Zurück   Trojaner-Board > Malware entfernen > Log-Analyse und Auswertung

Log-Analyse und Auswertung: Ständiger befall von viren oder maleware

Windows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML.

Antwort
Alt 16.10.2013, 12:02   #31
s.n.
 
Ständiger befall von viren oder maleware - Standard

Ständiger befall von viren oder maleware



start repair schaltet sich zwischen und weist schwerwiegende probleme auf.es sind neun genannt.bin nicht zu hause. Habe nebenher nochmals einen urzustand herstellen lassen.muss später schauen ob es geklappt hat.wenn ja werde ich antimaleware starten.wenn wieder was gefunden wird kann man fast von ausgehen das das bios infiziert ist.dann hilft nur noch platt machen,oder?

Alt 16.10.2013, 13:33   #32
schrauber
/// the machine
/// TB-Ausbilder
 

Ständiger befall von viren oder maleware - Standard

Ständiger befall von viren oder maleware



nö. Wenn es das Bios wäre könntest du ne neue Platte einbauen, das würde nit helfen .

Immer locker. Weniger Angst, mehr Fakten. Verscuch es mal, wenn nix bootet brauch ich genaue Fehlerbeschreibungen
__________________

__________________

Alt 16.10.2013, 18:08   #33
s.n.
 
Ständiger befall von viren oder maleware - Standard

Ständiger befall von viren oder maleware



hi schrauber,

also, erneuten urzustand wiederherstellen hat funktioniert. habe antimaleware drüber laufen lassen und alles ist ok.
der samsungdienst meinte, vllt ist auch gestern beim 1.ten versuch durch die massen an updates ein fehler unterlaufen. es gab wohl einige updates die fehlerhaft und somit zum absturz geführt haben. weiterer tipp von samsungdienst, die seite winfuture besuchen servicepack herunterladen, ehe man autom die updates von microsoft durchführen lässt. probiere ich und dann sehen wir.

haben noch ein adwcleaner machen lassen, hier das log. gefundenes wurde gelöscht.
danke und gruß erstmal sven

Code:
ATTFilter
# AdwCleaner v3.007 - Bericht erstellt am 16/10/2013 um 17:57:51
# Updated 09/10/2013 von Xplode
# Betriebssystem : Windows 7 Home Premium  (64 bits)
# Benutzername : sven - AUDIA3
# Gestartet von : C:\Users\sven\Downloads\adwcleaner.exe
# Option : Suchen

***** [ Dienste ] *****


***** [ Dateien / Ordner ] *****

Ordner Gefunden C:\ProgramData\Partner

***** [ Verknüpfungen ] *****


***** [ Registrierungsdatenbank ] *****

Schlüssel Gefunden : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}
Schlüssel Gefunden : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{83FF80F4-8C74-4B80-B5BA-C8DDD434E5C4}
Schlüssel Gefunden : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Schlüssel Gefunden : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{83FF80F4-8C74-4B80-B5BA-C8DDD434E5C4}
Schlüssel Gefunden : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{898EA8C8-E7FF-479B-8935-AEC46303B9E5}
Schlüssel Gefunden : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Schlüssel Gefunden : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{2CE4D4CF-B278-4126-AD1E-B622DA2E8339}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{898EA8C8-E7FF-479B-8935-AEC46303B9E5}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{2CE4D4CF-B278-4126-AD1E-B622DA2E8339}
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extensions\{898EA8C8-E7FF-479B-8935-AEC46303B9E5}
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}

***** [ Browser ] *****

-\\ Internet Explorer v8.0.7600.16385


-\\ Google Chrome v30.0.1599.101

[ Datei : C:\Users\sven\AppData\Local\Google\Chrome\User Data\Default\preferences ]


*************************

AdwCleaner[R0].txt - [2471 octets] - [16/10/2013 17:57:51]

########## EOF - C:\AdwCleaner\AdwCleaner[R0].txt - [2531 octets] ##########
         
__________________

Alt 17.10.2013, 09:16   #34
schrauber
/// the machine
/// TB-Ausbilder
 

Ständiger befall von viren oder maleware - Standard

Ständiger befall von viren oder maleware



dann poste mal ein frisches FRST log. Noch irgendwelche Probleme?
__________________
gruß,
schrauber

Proud Member of UNITE and ASAP since 2009

Spenden
Anleitungen und Hilfestellungen
Trojaner-Board Facebook-Seite

Keine Hilfestellung via PM!

Alt 17.10.2013, 17:19   #35
s.n.
 
Ständiger befall von viren oder maleware - Standard

Ständiger befall von viren oder maleware



mahlzeit mein lieber,

so, tastatur uns sound sind wieder einmal ausgefallen. habe die treiber deinstalliert. jetzt geht es eben wieder. werde es weiter beobachten.

hier die logs:


FRST Logfile:
Code:
ATTFilter
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 02-10-2013
Ran by sven (administrator) on AUDIA3 on 17-10-2013 18:13:49
Running from C:\Users\sven\Downloads
Windows 7 Home Premium (X64) OS Language: German Standard
Internet Explorer Version 9
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(AMD) C:\Windows\system32\atiesrxx.exe
(AMD) C:\Windows\system32\atieclxx.exe
(Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\avp.exe
() C:\Windows\SysWOW64\Rezip.exe
(Samsung Electronics Co., Ltd.) C:\Program Files (x86)\Samsung\Easy Display Manager\dmhkcore.exe
(SEC) C:\Program Files (x86)\Samsung\Samsung Recovery Solution 4\WCScheduler.exe
(SAMSUNG Electronics) C:\Program Files (x86)\Samsung\Samsung Support Center\SSCKbdHk.exe
(Secunia) C:\Program Files (x86)\Secunia\PSI\PSIA.exe
(Secunia) C:\Program Files (x86)\Secunia\PSI\psi_tray.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
(Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\avpui.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
(Microsoft Corporation) C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
(Secunia) C:\Program Files (x86)\Secunia\PSI\sua.exe
(Samsung Electronics Co., Ltd.) C:\Program Files (x86)\SAMSUNG\EasySpeedUpManager\EasySpeedUpManager.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [RtHDVCpl] - C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [10144288 2010-04-07] (Realtek Semiconductor)
HKLM-x32\...\Run: [SDTray] - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe [3830224 2013-05-16] (Safer-Networking Ltd.)
BootExecute: autocheck autochk * sdnclean64.exe

==================== Internet (Whitelisted) ====================

ProxyEnable: Internet Explorer proxy is enabled.
ProxyServer: localhost:21320
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com/ig/redirectdomain?brand=smsn&bmod=smsn
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.com/ig/redirectdomain?brand=smsn&bmod=smsn
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
SearchScopes: HKLM - DefaultScope {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = 
SearchScopes: HKCU - {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL = 
BHO: Windows Live Family Safety Browser Helper Class - {4f3ed5cd-0726-42a9-87f5-d13f3d2976ac} - C:\Program Files\Windows Live\Family Safety\fssbho.dll (Microsoft Corporation)
BHO: Content Blocker Plugin - {5564CC73-EFA7-4CBF-918A-5CF7FBBFFF4F} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\x64\IEExt\ContentBlocker\ie_content_blocker_plugin.dll (Kaspersky Lab ZAO)
BHO: Virtual Keyboard Plugin - {73455575-E40C-433C-9784-C78DC7761455} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\x64\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll (Kaspersky Lab ZAO)
BHO: Safe Money Plugin - {9E6D0D23-3D72-4A94-AE1F-2D167624E3D9} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\x64\IEExt\OnlineBanking\online_banking_bho.dll (Kaspersky Lab ZAO)
BHO: URL Advisor Plugin - {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\x64\IEExt\UrlAdvisor\klwtbbho.dll (Kaspersky Lab ZAO)
BHO-x32: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO-x32: Content Blocker Plugin - {5564CC73-EFA7-4CBF-918A-5CF7FBBFFF4F} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\IEExt\ContentBlocker\ie_content_blocker_plugin.dll (Kaspersky Lab ZAO)
BHO-x32: No Name - {5C255C8A-E604-49b4-9D64-90988571CECB} -  No File
BHO-x32: Virtual Keyboard Plugin - {73455575-E40C-433C-9784-C78DC7761455} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll (Kaspersky Lab ZAO)
BHO-x32: Windows Live Anmelde-Hilfsprogramm - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
BHO-x32: Safe Money Plugin - {9E6D0D23-3D72-4A94-AE1F-2D167624E3D9} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\IEExt\OnlineBanking\online_banking_bho.dll (Kaspersky Lab ZAO)
BHO-x32: URL Advisor Plugin - {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\IEExt\UrlAdvisor\klwtbbho.dll (Kaspersky Lab ZAO)
Handler-x32: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.14.0.8089.0726.dll (Microsoft Corporation)
Handler-x32: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.14.0.8089.0726.dll (Microsoft Corporation)
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.178.1

Chrome: 
=======
CHR HomePage: https://www.google.de/
CHR RestoreOnStartup: "hxxp://gmx.net/"
CHR Extension: (Google Docs) - C:\Users\sven\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0
CHR Extension: (Google Drive) - C:\Users\sven\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0
CHR Extension: (WOT) - C:\Users\sven\AppData\Local\Google\Chrome\User Data\Default\Extensions\bhmmomiinigofkjcapegjjndpbikblnp\2.1.1_0
CHR Extension: (YouTube) - C:\Users\sven\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0
CHR Extension: (GMX MailCheck) - C:\Users\sven\AppData\Local\Google\Chrome\User Data\Default\Extensions\camnampocfohlcgbajligmemmabnljcm\1.2_0
CHR Extension: (Adblock Plus) - C:\Users\sven\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.6.1_0
CHR Extension: (Adblock for Youtube\u2122) - C:\Users\sven\AppData\Local\Google\Chrome\User Data\Default\Extensions\cmedhionkhpnakcndndgjdbohmhepckk\2.8_0
CHR Extension: (Google Search) - C:\Users\sven\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0
CHR Extension: (Kaspersky URL Advisor) - C:\Users\sven\AppData\Local\Google\Chrome\User Data\Default\Extensions\dchlnpcodkpfdpacogkljefecpegganj\14.0.0.4651_0
CHR Extension: (PanicButton) - C:\Users\sven\AppData\Local\Google\Chrome\User Data\Default\Extensions\faminaibgiklngmfpfbhmokfmnglamcm\0.14.2.2_0
CHR Extension: (AdBlock) - C:\Users\sven\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.6.10_0
CHR Extension: (Safe Money) - C:\Users\sven\AppData\Local\Google\Chrome\User Data\Default\Extensions\hakdifolhalapjijoafobooafbilfakh\14.0.0.4651_0
CHR Extension: (Dangerous Websites Blocker) - C:\Users\sven\AppData\Local\Google\Chrome\User Data\Default\Extensions\hghkgaeecgjhjkannahfamoehjmkjail\14.0.0.4651_0
CHR Extension: (Virtual Keyboard) - C:\Users\sven\AppData\Local\Google\Chrome\User Data\Default\Extensions\jagncdcchgajhfhijbbhecadmaiegcmh\14.0.0.4651_0
CHR Extension: (Turbo for YouTube) - C:\Users\sven\AppData\Local\Google\Chrome\User Data\Default\Extensions\lhgnmngkgolhffjjdaipkkjbmbnpefef\1.2.3_0
CHR Extension: (Chrome In-App Payments service) - C:\Users\sven\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.4.11_0
CHR Extension: (Adblock Pro) - C:\Users\sven\AppData\Local\Google\Chrome\User Data\Default\Extensions\ocifcklkibdehekfnmflempfgjhbedch\2.5_0
CHR Extension: (Gmail) - C:\Users\sven\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0
CHR Extension: (Anti-Banner) - C:\Users\sven\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjldcfjmnllhmgjclecdnfampinooman\14.0.0.4651_0
CHR HKLM-x32\...\Chrome\Extension: [dchlnpcodkpfdpacogkljefecpegganj] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\ChromeExt\urladvisor.crx
CHR HKLM-x32\...\Chrome\Extension: [hakdifolhalapjijoafobooafbilfakh] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\ChromeExt\online_banking_chrome.crx
CHR HKLM-x32\...\Chrome\Extension: [hghkgaeecgjhjkannahfamoehjmkjail] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\ChromeExt\content_blocker_chrome.crx
CHR HKLM-x32\...\Chrome\Extension: [jagncdcchgajhfhijbbhecadmaiegcmh] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\ChromeExt\virtkbd.crx
CHR HKLM-x32\...\Chrome\Extension: [pjldcfjmnllhmgjclecdnfampinooman] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\ChromeExt\ab.crx

==================== Services (Whitelisted) =================

R2 AVP; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\avp.exe [214512 2013-10-16] (Kaspersky Lab ZAO)
R2 Rezip; C:\Windows\SysWOW64\Rezip.exe [311296 2009-03-05] ()
R2 SDScannerService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [1817560 2013-05-16] (Safer-Networking Ltd.)
R2 SDUpdateService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [1033688 2013-05-16] (Safer-Networking Ltd.)
R2 SDWSCService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [171928 2013-05-15] (Safer-Networking Ltd.)
R2 Secunia PSI Agent; C:\Program Files (x86)\Secunia\PSI\PSIA.exe [1228504 2013-10-14] (Secunia)
R2 Secunia Update Agent; C:\Program Files (x86)\Secunia\PSI\sua.exe [660184 2013-10-14] (Secunia)

==================== Drivers (Whitelisted) ====================

R0 kl1; C:\Windows\System32\DRIVERS\kl1.sys [7717984 2013-10-16] (Kaspersky Lab ZAO)
S4 klflt; C:\Windows\System32\DRIVERS\klflt.sys [112224 2013-06-08] (Kaspersky Lab ZAO)
R1 KLIF; C:\Windows\System32\DRIVERS\klif.sys [620640 2013-10-16] (Kaspersky Lab ZAO)
R1 KLIM6; C:\Windows\System32\DRIVERS\klim6.sys [29792 2013-10-16] (Kaspersky Lab ZAO)
R3 klkbdflt; C:\Windows\System32\DRIVERS\klkbdflt.sys [29280 2013-10-16] (Kaspersky Lab ZAO)
R3 klmouflt; C:\Windows\System32\DRIVERS\klmouflt.sys [29280 2013-10-16] (Kaspersky Lab ZAO)
R1 klpd; C:\Windows\System32\DRIVERS\klpd.sys [15456 2013-04-12] (Kaspersky Lab ZAO)
R1 kltdi; C:\Windows\System32\DRIVERS\kltdi.sys [55904 2013-05-14] (Kaspersky Lab ZAO)
R1 kneps; C:\Windows\System32\DRIVERS\kneps.sys [178784 2013-06-06] (Kaspersky Lab ZAO)
S3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25928 2013-04-04] (Malwarebytes Corporation)
S3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25928 2013-04-04] (Malwarebytes Corporation)
R3 PSI; C:\Windows\System32\DRIVERS\psi_mf_amd64.sys [18456 2013-10-14] (Secunia)
R3 yukonw7; C:\Windows\System32\DRIVERS\yk62x64.sys [395264 2009-09-28] ()

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2013-10-17 18:13 - 2013-10-17 18:13 - 00000000 ____D C:\FRST
2013-10-17 17:02 - 2013-10-17 17:02 - 00000000 ____D C:\Users\sven\Documents\ProcAlyzer Dumps
2013-10-17 16:58 - 2009-06-10 23:00 - 00000824 _____ C:\Windows\system32\Drivers\etc\hosts.20131017-165808.backup
2013-10-17 16:52 - 2013-10-17 17:02 - 00000000 ____D C:\ProgramData\Spybot - Search & Destroy
2013-10-17 16:52 - 2013-10-17 16:52 - 00001383 _____ C:\Users\Public\Desktop\Spybot-S&D Start Center.lnk
2013-10-17 16:52 - 2013-10-17 16:52 - 00000000 ____D C:\Windows\System32\Tasks\Safer-Networking
2013-10-17 16:52 - 2013-10-17 16:52 - 00000000 ____D C:\Program Files (x86)\Spybot - Search & Destroy 2
2013-10-17 16:52 - 2009-01-25 13:14 - 00017272 _____ (Safer Networking Limited) C:\Windows\system32\sdnclean64.exe
2013-10-17 16:51 - 2013-10-17 16:53 - 00000000 ____D C:\ProgramData\VirtualizedApplications
2013-10-17 16:38 - 2013-10-17 16:42 - 00000766 _____ C:\Windows\setupact.log
2013-10-17 16:38 - 2013-10-17 16:38 - 00000000 _____ C:\Windows\setuperr.log
2013-10-17 10:12 - 2013-10-17 17:25 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-10-17 10:12 - 2013-10-17 10:12 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2013-10-17 10:12 - 2013-10-17 10:12 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2013-10-17 10:12 - 2013-10-17 10:12 - 00003822 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2013-10-17 10:12 - 2013-10-17 10:12 - 00000000 ____D C:\Windows\system32\Macromed
2013-10-17 10:09 - 2013-10-17 10:09 - 00000000 ____D C:\Users\sven\AppData\Local\Secunia PSI
2013-10-17 10:09 - 2013-10-17 10:09 - 00000000 ____D C:\Program Files (x86)\Secunia
2013-10-17 08:55 - 2013-10-17 08:56 - 01954124 _____ (Farbar) C:\Users\sven\Downloads\FRST64.exe
2013-10-17 08:52 - 2013-10-17 16:37 - 00000000 ____D C:\Users\sven\AppData\Roaming\SoftGrid Client
2013-10-17 08:52 - 2013-10-17 08:52 - 00000000 ____D C:\Users\sven\AppData\Local\SoftGrid Client
2013-10-17 08:51 - 2013-10-17 08:52 - 00000000 ____D C:\Users\sven\AppData\Roaming\TP
2013-10-17 08:51 - 2013-10-17 08:51 - 01526948 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2013-10-17 08:51 - 2013-10-17 08:51 - 00000000 ____D C:\Windows\System32\Tasks\OfficeSoftwareProtectionPlatform
2013-10-17 08:51 - 2013-10-17 08:51 - 00000000 ____D C:\Program Files\Microsoft Office
2013-10-17 08:51 - 2013-10-17 08:51 - 00000000 ____D C:\Program Files (x86)\Microsoft Application Virtualization Client
2013-10-17 00:14 - 2013-10-17 00:15 - 00001443 _____ C:\Users\sven\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2013-10-16 23:23 - 2010-02-23 10:16 - 00294912 _____ (Microsoft Corporation) C:\Windows\system32\browserchoice.exe
2013-10-16 23:21 - 2013-10-16 23:21 - 17833984 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-10-16 23:21 - 2013-10-16 23:21 - 12336128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-10-16 23:21 - 2013-10-16 23:21 - 10926080 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-10-16 23:21 - 2013-10-16 23:21 - 09739264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-10-16 23:21 - 2013-10-16 23:21 - 04068864 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll
2013-10-16 23:21 - 2013-10-16 23:21 - 03695416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2013-10-16 23:21 - 2013-10-16 23:21 - 03695416 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2013-10-16 23:21 - 2013-10-16 23:21 - 03181568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mf.dll
2013-10-16 23:21 - 2013-10-16 23:21 - 02382848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-10-16 23:21 - 2013-10-16 23:21 - 02382848 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-10-16 23:21 - 2013-10-16 23:21 - 02312704 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-10-16 23:21 - 2013-10-16 23:21 - 02147840 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-10-16 23:21 - 2013-10-16 23:21 - 01888256 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL
2013-10-16 23:21 - 2013-10-16 23:21 - 01863680 _____ (Microsoft Corporation) C:\Windows\system32\ExplorerFrame.dll
2013-10-16 23:21 - 2013-10-16 23:21 - 01800704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-10-16 23:21 - 2013-10-16 23:21 - 01796096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-10-16 23:21 - 2013-10-16 23:21 - 01619456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVDECOD.DLL
2013-10-16 23:21 - 2013-10-16 23:21 - 01495040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ExplorerFrame.dll
2013-10-16 23:21 - 2013-10-16 23:21 - 01494528 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2013-10-16 23:21 - 2013-10-16 23:21 - 01427968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2013-10-16 23:21 - 2013-10-16 23:21 - 01392128 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-10-16 23:21 - 2013-10-16 23:21 - 01346560 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-10-16 23:21 - 2013-10-16 23:21 - 01133568 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2013-10-16 23:21 - 2013-10-16 23:21 - 01129472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-10-16 23:21 - 2013-10-16 23:21 - 01104896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-10-16 23:21 - 2013-10-16 23:21 - 00982912 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2013-10-16 23:21 - 2013-10-16 23:21 - 00816640 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-10-16 23:21 - 2013-10-16 23:21 - 00729088 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-10-16 23:21 - 2013-10-16 23:21 - 00717824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-10-16 23:21 - 2013-10-16 23:21 - 00662528 _____ (Microsoft Corporation) C:\Windows\system32\XpsPrint.dll
2013-10-16 23:21 - 2013-10-16 23:21 - 00607744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-10-16 23:21 - 2013-10-16 23:21 - 00599040 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2013-10-16 23:21 - 2013-10-16 23:21 - 00534528 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2013-10-16 23:21 - 2013-10-16 23:21 - 00470016 _____ (Microsoft Corporation) C:\Windows\system32\XpsGdiConverter.dll
2013-10-16 23:21 - 2013-10-16 23:21 - 00452608 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2013-10-16 23:21 - 2013-10-16 23:21 - 00448512 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2013-10-16 23:21 - 2013-10-16 23:21 - 00442880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsPrint.dll
2013-10-16 23:21 - 2013-10-16 23:21 - 00434176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2013-10-16 23:21 - 2013-10-16 23:21 - 00420864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2013-10-16 23:21 - 2013-10-16 23:21 - 00403248 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2013-10-16 23:21 - 2013-10-16 23:21 - 00367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2013-10-16 23:21 - 2013-10-16 23:21 - 00353792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2013-10-16 23:21 - 2013-10-16 23:21 - 00353584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2013-10-16 23:21 - 2013-10-16 23:21 - 00283648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsGdiConverter.dll
2013-10-16 23:21 - 2013-10-16 23:21 - 00282112 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2013-10-16 23:21 - 2013-10-16 23:21 - 00267776 _____ (Microsoft Corporation) C:\Windows\system32\ieaksie.dll
2013-10-16 23:21 - 2013-10-16 23:21 - 00265088 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys
2013-10-16 23:21 - 2013-10-16 23:21 - 00257024 _____ (Microsoft Corporation) C:\Windows\system32\mfreadwrite.dll
2013-10-16 23:21 - 2013-10-16 23:21 - 00249344 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2013-10-16 23:21 - 2013-10-16 23:21 - 00248320 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-10-16 23:21 - 2013-10-16 23:21 - 00237056 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2013-10-16 23:21 - 2013-10-16 23:21 - 00231936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2013-10-16 23:21 - 2013-10-16 23:21 - 00229888 _____ (Microsoft Corporation) C:\Windows\system32\XpsRasterService.dll
2013-10-16 23:21 - 2013-10-16 23:21 - 00227840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieaksie.dll
2013-10-16 23:21 - 2013-10-16 23:21 - 00223232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2013-10-16 23:21 - 2013-10-16 23:21 - 00222208 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2013-10-16 23:21 - 2013-10-16 23:21 - 00206848 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll
2013-10-16 23:21 - 2013-10-16 23:21 - 00203776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2013-10-16 23:21 - 2013-10-16 23:21 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2013-10-16 23:21 - 2013-10-16 23:21 - 00196608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfreadwrite.dll
2013-10-16 23:21 - 2013-10-16 23:21 - 00176640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-10-16 23:21 - 2013-10-16 23:21 - 00173056 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2013-10-16 23:21 - 2013-10-16 23:21 - 00165888 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2013-10-16 23:21 - 2013-10-16 23:21 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieakui.dll
2013-10-16 23:21 - 2013-10-16 23:21 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\ieakui.dll
2013-10-16 23:21 - 2013-10-16 23:21 - 00162304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2013-10-16 23:21 - 2013-10-16 23:21 - 00161792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2013-10-16 23:21 - 2013-10-16 23:21 - 00160256 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2013-10-16 23:21 - 2013-10-16 23:21 - 00160256 _____ (Microsoft Corporation) C:\Windows\system32\ieakeng.dll
2013-10-16 23:21 - 2013-10-16 23:21 - 00152064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2013-10-16 23:21 - 2013-10-16 23:21 - 00150528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2013-10-16 23:21 - 2013-10-16 23:21 - 00149504 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2013-10-16 23:21 - 2013-10-16 23:21 - 00145920 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2013-10-16 23:21 - 2013-10-16 23:21 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll
2013-10-16 23:21 - 2013-10-16 23:21 - 00142848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2013-10-16 23:21 - 2013-10-16 23:21 - 00135168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsRasterService.dll
2013-10-16 23:21 - 2013-10-16 23:21 - 00135168 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2013-10-16 23:21 - 2013-10-16 23:21 - 00130560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieakeng.dll
2013-10-16 23:21 - 2013-10-16 23:21 - 00123392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2013-10-16 23:21 - 2013-10-16 23:21 - 00118784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2013-10-16 23:21 - 2013-10-16 23:21 - 00114176 _____ (Microsoft Corporation) C:\Windows\system32\admparse.dll
2013-10-16 23:21 - 2013-10-16 23:21 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-10-16 23:21 - 2013-10-16 23:21 - 00110592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2013-10-16 23:21 - 2013-10-16 23:21 - 00103936 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2013-10-16 23:21 - 2013-10-16 23:21 - 00101888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\admparse.dll
2013-10-16 23:21 - 2013-10-16 23:21 - 00096768 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2013-10-16 23:21 - 2013-10-16 23:21 - 00091648 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2013-10-16 23:21 - 2013-10-16 23:21 - 00089088 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-10-16 23:21 - 2013-10-16 23:21 - 00089088 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-10-16 23:21 - 2013-10-16 23:21 - 00086528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-10-16 23:21 - 2013-10-16 23:21 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-10-16 23:21 - 2013-10-16 23:21 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-10-16 23:21 - 2013-10-16 23:21 - 00082432 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2013-10-16 23:21 - 2013-10-16 23:21 - 00078848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2013-10-16 23:21 - 2013-10-16 23:21 - 00076800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2013-10-16 23:21 - 2013-10-16 23:21 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2013-10-16 23:21 - 2013-10-16 23:21 - 00074752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2013-10-16 23:21 - 2013-10-16 23:21 - 00074752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-10-16 23:21 - 2013-10-16 23:21 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ie4uinit.exe
2013-10-16 23:21 - 2013-10-16 23:21 - 00073216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2013-10-16 23:21 - 2013-10-16 23:21 - 00066048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2013-10-16 23:21 - 2013-10-16 23:21 - 00065024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-10-16 23:21 - 2013-10-16 23:21 - 00065024 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2013-10-16 23:21 - 2013-10-16 23:21 - 00063488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2013-10-16 23:21 - 2013-10-16 23:21 - 00055296 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2013-10-16 23:21 - 2013-10-16 23:21 - 00054272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2013-10-16 23:21 - 2013-10-16 23:21 - 00049664 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2013-10-16 23:21 - 2013-10-16 23:21 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2013-10-16 23:21 - 2013-10-16 23:21 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2013-10-16 23:21 - 2013-10-16 23:21 - 00041472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2013-10-16 23:21 - 2013-10-16 23:21 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-10-16 23:21 - 2013-10-16 23:21 - 00035840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2013-10-16 23:21 - 2013-10-16 23:21 - 00031744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-10-16 23:21 - 2013-10-16 23:21 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2013-10-16 23:21 - 2013-10-16 23:21 - 00023552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2013-10-16 23:21 - 2013-10-16 23:21 - 00012288 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2013-10-16 23:21 - 2013-10-16 23:21 - 00011776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2013-10-16 23:21 - 2013-10-16 23:21 - 00010752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2013-10-16 23:21 - 2013-10-16 23:21 - 00010752 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2013-10-16 23:07 - 2012-12-16 18:52 - 00046080 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2013-10-16 23:07 - 2012-12-16 16:40 - 00367616 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2013-10-16 23:07 - 2012-12-16 16:25 - 00295424 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2013-10-16 23:07 - 2012-12-16 16:25 - 00034304 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2013-10-16 23:01 - 2013-10-16 23:04 - 00000000 ____D C:\Windows\system32\MRT
2013-10-16 23:01 - 2013-09-26 01:46 - 80541720 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2013-10-16 23:00 - 2012-03-01 08:54 - 00022896 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fs_rec.sys
2013-10-16 23:00 - 2012-03-01 08:40 - 00080896 _____ (Microsoft Corporation) C:\Windows\system32\imagehlp.dll
2013-10-16 23:00 - 2012-03-01 08:35 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\wmi.dll
2013-10-16 23:00 - 2012-03-01 07:45 - 00158720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imagehlp.dll
2013-10-16 23:00 - 2012-03-01 07:40 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmi.dll
2013-10-16 22:57 - 2013-04-12 16:36 - 01653096 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2013-10-16 22:57 - 2013-02-12 17:42 - 00044032 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll
2013-10-16 22:57 - 2013-02-12 17:37 - 03138048 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2013-10-16 22:57 - 2013-02-12 17:31 - 00158208 _____ (Microsoft Corporation) C:\Windows\system32\aaclient.dll
2013-10-16 22:57 - 2013-02-12 17:13 - 02691072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2013-10-16 22:57 - 2013-02-12 17:07 - 00131072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aaclient.dll
2013-10-16 22:57 - 2013-02-12 15:59 - 00036864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsgqec.dll
2013-10-16 22:57 - 2013-01-04 07:37 - 00362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
2013-10-16 22:57 - 2013-01-04 07:37 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2013-10-16 22:57 - 2013-01-04 07:37 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2013-10-16 22:57 - 2013-01-04 07:36 - 00215040 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2013-10-16 22:57 - 2013-01-04 07:33 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2013-10-16 22:57 - 2013-01-04 07:30 - 01161216 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2013-10-16 22:57 - 2013-01-04 07:30 - 00424960 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2013-10-16 22:57 - 2013-01-04 07:27 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2013-10-16 22:57 - 2013-01-04 07:27 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2013-10-16 22:57 - 2013-01-04 07:27 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2013-10-16 22:57 - 2013-01-04 07:27 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2013-10-16 22:57 - 2013-01-04 07:27 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2013-10-16 22:57 - 2013-01-04 07:27 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2013-10-16 22:57 - 2013-01-04 07:27 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2013-10-16 22:57 - 2013-01-04 07:27 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2013-10-16 22:57 - 2013-01-04 07:27 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2013-10-16 22:57 - 2013-01-04 07:27 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2013-10-16 22:57 - 2013-01-04 07:27 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2013-10-16 22:57 - 2013-01-04 07:26 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2013-10-16 22:57 - 2013-01-04 07:26 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2013-10-16 22:57 - 2013-01-04 07:26 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2013-10-16 22:57 - 2013-01-04 07:26 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2013-10-16 22:57 - 2013-01-04 07:26 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2013-10-16 22:57 - 2013-01-04 07:26 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2013-10-16 22:57 - 2013-01-04 07:26 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2013-10-16 22:57 - 2013-01-04 07:26 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2013-10-16 22:57 - 2013-01-04 07:26 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2013-10-16 22:57 - 2013-01-04 07:26 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2013-10-16 22:57 - 2013-01-04 07:26 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2013-10-16 22:57 - 2013-01-04 07:26 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2013-10-16 22:57 - 2013-01-04 07:26 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2013-10-16 22:57 - 2013-01-04 07:26 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2013-10-16 22:57 - 2013-01-04 07:26 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2013-10-16 22:57 - 2013-01-04 07:26 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2013-10-16 22:57 - 2013-01-04 07:26 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2013-10-16 22:57 - 2013-01-04 06:51 - 01114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2013-10-16 22:57 - 2013-01-04 06:51 - 00274944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2013-10-16 22:57 - 2013-01-04 06:51 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2013-10-16 22:57 - 2013-01-04 06:43 - 00005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2013-10-16 22:57 - 2013-01-04 06:43 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2013-10-16 22:57 - 2013-01-04 06:43 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2013-10-16 22:57 - 2013-01-04 06:43 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2013-10-16 22:57 - 2013-01-04 06:43 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2013-10-16 22:57 - 2013-01-04 06:43 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2013-10-16 22:57 - 2013-01-04 06:43 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2013-10-16 22:57 - 2013-01-04 06:43 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2013-10-16 22:57 - 2013-01-04 06:43 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2013-10-16 22:57 - 2013-01-04 06:43 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2013-10-16 22:57 - 2013-01-04 06:43 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2013-10-16 22:57 - 2013-01-04 06:43 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2013-10-16 22:57 - 2013-01-04 06:43 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2013-10-16 22:57 - 2013-01-04 06:43 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2013-10-16 22:57 - 2013-01-04 06:43 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2013-10-16 22:57 - 2013-01-04 06:43 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2013-10-16 22:57 - 2013-01-04 06:43 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2013-10-16 22:57 - 2013-01-04 06:43 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2013-10-16 22:57 - 2013-01-04 06:43 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2013-10-16 22:57 - 2013-01-04 06:43 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2013-10-16 22:57 - 2013-01-04 06:43 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2013-10-16 22:57 - 2013-01-04 06:43 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2013-10-16 22:57 - 2013-01-04 06:43 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2013-10-16 22:57 - 2013-01-04 06:43 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2013-10-16 22:57 - 2013-01-04 05:19 - 00338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2013-10-16 22:57 - 2013-01-04 04:48 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2013-10-16 22:57 - 2013-01-04 04:48 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2013-10-16 22:57 - 2013-01-04 04:48 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2013-10-16 22:57 - 2013-01-04 04:48 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2013-10-16 22:57 - 2013-01-04 04:43 - 00006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2013-10-16 22:57 - 2013-01-04 04:43 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2013-10-16 22:57 - 2013-01-04 04:43 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2013-10-16 22:57 - 2013-01-04 04:43 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2013-10-16 22:57 - 2012-11-09 07:34 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2013-10-16 22:57 - 2012-11-09 06:49 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2013-10-16 22:57 - 2012-06-09 07:30 - 14165504 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2013-10-16 22:57 - 2012-03-03 08:29 - 01837568 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2013-10-16 22:57 - 2012-03-03 08:29 - 01541120 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2013-10-16 22:57 - 2012-03-03 08:29 - 00902656 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll
2013-10-16 22:57 - 2012-03-03 08:29 - 00320512 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1core.dll
2013-10-16 22:57 - 2012-03-03 08:29 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1.dll
2013-10-16 22:57 - 2012-03-03 07:40 - 01170944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll
2013-10-16 22:57 - 2012-03-03 07:40 - 01074176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2013-10-16 22:57 - 2012-03-03 07:40 - 00739840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d2d1.dll
2013-10-16 22:57 - 2012-03-03 07:40 - 00218624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1core.dll
2013-10-16 22:57 - 2012-03-03 07:40 - 00161792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1.dll
2013-10-16 22:56 - 2013-03-19 08:19 - 05497688 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2013-10-16 22:56 - 2013-03-19 07:54 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2013-10-16 22:56 - 2013-03-19 07:06 - 03958120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2013-10-16 22:56 - 2013-03-19 07:06 - 03902312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2013-10-16 22:56 - 2013-03-19 06:53 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
2013-10-16 22:56 - 2013-03-19 05:19 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2013-10-16 22:56 - 2013-03-01 05:32 - 03150848 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2013-10-16 22:56 - 2013-02-12 16:02 - 00019968 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usb8023.sys
2013-10-16 22:56 - 2013-01-04 07:41 - 01893224 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2013-10-16 22:56 - 2013-01-04 07:40 - 00287576 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS
2013-10-16 22:56 - 2012-11-20 07:55 - 00307200 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2013-10-16 22:56 - 2012-11-20 07:10 - 00219136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2013-10-16 22:56 - 2012-11-09 07:34 - 00751104 _____ (Microsoft Corporation) C:\Windows\system32\win32spl.dll
2013-10-16 22:56 - 2012-11-09 06:49 - 00492032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\win32spl.dll
2013-10-16 22:56 - 2012-11-02 07:30 - 02001408 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2013-10-16 22:56 - 2012-11-02 07:30 - 01880064 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2013-10-16 22:56 - 2012-11-02 07:27 - 00478208 _____ (Microsoft Corporation) C:\Windows\system32\dpnet.dll
2013-10-16 22:56 - 2012-11-02 06:50 - 01388544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll
2013-10-16 22:56 - 2012-11-02 06:50 - 01236992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2013-10-16 22:56 - 2012-11-02 06:48 - 00376832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnet.dll
2013-10-16 22:56 - 2012-09-26 00:39 - 00095744 _____ (Microsoft Corporation) C:\Windows\system32\synceng.dll
2013-10-16 22:56 - 2012-09-25 23:55 - 00078336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\synceng.dll
2013-10-16 22:56 - 2012-09-06 19:38 - 00295792 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\volsnap.sys
2013-10-16 22:56 - 2012-08-24 20:05 - 00220160 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2013-10-16 22:56 - 2012-08-24 19:10 - 00172544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll
2013-10-16 22:56 - 2012-08-11 02:53 - 00714752 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2013-10-16 22:56 - 2012-08-11 01:54 - 00541184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2013-10-16 22:56 - 2012-06-09 06:46 - 12868608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2013-10-16 22:56 - 2012-06-02 07:38 - 00152432 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2013-10-16 22:56 - 2012-06-02 07:38 - 00095088 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2013-10-16 22:56 - 2012-06-02 07:37 - 00459216 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2013-10-16 22:56 - 2012-06-02 07:27 - 00340992 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2013-10-16 22:56 - 2012-06-02 06:48 - 00225280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2013-10-16 22:56 - 2012-06-02 06:48 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2013-10-16 22:56 - 2012-06-02 06:42 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2013-10-16 22:56 - 2012-04-28 05:50 - 00204800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpwd.sys
2013-10-16 22:56 - 2012-04-26 07:34 - 00149504 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorekmts.dll
2013-10-16 22:56 - 2012-04-26 07:34 - 00076288 _____ (Microsoft Corporation) C:\Windows\system32\rdpwsx.dll
2013-10-16 22:56 - 2012-04-26 07:28 - 00009216 _____ (Microsoft Corporation) C:\Windows\system32\rdrmemptylst.exe
2013-10-16 22:56 - 2012-03-17 09:55 - 00075632 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\partmgr.sys
2013-10-16 22:56 - 2011-12-28 05:59 - 00499200 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2013-10-16 22:56 - 2011-11-17 09:12 - 00395776 _____ (Microsoft Corporation) C:\Windows\system32\webio.dll
2013-10-16 22:56 - 2011-11-17 09:11 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2013-10-16 22:56 - 2011-11-17 09:11 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2013-10-16 22:56 - 2011-11-17 09:11 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2013-10-16 22:56 - 2011-11-17 09:08 - 01446912 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2013-10-16 22:56 - 2011-11-17 09:05 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2013-10-16 22:56 - 2011-11-17 07:39 - 00314368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webio.dll
2013-10-16 22:56 - 2011-10-26 07:22 - 01572864 _____ (Microsoft Corporation) C:\Windows\system32\quartz.dll
2013-10-16 22:56 - 2011-10-26 07:22 - 00366592 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll
2013-10-16 22:56 - 2011-10-26 06:28 - 01328640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\quartz.dll
2013-10-16 22:56 - 2011-10-26 06:28 - 00514560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qdvd.dll
2013-10-16 22:56 - 2011-08-17 07:32 - 00613888 _____ (Microsoft Corporation) C:\Windows\system32\psisdecd.dll
2013-10-16 22:56 - 2011-08-17 07:27 - 00288256 _____ (Microsoft Corporation) C:\Windows\system32\MSNP.ax
2013-10-16 22:56 - 2011-08-17 07:27 - 00108032 _____ (Microsoft Corporation) C:\Windows\system32\psisrndr.ax
2013-10-16 22:56 - 2011-08-17 07:27 - 00104960 _____ (Microsoft Corporation) C:\Windows\system32\Mpeg2Data.ax
2013-10-16 22:56 - 2011-08-17 07:27 - 00075776 _____ (Microsoft Corporation) C:\Windows\system32\MSDvbNP.ax
2013-10-16 22:56 - 2011-08-17 06:26 - 00465408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\psisdecd.dll
2013-10-16 22:56 - 2011-08-17 06:22 - 00204288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSNP.ax
2013-10-16 22:56 - 2011-08-17 06:22 - 00075776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\psisrndr.ax
2013-10-16 22:56 - 2011-08-17 06:22 - 00072704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Mpeg2Data.ax
2013-10-16 22:56 - 2011-08-17 06:22 - 00059904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSDvbNP.ax
2013-10-16 22:56 - 2011-07-09 04:44 - 00287744 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2013-10-16 22:56 - 2011-06-15 11:58 - 00212992 _____ (Microsoft Corporation) C:\Windows\system32\odbctrac.dll
2013-10-16 22:56 - 2011-06-15 11:58 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\odbccp32.dll
2013-10-16 22:56 - 2011-06-15 11:58 - 00106496 _____ (Microsoft Corporation) C:\Windows\system32\odbccu32.dll
2013-10-16 22:56 - 2011-06-15 11:58 - 00106496 _____ (Microsoft Corporation) C:\Windows\system32\odbccr32.dll
2013-10-16 22:56 - 2011-06-15 11:04 - 00319488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbcjt32.dll
2013-10-16 22:56 - 2011-06-15 11:04 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbctrac.dll
2013-10-16 22:56 - 2011-06-15 11:04 - 00122880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbccp32.dll
2013-10-16 22:56 - 2011-06-15 11:04 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbccu32.dll
2013-10-16 22:56 - 2011-06-15 11:04 - 00081920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbccr32.dll
2013-10-16 22:56 - 2011-05-04 04:51 - 00157696 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2013-10-16 22:56 - 2011-05-04 04:51 - 00126464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2013-10-16 22:56 - 2011-04-29 05:13 - 00461312 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys
2013-10-16 22:56 - 2011-04-29 05:12 - 00399872 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
2013-10-16 22:56 - 2011-04-29 05:12 - 00161792 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys
2013-10-16 22:56 - 2011-04-27 04:57 - 00102400 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dfsc.sys
2013-10-16 22:56 - 2011-04-09 08:58 - 00142336 _____ (Microsoft Corporation) C:\Windows\system32\poqexec.exe
2013-10-16 22:56 - 2011-04-09 07:56 - 00123904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\poqexec.exe
2013-10-16 22:56 - 2011-03-11 08:19 - 01395712 _____ (Microsoft Corporation) C:\Windows\system32\mfc42.dll
2013-10-16 22:56 - 2011-03-11 08:19 - 01359872 _____ (Microsoft Corporation) C:\Windows\system32\mfc42u.dll
2013-10-16 22:56 - 2011-03-11 07:40 - 01164288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc42u.dll
2013-10-16 22:56 - 2011-03-11 07:40 - 01137664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc42.dll
2013-10-16 22:56 - 2011-03-03 08:17 - 00356352 _____ (Microsoft Corporation) C:\Windows\system32\dnsapi.dll
2013-10-16 22:56 - 2011-03-03 08:17 - 00182272 _____ (Microsoft Corporation) C:\Windows\system32\dnsrslvr.dll
2013-10-16 22:56 - 2011-03-03 08:14 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\dnscacheugc.exe
2013-10-16 22:56 - 2011-03-03 07:29 - 00269824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dnsapi.dll
2013-10-16 22:56 - 2011-03-03 07:27 - 00028672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dnscacheugc.exe
2013-10-16 22:56 - 2011-02-05 14:41 - 00640896 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2013-10-16 22:56 - 2011-02-05 14:41 - 00556928 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2013-10-16 22:56 - 2011-02-05 14:41 - 00020352 _____ (Microsoft Corporation) C:\Windows\system32\kdusb.dll
2013-10-16 22:56 - 2011-02-05 14:41 - 00019328 _____ (Microsoft Corporation) C:\Windows\system32\kd1394.dll
2013-10-16 22:56 - 2011-02-05 14:41 - 00017792 _____ (Microsoft Corporation) C:\Windows\system32\kdcom.dll
2013-10-16 22:56 - 2011-02-05 14:39 - 00603976 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe
2013-10-16 22:56 - 2011-02-05 14:39 - 00518160 _____ (Microsoft Corporation) C:\Windows\system32\winresume.exe
2013-10-16 22:56 - 2010-12-23 08:07 - 01118720 _____ (Microsoft Corporation) C:\Windows\system32\sbe.dll
2013-10-16 22:56 - 2010-12-23 08:07 - 00961024 _____ (Microsoft Corporation) C:\Windows\system32\CPFilters.dll
2013-10-16 22:56 - 2010-12-23 08:02 - 00259072 _____ (Microsoft Corporation) C:\Windows\system32\mpg2splt.ax
2013-10-16 22:56 - 2010-12-23 07:28 - 00850432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sbe.dll
2013-10-16 22:56 - 2010-12-23 07:28 - 00642048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CPFilters.dll
2013-10-16 22:56 - 2010-12-23 07:24 - 00199680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mpg2splt.ax
2013-10-16 22:56 - 2010-11-02 07:18 - 00524288 _____ (Microsoft Corporation) C:\Windows\system32\wmicmiplugin.dll
2013-10-16 22:56 - 2010-11-02 07:17 - 01169408 _____ (Microsoft Corporation) C:\Windows\system32\taskschd.dll
2013-10-16 22:56 - 2010-11-02 07:17 - 00473600 _____ (Microsoft Corporation) C:\Windows\system32\taskcomp.dll
2013-10-16 22:56 - 2010-11-02 07:16 - 01114624 _____ (Microsoft Corporation) C:\Windows\system32\schedsvc.dll
2013-10-16 22:56 - 2010-11-02 07:10 - 00464384 _____ (Microsoft Corporation) C:\Windows\system32\taskeng.exe
2013-10-16 22:56 - 2010-11-02 07:10 - 00285696 _____ (Microsoft Corporation) C:\Windows\system32\schtasks.exe
2013-10-16 22:56 - 2010-11-02 06:40 - 00496128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\taskschd.dll
2013-10-16 22:56 - 2010-11-02 06:40 - 00305152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\taskcomp.dll
2013-10-16 22:56 - 2010-11-02 06:34 - 00192000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\taskeng.exe
2013-10-16 22:56 - 2010-11-02 06:34 - 00179712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schtasks.exe
2013-10-16 22:56 - 2010-08-31 06:32 - 00954752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc40.dll
2013-10-16 22:56 - 2010-08-31 06:32 - 00954288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc40u.dll
2013-10-16 22:56 - 2010-08-26 07:27 - 00148992 _____ (Microsoft Corporation) C:\Windows\system32\t2embed.dll
2013-10-16 22:56 - 2010-08-26 06:39 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\t2embed.dll
2013-10-16 22:56 - 2010-08-21 08:38 - 01024512 _____ (Microsoft Corporation) C:\Windows\system32\wmpmde.dll
2013-10-16 22:56 - 2010-08-21 08:31 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\comctl32.dll
2013-10-16 22:56 - 2010-08-21 08:29 - 00558592 _____ (Microsoft Corporation) C:\Windows\system32\spoolsv.exe
2013-10-16 22:56 - 2010-08-21 07:36 - 00738816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmpmde.dll
2013-10-16 22:56 - 2010-08-21 07:33 - 00530432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comctl32.dll
2013-10-16 22:56 - 2010-07-29 08:30 - 00082944 _____ (Radius Inc.) C:\Windows\SysWOW64\iccvid.dll
2013-10-16 22:56 - 2010-06-29 07:39 - 02085376 _____ (Microsoft Corporation) C:\Windows\system32\ole32.dll
2013-10-16 22:56 - 2010-06-29 07:02 - 01413632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ole32.dll
2013-10-16 22:56 - 2010-06-19 08:53 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\rtutils.dll
2013-10-16 22:56 - 2010-06-19 08:23 - 00037376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rtutils.dll
2013-10-16 22:56 - 2010-05-05 09:37 - 00483840 _____ (Microsoft Corporation) C:\Windows\system32\StructuredQuery.dll
2013-10-16 22:56 - 2010-05-05 08:46 - 00363520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\StructuredQuery.dll
2013-10-16 22:56 - 2010-03-05 09:52 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\asycfilt.dll
2013-10-16 22:56 - 2010-03-05 09:42 - 00067584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\asycfilt.dll
2013-10-16 22:53 - 2012-07-05 00:04 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\netapi32.dll
2013-10-16 22:53 - 2012-07-05 00:01 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\browser.dll
2013-10-16 22:53 - 2012-07-05 00:01 - 00058880 _____ (Microsoft Corporation) C:\Windows\system32\browcli.dll
2013-10-16 22:53 - 2012-07-04 23:26 - 00057344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netapi32.dll
2013-10-16 22:53 - 2012-07-04 23:23 - 00041472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\browcli.dll
2013-10-16 22:53 - 2012-06-02 07:25 - 01462784 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2013-10-16 22:53 - 2012-06-02 07:25 - 00182272 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
2013-10-16 22:53 - 2012-06-02 07:25 - 00140288 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll
2013-10-16 22:53 - 2012-06-02 06:45 - 01157632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2013-10-16 22:53 - 2012-06-02 06:45 - 00139264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsvc.dll
2013-10-16 22:53 - 2012-06-02 06:45 - 00103936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptnet.dll
2013-10-16 22:53 - 2012-05-14 07:20 - 00956416 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll
2013-10-16 22:53 - 2011-12-16 10:42 - 00634368 _____ (Microsoft Corporation) C:\Windows\system32\msvcrt.dll
2013-10-16 22:53 - 2011-12-16 09:59 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcrt.dll
2013-10-16 22:53 - 2011-11-17 09:14 - 01739160 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2013-10-16 22:53 - 2011-11-17 07:41 - 01292592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2013-10-16 22:53 - 2011-10-15 08:25 - 00723456 _____ (Microsoft Corporation) C:\Windows\system32\EncDec.dll
2013-10-16 22:53 - 2011-10-15 07:48 - 00534528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\EncDec.dll
2013-10-16 22:53 - 2011-08-27 07:40 - 00861184 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2013-10-16 22:53 - 2011-08-27 07:40 - 00331776 _____ (Microsoft Corporation) C:\Windows\system32\oleacc.dll
2013-10-16 22:53 - 2011-08-27 06:43 - 00571904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll
2013-10-16 22:53 - 2011-08-27 06:43 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleacc.dll
2013-10-16 22:53 - 2011-05-24 13:21 - 00404992 _____ (Microsoft Corporation) C:\Windows\system32\umpnpmgr.dll
2013-10-16 22:53 - 2011-05-24 12:34 - 00145920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cfgmgr32.dll
2013-10-16 22:53 - 2011-05-24 12:34 - 00064512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\devobj.dll
2013-10-16 22:53 - 2011-05-24 12:34 - 00044544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\devrtl.dll
2013-10-16 22:53 - 2011-05-24 12:32 - 00252928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drvinst.exe
2013-10-16 22:53 - 2011-05-03 07:21 - 00976896 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll
2013-10-16 22:53 - 2011-05-03 06:50 - 00740864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcomm.dll
2013-10-16 22:53 - 2011-02-23 07:15 - 00090624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bowser.sys
2013-10-16 22:53 - 2011-02-12 08:14 - 00267776 _____ (Microsoft Corporation) C:\Windows\system32\FXSCOVER.exe
2013-10-16 22:53 - 2010-12-18 08:08 - 01097216 _____ (Microsoft Corporation) C:\Windows\system32\mstsc.exe
2013-10-16 22:53 - 2010-12-18 07:26 - 01034240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstsc.exe
2013-10-16 22:53 - 2010-10-16 07:17 - 00720896 _____ (Microsoft Corporation) C:\Windows\system32\odbc32.dll
2013-10-16 22:53 - 2010-10-16 06:34 - 00573440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbc32.dll
2013-10-16 22:53 - 2010-09-01 07:21 - 14627840 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
2013-10-16 22:53 - 2010-09-01 07:12 - 12625920 _____ (Microsoft Corporation) C:\Windows\system32\wmploc.DLL
2013-10-16 22:53 - 2010-09-01 06:29 - 11406848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmp.dll
2013-10-16 22:53 - 2010-09-01 06:23 - 12625408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmploc.DLL
2013-10-16 22:53 - 2010-08-27 08:14 - 00236032 _____ (Microsoft Corporation) C:\Windows\system32\srvsvc.dll
2013-10-16 22:53 - 2010-08-27 07:46 - 00009728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sscore.dll
2013-10-16 22:50 - 2011-11-19 17:07 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\packager.dll
2013-10-16 22:50 - 2011-11-19 16:06 - 00067072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\packager.dll
2013-10-16 22:50 - 2010-10-16 07:23 - 00112000 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe
2013-10-16 22:26 - 2013-10-16 22:26 - 00002770 _____ C:\Windows\System32\Tasks\CCleanerSkipUAC
2013-10-16 22:22 - 2013-10-16 22:22 - 00000000 ____D C:\Users\sven\AppData\Roaming\WinPatrol
2013-10-16 22:21 - 2013-10-16 22:21 - 00000000 ____D C:\ProgramData\InstallMate
2013-10-16 22:18 - 2013-10-16 22:18 - 00001237 _____ C:\Users\sven\Desktop\Schutz für Laptop - Verknüpfung.lnk
2013-10-16 22:13 - 2013-10-17 08:50 - 00000000 ____D C:\Program Files (x86)\Schutz für Laptop
2013-10-16 21:54 - 2013-09-03 14:35 - 00278800 _____ (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2013-10-16 21:25 - 2013-05-06 09:13 - 00110176 _____ (Kaspersky Lab ZAO) C:\Windows\system32\klfphc.dll
2013-10-16 21:24 - 2013-10-17 16:59 - 00000000 ____D C:\ProgramData\Kaspersky Lab
2013-10-16 21:24 - 2013-10-16 22:28 - 00620640 _____ (Kaspersky Lab ZAO) C:\Windows\system32\Drivers\klif.sys
2013-10-16 21:24 - 2013-10-16 21:24 - 00000000 ____D C:\Windows\ELAMBKUP
2013-10-16 21:24 - 2013-10-16 21:24 - 00000000 ____D C:\Program Files (x86)\Kaspersky Lab
2013-10-16 21:24 - 2013-06-08 20:18 - 00112224 _____ (Kaspersky Lab ZAO) C:\Windows\system32\Drivers\klflt.sys
2013-10-16 21:22 - 2009-11-25 12:47 - 01942856 _____ (Microsoft Corporation) C:\Windows\system32\dfshim.dll
2013-10-16 21:22 - 2009-11-25 12:47 - 01130824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dfshim.dll
2013-10-16 21:22 - 2009-11-25 12:47 - 00444752 _____ (Microsoft Corporation) C:\Windows\system32\mscoree.dll
2013-10-16 21:22 - 2009-11-25 12:47 - 00320352 _____ (Microsoft Corporation) C:\Windows\system32\PresentationHost.exe
2013-10-16 21:22 - 2009-11-25 12:47 - 00297808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mscoree.dll
2013-10-16 21:22 - 2009-11-25 12:47 - 00295264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationHost.exe
2013-10-16 21:22 - 2009-11-25 12:47 - 00109912 _____ (Microsoft Corporation) C:\Windows\system32\PresentationHostProxy.dll
2013-10-16 21:22 - 2009-11-25 12:47 - 00099176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationHostProxy.dll
2013-10-16 21:22 - 2009-11-25 12:47 - 00049472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netfxperf.dll
2013-10-16 21:22 - 2009-11-25 12:47 - 00048960 _____ (Microsoft Corporation) C:\Windows\system32\netfxperf.dll
2013-10-16 20:58 - 2013-10-16 20:58 - 00000000 ____D C:\Program Files\7-Zip
2013-10-16 18:11 - 2012-02-15 08:27 - 01031680 _____ (Microsoft Corporation) C:\Windows\system32\rdpcore.dll
2013-10-16 18:11 - 2012-02-15 07:44 - 00826368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpcore.dll
2013-10-16 18:11 - 2012-02-15 06:46 - 00023552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdtcp.sys
2013-10-16 18:06 - 2012-06-03 00:19 - 02428952 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2013-10-16 18:06 - 2012-06-03 00:19 - 00701976 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2013-10-16 18:06 - 2012-06-03 00:19 - 00057880 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2013-10-16 18:06 - 2012-06-03 00:19 - 00044056 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2013-10-16 18:06 - 2012-06-03 00:19 - 00038424 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2013-10-16 18:06 - 2012-06-03 00:15 - 02622464 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2013-10-16 18:06 - 2012-06-03 00:15 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2013-10-16 18:06 - 2012-06-02 15:19 - 00186752 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2013-10-16 18:06 - 2012-06-02 15:15 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2013-10-16 18:01 - 2013-10-16 18:01 - 00000000 ____D C:\Windows\pss
2013-10-16 17:57 - 2013-10-16 17:59 - 00000000 ____D C:\AdwCleaner
2013-10-16 17:33 - 2013-10-16 17:33 - 00002259 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2013-10-16 17:32 - 2013-10-17 17:45 - 00001106 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-10-16 17:32 - 2013-10-17 16:41 - 00001102 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-10-16 17:32 - 2013-10-16 22:40 - 00004102 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2013-10-16 17:32 - 2013-10-16 22:40 - 00003850 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2013-10-16 17:32 - 2013-10-16 17:32 - 00000000 ____D C:\Users\sven\AppData\Local\Deployment
2013-10-16 17:32 - 2013-10-16 17:32 - 00000000 ____D C:\Users\sven\AppData\Local\Apps\2.0
2013-10-16 17:27 - 2013-10-16 17:27 - 00000000 ____D C:\Users\sven\AppData\Roaming\Malwarebytes
2013-10-16 17:27 - 2013-10-16 17:27 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-10-16 17:27 - 2013-04-04 14:50 - 00025928 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2013-10-16 17:18 - 2013-10-16 17:18 - 00000000 ____D C:\Users\sven\AppData\Roaming\Macromedia
2013-10-16 17:17 - 2013-10-16 17:34 - 00000000 ____D C:\Users\sven\AppData\Local\Google
2013-10-16 17:17 - 2013-10-16 17:17 - 00000000 ____D C:\Users\sven\AppData\Roaming\Google
2013-10-16 17:17 - 2013-10-16 17:17 - 00000000 ____D C:\Users\sven\AppData\Roaming\Adobe
2013-10-16 17:10 - 2013-10-17 00:15 - 00001409 _____ C:\Users\sven\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer (64-bit).lnk
2013-10-16 17:10 - 2013-10-16 17:10 - 00000000 ____D C:\Users\sven\AppData\Roaming\ATI
2013-10-16 17:10 - 2013-10-16 17:10 - 00000000 ____D C:\Users\sven\AppData\Local\ATI
2013-10-16 17:09 - 2013-10-17 16:45 - 00000000 ____D C:\Users\sven\AppData\Local\VirtualStore
2013-10-16 17:09 - 2013-10-17 00:15 - 00000000 ___RD C:\Users\sven\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2013-10-16 17:09 - 2013-10-17 00:15 - 00000000 ___RD C:\Users\sven\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2013-10-16 17:08 - 2013-10-16 17:08 - 00000000 ____D C:\Program Files\Windows Live
2013-10-16 17:08 - 2013-10-16 17:08 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight
2013-10-16 17:08 - 2009-08-05 23:24 - 00061280 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fssfltr.sys
2013-10-16 17:07 - 2013-10-16 17:07 - 00000000 ____D C:\Program Files (x86)\Microsoft SQL Server Compact Edition
2013-10-16 17:07 - 2006-11-29 13:06 - 04398360 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_32.dll
2013-10-16 17:07 - 2006-11-29 13:06 - 03426072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_32.dll
2013-10-16 17:05 - 2013-10-16 17:08 - 00000000 ____D C:\Program Files (x86)\Windows Live
2013-10-16 17:05 - 2013-10-16 17:05 - 00000000 ____D C:\Windows\PCHEALTH
2013-10-16 17:05 - 2013-10-16 17:05 - 00000000 ____D C:\Program Files (x86)\Windows Live SkyDrive
2013-10-16 17:03 - 2013-10-16 17:03 - 00057560 _____ C:\Users\sven\AppData\Local\GDIPFONTCACHEV1.DAT
2013-10-16 17:03 - 2013-10-16 17:03 - 00000033 _____ C:\Windows\0
2013-10-16 16:58 - 2013-10-16 16:58 - 00000000 ____D C:\Users\sven\AppData\Local\Adobe
2013-10-16 16:58 - 2010-01-16 07:15 - 00131368 _____ C:\ProgramData\FullRemove.exe
2013-10-16 16:57 - 2013-10-16 16:58 - 00000000 ____D C:\ProgramData\Adobe
2013-10-16 16:57 - 2013-10-16 16:57 - 00000000 ____D C:\Program Files (x86)\Adobe
2013-10-16 16:56 - 2013-10-16 16:56 - 00000000 _____ C:\Windows\system32\Drivers\144D_SAMSUNG_N_R540_01KP.mrk
2013-10-16 16:55 - 2013-10-16 17:09 - 00000000 ____D C:\Users\sven
2013-10-16 16:55 - 2013-10-16 16:55 - 00000020 ___SH C:\Users\sven\ntuser.ini
2013-10-16 16:55 - 2013-10-16 16:55 - 00000000 _SHDL C:\Users\sven\Vorlagen
2013-10-16 16:55 - 2013-10-16 16:55 - 00000000 _SHDL C:\Users\sven\Startmenü
2013-10-16 16:55 - 2013-10-16 16:55 - 00000000 _SHDL C:\Users\sven\Netzwerkumgebung
2013-10-16 16:55 - 2013-10-16 16:55 - 00000000 _SHDL C:\Users\sven\Lokale Einstellungen
2013-10-16 16:55 - 2013-10-16 16:55 - 00000000 _SHDL C:\Users\sven\Eigene Dateien
2013-10-16 16:55 - 2013-10-16 16:55 - 00000000 _SHDL C:\Users\sven\Druckumgebung
2013-10-16 16:55 - 2013-10-16 16:55 - 00000000 _SHDL C:\Users\sven\Documents\Eigene Musik
2013-10-16 16:55 - 2013-10-16 16:55 - 00000000 _SHDL C:\Users\sven\Documents\Eigene Bilder
2013-10-16 16:55 - 2013-10-16 16:55 - 00000000 _SHDL C:\Users\sven\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2013-10-16 16:55 - 2013-10-16 16:55 - 00000000 _SHDL C:\Users\sven\AppData\Local\Verlauf
2013-10-16 16:55 - 2013-10-16 16:55 - 00000000 _SHDL C:\Users\sven\AppData\Local\Anwendungsdaten
2013-10-16 16:55 - 2013-10-16 16:55 - 00000000 _SHDL C:\Users\sven\Anwendungsdaten
2013-10-16 16:55 - 2009-07-14 06:54 - 00000000 ___RD C:\Users\sven\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2013-10-16 16:55 - 2009-07-14 06:49 - 00000000 ___RD C:\Users\sven\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2013-10-16 16:54 - 2013-10-16 16:54 - 00000000 __SHD C:\Recovery
2013-10-16 10:01 - 2013-10-16 21:28 - 00000000 ____D C:\Users\sven\Desktop\Favoriten
2013-10-16 10:01 - 2013-10-16 21:27 - 00000000 ____D C:\Users\sven\Documents\Sven
2013-10-16 10:01 - 2013-10-16 21:26 - 00000000 ____D C:\Users\sven\Desktop\LOGFILE
2013-10-16 10:01 - 2013-09-27 17:01 - 00151464 _____ C:\Users\sven\Documents\pinfect.zip
2013-10-16 10:01 - 2013-09-08 10:09 - 00000078 _____ C:\Users\sven\Documents\Powers.log
2013-10-14 12:04 - 2013-10-14 12:04 - 00018456 _____ (Secunia) C:\Windows\system32\Drivers\psi_mf_amd64.sys

==================== One Month Modified Files and Folders =======

2013-10-17 18:13 - 2013-10-17 18:13 - 00000000 ____D C:\FRST
2013-10-17 18:05 - 2010-06-01 03:03 - 01439559 _____ C:\Windows\WindowsUpdate.log
2013-10-17 17:45 - 2013-10-16 17:32 - 00001106 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-10-17 17:34 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\rescache
2013-10-17 17:25 - 2013-10-17 10:12 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-10-17 17:02 - 2013-10-17 17:02 - 00000000 ____D C:\Users\sven\Documents\ProcAlyzer Dumps
2013-10-17 17:02 - 2013-10-17 16:52 - 00000000 ____D C:\ProgramData\Spybot - Search & Destroy
2013-10-17 16:59 - 2013-10-16 21:24 - 00000000 ____D C:\ProgramData\Kaspersky Lab
2013-10-17 16:53 - 2013-10-17 16:51 - 00000000 ____D C:\ProgramData\VirtualizedApplications
2013-10-17 16:52 - 2013-10-17 16:52 - 00001383 _____ C:\Users\Public\Desktop\Spybot-S&D Start Center.lnk
2013-10-17 16:52 - 2013-10-17 16:52 - 00000000 ____D C:\Windows\System32\Tasks\Safer-Networking
2013-10-17 16:52 - 2013-10-17 16:52 - 00000000 ____D C:\Program Files (x86)\Spybot - Search & Destroy 2
2013-10-17 16:48 - 2009-07-14 06:45 - 00013936 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-10-17 16:48 - 2009-07-14 06:45 - 00013936 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-10-17 16:47 - 2010-06-01 19:30 - 00654610 _____ C:\Windows\system32\perfh007.dat
2013-10-17 16:47 - 2010-06-01 19:30 - 00130192 _____ C:\Windows\system32\perfc007.dat
2013-10-17 16:47 - 2009-07-14 07:13 - 01500018 _____ C:\Windows\system32\PerfStringBackup.INI
2013-10-17 16:45 - 2013-10-16 17:09 - 00000000 ____D C:\Users\sven\AppData\Local\VirtualStore
2013-10-17 16:45 - 2002-06-18 10:07 - 00000032 _____ C:\Users\sven\Desktop\app.ini
2013-10-17 16:42 - 2013-10-17 16:38 - 00000766 _____ C:\Windows\setupact.log
2013-10-17 16:42 - 2010-06-01 03:02 - 00000000 ____D C:\Windows\SysWOW64\RTCOM
2013-10-17 16:41 - 2013-10-16 17:32 - 00001102 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-10-17 16:41 - 2009-07-14 07:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-10-17 16:40 - 2010-06-01 03:02 - 00000000 ____D C:\Program Files (x86)\Realtek
2013-10-17 16:38 - 2013-10-17 16:38 - 00000000 _____ C:\Windows\setuperr.log
2013-10-17 16:37 - 2013-10-17 08:52 - 00000000 ____D C:\Users\sven\AppData\Roaming\SoftGrid Client
2013-10-17 10:12 - 2013-10-17 10:12 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2013-10-17 10:12 - 2013-10-17 10:12 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2013-10-17 10:12 - 2013-10-17 10:12 - 00003822 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2013-10-17 10:12 - 2013-10-17 10:12 - 00000000 ____D C:\Windows\system32\Macromed
2013-10-17 10:09 - 2013-10-17 10:09 - 00000000 ____D C:\Users\sven\AppData\Local\Secunia PSI
2013-10-17 10:09 - 2013-10-17 10:09 - 00000000 ____D C:\Program Files (x86)\Secunia
2013-10-17 09:11 - 2009-08-02 04:27 - 00000000 ____D C:\Windows\Panther
2013-10-17 08:56 - 2013-10-17 08:55 - 01954124 _____ (Farbar) C:\Users\sven\Downloads\FRST64.exe
2013-10-17 08:52 - 2013-10-17 08:52 - 00000000 ____D C:\Users\sven\AppData\Local\SoftGrid Client
2013-10-17 08:52 - 2013-10-17 08:51 - 00000000 ____D C:\Users\sven\AppData\Roaming\TP
2013-10-17 08:51 - 2013-10-17 08:51 - 01526948 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2013-10-17 08:51 - 2013-10-17 08:51 - 00000000 ____D C:\Windows\System32\Tasks\OfficeSoftwareProtectionPlatform
2013-10-17 08:51 - 2013-10-17 08:51 - 00000000 ____D C:\Program Files\Microsoft Office
2013-10-17 08:51 - 2013-10-17 08:51 - 00000000 ____D C:\Program Files (x86)\Microsoft Application Virtualization Client
2013-10-17 08:51 - 2010-06-01 03:50 - 00000000 ____D C:\Program Files (x86)\Microsoft Office
2013-10-17 08:51 - 2009-07-14 05:20 - 00000000 ____D C:\Program Files\Common Files\Microsoft Shared
2013-10-17 08:50 - 2013-10-16 22:13 - 00000000 ____D C:\Program Files (x86)\Schutz für Laptop
2013-10-17 00:15 - 2013-10-17 00:14 - 00001443 _____ C:\Users\sven\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2013-10-17 00:15 - 2013-10-16 17:10 - 00001409 _____ C:\Users\sven\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer (64-bit).lnk
2013-10-17 00:15 - 2013-10-16 17:09 - 00000000 ___RD C:\Users\sven\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2013-10-17 00:15 - 2013-10-16 17:09 - 00000000 ___RD C:\Users\sven\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2013-10-17 00:15 - 2009-07-14 07:09 - 00000000 ____D C:\Windows\System32\Tasks\WPD
2013-10-17 00:14 - 2009-07-14 05:20 - 00000000 __RHD C:\Users\Public\Libraries
2013-10-16 23:58 - 2009-07-14 06:45 - 00266992 _____ C:\Windows\system32\FNTCACHE.DAT
2013-10-16 23:56 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\PolicyDefinitions
2013-10-16 23:56 - 2009-07-14 05:20 - 00000000 ____D C:\Program Files\Common Files\System
2013-10-16 23:55 - 2010-06-01 19:15 - 00000000 ____D C:\Program Files\Windows Journal
2013-10-16 23:55 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\SysWOW64\inetsrv
2013-10-16 23:55 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\system32\inetsrv
2013-10-16 23:21 - 2013-10-16 23:21 - 17833984 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-10-16 23:21 - 2013-10-16 23:21 - 12336128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-10-16 23:21 - 2013-10-16 23:21 - 10926080 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-10-16 23:21 - 2013-10-16 23:21 - 09739264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-10-16 23:21 - 2013-10-16 23:21 - 04068864 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll
2013-10-16 23:21 - 2013-10-16 23:21 - 03695416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2013-10-16 23:21 - 2013-10-16 23:21 - 03695416 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2013-10-16 23:21 - 2013-10-16 23:21 - 03181568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mf.dll
2013-10-16 23:21 - 2013-10-16 23:21 - 02382848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-10-16 23:21 - 2013-10-16 23:21 - 02382848 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-10-16 23:21 - 2013-10-16 23:21 - 02312704 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-10-16 23:21 - 2013-10-16 23:21 - 02147840 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-10-16 23:21 - 2013-10-16 23:21 - 01888256 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL
2013-10-16 23:21 - 2013-10-16 23:21 - 01863680 _____ (Microsoft Corporation) C:\Windows\system32\ExplorerFrame.dll
2013-10-16 23:21 - 2013-10-16 23:21 - 01800704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-10-16 23:21 - 2013-10-16 23:21 - 01796096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-10-16 23:21 - 2013-10-16 23:21 - 01619456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVDECOD.DLL
2013-10-16 23:21 - 2013-10-16 23:21 - 01495040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ExplorerFrame.dll
2013-10-16 23:21 - 2013-10-16 23:21 - 01494528 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2013-10-16 23:21 - 2013-10-16 23:21 - 01427968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2013-10-16 23:21 - 2013-10-16 23:21 - 01392128 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-10-16 23:21 - 2013-10-16 23:21 - 01346560 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-10-16 23:21 - 2013-10-16 23:21 - 01133568 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2013-10-16 23:21 - 2013-10-16 23:21 - 01129472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-10-16 23:21 - 2013-10-16 23:21 - 01104896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-10-16 23:21 - 2013-10-16 23:21 - 00982912 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2013-10-16 23:21 - 2013-10-16 23:21 - 00816640 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-10-16 23:21 - 2013-10-16 23:21 - 00729088 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-10-16 23:21 - 2013-10-16 23:21 - 00717824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-10-16 23:21 - 2013-10-16 23:21 - 00662528 _____ (Microsoft Corporation) C:\Windows\system32\XpsPrint.dll
2013-10-16 23:21 - 2013-10-16 23:21 - 00607744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-10-16 23:21 - 2013-10-16 23:21 - 00599040 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2013-10-16 23:21 - 2013-10-16 23:21 - 00534528 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2013-10-16 23:21 - 2013-10-16 23:21 - 00470016 _____ (Microsoft Corporation) C:\Windows\system32\XpsGdiConverter.dll
2013-10-16 23:21 - 2013-10-16 23:21 - 00452608 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2013-10-16 23:21 - 2013-10-16 23:21 - 00448512 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2013-10-16 23:21 - 2013-10-16 23:21 - 00442880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsPrint.dll
2013-10-16 23:21 - 2013-10-16 23:21 - 00434176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2013-10-16 23:21 - 2013-10-16 23:21 - 00420864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2013-10-16 23:21 - 2013-10-16 23:21 - 00403248 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2013-10-16 23:21 - 2013-10-16 23:21 - 00367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2013-10-16 23:21 - 2013-10-16 23:21 - 00353792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2013-10-16 23:21 - 2013-10-16 23:21 - 00353584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2013-10-16 23:21 - 2013-10-16 23:21 - 00283648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsGdiConverter.dll
2013-10-16 23:21 - 2013-10-16 23:21 - 00282112 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2013-10-16 23:21 - 2013-10-16 23:21 - 00267776 _____ (Microsoft Corporation) C:\Windows\system32\ieaksie.dll
2013-10-16 23:21 - 2013-10-16 23:21 - 00265088 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys
2013-10-16 23:21 - 2013-10-16 23:21 - 00257024 _____ (Microsoft Corporation) C:\Windows\system32\mfreadwrite.dll
2013-10-16 23:21 - 2013-10-16 23:21 - 00249344 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2013-10-16 23:21 - 2013-10-16 23:21 - 00248320 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-10-16 23:21 - 2013-10-16 23:21 - 00237056 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2013-10-16 23:21 - 2013-10-16 23:21 - 00231936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2013-10-16 23:21 - 2013-10-16 23:21 - 00229888 _____ (Microsoft Corporation) C:\Windows\system32\XpsRasterService.dll
2013-10-16 23:21 - 2013-10-16 23:21 - 00227840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieaksie.dll
2013-10-16 23:21 - 2013-10-16 23:21 - 00223232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2013-10-16 23:21 - 2013-10-16 23:21 - 00222208 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2013-10-16 23:21 - 2013-10-16 23:21 - 00206848 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll
2013-10-16 23:21 - 2013-10-16 23:21 - 00203776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2013-10-16 23:21 - 2013-10-16 23:21 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2013-10-16 23:21 - 2013-10-16 23:21 - 00196608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfreadwrite.dll
2013-10-16 23:21 - 2013-10-16 23:21 - 00176640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-10-16 23:21 - 2013-10-16 23:21 - 00173056 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2013-10-16 23:21 - 2013-10-16 23:21 - 00165888 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2013-10-16 23:21 - 2013-10-16 23:21 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieakui.dll
2013-10-16 23:21 - 2013-10-16 23:21 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\ieakui.dll
2013-10-16 23:21 - 2013-10-16 23:21 - 00162304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2013-10-16 23:21 - 2013-10-16 23:21 - 00161792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2013-10-16 23:21 - 2013-10-16 23:21 - 00160256 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2013-10-16 23:21 - 2013-10-16 23:21 - 00160256 _____ (Microsoft Corporation) C:\Windows\system32\ieakeng.dll
2013-10-16 23:21 - 2013-10-16 23:21 - 00152064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2013-10-16 23:21 - 2013-10-16 23:21 - 00150528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2013-10-16 23:21 - 2013-10-16 23:21 - 00149504 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2013-10-16 23:21 - 2013-10-16 23:21 - 00145920 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2013-10-16 23:21 - 2013-10-16 23:21 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll
2013-10-16 23:21 - 2013-10-16 23:21 - 00142848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2013-10-16 23:21 - 2013-10-16 23:21 - 00135168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsRasterService.dll
2013-10-16 23:21 - 2013-10-16 23:21 - 00135168 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2013-10-16 23:21 - 2013-10-16 23:21 - 00130560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieakeng.dll
2013-10-16 23:21 - 2013-10-16 23:21 - 00123392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2013-10-16 23:21 - 2013-10-16 23:21 - 00118784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2013-10-16 23:21 - 2013-10-16 23:21 - 00114176 _____ (Microsoft Corporation) C:\Windows\system32\admparse.dll
2013-10-16 23:21 - 2013-10-16 23:21 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-10-16 23:21 - 2013-10-16 23:21 - 00110592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2013-10-16 23:21 - 2013-10-16 23:21 - 00103936 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2013-10-16 23:21 - 2013-10-16 23:21 - 00101888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\admparse.dll
2013-10-16 23:21 - 2013-10-16 23:21 - 00096768 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2013-10-16 23:21 - 2013-10-16 23:21 - 00091648 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2013-10-16 23:21 - 2013-10-16 23:21 - 00089088 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-10-16 23:21 - 2013-10-16 23:21 - 00089088 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-10-16 23:21 - 2013-10-16 23:21 - 00086528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-10-16 23:21 - 2013-10-16 23:21 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-10-16 23:21 - 2013-10-16 23:21 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-10-16 23:21 - 2013-10-16 23:21 - 00082432 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2013-10-16 23:21 - 2013-10-16 23:21 - 00078848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2013-10-16 23:21 - 2013-10-16 23:21 - 00076800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2013-10-16 23:21 - 2013-10-16 23:21 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2013-10-16 23:21 - 2013-10-16 23:21 - 00074752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2013-10-16 23:21 - 2013-10-16 23:21 - 00074752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-10-16 23:21 - 2013-10-16 23:21 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ie4uinit.exe
2013-10-16 23:21 - 2013-10-16 23:21 - 00073216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2013-10-16 23:21 - 2013-10-16 23:21 - 00066048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2013-10-16 23:21 - 2013-10-16 23:21 - 00065024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-10-16 23:21 - 2013-10-16 23:21 - 00065024 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2013-10-16 23:21 - 2013-10-16 23:21 - 00063488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2013-10-16 23:21 - 2013-10-16 23:21 - 00055296 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2013-10-16 23:21 - 2013-10-16 23:21 - 00054272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2013-10-16 23:21 - 2013-10-16 23:21 - 00049664 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2013-10-16 23:21 - 2013-10-16 23:21 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2013-10-16 23:21 - 2013-10-16 23:21 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2013-10-16 23:21 - 2013-10-16 23:21 - 00041472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2013-10-16 23:21 - 2013-10-16 23:21 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-10-16 23:21 - 2013-10-16 23:21 - 00035840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2013-10-16 23:21 - 2013-10-16 23:21 - 00031744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-10-16 23:21 - 2013-10-16 23:21 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2013-10-16 23:21 - 2013-10-16 23:21 - 00023552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2013-10-16 23:21 - 2013-10-16 23:21 - 00012288 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2013-10-16 23:21 - 2013-10-16 23:21 - 00011776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2013-10-16 23:21 - 2013-10-16 23:21 - 00010752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2013-10-16 23:21 - 2013-10-16 23:21 - 00010752 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2013-10-16 23:04 - 2013-10-16 23:01 - 00000000 ____D C:\Windows\system32\MRT
2013-10-16 22:40 - 2013-10-16 17:32 - 00004102 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2013-10-16 22:40 - 2013-10-16 17:32 - 00003850 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2013-10-16 22:28 - 2013-10-16 21:24 - 00620640 _____ (Kaspersky Lab ZAO) C:\Windows\system32\Drivers\klif.sys
2013-10-16 22:28 - 2013-06-10 12:27 - 00029792 _____ (Kaspersky Lab ZAO) C:\Windows\system32\Drivers\klim6.sys
2013-10-16 22:28 - 2013-05-06 09:22 - 07717984 _____ (Kaspersky Lab ZAO) C:\Windows\system32\Drivers\kl1.sys
2013-10-16 22:28 - 2013-05-05 22:42 - 00029280 _____ (Kaspersky Lab ZAO) C:\Windows\system32\Drivers\klmouflt.sys
2013-10-16 22:28 - 2013-05-05 22:42 - 00029280 _____ (Kaspersky Lab ZAO) C:\Windows\system32\Drivers\klkbdflt.sys
2013-10-16 22:26 - 2013-10-16 22:26 - 00002770 _____ C:\Windows\System32\Tasks\CCleanerSkipUAC
2013-10-16 22:22 - 2013-10-16 22:22 - 00000000 ____D C:\Users\sven\AppData\Roaming\WinPatrol
2013-10-16 22:21 - 2013-10-16 22:21 - 00000000 ____D C:\ProgramData\InstallMate
2013-10-16 22:18 - 2013-10-16 22:18 - 00001237 _____ C:\Users\sven\Desktop\Schutz für Laptop - Verknüpfung.lnk
2013-10-16 21:28 - 2013-10-16 10:01 - 00000000 ____D C:\Users\sven\Desktop\Favoriten
2013-10-16 21:27 - 2013-10-16 10:01 - 00000000 ____D C:\Users\sven\Documents\Sven
2013-10-16 21:26 - 2013-10-16 10:01 - 00000000 ____D C:\Users\sven\Desktop\LOGFILE
2013-10-16 21:24 - 2013-10-16 21:24 - 00000000 ____D C:\Windows\ELAMBKUP
2013-10-16 21:24 - 2013-10-16 21:24 - 00000000 ____D C:\Program Files (x86)\Kaspersky Lab
2013-10-16 21:19 - 2010-06-01 03:14 - 00000000 ____D C:\ProgramData\McAfee
2013-10-16 21:01 - 2010-06-01 03:11 - 00000000 ____D C:\ProgramData\WinClon
2013-10-16 20:58 - 2013-10-16 20:58 - 00000000 ____D C:\Program Files\7-Zip
2013-10-16 20:10 - 2010-06-01 19:23 - 00000000 ____D C:\Windows\SysWOW64\XPSViewer
2013-10-16 20:10 - 2009-07-14 07:37 - 00000000 ____D C:\Windows\SysWOW64\winrm
2013-10-16 20:10 - 2009-07-14 07:37 - 00000000 ____D C:\Windows\SysWOW64\WCN
2013-10-16 20:10 - 2009-07-14 07:37 - 00000000 ____D C:\Windows\SysWOW64\sysprep
2013-10-16 20:10 - 2009-07-14 07:37 - 00000000 ____D C:\Windows\SysWOW64\slmgr
2013-10-16 20:10 - 2009-07-14 07:37 - 00000000 ____D C:\Windows\SysWOW64\Printing_Admin_Scripts
2013-10-16 20:10 - 2009-07-14 07:37 - 00000000 ____D C:\Windows\system32\winrm
2013-10-16 20:10 - 2009-07-14 07:37 - 00000000 ____D C:\Windows\system32\WCN
2013-10-16 20:10 - 2009-07-14 07:37 - 00000000 ____D C:\Windows\system32\slmgr
2013-10-16 20:10 - 2009-07-14 07:37 - 00000000 ____D C:\Windows\system32\Printing_Admin_Scripts
2013-10-16 20:10 - 2009-07-14 07:32 - 00000000 ____D C:\Program Files\Windows Sidebar
2013-10-16 20:10 - 2009-07-14 07:32 - 00000000 ____D C:\Program Files\Windows Photo Viewer
2013-10-16 20:10 - 2009-07-14 07:32 - 00000000 ____D C:\Program Files\Windows Defender
2013-10-16 20:10 - 2009-07-14 07:32 - 00000000 ____D C:\Program Files (x86)\Windows Sidebar
2013-10-16 20:10 - 2009-07-14 07:32 - 00000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2013-10-16 20:10 - 2009-07-14 07:32 - 00000000 ____D C:\Program Files (x86)\Windows Defender
2013-10-16 20:10 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\SysWOW64\Setup
2013-10-16 20:10 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\SysWOW64\oobe
2013-10-16 20:10 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\SysWOW64\MUI
2013-10-16 20:10 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\SysWOW64\migwiz
2013-10-16 20:10 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\SysWOW64\Dism
2013-10-16 20:10 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\SysWOW64\com
2013-10-16 20:10 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\system32\sysprep
2013-10-16 20:10 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\system32\Setup
2013-10-16 20:10 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\system32\oobe
2013-10-16 20:10 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\system32\MUI
2013-10-16 20:10 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\system32\migwiz
2013-10-16 20:10 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\system32\Dism
2013-10-16 20:10 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\system32\com
2013-10-16 20:10 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\servicing
2013-10-16 20:09 - 2009-07-14 07:32 - 00000000 ____D C:\Program Files\DVD Maker
2013-10-16 18:02 - 2010-06-01 03:30 - 00000000 ____D C:\Program Files\Google
2013-10-16 18:02 - 2010-06-01 03:29 - 00000000 ____D C:\Program Files (x86)\Google
2013-10-16 18:01 - 2013-10-16 18:01 - 00000000 ____D C:\Windows\pss
2013-10-16 17:59 - 2013-10-16 17:57 - 00000000 ____D C:\AdwCleaner
2013-10-16 17:34 - 2013-10-16 17:17 - 00000000 ____D C:\Users\sven\AppData\Local\Google
2013-10-16 17:33 - 2013-10-16 17:33 - 00002259 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2013-10-16 17:32 - 2013-10-16 17:32 - 00000000 ____D C:\Users\sven\AppData\Local\Deployment
2013-10-16 17:32 - 2013-10-16 17:32 - 00000000 ____D C:\Users\sven\AppData\Local\Apps\2.0
2013-10-16 17:27 - 2013-10-16 17:27 - 00000000 ____D C:\Users\sven\AppData\Roaming\Malwarebytes
2013-10-16 17:27 - 2013-10-16 17:27 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-10-16 17:18 - 2013-10-16 17:18 - 00000000 ____D C:\Users\sven\AppData\Roaming\Macromedia
2013-10-16 17:17 - 2013-10-16 17:17 - 00000000 ____D C:\Users\sven\AppData\Roaming\Google
2013-10-16 17:17 - 2013-10-16 17:17 - 00000000 ____D C:\Users\sven\AppData\Roaming\Adobe
2013-10-16 17:10 - 2013-10-16 17:10 - 00000000 ____D C:\Users\sven\AppData\Roaming\ATI
2013-10-16 17:10 - 2013-10-16 17:10 - 00000000 ____D C:\Users\sven\AppData\Local\ATI
2013-10-16 17:09 - 2013-10-16 16:55 - 00000000 ____D C:\Users\sven
2013-10-16 17:08 - 2013-10-16 17:08 - 00000000 ____D C:\Program Files\Windows Live
2013-10-16 17:08 - 2013-10-16 17:08 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight
2013-10-16 17:08 - 2013-10-16 17:05 - 00000000 ____D C:\Program Files (x86)\Windows Live
2013-10-16 17:08 - 2010-06-01 19:13 - 00000000 ____D C:\Windows\MSetup
2013-10-16 17:07 - 2013-10-16 17:07 - 00000000 ____D C:\Program Files (x86)\Microsoft SQL Server Compact Edition
2013-10-16 17:05 - 2013-10-16 17:05 - 00000000 ____D C:\Windows\PCHEALTH
2013-10-16 17:05 - 2013-10-16 17:05 - 00000000 ____D C:\Program Files (x86)\Windows Live SkyDrive
2013-10-16 17:03 - 2013-10-16 17:03 - 00057560 _____ C:\Users\sven\AppData\Local\GDIPFONTCACHEV1.DAT
2013-10-16 17:03 - 2013-10-16 17:03 - 00000033 _____ C:\Windows\0
2013-10-16 16:58 - 2013-10-16 16:58 - 00000000 ____D C:\Users\sven\AppData\Local\Adobe
2013-10-16 16:58 - 2013-10-16 16:57 - 00000000 ____D C:\ProgramData\Adobe
2013-10-16 16:57 - 2013-10-16 16:57 - 00000000 ____D C:\Program Files (x86)\Adobe
2013-10-16 16:56 - 2013-10-16 16:56 - 00000000 _____ C:\Windows\system32\Drivers\144D_SAMSUNG_N_R540_01KP.mrk
2013-10-16 16:56 - 2010-06-01 02:59 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2013-10-16 16:55 - 2013-10-16 16:55 - 00000020 ___SH C:\Users\sven\ntuser.ini
2013-10-16 16:55 - 2013-10-16 16:55 - 00000000 _SHDL C:\Users\sven\Vorlagen
2013-10-16 16:55 - 2013-10-16 16:55 - 00000000 _SHDL C:\Users\sven\Startmenü
2013-10-16 16:55 - 2013-10-16 16:55 - 00000000 _SHDL C:\Users\sven\Netzwerkumgebung
2013-10-16 16:55 - 2013-10-16 16:55 - 00000000 _SHDL C:\Users\sven\Lokale Einstellungen
2013-10-16 16:55 - 2013-10-16 16:55 - 00000000 _SHDL C:\Users\sven\Eigene Dateien
2013-10-16 16:55 - 2013-10-16 16:55 - 00000000 _SHDL C:\Users\sven\Druckumgebung
2013-10-16 16:55 - 2013-10-16 16:55 - 00000000 _SHDL C:\Users\sven\Documents\Eigene Musik
2013-10-16 16:55 - 2013-10-16 16:55 - 00000000 _SHDL C:\Users\sven\Documents\Eigene Bilder
2013-10-16 16:55 - 2013-10-16 16:55 - 00000000 _SHDL C:\Users\sven\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2013-10-16 16:55 - 2013-10-16 16:55 - 00000000 _SHDL C:\Users\sven\AppData\Local\Verlauf
2013-10-16 16:55 - 2013-10-16 16:55 - 00000000 _SHDL C:\Users\sven\AppData\Local\Anwendungsdaten
2013-10-16 16:55 - 2013-10-16 16:55 - 00000000 _SHDL C:\Users\sven\Anwendungsdaten
2013-10-16 16:54 - 2013-10-16 16:54 - 00000000 __SHD C:\Recovery
2013-10-14 12:04 - 2013-10-14 12:04 - 00018456 _____ (Secunia) C:\Windows\system32\Drivers\psi_mf_amd64.sys
2013-09-27 17:01 - 2013-10-16 10:01 - 00151464 _____ C:\Users\sven\Documents\pinfect.zip
2013-09-26 01:46 - 2013-10-16 23:01 - 80541720 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe

==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2013-10-16 18:23

==================== End Of Log ============================
         
--- --- ---


Code:
ATTFilter
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 02-10-2013
Ran by sven at 2013-10-17 18:14:44
Running from C:\Users\sven\Downloads
Boot Mode: Normal
==========================================================


==================== Security Center ========================

AV: Kaspersky Internet Security (Enabled - Up to date) {179979E8-273D-D14E-0543-2861940E4886}
AS: Kaspersky Internet Security (Enabled - Up to date) {ACF8980C-0107-DEC0-3FF3-1313EF89023B}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Spybot - Search and Destroy (Enabled - Out of date) {9BC38DF1-3CCA-732D-A930-C1CA5F20A4B0}
FW: Kaspersky Internet Security (Enabled) {2FA2F8CD-6D52-D016-2E1C-81546ADD0FFD}

==================== Installed Programs ======================

7-Zip 9.20 (x64 edition) (Version: 9.20.00.0)
Adobe Flash Player 11 ActiveX (x32 Version: 11.8.800.168)
Adobe Reader 9.1 - Deutsch (x32 Version: 9.1.0)
Atheros Client Installation Program (x32 Version: 1.0.2.1119)
ATI Catalyst Install Manager (Version: 3.0.774.0)
BatteryLifeExtender (x32 Version: 1.0.3)
Broadcom 802.11 Network Adapter (Version: 5.60.48.44)
Catalyst Control Center - Branding (x32 Version: 1.00.0000)
Catalyst Control Center Core Implementation (x32 Version: 2010.0504.2152.37420)
Catalyst Control Center Graphics Full Existing (x32 Version: 2010.0504.2152.37420)
Catalyst Control Center Graphics Full New (x32 Version: 2010.0504.2152.37420)
Catalyst Control Center Graphics Light (x32 Version: 2010.0504.2152.37420)
Catalyst Control Center Graphics Previews Common (x32 Version: 2010.0504.2152.37420)
Catalyst Control Center Graphics Previews Vista (x32 Version: 2010.0504.2152.37420)
Catalyst Control Center InstallProxy (x32 Version: 2010.0504.2152.37420)
Catalyst Control Center Localization All (x32 Version: 2010.0504.2152.37420)
CCC Help Chinese Standard (x32 Version: 2010.0504.2151.37420)
CCC Help Chinese Traditional (x32 Version: 2010.0504.2151.37420)
CCC Help Czech (x32 Version: 2010.0504.2151.37420)
CCC Help Danish (x32 Version: 2010.0504.2151.37420)
CCC Help Dutch (x32 Version: 2010.0504.2151.37420)
CCC Help English (x32 Version: 2010.0504.2151.37420)
CCC Help Finnish (x32 Version: 2010.0504.2151.37420)
CCC Help French (x32 Version: 2010.0504.2151.37420)
CCC Help German (x32 Version: 2010.0504.2151.37420)
CCC Help Greek (x32 Version: 2010.0504.2151.37420)
CCC Help Hungarian (x32 Version: 2010.0504.2151.37420)
CCC Help Italian (x32 Version: 2010.0504.2151.37420)
CCC Help Japanese (x32 Version: 2010.0504.2151.37420)
CCC Help Korean (x32 Version: 2010.0504.2151.37420)
CCC Help Norwegian (x32 Version: 2010.0504.2151.37420)
CCC Help Polish (x32 Version: 2010.0504.2151.37420)
CCC Help Portuguese (x32 Version: 2010.0504.2151.37420)
CCC Help Russian (x32 Version: 2010.0504.2151.37420)
CCC Help Spanish (x32 Version: 2010.0504.2151.37420)
CCC Help Swedish (x32 Version: 2010.0504.2151.37420)
CCC Help Thai (x32 Version: 2010.0504.2151.37420)
CCC Help Turkish (x32 Version: 2010.0504.2151.37420)
ccc-core-static (x32 Version: 2010.0504.2152.37420)
ccc-utility64 (Version: 2010.0504.2152.37420)
Easy Content Share (x32 Version: 1.0.0.13)
Easy Display Manager (x32 Version: 3.1)
Easy Network Manager (x32 Version: 4.3.1)
Easy SpeedUp Manager (x32 Version: 2.1.0.11)
EasyBatteryManager (x32 Version: 4.0.0.4)
EasyFileShare (x32 Version: 1.0.3)
ETDWare PS/2-x64 7.0.7.0_WHQL (Version: 7.0.7.0)
Google Chrome (x32 Version: 30.0.1599.101)
Google Update Helper (x32 Version: 1.3.21.165)
Intel(R) Rapid Storage Technology (x32 Version: 9.6.3.1001)
Intel(R) Turbo Boost Technology Driver (x32 Version: 01.02.00.1002)
Junk Mail filter update (x32 Version: 14.0.8089.726)
Kaspersky Internet Security (x32 Version: 14.0.0.4651)
Marvell Miniport Driver (x32 Version: 11.22.3.3)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Choice Guard (x32 Version: 2.0.48.0)
Microsoft Office 2010 (x32 Version: 14.0.4763.1000)
Microsoft Office Klick-und-Los 2010 (Version: 14.0.4763.1000)
Microsoft Office Klick-und-Los 2010 (x32 Version: 14.0.4763.1000)
Microsoft Office Starter 2010 - Deutsch (x32 Version: 14.0.4763.1000)
Microsoft Silverlight (x32 Version: 3.0.40624.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (x32 Version: 3.1.0000)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
MSVCRT (x32 Version: 14.0.1468.721)
Realtek High Definition Audio Driver (x32 Version: 6.0.1.6083)
REALTEK Wireless LAN Software (x32 Version: 0133.09.1202)
Samsung Recovery Solution 4 (x32 Version: 4.0.0.6)
Samsung Support Center (x32 Version: 1.0.2)
Samsung Update Plus (x32 Version: 2.0)
Secunia PSI (3.0.0.8013) (x32 Version: 3.0.0.8013)
Spybot - Search & Destroy (x32 Version: 2.1.19)
User Guide (x32 Version: 1.0)
Windows Live Anmelde-Assistent (x32 Version: 5.000.818.5)
Windows Live Call (x32 Version: 14.0.8064.0206)
Windows Live Communications Platform (x32 Version: 14.0.8064.206)
Windows Live Essentials (x32 Version: 14.0.8089.0726)
Windows Live Essentials (x32 Version: 14.0.8089.726)
Windows Live Family Safety (Version: 14.0.8093.805)
Windows Live Fotogalerie (x32 Version: 14.0.8081.709)
Windows Live Mail (x32 Version: 14.0.8089.0726)
Windows Live Messenger (x32 Version: 14.0.8089.0726)
Windows Live Movie Maker (x32 Version: 14.0.8091.0730)
Windows Live Sync (x32 Version: 14.0.8089.726)
Windows Live Writer (x32 Version: 14.0.8089.0726)
Windows Live-Uploadtool (x32 Version: 14.0.8014.1029)
WinPatrol (Version: 28.9.2013.1)

==================== Restore Points  =========================

16-10-2013 20:58:40 Windows Update
17-10-2013 07:05:38 Removed Norton Online Backup
17-10-2013 07:06:21 Removed Skype Toolbars

==================== Hosts content: ==========================

2009-07-14 04:34 - 2013-10-17 16:58 - 00447822 ____R C:\Windows\system32\Drivers\etc\hosts
127.0.0.1	www.007guard.com
127.0.0.1	007guard.com
127.0.0.1	008i.com
127.0.0.1	www.008k.com
127.0.0.1	008k.com
127.0.0.1	www.00hq.com
127.0.0.1	00hq.com
127.0.0.1	010402.com
127.0.0.1	www.032439.com
127.0.0.1	032439.com
127.0.0.1	www.0scan.com
127.0.0.1	0scan.com
127.0.0.1	1000gratisproben.com
127.0.0.1	www.1000gratisproben.com
127.0.0.1	1001namen.com
127.0.0.1	www.1001namen.com
127.0.0.1	100888290cs.com
127.0.0.1	www.100888290cs.com
127.0.0.1	www.100sexlinks.com
127.0.0.1	100sexlinks.com
127.0.0.1	10sek.com
127.0.0.1	www.10sek.com
127.0.0.1	www.1-2005-search.com
127.0.0.1	1-2005-search.com
127.0.0.1	123fporn.info
127.0.0.1	www.123fporn.info
127.0.0.1	123haustiereundmehr.com
127.0.0.1	www.123haustiereundmehr.com
127.0.0.1	123moviedownload.com

There are 1000 more lines.


==================== Scheduled Tasks (whitelisted) =============

Task: {1D3815C2-698B-4E93-A4C1-BDE7758124D9} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-10-17] (Adobe Systems Incorporated)
Task: {3470C259-BF26-47DA-81A0-5F9FAA01C1CB} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Scan the system => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDScan.exe
Task: {352ED145-72CF-4D2F-9F98-8C0386A55B5D} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Check for updates => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe
Task: {4715B01A-2E8E-4CCA-BAB3-D0EF735FCB82} - System32\Tasks\OfficeSoftwareProtectionPlatform\SvcRestartTask => Sc.exe start osppsvc
Task: {52956B68-5E70-4B41-B139-88134E0102B2} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe
Task: {8813E5D3-87AE-4768-B14F-387BD05ACF8D} - System32\Tasks\SamsungSupportCenter => C:\Program Files (x86)\Samsung\Samsung Support Center\SSCKbdHk.exe [2010-05-06] (SAMSUNG Electronics)
Task: {B3038D87-CE94-422A-9FDC-9D893BB5CEE3} - System32\Tasks\advSRS4 => C:\Program Files (x86)\Samsung\Samsung Recovery Solution 4\WCScheduler.exe [2010-01-19] (SEC)
Task: {CD819A81-4C92-4F0E-9242-D3431D89ACF4} - System32\Tasks\EasySpeedUpManager => C:\Program Files (x86)\SAMSUNG\EasySpeedUpManager\EasySpeedUpManager.exe [2010-02-10] (Samsung Electronics Co., Ltd.)
Task: {D5094F5C-CBBC-4D0A-97BC-7EDCB3379DDE} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-10-16] (Google Inc.)
Task: {D5882885-0678-4844-B5EA-B1157D899F4E} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-10-16] (Google Inc.)
Task: {D7124D21-9D3D-430E-9095-5CA5C98AB530} - System32\Tasks\BatteryLifeExtender => C:\Program Files (x86)\Samsung\BatteryLifeExtender\BatteryLifeExtender.exe [2010-04-17] (Samsung Electronics. Co. Ltd.)
Task: {D774F9DD-6A0C-478D-A6E1-DF1734E28C67} - System32\Tasks\SUPBackground => C:\Program Files\Samsung\Samsung Update Plus\SUPBackground.exe
Task: {DC54C83E-75F3-4BC2-8A90-7A3D8E9D8B95} - System32\Tasks\Microsoft\Windows\MUI\Lpksetup => C:\Windows\System32\lpksetup.exe [2009-07-14] (Microsoft Corporation)
Task: {F0FD5859-FAAD-4528-8893-E9C912443AD5} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Refresh immunization => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDImmunize.exe
Task: {F56B76B9-95E0-47F8-8A07-72DDB540B015} - System32\Tasks\EasyDisplayMgr => C:\Program Files (x86)\Samsung\Easy Display Manager\dmhkcore.exe [2010-04-07] (Samsung Electronics Co., Ltd.)
Task: {F9CE13F9-8BA6-4A7A-9512-FC0F318C1BB5} - System32\Tasks\EasyBatteryManager => C:\Program Files (x86)\Samsung\EasyBatteryManager\EasyBatteryMgr4.exe [2010-03-29] (SAMSUNG Electronics co., LTD.)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Loaded Modules (whitelisted) =============

2013-06-17 12:35 - 2013-06-17 12:35 - 00478400 _____ () C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\dblite.dll
2013-05-08 14:52 - 2013-05-08 14:52 - 01270464 _____ () C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\kpcengine.2.3.dll
2010-06-01 03:09 - 2006-08-12 05:48 - 00049152 _____ () C:\Program Files (x86)\Samsung\Easy Display Manager\HookDllPS2.dll
2013-10-17 16:52 - 2013-05-16 10:55 - 00113496 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\snlThirdParty150.bpl
2013-10-17 16:52 - 2013-05-16 10:55 - 00416600 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\DEC150.bpl
2013-10-17 16:52 - 2013-05-16 10:55 - 00161112 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\snlFileFormats150.bpl
2013-10-17 16:52 - 2012-08-23 10:38 - 00574840 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\sqlite3.dll
2013-10-17 16:52 - 2012-04-03 17:06 - 00565640 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\av\BDSmartDB.dll

==================== Alternate Data Streams (whitelisted) =========


==================== Safe Mode (whitelisted) ===================

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcmscsvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcmscsvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MCODS => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MpfService => ""="Service"

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (10/17/2013 08:33:10 AM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "WLMFDS,processorArchitecture="AMD64",type="win32",version="1.0.0.1"1". Fehler in Manifest- oder Richtliniendatei "WLMFDS,processorArchitecture="AMD64",type="win32",version="1.0.0.1"2" in Zeile  WLMFDS,processorArchitecture="AMD64",type="win32",version="1.0.0.1"3.
Die im Manifest gefundene Komponenten-ID stimmt nicht mit der ID der angeforderten Komponente überein.
Verweis: WLMFDS,processorArchitecture="AMD64",type="win32",version="1.0.0.1".
Definition: WLMFDS,processorArchitecture="x86",type="win32",version="1.0.0.1".
Verwenden Sie das Programm "sxstrace.exe" für eine detaillierte Diagnose.

Error: (10/16/2013 11:57:08 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: Rezip.exe, Version: 500.2001.208.2009, Zeitstempel: 0x49afaf79
Name des fehlerhaften Moduls: unknown, Version: 0.0.0.0, Zeitstempel: 0x00000000
Ausnahmecode: 0xc0000005
Fehleroffset: 0x6f2a6a64
ID des fehlerhaften Prozesses: 0x69c
Startzeit der fehlerhaften Anwendung: 0xRezip.exe0
Pfad der fehlerhaften Anwendung: Rezip.exe1
Pfad des fehlerhaften Moduls: Rezip.exe2
Berichtskennung: Rezip.exe3

Error: (10/16/2013 10:29:45 PM) (Source: Microsoft-Windows-CAPI2) (User: )
Description: Fehler beim Kryptografiedienst während der Verarbeitung des "OnIdentity()"-Aufrufobjekts "System Writer".


Details:
AddWin32ServiceFiles: Unable to back up image of service MBAMService since QueryServiceConfig API failed

System Error:
Das System kann die angegebene Datei nicht finden.
.

Error: (10/16/2013 10:29:45 PM) (Source: Microsoft-Windows-CAPI2) (User: )
Description: Fehler beim Kryptografiedienst während der Verarbeitung des "OnIdentity()"-Aufrufobjekts "System Writer".


Details:
AddWin32ServiceFiles: Unable to back up image of service MBAMScheduler since QueryServiceConfig API failed

System Error:
Das System kann die angegebene Datei nicht finden.
.

Error: (10/16/2013 06:24:53 PM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "WLMFDS,processorArchitecture="AMD64",type="win32",version="1.0.0.1"1". Fehler in Manifest- oder Richtliniendatei "WLMFDS,processorArchitecture="AMD64",type="win32",version="1.0.0.1"2" in Zeile  WLMFDS,processorArchitecture="AMD64",type="win32",version="1.0.0.1"3.
Die im Manifest gefundene Komponenten-ID stimmt nicht mit der ID der angeforderten Komponente überein.
Verweis: WLMFDS,processorArchitecture="AMD64",type="win32",version="1.0.0.1".
Definition: WLMFDS,processorArchitecture="x86",type="win32",version="1.0.0.1".
Verwenden Sie das Programm "sxstrace.exe" für eine detaillierte Diagnose.

Error: (10/16/2013 06:04:26 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: chrome.exe, Version: 30.0.1599.101, Zeitstempel: 0x52547456
Name des fehlerhaften Moduls: chrome.dll, Version: 30.0.1599.101, Zeitstempel: 0x525473d5
Ausnahmecode: 0x80000003
Fehleroffset: 0x007371e6
ID des fehlerhaften Prozesses: 0x314
Startzeit der fehlerhaften Anwendung: 0xchrome.exe0
Pfad der fehlerhaften Anwendung: chrome.exe1
Pfad des fehlerhaften Moduls: chrome.exe2
Berichtskennung: chrome.exe3


System errors:
=============
Error: (10/17/2013 09:03:42 AM) (Source: Disk) (User: )
Description: Der Treiber hat einen Controllerfehler auf \Device\Harddisk1\DR1 gefunden.

Error: (10/17/2013 09:03:42 AM) (Source: Disk) (User: )
Description: Der Treiber hat einen Controllerfehler auf \Device\Harddisk1\DR1 gefunden.

Error: (10/17/2013 08:56:09 AM) (Source: Disk) (User: )
Description: Der Treiber hat einen Controllerfehler auf \Device\Harddisk1\DR1 gefunden.

Error: (10/17/2013 00:13:50 AM) (Source: Service Control Manager) (User: )
Description: Der Dienst "MBAMService" wurde aufgrund folgenden Fehlers nicht gestartet: 
%%2

Error: (10/17/2013 00:13:41 AM) (Source: EventLog) (User: )
Description: Das System wurde zuvor am ‎17.‎10.‎2013 um 00:11:09 unerwartet heruntergefahren.

Error: (10/17/2013 00:00:00 AM) (Source: Microsoft-Windows-LanguagePackSetup) (User: NT-AUTORITÄT)
Description: Fehler beim Starten des Assistenten für das Sprachpaket-Setup. Führen Sie einen Neustart des Systems aus, und führen Sie den Assistenten erneut aus.

Error: (10/17/2013 00:00:00 AM) (Source: Microsoft-Windows-LanguagePackSetup) (User: NT-AUTORITÄT)
Description: Fehler bei der CBS-Clientinitialisierung. Letzter Fehler: 0x80080005

Error: (10/17/2013 00:00:00 AM) (Source: DCOM) (User: )
Description: {752073A1-23F2-4396-85F0-8FDB879ED0ED}

Error: (10/16/2013 11:59:59 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Windows Modules Installer" wurde mit folgendem Fehler beendet: 
%%16405

Error: (10/16/2013 11:58:25 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "MBAMService" wurde aufgrund folgenden Fehlers nicht gestartet: 
%%2


Microsoft Office Sessions:
=========================
Error: (10/17/2013 08:33:10 AM) (Source: SideBySide)(User: )
Description: WLMFDS,processorArchitecture="AMD64",type="win32",version="1.0.0.1"WLMFDS,processorArchitecture="x86",type="win32",version="1.0.0.1"c:\program files (x86)\windows live\photo gallery\MovieMaker.Exec:\program files (x86)\windows live\photo gallery\WLMFDS.DLL8

Error: (10/16/2013 11:57:08 PM) (Source: Application Error)(User: )
Description: Rezip.exe500.2001.208.200949afaf79unknown0.0.0.000000000c00000056f2a6a6469c01cecaba62b1a5e9C:\Windows\SysWOW64\Rezip.exeunknowne683bddc-36ad-11e3-8dd4-002454bbfa5f

Error: (10/16/2013 10:29:45 PM) (Source: Microsoft-Windows-CAPI2)(User: )
Description: 
Details:
AddWin32ServiceFiles: Unable to back up image of service MBAMService since QueryServiceConfig API failed

System Error:
Das System kann die angegebene Datei nicht finden.

Error: (10/16/2013 10:29:45 PM) (Source: Microsoft-Windows-CAPI2)(User: )
Description: 
Details:
AddWin32ServiceFiles: Unable to back up image of service MBAMScheduler since QueryServiceConfig API failed

System Error:
Das System kann die angegebene Datei nicht finden.

Error: (10/16/2013 06:24:53 PM) (Source: SideBySide)(User: )
Description: WLMFDS,processorArchitecture="AMD64",type="win32",version="1.0.0.1"WLMFDS,processorArchitecture="x86",type="win32",version="1.0.0.1"c:\program files (x86)\windows live\photo gallery\MovieMaker.Exec:\program files (x86)\windows live\photo gallery\WLMFDS.DLL8

Error: (10/16/2013 06:04:26 PM) (Source: Application Error)(User: )
Description: chrome.exe30.0.1599.10152547456chrome.dll30.0.1599.101525473d580000003007371e631401ceca895bc925e2C:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Program Files (x86)\Google\Chrome\Application\30.0.1599.101\chrome.dlla0da3238-367c-11e3-a288-002454bbfa5f


CodeIntegrity Errors:
===================================
  Date: 2013-10-17 08:32:32.336
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\Windows\ELAMBKUP\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2013-10-17 08:32:32.334
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\Windows\ELAMBKUP\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2013-10-17 08:32:32.332
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\Windows\ELAMBKUP\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2013-10-17 08:32:32.313
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\Windows\ELAMBKUP\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2013-10-17 08:32:32.311
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\Windows\ELAMBKUP\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2013-10-17 08:32:32.309
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\Windows\ELAMBKUP\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2013-10-17 08:32:32.287
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\KLELAMX64\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2013-10-17 08:32:32.285
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\KLELAMX64\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2013-10-17 08:32:32.283
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\KLELAMX64\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.


==================== Memory info =========================== 

Percentage of memory in use: 29%
Total physical RAM: 7594.12 MB
Available physical RAM: 5334.75 MB
Total Pagefile: 15186.37 MB
Available Pagefile: 12703.58 MB
Total Virtual: 8192 MB
Available Virtual: 8191.8 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:112 GB) (Free:65.92 GB) NTFS
Drive d: () (Fixed) (Total:165.99 GB) (Free:165.86 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 298 GB) (Disk ID: 4394EB81)
Partition 1: (Not Active) - (Size=20 GB) - (Type=27)
Partition 2: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=112 GB) - (Type=07 NTFS)
Partition 4: (Not Active) - (Size=166 GB) - (Type=OF Extended)

==================== End Of Log ============================
         

vielen dank und gruß sven


Alt 18.10.2013, 10:39   #36
schrauber
/// the machine
/// TB-Ausbilder
 

Ständiger befall von viren oder maleware - Standard

Ständiger befall von viren oder maleware



Sieht gut aus.
__________________
--> Ständiger befall von viren oder maleware

Alt 20.10.2013, 16:15   #37
s.n.
 
Ständiger befall von viren oder maleware - Standard

Ständiger befall von viren oder maleware



Hallo Schrauber,

bisher keine bekannten Auffälligkeiten. Allerdings andere.

1.Extrem langsames Internet (habe Spybot abgeschaltet und nur noch Antimaleware und Kaspersky 2014 laufen lassen, da mir die Idee kam, dass sich die Programme vllt. gegenseitig behindern könnten)
2.Langsamer Rechner, löst sich erst nach etwa 10 min nach dem Hochfahren auf
3.Die Erstsicherung aller Daten als Vollsicherung verlief mehrfach meiner Meinung nach unvollständig. Umfang Laufwerk "C" ca. 65GB und nur ca. 40GB wurden gesichert. Habe mehrere Querversuche gestartet mit unterschiedlichem Ergebnis
3a. Sicherung von C auf externe Festplatte 36 von 65GB
3b. Sicherung von C auf D 36 von 65GB
3c. Sicherung Samsung Recovery auf D 33 von 65GB
3d. Sicherung Samsung Recovery auf externe Festplatte 33 von 65GB

Zwischenzeitlich wurde eine Info eingeblendet, die besagte, dass die Eigenen Dateien hätten nicht gesichert werden können, da ein Fehler xy entdeckt wurde. Da ich mir dachte, dass die Eigenen Dateien Fotos, Musik, Dokumente und Videos sind, kopierte ich diese und fügte sie dem jeweiligem Speicherort hinzu. In Summe kamen dann maximal 40GB heraus.

Vllt. hast Du ja eine zündende Idee, um Abhilfe zu schaffen. Vielen Dank bis hierher und Gruß Sven

Alt 20.10.2013, 18:13   #38
schrauber
/// the machine
/// TB-Ausbilder
 

Ständiger befall von viren oder maleware - Standard

Ständiger befall von viren oder maleware



Rundumschlag:

Downloade dir bitte Windows Repair (All In One) von hier.
  • Installiere das Programm. Starte es, nachdem die Installation abgeschlossen wurde.
  • Klicke auf Step 2 und drücke unter Check Disk auf Do It.

  • Wenn der Vorgang abgeschlossen ist, klicke auf Step 3 und drücke unter System File Check auf Do It.

  • Nachdem der Vorgang abgeschlossen ist, klicke auf Start Repairs, wähle den Advanced Mode und drücke Start.

  • Gehe bitte sicher, dass die Kästchen wie unten zu sehen angehakt sind. Bitte hake zusätzlich noch Set Windows Services to Default Startup an.
  • Hake Restart System when Finished an.
  • Drücke Start.

__________________
gruß,
schrauber

Proud Member of UNITE and ASAP since 2009

Spenden
Anleitungen und Hilfestellungen
Trojaner-Board Facebook-Seite

Keine Hilfestellung via PM!

Alt 20.10.2013, 18:39   #39
s.n.
 
Ständiger befall von viren oder maleware - Standard

Ständiger befall von viren oder maleware



hallo mein lieber,

danke fürs schnelle melden. wie ich damals schon schrieb, kann ich den Advanced Mode nicht anwählen, da er in dem programm nicht angezeigt und zur verfügung steht. alternative?

gruß sven

Alt 21.10.2013, 08:16   #40
schrauber
/// the machine
/// TB-Ausbilder
 

Ständiger befall von viren oder maleware - Standard

Ständiger befall von viren oder maleware



Screenshots muss ich erneuern. lass einfach den letzten Schritt laufen mit den Haken, setze entgegen dem Bild alle Haken.
__________________
gruß,
schrauber

Proud Member of UNITE and ASAP since 2009

Spenden
Anleitungen und Hilfestellungen
Trojaner-Board Facebook-Seite

Keine Hilfestellung via PM!

Alt 22.10.2013, 07:18   #41
s.n.
 
Ständiger befall von viren oder maleware - Standard

Ständiger befall von viren oder maleware



hallo schrauber,

also es ist alles zu kotzen. meine letzte anwendung war das windows repair. seitdem ist folgendes im argen:

*firewall wurde nach der reparatur nicht mehr eingeschaltet und läßt sich auch jetzt nicht aktivieren
*rechner langsamer als vorher ( es stehen 2 rechner nebeneinander und laufen über die selbe ltg. nr.1 geht reibungslos und nr.2 meiner kräpelt sich einen ab )
*kaspersky defekt

HInweis!
der maleware kram ist augenscheinlich entfernt und das ist auch gut so. noch vor kurzem mit maleware war der rechner sehr langsam in allem, mit div ausfällen. nach der wiederherstellung, dem urzustand, sind die maleware hinfort, aber die langsamkeit noch da. wo ich den rechner kaufte, also auch im urzustand, war der rechner sehr flott. mir scheint, dass da noch etwas im detail tief vergraben ist, was wir nicht sehen. denn irgendwo her muss die beeinträchtigung des systems ja herkommen.

grüße sven

Die erneute Datensicherung ergab wieder ein Defizit von 20GB

Schönen Abend
Gruß Sven

Moin,

heute morgen wieder massive windowsprobleme. kein neustart möglich, dass sagte wieder samsung revolution oder recovery. der rundumschlag mit windows repair fruchtet leider nicht. bitte, ich benötige eine alternative. z.b. rechner einsenden, platt machen und neu aufspielen??

danke dir und gruß sven

Alt 22.10.2013, 13:47   #42
schrauber
/// the machine
/// TB-Ausbilder
 

Ständiger befall von viren oder maleware - Standard

Ständiger befall von viren oder maleware



Wenn der nitmal bootet könnte auch die HDD nen Macken haben.

Poste bitte ein frisches FRST log.

Downloade dir bitte Farbar Service Scanner Farbar Service Scanner
  • Starte das Tool mit Doppelklick auf die FSS.exe
  • Gehe sicher, dass folgende Optionen angehakt sind.
    • Internet Services
    • Windows Firewall
    • System Restore
    • Security Center/Action Center
    • Windows Update
    • Windows Defender
    • Other Services
  • Klicke auf Scan.
  • Wenn das Tool fertig ist, wird es eine FSS.txt in dem Verzeichnis erstellen, wo das Tool gelaufen ist.

Poste bitte den Inhalt hier.


__________________
gruß,
schrauber

Proud Member of UNITE and ASAP since 2009

Spenden
Anleitungen und Hilfestellungen
Trojaner-Board Facebook-Seite

Keine Hilfestellung via PM!

Alt 22.10.2013, 22:52   #43
s.n.
 
Ständiger befall von viren oder maleware - Standard

Ständiger befall von viren oder maleware



hi,

was ist die HDD?
rechner ist nach 30 min hochgefahren, aber im tempo einer schnecke. und so verhält er sich weiter. bedeutet, wenn ich etwas anwähle, dann dauert es weitere 30 min bis eine reaktion eintritt. ich kann also nichts ausrichten, geschweige deinen anweisungen folgen. was nun?

gruß sven

beim laptop passiert nix mehr. er ist bereits verpackt und geht morgen zu let me repair. danke erstmal für alles. ich melde mich, wenn der hobel wieder da ist.

grüße sven

Alt 23.10.2013, 14:24   #44
schrauber
/// the machine
/// TB-Ausbilder
 

Ständiger befall von viren oder maleware - Standard

Ständiger befall von viren oder maleware



mit HDD meine ich die Festplatte.
__________________
gruß,
schrauber

Proud Member of UNITE and ASAP since 2009

Spenden
Anleitungen und Hilfestellungen
Trojaner-Board Facebook-Seite

Keine Hilfestellung via PM!

Antwort

Themen zu Ständiger befall von viren oder maleware
aktuelle, anwenderfehler, auslastung, funktioniert, herunterfahren, hijack.startpage, laptop, maleware, nicht mehr, probleme, programme, pup.optional.babylon.a, pup.optional.dprotect.a, pup.optional.elex, pup.optional.elex.a, pup.optional.installcore.a, pup.optional.qvo6.a, pup.optional.regcleanerpro.a, pup.optional.updatestar.a, pup.optional.wajam, pup.optional.wajam.a, ram auslastung, tastatur, treiber, verursacht, ändern




Ähnliche Themen: Ständiger befall von viren oder maleware


  1. Ständiger Befall von unerwünschten Programmen und Treiberprobleme unter Windows 7
    Plagegeister aller Art und deren Bekämpfung - 21.11.2015 (42)
  2. Ständiger Internet abbruch - Fehler im System oder Malware?
    Plagegeister aller Art und deren Bekämpfung - 05.08.2015 (9)
  3. Windows 7 Laptop: Probleme mit Maleware Befall, was kann ich tun?
    Log-Analyse und Auswertung - 12.06.2015 (10)
  4. viren befall ?? oder malware oder unerwuenschte software ?? oder ....
    Plagegeister aller Art und deren Bekämpfung - 20.05.2015 (6)
  5. Acer Windows 7-Rechner * Befall von Viren und Trojanern? * Antivir Rescue CD beseitigt Viren/Trojanernicht
    Plagegeister aller Art und deren Bekämpfung - 14.12.2014 (15)
  6. Ständiger wiederkehrender Maleware Fund "Trojan.Win32.Vague.cg" in C:\Windows\Temp\41560_updater.exe
    Plagegeister aller Art und deren Bekämpfung - 27.05.2014 (19)
  7. Brauche Maleware und Viren für einen Testbericht
    Diskussionsforum - 01.03.2014 (12)
  8. Befall von Maleware nach Download (u.a. Serach.New.Tab). GMER meldet Rootkit
    Log-Analyse und Auswertung - 02.11.2013 (14)
  9. Spyhunter 4, Maleware oder Maleware Security Suite?
    Plagegeister aller Art und deren Bekämpfung - 07.05.2013 (5)
  10. Möglicher Maleware Befall - Typ unbekannt
    Log-Analyse und Auswertung - 09.04.2011 (37)
  11. Viren befall kein viren programm geht
    Plagegeister aller Art und deren Bekämpfung - 06.01.2010 (22)
  12. Viren oder Trojaner befall?
    Log-Analyse und Auswertung - 01.10.2009 (8)
  13. Hijack this logfile bitte angucken aufgrund von maleware befall
    Log-Analyse und Auswertung - 24.09.2009 (1)
  14. Eine Bitte um Systemüberprüfung (Viren, oder Spuren von Maleware ausmachbar?)
    Log-Analyse und Auswertung - 16.06.2009 (0)
  15. Internetverbindungsabbrüche nach Maleware-Befall
    Log-Analyse und Auswertung - 18.02.2009 (0)
  16. Maleware/Spyware Befall - Manipulierter Browser, Windows Updates deaktiviert ...
    Plagegeister aller Art und deren Bekämpfung - 24.11.2008 (1)
  17. Trojaner, Viren, Maleware.....HILFEEEE
    Plagegeister aller Art und deren Bekämpfung - 03.11.2005 (3)

Zum Thema Ständiger befall von viren oder maleware - start repair schaltet sich zwischen und weist schwerwiegende probleme auf.es sind neun genannt.bin nicht zu hause. Habe nebenher nochmals einen urzustand herstellen lassen.muss später schauen ob es geklappt hat.wenn ja - Ständiger befall von viren oder maleware...
Archiv
Du betrachtest: Ständiger befall von viren oder maleware auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.