|
Plagegeister aller Art und deren Bekämpfung: Trojaner - genügt Öffnen eines Zip-Mailanhangs?Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen. |
22.11.2013, 03:20 | #1 |
| Trojaner - genügt Öffnen eines Zip-Mailanhangs? Hallo, kürzlich erhielt ich eine Mail von einer "Anwaltskanzalei" (sic!), eine nicht beglichene Rechnung von der ich nicht in Kenntnis war. Weil ich neugierig (und wohl auch nicht skeptisch genug) war hab ich den Anhang (eine zip-Datei) heruntergeladen, und das Archiv geöffnet. Drin verpackt war eine "MS-Dos-Anwendung". Das habe ich nicht ausgeführt, da mir klar war dass ich mir damit einen Virus einfange. Aber alleine für das Öffnen des zip-Archives möchte ich mir in den Arsch beißen. Einfach nur dumm von mir, geistig völlig abwesend. Die Datei habe ich im Anschluss gelöscht, ebenso die Mail. Besteht eine Chance dass alleine das Öffnen des zip-Archives ausreicht, um meinen Rechner zu infizieren? Mein Norton AntiVirus hat nach kompletten Systemscan zumindest kein Sicherheitsrisiko gefunden. Würde mich über eine Antwort freuen |
22.11.2013, 08:34 | #2 |
/// the machine /// TB-Ausbilder | Trojaner - genügt Öffnen eines Zip-Mailanhangs? hi,
__________________Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop: FRST 32-Bit | FRST 64-Bit (Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)
__________________ |
22.11.2013, 13:11 | #3 |
| Trojaner - genügt Öffnen eines Zip-Mailanhangs? FRST Logfile:
__________________FRST Logfile: Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 18-11-2013 Ran by Martin Zeller (administrator) on MARTINZELLER on 22-11-2013 13:03:11 Running from C:\Users\Martin Zeller\Downloads Windows 7 Home Premium Service Pack 1 (X64) OS Language: German Standard Internet Explorer Version 11 Boot Mode: Normal ==================== Processes (Whitelisted) ================= (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe (Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe (AVM Berlin) C:\Program Files (x86)\avmwlanstick\WlanNetService.exe (Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe (Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe (Symantec Corporation) C:\Program Files (x86)\Norton Internet Security\Engine\19.9.1.14\ccSvcHst.exe (Microsoft Corporation) C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE (Symantec Corporation) C:\Program Files (x86)\Norton Internet Security\Engine\19.9.1.14\ccSvcHst.exe (Microsoft Corporation) C:\Windows\system32\DFDWiz.exe () C:\Program Files\MATLAB\R2013b\bin\win64\MATLABStartupAccelerator.exe (Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe (AVG Secure Search) C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\17.1.2\ToolbarUpdater.exe (Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE (Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe () C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\17.1.2\loggingserver.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe (Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe (Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe (Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe (Spotify Ltd) C:\Users\Martin Zeller\AppData\Roaming\Spotify\spotify.exe (Spotify Ltd) C:\Users\Martin Zeller\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe (Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe (Dropbox, Inc.) C:\Users\Martin Zeller\AppData\Roaming\Dropbox\bin\Dropbox.exe (Adobe Systems Incorporated) C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_11_9_900_117_Plugin.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe (AVM Berlin) C:\Program Files (x86)\avmwlanstick\WLanGUI.exe () C:\Program Files (x86)\AVG Secure Search\vprot.exe (Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe (Apple Inc.) C:\Program Files (x86)\iTunes\iTunesHelper.exe (Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe () C:\Program Files (x86)\Anker Precision Laser Gaming Mouse\AnkerMonEx.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Microsoft Corporation) C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE (Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqSTE08.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqbam08.exe (Hewlett-Packard) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe (Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe () C:\Users\Martin Zeller\AppData\Roaming\Spotify\Data\SpotifyHelper.exe () C:\Users\Martin Zeller\AppData\Roaming\Spotify\Data\SpotifyHelper.exe () C:\Users\Martin Zeller\AppData\Roaming\Spotify\Data\SpotifyHelper.exe () C:\Users\Martin Zeller\AppData\Roaming\Spotify\Data\SpotifyHelper.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe () C:\Users\Martin Zeller\AppData\Roaming\Spotify\Data\SpotifyHelper.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Nero AG) C:\Program Files (x86)\Nero\Update\NASvc.exe ==================== Registry (Whitelisted) ================== HKLM\...\Run: [RTHDVCPL] - C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [7233640 2011-07-06] (Realtek Semiconductor) HKLM\...\Run: [AdobeAAMUpdater-1.0] - C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\updaterstartuputility.exe [446392 2012-04-04] (Adobe Systems Incorporated) HKCU\...\Run: [AdobeBridge] - "C:\Program Files (x86)\Adobe\Adobe Bridge CS5.1\Bridge.exe" -stealth HKCU\...\Run: [Steam] - C:\Program Files (x86)\Steam\Steam.exe [1820584 2013-10-30] (Valve Corporation) HKCU\...\Run: [Spotify] - C:\Users\Martin Zeller\AppData\Roaming\Spotify\spotify.exe [5955072 2013-11-12] (Spotify Ltd) HKCU\...\Run: [Spotify Web Helper] - C:\Users\Martin Zeller\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe [1168896 2013-11-12] (Spotify Ltd) MountPoints2: {b9e82495-533b-11e1-ad67-001c4afe2548} - J:\LaunchU3.exe -a MountPoints2: {c02a28e0-0174-11e1-8aaf-6c626d3b68fc} - J:\pushinst.exe HKLM-x32\...\Run: [IAStorIcon] - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [284440 2011-05-20] (Intel Corporation) HKLM-x32\...\Run: [AVMWlanClient] - C:\Program Files (x86)\avmwlanstick\WLanGUI.exe [2105344 2010-10-22] (AVM Berlin) HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-04-04] (Adobe Systems Incorporated) HKLM-x32\...\Run: [APSDaemon] - C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-04-21] (Apple Inc.) HKLM-x32\...\Run: [vProt] - C:\Program Files (x86)\AVG Secure Search\vprot.exe [2420248 2013-11-07] () HKLM-x32\...\Run: [SwitchBoard] - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) HKLM-x32\...\Run: [AdobeCS6ServiceManager] - C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [1073312 2012-03-09] (Adobe Systems Incorporated) HKLM-x32\...\Run: [HP Software Update] - C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe [49208 2011-10-28] (Hewlett-Packard) HKLM-x32\...\Run: [] - [x] HKLM-x32\...\Run: [iTunesHelper] - C:\Program Files (x86)\iTunes\iTunesHelper.exe [152392 2013-05-31] (Apple Inc.) HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [253816 2013-03-12] (Oracle Corporation) HKLM-x32\...\Run: [QuickTime Task] - C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2013-05-01] (Apple Inc.) HKLM-x32\...\Run: [EsternTimesMouseExRun] - C:\Program Files (x86)\Anker Precision Laser Gaming Mouse\AnkerMonEx.exe [3351040 2013-04-23] () HKU\UpdatusUser\...\Run: [AVG-Secure-Search-Update_JUNE2013_TB] - C:\Program Files (x86)\AVG Secure Search\AVG-Secure-Search-Update_JUNE2013_TB.exe [1266712 2013-06-05] (AVG Secure Search) Startup: C:\Users\Martin Zeller\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk ShortcutTarget: Dropbox.lnk -> C:\Users\Martin Zeller\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.) ==================== Internet (Whitelisted) ==================== HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://google.de/ HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://de.msn.com/?ocid=iehp HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0xF5C10217650ECD01 HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de-DE SearchScopes: HKCU - DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKCU - {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} URL = hxxp://search.babylon.com/?q={searchTerms}&affID=112542&tt=090812_bab_3212_1&babsrc=SP_ss&mntrId=1e1edd8c000000000000001c4afe2548 SearchScopes: HKCU - {95B7759C-8C7F-4BF1-B163-73684A933233} URL = hxxp://isearch.avg.com/search?cid={F71203B0-0157-4087-B2A9-04CB45D983FC}&mid=48d2beb47fc147d0a24bd1550c1accbb-4a94f8fcb9e0f6556ff6f17d4fed76d18915938d&lang=de&ds=gm011&pr=sa&d=2012-12-19 11:02:17&v=17.0.1.12&pid=avg&sg=36&sap=dsp&q={searchTerms} BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.) BHO-x32: HP Print Enhancer - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files (x86)\HP\Digital Imaging\smart web printing\hpswp_printenhancer.dll (Hewlett-Packard Co.) BHO-x32: Norton Identity Protection - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files (x86)\Norton Internet Security\Engine\19.9.1.14\coieplg.dll (Symantec Corporation) BHO-x32: Norton Vulnerability Protection - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files (x86)\Norton Internet Security\Engine\19.9.1.14\ips\ipsbho.dll (Symantec Corporation) BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation) BHO-x32: Windows Live ID-Anmelde-Hilfsprogramm - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.) BHO-x32: AVG Security Toolbar - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files (x86)\AVG Secure Search\17.1.2.1\AVG Secure Search_toolbar.dll (AVG Secure Search) BHO-x32: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll (Microsoft Corporation) BHO-x32: Bing Bar Helper - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll (Microsoft Corporation.) BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation) BHO-x32: HP Smart BHO Class - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files (x86)\HP\Digital Imaging\smart web printing\hpswp_BHO.dll (Hewlett-Packard Co.) Toolbar: HKLM-x32 - Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll (Microsoft Corporation.) Toolbar: HKLM-x32 - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Internet Security\Engine\19.9.1.14\coieplg.dll (Symantec Corporation) Toolbar: HKLM-x32 - AVG Security Toolbar - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files (x86)\AVG Secure Search\17.1.2.1\AVG Secure Search_toolbar.dll (AVG Secure Search) Handler-x32: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - C:\Program Files (x86)\Common Files\AVG Secure Search\ViProtocolInstaller\17.1.2\ViProtocol.dll (AVG Secure Search) Tcpip\Parameters: [DhcpNameServer] 192.168.0.1 192.168.0.2 FireFox: ======== FF ProfilePath: C:\Users\Martin Zeller\AppData\Roaming\Mozilla\Firefox\Profiles\615ielti.default FF user.js: detected! => C:\Users\Martin Zeller\AppData\Roaming\Mozilla\Firefox\Profiles\615ielti.default\user.js FF NewTab: hxxp://search.babylon.com/?affID=112542&tt=090812_bab_3212_1&babsrc=NT_ss&mntrId=1e1edd8c000000000000001c4afe2548 FF SearchEngineOrder.1: Search the web (Babylon) FF SelectedSearchEngine: Google FF Homepage: hxxp://www.natureworldnews.com/ FF Keyword.URL: hxxp://search.babylon.com/?affID=112542&tt=090812_bab_3212_1&babsrc=KW_ss&mntrId=1e1edd8c000000000000001c4afe2548&q= FF NetworkProxy: "share_proxy_settings", true FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_9_900_117.dll () FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation) FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_117.dll () FF Plugin-x32: @Apple.com/iTunes,version=1.0 - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll () FF Plugin-x32: @avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin - C:\Program Files (x86)\Common Files\AVG Secure Search\SiteSafetyInstaller\17.1.2\\npsitesafety.dll (AVG Technologies) FF Plugin-x32: @Google.com/GoogleEarthPlugin - C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google) FF Plugin-x32: @java.com/DTPlugin,version=10.25.2 - C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=10.25.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation) FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation) FF Plugin-x32: @microsoft.com/OfficeLive,version=1.5 - C:\Program Files (x86)\Microsoft\Office Live\npOLW.dll (Microsoft Corp.) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation) FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation) FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation) FF Plugin-x32: @nvidia.com/3DVision - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation) FF Plugin-x32: @nvidia.com/3DVisionStreaming - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation) FF Plugin-x32: @pandonetworks.com/PandoWebPlugin - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks) FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.) FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.) FF Plugin HKCU: pandonetworks.com/PandoWebPlugin - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks) FF SearchPlugin: C:\Users\Martin Zeller\AppData\Roaming\Mozilla\Firefox\Profiles\615ielti.default\searchplugins\11-suche.xml FF SearchPlugin: C:\Users\Martin Zeller\AppData\Roaming\Mozilla\Firefox\Profiles\615ielti.default\searchplugins\avg-secure-search.xml FF SearchPlugin: C:\Users\Martin Zeller\AppData\Roaming\Mozilla\Firefox\Profiles\615ielti.default\searchplugins\englische-ergebnisse.xml FF SearchPlugin: C:\Users\Martin Zeller\AppData\Roaming\Mozilla\Firefox\Profiles\615ielti.default\searchplugins\gmx-suche.xml FF SearchPlugin: C:\Users\Martin Zeller\AppData\Roaming\Mozilla\Firefox\Profiles\615ielti.default\searchplugins\lastminute.xml FF SearchPlugin: C:\Users\Martin Zeller\AppData\Roaming\Mozilla\Firefox\Profiles\615ielti.default\searchplugins\webde-suche.xml FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\searchplugins\avg-secure-search.xml FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\searchplugins\babylon.xml FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\avg-secure-search.xml FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml FF Extension: ProxTube - Gesperrte YouTube Videos entsperren - C:\Users\Martin Zeller\AppData\Roaming\Mozilla\Firefox\Profiles\615ielti.default\Extensions\ich@maltegoetz.de FF Extension: admin - C:\Users\Martin Zeller\AppData\Roaming\Mozilla\Firefox\Profiles\615ielti.default\Extensions\admin@proxy-listen.de.xpi FF Extension: groovesharkUnlocker - C:\Users\Martin Zeller\AppData\Roaming\Mozilla\Firefox\Profiles\615ielti.default\Extensions\groovesharkUnlocker@overlord1337.xpi FF Extension: DVDVideoSoft Menu - C:\Users\Martin Zeller\AppData\Roaming\Mozilla\Firefox\Profiles\615ielti.default\Extensions\{ACAA314B-EEBA-48e4-AD47-84E31C44796C}.xpi FF Extension: Java Console - C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0035-ABCDEFFEDCBA} FF HKLM-x32\...\Firefox\Extensions: [{BBDA0591-3099-440a-AA10-41764D9DB4DB}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.1.0.28\IPSFF FF Extension: Norton Vulnerability Protection - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.1.0.28\IPSFF FF HKLM-x32\...\Firefox\Extensions: [{2D3F3651-74B9-4795-BDEC-6DA2F431CB62}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.1.0.28\coFFPlgn\ FF Extension: Norton Toolbar - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.1.0.28\coFFPlgn\ FF HKLM-x32\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 FF Extension: HP Smart Web Printing - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 FF HKLM-x32\...\Firefox\Extensions: [avg@toolbar] - C:\ProgramData\AVG Secure Search\FireFoxExt\17.1.2.1 FF Extension: AVG Security Toolbar - C:\ProgramData\AVG Secure Search\FireFoxExt\17.1.2.1 FF HKCU\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 FF Extension: HP Smart Web Printing - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 Chrome: ======= CHR HomePage: hxxp://search.babylon.com/?affID=112542&tt=090812_bab_3212_1&babsrc=HP_ss&mntrId=1e1edd8c000000000000001c4afe2548 CHR RestoreOnStartup: "hxxp://natureworldnews.com/" CHR Extension: (YouTube) - C:\Users\MARTIN~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0 CHR Extension: (Google Search) - C:\Users\MARTIN~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0 CHR Extension: (Windows Media Player Extension for HTML5) - C:\Users\MARTIN~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\hokdglbhghcebcopdbanieangmcamaak\1.0_0 CHR Extension: (Norton Identity Protection) - C:\Users\MARTIN~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mkfokfffehpeedafpekjeddnmnjhmcmk\2012.5.18.4_0 CHR Extension: (AVG Secure Search) - C:\Users\MARTIN~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\ndibdjnfmopecpmkdieinmbadjfpblof\17.1.2.1_0 CHR Extension: (DvdVideoSoft Free Youtube Download) - C:\Users\MARTIN~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\nikpibnbobmbdbheedjfogjlikpgpnhp\1.0.0.0_0 CHR Extension: (Google Wallet) - C:\Users\MARTIN~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.5.0_0 CHR Extension: (Gmail) - C:\Users\MARTIN~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0 CHR HKLM-x32\...\Chrome\Extension: [mkfokfffehpeedafpekjeddnmnjhmcmk] - C:\Program Files (x86)\Norton Internet Security\Engine\19.9.1.14\Exts\Chrome.crx CHR HKLM-x32\...\Chrome\Extension: [ndibdjnfmopecpmkdieinmbadjfpblof] - C:\ProgramData\AVG Secure Search\ChromeExt\17.1.2.1\avg.crx ==================== Services (Whitelisted) ================= R2 AVM WLAN Connection Service; C:\Program Files (x86)\avmwlanstick\WlanNetService.exe [376832 2010-10-22] (AVM Berlin) R2 NIS; C:\Program Files (x86)\Norton Internet Security\Engine\19.9.1.14\ccSvcHst.exe [138272 2012-06-16] (Symantec Corporation) R2 vToolbarUpdater17.1.2; C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\17.1.2\ToolbarUpdater.exe [1734680 2013-11-07] (AVG Secure Search) ==================== Drivers (Whitelisted) ==================== S3 adp3132; C:\Windows\system32\drivers\adp3132.sys [385072 2010-01-28] (Adaptec, Inc.) S3 amdide64; C:\Windows\system32\drivers\amdide64.sys [10632 2007-10-12] (Advanced Micro Devices) R1 avgtp; C:\Windows\system32\drivers\avgtpx64.sys [46368 2013-11-07] (AVG Technologies) S3 avmeject; C:\Windows\System32\drivers\avmeject.sys [14120 2010-10-22] (AVM Berlin) R1 BHDrvx64; C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.1.0.28\Definitions\BASHDefs\20131114.001\BHDrvx64.sys [1524824 2013-10-23] (Symantec Corporation) R1 ccSet_NIS; C:\Windows\system32\drivers\NISx64\1309010.00E\ccSetx64.sys [167072 2012-06-07] (Symantec Corporation) R1 eeCtrl; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [484952 2013-11-21] (Symantec Corporation) R3 EraserUtilRebootDrv; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [137648 2013-11-21] (Symantec Corporation) S3 FLxHCIh; C:\Windows\system32\drivers\FLxHCIh.sys [44544 2010-04-17] (Fresco Logic) S3 fwlanusbn; C:\Windows\System32\DRIVERS\fwlanusbn.sys [714368 2010-10-22] (AVM GmbH) R1 IDSVia64; C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.1.0.28\Definitions\IPSDefs\20131120.003\IDSvia64.sys [521816 2013-10-25] (Symantec Corporation) S3 ISASerial; C:\Windows\system32\drivers\ISASerial.sys [72192 2008-02-20] (Windows (R) Codename Longhorn DDK provider) S3 MTsensor; C:\Windows\system32\drivers\ASACPI.sys [15416 2009-07-16] () S3 MtsHID; C:\Windows\system32\drivers\MtsHID.sys [27664 2009-07-15] (TechniSat Provide) R3 NAVENG; C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.1.0.28\Definitions\VirusDefs\20131121.002\ENG64.SYS [126040 2013-08-29] (Symantec Corporation) R3 NAVEX15; C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.1.0.28\Definitions\VirusDefs\20131121.002\EX64.SYS [2099288 2013-08-29] (Symantec Corporation) S3 nvamacpi; C:\Windows\system32\drivers\NVAMACPI.sys [28192 2009-07-17] (NVIDIA Corporation) S3 nvrd64; C:\Windows\system32\drivers\nvrd64.sys [175648 2009-08-04] (NVIDIA Corporation) S3 PciIsaSerial; C:\Windows\system32\drivers\PciIsaSerial.sys [72192 2008-05-22] (Windows (R) Codename Longhorn DDK provider) S3 PciPPorts; C:\Windows\system32\drivers\PciPPorts.sys [95744 2008-05-22] () S3 PciSPorts; C:\Windows\system32\drivers\PciSPorts.sys [126464 2008-05-22] () S3 PPorts; C:\Windows\system32\drivers\PPorts.sys [95744 2008-02-20] () S3 Si3124r5; C:\Windows\system32\drivers\Si3124r5.sys [340008 2010-04-13] (Silicon Image, Inc) R0 SiFilter; C:\Windows\System32\drivers\SiWinAcc.sys [22568 2010-04-13] (Silicon Image, Inc.) R0 SiRemFil; C:\Windows\System32\drivers\SiRemFil.sys [16936 2010-04-13] (Silicon Image, Inc.) S3 SPorts; C:\Windows\system32\drivers\SPorts.sys [124416 2008-02-20] () R0 sptd; C:\Windows\System32\Drivers\sptd.sys [564792 2012-04-02] (Duplex Secure Ltd.) R3 SRTSP; C:\Windows\System32\Drivers\NISx64\1309010.00E\SRTSP64.SYS [737952 2012-07-06] (Symantec Corporation) R1 SRTSPX; C:\Windows\system32\drivers\NISx64\1309010.00E\SRTSPX64.SYS [37536 2012-07-06] (Symantec Corporation) R0 SymDS; C:\Windows\System32\drivers\NISx64\1309010.00E\SYMDS64.SYS [451192 2011-07-25] (Symantec Corporation) R0 SymEFA; C:\Windows\System32\drivers\NISx64\1309010.00E\SYMEFA64.SYS [1129120 2012-05-22] (Symantec Corporation) R3 SymEvent; C:\Windows\system32\Drivers\SYMEVENT64x86.SYS [175736 2012-03-27] (Symantec Corporation) R1 SymIRON; C:\Windows\system32\drivers\NISx64\1309010.00E\Ironx64.SYS [190072 2012-04-18] (Symantec Corporation) R1 SymNetS; C:\Windows\System32\Drivers\NISx64\1309010.00E\SYMNETS.SYS [405624 2012-04-18] (Symantec Corporation) S3 VUSB3HUB; C:\Windows\system32\drivers\ViaHub3.sys [176640 2011-05-21] (VIA Technologies, Inc.) S3 xhcdrv; C:\Windows\system32\drivers\xhcdrv.sys [230400 2011-05-21] (VIA Technologies, Inc.) S3 NmPar; \SystemRoot\system32\drivers\NmPar.sys [x] S3 nmserial; \SystemRoot\system32\drivers\nmserial.sys [x] ==================== NetSvcs (Whitelisted) =================== ==================== One Month Created Files and Folders ======== 2013-11-22 13:03 - 2013-11-22 13:06 - 00024593 _____ C:\Users\Martin Zeller\Downloads\FRST.txt 2013-11-22 13:03 - 2013-11-22 13:03 - 00000000 ____D C:\FRST 2013-11-22 13:02 - 2013-11-22 13:02 - 01957964 _____ (Farbar) C:\Users\Martin Zeller\Downloads\FRST64.exe 2013-11-22 00:09 - 2013-11-22 00:11 - 00000022 _____ C:\Users\Martin Zeller\Downloads\Forderung der abgewiesenen Lastschrift - Anwalt.zip 2013-11-20 23:59 - 2013-11-20 23:59 - 00112128 _____ C:\Users\Martin Zeller\Downloads\ONPG-Test BMZ 2013 (2).xls 2013-11-20 23:59 - 2013-11-20 23:59 - 00112128 _____ C:\Users\Martin Zeller\Downloads\ONPG-Test BMZ 2013 (1).xls 2013-11-19 00:03 - 2013-11-19 00:03 - 00000000 _____ C:\Windows\SysWOW64\sho9750.tmp 2013-11-18 21:32 - 2013-11-18 21:32 - 00112128 _____ C:\Users\Martin Zeller\Downloads\ONPG-Test BMZ 2013 .xls 2013-11-18 01:57 - 2013-11-18 01:57 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox 2013-11-14 09:34 - 2013-10-12 03:30 - 00830464 _____ (Microsoft Corporation) C:\Windows\system32\nshwfp.dll 2013-11-14 09:34 - 2013-10-12 03:29 - 00859648 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL 2013-11-14 09:34 - 2013-10-12 03:29 - 00324096 _____ (Microsoft Corporation) C:\Windows\system32\FWPUCLNT.DLL 2013-11-14 09:34 - 2013-10-12 03:03 - 00656896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nshwfp.dll 2013-11-14 09:34 - 2013-10-12 03:01 - 00216576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FWPUCLNT.DLL 2013-11-14 09:34 - 2013-10-05 21:25 - 01474048 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll 2013-11-14 09:34 - 2013-10-05 20:57 - 01168384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll 2013-11-14 09:34 - 2013-10-04 03:28 - 00190464 _____ (Microsoft Corporation) C:\Windows\system32\SmartcardCredentialProvider.dll 2013-11-14 09:34 - 2013-10-04 03:25 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\credui.dll 2013-11-14 09:34 - 2013-10-04 03:24 - 01930752 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll 2013-11-14 09:34 - 2013-10-04 02:58 - 00152576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SmartcardCredentialProvider.dll 2013-11-14 09:34 - 2013-10-04 02:56 - 01796096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll 2013-11-14 09:34 - 2013-10-04 02:56 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credui.dll 2013-11-14 09:34 - 2013-10-03 03:23 - 00404480 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll 2013-11-14 09:34 - 2013-10-03 03:00 - 00311808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll 2013-11-14 09:34 - 2013-09-28 02:09 - 00497152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys 2013-11-14 09:34 - 2013-09-25 03:26 - 00154560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys 2013-11-14 09:34 - 2013-09-25 03:26 - 00095680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys 2013-11-14 09:34 - 2013-09-25 03:23 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll 2013-11-14 09:34 - 2013-09-25 03:23 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll 2013-11-14 09:34 - 2013-09-25 03:23 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll 2013-11-14 09:34 - 2013-09-25 03:22 - 00340992 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll 2013-11-14 09:34 - 2013-09-25 03:21 - 01447936 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll 2013-11-14 09:34 - 2013-09-25 03:21 - 00307200 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll 2013-11-14 09:34 - 2013-09-25 02:58 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll 2013-11-14 09:34 - 2013-09-25 02:57 - 00247808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll 2013-11-14 09:34 - 2013-09-25 02:57 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll 2013-11-14 09:34 - 2013-09-25 02:56 - 00220160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll 2013-11-14 09:34 - 2013-09-25 02:03 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe 2013-11-14 09:34 - 2013-07-04 13:18 - 00458712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys 2013-11-13 10:55 - 2013-11-13 10:55 - 00266320 _____ C:\Windows\Minidump\111313-85769-01.dmp 2013-11-12 23:50 - 2013-10-14 18:00 - 00028368 _____ (Microsoft Corporation) C:\Windows\system32\IEUDINIT.EXE 2013-11-12 23:46 - 2013-11-12 23:46 - 23212032 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll 2013-11-12 23:46 - 2013-11-12 23:46 - 17142784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll 2013-11-12 23:46 - 2013-11-12 23:46 - 12995584 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll 2013-11-12 23:46 - 2013-11-12 23:46 - 11220992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll 2013-11-12 23:46 - 2013-11-12 23:46 - 05765120 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll 2013-11-12 23:46 - 2013-11-12 23:46 - 04240384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll 2013-11-12 23:46 - 2013-11-12 23:46 - 02764288 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll 2013-11-12 23:46 - 2013-11-12 23:46 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb 2013-11-12 23:46 - 2013-11-12 23:46 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb 2013-11-12 23:46 - 2013-11-12 23:46 - 02332160 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll 2013-11-12 23:46 - 2013-11-12 23:46 - 02166272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll 2013-11-12 23:46 - 2013-11-12 23:46 - 01993728 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl 2013-11-12 23:46 - 2013-11-12 23:46 - 01926656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl 2013-11-12 23:46 - 2013-11-12 23:46 - 01818112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll 2013-11-12 23:46 - 2013-11-12 23:46 - 01394176 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll 2013-11-12 23:46 - 2013-11-12 23:46 - 01228800 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll 2013-11-12 23:46 - 2013-11-12 23:46 - 01156608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll 2013-11-12 23:46 - 2013-11-12 23:46 - 01051136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll 2013-11-12 23:46 - 2013-11-12 23:46 - 00942592 _____ (Microsoft Corporation) C:\Windows\system32\jsIntl.dll 2013-11-12 23:46 - 2013-11-12 23:46 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe 2013-11-12 23:46 - 2013-11-12 23:46 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll 2013-11-12 23:46 - 2013-11-12 23:46 - 00774144 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll 2013-11-12 23:46 - 2013-11-12 23:46 - 00708608 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll 2013-11-12 23:46 - 2013-11-12 23:46 - 00703488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll 2013-11-12 23:46 - 2013-11-12 23:46 - 00645120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsIntl.dll 2013-11-12 23:46 - 2013-11-12 23:46 - 00626176 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll 2013-11-12 23:46 - 2013-11-12 23:46 - 00616104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat 2013-11-12 23:46 - 2013-11-12 23:46 - 00616104 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat 2013-11-12 23:46 - 2013-11-12 23:46 - 00610304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll 2013-11-12 23:46 - 2013-11-12 23:46 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll 2013-11-12 23:46 - 2013-11-12 23:46 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll 2013-11-12 23:46 - 2013-11-12 23:46 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll 2013-11-12 23:46 - 2013-11-12 23:46 - 00523776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll 2013-11-12 23:46 - 2013-11-12 23:46 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll 2013-11-12 23:46 - 2013-11-12 23:46 - 00453120 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll 2013-11-12 23:46 - 2013-11-12 23:46 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll 2013-11-12 23:46 - 2013-11-12 23:46 - 00413696 _____ (Microsoft Corporation) C:\Windows\system32\html.iec 2013-11-12 23:46 - 2013-11-12 23:46 - 00367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll 2013-11-12 23:46 - 2013-11-12 23:46 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec 2013-11-12 23:46 - 2013-11-12 23:46 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll 2013-11-12 23:46 - 2013-11-12 23:46 - 00263376 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll 2013-11-12 23:46 - 2013-11-12 23:46 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll 2013-11-12 23:46 - 2013-11-12 23:46 - 00244736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll 2013-11-12 23:46 - 2013-11-12 23:46 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll 2013-11-12 23:46 - 2013-11-12 23:46 - 00238288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll 2013-11-12 23:46 - 2013-11-12 23:46 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\url.dll 2013-11-12 23:46 - 2013-11-12 23:46 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll 2013-11-12 23:46 - 2013-11-12 23:46 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll 2013-11-12 23:46 - 2013-11-12 23:46 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe 2013-11-12 23:46 - 2013-11-12 23:46 - 00208384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll 2013-11-12 23:46 - 2013-11-12 23:46 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll 2013-11-12 23:46 - 2013-11-12 23:46 - 00194048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll 2013-11-12 23:46 - 2013-11-12 23:46 - 00182272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll 2013-11-12 23:46 - 2013-11-12 23:46 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe 2013-11-12 23:46 - 2013-11-12 23:46 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll 2013-11-12 23:46 - 2013-11-12 23:46 - 00151552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe 2013-11-12 23:46 - 2013-11-12 23:46 - 00147968 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll 2013-11-12 23:46 - 2013-11-12 23:46 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe 2013-11-12 23:46 - 2013-11-12 23:46 - 00139264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe 2013-11-12 23:46 - 2013-11-12 23:46 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe 2013-11-12 23:46 - 2013-11-12 23:46 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll 2013-11-12 23:46 - 2013-11-12 23:46 - 00131072 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll 2013-11-12 23:46 - 2013-11-12 23:46 - 00127488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll 2013-11-12 23:46 - 2013-11-12 23:46 - 00116736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll 2013-11-12 23:46 - 2013-11-12 23:46 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe 2013-11-12 23:46 - 2013-11-12 23:46 - 00111616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll 2013-11-12 23:46 - 2013-11-12 23:46 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe 2013-11-12 23:46 - 2013-11-12 23:46 - 00105984 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll 2013-11-12 23:46 - 2013-11-12 23:46 - 00101376 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll 2013-11-12 23:46 - 2013-11-12 23:46 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe 2013-11-12 23:46 - 2013-11-12 23:46 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll 2013-11-12 23:46 - 2013-11-12 23:46 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe 2013-11-12 23:46 - 2013-11-12 23:46 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll 2013-11-12 23:46 - 2013-11-12 23:46 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll 2013-11-12 23:46 - 2013-11-12 23:46 - 00083456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll 2013-11-12 23:46 - 2013-11-12 23:46 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll 2013-11-12 23:46 - 2013-11-12 23:46 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx 2013-11-12 23:46 - 2013-11-12 23:46 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe 2013-11-12 23:46 - 2013-11-12 23:46 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe 2013-11-12 23:46 - 2013-11-12 23:46 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll 2013-11-12 23:46 - 2013-11-12 23:46 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll 2013-11-12 23:46 - 2013-11-12 23:46 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll 2013-11-12 23:46 - 2013-11-12 23:46 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx 2013-11-12 23:46 - 2013-11-12 23:46 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll 2013-11-12 23:46 - 2013-11-12 23:46 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll 2013-11-12 23:46 - 2013-11-12 23:46 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll 2013-11-12 23:46 - 2013-11-12 23:46 - 00056832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll 2013-11-12 23:46 - 2013-11-12 23:46 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll 2013-11-12 23:46 - 2013-11-12 23:46 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll 2013-11-12 23:46 - 2013-11-12 23:46 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll 2013-11-12 23:46 - 2013-11-12 23:46 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll 2013-11-12 23:46 - 2013-11-12 23:46 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll 2013-11-12 23:46 - 2013-11-12 23:46 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll 2013-11-12 23:46 - 2013-11-12 23:46 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll 2013-11-12 23:46 - 2013-11-12 23:46 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll 2013-11-12 23:46 - 2013-11-12 23:46 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll 2013-11-12 23:46 - 2013-11-12 23:46 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll 2013-11-12 23:46 - 2013-11-12 23:46 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll 2013-11-12 23:46 - 2013-11-12 23:46 - 00034816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll 2013-11-12 23:46 - 2013-11-12 23:46 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll 2013-11-12 23:46 - 2013-11-12 23:46 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll 2013-11-12 23:46 - 2013-11-12 23:46 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll 2013-11-12 23:46 - 2013-11-12 23:46 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll 2013-11-12 23:46 - 2013-11-12 23:46 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe 2013-11-12 23:46 - 2013-11-12 23:46 - 00013312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe 2013-11-12 23:46 - 2013-11-12 23:46 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe 2013-11-12 23:46 - 2013-11-12 23:46 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe 2013-11-12 23:46 - 2013-11-12 23:46 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll 2013-11-12 23:43 - 2013-11-12 23:50 - 00010791 _____ C:\Windows\IE11_main.log 2013-11-12 22:34 - 2013-11-12 22:34 - 00096872 _____ (Spotify Ltd) C:\Users\Martin Zeller\Downloads\SpotifySetup (2).exe 2013-11-10 23:00 - 2013-11-10 23:00 - 00000000 _____ C:\Windows\SysWOW64\shoD045.tmp 2013-11-05 20:53 - 2013-11-05 20:53 - 00096872 _____ (Spotify Ltd) C:\Users\Martin Zeller\Downloads\SpotifySetup (1).exe 2013-11-04 19:55 - 2013-11-04 19:56 - 02639037 _____ C:\Users\Martin Zeller\Downloads\ch12_transcription.swf 2013-11-03 21:09 - 2013-11-05 00:17 - 00000198 _____ C:\Users\Martin Zeller\Desktop\verbindungsverlust.txt 2013-11-02 15:39 - 2013-11-02 15:40 - 25782943 _____ C:\Users\Martin Zeller\Downloads\YOU'RE_NOT_BETTER_THAN_THE_REST.zip 2013-10-30 00:14 - 2013-11-20 23:25 - 00000000 ____D C:\Users\Martin Zeller\Documents\MATLAB 2013-10-30 00:14 - 2013-10-30 00:14 - 00000000 ____D C:\Users\Martin Zeller\AppData\Roaming\Subversion 2013-10-30 00:13 - 2013-10-30 00:13 - 00000000 ____D C:\Users\Martin Zeller\AppData\Roaming\MathWorks 2013-10-30 00:11 - 2013-11-22 13:05 - 00000562 _____ C:\Windows\Tasks\MATLAB R2013b Startup Accelerator.job 2013-10-30 00:11 - 2013-10-30 00:11 - 00003740 _____ C:\Windows\System32\Tasks\MATLAB R2013b Startup Accelerator 2013-10-29 23:26 - 2013-10-29 23:26 - 00000000 ____D C:\Program Files\MATLAB 2013-10-29 23:11 - 2013-10-29 23:11 - 00000000 ____D C:\Users\Martin Zeller\Downloads\utils 2013-10-29 23:11 - 2013-10-29 23:11 - 00000000 ____D C:\Users\Martin Zeller\Downloads\sys 2013-10-29 23:11 - 2013-10-29 23:11 - 00000000 ____D C:\Users\Martin Zeller\Downloads\java 2013-10-29 23:11 - 2013-10-29 23:11 - 00000000 ____D C:\Users\Martin Zeller\Downloads\help 2013-10-29 23:11 - 2013-10-29 23:11 - 00000000 ____D C:\Users\Martin Zeller\Downloads\bin 2013-10-29 23:11 - 2013-10-29 23:11 - 00000000 ____D C:\Users\Martin Zeller\Downloads\archives 2013-10-29 23:10 - 2013-10-29 23:11 - 89239552 _____ C:\Users\Martin Zeller\Downloads\matlab_R2013b_win64_installer.exe 2013-10-29 18:00 - 2013-11-22 13:03 - 00000000 ____D C:\Users\Martin Zeller\AppData\Roaming\Spotify 2013-10-29 18:00 - 2013-11-21 23:18 - 00000000 ____D C:\Users\Martin Zeller\AppData\Local\Spotify 2013-10-29 18:00 - 2013-10-29 18:00 - 00001849 _____ C:\Users\Martin Zeller\Desktop\Spotify.lnk 2013-10-29 18:00 - 2013-10-29 18:00 - 00001835 _____ C:\Users\Martin Zeller\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Spotify.lnk 2013-10-29 17:59 - 2013-10-29 17:59 - 00096872 _____ (Spotify Ltd) C:\Users\Martin Zeller\Downloads\SpotifySetup.exe 2013-10-23 20:18 - 2013-10-23 20:18 - 00004055 _____ C:\Users\Martin Zeller\AppData\Local\recently-used.xbel ==================== One Month Modified Files and Folders ======= 2013-11-22 13:06 - 2013-11-22 13:03 - 00024593 _____ C:\Users\Martin Zeller\Downloads\FRST.txt 2013-11-22 13:06 - 2012-07-02 14:41 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job 2013-11-22 13:05 - 2013-10-30 00:11 - 00000562 _____ C:\Windows\Tasks\MATLAB R2013b Startup Accelerator.job 2013-11-22 13:04 - 2011-10-28 15:47 - 01281915 _____ C:\Windows\WindowsUpdate.log 2013-11-22 13:03 - 2013-11-22 13:03 - 00000000 ____D C:\FRST 2013-11-22 13:03 - 2013-10-29 18:00 - 00000000 ____D C:\Users\Martin Zeller\AppData\Roaming\Spotify 2013-11-22 13:02 - 2013-11-22 13:02 - 01957964 _____ (Farbar) C:\Users\Martin Zeller\Downloads\FRST64.exe 2013-11-22 13:00 - 2012-07-01 14:06 - 00000000 ___RD C:\Users\Martin Zeller\Dropbox 2013-11-22 13:00 - 2012-07-01 14:04 - 00000000 ____D C:\Users\Martin Zeller\AppData\Roaming\Dropbox 2013-11-22 12:59 - 2012-07-08 15:57 - 00000000 ____D C:\Program Files (x86)\Steam 2013-11-22 12:57 - 2012-03-30 12:01 - 00001120 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job 2013-11-22 12:56 - 2013-06-05 19:45 - 00000350 _____ C:\Windows\Tasks\AVG-Secure-Search-Update_JUNE2013_TB_rmv.job 2013-11-22 12:56 - 2011-10-28 15:52 - 00000000 ____D C:\ProgramData\NVIDIA 2013-11-22 12:56 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT 2013-11-22 12:56 - 2009-07-14 05:51 - 00204771 _____ C:\Windows\setupact.log 2013-11-22 03:47 - 2012-03-30 12:01 - 00001124 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job 2013-11-22 02:04 - 2011-11-15 16:04 - 00000000 ____D C:\Users\Martin Zeller\AppData\Local\Adobe 2013-11-22 01:28 - 2011-10-28 16:36 - 00000000 ____D C:\Users\Martin Zeller\AppData\Local\PMB Files 2013-11-22 01:28 - 2011-10-28 16:36 - 00000000 ____D C:\ProgramData\PMB Files 2013-11-22 00:11 - 2013-11-22 00:09 - 00000022 _____ C:\Users\Martin Zeller\Downloads\Forderung der abgewiesenen Lastschrift - Anwalt.zip 2013-11-21 23:18 - 2013-10-29 18:00 - 00000000 ____D C:\Users\Martin Zeller\AppData\Local\Spotify 2013-11-21 22:58 - 2012-04-07 12:27 - 00000000 ____D C:\Users\Martin Zeller\AppData\Roaming\TS3Client 2013-11-20 23:59 - 2013-11-20 23:59 - 00112128 _____ C:\Users\Martin Zeller\Downloads\ONPG-Test BMZ 2013 (2).xls 2013-11-20 23:59 - 2013-11-20 23:59 - 00112128 _____ C:\Users\Martin Zeller\Downloads\ONPG-Test BMZ 2013 (1).xls 2013-11-20 23:25 - 2013-10-30 00:14 - 00000000 ____D C:\Users\Martin Zeller\Documents\MATLAB 2013-11-19 13:57 - 2009-07-14 05:45 - 00021664 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2013-11-19 13:57 - 2009-07-14 05:45 - 00021664 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2013-11-19 13:45 - 2012-05-14 15:16 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2013-11-19 00:03 - 2013-11-19 00:03 - 00000000 _____ C:\Windows\SysWOW64\sho9750.tmp 2013-11-18 21:32 - 2013-11-18 21:32 - 00112128 _____ C:\Users\Martin Zeller\Downloads\ONPG-Test BMZ 2013 .xls 2013-11-18 01:57 - 2013-11-18 01:57 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox 2013-11-16 14:19 - 2009-07-14 06:08 - 00032632 _____ C:\Windows\Tasks\SCHEDLGU.TXT 2013-11-15 02:37 - 2013-08-15 02:01 - 00000000 ____D C:\Windows\system32\MRT 2013-11-15 02:37 - 2012-02-02 19:19 - 00000000 ____D C:\ProgramData\Microsoft Help 2013-11-15 02:35 - 2011-10-29 12:21 - 82896128 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe 2013-11-15 00:50 - 2012-03-30 12:01 - 00002175 _____ C:\Users\Public\Desktop\Google Chrome.lnk 2013-11-14 21:53 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\rescache 2013-11-13 10:55 - 2013-11-13 10:55 - 00266320 _____ C:\Windows\Minidump\111313-85769-01.dmp 2013-11-13 10:55 - 2011-11-06 01:38 - 00000000 ____D C:\Windows\Minidump 2013-11-13 10:55 - 2011-10-28 15:53 - 00001425 _____ C:\Users\Martin Zeller\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk 2013-11-13 10:54 - 2011-11-06 01:38 - 258338342 _____ C:\Windows\MEMORY.DMP 2013-11-13 10:54 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\PolicyDefinitions 2013-11-12 23:50 - 2013-11-12 23:43 - 00010791 _____ C:\Windows\IE11_main.log 2013-11-12 23:46 - 2013-11-12 23:46 - 23212032 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll 2013-11-12 23:46 - 2013-11-12 23:46 - 17142784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll 2013-11-12 23:46 - 2013-11-12 23:46 - 12995584 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll 2013-11-12 23:46 - 2013-11-12 23:46 - 11220992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll 2013-11-12 23:46 - 2013-11-12 23:46 - 05765120 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll 2013-11-12 23:46 - 2013-11-12 23:46 - 04240384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll 2013-11-12 23:46 - 2013-11-12 23:46 - 02764288 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll 2013-11-12 23:46 - 2013-11-12 23:46 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb 2013-11-12 23:46 - 2013-11-12 23:46 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb 2013-11-12 23:46 - 2013-11-12 23:46 - 02332160 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll 2013-11-12 23:46 - 2013-11-12 23:46 - 02166272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll 2013-11-12 23:46 - 2013-11-12 23:46 - 01993728 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl 2013-11-12 23:46 - 2013-11-12 23:46 - 01926656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl 2013-11-12 23:46 - 2013-11-12 23:46 - 01818112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll 2013-11-12 23:46 - 2013-11-12 23:46 - 01394176 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll 2013-11-12 23:46 - 2013-11-12 23:46 - 01228800 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll 2013-11-12 23:46 - 2013-11-12 23:46 - 01156608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll 2013-11-12 23:46 - 2013-11-12 23:46 - 01051136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll 2013-11-12 23:46 - 2013-11-12 23:46 - 00942592 _____ (Microsoft Corporation) C:\Windows\system32\jsIntl.dll 2013-11-12 23:46 - 2013-11-12 23:46 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe 2013-11-12 23:46 - 2013-11-12 23:46 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll 2013-11-12 23:46 - 2013-11-12 23:46 - 00774144 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll 2013-11-12 23:46 - 2013-11-12 23:46 - 00708608 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll 2013-11-12 23:46 - 2013-11-12 23:46 - 00703488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll 2013-11-12 23:46 - 2013-11-12 23:46 - 00645120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsIntl.dll 2013-11-12 23:46 - 2013-11-12 23:46 - 00626176 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll 2013-11-12 23:46 - 2013-11-12 23:46 - 00616104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat 2013-11-12 23:46 - 2013-11-12 23:46 - 00616104 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat 2013-11-12 23:46 - 2013-11-12 23:46 - 00610304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll 2013-11-12 23:46 - 2013-11-12 23:46 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll 2013-11-12 23:46 - 2013-11-12 23:46 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll 2013-11-12 23:46 - 2013-11-12 23:46 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll 2013-11-12 23:46 - 2013-11-12 23:46 - 00523776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll 2013-11-12 23:46 - 2013-11-12 23:46 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll 2013-11-12 23:46 - 2013-11-12 23:46 - 00453120 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll 2013-11-12 23:46 - 2013-11-12 23:46 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll 2013-11-12 23:46 - 2013-11-12 23:46 - 00413696 _____ (Microsoft Corporation) C:\Windows\system32\html.iec 2013-11-12 23:46 - 2013-11-12 23:46 - 00367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll 2013-11-12 23:46 - 2013-11-12 23:46 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec 2013-11-12 23:46 - 2013-11-12 23:46 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll 2013-11-12 23:46 - 2013-11-12 23:46 - 00263376 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll 2013-11-12 23:46 - 2013-11-12 23:46 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll 2013-11-12 23:46 - 2013-11-12 23:46 - 00244736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll 2013-11-12 23:46 - 2013-11-12 23:46 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll 2013-11-12 23:46 - 2013-11-12 23:46 - 00238288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll 2013-11-12 23:46 - 2013-11-12 23:46 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\url.dll 2013-11-12 23:46 - 2013-11-12 23:46 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll 2013-11-12 23:46 - 2013-11-12 23:46 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll 2013-11-12 23:46 - 2013-11-12 23:46 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe 2013-11-12 23:46 - 2013-11-12 23:46 - 00208384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll 2013-11-12 23:46 - 2013-11-12 23:46 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll 2013-11-12 23:46 - 2013-11-12 23:46 - 00194048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll 2013-11-12 23:46 - 2013-11-12 23:46 - 00182272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll 2013-11-12 23:46 - 2013-11-12 23:46 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe 2013-11-12 23:46 - 2013-11-12 23:46 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll 2013-11-12 23:46 - 2013-11-12 23:46 - 00151552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe 2013-11-12 23:46 - 2013-11-12 23:46 - 00147968 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll 2013-11-12 23:46 - 2013-11-12 23:46 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe 2013-11-12 23:46 - 2013-11-12 23:46 - 00139264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe 2013-11-12 23:46 - 2013-11-12 23:46 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe 2013-11-12 23:46 - 2013-11-12 23:46 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll 2013-11-12 23:46 - 2013-11-12 23:46 - 00131072 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll 2013-11-12 23:46 - 2013-11-12 23:46 - 00127488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll 2013-11-12 23:46 - 2013-11-12 23:46 - 00116736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll 2013-11-12 23:46 - 2013-11-12 23:46 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe 2013-11-12 23:46 - 2013-11-12 23:46 - 00111616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll 2013-11-12 23:46 - 2013-11-12 23:46 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe 2013-11-12 23:46 - 2013-11-12 23:46 - 00105984 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll 2013-11-12 23:46 - 2013-11-12 23:46 - 00101376 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll 2013-11-12 23:46 - 2013-11-12 23:46 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe 2013-11-12 23:46 - 2013-11-12 23:46 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll 2013-11-12 23:46 - 2013-11-12 23:46 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe 2013-11-12 23:46 - 2013-11-12 23:46 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll 2013-11-12 23:46 - 2013-11-12 23:46 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll 2013-11-12 23:46 - 2013-11-12 23:46 - 00083456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll 2013-11-12 23:46 - 2013-11-12 23:46 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll 2013-11-12 23:46 - 2013-11-12 23:46 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx 2013-11-12 23:46 - 2013-11-12 23:46 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe 2013-11-12 23:46 - 2013-11-12 23:46 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe 2013-11-12 23:46 - 2013-11-12 23:46 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll 2013-11-12 23:46 - 2013-11-12 23:46 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll 2013-11-12 23:46 - 2013-11-12 23:46 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll 2013-11-12 23:46 - 2013-11-12 23:46 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx 2013-11-12 23:46 - 2013-11-12 23:46 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll 2013-11-12 23:46 - 2013-11-12 23:46 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll 2013-11-12 23:46 - 2013-11-12 23:46 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll 2013-11-12 23:46 - 2013-11-12 23:46 - 00056832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll 2013-11-12 23:46 - 2013-11-12 23:46 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll 2013-11-12 23:46 - 2013-11-12 23:46 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll 2013-11-12 23:46 - 2013-11-12 23:46 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll 2013-11-12 23:46 - 2013-11-12 23:46 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll 2013-11-12 23:46 - 2013-11-12 23:46 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll 2013-11-12 23:46 - 2013-11-12 23:46 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll 2013-11-12 23:46 - 2013-11-12 23:46 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll 2013-11-12 23:46 - 2013-11-12 23:46 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll 2013-11-12 23:46 - 2013-11-12 23:46 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll 2013-11-12 23:46 - 2013-11-12 23:46 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll 2013-11-12 23:46 - 2013-11-12 23:46 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll 2013-11-12 23:46 - 2013-11-12 23:46 - 00034816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll 2013-11-12 23:46 - 2013-11-12 23:46 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll 2013-11-12 23:46 - 2013-11-12 23:46 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll 2013-11-12 23:46 - 2013-11-12 23:46 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll 2013-11-12 23:46 - 2013-11-12 23:46 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll 2013-11-12 23:46 - 2013-11-12 23:46 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe 2013-11-12 23:46 - 2013-11-12 23:46 - 00013312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe 2013-11-12 23:46 - 2013-11-12 23:46 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe 2013-11-12 23:46 - 2013-11-12 23:46 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe 2013-11-12 23:46 - 2013-11-12 23:46 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll 2013-11-12 22:34 - 2013-11-12 22:34 - 00096872 _____ (Spotify Ltd) C:\Users\Martin Zeller\Downloads\SpotifySetup (2).exe 2013-11-10 23:00 - 2013-11-10 23:00 - 00000000 _____ C:\Windows\SysWOW64\shoD045.tmp 2013-11-07 13:53 - 2013-06-27 14:42 - 00003728 _____ C:\Program Files (x86)\Mozilla Firefoxavg-secure-search.xml 2013-11-07 13:52 - 2012-12-19 11:02 - 00000000 ____D C:\Program Files (x86)\AVG Secure Search 2013-11-07 13:51 - 2012-12-19 11:02 - 00046368 _____ (AVG Technologies) C:\Windows\system32\Drivers\avgtpx64.sys 2013-11-05 20:53 - 2013-11-05 20:53 - 00096872 _____ (Spotify Ltd) C:\Users\Martin Zeller\Downloads\SpotifySetup (1).exe 2013-11-05 00:17 - 2013-11-03 21:09 - 00000198 _____ C:\Users\Martin Zeller\Desktop\verbindungsverlust.txt 2013-11-04 19:56 - 2013-11-04 19:55 - 02639037 _____ C:\Users\Martin Zeller\Downloads\ch12_transcription.swf 2013-11-04 12:30 - 2012-03-12 22:49 - 00000000 ____D C:\ProgramData\Skype 2013-11-04 12:26 - 2012-03-12 22:49 - 00000000 ____D C:\Users\Martin Zeller\AppData\Roaming\Skype 2013-11-02 22:15 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\NDF 2013-11-02 15:40 - 2013-11-02 15:39 - 25782943 _____ C:\Users\Martin Zeller\Downloads\YOU'RE_NOT_BETTER_THAN_THE_REST.zip 2013-10-30 00:14 - 2013-10-30 00:14 - 00000000 ____D C:\Users\Martin Zeller\AppData\Roaming\Subversion 2013-10-30 00:13 - 2013-10-30 00:13 - 00000000 ____D C:\Users\Martin Zeller\AppData\Roaming\MathWorks 2013-10-30 00:11 - 2013-10-30 00:11 - 00003740 _____ C:\Windows\System32\Tasks\MATLAB R2013b Startup Accelerator 2013-10-29 23:26 - 2013-10-29 23:26 - 00000000 ____D C:\Program Files\MATLAB 2013-10-29 23:11 - 2013-10-29 23:11 - 00000000 ____D C:\Users\Martin Zeller\Downloads\utils 2013-10-29 23:11 - 2013-10-29 23:11 - 00000000 ____D C:\Users\Martin Zeller\Downloads\sys 2013-10-29 23:11 - 2013-10-29 23:11 - 00000000 ____D C:\Users\Martin Zeller\Downloads\java 2013-10-29 23:11 - 2013-10-29 23:11 - 00000000 ____D C:\Users\Martin Zeller\Downloads\help 2013-10-29 23:11 - 2013-10-29 23:11 - 00000000 ____D C:\Users\Martin Zeller\Downloads\bin 2013-10-29 23:11 - 2013-10-29 23:11 - 00000000 ____D C:\Users\Martin Zeller\Downloads\archives 2013-10-29 23:11 - 2013-10-29 23:10 - 89239552 _____ C:\Users\Martin Zeller\Downloads\matlab_R2013b_win64_installer.exe 2013-10-29 18:00 - 2013-10-29 18:00 - 00001849 _____ C:\Users\Martin Zeller\Desktop\Spotify.lnk 2013-10-29 18:00 - 2013-10-29 18:00 - 00001835 _____ C:\Users\Martin Zeller\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Spotify.lnk 2013-10-29 17:59 - 2013-10-29 17:59 - 00096872 _____ (Spotify Ltd) C:\Users\Martin Zeller\Downloads\SpotifySetup.exe 2013-10-29 13:58 - 2010-11-21 07:50 - 00654602 _____ C:\Windows\system32\perfh007.dat 2013-10-29 13:58 - 2010-11-21 07:50 - 00130216 _____ C:\Windows\system32\perfc007.dat 2013-10-29 13:58 - 2009-07-14 06:13 - 01500294 _____ C:\Windows\system32\PerfStringBackup.INI 2013-10-29 13:53 - 2010-11-21 04:47 - 00029864 _____ C:\Windows\PFRO.log 2013-10-25 13:09 - 2012-04-07 12:27 - 00000000 ____D C:\Users\Martin Zeller\AppData\Local\TeamSpeak 3 Client 2013-10-23 20:36 - 2012-09-26 17:50 - 00000000 ____D C:\Users\Martin Zeller\.gimp-2.8 2013-10-23 20:18 - 2013-10-23 20:18 - 00004055 _____ C:\Users\Martin Zeller\AppData\Local\recently-used.xbel Some content of TEMP: ==================== C:\Users\Martin Zeller\AppData\Local\Temp\converter-setup.exe C:\Users\Martin Zeller\AppData\Local\Temp\DeltaTB.exe C:\Users\Martin Zeller\AppData\Local\Temp\GomAudDnInstaller.exe C:\Users\Martin Zeller\AppData\Local\Temp\install_flashplayer11x32au_mssd_aih.exe C:\Users\Martin Zeller\AppData\Local\Temp\jre-6u31-windows-i586-iftw-rv.exe C:\Users\Martin Zeller\AppData\Local\Temp\jre-6u35-windows-i586-iftw.exe C:\Users\Martin Zeller\AppData\Local\Temp\jre-6u37-windows-i586-iftw.exe C:\Users\Martin Zeller\AppData\Local\Temp\jre-7u25-windows-i586-iftw.exe C:\Users\Martin Zeller\AppData\Local\Temp\MyBabylonTB_google_20120807.exe C:\Users\Martin Zeller\AppData\Local\Temp\oi_{093C5FFF-2B5A-4AA3-94A2-9E8E64579F90}.exe C:\Users\Martin Zeller\AppData\Local\Temp\QuickShare1.exe C:\Users\Martin Zeller\AppData\Local\Temp\SciLorsGrooveshark.comDownloaderV0.4.9.5.exe C:\Users\Martin Zeller\AppData\Local\Temp\SkypeSetup.exe C:\Users\Martin Zeller\AppData\Local\Temp\somoto-master.exe C:\Users\Martin Zeller\AppData\Local\Temp\SpotifyUninstall.exe C:\Users\Martin Zeller\AppData\Local\Temp\swt-win32-3349.dll ==================== Bamital & volsnap Check ================= C:\Windows\System32\winlogon.exe => MD5 is legit C:\Windows\System32\wininit.exe => MD5 is legit C:\Windows\SysWOW64\wininit.exe => MD5 is legit C:\Windows\explorer.exe => MD5 is legit C:\Windows\SysWOW64\explorer.exe => MD5 is legit C:\Windows\System32\svchost.exe => MD5 is legit C:\Windows\SysWOW64\svchost.exe => MD5 is legit C:\Windows\System32\services.exe => MD5 is legit C:\Windows\System32\User32.dll => MD5 is legit C:\Windows\SysWOW64\User32.dll => MD5 is legit C:\Windows\System32\userinit.exe => MD5 is legit C:\Windows\SysWOW64\userinit.exe => MD5 is legit C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit LastRegBack: 2013-11-14 21:45 ==================== End Of Log ============================ --- --- --- Code:
ATTFilter Additional scan result of Farbar Recovery Scan Tool (x64) Version: 18-11-2013 Ran by Martin Zeller at 2013-11-22 13:07:28 Running from C:\Users\Martin Zeller\Downloads Boot Mode: Normal ========================================================== ==================== Security Center ======================== AV: Norton Internet Security Online (Enabled - Up to date) {63DF5164-9100-186D-2187-8DC619EFD8BF} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: Norton Internet Security Online (Enabled - Up to date) {D8BEB080-B73A-17E3-1B37-B6B462689202} FW: Norton Internet Security Online (Enabled) {5BE4D041-DB6F-1935-0AD8-24F3E73C9FC4} ==================== Installed Programs ====================== Update for Microsoft Office 2007 (KB2508958) (x32) 64 Bit HP CIO Components Installer (Version: 7.2.8) 7-Zip 9.20 (x64 edition) (Version: 9.20.00.0) Ableton Live 8 (x32 Version: 8.0.0.0) Ableton Live 9 Trial (x32 Version: 9.0.0.0) Adobe AIR (x32 Version: 3.1.0.4880) Adobe Community Help (x32 Version: 3.4.980) Adobe Download Assistant (x32 Version: 1.2.5) Adobe Flash Player 11 ActiveX (x32 Version: 11.9.900.117) Adobe Flash Player 11 Plugin (x32 Version: 11.9.900.117) Adobe Photoshop CS6 (x32 Version: 13.0) Adobe Reader X (10.1.8) - Deutsch (x32 Version: 10.1.8) Age of Empires II: HD Edition (x32) Age of Wonders II (x32) Anker Precision Laser Gaming Mouse version 1.2 (x32 Version: 1.2) Apple Application Support (x32 Version: 2.3.4) Apple Mobile Device Support (Version: 6.1.0.13) Apple Software Update (x32 Version: 2.1.3.127) Audacity 2.0.2 (x32 Version: 2.0.2) AVG Security Toolbar (x32 Version: 17.1.2.1) AVM FRITZ!WLAN (x32) Bing Bar (x32 Version: 7.0.601.0) Blender (Version: 2.63-release) Bonjour (Version: 3.0.0.10) BufferChm (x32 Version: 140.0.212.000) C410 (x32 Version: 140.0.273.000) D3DX10 (x32 Version: 15.4.2368.0902) Destinations (x32 Version: 140.0.77.000) DeviceDiscovery (x32 Version: 140.0.212.000) DocProc (x32 Version: 140.0.99.000) Dropbox (HKCU Version: 2.0.22) eLicenser Control (x32) Fax (x32 Version: 140.0.212.000) Free WAV to MP3 Converter (x32) Free YouTube to MP3 Converter version 3.11.29.825 (x32 Version: 3.11.29.825) GIMP 2.8.2 (Version: 2.8.2) Google Chrome (x32 Version: 31.0.1650.57) Google Earth (x32 Version: 7.1.1.1888) Google Update Helper (x32 Version: 1.3.21.165) GPBaseService2 (x32 Version: 140.0.211.000) Guitar Pro 5.2 (x32) Hewlett-Packard ACLM.NET v1.1.0.0 (x32 Version: 1.00.0000) High-Definition Video Playback (x32 Version: 7.1.13900.47.0) HP Customer Participation Program 14.0 (Version: 14.0) HP Imaging Device Functions 14.0 (Version: 14.0) HP Photosmart Prem C410 All-In-One Driver Software 14.0 Rel. 7 (Version: 14.0) HP Product Detection (x32 Version: 11.14.0001) HP Smart Web Printing 4.60 (Version: 4.60) HP Solution Center 14.0 (Version: 14.0) HP Update (x32 Version: 5.005.000.001) HPAppStudio (x32 Version: 140.0.95.000) HPDiagnosticAlert (x32 Version: 1.00.0000) HPPhotoGadget (x32 Version: 140.0.524.000) HPProductAssistant (x32 Version: 140.0.212.000) HPSSupply (x32 Version: 140.0.211.000) Inkscape 0.48.4 (x32 Version: 0.48.4) Intel(R) Control Center (x32 Version: 1.2.1.1007) Intel(R) Rapid Storage Technology (x32 Version: 10.6.0.1002) iTunes (Version: 11.0.4.4) Java 7 Update 25 (x32 Version: 7.0.250) Java Auto Updater (x32 Version: 2.1.9.5) Junk Mail filter update (x32 Version: 15.4.3502.0922) League of Legends (x32 Version: 1.3) MarketResearch (x32 Version: 140.0.212.000) MATLAB R2013b (Version: 8.2) Mesh Runtime (x32 Version: 15.4.5722.2) Messenger Companion (x32 Version: 15.4.3502.0922) Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319) Microsoft .NET Framework 4 Client Profile DEU Language Pack (Version: 4.0.30319) Microsoft Application Error Reporting (Version: 12.0.6015.5000) Microsoft Office 2007 Service Pack 3 (SP3) (x32) Microsoft Office 2010 (x32 Version: 14.0.4763.1000) Microsoft Office Excel MUI (German) 2007 (x32 Version: 12.0.6612.1000) Microsoft Office File Validation Add-In (x32 Version: 14.0.5130.5003) Microsoft Office Home and Student 2007 (x32 Version: 12.0.6612.1000) Microsoft Office Klick-und-Los 2010 (Version: 14.0.4763.1000) Microsoft Office Klick-und-Los 2010 (x32 Version: 14.0.4763.1000) Microsoft Office Live Add-in 1.5 (x32 Version: 2.0.4024.1) Microsoft Office Office 64-bit Components 2007 (Version: 12.0.6612.1000) Microsoft Office OneNote MUI (German) 2007 (x32 Version: 12.0.6612.1000) Microsoft Office PowerPoint MUI (German) 2007 (x32 Version: 12.0.6612.1000) Microsoft Office Proof (English) 2007 (x32 Version: 12.0.6612.1000) Microsoft Office Proof (French) 2007 (x32 Version: 12.0.6612.1000) Microsoft Office Proof (German) 2007 (x32 Version: 12.0.6612.1000) Microsoft Office Proof (Italian) 2007 (x32 Version: 12.0.6612.1000) Microsoft Office Proofing (German) 2007 (x32 Version: 12.0.4518.1014) Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) (x32) Microsoft Office Shared 64-bit MUI (German) 2007 (Version: 12.0.6612.1000) Microsoft Office Shared MUI (German) 2007 (x32 Version: 12.0.6612.1000) Microsoft Office Starter 2010 - Deutsch (x32 Version: 14.0.4763.1000) Microsoft Office Word MUI (German) 2007 (x32 Version: 12.0.6612.1000) Microsoft Silverlight (Version: 5.1.20913.0) Microsoft SQL Server 2005 Compact Edition [ENU] (x32 Version: 3.1.0000) Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.56336) Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.61001) Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (x32 Version: 9.0.30729) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (x32 Version: 9.0.30729.4148) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (x32 Version: 9.0.30729.6161) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (Version: 10.0.40219) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (x32 Version: 10.0.40219) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.51106 (x32 Version: 11.0.51106.1) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.51106 (x32 Version: 11.0.51106.1) Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.51106 (Version: 11.0.51106) Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.51106 (Version: 11.0.51106) Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.51106 (x32 Version: 11.0.51106) Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.51106 (x32 Version: 11.0.51106) Microsoft_VC80_ATL_x86 (x32 Version: 8.0.50727.4053) Microsoft_VC80_CRT_x86 (x32 Version: 8.0.50727.4053) Microsoft_VC80_MFC_x86 (x32 Version: 8.0.50727.4053) Microsoft_VC80_MFCLOC_x86 (x32 Version: 8.0.50727.4053) Microsoft_VC90_ATL_x86 (x32 Version: 1.00.0000) Microsoft_VC90_ATL_x86_x64 (Version: 1.00.0000) Microsoft_VC90_CRT_x86 (x32 Version: 1.00.0000) Microsoft_VC90_CRT_x86_x64 (Version: 1.00.0000) Microsoft_VC90_MFC_x86 (x32 Version: 1.00.0000) Microsoft_VC90_MFC_x86_x64 (Version: 1.00.0000) Microsoft_VC90_MFCLOC_x86 (x32 Version: 1.00.0000) MIDI4all (x32 Version: MIDI4all 1.5) Mozilla Firefox 25.0.1 (x86 de) (x32 Version: 25.0.1) Mozilla Maintenance Service (x32 Version: 25.0.1) MSVCRT (x32 Version: 15.4.2862.0708) MSVCRT_amd64 (x32 Version: 15.4.2862.0708) MSXML 4.0 SP2 (KB954430) (x32 Version: 4.20.9870.0) MSXML 4.0 SP2 (KB973688) (x32 Version: 4.20.9876.0) Nero 10 Movie ThemePack 1 (x32 Version: 10.2.10000.11.0) Nero 10 Movie ThemePack Basic (x32 Version: 10.2.10000.0.0) Nero BurnRights 10 (x32 Version: 4.2.10500.1.102) Nero BurnRights 10 Help (CHM) (x32 Version: 10.5.10000) Nero Control Center 10 (x32 Version: 10.2.11900.1.9) Nero ControlCenter 10 Help (CHM) (x32 Version: 10.5.10000) Nero Core Components 10 (x32 Version: 2.0.18400.9.0) Nero CoverDesigner 10 (x32 Version: 5.2.11400.11.100) Nero CoverDesigner 10 Help (CHM) (x32 Version: 10.5.10000) Nero DiscSpeed 10 (x32 Version: 6.2.10500.2.100) Nero DiscSpeed 10 Help (CHM) (x32 Version: 10.5.10000) Nero Express 10 (x32 Version: 10.2.11900.20.100) Nero Express 10 Help (CHM) (x32 Version: 10.5.10300) Nero InfoTool 10 (x32 Version: 7.2.10400.5.100) Nero InfoTool 10 Help (CHM) (x32 Version: 10.5.10000) Nero MediaHub 10 (x32 Version: 1.2.13200.33.100) Nero MediaHub 10 Help (CHM) (x32 Version: 10.5.10000) Nero Multimedia Suite 10 Essentials (x32 Version: 10.5.10400) Nero RescueAgent 10 (x32 Version: 3.2.10800.9.100) Nero RescueAgent 10 Help (CHM) (x32 Version: 10.5.10000) Nero StartSmart 10 (x32 Version: 10.2.11600.14.100) Nero StartSmart 10 Help (CHM) (x32 Version: 10.5.10000) Nero Update (x32 Version: 1.0.0018) Network64 (Version: 140.0.215.000) Network64 (Version: 140.0.221.000) Norton Internet Security (x32 Version: 19.9.1.14) NVIDIA 3D Vision Controller Driver (x32 Version: 280.19) NVIDIA 3D Vision Controller-Treiber 280.19 (Version: 280.19) NVIDIA 3D Vision Treiber 311.06 (Version: 311.06) NVIDIA Grafiktreiber 311.06 (Version: 311.06) NVIDIA HD-Audiotreiber 1.2.23.3 (Version: 1.2.23.3) NVIDIA Install Application (Version: 2.1002.108.688) NVIDIA PhysX (x32 Version: 9.10.0514) NVIDIA PhysX-Systemsoftware 9.10.0514 (Version: 9.10.0514) NVIDIA Stereoscopic 3D Driver (x32 Version: 7.17.13.1106) NVIDIA Systemsteuerung 311.06 (Version: 311.06) NVIDIA Update 1.11.3 (Version: 1.11.3) NVIDIA Update Components (Version: 1.11.3) OCR Software by I.R.I.S. 14.0 (Version: 14.0) osu! (x32 Version: 0.0.0.0) Pando Media Booster (x32 Version: 2.6.0.7) PDF Settings CS6 (x32 Version: 11.0) Pokemon Online 2.0.22 (x32) PS_AIO_07_C410_SW_Min (x32 Version: 140.0.273.000) Python 3.2.2 (64-bit) (Version: 3.2.2150) QuickTime (x32 Version: 7.74.80.86) QuickTransfer (x32 Version: 140.0.98.000) Realtek High Definition Audio Driver (x32 Version: 6.0.1.6410) Scan (x32 Version: 140.0.80.000) Schüler-CD - Dorn Bader Physik SEK II (x32 Version: 1.00.0000) Shop for HP Supplies (Version: 14.0) SmartWebPrinting (x32 Version: 140.0.186.000) SolutionCenter (x32 Version: 140.0.214.000) Spotify (HKCU Version: 0.9.6.72.ge389c074) StarCraft II (x32 Version: 1.5.3.23260) Status (x32 Version: 140.0.256.000) Steam (x32 Version: 1.0.0.0) Steinberg Cubase 5 (x32 Version: 5.0.0) Steinberg Cubase LE AI Elements 6 64bit (Version: 6.0.3) Steinberg Drum Loop Expansion 01 (x32 Version: 2.0.0.0) Steinberg Groove Agent ONE Content (x32 Version: 1.0.0.003) Steinberg Groove Agent ONE Vintage Beatboxes (x32 Version: 1.0.0.000) Steinberg HALion Sonic SE 64bit (Version: 1.5.2) Steinberg HALion Sonic SE Content for Cubase LE AI Elements (x32 Version: 1.5.2.000) Steinberg HALionOne (x32 Version: 1.1.0.457) Steinberg HALionOne Expression Set (x32 Version: 1.0.1.0) Steinberg HALionOne GM Drum Set (x32 Version: 1.0.1.457) Steinberg HALionOne GM Set (x32 Version: 1.0.1.457) Steinberg HALionOne Pro Set (x32 Version: 1.0.1.457) Steinberg HALionOne Studio Drum Set (x32 Version: 1.0.1.457) Steinberg HALionOne Studio Set (x32 Version: 1.0.1.457) TeamSpeak 3 Client (HKCU Version: 3.0.13.1) The Cat and the Coup (x32) The Elder Scrolls V: Skyrim (x32) Toolbox (x32 Version: 140.0.428.000) TrayApp (x32 Version: 140.0.212.000) Update for 2007 Microsoft Office System (KB967642) (x32) Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (x32 Version: 1) Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (x32 Version: 1) Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (x32 Version: 1) Update for Microsoft .NET Framework 4 Client Profile (KB2836939v3) (x32 Version: 3) Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition (x32) Update for Microsoft Office 2007 suites (KB2687493) 32-Bit Edition (x32) Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition (x32) Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition (x32) Update für Microsoft Office Excel 2007 Help (KB963678) (x32) Update für Microsoft Office Powerpoint 2007 Help (KB963669) (x32) Update für Microsoft Office Word 2007 Help (KB963665) (x32) WAV To MP3 V2 (x32) WaveLab LE 7 (x32 Version: 7.1.0.543) WebReg (x32 Version: 140.0.212.017) Windows Live Communications Platform (x32 Version: 15.4.3502.0922) Windows Live Essentials (x32 Version: 15.4.3502.0922) Windows Live Essentials (x32 Version: 15.4.3508.1109) Windows Live Family Safety (Version: 15.4.3502.0922) Windows Live Fotogalerie (x32 Version: 15.4.3502.0922) Windows Live ID Sign-in Assistant (Version: 7.250.4225.0) Windows Live Installer (x32 Version: 15.4.3502.0922) Windows Live Language Selector (Version: 15.4.3508.1109) Windows Live Mail (x32 Version: 15.4.3502.0922) Windows Live Mesh (x32 Version: 15.4.3502.0922) Windows Live Mesh ActiveX control for remote connections (x32 Version: 15.4.5722.2) Windows Live Messenger (x32 Version: 15.4.3502.0922) Windows Live Messenger Companion Core (x32 Version: 15.4.3502.0922) Windows Live MIME IFilter (Version: 15.4.3502.0922) Windows Live Movie Maker (x32 Version: 15.4.3502.0922) Windows Live Photo Common (x32 Version: 15.4.3502.0922) Windows Live Photo Gallery (x32 Version: 15.4.3502.0922) Windows Live PIMT Platform (x32 Version: 15.4.3508.1109) Windows Live Remote Client (Version: 15.4.5722.2) Windows Live Remote Client Resources (Version: 15.4.5722.2) Windows Live Remote Service (Version: 15.4.5722.2) Windows Live Remote Service Resources (Version: 15.4.5722.2) Windows Live SOXE (x32 Version: 15.4.3502.0922) Windows Live SOXE Definitions (x32 Version: 15.4.3502.0922) Windows Live UX Platform (x32 Version: 15.4.3502.0922) Windows Live UX Platform Language Pack (x32 Version: 15.4.3508.1109) Windows Live Writer (x32 Version: 15.4.3502.0922) Windows Live Writer Resources (x32 Version: 15.4.3502.0922) ==================== Restore Points ========================= 04-11-2013 11:27:51 Removed Skype™ 6.9 12-11-2013 22:41:11 Windows Update 15-11-2013 01:34:47 Windows Update ==================== Hosts content: ========================== 2009-07-14 03:34 - 2009-06-10 22:00 - 00000824 ____N C:\Windows\system32\Drivers\etc\hosts ==================== Scheduled Tasks (whitelisted) ============= Task: {0599C819-E93A-4954-A6BC-953C2601AFA0} - System32\Tasks\Norton Internet Security\Norton Error Analyzer => C:\Program Files (x86)\Norton Internet Security\Engine\19.9.1.14\symerr.exe [2012-02-04] (Symantec Corporation) Task: {2A445443-A3BA-4F3A-B548-58EBE376171F} - System32\Tasks\Norton WSC Integration => C:\Program Files (x86)\Norton Internet Security\Engine\19.9.1.14\wscstub.exe [2013-02-02] (Symantec Corporation) Task: {344B44CE-6416-4F7F-94B6-0977E8186225} - System32\Tasks\AdobeAAMUpdater-1.0-MartinZeller-Martin Zeller => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\updaterstartuputility.exe [2012-04-04] (Adobe Systems Incorporated) Task: {5DB9C4EB-D583-4B7C-9D98-E122979CB9C1} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-10-09] (Adobe Systems Incorporated) Task: {5E3B3F2E-092A-4744-ABE9-B809B7ADF3D9} - System32\Tasks\OfficeSoftwareProtectionPlatform\SvcRestartTask => Sc.exe start osppsvc Task: {7933D0B2-66B7-4DE0-9050-63CA7A5434EC} - System32\Tasks\Norton Internet Security\Norton Error Processor => C:\Program Files (x86)\Norton Internet Security\Engine\19.9.1.14\symerr.exe [2012-02-04] (Symantec Corporation) Task: {AE3738B4-D7E2-4458-A759-45690A53147B} - System32\Tasks\MATLAB R2013b Startup Accelerator => C:\Program Files\MATLAB\R2013b\bin\win64\MATLABStartupAccelerator.exe [2013-08-05] () Task: {BAF801D4-1F64-409D-B471-2524FB1A8F44} - System32\Tasks\AVG-Secure-Search-Update_JUNE2013_TB_rmv => C:\Windows\TEMP\{1B5BAC15-7CEF-48D3-A5F7-A6028FEE3342}.exe Task: {D8F3AB92-B9EC-436A-9CF5-18A4ED7CDB4D} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-03-30] (Google Inc.) Task: {DBDB7019-62C7-4C22-BC57-82DB9FACE936} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.) Task: {F289EEB8-7E83-4F27-B422-F6745D981A77} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-03-30] (Google Inc.) Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe Task: C:\Windows\Tasks\AVG-Secure-Search-Update_JUNE2013_TB_rmv.job => C:\Windows\TEMP\{1B5BAC15-7CEF-48D3-A5F7-A6028FEE3342}.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\MATLAB R2013b Startup Accelerator.job => C:\Program Files\MATLAB\R2013b\bin\win64\MATLABStartupAccelerator.exe ==================== Loaded Modules (whitelisted) ============= 2012-05-30 19:06 - 2012-05-30 19:06 - 00087912 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll 2012-05-30 19:06 - 2012-05-30 19:06 - 01242512 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll 2013-11-07 13:52 - 2013-11-07 13:51 - 00519704 _____ () C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\17.1.2\log4cplusU.dll 2013-03-12 17:10 - 2013-10-24 18:45 - 00691200 _____ () C:\Program Files (x86)\Steam\SDL2.dll 2012-07-08 15:59 - 2013-10-30 20:25 - 01123240 _____ () C:\Program Files (x86)\Steam\bin\chromehtml.DLL 2012-07-08 15:59 - 2013-10-23 21:07 - 20625832 _____ () C:\Program Files (x86)\Steam\bin\libcef.dll 2012-07-08 15:59 - 2013-06-15 00:49 - 01100800 _____ () C:\Program Files (x86)\Steam\bin\avcodec-53.dll 2012-07-08 15:59 - 2013-06-15 00:49 - 00124416 _____ () C:\Program Files (x86)\Steam\bin\avutil-51.dll 2012-07-08 15:59 - 2013-06-15 00:49 - 00192000 _____ () C:\Program Files (x86)\Steam\bin\avformat-53.dll 2013-10-29 18:00 - 2013-11-12 22:35 - 36967424 _____ () C:\Users\Martin Zeller\AppData\Roaming\Spotify\Data\libcef.dll 2013-03-13 21:48 - 2013-03-13 21:48 - 24978944 _____ () C:\Users\Martin Zeller\AppData\Roaming\Dropbox\bin\libcef.dll 2013-11-07 13:52 - 2013-11-07 13:51 - 00142360 _____ () C:\Program Files (x86)\Common Files\AVG Secure Search\SiteSafetyInstaller\17.1.2\SiteSafety.dll 2013-09-11 14:30 - 2011-01-26 23:53 - 00028160 _____ () C:\Program Files (x86)\Anker Precision Laser Gaming Mouse\uiHook.dll 2013-11-15 00:49 - 2013-11-14 12:28 - 00702416 _____ () C:\Program Files (x86)\Google\Chrome\Application\31.0.1650.57\libglesv2.dll 2013-11-15 00:49 - 2013-11-14 12:28 - 00099792 _____ () C:\Program Files (x86)\Google\Chrome\Application\31.0.1650.57\libegl.dll 2013-11-15 00:49 - 2013-11-14 12:29 - 04055504 _____ () C:\Program Files (x86)\Google\Chrome\Application\31.0.1650.57\pdf.dll 2013-11-15 00:49 - 2013-11-14 12:29 - 00399312 _____ () C:\Program Files (x86)\Google\Chrome\Application\31.0.1650.57\ppGoogleNaClPluginChrome.dll 2013-11-15 00:49 - 2013-11-14 12:28 - 01619408 _____ () C:\Program Files (x86)\Google\Chrome\Application\31.0.1650.57\ffmpegsumo.dll 2013-08-15 02:44 - 2013-08-15 02:44 - 00172544 _____ () C:\Windows\assembly\NativeImages_v2.0.50727_32\IsdiInterop\1beb84c27c2edeb38839916524b9df4d\IsdiInterop.ni.dll 2011-10-28 15:53 - 2011-05-20 09:05 - 00059904 _____ () C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IsdiInterop.dll 2013-10-29 18:00 - 2013-11-12 22:35 - 00887808 _____ () C:\Users\Martin Zeller\AppData\Roaming\Spotify\Data\libglesv2.dll 2013-10-29 18:00 - 2013-11-12 22:35 - 00109568 _____ () C:\Users\Martin Zeller\AppData\Roaming\Spotify\Data\libegl.dll 2013-11-15 00:49 - 2013-11-14 12:29 - 13582800 _____ () C:\Program Files (x86)\Google\Chrome\Application\31.0.1650.57\PepperFlash\pepflashplayer.dll ==================== Alternate Data Streams (whitelisted) ========= ==================== Safe Mode (whitelisted) =================== ==================== Faulty Device Manager Devices ============= Name: Photosmart Prem C410 series Description: Photosmart Prem C410 series Class Guid: {4d36e971-e325-11ce-bfc1-08002be10318} Manufacturer: HP Service: Problem: : This device is disabled. (Code 22) Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions. Name: Photosmart Prem C410 series Description: Photosmart Prem C410 series Class Guid: {6bdd1fc6-810f-11d0-bec7-08002be2092f} Manufacturer: HP Service: StillCam Problem: : This device is disabled. (Code 22) Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions. ==================== Event log errors: ========================= Application errors: ================== Error: (11/22/2013 00:57:45 PM) (Source: WinMgmt) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (11/21/2013 01:14:40 AM) (Source: Bonjour Service) (User: ) Description: Task Scheduling Error: m->NextScheduledSPRetry 17503 Error: (11/21/2013 01:14:40 AM) (Source: Bonjour Service) (User: ) Description: Task Scheduling Error: m->NextScheduledEvent 17503 Error: (11/21/2013 01:14:40 AM) (Source: Bonjour Service) (User: ) Description: Task Scheduling Error: Continuously busy for more than a second Error: (11/21/2013 01:14:39 AM) (Source: Bonjour Service) (User: ) Description: Task Scheduling Error: m->NextScheduledSPRetry 16489 Error: (11/21/2013 01:14:39 AM) (Source: Bonjour Service) (User: ) Description: Task Scheduling Error: m->NextScheduledEvent 16489 Error: (11/21/2013 01:14:39 AM) (Source: Bonjour Service) (User: ) Description: Task Scheduling Error: Continuously busy for more than a second Error: (11/21/2013 01:14:38 AM) (Source: Bonjour Service) (User: ) Description: Task Scheduling Error: m->NextScheduledSPRetry 15491 Error: (11/21/2013 01:14:38 AM) (Source: Bonjour Service) (User: ) Description: Task Scheduling Error: m->NextScheduledEvent 15491 Error: (11/21/2013 01:14:38 AM) (Source: Bonjour Service) (User: ) Description: Task Scheduling Error: Continuously busy for more than a second System errors: ============= Error: (11/22/2013 01:01:40 PM) (Source: Service Control Manager) (User: ) Description: Der Dienst "NVIDIA Update Service Daemon" wurde aufgrund folgenden Fehlers nicht gestartet: %%1069 Error: (11/22/2013 01:01:40 PM) (Source: Service Control Manager) (User: ) Description: Der Dienst "nvUpdatusService" konnte sich nicht als ".\UpdatusUser" mit dem aktuellen Kennwort aufgrund des folgenden Fehlers anmelden: %%1330 Vergewissern Sie sich, dass der Dienst richtig konfiguriert ist im Dienste-Snap-In in der Microsoft Management Console (MMC). Error: (11/21/2013 06:20:27 PM) (Source: bowser) (User: ) Description: Der Hauptsuchdienst erhielt eine Serverankündigung vom Computer "FABIAN-TOSH", der der Hauptsuchdienst der Domäne für den NetBT_Tcpip_{6FF5E2F5-85AD-4397-9167-C4E0BF39E1C3}-Transport zu sein scheint. Der Hauptsuchdienst wurde beendet oder es wird eine Auswahl erzwungen. Error: (11/21/2013 02:15:31 PM) (Source: bowser) (User: ) Description: Der Hauptsuchdienst erhielt eine Serverankündigung vom Computer "FABIAN-TOSH", der der Hauptsuchdienst der Domäne für den NetBT_Tcpip_{6FF5E2F5-85AD-4397-9167-C4E0BF39E1C3}-Transport zu sein scheint. Der Hauptsuchdienst wurde beendet oder es wird eine Auswahl erzwungen. Error: (11/20/2013 02:26:55 PM) (Source: bowser) (User: ) Description: Der Hauptsuchdienst erhielt eine Serverankündigung vom Computer "FABIAN-TOSH", der der Hauptsuchdienst der Domäne für den NetBT_Tcpip_{6FF5E2F5-85AD-4397-9167-C4E0BF39E1C3}-Transport zu sein scheint. Der Hauptsuchdienst wurde beendet oder es wird eine Auswahl erzwungen. Error: (11/19/2013 11:26:45 PM) (Source: bowser) (User: ) Description: Der Hauptsuchdienst erhielt eine Serverankündigung vom Computer "FABIAN-TOSH", der der Hauptsuchdienst der Domäne für den NetBT_Tcpip_{6FF5E2F5-85AD-4397-9167-C4E0BF39E1C3}-Transport zu sein scheint. Der Hauptsuchdienst wurde beendet oder es wird eine Auswahl erzwungen. Error: (11/19/2013 05:02:45 PM) (Source: bowser) (User: ) Description: Der Hauptsuchdienst erhielt eine Serverankündigung vom Computer "FABIAN-TOSH", der der Hauptsuchdienst der Domäne für den NetBT_Tcpip_{6FF5E2F5-85AD-4397-9167-C4E0BF39E1C3}-Transport zu sein scheint. Der Hauptsuchdienst wurde beendet oder es wird eine Auswahl erzwungen. Error: (11/19/2013 01:51:40 PM) (Source: Service Control Manager) (User: ) Description: Der Dienst "Steam Client Service" wurde aufgrund folgenden Fehlers nicht gestartet: %%1053 Error: (11/19/2013 01:51:40 PM) (Source: Service Control Manager) (User: ) Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Steam Client Service erreicht. Error: (11/19/2013 01:49:22 PM) (Source: Service Control Manager) (User: ) Description: Der Dienst "NVIDIA Update Service Daemon" wurde aufgrund folgenden Fehlers nicht gestartet: %%1069 Microsoft Office Sessions: ========================= ==================== Memory info =========================== Percentage of memory in use: 62% Total physical RAM: 4066.24 MB Available physical RAM: 1529.6 MB Total Pagefile: 8130.66 MB Available Pagefile: 4977.32 MB Total Virtual: 8192 MB Available Virtual: 8191.81 MB ==================== Drives ================================ Drive c: () (Fixed) (Total:931.51 GB) (Free:773.06 GB) NTFS ==>[Drive with boot components (obtained from BCD)] Drive d: () (Fixed) (Total:931.51 GB) (Free:931.39 GB) NTFS ==================== MBR & Partition Table ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or 8) (Size: 1863 GB) (Disk ID: 672DD8AF) Partition 1: (Active) - (Size=932 GB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=932 GB) - (Type=07 NTFS) |
23.11.2013, 07:27 | #4 |
/// the machine /// TB-Ausbilder | Trojaner - genügt Öffnen eines Zip-Mailanhangs? Hast Du nur das ZIP geöffnet oder auch die darin befindliche Datei?
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
23.11.2013, 13:26 | #5 |
| Trojaner - genügt Öffnen eines Zip-Mailanhangs? Nur das ZIP, von der Datei hab ich die Finger gelassen. |
24.11.2013, 08:31 | #6 |
/// the machine /// TB-Ausbilder | Trojaner - genügt Öffnen eines Zip-Mailanhangs? Dann ist alles gut
__________________ --> Trojaner - genügt Öffnen eines Zip-Mailanhangs? |
24.11.2013, 12:11 | #7 |
| Trojaner - genügt Öffnen eines Zip-Mailanhangs? Dann bin ich beruhigt, vielen Dank für deine Hilfe! |
25.11.2013, 07:58 | #8 |
/// the machine /// TB-Ausbilder | Trojaner - genügt Öffnen eines Zip-Mailanhangs? Gern Geschehen
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
Themen zu Trojaner - genügt Öffnen eines Zip-Mailanhangs? |
anhang, anschluss, antivirus, antwort, archiv, arsch, ausgeführt, chance, einfach, freue, gefunde, gelöscht, komplette, kompletten, mail, neugierig, norton, rechner, rechnung, sicherheitsrisiko, systemscan, troja, trojaner, virus, würde, zip anhang geöffnet |