| |
| |||||||
Plagegeister aller Art und deren Bekämpfung: Über meine Mail-Adresse wurden massiv Spammails verschickt - Malware unwahrscheinlich - was tun?Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen. |
 |
11.02.2014, 12:52
| #1 |
 |  Über meine Mail-Adresse wurden massiv Spammails verschickt - Malware unwahrscheinlich - was tun? Moin, in der Nacht von Freitag auf Sonntag soll laut unserem Serverbetreiber von einer meiner Mail-Adressen massiv gespammt worden sein. Daher hat er den Zugang vorübergehend gesperrt. In meinen "Sent"-Ordnern ist nichts zu sehen. Inzwischen wurde das Passwort geändert. Wie kann das passieren? Es ist eine Mail-Adresse die ich ausschließlich über POP3 abrufe. Es ist (denke ich) ziemlich unwahrscheinlich, dass ich Malware habe, da ich erst vor wenigen Tagen einen intensiven Suchlauf mit schrauber gemacht habe, bei dem nichts gefunden wurde (siehe hier: http://www.trojaner-board.de/148474-...-trojaner.html - es handelt sich dabei nicht um die Adresse, von der aus gespammt wurde). Natürlich halte ich alle Antivirensoftware etc. aktuell. Ein Suchlauf mit Malware-Bytes hat nichts gefunden, dennoch habe ich das Logfile eingestellt. Was tun? Ich tendiere dazu, den Rechner neu aufzusetzen, würde mich aber über Eure Meinung freuen! Vielen Dank! Malwarebytes-Log: Code:
ATTFilter Malwarebytes Anti-Malware 1.75.0.1300 www.malwarebytes.org Datenbank Version: v2014.02.11.04 Windows 7 Service Pack 1 x86 NTFS Internet Explorer 11.0.9600.16476 R :: R-PC [Administrator] 11.02.2014 12:29:48 mbam-log-2014-02-11 (12-29-48).txt Art des Suchlaufs: Quick-Scan Aktivierte Suchlaufeinstellungen: Speicher | Autostart | Registrierung | Dateisystem | Heuristiks/Extra | HeuristiKs/Shuriken | PUP | PUM Deaktivierte Suchlaufeinstellungen: P2P Durchsuchte Objekte: 235663 Laufzeit: 13 Minute(n), 26 Sekunde(n) Infizierte Speicherprozesse: 0 (Keine bösartigen Objekte gefunden) Infizierte Speichermodule: 0 (Keine bösartigen Objekte gefunden) Infizierte Registrierungsschlüssel: 0 (Keine bösartigen Objekte gefunden) Infizierte Registrierungswerte: 0 (Keine bösartigen Objekte gefunden) Infizierte Dateiobjekte der Registrierung: 0 (Keine bösartigen Objekte gefunden) Infizierte Verzeichnisse: 0 (Keine bösartigen Objekte gefunden) Infizierte Dateien: 0 (Keine bösartigen Objekte gefunden) (Ende) FRST Logfile: FRST Logfile: Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 10-02-2014 01
Ran by R (administrator) on R-PC on 11-02-2014 12:49:47
Running from C:\Users\Ruben\Desktop
Microsoft Windows 7 Professional Service Pack 1 (X86) OS Language: German Standard
Internet Explorer Version 11
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(Bitdefender) E:\Bitdefender\Bitdefender\vsserv.exe
() C:\Windows\system32\DTS.exe
(Lenovo.) C:\Windows\system32\ibmpmsvc.exe
(AMD) C:\Windows\system32\atiesrxx.exe
(AMD) C:\Windows\system32\atieclxx.exe
(Microsoft Corporation) C:\Windows\system32\WLANExt.exe
(Lenovo Group Limited) C:\Program Files\LENOVO\HOTKEY\TPHKLOAD.exe
(Lenovo Group Limited) C:\Program Files\LENOVO\HOTKEY\TPHKSVC.exe
(Lenovo Group Limited) C:\Program Files\LENOVO\HOTKEY\tposdsvc.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\TPONSCR.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\Zoom\TpScrex.exe
(Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(Lenovo Group Limited) C:\Program Files\LENOVO\VIRTSCRL\lvvsst.exe
(Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\VIRTSCRL\virtscrl.exe
(Bitdefender) E:\Bitdefender\Bitdefender\updatesrv.exe
(Bitdefender) E:\Bitdefender\Bitdefender SafeBox\safeboxservice.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Lenovo.) C:\Windows\System32\TpShocks.exe
(Advanced Micro Devices Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(Logitech, Inc.) C:\Program Files\Logitech\SetPointP\SetPoint.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Bitdefender) E:\Bitdefender\Bitdefender\bdagent.exe
(Microsoft Corporation) C:\Windows\system32\wbem\unsecapp.exe
(Logitech, Inc.) C:\Program Files\Common Files\LogiShrd\KHAL3\KHALMNPR.EXE
(Synaptics Incorporated) C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
(ATI Technologies Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Mozilla Corporation) E:\Firefox\firefox.exe
(Mozilla Corporation) E:\Firefox\plugin-container.exe
(Adobe Systems, Inc.) C:\Windows\system32\Macromed\Flash\FlashPlayerPlugin_12_0_0_44.exe
(Adobe Systems, Inc.) C:\Windows\system32\Macromed\Flash\FlashPlayerPlugin_12_0_0_44.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [StartCCC] - C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [98304 2011-04-24] (Advanced Micro Devices, Inc.)
HKLM\...\Run: [TpShocks] - C:\Windows\system32\TpShocks.exe [337256 2011-03-29] (Lenovo.)
HKLM\...\Run: [EvtMgr6] - C:\Program Files\Logitech\SetPointP\SetPoint.exe [2296600 2013-07-31] (Logitech, Inc.)
HKLM\...\Run: [SynTPEnh] - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2379504 2013-04-24] (Synaptics Incorporated)
HKLM\...\Run: [Bdagent] - E:\Bitdefender\Bitdefender\bdagent.exe [1839896 2014-02-03] (Bitdefender)
Winlogon\Notify\LBTWlgn: c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll (Logitech, Inc.)
HKU\.DEFAULT\...\Run: [Skype] - C:\Program Files\Skype\Phone\Skype.exe [18642024 2013-02-28] (Skype Technologies S.A.)
HKU\.DEFAULT\...\Run: [Bitdefender-Geldbörse-Agent] - E:\Bitdefender\Bitdefender\pmbxag.exe [481880 2014-02-10] (Bitdefender)
HKU\.DEFAULT\...\Run: [Bitdefender-Geldbörse] - E:\Bitdefender\Bitdefender\pwdmanui.exe [901096 2014-02-10] (Bitdefender)
HKU\.DEFAULT\...\Run: [Bitdefender-Geldbörse-Anwendungs-Agent] - E:\Bitdefender\Bitdefender\bdapppassmgr.exe [614232 2014-02-10] (Bitdefender)
HKU\.DEFAULT\...\Policies\Explorer: [DisallowCpl] 1
HKU\S-1-5-21-162230121-121121456-848165956-1000\...\Run: [FreeDesktopTimer] - [X]
HKU\S-1-5-21-162230121-121121456-848165956-1000\...\Run: [Bitdefender-Geldbörse-Agent] - E:\Bitdefender\Bitdefender\pmbxag.exe [481880 2014-02-10] (Bitdefender)
HKU\S-1-5-21-162230121-121121456-848165956-1000\...\Run: [Bitdefender-Geldbörse-Anwendungs-Agent] - E:\Bitdefender\Bitdefender\bdapppassmgr.exe [614232 2014-02-10] (Bitdefender)
HKU\S-1-5-21-162230121-121121456-848165956-1000\...\Run: [Bitdefender-Geldbörse] - E:\Bitdefender\Bitdefender\pwdmanui.exe [901096 2014-02-10] (Bitdefender)
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0xF8B40B4E15E5CC01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de-DE
SearchScopes: HKLM - DefaultScope value is missing.
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 129.70.240.53 129.70.182.24
FireFox:
========
FF ProfilePath: C:\Users\R\AppData\Roaming\Mozilla\Firefox\Profiles\cdpjvotr.default
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF32_12_0_0_44.dll ()
FF Plugin: @adobe.com/ShockwavePlayer - C:\Windows\system32\Adobe\Director\np32dsw_1207148.dll (Adobe Systems, Inc.)
FF Plugin: @garmin.com/GpsControl - C:\Program Files\Garmin GPS Plugin\npGarmin.dll (GARMIN Corp.)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 - C:\Program Files\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 - C:\Program Files\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @videolan.org/vlc,version=2.0.5 - E:\VLC\npvlc.dll (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.1 - E:\VLC\npvlc.dll (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.2 - E:\VLC\npvlc.dll (VideoLAN)
FF Extension: Flashblock - C:\Users\R\AppData\Roaming\Mozilla\Firefox\Profiles\cdpjvotr.default\Extensions\{3d7eb24f-2740-49df-8937-200b1cc08f8a} [2014-02-01]
FF Extension: NoScript - C:\Users\R\AppData\Roaming\Mozilla\Firefox\Profiles\cdpjvotr.default\Extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}.xpi [2012-02-06]
FF Extension: Adblock Plus - C:\Users\R\AppData\Roaming\Mozilla\Firefox\Profiles\cdpjvotr.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2012-02-06]
FF HKLM\...\Firefox\Extensions: [{8AA36F4F-6DC7-4c06-77AF-5035170634FE}] - C:\ProgramData\Swiss Academic Software\Citavi Picker\Firefox
FF Extension: Citavi Picker - C:\ProgramData\Swiss Academic Software\Citavi Picker\Firefox [2012-02-07]
FF HKLM\...\Firefox\Extensions: [{F003DA68-8256-4b37-A6C4-350FA04494DF}] - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt
FF Extension: Logitech SetPoint - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt [2014-01-29]
FF HKLM\...\Firefox\Extensions: [ffpwdman@bitdefender.com] - E:\Bitdefender\Bitdefender\ffpwdman\
FF Extension: Bitdefender Wallet - E:\Bitdefender\Bitdefender\ffpwdman\ []
FF HKLM\...\Thunderbird\Extensions: [bdThunderbird@bitdefender.com] - E:\Bitdefender\Bitdefender\bdtbext
FF Extension: bdToolbar - E:\Bitdefender\Bitdefender\bdtbext [2014-01-31]
FF StartMenuInternet: FIREFOX.EXE - E:\Firefox\firefox.exe
========================== Services (Whitelisted) =================
S3 ADMonitor; C:\Windows\system32\ADMonitor.exe [106496 2010-02-05] ()
S4 BdDesktopParental; E:\Bitdefender\Bitdefender\bdparentalservice.exe [69880 2013-11-21] (Bitdefender)
R2 dtsvc; C:\Windows\system32\DTS.exe [98304 2010-02-05] ()
R2 HPSLPSVC; E:\HP Drucker\Digital Imaging\bin\HPSLPSVC32.DLL [694784 2009-09-20] (Hewlett-Packard Co.)
S2 LENOVO.MICMUTE; C:\Program Files\LENOVO\HOTKEY\MICMUTE.exe [101736 2011-07-12] (Lenovo Group Limited)
R2 Lenovo.VIRTSCRLSVC; C:\Program Files\LENOVO\VIRTSCRL\lvvsst.exe [127336 2011-07-12] (Lenovo Group Limited)
S4 LiveUpdateSvc; C:\Program Files\IObit\LiveUpdate\LiveUpdate.exe [2151744 2014-02-01] (IObit)
R2 SafeBox; E:\Bitdefender\Bitdefender SafeBox\safeboxservice.exe [81704 2013-07-08] (Bitdefender)
S4 SeagateDashboardService; C:\Program Files\Seagate\Seagate Dashboard\SeagateDashboardService.exe [14752 2012-10-15] (Memeo)
S4 Secunia PSI Agent; C:\Program Files\Secunia\PSI\PSIA.exe [1229528 2013-12-06] (Secunia)
S4 Secunia Update Agent; C:\Program Files\Secunia\PSI\sua.exe [662232 2013-12-06] (Secunia)
S4 SUService; C:\Program Files\Lenovo\System Update\SUService.exe [34104 2012-05-11] (Lenovo Group Limited)
R2 TPHKLOAD; C:\Program Files\LENOVO\HOTKEY\TPHKLOAD.exe [131432 2011-07-12] (Lenovo Group Limited)
R2 UPDATESRV; E:\Bitdefender\Bitdefender\updatesrv.exe [54424 2013-10-07] (Bitdefender)
R2 VSSERV; E:\Bitdefender\Bitdefender\vsserv.exe [1234792 2014-02-03] (Bitdefender)
==================== Drivers (Whitelisted) ====================
R0 avc3; C:\Windows\System32\DRIVERS\avc3.sys [778032 2014-02-03] (BitDefender)
R3 avchv; C:\Windows\System32\DRIVERS\avchv.sys [242504 2012-11-02] (BitDefender)
R3 avckf; C:\Windows\System32\DRIVERS\avckf.sys [516936 2014-02-03] (BitDefender)
R1 BdfNdisf; c:\program files\common files\bitdefender\bitdefender firewall\bdfndisf6.sys [78144 2013-02-22] (BitDefender LLC)
R1 bdfwfpf; C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf.sys [90704 2011-11-14] (BitDefender LLC)
S3 bdfwfpf_pc; C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf_pc.sys [108008 2013-07-02] (Bitdefender SRL)
S3 BDSandBox; C:\Windows\system32\drivers\bdsandbox.sys [66832 2013-11-04] (BitDefender SRL)
R1 bdselfpr; E:\Bitdefender\Bitdefender\bdselfpr.sys [135600 2013-07-26] (BitDefender LLC)
R1 BDVEDISK; C:\Windows\System32\DRIVERS\bdvedisk.sys [72704 2012-04-17] (BitDefender)
S3 grmnusb; C:\Windows\System32\drivers\grmnusb.sys [15720 2012-04-18] (GARMIN Corp.)
R0 gzflt; C:\Windows\System32\DRIVERS\gzflt.sys [165744 2013-08-23] (BitDefender LLC)
R3 intelkmd; C:\Windows\System32\DRIVERS\igdpmd32.sys [9024512 2010-08-26] (Intel Corporation)
R3 LenovoRd; C:\Windows\System32\Drivers\LenovoRd.sys [88832 2009-05-11] (Lenovo)
S3 LEqdUsb; C:\Windows\System32\Drivers\LEqdUsb.Sys [42264 2013-05-23] (Logitech, Inc.)
S3 LHidEqd; C:\Windows\System32\Drivers\LHidEqd.Sys [10136 2013-05-23] (Logitech, Inc.)
S3 libusb0; C:\Windows\System32\DRIVERS\libusb0.sys [35776 2011-05-17] (hxxp://libusb-win32.sourceforge.net)
S3 LUsbFilt; C:\Windows\System32\Drivers\LUsbFilt.Sys [30360 2011-09-02] (Logitech, Inc.)
R3 NETwNs32; C:\Windows\System32\DRIVERS\NETwNs32.sys [7517696 2011-08-03] (Intel Corporation)
S3 PSI; C:\Windows\System32\DRIVERS\psi_mf_x86.sys [16024 2013-12-06] (Secunia)
R0 trufos; C:\Windows\System32\DRIVERS\trufos.sys [360376 2013-08-07] (BitDefender S.R.L.)
S3 catchme; \??\C:\Users\R\AppData\Local\Temp\catchme.sys [X]
U3 DfSdkS;
S3 massfilter; system32\drivers\massfilter.sys [X]
S3 NETw5s32; system32\DRIVERS\NETw5s32.sys [X]
S3 ZTEusbmdm6k; system32\DRIVERS\ZTEusbmdm6k.sys [X]
S3 ZTEusbnmea; system32\DRIVERS\ZTEusbnmea.sys [X]
S3 ZTEusbser6k; system32\DRIVERS\ZTEusbser6k.sys [X]
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2014-02-11 12:47 - 2014-02-11 12:49 - 00011776 _____ () C:\Users\Ruben\Desktop\FRST.txt
2014-02-11 12:47 - 2014-02-11 12:49 - 00000000 ____D () C:\FRST
2014-02-11 12:47 - 2014-02-11 12:48 - 00035928 _____ () C:\Users\Ruben\Desktop\Addition.txt
2014-02-11 12:45 - 2014-02-11 12:45 - 01139712 _____ (Farbar) C:\Users\Ruben\Desktop\FRST.exe
2014-02-07 09:03 - 2014-02-07 09:03 - 00000000 ____D () C:\Users\Public\Documents\sun
2014-02-04 08:26 - 2014-02-04 08:26 - 00000638 _____ () C:\Windows\PFRO.log
2014-02-01 23:51 - 2014-02-01 23:51 - 00000000 ____D () C:\Users\Ruben\AppData\Roaming\QuickScan
2014-02-01 22:43 - 2014-02-11 12:15 - 00003765 _____ () C:\Windows\setupact.log
2014-02-01 22:43 - 2014-02-01 22:43 - 00000000 _____ () C:\Windows\setuperr.log
2014-02-01 16:15 - 2014-02-01 16:15 - 00176024 _____ (Oracle Corporation) C:\Windows\system32\javaw.exe
2014-02-01 16:15 - 2014-02-01 16:15 - 00176024 _____ (Oracle Corporation) C:\Windows\system32\java.exe
2014-02-01 16:15 - 2014-02-01 16:15 - 00000000 ____D () C:\Program Files\Java
2014-02-01 13:55 - 2014-02-01 13:55 - 00000000 ____D () C:\Users\Ruben\AppData\Roaming\IObit
2014-02-01 13:32 - 2014-02-01 13:32 - 00158718 _____ () C:\Users\R\Documents\cc_20140201_133231.reg
2014-02-01 12:19 - 2014-02-01 12:19 - 00000936 _____ () C:\Users\R\Documents\cc_20140201_121928.reg
2014-02-01 12:17 - 2014-02-01 11:49 - 29141928 _____ (Oracle Corporation) C:\Users\R\Desktop\jre-7u51-windows-i586.exe
2014-02-01 12:13 - 2014-02-01 12:13 - 00158242 _____ () C:\Users\R\Documents\cc_20140201_121321.reg
2014-02-01 12:11 - 2014-02-01 12:11 - 00000385 _____ () C:\Users\R\AppData\Roaminguser_gensett.xml
2014-02-01 11:56 - 2014-02-01 13:37 - 00000000 ____D () C:\Users\R\Desktop\JavaRa-2.5
2014-02-01 11:55 - 2014-02-01 11:55 - 00156058 _____ () C:\Users\R\Desktop\JavaRa-2.5.zip
2014-02-01 03:10 - 2014-02-01 03:10 - 02623656 _____ (VS Revo Group Ltd.) C:\Users\R\Desktop\revosetup95.exe
2014-02-01 03:04 - 2014-02-01 03:04 - 00921512 _____ (Oracle Corporation) C:\Users\R\Desktop\jre-7u51-windows-i586-iftw.exe
2014-02-01 03:02 - 2014-02-01 03:02 - 00167074 _____ () C:\Users\R\Documents\cc_20140201_030204.reg
2014-02-01 02:40 - 2014-02-01 02:40 - 00000000 ____D () C:\Users\Ruben\AppData\Roaming\ProductData
2014-02-01 02:39 - 2014-02-01 12:00 - 00000000 ____D () C:\ProgramData\IObit
2014-02-01 02:39 - 2014-02-01 02:39 - 00000000 ____D () C:\Users\R\AppData\Roaming\ProductData
2014-02-01 02:39 - 2014-02-01 02:39 - 00000000 ____D () C:\Users\R\AppData\Roaming\IObit
2014-02-01 02:39 - 2014-02-01 02:39 - 00000000 ____D () C:\ProgramData\ProductData
2014-02-01 02:39 - 2014-02-01 02:39 - 00000000 ____D () C:\Program Files\IObit
2014-02-01 00:59 - 2014-02-01 00:59 - 00000439 _____ () C:\Users\Ruben\AppData\Roaminguser_gensett.xml
2014-01-31 22:31 - 2014-01-31 22:31 - 00000385 _____ () C:\Windows\system32\user_gensett.xml
2014-01-31 21:44 - 2014-01-31 21:44 - 00654977 _____ () C:\ProgramData\1391200463.bdinstall.bin
2014-01-31 21:41 - 2014-02-01 00:59 - 00000000 ____D () C:\Users\Ruben\AppData\Roaming\Bitdefender
2014-01-31 21:41 - 2014-01-31 22:31 - 00000000 ____D () C:\ProgramData\BDLogging
2014-01-31 21:41 - 2014-01-31 21:41 - 00000308 ____H () C:\bdr-cf01
2014-01-31 21:41 - 2014-01-31 21:41 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_avchv_01009.Wdf
2014-01-31 21:40 - 2014-02-03 12:17 - 00778032 _____ (BitDefender) C:\Windows\system32\Drivers\avc3.sys
2014-01-31 21:40 - 2014-02-03 12:17 - 00516936 _____ (BitDefender) C:\Windows\system32\Drivers\avckf.sys
2014-01-31 21:40 - 2013-11-04 15:47 - 00074512 _____ (BitDefender SRL) C:\Windows\system32\bdsandboxuiskin.dll
2014-01-31 21:40 - 2013-11-04 15:47 - 00066832 _____ (BitDefender SRL) C:\Windows\system32\Drivers\bdsandbox.sys
2014-01-31 21:40 - 2013-11-04 15:46 - 00027168 _____ (BitDefender SRL) C:\Windows\system32\bdsandboxuh.dll
2014-01-31 21:40 - 2013-02-22 18:46 - 00078144 _____ (BitDefender LLC) C:\Windows\system32\Drivers\BdfNdisf6.sys
2014-01-31 21:40 - 2012-11-02 13:17 - 00242504 _____ (BitDefender) C:\Windows\system32\Drivers\avchv.sys
2014-01-31 21:40 - 2012-04-17 13:40 - 00072704 _____ (BitDefender) C:\Windows\system32\Drivers\bdvedisk.sys
2014-01-31 21:40 - 2007-04-11 10:11 - 00511328 _____ (Microsoft Corporation) C:\Windows\capicom.dll
2014-01-31 21:39 - 2014-02-01 12:12 - 00000000 ____D () C:\Users\R\AppData\Roaming\Bitdefender
2014-01-31 21:39 - 2014-01-31 21:41 - 00253404 ____H () C:\bdr-ld01
2014-01-31 21:39 - 2014-01-31 21:41 - 00009216 ____H () C:\bdr-ld01.mbr
2014-01-31 21:39 - 2014-01-31 21:39 - 00000000 _____ () C:\ProgramData\1391200463.5992.bin
2014-01-31 21:39 - 2013-09-24 15:38 - 36728084 ____H () C:\bdr-im01.gz
2014-01-31 21:39 - 2012-08-15 14:28 - 02294848 ____H () C:\bdr-bz01
2014-01-31 21:35 - 2014-01-31 22:11 - 00000000 ____D () C:\ProgramData\Bitdefender
2014-01-31 21:35 - 2013-08-23 12:48 - 00165744 _____ (BitDefender LLC) C:\Windows\system32\Drivers\gzflt.sys
2014-01-31 21:34 - 2014-01-31 21:35 - 00000000 ____D () C:\Program Files\Common Files\Bitdefender
2014-01-31 21:34 - 2014-01-31 21:34 - 00000000 ____D () C:\Users\R\AppData\Roaming\QuickScan
2014-01-31 21:34 - 2013-08-07 12:46 - 00360376 _____ (BitDefender S.R.L.) C:\Windows\system32\Drivers\trufos.sys
2014-01-31 18:25 - 2014-02-01 13:45 - 00000000 ____D () C:\ProgramData\Oracle
2014-01-31 18:23 - 2014-02-01 16:15 - 00096664 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge.dll
2014-01-30 16:34 - 2014-01-30 16:34 - 00000000 ____D () C:\ProgramData\Licenses
2014-01-29 23:16 - 2012-08-23 15:48 - 00221184 _____ (Microsoft Corporation) C:\Windows\system32\rdpudd.dll
2014-01-29 23:16 - 2012-08-23 15:44 - 00014848 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpvideominiport.sys
2014-01-29 23:16 - 2012-08-23 15:40 - 00049664 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\TsUsbFlt.sys
2014-01-29 23:16 - 2012-08-23 15:10 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
2014-01-29 23:16 - 2012-08-23 15:10 - 00012288 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyControl.exe
2014-01-29 23:16 - 2012-08-23 14:52 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\RdpGroupPolicyExtension.dll
2014-01-29 23:16 - 2012-08-23 14:47 - 00046592 _____ (Microsoft Corporation) C:\Windows\system32\MsRdpWebAccess.dll
2014-01-29 23:16 - 2012-08-23 14:46 - 00016896 _____ (Microsoft Corporation) C:\Windows\system32\wksprtPS.dll
2014-01-29 23:16 - 2012-08-23 14:32 - 00032768 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbGDCoInstaller.dll
2014-01-29 23:16 - 2012-08-23 14:18 - 00037376 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll
2014-01-29 23:16 - 2012-08-23 12:40 - 00056320 _____ (Microsoft Corporation) C:\Windows\system32\TSWbPrxy.exe
2014-01-29 23:16 - 2012-08-23 12:32 - 00317440 _____ (Microsoft Corporation) C:\Windows\system32\wksprt.exe
2014-01-29 23:16 - 2012-08-23 12:15 - 00269312 _____ (Microsoft Corporation) C:\Windows\system32\aaclient.dll
2014-01-29 23:16 - 2012-08-23 12:12 - 00192000 _____ (Microsoft Corporation) C:\Windows\system32\rdpendp_winip.dll
2014-01-29 23:16 - 2012-08-23 11:39 - 01048064 _____ (Microsoft Corporation) C:\Windows\system32\mstsc.exe
2014-01-29 23:16 - 2012-08-23 11:08 - 02739712 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2014-01-29 23:16 - 2012-08-23 09:19 - 04916224 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2014-01-29 23:02 - 2014-01-29 23:02 - 00000000 ___RD () C:\Program Files\Skype
2014-01-29 23:02 - 2014-01-29 23:02 - 00000000 ____D () C:\Program Files\Common Files\Skype
2014-01-29 22:59 - 2014-01-29 22:59 - 00000000 ____D () C:\Windows\IrfanView
2014-01-29 22:57 - 2014-01-29 22:57 - 00000000 ____D () C:\Users\Ruben\AppData\Local\Tracker Software
2014-01-29 22:57 - 2014-01-29 22:57 - 00000000 ____D () C:\Users\R\AppData\Local\Tracker Software
2014-01-29 22:57 - 2014-01-29 22:57 - 00000000 ____D () C:\Users\R\AppData\Local\Adobe_Systems_Incorporate
2014-01-29 22:56 - 2014-01-29 22:57 - 00000000 ____D () C:\Users\R\Documents\My Digital Editions
2014-01-29 19:16 - 2014-01-29 19:16 - 00000000 ____D () C:\Users\R\.freemind
2014-01-29 19:12 - 2014-01-29 19:12 - 00000000 ____D () C:\Users\R\AppData\Roaming\LibreOffice
2014-01-29 10:55 - 2014-01-30 16:28 - 00000000 ____D () C:\Windows\ERUNT
2014-01-29 09:30 - 2014-01-29 09:30 - 00000000 ____D () C:\Users\R\AppData\Local\PDF24
2014-01-28 13:23 - 2014-01-28 13:23 - 00000000 ____D () C:\Users\Ruben\AppData\Roaming\Malwarebytes
2014-01-28 13:22 - 2011-06-21 11:24 - 00032768 _____ () C:\Windows\system32\Drivers\sp_rsdrv2.sys
2014-01-26 21:27 - 2014-01-26 21:27 - 00000000 ____D () C:\Users\Default\AppData\Roaming\pdfforge
2014-01-26 21:27 - 2014-01-26 21:27 - 00000000 ____D () C:\Users\Default User\AppData\Roaming\pdfforge
2014-01-26 11:27 - 2014-01-30 16:26 - 00000000 ____D () C:\Windows\erdnt
2014-01-23 08:58 - 2014-01-23 08:58 - 00000000 ____D () C:\Users\R\AppData\Roaming\Malwarebytes
2014-01-23 08:58 - 2014-01-23 08:58 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-01-23 08:58 - 2013-04-04 14:50 - 00022856 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2014-01-15 19:32 - 2013-11-27 02:14 - 00258560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
2014-01-15 19:32 - 2013-11-27 02:13 - 00284672 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys
2014-01-15 19:32 - 2013-11-27 02:13 - 00076288 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys
2014-01-15 19:32 - 2013-11-27 02:13 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys
2014-01-15 19:32 - 2013-11-27 02:13 - 00024064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys
2014-01-15 19:32 - 2013-11-27 02:13 - 00020480 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys
2014-01-15 19:32 - 2013-11-27 02:13 - 00006016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys
2014-01-15 19:32 - 2013-11-26 12:11 - 00240576 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys
2014-01-15 19:32 - 2013-11-26 11:10 - 02349056 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
==================== One Month Modified Files and Folders =======
2014-02-11 12:49 - 2014-02-11 12:47 - 00011776 _____ () C:\Users\Ruben\Desktop\FRST.txt
2014-02-11 12:49 - 2014-02-11 12:47 - 00000000 ____D () C:\FRST
2014-02-11 12:48 - 2014-02-11 12:47 - 00035928 _____ () C:\Users\Ruben\Desktop\Addition.txt
2014-02-11 12:45 - 2014-02-11 12:45 - 01139712 _____ (Farbar) C:\Users\Ruben\Desktop\FRST.exe
2014-02-11 12:23 - 2012-02-06 17:17 - 01052166 _____ () C:\Windows\WindowsUpdate.log
2014-02-11 12:22 - 2009-07-14 05:34 - 00013568 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-02-11 12:22 - 2009-07-14 05:34 - 00013568 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-02-11 12:15 - 2014-02-01 22:43 - 00003765 _____ () C:\Windows\setupact.log
2014-02-11 12:15 - 2013-01-29 14:31 - 00001084 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-02-11 12:15 - 2009-07-14 05:53 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-02-11 11:16 - 2012-02-09 09:26 - 00000000 ____D () C:\Users\Ruben\.freemind
2014-02-11 11:09 - 2013-01-29 14:31 - 00001088 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-02-10 20:34 - 2012-02-07 07:50 - 00000000 ____D () C:\Users\Ruben\AppData\Roaming\Skype
2014-02-10 16:19 - 2012-02-06 17:26 - 01620612 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-02-10 16:17 - 2012-10-16 19:44 - 00000000 ____D () C:\Users\Ruben\Desktop\Eingangskorb
2014-02-10 03:24 - 2012-10-31 17:46 - 00000000 ____D () C:\Users\Ruben\AppData\Roaming\vlc
2014-02-07 09:03 - 2014-02-07 09:03 - 00000000 ____D () C:\Users\Public\Documents\sun
2014-02-07 07:47 - 2012-02-07 08:04 - 00072008 _____ () C:\Users\Ruben\AppData\Local\GDIPFONTCACHEV1.DAT
2014-02-07 07:46 - 2009-07-14 05:33 - 00331768 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-02-05 16:29 - 2013-06-06 10:43 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2014-02-05 16:29 - 2013-06-06 10:43 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2014-02-05 16:29 - 2013-06-06 10:42 - 00000000 ____D () C:\Users\R\AppData\Local\Adobe
2014-02-04 12:13 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\system32\NDF
2014-02-04 10:30 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\tracing
2014-02-04 08:26 - 2014-02-04 08:26 - 00000638 _____ () C:\Windows\PFRO.log
2014-02-03 18:08 - 2013-03-18 12:08 - 00245195 _____ () C:\Windows\hpoins19.dat
2014-02-03 18:08 - 2013-03-17 19:58 - 00001494 _____ () C:\ProgramData\hpzinstall.log
2014-02-03 17:41 - 2009-07-14 05:52 - 00000000 ____D () C:\Windows\twain_32
2014-02-03 12:17 - 2014-01-31 21:40 - 00778032 _____ (BitDefender) C:\Windows\system32\Drivers\avc3.sys
2014-02-03 12:17 - 2014-01-31 21:40 - 00516936 _____ (BitDefender) C:\Windows\system32\Drivers\avckf.sys
2014-02-01 23:51 - 2014-02-01 23:51 - 00000000 ____D () C:\Users\Ruben\AppData\Roaming\QuickScan
2014-02-01 22:43 - 2014-02-01 22:43 - 00000000 _____ () C:\Windows\setuperr.log
2014-02-01 16:15 - 2014-02-01 16:15 - 00176024 _____ (Oracle Corporation) C:\Windows\system32\javaw.exe
2014-02-01 16:15 - 2014-02-01 16:15 - 00176024 _____ (Oracle Corporation) C:\Windows\system32\java.exe
2014-02-01 16:15 - 2014-02-01 16:15 - 00000000 ____D () C:\Program Files\Java
2014-02-01 16:15 - 2014-01-31 18:23 - 00096664 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge.dll
2014-02-01 13:55 - 2014-02-01 13:55 - 00000000 ____D () C:\Users\Ruben\AppData\Roaming\IObit
2014-02-01 13:45 - 2014-01-31 18:25 - 00000000 ____D () C:\ProgramData\Oracle
2014-02-01 13:37 - 2014-02-01 11:56 - 00000000 ____D () C:\Users\R\Desktop\JavaRa-2.5
2014-02-01 13:32 - 2014-02-01 13:32 - 00158718 _____ () C:\Users\R\Documents\cc_20140201_133231.reg
2014-02-01 12:19 - 2014-02-01 12:19 - 00000936 _____ () C:\Users\R\Documents\cc_20140201_121928.reg
2014-02-01 12:13 - 2014-02-01 12:13 - 00158242 _____ () C:\Users\R\Documents\cc_20140201_121321.reg
2014-02-01 12:12 - 2014-01-31 21:39 - 00000000 ____D () C:\Users\R\AppData\Roaming\Bitdefender
2014-02-01 12:11 - 2014-02-01 12:11 - 00000385 _____ () C:\Users\R\AppData\Roaminguser_gensett.xml
2014-02-01 12:00 - 2014-02-01 02:39 - 00000000 ____D () C:\ProgramData\IObit
2014-02-01 11:55 - 2014-02-01 11:55 - 00156058 _____ () C:\Users\R\Desktop\JavaRa-2.5.zip
2014-02-01 11:49 - 2014-02-01 12:17 - 29141928 _____ (Oracle Corporation) C:\Users\R\Desktop\jre-7u51-windows-i586.exe
2014-02-01 03:10 - 2014-02-01 03:10 - 02623656 _____ (VS Revo Group Ltd.) C:\Users\R\Desktop\revosetup95.exe
2014-02-01 03:04 - 2014-02-01 03:04 - 00921512 _____ (Oracle Corporation) C:\Users\R\Desktop\jre-7u51-windows-i586-iftw.exe
2014-02-01 03:03 - 2012-02-06 17:14 - 00000000 ____D () C:\Windows\Panther
2014-02-01 03:02 - 2014-02-01 03:02 - 00167074 _____ () C:\Users\R\Documents\cc_20140201_030204.reg
2014-02-01 02:40 - 2014-02-01 02:40 - 00000000 ____D () C:\Users\Ruben\AppData\Roaming\ProductData
2014-02-01 02:39 - 2014-02-01 02:39 - 00000000 ____D () C:\Users\R\AppData\Roaming\ProductData
2014-02-01 02:39 - 2014-02-01 02:39 - 00000000 ____D () C:\Users\R\AppData\Roaming\IObit
2014-02-01 02:39 - 2014-02-01 02:39 - 00000000 ____D () C:\ProgramData\ProductData
2014-02-01 02:39 - 2014-02-01 02:39 - 00000000 ____D () C:\Program Files\IObit
2014-02-01 00:59 - 2014-02-01 00:59 - 00000439 _____ () C:\Users\Ruben\AppData\Roaminguser_gensett.xml
2014-02-01 00:59 - 2014-01-31 21:41 - 00000000 ____D () C:\Users\Ruben\AppData\Roaming\Bitdefender
2014-01-31 22:36 - 2012-02-06 17:24 - 00000000 ____D () C:\Users\R
2014-01-31 22:31 - 2014-01-31 22:31 - 00000385 _____ () C:\Windows\system32\user_gensett.xml
2014-01-31 22:31 - 2014-01-31 21:41 - 00000000 ____D () C:\ProgramData\BDLogging
2014-01-31 22:11 - 2014-01-31 21:35 - 00000000 ____D () C:\ProgramData\Bitdefender
2014-01-31 21:44 - 2014-01-31 21:44 - 00654977 _____ () C:\ProgramData\1391200463.bdinstall.bin
2014-01-31 21:41 - 2014-01-31 21:41 - 00000308 ____H () C:\bdr-cf01
2014-01-31 21:41 - 2014-01-31 21:41 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_avchv_01009.Wdf
2014-01-31 21:41 - 2014-01-31 21:39 - 00253404 ____H () C:\bdr-ld01
2014-01-31 21:41 - 2014-01-31 21:39 - 00009216 ____H () C:\bdr-ld01.mbr
2014-01-31 21:39 - 2014-01-31 21:39 - 00000000 _____ () C:\ProgramData\1391200463.5992.bin
2014-01-31 21:35 - 2014-01-31 21:34 - 00000000 ____D () C:\Program Files\Common Files\Bitdefender
2014-01-31 21:34 - 2014-01-31 21:34 - 00000000 ____D () C:\Users\R\AppData\Roaming\QuickScan
2014-01-31 13:13 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\rescache
2014-01-30 23:32 - 2012-07-01 19:09 - 00000000 ____D () C:\Windows\WindowsMobile
2014-01-30 16:34 - 2014-01-30 16:34 - 00000000 ____D () C:\ProgramData\Licenses
2014-01-30 16:28 - 2014-01-29 10:55 - 00000000 ____D () C:\Windows\ERUNT
2014-01-30 16:26 - 2014-01-26 11:27 - 00000000 ____D () C:\Windows\erdnt
2014-01-29 23:18 - 2009-07-14 09:47 - 00000000 ____D () C:\Windows\system32\Drivers\de-DE
2014-01-29 23:18 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\system32\de-DE
2014-01-29 23:02 - 2014-01-29 23:02 - 00000000 ___RD () C:\Program Files\Skype
2014-01-29 23:02 - 2014-01-29 23:02 - 00000000 ____D () C:\Program Files\Common Files\Skype
2014-01-29 23:02 - 2012-02-07 07:50 - 00000000 ____D () C:\ProgramData\Skype
2014-01-29 22:59 - 2014-01-29 22:59 - 00000000 ____D () C:\Windows\IrfanView
2014-01-29 22:58 - 2013-03-19 13:59 - 00000000 ____D () C:\Program Files\MSXML 4.0
2014-01-29 22:57 - 2014-01-29 22:57 - 00000000 ____D () C:\Users\Ruben\AppData\Local\Tracker Software
2014-01-29 22:57 - 2014-01-29 22:57 - 00000000 ____D () C:\Users\R\AppData\Local\Tracker Software
2014-01-29 22:57 - 2014-01-29 22:57 - 00000000 ____D () C:\Users\R\AppData\Local\Adobe_Systems_Incorporate
2014-01-29 22:57 - 2014-01-29 22:56 - 00000000 ____D () C:\Users\R\Documents\My Digital Editions
2014-01-29 19:33 - 2012-02-08 19:41 - 00000000 ____D () C:\Program Files\Common Files\Logishrd
2014-01-29 19:32 - 2012-02-08 19:42 - 00016400 _____ (Logitech, Inc.) C:\Windows\system32\Drivers\LNonPnP.sys
2014-01-29 19:31 - 2013-04-02 20:43 - 00000000 ____D () C:\ProgramData\Logitech
2014-01-29 19:31 - 2012-02-08 19:41 - 00000000 ____D () C:\ProgramData\Logishrd
2014-01-29 19:30 - 2013-12-24 13:32 - 00000000 ____D () C:\Users\R\Documents\onlineTV 8
2014-01-29 19:30 - 2013-12-24 13:32 - 00000000 ____D () C:\Users\R\AppData\Roaming\concept design
2014-01-29 19:16 - 2014-01-29 19:16 - 00000000 ____D () C:\Users\R\.freemind
2014-01-29 19:12 - 2014-01-29 19:12 - 00000000 ____D () C:\Users\R\AppData\Roaming\LibreOffice
2014-01-29 15:19 - 2012-02-07 07:23 - 00000000 ____D () C:\ProgramData\Spybot - Search & Destroy
2014-01-29 11:04 - 2009-07-14 05:53 - 00032640 _____ () C:\Windows\Tasks\SCHEDLGU.TXT
2014-01-29 09:30 - 2014-01-29 09:30 - 00000000 ____D () C:\Users\R\AppData\Local\PDF24
2014-01-29 08:56 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\Microsoft.NET
2014-01-28 13:23 - 2014-01-28 13:23 - 00000000 ____D () C:\Users\Ruben\AppData\Roaming\Malwarebytes
2014-01-26 21:27 - 2014-01-26 21:27 - 00000000 ____D () C:\Users\Default\AppData\Roaming\pdfforge
2014-01-26 21:27 - 2014-01-26 21:27 - 00000000 ____D () C:\Users\Default User\AppData\Roaming\pdfforge
2014-01-26 11:46 - 2012-02-06 22:23 - 00000000 ____D () C:\Users\R\AppData\Local\Mozilla
2014-01-26 11:45 - 2009-07-14 03:37 - 00000000 ___RD () C:\Users\Public
2014-01-26 11:41 - 2009-07-14 03:04 - 00000215 _____ () C:\Windows\system.ini
2014-01-23 08:58 - 2014-01-23 08:58 - 00000000 ____D () C:\Users\R\AppData\Roaming\Malwarebytes
2014-01-23 08:58 - 2014-01-23 08:58 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-01-20 12:12 - 2012-02-07 08:19 - 00000000 ____D () C:\Users\Ruben\AppData\Local\Lenovo
2014-01-15 21:27 - 2013-08-01 19:47 - 00000000 ____D () C:\Windows\system32\MRT
2014-01-15 21:24 - 2012-02-06 17:53 - 83425928 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
Some content of TEMP:
====================
C:\Users\R\AppData\Local\temp\java-installer.exe
C:\Users\R\AppData\Local\temp\WZCPlugin_VISTA.exe
==================== Bamital & volsnap Check =================
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\system32\winlogon.exe => MD5 is legit
C:\Windows\system32\wininit.exe => MD5 is legit
C:\Windows\system32\svchost.exe => MD5 is legit
C:\Windows\system32\services.exe => MD5 is legit
C:\Windows\system32\User32.dll => MD5 is legit
C:\Windows\system32\userinit.exe => MD5 is legit
C:\Windows\system32\rpcss.dll => MD5 is legit
C:\Windows\system32\Drivers\volsnap.sys => MD5 is legit
LastRegBack: 2014-02-10 18:15
==================== End Of Log ============================
--- --- --- ADDITION Code:
ATTFilter Additional scan result of Farbar Recovery Scan Tool (x86) Version: 10-02-2014 01
Ran by R at 2014-02-11 12:50:12
Running from C:\Users\Ruben\Desktop
Boot Mode: Normal
==========================================================
==================== Security Center ========================
AV: Bitdefender Antivirus (Enabled - Up to date) {9A0813D8-CED6-F86B-072E-28D2AF25A83D}
AS: Bitdefender Spyware-Schutz (Enabled - Up to date) {2169F23C-E8EC-F7E5-3D9E-13A0D4A2E280}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: Bitdefender Firewall (Enabled) {A23392FD-84B9-F933-2C71-81E751F6EF46}
==================== Installed Programs ======================
32 Bit HP CIO Components Installer (Version: 6.1.1 - Hewlett-Packard) Hidden
7-Zip 9.20 (Version: - )
Adobe Digital Editions (Version: - )
Adobe Digital Editions 3.0 (Version: 3.0 - Adobe Systems Incorporated)
Adobe Flash Player 12 Plugin (Version: 12.0.0.44 - Adobe Systems Incorporated)
Adobe Shockwave Player 12.0 (Version: 12.0.7.148 - Adobe Systems, Inc.)
AIO_CDB_Software (Version: 130.0.365.000 - Hewlett-Packard) Hidden
AIO_Scan (Version: 130.0.421.000 - Hewlett-Packard) Hidden
Amazon MP3-Downloader 1.0.9 (Version: - )
Anzeige am Bildschirm (Version: 6.61.00 - )
Ashampoo Burning Studio 2013 v.11.0.6 (Version: 11.0.6 - Ashampoo GmbH & Co. KG)
Ashampoo WinOptimizer 8 v.8.14.00 (Version: 8.14.00 - Ashampoo GmbH & Co. KG)
ATI Catalyst Install Manager (Version: 3.0.800.0 - ATI Technologies, Inc.)
ATI Uninstaller (Version: 8.792.5-110424b-119200C-Lenovo - ATI Technologies, Inc.)
AuthenTec TrueSuite (Version: 2.0.0.57 - AuthenTec, Inc.)
Biet-O-Matic v2.14.8 (Version: 2.14.8 - BOM Development Team)
Bitdefender Total Security (Version: 17.23.0.996 - Bitdefender)
BufferChm (Version: 130.0.331.000 - Hewlett-Packard) Hidden
Catalyst Control Center - Branding (Version: 1.00.0000 - ATI) Hidden
Catalyst Control Center Graphics Previews Vista (Version: 2011.0424.2249.39080 - ATI) Hidden
Catalyst Control Center InstallProxy (Version: 2011.0424.2249.39080 - ATI Technologies, Inc.) Hidden
Catalyst Control Center Localization All (Version: 2011.0424.2249.39080 - ATI) Hidden
CCC Help Chinese Standard (Version: 2011.0424.2248.39080 - ATI) Hidden
CCC Help Chinese Traditional (Version: 2011.0424.2248.39080 - ATI) Hidden
CCC Help Dutch (Version: 2011.0424.2248.39080 - ATI) Hidden
CCC Help English (Version: 2011.0424.2248.39080 - ATI) Hidden
CCC Help French (Version: 2011.0424.2248.39080 - ATI) Hidden
CCC Help German (Version: 2011.0424.2248.39080 - ATI) Hidden
CCC Help Italian (Version: 2011.0424.2248.39080 - ATI) Hidden
CCC Help Japanese (Version: 2011.0424.2248.39080 - ATI) Hidden
CCC Help Korean (Version: 2011.0424.2248.39080 - ATI) Hidden
CCC Help Portuguese (Version: 2011.0424.2248.39080 - ATI) Hidden
CCC Help Spanish (Version: 2011.0424.2248.39080 - ATI) Hidden
CCC Help Swedish (Version: 2011.0424.2248.39080 - ATI) Hidden
ccc-core-static (Version: 2011.0424.2249.39080 - Ihr Firmenname) Hidden
ccc-utility (Version: 2011.0424.2249.39080 - ATI) Hidden
CCleaner (Version: 3.24 - Piriform)
Citavi (Version: 3.4.0.1 - Swiss Academic Software)
Conexant 20561 SmartAudio HD (Version: 4.92.10.0 - Conexant)
ContentMod2.6 (Version: - )
Dienstprogramm "ThinkPad UltraNav" (Version: 2.13.0 - Lenovo)
eReg (Version: 1.20.138.34 - Logitech, Inc.) Hidden
Free Desktop Timer 1.2 (Version: - Drive Software Company)
Free YouTube to MP3 Converter version 3.10.15.1228 (Version: - DVDVideoSoft Ltd.)
FreeFileSync v5.0 (Version: 5.0 - ZenJu)
FreeMind (Version: 0.9.0 - )
Garmin ANT Agent (Version: 2.3.4 - Garmin Ltd or its subsidiaries)
Garmin Communicator Plugin (Version: 4.0.4 - Garmin Ltd or its subsidiaries)
Garmin Training Center (Version: 3.6.5 - Garmin Ltd or its subsidiaries)
Garmin USB Drivers (Version: 2.3.1.0 - Garmin Ltd or its subsidiaries)
Garmin WebUpdater (Version: 2.5.6 - Garmin Ltd or its subsidiaries)
Google Earth (Version: 6.2.0.5905 - Google)
Google Update Helper (Version: 1.3.22.3 - Google Inc.) Hidden
Gothic (Version: - )
Gothic_Patch (Version: - )
HP Photosmart Officejet and Deskjet All-In-One Driver Software 13.0 Rel. B (Version: 13.0 - HP)
HPPhotoGadget (Version: 130.0.282.000 - Hewlett-Packard) Hidden
Intel PROSet Wireless (Version: - ) Hidden
Intel(R) Management Engine Interface (Version: - Intel Corporation)
Intel(R) Network Connections Drivers (Version: 16.1 - Intel)
Intel(R) PROSet/Wireless WiFi-Software (Version: 14.2.0000 - Intel Corporation)
IrfanView (remove only) (Version: 4.37 - Irfan Skiljan)
Lenovo Auto Scroll Utility (Version: 1.11 - )
Lenovo Fingerprint Software (Version: 3.3.2.27 - AuthenTec, Inc.)
Lenovo Power Management Driver (Version: 1.67.04.04 - )
Lenovo System Interface Driver (Version: 1.05 - )
LibreOffice 4.1 Help Pack (German) (Version: 4.1.4.2 - The Document Foundation)
LibreOffice 4.1.4.2 (Version: 4.1.4.2 - The Document Foundation)
Logitech SetPoint 6.61 (Version: 6.61.15 - Logitech)
Malwarebytes Anti-Malware Version 1.75.0.1300 (Version: 1.75.0.1300 - Malwarebytes Corporation)
Microsoft .NET Framework 4.5.1 (DEU) (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (Deutsch) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft Application Error Reporting (Version: 12.0.6012.5000 - Microsoft Corporation) Hidden
Microsoft IntelliPoint 8.2 (Version: 8.20.468.0 - Microsoft Corporation)
Microsoft IntelliPoint 8.2 (Version: 8.20.468.0 - Microsoft Corporation) Hidden
Microsoft Silverlight (Version: 5.1.20913.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (Version: 10.0.40219 - Microsoft Corporation)
Mozilla Firefox 14.0.1 (x86 de) (Version: 14.0.1 - Mozilla)
Mozilla Maintenance Service (Version: 14.0.1 - Mozilla)
Mozilla Thunderbird 10.0 (x86 de) (Version: 10.0 - Mozilla)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2758694) (Version: 4.30.2117.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (Version: 4.30.2100.0 - Microsoft Corporation)
Network (Version: 130.0.572.000 - Hewlett-Packard) Hidden
PDF24 Creator 6.2.0 (Version: - PDF24.org)
PDFCreator (Version: 1.5.1 - Frank Heindörfer, Philip Chinery)
PDF-XChange Viewer (Version: 2.5.201.0 - Tracker Software Products Ltd.)
Sam and Max - Season One - Episode 104 - Abe Lincoln Must Die! (Version: 1.1.0.0-free - Telltale Games)
Scan (Version: 13.0.0.0 - Hewlett-Packard) Hidden
Seagate Dashboard (Version: 1.1.0.1554 - Memeo Inc.)
SeaTools for Windows (Version: 1.2.0.7 - Seagate Technology)
Secunia PSI (3.0.0.9016) (Version: 3.0.0.9016 - Secunia)
Skype™ 6.3 (Version: 6.3.105 - Skype Technologies S.A.)
SportTracks 3.1 (Version: 3.1.5064 - Zone Five Software)
SpywareBlaster 5.0 (Version: 5.0.0 - BrightFort LLC)
swMSM (Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
System Update (Version: 4.03.0012 - Lenovo)
ThinkPad FullScreen Magnifier (Version: 2.40 - )
ThinkPad Modem Adapter (Version: 7.80.5.0 - Conexant Systems)
ThinkPad UltraNav Driver (Version: 16.2.19.7 - )
ThinkVantage System für aktiven Festplattenschutz (Version: 1.75 - Lenovo)
Toolbox (Version: 130.0.648.000 - Hewlett-Packard) Hidden
UnloadSupport (Version: 11.0.0 - Hewlett-Packard) Hidden
VLC media player 2.1.2 (Version: 2.1.2 - VideoLAN)
Warcraft III (Version: - )
WebReg (Version: 130.0.132.017 - Hewlett-Packard) Hidden
Windows Driver Package - Garmin (grmnusb) GARMIN Devices (04/19/2012 2.3.1.0) (Version: 04/19/2012 2.3.1.0 - Garmin)
Windows-Treiberpaket - AuthenTec Inc. (ATSwpWDF) Biometric (01/14/2010 8.6.0.13) (Version: 01/14/2010 8.6.0.13 - AuthenTec Inc.)
Windows-Treiberpaket - Dynastream Innovations, Inc. ANT LibUSB Drivers (04/11/2012 1.2.40.201) (Version: 04/11/2012 1.2.40.201 - Dynastream Innovations, Inc.)
Windows-Treiberpaket - Silicon Labs Software (DSI_SiUSBXp_3_1) USB (02/06/2007 3.1) (Version: 02/06/2007 3.1 - Silicon Labs Software)
Yahoo! Detect (Version: - )
==================== Restore Points =========================
06-02-2014 09:53:02 Geplanter Prüfpunkt
06-02-2014 17:30:12 Installed LibreOffice 4.1.4.2
==================== Hosts content: ==========================
2009-07-14 03:04 - 2014-01-26 11:41 - 00000027 ____A C:\Windows\system32\Drivers\etc\hosts
127.0.0.1 localhost
==================== Scheduled Tasks (whitelisted) =============
Task: {00A44EF8-B4AA-4393-B619-1F2FB7D14DCB} - System32\Tasks\{30B24A2D-97AA-4A21-AA66-8A56A085A7A7} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {09868847-4C68-44B2-A40E-21016704F759} - System32\Tasks\{04C4AB88-2D4B-4B8F-9AD1-CE6D559D4561} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {0E7DA2E6-0FD3-489C-8739-CC6E41C478C0} - System32\Tasks\{44AEA331-7CFC-4F13-825A-E7DB86D0E620} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {152681DC-4CEE-442D-AA5F-73C17AC32D50} - System32\Tasks\{A4DC49A8-504B-4786-A4C2-7AA3892B6A33} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {16B568A3-02DB-46E9-ACA0-8F491958F544} - System32\Tasks\{694981DD-2685-43CD-B526-4EF240C758E2} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {183BF98C-BCAE-48E2-AD1E-305916F8A974} - System32\Tasks\{3B789C99-AFB5-40F7-8D74-57E80702206D} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {1EDB4203-A6EB-42C9-B218-FBAEC465C3DB} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2013-01-29] (Google Inc.)
Task: {1F476E84-4096-4196-A856-9EC05BF4F331} - System32\Tasks\{A0EE1157-CF99-487C-8B03-0CC16D359A52} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {22C1B783-CACD-42A0-AEF3-D86FCE80ED1C} - System32\Tasks\{E33DD0EE-3D2C-4A2E-B1C4-B69190D52CBC} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {26BE07F7-4FA8-41AB-823C-51D64DED034F} - System32\Tasks\{726CB53C-BCA5-4B79-BA4B-FB76F57D2727} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {2B8B5112-28EF-4D8C-AD78-285A20529990} - System32\Tasks\{42DA8516-D2D6-43AA-B680-477510A2B866} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {309340C6-5B52-4029-A223-34A19E98843E} - System32\Tasks\{EB3A7E57-1443-4DC7-9A9F-293091D2AE3C} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {30C14394-70DB-4BD5-974F-DE4F5425D0FA} - System32\Tasks\{C95F51E5-839D-43F7-8228-A962EA34F9DC} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {31287E32-0789-4A9D-A9FC-57D675C39C51} - System32\Tasks\{9C2FC1A7-0EA3-4327-BBCC-3F9B662A2762} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {3401093F-C15D-4D05-8369-E6352B390371} - System32\Tasks\{1DB4A903-2E5F-4F8F-8DFE-83286F926869} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {343C7940-F74E-4909-8120-3446F2D9BB70} - System32\Tasks\{2B1B68D9-01B7-4975-B88B-1BB3E082B635} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {444C1EC3-8B76-475C-A008-095D3A72C785} - System32\Tasks\{F0A96E89-802B-4A03-B65B-490A776CA542} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {48F4CCF0-C831-475C-BF1F-F739F558CC29} - System32\Tasks\{7A5B743C-9C2A-40C3-AFB4-82550B226A13} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {503A5C25-A2E5-47ED-9CC3-C03C91DC4C99} - System32\Tasks\{CCA6E51D-5E7D-4371-8D83-96E86733275A} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {52F10732-3102-4F60-91F8-3AB60634D9FC} - System32\Tasks\{3F65E8E0-E856-4DFC-B4AE-D829784AB8C0} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {53245C4E-E43C-4BC5-9910-1BC94C286AD5} - System32\Tasks\{1897B465-9FCC-4F94-8B6A-B6789077ECA8} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {547555D3-D694-40A7-AD26-C5714AE33FD4} - System32\Tasks\{17ACE16C-5D77-4725-A1EA-5ED2022F31E7} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {55416AA8-F0F1-476C-8DAB-98471B048973} - System32\Tasks\{9CCDC717-96D4-4B39-8694-96FB81D95DBD} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {58EAD362-1598-4FC9-9073-7AC1B81ACB40} - System32\Tasks\{1D11525B-7EBC-44F8-A447-D32734D8156F} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {5A35A446-3B62-4FE0-A698-A11D95E68B82} - System32\Tasks\{D009C6EB-C0D8-4A2E-B2F5-4F5301E86195} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {5A3C3893-EC0F-4A48-A225-216B0F07E960} - System32\Tasks\{0FB14A32-3CC7-44DF-A974-804AA4C1029A} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {5FF2BF5A-3754-46B1-9EBE-5CF6E50F5D65} - System32\Tasks\{613BC145-0B0F-4D11-8A32-8F17C44CBEF1} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {6E133294-81CB-47F5-9705-7320D5257DE4} - System32\Tasks\{277B571F-4985-4B5D-8D87-9AFCC52CE31C} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {6E2A526A-1393-403D-A1E4-04A3941233AD} - System32\Tasks\{62D461D5-0D1C-4218-9F1E-99F104945CC0} => E:\ANNO 1503 GOLD\1503Startup.exe
Task: {6F205592-16FD-4A0C-9F4D-1A53B2A6CB5E} - System32\Tasks\{D24C5D28-6FE2-40C0-AACA-09E0EEDBC5FA} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {7275B4E2-5FF7-47C6-898A-A3BE9C7FFA08} - System32\Tasks\{79871DC4-4907-4C55-BA3C-4FF3C9CA698A} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {7D46F765-0000-4C21-8929-F6DBE6902744} - System32\Tasks\{EA63FD09-A711-430D-B70A-E4641DB677D5} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {80A97AE1-56BA-4AB9-BA42-DE565783A325} - System32\Tasks\{E117E2C8-6F34-4671-BFE3-911EA2E93A88} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {83334805-603A-46C8-AECD-E581E4D775A4} - System32\Tasks\{FCE21A64-45E6-4A3A-B6BF-03AE107D7093} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {83461CB3-BECA-4F68-AFB5-4E457D88859A} - System32\Tasks\TVT\TVSUUpdateTask_R-PC_Ruben => C:\Program Files\Lenovo\System Update\tvsu.exe [2012-05-11] ()
Task: {8F47074D-D7F9-4259-BD26-0967AF5A5240} - System32\Tasks\{800B6AF9-6B12-4197-977B-E1AC70005B03} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {923A3224-FAE1-45FA-A30F-013CB2B80C96} - System32\Tasks\{6FAE815F-3096-4274-9A68-29CE1BBBDC77} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {9593B529-1707-4093-8FE7-8B826B14B819} - System32\Tasks\{D1740C6B-38BB-4DB1-8A84-E7E2FD0CC45F} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {9B04B35A-1A61-4E1C-AD13-2C4DAB6AC763} - System32\Tasks\{2AE35C08-28AC-48B8-B8FA-E555CA2C727B} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {9B091808-B4F2-4F48-A1FC-67E6D9F40FB6} - System32\Tasks\{DA8D2ED1-F5C8-42A5-AAD0-005F8115EFFB} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {9BF6DD29-4E5D-43AD-BEAC-FDEE7A269EEC} - System32\Tasks\{04365BFA-D295-4D2F-AA59-F1EEBC92E939} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {9F33F29B-FFB3-44A8-A48C-A9B1632738F0} - System32\Tasks\{D4105B90-C840-446B-9C0D-8D527ED40945} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {A190D2AB-AE0C-4E7B-BBBE-BACA81A3F099} - System32\Tasks\{0581B317-4DE1-41B0-996A-54F5A29CB619} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {A314D94E-5ACB-47C7-8CF6-C3E1A475E5C0} - System32\Tasks\{6CADEB10-746D-470E-BCEF-BF791535B297} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {A9DDB7F1-EF3E-42D8-BEA2-E26664EE2189} - System32\Tasks\Microsoft_Hardware_Launch_IPoint_exe => C:\Program Files\Microsoft IntelliPoint\IPoint.exe [2011-08-01] (Microsoft Corporation)
Task: {AA07FCC0-F033-4CB8-8589-6F0DFDBCCF87} - System32\Tasks\{220C8C3D-3676-4130-A1F6-4DC0E161BED7} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {AF850565-0A93-49E0-9B11-A4CC4FED8DB5} - System32\Tasks\{B660031A-8AEC-43A2-B851-CC464F9ACC64} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {B25F8C0F-C23F-4620-9C2A-35AD2F1F3C3E} - System32\Tasks\{9D1DB828-9596-4C4B-959F-BF972E743556} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {B3D085D8-08E2-4853-9BA4-EF38475B4565} - System32\Tasks\{AFE243C1-B626-4C53-9E00-1B423F188811} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {B8F24AE3-C1F8-4A4F-A341-2D4EB2088303} - System32\Tasks\{71A15C4C-78DC-4C8A-906B-F1BF487BC051} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {BD3AB328-C094-4F1E-9BAC-174CC49C162C} - System32\Tasks\{94D83202-D43F-47CE-841F-82B2E6B4B11D} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {BF8E6393-1C03-4B66-AA44-3149C30D519D} - System32\Tasks\{CFC06DF2-2542-4832-AE90-29C5B0A1E317} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {C13BFCD9-8B6E-4C05-A939-4AFC4252662F} - System32\Tasks\{8484A3F8-D265-40EB-AC2D-F6876205D85F} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {C1B7A8F3-4CF8-4080-919E-1FB6214AD288} - System32\Tasks\{807CED09-1DD8-45B0-8B13-DC4B76A97DC4} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {C9C6C2E8-F757-40C3-87E3-BDF08FA94565} - System32\Tasks\{3F0DCCD3-9DBA-42D0-8071-3E5C0C60EA12} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {D0B31CEF-31A4-4BD5-B1E9-79A3392FEF01} - System32\Tasks\{3AB56009-C1F9-4EDF-B754-795315E40FD1} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {D3F5D959-A231-4AED-953C-09530E8A6684} - System32\Tasks\{5DAF0808-8146-4D24-A584-752F3A0FA51C} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {D4940389-F255-44AA-A5B6-148A4E29AE6B} - System32\Tasks\{ECB973FF-0025-42D9-9D7E-611C36195A72} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {D50740A2-B7D2-40CB-A68E-B001E043A7E5} - System32\Tasks\{B19B8964-0865-4748-99A0-C4B707C35A36} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {D7529F4C-BAA8-41EE-A49C-174E85AB8948} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2013-01-29] (Google Inc.)
Task: {D85829FA-7880-44AB-B4BF-0A54B82C4F6C} - System32\Tasks\{D55A8387-0FC3-4C3D-8103-AE18C8226388} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {DE80E1D3-97FD-4910-8DE5-A23F66579EB0} - System32\Tasks\{B1CA71B5-E774-4B8F-B7D5-C3A7BB67E080} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {E24E7FF3-8D64-4D9E-9058-CD2CD2AA20E3} - System32\Tasks\{91BACF36-6ABC-4E91-A10D-DB2F577E5F17} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {E2EB13BF-59BB-407E-9E90-03D6A49BB60C} - System32\Tasks\{5D295AB2-1E69-4D4E-94B5-CCDB3465C731} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {E758E022-924E-4FAB-B092-E873A735DD1F} - System32\Tasks\{22169C4C-09F5-4589-B109-6811AA5E66C9} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {E9BEBCDE-0855-42F8-9CB6-6EA91CF70FE9} - System32\Tasks\{D61721FB-7118-46E8-9B58-1C5C12E84B81} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {EA3BFC02-E1FF-4A39-B1F4-E4A1D25DD6DB} - System32\Tasks\{BE9EB100-F98E-4E84-8D47-190FB662C04D} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {EC354D82-8DA5-4034-8EA0-3122D36F491A} - System32\Tasks\{77ED4D1C-F883-4ED0-870C-94D1DC64A5E0} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {EC73301E-F0CC-4E5E-AFB3-095909333918} - System32\Tasks\CCleanerSkipUAC => E:\CCleaner\CCleaner.exe [2012-10-24] (Piriform Ltd)
Task: {F0BD007A-28B2-4D3C-B444-5A3FB117DB72} - System32\Tasks\{6766944E-74FF-413A-8BF0-BFAE574758F9} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {F4FD1FD1-D92A-4275-A52D-C68CA3CFDAC3} - System32\Tasks\{ABEF2856-8AD4-4F50-810D-84FEB4C1C613} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {F5DD6634-A69D-4EE5-8FFD-31E3C2A65010} - System32\Tasks\{0A0B64CA-5C6C-4394-9446-EBCEFA589404} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
==================== Loaded Modules (whitelisted) =============
2014-01-31 21:40 - 2013-06-19 11:44 - 00204280 _____ () E:\Bitdefender\Bitdefender\txmlutil.dll
2014-01-31 21:40 - 2013-09-03 13:29 - 00095088 _____ () E:\Bitdefender\Bitdefender\bdmetrics.dll
2011-03-14 14:21 - 2011-03-14 14:21 - 00016384 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Branding\Branding.dll
2011-04-24 22:48 - 2011-04-24 22:48 - 00270336 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.CrossDisplay.Graphics.Dashboard.dll
2014-02-06 11:03 - 2014-02-06 11:03 - 03583600 _____ () E:\Firefox\mozjs.dll
2012-02-07 08:03 - 2013-01-25 20:11 - 00122880 _____ () C:\ProgramData\Swiss Academic Software\Citavi Picker\Firefox\components\CitaviPickerCommunication.dll
2014-01-31 21:40 - 2013-09-10 18:46 - 00035896 _____ () E:\Bitdefender\Bitdefender\ffpwdman\components\ffpwdman.dll
2014-02-05 16:29 - 2014-02-05 16:29 - 16287624 _____ () C:\Windows\system32\Macromed\Flash\NPSWF32_12_0_0_44.dll
==================== Alternate Data Streams (whitelisted) =========
AlternateDataStreams: C:\ProgramData\TEMP:5C321E34
AlternateDataStreams: C:\ProgramData\TEMP:B606BA34
AlternateDataStreams: C:\Users\R\Desktop\jre-7u51-windows-i586-iftw.exe:BDU
AlternateDataStreams: C:\Users\R\Desktop\jre-7u51-windows-i586.exe:BDU
AlternateDataStreams: C:\Users\R\Desktop\revosetup95.exe:BDU
AlternateDataStreams: C:\Users\Ruben\Desktop\FRST.exe:BDU
==================== Safe Mode (whitelisted) ===================
==================== Disabled items from MSCONFIG ==============
MSCONFIG\Services: ATService => 2
MSCONFIG\Services: gupdate => 2
MSCONFIG\Services: gupdatem => 3
MSCONFIG\Services: LBTServ => 3
MSCONFIG\Services: LiveUpdateSvc => 2
MSCONFIG\Services: SeagateDashboardService => 2
MSCONFIG\Services: Secunia PSI Agent => 3
MSCONFIG\Services: Secunia Update Agent => 2
MSCONFIG\Services: SkypeUpdate => 2
MSCONFIG\Services: SUService => 2
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Secunia PSI Tray.lnk => C:\Windows\pss\Secunia PSI Tray.lnk.CommonStartup
MSCONFIG\startupfolder: C:^Users^R^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Logitech . Produktregistrierung.lnk => C:\Windows\pss\Logitech . Produktregistrierung.lnk.Startup
MSCONFIG\startupreg: ANT Agent => C:\Program Files\Garmin\ANT Agent\ANT Agent.exe
MSCONFIG\startupreg: ATUpdatePBA.ltp => C:\Windows\system32\ATUpdatePBA.exe
MSCONFIG\startupreg: FingerPrintSoftware => "C:\Program Files\Lenovo Fingerprint Software\fpapp.exe" \s
MSCONFIG\startupreg: FingerPrintSoftwareSplashScreen => "C:\Program Files\Lenovo Fingerprint Software\SplashScreen.exe" \s
MSCONFIG\startupreg: IntelliPoint => "C:\Program Files\Microsoft IntelliPoint\ipoint.exe"
MSCONFIG\startupreg: Logitech Download Assistant => C:\Windows\system32\rundll32.exe C:\Windows\System32\LogiLDA.dll,LogiFetch
MSCONFIG\startupreg: PDFPrint => E:\PDF24\pdf24.exe
MSCONFIG\startupreg: Seagate Dashboard => C:\Program Files\Seagate\Seagate Dashboard\MemeoLauncher.exe --silent --no_ui
MSCONFIG\startupreg: SunJavaUpdateSched => "C:\Program Files\Common Files\Java\Java Update\jaureg.exe" -u auto-update
MSCONFIG\startupreg: Windows Mobile Device Center => %windir%\WindowsMobile\wmdc.exe
MSCONFIG\startupreg: Windows Mobile-based device management => %WINDIR%\WindowsMobile\wmdcBase.exe
==================== Faulty Device Manager Devices =============
==================== Event log errors: =========================
Application errors:
==================
Error: (02/11/2014 00:38:31 AM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"1".
Die abhängige Assemblierung "Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"" konnte nicht gefunden werden.
Verwenden Sie für eine detaillierte Diagnose das Programm "sxstrace.exe".
Error: (02/11/2014 00:38:15 AM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"1".
Die abhängige Assemblierung "Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"" konnte nicht gefunden werden.
Verwenden Sie für eine detaillierte Diagnose das Programm "sxstrace.exe".
Error: (02/11/2014 00:38:15 AM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"1".
Die abhängige Assemblierung "Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"" konnte nicht gefunden werden.
Verwenden Sie für eine detaillierte Diagnose das Programm "sxstrace.exe".
Error: (02/06/2014 10:51:14 AM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"1".
Die abhängige Assemblierung "Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"" konnte nicht gefunden werden.
Verwenden Sie für eine detaillierte Diagnose das Programm "sxstrace.exe".
Error: (02/06/2014 10:50:56 AM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"1".
Die abhängige Assemblierung "Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"" konnte nicht gefunden werden.
Verwenden Sie für eine detaillierte Diagnose das Programm "sxstrace.exe".
Error: (02/06/2014 10:50:55 AM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"1".
Die abhängige Assemblierung "Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"" konnte nicht gefunden werden.
Verwenden Sie für eine detaillierte Diagnose das Programm "sxstrace.exe".
Error: (02/04/2014 10:38:40 AM) (Source: SecureW2) (User: )
Description: SW2_EAP_FUNCTION_GetIdentity Failed
Error: (02/01/2014 11:00:53 AM) (Source: Windows Search Service) (User: )
Description: Der Index kann nicht initialisiert werden.
Details:
Der Inhaltsindexkatalog ist fehlerhaft. (HRESULT : 0xc0041801) (0xc0041801)
Error: (02/01/2014 11:00:53 AM) (Source: Windows Search Service) (User: )
Description: Die Anwendung kann nicht initialisiert werden.
Kontext: Windows Anwendung
Details:
Der Inhaltsindexkatalog ist fehlerhaft. (HRESULT : 0xc0041801) (0xc0041801)
Error: (02/01/2014 11:00:53 AM) (Source: Windows Search Service) (User: )
Description: Das Gatherer-Objekt kann nicht initialisiert werden.
Kontext: Windows Anwendung, SystemIndex Katalog
Details:
Der Inhaltsindexkatalog ist fehlerhaft. (HRESULT : 0xc0041801) (0xc0041801)
System errors:
=============
Error: (02/11/2014 11:17:00 AM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Data Transfer Service" hat einen ungültigen aktuellen Status gemeldet: 0
Error: (02/11/2014 06:16:43 AM) (Source: SCardSvr) (User: )
Description: Zugriff verweigertLenovo Integrated Smart Card Reader 0
Error: (02/11/2014 06:16:43 AM) (Source: SCardSvr) (User: )
Description: Zugriff verweigert
Error: (02/11/2014 01:01:07 AM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Data Transfer Service" hat einen ungültigen aktuellen Status gemeldet: 0
Error: (02/11/2014 01:00:02 AM) (Source: SCardSvr) (User: )
Description: Zugriff verweigertLenovo Integrated Smart Card Reader 0
Error: (02/11/2014 01:00:02 AM) (Source: SCardSvr) (User: )
Description: Zugriff verweigert
Error: (02/10/2014 09:59:59 PM) (Source: SCardSvr) (User: )
Description: Zugriff verweigertLenovo Integrated Smart Card Reader 0
Error: (02/10/2014 09:59:59 PM) (Source: SCardSvr) (User: )
Description: Zugriff verweigert
Error: (02/10/2014 09:58:57 PM) (Source: SCardSvr) (User: )
Description: Zugriff verweigertLenovo Integrated Smart Card Reader 0
Error: (02/10/2014 09:58:57 PM) (Source: SCardSvr) (User: )
Description: Zugriff verweigert
Microsoft Office Sessions:
=========================
Error: (02/11/2014 00:38:31 AM) (Source: SideBySide)(User: )
Description: Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"c:\program files\common files\Logishrd\sp6_uninstall\tools\64\AddBrowsers.exe
Error: (02/11/2014 00:38:15 AM) (Source: SideBySide)(User: )
Description: Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"e:\freefilesync\Bin\RealtimeSync_x64.exe
Error: (02/11/2014 00:38:15 AM) (Source: SideBySide)(User: )
Description: Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"e:\freefilesync\Bin\FreeFileSync_x64.exe
Error: (02/06/2014 10:51:14 AM) (Source: SideBySide)(User: )
Description: Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"c:\program files\common files\Logishrd\sp6_uninstall\tools\64\AddBrowsers.exe
Error: (02/06/2014 10:50:56 AM) (Source: SideBySide)(User: )
Description: Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"e:\freefilesync\Bin\RealtimeSync_x64.exe
Error: (02/06/2014 10:50:55 AM) (Source: SideBySide)(User: )
Description: Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"e:\freefilesync\Bin\FreeFileSync_x64.exe
Error: (02/04/2014 10:38:40 AM) (Source: SecureW2)(User: )
Description: SW2_EAP_FUNCTION_GetIdentity Failed
Error: (02/01/2014 11:00:53 AM) (Source: Windows Search Service)(User: )
Description:
Details:
Der Inhaltsindexkatalog ist fehlerhaft. (HRESULT : 0xc0041801) (0xc0041801)
Error: (02/01/2014 11:00:53 AM) (Source: Windows Search Service)(User: )
Description: Kontext: Windows Anwendung
Details:
Der Inhaltsindexkatalog ist fehlerhaft. (HRESULT : 0xc0041801) (0xc0041801)
Error: (02/01/2014 11:00:53 AM) (Source: Windows Search Service)(User: )
Description: Kontext: Windows Anwendung, SystemIndex Katalog
Details:
Der Inhaltsindexkatalog ist fehlerhaft. (HRESULT : 0xc0041801) (0xc0041801)
==================== Memory info ===========================
Percentage of memory in use: 64%
Total physical RAM: 1944.03 MB
Available physical RAM: 693.55 MB
Total Pagefile: 3888.05 MB
Available Pagefile: 2077.73 MB
Total Virtual: 2047.88 MB
Available Virtual: 1878.74 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:74.52 GB) (Free:40.79 GB) NTFS ==>[Drive with boot components (obtained from BCD)]
Drive d: (XX) (CDROM) (Total:4.36 GB) (Free:0 GB) UDF
Drive e: (Programme) (Fixed) (Total:79.18 GB) (Free:62.06 GB) NTFS
Drive f: (Dokumente und Zeugs) (Fixed) (Total:79.17 GB) (Free:38.46 GB) NTFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 233 GB) (Disk ID: 16331632)
Partition 1: (Active) - (Size=75 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=158 GB) - (Type=OF Extended)
==================== End Of Log ============================
Geändert von JackLondon (11.02.2014 um 13:00 Uhr) |
|
11.02.2014, 19:08
| #3 |
| | Über meine Mail-Adresse wurden massiv Spammails verschickt - Malware unwahrscheinlich - was tun? Hallo und vielen Dank für die erneut so schnelle Unterstützung, schrauber!
__________________Das Passwort wurde sofort geändert. Ich habe den GMER-Scan ausgeführt. Beim ersten Durchlauf kam ich aber dummerweise auf "Stop", startete danach den Scan erneut, der dann aber mittendrin dadurch unterbrochen wurde, dass der Rechner aus heiterem Himmel neu gestartet wurde, ohne dass ich irgendetwas ausgeführt, angeklickt o.ä. hätte. Mysteriös... Ich bin dann in den Abgesicherten Modus, habe GMER ausgeführt, die Scanergebnisse finden sich im ersten Log-File unten. Daraufhin habe ich Windows neu gestartet, den normalen Modus gewählt und nochmal den GMER-Scan probiert. Diesmal klappte alles. Der Log dieses Suchlaufs findet sich im zweiten Log-File. Kann man daraus was erkennen? |
|
12.02.2014, 17:59
| #4 |
| /// the machine /// TB-Ausbilder    | Über meine Mail-Adresse wurden massiv Spammails verschickt - Malware unwahrscheinlich - was tun? Rechner ist sauber 
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
12.02.2014, 18:53
| #5 |
| | Über meine Mail-Adresse wurden massiv Spammails verschickt - Malware unwahrscheinlich - was tun? Danke, das freut mich sehr. Heißt das, es reicht, wenn das Passwort geändert wurde? Und wie konnten dann über unseren Mailserver (es ist ein kleiner Anbieter, kein "Massenkunde") Mails verschickt werden? |
|
13.02.2014, 21:26
| #6 |
| /// the machine /// TB-Ausbilder | Über meine Mail-Adresse wurden massiv Spammails verschickt - Malware unwahrscheinlich - was tun? Passwort ändern. Der Account wurde warscheinlich Online gehackt. Oder google mal "Email Spoofing".
__________________ --> Über meine Mail-Adresse wurden massiv Spammails verschickt - Malware unwahrscheinlich - was tun? |
|
| Themen zu Über meine Mail-Adresse wurden massiv Spammails verschickt - Malware unwahrscheinlich - was tun? |
| .dll, adobe, antivirus, bildschirm, branding, converter, defender, dvdvideosoft ltd., error, explorer, fehler, festplatte, firefox, flash player, iexplore.exe, launch, logfile, malware, mozilla, officejet, programm, registry, rundll, secunia psi, security, services.exe, software, svchost.exe, temp, tracker, usb |
Linear-Darstellung
