Zurück   Trojaner-Board > Malware entfernen > Plagegeister aller Art und deren Bekämpfung
AVAST und Malwarebytes melden mehrere Funde

AVAST und Malwarebytes melden mehrere Funde


Plagegeister aller Art und deren Bekämpfung: AVAST und Malwarebytes melden mehrere Funde

Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen.

Antwort
Alt 26.04.2014, 12:19   #1
cosinus
/// Winkelfunktion
/// TB-Süch-Tiger™
 
AVAST und Malwarebytes melden mehrere Funde - Standard

AVAST und Malwarebytes melden mehrere Funde


Führe FRST mit einem Konto aus, das Adminrechte hat. Also als Admin einloggen, nicht per ausführen als oder so
__________________
Logfiles bitte immer in CODE-Tags posten

Alt 26.04.2014, 13:01   #2
Dragon79
 
AVAST und Malwarebytes melden mehrere Funde - Standard

AVAST und Malwarebytes melden mehrere Funde


Hoffe das ist so jetzt besser.


FRST Logfile:
Code:
ATTFilter
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 25-04-2014 03
Ran by Carsten (administrator) on CARSTEN-PC on 26-04-2014 13:55:43
Running from C:\Users\Carsten\Desktop
Windows 7 Home Premium Service Pack 1 (X64) OS Language: German Standard
Internet Explorer Version 11
Boot Mode: Normal



==================== Processes (Whitelisted) =================

(SurfRight B.V.) C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
(AMD) C:\Windows\system32\atiesrxx.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(AMD) C:\Windows\system32\atieclxx.exe
(Acronis) C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe
(Acronis) C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe
() C:\Program Files (x86)\Ashampoo\Ashampoo HDD Control 2\AHDDC2_Service.exe
(mst software GmbH, Germany) C:\Program Files (x86)\Ashampoo\Ashampoo HDD Control 2\DfsdkS64.exe
(Malwarebytes Corporation) C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamscheduler.exe
(Malwarebytes Corporation) C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe
(Nitro PDF Software) C:\Program Files\Common Files\Nitro PDF\Professional\7.0\NitroPDFDriverService2x64.exe
(O&O Software GmbH) C:\Program Files\OO Software\Defrag\oodag.exe
(TomTom) C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe
(Microsoft Corporation) C:\Windows\System32\vds.exe
(O&O Software GmbH) C:\Program Files\OO Software\DiskImage\oodiag.exe
(Malwarebytes Corporation) C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbam.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe
(Microsoft Corporation) C:\Windows\System32\vdsldr.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ATKOSD.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\WDC.exe
(Acronis) C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe
(ELAN Microelectronic Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(Ashampoo Development GmbH & Co. KG) C:\Program Files (x86)\Ashampoo\Ashampoo HDD Control 2\AHDDC2_Guard.exe
(O&O Software GmbH) C:\Program Files\OO Software\DiskImage\ooditray.exe
() C:\Program Files (x86)\FeedReader30\feedreader.exe
(TomTom) C:\Program Files (x86)\TomTom HOME 2\TomTomHOMERunner.exe
(SEIKO EPSON CORPORATION) C:\Windows\System32\spool\drivers\x64\3\E_IATIHJE.EXE
(Polenter - Software Solutions) C:\Program Files (x86)\Desktop-Reminder 2\DesktopReminder2.exe
(ZONER software) C:\Program Files\Zoner\Photo Studio 16\Program32\ZPSTray.exe
(Secure Banking) C:\Program Files (x86)\Secure Banking\SecureBanking.exe
(Acronis) C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
() C:\Program Files (x86)\Secure Banking\sbservice.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(ELAN Microelectronic Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Microsoft Corporation) C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
(AMD) C:\Windows\system32\atieclxx.exe
(Microsoft Corporation) C:\Windows\system32\wbem\WMIADAP.EXE
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe
(Malwarebytes Corporation) C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbam.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ATKOSD.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\WDC.exe
(Acronis) C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe
(ELAN Microelectronic Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(Ashampoo Development GmbH & Co. KG) C:\Program Files (x86)\Ashampoo\Ashampoo HDD Control 2\AHDDC2_Guard.exe
(O&O Software GmbH) C:\Program Files\OO Software\DiskImage\ooditray.exe
(Secure Banking) C:\Program Files (x86)\Secure Banking\SecureBanking.exe
(ZONER software) C:\Program Files\Zoner\Photo Studio 16\Program32\ZPSTray.exe
(Polenter - Software Solutions) C:\Program Files (x86)\Desktop-Reminder 2\DesktopReminder2.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
(Acronis) C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe
() C:\Program Files (x86)\Secure Banking\sbservice.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(ELAN Microelectronic Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Microsoft Corporation) C:\Windows\splwow64.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [Acronis Scheduler2 Service] => C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe [391296 2010-08-21] (Acronis)
HKLM\...\Run: [SmartAudio] => C:\Program Files\CONEXANT\SAII\SAIICpl.exe [307768 2010-04-28] ()
HKLM\...\Run: [ETDWare] => C:\Program Files\Elantech\ETDCtrl.exe [649608 2010-04-13] (ELAN Microelectronic Corp.)
HKLM\...\Run: [Ashampoo HDD-Control 2 Guard] => C:\Program Files (x86)\Ashampoo\Ashampoo HDD Control 2\AHDDC2_Guard.exe [3783592 2012-07-30] (Ashampoo Development GmbH & Co. KG)
HKLM\...\Run: [OODITRAY.EXE] => C:\Program Files\OO Software\DiskImage\ooditray.exe [5059880 2014-01-10] (O&O Software GmbH)
HKLM-x32\...\Run: [TrueImageMonitor.exe] => C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe [5493736 2010-08-21] (Acronis)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [336384 2011-03-10] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [ATKOSD2] => C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe [5732992 2010-08-17] (ASUS)
HKLM-x32\...\Run: [ATKMEDIA] => C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe [170624 2010-10-07] (ASUS)
HKLM-x32\...\Run: [HControlUser] => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe [105016 2009-06-19] (ASUS)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [3873704 2014-04-26] (AVAST Software)
HKU\S-1-5-21-897203139-1112560925-3423631613-1000\...\Run: [SecureBanking] => C:\Program Files (x86)\Secure Banking\SecureBanking.exe [507904 2013-06-30] (Secure Banking)
HKU\S-1-5-21-897203139-1112560925-3423631613-1000\...\Run: [EPLTarget\P0000000000000000] => C:\Windows\system32\spool\DRIVERS\x64\3\E_IATIHJE.EXE [283232 2012-02-29] (SEIKO EPSON CORPORATION)
HKU\S-1-5-21-897203139-1112560925-3423631613-1000\...\Run: [Zoner Photo Studio Autoupdate] => C:\Program Files\Zoner\Photo Studio 16\Program32\ZPSTRAY.EXE [831488 2013-12-13] (ZONER software)
HKU\S-1-5-21-897203139-1112560925-3423631613-1000\...\Run: [Zoner Photo Studio Service 16] => C:\Program Files\Zoner\Photo Studio 16\Program32\ZPSService.exe [27648 2013-12-13] ()
HKU\S-1-5-21-897203139-1112560925-3423631613-1000\...\Run: [DesktopReminder2ByPolenter] => C:\Program Files (x86)\Desktop-Reminder 2\DesktopReminder2.exe [2743344 2013-01-06] (Polenter - Software Solutions)
HKU\S-1-5-21-897203139-1112560925-3423631613-1000\...\MountPoints2: {93431013-6770-11e2-9859-806e6f6e6963} - D:\InstallNavi.exe
HKU\S-1-5-21-897203139-1112560925-3423631613-1001\...\Run: [feedreader.exe] => C:\Program Files (x86)\FeedReader30\feedreader.exe [2058240 2009-03-29] ()
HKU\S-1-5-21-897203139-1112560925-3423631613-1001\...\Run: [TomTomHOME.exe] => C:\Program Files (x86)\TomTom HOME 2\TomTomHOMERunner.exe [248208 2013-08-27] (TomTom)
HKU\S-1-5-21-897203139-1112560925-3423631613-1001\...\Run: [Aufgaben] => C:\Program Files (x86)\Holliesoft\Aufgaben\Aufgaben.exe
HKU\S-1-5-21-897203139-1112560925-3423631613-1001\...\Run: [EPLTarget\P0000000000000000] => C:\Windows\system32\spool\DRIVERS\x64\3\E_IATIHJE.EXE [283232 2012-02-29] (SEIKO EPSON CORPORATION)
HKU\S-1-5-21-897203139-1112560925-3423631613-1001\...\Run: [DesktopReminder2ByPolenter] => C:\Program Files (x86)\Desktop-Reminder 2\DesktopReminder2.exe [2743344 2013-01-06] (Polenter - Software Solutions)
HKU\S-1-5-21-897203139-1112560925-3423631613-1001\...\Run: [Zoner Photo Studio Autoupdate] => C:\Program Files\Zoner\Photo Studio 16\Program32\ZPSTRAY.EXE [831488 2013-12-13] (ZONER software)
HKU\S-1-5-21-897203139-1112560925-3423631613-1001\...\MountPoints2: {70da489a-fec2-11e2-81e1-20cf30c6160e} - E:\IRDApp.exe http://www.iradiopop.com/IRD/pages/register.do?fx=visit
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\O&O Defrag Tray.lnk
ShortcutTarget: O&O Defrag Tray.lnk -> C:\Windows\Installer\{253C418F-F466-4303-86C5-68E656A65551}\app_icon.ico ()
Startup: C:\Users\DTM\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Secure Banking.lnk
ShortcutTarget: Secure Banking.lnk -> C:\Program Files (x86)\Secure Banking\SecureBanking.exe (Secure Banking)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://de.msn.com/?ocid=iehp
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0x2B7E588486FBCD01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de
SearchScopes: HKLM - DefaultScope value is missing.
BHO: ExplorerWnd Helper - {10921475-03CE-4E04-90CE-E2E7EF20C814} - C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallExplorer64.dll (IObit)
BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
BHO: Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files (x86)\Epson Software\Easy Photo Print\EPTBL.dll (SEIKO EPSON CORPORATION / CyCom Technology Corp.)
BHO-x32: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
Toolbar: HKLM - Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files (x86)\Epson Software\Easy Photo Print\EPTBL.dll (SEIKO EPSON CORPORATION / CyCom Technology Corp.)
Toolbar: HKLM - No Name - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} -  No File
Tcpip\Parameters: [DhcpNameServer] 192.168.178.1

FireFox:
========
FF ProfilePath: C:\Users\Carsten\AppData\Roaming\Mozilla\Firefox\Profiles\i87wetys.default
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_13_0_0_182.dll ()
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_13_0_0_182.dll ()
FF Plugin-x32: @nitropdf.com/NitroPDF - C:\Program Files (x86)\Nitro PDF\Professional 7\npnitromozilla.dll ( )
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: avast! Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2013-01-26]

==================== Services (Whitelisted) =================

S4 ABBYY.Licensing.FineReader.Sprint.9.0; C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe [759048 2009-05-14] (ABBYY)
S4 Adobe LM Service; C:\Program Files (x86)\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe [72704 2013-02-10] (Adobe Systems)
R2 AHDDC2; C:\Program Files (x86)\Ashampoo\Ashampoo HDD Control 2\AHDDC2_Service.exe [1518504 2012-07-30] ()
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-04-26] (AVAST Software)
R2 DfSdkS; C:\Program Files (x86)\Ashampoo\Ashampoo HDD Control 2\DfsdkS64.exe [544768 2009-08-24] (mst software GmbH, Germany)
R2 hmpalertsvc; C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe [1876816 2014-04-23] (SurfRight B.V.)
S2 LiveUpdateSvc; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2153792 2014-03-19] (IObit)
R2 MBAMScheduler; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamscheduler.exe [1809720 2014-04-03] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe [857912 2014-04-03] (Malwarebytes Corporation)
R2 NitroDriverReadSpool2; C:\Program Files\Common Files\Nitro PDF\Professional\7.0\NitroPDFDriverService2x64.exe [216072 2012-07-26] (Nitro PDF Software)
R2 OO DiskImage; C:\Program Files\OO Software\DiskImage\oodiag.exe [6337832 2014-01-10] (O&O Software GmbH)
R2 OODefragAgent; C:\Program Files\OO Software\Defrag\oodag.exe [1657128 2014-01-24] (O&O Software GmbH)
S2 NitroDriverReadSpool9; "C:\Program Files\Common Files\Nitro\Pro\9.0\NitroPDFDriverService9x64.exe" [X]
S2 nlsX86cc; C:\Windows\SysWOW64\NLSSRV32.EXE [X]

==================== Drivers (Whitelisted) ====================

R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [29208 2014-04-26] ()
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [79184 2014-04-26] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93568 2014-04-26] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2014-04-26] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1039096 2014-04-26] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [423240 2014-04-26] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [85328 2014-04-26] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [208416 2014-04-26] ()
S3 cleanhlp; F:\Emsisoft Emergency Kit (Viren Scanner portable)\Run\cleanhlp64.sys [57032 2013-07-11] (Emsisoft GmbH)
R2 hmpalert; C:\Windows\System32\drivers\hmpalert.sys [93144 2014-04-23] ()
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2014-04-03] (Malwarebytes Corporation)
R3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [119512 2014-04-26] (Malwarebytes Corporation)
R3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [63192 2014-04-03] (Malwarebytes Corporation)
R0 oodivd; C:\Windows\System32\DRIVERS\oodivd.sys [255680 2013-11-05] (O&O Software GmbH)
R0 oodivdh; C:\Windows\System32\DRIVERS\oodivdh.sys [44736 2013-11-05] (O&O Software GmbH)
R1 SLEE_18_DRIVER; C:\Windows\Sleen1864.sys [108648 2012-07-24] (Softwareentwicklung Remus - ArchiCrypt - )
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [386680 2014-04-07] (Duplex Secure Ltd.)
R1 UimBus; C:\Windows\System32\DRIVERS\uimx64.sys [59184 2011-11-17] (Windows (R) 2000 DDK provider)
R1 Uim_IM; C:\Windows\System32\Drivers\Uim_IMx64.sys [572336 2011-11-17] (Paragon)
R1 Uim_VIM; C:\Windows\System32\Drivers\uim_vimx64.sys [352816 2011-11-17] (Paragon)
S3 keycrypt; system32\DRIVERS\KeyCrypt64.sys [X]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-04-26 13:55 - 2014-04-26 13:56 - 00016142 _____ () C:\Users\Carsten\Desktop\FRST.txt
2014-04-26 13:55 - 2014-04-25 21:09 - 02061824 _____ (Farbar) C:\Users\Carsten\Desktop\FRST64.exe
2014-04-26 13:23 - 2014-04-26 13:23 - 00000610 _____ () C:\Windows\PFRO.log
2014-04-26 10:08 - 2014-04-26 10:08 - 00043152 _____ (AVAST Software) C:\Windows\avastSS.scr
2014-04-26 10:08 - 2014-04-26 10:08 - 00029208 _____ () C:\Windows\system32\Drivers\aswHwid.sys
2014-04-26 02:00 - 2014-04-26 02:25 - 00000000 ____D () C:\Users\DTM\Desktop\Mal gucken HDR
2014-04-26 01:15 - 2014-04-26 01:18 - 18829671 _____ () C:\Users\DTM\Desktop\Unheilig - Mein Stern ( Abschied ).mp4
2014-04-25 21:42 - 2014-04-26 13:56 - 00000000 ____D () C:\Users\Carsten\AppData\Local\CrashDumps
2014-04-25 21:09 - 2014-04-25 21:09 - 02061824 _____ (Farbar) C:\Users\DTM\Desktop\FRST64.exe
2014-04-25 21:09 - 2014-04-25 21:09 - 01016261 _____ (Thisisu) C:\Users\DTM\Desktop\JRT.exe
2014-04-25 21:08 - 2014-04-25 21:08 - 01365865 _____ () C:\Users\DTM\Desktop\adwcleaner.exe
2014-04-24 21:59 - 2014-04-24 21:59 - 00000000 ____D () C:\Users\DTM\Desktop\Trauerbewältigung
2014-04-24 17:33 - 2014-04-26 01:51 - 00000000 ____D () C:\Users\DTM\Desktop\Trauerfeier
2014-04-24 03:16 - 2014-04-24 03:16 - 00000000 ____D () C:\Program Files (x86)\Auslogics
2014-04-24 00:04 - 2014-04-24 00:04 - 00003008 _____ () C:\Users\DTM\Desktop\MeinProjekt.sedprj
2014-04-23 22:23 - 2014-04-26 13:23 - 00000672 _____ () C:\Windows\setupact.log
2014-04-23 22:23 - 2014-04-23 22:23 - 00000000 _____ () C:\Windows\setuperr.log
2014-04-23 22:18 - 2014-04-26 13:54 - 00119512 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-04-23 22:17 - 2014-04-23 22:17 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware 
2014-04-23 22:17 - 2014-04-23 22:17 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-04-23 22:17 - 2014-04-23 22:17 - 00000000 ____D () C:\Program Files (x86)\ Malwarebytes Anti-Malware 
2014-04-23 22:17 - 2014-04-03 09:51 - 00088280 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2014-04-23 22:17 - 2014-04-03 09:51 - 00063192 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2014-04-23 22:17 - 2014-04-03 09:50 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2014-04-23 22:00 - 2014-04-23 22:00 - 00000000 ___SD () C:\Windows\system32\CompatTel
2014-04-23 20:04 - 2014-04-14 04:24 - 00465408 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-04-23 20:04 - 2014-04-14 04:19 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-04-23 20:04 - 2014-02-04 04:35 - 00274880 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msiscsi.sys
2014-04-23 20:04 - 2014-02-04 04:35 - 00190912 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storport.sys
2014-04-23 20:04 - 2014-02-04 04:35 - 00027584 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Diskdump.sys
2014-04-23 20:04 - 2014-02-04 04:28 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\iologmsg.dll
2014-04-23 20:04 - 2014-02-04 04:00 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iologmsg.dll
2014-04-23 20:02 - 2014-03-04 11:44 - 01163264 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2014-04-23 20:02 - 2014-03-04 11:44 - 00362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
2014-04-23 20:02 - 2014-03-04 11:44 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2014-04-23 20:02 - 2014-03-04 11:44 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2014-04-23 20:02 - 2014-03-04 11:44 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2014-04-23 20:02 - 2014-03-04 11:17 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2014-04-23 20:02 - 2014-03-04 11:16 - 01114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2014-04-23 20:02 - 2014-03-04 11:16 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2014-04-23 20:02 - 2014-03-04 11:16 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2014-04-23 20:02 - 2014-03-04 10:09 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2014-04-23 20:02 - 2014-03-04 10:09 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2014-04-23 20:02 - 2014-01-24 04:37 - 01684928 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2014-04-23 19:16 - 2014-04-23 19:16 - 00000000 ____D () C:\Users\Carsten\AppData\Roaming\Malwarebytes
2014-04-20 00:06 - 2014-04-26 13:55 - 00000000 ____D () C:\FRST
2014-04-20 00:02 - 2014-04-20 00:02 - 00000000 ____D () C:\Users\Carsten\AppData\Roaming\DesktopReminder
2014-04-20 00:01 - 2014-04-26 13:55 - 00000000 ____D () C:\Users\Carsten\Documents\DesktopReminder
2014-04-20 00:01 - 2014-04-20 00:01 - 00000000 ____D () C:\Users\Carsten\AppData\Local\Polenter_-_Software_Solut
2014-04-18 21:29 - 2014-04-18 21:29 - 00000000 ____D () C:\Users\DTM\Desktop\Wiederspruch ALG 2
2014-04-10 19:45 - 2014-04-10 19:45 - 00000000 ____D () C:\Users\DTM\Desktop\Ring Card
2014-04-08 20:25 - 2014-04-23 18:33 - 00000000 ____D () C:\Users\DTM\Downloads\Fotosoftware
2014-04-08 13:45 - 2014-04-08 13:46 - 08940095 _____ () C:\Users\DTM\Desktop\Die Grüne Hölle.mp4
2014-04-07 21:39 - 2014-04-07 21:39 - 00000000 ____D () C:\Users\DTM\AppData\Local\AquaSoft
2014-04-07 16:05 - 2014-04-26 13:30 - 00000000 ____D () C:\Users\DTM\Downloads\Sonnenuntergänge Trauer
2014-04-05 20:25 - 2014-04-26 13:25 - 00002950 _____ () C:\Windows\System32\Tasks\OO DiskImage {71f57001-bbc8-4dd2-9f24-35d049457fb1}
2014-04-05 20:25 - 2014-04-26 13:25 - 00000476 _____ () C:\Windows\Tasks\OO DiskImage {71f57001-bbc8-4dd2-9f24-35d049457fb1}.job
2014-04-05 09:16 - 2014-04-05 09:22 - 00000000 ____D () C:\Users\DTM\Desktop\Lieder Mutti Stick
2014-03-31 21:35 - 2014-03-31 21:43 - 00000000 ____D () C:\Users\DTM\Downloads\Datenrettung
2014-03-30 20:08 - 2014-04-13 18:40 - 00000000 ____D () C:\Users\DTM\Desktop\VLN 2014 (Racing News)
2014-03-28 21:48 - 2014-04-07 21:02 - 00000000 ____D () C:\Users\DTM\Desktop\Video Doku (Angstdiagnose Krebs)

==================== One Month Modified Files and Folders =======

2014-04-26 13:56 - 2014-04-26 13:55 - 00016142 _____ () C:\Users\Carsten\Desktop\FRST.txt
2014-04-26 13:56 - 2014-04-25 21:42 - 00000000 ____D () C:\Users\Carsten\AppData\Local\CrashDumps
2014-04-26 13:55 - 2014-04-20 00:06 - 00000000 ____D () C:\FRST
2014-04-26 13:55 - 2014-04-20 00:01 - 00000000 ____D () C:\Users\Carsten\Documents\DesktopReminder
2014-04-26 13:54 - 2014-04-23 22:18 - 00119512 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-04-26 13:48 - 2013-01-26 19:48 - 00000000 ____D () C:\Users\DTM\AppData\Roaming\Macromedia
2014-04-26 13:47 - 2013-06-14 19:56 - 00000000 ____D () C:\Users\DTM\AppData\Local\Paint.NET
2014-04-26 13:39 - 2013-08-07 23:18 - 00000000 ____D () C:\Users\DTM\Downloads\Sprüche Und Video
2014-04-26 13:35 - 2013-01-26 19:48 - 00000884 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-04-26 13:31 - 2009-07-14 06:45 - 00014928 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-04-26 13:31 - 2009-07-14 06:45 - 00014928 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-04-26 13:30 - 2014-04-07 16:05 - 00000000 ____D () C:\Users\DTM\Downloads\Sonnenuntergänge Trauer
2014-04-26 13:29 - 2013-12-22 01:29 - 01921201 _____ () C:\Windows\WindowsUpdate.log
2014-04-26 13:26 - 2014-02-11 21:57 - 00000000 ____D () C:\Users\DTM\Documents\DesktopReminder
2014-04-26 13:25 - 2014-04-05 20:25 - 00002950 _____ () C:\Windows\System32\Tasks\OO DiskImage {71f57001-bbc8-4dd2-9f24-35d049457fb1}
2014-04-26 13:25 - 2014-04-05 20:25 - 00000476 _____ () C:\Windows\Tasks\OO DiskImage {71f57001-bbc8-4dd2-9f24-35d049457fb1}.job
2014-04-26 13:23 - 2014-04-26 13:23 - 00000610 _____ () C:\Windows\PFRO.log
2014-04-26 13:23 - 2014-04-23 22:23 - 00000672 _____ () C:\Windows\setupact.log
2014-04-26 13:23 - 2009-07-14 07:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-04-26 10:09 - 2013-01-26 20:04 - 00003924 _____ () C:\Windows\System32\Tasks\avast! Emergency Update
2014-04-26 10:08 - 2014-04-26 10:08 - 00043152 _____ (AVAST Software) C:\Windows\avastSS.scr
2014-04-26 10:08 - 2014-04-26 10:08 - 00029208 _____ () C:\Windows\system32\Drivers\aswHwid.sys
2014-04-26 10:08 - 2013-12-27 23:07 - 00085328 _____ (AVAST Software) C:\Windows\system32\Drivers\aswstm.sys
2014-04-26 10:08 - 2013-02-28 20:11 - 00208416 _____ () C:\Windows\system32\Drivers\aswVmm.sys
2014-04-26 10:08 - 2013-02-28 20:11 - 00065776 _____ () C:\Windows\system32\Drivers\aswRvrt.sys
2014-04-26 10:08 - 2013-01-26 20:04 - 01039096 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2014-04-26 10:08 - 2013-01-26 20:04 - 00423240 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsp.sys
2014-04-26 10:08 - 2013-01-26 20:04 - 00334648 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2014-04-26 10:08 - 2013-01-26 20:04 - 00093568 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2014-04-26 10:08 - 2013-01-26 20:04 - 00079184 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2014-04-26 02:25 - 2014-04-26 02:00 - 00000000 ____D () C:\Users\DTM\Desktop\Mal gucken HDR
2014-04-26 02:04 - 2014-03-19 18:29 - 00000000 ____D () C:\Windows\CryptoGuard
2014-04-26 01:51 - 2014-04-24 17:33 - 00000000 ____D () C:\Users\DTM\Desktop\Trauerfeier
2014-04-26 01:18 - 2014-04-26 01:15 - 18829671 _____ () C:\Users\DTM\Desktop\Unheilig - Mein Stern ( Abschied ).mp4
2014-04-25 22:42 - 2013-01-26 19:01 - 00000000 ____D () C:\Users\DTM\AppData\Roaming\Nitro PDF
2014-04-25 22:42 - 2009-07-14 07:32 - 00000000 ____D () C:\Windows\system32\FxsTmp
2014-04-25 21:44 - 2009-07-14 19:58 - 00654400 _____ () C:\Windows\system32\perfh007.dat
2014-04-25 21:44 - 2009-07-14 19:58 - 00130240 _____ () C:\Windows\system32\perfc007.dat
2014-04-25 21:44 - 2009-07-14 07:13 - 01498742 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-04-25 21:12 - 2013-10-16 15:54 - 00000000 ____D () C:\AdwCleaner
2014-04-25 21:09 - 2014-04-26 13:55 - 02061824 _____ (Farbar) C:\Users\Carsten\Desktop\FRST64.exe
2014-04-25 21:09 - 2014-04-25 21:09 - 02061824 _____ (Farbar) C:\Users\DTM\Desktop\FRST64.exe
2014-04-25 21:09 - 2014-04-25 21:09 - 01016261 _____ (Thisisu) C:\Users\DTM\Desktop\JRT.exe
2014-04-25 21:08 - 2014-04-25 21:08 - 01365865 _____ () C:\Users\DTM\Desktop\adwcleaner.exe
2014-04-24 21:59 - 2014-04-24 21:59 - 00000000 ____D () C:\Users\DTM\Desktop\Trauerbewältigung
2014-04-24 17:28 - 2013-01-26 17:36 - 00000000 ____D () C:\Program Files\CCleaner
2014-04-24 03:16 - 2014-04-24 03:16 - 00000000 ____D () C:\Program Files (x86)\Auslogics
2014-04-24 03:16 - 2014-02-02 05:11 - 00000000 ____D () C:\Users\DTM\Downloads\Youtube Downloader
2014-04-24 02:41 - 2013-01-27 00:48 - 00000000 ____D () C:\Users\DTM\AppData\Roaming\vlc
2014-04-24 01:53 - 2014-01-14 00:25 - 00000000 ____D () C:\Users\DTM\Desktop\Verkauf
2014-04-24 01:00 - 2013-01-27 21:28 - 00000000 ___RD () C:\Users\DTM\Desktop\Toolbars und ungewünschte Programme entfernen
2014-04-24 00:55 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\tracing
2014-04-24 00:04 - 2014-04-24 00:04 - 00003008 _____ () C:\Users\DTM\Desktop\MeinProjekt.sedprj
2014-04-24 00:01 - 2014-02-10 03:24 - 00000000 ____D () C:\Users\DTM\AppData\Roaming\Ashampoo Slideshow Studio HD 3
2014-04-23 22:23 - 2014-04-23 22:23 - 00000000 _____ () C:\Windows\setuperr.log
2014-04-23 22:17 - 2014-04-23 22:17 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware 
2014-04-23 22:17 - 2014-04-23 22:17 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-04-23 22:17 - 2014-04-23 22:17 - 00000000 ____D () C:\Program Files (x86)\ Malwarebytes Anti-Malware 
2014-04-23 22:00 - 2014-04-23 22:00 - 00000000 ___SD () C:\Windows\system32\CompatTel
2014-04-23 21:17 - 2014-03-18 19:32 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-04-23 20:25 - 2014-03-21 23:01 - 00000000 ____D () C:\Users\DTM\Desktop\VLN 2014
2014-04-23 19:29 - 2014-03-19 18:29 - 00000000 ____D () C:\Program Files (x86)\HitmanPro.Alert
2014-04-23 19:27 - 2014-03-19 18:29 - 00548424 _____ (SurfRight) C:\Windows\system32\hmpalert.dll
2014-04-23 19:27 - 2014-03-19 18:29 - 00477008 _____ (SurfRight) C:\Windows\SysWOW64\hmpalert.dll
2014-04-23 19:27 - 2014-03-19 18:29 - 00093144 _____ () C:\Windows\system32\Drivers\hmpalert.sys
2014-04-23 19:25 - 2013-04-26 14:23 - 00000000 ____D () C:\Users\DTM\AppData\Local\CrashDumps
2014-04-23 19:16 - 2014-04-23 19:16 - 00000000 ____D () C:\Users\Carsten\AppData\Roaming\Malwarebytes
2014-04-23 19:16 - 2013-01-26 06:32 - 00000000 ____D () C:\Users\Carsten
2014-04-23 19:15 - 2013-01-26 07:17 - 00000000 ____D () C:\Users\DTM
2014-04-23 18:33 - 2014-04-08 20:25 - 00000000 ____D () C:\Users\DTM\Downloads\Fotosoftware
2014-04-23 18:33 - 2014-02-11 21:54 - 00000000 ____D () C:\Program Files (x86)\Desktop-Reminder 2
2014-04-23 18:33 - 2014-02-06 21:05 - 00000000 ____D () C:\Users\DTM\AppData\Local\CrashRpt
2014-04-23 18:33 - 2014-02-04 21:22 - 00000000 ____D () C:\Users\DTM\AppData\Roaming\ProductData
2014-04-23 18:33 - 2014-02-03 23:27 - 00000000 ____D () C:\Users\Carsten\AppData\Roaming\ProductData
2014-04-23 18:33 - 2013-11-15 00:26 - 00000000 ____D () C:\ProgramData\ProductData
2014-04-23 18:33 - 2013-07-17 22:44 - 00000000 ____D () C:\Program Files (x86)\TomTom HOME 2
2014-04-23 18:33 - 2013-02-02 21:12 - 00000000 ____D () C:\Users\DTM\AppData\Roaming\Feedreader
2014-04-23 18:33 - 2013-02-02 21:12 - 00000000 ____D () C:\Program Files (x86)\FeedReader30
2014-04-23 18:33 - 2013-01-26 21:53 - 00000000 ____D () C:\Program Files (x86)\Secure Banking
2014-04-23 18:33 - 2013-01-26 21:03 - 00000000 ____D () C:\Program Files\Elantech
2014-04-23 18:33 - 2013-01-26 07:17 - 00000000 ___RD () C:\Users\DTM\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2014-04-23 18:33 - 2009-07-14 05:20 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
2014-04-23 18:33 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\L2Schemas
2014-04-23 18:32 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\registration
2014-04-23 18:31 - 2013-01-27 00:59 - 00000000 ____D () C:\Program Files (x86)\VS Revo Group
2014-04-23 18:31 - 2013-01-26 17:50 - 00000000 ____D () C:\Users\Carsten\AppData\Roaming\Mozilla
2014-04-23 18:31 - 2013-01-26 17:32 - 00000000 ____D () C:\Users\DTM\AppData\Local\Mozilla
2014-04-21 21:34 - 2013-05-21 23:01 - 00000000 ____D () C:\Users\DTM\Desktop\Riester Rente (Union Investment)
2014-04-20 21:24 - 2013-10-04 19:57 - 00000000 ____D () C:\Users\DTM\Desktop\Klingelton
2014-04-20 00:02 - 2014-04-20 00:02 - 00000000 ____D () C:\Users\Carsten\AppData\Roaming\DesktopReminder
2014-04-20 00:01 - 2014-04-20 00:01 - 00000000 ____D () C:\Users\Carsten\AppData\Local\Polenter_-_Software_Solut
2014-04-18 21:29 - 2014-04-18 21:29 - 00000000 ____D () C:\Users\DTM\Desktop\Wiederspruch ALG 2
2014-04-18 21:28 - 2013-01-26 19:06 - 00000000 ____D () C:\Users\DTM\Desktop\Handbücher
2014-04-16 19:56 - 2013-01-26 07:23 - 00095288 _____ () C:\Users\Carsten\AppData\Local\GDIPFONTCACHEV1.DAT
2014-04-15 20:16 - 2009-07-14 07:08 - 00032632 _____ () C:\Windows\Tasks\SCHEDLGU.TXT
2014-04-14 04:24 - 2014-04-23 20:04 - 00465408 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-04-14 04:19 - 2014-04-23 20:04 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-04-13 19:03 - 2013-02-05 21:00 - 00000000 ____D () C:\Users\DTM\AppData\Local\photoOptimizeHistoryDataBase
2014-04-13 18:40 - 2014-03-30 20:08 - 00000000 ____D () C:\Users\DTM\Desktop\VLN 2014 (Racing News)
2014-04-10 19:45 - 2014-04-10 19:45 - 00000000 ____D () C:\Users\DTM\Desktop\Ring Card
2014-04-09 19:33 - 2014-03-19 18:29 - 00548424 _____ (SurfRight) C:\Windows\system32\hmpalert(38).dll
2014-04-09 19:33 - 2014-03-19 18:29 - 00477008 _____ (SurfRight) C:\Windows\SysWOW64\hmpalert(39).dll
2014-04-08 20:26 - 2013-11-13 22:33 - 00000000 ____D () C:\Users\Carsten\AppData\Local\Adobe
2014-04-08 20:25 - 2013-01-26 19:48 - 00692400 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-04-08 20:25 - 2013-01-26 19:48 - 00070832 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-04-08 20:25 - 2013-01-26 19:48 - 00003822 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-04-08 13:46 - 2014-04-08 13:45 - 08940095 _____ () C:\Users\DTM\Desktop\Die Grüne Hölle.mp4
2014-04-07 21:39 - 2014-04-07 21:39 - 00000000 ____D () C:\Users\DTM\AppData\Local\AquaSoft
2014-04-07 21:39 - 2013-04-30 15:36 - 00386680 _____ (Duplex Secure Ltd.) C:\Windows\system32\Drivers\sptd.sys
2014-04-07 21:02 - 2014-03-28 21:48 - 00000000 ____D () C:\Users\DTM\Desktop\Video Doku (Angstdiagnose Krebs)
2014-04-07 18:11 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\rescache
2014-04-05 09:22 - 2014-04-05 09:16 - 00000000 ____D () C:\Users\DTM\Desktop\Lieder Mutti Stick
2014-04-03 09:51 - 2014-04-23 22:17 - 00088280 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2014-04-03 09:51 - 2014-04-23 22:17 - 00063192 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2014-04-03 09:50 - 2014-04-23 22:17 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2014-03-31 21:43 - 2014-03-31 21:35 - 00000000 ____D () C:\Users\DTM\Downloads\Datenrettung
2014-03-31 21:32 - 2013-01-28 02:14 - 00000000 ____D () C:\Users\DTM\Desktop\LibreOffice Vorlagen
2014-03-28 21:49 - 2014-03-17 21:36 - 00000000 ____D () C:\Users\DTM\Desktop\Unheilig noch auf stick
2014-03-28 21:44 - 2013-01-31 04:09 - 00000000 ____D () C:\FFOutput
2014-03-28 21:29 - 2013-01-29 02:12 - 00000000 ____D () C:\Users\DTM\Desktop\MozBackup´s

Some content of TEMP:
====================
C:\Users\Carsten\AppData\Local\Temp\Quarantine.exe
C:\Users\DTM\AppData\Local\Temp\Photooptimizer.exe


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2014-04-07 18:00

==================== End Of Log ============================
--- --- ---
__________________

__________________
Antwort

Themen zu AVAST und Malwarebytes melden mehrere Funde
automatisch, detected, explorer, firefox, install.exe, internet, internet explorer, löschen, malwarebytes, microsoft, neustart, problem, programme, pup.optional.dynconie.a, pup.optional.mysearchdial.a, scan, schutz, win32, win32/browsefox.b, win32/browsefox.c, win32/bundled.toolbar.ask, win32/downloadsponsor.a, win32/toolbar.widgi.b, windows


« Win8.1: Firefox: ständige neue Werbefenster und Werbelinks im Text | Iminent - richtig enfernt? »


Ähnliche Themen: AVAST und Malwarebytes melden mehrere Funde


  1. Windows 7: AVAST 3 Funde, Malwarebytes 8 Funde
    Log-Analyse und Auswertung - 16.12.2014 (13)
  2. Windows 8.1: Spybot und Malwarebytes melden unterschiedliche Probleme
    Log-Analyse und Auswertung - 20.09.2014 (9)
  3. Malwarebytes und Avira melden Virus
    Plagegeister aller Art und deren Bekämpfung - 16.09.2014 (7)
  4. Malwarebytes mehrere Funde, auch Trojaner?
    Plagegeister aller Art und deren Bekämpfung - 31.07.2014 (9)
  5. Windows Vista Laptop: Avast und Malware Protector melden Virenbefall
    Log-Analyse und Auswertung - 07.07.2014 (33)
  6. Avast und Antimalware melden div. bedrohliche Objekte zb in sysapcrt.dll
    Plagegeister aller Art und deren Bekämpfung - 22.05.2014 (3)
  7. Win 8.1 64bit JRT & Malwarebytes melden unlöschbare Registry Einträge Seitenaufruf
    Log-Analyse und Auswertung - 05.03.2014 (10)
  8. Windows 7: Avira hat 172 Viren gefunden, davor mehrer Funde einzel Funde bei Malwarebytes bzw. Avira
    Log-Analyse und Auswertung - 15.09.2013 (13)
  9. Mehrere PUP Funde
    Log-Analyse und Auswertung - 12.09.2013 (15)
  10. Mehrere Funde von Malwarebytes: Hauptsächlich Registry keys!
    Log-Analyse und Auswertung - 15.06.2013 (25)
  11. Mehrere Funde durch Malwarebytes
    Log-Analyse und Auswertung - 13.06.2013 (13)
  12. Mehrere PUP.Blabbers Funde
    Plagegeister aller Art und deren Bekämpfung - 17.01.2013 (26)
  13. GVU-Trojaner, Überprüfung mit malwarebytes, Kaspersky Rescue Disk und avast, verschiedene Funde, jetzt sauber?
    Plagegeister aller Art und deren Bekämpfung - 15.01.2013 (22)
  14. Malwarebytes Fund Backdoor.Agent / Avira mehrere Funde
    Plagegeister aller Art und deren Bekämpfung - 08.08.2012 (3)
  15. Malwarebytes und OTL melden keinen Fund
    Plagegeister aller Art und deren Bekämpfung - 26.11.2010 (12)
  16. Mehrere Funde mit Malwarebytes: Malware.Packer.Gen, Spyware.SpyEyes (3x), Trojan.Agent (2x)
    Plagegeister aller Art und deren Bekämpfung - 10.08.2010 (29)
  17. Nach Win32/Cryptor Entfernung bei Malwarebytes Scan mehrere weitere Funde
    Log-Analyse und Auswertung - 18.12.2009 (1)
Anleitungen und Tipps

- Für alle Hilfesuchenden! Was beachten?

- Anleitung: MyStartSearch.com entfernen

- Anleitung: WebSearches löschen

- Hilfe: iStartSurf entfernen – so gehts!

- Anleitung: Omiga Plus richtig entfernen

- Browser Viren entfernen


Zum Thema AVAST und Malwarebytes melden mehrere Funde - Führe FRST mit einem Konto aus, das Adminrechte hat. Also als Admin einloggen, nicht per ausführen als oder so - AVAST und Malwarebytes melden mehrere Funde...
Archiv
Du betrachtest: AVAST und Malwarebytes melden mehrere Funde auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19