Zurück   Trojaner-Board > Malware entfernen > Log-Analyse und Auswertung
Windows 7 EsetScan meldet "Win32/Toolbar.Montiera" und weitere Funde

Windows 7 EsetScan meldet "Win32/Toolbar.Montiera" und weitere Funde


Log-Analyse und Auswertung: Windows 7 EsetScan meldet "Win32/Toolbar.Montiera" und weitere Funde

Windows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML.

Antwort
Alt 20.05.2014, 17:17   #1
Fl!tsche
 
Windows 7 EsetScan meldet "Win32/Toolbar.Montiera" und weitere Funde - Standard

Windows 7 EsetScan meldet "Win32/Toolbar.Montiera" und weitere Funde


Adw-Log:

Code:
ATTFilter
# AdwCleaner v3.210 - Bericht erstellt am 20/05/2014 um 16:29:58
# Aktualisiert 19/05/2014 von Xplode
# Betriebssystem : Windows 7 Home Premium Service Pack 1 (64 bits)
# Benutzername : Andrea 2 - PRECISION_M6400
# Gestartet von : C:\Users\Andrea\Desktop\adwcleaner_3.210.exe
# Option : Löschen

***** [ Dienste ] *****


***** [ Dateien / Ordner ] *****

Datei Gelöscht : C:\Users\Andrea\AppData\Roaming\Mozilla\Firefox\Profiles\dcw0gby5.default\user.js

***** [ Verknüpfungen ] *****


***** [ Registrierungsdatenbank ] *****

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Iminent
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{C007DADD-132A-624C-088E-59EE6CF0711F}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{84FF7BD6-B47F-46F8-9130-01B2696B36CB}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{68B81CCD-A80C-4060-8947-5AE69ED01199}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E6B969FB-6D33-48D2-9061-8BBD4899EB08}
Schlüssel Gelöscht : HKLM\Software\Iminent
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\1ClickDownload

***** [ Browser ] *****

-\\ Internet Explorer v11.0.9600.17041


*************************

AdwCleaner[R0].txt - [1555 octets] - [20/05/2014 16:24:08]
AdwCleaner[S0].txt - [1478 octets] - [20/05/2014 16:29:58]

########## EOF - \AdwCleaner\AdwCleaner[S0].txt - [1538 octets] ##########
JRT-Log:

Code:
ATTFilter
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.1.4 (04.06.2014:1)
OS: Windows 7 Home Premium x64
Ran by Andrea 2 on 20.05.2014 at 17:03:43,42
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values



~~~ Registry Keys



~~~ Files



~~~ Folders



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 20.05.2014 at 17:09:06,41
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
bei FRST kam kein "Addition.txt"-Log

nur der FRST-Log:

FRST Logfile:

FRST Logfile:

FRST Logfile:
Code:
ATTFilter
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 17-05-2014
Ran by Andrea 2 (administrator) on PRECISION_M6400 on 20-05-2014 17:25:58
Running from C:\Users\Andrea\Desktop
Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: German Standard
Internet Explorer Version 11
Boot Mode: Normal



==================== Processes (Whitelisted) =================

(Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [MSC] => c:\Program Files\Microsoft Security Client\msseces.exe [1271072 2014-03-11] (Microsoft Corporation)
HKLM\...\RunOnce: [*WerKernelReporting] - %SYSTEMROOT%\SYSTEM32\WerFault.exe -k -rq [415232 2009-07-14] (Microsoft Corporation)
HKLM\...\RunOnce: [*Restore] - C:\Windows\system32\rstrui.exe /RUNONCE [296960 2010-11-21] (Microsoft Corporation)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
SearchScopes: HKCU - {637D6E3C-DF93-48A5-8362-159A8AC56B11} URL = hxxp://www.google.com/search?hl=en&q={searchTerms}&meta=
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1

FireFox:
========
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_13_0_0_214.dll ()
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_13_0_0_214.dll ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml

==================== Services (Whitelisted) =================

R2 MsMpSvc; c:\Program Files\Microsoft Security Client\MsMpEng.exe [23808 2014-03-11] (Microsoft Corporation)
S3 NisSrv; c:\Program Files\Microsoft Security Client\NisSrv.exe [347872 2014-03-11] (Microsoft Corporation)

==================== Drivers (Whitelisted) ====================

U5 AppMgmt; C:\Windows\system32\svchost.exe [27136 2009-07-14] (Microsoft Corporation)
U5 BTHPORT; C:\Windows\System32\Drivers\BTHPORT.sys [552960 2013-10-09] (Microsoft Corporation)
R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [268512 2014-01-25] (Microsoft Corporation)
S3 NisDrv; C:\Windows\System32\DRIVERS\NisDrvWFP.sys [133928 2014-03-11] (Microsoft Corporation)
R3 tifm21; C:\Windows\System32\drivers\tifm21.sys [319488 2009-06-19] (Texas Instruments)

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-05-20 17:25 - 2014-05-20 17:25 - 00004004 _____ () C:\Users\Andrea\Desktop\FRST.txt
2014-05-20 17:20 - 2014-05-20 17:20 - 02067456 _____ (Farbar) C:\Users\Andrea\Desktop\FRST64.exe
2014-05-20 17:09 - 2014-05-20 17:09 - 00000628 _____ () C:\Users\Andrea 2\Desktop\JRT.txt
2014-05-20 17:03 - 2014-05-20 17:03 - 00000000 ____D () C:\Windows\ERUNT
2014-05-20 16:59 - 2014-05-20 16:59 - 01016261 _____ (Thisisu) C:\Users\Andrea\Desktop\JRT.exe
2014-05-20 16:20 - 2014-05-20 16:29 - 00000000 ____D () C:\AdwCleaner
2014-05-20 16:19 - 2014-05-20 16:19 - 01326389 _____ () C:\Users\Andrea\Desktop\adwcleaner_3.210.exe
2014-05-20 14:18 - 2014-05-20 14:18 - 00015040 _____ () C:\ComboFix.txt
2014-05-20 14:12 - 2014-05-20 14:18 - 00000000 ____D () C:\Qoobox
2014-05-20 14:12 - 2014-05-20 14:17 - 00000000 ____D () C:\Windows\erdnt
2014-05-20 14:12 - 2011-06-26 08:45 - 00256000 _____ () C:\Windows\PEV.exe
2014-05-20 14:12 - 2010-11-07 19:20 - 00208896 _____ () C:\Windows\MBR.exe
2014-05-20 14:12 - 2009-04-20 06:56 - 00060416 _____ (NirSoft) C:\Windows\NIRCMD.exe
2014-05-20 14:12 - 2000-08-31 02:00 - 00518144 _____ (SteelWerX) C:\Windows\SWREG.exe
2014-05-20 14:12 - 2000-08-31 02:00 - 00406528 _____ (SteelWerX) C:\Windows\SWSC.exe
2014-05-20 14:12 - 2000-08-31 02:00 - 00098816 _____ () C:\Windows\sed.exe
2014-05-20 14:12 - 2000-08-31 02:00 - 00080412 _____ () C:\Windows\grep.exe
2014-05-20 14:12 - 2000-08-31 02:00 - 00068096 _____ () C:\Windows\zip.exe
2014-05-20 13:51 - 2014-05-20 13:51 - 05200426 ____R (Swearware) C:\Users\Andrea\Desktop\ComboFix.exe
2014-05-20 00:18 - 2014-05-20 00:18 - 00000000 ____D () C:\Users\Andrea\AppData\Local\Apps\2.0
2014-05-19 18:10 - 2014-05-19 18:10 - 00001421 _____ () C:\Users\Andrea\Desktop\Internet Explorer.lnk
2014-05-19 17:33 - 2014-05-19 17:33 - 00000000 ____D () C:\Users\Andrea 2\AppData\Local\Microsoft Help
2014-05-19 12:35 - 2014-05-19 12:35 - 00000000 ____D () C:\Users\Andrea\AppData\Roaming\Apple Computer
2014-05-18 23:31 - 2014-05-19 21:46 - 00000445 _____ () C:\Windows\system32\Drivers\etc\hosts.ics
2014-05-18 23:31 - 2014-05-11 23:54 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_User_wpdcomp_01_09_00.Wdf
2014-05-18 23:31 - 2014-04-01 04:04 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_ggsemc_01009.Wdf
2014-05-18 23:31 - 2014-04-01 04:04 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_ggflt_01009.Wdf
2014-05-18 23:31 - 2014-04-01 04:00 - 00027760 _____ (Sony Ericsson Mobile Communications) C:\Windows\system32\Drivers\ggsemc.sys
2014-05-18 23:31 - 2014-04-01 04:00 - 00014448 _____ (Sony Ericsson Mobile Communications) C:\Windows\system32\Drivers\ggflt.sys
2014-05-18 23:31 - 2014-02-07 01:59 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_netaapl64_01009.Wdf
2014-05-18 23:31 - 2014-02-06 21:26 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_User_WpdMtpDr_01_09_00.Wdf
2014-05-18 23:31 - 2014-02-01 21:20 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_cvusbdrv_01005.Wdf
2014-05-18 23:31 - 2014-02-01 17:20 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_User_WUDFUsbccidDriver_01_09_00.Wdf
2014-05-18 23:31 - 2014-02-01 17:19 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_User_WpdFs_01_09_00.Wdf
2014-05-18 23:31 - 2013-10-09 21:35 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbcir.sys
2014-05-18 23:31 - 2013-10-09 21:34 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys
2014-05-18 23:31 - 2013-10-09 21:34 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys
2014-05-18 23:31 - 2013-10-09 20:41 - 00552960 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bthport.sys
2014-05-18 23:31 - 2013-10-09 19:48 - 00080384 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\BTHUSB.SYS
2014-05-18 23:31 - 2013-10-09 19:44 - 00410496 _____ (Intel Corporation) C:\Windows\system32\Drivers\iaStorV.sys
2014-05-18 23:31 - 2013-10-09 19:44 - 00166272 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvstor.sys
2014-05-18 23:31 - 2013-10-09 19:44 - 00148352 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvraid.sys
2014-05-18 23:31 - 2013-10-09 19:44 - 00107904 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\amdsata.sys
2014-05-18 23:31 - 2013-10-09 19:44 - 00027008 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\amdxata.sys
2014-05-18 23:31 - 2013-09-17 15:17 - 00239320 _____ (ESET) C:\Windows\system32\Drivers\eamonm.sys
2014-05-18 23:31 - 2013-09-17 15:17 - 00239296 _____ (ESET) C:\Windows\system32\Drivers\edevmon.sys
2014-05-18 23:31 - 2013-09-17 15:17 - 00220232 _____ (ESET) C:\Windows\system32\Drivers\epfw.sys
2014-05-18 23:31 - 2013-09-17 15:17 - 00168256 _____ (ESET) C:\Windows\system32\Drivers\ehdrv.sys
2014-05-18 23:31 - 2013-09-17 15:17 - 00062136 _____ (ESET) C:\Windows\system32\Drivers\epfwwfp.sys
2014-05-18 23:31 - 2013-09-17 15:17 - 00044120 _____ (ESET) C:\Windows\system32\Drivers\EpfwLWF.sys
2014-05-18 23:31 - 2013-08-06 16:13 - 00023040 _____ (Apple Inc.) C:\Windows\system32\Drivers\netaapl64.sys
2014-05-18 23:31 - 2013-03-18 17:51 - 00054784 _____ (Apple, Inc.) C:\Windows\system32\Drivers\usbaapl64.sys
2014-05-18 23:31 - 2012-08-23 16:08 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\TsUsbGD.sys
2014-05-18 23:31 - 2011-02-16 16:53 - 00014464 _____ (Western Digital Technologies) C:\Windows\system32\Drivers\wdcsam64.sys
2014-05-18 23:31 - 2010-11-21 05:23 - 00215936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\vhdmp.sys
2014-05-18 23:31 - 2010-11-21 05:23 - 00155008 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mpio.sys
2014-05-18 23:31 - 2010-11-21 05:23 - 00140672 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msdsm.sys
2014-05-18 23:31 - 2010-11-21 05:23 - 00103808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\sbp2port.sys
2014-05-18 23:31 - 2010-11-21 05:23 - 00078848 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\IPMIDrv.sys
2014-05-18 23:31 - 2010-11-21 05:23 - 00078720 _____ (Hewlett-Packard Company) C:\Windows\system32\Drivers\HpSAMD.sys
2014-05-18 23:31 - 2010-11-21 05:23 - 00031104 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msahci.sys
2014-05-18 23:31 - 2010-11-21 05:23 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\sffp_sd.sys
2014-05-18 23:31 - 2010-11-21 05:23 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\acpipmi.sys
2014-05-18 23:31 - 2010-07-25 02:35 - 06858240 _____ (ATI Technologies Inc.) C:\Windows\system32\Drivers\atikmdag.sys
2014-05-18 23:31 - 2010-07-25 00:55 - 00264192 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\atikmpag.sys
2014-05-18 23:31 - 2010-07-25 00:54 - 00053248 _____ (ATI Technologies Inc.) C:\Windows\system32\Drivers\ati2erec.dll
2014-05-18 23:31 - 2010-07-22 04:19 - 00515584 _____ (IDT, Inc.) C:\Windows\system32\Drivers\stwrt64.sys
2014-05-18 23:31 - 2010-07-15 10:47 - 00116240 _____ (ATI Technologies, Inc.) C:\Windows\system32\Drivers\AtihdW76.sys
2014-05-18 23:31 - 2010-02-01 23:21 - 00047632 _____ (CACE Technologies, Inc.) C:\Windows\system32\Drivers\npf.sys
2014-05-18 23:31 - 2010-02-01 23:20 - 03058168 _____ (Broadcom Corporation) C:\Windows\system32\Drivers\BCMWL664.SYS
2014-05-18 23:31 - 2010-02-01 23:20 - 00022520 _____ (Broadcom Corporation) C:\Windows\system32\Drivers\bcm42rly.sys
2014-05-18 23:31 - 2009-11-03 18:40 - 00038440 _____ (Broadcom Corporation) C:\Windows\system32\Drivers\cvusbdrv.sys
2014-05-18 23:31 - 2009-07-14 03:52 - 00491088 _____ (Adaptec, Inc.) C:\Windows\system32\Drivers\adp94xx.sys
2014-05-18 23:31 - 2009-07-14 03:52 - 00339536 _____ (Adaptec, Inc.) C:\Windows\system32\Drivers\adpahci.sys
2014-05-18 23:31 - 2009-07-14 03:52 - 00194128 _____ (AMD Technologies Inc.) C:\Windows\system32\Drivers\amdsbs.sys
2014-05-18 23:31 - 2009-07-14 03:52 - 00182864 _____ (Adaptec, Inc.) C:\Windows\system32\Drivers\adpu320.sys
2014-05-18 23:31 - 2009-07-14 03:52 - 00097856 _____ (Adaptec, Inc.) C:\Windows\system32\Drivers\arcsas.sys
2014-05-18 23:31 - 2009-07-14 03:52 - 00087632 _____ (Adaptec, Inc.) C:\Windows\system32\Drivers\arc.sys
2014-05-18 23:31 - 2009-07-14 03:52 - 00061008 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\AGP440.sys
2014-05-18 23:31 - 2009-07-14 03:52 - 00021584 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\compbatt.sys
2014-05-18 23:31 - 2009-07-14 03:52 - 00017488 _____ (CMD Technology, Inc.) C:\Windows\system32\Drivers\cmdide.sys
2014-05-18 23:31 - 2009-07-14 03:52 - 00015440 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\amdide.sys
2014-05-18 23:31 - 2009-07-14 03:52 - 00015440 _____ (Acer Laboratories Inc.) C:\Windows\system32\Drivers\aliide.sys
2014-05-18 23:31 - 2009-07-14 03:48 - 00284736 _____ (LSI Corporation, Inc.) C:\Windows\system32\Drivers\MegaSR.sys
2014-05-18 23:31 - 2009-07-14 03:48 - 00122960 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\NV_AGP.SYS
2014-05-18 23:31 - 2009-07-14 03:48 - 00115776 _____ (LSI Corporation) C:\Windows\system32\Drivers\lsi_scsi.sys
2014-05-18 23:31 - 2009-07-14 03:48 - 00114752 _____ (LSI Corporation) C:\Windows\system32\Drivers\lsi_fc.sys
2014-05-18 23:31 - 2009-07-14 03:48 - 00106560 _____ (LSI Corporation) C:\Windows\system32\Drivers\lsi_sas.sys
2014-05-18 23:31 - 2009-07-14 03:48 - 00065600 _____ (LSI Corporation) C:\Windows\system32\Drivers\lsi_sas2.sys
2014-05-18 23:31 - 2009-07-14 03:48 - 00051264 _____ (IBM Corporation) C:\Windows\system32\Drivers\nfrd960.sys
2014-05-18 23:31 - 2009-07-14 03:48 - 00044112 _____ (Intel Corp./ICP vortex GmbH) C:\Windows\system32\Drivers\iirsp.sys
2014-05-18 23:31 - 2009-07-14 03:48 - 00035392 _____ (LSI Corporation) C:\Windows\system32\Drivers\megasas.sys
2014-05-18 23:31 - 2009-07-14 03:48 - 00020544 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\isapnp.sys
2014-05-18 23:31 - 2009-07-14 03:48 - 00016960 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\intelide.sys
2014-05-18 23:31 - 2009-07-14 03:47 - 00530496 _____ (Emulex) C:\Windows\system32\Drivers\elxstor.sys
2014-05-18 23:31 - 2009-07-14 03:47 - 00065088 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\GAGP30KX.SYS
2014-05-18 23:31 - 2009-07-14 03:47 - 00024144 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\crcdisk.sys
2014-05-18 23:31 - 2009-07-14 03:45 - 01524816 _____ (QLogic Corporation) C:\Windows\system32\Drivers\ql2300.sys
2014-05-18 23:31 - 2009-07-14 03:45 - 00161872 _____ (VIA Technologies Inc.,Ltd) C:\Windows\system32\Drivers\vsmraid.sys
2014-05-18 23:31 - 2009-07-14 03:45 - 00128592 _____ (QLogic Corporation) C:\Windows\system32\Drivers\ql40xx.sys
2014-05-18 23:31 - 2009-07-14 03:45 - 00080464 _____ (Silicon Integrated Systems) C:\Windows\system32\Drivers\sisraid4.sys
2014-05-18 23:31 - 2009-07-14 03:45 - 00064592 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ULIAGPKX.SYS
2014-05-18 23:31 - 2009-07-14 03:45 - 00064080 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\UAGP35.SYS
2014-05-18 23:31 - 2009-07-14 03:45 - 00043584 _____ (Silicon Integrated Systems Corp.) C:\Windows\system32\Drivers\sisraid2.sys
2014-05-18 23:31 - 2009-07-14 03:45 - 00024656 _____ (Promise Technology) C:\Windows\system32\Drivers\stexstor.sys
2014-05-18 23:31 - 2009-07-14 03:45 - 00021056 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wd.sys
2014-05-18 23:31 - 2009-07-14 03:45 - 00017488 _____ (VIA Technologies, Inc.) C:\Windows\system32\Drivers\viaide.sys
2014-05-18 23:31 - 2009-07-14 03:45 - 00012496 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\swenum.sys
2014-05-18 23:31 - 2009-07-14 03:45 - 00012352 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pciide.sys
2014-05-18 23:31 - 2009-07-14 03:19 - 00286720 _____ (Brother Industries Ltd.) C:\Windows\system32\Drivers\BrSerId.sys
2014-05-18 23:31 - 2009-07-14 02:38 - 00025088 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbprint.sys
2014-05-18 23:31 - 2009-07-14 02:17 - 00024064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpbus.sys
2014-05-18 23:31 - 2009-07-14 02:07 - 00118784 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bthpan.sys
2014-05-18 23:31 - 2009-07-14 02:06 - 00158720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rfcomm.sys
2014-05-18 23:31 - 2009-07-14 02:06 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidbth.sys
2014-05-18 23:31 - 2009-07-14 02:06 - 00072832 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ohci1394.sys
2014-05-18 23:31 - 2009-07-14 02:06 - 00072192 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bthmodem.sys
2014-05-18 23:31 - 2009-07-14 02:06 - 00068096 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\1394bus.sys
2014-05-18 23:31 - 2009-07-14 02:06 - 00046592 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidir.sys
2014-05-18 23:31 - 2009-07-14 02:06 - 00045568 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\circlass.sys
2014-05-18 23:31 - 2009-07-14 02:06 - 00041984 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bthenum.sys
2014-05-18 23:31 - 2009-07-14 02:06 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\umpass.sys
2014-05-18 23:31 - 2009-07-14 02:02 - 00027776 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wacompen.sys
2014-05-18 23:31 - 2009-07-14 02:02 - 00015360 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\MTConfig.sys
2014-05-18 23:31 - 2009-07-14 02:01 - 00016896 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\sfloppy.sys
2014-05-18 23:31 - 2009-07-14 02:01 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\sffdisk.sys
2014-05-18 23:31 - 2009-07-14 02:01 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\sffp_mmc.sys
2014-05-18 23:31 - 2009-07-14 02:00 - 00097280 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\parport.sys
2014-05-18 23:31 - 2009-07-14 02:00 - 00094208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\serial.sys
2014-05-18 23:31 - 2009-07-14 02:00 - 00029696 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fdc.sys
2014-05-18 23:31 - 2009-07-14 02:00 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\flpydisk.sys
2014-05-18 23:31 - 2009-07-14 02:00 - 00023552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\serenum.sys
2014-05-18 23:31 - 2009-07-14 01:35 - 00045056 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\blbdrive.sys
2014-05-18 23:31 - 2009-07-14 01:31 - 00026624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidbatt.sys
2014-05-18 23:31 - 2009-07-14 01:31 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\errdev.sys
2014-05-18 23:31 - 2009-07-14 01:19 - 00064512 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\amdk8.sys
2014-05-18 23:31 - 2009-07-14 01:19 - 00060928 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\amdppm.sys
2014-05-18 23:31 - 2009-07-14 01:19 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\processr.sys
2014-05-18 23:31 - 2009-07-01 12:46 - 00132648 _____ (Broadcom Corporation.) C:\Windows\system32\Drivers\btwavdt.sys
2014-05-18 23:31 - 2009-07-01 12:46 - 00098344 _____ (Broadcom Corporation.) C:\Windows\system32\Drivers\btwaudio.sys
2014-05-18 23:31 - 2009-07-01 12:46 - 00021160 _____ (Broadcom Corporation.) C:\Windows\system32\Drivers\btwrchid.sys
2014-05-18 23:31 - 2009-06-19 17:44 - 00319488 _____ (Texas Instruments) C:\Windows\system32\Drivers\tifm21.sys
2014-05-18 23:31 - 2009-06-10 23:00 - 00017463 _____ () C:\Windows\system32\Drivers\etc\services
2014-05-18 23:31 - 2009-06-10 23:00 - 00003683 _____ () C:\Windows\system32\Drivers\etc\lmhosts.sam
2014-05-18 23:31 - 2009-06-10 23:00 - 00001358 _____ () C:\Windows\system32\Drivers\etc\protocol
2014-05-18 23:31 - 2009-06-10 23:00 - 00000407 _____ () C:\Windows\system32\Drivers\etc\networks
2014-05-18 23:31 - 2009-06-10 22:41 - 00047104 _____ (Brother Industries Ltd.) C:\Windows\system32\Drivers\BrSerWdm.sys
2014-05-18 23:31 - 2009-06-10 22:41 - 00018432 _____ (Brother Industries, Ltd.) C:\Windows\system32\Drivers\BrFiltLo.sys
2014-05-18 23:31 - 2009-06-10 22:41 - 00014976 _____ (Brother Industries Ltd.) C:\Windows\system32\Drivers\BrUsbMdm.sys
2014-05-18 23:31 - 2009-06-10 22:41 - 00014720 _____ (Brother Industries Ltd.) C:\Windows\system32\Drivers\BrUsbSer.sys
2014-05-18 23:31 - 2009-06-10 22:41 - 00008704 _____ (Brother Industries, Ltd.) C:\Windows\system32\Drivers\BrFiltUp.sys
2014-05-18 23:31 - 2009-06-10 22:37 - 00023040 _____ (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.) C:\Windows\system32\Drivers\secdrv.sys
2014-05-18 23:31 - 2009-06-10 22:34 - 03286016 _____ (Broadcom Corporation) C:\Windows\system32\Drivers\evbda.sys
2014-05-18 23:31 - 2009-06-10 22:34 - 00468480 _____ (Broadcom Corporation) C:\Windows\system32\Drivers\bxvbda.sys
2014-05-18 23:31 - 2009-06-10 22:34 - 00270848 _____ (Broadcom Corporation) C:\Windows\system32\Drivers\b57nd60a.sys
2014-05-18 23:31 - 2009-06-10 22:31 - 00031232 _____ (Hauppauge Computer Works, Inc.) C:\Windows\system32\Drivers\hcw85cir.sys
2014-05-18 23:31 - 2009-04-07 15:33 - 00035104 _____ (Broadcom Corporation.) C:\Windows\system32\Drivers\btwl2cap.sys
2014-05-18 23:31 - 2008-06-04 15:14 - 00032240 _____ (Dell Inc) C:\Windows\system32\Drivers\PBADRV.SYS
2014-05-18 23:30 - 2014-02-01 17:01 - 00028672 _____ () C:\Windows\system32\config\BCD-Template
2014-05-18 23:30 - 2014-02-01 17:01 - 00025600 ___SH () C:\Windows\system32\config\BCD-Template.LOG
2014-05-18 23:30 - 2013-10-10 17:04 - 00134656 _____ (Legolash2o) C:\Windows\system32\WinToolkitRunOnce.exe
2014-05-18 23:30 - 2013-10-02 02:15 - 01057280 _____ (Microsoft Corporation) C:\Windows\system32\rdvidcrl.dll
2014-05-18 23:30 - 2013-03-18 17:51 - 06112864 _____ (Apple, Inc.) C:\Windows\system32\usbaaplrc.dll
2014-05-18 23:30 - 2012-09-11 14:39 - 01721576 _____ (Microsoft Corporation) C:\Windows\system32\wdfcoinstaller01009.dll
2014-05-18 23:30 - 2010-11-21 05:58 - 00018432 _____ () C:\Windows\system32\umstartup.etl
2014-05-18 23:30 - 2010-11-21 05:40 - 00046080 _____ () C:\Windows\system32\umstartup000.etl
2014-05-18 23:30 - 2010-07-22 04:19 - 01952256 _____ (IDT, Inc.) C:\Windows\system32\stlang64.dll
2014-05-18 23:30 - 2010-07-22 04:19 - 00431616 _____ (IDT, Inc.) C:\Windows\system32\stcplx64.dll
2014-05-18 23:30 - 2010-07-22 04:19 - 00209920 _____ (IDT, Inc.) C:\Windows\system32\st646292.dll
2014-05-18 23:30 - 2010-02-01 23:21 - 03161088 _____ (Microsoft Corporation) C:\Windows\system32\vcredist_x64.exe
2014-05-18 23:30 - 2010-02-01 23:21 - 00073728 _____ (Broadcom Corporation) C:\Windows\system32\wltrynt.dll
2014-05-18 23:30 - 2010-02-01 23:21 - 00000457 _____ () C:\Windows\system32\vcredist_x64.bat
2014-05-18 23:30 - 2009-11-03 18:40 - 01919968 _____ (Microsoft Corporation) C:\Windows\system32\WdfCoInstaller01005.dll
2014-05-18 23:30 - 2009-07-14 03:45 - 00024144 _____ (Microsoft Corporation) C:\Windows\system32\streamci.dll
2014-05-18 23:30 - 2009-06-10 22:31 - 00001988 _____ () C:\Windows\system32\ticrf.rat
2014-05-18 23:30 - 2008-01-17 19:25 - 02520064 _____ (UPEK, Inc.) C:\Windows\system32\tfmessbsp.dll
2014-05-18 23:29 - 2014-05-20 17:16 - 01527552 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-05-18 23:29 - 2014-05-20 17:16 - 00661436 _____ () C:\Windows\system32\perfh007.dat
2014-05-18 23:29 - 2014-05-20 17:16 - 00141416 _____ () C:\Windows\system32\perfc007.dat
2014-05-18 23:29 - 2014-05-20 13:43 - 00412616 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-05-18 23:29 - 2014-05-17 02:08 - 93223848 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-05-18 23:29 - 2014-03-31 09:35 - 00270496 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2014-05-18 23:29 - 2013-10-14 19:00 - 00028368 _____ (Microsoft Corporation) C:\Windows\system32\IEUDINIT.EXE
2014-05-18 23:29 - 2013-09-11 20:39 - 00855664 _____ (Microsoft Corporation) C:\Windows\system32\msvcr110_clr0400.dll
2014-05-18 23:29 - 2013-09-11 20:39 - 00614000 _____ (Microsoft Corporation) C:\Windows\system32\msvcp110_clr0400.dll
2014-05-18 23:29 - 2013-09-11 20:39 - 00018000 _____ (Microsoft Corporation) C:\Windows\system32\msvcr100_clr0400.dll
2014-05-18 23:29 - 2011-04-12 09:43 - 00295922 _____ () C:\Windows\system32\perfi007.dat
2014-05-18 23:29 - 2011-04-12 09:43 - 00038104 _____ () C:\Windows\system32\perfd007.dat
2014-05-18 23:29 - 2011-02-20 06:51 - 00608080 _____ (Microsoft Corporation) C:\Windows\system32\msvcp100.dll
2014-05-18 23:29 - 2011-02-19 08:52 - 00829264 _____ (Microsoft Corporation) C:\Windows\system32\msvcr100.dll
2014-05-18 23:29 - 2010-11-21 05:28 - 00029815 _____ () C:\Windows\system32\InstallPackage_ETW.Log
2014-05-18 23:29 - 2010-11-21 05:26 - 00175616 _____ (Microsoft Corporation) C:\Windows\system32\msclmd.dll
2014-05-18 23:29 - 2010-11-21 05:23 - 00229376 _____ (Microsoft Corporation) C:\Windows\system32\fsquirt.exe
2014-05-18 23:29 - 2010-11-21 04:52 - 00000050 _____ () C:\Windows\system32\Local_LLU.log
2014-05-18 23:29 - 2010-11-21 04:52 - 00000040 _____ () C:\Windows\system32\Network_LLU.log
2014-05-18 23:29 - 2010-11-21 04:52 - 00000015 _____ () C:\Windows\system32\LocalGroupAdminAdd.log
2014-05-18 23:29 - 2010-07-25 00:43 - 00055296 _____ (AMD) C:\Windows\system32\coinst.dll
2014-05-18 23:29 - 2010-07-22 04:19 - 11941376 _____ (IDT, Inc.) C:\Windows\system32\idtsg64.cpl
2014-05-18 23:29 - 2010-03-22 16:21 - 00283016 _____ () C:\Windows\system32\bipbsp.dll
2014-05-18 23:29 - 2010-03-22 16:16 - 00105864 _____ (Broadcom Corporation) C:\Windows\system32\lms.dll
2014-05-18 23:29 - 2010-03-22 16:15 - 00305544 _____ (Broadcom Corporation) C:\Windows\system32\bipdll.dll
2014-05-18 23:29 - 2010-03-22 16:15 - 00018320 _____ (Broadcom Corporation) C:\Windows\system32\CVUsrIfc.dll
2014-05-18 23:29 - 2010-02-01 23:20 - 08075776 _____ (Dell Inc.) C:\Windows\system32\BCMWLCPL.CPL
2014-05-18 23:29 - 2010-02-01 23:20 - 04750848 _____ (Dell Inc.) C:\Windows\system32\bcmttls.dll
2014-05-18 23:29 - 2010-02-01 23:20 - 01089024 _____ (Dell Inc.) C:\Windows\system32\BCMLogon.dll
2014-05-18 23:29 - 2010-02-01 23:20 - 00095472 _____ (Broadcom Corporation) C:\Windows\system32\bcmwlcoi.dll
2014-05-18 23:29 - 2010-02-01 23:20 - 00060928 _____ (Broadcom Corporation) C:\Windows\system32\bcmwlrmt.dll
2014-05-18 23:29 - 2010-02-01 23:20 - 00006656 _____ () C:\Windows\system32\bcmwlrc.dll
2014-05-18 23:29 - 2010-02-01 23:19 - 03891200 _____ (Broadcom Corporation) C:\Windows\system32\bcmihvsrv64.dll
2014-05-18 23:29 - 2010-02-01 23:19 - 03555840 _____ (Broadcom Corporation) C:\Windows\system32\bcmihvui64.dll
2014-05-18 23:29 - 2009-11-04 12:02 - 00440208 _____ () C:\Windows\system32\brcmbsp.dll
2014-05-18 23:29 - 2009-07-14 06:57 - 00001244 _____ () C:\Windows\system32\migwiz.lnk
2014-05-18 23:29 - 2009-07-14 03:40 - 00019456 _____ (Brother Industries Ltd.) C:\Windows\system32\brcoinst.dll
2014-05-18 23:29 - 2009-07-14 03:40 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\CIRCoInst.dll
2014-05-18 23:29 - 2009-06-10 22:53 - 00215943 _____ () C:\Windows\system32\dssec.dat
2014-05-18 23:29 - 2009-06-10 22:50 - 00000741 _____ () C:\Windows\system32\NOISE.DAT
2014-05-18 23:29 - 2009-06-10 22:47 - 11967524 _____ () C:\Windows\system32\korwbrkr.lex
2014-05-18 23:29 - 2009-06-10 22:47 - 00001696 _____ () C:\Windows\system32\NOISE.CHT
2014-05-18 23:29 - 2009-06-10 22:47 - 00001696 _____ () C:\Windows\system32\NOISE.CHS
2014-05-18 23:29 - 2009-06-10 22:47 - 00001486 _____ () C:\Windows\system32\noise.kor
2014-05-18 23:29 - 2009-06-10 22:47 - 00000697 _____ () C:\Windows\system32\NOISE.THA
2014-05-18 23:29 - 2009-06-10 22:31 - 00008798 _____ () C:\Windows\system32\icrav03.rat
2014-05-18 23:29 - 2008-12-09 19:46 - 00239104 _____ () C:\Windows\system32\bioapi_mds300.dll
2014-05-18 23:29 - 2008-12-09 19:46 - 00155136 _____ () C:\Windows\system32\bioapi100.dll
2014-05-18 23:29 - 2008-06-04 15:14 - 00081904 _____ () C:\Windows\system32\pbadrvdll.dll
2014-05-18 23:28 - 2014-05-20 17:19 - 00028320 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-05-18 23:28 - 2014-05-20 17:19 - 00028320 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-05-18 23:28 - 2013-09-11 20:39 - 00030312 _____ (Microsoft Corporation) C:\Windows\system32\aspnet_counters.dll
2014-05-18 23:28 - 2010-07-25 02:20 - 20017152 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atio6axx.dll
2014-05-18 23:28 - 2010-07-25 01:32 - 00057816 _____ () C:\Windows\system32\atiapfxx.blb
2014-05-18 23:28 - 2010-07-25 01:31 - 00143360 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atiapfxx.exe
2014-05-18 23:28 - 2010-07-25 01:29 - 00458752 _____ (AMD) C:\Windows\system32\atieclxx.exe
2014-05-18 23:28 - 2010-07-25 01:29 - 00446464 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\ATIDEMGX.dll
2014-05-18 23:28 - 2010-07-25 01:28 - 00203264 _____ (AMD) C:\Windows\system32\atiesrxx.exe
2014-05-18 23:28 - 2010-07-25 01:27 - 00421376 _____ (ATI Technologies, Inc.) C:\Windows\system32\atipdl64.dll
2014-05-18 23:28 - 2010-07-25 01:27 - 00120320 _____ (AMD) C:\Windows\system32\atitmm64.dll
2014-05-18 23:28 - 2010-07-25 01:27 - 00059392 _____ (ATI Technologies, Inc.) C:\Windows\system32\atiedu64.dll
2014-05-18 23:28 - 2010-07-25 01:27 - 00012288 _____ (AMD) C:\Windows\system32\atimuixx.dll
2014-05-18 23:28 - 2010-07-25 01:02 - 04930560 _____ (ATI Technologies Inc. ) C:\Windows\system32\atiumd64.dll
2014-05-18 23:28 - 2010-07-25 00:56 - 00336384 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atiadlxx.dll
2014-05-18 23:28 - 2010-07-25 00:55 - 00018432 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atig6txx.dll
2014-05-18 23:28 - 2010-07-25 00:55 - 00014848 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atig6pxx.dll
2014-05-18 23:28 - 2010-07-25 00:55 - 00012800 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiglpxx.dll
2014-05-18 23:28 - 2010-07-25 00:54 - 00030208 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiu9p64.dll
2014-05-18 23:28 - 2010-07-25 00:41 - 05265408 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticaldd64.dll
2014-05-18 23:28 - 2010-07-25 00:41 - 00043008 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticalrt64.dll
2014-05-18 23:28 - 2010-07-25 00:41 - 00039936 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticalcl64.dll
2014-05-18 23:28 - 2010-07-25 00:15 - 02752512 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiumd6a.dll
2014-05-18 23:28 - 2010-07-25 00:13 - 00534960 _____ () C:\Windows\system32\atiumd6a.cap
2014-05-18 23:28 - 2010-07-24 23:59 - 00054272 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atimpc64.dll
2014-05-18 23:28 - 2010-07-24 23:59 - 00054272 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdpcom64.dll
2014-05-18 23:28 - 2010-06-02 19:28 - 00002189 _____ () C:\Windows\system32\atipblag.dat
2014-05-18 23:28 - 2010-04-06 15:54 - 00203336 _____ () C:\Windows\system32\atiicdxx.dat
2014-05-18 23:28 - 2010-01-27 04:30 - 00162816 _____ (Andrea Electronics Corporation) C:\Windows\system32\AESTAC64.dll
2014-05-18 23:28 - 2009-10-10 02:45 - 00442368 _____ (Andrea Electronics Corporation) C:\Windows\system32\AESTEC64.dll
2014-05-18 23:28 - 2009-05-11 19:35 - 00118784 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atibtmon.exe
2014-05-18 23:28 - 2009-03-03 03:58 - 00068608 _____ (Andrea Electronics Corporation) C:\Windows\system32\AESTAR64.dll
2014-05-18 23:28 - 2009-02-18 15:55 - 00332288 _____ () C:\Windows\system32\ATIODE.exe
2014-05-18 23:28 - 2009-02-03 18:52 - 00051200 _____ () C:\Windows\system32\ATIODCLI.exe
2014-05-18 23:27 - 2014-05-19 21:40 - 00000000 ____D () C:\Windows\PCHEALTH
2014-05-18 23:27 - 2014-05-18 05:58 - 00328672 _____ () C:\Windows\Minidump\051814-16629-01.dmp
2014-05-18 23:27 - 2014-05-17 17:26 - 00328672 _____ () C:\Windows\Minidump\051714-16052-01.dmp
2014-05-18 23:27 - 2014-05-17 04:38 - 00328672 _____ () C:\Windows\Minidump\051714-24367-01.dmp
2014-05-18 23:27 - 2014-05-11 23:50 - 00328672 _____ () C:\Windows\Minidump\051114-18361-01.dmp
2014-05-18 23:27 - 2014-04-29 16:06 - 00884960 _____ () C:\Windows\Minidump\042914-13868-01.dmp
2014-05-18 23:27 - 2014-04-09 02:33 - 00328672 _____ () C:\Windows\Minidump\040914-14461-01.dmp
2014-05-18 23:27 - 2014-04-06 20:14 - 00328672 _____ () C:\Windows\Minidump\040614-14976-01.dmp
2014-05-18 23:27 - 2014-04-04 18:59 - 00328672 _____ () C:\Windows\Minidump\040414-15163-01.dmp
2014-05-18 23:27 - 2014-03-22 23:18 - 00374088 _____ () C:\Windows\Minidump\032214-16161-01.dmp
2014-05-18 23:27 - 2014-02-16 02:05 - 00328672 _____ () C:\Windows\Minidump\021614-14804-01.dmp
2014-05-18 23:27 - 2014-02-15 14:32 - 01702232 _____ () C:\Windows\Minidump\021514-21013-01.dmp
2014-05-18 23:27 - 2014-02-09 16:46 - 00328672 _____ () C:\Windows\Minidump\020914-17082-01.dmp
2014-05-18 23:27 - 2014-02-08 19:14 - 00328672 _____ () C:\Windows\Minidump\020814-14430-01.dmp
2014-05-18 23:21 - 2014-05-20 17:18 - 02038558 _____ () C:\Windows\WindowsUpdate.log
2014-05-18 23:21 - 2014-05-20 17:12 - 00020881 _____ () C:\Windows\setupact.log
2014-05-18 23:21 - 2014-05-20 16:31 - 00034810 _____ () C:\Windows\PFRO.log
2014-05-18 23:21 - 2014-05-20 14:16 - 00000215 _____ () C:\Windows\system.ini
2014-05-18 23:21 - 2014-05-18 19:38 - 00000658 _____ () C:\Windows\TIPCI.log
2014-05-18 23:21 - 2014-05-18 13:38 - 00009752 _____ () C:\Windows\DPINST.LOG
2014-05-18 23:21 - 2014-05-18 05:58 - 518897157 _____ () C:\Windows\MEMORY.DMP
2014-05-18 23:21 - 2014-05-17 02:31 - 00001912 _____ () C:\Windows\epplauncher.mif
2014-05-18 23:21 - 2014-04-09 19:26 - 00000000 ___HT () C:\Windows\wusa.lock
2014-05-18 23:21 - 2014-02-14 21:32 - 00000478 _____ () C:\Windows\win.ini
2014-05-18 23:21 - 2014-02-02 20:43 - 00000000 _____ () C:\Windows\setuperr.log
2014-05-18 23:21 - 2014-02-01 18:05 - 00000000 _____ () C:\Windows\ativpsrm.bin
2014-05-18 23:21 - 2010-07-19 05:55 - 00021591 _____ () C:\Windows\atiogl.xml
2014-05-18 23:21 - 2009-07-14 06:54 - 00000749 ___RH () C:\Windows\WindowsShell.Manifest
2014-05-18 23:21 - 2009-06-10 22:36 - 00001405 _____ () C:\Windows\msdfmap.ini
2014-05-18 23:21 - 2009-06-10 22:31 - 00048201 _____ () C:\Windows\Starter.xml
2014-05-18 23:21 - 2009-06-10 22:30 - 00048265 _____ () C:\Windows\HomePremium.xml
2014-05-18 23:12 - 2014-05-20 17:25 - 00000000 ____D () C:\FRST
2014-05-18 23:12 - 2014-05-19 21:16 - 00000000 ____D () C:\IDE
2014-05-18 19:32 - 2014-05-18 19:32 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NEC Electronics
2014-05-18 17:38 - 2014-05-18 17:38 - 00000000 ____D () C:\Intel
2014-05-18 14:09 - 2014-05-18 21:17 - 00000000 ____D () C:\Users\Andrea 2\AppData\Local\Deployment
2014-05-18 14:09 - 2014-05-18 14:09 - 00000000 ____D () C:\Users\Andrea 2\AppData\Local\Apps\2.0
2014-05-18 13:58 - 2014-05-18 13:58 - 00000000 ____D () C:\Users\Andrea 2\AppData\Local\Dell
2014-05-18 13:58 - 2014-05-18 13:58 - 00000000 ____D () C:\ProgramData\Dell
2014-05-18 13:43 - 2014-05-18 13:43 - 00000000 ____D () C:\Users\Andrea 2\Documents\Bluetooth-Exchange-Ordner
2014-05-18 13:43 - 2014-05-18 13:43 - 00000000 ____D () C:\Users\Andrea 2\AppData\Local\Broadcom
2014-05-18 13:40 - 2014-05-18 13:40 - 00000000 ____D () C:\Program Files\WIDCOMM
2014-05-18 12:55 - 2014-05-18 12:55 - 00000000 ____D () C:\Program Files (x86)\Cisco
2014-05-18 12:53 - 2014-05-19 13:24 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DW WLAN
2014-05-18 12:53 - 2014-05-18 13:59 - 00000000 ____D () C:\Program Files\Dell
2014-05-18 11:03 - 2014-05-18 11:03 - 00000000 ____D () C:\Users\Andrea 2\AppData\Roaming\ESET
2014-05-18 11:03 - 2014-05-18 11:03 - 00000000 ____D () C:\Users\Andrea 2\AppData\Local\ESET
2014-05-18 06:01 - 2014-05-18 06:01 - 00000000 __SHD () C:\Users\Andrea 2\AppData\Local\EmieUserList
2014-05-18 06:01 - 2014-05-18 06:01 - 00000000 __SHD () C:\Users\Andrea 2\AppData\Local\EmieSiteList
2014-05-18 05:12 - 2014-05-18 05:14 - 00000000 ____D () C:\Dell
2014-05-18 03:27 - 2014-05-19 13:24 - 00000000 ____D () C:\Users\Andrea\Desktop\DriverView
2014-05-17 22:24 - 2014-05-19 13:24 - 00000000 ____D () C:\Program Files\7-Zip
2014-05-17 21:53 - 2014-05-17 21:53 - 00000000 ____D () C:\Program Files (x86)\NirSoft
2014-05-17 07:29 - 2014-05-17 07:33 - 00023735 _____ () C:\Users\Andrea\Desktop\Eset Scan 17-05-14.txt
2014-05-17 07:12 - 2014-05-17 04:20 - 00050935 _____ () C:\Users\Andrea\Documents\ndl19844.dat
2014-05-17 05:44 - 2014-05-17 05:44 - 00001191 _____ () C:\Users\Andrea\Desktop\Gmer.txt
2014-05-17 05:26 - 2014-05-17 05:27 - 00027345 _____ () C:\Users\Andrea\Desktop\FRSTold.txt
2014-05-17 05:26 - 2014-05-17 05:27 - 00026097 _____ () C:\Users\Andrea\Desktop\Additionold.txt
2014-05-17 05:21 - 2014-05-17 05:21 - 00000478 _____ () C:\Users\Andrea\Desktop\defogger_disable.log
2014-05-17 05:21 - 2014-05-17 05:21 - 00000000 _____ () C:\Users\Andrea 2\defogger_reenable
2014-05-17 03:36 - 2014-05-19 13:24 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ESET
2014-05-17 03:36 - 2014-05-17 03:36 - 00000000 ____D () C:\ProgramData\ESET
2014-05-17 03:36 - 2014-05-17 03:36 - 00000000 ____D () C:\Program Files\ESET
2014-05-17 03:27 - 2014-05-17 03:27 - 00000000 ____D () C:\Users\Andrea\AppData\Roaming\ESET
2014-05-17 03:27 - 2014-05-17 03:27 - 00000000 ____D () C:\Users\Andrea\AppData\Local\ESET
2014-05-17 02:08 - 2014-05-17 02:08 - 00000000 ____D () C:\Users\Default\AppData\Local\Microsoft Help
2014-05-17 02:08 - 2014-05-17 02:08 - 00000000 ____D () C:\Users\Default User\AppData\Local\Microsoft Help
2014-05-10 22:25 - 2014-05-10 22:25 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-05-10 02:24 - 2014-05-10 02:25 - 00000000 ____D () C:\Users\Andrea\Desktop\Gruber
2014-05-07 01:28 - 2014-05-19 13:33 - 00000000 ___SD () C:\Windows\system32\CompatTel
2014-05-06 17:48 - 2014-04-14 04:24 - 00465408 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-05-06 17:48 - 2014-04-14 04:19 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-05-06 01:59 - 2014-04-29 16:01 - 23547904 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-05-06 01:59 - 2014-04-29 15:40 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-05-06 01:59 - 2014-04-29 14:48 - 17384448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-05-06 01:59 - 2014-04-29 14:34 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-04-20 14:12 - 2014-04-20 14:12 - 00000000 ____D () C:\Users\Andrea 2\AppData\Local\Adobe

==================== One Month Modified Files and Folders =======

2014-05-20 17:26 - 2014-05-20 17:25 - 00004004 _____ () C:\Users\Andrea\Desktop\FRST.txt
2014-05-20 17:25 - 2014-05-18 23:12 - 00000000 ____D () C:\FRST
2014-05-20 17:20 - 2014-05-20 17:20 - 02067456 _____ (Farbar) C:\Users\Andrea\Desktop\FRST64.exe
2014-05-20 17:19 - 2014-05-18 23:28 - 00028320 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-05-20 17:19 - 2014-05-18 23:28 - 00028320 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-05-20 17:18 - 2014-05-18 23:21 - 02038558 _____ () C:\Windows\WindowsUpdate.log
2014-05-20 17:16 - 2014-05-18 23:29 - 01527552 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-05-20 17:16 - 2014-05-18 23:29 - 00661436 _____ () C:\Windows\system32\perfh007.dat
2014-05-20 17:16 - 2014-05-18 23:29 - 00141416 _____ () C:\Windows\system32\perfc007.dat
2014-05-20 17:12 - 2014-05-18 23:21 - 00020881 _____ () C:\Windows\setupact.log
2014-05-20 17:12 - 2009-07-14 07:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-05-20 17:09 - 2014-05-20 17:09 - 00000628 _____ () C:\Users\Andrea 2\Desktop\JRT.txt
2014-05-20 17:06 - 2014-02-01 19:37 - 00000884 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-05-20 17:03 - 2014-05-20 17:03 - 00000000 ____D () C:\Windows\ERUNT
2014-05-20 16:59 - 2014-05-20 16:59 - 01016261 _____ (Thisisu) C:\Users\Andrea\Desktop\JRT.exe
2014-05-20 16:31 - 2014-05-18 23:21 - 00034810 _____ () C:\Windows\PFRO.log
2014-05-20 16:29 - 2014-05-20 16:20 - 00000000 ____D () C:\AdwCleaner
2014-05-20 16:19 - 2014-05-20 16:19 - 01326389 _____ () C:\Users\Andrea\Desktop\adwcleaner_3.210.exe
2014-05-20 14:18 - 2014-05-20 14:18 - 00015040 _____ () C:\ComboFix.txt
2014-05-20 14:18 - 2014-05-20 14:12 - 00000000 ____D () C:\Qoobox
2014-05-20 14:17 - 2014-05-20 14:12 - 00000000 ____D () C:\Windows\erdnt
2014-05-20 14:16 - 2014-05-18 23:21 - 00000215 _____ () C:\Windows\system.ini
2014-05-20 14:07 - 2014-04-09 19:19 - 00000000 ____D () C:\Users\Andrea 2
2014-05-20 13:51 - 2014-05-20 13:51 - 05200426 ____R (Swearware) C:\Users\Andrea\Desktop\ComboFix.exe
2014-05-20 13:43 - 2014-05-18 23:29 - 00412616 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-05-20 01:15 - 2014-02-01 18:05 - 00106808 _____ () C:\Users\Andrea\AppData\Local\GDIPFONTCACHEV1.DAT
2014-05-20 00:18 - 2014-05-20 00:18 - 00000000 ____D () C:\Users\Andrea\AppData\Local\Apps\2.0
2014-05-19 21:48 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\system32\NDF
2014-05-19 21:46 - 2014-05-18 23:31 - 00000445 _____ () C:\Windows\system32\Drivers\etc\hosts.ics
2014-05-19 21:42 - 2014-02-08 19:14 - 00000000 ____D () C:\Windows\Minidump
2014-05-19 21:42 - 2011-04-12 09:54 - 00000000 ____D () C:\Windows\ShellNew
2014-05-19 21:42 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\system32\hr-HR
2014-05-19 21:42 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\system32\he-IL
2014-05-19 21:42 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\system32\et-EE
2014-05-19 21:42 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\system32\bg-BG
2014-05-19 21:42 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\system32\ar-SA
2014-05-19 21:41 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\Help
2014-05-19 21:40 - 2014-05-18 23:27 - 00000000 ____D () C:\Windows\PCHEALTH
2014-05-19 21:16 - 2014-05-18 23:12 - 00000000 ____D () C:\IDE
2014-05-19 18:10 - 2014-05-19 18:10 - 00001421 _____ () C:\Users\Andrea\Desktop\Internet Explorer.lnk
2014-05-19 17:39 - 2014-02-01 19:13 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-05-19 17:34 - 2009-07-14 05:20 - 00000000 ____D () C:\Program Files\Common Files\Microsoft Shared
2014-05-19 17:33 - 2014-05-19 17:33 - 00000000 ____D () C:\Users\Andrea 2\AppData\Local\Microsoft Help
2014-05-19 13:33 - 2014-05-07 01:28 - 00000000 ___SD () C:\Windows\system32\CompatTel
2014-05-19 13:33 - 2014-04-09 19:20 - 00000000 ___RD () C:\Users\Andrea 2\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2014-05-19 13:33 - 2014-04-09 19:20 - 00000000 ___RD () C:\Users\Andrea 2\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2014-05-19 13:33 - 2014-02-27 19:37 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2014-05-19 13:33 - 2014-02-27 19:36 - 00000000 ____D () C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
2014-05-19 13:33 - 2014-02-27 19:36 - 00000000 ____D () C:\Program Files\iTunes
2014-05-19 13:33 - 2014-02-27 19:36 - 00000000 ____D () C:\Program Files\iPod
2014-05-19 13:33 - 2014-02-27 19:36 - 00000000 ____D () C:\Program Files (x86)\iTunes
2014-05-19 13:33 - 2014-02-06 20:54 - 00000000 ____D () C:\Windows\System32\Tasks\Apple
2014-05-19 13:33 - 2014-02-06 20:54 - 00000000 ____D () C:\ProgramData\Apple Computer
2014-05-19 13:33 - 2014-02-06 20:54 - 00000000 ____D () C:\Program Files (x86)\Apple Software Update
2014-05-19 13:33 - 2014-02-06 20:53 - 00000000 ____D () C:\Program Files\Common Files\Apple
2014-05-19 13:33 - 2014-02-06 20:53 - 00000000 ____D () C:\Program Files\Bonjour
2014-05-19 13:33 - 2014-02-06 20:53 - 00000000 ____D () C:\Program Files (x86)\Bonjour
2014-05-19 13:33 - 2014-02-01 19:55 - 00000000 ____D () C:\Program Files\Microsoft Security Client
2014-05-19 13:33 - 2014-02-01 19:55 - 00000000 ____D () C:\Program Files (x86)\Microsoft Security Client
2014-05-19 13:33 - 2014-02-01 19:49 - 00000000 ____D () C:\Program Files (x86)\K-Lite Codec Pack
2014-05-19 13:33 - 2014-02-01 19:37 - 00000000 ____D () C:\Windows\system32\Macromed
2014-05-19 13:33 - 2014-02-01 18:01 - 00000000 ____D () C:\Windows\system32\SRSLabs
2014-05-19 13:33 - 2014-02-01 18:00 - 00000000 ____D () C:\Windows\tiinst
2014-05-19 13:33 - 2014-02-01 18:00 - 00000000 ____D () C:\Program Files\IDT
2014-05-19 13:33 - 2014-02-01 17:56 - 00000000 ____D () C:\Program Files\WinRAR
2014-05-19 13:33 - 2014-02-01 17:49 - 00000000 ___RD () C:\Users\Andrea\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2014-05-19 13:33 - 2014-02-01 17:49 - 00000000 ___RD () C:\Users\Andrea\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2014-05-19 13:33 - 2009-07-14 05:20 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
2014-05-19 13:33 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\security
2014-05-19 13:33 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\schemas
2014-05-19 13:33 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\rescache
2014-05-19 13:33 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\AppCompat
2014-05-19 13:30 - 2014-02-01 17:58 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2014-05-19 13:30 - 2014-02-01 17:58 - 00000000 ____D () C:\Program Files (x86)\NEC Electronics
2014-05-19 13:26 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\registration
2014-05-19 13:24 - 2014-05-18 12:53 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DW WLAN
2014-05-19 13:24 - 2014-05-18 03:27 - 00000000 ____D () C:\Users\Andrea\Desktop\DriverView
2014-05-19 13:24 - 2014-05-17 22:24 - 00000000 ____D () C:\Program Files\7-Zip
2014-05-19 13:24 - 2014-05-17 03:36 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ESET
2014-05-19 13:06 - 2014-02-15 10:02 - 00003758 _____ () C:\Windows\System32\Tasks\AutoKMS
2014-05-19 12:35 - 2014-05-19 12:35 - 00000000 ____D () C:\Users\Andrea\AppData\Roaming\Apple Computer
2014-05-19 12:35 - 2014-02-01 17:49 - 00000000 ____D () C:\Users\Andrea
2014-05-19 12:34 - 2014-02-06 20:53 - 00000000 ____D () C:\ProgramData\Apple
2014-05-18 21:17 - 2014-05-18 14:09 - 00000000 ____D () C:\Users\Andrea 2\AppData\Local\Deployment
2014-05-18 19:38 - 2014-05-18 23:21 - 00000658 _____ () C:\Windows\TIPCI.log
2014-05-18 19:32 - 2014-05-18 19:32 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NEC Electronics
2014-05-18 17:38 - 2014-05-18 17:38 - 00000000 ____D () C:\Intel
2014-05-18 14:09 - 2014-05-18 14:09 - 00000000 ____D () C:\Users\Andrea 2\AppData\Local\Apps\2.0
2014-05-18 13:59 - 2014-05-18 12:53 - 00000000 ____D () C:\Program Files\Dell
2014-05-18 13:58 - 2014-05-18 13:58 - 00000000 ____D () C:\Users\Andrea 2\AppData\Local\Dell
2014-05-18 13:58 - 2014-05-18 13:58 - 00000000 ____D () C:\ProgramData\Dell
2014-05-18 13:43 - 2014-05-18 13:43 - 00000000 ____D () C:\Users\Andrea 2\Documents\Bluetooth-Exchange-Ordner
2014-05-18 13:43 - 2014-05-18 13:43 - 00000000 ____D () C:\Users\Andrea 2\AppData\Local\Broadcom
2014-05-18 13:40 - 2014-05-18 13:40 - 00000000 ____D () C:\Program Files\WIDCOMM
2014-05-18 13:38 - 2014-05-18 23:21 - 00009752 _____ () C:\Windows\DPINST.LOG
2014-05-18 12:55 - 2014-05-18 12:55 - 00000000 ____D () C:\Program Files (x86)\Cisco
2014-05-18 11:03 - 2014-05-18 11:03 - 00000000 ____D () C:\Users\Andrea 2\AppData\Roaming\ESET
2014-05-18 11:03 - 2014-05-18 11:03 - 00000000 ____D () C:\Users\Andrea 2\AppData\Local\ESET
2014-05-18 06:01 - 2014-05-18 06:01 - 00000000 __SHD () C:\Users\Andrea 2\AppData\Local\EmieUserList
2014-05-18 06:01 - 2014-05-18 06:01 - 00000000 __SHD () C:\Users\Andrea 2\AppData\Local\EmieSiteList
2014-05-18 05:58 - 2014-05-18 23:27 - 00328672 _____ () C:\Windows\Minidump\051814-16629-01.dmp
2014-05-18 05:58 - 2014-05-18 23:21 - 518897157 _____ () C:\Windows\MEMORY.DMP
2014-05-18 05:14 - 2014-05-18 05:12 - 00000000 ____D () C:\Dell
2014-05-17 21:53 - 2014-05-17 21:53 - 00000000 ____D () C:\Program Files (x86)\NirSoft
2014-05-17 17:26 - 2014-05-18 23:27 - 00328672 _____ () C:\Windows\Minidump\051714-16052-01.dmp
2014-05-17 07:33 - 2014-05-17 07:29 - 00023735 _____ () C:\Users\Andrea\Desktop\Eset Scan 17-05-14.txt
2014-05-17 05:44 - 2014-05-17 05:44 - 00001191 _____ () C:\Users\Andrea\Desktop\Gmer.txt
2014-05-17 05:27 - 2014-05-17 05:26 - 00027345 _____ () C:\Users\Andrea\Desktop\FRSTold.txt
2014-05-17 05:27 - 2014-05-17 05:26 - 00026097 _____ () C:\Users\Andrea\Desktop\Additionold.txt
2014-05-17 05:21 - 2014-05-17 05:21 - 00000478 _____ () C:\Users\Andrea\Desktop\defogger_disable.log
2014-05-17 05:21 - 2014-05-17 05:21 - 00000000 _____ () C:\Users\Andrea 2\defogger_reenable
2014-05-17 04:38 - 2014-05-18 23:27 - 00328672 _____ () C:\Windows\Minidump\051714-24367-01.dmp
2014-05-17 04:20 - 2014-05-17 07:12 - 00050935 _____ () C:\Users\Andrea\Documents\ndl19844.dat
2014-05-17 03:36 - 2014-05-17 03:36 - 00000000 ____D () C:\ProgramData\ESET
2014-05-17 03:36 - 2014-05-17 03:36 - 00000000 ____D () C:\Program Files\ESET
2014-05-17 03:27 - 2014-05-17 03:27 - 00000000 ____D () C:\Users\Andrea\AppData\Roaming\ESET
2014-05-17 03:27 - 2014-05-17 03:27 - 00000000 ____D () C:\Users\Andrea\AppData\Local\ESET
2014-05-17 02:31 - 2014-05-18 23:21 - 00001912 _____ () C:\Windows\epplauncher.mif
2014-05-17 02:09 - 2014-02-01 19:22 - 00000000 ____D () C:\Windows\system32\MRT
2014-05-17 02:08 - 2014-05-18 23:29 - 93223848 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-05-17 02:08 - 2014-05-17 02:08 - 00000000 ____D () C:\Users\Default\AppData\Local\Microsoft Help
2014-05-17 02:08 - 2014-05-17 02:08 - 00000000 ____D () C:\Users\Default User\AppData\Local\Microsoft Help
2014-05-16 22:06 - 2014-02-01 19:37 - 00692400 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-05-16 22:06 - 2014-02-01 19:37 - 00070832 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-05-16 22:06 - 2014-02-01 19:37 - 00003822 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-05-11 23:54 - 2014-05-18 23:31 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_User_wpdcomp_01_09_00.Wdf
2014-05-11 23:50 - 2014-05-18 23:27 - 00328672 _____ () C:\Windows\Minidump\051114-18361-01.dmp
2014-05-11 23:49 - 2014-02-01 19:19 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-05-10 22:25 - 2014-05-10 22:25 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-05-10 02:25 - 2014-05-10 02:24 - 00000000 ____D () C:\Users\Andrea\Desktop\Gruber
2014-04-30 19:22 - 2014-02-17 18:13 - 00000000 ____D () C:\Users\Andrea\Desktop\Musiik
2014-04-29 16:06 - 2014-05-18 23:27 - 00884960 _____ () C:\Windows\Minidump\042914-13868-01.dmp
2014-04-29 16:01 - 2014-05-06 01:59 - 23547904 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-04-29 15:40 - 2014-05-06 01:59 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-04-29 14:48 - 2014-05-06 01:59 - 17384448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-04-29 14:34 - 2014-05-06 01:59 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-04-20 21:19 - 2014-04-13 21:08 - 00000000 ____D () C:\Users\Andrea\Desktop\Neuer Ordner
2014-04-20 14:12 - 2014-04-20 14:12 - 00000000 ____D () C:\Users\Andrea 2\AppData\Local\Adobe

Some content of TEMP:
====================
C:\Users\Andrea 2\AppData\Local\temp\Quarantine.exe


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2014-05-20 04:12

==================== End Of Log ============================
--- --- ---

--- --- ---


bei dem letzten Post stimmt was nicht.
dieses "FRST Logfile" hab ich nicht geschrieben

Antwort

Themen zu Windows 7 EsetScan meldet "Win32/Toolbar.Montiera" und weitere Funde
association, branding, cpu, device driver, explorer, flash player, install.exe, installation, js/toolbar.crossrider.b, problem, pup.optional.1clickdownload.a, pup.optional.crossrider.a, pup.optional.hdvidcodec.a, pup.optional.iminent.a, security, services.exe, svchost.exe, vista, win32/browsefox.c, win32/browsefox.f, win32/browsefox.h, win32/toolbar.escort.a, win32/toolbar.montiera.a, win32/toolbar.montiera.b, win32/toolbar.montiera.e, win32/toolbar.montiera.f, win32/toolbar.montiera.i, windows


« Windows 7 64 bit: TR/Injector.bsy.2 | Windows 7 und 8: Statt des Link Zieles kommt Werbung (Erneuern Sie Ihren ...) »


Ähnliche Themen: Windows 7 EsetScan meldet "Win32/Toolbar.Montiera" und weitere Funde


  1. Eset findet "Win32/Bundled.Toolbar.Google.D" und "Win32/OpenCandy.C"
    Plagegeister aller Art und deren Bekämpfung - 22.09.2015 (10)
  2. Windows 8.1 "Telekom-Trojaner" Avira meldet "Emotet.A.43"
    Log-Analyse und Auswertung - 24.11.2014 (9)
  3. Windows 8.1: Avast meldet Fund "Win32:Dropper-gen[Drp]"
    Log-Analyse und Auswertung - 26.07.2014 (19)
  4. Avira meldet TR/Crypt.XPACK.Gen" in Datei "mjcrosoft-windows-hal-events.exe"
    Plagegeister aller Art und deren Bekämpfung - 09.04.2014 (13)
  5. MALWAREBYTES meldet 2 Funde, als Anbieter "PUP.Optional.Conduit.A" und "PUP.Optional.DataMngr.A"
    Log-Analyse und Auswertung - 10.03.2014 (7)
  6. Win 7 64: Avira meldet diverse Funde, regelmäßige Floodings, geblockte Websiteaufrufe von "SYSTEM"
    Log-Analyse und Auswertung - 04.11.2013 (6)
  7. Variante von Win32/Bundled.Toolbar.Ask Anwendung - von Eset erkannte "Bedrohungen"
    Plagegeister aller Art und deren Bekämpfung - 02.11.2013 (3)
  8. Windows 7 "PUP Babylon Toolbar" und "a variant of Win32/Bundled.Toolbar.Ask.D" gefunden
    Log-Analyse und Auswertung - 26.09.2013 (9)
  9. Win 8 (64bit): Avast meldet "FileRepMalware" & "Win32:evo-gen [Susp]"
    Plagegeister aller Art und deren Bekämpfung - 11.09.2013 (20)
  10. Browser/Werbe popup, "AppsHat", MBAM Funde, nach "Schrift-Download"
    Plagegeister aller Art und deren Bekämpfung - 26.08.2013 (31)
  11. ZoneAlarm meldet Fund: "Trojan-Spy.Win32.Zbot.nesk"
    Log-Analyse und Auswertung - 18.07.2013 (11)
  12. "Licensevalidator.exe" u.A.: ESET meldet "Win32/Kryptik.ADPW trojan" sowie "Win32/Gataka.A trojan"
    Log-Analyse und Auswertung - 12.04.2012 (21)
  13. Fifa10.exe meldet Problem "not-a-virus:PSWTool.Win32.NetPass.yp"
    Plagegeister aller Art und deren Bekämpfung - 30.12.2011 (5)
  14. Mögliche Funde wie "Win32/InstallCore.A" / Suspect "npqtplugin5.dll" u.s.w
    Plagegeister aller Art und deren Bekämpfung - 19.12.2011 (23)
  15. "Trojan.Vundo-Variant/F" in Datei "C:\Windows\Syswow64\avsredirect.dll" + vorher weitere Schädlinge
    Plagegeister aller Art und deren Bekämpfung - 19.12.2010 (15)
  16. TROJANER meldet ständig über Pop-Up "rootkit win32 Agent pp"
    Log-Analyse und Auswertung - 08.12.2009 (1)
  17. "Security Toolbar" und Trojan-Downloader.Win32.
    Plagegeister aller Art und deren Bekämpfung - 26.11.2007 (10)
Anleitungen und Tipps

- Für alle Hilfesuchenden! Was beachten?

- Anleitung: MyStartSearch.com entfernen

- Anleitung: WebSearches löschen

- Hilfe: iStartSurf entfernen – so gehts!

- Anleitung: Omiga Plus richtig entfernen

- Browser Viren entfernen


Zum Thema Windows 7 EsetScan meldet "Win32/Toolbar.Montiera" und weitere Funde - Adw-Log: Code: Alles auswählen Aufklappen ATTFilter # AdwCleaner v3.210 - Bericht erstellt am 20/05/2014 um 16:29:58 # Aktualisiert 19/05/2014 von Xplode # Betriebssystem : Windows 7 Home Premium Service Pack - Windows 7 EsetScan meldet "Win32/Toolbar.Montiera" und weitere Funde...
Archiv
Du betrachtest: Windows 7 EsetScan meldet "Win32/Toolbar.Montiera" und weitere Funde auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130 131