| |
| |||||||
Log-Analyse und Auswertung: BSI Mitteilung über Sperrung der Daten! (bekannter Trojaner) Alles läuft weiterhin problemlos. Trojaner ja oder nein?Windows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML. |
 |
24.10.2013, 21:04
| #1 |
| |  BSI Mitteilung über Sperrung der Daten! (bekannter Trojaner) Alles läuft weiterhin problemlos. Trojaner ja oder nein? Guten Abend zusammen. Ich hab ein paar Seiten durchstöbert und bekam nach öffnen eines Videos die Meldung vom Bundesamt für Sicherheit und Informationstechnik. Ich hätte pornografische Inhalte auf meinem Pc und andere diverse Verbrechen begangen. Die oben beschriebenen Angaben sind wohl denn meisten von euch bekannt. Ich habe dann anschließend versucht mich in Google darüber zu informieren wo ich dann herausfand das die Leute alle eine Bildschirmsperre haben was bei mir nicht der Fall war und ich ganz einfach die Seite schließen konnte. Natürlich habe ich direkt mein Norten Programm einen vollständigen Scan durchführen lassen wo es zu keinem Trojaner Ergebnis kam. Alles läuft flüssig wie es auch vor der Meldung war. Habe dann auch versucht über diverse Youtube Videos selbst nach Trojaner Datein zu suchen über denn Sicherheits Modus. Ich kam leider zu keinem Ergebnis da ich nichts gefunden habe. Trotzdem bleibt die Unsicherheit das sich ein Trojaner auf dem PC befindet.. Ich benutze Windows 7 (64bit) und ich hoffe das euch vielleicht noch was einfällt. Leider bin ich auf diesem Gebiet sehr unerfahren und habe nicht die größte Ahnung davon.. Lg Dunno |
|
25.10.2013, 06:28
| #2 |
| /// the machine /// TB-Ausbilder    | BSI Mitteilung über Sperrung der Daten! (bekannter Trojaner) Alles läuft weiterhin problemlos. Trojaner ja oder nein? hi,
__________________Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop:  FRST 32-Bit | FRST 64-Bit(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)
__________________ |
|
25.10.2013, 15:27
| #3 |
| | BSI Mitteilung über Sperrung der Daten! (bekannter Trojaner) Alles läuft weiterhin problemlos. Trojaner ja oder nein?Code:
ATTFilter (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
() c:\progra~2\optimi~1\OptProCrash.exe
() C:\Program Files\Bigfoot Networks\Killer Network Manager\BFNService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
() C:\Program Files (x86)\Guard-ICQ\GuardICQ.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Microsoft Corporation) C:\Program Files\Microsoft Xbox 360 Accessories\XBoxStat.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe
(ICQ, LLC.) C:\Program Files (x86)\ICQ7M\ICQ.exe
(Valve Corporation) D:\Steam\Steam.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Electronic Arts) D:\Neuer Ordner\Origin\Origin.exe
() C:\Program Files (x86)\Pando Networks\Media Booster\PMB.exe
(Spotify Ltd) C:\Users\Christian Mies\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe
(Spotify Ltd) C:\Users\Christian Mies\AppData\Roaming\Spotify\spotify.exe
() C:\Program Files\Bigfoot Networks\Killer Network Manager\KillerNetManager.exe
(McAfee, Inc.) C:\Program Files\McAfee Security Scan\3.8.130\SSScheduler.exe
(PC Utilities Pro) C:\Program Files (x86)\Optimizer Pro\OptProSmartScan.exe
() C:\Program Files (x86)\Guard-ICQ\GuardICQ.exe
(ROCCAT GmbH) C:\Program Files (x86)\ROCCAT\Isku Keyboard\IskuMonitor.exe
(PC Utilities Pro) C:\Program Files (x86)\Optimizer Pro\OptProReminder.exe
(Ask) C:\Program Files (x86)\Ask.com\Updater\Updater.exe
(Visicom Media Inc.) C:\ProgramData\Anti-phishing Domain Advisor\visicom_antiphishing.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
() C:\Users\Christian Mies\AppData\Roaming\Spotify\Data\SpotifyHelper.exe
() C:\Users\Christian Mies\AppData\Roaming\Spotify\Data\SpotifyHelper.exe
() C:\Users\Christian Mies\AppData\Roaming\Spotify\Data\SpotifyHelper.exe
() C:\Users\Christian Mies\AppData\Roaming\Spotify\Data\SpotifyHelper.exe
() C:\Users\Christian Mies\AppData\Roaming\Spotify\Data\SpotifyHelper.exe
(Google Inc.) C:\Users\Christian Mies\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Christian Mies\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Christian Mies\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Christian Mies\AppData\Local\Google\Chrome\Application\chrome.exe
(Symantec Corporation) C:\Program Files (x86)\Norton Internet Security\Engine\20.4.0.40\ccSvcHst.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
(Symantec Corporation) C:\Program Files (x86)\Norton Internet Security\Engine\20.4.0.40\ccSvcHst.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(Skype Technologies S.A.) C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\ComUpdatus.exe
(Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [RtHDVCpl] - C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [12459112 2012-03-27] (Realtek Semiconductor)
HKLM\...\Run: [XboxStat] - C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe [825184 2009-10-01] (Microsoft Corporation)
HKLM\...\Run: [Nvtmru] - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe [1028896 2013-07-03] (NVIDIA Corporation)
HKCU\...\Run: [Google Update] - C:\Users\Christian Mies\AppData\Local\Google\Update\GoogleUpdate.exe [116648 2012-07-31] (Google Inc.)
HKCU\...\Run: [ICQ] - C:\Program Files (x86)\ICQ7M\ICQ.exe [127040 2012-08-01] (ICQ, LLC.)
HKCU\...\Run: [GoogleChromeAutoLaunch_6BCE850165DB478F882F0C0215FF66BB] - C:\Users\Christian Mies\AppData\Local\Google\Chrome\Application\chrome.exe [844752 2013-10-09] (Google Inc.)
HKCU\...\Run: [Steam] - D:\Steam\Steam.exe [1813928 2013-10-09] (Valve Corporation)
HKCU\...\Run: [HD Audio Process] - C:\Users\Christian Mies\unimksu.exe
HKCU\...\Run: [Pen Driver] - C:\Users\Christian Mies\Documents\Services\PenTest.exe
HKCU\...\Run: [Codec Reader] - C:\Users\Christian Mies\AppData\Roaming\Microsoft\Audiodg.exe
HKCU\...\Run: [netLoader] - C:\Users\Christian Mies\AppData\Roaming\net64.exe
HKCU\...\Run: [Skype] - C:\Program Files (x86)\Skype\Phone\Skype.exe [20684656 2013-07-25] (Skype Technologies S.A.)
HKCU\...\Run: [EADM] - D:\Neuer Ordner\Origin\Origin.exe [3561816 2013-10-15] (Electronic Arts)
HKCU\...\Run: [Pando Media Booster] - C:\Program Files (x86)\Pando Networks\Media Booster\PMB.exe [3093624 2013-02-17] ()
HKCU\...\Run: [Spotify Web Helper] - C:\Users\Christian Mies\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe [1140736 2013-10-15] (Spotify Ltd)
HKCU\...\Run: [Spotify] - C:\Users\Christian Mies\AppData\Roaming\Spotify\spotify.exe [4752384 2013-10-15] (Spotify Ltd)
HKCU\...\Run: [Optimizer Pro] - C:\Program Files (x86)\Optimizer Pro\OptProLauncher.exe [135672 2013-09-29] (PC Utilities Pro)
HKCU\...\CurrentVersion\Windows: [Load] C:\Users\Christian Mies\unimksu.exe <===== ATTENTION
MountPoints2: {28293ef1-10ba-11e3-ae85-902b34356e8d} - F:\HTC_Sync_Manager_PC.exe
HKLM-x32\...\Run: [IAStorIcon] - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [284440 2012-02-01] (Intel Corporation)
HKLM-x32\...\Run: [Guard.Mail.ru.gui] - C:\Program Files (x86)\Guard-ICQ\GuardICQ.exe [1564368 2012-08-01] ()
HKLM-x32\...\Run: [RoccatIsku] - C:\Program Files (x86)\ROCCAT\Isku Keyboard\IskuMonitor.EXE [542560 2012-11-09] (ROCCAT GmbH)
HKLM-x32\...\Run: [] - [x]
HKLM-x32\...\Run: [ApnUpdater] - C:\Program Files (x86)\Ask.com\Updater\Updater.exe [1646216 2013-03-31] (Ask)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-09-05] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [LogMeIn Hamachi Ui] - "D:\7 Days to die\hamachi-2-ui.exe" --auto-start
HKLM-x32\...\Run: [Anti-phishing Domain Advisor] - C:\ProgramData\Anti-phishing Domain Advisor\visicom_antiphishing.exe [235072 2013-05-31] (Visicom Media Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
AppInit_DLLs: C:\PROGRA~2\OPTIMI~1\OPTPRO~2.DLL [2594608 2013-10-03] ()
AppInit_DLLs-x32: c:\progra~2\optimi~1\optpro~1.dll [2859992 2013-09-30] ()
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.mystart.com/?pr=vmn&id=toolbarcleaner&v=1_1_1_4&ent=hp_4802
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://de.msn.com/?ocid=iehp
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0xBBAC799C156FCD01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de-DE
HKCU\Software\Microsoft\Internet Explorer\Main,ICQ Search = hxxp://search.icq.com/search/results.php?q={searchTerms}&ch_id=osd
URLSearchHook: (No Name) - {00000000-6E41-4FD3-8538-502F5495E5FC} - No File
URLSearchHook: (No Name) - {855F3B16-6D32-4fe6-8A56-BBB695989046} - No File
URLSearchHook: (No Name) - {0027da2d-c9f2-4b0b-ae05-e2cd1bdb6cff} - No File
SearchScopes: HKCU - DefaultScope {3BD44F0E-0596-4008-AEE0-45D47E3A8F0E} URL = hxxp://www.mystart.com/results.php?pr=vmn&id=toolbarcleaner&v=1_1_1_4&ent=ch_4802&q={searchTerms}
SearchScopes: HKCU - {010C3F3A-7C11-4D07-95B8-CCC6FDF74504} URL = hxxp://websearch.ask.com/redirect?client=ie&tb=ORJ&o=100000027&src=kw&q={searchTerms}&locale=de_DE&apn_ptnrs=^U3&apn_dtid=^OSJ000^YY^DE&apn_uid=9A41E9E9-148C-4FDA-99FD-0F26D93EB9D6&apn_sauid=3F4A8CDF-98BC-46E7-BEDE-091E0E889FB2
SearchScopes: HKCU - {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} URL = hxxp://www.dalesearch.com/?q={searchTerms}&babsrc=SP_ss&mntrId=C4B296F65211C7B3&affID=120524&tt=021013_dle&tsp=5023
SearchScopes: HKCU - {3BD44F0E-0596-4008-AEE0-45D47E3A8F0E} URL = hxxp://www.mystart.com/results.php?pr=vmn&id=toolbarcleaner&v=1_1_1_4&ent=ch_4802&q={searchTerms}
SearchScopes: HKCU - {6552C7DD-90A4-4387-B795-F8F96747DE19} URL = hxxp://search.icq.com/search/results.php?q={searchTerms}&ch_id=osd
SearchScopes: HKCU - {8463A8FE-3CD1-4844-A40E-F1E0BD486E22} URL = hxxp://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT2625848
SearchScopes: HKCU - {AFBCB7E0-F91A-4951-9F31-58FEE57A25C4} URL = hxxp://nortonsafe.search.ask.com/web?q={SEARCHTERMS}&o=APN10506&l=dis&prt=NIS&chn=retail&geo=DE&ver=20&locale=de_DE&gct=kwd&qsrc=2869
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Skype add-on for Internet Explorer - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Skype Technologies S.A.)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: DVDVideoSoftTB DE Toolbar - {0027da2d-c9f2-4b0b-ae05-e2cd1bdb6cff} - C:\Program Files (x86)\DVDVideoSoftTB_DE\prxtbDVDV.dll (Conduit Ltd.)
BHO-x32: MSS+ Identifier - {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} - C:\Program Files\McAfee Security Scan\3.8.130\McAfeeMSS_IE.dll (McAfee, Inc.)
BHO-x32: Norton Identity Protection - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files (x86)\Norton Internet Security\Engine\20.4.0.40\coIEPlg.dll (Symantec Corporation)
BHO-x32: Norton Vulnerability Protection - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files (x86)\Norton Internet Security\Engine\20.4.0.40\IPS\IPSBHO.DLL (Symantec Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Windows Live ID-Anmelde-Hilfsprogramm - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll No File
BHO-x32: Skype Browser Helper - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
BHO-x32: Bing Bar Helper - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files (x86)\Microsoft\BingBar\7.1.362.0\BingExt.dll No File
BHO-x32: Ask Toolbar - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll (Ask)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM-x32 - Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - "C:\Program Files (x86)\Microsoft\BingBar\7.1.362.0\BingExt.dll" No File
Toolbar: HKLM-x32 - ICQToolBar - {855F3B16-6D32-4FE6-8A56-BBB695989046} - C:\Program Files (x86)\ICQ6Toolbar\ICQToolBar.dll No File
Toolbar: HKLM-x32 - DVDVideoSoftTB DE Toolbar - {0027da2d-c9f2-4b0b-ae05-e2cd1bdb6cff} - C:\Program Files (x86)\DVDVideoSoftTB_DE\prxtbDVDV.dll (Conduit Ltd.)
Toolbar: HKLM-x32 - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Internet Security\Engine\20.4.0.40\coIEPlg.dll (Symantec Corporation)
Toolbar: HKLM-x32 - Ask Toolbar - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll (Ask)
DPF: HKLM-x32 {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/pub/shockwave/cabs/flash/swflash.cab
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Skype Technologies S.A.)
Handler-x32: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.dll No File
Handler-x32: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.dll No File
Handler-x32: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Handler-x32: wlmailhtml - {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - C:\Program Files (x86)\Windows Live\Mail\mailcomm.dll No File
Handler-x32: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll No File
Winsock: Catalog9 01 C:\Windows\SysWOW64\BfLLR.dll [174592] (Bigfoot Networks, Inc.)
Winsock: Catalog9 02 C:\Windows\SysWOW64\BfLLR.dll [174592] (Bigfoot Networks, Inc.)
Winsock: Catalog9 03 C:\Windows\SysWOW64\BfLLR.dll [174592] (Bigfoot Networks, Inc.)
Winsock: Catalog9 04 C:\Windows\SysWOW64\BfLLR.dll [174592] (Bigfoot Networks, Inc.)
Winsock: Catalog9 15 C:\Windows\SysWOW64\BfLLR.dll [174592] (Bigfoot Networks, Inc.)
Winsock: Catalog9-x64 01 %SYSTEMROOT%\system32\BfLLR.dll [189952] (Bigfoot Networks, Inc.)
Winsock: Catalog9-x64 02 %SYSTEMROOT%\system32\BfLLR.dll [189952] (Bigfoot Networks, Inc.)
Winsock: Catalog9-x64 03 %SYSTEMROOT%\system32\BfLLR.dll [189952] (Bigfoot Networks, Inc.)
Winsock: Catalog9-x64 04 %SYSTEMROOT%\system32\BfLLR.dll [189952] (Bigfoot Networks, Inc.)
Winsock: Catalog9-x64 15 %SYSTEMROOT%\system32\BfLLR.dll [189952] (Bigfoot Networks, Inc.)
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1
FireFox:
========
FF ProfilePath: C:\Users\Christian Mies\AppData\Roaming\Mozilla\Firefox\Profiles\7p6oe76f.default
FF DefaultSearchEngine: Ask.com
FF SearchEngineOrder.1: Ask.com
FF SelectedSearchEngine: Ask.com
FF NewTab: hxxp://www.dalesearch.com/?babsrc=NT_ss&mntrId=C4B296F65211C7B3&affID=120524&tt=021013_dle&tsp=5023
FF Homepage: hxxp://www.dalesearch.com/?babsrc=HP_ss&mntrId=C4B296F65211C7B3&affID=120524&tt=021013_dle&tsp=5023
FF Homepage: hxxp://www.mystart.com/?pr=vmn&id=toolbarcleaner&v=1_1_1_4&ent=hp_4802
FF DefaultSearchEngine: Yahoo
FF SelectedSearchEngine: Yahoo
FF SearchEngineOrder.1: Yahoo
FF Keyword.URL: hxxp://www.mystart.com/results.php?pr=vmn&id=toolbarcleaner&v=1_1_1_4&ent=bs_4802&q=
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_9_900_117.dll ()
FF Plugin: @java.com/DTPlugin,version=10.13.2 - C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.13.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=2.0.5 - D:\VLC media player\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_117.dll ()
FF Plugin-x32: @esn.me/esnsonar,version=0.70.4 - C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll (ESN Social Software AB)
FF Plugin-x32: @esn/esnlaunch,version=2.1.3 - C:\Program Files (x86)\Battlelog Web Plugins\2.1.3\npesnlaunch.dll No File
FF Plugin-x32: @esn/esnlaunch,version=2.3.0 - C:\Program Files (x86)\Battlelog Web Plugins\2.3.0\npesnlaunch.dll (ESN Social Software AB)
FF Plugin-x32: @java.com/DTPlugin,version=10.45.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.45.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @mcafee.com/McAfeeMssPlugin - C:\Program Files\McAfee Security Scan\3.8.130\npMcAfeeMss.dll (McAfee, Inc.)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll No File
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3555.0308 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll No File
FF Plugin-x32: @nvidia.com/3DVision - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF Plugin-x32: @pandonetworks.com/PandoWebPlugin - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=3 - C:\Users\Christian Mies\AppData\Local\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=9 - C:\Users\Christian Mies\AppData\Local\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: pandonetworks.com/PandoWebPlugin - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF Plugin HKCU: ubisoft.com/uplaypc - C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll ()
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\testlog.txt
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahootc.xml
FF HKLM-x32\...\Firefox\Extensions: [{2D3F3651-74B9-4795-BDEC-6DA2F431CB62}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.2.0.19\coFFPlgn\
FF Extension: Norton Toolbar - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.2.0.19\coFFPlgn\
FF HKLM-x32\...\Firefox\Extensions: [{BBDA0591-3099-440a-AA10-41764D9DB4DB}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.2.0.19\IPSFF
FF Extension: Norton Vulnerability Protection - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.2.0.19\IPSFF
Chrome:
=======
CHR Plugin: (Shockwave Flash) - C:\Users\Christian Mies\AppData\Local\Google\Chrome\Application\30.0.1599.101\PepperFlash\pepflashplayer.dll ()
CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Users\Christian Mies\AppData\Local\Google\Chrome\Application\30.0.1599.101\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Users\Christian Mies\AppData\Local\Google\Chrome\Application\30.0.1599.101\pdf.dll ()
CHR Plugin: (ESN Launch Mozilla Plugin) - C:\Program Files (x86)\Battlelog Web Plugins\2.1.3\npesnlaunch.dll No File
CHR Plugin: (ESN Sonar API) - C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll (ESN Social Software AB)
CHR Plugin: (Java(TM) Platform SE 7 U17) - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
CHR Plugin: (McAfee Security Scanner +) - C:\Program Files (x86)\McAfee Security Scan\3.0.318\npMcAfeeMss.dll No File
CHR Plugin: (Silverlight Plug-In) - C:\Program Files (x86)\Microsoft Silverlight\5.1.20125.0\npctrl.dll No File
CHR Plugin: (NVIDIA 3D Vision) - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
CHR Plugin: (NVIDIA 3D VISION) - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
CHR Plugin: (Pando Web Plugin) - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
CHR Plugin: (Uplay PC) - C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll ()
CHR Plugin: (iTunes Application Detector) - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll No File
CHR Plugin: (Google Update) - C:\Users\Christian Mies\AppData\Local\Google\Update\1.3.21.135\npGoogleUpdate3.dll No File
CHR Plugin: (Java Deployment Toolkit 7.0.170.2) - C:\Windows\SysWOW64\npDeployJava1.dll No File
CHR Extension: (Ask Toolbar) - C:\Users\CHRIST~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaojmikegpiepcfdkkjaplodkpfmlo\7.15.23.55142_0
CHR Extension: (DVDVideoSoftTB DE) - C:\Users\CHRIST~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\bhphemoobgnikcoofkgackkaimpfmenm\2.5.0.1_0
CHR Extension: (YouTube) - C:\Users\CHRIST~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0
CHR Extension: (Wikipedia) - C:\Users\CHRIST~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\jmglbembmoneheojkacdnbempoackhnh\1.0.4_0
CHR Extension: (Skype Click to Call) - C:\Users\CHRIST~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl\6.3.0.11079_0
CHR Extension: (Totoro Rainy Day) - C:\Users\CHRIST~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmiagjknjjfockcklibjlfdojojaffff\1.15_0
CHR Extension: (Norton Identity Protection) - C:\Users\CHRIST~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mkfokfffehpeedafpekjeddnmnjhmcmk\2013.4.3.4_0
CHR Extension: (DvdVideoSoft Free Youtube Download) - C:\Users\CHRIST~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\nikpibnbobmbdbheedjfogjlikpgpnhp\1.0.0.0_0
CHR Extension: (Chrome In-App Payments service) - C:\Users\CHRIST~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.4.11_0
CHR HKLM-x32\...\Chrome\Extension: [mkfokfffehpeedafpekjeddnmnjhmcmk] - C:\Program Files (x86)\Norton Internet Security\Engine\20.4.0.40\Exts\Chrome.crx
CHR StartMenuInternet: Google Chrome - C:\Users\Christian Mies\AppData\Local\Google\Chrome\Application\chrome.exe
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
==================== Services (Whitelisted) =================
R2 70e6ca8c; c:\progra~2\optimi~1\OptProCrash.exe [143488 2013-10-03] ()
R2 Bigfoot Networks Killer Service; C:\Program Files\Bigfoot Networks\Killer Network Manager\BFNService.exe [492032 2012-02-22] ()
S3 COMSysApp; C:\Windows\SysWow64\dllhost.exe [7168 2009-07-14] (Microsoft Corporation)
R2 Guard.Mail.ru; C:\Program Files (x86)\Guard-ICQ\GuardICQ.exe [1564368 2012-08-01] ()
S2 ICQ Service; C:\PROGRA~2\ICQ6TO~1\ICQSER~1.EXE [247872 2012-03-20] ()
S3 McComponentHostService; C:\Program Files\McAfee Security Scan\3.8.130\McCHSvc.exe [288776 2013-09-06] (McAfee, Inc.)
S3 msiserver; C:\Windows\SysWow64\msiexec.exe [73216 2010-11-21] (Microsoft Corporation)
R2 NIS; C:\Program Files (x86)\Norton Internet Security\Engine\20.4.0.40\ccSvcHst.exe [144368 2013-05-21] (Symantec Corporation)
R2 PnkBstrA; C:\Windows\SysWow64\PnkBstrA.exe [76888 2013-10-16] ()
R2 WSearch; C:\Windows\SysWow64\SearchIndexer.exe [427520 2011-05-04] (Microsoft Corporation)
S2 BBSvc; C:\Program Files (x86)\Microsoft\BingBar\7.1.362.0\BBSvc.exe [x]
S3 BBUpdate; C:\Program Files (x86)\Microsoft\BingBar\7.1.362.0\SeaPort.exe [x]
S3 fsssvc; "C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe" [x]
S2 Hamachi2Svc; "D:\7 Days to die\hamachi-2.exe" -s [x]
==================== Drivers (Whitelisted) ====================
S2 atksgt; C:\Windows\System32\DRIVERS\atksgt.sys [303616 2013-03-17] ()
R3 BfEdge7x64; C:\Windows\System32\DRIVERS\Edge7x64.sys [31336 2012-02-22] (Bigfoot Networks, Inc.)
R3 BFN7x64; C:\Windows\system32\drivers\Xeno7x64.sys [157288 2012-02-22] (Bigfoot Networks, Inc.)
R1 BHDrvx64; C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.2.0.19\Definitions\BASHDefs\20131022.001\BHDrvx64.sys [1524824 2013-10-23] (Symantec Corporation)
R1 ccSet_NIS; C:\Windows\system32\drivers\NISx64\1404000.028\ccSetx64.sys [169048 2013-04-16] (Symantec Corporation)
S3 E100B; C:\Windows\System32\DRIVERS\efe5b32e.sys [192256 2009-06-10] (Intel Corporation)
R1 eeCtrl; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [484952 2013-08-27] (Symantec Corporation)
R3 EraserUtilRebootDrv; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [140376 2013-08-27] (Symantec Corporation)
R1 IDSVia64; C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.2.0.19\Definitions\IPSDefs\20131023.001\IDSvia64.sys [521816 2013-10-17] (Symantec Corporation)
S2 lirsgt; C:\Windows\System32\DRIVERS\lirsgt.sys [35328 2013-03-17] ()
R3 NAVENG; C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.2.0.19\Definitions\VirusDefs\20131023.024\ENG64.SYS [126040 2013-09-06] (Symantec Corporation)
R3 NAVEX15; C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.2.0.19\Definitions\VirusDefs\20131023.024\EX64.SYS [2099288 2013-09-06] (Symantec Corporation)
R3 SRTSP; C:\Windows\System32\Drivers\NISx64\1404000.028\SRTSP64.SYS [796760 2013-05-16] (Symantec Corporation)
R1 SRTSPX; C:\Windows\system32\drivers\NISx64\1404000.028\SRTSPX64.SYS [36952 2013-03-05] (Symantec Corporation)
R0 SymDS; C:\Windows\System32\drivers\NISx64\1404000.028\SYMDS64.SYS [493656 2013-05-21] (Symantec Corporation)
R0 SymEFA; C:\Windows\System32\drivers\NISx64\1404000.028\SYMEFA64.SYS [1139800 2013-05-23] (Symantec Corporation)
R3 SymEvent; C:\Windows\system32\Drivers\SYMEVENT64x86.SYS [177312 2013-06-19] (Symantec Corporation)
R1 SymIRON; C:\Windows\system32\drivers\NISx64\1404000.028\Ironx64.SYS [224416 2013-03-05] (Symantec Corporation)
R1 SymNetS; C:\Windows\System32\Drivers\NISx64\1404000.028\SYMNETS.SYS [433752 2013-04-25] (Symantec Corporation)
S3 EagleX64; \??\C:\Windows\system32\drivers\EagleX64.sys [x]
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2013-10-25 15:58 - 2013-10-25 15:58 - 00000000 ____D C:\FRST
2013-10-25 15:57 - 2013-10-25 15:57 - 01955412 _____ (Farbar) C:\Users\Christian Mies\Desktop\FRST64.exe
2013-10-17 23:34 - 2013-10-17 23:34 - 00264616 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2013-10-17 23:34 - 2013-10-17 23:34 - 00175016 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2013-10-17 23:34 - 2013-10-17 23:34 - 00174504 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2013-10-17 23:34 - 2013-10-17 23:34 - 00096168 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2013-10-17 23:34 - 2013-10-17 23:34 - 00000000 ____D C:\ProgramData\Oracle
2013-10-17 23:34 - 2013-10-17 23:34 - 00000000 ____D C:\Program Files (x86)\Java
2013-10-17 23:33 - 2013-10-17 23:33 - 00915368 _____ (Oracle Corporation) C:\Users\Christian Mies\Downloads\chromeinstall-7u45.exe
2013-10-17 23:33 - 2013-10-17 23:33 - 00915368 _____ (Oracle Corporation) C:\Users\Christian Mies\Downloads\chromeinstall-7u45 (1).exe
2013-10-16 19:43 - 2013-10-16 19:43 - 00000677 _____ C:\Users\Public\Desktop\Elsword.lnk
2013-10-16 19:42 - 2013-10-16 19:42 - 01914248 _____ (Gameforge4D ) C:\Users\Christian Mies\Downloads\Elsword_DE_3.0807.8.2.exe
2013-10-16 19:42 - 2013-10-16 19:42 - 00569487 _____ (Gameforge 4D ) C:\Users\Christian Mies\Downloads\Downloader_Elsword_de.exe
2013-10-16 19:40 - 2013-10-16 19:40 - 00400720 _____ (Softonic ) C:\Users\Christian Mies\Downloads\SoftonicDownloader_fuer_elsword (1).exe
2013-10-16 16:23 - 2013-10-18 00:05 - 00290184 _____ C:\Windows\SysWOW64\PnkBstrB.exe
2013-10-16 16:23 - 2013-10-16 16:23 - 00013361 _____ C:\Users\Christian Mies\Desktop\pbgame.htm
2013-10-16 16:19 - 2013-09-04 15:23 - 00823808 _____ C:\Users\Christian Mies\Desktop\pbsetup.exe
2013-10-16 16:18 - 2013-10-16 16:22 - 00718805 _____ C:\Users\Christian Mies\Downloads\pbsetup.zip
2013-10-16 16:17 - 2013-10-16 16:17 - 00840264 _____ C:\Users\Christian Mies\Downloads\pbsvc.exe
2013-10-16 01:22 - 2013-10-16 01:23 - 03820328 _____ C:\Users\Christian Mies\Downloads\battlelog-web-plugins_2.3.0_119.exe
2013-10-16 01:20 - 2013-10-16 14:29 - 00000000 ____D C:\Program Files (x86)\Toolbar Cleaner
2013-10-16 01:20 - 2013-10-16 01:20 - 00001056 _____ C:\Users\Christian Mies\Desktop\Toolbar Cleaner.lnk
2013-10-16 01:20 - 2013-10-16 01:20 - 00000000 ____D C:\Users\Christian Mies\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Toolbar Cleaner
2013-10-16 01:20 - 2013-10-16 01:20 - 00000000 ____D C:\Users\Christian Mies\AppData\Local\toolbarcleaner
2013-10-16 01:20 - 2013-10-16 01:20 - 00000000 ____D C:\ProgramData\Anti-phishing Domain Advisor
2013-10-16 01:18 - 2013-10-16 01:19 - 01214896 _____ (Visicom Media Inc.) C:\Users\Christian Mies\Downloads\toolbarcleaner_setup.exe
2013-10-15 12:37 - 2013-09-04 14:12 - 00343040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
2013-10-15 12:37 - 2013-09-04 14:11 - 00325120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys
2013-10-15 12:37 - 2013-09-04 14:11 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys
2013-10-15 12:37 - 2013-09-04 14:11 - 00052736 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys
2013-10-15 12:37 - 2013-09-04 14:11 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys
2013-10-15 12:37 - 2013-09-04 14:11 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys
2013-10-15 12:37 - 2013-09-04 14:11 - 00007808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys
2013-10-14 11:29 - 2013-10-14 12:07 - 00000000 ____D C:\Users\Christian Mies\Desktop\Nancy
2013-10-11 21:45 - 2013-10-11 21:46 - 01608659 _____ C:\Users\Christian Mies\Downloads\Mi muchacho Diomedes Diaz. (AUDIO).3gp
2013-10-11 21:36 - 2013-10-11 21:36 - 00001937 _____ C:\Users\Public\Desktop\McAfee Security Scan Plus.lnk
2013-10-11 21:36 - 2013-10-11 21:36 - 00000000 ____D C:\Program Files\McAfee Security Scan
2013-10-11 16:34 - 2013-10-11 16:34 - 00000000 ___RD C:\Users\Christian Mies\Podcasts
2013-10-11 15:52 - 2013-10-11 16:31 - 105664248 _____ (Microsoft Corporation) C:\Users\Christian Mies\Downloads\ZuneSetup48Pkg.exe
2013-10-11 00:38 - 2013-09-23 01:28 - 01767936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-10-11 00:38 - 2013-09-23 01:28 - 01141248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-10-11 00:38 - 2013-09-23 01:27 - 14335488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-10-11 00:38 - 2013-09-23 01:27 - 13761024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-10-11 00:38 - 2013-09-23 01:27 - 02876928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-10-11 00:38 - 2013-09-23 01:27 - 02048512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-10-11 00:38 - 2013-09-23 01:27 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-10-11 00:38 - 2013-09-23 01:27 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-10-11 00:38 - 2013-09-23 01:27 - 00391168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-10-11 00:38 - 2013-09-23 01:27 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-10-11 00:38 - 2013-09-23 01:27 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-10-11 00:38 - 2013-09-23 01:27 - 00039424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-10-11 00:38 - 2013-09-23 01:27 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-10-11 00:38 - 2013-09-23 00:55 - 02241024 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-10-11 00:38 - 2013-09-23 00:55 - 01365504 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-10-11 00:38 - 2013-09-23 00:55 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-10-11 00:38 - 2013-09-23 00:54 - 19252224 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-10-11 00:38 - 2013-09-23 00:54 - 15404544 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-10-11 00:38 - 2013-09-23 00:54 - 03959296 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-10-11 00:38 - 2013-09-23 00:54 - 02647552 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-10-11 00:38 - 2013-09-23 00:54 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-10-11 00:38 - 2013-09-23 00:54 - 00603136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-10-11 00:38 - 2013-09-23 00:54 - 00526336 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-10-11 00:38 - 2013-09-23 00:54 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-10-11 00:38 - 2013-09-23 00:54 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-10-11 00:38 - 2013-09-23 00:54 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-10-11 00:38 - 2013-09-23 00:54 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-10-11 00:38 - 2013-09-21 05:38 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-10-11 00:38 - 2013-09-21 05:30 - 02706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-10-11 00:38 - 2013-09-21 04:48 - 00089600 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-10-11 00:38 - 2013-09-21 04:39 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2013-10-10 13:06 - 2013-07-04 14:50 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\comctl32.dll
2013-10-10 13:06 - 2013-07-04 13:50 - 00530432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comctl32.dll
2013-10-10 13:06 - 2013-06-06 07:50 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
2013-10-10 13:06 - 2013-06-06 07:49 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2013-10-10 13:06 - 2013-06-06 07:49 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
2013-10-10 13:06 - 2013-06-06 07:47 - 00046080 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2013-10-10 13:06 - 2013-06-06 06:57 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lpk.dll
2013-10-10 13:06 - 2013-06-06 06:51 - 00070656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll
2013-10-10 13:06 - 2013-06-06 06:50 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dciman32.dll
2013-10-10 13:06 - 2013-06-06 05:30 - 00368128 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2013-10-10 13:06 - 2013-06-06 05:01 - 00295424 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2013-10-10 13:06 - 2013-06-06 05:01 - 00034304 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2013-10-10 12:57 - 2013-09-14 03:10 - 00497152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2013-10-10 12:57 - 2013-09-08 04:30 - 01903552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2013-10-10 12:57 - 2013-09-08 04:27 - 00327168 _____ (Microsoft Corporation) C:\Windows\system32\mswsock.dll
2013-10-10 12:57 - 2013-09-08 04:03 - 00231424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mswsock.dll
2013-10-10 12:57 - 2013-08-29 04:17 - 05549504 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2013-10-10 12:57 - 2013-08-29 04:16 - 01732032 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2013-10-10 12:57 - 2013-08-29 04:16 - 00859648 _____ (Microsoft Corporation) C:\Windows\system32\tdh.dll
2013-10-10 12:57 - 2013-08-29 04:16 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2013-10-10 12:57 - 2013-08-29 04:13 - 00878080 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2013-10-10 12:57 - 2013-08-29 03:51 - 03969472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2013-10-10 12:57 - 2013-08-29 03:51 - 03914176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2013-10-10 12:57 - 2013-08-29 03:50 - 01292192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2013-10-10 12:57 - 2013-08-29 03:50 - 00619520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdh.dll
2013-10-10 12:57 - 2013-08-29 03:50 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2013-10-10 12:57 - 2013-08-29 03:48 - 00640512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
2013-10-10 12:57 - 2013-08-29 02:49 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2013-10-10 12:57 - 2013-08-29 02:49 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2013-10-10 12:57 - 2013-08-29 02:49 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2013-10-10 12:57 - 2013-08-29 02:49 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2013-10-10 12:57 - 2013-08-28 03:21 - 03155968 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2013-10-10 12:57 - 2013-07-12 12:41 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbcir.sys
2013-10-10 12:57 - 2013-07-12 12:40 - 00109824 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBAUDIO.sys
2013-10-10 12:57 - 2013-07-04 14:57 - 00259584 _____ (Microsoft Corporation) C:\Windows\system32\WebClnt.dll
2013-10-10 12:57 - 2013-07-04 14:50 - 00102400 _____ (Microsoft Corporation) C:\Windows\system32\davclnt.dll
2013-10-10 12:57 - 2013-07-04 13:57 - 00205824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WebClnt.dll
2013-10-10 12:57 - 2013-07-04 13:51 - 00081920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\davclnt.dll
2013-10-10 12:57 - 2013-07-04 12:11 - 00140800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys
2013-10-10 12:57 - 2013-07-03 06:05 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidclass.sys
2013-10-10 12:57 - 2013-07-03 06:05 - 00032896 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidparse.sys
2013-10-10 12:57 - 2013-06-26 00:55 - 00785624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Wdf01000.sys
2013-10-10 12:56 - 2013-08-28 03:12 - 00461312 _____ (Microsoft Corporation) C:\Windows\system32\scavengeui.dll
2013-10-10 12:56 - 2013-08-01 14:09 - 00983488 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2013-10-10 12:56 - 2013-07-20 12:33 - 00124112 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2013-10-10 12:56 - 2013-07-20 12:33 - 00102608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2013-10-08 20:30 - 2009-03-18 18:35 - 00033856 ____H (LogMeIn, Inc.) C:\Windows\system32\hamachi.sys
2013-10-08 20:29 - 2013-10-08 20:29 - 05849088 _____ C:\Users\Christian Mies\Downloads\hamachi22 (1).msi
2013-10-08 20:28 - 2013-10-08 20:36 - 00000000 ____D C:\Users\Christian Mies\AppData\Local\LogMeIn Hamachi
2013-10-08 20:28 - 2013-10-08 20:28 - 00000000 ____D C:\Users\Christian Mies\AppData\Local\LogMeIn
2013-10-08 20:28 - 2013-10-08 20:28 - 00000000 ____D C:\ProgramData\LogMeIn
2013-10-08 20:26 - 2013-10-08 20:27 - 05849088 _____ C:\Users\Christian Mies\Downloads\hamachi22.msi
2013-10-08 17:46 - 2013-10-08 17:46 - 00000733 _____ C:\Users\Public\Desktop\7 Days to Die - Alpha.lnk
2013-10-08 17:46 - 2013-10-08 17:46 - 00000000 ___HD C:\Windows\PIF
2013-10-07 20:23 - 2013-10-07 20:27 - 00000000 ____D C:\Users\Christian Mies\AppData\Roaming\.minecraft
2013-10-07 20:23 - 2013-10-07 20:23 - 00353280 _____ C:\Users\Christian Mies\Desktop\Minecraft.exe
2013-10-07 20:23 - 2013-10-07 20:23 - 00000000 ____D C:\Users\Christian Mies\Desktop\Minecraft 1.6.1 Cracked
2013-10-07 20:20 - 2013-10-07 20:21 - 54928642 _____ C:\Users\Christian Mies\Downloads\Minecraft1.6.1-Wazez.zip
2013-10-03 13:06 - 2013-10-03 13:06 - 00000000 ____D C:\Users\Christian Mies\AppData\Local\NPE
2013-10-03 12:12 - 2013-10-03 12:12 - 00003118 _____ C:\Windows\System32\Tasks\{64B526F7-884E-4A71-8431-E63CF524876A}
2013-10-03 00:59 - 2013-10-03 12:14 - 00000000 ____D C:\Program Files (x86)\MyPC Backup
2013-10-03 00:58 - 2013-10-03 00:58 - 00000000 ____D C:\Users\Christian Mies\Documents\Optimizer Pro
2013-10-03 00:58 - 2013-10-03 00:58 - 00000000 ____D C:\Users\Christian Mies\AppData\Roaming\Optimizer Pro
2013-10-03 00:58 - 2013-10-03 00:58 - 00000000 ____D C:\Program Files (x86)\VideoPlayer
2013-10-03 00:57 - 2013-10-03 00:57 - 00000000 ____D C:\Users\Christian Mies\AppData\Local\Babylon
2013-10-03 00:57 - 2013-10-03 00:57 - 00000000 ____D C:\Program Files (x86)\Optimizer Pro
2013-10-03 00:56 - 2013-10-03 00:56 - 00178720 _____ C:\Users\Christian Mies\Downloads\Setup.exe
2013-10-01 19:39 - 2013-10-01 19:39 - 00001985 _____ C:\Users\Public\Desktop\Adobe Reader XI.lnk
2013-10-01 19:25 - 2013-10-01 19:25 - 01071568 _____ (Solid State Networks) C:\Users\Christian Mies\Downloads\install_reader11_de_ltr5x64d_awc_aih.exe
2013-10-01 18:32 - 2013-07-08 13:21 - 00003656 _____ C:\Users\Christian Mies\Desktop\index.html
2013-10-01 18:20 - 2013-10-01 18:29 - 291160385 _____ C:\Users\Christian Mies\Downloads\ITE.zip
==================== One Month Modified Files and Folders =======
2013-10-25 15:59 - 2013-02-17 13:29 - 00000000 ____D C:\Users\Christian Mies\AppData\Local\PMB Files
2013-10-25 15:59 - 2012-08-04 03:16 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-10-25 15:58 - 2013-10-25 15:58 - 00000000 ____D C:\FRST
2013-10-25 15:58 - 2009-07-14 06:45 - 00020288 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-10-25 15:58 - 2009-07-14 06:45 - 00020288 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-10-25 15:57 - 2013-10-25 15:57 - 01955412 _____ (Farbar) C:\Users\Christian Mies\Desktop\FRST64.exe
2013-10-25 15:56 - 2012-07-20 19:10 - 01300393 _____ C:\Windows\WindowsUpdate.log
2013-10-25 15:56 - 2011-04-12 09:43 - 00696620 _____ C:\Windows\system32\perfh007.dat
2013-10-25 15:56 - 2011-04-12 09:43 - 00147916 _____ C:\Windows\system32\perfc007.dat
2013-10-25 15:56 - 2009-07-14 07:13 - 01612484 _____ C:\Windows\system32\PerfStringBackup.INI
2013-10-25 15:54 - 2012-07-31 14:13 - 00001156 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2415147590-3532157430-3241875667-1001UA.job
2013-10-25 15:51 - 2012-07-18 09:42 - 00000000 ____D C:\ProgramData\Bigfoot Networks
2013-10-25 15:50 - 2013-06-04 14:17 - 00000000 ____D C:\Users\Christian Mies\AppData\Roaming\Spotify
2013-10-25 15:50 - 2012-08-03 01:00 - 00000000 _____ C:\Windows\system32\Drivers\lvuvc.hs
2013-10-25 15:50 - 2012-07-18 09:37 - 00000000 ____D C:\ProgramData\NVIDIA
2013-10-25 15:50 - 2009-07-14 07:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-10-25 15:50 - 2009-07-14 06:51 - 00113376 _____ C:\Windows\setupact.log
2013-10-24 23:14 - 2012-07-31 14:48 - 00000000 ____D C:\Users\Christian Mies\AppData\Roaming\Skype
2013-10-24 22:54 - 2012-07-31 14:13 - 00001104 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2415147590-3532157430-3241875667-1001Core.job
2013-10-22 19:20 - 2013-06-04 14:19 - 00000000 ____D C:\Users\Christian Mies\AppData\Local\Spotify
2013-10-20 14:00 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\system32\NDF
2013-10-18 00:05 - 2013-10-16 16:23 - 00290184 _____ C:\Windows\SysWOW64\PnkBstrB.exe
2013-10-18 00:05 - 2012-12-19 02:05 - 00290184 _____ C:\Windows\SysWOW64\PnkBstrB.xtr
2013-10-17 23:34 - 2013-10-17 23:34 - 00264616 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2013-10-17 23:34 - 2013-10-17 23:34 - 00175016 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2013-10-17 23:34 - 2013-10-17 23:34 - 00174504 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2013-10-17 23:34 - 2013-10-17 23:34 - 00096168 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2013-10-17 23:34 - 2013-10-17 23:34 - 00000000 ____D C:\ProgramData\Oracle
2013-10-17 23:34 - 2013-10-17 23:34 - 00000000 ____D C:\Program Files (x86)\Java
2013-10-17 23:33 - 2013-10-17 23:33 - 00915368 _____ (Oracle Corporation) C:\Users\Christian Mies\Downloads\chromeinstall-7u45.exe
2013-10-17 23:33 - 2013-10-17 23:33 - 00915368 _____ (Oracle Corporation) C:\Users\Christian Mies\Downloads\chromeinstall-7u45 (1).exe
2013-10-17 19:42 - 2010-11-21 05:47 - 00049498 _____ C:\Windows\PFRO.log
2013-10-17 18:52 - 2012-12-18 20:46 - 00290184 _____ C:\Windows\SysWOW64\PnkBstrB.ex0
2013-10-17 00:03 - 2013-03-03 15:18 - 00000000 ____D C:\Users\Christian Mies\Desktop\Bilder
2013-10-16 19:43 - 2013-10-16 19:43 - 00000677 _____ C:\Users\Public\Desktop\Elsword.lnk
2013-10-16 19:42 - 2013-10-16 19:42 - 01914248 _____ (Gameforge4D ) C:\Users\Christian Mies\Downloads\Elsword_DE_3.0807.8.2.exe
2013-10-16 19:42 - 2013-10-16 19:42 - 00569487 _____ (Gameforge 4D ) C:\Users\Christian Mies\Downloads\Downloader_Elsword_de.exe
2013-10-16 19:40 - 2013-10-16 19:40 - 00400720 _____ (Softonic ) C:\Users\Christian Mies\Downloads\SoftonicDownloader_fuer_elsword (1).exe
2013-10-16 16:23 - 2013-10-16 16:23 - 00013361 _____ C:\Users\Christian Mies\Desktop\pbgame.htm
2013-10-16 16:23 - 2012-12-18 20:46 - 00076888 _____ C:\Windows\SysWOW64\PnkBstrA.exe
2013-10-16 16:22 - 2013-10-16 16:18 - 00718805 _____ C:\Users\Christian Mies\Downloads\pbsetup.zip
2013-10-16 16:17 - 2013-10-16 16:17 - 00840264 _____ C:\Users\Christian Mies\Downloads\pbsvc.exe
2013-10-16 14:29 - 2013-10-16 01:20 - 00000000 ____D C:\Program Files (x86)\Toolbar Cleaner
2013-10-16 12:21 - 2013-01-23 23:09 - 00000000 ____D C:\Program Files (x86)\Battlelog Web Plugins
2013-10-16 12:21 - 2009-07-14 07:08 - 00032640 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2013-10-16 01:23 - 2013-10-16 01:22 - 03820328 _____ C:\Users\Christian Mies\Downloads\battlelog-web-plugins_2.3.0_119.exe
2013-10-16 01:20 - 2013-10-16 01:20 - 00001056 _____ C:\Users\Christian Mies\Desktop\Toolbar Cleaner.lnk
2013-10-16 01:20 - 2013-10-16 01:20 - 00000000 ____D C:\Users\Christian Mies\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Toolbar Cleaner
2013-10-16 01:20 - 2013-10-16 01:20 - 00000000 ____D C:\Users\Christian Mies\AppData\Local\toolbarcleaner
2013-10-16 01:20 - 2013-10-16 01:20 - 00000000 ____D C:\ProgramData\Anti-phishing Domain Advisor
2013-10-16 01:19 - 2013-10-16 01:18 - 01214896 _____ (Visicom Media Inc.) C:\Users\Christian Mies\Downloads\toolbarcleaner_setup.exe
2013-10-16 01:05 - 2013-01-23 15:05 - 00000000 ____D C:\Users\Christian Mies\AppData\Local\Origin
2013-10-16 01:05 - 2013-01-23 14:25 - 00000000 ____D C:\Users\Christian Mies\AppData\Roaming\Origin
2013-10-16 01:05 - 2013-01-23 14:25 - 00000000 ____D C:\ProgramData\Origin
2013-10-14 12:07 - 2013-10-14 11:29 - 00000000 ____D C:\Users\Christian Mies\Desktop\Nancy
2013-10-13 22:49 - 2012-07-31 14:13 - 00004144 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2415147590-3532157430-3241875667-1001UA
2013-10-13 22:49 - 2012-07-31 14:13 - 00003748 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2415147590-3532157430-3241875667-1001Core
2013-10-11 21:46 - 2013-10-11 21:45 - 01608659 _____ C:\Users\Christian Mies\Downloads\Mi muchacho Diomedes Diaz. (AUDIO).3gp
2013-10-11 21:36 - 2013-10-11 21:36 - 00001937 _____ C:\Users\Public\Desktop\McAfee Security Scan Plus.lnk
2013-10-11 21:36 - 2013-10-11 21:36 - 00000000 ____D C:\Program Files\McAfee Security Scan
2013-10-11 19:52 - 2013-09-14 12:52 - 00000000 ____D C:\Windows\rescache
2013-10-11 16:34 - 2013-10-11 16:34 - 00000000 ___RD C:\Users\Christian Mies\Podcasts
2013-10-11 16:34 - 2012-07-20 19:13 - 00000000 ____D C:\Users\Christian Mies
2013-10-11 16:31 - 2013-10-11 15:52 - 105664248 _____ (Microsoft Corporation) C:\Users\Christian Mies\Downloads\ZuneSetup48Pkg.exe
2013-10-11 11:04 - 2009-07-14 06:45 - 00277672 _____ C:\Windows\system32\FNTCACHE.DAT
2013-10-11 00:38 - 2013-03-14 23:24 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2013-10-11 00:38 - 2012-07-20 19:12 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight
2013-10-11 00:37 - 2012-03-16 15:09 - 01589442 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2013-10-11 00:36 - 2013-07-19 00:29 - 00000000 ____D C:\Windows\system32\MRT
2013-10-11 00:35 - 2013-05-03 21:44 - 80541720 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2013-10-09 19:05 - 2012-08-04 13:59 - 17813896 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerInstaller.exe
2013-10-09 19:05 - 2012-08-04 03:16 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2013-10-09 19:05 - 2012-08-04 03:16 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2013-10-09 19:05 - 2012-08-04 03:16 - 00003822 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2013-10-09 11:43 - 2012-07-31 14:48 - 00000000 ____D C:\ProgramData\Skype
2013-10-08 20:36 - 2013-10-08 20:28 - 00000000 ____D C:\Users\Christian Mies\AppData\Local\LogMeIn Hamachi
2013-10-08 20:29 - 2013-10-08 20:29 - 05849088 _____ C:\Users\Christian Mies\Downloads\hamachi22 (1).msi
2013-10-08 20:28 - 2013-10-08 20:28 - 00000000 ____D C:\Users\Christian Mies\AppData\Local\LogMeIn
2013-10-08 20:28 - 2013-10-08 20:28 - 00000000 ____D C:\ProgramData\LogMeIn
2013-10-08 20:27 - 2013-10-08 20:26 - 05849088 _____ C:\Users\Christian Mies\Downloads\hamachi22.msi
2013-10-08 17:46 - 2013-10-08 17:46 - 00000733 _____ C:\Users\Public\Desktop\7 Days to Die - Alpha.lnk
2013-10-08 17:46 - 2013-10-08 17:46 - 00000000 ___HD C:\Windows\PIF
2013-10-07 20:27 - 2013-10-07 20:23 - 00000000 ____D C:\Users\Christian Mies\AppData\Roaming\.minecraft
2013-10-07 20:23 - 2013-10-07 20:23 - 00353280 _____ C:\Users\Christian Mies\Desktop\Minecraft.exe
2013-10-07 20:23 - 2013-10-07 20:23 - 00000000 ____D C:\Users\Christian Mies\Desktop\Minecraft 1.6.1 Cracked
2013-10-07 20:21 - 2013-10-07 20:20 - 54928642 _____ C:\Users\Christian Mies\Downloads\Minecraft1.6.1-Wazez.zip
2013-10-03 13:06 - 2013-10-03 13:06 - 00000000 ____D C:\Users\Christian Mies\AppData\Local\NPE
2013-10-03 13:06 - 2013-02-14 20:57 - 00000000 ____D C:\ProgramData\Norton
2013-10-03 12:14 - 2013-10-03 00:59 - 00000000 ____D C:\Program Files (x86)\MyPC Backup
2013-10-03 12:14 - 2012-07-20 19:13 - 00000000 ___RD C:\Users\Christian Mies\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2013-10-03 12:12 - 2013-10-03 12:12 - 00003118 _____ C:\Windows\System32\Tasks\{64B526F7-884E-4A71-8431-E63CF524876A}
2013-10-03 00:58 - 2013-10-03 00:58 - 00000000 ____D C:\Users\Christian Mies\Documents\Optimizer Pro
2013-10-03 00:58 - 2013-10-03 00:58 - 00000000 ____D C:\Users\Christian Mies\AppData\Roaming\Optimizer Pro
2013-10-03 00:58 - 2013-10-03 00:58 - 00000000 ____D C:\Program Files (x86)\VideoPlayer
2013-10-03 00:58 - 2011-06-11 02:58 - 00773712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcr100.dll
2013-10-03 00:58 - 2011-06-11 02:58 - 00420944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcp100.dll
2013-10-03 00:57 - 2013-10-03 00:57 - 00000000 ____D C:\Users\Christian Mies\AppData\Local\Babylon
2013-10-03 00:57 - 2013-10-03 00:57 - 00000000 ____D C:\Program Files (x86)\Optimizer Pro
2013-10-03 00:56 - 2013-10-03 00:56 - 00178720 _____ C:\Users\Christian Mies\Downloads\Setup.exe
2013-10-01 19:48 - 2012-11-04 17:38 - 00000000 ____D C:\ProgramData\Adobe
2013-10-01 19:46 - 2012-11-04 17:38 - 00000000 ____D C:\Users\Christian Mies\AppData\Local\Adobe
2013-10-01 19:46 - 2012-07-31 14:27 - 00000000 ____D C:\Users\Christian Mies\AppData\Roaming\Adobe
2013-10-01 19:39 - 2013-10-01 19:39 - 00001985 _____ C:\Users\Public\Desktop\Adobe Reader XI.lnk
2013-10-01 19:39 - 2012-11-04 17:38 - 00000000 ____D C:\Program Files (x86)\Adobe
2013-10-01 19:25 - 2013-10-01 19:25 - 01071568 _____ (Solid State Networks) C:\Users\Christian Mies\Downloads\install_reader11_de_ltr5x64d_awc_aih.exe
2013-10-01 18:29 - 2013-10-01 18:20 - 291160385 _____ C:\Users\Christian Mies\Downloads\ITE.zip
2013-09-27 20:31 - 2013-03-21 11:05 - 00014833 _____ C:\Users\Christian Mies\Documents\TombRaider.log
Files to move or delete:
====================
C:\Users\Christian Mies\jagex_cl_runescape_LIVE.dat
C:\Users\Christian Mies\random.dat
Some content of TEMP:
====================
C:\Users\Christian Mies\AppData\Local\Temp\APNStub.exe
C:\Users\Christian Mies\AppData\Local\Temp\BackupSetup.exe
C:\Users\Christian Mies\AppData\Local\Temp\bdfilters.dll
C:\Users\Christian Mies\AppData\Local\Temp\install_flashplayer11x32_mssa_aaa_aih.exe
C:\Users\Christian Mies\AppData\Local\Temp\install_reader11_de_ltr5x64d_awc_aih.exe
C:\Users\Christian Mies\AppData\Local\Temp\jre-7u17-windows-i586-iftw.exe
C:\Users\Christian Mies\AppData\Local\Temp\jre-7u21-windows-i586-iftw.exe
C:\Users\Christian Mies\AppData\Local\Temp\jre-7u25-windows-i586-iftw.exe
C:\Users\Christian Mies\AppData\Local\Temp\nvSCPAPI.dll
C:\Users\Christian Mies\AppData\Local\Temp\nvStInst.exe
C:\Users\Christian Mies\AppData\Local\Temp\Setup.exe
C:\Users\Christian Mies\AppData\Local\Temp\SkypeSetup.exe
C:\Users\Christian Mies\AppData\Local\Temp\sonarinst.exe
C:\Users\Christian Mies\AppData\Local\Temp\SpotifyUninstall.exe
C:\Users\Christian Mies\AppData\Local\Temp\swt-win32-3349.dll
C:\Users\Christian Mies\AppData\Local\Temp\ubi4668.tmp.exe
C:\Users\Christian Mies\AppData\Local\Temp\{C44608A3-D177-44D0-AF32-A723D97795C8}-23.0.1271.91_chrome_installer.exe
==================== Bamital & volsnap Check =================
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
LastRegBack: 2013-10-21 16:48
==================== End Of Log ============================
Die FRST.txt Daten Entschuldigung hab vergessen die Addition Daten einzufügen. Hier. Code:
ATTFilter Additional scan result of Farbar Recovery Scan Tool (x64) Version: 24-10-2013
Ran by Christian Mies at 2013-10-25 15:59:23
Running from C:\Users\Christian Mies\Desktop
Boot Mode: Normal
==========================================================
==================== Security Center ========================
AV: Norton Internet Security (Enabled - Up to date) {63DF5164-9100-186D-2187-8DC619EFD8BF}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Norton Internet Security (Enabled - Up to date) {D8BEB080-B73A-17E3-1B37-B6B462689202}
FW: Norton Internet Security (Enabled) {5BE4D041-DB6F-1935-0AD8-24F3E73C9FC4}
==================== Installed Programs ======================
7 Days to Die - Alpha version 1.1 (x32 Version: 1.1)
Adobe Flash Player 11 ActiveX (x32 Version: 11.9.900.117)
Adobe Flash Player 11 Plugin (x32 Version: 11.9.900.117)
Adobe Reader XI (11.0.05) - Deutsch (x32 Version: 11.0.05)
Alan Wake (x32)
Anti-phishing Domain Advisor (x32 Version: 1.0.1.106)
Ask Toolbar (x32 Version: 1.15.23.0)
Ask Toolbar Updater (HKCU Version: 1.2.5.36191)
Assassin's Creed(R) III v1.03 (x32 Version: 1.03)
Battlefield 3™ (x32 Version: 1.0.0.0)
Battlelog Web Plugins (x32 Version: 2.3.0)
BattlEye Uninstall (x32)
Bigfoot Networks Killer Network Manager (Version: 6.1.0.310)
Bigfoot Networks Killer Network Manager (x32 Version: 6.1.0.310)
Bing Bar (x32 Version: 7.1.362.0)
BioShock Infinite (x32)
Bonjour (Version: 3.0.0.10)
Call of Duty: Black Ops II - Multiplayer (x32)
Call of Duty: Black Ops II - Zombies (x32)
Call of Duty: Black Ops II (x32)
Counter-Strike: Global Offensive (x32)
Crysis®3 (x32 Version: 1.0.0.0)
D3DX10 (x32 Version: 15.4.2368.0902)
Dota 2 (x32)
DVDVideoSoftTB DE Toolbar (x32 Version: 6.9.0.16)
Elsword_DE (x32)
ESN Sonar (x32 Version: 0.70.4)
Fallout: New Vegas (x32)
Far Cry 3 (x32 Version: 1.05)
Free YouTube to MP3 Converter version 3.11.29.824 (x32 Version: 3.11.29.824)
Google Chrome (HKCU Version: 30.0.1599.101)
Grand Theft Auto San Andreas (x32 Version: 1.00.00001)
Guard.ICQ (x32)
Guitar Pro 5.2 (x32)
Hitman: Absolution (x32)
ICQ Toolbar (x32 Version: 3.0.0)
Intel(R) Control Center (x32 Version: 1.2.1.1007)
Intel(R) Rapid Storage Technology (x32 Version: 11.1.0.1006)
Java 7 Update 13 (64-bit) (Version: 7.0.130)
Java 7 Update 45 (x32 Version: 7.0.450)
Java Auto Updater (x32 Version: 2.1.9.8)
JavaFX 2.1.1 (x32 Version: 2.1.1)
Junk Mail filter update (x32 Version: 15.4.3502.0922)
LogMeIn Hamachi (x32 Version: 2.2.0.58)
McAfee Security Scan Plus (Version: 3.8.130.8)
Mesh Runtime (x32 Version: 15.4.5722.2)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft .NET Framework 4 Client Profile DEU Language Pack (Version: 4.0.30319)
Microsoft .NET Framework 4 Extended (Version: 4.0.30319)
Microsoft .NET Framework 4 Extended DEU Language Pack (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Office 2010 (x32 Version: 14.0.4763.1000)
Microsoft Silverlight (Version: 5.1.20913.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (x32 Version: 3.1.0000)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.61001)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (x32 Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (x32 Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (x32 Version: 9.0.30729.6161)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (x32 Version: 10.0.40219)
Microsoft Xbox 360 Accessories 1.2 (Version: 1.20.146.0)
Microsoft XNA Framework Redistributable 4.0 (x32 Version: 4.0.20823.0)
Minecraft1.4.7 (x32)
Mozilla Firefox 22.0 (x86 de) (x32 Version: 22.0)
Mozilla Maintenance Service (x32 Version: 22.0)
MSVCRT (x32 Version: 15.4.2862.0708)
MSVCRT_amd64 (x32 Version: 15.4.2862.0708)
Norton Internet Security (x32 Version: 20.4.0.40)
NVIDIA 3D Vision Controller-Treiber 320.49 (Version: 320.49)
NVIDIA 3D Vision Treiber 320.49 (Version: 320.49)
NVIDIA GeForce Experience 1.5.1 (Version: 1.5.1)
NVIDIA Grafiktreiber 320.49 (Version: 320.49)
NVIDIA HD-Audiotreiber 1.3.24.2 (Version: 1.3.24.2)
NVIDIA Install Application (Version: 2.1002.125.816)
NVIDIA PhysX (x32 Version: 9.13.0604)
NVIDIA PhysX-Systemsoftware 9.13.0604 (Version: 9.13.0604)
NVIDIA Stereoscopic 3D Driver (x32 Version: 7.17.13.2049)
NVIDIA Systemsteuerung 320.49 (Version: 320.49)
NVIDIA Update 6.4.23 (Version: 6.4.23)
NVIDIA Update Components (Version: 6.4.23)
Oblivion (x32 Version: 1.2.0416)
Optimizer Pro v3.2 (x32)
Origin (x32 Version: 8.5.0.4518)
Pando Media Booster (x32 Version: 2.6.0.8)
PunkBuster Services (x32 Version: 0.993)
Realtek High Definition Audio Driver (x32 Version: 6.0.1.6602)
Resident Evil Revelations / Biohazard Revelations UE (x32)
ROCCAT Isku Keyboard Driver (x32)
Skype Click to Call (x32 Version: 6.3.11079)
Skype™ 6.7 (x32 Version: 6.7.102)
Sleeping Dogs™ (x32)
Spotify (HKCU Version: 0.9.4.185.g7545a404)
Steam (x32 Version: 1.0.0.0)
Team Fortress 2 (x32)
TeamSpeak 3 Client (Version: 3.0.10)
TeamViewer 8 (x32 Version: 8.0.16642)
The Elder Scrolls V: Skyrim (x32)
The War Z version 1.0 (x32 Version: 1.0)
Tomb Raider (x32)
Toolbar Cleaner (x32)
TP-LINK Wireless Client Utility (x32 Version: 7.0)
Two Worlds II (x32 Version: 1.3.2.0)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939v3) (x32 Version: 3)
Update for Microsoft .NET Framework 4 Extended (KB2468871) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2533523) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2600217) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2836939) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2836939v3) (x32 Version: 3)
Uplay (x32 Version: 2.0)
VideoPlayer v2.0.6 (x32 Version: v2.0.6)
VLC media player 2.0.5 (Version: 2.0.5)
Windows Live Communications Platform (x32 Version: 15.4.3502.0922)
Windows Live Essentials (x32 Version: 15.4.3502.0922)
Windows Live Essentials (x32 Version: 15.4.3555.0308)
Windows Live Family Safety (Version: 15.4.3555.0308)
Windows Live Fotogalerie (x32 Version: 15.4.3502.0922)
Windows Live ID Sign-in Assistant (Version: 7.250.4232.0)
Windows Live Installer (x32 Version: 15.4.3502.0922)
Windows Live Language Selector (Version: 15.4.3555.0308)
Windows Live Mail (x32 Version: 15.4.3502.0922)
Windows Live Mesh (x32 Version: 15.4.3502.0922)
Windows Live Mesh ActiveX control for remote connections (x32 Version: 15.4.5722.2)
Windows Live Messenger (x32 Version: 15.4.3538.0513)
Windows Live MIME IFilter (Version: 15.4.3502.0922)
Windows Live Movie Maker (x32 Version: 15.4.3502.0922)
Windows Live Photo Common (x32 Version: 15.4.3502.0922)
Windows Live Photo Gallery (x32 Version: 15.4.3502.0922)
Windows Live PIMT Platform (x32 Version: 15.4.3508.1109)
Windows Live Remote Client (Version: 15.4.5722.2)
Windows Live Remote Client Resources (Version: 15.4.5722.2)
Windows Live Remote Service (Version: 15.4.5722.2)
Windows Live Remote Service Resources (Version: 15.4.5722.2)
Windows Live SOXE (x32 Version: 15.4.3502.0922)
Windows Live SOXE Definitions (x32 Version: 15.4.3502.0922)
Windows Live UX Platform (x32 Version: 15.4.3502.0922)
Windows Live UX Platform Language Pack (x32 Version: 15.4.3508.1109)
Windows Live Writer (x32 Version: 15.4.3502.0922)
Windows Live Writer Resources (x32 Version: 15.4.3502.0922)
WinRAR 4.20 (64-Bit) (Version: 4.20.0)
==================== Restore Points =========================
==================== Hosts content: ==========================
2009-07-14 04:34 - 2009-06-10 23:00 - 00000824 ____N C:\Windows\system32\Drivers\etc\hosts
==================== Scheduled Tasks (whitelisted) =============
Task: {03B4EBBB-E200-4D73-A445-17F00B8F5D65} - System32\Tasks\Desk 365 RunAsStdUser => C:\Program Files (x86)\Desk 365\desk365.exe
Task: {1C64A5A8-FBC1-4646-ABEB-A92B5E9D5413} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-10-09] (Adobe Systems Incorporated)
Task: {4CFB7FDE-6618-40DE-9DBF-58A777184F63} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2415147590-3532157430-3241875667-1001Core => C:\Users\Christian Mies\AppData\Local\Google\Update\GoogleUpdate.exe [2012-07-31] (Google Inc.)
Task: {717BFFF9-C44D-4310-8F21-6E3526816C15} - System32\Tasks\{70A0C755-7FBF-4B17-A887-02ADB59B4D72} => D:\Anno 1701\Anno1701.exe
Task: {7E66175E-14DE-4C5A-AC31-46A69504885C} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2415147590-3532157430-3241875667-1001UA => C:\Users\Christian Mies\AppData\Local\Google\Update\GoogleUpdate.exe [2012-07-31] (Google Inc.)
Task: {8F539CBD-3B39-4A59-9291-958A421981F2} - System32\Tasks\Norton Internet Security\Norton Error Processor => C:\Program Files (x86)\Norton Internet Security\Engine\20.4.0.40\SymErr.exe [2013-06-04] (Symantec Corporation)
Task: {ACA660E4-1190-49FA-9C8E-1D67801D8D96} - System32\Tasks\Norton Internet Security\Norton Error Analyzer => C:\Program Files (x86)\Norton Internet Security\Engine\20.4.0.40\SymErr.exe [2013-06-04] (Symantec Corporation)
Task: {C9C7957B-A1C7-4F70-96B1-4B7A66072922} - System32\Tasks\Scheduled Update for Ask Toolbar => C:\Program Files (x86)\Ask.com\UpdateTask.exe [2013-03-31] ()
Task: {D3CC5DB8-A326-4B84-8B17-A5D947E26B3C} - System32\Tasks\Norton WSC Integration => C:\Program Files (x86)\Norton Internet Security\Engine\20.4.0.40\WSCStub.exe [2013-06-04] (Symantec Corporation)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2415147590-3532157430-3241875667-1001Core.job => C:\Users\Christian Mies\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2415147590-3532157430-3241875667-1001UA.job => C:\Users\Christian Mies\AppData\Local\Google\Update\GoogleUpdate.exe
==================== Loaded Modules (whitelisted) =============
2011-05-09 19:46 - 2011-05-09 19:46 - 02760192 _____ () C:\Program Files\Bigfoot Networks\Killer Network Manager\QtCore4.dll
2011-05-09 19:56 - 2011-05-09 19:56 - 09856000 _____ () C:\Program Files\Bigfoot Networks\Killer Network Manager\QtGui4.dll
2011-05-09 19:48 - 2011-05-09 19:48 - 00990720 _____ () C:\Program Files\Bigfoot Networks\Killer Network Manager\QtNetwork4.dll
2011-05-09 19:47 - 2011-05-09 19:47 - 00416256 _____ () C:\Program Files\Bigfoot Networks\Killer Network Manager\QtXml4.dll
2012-02-22 15:26 - 2012-02-22 15:26 - 00217600 _____ () C:\Program Files\Bigfoot Networks\Killer Network Manager\BFCommon.dll
2011-05-10 11:32 - 2011-05-10 11:32 - 00731648 _____ () C:\Program Files\Bigfoot Networks\Killer Network Manager\qwt5.dll
2012-02-22 15:26 - 2012-02-22 15:26 - 00404992 _____ () C:\Program Files\Bigfoot Networks\Killer Network Manager\plugins\modApplications.dll
2012-02-22 15:26 - 2012-02-22 15:26 - 00036864 _____ () C:\Program Files\Bigfoot Networks\Killer Network Manager\plugins\modFeatures.dll
2012-02-22 15:26 - 2012-02-22 15:26 - 00025088 _____ () C:\Program Files\Bigfoot Networks\Killer Network Manager\plugins\modFraps.dll
2012-02-22 15:26 - 2012-02-22 15:26 - 00241152 _____ () C:\Program Files\Bigfoot Networks\Killer Network Manager\plugins\modGraph.dll
2012-02-22 15:26 - 2012-02-22 15:26 - 00062464 _____ () C:\Program Files\Bigfoot Networks\Killer Network Manager\plugins\modlcd.dll
2012-02-22 15:26 - 2012-02-22 15:26 - 00289280 _____ () C:\Program Files\Bigfoot Networks\Killer Network Manager\plugins\modNetwork.dll
2012-02-22 15:26 - 2012-02-22 15:26 - 00184832 _____ () C:\Program Files\Bigfoot Networks\Killer Network Manager\plugins\modNpu.dll
2012-02-22 15:26 - 2012-02-22 15:26 - 00210944 _____ () C:\Program Files\Bigfoot Networks\Killer Network Manager\plugins\modOptions.dll
2012-02-22 15:26 - 2012-02-22 15:26 - 00055808 _____ () C:\Program Files\Bigfoot Networks\Killer Network Manager\plugins\modOverview.dll
2012-02-22 15:26 - 2012-02-22 15:26 - 00329216 _____ () C:\Program Files\Bigfoot Networks\Killer Network Manager\plugins\modSystemInfo.dll
2013-10-03 00:57 - 2013-09-30 16:22 - 02859992 _____ () C:\Program Files (x86)\Optimizer Pro\OptProCrash.dll
2013-03-12 18:10 - 2013-08-22 00:18 - 00687104 _____ () D:\Steam\SDL2.dll
2012-11-23 13:39 - 2013-10-09 04:19 - 01121704 _____ () D:\Steam\bin\chromehtml.DLL
2012-11-23 13:39 - 2013-09-11 00:20 - 20625832 _____ () D:\Steam\bin\libcef.dll
2012-11-23 13:39 - 2013-06-15 01:49 - 01100800 _____ () D:\Steam\bin\avcodec-53.dll
2012-11-23 13:39 - 2013-06-15 01:49 - 00124416 _____ () D:\Steam\bin\avutil-51.dll
2012-11-23 13:39 - 2013-06-15 01:49 - 00192000 _____ () D:\Steam\bin\avformat-53.dll
2013-01-23 14:41 - 2013-10-15 23:23 - 00062976 _____ () D:\Neuer Ordner\Origin\tufao.dll
2013-06-04 14:19 - 2013-10-15 12:08 - 34604032 _____ () C:\Users\Christian Mies\AppData\Roaming\Spotify\Data\libcef.dll
2013-02-13 16:30 - 2010-11-04 12:48 - 00061440 _____ () C:\Program Files (x86)\ROCCAT\Isku Keyboard\hiddriver.dll
2013-09-26 20:42 - 2013-10-15 12:08 - 00747008 _____ () C:\Users\Christian Mies\AppData\Roaming\Spotify\Data\libglesv2.dll
2013-09-26 20:42 - 2013-10-15 12:08 - 00137216 _____ () C:\Users\Christian Mies\AppData\Roaming\Spotify\Data\libegl.dll
2013-10-16 18:55 - 2013-10-09 02:01 - 00698832 _____ () C:\Users\Christian Mies\AppData\Local\Google\Chrome\Application\30.0.1599.101\libglesv2.dll
2013-10-16 18:55 - 2013-10-09 02:01 - 00099792 _____ () C:\Users\Christian Mies\AppData\Local\Google\Chrome\Application\30.0.1599.101\libegl.dll
2013-10-16 18:55 - 2013-10-09 02:02 - 04055504 _____ () C:\Users\Christian Mies\AppData\Local\Google\Chrome\Application\30.0.1599.101\pdf.dll
2013-10-16 18:56 - 2013-10-09 02:02 - 00415184 _____ () C:\Users\Christian Mies\AppData\Local\Google\Chrome\Application\30.0.1599.101\ppGoogleNaClPluginChrome.dll
2013-10-16 18:55 - 2013-10-09 02:01 - 01604560 _____ () C:\Users\Christian Mies\AppData\Local\Google\Chrome\Application\30.0.1599.101\ffmpegsumo.dll
2013-06-14 14:15 - 2012-05-30 08:51 - 00699280 ____R () C:\PROGRAM FILES (X86)\NORTON INTERNET SECURITY\ENGINE\20.4.0.40\wincfi39.dll
2013-08-16 10:51 - 2013-08-16 10:51 - 00172032 _____ () C:\Windows\assembly\NativeImages_v2.0.50727_32\IsdiInterop\67f2d87ba056e1075fce76a8c50bb57e\IsdiInterop.ni.dll
2012-07-18 09:39 - 2012-02-01 16:25 - 00059904 _____ () C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IsdiInterop.dll
==================== Alternate Data Streams (whitelisted) =========
==================== Safe Mode (whitelisted) ===================
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Hamachi2Svc => ""="Service"
==================== Faulty Device Manager Devices =============
Name: Hamachi Network Interface
Description: Hamachi Network Interface
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: LogMeIn, Inc.
Service: hamachi
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
==================== Event log errors: =========================
Application errors:
==================
Error: (10/25/2013 03:56:18 PM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1". Fehler in
Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" in Zeile C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit
einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.
Error: (10/25/2013 03:52:36 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (10/24/2013 08:53:25 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (10/24/2013 08:38:04 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (10/24/2013 08:25:12 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (10/24/2013 08:18:25 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (10/24/2013 08:15:42 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (10/24/2013 07:14:24 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (10/24/2013 07:03:12 PM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1". Fehler in
Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" in Zeile C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit
einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.
Error: (10/24/2013 04:40:46 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
System errors:
=============
Error: (10/25/2013 03:51:16 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "LogMeIn Hamachi Tunneling Engine" wurde aufgrund folgenden Fehlers nicht gestartet:
%%2
Error: (10/25/2013 03:51:16 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "lirsgt" wurde aufgrund folgenden Fehlers nicht gestartet:
%%577
Error: (10/25/2013 03:51:16 PM) (Source: Service Control Manager) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst ICQ Service erreicht.
Error: (10/25/2013 03:50:46 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "BingBar Service" wurde aufgrund folgenden Fehlers nicht gestartet:
%%2
Error: (10/25/2013 03:50:46 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "atksgt" wurde aufgrund folgenden Fehlers nicht gestartet:
%%577
Error: (10/24/2013 11:14:24 PM) (Source: DCOM) (User: )
Description: {F9717507-6651-4EDB-BFF7-AE615179BCCF}
Error: (10/24/2013 08:52:05 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "LogMeIn Hamachi Tunneling Engine" wurde aufgrund folgenden Fehlers nicht gestartet:
%%2
Error: (10/24/2013 08:52:05 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "lirsgt" wurde aufgrund folgenden Fehlers nicht gestartet:
%%577
Error: (10/24/2013 08:52:05 PM) (Source: Service Control Manager) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst ICQ Service erreicht.
Error: (10/24/2013 08:51:35 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "BingBar Service" wurde aufgrund folgenden Fehlers nicht gestartet:
%%2
Microsoft Office Sessions:
=========================
Error: (10/25/2013 03:56:18 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\Christian Mies\Downloads\SoftonicDownloader_fuer_elsword (1).exe
Error: (10/25/2013 03:52:36 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (10/24/2013 08:53:25 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (10/24/2013 08:38:04 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (10/24/2013 08:25:12 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (10/24/2013 08:18:25 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (10/24/2013 08:15:42 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (10/24/2013 07:14:24 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (10/24/2013 07:03:12 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\Christian Mies\Downloads\SoftonicDownloader_fuer_elsword (1).exe
Error: (10/24/2013 04:40:46 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
CodeIntegrity Errors:
===================================
Date: 2013-10-25 15:51:16.560
Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume1\Windows\System32\drivers\lirsgt.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.
Date: 2013-10-25 15:51:16.527
Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume1\Windows\System32\drivers\lirsgt.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.
Date: 2013-10-25 15:50:46.282
Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume1\Windows\System32\drivers\atksgt.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.
Date: 2013-10-25 15:50:46.242
Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume1\Windows\System32\drivers\atksgt.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.
Date: 2013-10-24 20:52:05.453
Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume1\Windows\System32\drivers\lirsgt.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.
Date: 2013-10-24 20:52:05.420
Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume1\Windows\System32\drivers\lirsgt.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.
Date: 2013-10-24 20:51:35.204
Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume1\Windows\System32\drivers\atksgt.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.
Date: 2013-10-24 20:51:35.174
Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume1\Windows\System32\drivers\atksgt.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.
Date: 2013-10-24 20:51:09.472
Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume1\Windows\System32\drivers\lirsgt.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.
Date: 2013-10-24 20:51:09.440
Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume1\Windows\System32\drivers\lirsgt.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.
==================== Memory info ===========================
Percentage of memory in use: 33%
Total physical RAM: 8154.3 MB
Available physical RAM: 5430.01 MB
Total Pagefile: 16306.77 MB
Available Pagefile: 13231.54 MB
Total Virtual: 8192 MB
Available Virtual: 8191.78 MB
==================== Drives ================================
Drive c: (System) (Fixed) (Total:55.9 GB) (Free:6.73 GB) NTFS ==>[Drive with boot components (obtained from BCD)]
Drive d: (Data2) (Fixed) (Total:931.51 GB) (Free:421.23 GB) NTFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 56 GB) (Disk ID: C7A97938)
Partition 1: (Active) - (Size=56 GB) - (Type=07 NTFS)
========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 932 GB) (Disk ID: C7A97937)
Partition 1: (Active) - (Size=932 GB) - (Type=07 NTFS)
==================== End Of Log ============================
|
|
26.10.2013, 12:38
| #4 |
| /// the machine /// TB-Ausbilder | BSI Mitteilung über Sperrung der Daten! (bekannter Trojaner) Alles läuft weiterhin problemlos. Trojaner ja oder nein? FRST.txt ist unvollständig, bitte nochmal posten 
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
27.10.2013, 10:29
| #5 |
| | BSI Mitteilung über Sperrung der Daten! (bekannter Trojaner) Alles läuft weiterhin problemlos. Trojaner ja oder nein?FRST Logfile: Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 24-10-2013
Ran by Christian Mies (administrator) on CHRISTIANMIES on 25-10-2013 15:58:59
Running from C:\Users\Christian Mies\Desktop
Windows 7 Home Premium Service Pack 1 (X64) OS Language: German Standard
Internet Explorer Version 10
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
() c:\progra~2\optimi~1\OptProCrash.exe
() C:\Program Files\Bigfoot Networks\Killer Network Manager\BFNService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
() C:\Program Files (x86)\Guard-ICQ\GuardICQ.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Microsoft Corporation) C:\Program Files\Microsoft Xbox 360 Accessories\XBoxStat.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe
(ICQ, LLC.) C:\Program Files (x86)\ICQ7M\ICQ.exe
(Valve Corporation) D:\Steam\Steam.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Electronic Arts) D:\Neuer Ordner\Origin\Origin.exe
() C:\Program Files (x86)\Pando Networks\Media Booster\PMB.exe
(Spotify Ltd) C:\Users\Christian Mies\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe
(Spotify Ltd) C:\Users\Christian Mies\AppData\Roaming\Spotify\spotify.exe
() C:\Program Files\Bigfoot Networks\Killer Network Manager\KillerNetManager.exe
(McAfee, Inc.) C:\Program Files\McAfee Security Scan\3.8.130\SSScheduler.exe
(PC Utilities Pro) C:\Program Files (x86)\Optimizer Pro\OptProSmartScan.exe
() C:\Program Files (x86)\Guard-ICQ\GuardICQ.exe
(ROCCAT GmbH) C:\Program Files (x86)\ROCCAT\Isku Keyboard\IskuMonitor.exe
(PC Utilities Pro) C:\Program Files (x86)\Optimizer Pro\OptProReminder.exe
(Ask) C:\Program Files (x86)\Ask.com\Updater\Updater.exe
(Visicom Media Inc.) C:\ProgramData\Anti-phishing Domain Advisor\visicom_antiphishing.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
() C:\Users\Christian Mies\AppData\Roaming\Spotify\Data\SpotifyHelper.exe
() C:\Users\Christian Mies\AppData\Roaming\Spotify\Data\SpotifyHelper.exe
() C:\Users\Christian Mies\AppData\Roaming\Spotify\Data\SpotifyHelper.exe
() C:\Users\Christian Mies\AppData\Roaming\Spotify\Data\SpotifyHelper.exe
() C:\Users\Christian Mies\AppData\Roaming\Spotify\Data\SpotifyHelper.exe
(Google Inc.) C:\Users\Christian Mies\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Christian Mies\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Christian Mies\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Christian Mies\AppData\Local\Google\Chrome\Application\chrome.exe
(Symantec Corporation) C:\Program Files (x86)\Norton Internet Security\Engine\20.4.0.40\ccSvcHst.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
(Symantec Corporation) C:\Program Files (x86)\Norton Internet Security\Engine\20.4.0.40\ccSvcHst.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(Skype Technologies S.A.) C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\ComUpdatus.exe
(Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [RtHDVCpl] - C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [12459112 2012-03-27] (Realtek Semiconductor)
HKLM\...\Run: [XboxStat] - C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe [825184 2009-10-01] (Microsoft Corporation)
HKLM\...\Run: [Nvtmru] - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe [1028896 2013-07-03] (NVIDIA Corporation)
HKCU\...\Run: [Google Update] - C:\Users\Christian Mies\AppData\Local\Google\Update\GoogleUpdate.exe [116648 2012-07-31] (Google Inc.)
HKCU\...\Run: [ICQ] - C:\Program Files (x86)\ICQ7M\ICQ.exe [127040 2012-08-01] (ICQ, LLC.)
HKCU\...\Run: [GoogleChromeAutoLaunch_6BCE850165DB478F882F0C0215FF66BB] - C:\Users\Christian Mies\AppData\Local\Google\Chrome\Application\chrome.exe [844752 2013-10-09] (Google Inc.)
HKCU\...\Run: [Steam] - D:\Steam\Steam.exe [1813928 2013-10-09] (Valve Corporation)
HKCU\...\Run: [HD Audio Process] - C:\Users\Christian Mies\unimksu.exe
HKCU\...\Run: [Pen Driver] - C:\Users\Christian Mies\Documents\Services\PenTest.exe
HKCU\...\Run: [Codec Reader] - C:\Users\Christian Mies\AppData\Roaming\Microsoft\Audiodg.exe
HKCU\...\Run: [netLoader] - C:\Users\Christian Mies\AppData\Roaming\net64.exe
HKCU\...\Run: [Skype] - C:\Program Files (x86)\Skype\Phone\Skype.exe [20684656 2013-07-25] (Skype Technologies S.A.)
HKCU\...\Run: [EADM] - D:\Neuer Ordner\Origin\Origin.exe [3561816 2013-10-15] (Electronic Arts)
HKCU\...\Run: [Pando Media Booster] - C:\Program Files (x86)\Pando Networks\Media Booster\PMB.exe [3093624 2013-02-17] ()
HKCU\...\Run: [Spotify Web Helper] - C:\Users\Christian Mies\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe [1140736 2013-10-15] (Spotify Ltd)
HKCU\...\Run: [Spotify] - C:\Users\Christian Mies\AppData\Roaming\Spotify\spotify.exe [4752384 2013-10-15] (Spotify Ltd)
HKCU\...\Run: [Optimizer Pro] - C:\Program Files (x86)\Optimizer Pro\OptProLauncher.exe [135672 2013-09-29] (PC Utilities Pro)
HKCU\...\CurrentVersion\Windows: [Load] C:\Users\Christian Mies\unimksu.exe <===== ATTENTION
MountPoints2: {28293ef1-10ba-11e3-ae85-902b34356e8d} - F:\HTC_Sync_Manager_PC.exe
HKLM-x32\...\Run: [IAStorIcon] - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [284440 2012-02-01] (Intel Corporation)
HKLM-x32\...\Run: [Guard.Mail.ru.gui] - C:\Program Files (x86)\Guard-ICQ\GuardICQ.exe [1564368 2012-08-01] ()
HKLM-x32\...\Run: [RoccatIsku] - C:\Program Files (x86)\ROCCAT\Isku Keyboard\IskuMonitor.EXE [542560 2012-11-09] (ROCCAT GmbH)
HKLM-x32\...\Run: [] - [x]
HKLM-x32\...\Run: [ApnUpdater] - C:\Program Files (x86)\Ask.com\Updater\Updater.exe [1646216 2013-03-31] (Ask)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-09-05] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [LogMeIn Hamachi Ui] - "D:\7 Days to die\hamachi-2-ui.exe" --auto-start
HKLM-x32\...\Run: [Anti-phishing Domain Advisor] - C:\ProgramData\Anti-phishing Domain Advisor\visicom_antiphishing.exe [235072 2013-05-31] (Visicom Media Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
AppInit_DLLs: C:\PROGRA~2\OPTIMI~1\OPTPRO~2.DLL [2594608 2013-10-03] ()
AppInit_DLLs-x32: c:\progra~2\optimi~1\optpro~1.dll [2859992 2013-09-30] ()
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.mystart.com/?pr=vmn&id=toolbarcleaner&v=1_1_1_4&ent=hp_4802
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://de.msn.com/?ocid=iehp
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0xBBAC799C156FCD01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de-DE
HKCU\Software\Microsoft\Internet Explorer\Main,ICQ Search = hxxp://search.icq.com/search/results.php?q={searchTerms}&ch_id=osd
URLSearchHook: (No Name) - {00000000-6E41-4FD3-8538-502F5495E5FC} - No File
URLSearchHook: (No Name) - {855F3B16-6D32-4fe6-8A56-BBB695989046} - No File
URLSearchHook: (No Name) - {0027da2d-c9f2-4b0b-ae05-e2cd1bdb6cff} - No File
SearchScopes: HKCU - DefaultScope {3BD44F0E-0596-4008-AEE0-45D47E3A8F0E} URL = hxxp://www.mystart.com/results.php?pr=vmn&id=toolbarcleaner&v=1_1_1_4&ent=ch_4802&q={searchTerms}
SearchScopes: HKCU - {010C3F3A-7C11-4D07-95B8-CCC6FDF74504} URL = hxxp://websearch.ask.com/redirect?client=ie&tb=ORJ&o=100000027&src=kw&q={searchTerms}&locale=de_DE&apn_ptnrs=^U3&apn_dtid=^OSJ000^YY^DE&apn_uid=9A41E9E9-148C-4FDA-99FD-0F26D93EB9D6&apn_sauid=3F4A8CDF-98BC-46E7-BEDE-091E0E889FB2
SearchScopes: HKCU - {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} URL = hxxp://www.dalesearch.com/?q={searchTerms}&babsrc=SP_ss&mntrId=C4B296F65211C7B3&affID=120524&tt=021013_dle&tsp=5023
SearchScopes: HKCU - {3BD44F0E-0596-4008-AEE0-45D47E3A8F0E} URL = hxxp://www.mystart.com/results.php?pr=vmn&id=toolbarcleaner&v=1_1_1_4&ent=ch_4802&q={searchTerms}
SearchScopes: HKCU - {6552C7DD-90A4-4387-B795-F8F96747DE19} URL = hxxp://search.icq.com/search/results.php?q={searchTerms}&ch_id=osd
SearchScopes: HKCU - {8463A8FE-3CD1-4844-A40E-F1E0BD486E22} URL = hxxp://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT2625848
SearchScopes: HKCU - {AFBCB7E0-F91A-4951-9F31-58FEE57A25C4} URL = hxxp://nortonsafe.search.ask.com/web?q={SEARCHTERMS}&o=APN10506&l=dis&prt=NIS&chn=retail&geo=DE&ver=20&locale=de_DE&gct=kwd&qsrc=2869
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Skype add-on for Internet Explorer - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Skype Technologies S.A.)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: DVDVideoSoftTB DE Toolbar - {0027da2d-c9f2-4b0b-ae05-e2cd1bdb6cff} - C:\Program Files (x86)\DVDVideoSoftTB_DE\prxtbDVDV.dll (Conduit Ltd.)
BHO-x32: MSS+ Identifier - {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} - C:\Program Files\McAfee Security Scan\3.8.130\McAfeeMSS_IE.dll (McAfee, Inc.)
BHO-x32: Norton Identity Protection - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files (x86)\Norton Internet Security\Engine\20.4.0.40\coIEPlg.dll (Symantec Corporation)
BHO-x32: Norton Vulnerability Protection - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files (x86)\Norton Internet Security\Engine\20.4.0.40\IPS\IPSBHO.DLL (Symantec Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Windows Live ID-Anmelde-Hilfsprogramm - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll No File
BHO-x32: Skype Browser Helper - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
BHO-x32: Bing Bar Helper - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files (x86)\Microsoft\BingBar\7.1.362.0\BingExt.dll No File
BHO-x32: Ask Toolbar - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll (Ask)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM-x32 - Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - "C:\Program Files (x86)\Microsoft\BingBar\7.1.362.0\BingExt.dll" No File
Toolbar: HKLM-x32 - ICQToolBar - {855F3B16-6D32-4FE6-8A56-BBB695989046} - C:\Program Files (x86)\ICQ6Toolbar\ICQToolBar.dll No File
Toolbar: HKLM-x32 - DVDVideoSoftTB DE Toolbar - {0027da2d-c9f2-4b0b-ae05-e2cd1bdb6cff} - C:\Program Files (x86)\DVDVideoSoftTB_DE\prxtbDVDV.dll (Conduit Ltd.)
Toolbar: HKLM-x32 - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Internet Security\Engine\20.4.0.40\coIEPlg.dll (Symantec Corporation)
Toolbar: HKLM-x32 - Ask Toolbar - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll (Ask)
DPF: HKLM-x32 {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/pub/shockwave/cabs/flash/swflash.cab
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Skype Technologies S.A.)
Handler-x32: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.dll No File
Handler-x32: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.dll No File
Handler-x32: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Handler-x32: wlmailhtml - {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - C:\Program Files (x86)\Windows Live\Mail\mailcomm.dll No File
Handler-x32: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll No File
Winsock: Catalog9 01 C:\Windows\SysWOW64\BfLLR.dll [174592] (Bigfoot Networks, Inc.)
Winsock: Catalog9 02 C:\Windows\SysWOW64\BfLLR.dll [174592] (Bigfoot Networks, Inc.)
Winsock: Catalog9 03 C:\Windows\SysWOW64\BfLLR.dll [174592] (Bigfoot Networks, Inc.)
Winsock: Catalog9 04 C:\Windows\SysWOW64\BfLLR.dll [174592] (Bigfoot Networks, Inc.)
Winsock: Catalog9 15 C:\Windows\SysWOW64\BfLLR.dll [174592] (Bigfoot Networks, Inc.)
Winsock: Catalog9-x64 01 %SYSTEMROOT%\system32\BfLLR.dll [189952] (Bigfoot Networks, Inc.)
Winsock: Catalog9-x64 02 %SYSTEMROOT%\system32\BfLLR.dll [189952] (Bigfoot Networks, Inc.)
Winsock: Catalog9-x64 03 %SYSTEMROOT%\system32\BfLLR.dll [189952] (Bigfoot Networks, Inc.)
Winsock: Catalog9-x64 04 %SYSTEMROOT%\system32\BfLLR.dll [189952] (Bigfoot Networks, Inc.)
Winsock: Catalog9-x64 15 %SYSTEMROOT%\system32\BfLLR.dll [189952] (Bigfoot Networks, Inc.)
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1
FireFox:
========
FF ProfilePath: C:\Users\Christian Mies\AppData\Roaming\Mozilla\Firefox\Profiles\7p6oe76f.default
FF DefaultSearchEngine: Ask.com
FF SearchEngineOrder.1: Ask.com
FF SelectedSearchEngine: Ask.com
FF NewTab: hxxp://www.dalesearch.com/?babsrc=NT_ss&mntrId=C4B296F65211C7B3&affID=120524&tt=021013_dle&tsp=5023
FF Homepage: hxxp://www.dalesearch.com/?babsrc=HP_ss&mntrId=C4B296F65211C7B3&affID=120524&tt=021013_dle&tsp=5023
FF Homepage: hxxp://www.mystart.com/?pr=vmn&id=toolbarcleaner&v=1_1_1_4&ent=hp_4802
FF DefaultSearchEngine: Yahoo
FF SelectedSearchEngine: Yahoo
FF SearchEngineOrder.1: Yahoo
FF Keyword.URL: hxxp://www.mystart.com/results.php?pr=vmn&id=toolbarcleaner&v=1_1_1_4&ent=bs_4802&q=
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_9_900_117.dll ()
FF Plugin: @java.com/DTPlugin,version=10.13.2 - C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.13.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=2.0.5 - D:\VLC media player\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_117.dll ()
FF Plugin-x32: @esn.me/esnsonar,version=0.70.4 - C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll (ESN Social Software AB)
FF Plugin-x32: @esn/esnlaunch,version=2.1.3 - C:\Program Files (x86)\Battlelog Web Plugins\2.1.3\npesnlaunch.dll No File
FF Plugin-x32: @esn/esnlaunch,version=2.3.0 - C:\Program Files (x86)\Battlelog Web Plugins\2.3.0\npesnlaunch.dll (ESN Social Software AB)
FF Plugin-x32: @java.com/DTPlugin,version=10.45.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.45.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @mcafee.com/McAfeeMssPlugin - C:\Program Files\McAfee Security Scan\3.8.130\npMcAfeeMss.dll (McAfee, Inc.)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll No File
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3555.0308 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll No File
FF Plugin-x32: @nvidia.com/3DVision - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF Plugin-x32: @pandonetworks.com/PandoWebPlugin - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=3 - C:\Users\Christian Mies\AppData\Local\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=9 - C:\Users\Christian Mies\AppData\Local\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: pandonetworks.com/PandoWebPlugin - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF Plugin HKCU: ubisoft.com/uplaypc - C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll ()
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\testlog.txt
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahootc.xml
FF HKLM-x32\...\Firefox\Extensions: [{2D3F3651-74B9-4795-BDEC-6DA2F431CB62}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.2.0.19\coFFPlgn\
FF Extension: Norton Toolbar - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.2.0.19\coFFPlgn\
FF HKLM-x32\...\Firefox\Extensions: [{BBDA0591-3099-440a-AA10-41764D9DB4DB}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.2.0.19\IPSFF
FF Extension: Norton Vulnerability Protection - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.2.0.19\IPSFF
Chrome:
=======
CHR Plugin: (Shockwave Flash) - C:\Users\Christian Mies\AppData\Local\Google\Chrome\Application\30.0.1599.101\PepperFlash\pepflashplayer.dll ()
CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Users\Christian Mies\AppData\Local\Google\Chrome\Application\30.0.1599.101\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Users\Christian Mies\AppData\Local\Google\Chrome\Application\30.0.1599.101\pdf.dll ()
CHR Plugin: (ESN Launch Mozilla Plugin) - C:\Program Files (x86)\Battlelog Web Plugins\2.1.3\npesnlaunch.dll No File
CHR Plugin: (ESN Sonar API) - C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll (ESN Social Software AB)
CHR Plugin: (Java(TM) Platform SE 7 U17) - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
CHR Plugin: (McAfee Security Scanner +) - C:\Program Files (x86)\McAfee Security Scan\3.0.318\npMcAfeeMss.dll No File
CHR Plugin: (Silverlight Plug-In) - C:\Program Files (x86)\Microsoft Silverlight\5.1.20125.0\npctrl.dll No File
CHR Plugin: (NVIDIA 3D Vision) - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
CHR Plugin: (NVIDIA 3D VISION) - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
CHR Plugin: (Pando Web Plugin) - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
CHR Plugin: (Uplay PC) - C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll ()
CHR Plugin: (iTunes Application Detector) - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll No File
CHR Plugin: (Google Update) - C:\Users\Christian Mies\AppData\Local\Google\Update\1.3.21.135\npGoogleUpdate3.dll No File
CHR Plugin: (Java Deployment Toolkit 7.0.170.2) - C:\Windows\SysWOW64\npDeployJava1.dll No File
CHR Extension: (Ask Toolbar) - C:\Users\CHRIST~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaojmikegpiepcfdkkjaplodkpfmlo\7.15.23.55142_0
CHR Extension: (DVDVideoSoftTB DE) - C:\Users\CHRIST~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\bhphemoobgnikcoofkgackkaimpfmenm\2.5.0.1_0
CHR Extension: (YouTube) - C:\Users\CHRIST~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0
CHR Extension: (Wikipedia) - C:\Users\CHRIST~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\jmglbembmoneheojkacdnbempoackhnh\1.0.4_0
CHR Extension: (Skype Click to Call) - C:\Users\CHRIST~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl\6.3.0.11079_0
CHR Extension: (Totoro Rainy Day) - C:\Users\CHRIST~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmiagjknjjfockcklibjlfdojojaffff\1.15_0
CHR Extension: (Norton Identity Protection) - C:\Users\CHRIST~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mkfokfffehpeedafpekjeddnmnjhmcmk\2013.4.3.4_0
CHR Extension: (DvdVideoSoft Free Youtube Download) - C:\Users\CHRIST~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\nikpibnbobmbdbheedjfogjlikpgpnhp\1.0.0.0_0
CHR Extension: (Chrome In-App Payments service) - C:\Users\CHRIST~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.4.11_0
CHR HKLM-x32\...\Chrome\Extension: [mkfokfffehpeedafpekjeddnmnjhmcmk] - C:\Program Files (x86)\Norton Internet Security\Engine\20.4.0.40\Exts\Chrome.crx
CHR StartMenuInternet: Google Chrome - C:\Users\Christian Mies\AppData\Local\Google\Chrome\Application\chrome.exe
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
==================== Services (Whitelisted) =================
R2 70e6ca8c; c:\progra~2\optimi~1\OptProCrash.exe [143488 2013-10-03] ()
R2 Bigfoot Networks Killer Service; C:\Program Files\Bigfoot Networks\Killer Network Manager\BFNService.exe [492032 2012-02-22] ()
S3 COMSysApp; C:\Windows\SysWow64\dllhost.exe [7168 2009-07-14] (Microsoft Corporation)
R2 Guard.Mail.ru; C:\Program Files (x86)\Guard-ICQ\GuardICQ.exe [1564368 2012-08-01] ()
S2 ICQ Service; C:\PROGRA~2\ICQ6TO~1\ICQSER~1.EXE [247872 2012-03-20] ()
S3 McComponentHostService; C:\Program Files\McAfee Security Scan\3.8.130\McCHSvc.exe [288776 2013-09-06] (McAfee, Inc.)
S3 msiserver; C:\Windows\SysWow64\msiexec.exe [73216 2010-11-21] (Microsoft Corporation)
R2 NIS; C:\Program Files (x86)\Norton Internet Security\Engine\20.4.0.40\ccSvcHst.exe [144368 2013-05-21] (Symantec Corporation)
R2 PnkBstrA; C:\Windows\SysWow64\PnkBstrA.exe [76888 2013-10-16] ()
R2 WSearch; C:\Windows\SysWow64\SearchIndexer.exe [427520 2011-05-04] (Microsoft Corporation)
S2 BBSvc; C:\Program Files (x86)\Microsoft\BingBar\7.1.362.0\BBSvc.exe [x]
S3 BBUpdate; C:\Program Files (x86)\Microsoft\BingBar\7.1.362.0\SeaPort.exe [x]
S3 fsssvc; "C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe" [x]
S2 Hamachi2Svc; "D:\7 Days to die\hamachi-2.exe" -s [x]
==================== Drivers (Whitelisted) ====================
S2 atksgt; C:\Windows\System32\DRIVERS\atksgt.sys [303616 2013-03-17] ()
R3 BfEdge7x64; C:\Windows\System32\DRIVERS\Edge7x64.sys [31336 2012-02-22] (Bigfoot Networks, Inc.)
R3 BFN7x64; C:\Windows\system32\drivers\Xeno7x64.sys [157288 2012-02-22] (Bigfoot Networks, Inc.)
R1 BHDrvx64; C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.2.0.19\Definitions\BASHDefs\20131022.001\BHDrvx64.sys [1524824 2013-10-23] (Symantec Corporation)
R1 ccSet_NIS; C:\Windows\system32\drivers\NISx64\1404000.028\ccSetx64.sys [169048 2013-04-16] (Symantec Corporation)
S3 E100B; C:\Windows\System32\DRIVERS\efe5b32e.sys [192256 2009-06-10] (Intel Corporation)
R1 eeCtrl; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [484952 2013-08-27] (Symantec Corporation)
R3 EraserUtilRebootDrv; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [140376 2013-08-27] (Symantec Corporation)
R1 IDSVia64; C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.2.0.19\Definitions\IPSDefs\20131023.001\IDSvia64.sys [521816 2013-10-17] (Symantec Corporation)
S2 lirsgt; C:\Windows\System32\DRIVERS\lirsgt.sys [35328 2013-03-17] ()
R3 NAVENG; C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.2.0.19\Definitions\VirusDefs\20131023.024\ENG64.SYS [126040 2013-09-06] (Symantec Corporation)
R3 NAVEX15; C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.2.0.19\Definitions\VirusDefs\20131023.024\EX64.SYS [2099288 2013-09-06] (Symantec Corporation)
R3 SRTSP; C:\Windows\System32\Drivers\NISx64\1404000.028\SRTSP64.SYS [796760 2013-05-16] (Symantec Corporation)
R1 SRTSPX; C:\Windows\system32\drivers\NISx64\1404000.028\SRTSPX64.SYS [36952 2013-03-05] (Symantec Corporation)
R0 SymDS; C:\Windows\System32\drivers\NISx64\1404000.028\SYMDS64.SYS [493656 2013-05-21] (Symantec Corporation)
R0 SymEFA; C:\Windows\System32\drivers\NISx64\1404000.028\SYMEFA64.SYS [1139800 2013-05-23] (Symantec Corporation)
R3 SymEvent; C:\Windows\system32\Drivers\SYMEVENT64x86.SYS [177312 2013-06-19] (Symantec Corporation)
R1 SymIRON; C:\Windows\system32\drivers\NISx64\1404000.028\Ironx64.SYS [224416 2013-03-05] (Symantec Corporation)
R1 SymNetS; C:\Windows\System32\Drivers\NISx64\1404000.028\SYMNETS.SYS [433752 2013-04-25] (Symantec Corporation)
S3 EagleX64; \??\C:\Windows\system32\drivers\EagleX64.sys [x]
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2013-10-25 15:58 - 2013-10-25 15:58 - 00000000 ____D C:\FRST
2013-10-25 15:57 - 2013-10-25 15:57 - 01955412 _____ (Farbar) C:\Users\Christian Mies\Desktop\FRST64.exe
2013-10-17 23:34 - 2013-10-17 23:34 - 00264616 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2013-10-17 23:34 - 2013-10-17 23:34 - 00175016 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2013-10-17 23:34 - 2013-10-17 23:34 - 00174504 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2013-10-17 23:34 - 2013-10-17 23:34 - 00096168 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2013-10-17 23:34 - 2013-10-17 23:34 - 00000000 ____D C:\ProgramData\Oracle
2013-10-17 23:34 - 2013-10-17 23:34 - 00000000 ____D C:\Program Files (x86)\Java
2013-10-17 23:33 - 2013-10-17 23:33 - 00915368 _____ (Oracle Corporation) C:\Users\Christian Mies\Downloads\chromeinstall-7u45.exe
2013-10-17 23:33 - 2013-10-17 23:33 - 00915368 _____ (Oracle Corporation) C:\Users\Christian Mies\Downloads\chromeinstall-7u45 (1).exe
2013-10-16 19:43 - 2013-10-16 19:43 - 00000677 _____ C:\Users\Public\Desktop\Elsword.lnk
2013-10-16 19:42 - 2013-10-16 19:42 - 01914248 _____ (Gameforge4D ) C:\Users\Christian Mies\Downloads\Elsword_DE_3.0807.8.2.exe
2013-10-16 19:42 - 2013-10-16 19:42 - 00569487 _____ (Gameforge 4D ) C:\Users\Christian Mies\Downloads\Downloader_Elsword_de.exe
2013-10-16 19:40 - 2013-10-16 19:40 - 00400720 _____ (Softonic ) C:\Users\Christian Mies\Downloads\SoftonicDownloader_fuer_elsword (1).exe
2013-10-16 16:23 - 2013-10-18 00:05 - 00290184 _____ C:\Windows\SysWOW64\PnkBstrB.exe
2013-10-16 16:23 - 2013-10-16 16:23 - 00013361 _____ C:\Users\Christian Mies\Desktop\pbgame.htm
2013-10-16 16:19 - 2013-09-04 15:23 - 00823808 _____ C:\Users\Christian Mies\Desktop\pbsetup.exe
2013-10-16 16:18 - 2013-10-16 16:22 - 00718805 _____ C:\Users\Christian Mies\Downloads\pbsetup.zip
2013-10-16 16:17 - 2013-10-16 16:17 - 00840264 _____ C:\Users\Christian Mies\Downloads\pbsvc.exe
2013-10-16 01:22 - 2013-10-16 01:23 - 03820328 _____ C:\Users\Christian Mies\Downloads\battlelog-web-plugins_2.3.0_119.exe
2013-10-16 01:20 - 2013-10-16 14:29 - 00000000 ____D C:\Program Files (x86)\Toolbar Cleaner
2013-10-16 01:20 - 2013-10-16 01:20 - 00001056 _____ C:\Users\Christian Mies\Desktop\Toolbar Cleaner.lnk
2013-10-16 01:20 - 2013-10-16 01:20 - 00000000 ____D C:\Users\Christian Mies\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Toolbar Cleaner
2013-10-16 01:20 - 2013-10-16 01:20 - 00000000 ____D C:\Users\Christian Mies\AppData\Local\toolbarcleaner
2013-10-16 01:20 - 2013-10-16 01:20 - 00000000 ____D C:\ProgramData\Anti-phishing Domain Advisor
2013-10-16 01:18 - 2013-10-16 01:19 - 01214896 _____ (Visicom Media Inc.) C:\Users\Christian Mies\Downloads\toolbarcleaner_setup.exe
2013-10-15 12:37 - 2013-09-04 14:12 - 00343040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
2013-10-15 12:37 - 2013-09-04 14:11 - 00325120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys
2013-10-15 12:37 - 2013-09-04 14:11 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys
2013-10-15 12:37 - 2013-09-04 14:11 - 00052736 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys
2013-10-15 12:37 - 2013-09-04 14:11 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys
2013-10-15 12:37 - 2013-09-04 14:11 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys
2013-10-15 12:37 - 2013-09-04 14:11 - 00007808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys
2013-10-14 11:29 - 2013-10-14 12:07 - 00000000 ____D C:\Users\Christian Mies\Desktop\Nancy
2013-10-11 21:45 - 2013-10-11 21:46 - 01608659 _____ C:\Users\Christian Mies\Downloads\Mi muchacho Diomedes Diaz. (AUDIO).3gp
2013-10-11 21:36 - 2013-10-11 21:36 - 00001937 _____ C:\Users\Public\Desktop\McAfee Security Scan Plus.lnk
2013-10-11 21:36 - 2013-10-11 21:36 - 00000000 ____D C:\Program Files\McAfee Security Scan
2013-10-11 16:34 - 2013-10-11 16:34 - 00000000 ___RD C:\Users\Christian Mies\Podcasts
2013-10-11 15:52 - 2013-10-11 16:31 - 105664248 _____ (Microsoft Corporation) C:\Users\Christian Mies\Downloads\ZuneSetup48Pkg.exe
2013-10-11 00:38 - 2013-09-23 01:28 - 01767936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-10-11 00:38 - 2013-09-23 01:28 - 01141248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-10-11 00:38 - 2013-09-23 01:27 - 14335488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-10-11 00:38 - 2013-09-23 01:27 - 13761024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-10-11 00:38 - 2013-09-23 01:27 - 02876928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-10-11 00:38 - 2013-09-23 01:27 - 02048512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-10-11 00:38 - 2013-09-23 01:27 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-10-11 00:38 - 2013-09-23 01:27 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-10-11 00:38 - 2013-09-23 01:27 - 00391168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-10-11 00:38 - 2013-09-23 01:27 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-10-11 00:38 - 2013-09-23 01:27 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-10-11 00:38 - 2013-09-23 01:27 - 00039424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-10-11 00:38 - 2013-09-23 01:27 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-10-11 00:38 - 2013-09-23 00:55 - 02241024 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-10-11 00:38 - 2013-09-23 00:55 - 01365504 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-10-11 00:38 - 2013-09-23 00:55 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-10-11 00:38 - 2013-09-23 00:54 - 19252224 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-10-11 00:38 - 2013-09-23 00:54 - 15404544 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-10-11 00:38 - 2013-09-23 00:54 - 03959296 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-10-11 00:38 - 2013-09-23 00:54 - 02647552 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-10-11 00:38 - 2013-09-23 00:54 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-10-11 00:38 - 2013-09-23 00:54 - 00603136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-10-11 00:38 - 2013-09-23 00:54 - 00526336 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-10-11 00:38 - 2013-09-23 00:54 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-10-11 00:38 - 2013-09-23 00:54 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-10-11 00:38 - 2013-09-23 00:54 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-10-11 00:38 - 2013-09-23 00:54 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-10-11 00:38 - 2013-09-21 05:38 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-10-11 00:38 - 2013-09-21 05:30 - 02706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-10-11 00:38 - 2013-09-21 04:48 - 00089600 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-10-11 00:38 - 2013-09-21 04:39 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2013-10-10 13:06 - 2013-07-04 14:50 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\comctl32.dll
2013-10-10 13:06 - 2013-07-04 13:50 - 00530432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comctl32.dll
2013-10-10 13:06 - 2013-06-06 07:50 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
2013-10-10 13:06 - 2013-06-06 07:49 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2013-10-10 13:06 - 2013-06-06 07:49 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
2013-10-10 13:06 - 2013-06-06 07:47 - 00046080 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2013-10-10 13:06 - 2013-06-06 06:57 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lpk.dll
2013-10-10 13:06 - 2013-06-06 06:51 - 00070656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll
2013-10-10 13:06 - 2013-06-06 06:50 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dciman32.dll
2013-10-10 13:06 - 2013-06-06 05:30 - 00368128 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2013-10-10 13:06 - 2013-06-06 05:01 - 00295424 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2013-10-10 13:06 - 2013-06-06 05:01 - 00034304 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2013-10-10 12:57 - 2013-09-14 03:10 - 00497152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2013-10-10 12:57 - 2013-09-08 04:30 - 01903552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2013-10-10 12:57 - 2013-09-08 04:27 - 00327168 _____ (Microsoft Corporation) C:\Windows\system32\mswsock.dll
2013-10-10 12:57 - 2013-09-08 04:03 - 00231424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mswsock.dll
2013-10-10 12:57 - 2013-08-29 04:17 - 05549504 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2013-10-10 12:57 - 2013-08-29 04:16 - 01732032 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2013-10-10 12:57 - 2013-08-29 04:16 - 00859648 _____ (Microsoft Corporation) C:\Windows\system32\tdh.dll
2013-10-10 12:57 - 2013-08-29 04:16 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2013-10-10 12:57 - 2013-08-29 04:13 - 00878080 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2013-10-10 12:57 - 2013-08-29 03:51 - 03969472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2013-10-10 12:57 - 2013-08-29 03:51 - 03914176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2013-10-10 12:57 - 2013-08-29 03:50 - 01292192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2013-10-10 12:57 - 2013-08-29 03:50 - 00619520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdh.dll
2013-10-10 12:57 - 2013-08-29 03:50 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2013-10-10 12:57 - 2013-08-29 03:48 - 00640512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
2013-10-10 12:57 - 2013-08-29 02:49 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2013-10-10 12:57 - 2013-08-29 02:49 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2013-10-10 12:57 - 2013-08-29 02:49 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2013-10-10 12:57 - 2013-08-29 02:49 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2013-10-10 12:57 - 2013-08-28 03:21 - 03155968 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2013-10-10 12:57 - 2013-07-12 12:41 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbcir.sys
2013-10-10 12:57 - 2013-07-12 12:40 - 00109824 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBAUDIO.sys
2013-10-10 12:57 - 2013-07-04 14:57 - 00259584 _____ (Microsoft Corporation) C:\Windows\system32\WebClnt.dll
2013-10-10 12:57 - 2013-07-04 14:50 - 00102400 _____ (Microsoft Corporation) C:\Windows\system32\davclnt.dll
2013-10-10 12:57 - 2013-07-04 13:57 - 00205824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WebClnt.dll
2013-10-10 12:57 - 2013-07-04 13:51 - 00081920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\davclnt.dll
2013-10-10 12:57 - 2013-07-04 12:11 - 00140800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys
2013-10-10 12:57 - 2013-07-03 06:05 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidclass.sys
2013-10-10 12:57 - 2013-07-03 06:05 - 00032896 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidparse.sys
2013-10-10 12:57 - 2013-06-26 00:55 - 00785624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Wdf01000.sys
2013-10-10 12:56 - 2013-08-28 03:12 - 00461312 _____ (Microsoft Corporation) C:\Windows\system32\scavengeui.dll
2013-10-10 12:56 - 2013-08-01 14:09 - 00983488 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2013-10-10 12:56 - 2013-07-20 12:33 - 00124112 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2013-10-10 12:56 - 2013-07-20 12:33 - 00102608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2013-10-08 20:30 - 2009-03-18 18:35 - 00033856 ____H (LogMeIn, Inc.) C:\Windows\system32\hamachi.sys
2013-10-08 20:29 - 2013-10-08 20:29 - 05849088 _____ C:\Users\Christian Mies\Downloads\hamachi22 (1).msi
2013-10-08 20:28 - 2013-10-08 20:36 - 00000000 ____D C:\Users\Christian Mies\AppData\Local\LogMeIn Hamachi
2013-10-08 20:28 - 2013-10-08 20:28 - 00000000 ____D C:\Users\Christian Mies\AppData\Local\LogMeIn
2013-10-08 20:28 - 2013-10-08 20:28 - 00000000 ____D C:\ProgramData\LogMeIn
2013-10-08 20:26 - 2013-10-08 20:27 - 05849088 _____ C:\Users\Christian Mies\Downloads\hamachi22.msi
2013-10-08 17:46 - 2013-10-08 17:46 - 00000733 _____ C:\Users\Public\Desktop\7 Days to Die - Alpha.lnk
2013-10-08 17:46 - 2013-10-08 17:46 - 00000000 ___HD C:\Windows\PIF
2013-10-07 20:23 - 2013-10-07 20:27 - 00000000 ____D C:\Users\Christian Mies\AppData\Roaming\.minecraft
2013-10-07 20:23 - 2013-10-07 20:23 - 00353280 _____ C:\Users\Christian Mies\Desktop\Minecraft.exe
2013-10-07 20:23 - 2013-10-07 20:23 - 00000000 ____D C:\Users\Christian Mies\Desktop\Minecraft 1.6.1 Cracked
2013-10-07 20:20 - 2013-10-07 20:21 - 54928642 _____ C:\Users\Christian Mies\Downloads\Minecraft1.6.1-Wazez.zip
2013-10-03 13:06 - 2013-10-03 13:06 - 00000000 ____D C:\Users\Christian Mies\AppData\Local\NPE
2013-10-03 12:12 - 2013-10-03 12:12 - 00003118 _____ C:\Windows\System32\Tasks\{64B526F7-884E-4A71-8431-E63CF524876A}
2013-10-03 00:59 - 2013-10-03 12:14 - 00000000 ____D C:\Program Files (x86)\MyPC Backup
2013-10-03 00:58 - 2013-10-03 00:58 - 00000000 ____D C:\Users\Christian Mies\Documents\Optimizer Pro
2013-10-03 00:58 - 2013-10-03 00:58 - 00000000 ____D C:\Users\Christian Mies\AppData\Roaming\Optimizer Pro
2013-10-03 00:58 - 2013-10-03 00:58 - 00000000 ____D C:\Program Files (x86)\VideoPlayer
2013-10-03 00:57 - 2013-10-03 00:57 - 00000000 ____D C:\Users\Christian Mies\AppData\Local\Babylon
2013-10-03 00:57 - 2013-10-03 00:57 - 00000000 ____D C:\Program Files (x86)\Optimizer Pro
2013-10-03 00:56 - 2013-10-03 00:56 - 00178720 _____ C:\Users\Christian Mies\Downloads\Setup.exe
2013-10-01 19:39 - 2013-10-01 19:39 - 00001985 _____ C:\Users\Public\Desktop\Adobe Reader XI.lnk
2013-10-01 19:25 - 2013-10-01 19:25 - 01071568 _____ (Solid State Networks) C:\Users\Christian Mies\Downloads\install_reader11_de_ltr5x64d_awc_aih.exe
2013-10-01 18:32 - 2013-07-08 13:21 - 00003656 _____ C:\Users\Christian Mies\Desktop\index.html
2013-10-01 18:20 - 2013-10-01 18:29 - 291160385 _____ C:\Users\Christian Mies\Downloads\ITE.zip
==================== One Month Modified Files and Folders =======
2013-10-25 15:59 - 2013-02-17 13:29 - 00000000 ____D C:\Users\Christian Mies\AppData\Local\PMB Files
2013-10-25 15:59 - 2012-08-04 03:16 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-10-25 15:58 - 2013-10-25 15:58 - 00000000 ____D C:\FRST
2013-10-25 15:58 - 2009-07-14 06:45 - 00020288 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-10-25 15:58 - 2009-07-14 06:45 - 00020288 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-10-25 15:57 - 2013-10-25 15:57 - 01955412 _____ (Farbar) C:\Users\Christian Mies\Desktop\FRST64.exe
2013-10-25 15:56 - 2012-07-20 19:10 - 01300393 _____ C:\Windows\WindowsUpdate.log
2013-10-25 15:56 - 2011-04-12 09:43 - 00696620 _____ C:\Windows\system32\perfh007.dat
2013-10-25 15:56 - 2011-04-12 09:43 - 00147916 _____ C:\Windows\system32\perfc007.dat
2013-10-25 15:56 - 2009-07-14 07:13 - 01612484 _____ C:\Windows\system32\PerfStringBackup.INI
2013-10-25 15:54 - 2012-07-31 14:13 - 00001156 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2415147590-3532157430-3241875667-1001UA.job
2013-10-25 15:51 - 2012-07-18 09:42 - 00000000 ____D C:\ProgramData\Bigfoot Networks
2013-10-25 15:50 - 2013-06-04 14:17 - 00000000 ____D C:\Users\Christian Mies\AppData\Roaming\Spotify
2013-10-25 15:50 - 2012-08-03 01:00 - 00000000 _____ C:\Windows\system32\Drivers\lvuvc.hs
2013-10-25 15:50 - 2012-07-18 09:37 - 00000000 ____D C:\ProgramData\NVIDIA
2013-10-25 15:50 - 2009-07-14 07:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-10-25 15:50 - 2009-07-14 06:51 - 00113376 _____ C:\Windows\setupact.log
2013-10-24 23:14 - 2012-07-31 14:48 - 00000000 ____D C:\Users\Christian Mies\AppData\Roaming\Skype
2013-10-24 22:54 - 2012-07-31 14:13 - 00001104 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2415147590-3532157430-3241875667-1001Core.job
2013-10-22 19:20 - 2013-06-04 14:19 - 00000000 ____D C:\Users\Christian Mies\AppData\Local\Spotify
2013-10-20 14:00 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\system32\NDF
2013-10-18 00:05 - 2013-10-16 16:23 - 00290184 _____ C:\Windows\SysWOW64\PnkBstrB.exe
2013-10-18 00:05 - 2012-12-19 02:05 - 00290184 _____ C:\Windows\SysWOW64\PnkBstrB.xtr
2013-10-17 23:34 - 2013-10-17 23:34 - 00264616 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2013-10-17 23:34 - 2013-10-17 23:34 - 00175016 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2013-10-17 23:34 - 2013-10-17 23:34 - 00174504 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2013-10-17 23:34 - 2013-10-17 23:34 - 00096168 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2013-10-17 23:34 - 2013-10-17 23:34 - 00000000 ____D C:\ProgramData\Oracle
2013-10-17 23:34 - 2013-10-17 23:34 - 00000000 ____D C:\Program Files (x86)\Java
2013-10-17 23:33 - 2013-10-17 23:33 - 00915368 _____ (Oracle Corporation) C:\Users\Christian Mies\Downloads\chromeinstall-7u45.exe
2013-10-17 23:33 - 2013-10-17 23:33 - 00915368 _____ (Oracle Corporation) C:\Users\Christian Mies\Downloads\chromeinstall-7u45 (1).exe
2013-10-17 19:42 - 2010-11-21 05:47 - 00049498 _____ C:\Windows\PFRO.log
2013-10-17 18:52 - 2012-12-18 20:46 - 00290184 _____ C:\Windows\SysWOW64\PnkBstrB.ex0
2013-10-17 00:03 - 2013-03-03 15:18 - 00000000 ____D C:\Users\Christian Mies\Desktop\Bilder
2013-10-16 19:43 - 2013-10-16 19:43 - 00000677 _____ C:\Users\Public\Desktop\Elsword.lnk
2013-10-16 19:42 - 2013-10-16 19:42 - 01914248 _____ (Gameforge4D ) C:\Users\Christian Mies\Downloads\Elsword_DE_3.0807.8.2.exe
2013-10-16 19:42 - 2013-10-16 19:42 - 00569487 _____ (Gameforge 4D ) C:\Users\Christian Mies\Downloads\Downloader_Elsword_de.exe
2013-10-16 19:40 - 2013-10-16 19:40 - 00400720 _____ (Softonic ) C:\Users\Christian Mies\Downloads\SoftonicDownloader_fuer_elsword (1).exe
2013-10-16 16:23 - 2013-10-16 16:23 - 00013361 _____ C:\Users\Christian Mies\Desktop\pbgame.htm
2013-10-16 16:23 - 2012-12-18 20:46 - 00076888 _____ C:\Windows\SysWOW64\PnkBstrA.exe
2013-10-16 16:22 - 2013-10-16 16:18 - 00718805 _____ C:\Users\Christian Mies\Downloads\pbsetup.zip
2013-10-16 16:17 - 2013-10-16 16:17 - 00840264 _____ C:\Users\Christian Mies\Downloads\pbsvc.exe
2013-10-16 14:29 - 2013-10-16 01:20 - 00000000 ____D C:\Program Files (x86)\Toolbar Cleaner
2013-10-16 12:21 - 2013-01-23 23:09 - 00000000 ____D C:\Program Files (x86)\Battlelog Web Plugins
2013-10-16 12:21 - 2009-07-14 07:08 - 00032640 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2013-10-16 01:23 - 2013-10-16 01:22 - 03820328 _____ C:\Users\Christian Mies\Downloads\battlelog-web-plugins_2.3.0_119.exe
2013-10-16 01:20 - 2013-10-16 01:20 - 00001056 _____ C:\Users\Christian Mies\Desktop\Toolbar Cleaner.lnk
2013-10-16 01:20 - 2013-10-16 01:20 - 00000000 ____D C:\Users\Christian Mies\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Toolbar Cleaner
2013-10-16 01:20 - 2013-10-16 01:20 - 00000000 ____D C:\Users\Christian Mies\AppData\Local\toolbarcleaner
2013-10-16 01:20 - 2013-10-16 01:20 - 00000000 ____D C:\ProgramData\Anti-phishing Domain Advisor
2013-10-16 01:19 - 2013-10-16 01:18 - 01214896 _____ (Visicom Media Inc.) C:\Users\Christian Mies\Downloads\toolbarcleaner_setup.exe
2013-10-16 01:05 - 2013-01-23 15:05 - 00000000 ____D C:\Users\Christian Mies\AppData\Local\Origin
2013-10-16 01:05 - 2013-01-23 14:25 - 00000000 ____D C:\Users\Christian Mies\AppData\Roaming\Origin
2013-10-16 01:05 - 2013-01-23 14:25 - 00000000 ____D C:\ProgramData\Origin
2013-10-14 12:07 - 2013-10-14 11:29 - 00000000 ____D C:\Users\Christian Mies\Desktop\Nancy
2013-10-13 22:49 - 2012-07-31 14:13 - 00004144 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2415147590-3532157430-3241875667-1001UA
2013-10-13 22:49 - 2012-07-31 14:13 - 00003748 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2415147590-3532157430-3241875667-1001Core
2013-10-11 21:46 - 2013-10-11 21:45 - 01608659 _____ C:\Users\Christian Mies\Downloads\Mi muchacho Diomedes Diaz. (AUDIO).3gp
2013-10-11 21:36 - 2013-10-11 21:36 - 00001937 _____ C:\Users\Public\Desktop\McAfee Security Scan Plus.lnk
2013-10-11 21:36 - 2013-10-11 21:36 - 00000000 ____D C:\Program Files\McAfee Security Scan
2013-10-11 19:52 - 2013-09-14 12:52 - 00000000 ____D C:\Windows\rescache
2013-10-11 16:34 - 2013-10-11 16:34 - 00000000 ___RD C:\Users\Christian Mies\Podcasts
2013-10-11 16:34 - 2012-07-20 19:13 - 00000000 ____D C:\Users\Christian Mies
2013-10-11 16:31 - 2013-10-11 15:52 - 105664248 _____ (Microsoft Corporation) C:\Users\Christian Mies\Downloads\ZuneSetup48Pkg.exe
2013-10-11 11:04 - 2009-07-14 06:45 - 00277672 _____ C:\Windows\system32\FNTCACHE.DAT
2013-10-11 00:38 - 2013-03-14 23:24 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2013-10-11 00:38 - 2012-07-20 19:12 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight
2013-10-11 00:37 - 2012-03-16 15:09 - 01589442 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2013-10-11 00:36 - 2013-07-19 00:29 - 00000000 ____D C:\Windows\system32\MRT
2013-10-11 00:35 - 2013-05-03 21:44 - 80541720 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2013-10-09 19:05 - 2012-08-04 13:59 - 17813896 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerInstaller.exe
2013-10-09 19:05 - 2012-08-04 03:16 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2013-10-09 19:05 - 2012-08-04 03:16 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2013-10-09 19:05 - 2012-08-04 03:16 - 00003822 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2013-10-09 11:43 - 2012-07-31 14:48 - 00000000 ____D C:\ProgramData\Skype
2013-10-08 20:36 - 2013-10-08 20:28 - 00000000 ____D C:\Users\Christian Mies\AppData\Local\LogMeIn Hamachi
2013-10-08 20:29 - 2013-10-08 20:29 - 05849088 _____ C:\Users\Christian Mies\Downloads\hamachi22 (1).msi
2013-10-08 20:28 - 2013-10-08 20:28 - 00000000 ____D C:\Users\Christian Mies\AppData\Local\LogMeIn
2013-10-08 20:28 - 2013-10-08 20:28 - 00000000 ____D C:\ProgramData\LogMeIn
2013-10-08 20:27 - 2013-10-08 20:26 - 05849088 _____ C:\Users\Christian Mies\Downloads\hamachi22.msi
2013-10-08 17:46 - 2013-10-08 17:46 - 00000733 _____ C:\Users\Public\Desktop\7 Days to Die - Alpha.lnk
2013-10-08 17:46 - 2013-10-08 17:46 - 00000000 ___HD C:\Windows\PIF
2013-10-07 20:27 - 2013-10-07 20:23 - 00000000 ____D C:\Users\Christian Mies\AppData\Roaming\.minecraft
2013-10-07 20:23 - 2013-10-07 20:23 - 00353280 _____ C:\Users\Christian Mies\Desktop\Minecraft.exe
2013-10-07 20:23 - 2013-10-07 20:23 - 00000000 ____D C:\Users\Christian Mies\Desktop\Minecraft 1.6.1 Cracked
2013-10-07 20:21 - 2013-10-07 20:20 - 54928642 _____ C:\Users\Christian Mies\Downloads\Minecraft1.6.1-Wazez.zip
2013-10-03 13:06 - 2013-10-03 13:06 - 00000000 ____D C:\Users\Christian Mies\AppData\Local\NPE
2013-10-03 13:06 - 2013-02-14 20:57 - 00000000 ____D C:\ProgramData\Norton
2013-10-03 12:14 - 2013-10-03 00:59 - 00000000 ____D C:\Program Files (x86)\MyPC Backup
2013-10-03 12:14 - 2012-07-20 19:13 - 00000000 ___RD C:\Users\Christian Mies\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2013-10-03 12:12 - 2013-10-03 12:12 - 00003118 _____ C:\Windows\System32\Tasks\{64B526F7-884E-4A71-8431-E63CF524876A}
2013-10-03 00:58 - 2013-10-03 00:58 - 00000000 ____D C:\Users\Christian Mies\Documents\Optimizer Pro
2013-10-03 00:58 - 2013-10-03 00:58 - 00000000 ____D C:\Users\Christian Mies\AppData\Roaming\Optimizer Pro
2013-10-03 00:58 - 2013-10-03 00:58 - 00000000 ____D C:\Program Files (x86)\VideoPlayer
2013-10-03 00:58 - 2011-06-11 02:58 - 00773712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcr100.dll
2013-10-03 00:58 - 2011-06-11 02:58 - 00420944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcp100.dll
2013-10-03 00:57 - 2013-10-03 00:57 - 00000000 ____D C:\Users\Christian Mies\AppData\Local\Babylon
2013-10-03 00:57 - 2013-10-03 00:57 - 00000000 ____D C:\Program Files (x86)\Optimizer Pro
2013-10-03 00:56 - 2013-10-03 00:56 - 00178720 _____ C:\Users\Christian Mies\Downloads\Setup.exe
2013-10-01 19:48 - 2012-11-04 17:38 - 00000000 ____D C:\ProgramData\Adobe
2013-10-01 19:46 - 2012-11-04 17:38 - 00000000 ____D C:\Users\Christian Mies\AppData\Local\Adobe
2013-10-01 19:46 - 2012-07-31 14:27 - 00000000 ____D C:\Users\Christian Mies\AppData\Roaming\Adobe
2013-10-01 19:39 - 2013-10-01 19:39 - 00001985 _____ C:\Users\Public\Desktop\Adobe Reader XI.lnk
2013-10-01 19:39 - 2012-11-04 17:38 - 00000000 ____D C:\Program Files (x86)\Adobe
2013-10-01 19:25 - 2013-10-01 19:25 - 01071568 _____ (Solid State Networks) C:\Users\Christian Mies\Downloads\install_reader11_de_ltr5x64d_awc_aih.exe
2013-10-01 18:29 - 2013-10-01 18:20 - 291160385 _____ C:\Users\Christian Mies\Downloads\ITE.zip
2013-09-27 20:31 - 2013-03-21 11:05 - 00014833 _____ C:\Users\Christian Mies\Documents\TombRaider.log
Files to move or delete:
====================
C:\Users\Christian Mies\jagex_cl_runescape_LIVE.dat
C:\Users\Christian Mies\random.dat
Some content of TEMP:
====================
C:\Users\Christian Mies\AppData\Local\Temp\APNStub.exe
C:\Users\Christian Mies\AppData\Local\Temp\BackupSetup.exe
C:\Users\Christian Mies\AppData\Local\Temp\bdfilters.dll
C:\Users\Christian Mies\AppData\Local\Temp\install_flashplayer11x32_mssa_aaa_aih.exe
C:\Users\Christian Mies\AppData\Local\Temp\install_reader11_de_ltr5x64d_awc_aih.exe
C:\Users\Christian Mies\AppData\Local\Temp\jre-7u17-windows-i586-iftw.exe
C:\Users\Christian Mies\AppData\Local\Temp\jre-7u21-windows-i586-iftw.exe
C:\Users\Christian Mies\AppData\Local\Temp\jre-7u25-windows-i586-iftw.exe
C:\Users\Christian Mies\AppData\Local\Temp\nvSCPAPI.dll
C:\Users\Christian Mies\AppData\Local\Temp\nvStInst.exe
C:\Users\Christian Mies\AppData\Local\Temp\Setup.exe
C:\Users\Christian Mies\AppData\Local\Temp\SkypeSetup.exe
C:\Users\Christian Mies\AppData\Local\Temp\sonarinst.exe
C:\Users\Christian Mies\AppData\Local\Temp\SpotifyUninstall.exe
C:\Users\Christian Mies\AppData\Local\Temp\swt-win32-3349.dll
C:\Users\Christian Mies\AppData\Local\Temp\ubi4668.tmp.exe
C:\Users\Christian Mies\AppData\Local\Temp\{C44608A3-D177-44D0-AF32-A723D97795C8}-23.0.1271.91_chrome_installer.exe
==================== Bamital & volsnap Check =================
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
LastRegBack: 2013-10-21 16:48
==================== End Of Log ============================
|
|
27.10.2013, 17:45
| #6 | |
| /// the machine /// TB-Ausbilder | BSI Mitteilung über Sperrung der Daten! (bekannter Trojaner) Alles läuft weiterhin problemlos. Trojaner ja oder nein?Combofix sollte ausschließlich ausgeführt werden, wenn dies von einem Teammitglied angewiesen wurde!Downloade dir bitte Combofix vom folgenden Downloadspiegel Link 1 WICHTIG - Speichere Combofix auf deinem Desktop
Wenn Combofix fertig ist, wird es eine Logfile erstellen. Bitte poste die C:\Combofix.txt in deiner nächsten Antwort. Hinweis: Solltest du nach dem Neustart folgende Fehlermeldung erhalten Zitat:
__________________ --> BSI Mitteilung über Sperrung der Daten! (bekannter Trojaner) Alles läuft weiterhin problemlos. Trojaner ja oder nein? |
|
| Themen zu BSI Mitteilung über Sperrung der Daten! (bekannter Trojaner) Alles läuft weiterhin problemlos. Trojaner ja oder nein? |
| ahnung, bildschirmsperre, datei, daten, direkt, diverse, einfach, ergebnis, google, guten, leute, meldung, natürlich, nichts, programm, scan, seite, seiten, sicherheit, suche, trojaner, unsicherheit, windows, windows 7, youtube, öffnen |
Linear-Darstellung
