Zurück   Trojaner-Board > Malware entfernen > Log-Analyse und Auswertung
LOGfile zur Auswertung

LOGfile zur Auswertung


Log-Analyse und Auswertung: LOGfile zur Auswertung

Windows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML.

 
Vorheriger Beitrag Vorheriger Beitrag   Nächster Beitrag Nächster Beitrag
Alt 17.05.2014, 13:29   #1
kaguya
 
LOGfile zur Auswertung - Standard

LOGfile zur Auswertung


Code:
ATTFilter
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version:01-05-2014
Ran by SYSTEM on MININT-ILU8F1R on 17-05-2014 14:19:01
Running from F:\
Windows 7 Professional Service Pack 1 (X86) OS Language: German Standard
Internet Explorer Version 8
Boot Mode: Recovery

The current controlset is ControlSet001
ATTENTION!:=====> If the system is bootable FRST could be run from normal or Safe mode to create a complete log.


The only official download link for FRST:
Download link for 32-Bit version: hxxp://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/81/ 
Download link for 64-Bit Version: hxxp://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/82/ 
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [152392 2014-02-21] (Apple Inc.)

========================== Services (Whitelisted) =================

S2 DevoloNetworkService; C:\Program Files\devolo\dlan\devolonetsvc.exe [3611128 2014-02-11] (devolo AG)
S2 FoxitCloudUpdateService; C:\Program Files\Foxit Software\Foxit Reader\Foxit Cloud\FCUpdateService.exe [241728 2014-03-11] (Foxit Corporation)

==================== Drivers (Whitelisted) ====================

S3 NETw2v32; C:\Windows\System32\DRIVERS\NETw2v32.sys [2595840 2007-03-07] (Intel® Corporation)
S2 NPF_devolo; C:\Windows\system32\drivers\npf_devolo.sys [35840 2013-03-04] (CACE Technologies)

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-05-17 14:05 - 2014-05-17 14:19 - 00000000 ____D () C:\FRST
2014-05-14 16:00 - 2014-05-14 16:00 - 00000000 ____D () C:\Program Files\Microsoft.NET
2014-05-14 15:38 - 2014-05-14 15:46 - 00013645 _____ () C:\Windows\IE11_main.log
2014-05-14 15:31 - 2013-12-04 03:03 - 00428032 _____ (Microsoft Corporation) C:\Windows\System32\secproc.dll
2014-05-14 15:31 - 2013-12-04 03:03 - 00423936 _____ (Microsoft Corporation) C:\Windows\System32\secproc_isv.dll
2014-05-14 15:31 - 2013-12-04 03:03 - 00087040 _____ (Microsoft Corporation) C:\Windows\System32\secproc_ssp_isv.dll
2014-05-14 15:31 - 2013-12-04 03:03 - 00087040 _____ (Microsoft Corporation) C:\Windows\System32\secproc_ssp.dll
2014-05-14 15:31 - 2013-12-04 03:02 - 00390144 _____ (Microsoft Corporation) C:\Windows\System32\msdrm.dll
2014-05-14 15:31 - 2013-12-04 02:54 - 00594944 _____ (Microsoft Corporation) C:\Windows\System32\RMActivate_isv.exe
2014-05-14 15:31 - 2013-12-04 02:54 - 00572416 _____ (Microsoft Corporation) C:\Windows\System32\RMActivate.exe
2014-05-14 15:31 - 2013-12-04 02:54 - 00510976 _____ (Microsoft Corporation) C:\Windows\System32\RMActivate_ssp.exe
2014-05-14 15:31 - 2013-12-04 02:54 - 00508928 _____ (Microsoft Corporation) C:\Windows\System32\RMActivate_ssp_isv.exe
2014-05-14 15:22 - 2014-05-14 15:22 - 00000000 ____D () C:\Users\Alex\AppData\Local\Macromedia
2014-05-14 15:21 - 2014-05-14 15:21 - 00692400 _____ (Adobe Systems Incorporated) C:\Windows\System32\FlashPlayerApp.exe
2014-05-14 15:21 - 2014-05-14 15:21 - 00070832 _____ (Adobe Systems Incorporated) C:\Windows\System32\FlashPlayerCPLApp.cpl
2014-05-14 15:21 - 2014-05-14 15:21 - 00000000 ____D () C:\Windows\System32\Macromed
2014-05-14 15:13 - 2014-05-14 15:13 - 00000000 ____D () C:\Users\Alex\Downloads\mbar
2014-05-14 15:13 - 2014-05-14 15:04 - 01035926 _____ () C:\Users\Alex\Downloads\mozbackup-1.5.1-en.exe
2014-05-14 15:13 - 2014-05-14 11:50 - 01313061 _____ (Greenshot ) C:\Users\Alex\Downloads\Greenshot-INSTALLER-1.1.9.13.exe
2014-05-14 15:13 - 2014-05-14 11:49 - 01917120 _____ () C:\Users\Alex\Downloads\winrar-x64-51b4.exe
2014-05-14 15:13 - 2014-05-14 11:49 - 01742632 _____ () C:\Users\Alex\Downloads\wrar51b4.exe
2014-05-14 15:13 - 2014-05-14 11:47 - 00791925 _____ () C:\Users\Alex\Downloads\grml1.log
2014-05-14 15:13 - 2014-05-14 10:41 - 39187992 _____ (Foxit Corporation ) C:\Users\Alex\Downloads\FoxitReader620.0429_enu_Setup.exe
2014-05-14 15:13 - 2014-05-14 09:54 - 20772800 _____ (MiniTool Solution Ltd. ) C:\Users\Alex\Downloads\pwhe8.exe
2014-05-14 15:12 - 2014-05-14 15:24 - 00107736 _____ (Malwarebytes Corporation) C:\Windows\System32\Drivers\MBAMSwissArmy.sys
2014-05-14 15:12 - 2014-05-14 15:12 - 00002098 _____ () C:\Users\Public\Desktop\Foxit Reader.lnk
2014-05-14 15:12 - 2014-05-14 15:12 - 00001060 _____ () C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2014-05-14 15:12 - 2014-05-14 15:12 - 00000000 ____D () C:\Users\Public\Foxit Software
2014-05-14 15:12 - 2014-05-14 15:12 - 00000000 ____D () C:\Users\Alex\AppData\Roaming\Foxit Software
2014-05-14 15:12 - 2014-05-14 15:12 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-05-14 15:12 - 2014-05-14 15:12 - 00000000 ____D () C:\Program Files\ Malwarebytes Anti-Malware 
2014-05-14 15:12 - 2014-05-14 15:12 - 00000000 ____D () C:\Program Files\Foxit Software
2014-05-14 15:12 - 2014-04-03 08:51 - 00073432 _____ (Malwarebytes Corporation) C:\Windows\System32\Drivers\mbamchameleon.sys
2014-05-14 15:12 - 2014-04-03 08:51 - 00051416 _____ (Malwarebytes Corporation) C:\Windows\System32\Drivers\mwac.sys
2014-05-14 15:12 - 2014-04-03 08:50 - 00023256 _____ (Malwarebytes Corporation) C:\Windows\System32\Drivers\mbam.sys
2014-05-14 15:11 - 2014-05-13 18:56 - 00591872 _____ (www.winmd5.com) C:\Users\Alex\Desktop\WinMD5.exe
2014-05-14 15:10 - 2014-05-14 15:21 - 00000000 ____D () C:\Users\Alex\AppData\Local\Adobe
2014-05-14 15:10 - 2014-05-14 15:10 - 00000985 _____ () C:\Users\Public\Desktop\MozBackup.lnk
2014-05-14 15:10 - 2014-05-14 15:10 - 00000000 ____D () C:\Program Files\WinRAR
2014-05-14 15:10 - 2014-05-14 15:10 - 00000000 ____D () C:\Program Files\MozBackup
2014-05-13 20:33 - 2014-05-13 20:33 - 00002049 _____ () C:\Users\Public\Desktop\devolo Cockpit.lnk
2014-05-13 20:33 - 2014-05-13 20:33 - 00000000 ____D () C:\Users\Alex\AppData\Roaming\Macromedia
2014-05-13 20:33 - 2014-05-13 20:33 - 00000000 ____D () C:\Users\Alex\AppData\Roaming\de.devolo.dLAN.Cockpit
2014-05-13 20:33 - 2014-05-13 20:33 - 00000000 ____D () C:\Users\Alex\AppData\Roaming\Adobe
2014-05-13 20:33 - 2014-05-13 20:33 - 00000000 ____D () C:\Program Files\devolo
2014-05-13 20:32 - 2014-05-13 20:32 - 23114232 _____ (devolo AG) C:\Users\Alex\Downloads\software-dlan-cockpit-windows-4-2-1.exe
2014-05-13 20:00 - 2014-05-13 20:00 - 00000000 ____H () C:\Windows\System32\Drivers\Msft_User_WpdMtpDr_01_09_00.Wdf
2014-05-13 19:57 - 2014-05-13 19:57 - 00057560 _____ () C:\Users\Alex\AppData\Local\GDIPFONTCACHEV1.DAT
2014-05-13 19:56 - 2014-05-13 20:00 - 00000000 ____D () C:\Users\Alex\AppData\Roaming\Apple Computer
2014-05-13 19:56 - 2014-05-13 19:56 - 00001753 _____ () C:\Users\Public\Desktop\iTunes.lnk
2014-05-13 19:56 - 2014-05-13 19:56 - 00000000 ____D () C:\Users\Alex\AppData\Local\Apple Computer
2014-05-13 19:56 - 2014-05-13 19:56 - 00000000 ____D () C:\ProgramData\Apple Computer
2014-05-13 19:56 - 2014-05-13 19:56 - 00000000 ____D () C:\ProgramData\188F1432-103A-4ffb-80F1-36B633C5C9E1
2014-05-13 19:56 - 2014-05-13 19:56 - 00000000 ____D () C:\Program Files\iTunes
2014-05-13 19:56 - 2014-05-13 19:56 - 00000000 ____D () C:\Program Files\iPod
2014-05-13 19:56 - 2012-08-21 12:01 - 00026840 _____ (GEAR Software Inc.) C:\Windows\System32\Drivers\GEARAspiWDM.sys
2014-05-13 19:55 - 2014-05-13 19:55 - 00000000 ____D () C:\Users\Alex\AppData\Local\Apple
2014-05-13 19:55 - 2014-05-13 19:55 - 00000000 ____D () C:\Program Files\Bonjour
2014-05-13 19:55 - 2014-05-13 19:55 - 00000000 ____D () C:\Program Files\Apple Software Update
2014-05-13 19:54 - 2014-05-13 19:56 - 00000000 ____D () C:\Program Files\Common Files\Apple
2014-05-13 19:54 - 2014-05-13 19:55 - 00000000 ____D () C:\ProgramData\Apple
2014-05-13 19:53 - 2014-05-13 19:54 - 137699152 _____ (Apple Inc.) C:\Users\Alex\Downloads\iTunesSetup.exe
2014-05-13 19:47 - 2014-05-13 19:48 - 00000000 ____D () C:\Users\Alex\AppData\Roaming\Mozilla
2014-05-13 19:47 - 2014-05-13 19:48 - 00000000 ____D () C:\Users\Alex\AppData\Local\Mozilla
2014-05-13 19:47 - 2014-05-13 19:47 - 00001105 _____ () C:\Users\Public\Desktop\Mozilla Firefox.lnk
2014-05-13 19:47 - 2014-05-13 19:47 - 00000000 ____D () C:\ProgramData\Mozilla
2014-05-13 19:47 - 2014-05-13 19:47 - 00000000 ____D () C:\Program Files\Mozilla Maintenance Service
2014-05-13 19:47 - 2014-05-13 19:47 - 00000000 ____D () C:\Program Files\Mozilla Firefox
2014-05-13 19:38 - 2014-05-13 19:38 - 04527616 _____ () C:\Users\Alex\Downloads\RogueKillerX64.exe
2014-05-13 19:38 - 2014-05-13 19:38 - 03972608 _____ () C:\Users\Alex\Downloads\RogueKiller.exe
2014-05-13 19:37 - 2014-05-13 19:38 - 00283144 _____ (Mozilla) C:\Users\Alex\Downloads\Firefox Setup Stub 29.0.1.exe
2014-05-13 19:34 - 2014-05-13 19:34 - 00000000 ____D () C:\Users\Alex\Downloads\SevenLoader
2014-05-13 19:34 - 2014-05-13 18:56 - 00591872 _____ (www.winmd5.com) C:\Users\Alex\Downloads\WinMD5.exe
2014-05-13 19:34 - 2014-05-13 17:30 - 17305616 _____ (Malwarebytes Corporation ) C:\Users\Alex\Downloads\mbam-setup-2.0.1.1004.exe
2014-05-13 19:34 - 2014-05-13 17:30 - 12589848 _____ (Malwarebytes Corp.) C:\Users\Alex\Downloads\mbar-1.07.0.1009.exe
2014-05-13 19:34 - 2014-05-13 17:27 - 00380416 _____ () C:\Users\Alex\Downloads\gmer.exe
2014-05-13 19:34 - 2014-05-13 17:26 - 01325827 _____ () C:\Users\Alex\Downloads\AdwCleaner.exe
2014-05-13 19:34 - 2014-05-13 17:24 - 04164448 _____ (Kaspersky Lab ZAO) C:\Users\Alex\Downloads\tdsskiller.exe
2014-05-13 19:34 - 2014-05-13 17:23 - 04745728 _____ (AVAST Software) C:\Users\Alex\Downloads\aswmbr.exe
2014-05-13 19:34 - 2014-05-13 17:22 - 00370943 _____ () C:\Users\Alex\Downloads\gmer.zip
2014-05-13 19:11 - 2012-03-01 06:46 - 00019824 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\fs_rec.sys
2014-05-13 19:11 - 2012-03-01 06:29 - 00005120 _____ (Microsoft Corporation) C:\Windows\System32\wmi.dll
2014-05-13 19:10 - 2010-02-11 08:10 - 00293376 _____ (Microsoft Corporation) C:\Windows\System32\browserchoice.exe
2014-05-13 19:03 - 2014-05-05 19:39 - 06041600 _____ (Microsoft Corporation) C:\Windows\System32\mshtml.dll
2014-05-13 19:03 - 2014-05-05 19:39 - 00067584 _____ (Microsoft Corporation) C:\Windows\System32\mshtmled.dll
2014-05-13 19:03 - 2014-05-05 16:50 - 01638912 _____ (Microsoft Corporation) C:\Windows\System32\mshtml.tlb
2014-05-13 19:03 - 2014-03-04 10:20 - 03969984 _____ (Microsoft Corporation) C:\Windows\System32\ntkrnlpa.exe
2014-05-13 19:03 - 2014-03-04 10:20 - 03914176 _____ (Microsoft Corporation) C:\Windows\System32\ntoskrnl.exe
2014-05-13 19:03 - 2014-03-04 10:17 - 00550912 _____ (Microsoft Corporation) C:\Windows\System32\kerberos.dll
2014-05-13 19:03 - 2013-10-04 02:49 - 00081408 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\drmk.sys
2014-05-13 19:03 - 2013-10-04 02:17 - 00177152 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\portcls.sys
2014-05-13 19:03 - 2013-07-09 05:52 - 00175104 _____ (Microsoft Corporation) C:\Windows\System32\wintrust.dll
2014-05-13 19:03 - 2011-06-15 09:55 - 00319488 _____ (Microsoft Corporation) C:\Windows\System32\odbcjt32.dll
2014-05-13 19:03 - 2011-06-15 09:55 - 00163840 _____ (Microsoft Corporation) C:\Windows\System32\odbctrac.dll
2014-05-13 19:03 - 2011-06-15 09:55 - 00122880 _____ (Microsoft Corporation) C:\Windows\System32\odbccp32.dll
2014-05-13 19:03 - 2011-06-15 09:55 - 00086016 _____ (Microsoft Corporation) C:\Windows\System32\odbccu32.dll
2014-05-13 19:03 - 2011-06-15 09:55 - 00081920 _____ (Microsoft Corporation) C:\Windows\System32\odbccr32.dll
2014-05-13 19:03 - 2011-04-09 06:56 - 00123904 _____ (Microsoft Corporation) C:\Windows\System32\poqexec.exe
2014-05-13 19:02 - 2014-04-12 03:15 - 00136640 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\ksecpkg.sys
2014-05-13 19:02 - 2014-04-12 03:15 - 00067520 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\ksecdd.sys
2014-05-13 19:02 - 2014-04-12 03:12 - 00100352 _____ (Microsoft Corporation) C:\Windows\System32\sspicli.dll
2014-05-13 19:02 - 2014-04-12 03:12 - 00022016 _____ (Microsoft Corporation) C:\Windows\System32\secur32.dll
2014-05-13 19:02 - 2014-04-12 03:12 - 00015872 _____ (Microsoft Corporation) C:\Windows\System32\sspisrv.dll
2014-05-13 19:02 - 2014-04-12 03:11 - 01059840 _____ (Microsoft Corporation) C:\Windows\System32\lsasrv.dll
2014-05-13 19:02 - 2014-04-12 03:11 - 00022528 _____ (Microsoft Corporation) C:\Windows\System32\lsass.exe
2014-05-13 19:02 - 2014-03-04 10:17 - 00538112 _____ (Microsoft Corporation) C:\Windows\System32\objsel.dll
2014-05-13 19:02 - 2014-03-04 10:17 - 00304128 _____ (Microsoft Corporation) C:\Windows\System32\winlogon.exe
2014-05-13 19:02 - 2014-03-04 10:17 - 00293376 _____ (Microsoft Corporation) C:\Windows\System32\KernelBase.dll
2014-05-13 19:02 - 2014-03-04 10:17 - 00259584 _____ (Microsoft Corporation) C:\Windows\System32\msv1_0.dll
2014-05-13 19:02 - 2014-03-04 10:17 - 00247808 _____ (Microsoft Corporation) C:\Windows\System32\schannel.dll
2014-05-13 19:02 - 2014-03-04 10:17 - 00172032 _____ (Microsoft Corporation) C:\Windows\System32\wdigest.dll
2014-05-13 19:02 - 2014-03-04 10:17 - 00065536 _____ (Microsoft Corporation) C:\Windows\System32\TSpkg.dll
2014-05-13 19:02 - 2014-03-04 10:17 - 00051200 _____ (Microsoft Corporation) C:\Windows\System32\cngprovider.dll
2014-05-13 19:02 - 2014-03-04 10:17 - 00049664 _____ (Microsoft Corporation) C:\Windows\System32\adprovider.dll
2014-05-13 19:02 - 2014-03-04 10:17 - 00048128 _____ (Microsoft Corporation) C:\Windows\System32\capiprovider.dll
2014-05-13 19:02 - 2014-03-04 10:17 - 00047616 _____ (Microsoft Corporation) C:\Windows\System32\dpapiprovider.dll
2014-05-13 19:02 - 2014-03-04 10:17 - 00036864 _____ (Microsoft Corporation) C:\Windows\System32\dimsroam.dll
2014-05-13 19:02 - 2014-03-04 10:17 - 00035328 _____ (Microsoft Corporation) C:\Windows\System32\wincredprovider.dll
2014-05-13 19:02 - 2014-03-04 10:17 - 00017408 _____ (Microsoft Corporation) C:\Windows\System32\credssp.dll
2014-05-13 19:02 - 2014-02-24 03:05 - 11020800 _____ (Microsoft Corporation) C:\Windows\System32\ieframe.dll
2014-05-13 19:02 - 2014-02-24 03:05 - 02078208 _____ (Microsoft Corporation) C:\Windows\System32\iertutil.dll
2014-05-13 19:02 - 2014-02-24 03:05 - 01232896 _____ (Microsoft Corporation) C:\Windows\System32\urlmon.dll
2014-05-13 19:02 - 2014-02-24 03:05 - 00981504 _____ (Microsoft Corporation) C:\Windows\System32\wininet.dll
2014-05-13 19:02 - 2014-02-24 03:05 - 00627712 _____ (Microsoft Corporation) C:\Windows\System32\msfeeds.dll
2014-05-13 19:02 - 2014-02-24 03:05 - 00176640 _____ (Microsoft Corporation) C:\Windows\System32\ieui.dll
2014-05-13 19:02 - 2014-02-24 03:05 - 00132096 _____ (Microsoft Corporation) C:\Windows\System32\url.dll
2014-05-13 19:02 - 2014-02-24 03:05 - 00048128 _____ (Microsoft Corporation) C:\Windows\System32\jsproxy.dll
2014-05-13 19:02 - 2014-02-04 03:04 - 00509440 _____ (Microsoft Corporation) C:\Windows\System32\qedit.dll
2014-05-13 19:02 - 2013-11-12 03:07 - 00002048 _____ (Microsoft Corporation) C:\Windows\System32\tzres.dll
2014-05-13 19:02 - 2013-09-25 02:56 - 00220160 _____ (Microsoft Corporation) C:\Windows\System32\ncrypt.dll
2014-05-13 19:02 - 2013-08-27 09:21 - 01077760 _____ (Microsoft Corporation) C:\Windows\System32\DWrite.dll
2014-05-13 19:02 - 2013-08-27 09:21 - 00808448 _____ (Microsoft Corporation) C:\Windows\System32\FntCache.dll
2014-05-13 19:02 - 2013-07-09 05:53 - 01289096 _____ (Microsoft Corporation) C:\Windows\System32\ntdll.dll
2014-05-13 19:02 - 2013-07-09 05:50 - 00652800 _____ (Microsoft Corporation) C:\Windows\System32\rpcrt4.dll
2014-05-13 19:02 - 2013-07-04 13:16 - 00369848 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\cng.sys
2014-05-13 19:02 - 2013-07-04 12:50 - 00530432 _____ (Microsoft Corporation) C:\Windows\System32\comctl32.dll
2014-05-13 19:02 - 2013-07-03 04:36 - 00055808 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\hidclass.sys
2014-05-13 19:02 - 2013-07-03 04:36 - 00025728 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\hidparse.sys
2014-05-13 19:02 - 2013-05-13 04:08 - 00903168 _____ (Microsoft Corporation) C:\Windows\System32\certutil.exe
2014-05-13 19:02 - 2013-05-13 04:08 - 00043008 _____ (Microsoft Corporation) C:\Windows\System32\certenc.dll
2014-05-13 19:02 - 2013-04-12 14:45 - 01211752 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\ntfs.sys
2014-05-13 19:02 - 2013-03-19 05:48 - 00038912 _____ (Microsoft Corporation) C:\Windows\System32\csrsrv.dll
2014-05-13 19:02 - 2013-03-19 03:49 - 00069632 _____ (Microsoft Corporation) C:\Windows\System32\smss.exe
2014-05-13 19:02 - 2013-02-15 05:37 - 03217408 _____ (Microsoft Corporation) C:\Windows\System32\mstscax.dll
2014-05-13 19:02 - 2013-02-15 05:34 - 00131584 _____ (Microsoft Corporation) C:\Windows\System32\aaclient.dll
2014-05-13 19:02 - 2013-02-15 04:25 - 00036864 _____ (Microsoft Corporation) C:\Windows\System32\tsgqec.dll
2014-05-13 19:02 - 2013-02-12 04:32 - 00015872 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\usb8023.sys
2014-05-13 19:02 - 2012-11-02 06:11 - 00376832 _____ (Microsoft Corporation) C:\Windows\System32\dpnet.dll
2014-05-13 19:02 - 2011-04-29 03:46 - 00311808 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\srv.sys
2014-05-13 19:02 - 2011-04-29 03:46 - 00310272 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\srv2.sys
2014-05-13 19:02 - 2011-04-29 03:46 - 00114688 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\srvnet.sys
2014-05-13 19:02 - 2011-04-25 03:18 - 00338944 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\afd.sys
2014-05-13 19:02 - 2011-03-03 06:38 - 00270336 _____ (Microsoft Corporation) C:\Windows\System32\dnsapi.dll
2014-05-13 19:02 - 2011-03-03 06:38 - 00132608 _____ (Microsoft Corporation) C:\Windows\System32\dnsrslvr.dll
2014-05-13 19:02 - 2011-03-03 06:36 - 00028672 _____ (Microsoft Corporation) C:\Windows\System32\dnscacheugc.exe
2014-05-13 19:02 - 2011-02-18 06:41 - 00716800 _____ (Microsoft Corporation) C:\Windows\System32\jscript.dll
2014-05-13 19:01 - 2014-02-07 02:07 - 02349056 _____ (Microsoft Corporation) C:\Windows\System32\win32k.sys
2014-05-13 19:01 - 2013-12-10 03:02 - 00428032 _____ (Microsoft Corporation) C:\Windows\System32\vbscript.dll
2014-05-13 19:01 - 2013-12-06 03:02 - 01237504 _____ (Microsoft Corporation) C:\Windows\System32\msxml3.dll
2014-05-13 19:01 - 2013-12-06 03:02 - 00002048 _____ (Microsoft Corporation) C:\Windows\System32\msxml3r.dll
2014-05-13 19:01 - 2013-10-19 02:36 - 00159232 _____ (Microsoft Corporation) C:\Windows\System32\imagehlp.dll
2014-05-13 19:01 - 2013-10-12 03:04 - 00121856 _____ (Microsoft Corporation) C:\Windows\System32\wshom.ocx
2014-05-13 19:01 - 2013-10-12 03:03 - 00163840 _____ (Microsoft Corporation) C:\Windows\System32\scrrun.dll
2014-05-13 19:01 - 2013-10-12 02:15 - 00141824 _____ (Microsoft Corporation) C:\Windows\System32\wscript.exe
2014-05-13 19:01 - 2013-10-12 02:15 - 00126976 _____ (Microsoft Corporation) C:\Windows\System32\cscript.exe
2014-05-13 19:01 - 2013-08-01 12:03 - 00729024 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\dxgkrnl.sys
2014-05-13 19:01 - 2013-07-26 02:55 - 00180224 _____ (Microsoft Corporation) C:\Windows\System32\shdocvw.dll
2014-05-13 19:01 - 2013-07-25 09:57 - 01620992 _____ (Microsoft Corporation) C:\Windows\System32\WMVDECOD.DLL
2014-05-13 19:01 - 2013-07-20 11:33 - 00102608 _____ (Microsoft Corporation) C:\Windows\System32\PresentationCFFRasterizerNative_v0300.dll
2014-05-13 19:01 - 2013-07-06 06:05 - 01293760 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\tcpip.sys
2014-05-13 19:01 - 2013-06-06 05:52 - 00026112 _____ (Microsoft Corporation) C:\Windows\System32\lpk.dll
2014-05-13 19:01 - 2013-06-06 05:51 - 00070656 _____ (Microsoft Corporation) C:\Windows\System32\fontsub.dll
2014-05-13 19:01 - 2013-06-06 05:50 - 00010240 _____ (Microsoft Corporation) C:\Windows\System32\dciman32.dll
2014-05-13 19:01 - 2013-06-06 04:01 - 00295424 _____ (Adobe Systems Incorporated) C:\Windows\System32\atmfd.dll
2014-05-13 19:01 - 2013-06-06 04:01 - 00034304 _____ (Adobe Systems) C:\Windows\System32\atmlib.dll
2014-05-13 19:01 - 2013-04-26 05:55 - 00492544 _____ (Microsoft Corporation) C:\Windows\System32\win32spl.dll
2014-05-13 19:01 - 2013-04-10 06:18 - 00218984 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\dxgmms1.sys
2014-05-13 19:01 - 2013-01-03 06:04 - 00187752 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\FWPKCLNT.SYS
2014-05-13 19:01 - 2012-11-01 05:47 - 01389568 _____ (Microsoft Corporation) C:\Windows\System32\msxml6.dll
2014-05-13 19:01 - 2012-08-22 18:16 - 00240496 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\netio.sys
2014-05-13 19:01 - 2012-07-04 22:16 - 00057344 _____ (Microsoft Corporation) C:\Windows\System32\netapi32.dll
2014-05-13 19:01 - 2012-07-04 22:14 - 00102912 _____ (Microsoft Corporation) C:\Windows\System32\browser.dll
2014-05-13 19:01 - 2012-07-04 22:14 - 00041984 _____ (Microsoft Corporation) C:\Windows\System32\browcli.dll
2014-05-13 19:01 - 2012-06-06 06:03 - 00805376 _____ (Microsoft Corporation) C:\Windows\System32\cdosys.dll
2014-05-13 19:01 - 2012-04-28 04:17 - 00183808 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\rdpwd.sys
2014-05-13 19:01 - 2012-02-17 06:34 - 00826880 _____ (Microsoft Corporation) C:\Windows\System32\rdpcore.dll
2014-05-13 19:01 - 2012-02-17 05:13 - 00024576 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\tdtcp.sys
2014-05-13 19:01 - 2011-11-19 15:01 - 00067072 _____ (Microsoft Corporation) C:\Windows\System32\packager.dll
2014-05-13 19:01 - 2011-10-26 05:32 - 01328128 _____ (Microsoft Corporation) C:\Windows\System32\quartz.dll
2014-05-13 19:01 - 2011-10-26 05:32 - 00514560 _____ (Microsoft Corporation) C:\Windows\System32\qdvd.dll
2014-05-13 19:01 - 2011-10-15 06:38 - 00534528 _____ (Microsoft Corporation) C:\Windows\System32\EncDec.dll
2014-05-13 19:01 - 2011-08-27 05:26 - 00571904 _____ (Microsoft Corporation) C:\Windows\System32\oleaut32.dll
2014-05-13 19:01 - 2011-08-27 05:26 - 00233472 _____ (Microsoft Corporation) C:\Windows\System32\oleacc.dll
2014-05-13 19:01 - 2011-08-17 05:24 - 00465408 _____ (Microsoft Corporation) C:\Windows\System32\psisdecd.dll
2014-05-13 19:01 - 2011-08-17 05:19 - 00075776 _____ (Microsoft Corporation) C:\Windows\System32\psisrndr.ax
2014-05-13 19:01 - 2011-07-09 03:30 - 00223744 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\mrxsmb10.sys
2014-05-13 19:01 - 2011-05-24 11:44 - 00293376 _____ (Microsoft Corporation) C:\Windows\System32\umpnpmgr.dll
2014-05-13 19:01 - 2011-05-03 05:30 - 00741376 _____ (Microsoft Corporation) C:\Windows\System32\inetcomm.dll
2014-05-13 19:01 - 2011-04-27 03:17 - 00123904 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\mrxsmb.sys
2014-05-13 19:01 - 2011-04-27 03:17 - 00096768 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\mrxsmb20.sys
2014-05-13 19:01 - 2011-02-23 05:47 - 00069632 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\bowser.sys
2014-05-13 19:01 - 2011-02-12 06:35 - 00191488 _____ (Microsoft Corporation) C:\Windows\System32\FXSCOVER.exe
2014-05-13 19:01 - 2010-12-23 06:54 - 00850944 _____ (Microsoft Corporation) C:\Windows\System32\sbe.dll
2014-05-13 19:01 - 2010-12-23 06:54 - 00642048 _____ (Microsoft Corporation) C:\Windows\System32\CPFilters.dll
2014-05-13 19:01 - 2010-12-23 06:50 - 00199680 _____ (Microsoft Corporation) C:\Windows\System32\mpg2splt.ax
2014-05-13 19:00 - 2014-03-25 03:09 - 12874240 _____ (Microsoft Corporation) C:\Windows\System32\shell32.dll
2014-05-13 19:00 - 2014-03-04 10:17 - 00868352 _____ (Microsoft Corporation) C:\Windows\System32\kernel32.dll
2014-05-13 19:00 - 2014-01-29 03:06 - 00381440 _____ (Microsoft Corporation) C:\Windows\System32\wer.dll
2014-05-13 19:00 - 2013-11-27 02:14 - 00258560 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\usbhub.sys
2014-05-13 19:00 - 2013-11-27 02:13 - 00284672 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\usbport.sys
2014-05-13 19:00 - 2013-11-27 02:13 - 00076288 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\usbccgp.sys
2014-05-13 19:00 - 2013-11-27 02:13 - 00043520 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\usbehci.sys
2014-05-13 19:00 - 2013-11-27 02:13 - 00024064 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\usbuhci.sys
2014-05-13 19:00 - 2013-11-27 02:13 - 00006016 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\usbd.sys
2014-05-13 19:00 - 2013-10-12 03:03 - 00656896 _____ (Microsoft Corporation) C:\Windows\System32\nshwfp.dll
2014-05-13 19:00 - 2013-10-12 03:01 - 00679424 _____ (Microsoft Corporation) C:\Windows\System32\IKEEXT.DLL
2014-05-13 19:00 - 2013-10-12 03:01 - 00216576 _____ (Microsoft Corporation) C:\Windows\System32\FWPUCLNT.DLL
2014-05-13 19:00 - 2013-10-05 20:57 - 01168384 _____ (Microsoft Corporation) C:\Windows\System32\crypt32.dll
2014-05-13 19:00 - 2013-10-03 02:58 - 00305152 _____ (Microsoft Corporation) C:\Windows\System32\gdi32.dll
2014-05-13 19:00 - 2013-08-02 02:50 - 00169984 _____ (Microsoft Corporation) C:\Windows\System32\winsrv.dll
2014-05-13 19:00 - 2013-08-02 02:48 - 00005120 ____H (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-file-l1-1-0.dll
2014-05-13 19:00 - 2013-08-02 02:48 - 00004608 ____H (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-processthreads-l1-1-0.dll
2014-05-13 19:00 - 2013-08-02 02:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-sysinfo-l1-1-0.dll
2014-05-13 19:00 - 2013-08-02 02:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-synch-l1-1-0.dll
2014-05-13 19:00 - 2013-08-02 02:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-misc-l1-1-0.dll
2014-05-13 19:00 - 2013-08-02 02:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-localregistry-l1-1-0.dll
2014-05-13 19:00 - 2013-08-02 02:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-localization-l1-1-0.dll
2014-05-13 19:00 - 2013-08-02 02:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-processenvironment-l1-1-0.dll
2014-05-13 19:00 - 2013-08-02 02:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-namedpipe-l1-1-0.dll
2014-05-13 19:00 - 2013-08-02 02:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-memory-l1-1-0.dll
2014-05-13 19:00 - 2013-08-02 02:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-libraryloader-l1-1-0.dll
2014-05-13 19:00 - 2013-08-02 02:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-interlocked-l1-1-0.dll
2014-05-13 19:00 - 2013-08-02 02:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-heap-l1-1-0.dll
2014-05-13 19:00 - 2013-08-02 02:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-string-l1-1-0.dll
2014-05-13 19:00 - 2013-08-02 02:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-rtlsupport-l1-1-0.dll
2014-05-13 19:00 - 2013-08-02 02:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-profile-l1-1-0.dll
2014-05-13 19:00 - 2013-08-02 02:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-io-l1-1-0.dll
2014-05-13 19:00 - 2013-08-02 02:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-handle-l1-1-0.dll
2014-05-13 19:00 - 2013-08-02 02:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-fibers-l1-1-0.dll
2014-05-13 19:00 - 2013-08-02 02:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-errorhandling-l1-1-0.dll
2014-05-13 19:00 - 2013-08-02 02:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-delayload-l1-1-0.dll
2014-05-13 19:00 - 2013-08-02 02:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-debug-l1-1-0.dll
2014-05-13 19:00 - 2013-08-02 02:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-datetime-l1-1-0.dll
2014-05-13 19:00 - 2013-08-02 02:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-console-l1-1-0.dll
2014-05-13 19:00 - 2013-08-02 01:52 - 00271360 _____ (Microsoft Corporation) C:\Windows\System32\conhost.exe
2014-05-13 19:00 - 2013-08-02 01:43 - 00006144 ____H (Microsoft Corporation) C:\Windows\System32\api-ms-win-security-base-l1-1-0.dll
2014-05-13 19:00 - 2013-08-02 01:43 - 00004608 ____H (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-threadpool-l1-1-0.dll
2014-05-13 19:00 - 2013-08-02 01:43 - 00003584 ____H (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-xstate-l1-1-0.dll
2014-05-13 19:00 - 2013-08-02 01:43 - 00003072 ____H (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-util-l1-1-0.dll
2014-05-13 19:00 - 2013-07-12 11:07 - 00086016 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\usbcir.sys
2014-05-13 19:00 - 2013-07-09 05:46 - 00140288 _____ (Microsoft Corporation) C:\Windows\System32\cryptsvc.dll
2014-05-13 19:00 - 2013-07-09 05:46 - 00103936 _____ (Microsoft Corporation) C:\Windows\System32\cryptnet.dll
2014-05-13 19:00 - 2013-06-25 23:56 - 00527064 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\Wdf01000.sys
2014-05-13 19:00 - 2012-11-28 23:57 - 00047720 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\WdfLdr.sys
2014-05-13 19:00 - 2012-11-28 23:57 - 00009728 _____ (Microsoft Corporation) C:\Windows\System32\Wdfres.dll
2014-05-13 19:00 - 2012-11-28 23:57 - 00000003 _____ () C:\Windows\System32\Drivers\MsftWdf_Kernel_01011_Inbox_Critical.Wdf
2014-05-13 19:00 - 2012-11-23 03:48 - 00049152 _____ (Microsoft Corporation) C:\Windows\System32\taskhost.exe
2014-05-13 19:00 - 2012-09-25 23:47 - 00078336 _____ (Microsoft Corporation) C:\Windows\System32\synceng.dll
2014-05-13 19:00 - 2012-05-14 05:33 - 00769024 _____ (Microsoft Corporation) C:\Windows\System32\localspl.dll
2014-05-13 19:00 - 2012-04-26 05:45 - 00129536 _____ (Microsoft Corporation) C:\Windows\System32\rdpcorekmts.dll
2014-05-13 19:00 - 2012-04-26 05:45 - 00058880 _____ (Microsoft Corporation) C:\Windows\System32\rdpwsx.dll
2014-05-13 19:00 - 2012-04-26 05:41 - 00008192 _____ (Microsoft Corporation) C:\Windows\System32\rdrmemptylst.exe
2014-05-13 19:00 - 2012-03-17 08:27 - 00056176 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\partmgr.sys
2014-05-13 19:00 - 2011-12-16 08:52 - 00690688 _____ (Microsoft Corporation) C:\Windows\System32\msvcrt.dll
2014-05-13 19:00 - 2011-11-17 06:35 - 00314880 _____ (Microsoft Corporation) C:\Windows\System32\webio.dll
2014-05-13 19:00 - 2011-03-11 06:33 - 01164288 _____ (Microsoft Corporation) C:\Windows\System32\mfc42u.dll
2014-05-13 19:00 - 2011-03-11 06:33 - 01137664 _____ (Microsoft Corporation) C:\Windows\System32\mfc42.dll
2014-05-13 18:48 - 2013-06-15 04:38 - 00031232 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\tssecsrv.sys
2014-05-13 18:48 - 2013-02-27 06:05 - 00101720 _____ (Microsoft Corporation) C:\Windows\System32\consent.exe
2014-05-13 18:48 - 2013-02-27 05:49 - 01796096 _____ (Microsoft Corporation) C:\Windows\System32\authui.dll
2014-05-13 18:48 - 2013-02-27 05:49 - 00047104 _____ (Microsoft Corporation) C:\Windows\System32\appinfo.dll
2014-05-13 18:42 - 2014-03-31 08:35 - 00231584 ____N (Microsoft Corporation) C:\Windows\System32\MpSigStub.exe
2014-05-13 18:40 - 2014-05-13 18:25 - 00000000 ____D () C:\Windows\Panther
2014-05-13 18:28 - 2012-06-02 23:19 - 01933848 _____ (Microsoft Corporation) C:\Windows\System32\wuaueng.dll
2014-05-13 18:28 - 2012-06-02 23:19 - 00577048 _____ (Microsoft Corporation) C:\Windows\System32\wuapi.dll
2014-05-13 18:28 - 2012-06-02 23:19 - 00053784 _____ (Microsoft Corporation) C:\Windows\System32\wuauclt.exe
2014-05-13 18:28 - 2012-06-02 23:19 - 00045080 _____ (Microsoft Corporation) C:\Windows\System32\wups2.dll
2014-05-13 18:28 - 2012-06-02 23:19 - 00035864 _____ (Microsoft Corporation) C:\Windows\System32\wups.dll
2014-05-13 18:28 - 2012-06-02 23:12 - 02422272 _____ (Microsoft Corporation) C:\Windows\System32\wucltux.dll
2014-05-13 18:28 - 2012-06-02 23:12 - 00088576 _____ (Microsoft Corporation) C:\Windows\System32\wudriver.dll
2014-05-13 18:28 - 2012-06-02 14:19 - 00171904 _____ (Microsoft Corporation) C:\Windows\System32\wuwebv.dll
2014-05-13 18:28 - 2012-06-02 14:12 - 00033792 _____ (Microsoft Corporation) C:\Windows\System32\wuapp.exe
2014-05-13 18:25 - 2014-05-13 18:26 - 00000000 ____D () C:\users\Alex
2014-05-13 18:25 - 2014-05-13 18:25 - 00000020 ___SH () C:\Users\Alex\ntuser.ini
2014-05-13 18:25 - 2014-05-13 18:25 - 00000000 _SHDL () C:\Users\Public\Documents\Eigene Musik
2014-05-13 18:25 - 2014-05-13 18:25 - 00000000 _SHDL () C:\Users\Public\Documents\Eigene Bilder
2014-05-13 18:25 - 2014-05-13 18:25 - 00000000 _SHDL () C:\Users\Default\Startmenü
2014-05-13 18:25 - 2014-05-13 18:25 - 00000000 _SHDL () C:\Users\Default\Netzwerkumgebung
2014-05-13 18:25 - 2014-05-13 18:25 - 00000000 _SHDL () C:\Users\Default\Druckumgebung
2014-05-13 18:25 - 2014-05-13 18:25 - 00000000 _SHDL () C:\Users\Default\Documents\Eigene Musik
2014-05-13 18:25 - 2014-05-13 18:25 - 00000000 _SHDL () C:\Users\Default\Documents\Eigene Bilder
2014-05-13 18:25 - 2014-05-13 18:25 - 00000000 _SHDL () C:\Users\Default\AppData\Local\Verlauf
2014-05-13 18:25 - 2014-05-13 18:25 - 00000000 _SHDL () C:\Users\Default User\Documents\Eigene Musik
2014-05-13 18:25 - 2014-05-13 18:25 - 00000000 _SHDL () C:\Users\Default User\Documents\Eigene Bilder
2014-05-13 18:25 - 2014-05-13 18:25 - 00000000 _SHDL () C:\Users\Default User\AppData\Local\Verlauf
2014-05-13 18:25 - 2014-05-13 18:25 - 00000000 _SHDL () C:\Users\Alex\Startmenü
2014-05-13 18:25 - 2014-05-13 18:25 - 00000000 _SHDL () C:\Users\Alex\Netzwerkumgebung
2014-05-13 18:25 - 2014-05-13 18:25 - 00000000 _SHDL () C:\Users\Alex\Druckumgebung
2014-05-13 18:25 - 2014-05-13 18:25 - 00000000 _SHDL () C:\Users\Alex\Documents\Eigene Musik
2014-05-13 18:25 - 2014-05-13 18:25 - 00000000 _SHDL () C:\Users\Alex\Documents\Eigene Bilder
2014-05-13 18:25 - 2014-05-13 18:25 - 00000000 _SHDL () C:\Users\Alex\AppData\Local\Verlauf
2014-05-13 18:25 - 2014-05-13 18:25 - 00000000 _SHDL () C:\Programme
2014-05-13 18:25 - 2014-05-13 18:25 - 00000000 _SHDL () C:\ProgramData\Startmenü
2014-05-13 18:25 - 2014-05-13 18:25 - 00000000 _SHDL () C:\ProgramData\Dokumente
2014-05-13 18:25 - 2014-05-13 18:25 - 00000000 __SHD () C:\Recovery
2014-05-13 18:25 - 2014-05-13 18:25 - 00000000 ____D () C:\Users\Alex\AppData\Local\VirtualStore
2014-05-13 18:02 - 2014-05-17 11:29 - 01690900 _____ () C:\Windows\WindowsUpdate.log
2014-05-13 18:02 - 2014-05-13 18:02 - 00000000 ____H () C:\Windows\System32\Drivers\Msft_User_WpdFs_01_09_00.Wdf
2014-05-13 18:00 - 2014-05-13 18:03 - 00001355 _____ () C:\Windows\TSSysprep.log

==================== One Month Modified Files and Folders =======

2014-05-17 14:19 - 2014-05-17 14:05 - 00000000 ____D () C:\FRST
2014-05-17 13:12 - 2009-07-14 05:39 - 00023050 _____ () C:\Windows\setupact.log
2014-05-17 13:09 - 2010-11-20 22:48 - 00005764 _____ () C:\Windows\PFRO.log
2014-05-17 11:29 - 2014-05-13 18:02 - 01690900 _____ () C:\Windows\WindowsUpdate.log
2014-05-14 16:42 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\rescache
2014-05-14 16:19 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\Microsoft.NET
2014-05-14 16:01 - 2010-11-20 22:01 - 01634340 _____ () C:\Windows\System32\PerfStringBackup.INI
2014-05-14 16:00 - 2014-05-14 16:00 - 00000000 ____D () C:\Program Files\Microsoft.NET
2014-05-14 15:46 - 2014-05-14 15:38 - 00013645 _____ () C:\Windows\IE11_main.log
2014-05-14 15:37 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\System32\de-DE
2014-05-14 15:30 - 2009-07-14 05:34 - 00031280 ____H () C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-05-14 15:30 - 2009-07-14 05:34 - 00031280 ____H () C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-05-14 15:24 - 2014-05-14 15:12 - 00107736 _____ (Malwarebytes Corporation) C:\Windows\System32\Drivers\MBAMSwissArmy.sys
2014-05-14 15:22 - 2014-05-14 15:22 - 00000000 ____D () C:\Users\Alex\AppData\Local\Macromedia
2014-05-14 15:21 - 2014-05-14 15:21 - 00692400 _____ (Adobe Systems Incorporated) C:\Windows\System32\FlashPlayerApp.exe
2014-05-14 15:21 - 2014-05-14 15:21 - 00070832 _____ (Adobe Systems Incorporated) C:\Windows\System32\FlashPlayerCPLApp.cpl
2014-05-14 15:21 - 2014-05-14 15:21 - 00000000 ____D () C:\Windows\System32\Macromed
2014-05-14 15:21 - 2014-05-14 15:10 - 00000000 ____D () C:\Users\Alex\AppData\Local\Adobe
2014-05-14 15:13 - 2014-05-14 15:13 - 00000000 ____D () C:\Users\Alex\Downloads\mbar
2014-05-14 15:12 - 2014-05-14 15:12 - 00002098 _____ () C:\Users\Public\Desktop\Foxit Reader.lnk
2014-05-14 15:12 - 2014-05-14 15:12 - 00001060 _____ () C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2014-05-14 15:12 - 2014-05-14 15:12 - 00000000 ____D () C:\Users\Public\Foxit Software
2014-05-14 15:12 - 2014-05-14 15:12 - 00000000 ____D () C:\Users\Alex\AppData\Roaming\Foxit Software
2014-05-14 15:12 - 2014-05-14 15:12 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-05-14 15:12 - 2014-05-14 15:12 - 00000000 ____D () C:\Program Files\ Malwarebytes Anti-Malware 
2014-05-14 15:12 - 2014-05-14 15:12 - 00000000 ____D () C:\Program Files\Foxit Software
2014-05-14 15:12 - 2009-07-14 03:37 - 00000000 ___RD () C:\users\Public
2014-05-14 15:10 - 2014-05-14 15:10 - 00000985 _____ () C:\Users\Public\Desktop\MozBackup.lnk
2014-05-14 15:10 - 2014-05-14 15:10 - 00000000 ____D () C:\Program Files\WinRAR
2014-05-14 15:10 - 2014-05-14 15:10 - 00000000 ____D () C:\Program Files\MozBackup
2014-05-14 15:04 - 2014-05-14 15:13 - 01035926 _____ () C:\Users\Alex\Downloads\mozbackup-1.5.1-en.exe
2014-05-14 11:50 - 2014-05-14 15:13 - 01313061 _____ (Greenshot ) C:\Users\Alex\Downloads\Greenshot-INSTALLER-1.1.9.13.exe
2014-05-14 11:49 - 2014-05-14 15:13 - 01917120 _____ () C:\Users\Alex\Downloads\winrar-x64-51b4.exe
2014-05-14 11:49 - 2014-05-14 15:13 - 01742632 _____ () C:\Users\Alex\Downloads\wrar51b4.exe
2014-05-14 11:47 - 2014-05-14 15:13 - 00791925 _____ () C:\Users\Alex\Downloads\grml1.log
2014-05-14 10:41 - 2014-05-14 15:13 - 39187992 _____ (Foxit Corporation ) C:\Users\Alex\Downloads\FoxitReader620.0429_enu_Setup.exe
2014-05-14 09:54 - 2014-05-14 15:13 - 20772800 _____ (MiniTool Solution Ltd. ) C:\Users\Alex\Downloads\pwhe8.exe
2014-05-13 20:33 - 2014-05-13 20:33 - 00002049 _____ () C:\Users\Public\Desktop\devolo Cockpit.lnk
2014-05-13 20:33 - 2014-05-13 20:33 - 00000000 ____D () C:\Users\Alex\AppData\Roaming\Macromedia
2014-05-13 20:33 - 2014-05-13 20:33 - 00000000 ____D () C:\Users\Alex\AppData\Roaming\de.devolo.dLAN.Cockpit
2014-05-13 20:33 - 2014-05-13 20:33 - 00000000 ____D () C:\Users\Alex\AppData\Roaming\Adobe
2014-05-13 20:33 - 2014-05-13 20:33 - 00000000 ____D () C:\Program Files\devolo
2014-05-13 20:32 - 2014-05-13 20:32 - 23114232 _____ (devolo AG) C:\Users\Alex\Downloads\software-dlan-cockpit-windows-4-2-1.exe
2014-05-13 20:00 - 2014-05-13 20:00 - 00000000 ____H () C:\Windows\System32\Drivers\Msft_User_WpdMtpDr_01_09_00.Wdf
2014-05-13 20:00 - 2014-05-13 19:56 - 00000000 ____D () C:\Users\Alex\AppData\Roaming\Apple Computer
2014-05-13 19:57 - 2014-05-13 19:57 - 00057560 _____ () C:\Users\Alex\AppData\Local\GDIPFONTCACHEV1.DAT
2014-05-13 19:56 - 2014-05-13 19:56 - 00001753 _____ () C:\Users\Public\Desktop\iTunes.lnk
2014-05-13 19:56 - 2014-05-13 19:56 - 00000000 ____D () C:\Users\Alex\AppData\Local\Apple Computer
2014-05-13 19:56 - 2014-05-13 19:56 - 00000000 ____D () C:\ProgramData\Apple Computer
2014-05-13 19:56 - 2014-05-13 19:56 - 00000000 ____D () C:\ProgramData\188F1432-103A-4ffb-80F1-36B633C5C9E1
2014-05-13 19:56 - 2014-05-13 19:56 - 00000000 ____D () C:\Program Files\iTunes
2014-05-13 19:56 - 2014-05-13 19:56 - 00000000 ____D () C:\Program Files\iPod
2014-05-13 19:56 - 2014-05-13 19:54 - 00000000 ____D () C:\Program Files\Common Files\Apple
2014-05-13 19:55 - 2014-05-13 19:55 - 00000000 ____D () C:\Users\Alex\AppData\Local\Apple
2014-05-13 19:55 - 2014-05-13 19:55 - 00000000 ____D () C:\Program Files\Bonjour
2014-05-13 19:55 - 2014-05-13 19:55 - 00000000 ____D () C:\Program Files\Apple Software Update
2014-05-13 19:55 - 2014-05-13 19:54 - 00000000 ____D () C:\ProgramData\Apple
2014-05-13 19:54 - 2014-05-13 19:53 - 137699152 _____ (Apple Inc.) C:\Users\Alex\Downloads\iTunesSetup.exe
2014-05-13 19:48 - 2014-05-13 19:47 - 00000000 ____D () C:\Users\Alex\AppData\Roaming\Mozilla
2014-05-13 19:48 - 2014-05-13 19:47 - 00000000 ____D () C:\Users\Alex\AppData\Local\Mozilla
2014-05-13 19:47 - 2014-05-13 19:47 - 00001105 _____ () C:\Users\Public\Desktop\Mozilla Firefox.lnk
2014-05-13 19:47 - 2014-05-13 19:47 - 00000000 ____D () C:\ProgramData\Mozilla
2014-05-13 19:47 - 2014-05-13 19:47 - 00000000 ____D () C:\Program Files\Mozilla Maintenance Service
2014-05-13 19:47 - 2014-05-13 19:47 - 00000000 ____D () C:\Program Files\Mozilla Firefox
2014-05-13 19:42 - 2009-07-14 05:33 - 00265640 _____ () C:\Windows\System32\FNTCACHE.DAT
2014-05-13 19:40 - 2011-04-12 02:39 - 00000000 ____D () C:\Program Files\Windows Journal
2014-05-13 19:40 - 2009-07-14 05:52 - 00000000 ____D () C:\Program Files\Windows Defender
2014-05-13 19:40 - 2009-07-14 03:37 - 00000000 ____D () C:\Program Files\Common Files\System
2014-05-13 19:38 - 2014-05-13 19:38 - 04527616 _____ () C:\Users\Alex\Downloads\RogueKillerX64.exe
2014-05-13 19:38 - 2014-05-13 19:38 - 03972608 _____ () C:\Users\Alex\Downloads\RogueKiller.exe
2014-05-13 19:38 - 2014-05-13 19:37 - 00283144 _____ (Mozilla) C:\Users\Alex\Downloads\Firefox Setup Stub 29.0.1.exe
2014-05-13 19:34 - 2014-05-13 19:34 - 00000000 ____D () C:\Users\Alex\Downloads\SevenLoader
2014-05-13 18:56 - 2014-05-14 15:11 - 00591872 _____ (www.winmd5.com) C:\Users\Alex\Desktop\WinMD5.exe
2014-05-13 18:56 - 2014-05-13 19:34 - 00591872 _____ (www.winmd5.com) C:\Users\Alex\Downloads\WinMD5.exe
2014-05-13 18:39 - 2009-07-14 05:57 - 00025600 ___SH () C:\Windows\System32\config\BCD-Template.LOG
2014-05-13 18:39 - 2009-07-14 05:52 - 00028672 _____ () C:\Windows\System32\config\BCD-Template
2014-05-13 18:27 - 2009-07-14 05:52 - 00000000 ____D () C:\Windows\System32\restore
2014-05-13 18:26 - 2014-05-13 18:25 - 00000000 ____D () C:\users\Alex
2014-05-13 18:25 - 2014-05-13 18:40 - 00000000 ____D () C:\Windows\Panther
2014-05-13 18:25 - 2014-05-13 18:25 - 00000020 ___SH () C:\Users\Alex\ntuser.ini
2014-05-13 18:25 - 2014-05-13 18:25 - 00000000 _SHDL () C:\Users\Public\Documents\Eigene Musik
2014-05-13 18:25 - 2014-05-13 18:25 - 00000000 _SHDL () C:\Users\Public\Documents\Eigene Bilder
2014-05-13 18:25 - 2014-05-13 18:25 - 00000000 _SHDL () C:\Users\Default\Startmenü
2014-05-13 18:25 - 2014-05-13 18:25 - 00000000 _SHDL () C:\Users\Default\Netzwerkumgebung
2014-05-13 18:25 - 2014-05-13 18:25 - 00000000 _SHDL () C:\Users\Default\Druckumgebung
2014-05-13 18:25 - 2014-05-13 18:25 - 00000000 _SHDL () C:\Users\Default\Documents\Eigene Musik
2014-05-13 18:25 - 2014-05-13 18:25 - 00000000 _SHDL () C:\Users\Default\Documents\Eigene Bilder
2014-05-13 18:25 - 2014-05-13 18:25 - 00000000 _SHDL () C:\Users\Default\AppData\Local\Verlauf
2014-05-13 18:25 - 2014-05-13 18:25 - 00000000 _SHDL () C:\Users\Default User\Documents\Eigene Musik
2014-05-13 18:25 - 2014-05-13 18:25 - 00000000 _SHDL () C:\Users\Default User\Documents\Eigene Bilder
2014-05-13 18:25 - 2014-05-13 18:25 - 00000000 _SHDL () C:\Users\Default User\AppData\Local\Verlauf
2014-05-13 18:25 - 2014-05-13 18:25 - 00000000 _SHDL () C:\Users\Alex\Startmenü
2014-05-13 18:25 - 2014-05-13 18:25 - 00000000 _SHDL () C:\Users\Alex\Netzwerkumgebung
2014-05-13 18:25 - 2014-05-13 18:25 - 00000000 _SHDL () C:\Users\Alex\Druckumgebung
2014-05-13 18:25 - 2014-05-13 18:25 - 00000000 _SHDL () C:\Users\Alex\Documents\Eigene Musik
2014-05-13 18:25 - 2014-05-13 18:25 - 00000000 _SHDL () C:\Users\Alex\Documents\Eigene Bilder
2014-05-13 18:25 - 2014-05-13 18:25 - 00000000 _SHDL () C:\Users\Alex\AppData\Local\Verlauf
2014-05-13 18:25 - 2014-05-13 18:25 - 00000000 _SHDL () C:\Programme
2014-05-13 18:25 - 2014-05-13 18:25 - 00000000 _SHDL () C:\ProgramData\Startmenü
2014-05-13 18:25 - 2014-05-13 18:25 - 00000000 _SHDL () C:\ProgramData\Dokumente
2014-05-13 18:25 - 2014-05-13 18:25 - 00000000 __SHD () C:\Recovery
2014-05-13 18:25 - 2014-05-13 18:25 - 00000000 ____D () C:\Users\Alex\AppData\Local\VirtualStore
2014-05-13 18:25 - 2009-07-14 03:37 - 00000000 __RHD () C:\users\Default
2014-05-13 18:25 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\System32\Recovery
2014-05-13 18:25 - 2009-07-14 03:37 - 00000000 ____D () C:\Program Files\Windows NT
2014-05-13 18:03 - 2014-05-13 18:00 - 00001355 _____ () C:\Windows\TSSysprep.log
2014-05-13 18:02 - 2014-05-13 18:02 - 00000000 ____H () C:\Windows\System32\Drivers\Msft_User_WpdFs_01_09_00.Wdf
2014-05-13 18:00 - 2011-04-12 02:39 - 00000000 ____D () C:\Windows\CSC
2014-05-13 18:00 - 2009-07-14 05:34 - 00002790 _____ () C:\Windows\DtcInstall.log
2014-05-13 17:30 - 2014-05-13 19:34 - 17305616 _____ (Malwarebytes Corporation ) C:\Users\Alex\Downloads\mbam-setup-2.0.1.1004.exe
2014-05-13 17:30 - 2014-05-13 19:34 - 12589848 _____ (Malwarebytes Corp.) C:\Users\Alex\Downloads\mbar-1.07.0.1009.exe
2014-05-13 17:27 - 2014-05-13 19:34 - 00380416 _____ () C:\Users\Alex\Downloads\gmer.exe
2014-05-13 17:26 - 2014-05-13 19:34 - 01325827 _____ () C:\Users\Alex\Downloads\AdwCleaner.exe
2014-05-13 17:24 - 2014-05-13 19:34 - 04164448 _____ (Kaspersky Lab ZAO) C:\Users\Alex\Downloads\tdsskiller.exe
2014-05-13 17:23 - 2014-05-13 19:34 - 04745728 _____ (AVAST Software) C:\Users\Alex\Downloads\aswmbr.exe
2014-05-13 17:22 - 2014-05-13 19:34 - 00370943 _____ () C:\Users\Alex\Downloads\gmer.zip
2014-05-05 19:39 - 2014-05-13 19:03 - 06041600 _____ (Microsoft Corporation) C:\Windows\System32\mshtml.dll
2014-05-05 19:39 - 2014-05-13 19:03 - 00067584 _____ (Microsoft Corporation) C:\Windows\System32\mshtmled.dll
2014-05-05 16:50 - 2014-05-13 19:03 - 01638912 _____ (Microsoft Corporation) C:\Windows\System32\mshtml.tlb

Some content of TEMP:
====================
C:\Users\Alex\AppData\Local\Temp\ntdll_dump.dll


==================== Known DLLs (Whitelisted) ============


==================== Bamital & volsnap Check =================

C:\Windows\explorer.exe => MD5 is legit
C:\Windows\System32\winlogon.exe
[2014-05-13 19:02] - [2014-03-04 10:17] - 0304128 ____A (Microsoft Corporation) 998507B046BA314CE8245364C686FA67

C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit

==================== EXE ASSOCIATION =====================

HKLM\...\.exe: exefile => OK
HKLM\...\exefile\DefaultIcon: %1 => OK
HKLM\...\exefile\open\command: "%1" %* => OK

==================== Restore Points  =========================

Restore point made on: 2014-05-13 18:28:02
Restore point made on: 2014-05-13 18:42:49
Restore point made on: 2014-05-13 19:04:17
Restore point made on: 2014-05-13 19:55:32
Restore point made on: 2014-05-14 15:37:37

==================== Memory info =========================== 

Percentage of memory in use: 19%
Total physical RAM: 2038.18 MB
Available physical RAM: 1636.8 MB
Total Pagefile: 2038.18 MB
Available Pagefile: 1640.23 MB
Total Virtual: 2047.88 MB
Available Virtual: 1960.8 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:148.95 GB) (Free:131.08 GB) NTFS
Drive f: (INTENSO) (Removable) (Total:14.44 GB) (Free:14.43 GB) FAT32
Drive x: (Boot) (Fixed) (Total:0.03 GB) (Free:0.03 GB) NTFS
Drive y: (System-reserviert) (Fixed) (Total:0.1 GB) (Free:0.07 GB) NTFS ==>[System with boot components (obtained from reading drive)]

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 149 GB) (Disk ID: E36C91F0)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=149 GB) - (Type=07 NTFS)

========================================================
Disk: 1 (Size: 14 GB) (Disk ID: C053D367)
Partition 1: (Not Active) - (Size=14 GB) - (Type=0C)


LastRegBack: 2014-05-13 20:56

==================== End Of Log ============================

 

Themen zu LOGfile zur Auswertung
adobe, appdata, association, auswertung, avast, check, desktop, download, explorer, explorer.exe, fcupdateservice.exe, free, icon, kaspersky, link, logfile, malwarebytes, recovery, registry, scan, secur, services.exe, software, svchost.exe, system, system32, usb


« Chrome kann nicht deinstalliert werden (Snap.do) | Gestern (11.5.) Trojaner über Facebook eingefangen, antimaleware hat 41 Objekte gefunden. Sind in Quarantäne. Wie geht es weiter? Log folgt »


Ähnliche Themen: LOGfile zur Auswertung


  1. win 7, logfile auswertung.
    Log-Analyse und Auswertung - 28.05.2015 (10)
  2. Logfile Auswertung
    Log-Analyse und Auswertung - 22.09.2014 (12)
  3. Logfile Auswertung?
    Log-Analyse und Auswertung - 01.10.2013 (7)
  4. Logfile auswertung von OTL
    Log-Analyse und Auswertung - 29.07.2013 (9)
  5. OTL Logfile Auswertung
    Plagegeister aller Art und deren Bekämpfung - 13.10.2012 (5)
  6. Auswertung der HJT-Logfile
    Log-Analyse und Auswertung - 19.06.2010 (12)
  7. Logfile auswertung
    Mülltonne - 06.09.2008 (0)
  8. LogFile Auswertung
    Log-Analyse und Auswertung - 22.03.2008 (4)
  9. Logfile-Auswertung
    Mülltonne - 11.02.2008 (0)
  10. Auswertung logfile
    Log-Analyse und Auswertung - 29.04.2007 (9)
  11. Auswertung des Logfile
    Log-Analyse und Auswertung - 29.04.2007 (1)
  12. Logfile Auswertung
    Log-Analyse und Auswertung - 23.05.2005 (1)
  13. Logfile Auswertung
    Log-Analyse und Auswertung - 16.05.2005 (0)
  14. logfile auswertung
    Log-Analyse und Auswertung - 07.04.2005 (1)
  15. Logfile/Auswertung
    Log-Analyse und Auswertung - 24.02.2005 (12)
  16. Logfile-Auswertung
    Log-Analyse und Auswertung - 07.12.2004 (8)
  17. logfile auswertung
    Log-Analyse und Auswertung - 27.11.2004 (10)
Anleitungen und Tipps

- Für alle Hilfesuchenden! Was beachten?

- Anleitung: MyStartSearch.com entfernen

- Anleitung: WebSearches löschen

- Hilfe: iStartSurf entfernen – so gehts!

- Anleitung: Omiga Plus richtig entfernen

- Browser Viren entfernen


Zum Thema LOGfile zur Auswertung - Code: Alles auswählen Aufklappen ATTFilter Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version:01-05-2014 Ran by SYSTEM on MININT-ILU8F1R on 17-05-2014 14:19:01 Running from F:\ Windows 7 Professional Service - LOGfile zur Auswertung...
Archiv
Du betrachtest: LOGfile zur Auswertung auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130 131