34 - 2013-07-12 03:34 - 00204800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2013-07-12 03:34 - 2013-07-12 03:34 - 00197120 _____ (Microsoft Corporation) C:\Windows\System32\msrating.dll
2013-07-12 03:34 - 2013-07-12 03:34 - 00185344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
2013-07-12 03:34 - 2013-07-12 03:34 - 00173568 _____ (Microsoft Corporation) C:\Windows\System32\ieUnatt.exe
2013-07-12 03:34 - 2013-07-12 03:34 - 00167424 _____ (Microsoft Corporation) C:\Windows\System32\iexpress.exe
2013-07-12 03:34 - 2013-07-12 03:34 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2013-07-12 03:34 - 2013-07-12 03:34 - 00158720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2013-07-12 03:34 - 2013-07-12 03:34 - 00150528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2013-07-12 03:34 - 2013-07-12 03:34 - 00149504 _____ (Microsoft Corporation) C:\Windows\System32\occache.dll
2013-07-12 03:34 - 2013-07-12 03:34 - 00144896 _____ (Microsoft Corporation) C:\Windows\System32\wextract.exe
2013-07-12 03:34 - 2013-07-12 03:34 - 00138752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2013-07-12 03:34 - 2013-07-12 03:34 - 00137216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2013-07-12 03:34 - 2013-07-12 03:34 - 00136704 _____ (Microsoft Corporation) C:\Windows\System32\iesysprep.dll
2013-07-12 03:34 - 2013-07-12 03:34 - 00136192 _____ (Microsoft Corporation) C:\Windows\System32\iepeers.dll
2013-07-12 03:34 - 2013-07-12 03:34 - 00135680 _____ (Microsoft Corporation) C:\Windows\System32\IEAdvpack.dll
2013-07-12 03:34 - 2013-07-12 03:34 - 00125440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2013-07-12 03:34 - 2013-07-12 03:34 - 00117248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2013-07-12 03:34 - 2013-07-12 03:34 - 00110592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2013-07-12 03:34 - 2013-07-12 03:34 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-07-12 03:34 - 2013-07-12 03:34 - 00102912 _____ (Microsoft Corporation) C:\Windows\System32\inseng.dll
2013-07-12 03:34 - 2013-07-12 03:34 - 00097280 _____ (Microsoft Corporation) C:\Windows\System32\mshtmled.dll
2013-07-12 03:34 - 2013-07-12 03:34 - 00092160 _____ (Microsoft Corporation) C:\Windows\System32\SetIEInstalledDate.exe
2013-07-12 03:34 - 2013-07-12 03:34 - 00089600 _____ (Microsoft Corporation) C:\Windows\System32\RegisterIEPKEYs.exe
2013-07-12 03:34 - 2013-07-12 03:34 - 00082432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2013-07-12 03:34 - 2013-07-12 03:34 - 00081408 _____ (Microsoft Corporation) C:\Windows\System32\icardie.dll
2013-07-12 03:34 - 2013-07-12 03:34 - 00079872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2013-07-12 03:34 - 2013-07-12 03:34 - 00077312 _____ (Microsoft Corporation) C:\Windows\System32\tdc.ocx
2013-07-12 03:34 - 2013-07-12 03:34 - 00073728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2013-07-12 03:34 - 2013-07-12 03:34 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2013-07-12 03:34 - 2013-07-12 03:34 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2013-07-12 03:34 - 2013-07-12 03:34 - 00067072 _____ (Microsoft Corporation) C:\Windows\System32\iesetup.dll
2013-07-12 03:34 - 2013-07-12 03:34 - 00062976 _____ (Microsoft Corporation) C:\Windows\System32\pngfilt.dll
2013-07-12 03:34 - 2013-07-12 03:34 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2013-07-12 03:34 - 2013-07-12 03:34 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-07-12 03:34 - 2013-07-12 03:34 - 00057344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2013-07-12 03:34 - 2013-07-12 03:34 - 00053248 _____ (Microsoft Corporation) C:\Windows\System32\jsproxy.dll
2013-07-12 03:34 - 2013-07-12 03:34 - 00052224 _____ (Microsoft Corporation) C:\Windows\System32\msfeedsbs.dll
2013-07-12 03:34 - 2013-07-12 03:34 - 00051712 _____ (Microsoft Corporation) C:\Windows\System32\ie4uinit.exe
2013-07-12 03:34 - 2013-07-12 03:34 - 00051200 _____ (Microsoft Corporation) C:\Windows\System32\imgutil.dll
2013-07-12 03:34 - 2013-07-12 03:34 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2013-07-12 03:34 - 2013-07-12 03:34 - 00048640 _____ (Microsoft Corporation) C:\Windows\System32\mshtmler.dll
2013-07-12 03:34 - 2013-07-12 03:34 - 00041984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2013-07-12 03:34 - 2013-07-12 03:34 - 00039936 _____ (Microsoft Corporation) C:\Windows\System32\iernonce.dll
2013-07-12 03:34 - 2013-07-12 03:34 - 00039424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-07-12 03:34 - 2013-07-12 03:34 - 00038400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2013-07-12 03:34 - 2013-07-12 03:34 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-07-12 03:34 - 2013-07-12 03:34 - 00027648 _____ (Microsoft Corporation) C:\Windows\System32\licmgr10.dll
2013-07-12 03:34 - 2013-07-12 03:34 - 00023040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2013-07-12 03:34 - 2013-07-12 03:34 - 00013824 _____ (Microsoft Corporation) C:\Windows\System32\mshta.exe
2013-07-12 03:34 - 2013-07-12 03:34 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2013-07-12 03:34 - 2013-07-12 03:34 - 00012800 _____ (Microsoft Corporation) C:\Windows\System32\msfeedssync.exe
2013-07-12 03:34 - 2013-07-12 03:34 - 00011776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2013-07-12 03:32 - 2013-07-12 03:32 - 03928064 _____ (Microsoft Corporation) C:\Windows\System32\d2d1.dll
2013-07-12 03:32 - 2013-07-12 03:32 - 03419136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d2d1.dll
2013-07-12 03:32 - 2013-07-12 03:32 - 02776576 _____ (Microsoft Corporation) C:\Windows\System32\msmpeg2vdec.dll
2013-07-12 03:32 - 2013-07-12 03:32 - 02565120 _____ (Microsoft Corporation) C:\Windows\System32\d3d10warp.dll
2013-07-12 03:32 - 2013-07-12 03:32 - 02284544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2vdec.dll
2013-07-12 03:32 - 2013-07-12 03:32 - 01988096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll
2013-07-12 03:32 - 2013-07-12 03:32 - 01682432 _____ (Microsoft Corporation) C:\Windows\System32\XpsPrint.dll
2013-07-12 03:32 - 2013-07-12 03:32 - 01643520 _____ (Microsoft Corporation) C:\Windows\System32\DWrite.dll
2013-07-12 03:32 - 2013-07-12 03:32 - 01424384 _____ (Microsoft Corporation) C:\Windows\System32\WindowsCodecs.dll
2013-07-12 03:32 - 2013-07-12 03:32 - 01247744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2013-07-12 03:32 - 2013-07-12 03:32 - 01238528 _____ (Microsoft Corporation) C:\Windows\System32\d3d10.dll
2013-07-12 03:32 - 2013-07-12 03:32 - 01230336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2013-07-12 03:32 - 2013-07-12 03:32 - 01175552 _____ (Microsoft Corporation) C:\Windows\System32\FntCache.dll
2013-07-12 03:32 - 2013-07-12 03:32 - 01158144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsPrint.dll
2013-07-12 03:32 - 2013-07-12 03:32 - 01080832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10.dll
2013-07-12 03:32 - 2013-07-12 03:32 - 00648192 _____ (Microsoft Corporation) C:\Windows\System32\d3d10level9.dll
2013-07-12 03:32 - 2013-07-12 03:32 - 00604160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10level9.dll
2013-07-12 03:32 - 2013-07-12 03:32 - 00522752 _____ (Microsoft Corporation) C:\Windows\System32\XpsGdiConverter.dll
2013-07-12 03:32 - 2013-07-12 03:32 - 00465920 _____ (Microsoft Corporation) C:\Windows\System32\WMPhoto.dll
2013-07-12 03:32 - 2013-07-12 03:32 - 00417792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMPhoto.dll
2013-07-12 03:32 - 2013-07-12 03:32 - 00364544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsGdiConverter.dll
2013-07-12 03:32 - 2013-07-12 03:32 - 00363008 _____ (Microsoft Corporation) C:\Windows\System32\dxgi.dll
2013-07-12 03:32 - 2013-07-12 03:32 - 00333312 _____ (Microsoft Corporation) C:\Windows\System32\d3d10_1core.dll
2013-07-12 03:32 - 2013-07-12 03:32 - 00296960 _____ (Microsoft Corporation) C:\Windows\System32\d3d10core.dll
2013-07-12 03:32 - 2013-07-12 03:32 - 00293376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxgi.dll
2013-07-12 03:32 - 2013-07-12 03:32 - 00249856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1core.dll
2013-07-12 03:32 - 2013-07-12 03:32 - 00245248 _____ (Microsoft Corporation) C:\Windows\System32\WindowsCodecsExt.dll
2013-07-12 03:32 - 2013-07-12 03:32 - 00221184 _____ (Microsoft Corporation) C:\Windows\System32\UIAnimation.dll
2013-07-12 03:32 - 2013-07-12 03:32 - 00220160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10core.dll
2013-07-12 03:32 - 2013-07-12 03:32 - 00207872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecsExt.dll
2013-07-12 03:32 - 2013-07-12 03:32 - 00194560 _____ (Microsoft Corporation) C:\Windows\System32\d3d10_1.dll
2013-07-12 03:32 - 2013-07-12 03:32 - 00187392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UIAnimation.dll
2013-07-12 03:32 - 2013-07-12 03:32 - 00161792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1.dll
2013-07-12 03:32 - 2013-07-12 03:32 - 00010752 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll
2013-07-12 03:32 - 2013-07-12 03:32 - 00010752 ____H (Microsoft Corporation) C:\Windows\System32\api-ms-win-downlevel-advapi32-l1-1-0.dll
2013-07-12 03:32 - 2013-07-12 03:32 - 00009728 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2013-07-12 03:32 - 2013-07-12 03:32 - 00009728 ____H (Microsoft Corporation) C:\Windows\System32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2013-07-12 03:32 - 2013-07-12 03:32 - 00005632 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2013-07-12 03:32 - 2013-07-12 03:32 - 00005632 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-ole32-l1-1-0.dll
2013-07-12 03:32 - 2013-07-12 03:32 - 00005632 ____H (Microsoft Corporation) C:\Windows\System32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2013-07-12 03:32 - 2013-07-12 03:32 - 00005632 ____H (Microsoft Corporation) C:\Windows\System32\api-ms-win-downlevel-ole32-l1-1-0.dll
2013-07-12 03:32 - 2013-07-12 03:32 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-user32-l1-1-0.dll
2013-07-12 03:32 - 2013-07-12 03:32 - 00004096 ____H (Microsoft Corporation) C:\Windows\System32\api-ms-win-downlevel-user32-l1-1-0.dll
2013-07-12 03:32 - 2013-07-12 03:32 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll
2013-07-12 03:32 - 2013-07-12 03:32 - 00003584 ____H (Microsoft Corporation) C:\Windows\System32\api-ms-win-downlevel-advapi32-l2-1-0.dll
2013-07-12 03:32 - 2013-07-12 03:32 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-version-l1-1-0.dll
2013-07-12 03:32 - 2013-07-12 03:32 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shell32-l1-1-0.dll
2013-07-12 03:32 - 2013-07-12 03:32 - 00003072 ____H (Microsoft Corporation) C:\Windows\System32\api-ms-win-downlevel-version-l1-1-0.dll
2013-07-12 03:32 - 2013-07-12 03:32 - 00003072 ____H (Microsoft Corporation) C:\Windows\System32\api-ms-win-downlevel-shell32-l1-1-0.dll
2013-07-12 03:32 - 2013-07-12 03:32 - 00002560 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll
2013-07-12 03:32 - 2013-07-12 03:32 - 00002560 ____H (Microsoft Corporation) C:\Windows\System32\api-ms-win-downlevel-normaliz-l1-1-0.dll
2013-07-12 03:29 - 2013-07-12 03:41 - 00011299 _____ C:\Windows\IE10_main.log
2013-07-11 22:34 - 2013-07-14 10:02 - 00000004 _____ C:\Users\Martha und Leo\AppData\Roaming\cache.ini
2013-07-11 06:14 - 2013-06-04 19:34 - 03153920 _____ (Microsoft Corporation) C:\Windows\System32\win32k.sys
2013-07-11 06:14 - 2013-06-03 22:00 - 00624128 _____ (Microsoft Corporation) C:\Windows\System32\qedit.dll
2013-07-11 06:14 - 2013-06-03 20:53 - 00509440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qedit.dll
2013-07-11 06:14 - 2013-05-05 22:03 - 01887744 _____ (Microsoft Corporation) C:\Windows\System32\WMVDECOD.DLL
2013-07-11 06:14 - 2013-05-05 20:56 - 01620480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVDECOD.DLL
2013-06-21 07:20 - 2013-05-12 21:51 - 01464320 _____ (Microsoft Corporation) C:\Windows\System32\crypt32.dll
2013-06-21 07:20 - 2013-05-12 19:43 - 01192448 _____ (Microsoft Corporation) C:\Windows\System32\certutil.exe
2013-06-21 07:20 - 2013-05-12 19:08 - 00903168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certutil.exe
2013-06-21 07:20 - 2013-05-09 21:49 - 00030720 _____ (Microsoft Corporation) C:\Windows\System32\cryptdlg.dll
2013-06-21 07:20 - 2013-05-09 19:20 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptdlg.dll
2013-06-21 07:20 - 2013-05-07 22:39 - 01910632 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\tcpip.sys
2013-06-21 07:20 - 2013-04-25 21:51 - 00751104 _____ (Microsoft Corporation) C:\Windows\System32\win32spl.dll
2013-06-21 07:20 - 2013-04-25 20:55 - 00492544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\win32spl.dll
2013-06-21 07:20 - 2013-04-25 15:30 - 01505280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d11.dll
2013-06-21 07:20 - 2013-03-31 14:52 - 01887232 _____ (Microsoft Corporation) C:\Windows\System32\d3d11.dll
2013-06-21 07:19 - 2013-05-12 21:51 - 00184320 _____ (Microsoft Corporation) C:\Windows\System32\cryptsvc.dll
2013-06-21 07:19 - 2013-05-12 21:51 - 00139776 _____ (Microsoft Corporation) C:\Windows\System32\cryptnet.dll
2013-06-21 07:19 - 2013-05-12 21:50 - 00052224 _____ (Microsoft Corporation) C:\Windows\System32\certenc.dll
2013-06-21 07:19 - 2013-05-12 20:45 - 01160192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2013-06-21 07:19 - 2013-05-12 20:45 - 00140288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsvc.dll
2013-06-21 07:19 - 2013-05-12 20:45 - 00103936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptnet.dll
2013-06-21 07:19 - 2013-05-12 19:08 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certenc.dll

==================== One Month Modified Files and Folders =======

2013-07-14 20:15 - 2013-07-14 20:15 - 00000000 ____D C:\FRST
2013-07-14 10:02 - 2013-07-11 22:34 - 00000004 _____ C:\Users\Martha und Leo\AppData\Roaming\cache.ini
2013-07-14 10:00 - 2011-12-11 08:00 - 00001122 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-07-14 10:00 - 2009-07-13 21:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-07-14 10:00 - 2009-07-13 20:51 - 00226714 _____ C:\Windows\setupact.log
2013-07-14 09:50 - 2010-01-25 14:48 - 01621488 _____ C:\Windows\WindowsUpdate.log
2013-07-14 09:50 - 2009-07-13 20:45 - 00017376 ____H C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-07-14 09:50 - 2009-07-13 20:45 - 00017376 ____H C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-07-13 13:13 - 2011-12-11 08:00 - 00001126 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-07-13 05:43 - 2009-07-13 19:20 - 00000000 ____D C:\Windows\rescache
2013-07-13 04:55 - 2012-04-17 03:44 - 00000000 ____D C:\Users\Martha und Leo\AppData\Roaming\Dropbox
2013-07-13 04:39 - 2009-07-13 20:45 - 00386184 _____ C:\Windows\System32\FNTCACHE.DAT
2013-07-12 03:43 - 2009-11-02 20:29 - 00000000 ____D C:\Program Files\Windows Journal
2013-07-12 03:43 - 2009-07-13 21:32 - 00000000 ____D C:\Program Files\Windows Defender
2013-07-12 03:43 - 2009-07-13 21:32 - 00000000 ____D C:\Program Files (x86)\Windows Defender
2013-07-12 03:43 - 2009-07-13 19:20 - 00000000 ____D C:\Windows\SysWOW64\zh-HK
2013-07-12 03:43 - 2009-07-13 19:20 - 00000000 ____D C:\Windows\SysWOW64\tr-TR
2013-07-12 03:43 - 2009-07-13 19:20 - 00000000 ____D C:\Windows\System32\zh-HK
2013-07-12 03:43 - 2009-07-13 19:20 - 00000000 ____D C:\Windows\System32\tr-TR
2013-07-12 03:43 - 2009-07-13 19:20 - 00000000 ____D C:\Windows\PolicyDefinitions
2013-07-12 03:41 - 2013-07-12 03:29 - 00011299 _____ C:\Windows\IE10_main.log
2013-07-12 03:38 - 2012-04-17 03:50 - 00000000 ___RD C:\Users\Martha und Leo\Dropbox
2013-07-12 03:34 - 2013-07-12 03:34 - 19238912 _____ (Microsoft Corporation) C:\Windows\System32\mshtml.dll
2013-07-12 03:34 - 2013-07-12 03:34 - 15404032 _____ (Microsoft Corporation) C:\Windows\System32\ieframe.dll
2013-07-12 03:34 - 2013-07-12 03:34 - 14329856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-07-12 03:34 - 2013-07-12 03:34 - 13760512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-07-12 03:34 - 2013-07-12 03:34 - 03958784 _____ (Microsoft Corporation) C:\Windows\System32\jscript9.dll
2013-07-12 03:34 - 2013-07-12 03:34 - 02877440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-07-12 03:34 - 2013-07-12 03:34 - 02706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-07-12 03:34 - 2013-07-12 03:34 - 02706432 _____ (Microsoft Corporation) C:\Windows\System32\mshtml.tlb
2013-07-12 03:34 - 2013-07-12 03:34 - 02648576 _____ (Microsoft Corporation) C:\Windows\System32\iertutil.dll
2013-07-12 03:34 - 2013-07-12 03:34 - 02241024 _____ (Microsoft Corporation) C:\Windows\System32\wininet.dll
2013-07-12 03:34 - 2013-07-12 03:34 - 02046976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-07-12 03:34 - 2013-07-12 03:34 - 01767936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-07-12 03:34 - 2013-07-12 03:34 - 01509376 _____ (Microsoft Corporation) C:\Windows\System32\inetcpl.cpl
2013-07-12 03:34 - 2013-07-12 03:34 - 01441280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2013-07-12 03:34 - 2013-07-12 03:34 - 01400416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2013-07-12 03:34 - 2013-07-12 03:34 - 01400416 _____ (Microsoft Corporation) C:\Windows\System32\ieapfltr.dat
2013-07-12 03:34 - 2013-07-12 03:34 - 01365504 _____ (Microsoft Corporation) C:\Windows\System32\urlmon.dll
2013-07-12 03:34 - 2013-07-12 03:34 - 01141248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-07-12 03:34 - 2013-07-12 03:34 - 01054720 _____ (Microsoft Corporation) C:\Windows\System32\MsSpellCheckingFacility.exe
2013-07-12 03:34 - 2013-07-12 03:34 - 00905728 _____ (Microsoft Corporation) C:\Windows\System32\mshtmlmedia.dll
2013-07-12 03:34 - 2013-07-12 03:34 - 00855552 _____ (Microsoft Corporation) C:\Windows\System32\jscript.dll
2013-07-12 03:34 - 2013-07-12 03:34 - 00762368 _____ (Microsoft Corporation) C:\Windows\System32\ieapfltr.dll
2013-07-12 03:34 - 2013-07-12 03:34 - 00719360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2013-07-12 03:34 - 2013-07-12 03:34 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-07-12 03:34 - 2013-07-12 03:34 - 00629248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2013-07-12 03:34 - 2013-07-12 03:34 - 00603136 _____ (Microsoft Corporation) C:\Windows\System32\msfeeds.dll
2013-07-12 03:34 - 2013-07-12 03:34 - 00599552 _____ (Microsoft Corporation) C:\Windows\System32\vbscript.dll
2013-07-12 03:34 - 2013-07-12 03:34 - 00526336 _____ (Microsoft Corporation) C:\Windows\System32\ieui.dll
2013-07-12 03:34 - 2013-07-12 03:34 - 00523264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2013-07-12 03:34 - 2013-07-12 03:34 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-07-12 03:34 - 2013-07-12 03:34 - 00452096 _____ (Microsoft Corporation) C:\Windows\System32\dxtmsft.dll
2013-07-12 03:34 - 2013-07-12 03:34 - 00441856 _____ (Microsoft Corporation) C:\Windows\System32\html.iec
2013-07-12 03:34 - 2013-07-12 03:34 - 00391168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-07-12 03:34 - 2013-07-12 03:34 - 00361984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2013-07-12 03:34 - 2013-07-12 03:34 - 00357888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2013-07-12 03:34 - 2013-07-12 03:34 - 00281600 _____ (Microsoft Corporation) C:\Windows\System32\dxtrans.dll
2013-07-12 03:34 - 2013-07-12 03:34 - 00270848 _____ (Microsoft Corporation) C:\Windows\System32\iedkcs32.dll
2013-07-12 03:34 - 2013-07-12 03:34 - 00247296 _____ (Microsoft Corporation) C:\Windows\System32\webcheck.dll
2013-07-12 03:34 - 2013-07-12 03:34 - 00242200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2013-07-12 03:34 - 2013-07-12 03:34 - 00235008 _____ (Microsoft Corporation) C:\Windows\System32\url.dll
2013-07-12 03:34 - 2013-07-12 03:34 - 00232960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2013-07-12 03:34 - 2013-07-12 03:34 - 00226816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2013-07-12 03:34 - 2013-07-12 03:34 - 00226304 _____ (Microsoft Corporation) C:\Windows\System32\elshyph.dll
2013-07-12 03:34 - 2013-07-12 03:34 - 00216064 _____ (Microsoft Corporation) C:\Windows\System32\msls31.dll
2013-07-12 03:34 - 2013-07-12 03:34 - 00204800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2013-07-12 03:34 - 2013-07-12 03:34 - 00197120 _____ (Microsoft Corporation) C:\Windows\System32\msrating.dll
2013-07-12 03:34 - 2013-07-12 03:34 - 00185344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
2013-07-12 03:34 - 2013-07-12 03:34 - 00173568 _____ (Microsoft Corporation) C:\Windows\System32\ieUnatt.exe
2013-07-12 03:34 - 2013-07-12 03:34 - 00167424 _____ (Microsoft Corporation) C:\Windows\System32\iexpress.exe
2013-07-12 03:34 - 2013-07-12 03:34 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2013-07-12 03:34 - 2013-07-12 03:34 - 00158720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2013-07-12 03:34 - 2013-07-12 03:34 - 00150528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2013-07-12 03:34 - 2013-07-12 03:34 - 00149504 _____ (Microsoft Corporation) C:\Windows\System32\occache.dll
2013-07-12 03:34 - 2013-07-12 03:34 - 00144896 _____ (Microsoft Corporation) C:\Windows\System32\wextract.exe
2013-07-12 03:34 - 2013-07-12 03:34 - 00138752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2013-07-12 03:34 - 2013-07-12 03:34 - 00137216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2013-07-12 03:34 - 2013-07-12 03:34 - 00136704 _____ (Microsoft Corporation) C:\Windows\System32\iesysprep.dll
2013-07-12 03:34 - 2013-07-12 03:34 - 00136192 _____ (Microsoft Corporation) C:\Windows\System32\iepeers.dll
2013-07-12 03:34 - 2013-07-12 03:34 - 00135680 _____ (Microsoft Corporation) C:\Windows\System32\IEAdvpack.dll
2013-07-12 03:34 - 2013-07-12 03:34 - 00125440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2013-07-12 03:34 - 2013-07-12 03:34 - 00117248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2013-07-12 03:34 - 2013-07-12 03:34 - 00110592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2013-07-12 03:34 - 2013-07-12 03:34 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-07-12 03:34 - 2013-07-12 03:34 - 00102912 _____ (Microsoft Corporation) C:\Windows\System32\inseng.dll
2013-07-12 03:34 - 2013-07-12 03:34 - 00097280 _____ (Microsoft Corporation) C:\Windows\System32\mshtmled.dll
2013-07-12 03:34 - 2013-07-12 03:34 - 00092160 _____ (Microsoft Corporation) C:\Windows\System32\SetIEInstalledDate.exe
2013-07-12 03:34 - 2013-07-12 03:34 - 00089600 _____ (Microsoft Corporation) C:\Windows\System32\RegisterIEPKEYs.exe
2013-07-12 03:34 - 2013-07-12 03:34 - 00082432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2013-07-12 03:34 - 2013-07-12 03:34 - 00081408 _____ (Microsoft Corporation) C:\Windows\System32\icardie.dll
2013-07-12 03:34 - 2013-07-12 03:34 - 00079872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2013-07-12 03:34 - 2013-07-12 03:34 - 00077312 _____ (Microsoft Corporation) C:\Windows\System32\tdc.ocx
2013-07-12 03:34 - 2013-07-12 03:34 - 00073728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2013-07-12 03:34 - 2013-07-12 03:34 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2013-07-12 03:34 - 2013-07-12 03:34 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2013-07-12 03:34 - 2013-07-12 03:34 - 00067072 _____ (Microsoft Corporation) C:\Windows\System32\iesetup.dll
2013-07-12 03:34 - 2013-07-12 03:34 - 00062976 _____ (Microsoft Corporation) C:\Windows\System32\pngfilt.dll
2013-07-12 03:34 - 2013-07-12 03:34 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2013-07-12 03:34 - 2013-07-12 03:34 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-07-12 03:34 - 2013-07-12 03:34 - 00057344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2013-07-12 03:34 - 2013-07-12 03:34 - 00053248 _____ (Microsoft Corporation) C:\Windows\System32\jsproxy.dll
2013-07-12 03:34 - 2013-07-12 03:34 - 00052224 _____ (Microsoft Corporation) C:\Windows\System32\msfeedsbs.dll
2013-07-12 03:34 - 2013-07-12 03:34 - 00051712 _____ (Microsoft Corporation) C:\Windows\System32\ie4uinit.exe
2013-07-12 03:34 - 2013-07-12 03:34 - 00051200 _____ (Microsoft Corporation) C:\Windows\System32\imgutil.dll
2013-07-12 03:34 - 2013-07-12 03:34 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2013-07-12 03:34 - 2013-07-12 03:34 - 00048640 _____ (Microsoft Corporation) C:\Windows\System32\mshtmler.dll
2013-07-12 03:34 - 2013-07-12 03:34 - 00041984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2013-07-12 03:34 - 2013-07-12 03:34 - 00039936 _____ (Microsoft Corporation) C:\Windows\System32\iernonce.dll
2013-07-12 03:34 - 2013-07-12 03:34 - 00039424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-07-12 03:34 - 2013-07-12 03:34 - 00038400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2013-07-12 03:34 - 2013-07-12 03:34 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-07-12 03:34 - 2013-07-12 03:34 - 00027648 _____ (Microsoft Corporation) C:\Windows\System32\licmgr10.dll
2013-07-12 03:34 - 2013-07-12 03:34 - 00023040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2013-07-12 03:34 - 2013-07-12 03:34 - 00013824 _____ (Microsoft Corporation) C:\Windows\System32\mshta.exe
2013-07-12 03:34 - 2013-07-12 03:34 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2013-07-12 03:34 - 2013-07-12 03:34 - 00012800 _____ (Microsoft Corporation) C:\Windows\System32\msfeedssync.exe
2013-07-12 03:34 - 2013-07-12 03:34 - 00011776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2013-07-12 03:32 - 2013-07-12 03:32 - 03928064 _____ (Microsoft Corporation) C:\Windows\System32\d2d1.dll
2013-07-12 03:32 - 2013-07-12 03:32 - 03419136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d2d1.dll
2013-07-12 03:32 - 2013-07-12 03:32 - 02776576 _____ (Microsoft Corporation) C:\Windows\System32\msmpeg2vdec.dll
2013-07-12 03:32 - 2013-07-12 03:32 - 02565120 _____ (Microsoft Corporation) C:\Windows\System32\d3d10warp.dll
2013-07-12 03:32 - 2013-07-12 03:32 - 02284544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2vdec.dll
2013-07-12 03:32 - 2013-07-12 03:32 - 01988096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll
2013-07-12 03:32 - 2013-07-12 03:32 - 01682432 _____ (Microsoft Corporation) C:\Windows\System32\XpsPrint.dll
2013-07-12 03:32 - 2013-07-12 03:32 - 01643520 _____ (Microsoft Corporation) C:\Windows\System32\DWrite.dll
2013-07-12 03:32 - 2013-07-12 03:32 - 01424384 _____ (Microsoft Corporation) C:\Windows\System32\WindowsCodecs.dll
2013-07-12 03:32 - 2013-07-12 03:32 - 01247744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2013-07-12 03:32 - 2013-07-12 03:32 - 01238528 _____ (Microsoft Corporation) C:\Windows\System32\d3d10.dll
2013-07-12 03:32 - 2013-07-12 03:32 - 01230336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2013-07-12 03:32 - 2013-07-12 03:32 - 01175552 _____ (Microsoft Corporation) C:\Windows\System32\FntCache.dll
2013-07-12 03:32 - 2013-07-12 03:32 - 01158144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsPrint.dll
2013-07-12 03:32 - 2013-07-12 03:32 - 01080832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10.dll
2013-07-12 03:32 - 2013-07-12 03:32 - 00648192 _____ (Microsoft Corporation) C:\Windows\System32\d3d10level9.dll
2013-07-12 03:32 - 2013-07-12 03:32 - 00604160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10level9.dll
2013-07-12 03:32 - 2013-07-12 03:32 - 00522752 _____ (Microsoft Corporation) C:\Windows\System32\XpsGdiConverter.dll
2013-07-12 03:32 - 2013-07-12 03:32 - 00465920 _____ (Microsoft Corporation) C:\Windows\System32\WMPhoto.dll
2013-07-12 03:32 - 2013-07-12 03:32 - 00417792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMPhoto.dll
2013-07-12 03:32 - 2013-07-12 03:32 - 00364544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsGdiConverter.dll
2013-07-12 03:32 - 2013-07-12 03:32 - 00363008 _____ (Microsoft Corporation) C:\Windows\System32\dxgi.dll
2013-07-12 03:32 - 2013-07-12 03:32 - 00333312 _____ (Microsoft Corporation) C:\Windows\System32\d3d10_1core.dll
2013-07-12 03:32 - 2013-07-12 03:32 - 00296960 _____ (Microsoft Corporation) C:\Windows\System32\d3d10core.dll
2013-07-12 03:32 - 2013-07-12 03:32 - 00293376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxgi.dll
2013-07-12 03:32 - 2013-07-12 03:32 - 00249856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1core.dll
2013-07-12 03:32 - 2013-07-12 03:32 - 00245248 _____ (Microsoft Corporation) C:\Windows\System32\WindowsCodecsExt.dll
2013-07-12 03:32 - 2013-07-12 03:32 - 00221184 _____ (Microsoft Corporation) C:\Windows\System32\UIAnimation.dll
2013-07-12 03:32 - 2013-07-12 03:32 - 00220160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10core.dll
2013-07-12 03:32 - 2013-07-12 03:32 - 00207872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecsExt.dll
2013-07-12 03:32 - 2013-07-12 03:32 - 00194560 _____ (Microsoft Corporation) C:\Windows\System32\d3d10_1.dll
2013-07-12 03:32 - 2013-07-12 03:32 - 00187392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UIAnimation.dll
2013-07-12 03:32 - 2013-07-12 03:32 - 00161792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1.dll
2013-07-12 03:32 - 2013-07-12 03:32 - 00010752 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll
2013-07-12 03:32 - 2013-07-12 03:32 - 00010752 ____H (Microsoft Corporation) C:\Windows\System32\api-ms-win-downlevel-advapi32-l1-1-0.dll
2013-07-12 03:32 - 2013-07-12 03:32 - 00009728 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2013-07-12 03:32 - 2013-07-12 03:32 - 00009728 ____H (Microsoft Corporation) C:\Windows\System32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2013-07-12 03:32 - 2013-07-12 03:32 - 00005632 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2013-07-12 03:32 - 2013-07-12 03:32 - 00005632 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-ole32-l1-1-0.dll
2013-07-12 03:32 - 2013-07-12 03:32 - 00005632 ____H (Microsoft Corporation) C:\Windows\System32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2013-07-12 03:32 - 2013-07-12 03:32 - 00005632 ____H (Microsoft Corporation) C:\Windows\System32\api-ms-win-downlevel-ole32-l1-1-0.dll
2013-07-12 03:32 - 2013-07-12 03:32 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-user32-l1-1-0.dll
2013-07-12 03:32 - 2013-07-12 03:32 - 00004096 ____H (Microsoft Corporation) C:\Windows\System32\api-ms-win-downlevel-user32-l1-1-0.dll
2013-07-12 03:32 - 2013-07-12 03:32 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll
2013-07-12 03:32 - 2013-07-12 03:32 - 00003584 ____H (Microsoft Corporation) C:\Windows\System32\api-ms-win-downlevel-advapi32-l2-1-0.dll
2013-07-12 03:32 - 2013-07-12 03:32 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-version-l1-1-0.dll
2013-07-12 03:32 - 2013-07-12 03:32 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shell32-l1-1-0.dll
2013-07-12 03:32 - 2013-07-12 03:32 - 00003072 ____H (Microsoft Corporation) C:\Windows\System32\api-ms-win-downlevel-version-l1-1-0.dll
2013-07-12 03:32 - 2013-07-12 03:32 - 00003072 ____H (Microsoft Corporation) C:\Windows\System32\api-ms-win-downlevel-shell32-l1-1-0.dll
2013-07-12 03:32 - 2013-07-12 03:32 - 00002560 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll
2013-07-12 03:32 - 2013-07-12 03:32 - 00002560 ____H (Microsoft Corporation) C:\Windows\System32\api-ms-win-downlevel-normaliz-l1-1-0.dll
2013-07-12 03:26 - 2009-11-03 11:28 - 00000000 ____D C:\ProgramData\Microsoft Help
2013-07-11 22:19 - 2011-12-11 08:01 - 00002187 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2013-07-11 10:24 - 2012-03-30 07:14 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2013-07-11 10:24 - 2012-03-30 07:14 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight
2013-07-11 06:20 - 2010-01-25 23:37 - 00654400 _____ C:\Windows\System32\perfh007.dat
2013-07-11 06:20 - 2010-01-25 23:37 - 00130240 _____ C:\Windows\System32\perfc007.dat
2013-07-11 06:20 - 2009-07-13 21:13 - 01520734 _____ C:\Windows\System32\PerfStringBackup.INI
2013-07-11 06:16 - 2010-03-26 12:29 - 78185248 _____ (Microsoft Corporation) C:\Windows\System32\MRT.exe
2013-06-28 08:00 - 2011-11-06 05:27 - 00425757 _____ C:\Users\Martha und Leo\AppData\Roaming\fotobuch-tcache.xml
2013-06-28 08:00 - 2011-11-06 05:27 - 00082018 _____ C:\Users\Martha und Leo\AppData\Roaming\fotobuch-cache7.xml
2013-06-28 08:00 - 2011-03-21 10:57 - 00002086 _____ C:\Users\Martha und Leo\AppData\Roaming\fotobuch.xml
2013-06-22 09:51 - 2012-06-02 12:04 - 00000679 _____ C:\Windows\wininit.ini
2013-06-22 09:50 - 2012-04-17 03:50 - 00001010 _____ C:\Users\Martha und Leo\Desktop\Dropbox.lnk

Files to move or delete:
====================
C:\ProgramData\FullRemove.exe

==================== Known DLLs (Whitelisted) ================


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit

==================== EXE ASSOCIATION =====================

HKLM\...\.exe: exefile => OK
HKLM\...\exefile\DefaultIcon: %1 => OK
HKLM\...\exefile\open\command: "%1" %* => OK

==================== Restore Points  =========================


==================== Memory info =========================== 

Percentage of memory in use: 18%
Total physical RAM: 3838.3 MB
Available physical RAM: 3129.86 MB
Total Pagefile: 3836.45 MB
Available Pagefile: 3126.99 MB
Total Virtual: 8192 MB
Available Virtual: 8191.86 MB

==================== Drives ================================

Drive c: (ACER) (Fixed) (Total:280.82 GB) (Free:224.55 GB) NTFS (Disk=0 Partition=4) ==>[System with boot components (obtained from reading drive)]
Drive d: (ARCADE) (Fixed) (Total:3.5 GB) (Free:3.46 GB) NTFS (Disk=0 Partition=2)
Drive f: (PQSERVICE) (Fixed) (Total:13.67 GB) (Free:3.23 GB) NTFS (Disk=0 Partition=1)
Drive i: (KINGSTON) (Removable) (Total:59.61 GB) (Free:55.53 GB) FAT32 (Disk=2 Partition=1)
Drive x: (Boot) (Fixed) (Total:0.03 GB) (Free:0.03 GB) NTFS
Drive y: (SYSTEM RESERVED) (Fixed) (Total:0.1 GB) (Free:0.07 GB) NTFS (Disk=0 Partition=3) ==>[System with boot components (obtained from reading drive)]

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 298 GB) (Disk ID: E779C724)
Partition 1: (Not Active) - (Size=14 GB) - (Type=27)
Partition 2: (Not Active) - (Size=4 GB) - (Type=07 NTFS)
Partition 3: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 4: (Not Active) - (Size=281 GB) - (Type=07 NTFS)

========================================================
Disk: 2 (MBR Code: Windows XP) (Size: 60 GB) (Disk ID: C3072E18)
Partition 1: (Active) - (Size=60 GB) - (Type=0C)


LastRegBack: 2013-07-13 05:35

==================== End Of Log ============================
--- --- ---
 

Themen zu Interpolvirus auf Windows 7. Abgesicherte Modus fährt immer sofort herunter.
acer, adobe, antivir, association, avg, avira, cache.dat, crypt, desktop, explorer, explorer.exe, farbar, farbar recovery scan tool, frst.txt, home, ics, log, micro, microsoft, opera, realtek, registry, service.exe, services.exe, software, svchost.exe, system, windows, windows xp, winlogon.exe


« Brief von Telekom Abuse Team wegen Verdachts auf Hacking | Windows Fensterfarbe geändert und Windows defender aktiviren geht nicht »


Ähnliche Themen: Interpolvirus auf Windows 7. Abgesicherte Modus fährt immer sofort herunter.


  1. GVU Trojaner - Start im abgesicherten Modus wird herunter gefahren - Laptop wird sofort gesperrt
    Log-Analyse und Auswertung - 20.07.2015 (13)
  2. Windows fährt immer wieder herunter - WhoCrashed Analyse
    Alles rund um Windows - 28.09.2014 (1)
  3. Bundestrojaner auf Netbook eingefangen, Abgesicherter Modus fährt immer wieder herunter
    Plagegeister aller Art und deren Bekämpfung - 05.05.2014 (10)
  4. Bundesamt für Sicherheit-Trojaner - Abgsichter Modus fährt direkt wieder herunter
    Log-Analyse und Auswertung - 19.04.2014 (11)
  5. Win7 fährt im abgesicherten Modus sofort herunter
    Log-Analyse und Auswertung - 25.10.2013 (5)
  6. Windows 7: Trojaner mit Sperrschirm; PC fährt herunter im abgesicherten Modus
    Log-Analyse und Auswertung - 24.10.2013 (11)
  7. GVU-Trojaner (Vista + Abgesicherter Modus fährt nach Start wieder herunter)
    Log-Analyse und Auswertung - 14.08.2013 (15)
  8. Startbildschirm Weiß, Abgesicherter Modus fährt automatisch herunter
    Plagegeister aller Art und deren Bekämpfung - 13.08.2013 (3)
  9. GVU Trojaner eingefangen, abgesicherter Modus fährt wieder herunter
    Plagegeister aller Art und deren Bekämpfung - 09.08.2013 (15)
  10. GVU Trojaner - Abgesicherte Modus blockiert - Windows 7
    Plagegeister aller Art und deren Bekämpfung - 22.07.2013 (12)
  11. Trojaner, Abgesicherter Modus fährt sofort wieder runter
    Plagegeister aller Art und deren Bekämpfung - 09.07.2013 (40)
  12. GVU Trojaner? Bildschirm mit Zahlungsaufforderung, abgesicherter Modus fährt herunter
    Log-Analyse und Auswertung - 24.06.2013 (15)
  13. Virus, weißer Bildschirm mit Zahlungsaufforderung, abgesicherter Modus fährt herunter
    Log-Analyse und Auswertung - 20.06.2013 (23)
  14. BMI-Trojaner, abgesicherter Modus fährt herunter
    Log-Analyse und Auswertung - 25.05.2013 (1)
  15. W7 fährt im abgesicherten Modus sofort herunter
    Alles rund um Windows - 13.03.2013 (1)
  16. Windows 7 fährt bei abgesicherten Start sofort herunter
    Plagegeister aller Art und deren Bekämpfung - 19.02.2013 (6)
  17. System fährt immer wieder herunter
    Plagegeister aller Art und deren Bekämpfung - 03.07.2005 (3)
Anleitungen und Tipps

- Für alle Hilfesuchenden! Was beachten?

- Anleitung: MyStartSearch.com entfernen

- Anleitung: WebSearches löschen

- Hilfe: iStartSurf entfernen – so gehts!

- Anleitung: Omiga Plus richtig entfernen

- Browser Viren entfernen


Zum Thema Interpolvirus auf Windows 7. Abgesicherte Modus fährt immer sofort herunter. - Ich habe bereits das Ligfile mit frst64 erstellt. Poste es hier und bitte um Hilfe, Danke. FRST Logfile: Code: Alles auswählen Aufklappen ATTFilter Scan result of Farbar Recovery Scan Tool - Interpolvirus auf Windows 7. Abgesicherte Modus fährt immer sofort herunter....
Archiv
Du betrachtest: Interpolvirus auf Windows 7. Abgesicherte Modus fährt immer sofort herunter. auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130 131