Zurück   Trojaner-Board > Malware entfernen > Log-Analyse und Auswertung
Windows 7 Professional Ordner plötzlich Schreibgeschützt

Windows 7 Professional Ordner plötzlich Schreibgeschützt


Log-Analyse und Auswertung: Windows 7 Professional Ordner plötzlich Schreibgeschützt

Windows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML.

Antwort
Alt 17.12.2013, 22:36   #1
Klecks1988
 
Windows 7 Professional Ordner plötzlich Schreibgeschützt - Standard

Windows 7 Professional Ordner plötzlich Schreibgeschützt


Hallo liebe Community,

bei mir ist neuerdings das Problem aufgetreten, dass sämtliche Ordner schreibgeschützt sind. Das Problem ist aufgetreten, nachdem ich mein System auf meine neue SSD Platte gecloned habe. Ich habe auch probiert das System auf der SSD neu aufzusetzen. Allerdings ohne Erfolg. Die alte Festplatte hatte ich nicht ausgebaut, so dass hier noch eine Kommunikation möglich gewesen sein könnte. Ich würde mich sehr freuen, wenn Ihr mir bei der Lösung helfen könntet. Falls Ihr mehr Infos braucht, dann einfach fragen.

System:
Windows 7 Professional
Antivirus: Gdata Internet Security 2014

Liebe Grüße,
Alex

Scan Malwarebytes:
Code:
ATTFilter
 Malwarebytes Anti-Malware  (Test) 1.75.0.1300
www.malwarebytes.org

Datenbank Version: v2013.12.17.08

Windows 7 x64 NTFS
Internet Explorer 8.0.7600.16385
Alex :: ALEX-PC [Administrator]

Schutz: Aktiviert

17.12.2013 22:23:15
mbam-log-2013-12-17 (22-23-15).txt

Art des Suchlaufs: Quick-Scan
Aktivierte Suchlaufeinstellungen: Speicher | Autostart | Registrierung | Dateisystem | Heuristiks/Extra | HeuristiKs/Shuriken | PUP | PUM
Deaktivierte Suchlaufeinstellungen: P2P
Durchsuchte Objekte: 205750
Laufzeit: 2 Minute(n), 14 Sekunde(n)

Infizierte Speicherprozesse: 0
(Keine bösartigen Objekte gefunden)

Infizierte Speichermodule: 0
(Keine bösartigen Objekte gefunden)

Infizierte Registrierungsschlüssel: 0
(Keine bösartigen Objekte gefunden)

Infizierte Registrierungswerte: 0
(Keine bösartigen Objekte gefunden)

Infizierte Dateiobjekte der Registrierung: 0
(Keine bösartigen Objekte gefunden)

Infizierte Verzeichnisse: 0
(Keine bösartigen Objekte gefunden)

Infizierte Dateien: 0
(Keine bösartigen Objekte gefunden)

(Ende)

Alt 18.12.2013, 07:44   #2
schrauber
/// the machine
/// TB-Ausbilder
 
Windows 7 Professional Ordner plötzlich Schreibgeschützt - Standard

Windows 7 Professional Ordner plötzlich Schreibgeschützt


hi,

Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop: FRST Download FRST 32-Bit | FRST 64-Bit
(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)
  • Starte jetzt FRST.
  • Ändere ungefragt keine der Checkboxen und klicke auf Untersuchen.
  • Die Logdateien werden nun erstellt und befinden sich danach auf deinem Desktop.
  • Poste mir die FRST.txt und nach dem ersten Scan auch die Addition.txt in deinem Thread (#-Symbol im Eingabefenster der Webseite anklicken)

__________________

__________________
Alt 19.12.2013, 02:01   #3
Klecks1988
 
Windows 7 Professional Ordner plötzlich Schreibgeschützt - Standard

Windows 7 Professional Ordner plötzlich Schreibgeschützt


Danke für deine schnelle Antwort. Anbei die 2 Logs für dich.

Addition:
Code:
ATTFilter
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 18-12-2013 05
Ran by Alex at 2013-12-19 01:58:42
Running from C:\Users\Alex\Downloads
Boot Mode: Normal
==========================================================


==================== Security Center ========================

AV: G Data InternetSecurity 2014 (Enabled - Up to date) {545C8713-0744-B079-87F8-349A6D5C8CF0}
AS: G Data InternetSecurity 2014 (Enabled - Up to date) {EF3D66F7-217E-BFF7-BD48-0FE816DBC64D}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: G Data Personal Firewall (Enabled) {6C670636-4D2B-B121-ACA7-9DAF938FCB8B}

==================== Installed Programs ======================

Adobe Flash Player 11 ActiveX (x32 Version: 11.9.900.170)
Adobe Flash Player 11 Plugin (x32 Version: 11.9.900.170)
Adobe Reader XI (11.0.04) - Deutsch (x32 Version: 11.0.04)
Battle.net (x32)
G Data InternetSecurity 2014 (x32 Version: 24.0.3.4)
Google Chrome (x32 Version: 31.0.1650.63)
Google Update Helper (x32 Version: 1.3.22.3)
Malwarebytes Anti-Malware Version 1.75.0.1300 (x32 Version: 1.75.0.1300)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft .NET Framework 4 Client Profile DEU Language Pack (Version: 4.0.30319)
Microsoft .NET Framework 4 Extended (Version: 4.0.30319)
Microsoft .NET Framework 4 Extended DEU Language Pack (Version: 4.0.30319)
Microsoft Office Excel MUI (German) 2007 (x32 Version: 12.0.4518.1014)
Microsoft Office Office 64-bit Components 2007 (Version: 12.0.4518.1014)
Microsoft Office Outlook MUI (German) 2007 (x32 Version: 12.0.4518.1014)
Microsoft Office PowerPoint MUI (German) 2007 (x32 Version: 12.0.4518.1014)
Microsoft Office Proof (English) 2007 (x32 Version: 12.0.4518.1014)
Microsoft Office Proof (French) 2007 (x32 Version: 12.0.4518.1014)
Microsoft Office Proof (German) 2007 (x32 Version: 12.0.4518.1014)
Microsoft Office Proof (Italian) 2007 (x32 Version: 12.0.4518.1014)
Microsoft Office Proofing (German) 2007 (x32 Version: 12.0.4518.1014)
Microsoft Office Shared 64-bit MUI (German) 2007 (Version: 12.0.4518.1014)
Microsoft Office Shared MUI (German) 2007 (x32 Version: 12.0.4518.1014)
Microsoft Office Standard 2007 (x32 Version: 12.0.4518.1014)
Microsoft Office Word MUI (German) 2007 (x32 Version: 12.0.4518.1014)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.30319 (x32 Version: 10.0.30319)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (x32 Version: 11.0.61030.0)
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (x32 Version: 11.0.61030)
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (x32 Version: 11.0.61030)
Mozilla Firefox 26.0 (x86 de) (x32 Version: 26.0)
Mozilla Maintenance Service (x32 Version: 26.0)
NVIDIA 3D Vision Controller-Treiber 331.82 (Version: 331.82)
NVIDIA 3D Vision Treiber 331.82 (Version: 331.82)
NVIDIA Grafiktreiber 331.82 (Version: 331.82)
NVIDIA HD-Audiotreiber 1.3.26.4 (Version: 1.3.26.4)
NVIDIA Install Application (Version: 2.1002.140.952)
NVIDIA PhysX (x32 Version: 9.13.0725)
NVIDIA PhysX-Systemsoftware 9.13.0725 (Version: 9.13.0725)
NVIDIA Stereoscopic 3D Driver (x32 Version: 7.17.13.3182)
NVIDIA Systemsteuerung 331.82 (Version: 331.82)
Proxifier version 3.21 (x32 Version: 3.21)
Razer Core (x32 Version: 1.0.1.46)
Razer Synapse 2.0 (x32 Version: 1.15.4)
Realtek High Definition Audio Driver (x32 Version: 6.0.1.6662)
Skype™ 6.11 (x32 Version: 6.11.102)
TeamSpeak 3 Client (Version: 3.0.13)
WinRAR 5.01 (64-Bit) (Version: 5.01.0)
World of Warcraft (x32)

==================== Restore Points  =========================

17-12-2013 14:26:21 Windows Update
17-12-2013 14:29:41 Windows Update
17-12-2013 14:31:07 Windows Update
17-12-2013 14:48:23 Installed Microsoft Office Standard 2007
17-12-2013 14:55:17 Installed Razer Synapse 2.0.
17-12-2013 14:56:50 Razer Drivers Install
17-12-2013 19:16:12 Removed Microsoft Visual C++ 2010  x86 Redistributable - 10.0.30319
17-12-2013 19:21:34 Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030
17-12-2013 19:22:27 Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030
18-12-2013 14:51:48 Windows-Sicherung

==================== Hosts content: ==========================

2009-07-14 03:34 - 2009-06-10 22:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts

==================== Scheduled Tasks (whitelisted) =============

Task: {0796DE23-3E81-4A44-B13F-F2076B4F7C13} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-12-17] (Adobe Systems Incorporated)
Task: {373EFB24-BA19-4673-A050-352437FB82A4} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-12-17] (Google Inc.)
Task: {5EA9C9D6-C4B6-4693-9BD5-1BC8C7E94CCE} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-12-17] (Google Inc.)
Task: {C4DCF9BB-27F3-49A1-B956-5E0C3294722B} - System32\Tasks\Microsoft\Windows\WindowsBackup\AutomaticBackup => Rundll32.exe /d sdengin2.dll,ExecuteScheduledBackup
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Loaded Modules (whitelisted) =============

2013-12-17 19:40 - 2012-11-22 18:57 - 00057448 _____ () C:\Windows\system32\PrxerNsp.dll
2013-08-14 09:31 - 2013-08-14 09:31 - 00335312 ____N () C:\Program Files (x86)\Common Files\G Data\AVKProxy\PktIcpt2x64.dll
2013-12-17 15:28 - 2013-11-11 16:02 - 00102176 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2013-12-17 15:29 - 2013-12-05 20:36 - 03559024 _____ () C:\Program Files (x86)\Mozilla Firefox\mozjs.dll
2013-12-17 15:36 - 2013-12-17 15:36 - 16242056 _____ () C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_170.dll
2013-12-17 23:45 - 2013-12-17 23:45 - 26118656 _____ () C:\Program Files (x86)\Battle.net\Battle.net.3968\libcef.dll
2013-12-17 19:40 - 2012-11-22 18:57 - 00057448 _____ () C:\Windows\System32\PrxerNsp.dll
2013-12-17 23:45 - 2013-12-17 23:45 - 00739840 _____ () C:\Program Files (x86)\Battle.net\Battle.net.3968\libglesv2.dll
2013-12-17 23:45 - 2013-12-17 23:45 - 00130048 _____ () C:\Program Files (x86)\Battle.net\Battle.net.3968\libegl.dll

==================== Alternate Data Streams (whitelisted) =========


==================== Safe Mode (whitelisted) ===================


==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (12/17/2013 11:05:12 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: avkcks.exe, Version: 1.0.0.1, Zeitstempel: 0x46c04a9c
Name des fehlerhaften Moduls: avkcks.exe, Version: 1.0.0.1, Zeitstempel: 0x46c04a9c
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00001674
ID des fehlerhaften Prozesses: 0x528
Startzeit der fehlerhaften Anwendung: 0xavkcks.exe0
Pfad der fehlerhaften Anwendung: avkcks.exe1
Pfad des fehlerhaften Moduls: avkcks.exe2
Berichtskennung: avkcks.exe3

Error: (12/17/2013 08:43:52 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: Skype.exe, Version: 6.11.0.102, Zeitstempel: 0x5284fb74
Name des fehlerhaften Moduls: Skype.exe, Version: 6.11.0.102, Zeitstempel: 0x5284fb74
Ausnahmecode: 0xc0000005
Fehleroffset: 0x0019e120
ID des fehlerhaften Prozesses: 0x18d0
Startzeit der fehlerhaften Anwendung: 0xSkype.exe0
Pfad der fehlerhaften Anwendung: Skype.exe1
Pfad des fehlerhaften Moduls: Skype.exe2
Berichtskennung: Skype.exe3

Error: (12/17/2013 03:56:49 PM) (Source: RzOvlMon) (User: )
Description: RzOvlMonOpenService failed w/err 0x00000424

Error: (12/17/2013 03:29:03 PM) (Source: MsiInstaller) (User: Alex-PC)
Description: Product: Skype Click to Call -- Error 1609. An error occurred while applying security settings. Users is not a valid user or group. This could be a problem with the package, or a problem connecting to a domain controller on the network. Check your network connection and click Retry, or Cancel to end the install. Unable to locate the user's SID, system error 1332(NULL)(NULL)(NULL)(NULL)(NULL)

Error: (12/17/2013 03:29:03 PM) (Source: MsiInstaller) (User: Alex-PC)
Description: Product: Skype Click to Call -- Error 1609. An error occurred while applying security settings. Users is not a valid user or group. This could be a problem with the package, or a problem connecting to a domain controller on the network. Check your network connection and click Retry, or Cancel to end the install. Unable to locate the user's SID, system error 1332(NULL)(NULL)(NULL)(NULL)(NULL)

Error: (12/17/2013 03:29:02 PM) (Source: MsiInstaller) (User: Alex-PC)
Description: Product: Skype Click to Call -- Error 1609. An error occurred while applying security settings. Users is not a valid user or group. This could be a problem with the package, or a problem connecting to a domain controller on the network. Check your network connection and click Retry, or Cancel to end the install. Unable to locate the user's SID, system error 1332(NULL)(NULL)(NULL)(NULL)(NULL)

Error: (12/17/2013 03:22:36 PM) (Source: Software Protection Platform Service) (User: )
Description: Fehler bei der Installation des Kaufnachweises. 0xC004F050
Teil-Pkey=BBBBB
ACID=?
Genauer Fehler[?]


System errors:
=============
Error: (12/18/2013 09:20:44 PM) (Source: BugCheck) (User: )
Description: 0x000000d1 (0xfffff88001300c7c, 0x0000000000000002, 0x0000000000000008, 0xfffff88001300c7c)C:\Windows\MEMORY.DMP121813-11013-01

Error: (12/18/2013 09:20:43 PM) (Source: EventLog) (User: )
Description: Das System wurde zuvor am ‎18.‎12.‎2013 um 20:53:59 unerwartet heruntergefahren.

Error: (12/18/2013 08:24:04 PM) (Source: BugCheck) (User: )
Description: 0x00000050 (0xffffe8a00c4b6900, 0x0000000000000000, 0xfffff800030f1a3c, 0x0000000000000007)C:\Windows\MEMORY.DMP121813-10998-01

Error: (12/18/2013 08:24:03 PM) (Source: EventLog) (User: )
Description: Das System wurde zuvor am ‎18.‎12.‎2013 um 20:22:48 unerwartet heruntergefahren.

Error: (12/18/2013 07:38:53 PM) (Source: BugCheck) (User: )
Description: 0x00000116 (0xfffffa801243c010, 0xfffff8801003ee64, 0x0000000000000000, 0x000000000000000d)C:\Windows\MEMORY.DMP121813-10935-01

Error: (12/18/2013 07:38:52 PM) (Source: EventLog) (User: )
Description: Das System wurde zuvor am ‎18.‎12.‎2013 um 19:37:58 unerwartet heruntergefahren.

Error: (12/18/2013 03:29:25 PM) (Source: BugCheck) (User: )
Description: 0x0000003b (0x00000000c0000005, 0xfffff800031f58ed, 0xfffff88008a88e80, 0x0000000000000000)C:\Windows\MEMORY.DMP121813-12480-01

Error: (12/18/2013 03:29:23 PM) (Source: EventLog) (User: )
Description: Das System wurde zuvor am ‎18.‎12.‎2013 um 04:20:04 unerwartet heruntergefahren.

Error: (12/17/2013 11:05:03 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Computerbrowser" ist vom Dienst "Server" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde: 
%%1068

Error: (12/17/2013 11:05:03 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Computerbrowser" ist vom Dienst "Server" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde: 
%%1068


Microsoft Office Sessions:
=========================

==================== Memory info =========================== 

Percentage of memory in use: 25%
Total physical RAM: 16382.43 MB
Available physical RAM: 12156.8 MB
Total Pagefile: 32763.01 MB
Available Pagefile: 28203.54 MB
Total Virtual: 8192 MB
Available Virtual: 8191.8 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:232.78 GB) (Free:159.48 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 233 GB) (Disk ID: 008A56D8)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=233 GB) - (Type=07 NTFS)

==================== End Of Log ============================
FRST:

FRST Logfile:

FRST Logfile:
Code:
ATTFilter
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 18-12-2013 05
Ran by Alex (administrator) on ALEX-PC on 19-12-2013 01:58:22
Running from C:\Users\Alex\Downloads
Windows 7 Professional (X64) OS Language: German Standard
Internet Explorer Version 8
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(G Data Software AG) C:\Program Files (x86)\Common Files\G Data\GDScan\GDScan.exe
(G Data Software AG) C:\Program Files (x86)\G Data\InternetSecurity\AVK\AVKWCtlx64.exe
(G Data Software AG) C:\Program Files (x86)\Common Files\G Data\AVKProxy\AVKProxy.exe
(G Data Software AG) C:\Program Files (x86)\G Data\InternetSecurity\AVK\AVKService.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
(Razer, Inc.) C:\Program Files (x86)\Razer\Core\64bit\RzOvlMon.exe
(G Data Software AG) C:\Program Files (x86)\G Data\InternetSecurity\Firewall\GDFwSvcx64.exe
(G Data Software AG) C:\Program Files (x86)\Common Files\G Data\AVKProxy\AVKBap64.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
(G Data Software AG) C:\Program Files (x86)\G Data\InternetSecurity\AVKTray\AVKTray.exe
(G Data Software AG) C:\Program Files (x86)\G Data\InternetSecurity\Firewall\GDFirewallTray.exe
(Razer Inc.) C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe
(G Data Software AG) C:\Program Files (x86)\Common Files\G Data\AVKProxy\GdBgInx64.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_9_900_170.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_9_900_170.exe
(Blizzard Entertainment) C:\ProgramData\Battle.net\Agent\Agent.beta.2426\Agent.exe
(Initex) C:\Program Files (x86)\Proxifier\Proxifier.exe
(Blizzard Entertainment) C:\Program Files (x86)\Battle.net\Battle.net.3968\Battle.net.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe

==================== Registry (Whitelisted) ==================

HKLM\...\Winlogon: [Userinit] C:\Windows\system32\userinit.exe,c:\program files (x86)\g data\internetsecurity\avkkid\avkcks.exe
HKLM-x32\...\Run: [G Data AntiVirus Tray] - C:\Program Files (x86)\G Data\InternetSecurity\AVKTray\AVKTray.exe [1444472 2013-08-21] (G Data Software AG)
HKLM-x32\...\Run: [GDFirewallTray] - C:\Program Files (x86)\G Data\InternetSecurity\Firewall\GDFirewallTray.exe [1854928 2013-03-22] (G Data Software AG)
HKLM-x32\...\Run: [] - [x]
HKLM-x32\...\Run: [Razer Synapse] - C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe [442200 2013-10-17] (Razer Inc.)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-09-05] (Adobe Systems Incorporated)

==================== Internet (Whitelisted) ====================

StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
SearchScopes: HKCU - DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
Toolbar: HKCU - No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} -  No File
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Winsock: Catalog5 07 C:\Windows\SysWOW64\PrxerNsp.dll [56424] ()
Winsock: Catalog9 01 C:\Windows\SysWOW64\PrxerDrv.dll [70248] (Initex)
Winsock: Catalog9 02 C:\Windows\SysWOW64\PrxerDrv.dll [70248] (Initex)
Winsock: Catalog9 03 C:\Windows\SysWOW64\PrxerDrv.dll [70248] (Initex)
Winsock: Catalog9 04 C:\Windows\SysWOW64\PrxerDrv.dll [70248] (Initex)
Winsock: Catalog9 15 C:\Windows\SysWOW64\PrxerDrv.dll [70248] (Initex)
Winsock: Catalog5-x64 07 %SystemRoot%\system32\PrxerNsp.dll [57448] ()
Winsock: Catalog9-x64 01 %SystemRoot%\system32\PrxerDrv.dll [76392] (Initex)
Winsock: Catalog9-x64 02 %SystemRoot%\system32\PrxerDrv.dll [76392] (Initex)
Winsock: Catalog9-x64 03 %SystemRoot%\system32\PrxerDrv.dll [76392] (Initex)
Winsock: Catalog9-x64 04 %SystemRoot%\system32\PrxerDrv.dll [76392] (Initex)
Winsock: Catalog9-x64 15 %SystemRoot%\system32\PrxerDrv.dll [76392] (Initex)
Tcpip\Parameters: [DhcpNameServer] 192.168.100.5 192.168.100.5

FireFox:
========
FF ProfilePath: C:\Users\Alex\AppData\Roaming\Mozilla\Firefox\Profiles\trfk8gzi.default
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_9_900_170.dll ()
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_170.dll ()
FF Plugin-x32: @nvidia.com/3DVision - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF Extension: Adblock Plus - C:\Users\Alex\AppData\Roaming\Mozilla\Firefox\Profiles\trfk8gzi.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi

Chrome: 
=======
CHR HomePage: hxxp://www.google.com/
CHR RestoreOnStartup: "hxxp://www.google.com/"
CHR DefaultSearchKeyword: google.com
CHR DefaultSearchProvider: Google
CHR DefaultSearchURL: {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:bookmarkBarPinned}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}{google:omniboxStartMarginParameter}ie={inputEncoding}
CHR DefaultNewTabURL: {google:baseURL}_/chrome/newtab?{google:RLZ}{google:instantExtendedEnabledParameter}{google:ntpIsThemedParameter}ie={inputEncoding}
CHR Extension: (Google Docs) - C:\Users\Alex\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0
CHR Extension: (Google Drive) - C:\Users\Alex\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0
CHR Extension: (Google Wallet) - C:\Users\Alex\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.5.0_0
CHR Extension: (Gmail) - C:\Users\Alex\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0

==================== Services (Whitelisted) =================

R2 AVKProxy; C:\Program Files (x86)\Common Files\G Data\AVKProxy\AVKProxy.exe [1970296 2013-08-26] (G Data Software AG)
R2 AVKService; C:\Program Files (x86)\G Data\InternetSecurity\AVK\AVKService.exe [635000 2013-08-21] (G Data Software AG)
R2 AVKWCtl; C:\Program Files (x86)\G Data\InternetSecurity\AVK\AVKWCtlx64.exe [2562208 2013-10-15] (G Data Software AG)
R3 GDFwSvc; C:\Program Files (x86)\G Data\InternetSecurity\Firewall\GDFwSvcx64.exe [2942808 2013-10-17] (G Data Software AG)
R3 GDScan; C:\Program Files (x86)\Common Files\G Data\GDScan\GDScan.exe [695416 2013-08-22] (G Data Software AG)
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation)
R2 RzOvlMon; C:\Program Files (x86)\Razer\Core\64bit\rzovlmon.exe [32960 2013-10-25] (Razer, Inc.)

==================== Drivers (Whitelisted) ====================

R0 GDBehave; C:\Windows\System32\drivers\GDBehave.sys [60248 2013-12-17] (G Data Software AG)
R1 GDMnIcpt; C:\Windows\system32\drivers\MiniIcpt.sys [130392 2013-12-17] (G Data Software AG)
R3 GDPkIcpt; C:\Windows\system32\drivers\PktIcpt.sys [63320 2013-12-17] (G Data Software AG)
R1 gdwfpcd; C:\Windows\System32\drivers\gdwfpcd64.sys [64856 2013-12-17] (G Data Software AG)
R1 HookCentre; C:\Windows\system32\drivers\HookCentre.sys [65368 2013-12-17] (G Data Software AG)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25928 2013-04-04] (Malwarebytes Corporation)
R3 RzDxgk; C:\Windows\system32\drivers\RzDxgk.sys [129472 2013-10-25] (Razer, Inc.)
R3 rzendpt; C:\Windows\System32\DRIVERS\rzendpt.sys [39080 2013-10-14] (Razer Inc)
R0 RzFilter; C:\Windows\System32\drivers\RzFilter.sys [74432 2013-10-25] (Razer, Inc.)

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2013-12-19 01:54 - 2013-12-19 01:58 - 00009378 _____ C:\Users\Alex\Downloads\FRST.txt
2013-12-19 01:54 - 2013-12-19 01:56 - 00012906 _____ C:\Users\Alex\Downloads\Addition.txt
2013-12-19 01:54 - 2013-12-19 01:54 - 00000000 ____D C:\FRST
2013-12-19 01:53 - 2013-12-19 01:53 - 02192805 _____ (Farbar) C:\Users\Alex\Downloads\FRST64.exe
2013-12-19 01:40 - 2013-12-19 01:41 - 11795986 _____ C:\Users\Alex\Downloads\Honorbuddy 2.5.8935.712.zip
2013-12-19 01:08 - 2013-12-19 01:57 - 00000000 ____D C:\Users\Alex\AppData\Roaming\TS3Client
2013-12-19 01:05 - 2013-12-19 01:05 - 00000967 _____ C:\Users\Public\Desktop\TeamSpeak 3 Client.lnk
2013-12-19 01:05 - 2013-12-19 01:05 - 00000000 ____D C:\Program Files\TeamSpeak 3 Client
2013-12-19 01:04 - 2013-12-19 01:05 - 32520760 _____ (TeamSpeak Systems GmbH) C:\Users\Alex\Downloads\TeamSpeak3-Client-win64-3.0.13.1.exe
2013-12-18 21:20 - 2013-12-18 21:20 - 00289232 _____ C:\Windows\Minidump\121813-11013-01.dmp
2013-12-18 20:24 - 2013-12-18 20:24 - 00291152 _____ C:\Windows\Minidump\121813-10998-01.dmp
2013-12-18 19:38 - 2013-12-18 19:38 - 00458016 _____ C:\Windows\Minidump\121813-10935-01.dmp
2013-12-18 15:49 - 2013-12-18 15:49 - 00000000 ____D C:\Users\Alex\Desktop\Stick Madrid
2013-12-18 15:49 - 2013-08-23 14:57 - 00147334 _____ C:\Users\Alex\Downloads\Memtest86+ USB Installer.exe
2013-12-18 15:48 - 2013-12-18 15:48 - 00002019 _____ C:\Users\Public\Desktop\Adobe Reader XI.lnk
2013-12-18 15:48 - 2013-12-18 15:48 - 00000000 ____D C:\ProgramData\Adobe
2013-12-18 15:48 - 2013-12-18 15:48 - 00000000 ____D C:\Program Files (x86)\Adobe
2013-12-18 15:43 - 2013-12-18 15:43 - 00121069 _____ C:\Users\Alex\Downloads\memtest86+-5.01.usb.installer.zip
2013-12-18 15:29 - 2013-12-18 21:20 - 602880409 _____ C:\Windows\MEMORY.DMP
2013-12-18 15:29 - 2013-12-18 21:20 - 00000000 ____D C:\Windows\Minidump
2013-12-18 15:29 - 2013-12-18 15:29 - 00291096 _____ C:\Windows\Minidump\121813-12480-01.dmp
2013-12-17 23:45 - 2013-12-17 23:45 - 00001150 _____ C:\Users\Public\Desktop\Battle.net.lnk
2013-12-17 23:45 - 2013-12-17 23:45 - 00000000 ____D C:\Program Files (x86)\Battle.net
2013-12-17 23:20 - 2013-12-17 23:20 - 05717688 _____ (Blizzard Entertainment) C:\Users\Alex\Downloads\Battle.net-Beta-Setup-enGB.exe
2013-12-17 22:21 - 2013-12-17 22:21 - 10285040 _____ (Malwarebytes Corporation                                    ) C:\Users\Alex\Downloads\mbam-setup-1.75.0.1300.exe
2013-12-17 22:21 - 2013-12-17 22:21 - 00001113 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2013-12-17 22:21 - 2013-12-17 22:21 - 00000000 ____D C:\Users\Alex\AppData\Roaming\Malwarebytes
2013-12-17 22:21 - 2013-12-17 22:21 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-12-17 22:21 - 2013-12-17 22:21 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-12-17 22:21 - 2013-04-04 14:50 - 00025928 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2013-12-17 20:31 - 2013-12-18 18:11 - 00000000 ____D C:\Users\Alex\AppData\Local\HonorbuddyMeshes
2013-12-17 20:22 - 2013-12-17 20:22 - 06556224 _____ (Microsoft Corporation) C:\Users\Alex\Downloads\vcredist_x86.exe
2013-12-17 20:22 - 2013-12-17 20:22 - 00000000 ____D C:\ProgramData\Package Cache
2013-12-17 20:19 - 2013-12-17 20:19 - 01749652 _____ (Microsoft Corporation) C:\Users\Alex\Downloads\vcredist_x64.exe
2013-12-17 20:17 - 2013-12-17 20:17 - 00000000 ____D C:\Windows\system32\appmgmt
2013-12-17 20:07 - 2013-12-17 20:07 - 00261246 _____ C:\Users\Alex\Downloads\dotnetfx_cleanup_tool.zip
2013-12-17 20:07 - 2013-12-17 20:07 - 00235346 _____ C:\Users\Alex\Downloads\netfx_setupverifier_new.zip
2013-12-17 20:02 - 2013-12-01 14:42 - 88123800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MRT.exe
2013-12-17 20:01 - 2013-12-17 20:01 - 00889416 _____ (Microsoft Corporation) C:\Users\Alex\Downloads\dotNetFx40_Full_setup.exe
2013-12-17 19:52 - 2013-12-18 22:03 - 00000000 ____D C:\Users\Alex\Desktop\Honorbuddy
2013-12-17 19:52 - 2013-12-17 19:52 - 11833025 _____ C:\Users\Alex\Downloads\Honorbuddy 2.5.8877.711.zip
2013-12-17 19:43 - 2013-10-14 15:19 - 00002991 _____ C:\Users\Alex\Desktop\Ref Link + Anleitung.txt
2013-12-17 19:42 - 2013-12-18 16:24 - 00013202 _____ C:\Users\Alex\Desktop\Aufstellung Kosten_to d1o.xlsx
2013-12-17 19:42 - 2013-12-16 21:56 - 04281052 _____ C:\Users\Alex\Desktop\Wohnung.sh3d
2013-12-17 19:41 - 2013-12-17 19:41 - 00000000 ____D C:\Users\Alex\Desktop\Tmorph
2013-12-17 19:40 - 2013-12-17 19:40 - 00001023 _____ C:\Users\Alex\Desktop\Proxifier.lnk
2013-12-17 19:40 - 2013-12-17 19:40 - 00000000 ____D C:\Users\Alex\AppData\Roaming\Proxifier
2013-12-17 19:40 - 2013-12-17 19:40 - 00000000 ____D C:\Program Files (x86)\Proxifier
2013-12-17 19:40 - 2012-11-22 18:57 - 00103016 _____ (Initex) C:\Windows\system32\ProxifierShellExt.dll
2013-12-17 19:40 - 2012-11-22 18:57 - 00091240 _____ (Initex) C:\Windows\SysWOW64\ProxifierShellExt.dll
2013-12-17 19:40 - 2012-11-22 18:57 - 00076392 _____ (Initex) C:\Windows\system32\PrxerDrv.dll
2013-12-17 19:40 - 2012-11-22 18:57 - 00070248 _____ (Initex) C:\Windows\SysWOW64\PrxerDrv.dll
2013-12-17 19:40 - 2012-11-22 18:57 - 00057448 _____ C:\Windows\system32\PrxerNsp.dll
2013-12-17 19:40 - 2012-11-22 18:57 - 00056424 _____ C:\Windows\SysWOW64\PrxerNsp.dll
2013-12-17 19:40 - 1997-06-06 15:52 - 00011264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SPORDER.DLL
2013-12-17 16:07 - 2013-12-19 01:58 - 00000000 ____D C:\Users\Alex\AppData\Local\Battle.net
2013-12-17 16:07 - 2013-12-17 16:07 - 00000000 ____D C:\Users\Alex\AppData\Roaming\NVIDIA
2013-12-17 16:07 - 2013-12-17 16:07 - 00000000 ____D C:\Users\Alex\AppData\Roaming\Battle.net
2013-12-17 16:07 - 2013-12-17 16:07 - 00000000 ____D C:\Users\Alex\AppData\Local\Blizzard Entertainment
2013-12-17 15:58 - 2013-12-17 15:58 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_rzendpt_01009.Wdf
2013-12-17 15:57 - 2013-12-17 15:58 - 00059070 _____ C:\Windows\DPINST.LOG
2013-12-17 15:57 - 2013-12-17 15:57 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_rzudd_01009.Wdf
2013-12-17 15:56 - 2013-12-17 19:55 - 00066368 _____ C:\Users\Alex\AppData\Local\GDIPFONTCACHEV1.DAT
2013-12-17 15:56 - 2013-12-17 15:56 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_RzFilter_01009.Wdf
2013-12-17 15:56 - 2013-12-17 15:56 - 00000000 ____D C:\Windows\Razer Core
2013-12-17 15:56 - 2013-10-25 07:57 - 00129472 _____ (Razer, Inc.) C:\Windows\system32\Drivers\RzDxgk.sys
2013-12-17 15:56 - 2013-10-25 07:57 - 00074432 _____ (Razer, Inc.) C:\Windows\system32\Drivers\RzFilter.sys
2013-12-17 15:55 - 2013-12-17 15:57 - 00000000 ____D C:\Program Files (x86)\Razer
2013-12-17 15:55 - 2013-12-17 15:56 - 00000000 ____D C:\ProgramData\Razer
2013-12-17 15:55 - 2013-12-17 15:55 - 00000000 ____D C:\Users\Alex\AppData\Local\Razer
2013-12-17 15:54 - 2013-12-17 20:24 - 00001682 _____ C:\Windows\PFRO.log
2013-12-17 15:51 - 2013-12-17 15:51 - 00000000 ____D C:\Windows\PCHEALTH
2013-12-17 15:51 - 2013-12-17 15:51 - 00000000 ____D C:\Program Files (x86)\Microsoft Works
2013-12-17 15:51 - 2013-12-17 15:51 - 00000000 ____D C:\Program Files (x86)\Microsoft Visual Studio
2013-12-17 15:49 - 2013-12-17 15:53 - 00000000 ____D C:\ProgramData\Microsoft Help
2013-12-17 15:49 - 2013-12-17 15:51 - 00000000 ____D C:\Program Files (x86)\Microsoft Office
2013-12-17 15:49 - 2013-12-17 15:49 - 00000000 ____D C:\Users\Alex\AppData\Local\Microsoft Help
2013-12-17 15:49 - 2013-12-17 15:49 - 00000000 ____D C:\Program Files\Microsoft Office
2013-12-17 15:48 - 2013-12-17 15:48 - 00000000 __RHD C:\MSOCache
2013-12-17 15:44 - 2013-12-17 15:44 - 00000000 ____D C:\Users\Alex\AppData\Roaming\WinRAR
2013-12-17 15:42 - 2013-12-17 20:20 - 00001978 _____ C:\Users\Public\Desktop\G Data InternetSecurity 2014.lnk
2013-12-17 15:42 - 2013-12-17 15:42 - 00063320 _____ (G Data Software AG) C:\Windows\system32\Drivers\PktIcpt.sys
2013-12-17 15:42 - 2013-12-17 15:42 - 00000000 ____D C:\Users\Alex\AppData\Roaming\Macromedia
2013-12-17 15:42 - 2013-12-17 15:42 - 00000000 ____D C:\Users\Alex\AppData\Roaming\Adobe
2013-12-17 15:42 - 2013-12-17 15:42 - 00000000 ____D C:\Users\Alex\AppData\Local\Macromedia
2013-12-17 15:41 - 2013-12-17 20:20 - 00064856 _____ (G Data Software AG) C:\Windows\system32\Drivers\gdwfpcd64.sys
2013-12-17 15:41 - 2013-12-17 15:41 - 00130392 _____ (G Data Software AG) C:\Windows\system32\Drivers\MiniIcpt.sys
2013-12-17 15:41 - 2013-12-17 15:41 - 00065368 _____ (G Data Software AG) C:\Windows\system32\Drivers\HookCentre.sys
2013-12-17 15:41 - 2013-12-17 15:41 - 00060248 _____ (G Data Software AG) C:\Windows\system32\Drivers\GDBehave.sys
2013-12-17 15:41 - 2013-12-17 15:41 - 00000000 ____D C:\Program Files (x86)\G Data
2013-12-17 15:39 - 2013-12-17 15:39 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdMtpDr_01_09_00.Wdf
2013-12-17 15:39 - 2013-11-19 03:33 - 00267936 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2013-12-17 15:37 - 2010-11-19 03:34 - 00080384 _____ (Renesas Electronics Corporation) C:\Windows\system32\Drivers\nusb3hub.sys
2013-12-17 15:36 - 2013-12-17 15:36 - 00000000 ____D C:\Windows\SysWOW64\RTCOM
2013-12-17 15:36 - 2013-12-17 15:36 - 00000000 ____D C:\Users\Alex\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2013-12-17 15:36 - 2013-12-17 15:36 - 00000000 ____D C:\Program Files\WinRAR
2013-12-17 15:36 - 2013-12-17 15:36 - 00000000 ____D C:\Program Files\Realtek
2013-12-17 15:33 - 2013-12-17 20:28 - 01590618 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2013-12-17 15:31 - 2013-12-18 21:55 - 00000000 ____D C:\Program Files (x86)\World of Warcraft
2013-12-17 15:31 - 2013-12-17 15:31 - 00001242 _____ C:\Users\Public\Desktop\World of Warcraft.lnk
2013-12-17 15:31 - 2013-12-17 15:31 - 00000000 ____D C:\ProgramData\Blizzard Entertainment
2013-12-17 15:31 - 2009-11-25 20:47 - 01942856 _____ (Microsoft Corporation) C:\Windows\system32\dfshim.dll
2013-12-17 15:31 - 2009-11-25 20:47 - 01130824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dfshim.dll
2013-12-17 15:31 - 2009-11-25 20:47 - 00444752 _____ (Microsoft Corporation) C:\Windows\system32\mscoree.dll
2013-12-17 15:31 - 2009-11-25 20:47 - 00320352 _____ (Microsoft Corporation) C:\Windows\system32\PresentationHost.exe
2013-12-17 15:31 - 2009-11-25 20:47 - 00297808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mscoree.dll
2013-12-17 15:31 - 2009-11-25 20:47 - 00295264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationHost.exe
2013-12-17 15:31 - 2009-11-25 20:47 - 00109912 _____ (Microsoft Corporation) C:\Windows\system32\PresentationHostProxy.dll
2013-12-17 15:31 - 2009-11-25 20:47 - 00099176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationHostProxy.dll
2013-12-17 15:31 - 2009-11-25 20:47 - 00049472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netfxperf.dll
2013-12-17 15:31 - 2009-11-25 20:47 - 00048960 _____ (Microsoft Corporation) C:\Windows\system32\netfxperf.dll
2013-12-17 15:30 - 2013-12-17 15:30 - 00000000 ____D C:\ProgramData\Battle.net
2013-12-17 15:30 - 2012-06-19 09:54 - 04065296 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RTKVHD64.sys
2013-12-17 15:30 - 2012-06-19 06:31 - 00293889 _____ C:\Windows\system32\Drivers\RTAIODAT.DAT
2013-12-17 15:30 - 2012-06-14 06:43 - 05096448 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoRes64.dat
2013-12-17 15:30 - 2012-06-08 09:18 - 03615888 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkAPO64.dll
2013-12-17 15:30 - 2012-06-06 03:44 - 00869520 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkApi64.dll
2013-12-17 15:30 - 2012-06-01 02:37 - 02674320 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtPgEx64.dll
2013-12-17 15:30 - 2012-05-31 11:08 - 00105616 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoInstII64.dll
2013-12-17 15:30 - 2012-05-17 04:29 - 07163744 _____ (Dolby Laboratories) C:\Windows\system32\R4EEP64A.dll
2013-12-17 15:30 - 2012-05-17 04:29 - 00433504 _____ (Dolby Laboratories) C:\Windows\system32\R4EED64A.dll
2013-12-17 15:30 - 2012-05-17 04:29 - 00141152 _____ (Dolby Laboratories) C:\Windows\system32\R4EEL64A.dll
2013-12-17 15:30 - 2012-05-17 04:29 - 00123744 _____ (Dolby Laboratories) C:\Windows\system32\R4EEA64A.dll
2013-12-17 15:30 - 2012-05-17 04:29 - 00074592 _____ (Dolby Laboratories) C:\Windows\system32\R4EEG64A.dll
2013-12-17 15:30 - 2012-05-10 08:22 - 01262696 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTCOM64.dll
2013-12-17 15:30 - 2012-04-10 07:40 - 02533952 _____ (Fortemedia Corporation) C:\Windows\system32\FMAPO64.dll
2013-12-17 15:30 - 2012-04-03 11:42 - 01345368 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioRealtek264.dll
2013-12-17 15:30 - 2012-04-03 11:42 - 01015640 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPOShell64.dll
2013-12-17 15:30 - 2012-03-08 04:47 - 00202336 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAC64.dll
2013-12-17 15:30 - 2012-03-08 04:47 - 00108640 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAR64.dll
2013-12-17 15:30 - 2012-02-21 12:45 - 02605400 _____ (Waves Audio Ltd.) C:\Windows\system32\WavesGUILib.dll
2013-12-17 15:30 - 2012-02-17 08:54 - 00396632 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVolumeSDAPO.dll
2013-12-17 15:30 - 2012-02-13 17:05 - 08363864 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioRealtek.dll
2013-12-17 15:30 - 2012-01-30 04:43 - 00836544 _____ (TOSHIBA Corporation) C:\Windows\system32\tadefxapo264.dll
2013-12-17 15:30 - 2012-01-23 15:30 - 00537456 _____ (DTS) C:\Windows\system32\DTSU2PLFX64.dll
2013-12-17 15:30 - 2012-01-23 15:30 - 00524656 _____ (DTS) C:\Windows\system32\DTSU2PGFX64.dll
2013-12-17 15:30 - 2012-01-23 15:30 - 00449392 _____ (DTS) C:\Windows\system32\DTSU2PREC64.dll
2013-12-17 15:30 - 2012-01-10 03:20 - 00065944 _____ (TOSHIBA CORPORATION.) C:\Windows\system32\tepeqapo64.dll
2013-12-17 15:30 - 2011-12-20 08:32 - 00331880 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtlCPAPI64.dll
2013-12-17 15:30 - 2011-12-19 22:43 - 00220776 _____ (Sony Corporation) C:\Windows\system32\SFSS_APO.dll
2013-12-17 15:30 - 2011-12-18 10:58 - 02131288 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioEQ.dll
2013-12-17 15:30 - 2011-12-13 09:58 - 01560168 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTSnMg64.cpl
2013-12-17 15:30 - 2011-11-22 09:28 - 00014952 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCoLDR64.dll
2013-12-17 15:30 - 2011-09-02 07:21 - 00221024 _____ (Synopsys, Inc.) C:\Windows\system32\SFNHK64.dll
2013-12-17 15:30 - 2011-09-02 07:21 - 00081248 _____ (Synopsys, Inc.) C:\Windows\system32\SFCOM64.dll
2013-12-17 15:30 - 2011-09-02 07:21 - 00078688 _____ (Synopsys, Inc.) C:\Windows\system32\SFAPO64.dll
2013-12-17 15:30 - 2011-08-23 10:00 - 00603984 _____ (Knowles Acoustics ) C:\Windows\system32\KAAPORT64.dll
2013-12-17 15:30 - 2011-05-31 02:42 - 01756264 _____ (DTS) C:\Windows\system32\DTSS2SpeakerDLL64.dll
2013-12-17 15:30 - 2011-05-31 02:42 - 01568360 _____ (DTS) C:\Windows\system32\DTSS2HeadphoneDLL64.dll
2013-12-17 15:30 - 2011-05-31 02:42 - 01486952 _____ (DTS) C:\Windows\system32\DTSBoostDLL64.dll
2013-12-17 15:30 - 2011-05-31 02:42 - 00728680 _____ (DTS) C:\Windows\system32\DTSBassEnhancementDLL64.dll
2013-12-17 15:30 - 2011-05-31 02:42 - 00712296 _____ (DTS) C:\Windows\system32\DTSSymmetryDLL64.dll
2013-12-17 15:30 - 2011-05-31 02:42 - 00693352 _____ (DTS) C:\Windows\system32\DTSVoiceClarityDLL64.dll
2013-12-17 15:30 - 2011-05-31 02:42 - 00491112 _____ (DTS) C:\Windows\system32\DTSNeoPCDLL64.dll
2013-12-17 15:30 - 2011-05-31 02:42 - 00432744 _____ (DTS) C:\Windows\system32\DTSLimiterDLL64.dll
2013-12-17 15:30 - 2011-05-31 02:42 - 00428648 _____ (DTS) C:\Windows\system32\DTSGainCompensatorDLL64.dll
2013-12-17 15:30 - 2011-05-31 02:42 - 00242792 _____ (DTS) C:\Windows\system32\DTSLFXAPO64.dll
2013-12-17 15:30 - 2011-05-31 02:42 - 00242792 _____ (DTS) C:\Windows\system32\DTSGFXAPO64.dll
2013-12-17 15:30 - 2011-05-31 02:42 - 00241768 _____ (DTS) C:\Windows\system32\DTSGFXAPONS64.dll
2013-12-17 15:30 - 2011-03-17 05:17 - 01361336 _____ (TOSHIBA Corporation) C:\Windows\system32\tosade.dll
2013-12-17 15:30 - 2011-03-07 10:11 - 00148416 _____ (TOSHIBA Corporation) C:\Windows\system32\tadefxapo.dll
2013-12-17 15:30 - 2010-11-08 00:31 - 00375128 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEP64A.dll
2013-12-17 15:30 - 2010-11-08 00:31 - 00310104 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DHT64.dll
2013-12-17 15:30 - 2010-11-08 00:31 - 00310104 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DAA64.dll
2013-12-17 15:30 - 2010-11-08 00:31 - 00204120 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEED64A.dll
2013-12-17 15:30 - 2010-11-08 00:31 - 00101208 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEL64A.dll
2013-12-17 15:30 - 2010-11-08 00:31 - 00078680 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEG64A.dll
2013-12-17 15:30 - 2010-11-03 11:30 - 00149608 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCfg64.dll
2013-12-17 15:30 - 2010-10-03 06:46 - 00341336 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO30.dll
2013-12-17 15:30 - 2010-09-27 02:34 - 00318808 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO20.dll
2013-12-17 15:30 - 2010-07-22 09:48 - 00074064 _____ (Virage Logic Corporation / Sonic Focus) C:\Windows\SysWOW64\SFCOM.dll
2013-12-17 15:30 - 2009-11-24 02:55 - 00518896 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSX64.dll
2013-12-17 15:30 - 2009-11-24 02:55 - 00211184 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSH64.dll
2013-12-17 15:30 - 2009-11-24 02:55 - 00198896 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSHP64.dll
2013-12-17 15:30 - 2009-11-24 02:55 - 00155888 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSWOW64.dll
2013-12-17 15:29 - 2013-12-19 01:43 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-12-17 15:29 - 2013-12-19 01:39 - 00001106 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-12-17 15:29 - 2013-12-18 21:21 - 00001102 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-12-17 15:29 - 2013-12-17 20:24 - 00000000 ____D C:\Program Files\Google
2013-12-17 15:29 - 2013-12-17 20:24 - 00000000 ____D C:\Program Files (x86)\Google
2013-12-17 15:29 - 2013-12-17 20:19 - 00000000 ____D C:\Users\Alex\AppData\Local\Google
2013-12-17 15:29 - 2013-12-17 20:19 - 00000000 ____D C:\ProgramData\Google
2013-12-17 15:29 - 2013-12-17 15:56 - 00000000 ____D C:\ProgramData\G Data
2013-12-17 15:29 - 2013-12-17 15:43 - 00002175 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2013-12-17 15:29 - 2013-12-17 15:36 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2013-12-17 15:29 - 2013-12-17 15:36 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2013-12-17 15:29 - 2013-12-17 15:36 - 00003822 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2013-12-17 15:29 - 2013-12-17 15:34 - 00004102 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2013-12-17 15:29 - 2013-12-17 15:34 - 00003850 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2013-12-17 15:29 - 2013-12-17 15:31 - 00000000 ____D C:\Users\Alex\AppData\Roaming\Mozilla
2013-12-17 15:29 - 2013-12-17 15:31 - 00000000 ____D C:\Users\Alex\AppData\Local\Mozilla
2013-12-17 15:29 - 2013-12-17 15:29 - 00001151 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2013-12-17 15:29 - 2013-12-17 15:29 - 00000000 ____D C:\Windows\SysWOW64\Macromed
2013-12-17 15:29 - 2013-12-17 15:29 - 00000000 ____D C:\Windows\system32\Macromed
2013-12-17 15:29 - 2013-12-17 15:29 - 00000000 ____D C:\ProgramData\Mozilla
2013-12-17 15:29 - 2013-12-17 15:29 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2013-12-17 15:29 - 2013-12-17 15:29 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-12-17 15:29 - 2012-02-15 07:27 - 01031680 _____ (Microsoft Corporation) C:\Windows\system32\rdpcore.dll
2013-12-17 15:29 - 2012-02-15 06:44 - 00826368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpcore.dll
2013-12-17 15:29 - 2012-02-15 05:47 - 00204800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpwd.sys
2013-12-17 15:29 - 2012-02-15 05:46 - 00023552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdtcp.sys
2013-12-17 15:29 - 2010-01-09 08:19 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\cabview.dll
2013-12-17 15:29 - 2010-01-09 07:52 - 00132608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cabview.dll
2013-12-17 15:28 - 2013-12-19 01:55 - 00000000 ____D C:\Users\Alex\AppData\Roaming\Skype
2013-12-17 15:28 - 2013-12-18 21:20 - 00000000 ____D C:\ProgramData\NVIDIA
2013-12-17 15:28 - 2013-12-17 15:28 - 00002699 _____ C:\Users\Public\Desktop\Skype.lnk
2013-12-17 15:28 - 2013-12-17 15:28 - 00000000 ___RD C:\Program Files (x86)\Skype
2013-12-17 15:28 - 2013-12-17 15:28 - 00000000 ____D C:\ProgramData\Skype
2013-12-17 15:28 - 2013-12-17 15:28 - 00000000 ____D C:\Program Files (x86)\AGEIA Technologies
2013-12-17 15:28 - 2013-11-11 16:02 - 06674208 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2013-12-17 15:28 - 2013-11-11 16:02 - 03490080 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll
2013-12-17 15:28 - 2013-11-11 16:01 - 03467927 _____ C:\Windows\system32\nvcoproc.bin
2013-12-17 15:28 - 2013-11-11 16:01 - 02559776 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll
2013-12-17 15:28 - 2013-11-11 16:01 - 00922912 _____ (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
2013-12-17 15:28 - 2013-11-11 16:01 - 00219424 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll
2013-12-17 15:28 - 2013-11-11 16:01 - 00063776 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll
2013-12-17 15:27 - 2013-12-18 15:48 - 00000000 ____D C:\Users\Alex\AppData\Local\Adobe
2013-12-17 15:27 - 2013-12-17 15:28 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2013-12-17 15:27 - 2013-12-17 15:28 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2013-12-17 15:27 - 2013-11-14 12:57 - 01510176 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdagenco64.dll
2013-12-17 15:27 - 2013-11-14 12:57 - 00196384 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhda64v.sys
2013-12-17 15:27 - 2013-11-14 12:57 - 00031520 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdap64.dll
2013-12-17 15:27 - 2013-11-14 12:56 - 30361888 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2013-12-17 15:27 - 2013-11-14 12:56 - 25257248 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll
2013-12-17 15:27 - 2013-11-14 12:56 - 22951200 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2013-12-17 15:27 - 2013-11-14 12:56 - 18293608 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll
2013-12-17 15:27 - 2013-11-14 12:56 - 18208624 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll
2013-12-17 15:27 - 2013-11-14 12:56 - 17560352 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll
2013-12-17 15:27 - 2013-11-14 12:56 - 15862272 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll
2013-12-17 15:27 - 2013-11-14 12:56 - 15218504 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll
2013-12-17 15:27 - 2013-11-14 12:56 - 12613408 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2013-12-17 15:27 - 2013-11-14 12:56 - 11600432 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2013-12-17 15:27 - 2013-11-14 12:56 - 11514624 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2013-12-17 15:27 - 2013-11-14 12:56 - 09691888 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2013-12-17 15:27 - 2013-11-14 12:56 - 09619872 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2013-12-17 15:27 - 2013-11-14 12:56 - 03132704 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2013-12-17 15:27 - 2013-11-14 12:56 - 03125024 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvenc.dll
2013-12-17 15:27 - 2013-11-14 12:56 - 03069608 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2013-12-17 15:27 - 2013-11-14 12:56 - 02947872 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2013-12-17 15:27 - 2013-11-14 12:56 - 02747680 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvenc.dll
2013-12-17 15:27 - 2013-11-14 12:56 - 02697248 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2013-12-17 15:27 - 2013-11-14 12:56 - 01884448 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6433182.dll
2013-12-17 15:27 - 2013-11-14 12:56 - 01511712 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6433182.dll
2013-12-17 15:27 - 2013-11-14 12:56 - 01436528 _____ (NVIDIA Corporation) C:\Windows\system32\nvumdshimx.dll
2013-12-17 15:27 - 2013-11-14 12:56 - 01242400 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll
2013-12-17 15:27 - 2013-11-14 12:56 - 00707360 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2013-12-17 15:27 - 2013-11-14 12:56 - 00657184 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2013-12-17 15:27 - 2013-11-14 12:56 - 00609568 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2013-12-17 15:27 - 2013-11-14 12:56 - 00562464 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2013-12-17 15:27 - 2013-11-14 12:56 - 00317472 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll
2013-12-17 15:27 - 2013-11-14 12:56 - 00266984 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll
2013-12-17 15:27 - 2013-11-14 12:56 - 00168616 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll
2013-12-17 15:27 - 2013-11-14 12:56 - 00141336 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll
2013-12-17 15:27 - 2013-11-14 12:56 - 00061216 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2013-12-17 15:27 - 2013-11-14 12:56 - 00053024 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2013-12-17 15:27 - 2013-11-14 12:56 - 00023754 _____ C:\Windows\system32\nvinfo.pb
2013-12-17 15:26 - 2012-06-02 23:19 - 02428952 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2013-12-17 15:26 - 2012-06-02 23:19 - 00701976 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2013-12-17 15:26 - 2012-06-02 23:19 - 00057880 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2013-12-17 15:26 - 2012-06-02 23:19 - 00044056 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2013-12-17 15:26 - 2012-06-02 23:19 - 00038424 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2013-12-17 15:26 - 2012-06-02 23:15 - 02622464 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2013-12-17 15:26 - 2012-06-02 23:15 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2013-12-17 15:26 - 2012-06-02 15:19 - 00186752 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2013-12-17 15:26 - 2012-06-02 15:15 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2013-12-17 15:26 - 2010-11-19 03:34 - 00181248 _____ (Renesas Electronics Corporation) C:\Windows\system32\Drivers\nusb3xhc.sys
2013-12-17 15:25 - 2013-12-17 15:28 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2013-12-17 15:25 - 2013-12-17 15:25 - 00000000 ____D C:\NVIDIA
2013-12-17 15:25 - 2011-09-29 10:30 - 00646248 _____ (Realtek                                            ) C:\Windows\system32\Drivers\Rt64win7.sys
2013-12-17 15:25 - 2011-09-29 10:30 - 00107552 _____ (Realtek Semiconductor Corporation) C:\Windows\system32\RTNUninst64.dll
2013-12-17 15:25 - 2011-09-29 10:30 - 00074272 _____ C:\Windows\system32\RtNicProp64.dll
2013-12-17 15:24 - 2013-12-17 15:24 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdFs_01_09_00.Wdf
2013-12-17 15:22 - 2013-12-19 01:39 - 01361838 _____ C:\Windows\WindowsUpdate.log
2013-12-17 15:22 - 2013-12-17 23:29 - 00000000 ____D C:\Users\Alex
2013-12-17 15:22 - 2013-12-17 15:22 - 00001443 _____ C:\Users\Alex\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2013-12-17 15:22 - 2013-12-17 15:22 - 00001409 _____ C:\Users\Alex\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer (64-bit).lnk
2013-12-17 15:22 - 2013-12-17 15:22 - 00000020 ___SH C:\Users\Alex\ntuser.ini
2013-12-17 15:22 - 2013-12-17 15:22 - 00000000 _SHDL C:\Users\Public\Documents\Eigene Musik
2013-12-17 15:22 - 2013-12-17 15:22 - 00000000 _SHDL C:\Users\Public\Documents\Eigene Bilder
2013-12-17 15:22 - 2013-12-17 15:22 - 00000000 _SHDL C:\Users\Default\Vorlagen
2013-12-17 15:22 - 2013-12-17 15:22 - 00000000 _SHDL C:\Users\Default\Startmenü
2013-12-17 15:22 - 2013-12-17 15:22 - 00000000 _SHDL C:\Users\Default\Netzwerkumgebung
2013-12-17 15:22 - 2013-12-17 15:22 - 00000000 _SHDL C:\Users\Default\Lokale Einstellungen
2013-12-17 15:22 - 2013-12-17 15:22 - 00000000 _SHDL C:\Users\Default\Eigene Dateien
2013-12-17 15:22 - 2013-12-17 15:22 - 00000000 _SHDL C:\Users\Default\Druckumgebung
2013-12-17 15:22 - 2013-12-17 15:22 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Musik
2013-12-17 15:22 - 2013-12-17 15:22 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Bilder
2013-12-17 15:22 - 2013-12-17 15:22 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2013-12-17 15:22 - 2013-12-17 15:22 - 00000000 _SHDL C:\Users\Default\AppData\Local\Verlauf
2013-12-17 15:22 - 2013-12-17 15:22 - 00000000 _SHDL C:\Users\Default\AppData\Local\Anwendungsdaten
2013-12-17 15:22 - 2013-12-17 15:22 - 00000000 _SHDL C:\Users\Default\Anwendungsdaten
2013-12-17 15:22 - 2013-12-17 15:22 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Musik
2013-12-17 15:22 - 2013-12-17 15:22 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Bilder
2013-12-17 15:22 - 2013-12-17 15:22 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2013-12-17 15:22 - 2013-12-17 15:22 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Verlauf
2013-12-17 15:22 - 2013-12-17 15:22 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Anwendungsdaten
2013-12-17 15:22 - 2013-12-17 15:22 - 00000000 _SHDL C:\Users\Alex\Vorlagen
2013-12-17 15:22 - 2013-12-17 15:22 - 00000000 _SHDL C:\Users\Alex\Startmenü
2013-12-17 15:22 - 2013-12-17 15:22 - 00000000 _SHDL C:\Users\Alex\Netzwerkumgebung
2013-12-17 15:22 - 2013-12-17 15:22 - 00000000 _SHDL C:\Users\Alex\Lokale Einstellungen
2013-12-17 15:22 - 2013-12-17 15:22 - 00000000 _SHDL C:\Users\Alex\Eigene Dateien
2013-12-17 15:22 - 2013-12-17 15:22 - 00000000 _SHDL C:\Users\Alex\Druckumgebung
2013-12-17 15:22 - 2013-12-17 15:22 - 00000000 _SHDL C:\Users\Alex\Documents\Eigene Musik
2013-12-17 15:22 - 2013-12-17 15:22 - 00000000 _SHDL C:\Users\Alex\Documents\Eigene Bilder
2013-12-17 15:22 - 2013-12-17 15:22 - 00000000 _SHDL C:\Users\Alex\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2013-12-17 15:22 - 2013-12-17 15:22 - 00000000 _SHDL C:\Users\Alex\AppData\Local\Verlauf
2013-12-17 15:22 - 2013-12-17 15:22 - 00000000 _SHDL C:\Users\Alex\AppData\Local\Anwendungsdaten
2013-12-17 15:22 - 2013-12-17 15:22 - 00000000 _SHDL C:\Users\Alex\Anwendungsdaten
2013-12-17 15:22 - 2013-12-17 15:22 - 00000000 _SHDL C:\Programme
2013-12-17 15:22 - 2013-12-17 15:22 - 00000000 _SHDL C:\ProgramData\Vorlagen
2013-12-17 15:22 - 2013-12-17 15:22 - 00000000 _SHDL C:\ProgramData\Startmenü
2013-12-17 15:22 - 2013-12-17 15:22 - 00000000 _SHDL C:\ProgramData\Favoriten
2013-12-17 15:22 - 2013-12-17 15:22 - 00000000 _SHDL C:\ProgramData\Dokumente
2013-12-17 15:22 - 2013-12-17 15:22 - 00000000 _SHDL C:\ProgramData\Anwendungsdaten
2013-12-17 15:22 - 2013-12-17 15:22 - 00000000 _SHDL C:\Program Files\Gemeinsame Dateien
2013-12-17 15:22 - 2013-12-17 15:22 - 00000000 _SHDL C:\Dokumente und Einstellungen
2013-12-17 15:22 - 2013-12-17 15:22 - 00000000 __SHD C:\Recovery
2013-12-17 15:22 - 2013-12-17 15:22 - 00000000 ___RD C:\Users\Alex\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2013-12-17 15:22 - 2013-12-17 15:22 - 00000000 ___RD C:\Users\Alex\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2013-12-17 15:22 - 2013-12-17 15:22 - 00000000 ____D C:\Users\Alex\AppData\Local\VirtualStore
2013-12-17 15:22 - 2009-07-14 05:54 - 00000000 ___RD C:\Users\Alex\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2013-12-17 15:22 - 2009-07-14 05:49 - 00000000 ___RD C:\Users\Alex\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2013-12-17 15:18 - 2013-12-17 15:18 - 00001313 _____ C:\Windows\TSSysprep.log
2013-12-17 15:15 - 2013-12-17 15:22 - 00000000 ____D C:\Windows\Panther

==================== One Month Modified Files and Folders =======

2013-12-19 01:58 - 2013-12-19 01:54 - 00009378 _____ C:\Users\Alex\Downloads\FRST.txt
2013-12-19 01:58 - 2013-12-17 16:07 - 00000000 ____D C:\Users\Alex\AppData\Local\Battle.net
2013-12-19 01:57 - 2013-12-19 01:08 - 00000000 ____D C:\Users\Alex\AppData\Roaming\TS3Client
2013-12-19 01:56 - 2013-12-19 01:54 - 00012906 _____ C:\Users\Alex\Downloads\Addition.txt
2013-12-19 01:55 - 2013-12-17 15:28 - 00000000 ____D C:\Users\Alex\AppData\Roaming\Skype
2013-12-19 01:54 - 2013-12-19 01:54 - 00000000 ____D C:\FRST
2013-12-19 01:53 - 2013-12-19 01:53 - 02192805 _____ (Farbar) C:\Users\Alex\Downloads\FRST64.exe
2013-12-19 01:43 - 2013-12-17 15:29 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-12-19 01:41 - 2013-12-19 01:40 - 11795986 _____ C:\Users\Alex\Downloads\Honorbuddy 2.5.8935.712.zip
2013-12-19 01:39 - 2013-12-17 15:29 - 00001106 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-12-19 01:39 - 2013-12-17 15:22 - 01361838 _____ C:\Windows\WindowsUpdate.log
2013-12-19 01:22 - 2009-07-14 05:45 - 00013728 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-12-19 01:22 - 2009-07-14 05:45 - 00013728 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-12-19 01:05 - 2013-12-19 01:05 - 00000967 _____ C:\Users\Public\Desktop\TeamSpeak 3 Client.lnk
2013-12-19 01:05 - 2013-12-19 01:05 - 00000000 ____D C:\Program Files\TeamSpeak 3 Client
2013-12-19 01:05 - 2013-12-19 01:04 - 32520760 _____ (TeamSpeak Systems GmbH) C:\Users\Alex\Downloads\TeamSpeak3-Client-win64-3.0.13.1.exe
2013-12-19 01:05 - 2009-07-14 04:20 - 00000000 ____D C:\Program Files\Common Files\Microsoft Shared
2013-12-18 22:03 - 2013-12-17 19:52 - 00000000 ____D C:\Users\Alex\Desktop\Honorbuddy
2013-12-18 21:55 - 2013-12-17 15:31 - 00000000 ____D C:\Program Files (x86)\World of Warcraft
2013-12-18 21:24 - 2009-07-14 18:58 - 00696906 _____ C:\Windows\system32\perfh007.dat
2013-12-18 21:24 - 2009-07-14 18:58 - 00148202 _____ C:\Windows\system32\perfc007.dat
2013-12-18 21:24 - 2009-07-14 06:13 - 01613660 _____ C:\Windows\system32\PerfStringBackup.INI
2013-12-18 21:21 - 2013-12-17 15:29 - 00001102 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-12-18 21:20 - 2013-12-18 21:20 - 00289232 _____ C:\Windows\Minidump\121813-11013-01.dmp
2013-12-18 21:20 - 2013-12-18 15:29 - 602880409 _____ C:\Windows\MEMORY.DMP
2013-12-18 21:20 - 2013-12-18 15:29 - 00000000 ____D C:\Windows\Minidump
2013-12-18 21:20 - 2013-12-17 15:28 - 00000000 ____D C:\ProgramData\NVIDIA
2013-12-18 21:20 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-12-18 21:20 - 2009-07-14 05:51 - 00023037 _____ C:\Windows\setupact.log
2013-12-18 20:24 - 2013-12-18 20:24 - 00291152 _____ C:\Windows\Minidump\121813-10998-01.dmp
2013-12-18 19:38 - 2013-12-18 19:38 - 00458016 _____ C:\Windows\Minidump\121813-10935-01.dmp
2013-12-18 18:11 - 2013-12-17 20:31 - 00000000 ____D C:\Users\Alex\AppData\Local\HonorbuddyMeshes
2013-12-18 16:24 - 2013-12-17 19:42 - 00013202 _____ C:\Users\Alex\Desktop\Aufstellung Kosten_to d1o.xlsx
2013-12-18 15:49 - 2013-12-18 15:49 - 00000000 ____D C:\Users\Alex\Desktop\Stick Madrid
2013-12-18 15:48 - 2013-12-18 15:48 - 00002019 _____ C:\Users\Public\Desktop\Adobe Reader XI.lnk
2013-12-18 15:48 - 2013-12-18 15:48 - 00000000 ____D C:\ProgramData\Adobe
2013-12-18 15:48 - 2013-12-18 15:48 - 00000000 ____D C:\Program Files (x86)\Adobe
2013-12-18 15:48 - 2013-12-17 15:27 - 00000000 ____D C:\Users\Alex\AppData\Local\Adobe
2013-12-18 15:43 - 2013-12-18 15:43 - 00121069 _____ C:\Users\Alex\Downloads\memtest86+-5.01.usb.installer.zip
2013-12-18 15:29 - 2013-12-18 15:29 - 00291096 _____ C:\Windows\Minidump\121813-12480-01.dmp
2013-12-17 23:45 - 2013-12-17 23:45 - 00001150 _____ C:\Users\Public\Desktop\Battle.net.lnk
2013-12-17 23:45 - 2013-12-17 23:45 - 00000000 ____D C:\Program Files (x86)\Battle.net
2013-12-17 23:29 - 2013-12-17 15:22 - 00000000 ____D C:\Users\Alex
2013-12-17 23:20 - 2013-12-17 23:20 - 05717688 _____ (Blizzard Entertainment) C:\Users\Alex\Downloads\Battle.net-Beta-Setup-enGB.exe
2013-12-17 22:21 - 2013-12-17 22:21 - 10285040 _____ (Malwarebytes Corporation                                    ) C:\Users\Alex\Downloads\mbam-setup-1.75.0.1300.exe
2013-12-17 22:21 - 2013-12-17 22:21 - 00001113 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2013-12-17 22:21 - 2013-12-17 22:21 - 00000000 ____D C:\Users\Alex\AppData\Roaming\Malwarebytes
2013-12-17 22:21 - 2013-12-17 22:21 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-12-17 22:21 - 2013-12-17 22:21 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-12-17 20:28 - 2013-12-17 15:33 - 01590618 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2013-12-17 20:24 - 2013-12-17 15:54 - 00001682 _____ C:\Windows\PFRO.log
2013-12-17 20:24 - 2013-12-17 15:29 - 00000000 ____D C:\Program Files\Google
2013-12-17 20:24 - 2013-12-17 15:29 - 00000000 ____D C:\Program Files (x86)\Google
2013-12-17 20:22 - 2013-12-17 20:22 - 06556224 _____ (Microsoft Corporation) C:\Users\Alex\Downloads\vcredist_x86.exe
2013-12-17 20:22 - 2013-12-17 20:22 - 00000000 ____D C:\ProgramData\Package Cache
2013-12-17 20:20 - 2013-12-17 15:42 - 00001978 _____ C:\Users\Public\Desktop\G Data InternetSecurity 2014.lnk
2013-12-17 20:20 - 2013-12-17 15:41 - 00064856 _____ (G Data Software AG) C:\Windows\system32\Drivers\gdwfpcd64.sys
2013-12-17 20:19 - 2013-12-17 20:19 - 01749652 _____ (Microsoft Corporation) C:\Users\Alex\Downloads\vcredist_x64.exe
2013-12-17 20:19 - 2013-12-17 15:29 - 00000000 ____D C:\Users\Alex\AppData\Local\Google
2013-12-17 20:19 - 2013-12-17 15:29 - 00000000 ____D C:\ProgramData\Google
2013-12-17 20:17 - 2013-12-17 20:17 - 00000000 ____D C:\Windows\system32\appmgmt
2013-12-17 20:07 - 2013-12-17 20:07 - 00261246 _____ C:\Users\Alex\Downloads\dotnetfx_cleanup_tool.zip
2013-12-17 20:07 - 2013-12-17 20:07 - 00235346 _____ C:\Users\Alex\Downloads\netfx_setupverifier_new.zip
2013-12-17 20:01 - 2013-12-17 20:01 - 00889416 _____ (Microsoft Corporation) C:\Users\Alex\Downloads\dotNetFx40_Full_setup.exe
2013-12-17 19:55 - 2013-12-17 15:56 - 00066368 _____ C:\Users\Alex\AppData\Local\GDIPFONTCACHEV1.DAT
2013-12-17 19:52 - 2013-12-17 19:52 - 11833025 _____ C:\Users\Alex\Downloads\Honorbuddy 2.5.8877.711.zip
2013-12-17 19:41 - 2013-12-17 19:41 - 00000000 ____D C:\Users\Alex\Desktop\Tmorph
2013-12-17 19:40 - 2013-12-17 19:40 - 00001023 _____ C:\Users\Alex\Desktop\Proxifier.lnk
2013-12-17 19:40 - 2013-12-17 19:40 - 00000000 ____D C:\Users\Alex\AppData\Roaming\Proxifier
2013-12-17 19:40 - 2013-12-17 19:40 - 00000000 ____D C:\Program Files (x86)\Proxifier
2013-12-17 19:08 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\rescache
2013-12-17 16:43 - 2009-07-14 05:45 - 00327632 _____ C:\Windows\system32\FNTCACHE.DAT
2013-12-17 16:23 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\LiveKernelReports
2013-12-17 16:07 - 2013-12-17 16:07 - 00000000 ____D C:\Users\Alex\AppData\Roaming\NVIDIA
2013-12-17 16:07 - 2013-12-17 16:07 - 00000000 ____D C:\Users\Alex\AppData\Roaming\Battle.net
2013-12-17 16:07 - 2013-12-17 16:07 - 00000000 ____D C:\Users\Alex\AppData\Local\Blizzard Entertainment
2013-12-17 15:58 - 2013-12-17 15:58 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_rzendpt_01009.Wdf
2013-12-17 15:58 - 2013-12-17 15:57 - 00059070 _____ C:\Windows\DPINST.LOG
2013-12-17 15:57 - 2013-12-17 15:57 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_rzudd_01009.Wdf
2013-12-17 15:57 - 2013-12-17 15:55 - 00000000 ____D C:\Program Files (x86)\Razer
2013-12-17 15:56 - 2013-12-17 15:56 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_RzFilter_01009.Wdf
2013-12-17 15:56 - 2013-12-17 15:56 - 00000000 ____D C:\Windows\Razer Core
2013-12-17 15:56 - 2013-12-17 15:55 - 00000000 ____D C:\ProgramData\Razer
2013-12-17 15:56 - 2013-12-17 15:29 - 00000000 ____D C:\ProgramData\G Data
2013-12-17 15:55 - 2013-12-17 15:55 - 00000000 ____D C:\Users\Alex\AppData\Local\Razer
2013-12-17 15:53 - 2013-12-17 15:49 - 00000000 ____D C:\ProgramData\Microsoft Help
2013-12-17 15:51 - 2013-12-17 15:51 - 00000000 ____D C:\Windows\PCHEALTH
2013-12-17 15:51 - 2013-12-17 15:51 - 00000000 ____D C:\Program Files (x86)\Microsoft Works
2013-12-17 15:51 - 2013-12-17 15:51 - 00000000 ____D C:\Program Files (x86)\Microsoft Visual Studio
2013-12-17 15:51 - 2013-12-17 15:49 - 00000000 ____D C:\Program Files (x86)\Microsoft Office
2013-12-17 15:49 - 2013-12-17 15:49 - 00000000 ____D C:\Users\Alex\AppData\Local\Microsoft Help
2013-12-17 15:49 - 2013-12-17 15:49 - 00000000 ____D C:\Program Files\Microsoft Office
2013-12-17 15:49 - 2009-07-14 19:18 - 00000000 ____D C:\Windows\ShellNew
2013-12-17 15:49 - 2009-07-14 03:34 - 00000478 _____ C:\Windows\win.ini
2013-12-17 15:48 - 2013-12-17 15:48 - 00000000 __RHD C:\MSOCache
2013-12-17 15:44 - 2013-12-17 15:44 - 00000000 ____D C:\Users\Alex\AppData\Roaming\WinRAR
2013-12-17 15:43 - 2013-12-17 15:29 - 00002175 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2013-12-17 15:42 - 2013-12-17 15:42 - 00063320 _____ (G Data Software AG) C:\Windows\system32\Drivers\PktIcpt.sys
2013-12-17 15:42 - 2013-12-17 15:42 - 00000000 ____D C:\Users\Alex\AppData\Roaming\Macromedia
2013-12-17 15:42 - 2013-12-17 15:42 - 00000000 ____D C:\Users\Alex\AppData\Roaming\Adobe
2013-12-17 15:42 - 2013-12-17 15:42 - 00000000 ____D C:\Users\Alex\AppData\Local\Macromedia
2013-12-17 15:41 - 2013-12-17 15:41 - 00130392 _____ (G Data Software AG) C:\Windows\system32\Drivers\MiniIcpt.sys
2013-12-17 15:41 - 2013-12-17 15:41 - 00065368 _____ (G Data Software AG) C:\Windows\system32\Drivers\HookCentre.sys
2013-12-17 15:41 - 2013-12-17 15:41 - 00060248 _____ (G Data Software AG) C:\Windows\system32\Drivers\GDBehave.sys
2013-12-17 15:41 - 2013-12-17 15:41 - 00000000 ____D C:\Program Files (x86)\G Data
2013-12-17 15:39 - 2013-12-17 15:39 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdMtpDr_01_09_00.Wdf
2013-12-17 15:36 - 2013-12-17 15:36 - 00000000 ____D C:\Windows\SysWOW64\RTCOM
2013-12-17 15:36 - 2013-12-17 15:36 - 00000000 ____D C:\Users\Alex\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2013-12-17 15:36 - 2013-12-17 15:36 - 00000000 ____D C:\Program Files\WinRAR
2013-12-17 15:36 - 2013-12-17 15:36 - 00000000 ____D C:\Program Files\Realtek
2013-12-17 15:36 - 2013-12-17 15:29 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2013-12-17 15:36 - 2013-12-17 15:29 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2013-12-17 15:36 - 2013-12-17 15:29 - 00003822 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2013-12-17 15:34 - 2013-12-17 15:29 - 00004102 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2013-12-17 15:34 - 2013-12-17 15:29 - 00003850 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2013-12-17 15:31 - 2013-12-17 15:31 - 00001242 _____ C:\Users\Public\Desktop\World of Warcraft.lnk
2013-12-17 15:31 - 2013-12-17 15:31 - 00000000 ____D C:\ProgramData\Blizzard Entertainment
2013-12-17 15:31 - 2013-12-17 15:29 - 00000000 ____D C:\Users\Alex\AppData\Roaming\Mozilla
2013-12-17 15:31 - 2013-12-17 15:29 - 00000000 ____D C:\Users\Alex\AppData\Local\Mozilla
2013-12-17 15:30 - 2013-12-17 15:30 - 00000000 ____D C:\ProgramData\Battle.net
2013-12-17 15:29 - 2013-12-17 15:29 - 00001151 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2013-12-17 15:29 - 2013-12-17 15:29 - 00000000 ____D C:\Windows\SysWOW64\Macromed
2013-12-17 15:29 - 2013-12-17 15:29 - 00000000 ____D C:\Windows\system32\Macromed
2013-12-17 15:29 - 2013-12-17 15:29 - 00000000 ____D C:\ProgramData\Mozilla
2013-12-17 15:29 - 2013-12-17 15:29 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2013-12-17 15:29 - 2013-12-17 15:29 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-12-17 15:28 - 2013-12-17 15:28 - 00002699 _____ C:\Users\Public\Desktop\Skype.lnk
2013-12-17 15:28 - 2013-12-17 15:28 - 00000000 ___RD C:\Program Files (x86)\Skype
2013-12-17 15:28 - 2013-12-17 15:28 - 00000000 ____D C:\ProgramData\Skype
2013-12-17 15:28 - 2013-12-17 15:28 - 00000000 ____D C:\Program Files (x86)\AGEIA Technologies
2013-12-17 15:28 - 2013-12-17 15:27 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2013-12-17 15:28 - 2013-12-17 15:27 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2013-12-17 15:28 - 2013-12-17 15:25 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2013-12-17 15:28 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\Help
2013-12-17 15:26 - 2009-07-14 06:32 - 00000000 ____D C:\Windows\system32\restore
2013-12-17 15:25 - 2013-12-17 15:25 - 00000000 ____D C:\NVIDIA
2013-12-17 15:24 - 2013-12-17 15:24 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdFs_01_09_00.Wdf
2013-12-17 15:22 - 2013-12-17 15:22 - 00001443 _____ C:\Users\Alex\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2013-12-17 15:22 - 2013-12-17 15:22 - 00001409 _____ C:\Users\Alex\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer (64-bit).lnk
2013-12-17 15:22 - 2013-12-17 15:22 - 00000020 ___SH C:\Users\Alex\ntuser.ini
2013-12-17 15:22 - 2013-12-17 15:22 - 00000000 _SHDL C:\Users\Public\Documents\Eigene Musik
2013-12-17 15:22 - 2013-12-17 15:22 - 00000000 _SHDL C:\Users\Public\Documents\Eigene Bilder
2013-12-17 15:22 - 2013-12-17 15:22 - 00000000 _SHDL C:\Users\Default\Vorlagen
2013-12-17 15:22 - 2013-12-17 15:22 - 00000000 _SHDL C:\Users\Default\Startmenü
2013-12-17 15:22 - 2013-12-17 15:22 - 00000000 _SHDL C:\Users\Default\Netzwerkumgebung
2013-12-17 15:22 - 2013-12-17 15:22 - 00000000 _SHDL C:\Users\Default\Lokale Einstellungen
2013-12-17 15:22 - 2013-12-17 15:22 - 00000000 _SHDL C:\Users\Default\Eigene Dateien
2013-12-17 15:22 - 2013-12-17 15:22 - 00000000 _SHDL C:\Users\Default\Druckumgebung
2013-12-17 15:22 - 2013-12-17 15:22 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Musik
2013-12-17 15:22 - 2013-12-17 15:22 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Bilder
2013-12-17 15:22 - 2013-12-17 15:22 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2013-12-17 15:22 - 2013-12-17 15:22 - 00000000 _SHDL C:\Users\Default\AppData\Local\Verlauf
2013-12-17 15:22 - 2013-12-17 15:22 - 00000000 _SHDL C:\Users\Default\AppData\Local\Anwendungsdaten
2013-12-17 15:22 - 2013-12-17 15:22 - 00000000 _SHDL C:\Users\Default\Anwendungsdaten
2013-12-17 15:22 - 2013-12-17 15:22 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Musik
2013-12-17 15:22 - 2013-12-17 15:22 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Bilder
2013-12-17 15:22 - 2013-12-17 15:22 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2013-12-17 15:22 - 2013-12-17 15:22 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Verlauf
2013-12-17 15:22 - 2013-12-17 15:22 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Anwendungsdaten
2013-12-17 15:22 - 2013-12-17 15:22 - 00000000 _SHDL C:\Users\Alex\Vorlagen
2013-12-17 15:22 - 2013-12-17 15:22 - 00000000 _SHDL C:\Users\Alex\Startmenü
2013-12-17 15:22 - 2013-12-17 15:22 - 00000000 _SHDL C:\Users\Alex\Netzwerkumgebung
2013-12-17 15:22 - 2013-12-17 15:22 - 00000000 _SHDL C:\Users\Alex\Lokale Einstellungen
2013-12-17 15:22 - 2013-12-17 15:22 - 00000000 _SHDL C:\Users\Alex\Eigene Dateien
2013-12-17 15:22 - 2013-12-17 15:22 - 00000000 _SHDL C:\Users\Alex\Druckumgebung
2013-12-17 15:22 - 2013-12-17 15:22 - 00000000 _SHDL C:\Users\Alex\Documents\Eigene Musik
2013-12-17 15:22 - 2013-12-17 15:22 - 00000000 _SHDL C:\Users\Alex\Documents\Eigene Bilder
2013-12-17 15:22 - 2013-12-17 15:22 - 00000000 _SHDL C:\Users\Alex\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2013-12-17 15:22 - 2013-12-17 15:22 - 00000000 _SHDL C:\Users\Alex\AppData\Local\Verlauf
2013-12-17 15:22 - 2013-12-17 15:22 - 00000000 _SHDL C:\Users\Alex\AppData\Local\Anwendungsdaten
2013-12-17 15:22 - 2013-12-17 15:22 - 00000000 _SHDL C:\Users\Alex\Anwendungsdaten
2013-12-17 15:22 - 2013-12-17 15:22 - 00000000 _SHDL C:\Programme
2013-12-17 15:22 - 2013-12-17 15:22 - 00000000 _SHDL C:\ProgramData\Vorlagen
2013-12-17 15:22 - 2013-12-17 15:22 - 00000000 _SHDL C:\ProgramData\Startmenü
2013-12-17 15:22 - 2013-12-17 15:22 - 00000000 _SHDL C:\ProgramData\Favoriten
2013-12-17 15:22 - 2013-12-17 15:22 - 00000000 _SHDL C:\ProgramData\Dokumente
2013-12-17 15:22 - 2013-12-17 15:22 - 00000000 _SHDL C:\ProgramData\Anwendungsdaten
2013-12-17 15:22 - 2013-12-17 15:22 - 00000000 _SHDL C:\Program Files\Gemeinsame Dateien
2013-12-17 15:22 - 2013-12-17 15:22 - 00000000 _SHDL C:\Dokumente und Einstellungen
2013-12-17 15:22 - 2013-12-17 15:22 - 00000000 __SHD C:\Recovery
2013-12-17 15:22 - 2013-12-17 15:22 - 00000000 ___RD C:\Users\Alex\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2013-12-17 15:22 - 2013-12-17 15:22 - 00000000 ___RD C:\Users\Alex\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2013-12-17 15:22 - 2013-12-17 15:22 - 00000000 ____D C:\Users\Alex\AppData\Local\VirtualStore
2013-12-17 15:22 - 2013-12-17 15:15 - 00000000 ____D C:\Windows\Panther
2013-12-17 15:22 - 2009-07-14 04:20 - 00000000 __RHD C:\Users\Default
2013-12-17 15:22 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\Recovery
2013-12-17 15:22 - 2009-07-14 04:20 - 00000000 ____D C:\Program Files\Windows NT
2013-12-17 15:18 - 2013-12-17 15:18 - 00001313 _____ C:\Windows\TSSysprep.log
2013-12-17 15:18 - 2009-07-14 05:46 - 00001774 _____ C:\Windows\DtcInstall.log
2013-12-17 15:18 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\sysprep
2013-12-17 15:16 - 2009-07-14 19:18 - 00000000 ____D C:\Windows\CSC
2013-12-17 15:15 - 2009-07-14 06:38 - 00025600 ___SH C:\Windows\system32\config\BCD-Template.LOG
2013-12-17 15:15 - 2009-07-14 06:32 - 00028672 _____ C:\Windows\system32\config\BCD-Template
2013-12-16 21:56 - 2013-12-17 19:42 - 04281052 _____ C:\Users\Alex\Desktop\Wohnung.sh3d
2013-12-01 14:42 - 2013-12-17 20:02 - 88123800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MRT.exe
2013-11-19 03:33 - 2013-12-17 15:39 - 00267936 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe

Some content of TEMP:
====================
C:\Users\Alex\AppData\Local\Temp\ose00000.exe


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2013-12-17 19:01

==================== End Of Log ============================
--- --- ---

--- --- ---
__________________
Geändert von Klecks1988 (19.12.2013 um 02:02 Uhr) Grund: Rechtschreibfehler

Alt 19.12.2013, 13:17   #4
schrauber
/// the machine
/// TB-Ausbilder
 
Windows 7 Professional Ordner plötzlich Schreibgeschützt - Standard

Windows 7 Professional Ordner plötzlich Schreibgeschützt


hi,

Scan mit Combofix
WARNUNG an die MITLESER:
Combofix sollte ausschließlich ausgeführt werden, wenn dies von einem Teammitglied angewiesen wurde!

Downloade dir bitte Combofix vom folgenden Downloadspiegel: Link
  • WICHTIG: Speichere Combofix auf deinem Desktop.
  • Deaktiviere bitte alle deine Antivirensoftware sowie Malware/Spyware Scanner. Diese können Combofix bei der Arbeit stören. Combofix meckert auch manchmal trotzdem noch, das kannst du dann ignorieren, mir aber bitte mitteilen.
  • Starte die Combofix.exe und folge den Anweisungen auf dem Bildschirm.
  • Während Combofix läuft bitte nicht am Computer arbeiten, die Maus bewegen oder ins Combofixfenster klicken!
  • Wenn Combofix fertig ist, wird es ein Logfile erstellen.
  • Bitte poste die C:\Combofix.txt in deiner nächsten Antwort (möglichst in CODE-Tags).
Hinweis: Solltest du nach dem Neustart folgende Fehlermeldung erhalten
Es wurde versucht, einen Registrierungsschlüssel einem ungültigen Vorgang zu unterziehen, der zum Löschen markiert wurde.
starte den Rechner einfach neu. Dies sollte das Problem beheben.

__________________
gruß,
schrauber

Proud Member of UNITE and ASAP since 2009

Spenden
Anleitungen und Hilfestellungen
Trojaner-Board Facebook-Seite

Keine Hilfestellung via PM!

Alt 20.12.2013, 03:00   #5
Klecks1988
 
Windows 7 Professional Ordner plötzlich Schreibgeschützt - Standard

Windows 7 Professional Ordner plötzlich Schreibgeschützt


Anbei der log für combofix

Code:
ATTFilter
ComboFix 13-12-18.01 - Alex 20.12.2013   1:35.1.8 - x64
Microsoft Windows 7 Professional   6.1.7600.0.1252.49.1031.18.16382.12693 [GMT 1:00]
ausgeführt von:: c:\users\Alex\Downloads\ComboFix.exe
AV: G Data InternetSecurity 2014 *Disabled/Updated* {545C8713-0744-B079-87F8-349A6D5C8CF0}
FW: G Data Personal Firewall *Enabled* {6C670636-4D2B-B121-ACA7-9DAF938FCB8B}
SP: G Data InternetSecurity 2014 *Disabled/Updated* {EF3D66F7-217E-BFF7-BD48-0FE816DBC64D}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
(((((((((((((((((((((((   Dateien erstellt von 2013-11-20 bis 2013-12-20  ))))))))))))))))))))))))))))))
.
.
2013-12-20 01:15 . 2013-12-20 01:15	--------	d-----w-	c:\users\Default\AppData\Local\temp
2013-12-19 22:40 . 2013-12-19 22:40	75888	----a-w-	c:\programdata\Microsoft\Windows Defender\Definition Updates\{6B1244DA-4DDB-4863-9957-1ACEE5F8046E}\offreg.dll
2013-12-19 03:32 . 2013-12-19 03:32	--------	d-----w-	c:\windows\SysWow64\wbem\en-US
2013-12-19 03:32 . 2013-12-19 03:32	--------	d-----w-	c:\windows\system32\wbem\en-US
2013-12-19 03:14 . 2010-09-14 06:45	367104	----a-w-	c:\windows\system32\wcncsvc.dll
2013-12-19 03:14 . 2010-09-14 06:07	276992	----a-w-	c:\windows\SysWow64\wcncsvc.dll
2013-12-19 02:53 . 2009-09-10 06:28	311808	----a-w-	c:\windows\system32\msv1_0.dll
2013-12-19 02:53 . 2009-09-10 05:52	257024	----a-w-	c:\windows\SysWow64\msv1_0.dll
2013-12-19 02:42 . 2012-07-26 07:46	2560	----a-w-	c:\windows\system32\drivers\de-DE\wdf01000.sys.mui
2013-12-19 02:42 . 2012-07-26 04:55	785512	----a-w-	c:\windows\system32\drivers\Wdf01000.sys
2013-12-19 02:42 . 2012-07-26 04:55	54376	----a-w-	c:\windows\system32\drivers\WdfLdr.sys
2013-12-19 02:42 . 2012-07-26 02:36	9728	----a-w-	c:\windows\system32\Wdfres.dll
2013-12-19 02:31 . 2010-02-23 08:16	294912	----a-w-	c:\windows\system32\browserchoice.exe
2013-12-19 02:13 . 2012-12-16 16:52	46080	----a-w-	c:\windows\system32\atmlib.dll
2013-12-19 02:13 . 2012-12-16 14:40	367616	----a-w-	c:\windows\system32\atmfd.dll
2013-12-19 02:13 . 2012-12-16 14:25	295424	----a-w-	c:\windows\SysWow64\atmfd.dll
2013-12-19 02:13 . 2012-12-16 14:25	34304	----a-w-	c:\windows\SysWow64\atmlib.dll
2013-12-19 02:13 . 2009-10-19 14:46	100864	----a-w-	c:\windows\system32\fontsub.dll
2013-12-19 02:13 . 2009-10-19 14:10	70656	----a-w-	c:\windows\SysWow64\fontsub.dll
2013-12-19 02:12 . 2012-07-26 03:08	84992	----a-w-	c:\windows\system32\WUDFSvc.dll
2013-12-19 02:12 . 2012-07-26 03:08	194048	----a-w-	c:\windows\system32\WUDFPlatform.dll
2013-12-19 02:12 . 2012-07-26 02:26	87040	----a-w-	c:\windows\system32\drivers\WUDFPf.sys
2013-12-19 02:12 . 2012-07-26 02:26	198656	----a-w-	c:\windows\system32\drivers\WUDFRd.sys
2013-12-19 02:12 . 2012-07-26 03:08	229888	----a-w-	c:\windows\system32\WUDFHost.exe
2013-12-19 02:12 . 2012-07-26 03:08	744448	----a-w-	c:\windows\system32\WUDFx.dll
2013-12-19 02:12 . 2012-07-26 03:08	45056	----a-w-	c:\windows\system32\WUDFCoinstaller.dll
2013-12-19 02:04 . 2012-03-01 06:54	22896	----a-w-	c:\windows\system32\drivers\fs_rec.sys
2013-12-19 02:04 . 2012-03-01 06:40	80896	----a-w-	c:\windows\system32\imagehlp.dll
2013-12-19 02:04 . 2012-03-01 06:35	5120	----a-w-	c:\windows\system32\wmi.dll
2013-12-19 02:04 . 2012-03-01 05:45	158720	----a-w-	c:\windows\SysWow64\imagehlp.dll
2013-12-19 02:04 . 2012-03-01 05:40	5120	----a-w-	c:\windows\SysWow64\wmi.dll
2013-12-19 02:00 . 2010-03-04 04:32	243712	----a-w-	c:\windows\system32\drivers\ks.sys
2013-12-19 00:54 . 2013-12-19 00:54	--------	d-----w-	C:\FRST
2013-12-19 00:05 . 2013-12-19 00:05	--------	d-----w-	c:\program files\TeamSpeak 3 Client
2013-12-18 14:48 . 2013-12-18 14:48	--------	d-----w-	c:\program files (x86)\Common Files\Adobe
2013-12-18 02:14 . 2013-02-12 15:37	3138048	----a-w-	c:\windows\system32\mstscax.dll
2013-12-18 02:13 . 2009-09-03 07:36	1975296	----a-w-	c:\windows\system32\CertEnroll.dll
2013-12-18 02:12 . 2012-08-02 17:55	574464	----a-w-	c:\windows\system32\d3d10level9.dll
2013-12-18 02:11 . 2012-09-06 17:38	295792	----a-w-	c:\windows\system32\drivers\volsnap.sys
2013-12-18 02:10 . 2012-09-25 22:39	95744	----a-w-	c:\windows\system32\synceng.dll
2013-12-18 02:09 . 2011-02-23 05:15	90624	----a-w-	c:\windows\system32\drivers\bowser.sys
2013-12-17 22:45 . 2013-12-17 22:45	--------	d-----w-	c:\program files (x86)\Battle.net
2013-12-17 21:21 . 2013-12-17 21:21	--------	d-----w-	c:\programdata\Malwarebytes
2013-12-17 21:21 . 2013-12-17 21:21	--------	d-----w-	c:\program files (x86)\Malwarebytes' Anti-Malware
2013-12-17 21:21 . 2013-04-04 13:50	25928	----a-w-	c:\windows\system32\drivers\mbam.sys
2013-12-17 19:26 . 2013-12-17 19:26	--------	d-----w-	c:\program files (x86)\Microsoft.NET
2013-12-17 19:22 . 2013-12-17 19:22	--------	d-----w-	c:\programdata\Package Cache
2013-12-17 19:17 . 2013-12-17 19:17	--------	d-----w-	c:\windows\system32\appmgmt
2013-12-17 18:40 . 2013-12-17 18:40	--------	d-----w-	c:\program files (x86)\Proxifier
2013-12-17 18:40 . 2012-11-22 17:57	76392	----a-w-	c:\windows\system32\PrxerDrv.dll
2013-12-17 18:40 . 2012-11-22 17:57	57448	----a-w-	c:\windows\system32\PrxerNsp.dll
2013-12-17 18:40 . 2012-11-22 17:57	103016	----a-w-	c:\windows\system32\ProxifierShellExt.dll
2013-12-17 18:40 . 2012-11-22 17:57	91240	----a-w-	c:\windows\SysWow64\ProxifierShellExt.dll
2013-12-17 18:40 . 2012-11-22 17:57	70248	----a-w-	c:\windows\SysWow64\PrxerDrv.dll
2013-12-17 18:40 . 2012-11-22 17:57	56424	----a-w-	c:\windows\SysWow64\PrxerNsp.dll
2013-12-17 18:40 . 1997-06-06 14:52	11264	----a-w-	c:\windows\SysWow64\SPORDER.DLL
2013-12-17 14:56 . 2013-10-25 06:57	74432	----a-w-	c:\windows\system32\drivers\RzFilter.sys
2013-12-17 14:56 . 2013-10-25 06:57	129472	----a-w-	c:\windows\system32\drivers\RzDxgk.sys
2013-12-17 14:56 . 2013-12-17 14:56	--------	d-----w-	c:\windows\Razer Core
2013-12-17 14:55 . 2013-12-17 14:57	--------	d-----w-	c:\program files (x86)\Razer
2013-12-17 14:55 . 2013-12-17 14:56	--------	d-----w-	c:\programdata\Razer
2013-12-17 14:51 . 2013-12-17 14:51	--------	d-----w-	c:\program files (x86)\Microsoft Works
2013-12-17 14:51 . 2013-12-17 14:51	--------	d-----w-	c:\windows\PCHEALTH
2013-12-17 14:49 . 2013-12-17 14:49	--------	d-----w-	c:\program files\Microsoft Office
2013-12-17 14:49 . 2013-12-17 14:53	--------	d-----w-	c:\programdata\Microsoft Help
2013-12-17 14:48 . 2013-12-17 14:48	--------	d-----r-	C:\MSOCache
2013-12-17 14:42 . 2013-12-17 14:42	63320	----a-w-	c:\windows\system32\drivers\PktIcpt.sys
2013-12-17 14:41 . 2013-12-17 19:20	64856	----a-w-	c:\windows\system32\drivers\gdwfpcd64.sys
2013-12-17 14:41 . 2013-12-17 14:41	65368	----a-w-	c:\windows\system32\drivers\HookCentre.sys
2013-12-17 14:41 . 2013-12-17 14:41	60248	----a-w-	c:\windows\system32\drivers\GDBehave.sys
2013-12-17 14:41 . 2013-12-17 14:41	130392	----a-w-	c:\windows\system32\drivers\MiniIcpt.sys
2013-12-17 14:41 . 2013-12-17 14:41	--------	d-----w-	c:\program files (x86)\G Data
2013-12-17 14:41 . 2013-12-17 14:41	--------	d-----w-	c:\program files (x86)\Common Files\G Data
2013-12-17 14:39 . 2013-12-16 00:54	10315576	----a-w-	c:\programdata\Microsoft\Windows Defender\Definition Updates\{6B1244DA-4DDB-4863-9957-1ACEE5F8046E}\mpengine.dll
2013-12-17 14:39 . 2013-11-19 02:33	267936	------w-	c:\windows\system32\MpSigStub.exe
2013-12-17 14:37 . 2010-11-19 02:34	80384	----a-w-	c:\windows\system32\drivers\nusb3hub.sys
2013-12-17 14:36 . 2013-12-17 14:36	--------	d-----w-	c:\program files\WinRAR
2013-12-17 14:36 . 2013-12-17 14:36	--------	d-----w-	c:\windows\SysWow64\RTCOM
2013-12-17 14:36 . 2013-12-17 14:36	--------	d-----w-	c:\program files\Realtek
2013-12-17 14:30 . 2013-12-17 14:30	--------	d-----w-	c:\programdata\Battle.net
2013-12-17 14:29 . 2012-02-15 06:27	1031680	----a-w-	c:\windows\system32\rdpcore.dll
2013-12-17 14:28 . 2013-12-17 14:28	--------	d-----w-	c:\program files (x86)\AGEIA Technologies
2013-12-17 14:28 . 2013-12-17 14:28	--------	d-----w-	c:\program files (x86)\Common Files\Skype
2013-12-17 14:28 . 2013-12-17 14:28	--------	d-----r-	c:\program files (x86)\Skype
2013-12-17 14:27 . 2013-11-14 11:57	31520	----a-w-	c:\windows\system32\nvhdap64.dll
2013-12-17 14:26 . 2010-11-19 02:34	181248	----a-w-	c:\windows\system32\drivers\nusb3xhc.sys
2013-12-17 14:26 . 2012-06-02 22:19	2428952	----a-w-	c:\windows\system32\wuaueng.dll
2013-12-17 14:26 . 2012-06-02 22:19	57880	----a-w-	c:\windows\system32\wuauclt.exe
2013-12-17 14:26 . 2012-06-02 22:19	44056	----a-w-	c:\windows\system32\wups2.dll
2013-12-17 14:26 . 2012-06-02 22:15	2622464	----a-w-	c:\windows\system32\wucltux.dll
2013-12-17 14:26 . 2012-06-02 22:19	38424	----a-w-	c:\windows\system32\wups.dll
2013-12-17 14:26 . 2012-06-02 22:19	701976	----a-w-	c:\windows\system32\wuapi.dll
2013-12-17 14:26 . 2012-06-02 22:15	99840	----a-w-	c:\windows\system32\wudriver.dll
2013-12-17 14:26 . 2012-06-02 14:19	186752	----a-w-	c:\windows\system32\wuwebv.dll
2013-12-17 14:26 . 2012-06-02 14:15	36864	----a-w-	c:\windows\system32\wuapp.exe
2013-12-17 14:25 . 2013-12-17 14:28	--------	d-----w-	c:\program files\NVIDIA Corporation
2013-12-17 14:25 . 2011-09-29 09:30	74272	----a-w-	c:\windows\system32\RtNicProp64.dll
2013-12-17 14:25 . 2011-09-29 09:30	646248	----a-w-	c:\windows\system32\drivers\Rt64win7.sys
2013-12-17 14:25 . 2011-09-29 09:30	107552	----a-w-	c:\windows\system32\RTNUninst64.dll
2013-12-17 14:25 . 2013-12-17 14:25	--------	d-----w-	C:\NVIDIA
2013-12-17 14:15 . 2013-12-17 14:22	--------	d-----w-	c:\windows\Panther
.
.
.
((((((((((((((((((((((((((((((((((((   Find3M Bericht   ))))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-11-11 07:59 . 2013-11-11 07:59	590112	----a-w-	c:\windows\SysWow64\nvStreaming.exe
2013-10-25 06:57 . 2013-10-25 07:00	2106216	----a-w-	c:\windows\SysWow64\D3DCompiler_43.dll
2013-10-23 08:37 . 2013-10-23 08:37	823296	----a-w-	c:\windows\SysWow64\rzdevicedll.dll
2013-10-18 02:28 . 2013-10-18 02:28	154112	----a-w-	c:\windows\SysWow64\rztouchdll.dll
2013-10-18 02:28 . 2013-10-18 02:28	57344	----a-w-	c:\windows\SysWow64\rzdevinfo.dll
2013-10-18 02:28 . 2013-10-18 02:28	117248	----a-w-	c:\windows\SysWow64\rzdisplaydll.dll
2013-10-18 02:28 . 2013-10-18 02:28	296448	----a-w-	c:\windows\SysWow64\rzaudiodll.dll
2013-10-17 02:27 . 2013-10-17 02:27	143016	----a-w-	c:\windows\system32\drivers\rzudd.sys
2013-10-14 02:17 . 2013-10-14 02:17	39080	----a-w-	c:\windows\system32\drivers\rzendpt.sys
.
.
((((((((((((((((((((((((((((   Autostartpunkte der Registrierung   ))))))))))))))))))))))))))))))))))))))))
.
.
*Hinweis* leere Einträge & legitime Standardeinträge werden nicht angezeigt. 
REGEDIT4
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"G Data AntiVirus Tray"="c:\program files (x86)\G Data\InternetSecurity\AVKTray\AVKTray.exe" [2013-08-21 1444472]
"GDFirewallTray"="c:\program files (x86)\G Data\InternetSecurity\Firewall\GDFirewallTray.exe" [2013-03-22 1854928]
"Razer Synapse"="c:\program files (x86)\Razer\Synapse\RzSynapse.exe" [2013-10-17 442200]
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2013-09-05 958576]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)
.
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
R2 MBAMScheduler;MBAMScheduler;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [x]
R2 MBAMService;MBAMService;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [x]
R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe;c:\program files (x86)\Skype\Updater\Updater.exe [x]
R3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys;c:\windows\SYSNATIVE\drivers\mbam.sys [x]
S0 GDBehave;GDBehave;c:\windows\system32\drivers\GDBehave.sys;c:\windows\SYSNATIVE\drivers\GDBehave.sys [x]
S0 RzFilter;RzFilter;c:\windows\system32\drivers\RzFilter.sys;c:\windows\SYSNATIVE\drivers\RzFilter.sys [x]
S1 GDMnIcpt;GDMnIcpt;c:\windows\system32\drivers\MiniIcpt.sys;c:\windows\SYSNATIVE\drivers\MiniIcpt.sys [x]
S1 gdwfpcd;G Data WFP CD;c:\windows\system32\drivers\gdwfpcd64.sys;c:\windows\SYSNATIVE\drivers\gdwfpcd64.sys [x]
S1 HookCentre;HookCentre;c:\windows\system32\drivers\HookCentre.sys;c:\windows\SYSNATIVE\drivers\HookCentre.sys [x]
S2 AVKProxy;G Data AntiVirus Proxy;c:\program files (x86)\Common Files\G Data\AVKProxy\AVKProxy.exe;c:\program files (x86)\Common Files\G Data\AVKProxy\AVKProxy.exe [x]
S2 AVKService;G Data Scheduler;c:\program files (x86)\G Data\InternetSecurity\AVK\AVKService.exe;c:\program files (x86)\G Data\InternetSecurity\AVK\AVKService.exe [x]
S2 AVKWCtl;G Data Dateisystem Wächter;c:\program files (x86)\G Data\InternetSecurity\AVK\AVKWCtlx64.exe;c:\program files (x86)\G Data\InternetSecurity\AVK\AVKWCtlx64.exe [x]
S2 RzOvlMon;Razer Overlay Subsystem Emergency Service;c:\program files (x86)\Razer\Core\64bit\rzovlmon.exe;c:\program files (x86)\Razer\Core\64bit\rzovlmon.exe [x]
S2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [x]
S3 GDFwSvc;G Data Personal Firewall;c:\program files (x86)\G Data\InternetSecurity\Firewall\GDFwSvcx64.exe;c:\program files (x86)\G Data\InternetSecurity\Firewall\GDFwSvcx64.exe [x]
S3 GDPkIcpt;GDPkIcpt;c:\windows\system32\drivers\PktIcpt.sys;c:\windows\SYSNATIVE\drivers\PktIcpt.sys [x]
S3 GDScan;G Data Scanner;c:\program files (x86)\Common Files\G Data\GDScan\GDScan.exe;c:\program files (x86)\Common Files\G Data\GDScan\GDScan.exe [x]
S3 nusb3hub;Renesas Electronics USB 3.0 Hub Driver;c:\windows\system32\DRIVERS\nusb3hub.sys;c:\windows\SYSNATIVE\DRIVERS\nusb3hub.sys [x]
S3 nusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver;c:\windows\system32\DRIVERS\nusb3xhc.sys;c:\windows\SYSNATIVE\DRIVERS\nusb3xhc.sys [x]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys;c:\windows\SYSNATIVE\DRIVERS\Rt64win7.sys [x]
S3 RzDxgk;RzDxgk;c:\windows\system32\drivers\RzDxgk.sys;c:\windows\SYSNATIVE\drivers\RzDxgk.sys [x]
S3 rzendpt;rzendpt;c:\windows\system32\DRIVERS\rzendpt.sys;c:\windows\SYSNATIVE\DRIVERS\rzendpt.sys [x]
S3 rzudd;Razer Mouse Driver;c:\windows\system32\DRIVERS\rzudd.sys;c:\windows\SYSNATIVE\DRIVERS\rzudd.sys [x]
.
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2013-12-17 14:40	1210320	----a-w-	c:\program files (x86)\Google\Chrome\Application\31.0.1650.63\Installer\chrmstp.exe
.
Inhalt des "geplante Tasks" Ordners
.
2013-12-20 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-12-17 14:36]
.
2013-12-19 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2013-12-17 14:29]
.
2013-12-20 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2013-12-17 14:29]
.
.
--------- X64 Entries -----------
.
.
------- Zusätzlicher Suchlauf -------
.
uLocal Page = c:\windows\system32\blank.htm
mLocal Page = c:\windows\SysWOW64\blank.htm
IE: Nach Microsoft E&xel exportieren - c:\progra~2\MICROS~1\Office12\EXCEL.EXE/3000
LSP: %SystemRoot%\system32\PrxerDrv.dll
TCP: DhcpNameServer = 192.168.100.5 192.168.100.5
FF - ProfilePath - c:\users\Alex\AppData\Roaming\Mozilla\Firefox\Profiles\trfk8gzi.default\
.
- - - - Entfernte verwaiste Registrierungseinträge - - - -
.
Wow6432Node-HKLM-Run-<NO NAME> - (no file)
.
.
.
--------------------- Gesperrte Registrierungsschluessel ---------------------
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_9_900_170_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_9_900_170_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_9_900_170_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_9_900_170_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_9_900_170.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.11"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_9_900_170.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_9_900_170.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_9_900_170.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Zeit der Fertigstellung: 2013-12-20  02:58:47
ComboFix-quarantined-files.txt  2013-12-20 01:58
.
Vor Suchlauf: 8 Verzeichnis(se), 162.655.084.544 Bytes frei
Nach Suchlauf: 13 Verzeichnis(se), 163.013.693.440 Bytes frei
.
- - End Of File - - 905F883DFAF2D105B834D0B7E3B665D5
A36C5E4F47E84449FF07ED3517B43A31


Alt 20.12.2013, 17:50   #6
schrauber
/// the machine
/// TB-Ausbilder
 
Windows 7 Professional Ordner plötzlich Schreibgeschützt - Standard

Windows 7 Professional Ordner plötzlich Schreibgeschützt


Downloade Dir bitte Malwarebytes Anti-Malware
  • Installiere das Programm in den vorgegebenen Pfad. (Bebilderte Anleitung zu MBAM)
  • Starte Malwarebytes' Anti-Malware (MBAM).
  • Klicke im Anschluss auf Scannen, wähle den Bedrohungssuchlauf aus und klicke auf Suchlauf starten.
  • Lass am Ende des Suchlaufs alle Funde (falls vorhanden) in die Quarantäne verschieben. Klicke dazu auf Auswahl entfernen.
  • Lass deinen Rechner ggf. neu starten, um die Bereinigung abzuschließen.
  • Starte MBAM, klicke auf Verlauf und dann auf Anwendungsprotokolle.
  • Wähle das neueste Scan-Protokoll aus und klicke auf Export. Wähle Textdatei (.txt) aus und speichere die Datei als mbam.txt auf dem Desktop ab. Das Logfile von MBAM findest du hier.
  • Füge den Inhalt der mbam.txt mit deiner nächsten Antwort hinzu.


Downloade Dir bitte AdwCleaner Logo Icon AdwCleaner auf deinen Desktop.
  • Schließe alle offenen Programme und Browser. Bebilderte Anleitung zu AdwCleaner.
  • Starte die AdwCleaner.exe mit einem Doppelklick.
  • Stimme den Nutzungsbedingungen zu.
  • Klicke auf Optionen und vergewissere dich, dass die folgenden Punkte ausgewählt sind:
    • "Tracing" Schlüssel löschen
    • Winsock Einstellungen zurücksetzen
    • Proxy Einstellungen zurücksetzen
    • Internet Explorer Richtlinien zurücksetzen
    • Chrome Richtlinien zurücksetzen
    • Stelle sicher, dass alle 5 Optionen wie hier dargestellt, ausgewählt sind
  • Klicke auf Suchlauf und warte bis dieser abgeschlossen ist.
  • Klicke nun auf Löschen und bestätige auftretende Hinweise mit Ok.
  • Dein Rechner wird automatisch neu gestartet. Nach dem Neustart öffnet sich eine Textdatei. Poste mir deren Inhalt mit deiner nächsten Antwort.
  • Die Logdatei findest du auch unter C:\AdwCleaner\AdwCleaner[Cx].txt. (x = fortlaufende Nummer).

Beende bitte Deine Schutzsoftware um eventuelle Konflikte zu vermeiden.
Bitte lade Junkware Removal Tool auf Deinen Desktop

  • Starte das Tool mit Doppelklick. Ab Windows Vista (oder höher) bitte mit Rechtsklick "als Administrator ausführen" starten.
  • Drücke eine beliebige Taste, um das Tool zu starten.
  • Je nach System kann der Scan eine Weile dauern.
  • Wenn das Tool fertig ist wird das Logfile (JRT.txt) auf dem Desktop gespeichert und automatisch geöffnet.
  • Bitte poste den Inhalt der JRT.txt in Deiner nächsten Antwort.


und ein frisches FRST log bitte.
__________________
--> Windows 7 Professional Ordner plötzlich Schreibgeschützt

Antwort

Themen zu Windows 7 Professional Ordner plötzlich Schreibgeschützt
administrator, anti-malware, autostart, brauch, code, dateien, einfach, explorer, festplatte, frage, gdata, infos, internet, lösung, malwarebytes, ordner, plötzlich, problem, security, speicher, system, test, version, windows, windows 7


« Malwarebytes meldet infizierten Laptop. | gmer log bei rootkit »


Ähnliche Themen: Windows 7 Professional Ordner plötzlich Schreibgeschützt


  1. Alle Ordner Schreibgeschützt
    Plagegeister aller Art und deren Bekämpfung - 06.09.2015 (1)
  2. Plötzlich Ordner auf dem Rechner
    Plagegeister aller Art und deren Bekämpfung - 18.05.2015 (11)
  3. Komischer Ordner auf D:\ mit random Zahlen, schreibgeschützt
    Plagegeister aller Art und deren Bekämpfung - 02.08.2014 (1)
  4. Windows 7 Ordner plötzlich Schreibgeschützt
    Log-Analyse und Auswertung - 29.03.2014 (22)
  5. Ordner und Dateien auf meinem USB-Stick sind plötzlich Verknüpfungen
    Log-Analyse und Auswertung - 10.03.2014 (14)
  6. plötzlich sämtliche Dateien/Ordner/Programme weg, Desktop schwarz
    Plagegeister aller Art und deren Bekämpfung - 04.04.2013 (36)
  7. Disk Antivirus Professional und plötzlich jede Menge Infektionen
    Plagegeister aller Art und deren Bekämpfung - 15.02.2013 (5)
  8. Ordner der Externen Festplatte sind plötzlich Verknüpfungen
    Plagegeister aller Art und deren Bekämpfung - 04.02.2012 (26)
  9. VIRUS ? Ordner und Dateien plötzlich versteckt, Windows Fehlermeldungen zu Festplatte
    Plagegeister aller Art und deren Bekämpfung - 23.11.2011 (35)
  10. Temp Ordner immer Schreibgeschützt. Bin ich verseucht?
    Log-Analyse und Auswertung - 09.08.2011 (8)
  11. Nach Virenbefall alle Ordner angeblich Schreibgeschützt!
    Log-Analyse und Auswertung - 21.04.2011 (3)
  12. Plötzlich verschwundene Dateien und Ordner
    Antiviren-, Firewall- und andere Schutzprogramme - 17.06.2009 (0)
  13. Alle Ordner plötzlich schreibgeschützt
    Plagegeister aller Art und deren Bekämpfung - 25.03.2009 (1)
  14. Alle Ordner plötzlich schreibgeschützt
    Alles rund um Windows - 25.03.2009 (1)
  15. Plötzlich Ordner AUTOSTART und EXTRAS auf Partition
    Plagegeister aller Art und deren Bekämpfung - 19.02.2009 (0)
  16. Alle Ordner Schreibgeschützt Heeeelp
    Alles rund um Windows - 03.05.2008 (8)
  17. Windows Xp Professional 64 Bit En.
    Mülltonne - 09.01.2008 (0)
Anleitungen und Tipps

- Für alle Hilfesuchenden! Was beachten?

- Anleitung: MyStartSearch.com entfernen

- Anleitung: WebSearches löschen

- Hilfe: iStartSurf entfernen – so gehts!

- Anleitung: Omiga Plus richtig entfernen

- Browser Viren entfernen


Zum Thema Windows 7 Professional Ordner plötzlich Schreibgeschützt - Hallo liebe Community, bei mir ist neuerdings das Problem aufgetreten, dass sämtliche Ordner schreibgeschützt sind. Das Problem ist aufgetreten, nachdem ich mein System auf meine neue SSD Platte gecloned habe. - Windows 7 Professional Ordner plötzlich Schreibgeschützt...
Archiv
Du betrachtest: Windows 7 Professional Ordner plötzlich Schreibgeschützt auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55